projects / openssl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: f93f6a3)
openssl rehash: use libcrypto variables for default dir
authorRichard Levitte <levitte@openssl.org>
Thu, 12 Apr 2018 11:30:57 +0000 (13:30 +0200)
committerRichard Levitte <levitte@openssl.org>
Thu, 12 Apr 2018 13:36:08 +0000 (15:36 +0200)
X509_get_default_cert_dir_env() returns the default environment
variable to check for certificate directories.
X509_get_default_cert_dir() returns the default configured certificate
directory.

Use these instead of hard coding our own values, and thereby be more
integrated with the rest of OpenSSL.

Reviewed-by: Andy Polyakov <appro@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/5937)

(cherry picked from commit 362ff3c39703633ac53ba9130c7acc02177bedc5)

apps/rehash.c patch | blob | history

diff --git a/apps/rehash.c b/apps/rehash.c
index 273ad749692b71edfea8f4f33700ed4f8b3d4922..19e24d9e8c1c3af68a76df03444c8bf1f2b21465 100644 (file)
--- a/apps/rehash.c
+++ b/apps/rehash.c
@@ -502,13 +502,14 @@ int rehash_main(int argc, char **argv)
     if (*argv) {
         while (*argv)
             errs += do_dir(*argv++, h);
-    } else if ((env = getenv("SSL_CERT_DIR")) != NULL) {
+    } else if ((env = getenv(X509_get_default_cert_dir_env())) != NULL) {
+        char lsc[2] = { LIST_SEPARATOR_CHAR, '\0' };
         m = OPENSSL_strdup(env);
-        for (e = strtok(m, ":"); e != NULL; e = strtok(NULL, ":"))
+        for (e = strtok(m, lsc); e != NULL; e = strtok(NULL, lsc))
             errs += do_dir(e, h);
         OPENSSL_free(m);
     } else {
-        errs += do_dir("/etc/ssl/certs", h);
+        errs += do_dir(X509_get_default_cert_dir(), h);
     }
 
  end:
Unnamed repository; edit this file 'description' to name the repository.