Fix comment explaining last_untrusted. This should really be called

author tb <tb@openbsd.org>

Wed, 24 Feb 2021 18:01:31 +0000 (18:01 +0000)

committer tb <tb@openbsd.org>

Wed, 24 Feb 2021 18:01:31 +0000 (18:01 +0000)
author tb <tb@openbsd.org>
Wed, 24 Feb 2021 18:01:31 +0000 (18:01 +0000)
committer tb <tb@openbsd.org>
Wed, 24 Feb 2021 18:01:31 +0000 (18:01 +0000)
diff --git a/lib/libcrypto/x509/x509_vfy.h b/lib/libcrypto/x509/x509_vfy.h

index a68d5c0..57189b9 100644 (file)
--- a/lib/libcrypto/x509/x509_vfy.h
+++ b/lib/libcrypto/x509/x509_vfy.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: x509_vfy.h,v 1.31 2020/09/13 15:06:17 beck Exp $ */
+/* $OpenBSD: x509_vfy.h,v 1.32 2021/02/24 18:01:31 tb Exp $ */
  /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
   * All rights reserved.
   *
@@ -247,7 +247,7 @@ struct x509_store_ctx_st      /* X509_STORE_CTX */
  
         /* The following is built up */
         int valid;              /* if 0, rebuild chain */
-       int last_untrusted;     /* index of last untrusted cert */
+       int last_untrusted;     /* XXX: number of untrusted certs in chain!!! */
         STACK_OF(X509) *chain;          /* chain of X509s - built up and trusted */
         X509_POLICY_TREE *tree; /* Valid policy tree */
author	tb <tb@openbsd.org>
	Wed, 24 Feb 2021 18:01:31 +0000 (18:01 +0000)
committer	tb <tb@openbsd.org>
	Wed, 24 Feb 2021 18:01:31 +0000 (18:01 +0000)