On Wed, Mar 20, 2024 at 7:50 AM Daniel Gustafsson <dan...@yesql.se> wrote: > We are subtracting 30 years from a calculation that we know didnt overflow, so > I guess if the certificate notBefore (the notAfter cannot be that early since > we wouldn't be able to connect with it) was set to early enough? It didn't > strike me as anything above academical unless I'm thinking wrong here.
Yeah, it's super nitpicky. The CA would have had to sign a really broken certificate somehow, anyway... I can't find anything else to note; patch LGTM. Thanks, --Jacob
