try to cache the same instance of equal certificates

diff --git a/src/charon/credentials/sets/cert_cache.c b/src/charon/credentials/sets/cert_cache.c
index 188d266..e6c2cf9 100644 (file)
--- a/src/charon/credentials/sets/cert_cache.c
+++ b/src/charon/credentials/sets/cert_cache.c
@@ -118,11 +118,24 @@ static bool issued_by(private_cert_cache_t *this,
        enumerator = this->relations->create_enumerator(this->relations);
        while (enumerator->enumerate(enumerator, &current))
        {
-               if (current->subject == subject && current->issuer == issuer)
+               bool match = FALSE;
+       
+               /* check for equal certificates */
+               if (subject->equals(subject, current->subject))
+               {
+                       match = TRUE;
+                       subject = current->subject;
+               }
+               if (issuer->equals(issuer, current->issuer))
                {
-                       current->last_use = time(NULL);
-                       found = current;
-                       break;
+                       issuer = current->issuer;
+                       /* if both certs match, we already have a relation */
+                       if (match)
+                       {
+                               current->last_use = time(NULL);
+                               found = current;
+                               break;
+                       }
                }
        }
        enumerator->destroy(enumerator);