TeamHepta/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2026-05-01 15:52:10 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
5ea99af0f2cf8236a5d6064eb119b048e00a5352
mbedtls/tests/data_files/test-ca.server1.future-crl.db

3 lines
157 B
Plaintext
Raw Normal View History

Always revoke certificate on CRL RFC5280 does not state that the `revocationDate` should be checked. In addition, when no time source is available (i.e., when MBEDTLS_HAVE_TIME_DATE is not defined), `mbedtls_x509_time_is_past` always returns 0. This results in the CRL not being checked at all. https://tools.ietf.org/html/rfc5280 Signed-off-by: Raoul Strackx <raoul.strackx@fortanix.com>
2020-06-15 17:03:13 +02:00
R 210212144406Z 290101124407Z 01 unknown /C=NL/O=PolarSSL/CN=PolarSSL Server 1
R 210212144400Z 290101124407Z 03 unknown /C=NL/O=PolarSSL/CN=PolarSSL Test CA
Reference in New Issue Copy Permalink