mirror of
https://git.freebsd.org/ports.git
synced 2025-05-17 17:43:11 -04:00
e11bc47263
Fixes: bde578cbfc
PR: 274322
MFH: 2023Q4
Approved by: fluffy
Differential Revision: https://reviews.freebsd.org/D42123
16 lines
598 B
C
16 lines
598 B
C
--- openbsd-compat/libtls/tls.c.orig 2023-09-16 18:11:28 UTC
|
|
+++ openbsd-compat/libtls/tls.c
|
|
@@ -584,10 +584,10 @@ tls_configure_ssl_verify(struct tls *ctx, SSL_CTX *ssl
|
|
|
|
/* If no CA has been specified, attempt to load the default. */
|
|
if (ctx->config->ca_mem == NULL && ctx->config->ca_path == NULL) {
|
|
- if (tls_config_load_file(&ctx->error, "CA", tls_default_ca_cert_file(),
|
|
- &ca_mem, &ca_len) != 0)
|
|
+ if (!SSL_CTX_set_default_verify_paths(ssl_ctx)) {
|
|
+ tls_set_error(ctx, "failed to load default trust store");
|
|
goto err;
|
|
- ca_free = ca_mem;
|
|
+ }
|
|
}
|
|
|
|
if (ca_mem != NULL) {
|