diff --git a/src/ssl/linux/getcrl.c b/src/ssl/linux/getcrl.c
index eba0ebe..cd4fd69 100644
--- a/src/ssl/linux/getcrl.c
+++ b/src/ssl/linux/getcrl.c
@@ -45,7 +45,7 @@ static inline void lib3270_autoptr_cleanup_FILE(FILE **file)
 		fclose(*file);
 }
 
-LIB3270_INTERNAL X509_CRL * lib3270_download_crl(H3270 *hSession, SSL_ERROR_MESSAGE * message, const char *consturl)
+X509_CRL * lib3270_download_crl(H3270 *hSession, SSL_ERROR_MESSAGE * message, const char *consturl)
 {
 	X509_CRL * x509_crl = NULL;
 
diff --git a/src/ssl/negotiate.c b/src/ssl/negotiate.c
index 6a7656d..8bed9b3 100644
--- a/src/ssl/negotiate.c
+++ b/src/ssl/negotiate.c
@@ -282,12 +282,10 @@ static int background_ssl_negotiation(H3270 *hSession, void *message)
 		trace_ssl(hSession,"Unexpected or invalid TLS/SSL verify result %d\n",rv);
 		set_ssl_state(hSession,LIB3270_SSL_UNSECURE);
 
-#ifdef SSL_ENABLE_CRL_EXPIRATION_CHECK
 		((SSL_ERROR_MESSAGE *) message)->title = _( "Security error" );
 		((SSL_ERROR_MESSAGE *) message)->text = _( "Can't verify." );
 		((SSL_ERROR_MESSAGE *) message)->description = _( "Unexpected or invalid TLS/SSL verify result" );
 		return EACCES;
-#endif // SSL_ENABLE_CRL_EXPIRATION_CHECK
 
 	}
 	else
diff --git a/src/ssl/windows/getcrl.c b/src/ssl/windows/getcrl.c
index d9a0907..f280a86 100644
--- a/src/ssl/windows/getcrl.c
+++ b/src/ssl/windows/getcrl.c
@@ -39,10 +39,6 @@
 
 #include "private.h"
 
-#define CRL_DATA_LENGTH 2048
-
-// #include <winldap.h>
-
 /*--[ Implement ]------------------------------------------------------------------------------------*/
 
 static inline void lib3270_autoptr_cleanup_FILE(FILE **file)
@@ -51,7 +47,7 @@ static inline void lib3270_autoptr_cleanup_FILE(FILE **file)
 		fclose(*file);
 }
 
-LIB3270_INTERNAL X509_CRL * lib3270_get_crl(H3270 *hSession, SSL_ERROR_MESSAGE * message, const char *consturl)
+X509_CRL * lib3270_download_crl(H3270 *hSession, SSL_ERROR_MESSAGE * message, const char *consturl)
 {
 	X509_CRL * x509_crl = NULL;
 
--
libgit2 0.21.2