Don't use SSL_CTX_set_default_verify_paths when not USE_SSL_VERIFY

2021-02-22 22:45:51 +09:00
parent 301835c267
commit b6d29622b8
1 changed files with 1 additions and 1 deletions
--- a/url.c
+++ b/url.c
@@ -448,8 +448,8 @@ openSSLHandle(int sock, char *hostname, char **p_cert)
 	    && (!ssl_ca_path || *ssl_ca_path == '\0')
 	    || !ssl_verify_server
 	    || !SSL_CTX_load_verify_locations(ssl_ctx, ssl_ca_file, ssl_ca_path))
-#endif				/* defined(USE_SSL_VERIFY) */
 	    SSL_CTX_set_default_verify_paths(ssl_ctx);
+#endif				/* defined(USE_SSL_VERIFY) */
 #endif				/* SSLEAY_VERSION_NUMBER >= 0x0800 */
    }
    handle = SSL_new(ssl_ctx);