On 07 Nov 2012, at 3:57 PM, Jakob Bohm <jb-open...@wisemo.com> wrote:
> Look in the code that checks certificates for expiry (during certificate > validation), it probably calls an appropriate subroutine on the expiry > date in the X509 cert. Already did that, the function you're referring to is called X509_cmp_time() declared in crypto/x509/x509_vfy.c. This function seems to return a -1, 0 or 1 in some cases, it doesn't return the different between the times as you would expect it to. Regards, Graham --
smime.p7s
Description: S/MIME cryptographic signature