From 44cda40d58c585ee4444eee10d32f0d11f9fcd1c Mon Sep 17 00:00:00 2001
From: Tobias Brunner <tobias@strongswan.org>
Date: Tue, 25 Aug 2020 17:21:02 +0200
Subject: [PATCH] tls-peer: Simply ignore certificate request context

This SHALL be zero length for server authentication anyway.
---
 src/libtls/tls_peer.c | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/src/libtls/tls_peer.c b/src/libtls/tls_peer.c
index 4cba0bba41..fa81ee7e9a 100644
--- a/src/libtls/tls_peer.c
+++ b/src/libtls/tls_peer.c
@@ -409,11 +409,6 @@ static status_t process_certificate(private_tls_peer_t *this,
 			this->alert->add(this->alert, TLS_FATAL, TLS_DECODE_ERROR);
 			return NEED_MORE;
 		}
-		if (data.len > 0)
-		{
-			DBG1(DBG_TLS, "certificate request context available,"
-				 "but CertificateRequest not received");
-		}
 	}
 	if (!reader->read_data24(reader, &data))
 	{