On Tue, 6 Apr 1999, Alexander Tyshlek wrote:
> I testing openssl for year 2000 compliance and I found following:
> in "crypto/x509/x509_vfy.c"
> int X509_cmp_current_time(ctm)
> ASN1_UTCTIME *ctm;
> {
> ... Line 452:
> if (i < 70) i+=100;
it should be 'if (i < 50) i+=100;', as the pivot point is 2050, as defined
by the X.509.
> ...
> in "crypto/asn1/t_x509.c"
> int ASN1_UTCTIME_print(bp,tm)
> BIO *bp;
> ASN1_UTCTIME *tm;
> {
> ... Line 369
> if (y < 50) y+=100;
> ...
For the rest, I don't know...
>
> in index.txt (database file for CA)
> V 000405121152Z 0 unknown ... skipped
> ^^
> My questions are:
> 1. 50 or 70 I must compare with 2-digit year?
> 2. Is it normally "000405121152Z" in index.txt and are a problem in
> future?
--
Erwann ABALEA
System and Development Engineer - Certplus SA
[EMAIL PROTECTED]
- RSA PGP Key ID: 0x2D0EABD5 -
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
