-
Notifications
You must be signed in to change notification settings - Fork 825
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Bug]: WOLFSSL_X509_STORE::param::check_time has no effect #7121
Comments
Hi @shimunn, Thanks for the report! I have been reviewing this. It does look as though use of the check_time value is not integrated into the low level before/after certificate date checks. Am investigating into a fix. Warm Regards, |
Has there been any progres towards an solution? |
Hi shimunn, thank you for your patience on this. A code change or workaround has not been completed yet but we should be picking this back up soon. Could you tell us some more about the use case and urgency level? Is this currently a blocker on the project working on? |
Contact Details
No response
Version
5.6.6
Description
The
check_time
does not seem to have an effect, the code only works if the system time is rewound(to make the cert appear to be valid). The "same" code written for OpenSSL works as expected.I also couldn't find any instances in the wolfSSL source where
check_time
is used for verification.Reproduction steps
WOLFSSL_X509_STORE::param::check_time
when adding the cert to the storeRelevant log output
The text was updated successfully, but these errors were encountered: