Update the EVP_PKEY_get_id documentation

The documentation didn't mention the development where EVP_PKEY_get_id() returns a negative value for provider-only implementations, and the migration guide didn't mention how to cope with that. Fixes #20497 Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/20501)
author: Michael Baentsch <57787676+baentsch@users.noreply.github.com> 2023-03-13 14:27:01 +0100
committer: Richard Levitte <levitte@openssl.org> 2023-03-25 09:44:54 +0100
commit: a2a543e0e3ec277d136772b4b0e0bb3d1181d337 (patch)
tree: 42d4b5fa1431f0d09f00c6090a8e7a9d5fb360af /ssl/t1_lib.c
parent: 62ea5ffa7c8882ba90b26ab1deb0d977dcb5165c (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index 7ec8be4c27..e528467dd9 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -1855,7 +1855,7 @@ int tls12_check_peer_sigalg(SSL_CONNECTION *s, uint16_t sig, EVP_PKEY *pkey)
     }
     lu = tls1_lookup_sigalg(s, sig);
     /* if this sigalg is loaded, set so far unknown pkeyid to its sig NID */
-    if ((pkeyid == -1) && (lu != NULL))
+    if ((pkeyid == EVP_PKEY_KEYMGMT) && (lu != NULL))
         pkeyid = lu->sig;
 
     /* Should never happen */
author	Michael Baentsch <57787676+baentsch@users.noreply.github.com>	2023-03-13 14:27:01 +0100
committer	Richard Levitte <levitte@openssl.org>	2023-03-25 09:44:54 +0100
commit	a2a543e0e3ec277d136772b4b0e0bb3d1181d337 (patch)
tree	42d4b5fa1431f0d09f00c6090a8e7a9d5fb360af /ssl/t1_lib.c
parent	62ea5ffa7c8882ba90b26ab1deb0d977dcb5165c (diff)