Comment.

author Bodo Möller <bodo@openssl.org>

Tue, 11 May 1999 22:05:39 +0000 (22:05 +0000)

committer Bodo Möller <bodo@openssl.org>

Tue, 11 May 1999 22:05:39 +0000 (22:05 +0000)
author Bodo Möller <bodo@openssl.org>
Tue, 11 May 1999 22:05:39 +0000 (22:05 +0000)
committer Bodo Möller <bodo@openssl.org>
Tue, 11 May 1999 22:05:39 +0000 (22:05 +0000)
diff --git a/crypto/x509/x509_vfy.c b/crypto/x509/x509_vfy.c

index 7bee6158a481d2893dd1a154ee6db30f72c5425a..62d4d98053161d5ad7f0687bfc2e99aa89dcee09 100644 (file)
--- a/crypto/x509/x509_vfy.c
+++ b/crypto/x509/x509_vfy.c
@@ -143,7 +143,11 @@ int X509_verify_cert(X509_STORE_CTX *ctx)
         for (;;)
                 {
                 /* If we have enough, we break */
-               if (depth < num) break;
+               if (depth < num) break; /* FIXME: If this happens, we should take
+                                                                * note of it and, if appropriate, use the
+                                                                * X509_V_ERR_CERT_CHAIN_TOO_LONG error
+                                                                * code later.
+                                                                */
  
                 /* If we are self signed, we break */
                 xn=X509_get_issuer_name(x);
author	Bodo Möller <bodo@openssl.org>
	Tue, 11 May 1999 22:05:39 +0000 (22:05 +0000)
committer	Bodo Möller <bodo@openssl.org>
	Tue, 11 May 1999 22:05:39 +0000 (22:05 +0000)