moved assignment of CERT_UNKNOWN

author Andreas Steffen <andreas.steffen@strongswan.org>

Fri, 25 May 2007 14:04:39 +0000 (14:04 -0000)

committer Andreas Steffen <andreas.steffen@strongswan.org>

Fri, 25 May 2007 14:04:39 +0000 (14:04 -0000)
author Andreas Steffen <andreas.steffen@strongswan.org>
Fri, 25 May 2007 14:04:39 +0000 (14:04 -0000)
committer Andreas Steffen <andreas.steffen@strongswan.org>
Fri, 25 May 2007 14:04:39 +0000 (14:04 -0000)
diff --git a/src/charon/config/credentials/local_credential_store.c b/src/charon/config/credentials/local_credential_store.c

index 1d7ee37..6964345 100644 (file)
--- a/src/charon/config/credentials/local_credential_store.c
+++ b/src/charon/config/credentials/local_credential_store.c
@@ -619,8 +619,6 @@ static bool verify(private_local_credential_store_t *this, x509_t *cert, bool *f
                         cert_status_t status;
                         certinfo_t *certinfo = certinfo_create(cert->get_serialNumber(cert));
  
-                       certinfo->set_status(certinfo, CERT_UNKNOWN);
-
                         if (pathlen == 0)
                         {
                                 /* add any crl and ocsp uris contained in the certificate under test */
@@ -637,6 +635,8 @@ static bool verify(private_local_credential_store_t *this, x509_t *cert, bool *f
                         /* if ocsp service is not available then fall back to crl */
                         if ((status == CERT_UNDEFINED) || (status == CERT_UNKNOWN && strict))
                         {
+
+                               certinfo->set_status(certinfo, CERT_UNKNOWN);
                                 status = issuer->verify_by_crl(issuer, certinfo, CRL_DIR);
                         }
author	Andreas Steffen <andreas.steffen@strongswan.org>
	Fri, 25 May 2007 14:04:39 +0000 (14:04 -0000)
committer	Andreas Steffen <andreas.steffen@strongswan.org>
	Fri, 25 May 2007 14:04:39 +0000 (14:04 -0000)