Comment.
authorBodo Möller <bodo@openssl.org>
Tue, 11 May 1999 22:05:39 +0000 (22:05 +0000)
committerBodo Möller <bodo@openssl.org>
Tue, 11 May 1999 22:05:39 +0000 (22:05 +0000)
Submitted by:
Reviewed by:
PR:

crypto/x509/x509_vfy.c

index 7bee615..62d4d98 100644 (file)
@@ -143,7 +143,11 @@ int X509_verify_cert(X509_STORE_CTX *ctx)
        for (;;)
                {
                /* If we have enough, we break */
-               if (depth < num) break;
+               if (depth < num) break; /* FIXME: If this happens, we should take
+                                                                * note of it and, if appropriate, use the
+                                                                * X509_V_ERR_CERT_CHAIN_TOO_LONG error
+                                                                * code later.
+                                                                */
 
                /* If we are self signed, we break */
                xn=X509_get_issuer_name(x);