Implement CMS_NOCRL.

author Dr. Stephen Henson <steve@openssl.org>

Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)
diff --git a/crypto/cms/cms_smime.c b/crypto/cms/cms_smime.c

index 48885ce67594300e665d8ff859f1472dbd95afba..1e778e866d64f6f7490c842e3076942706b9bc60 100644 (file)
--- a/crypto/cms/cms_smime.c
+++ b/crypto/cms/cms_smime.c
@@ -336,7 +336,8 @@ int CMS_verify(CMS_ContentInfo *cms, STACK_OF(X509) *certs,
         if (!(flags & CMS_NO_SIGNER_CERT_VERIFY))
                 {
                 cms_certs = CMS_get1_certs(cms);
-               crls = CMS_get1_crls(cms);
+               if (!(flags & CMS_NOCRL))
+                       crls = CMS_get1_crls(cms);
                 for (i = 0; i < sk_CMS_SignerInfo_num(sinfos); i++)
                         {
                         si = sk_CMS_SignerInfo_value(sinfos, i);
author	Dr. Stephen Henson <steve@openssl.org>
	Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)