diff options
| author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2012-09-22 14:09:49 +0200 |
|---|---|---|
| committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2012-09-22 14:09:49 +0200 |
| commit | 78084940d8bcb03216e92096fcde4738101e8417 (patch) | |
| tree | cdb5891f17ffd39f242197f8087c6bd6841b4e9a | |
| parent | b20dbf3c15968c670e61eea319794e0abad0dbc1 (diff) | |
| download | gnutls-78084940d8bcb03216e92096fcde4738101e8417.tar.gz | |
doc updates
| -rw-r--r-- | NEWS | 2 | ||||
| -rw-r--r-- | lib/x509/verify-high.c | 4 |
2 files changed, 4 insertions, 2 deletions
@@ -31,7 +31,7 @@ key usage violation errors (they are far too common to ignore). ** libgnutls: Added GNUTLS_STATELESS_COMPRESSION flag to gnutls_init(), which provides a tool to counter compression-related attacks where -parts of the data are controlled by the attacker _and_ placed in +parts of the data are controlled by the attacker _and_ are placed in separate records (use with care - do not use compression if not sure). ** libgnutls: Depends on libtasn1 2.14 or later. diff --git a/lib/x509/verify-high.c b/lib/x509/verify-high.c index 36bf149ebe..369e79e71e 100644 --- a/lib/x509/verify-high.c +++ b/lib/x509/verify-high.c @@ -406,8 +406,10 @@ static int shorten_clist(gnutls_x509_trust_list_t list, /* Takes a certificate list and orders it with subject, issuer order. * - * Returns the size of the ordered list (which is always less or + * *clist_size contains the size of the ordered list (which is always less or * equal to the original). + * + * Returns the sorted list which may be the original clist. */ static gnutls_x509_crt_t* sort_clist(gnutls_x509_crt_t sorted[DEFAULT_MAX_VERIFY_DEPTH], gnutls_x509_crt_t * clist, |