I saw in the lastest snapshots that in the ssl library the fundction time has been casted to an unsigned long. This seems to be some hack to cover the 2038 problem on 32 bit machines. I am not sure
whether the attempted solution is good:
As far as I see the only usage is to determine whether a timeout has occured. How much can a session last? More than 20 years? If not, I think one should define a notion of epoch which covers the problem that it seems to be undefined whether in 2038 the value goes to 0 or to
a large negative value depending on the implementation. I.e. the time is also initialized with time(NULL)|x3fffffff and in ssl_sess.c if (ret->time+ter->timeout < (time(NULL) | x7fffffff) and similar in ssl_bio etc. Comments? Peter --To verify the signature, see http://edelpki.edelweb.fr/ Cela vous permet de charger le certificat de l'autorité; die Liste mit zurückgerufenen Zertifikaten finden Sie da auch.
smime.p7s
Description: S/MIME Cryptographic Signature
