#ifdef guard

wolfcrypt/src/asn.c

@@ -7216,8 +7216,11 @@ static int DecodeBasicCaConstraint(const byte* input, int sz, DecodedCert* cert)
      * left empty. So, if the length is 0, just return. */
 
     /* For OpenSSL compatibility, if ASN_INTEGER do nothing */
+    #ifdef WOLFSSL_X509_BASICCONS_INT
     if (input[idx] == ASN_INTEGER)
         return 0;
+    #endif
+    
     ret = GetBoolean(input, &idx, sz);
     if (ret < 0) {
         WOLFSSL_MSG("\tfail: constraint not valid BOOLEAN");