From bf5f67aa09b23442600383327a64ad6be264dcf0 Mon Sep 17 00:00:00 2001
From: Joel Klinghed <the_jk@yahoo.com>
Date: Thu, 6 Apr 2017 01:04:15 +0200
Subject: fixup! Add certificate support for subject alt name for mbedtls

---
 src/ssl_mbedtls.cc | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/src/ssl_mbedtls.cc b/src/ssl_mbedtls.cc
index 876b076..1b3e350 100644
--- a/src/ssl_mbedtls.cc
+++ b/src/ssl_mbedtls.cc
@@ -603,9 +603,11 @@ bool SSLCert::generate(Logger* logger, SSLEntropy* entropy,
     goto error;
   }
 
-  if (mbedtls_x509write_crt_set_subject_alt_name(&crt, host.c_str())) {
-    logerr(logger, ret, "Unable to set subject alt name");
-    goto error;
+  if (issuer_cert) {
+    if (mbedtls_x509write_crt_set_subject_alt_name(&crt, host.c_str())) {
+      logerr(logger, ret, "Unable to set subject alt name");
+      goto error;
+    }
   }
 
   if (mbedtls_mpi_fill_random(
-- 
cgit v1.2.3-70-g09d2