aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMartin Willi <martin@revosec.ch>2010-08-31 18:02:46 +0200
committerMartin Willi <martin@revosec.ch>2010-08-31 18:10:23 +0200
commit33b1a2567f7dbc287ffd1c978c0c34bf86d5b719 (patch)
tree48bfc48efcad059a4869312a0ac1bf615d593371
parentc8114799861902948a1d013a252e6ed6b199c921 (diff)
downloadstrongswan-33b1a2567f7dbc287ffd1c978c0c34bf86d5b719.tar.bz2
strongswan-33b1a2567f7dbc287ffd1c978c0c34bf86d5b719.tar.xz
Load a left/rightcert2 for EAP-TLS even if no left/rightauth2 is defined
Diffstat
-rw-r--r--src/libcharon/plugins/stroke/stroke_config.c11
1 files changed, 10 insertions, 1 deletions
diff --git a/src/libcharon/plugins/stroke/stroke_config.c b/src/libcharon/plugins/stroke/stroke_config.c
index b35bbbfe1..86b958b0d 100644
--- a/src/libcharon/plugins/stroke/stroke_config.c
+++ b/src/libcharon/plugins/stroke/stroke_config.c
@@ -362,7 +362,16 @@ static auth_cfg_t *build_auth_cfg(private_stroke_config_t *this,
}
}
else
- { /* no second authentication round, fine */
+ { /* no second authentication round, fine. But load certificates
+ * for other purposes (EAP-TLS) */
+ if (cert)
+ {
+ certificate = this->cred->load_peer(this->cred, cert);
+ if (certificate)
+ {
+ certificate->destroy(certificate);
+ }
+ }
return NULL;
}
}
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-24 16:46:16 +0000