From e179b69bde328604cd932b1a2e0bf2a4a5e80aba Mon Sep 17 00:00:00 2001
From: schwarze <>
Date: Tue, 6 Jun 2023 16:20:13 +0000
Subject: In 1995, Eric A. Young chose a confusing name for the "lastUpdate"
 field of the X509_CRL_INFO object.  It should have been called "thisUpdate"
 like in RFC 5280 section 5.1 (and in its precursor RFC 2459).  Then again,
 RFC 2459 was only published in 1999, so maybe the terminology wasn't firmly
 established yet when Young wrote his code several years earlier - just
 guessing, neither we nor the OpenSSL folks appear to know the real reasons...

Anyway, we have been stuck with the "lastUpdate" names in the API for
more than two decades now, so clarify in the documentation what they
refer to and what they really mean.

Requested by and OK tb@.
---
 src/lib/libcrypto/man/X509_STORE_CTX_get_error.3 | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

(limited to 'src/lib/libcrypto/man/X509_STORE_CTX_get_error.3')

diff --git a/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3 b/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3
index b3d0ee3069..1f221563cb 100644
--- a/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3
+++ b/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3
@@ -1,4 +1,4 @@
-.\" $OpenBSD: X509_STORE_CTX_get_error.3,v 1.27 2023/04/30 14:49:47 tb Exp $
+.\" $OpenBSD: X509_STORE_CTX_get_error.3,v 1.28 2023/06/06 16:20:13 schwarze Exp $
 .\" full merge up to:
 .\" OpenSSL man3/X509_STORE_CTX_get_error 24a535ea Sep 22 13:14:20 2020 +0100
 .\" OpenSSL man3/X509_STORE_CTX_new 24a535ea Sep 22 13:14:20 2020 +0100
@@ -68,7 +68,7 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: April 30 2023 $
+.Dd $Mdocdate: June 6 2023 $
 .Dt X509_STORE_CTX_GET_ERROR 3
 .Os
 .Sh NAME
@@ -386,7 +386,9 @@ The certificate notBefore field contains an invalid time.
 The certificate notAfter field contains an invalid time.
 .It Dv X509_V_ERR_ERROR_IN_CRL_LAST_UPDATE_FIELD : \
  No format error in CRL's lastUpdate field
-The CRL lastUpdate field contains an invalid time.
+The CRL thisUpdate field (sic!) contains an invalid time.
+Both the name of the error constant and the text of the error message
+give a wrong name for the field that contains the problem.
 .It Dv X509_V_ERR_ERROR_IN_CRL_NEXT_UPDATE_FIELD : \
  No format error in CRL's nextUpdate field
 The CRL nextUpdate field contains an invalid time.
-- 
cgit v1.2.3-55-g6feb