Hi Michael, Gsandtner Michael wrote:
I have a certificate, whose notAfter attribute is some days in the past. In spight of this, the certficate is listed as valid instead of expired.
Do you use DBM or DBI? Only the DBI module can handle expired certificates. We determine on the fly the state of the certificate. The DBM never implemented such a behaviour.
I did a quick look into the sources, and it seems, that expired certificates are that, which have a status of EXPIRED_CERTIFICATE in the database. But how and when is this status updated ?
Only DBI, the status in the database is always VALID. If you load the certificate from the database then we determine on the fly whether it is expired or valid. An extra state in the database is not required.
Michael -- _______________________________________________________________ Michael Bell Humboldt-Universitaet zu Berlin Tel.: +49 (0)30-2093 2482 ZE Computer- und Medienservice Fax: +49 (0)30-2093 2704 Unter den Linden 6 [EMAIL PROTECTED] D-10099 Berlin _______________________________________________________________
smime.p7s
Description: S/MIME Cryptographic Signature
