Hello,
I don't know whether this bug has been reported yet or has
been addressed in later openssl issues (i.e. I'm too lazy
to install the latest openssl on our test machine - you can
tell me off about that) but here goes:
This is openssl-0.9.6-9...
If you sign the certificate signing request (yielding a valid certificate),
using some root CA created earlier:
$ openssl ca -in ssl.csr/foo.csr
-cert ssl.crt/bar-ca.crt
-keyfile ssl.key/bar-ca.key
-days 128
...there seems to be some problem with the validity date of the
thus signed certificate. The validity start time (in GMT) of the certificate
seems to just be the time **value** returned by 'date' which might not be
GMT
(in my case, a certificate created at 18:22 MESZ was valid from 18:22 GMT
on,
i.e. about 2 hours later).
I this a known issue?
Best regards,
-- David Tonhofer
m-plify S.A.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
