CVSROOT: /cvs
Module name: src
Changes by: t...@cvs.openbsd.org 2023/04/14 09:27:13
Modified files:
usr.bin/openssl: apps.c apps.h cms.c s_cb.c smime.c verify.c
Log message:
Drop policy printing from openssl
Nothing really uses the policy tree. It's desgined with built-in DoS
capabilities directly from the RFC. It will be removed from the attack
surface and replaced with something equivalent that doesn't grow
exponentially with the depth.
This removes the only reason the policy tree itself ever leaked out of
the library.
ok jsing
