Remove SSL_set_verify_result. Follow-up from https://boringssl-review.googlesource.com/10485 that I forgot about. It's been removed from netty-tcnative. Change-Id: Ic4b97b30787962b78a69911a6e3cd28647546f59 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/49145 Reviewed-by: Adam Langley <agl@google.com>
diff --git a/include/openssl/ssl.h b/include/openssl/ssl.h index 82e1da8..43f5102 100644 --- a/include/openssl/ssl.h +++ b/include/openssl/ssl.h
@@ -4894,12 +4894,6 @@ OPENSSL_EXPORT int SSL_add_dir_cert_subjects_to_stack(STACK_OF(X509_NAME) *out, const char *dir); -// SSL_set_verify_result calls |abort| unless |result| is |X509_V_OK|. -// -// TODO(davidben): Remove this function once it has been removed from -// netty-tcnative. -OPENSSL_EXPORT void SSL_set_verify_result(SSL *ssl, long result); - // SSL_CTX_enable_tls_channel_id calls |SSL_CTX_set_tls_channel_id_enabled|. OPENSSL_EXPORT int SSL_CTX_enable_tls_channel_id(SSL_CTX *ctx);
diff --git a/ssl/ssl_x509.cc b/ssl/ssl_x509.cc index 8d340d3..680f253 100644 --- a/ssl/ssl_x509.cc +++ b/ssl/ssl_x509.cc
@@ -711,13 +711,6 @@ return X509_STORE_load_locations(ctx->cert_store, ca_file, ca_dir); } -void SSL_set_verify_result(SSL *ssl, long result) { - check_ssl_x509_method(ssl); - if (result != X509_V_OK) { - abort(); - } -} - long SSL_get_verify_result(const SSL *ssl) { check_ssl_x509_method(ssl); SSL_SESSION *session = SSL_get_session(ssl);