[Pkg-openssl-devel] Bug#862335: Bug#862335: openssl creates and accepts certificates with bad notAfter field
Kurt Roeckx
kurt at roeckx.be
Thu May 11 16:42:17 UTC 2017
On Thu, May 11, 2017 at 02:59:20PM +0200, Harald Dunkel wrote:
>
> Please note the "-enddate 20451231235959Z" and compare with RFC 5280
> section 4.1.2.5 (https://www.ietf.org/rfc/rfc5280.txt). The GeneralizedTime
> format is not allowed for 2045, but apparently openssl doesn't convert
> the string to UTCTime format.
Please note that the manual says the format is: YYMMDDHHMMSSZ
I guess it would be nice we converted it properly.
Kurt
More information about the Pkg-openssl-devel
mailing list