Remove useless option --no-safe-ssl

Signed-off-by: Richard T Bonhomme <[email protected]>
TinCanTech · Sep 20, 2023 · 2720fc1 · 2720fc1
1 parent f68e5d4
commit 2720fc1
Showing 1 changed file with 0 additions and 13 deletions.
diff --git a/easyrsa3/easyrsa b/easyrsa3/easyrsa
@@ -554,7 +554,6 @@ General options:
                   (Default config file is in the EasyRSA PKI directory)
 --force-safe-ssl: Always generate a safe SSL config file
                   (Default: Generate Safe SSL config once per instance)
---no-safe-ssl   : OpenSSL Only: Do not use a safe SSL config file
 
 --tmp-dir=DIR   : Declare the temporary directory
                   (Default temporary directory is the EasyRSA PKI directory)
@@ -1012,10 +1011,6 @@ expand_ssl_config() {
 	then
 		# Always run
 		verbose "expand_ssl_config: FORCED"
-	elif [ "$EASYRSA_NO_SAFE_SSL" ]; then
-		# Never run
-		verbose "expand_ssl_config: DISABLED"
-		return
 	elif [ "$working_safe_ssl_conf" ]; then
 		# Has run once
 		verbose "expand_ssl_config: BYPASSED"
@@ -1185,10 +1180,6 @@ verify_ssl_lib() {
 	;;
 	LibreSSL)
 		ssl_lib=libressl
-		if [ "$EASYRSA_NO_SAFE_SSL" ]; then
-			user_error "\
-Cannot use '--no-safe-ssl' with LibreSSL"
-		fi
 	;;
 	*)
 		error_msg="$("$EASYRSA_OPENSSL" version 2>&1)"
@@ -7207,10 +7198,6 @@ while :; do
 		empty_ok=1
 		export EASYRSA_FORCE_SAFE_SSL=1
 		;;
-	--no-safe-ssl)
-		empty_ok=1
-		export EASYRSA_NO_SAFE_SSL=1
-		;;
 	--nopass|--no-pass)
 		empty_ok=1
 		export EASYRSA_NO_PASS=1