diff options
| author |   beck <beck@openbsd.org> | 2020-09-14 08:10:04 +0000 |
|---|---|---|
| committer | beck <beck@openbsd.org> | 2020-09-14 08:10:04 +0000 |
| commit | 31ccb3bbf5423326ad2bbcf8f2dee281a23d8082 (patch) | |
| tree | 131c8bc99e37a9af7e7ce8076eeb690195695850 | |
| parent | Correctly fix double free introduced on review. (diff) | |
| download | wireguard-openbsd-31ccb3bbf5423326ad2bbcf8f2dee281a23d8082.tar.xz wireguard-openbsd-31ccb3bbf5423326ad2bbcf8f2dee281a23d8082.zip | |
re-enable new x509 chain verifier as the default
ok tb@
| -rw-r--r-- | lib/libcrypto/x509/x509_vpm.c | 4 |
1 files changed, 1 insertions, 3 deletions
diff --git a/lib/libcrypto/x509/x509_vpm.c b/lib/libcrypto/x509/x509_vpm.c index e637528705f..448ee209843 100644 --- a/lib/libcrypto/x509/x509_vpm.c +++ b/lib/libcrypto/x509/x509_vpm.c @@ -1,4 +1,4 @@ -/* $OpenBSD: x509_vpm.c,v 1.21 2020/09/14 07:32:05 beck Exp $ */ +/* $OpenBSD: x509_vpm.c,v 1.22 2020/09/14 08:10:04 beck Exp $ */ /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL * project 2004. */ @@ -178,8 +178,6 @@ x509_verify_param_zero(X509_VERIFY_PARAM *param) /*param->inh_flags = X509_VP_FLAG_DEFAULT;*/ param->inh_flags = 0; param->flags = 0; - /* XXX remove to enable new verifier by default */ - param->flags |= X509_V_FLAG_LEGACY_VERIFY; param->depth = -1; if (param->policies) { sk_ASN1_OBJECT_pop_free(param->policies, ASN1_OBJECT_free); |