Fix the alert sent if no shared sig algs

We were sending illegal parameter. This isn't correct. The parameters are legal, we just don't have an overlap. A more appropriate alert is handshake failure. Fixes #2919 Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/6010)
author: Matt Caswell <matt@openssl.org> 2018-04-19 10:38:57 +0100
committer: Matt Caswell <matt@openssl.org> 2018-04-20 11:40:06 +0100
commit: f55e2fa7b9d4692b31ad7ad72e71915e853de384 (patch)
tree: f2ccc1168f87a3d737d8f7ab47c89cbb46835501 /ssl
parent: 544069175245b9826dc5f9ddf9e2f38f5b08e1c5 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index 5ba7377fe3..6f4078e88e 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -2800,7 +2800,7 @@ int tls1_set_server_sigalgs(SSL *s)
         if (!s->cert->shared_sigalgs) {
             SSLerr(SSL_F_TLS1_SET_SERVER_SIGALGS,
                    SSL_R_NO_SHARED_SIGNATURE_ALGORITHMS);
-            al = SSL_AD_ILLEGAL_PARAMETER;
+            al = SSL_AD_HANDSHAKE_FAILURE;
             goto err;
         }
     } else {
author	Matt Caswell <matt@openssl.org>	2018-04-19 10:38:57 +0100
committer	Matt Caswell <matt@openssl.org>	2018-04-20 11:40:06 +0100
commit	f55e2fa7b9d4692b31ad7ad72e71915e853de384 (patch)
tree	f2ccc1168f87a3d737d8f7ab47c89cbb46835501 /ssl
parent	544069175245b9826dc5f9ddf9e2f38f5b08e1c5 (diff)