mirror of
https://github.com/espressif/esp-idf.git
synced 2024-10-05 20:47:46 -04:00
fix(mbedtls): remove deprecated MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
This config has been removed in the upstream mbedTLS starting 3.0 release. Please see mbedTLS changelog for more details.
This commit is contained in:
parent
bf59005fe1
commit
82d2cdcf5a
@ -1052,16 +1052,4 @@ menu "mbedTLS"
|
||||
then the ESP will be unable to process keys greater
|
||||
than SOC_RSA_MAX_BIT_LEN.
|
||||
|
||||
menuconfig MBEDTLS_SECURITY_RISKS
|
||||
bool "Show configurations with potential security risks"
|
||||
default n
|
||||
|
||||
config MBEDTLS_ALLOW_UNSUPPORTED_CRITICAL_EXT
|
||||
bool "X.509 CRT parsing with unsupported critical extensions"
|
||||
depends on MBEDTLS_SECURITY_RISKS
|
||||
default n
|
||||
help
|
||||
Allow the X.509 certificate parser to load certificates
|
||||
with unsupported critical extensions
|
||||
|
||||
endmenu # mbedTLS
|
||||
|
@ -2738,25 +2738,6 @@
|
||||
*/
|
||||
#define MBEDTLS_X509_CRT_WRITE_C
|
||||
|
||||
/**
|
||||
* \def MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
|
||||
*
|
||||
* Alow the X509 parser to not break-off when parsing an X509 certificate
|
||||
* and encountering an unknown critical extension.
|
||||
*
|
||||
* Module: library/x509_crt.c
|
||||
*
|
||||
* Requires: MBEDTLS_X509_CRT_PARSE_C
|
||||
*
|
||||
* This module is supports loading of certificates with extensions that
|
||||
* may not be supported by mbedtls.
|
||||
*/
|
||||
#ifdef CONFIG_MBEDTLS_ALLOW_UNSUPPORTED_CRITICAL_EXT
|
||||
#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
|
||||
#else
|
||||
#undef MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
|
||||
#endif
|
||||
|
||||
/**
|
||||
* \def MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
|
||||
*
|
||||
|
Loading…
Reference in New Issue
Block a user