diff options
author | Tobias Brunner <tobias@strongswan.org> | 2014-04-09 15:28:54 +0200 |
---|---|---|
committer | Tobias Brunner <tobias@strongswan.org> | 2014-04-09 16:06:18 +0200 |
commit | f7d04ba6c462911d16948a9229f2fa8192c7d20c (patch) | |
tree | 58f22a8489b27a26a51d17901d94653694d35465 /src | |
parent | 3f3680ec3fcbb23f27685b0283117182a7b340a7 (diff) | |
download | strongswan-f7d04ba6c462911d16948a9229f2fa8192c7d20c.tar.bz2 strongswan-f7d04ba6c462911d16948a9229f2fa8192c7d20c.tar.xz |
x509: Don't include authKeyIdentifier in self-signed certificates
As the comment indicates this was the intention in
d7be2906433a7dcfefc1fd732587865688dbfe1b all along.
Diffstat (limited to 'src')
-rw-r--r-- | src/libstrongswan/plugins/x509/x509_cert.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/libstrongswan/plugins/x509/x509_cert.c b/src/libstrongswan/plugins/x509/x509_cert.c index cdffd348b..9fd869e77 100644 --- a/src/libstrongswan/plugins/x509/x509_cert.c +++ b/src/libstrongswan/plugins/x509/x509_cert.c @@ -2174,7 +2174,7 @@ static bool generate(private_x509_cert_t *cert, certificate_t *sign_cert, } /* add the keyid authKeyIdentifier for non self-signed certificates */ - if (sign_key) + if (sign_cert) { chunk_t keyid; |