Doing this for the self-signed check also (i.e. if this and issuer are
the same) is particularly useful if the issuer uses a different key type.
Otherwise, we'd try to verify the signature with an incompatible key
that would result in a log message.
Fixes #3357.
{
return FALSE;
}
- if (!this->issuer->equals(this->issuer, issuer->get_subject(issuer)))
- {
- return FALSE;
- }
+ }
+ if (!this->issuer->equals(this->issuer, issuer->get_subject(issuer)))
+ {
+ return FALSE;
}
key = issuer->get_public_key(issuer);
if (!key)