From aba5b76ce170deb486f7a1eb36282b3458545fba Mon Sep 17 00:00:00 2001
From: Martin Willi <martin@revosec.ch>
Date: Thu, 29 Jan 2015 11:12:28 +0100
Subject: [PATCH] libtls: Merge trustchain auth verification details done
 during TLS handhsake

---
 src/libtls/tls_peer.c   | 1 +
 src/libtls/tls_server.c | 1 +
 2 files changed, 2 insertions(+)

diff --git a/src/libtls/tls_peer.c b/src/libtls/tls_peer.c
index a95b40f55f..1bee436c4a 100644
--- a/src/libtls/tls_peer.c
+++ b/src/libtls/tls_peer.c
@@ -324,6 +324,7 @@ static public_key_t *find_public_key(private_tls_peer_t *this)
 		while (enumerator->enumerate(enumerator, &current, &auth))
 		{
 			public = current->get_ref(current);
+			this->server_auth->merge(this->server_auth, auth, FALSE);
 			break;
 		}
 		enumerator->destroy(enumerator);
diff --git a/src/libtls/tls_server.c b/src/libtls/tls_server.c
index aeb5a714f9..a861a267a1 100644
--- a/src/libtls/tls_server.c
+++ b/src/libtls/tls_server.c
@@ -551,6 +551,7 @@ static status_t process_cert_verify(private_tls_server_t *this,
 		sig->destroy(sig);
 		if (verified)
 		{
+			this->peer_auth->merge(this->peer_auth, auth, FALSE);
 			break;
 		}
 		DBG1(DBG_TLS, "signature verification failed, trying another key");
-- 
2.47.3