From: Maximilian Fillinger
If the CRL file cannot be read during initialization, a NULL pointer is
passed to the mbedtls_ssl_config in key_state_ssl_init(). Then, if the
CRL file is successfully read later, the config won't have a pointer to
it. Therefore, the CRL won't actually take effect.
Thi
> }
>
> void
> +make_empty_crl(struct tls_root_ctx *ctx)
> +{
> +if (ctx->crl == NULL)
> +{
> +ALLOC_OBJ_CLEAR(ctx->crl, mbedtls_x509_crl);
> +}
> +else
> +{
> +mbedtls_x509_crl_free(ctx->crl);
> +}
> +}
> +
This function is confsung me. This needs at
> > }
> >
> > void
> > +make_empty_crl(struct tls_root_ctx *ctx)
> > +{
> > +if (ctx->crl == NULL)
> > +{
> > +ALLOC_OBJ_CLEAR(ctx->crl, mbedtls_x509_crl);
> > +}
> > +else
> > +{
> > +mbedtls_x509_crl_free(ctx->crl);
> > +}
> > +}
> > +
>
> This function