ike-cert-post: Encode intermediate CA certificates as hash-and-URL if possible
authorTobias Brunner <tobias@strongswan.org>
Thu, 31 Oct 2019 08:51:42 +0000 (09:51 +0100)
committerTobias Brunner <tobias@strongswan.org>
Tue, 26 Nov 2019 10:12:26 +0000 (11:12 +0100)
src/libcharon/sa/ikev2/tasks/ike_cert_post.c

index 2655003..c516447 100644 (file)
@@ -158,7 +158,7 @@ static void add_im_certs(private_ike_cert_post_t *this, auth_cfg_t *auth,
        {
                if (type == AUTH_RULE_IM_CERT)
                {
-                       payload = cert_payload_create_from_cert(PLV2_CERTIFICATE, cert);
+                       payload = build_cert_payload(this, cert);
                        if (payload)
                        {
                                DBG1(DBG_IKE, "sending issuer cert \"%Y\"",