Make sure the already existing X509_STORE->depth variable is initialized

in X509_STORE_new(), but document the fact that this variable is still unused in the certificate verification process.
2024-11-25 11:03:37 +08:00 · 1999-01-03 15:31:11 +00:00 · 1999-01-03 15:31:11 +00:00 · cb0f35d716
commit cb0f35d716
parent 8a8d8ededd
3 changed files with 7 additions and 1 deletions
--- a/5
+++ b/5
@ -5,6 +5,11 @@

 Changes between 0.9.1c and 0.9.2

+  *) Make sure the already existing X509_STORE->depth variable is initialized
+     in X509_STORE_new(), but document the fact that this variable is still
+     unused in the certificate verification process.
+     [Ralf S. Engelschall]
+
  *) Fix the various library and apps files to free up pkeys obtained from
     EVP_PUBKEY_get() et al. Also allow x509.c to handle netscape extensions.
     [Steve Henson]
--- a/crypto/x509/x509_lu.c
+++ b/crypto/x509/x509_lu.c
@ -231,6 +231,7 @@ X509_STORE *X509_STORE_new()
 	ret->verify_cb=NULL;
 	memset(&ret->ex_data,0,sizeof(CRYPTO_EX_DATA));
 	ret->references=1;
+	ret->depth=0;
 	return(ret);
 	}

--- a/crypto/x509/x509_vfy.h
+++ b/crypto/x509/x509_vfy.h
@ -154,7 +154,7 @@ typedef struct x509_store_st

 	CRYPTO_EX_DATA ex_data;
 	int references;
-	int depth;		/* how deep to look */
+	int depth;		/* how deep to look (still unused) */
 	}  X509_STORE;

 #define X509_STORE_set_depth(ctx,d)       ((ctx)->depth=(d))