greenbone · mattmundell · Oct 30, 2019 · Oct 25, 2019 · Oct 25, 2019 · Oct 29, 2019
diff --git a/src/manage_sql_tls_certificates.c b/src/manage_sql_tls_certificates.c
@@ -192,12 +192,41 @@ gchar *
 tls_certificate_extra_where (const char *filter)
 {
   GString *ret;
-  gchar *report_id;
+  gchar *host_id, *report_id;
 
   ret = g_string_new ("");
 
+  host_id = filter_term_value (filter, "host_id");
   report_id = filter_term_value (filter, "report_id");
 
+  if (host_id)
+    {
+      gchar *quoted_id;
+      quoted_id = sql_quote (host_id);
+      g_string_append_printf
+         (ret,
+          "AND (tls_certificates.id IN"
+          " (WITH host_idents AS"
+          "   (SELECT source_id AS ident_report_id, value AS ident_ip"
+          "      FROM host_identifiers"
+          "     WHERE host = (SELECT id FROM hosts"
+          "                   WHERE uuid='%s')"
+          "       AND name = 'ip')"
+          "  SELECT tls_certificate"
+          "    FROM tls_certificate_sources AS sources"
+          "    JOIN tls_certificate_origins AS origins"
+          "      ON origins.id = sources.origin"
+          "    JOIN tls_certificate_locations AS locations"
+          "      ON locations.id = sources.location"
+          "    WHERE origins.origin_id"
+          "          IN (SELECT ident_report_id FROM host_idents)"
+          "      AND locations.host_ip"
+          "          IN (SELECT ident_ip FROM host_idents)"
+          " ))",
+          quoted_id);
+      g_free (quoted_id);
+    }
+
   if (report_id)
     {
       gchar *quoted_id;
@@ -214,6 +243,7 @@ tls_certificate_extra_where (const char *filter)
       g_free (quoted_id);
     }
 
+  g_free (host_id);
   g_free (report_id);
 
   return g_string_free (ret, FALSE);