Revert "indent; add comment"

author Nick Mathewson <nickm@torproject.org>

Wed, 7 Dec 2011 00:49:20 +0000 (19:49 -0500)

committer Nick Mathewson <nickm@torproject.org>

Wed, 7 Dec 2011 00:49:20 +0000 (19:49 -0500)
author Nick Mathewson <nickm@torproject.org>
Wed, 7 Dec 2011 00:49:20 +0000 (19:49 -0500)
committer Nick Mathewson <nickm@torproject.org>
Wed, 7 Dec 2011 00:49:20 +0000 (19:49 -0500)
diff --git a/src/common/tortls.c b/src/common/tortls.c

index b4d81de2f307e7c8a0706bc4423690f24f038bf1..9ac5c34f26d4a0321f75cd168df11866156ab94d 100644 (file)
--- a/src/common/tortls.c
+++ b/src/common/tortls.c
@@ -585,8 +585,6 @@ tor_tls_create_certificate(crypto_pk_env_t *rsa,
                             const char *cname_sign,
                             unsigned int cert_lifetime)
  {
-  /* OpenSSL generates self-signed certificates with random 64-bit serial
-   * numbers, so let's do that too. */
  #define SERIAL_NUMBER_SIZE 8
  
    time_t start_time, end_time;
@@ -614,12 +612,12 @@ tor_tls_create_certificate(crypto_pk_env_t *rsa,
      goto error;
  
    { /* our serial number is 8 random bytes. */
-    if (crypto_rand((char *)serial_tmp, sizeof(serial_tmp)) < 0)
-      goto error;
-    if (!(serial_number = BN_bin2bn(serial_tmp, sizeof(serial_tmp), NULL)))
-      goto error;
-    if (!(BN_to_ASN1_INTEGER(serial_number, X509_get_serialNumber(x509))))
-      goto error;
+  if (crypto_rand((char *)serial_tmp, sizeof(serial_tmp)) < 0)
+    goto error;
+  if (!(serial_number = BN_bin2bn(serial_tmp, sizeof(serial_tmp), NULL)))
+    goto error;
+  if (!(BN_to_ASN1_INTEGER(serial_number, X509_get_serialNumber(x509))))
+    goto error;
    }
  
    if (!(name = tor_x509_name_new(cname)))
author	Nick Mathewson <nickm@torproject.org>
	Wed, 7 Dec 2011 00:49:20 +0000 (19:49 -0500)
committer	Nick Mathewson <nickm@torproject.org>
	Wed, 7 Dec 2011 00:49:20 +0000 (19:49 -0500)