Change state machine Skip CertificateVerfiy if empty certificate or no CertificateRequest received. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>

commit: ca133a34c5a920da195071986159912c297653e4 [log] [tgz]
author: Jerry Yu <jerry.h.yu@arm.com> Tue Feb 15 14:22:05 2022 +0800
committer: Jerry Yu <jerry.h.yu@arm.com> Tue Feb 22 10:17:58 2022 +0800
tree: a8b9bef7bd40aa61b220b4f3a47f780a3157ee17
parent: 537530d57aa16b4c532f319acbd1e69e8594e252 [diff] [blame]
diff --git a/library/ssl_tls13_client.c b/library/ssl_tls13_client.c
index 207098c..30b1ed4 100644
--- a/library/ssl_tls13_client.c
+++ b/library/ssl_tls13_client.c

@@ -1917,11 +1917,11 @@
         MBEDTLS_SSL_CLIENT_CCS_AFTER_SERVER_FINISHED );
 #else
 #if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED)
-    if( ssl->handshake->client_auth )
-        mbedtls_ssl_handshake_set_state( ssl, MBEDTLS_SSL_CLIENT_CERTIFICATE );
-    else
+    mbedtls_ssl_handshake_set_state( ssl, MBEDTLS_SSL_CLIENT_CERTIFICATE );
+#else
+    mbedtls_ssl_handshake_set_state( ssl, MBEDTLS_SSL_CLIENT_FINISHED );
 #endif /* MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED */
-        mbedtls_ssl_handshake_set_state( ssl, MBEDTLS_SSL_CLIENT_FINISHED );
+
 #endif /* MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE */
 
     return( 0 );
commit	ca133a34c5a920da195071986159912c297653e4	[log] [tgz]
author	Jerry Yu <jerry.h.yu@arm.com>	Tue Feb 15 14:22:05 2022 +0800
committer	Jerry Yu <jerry.h.yu@arm.com>	Tue Feb 22 10:17:58 2022 +0800
tree	a8b9bef7bd40aa61b220b4f3a47f780a3157ee17
parent	537530d57aa16b4c532f319acbd1e69e8594e252 [diff] [blame]