summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--src/usr.bin/nc/netcat.c5
-rw-r--r--src/usr.sbin/ocspcheck/http.c6
2 files changed, 4 insertions, 7 deletions
diff --git a/src/usr.bin/nc/netcat.c b/src/usr.bin/nc/netcat.c
index 9ce2b6bb7a..9c19049d59 100644
--- a/src/usr.bin/nc/netcat.c
+++ b/src/usr.bin/nc/netcat.c
@@ -1,4 +1,4 @@
1/* $OpenBSD: netcat.c,v 1.196 2018/10/26 07:19:26 dlg Exp $ */ 1/* $OpenBSD: netcat.c,v 1.197 2018/11/06 20:39:19 jsing Exp $ */
2/* 2/*
3 * Copyright (c) 2001 Eric Jackson <ericj@monkey.org> 3 * Copyright (c) 2001 Eric Jackson <ericj@monkey.org>
4 * Copyright (c) 2015 Bob Beck. All rights reserved. 4 * Copyright (c) 2015 Bob Beck. All rights reserved.
@@ -66,7 +66,6 @@
66#define POLL_NETIN 2 66#define POLL_NETIN 2
67#define POLL_STDOUT 3 67#define POLL_STDOUT 3
68#define BUFSIZE 16384 68#define BUFSIZE 16384
69#define DEFAULT_CA_FILE "/etc/ssl/cert.pem"
70 69
71#define TLS_NOVERIFY (1 << 1) 70#define TLS_NOVERIFY (1 << 1)
72#define TLS_NONAME (1 << 2) 71#define TLS_NONAME (1 << 2)
@@ -101,7 +100,7 @@ int usetls; /* use TLS */
101char *Cflag; /* Public cert file */ 100char *Cflag; /* Public cert file */
102char *Kflag; /* Private key file */ 101char *Kflag; /* Private key file */
103char *oflag; /* OCSP stapling file */ 102char *oflag; /* OCSP stapling file */
104char *Rflag = DEFAULT_CA_FILE; /* Root CA file */ 103char *Rflag = TLS_CA_CERT_FILE; /* Root CA file */
105int tls_cachanged; /* Using non-default CA file */ 104int tls_cachanged; /* Using non-default CA file */
106int TLSopt; /* TLS options */ 105int TLSopt; /* TLS options */
107char *tls_expectname; /* required name in peer cert */ 106char *tls_expectname; /* required name in peer cert */
diff --git a/src/usr.sbin/ocspcheck/http.c b/src/usr.sbin/ocspcheck/http.c
index 6830bacaec..ce479f27ef 100644
--- a/src/usr.sbin/ocspcheck/http.c
+++ b/src/usr.sbin/ocspcheck/http.c
@@ -1,4 +1,4 @@
1/* $Id: http.c,v 1.9 2017/03/26 18:41:02 deraadt Exp $ */ 1/* $Id: http.c,v 1.10 2018/11/06 20:41:11 jsing Exp $ */
2/* 2/*
3 * Copyright (c) 2016 Kristaps Dzonsons <kristaps@bsd.lv> 3 * Copyright (c) 2016 Kristaps Dzonsons <kristaps@bsd.lv>
4 * 4 *
@@ -35,8 +35,6 @@
35#include "http.h" 35#include "http.h"
36#include <tls.h> 36#include <tls.h>
37 37
38#define DEFAULT_CA_FILE "/etc/ssl/cert.pem"
39
40/* 38/*
41 * A buffer for transferring HTTP/S data. 39 * A buffer for transferring HTTP/S data.
42 */ 40 */
@@ -137,7 +135,7 @@ http_init()
137 goto err; 135 goto err;
138 } 136 }
139 137
140 if (tls_config_set_ca_file(tlscfg, DEFAULT_CA_FILE) == -1) { 138 if (tls_config_set_ca_file(tlscfg, TLS_CA_CERT_FILE) == -1) {
141 warn("tls_config_set_ca_file: %s", tls_config_error(tlscfg)); 139 warn("tls_config_set_ca_file: %s", tls_config_error(tlscfg));
142 goto err; 140 goto err;
143 } 141 }
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-10-25 12:52:10 +0000