commit b265f5f19118c9d90818a430f2aee9b4ce39f1f7
author Hanno Becker <hanno.becker@arm.com> Thu Feb 07 13:28:57 2019 +0000
committer Hanno Becker <hanno.becker@arm.com> Wed Jun 19 10:25:02 2019 +0100
tree bf6f5122978daaf830e77ea327be5c78864dac49
parent 0833c1082b85d66a8915bb6ae1928ede474004e9

Use mbedtls_ssl_get_peer_cert() to query peer cert in cert_app

programs/x509/cert_app.c

diff --git a/programs/x509/cert_app.c b/programs/x509/cert_app.c
index 8eded34..fd52719 100644
--- a/programs/x509/cert_app.c
+++ b/programs/x509/cert_app.c
@@ -467,9 +467,12 @@
         /*
          * 5. Print the certificate
          */
+#if !defined(MBEDTLS_SSL_KEEP_PEER_CERTIFICATE)
+        mbedtls_printf( "  . Peer certificate information    ... skipped\n" );
+#else
         mbedtls_printf( "  . Peer certificate information    ...\n" );
         ret = mbedtls_x509_crt_info( (char *) buf, sizeof( buf ) - 1, "      ",
-                             ssl.session->peer_cert );
+                                     mbedtls_ssl_get_peer_cert( &ssl ) );
         if( ret == -1 )
         {
             mbedtls_printf( " failed\n  !  mbedtls_x509_crt_info returned %d\n\n", ret );
@@ -477,6 +480,7 @@
         }
 
         mbedtls_printf( "%s\n", buf );
+#endif /* MBEDTLS_SSL_KEEP_PEER_CERTIFICATE */
 
         mbedtls_ssl_close_notify( &ssl );