Implement CMS_NOCRL.
authorDr. Stephen Henson <steve@openssl.org>
Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)
committerDr. Stephen Henson <steve@openssl.org>
Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)
crypto/cms/cms_smime.c

index 48885ce..1e778e8 100644 (file)
@@ -336,7 +336,8 @@ int CMS_verify(CMS_ContentInfo *cms, STACK_OF(X509) *certs,
        if (!(flags & CMS_NO_SIGNER_CERT_VERIFY))
                {
                cms_certs = CMS_get1_certs(cms);
-               crls = CMS_get1_crls(cms);
+               if (!(flags & CMS_NOCRL))
+                       crls = CMS_get1_crls(cms);
                for (i = 0; i < sk_CMS_SignerInfo_num(sinfos); i++)
                        {
                        si = sk_CMS_SignerInfo_value(sinfos, i);