libtls: Merge trustchain auth verification details done during TLS handhsake
authorMartin Willi <martin@revosec.ch>
Thu, 29 Jan 2015 10:12:28 +0000 (11:12 +0100)
committerMartin Willi <martin@revosec.ch>
Tue, 3 Mar 2015 13:08:00 +0000 (14:08 +0100)
src/libtls/tls_peer.c
src/libtls/tls_server.c

index a95b40f..1bee436 100644 (file)
@@ -324,6 +324,7 @@ static public_key_t *find_public_key(private_tls_peer_t *this)
                while (enumerator->enumerate(enumerator, &current, &auth))
                {
                        public = current->get_ref(current);
+                       this->server_auth->merge(this->server_auth, auth, FALSE);
                        break;
                }
                enumerator->destroy(enumerator);
index aeb5a71..a861a26 100644 (file)
@@ -551,6 +551,7 @@ static status_t process_cert_verify(private_tls_server_t *this,
                sig->destroy(sig);
                if (verified)
                {
+                       this->peer_auth->merge(this->peer_auth, auth, FALSE);
                        break;
                }
                DBG1(DBG_TLS, "signature verification failed, trying another key");