commit 3f5b7536546e99595c05d803b56a64c60ef0f0e4
author Paul Bakker <p.j.bakker@polarssl.org> Fri Jun 21 15:13:59 2013 +0200
committer Paul Bakker <p.j.bakker@polarssl.org> Fri Jun 21 15:13:59 2013 +0200
tree 104d9109af552c4e5255310607bb908bd37b11fb
parent 8199a3375f7f1c42d3d8eff3f5d4a81502511458

ssl_write_certificate_request() can handle empty ca_chain
(cherry picked from commit 21360ca4d45c47f16952fa1f75c21600c4e26d7e)

Conflicts:
	library/ssl_srv.c

ChangeLog

diff --git a/ChangeLog b/ChangeLog
index a1c1dba..f8a46d9 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -10,6 +10,7 @@
      instead of the x509parse_crt() wrapper that can also parse PEM
 	 certificates
    * Fixed values for 2-key Triple DES in cipher layer
+   * ssl_write_certificate_request() can handle empty ca_chain
 
 Security
    * A possible DoS during the SSL Handshake, due to faulty parsing of

library/ssl_srv.c

diff --git a/library/ssl_srv.c b/library/ssl_srv.c
index 5f2891d..175a50c 100644
--- a/library/ssl_srv.c
+++ b/library/ssl_srv.c
@@ -505,7 +505,7 @@
     p += 2;
     crt = ssl->ca_chain;
 
-    while( crt != NULL )
+    while( crt != NULL && crt->version != 0)
     {
         if( p - buf > 4096 )
             break;