Add new "valid_flags" field to CERT_PKEY structure which determines what
[openssl.git] / ssl / s3_lib.c
index 5e7c590..ac70eaf 100644 (file)
@@ -3911,6 +3911,8 @@ SSL_CIPHER *ssl3_choose_cipher(SSL *s, STACK_OF(SSL_CIPHER) *clnt,
                allow = srvr;
                }
 
+       tls1_set_cert_validity(s);
+
        for (i=0; i<sk_SSL_CIPHER_num(prio); i++)
                {
                c=sk_SSL_CIPHER_value(prio,i);