vici: Make attribute certificates untrusted again

author Tobias Brunner <tobias@strongswan.org>

Wed, 20 May 2020 13:25:51 +0000 (15:25 +0200)

committer Tobias Brunner <tobias@strongswan.org>

Mon, 20 Jul 2020 12:05:39 +0000 (14:05 +0200)
author Tobias Brunner <tobias@strongswan.org>
Wed, 20 May 2020 13:25:51 +0000 (15:25 +0200)
committer Tobias Brunner <tobias@strongswan.org>
Mon, 20 Jul 2020 12:05:39 +0000 (14:05 +0200)
diff --git a/src/libcharon/plugins/vici/vici_cred.c b/src/libcharon/plugins/vici/vici_cred.c

index 038338805b38f1d530519a2d5eb75c533fc135f3..365cce8faa62359726651fc7904366d2a4cb8e0b 100644 (file)
--- a/src/libcharon/plugins/vici/vici_cred.c
+++ b/src/libcharon/plugins/vici/vici_cred.c
@@ -135,7 +135,6 @@ CALLBACK(load_cert, vici_message_t*,
         x509_flag_t ext_flag, flag = X509_NONE;
         x509_t *x509;
         chunk_t data;
-       bool trusted = TRUE;
         char *str;
  
         str = message->get_str(message, NULL, "type");
@@ -198,7 +197,7 @@ CALLBACK(load_cert, vici_message_t*,
         }
         else
         {
-               this->creds->add_cert(this->creds, trusted, cert);
+               this->creds->add_cert(this->creds, type != CERT_X509_AC, cert);
         }
         return create_reply(NULL);
  }
author	Tobias Brunner <tobias@strongswan.org>
	Wed, 20 May 2020 13:25:51 +0000 (15:25 +0200)
committer	Tobias Brunner <tobias@strongswan.org>
	Mon, 20 Jul 2020 12:05:39 +0000 (14:05 +0200)