Blame SOURCES/openssl-1.0.1e-cve-2015-0205.patch

78ef1d
diff -up openssl-1.0.1e/ssl/s3_srvr.c.dh-unauthenticated openssl-1.0.1e/ssl/s3_srvr.c
78ef1d
--- openssl-1.0.1e/ssl/s3_srvr.c.dh-unauthenticated	2015-01-12 17:49:04.930808409 +0100
78ef1d
+++ openssl-1.0.1e/ssl/s3_srvr.c	2015-01-13 11:15:25.098957840 +0100
78ef1d
@@ -2951,7 +2951,7 @@ int ssl3_get_cert_verify(SSL *s)
78ef1d
 	if (s->s3->tmp.message_type != SSL3_MT_CERTIFICATE_VERIFY)
78ef1d
 		{
78ef1d
 		s->s3->tmp.reuse_message=1;
78ef1d
-		if ((peer != NULL) && (type & EVP_PKT_SIGN))
78ef1d
+		if (peer != NULL)
78ef1d
 			{
78ef1d
 			al=SSL_AD_UNEXPECTED_MESSAGE;
78ef1d
 			SSLerr(SSL_F_SSL3_GET_CERT_VERIFY,SSL_R_MISSING_VERIFY_MESSAGE);