From: Tobias Brunner <tobias@strongswan.org>
Date: Thu, 31 Oct 2019 08:51:42 +0000 (+0100)
Subject: ike-cert-post: Encode intermediate CA certificates as hash-and-URL if possible
X-Git-Tag: 5.8.2dr2~1^2~3
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=d384f40f20eccf741d23f67bdc9b593add9d2b55;p=thirdparty%2Fstrongswan.git

ike-cert-post: Encode intermediate CA certificates as hash-and-URL if possible
---

diff --git a/src/libcharon/sa/ikev2/tasks/ike_cert_post.c b/src/libcharon/sa/ikev2/tasks/ike_cert_post.c
index 2655003332..c5164476af 100644
--- a/src/libcharon/sa/ikev2/tasks/ike_cert_post.c
+++ b/src/libcharon/sa/ikev2/tasks/ike_cert_post.c
@@ -158,7 +158,7 @@ static void add_im_certs(private_ike_cert_post_t *this, auth_cfg_t *auth,
 	{
 		if (type == AUTH_RULE_IM_CERT)
 		{
-			payload = cert_payload_create_from_cert(PLV2_CERTIFICATE, cert);
+			payload = build_cert_payload(this, cert);
 			if (payload)
 			{
 				DBG1(DBG_IKE, "sending issuer cert \"%Y\"",