From 89edc020d5f309f62f669c0cf664a63bfca95f16 Mon Sep 17 00:00:00 2001
From: Jarrod Johnson <jjohnson2@lenovo.com>
Date: Tue, 1 Dec 2015 09:11:08 -0500
Subject: [PATCH] Use correct exception params on manual policy

In the rework of the exception to include full certificate
in body, a call was missed in the verify_cert() routine.
---
 confluent_server/confluent/util.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/confluent_server/confluent/util.py b/confluent_server/confluent/util.py
index ab2999a5..99d140c1 100644
--- a/confluent_server/confluent/util.py
+++ b/confluent_server/confluent/util.py
@@ -81,7 +81,8 @@ class TLSCertVerifier(object):
                 # manual policy means always raise unless a match is set
                 # manually
                 raise cexc.PubkeyInvalid('New certificate detected',
-                                         fingerprint, self.fieldname)
+                                         certificate, fingerprint,
+                                         self.fieldname)
             # since the policy is not manual, go ahead and add new key
             # after logging to audit log
             auditlog = log.Logger('audit')