X509 time: tighten validation per RFC 5280 (80770da3) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Commit 80770da3 authored Feb 17, 2017 by

Emilia Kasper

X509 time: tighten validation per RFC 5280



- Reject fractional seconds
- Reject offsets
- Check that the date/time digits are in valid range.
- Add documentation for X509_cmp_time

GH issue 2620

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>

parent b169c0ec

Hide whitespace changes

Inline Side-by-side

Please register or to comment