On Sep 8, 2010, at 8:51 AM, shibu nair via RT wrote: > We found that the error is due to the –days 9999 option. And when we > change the value 9996 this works fine. and 9999 was working fine three > date before (03-sept-2010. it seems to be issue related to the date > range.
Well, January 1st, 2038 is approximately 9999 days from now, and that's when the Unix time_t overflows 31 bits. IIRC, both of the actual certificate representations (UTCTIME and GENERALIZEDTIME) can handle timestamps outside that range, but openssl's ASN1_TIME_set() takes a time_t. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
