On 07 Nov 2012, at 4:08 PM, Dirk-Willem van Gulik <di...@webweaving.org> wrote:
> The bit of code I stole from x509/x509_vfy.c works for me. > > Dw. > > if(!(X509_CRL_get_nextUpdate(crl)) > return -1; > > int i=X509_cmp_time(X509_CRL_get_nextUpdate(crl), ptime); > if (i == 0) > return -1; // could not parse date > > /* Ignore expiry of base CRL is delta is valid */ > if ((i < 0) && !(ctx->current_crl_score & CRL_SCORE_TIME_DELTA)) > return -1; > > return 0; What I'm after is the difference between the given date and now so that I can construct a max-age value for Cache-Control. At this stage, there doesn't seem to be a way to do this in openssl. Regards, Graham --
smime.p7s
Description: S/MIME cryptographic signature