From 1e3d3ddec70046b1b7df2cd9775687f83895e7a7 Mon Sep 17 00:00:00 2001
From: JacobBarthelmeh <jacob@wolfssl.com>
Date: Thu, 23 Jan 2025 16:20:23 -0700
Subject: [PATCH] remove attempting to load a CRL with
 wolfSSL_CTX_load_verify_locations_ex

---
 src/ssl_load.c | 19 -------------------
 1 file changed, 19 deletions(-)

diff --git a/src/ssl_load.c b/src/ssl_load.c
index ca94c1472..9835b71f5 100644
--- a/src/ssl_load.c
+++ b/src/ssl_load.c
@@ -2803,27 +2803,8 @@ int wolfSSL_CTX_load_verify_locations_ex(WOLFSSL_CTX* ctx, const char* file,
         }
 
         if (file != NULL) {
-        #if defined(OPENSSL_EXTRA) && defined(HAVE_CRL)
-            /* handle CRL type being passed in */
-            WOLFSSL_CRL crl;
-
-            XMEMSET(&crl, 0, sizeof(WOLFSSL_CRL));
-            crl.cm = ctx->cm;
-
-            /* Load the PEM formatted CA file. */
-            ret = ProcessFile(ctx, file, WOLFSSL_FILETYPE_PEM, DETECT_CERT_TYPE,
-                NULL, 0, &crl, verify);
-            /* found a good CRL, add it to ctx->cm */
-            if (ret == 1 && crl.crlList != NULL) {
-                wolfSSL_X509_STORE_add_crl(wolfSSL_CTX_get_cert_store(ctx),
-                    &crl);
-            }
-        #else
-            /* Load the PEM formatted CA file. No CRL support, only expecting
-             * CA's */
             ret = ProcessFile(ctx, file, WOLFSSL_FILETYPE_PEM, CA_TYPE, NULL, 0,
                 NULL, verify);
-        #endif
     #ifndef NO_WOLFSSL_DIR
             if (ret == 1) {
                 /* Include success in overall count. */