[Help-gnutls] Re: gnutls_certificate_get

help-gnutls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Help-gnutls] Re: gnutls_certificate_get_peers() and expired certs

From:	Simon Josefsson
Subject:	[Help-gnutls] Re: gnutls_certificate_get_peers() and expired certs
Date:	Mon, 26 May 2008 14:27:07 +0200
User-agent:	Gnus/5.110009 (No Gnus v0.9) Emacs/22.2 (gnu/linux)

"Rainer Gerhards" <address@hidden> writes:

> Hi list,
>
> I have used  gnutls_certificate_get_peers() with expired certificates.
> The validation check returned successfully. From the documentation it
> looks like this is expected behavior and I always must check this
> manually. Please let me know if my assumption is correct (I would like
> to implement in the best possible way and not use customer code where
> I can rely on the library itself).

Hi, yes, you need to check expiration dates yourself.  See the examples
on how to do this:

http://www.gnu.org/software/gnutls/manual/html_node/Verifying-peer_0027s-certificate.html

/Simon

[Prev in Thread]

Current Thread

[Next in Thread]

[Help-gnutls] gnutls_certificate_get_peers() and expired certs, Rainer Gerhards, 2008/05/26
- [Help-gnutls] Re: gnutls_certificate_get_peers() and expired certs, Simon Josefsson <=

Prev by Date: [Help-gnutls] gnutls_certificate_get_peers() and expired certs
Next by Date: [Help-gnutls] gnutls_certificate_client_set_retrieve_function() and application "cookies"
Previous by thread: [Help-gnutls] gnutls_certificate_get_peers() and expired certs
Next by thread: [Help-gnutls] gnutls_certificate_client_set_retrieve_function() and application "cookies"
Index(es):
- Date
- Thread