ims-volte-vowifi
/
strongswan
9
0
Fork 0
Code Pull Requests Releases Activity

Request a TLS client certificate even if no peer identity is given 

This allows a peer to perform client authentication if it wants, but skip
it if not.
This commit is contained in:
Martin Willi 2013-02-28 12:34:53 +01:00
parent 257c80cb5b
commit 807f2facd0
1 changed files with 1 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/libtls/tls_server.c
View File

@ -984,11 +984,7 @@ METHOD(tls_handshake_t, build, status_t,
}
/* otherwise fall through to next state */
case STATE_KEY_EXCHANGE_SENT:
if (this->peer)
{
return send_certificate_request(this, type, writer);
}
/* otherwise fall through to next state */
return send_certificate_request(this, type, writer);
case STATE_CERTREQ_SENT:
return send_hello_done(this, type, writer);
case STATE_CIPHERSPEC_CHANGED_OUT: