From b51ac45c484b4fb08153fe2075b8899d48d36862 Mon Sep 17 00:00:00 2001
From: Andreas Steffen <andreas.steffen@strongswan.org>
Date: Sun, 15 Aug 2010 13:02:57 +0200
Subject: optional certificate-based peer authentication on TLS server side

---
 src/libcharon/plugins/eap_tls/eap_tls.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'src/libcharon/plugins/eap_tls/eap_tls.c')

diff --git a/src/libcharon/plugins/eap_tls/eap_tls.c b/src/libcharon/plugins/eap_tls/eap_tls.c
index e4f12d7f6..849f03875 100644
--- a/src/libcharon/plugins/eap_tls/eap_tls.c
+++ b/src/libcharon/plugins/eap_tls/eap_tls.c
@@ -433,8 +433,8 @@ static eap_tls_t *eap_tls_create(identification_t *server,
 		.is_server = is_server,
 	);
 	/* MSK PRF ASCII constant label according to EAP-TLS RFC 5216 */
-	this->tls = tls_create(is_server, server, peer, "client EAP encryption",
-						   NULL);
+	this->tls = tls_create(is_server, server, peer, TRUE,
+						   "client EAP encryption", NULL);
 
 	return &this->public;
 }
-- 
cgit v1.2.3