From 26cb52a573bef0cc1d3c509d355ba1b2c1afb0cc Mon Sep 17 00:00:00 2001
From: Raal Goff <raal.goff@zetta.com.au>
Date: Tue, 2 Nov 2021 16:39:29 +0800
Subject: [PATCH] missed some mentions of PEM when changing the returned format
 to DER regarding CRL generation

---
 authority/tls.go | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/authority/tls.go b/authority/tls.go
index b46cb40d..82179f13 100644
--- a/authority/tls.go
+++ b/authority/tls.go
@@ -463,7 +463,7 @@ func (a *Authority) revokeSSH(crt *ssh.Certificate, rci *db.RevokedCertificateIn
 	return a.db.Revoke(rci)
 }
 
-// GenerateCertificateRevocationList returns a PEM representation of a signed CRL.
+// GenerateCertificateRevocationList returns a DER representation of a signed CRL.
 // It will look for a valid generated CRL in the database, check if it has expired, and generate
 // a new CRL on demand if it has expired (or a CRL does not already exist).
 //
@@ -532,7 +532,7 @@ func (a *Authority) GenerateCertificateRevocationList(force bool) ([]byte, error
 	}
 
 	// Create a new db.CertificateRevocationListInfo, which stores the new Number we just generated, the
-	// expiry time, and the byte-encoded CRL - then store it in the DB
+	// expiry time, and the DER-encoded CRL - then store it in the DB
 	newCRLInfo := db.CertificateRevocationListInfo{
 		Number:    n,
 		ExpiresAt: revocationList.NextUpdate,
@@ -544,7 +544,7 @@ func (a *Authority) GenerateCertificateRevocationList(force bool) ([]byte, error
 		return nil, err
 	}
 
-	// Finally, return our CRL PEM
+	// Finally, return our CRL in DER
 	return certificateRevocationList, nil
 }