]> git.ipfire.org Git - thirdparty/strongswan.git/commit
projects / thirdparty / strongswan.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1a1dcf9) | patch
x509: Use issuer certificate's subjectKeyIdentifier if available
authorTobias Brunner <tobias@strongswan.org>
Mon, 6 Nov 2023 17:39:11 +0000 (18:39 +0100)
committerTobias Brunner <tobias@strongswan.org>
Mon, 13 Nov 2023 11:32:32 +0000 (12:32 +0100)
commita22147a1b2780e6ed9bcd75c80e31011560dfa43
treed5d5a063ac2e6fef91ff541c02153d50e2cbfa0etree
parent1a1dcf93a5ceb793a37cec8050e4079c003e3bb5commit | diff
x509: Use issuer certificate's subjectKeyIdentifier if available

Instead of just generating an authorityKeyIdentifier based on the
issuer's public key, this allows CA certificates to be issued by a
different tool that doesn't use a SHA-1 hash of the subjectPublicKey
for the subjectKeyIdentifier.

Closes strongswan/strongswan#1992
References strongswan/strongswan#1975
src/libstrongswan/plugins/x509/x509_cert.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.