feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

remove attempting to load a CRL with wolfSSL_CTX_load_verify_locations_ex

Browse Source
This commit is contained in:
JacobBarthelmeh
2025-01-23 16:20:23 -07:00
parent 8ca979f892
commit 1e3d3ddec7
1 changed files with 0 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
src/ssl_load.c
View File

@ -2803,27 +2803,8 @@ int wolfSSL_CTX_load_verify_locations_ex(WOLFSSL_CTX* ctx, const char* file,
} }
if (file != NULL) { if (file != NULL) {
#if defined(OPENSSL_EXTRA) && defined(HAVE_CRL)
/* handle CRL type being passed in */
WOLFSSL_CRL crl;
XMEMSET(&crl, 0, sizeof(WOLFSSL_CRL));
crl.cm = ctx->cm;
/* Load the PEM formatted CA file. */
ret = ProcessFile(ctx, file, WOLFSSL_FILETYPE_PEM, DETECT_CERT_TYPE,
NULL, 0, &crl, verify);
/* found a good CRL, add it to ctx->cm */
if (ret == 1 && crl.crlList != NULL) {
wolfSSL_X509_STORE_add_crl(wolfSSL_CTX_get_cert_store(ctx),
&crl);
}
#else
/* Load the PEM formatted CA file. No CRL support, only expecting
* CA's */
ret = ProcessFile(ctx, file, WOLFSSL_FILETYPE_PEM, CA_TYPE, NULL, 0, ret = ProcessFile(ctx, file, WOLFSSL_FILETYPE_PEM, CA_TYPE, NULL, 0,
NULL, verify); NULL, verify);
#endif
#ifndef NO_WOLFSSL_DIR #ifndef NO_WOLFSSL_DIR
if (ret == 1) { if (ret == 1) {
/* Include success in overall count. */ /* Include success in overall count. */