summaryrefslogtreecommitdiff
path: root/src/ssl/handshake_client.cc
diff options
context:
space:
mode:
Diffstat (limited to 'src/ssl/handshake_client.cc')
-rw-r--r--src/ssl/handshake_client.cc9
1 files changed, 2 insertions, 7 deletions
diff --git a/src/ssl/handshake_client.cc b/src/ssl/handshake_client.cc
index b0de6708..a53e4303 100644
--- a/src/ssl/handshake_client.cc
+++ b/src/ssl/handshake_client.cc
@@ -1071,13 +1071,8 @@ static enum ssl_hs_wait_t do_read_server_key_exchange(SSL_HANDSHAKE *hs) {
return ssl_hs_error;
}
- bool sig_ok = ssl_public_key_verify(ssl, signature, signature_algorithm,
- hs->peer_pubkey.get(), transcript_data);
-#if defined(BORINGSSL_UNSAFE_FUZZER_MODE)
- sig_ok = true;
- ERR_clear_error();
-#endif
- if (!sig_ok) {
+ if (!ssl_public_key_verify(ssl, signature, signature_algorithm,
+ hs->peer_pubkey.get(), transcript_data)) {
// bad signature
OPENSSL_PUT_ERROR(SSL, SSL_R_BAD_SIGNATURE);
ssl_send_alert(ssl, SSL3_AL_FATAL, SSL_AD_DECRYPT_ERROR);
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-26 10:09:49 +0000