From: Shakti Shah <shaktishah33@gmail.com>
Date: Tue, 30 Jan 2024 19:44:34 +0000 (+0530)
Subject: Clarify X509_STORE_CTX_init() documentation in the man page
X-Git-Tag: openssl-3.2.2~172
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=00f96107a771a16cf4f3f2372905cbceb0e70eab;p=thirdparty%2Fopenssl.git

Clarify X509_STORE_CTX_init() documentation in the man page

Fixes #21203
CLA: trivial

Reviewed-by: Todd Short <todd.short@me.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23435)

(cherry picked from commit 22f82d457c06289ec66a627a3d11649d83beff88)
---

diff --git a/doc/man3/X509_STORE_CTX_new.pod b/doc/man3/X509_STORE_CTX_new.pod
index d59599ed7b9..17c8bc73bf4 100644
--- a/doc/man3/X509_STORE_CTX_new.pod
+++ b/doc/man3/X509_STORE_CTX_new.pod
@@ -83,7 +83,9 @@ is no longer valid.
 If I<ctx> is NULL nothing is done.
 
 X509_STORE_CTX_init() sets up I<ctx> for a subsequent verification operation.
-It must be called before each call to L<X509_verify_cert(3)> or
+
+X509_STORE_CTX_init() initializes the internal state and resources of the
+X509_STORE_CTX, and must be called before each call to L<X509_verify_cert(3)> or
 L<X509_STORE_CTX_verify(3)>, i.e., a context is only good for one verification.
 If you want to verify a further certificate or chain with the same I<ctx>
 then you must call X509_STORE_CTX_init() again.