RSA and ECDSA key exchanges don't depend on CRL

2025-07-28 00:21:48 +03:00 · 2013-09-23 12:20:02 +02:00
parent dfe0ea9f02
commit cbf3ef3861
8 changed files with 18 additions and 28 deletions
--- a/include/polarssl/ssl.h
+++ b/include/polarssl/ssl.h
@ -58,9 +58,7 @@
 #include "x509_crt.h"
 #endif

-#if defined(POLARSSL_X509_CRL_PARSE_C)
 #include "x509_crl.h"
-#endif

 #if defined(POLARSSL_DHM_C)
 #include "dhm.h"
@ -659,9 +657,7 @@ struct _ssl_context
    x509_crt *ca_chain;                 /*!<  own trusted CA chain    */
    const char *peer_cn;                /*!<  expected peer CN        */
 #endif /* POLARSSL_X509_CRT_PARSE_C */
-#if defined(POLARSSL_X509_CRL_PARSE_C)
    x509_crl *ca_crl;                   /*!<  trusted CA CRLs         */
-#endif /* POLARSSL_X509_CRL_PARSE_C */

 #if defined(POLARSSL_SSL_SESSION_TICKETS)
    /*
@ -956,7 +952,6 @@ void ssl_set_ciphersuites_for_version( ssl_context *ssl,
                                       int major, int minor );

 #if defined(POLARSSL_X509_CRT_PARSE_C)
-#if defined(POLARSSL_X509_CRL_PARSE_C)
 /**
 * \brief          Set the data required to verify peer certificate
 *
@ -967,7 +962,6 @@ void ssl_set_ciphersuites_for_version( ssl_context *ssl,
 */
 void ssl_set_ca_chain( ssl_context *ssl, x509_crt *ca_chain,
                       x509_crl *ca_crl, const char *peer_cn );
-#endif /* POLARSSL_X509_CRL_PARSE_C */

 /**
 * \brief          Set own certificate chain and private key