abc/GmSSL
1
0
Fork 0
mirror of https://github.com/guanzhi/GmSSL.git synced 2026-05-25 01:36:32 +08:00
Code Issues Packages Projects Releases Wiki Activity

Fix SM2 certificate verification

Browse Source 
Set the default ec_scheme to secg_scheme, add sm3 ZID to X.509
verification.
This commit is contained in:
Zhi Guan
2018-01-11 23:37:28 +08:00
parent fd8da09d28
commit 755814db52
7 changed files with 5368 additions and 5357 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
ssl/methods.c
View File

@@ -213,7 +213,6 @@ IMPLEMENT_dtls1_meth_func(DTLS_ANY_VERSION, 0, 0,
* GMTLS methods
*/
#ifndef OPENSSL_NO_GMTLS
#ifndef OPENSSL_NO_GMTLS_METHOD
IMPLEMENT_gmtls_meth_func(0, SSL_OP_NO_GMTLS,
gmtls_method,
ossl_statem_accept,
@@ -229,7 +228,6 @@ IMPLEMENT_gmtls_meth_func(0, SSL_OP_NO_GMTLS,
ssl_undefined_function,
ossl_statem_connect, GMTLS_enc_data)
#endif
#endif
#if OPENSSL_API_COMPAT < 0x10100000L
# ifndef OPENSSL_NO_TLS1_2_METHOD
@@ -335,7 +333,6 @@ const SSL_METHOD *DTLSv1_client_method(void)
# endif
# ifndef OPENSSL_NO_GMTLS
# ifndef OPENSSL_NO_GMTLS_METHOD
const SSL_METHOD *GMTLS_method(void)
{
return gmtls_method();
@@ -351,6 +348,5 @@ const SSL_METHOD *GMTLS_client_method(void)
return gmtls_client_method();
}
# endif
# endif
#endif