5d5d28d13a0843b268e29f1cc2a06a7ccbef73f0 - platform/external/python/pyopenssl

commit	5d5d28d13a0843b268e29f1cc2a06a7ccbef73f0	[log] [tgz]
author	Paul Kehrer <paul.l.kehrer@gmail.com>	Wed Oct 21 18:55:22 2015 -0500
committer	Paul Kehrer <paul.l.kehrer@gmail.com>	Wed Oct 21 18:56:19 2015 -0500
tree	53a6c6aa2c1034b8693f2d205a6320ada9a2cab9
parent	18d2c5db1a9c81954c78315d2ece5fd75dd0e871 [diff]

alter has_expired to fix bugs related to ASN1_UTCTIME_cmp_time_t

RFC 5280 states that UTCTime must be used for validity dates through
2049 and GeneralizedTime must be used for 2050 or later. To be safe, we
get the string form of the date using get_notAfter, which eventually
calls _get_asn1_time. This function converts an ASN1_TIME to
GeneralizedTime, so we have a UTC time string of the form
%Y%m%d%H%M%SZ. Finally, we convert that to a timestamp and then compare
it against the current UTC time to see if it has expired.

src/OpenSSL/crypto.py[diff]

1 file changed

tree: 53a6c6aa2c1034b8693f2d205a6320ada9a2cab9

.travis/
doc/
examples/
leakcheck/
rpm/
src/
tests/
.coveragerc
.gitignore
.travis.yml
ChangeLog
CONTRIBUTING.rst
docs-requirements.txt
INSTALL.rst
LICENSE
MANIFEST.in
README.rst
setup.cfg
setup.py
tox.ini