wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 10:47:28 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #1667 from ejohnstown/certgentime

Browse Source 
Cert Gen Time
This commit is contained in:
David Garske
2018-07-10 14:40:37 -07:00
committed by GitHub
parent 9ca5c65f33 5cc8771b43
commit e2dec618d8
1 changed files with 28 additions and 41 deletions
Download Patch File Download Diff File Expand all files Collapse all files

69
wolfcrypt/src/asn.c
View File

@ -9073,18 +9073,6 @@ static int CopyValidity(byte* output, Cert* cert)
#endif #endif
/* for systems where mktime() doesn't normalize fully */
static void RebuildTime(time_t* in, struct tm* out)
{
#if defined(FREESCALE_MQX) || defined(FREESCALE_KSDK_MQX)
out = localtime_r(in, out);
#else
(void)in;
(void)out;
#endif
}
/* Set Date validity from now until now + daysValid /* Set Date validity from now until now + daysValid
* return size in bytes written to output, 0 on error */ * return size in bytes written to output, 0 on error */
static int SetValidity(byte* output, int daysValid) static int SetValidity(byte* output, int daysValid)
@ -9096,11 +9084,11 @@ static int SetValidity(byte* output, int daysValid)
int afterSz; int afterSz;
int seqSz; int seqSz;
time_t ticks; time_t now;
time_t normalTime; time_t then;
struct tm* now;
struct tm* tmpTime = NULL; struct tm* tmpTime = NULL;
struct tm local; struct tm* expandedTime;
struct tm localTime;
#if defined(NEED_TMP_TIME) #if defined(NEED_TMP_TIME)
/* for use with gmtime_r */ /* for use with gmtime_r */
@ -9110,46 +9098,45 @@ static int SetValidity(byte* output, int daysValid)
(void)tmpTime; (void)tmpTime;
#endif #endif
ticks = XTIME(0); now = XTIME(0);
now = XGMTIME(&ticks, tmpTime);
if (now == NULL) { /* before now */
before[0] = ASN_GENERALIZED_TIME;
beforeSz = SetLength(ASN_GEN_TIME_SZ, before + 1) + 1; /* gen tag */
/* subtract 1 day of seconds for more compliance */
then = now - 86400;
expandedTime = XGMTIME(&then, tmpTime);
if (expandedTime == NULL) {
WOLFSSL_MSG("XGMTIME failed"); WOLFSSL_MSG("XGMTIME failed");
return 0; /* error */ return 0; /* error */
} }
localTime = *expandedTime;
/* before now */
local = *now;
before[0] = ASN_GENERALIZED_TIME;
beforeSz = SetLength(ASN_GEN_TIME_SZ, before + 1) + 1; /* gen tag */
/* subtract 1 day for more compliance */
local.tm_mday -= 1;
normalTime = mktime(&local);
RebuildTime(&normalTime, &local);
/* adjust */ /* adjust */
local.tm_year += 1900; localTime.tm_year += 1900;
local.tm_mon += 1; localTime.tm_mon += 1;
SetTime(&local, before + beforeSz); SetTime(&localTime, before + beforeSz);
beforeSz += ASN_GEN_TIME_SZ; beforeSz += ASN_GEN_TIME_SZ;
/* after now + daysValid */
local = *now;
after[0] = ASN_GENERALIZED_TIME; after[0] = ASN_GENERALIZED_TIME;
afterSz = SetLength(ASN_GEN_TIME_SZ, after + 1) + 1; /* gen tag */ afterSz = SetLength(ASN_GEN_TIME_SZ, after + 1) + 1; /* gen tag */
/* add daysValid */ /* add daysValid of seconds */
local.tm_mday += daysValid; then = now + (daysValid * 3600);
normalTime = mktime(&local); expandedTime = XGMTIME(&then, tmpTime);
RebuildTime(&normalTime, &local); if (expandedTime == NULL) {
WOLFSSL_MSG("XGMTIME failed");
return 0; /* error */
}
localTime = *expandedTime;
/* adjust */ /* adjust */
local.tm_year += 1900; localTime.tm_year += 1900;
local.tm_mon += 1; localTime.tm_mon += 1;
SetTime(&local, after + afterSz); SetTime(&localTime, after + afterSz);
afterSz += ASN_GEN_TIME_SZ; afterSz += ASN_GEN_TIME_SZ;
/* headers and output */ /* headers and output */