[openssl-commits] [openssl] master update
Richard Levitte
levitte at openssl.org
Thu Apr 12 13:35:04 UTC 2018
The branch master has been updated
via 362ff3c39703633ac53ba9130c7acc02177bedc5 (commit)
via adaf3cfad2319fe5c0d6fe179c726cc85eebf2d3 (commit)
from 18d1588268f0fbec249d3386113df4452234573d (commit)
- Log -----------------------------------------------------------------
commit 362ff3c39703633ac53ba9130c7acc02177bedc5
Author: Richard Levitte <levitte at openssl.org>
Date: Thu Apr 12 13:30:57 2018 +0200
openssl rehash: use libcrypto variables for default dir
X509_get_default_cert_dir_env() returns the default environment
variable to check for certificate directories.
X509_get_default_cert_dir() returns the default configured certificate
directory.
Use these instead of hard coding our own values, and thereby be more
integrated with the rest of OpenSSL.
Reviewed-by: Andy Polyakov <appro at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/5937)
commit adaf3cfad2319fe5c0d6fe179c726cc85eebf2d3
Author: Richard Levitte <levitte at openssl.org>
Date: Thu Apr 12 13:30:21 2018 +0200
openssl rehash: document -compat
Fixes #5902
Reviewed-by: Andy Polyakov <appro at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/5937)
-----------------------------------------------------------------------
Summary of changes:
apps/rehash.c | 7 ++++---
doc/man1/rehash.pod | 6 ++++++
2 files changed, 10 insertions(+), 3 deletions(-)
diff --git a/apps/rehash.c b/apps/rehash.c
index 6f2b5da..2b6167f 100644
--- a/apps/rehash.c
+++ b/apps/rehash.c
@@ -479,13 +479,14 @@ int rehash_main(int argc, char **argv)
if (*argv != NULL) {
while (*argv != NULL)
errs += do_dir(*argv++, h);
- } else if ((env = getenv("SSL_CERT_DIR")) != NULL) {
+ } else if ((env = getenv(X509_get_default_cert_dir_env())) != NULL) {
+ char lsc[2] = { LIST_SEPARATOR_CHAR, '\0' };
m = OPENSSL_strdup(env);
- for (e = strtok(m, ":"); e != NULL; e = strtok(NULL, ":"))
+ for (e = strtok(m, lsc); e != NULL; e = strtok(NULL, lsc))
errs += do_dir(e, h);
OPENSSL_free(m);
} else {
- errs += do_dir("/etc/ssl/certs", h);
+ errs += do_dir(X509_get_default_cert_dir(), h);
}
end:
diff --git a/doc/man1/rehash.pod b/doc/man1/rehash.pod
index 79268d4..0a192e9 100644
--- a/doc/man1/rehash.pod
+++ b/doc/man1/rehash.pod
@@ -99,6 +99,12 @@ Note that current versions will not use the old style.
Do not remove existing links.
This is needed when keeping new and old-style links in the same directory.
+=item B<-compat>
+
+Generate links for both old-style (MD5) and new-style (SHA1) hashing.
+This allows releases before 1.0.0 to use these links along-side newer
+releases.
+
=item B<-v>
Print messages about old links removed and new links created.
More information about the openssl-commits
mailing list