ssl get rid of build_cert_chain

It's not supported on major distro SSL (Fedora is 1.1) and
libressl (on 2.x) doesn't have it either.

https://github.com/warmcat/libwebsockets/issues/435

Signed-off-by: Andy Green <andy.green@linaro.org>

diff --git a/lib/ssl.c b/lib/ssl.c
index ac3ad2e..88906e7 100644 (file)
--- a/lib/ssl.c
+++ b/lib/ssl.c
@@ -339,13 +339,6 @@ lws_context_init_server_ssl(struct lws_context_creation_info *info,
                if (lws_context_ssl_init_ecdh(context))
                        return 1;
 
-#if OPENSSL_VERSION_NUMBER >= 0x10200000L
-               n = SSL_CTX_build_cert_chain((SSL_CTX *)user,
-                                            SSL_BUILD_CHAIN_FLAG_CHECK |
-                                            SSL_BUILD_CHAIN_FLAG_IGNORE_ERROR);
-               lwsl_notice("%s: build cert chain %d", __func__, n);
-#endif
-
                /*
                 * SSL is happy and has a cert it's content with
                 * If we're supporting HTTP2, initialize that