yuzu-emu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2024-11-22 12:05:36 +01:00
Code Issues Packages Projects Releases Wiki Activity

Use UTC to heck certificate validity

Browse Source
This commit is contained in:
Manuel Pégourié-Gonnard 2014-04-11 12:25:45 +02:00 committed by Paul Bakker
parent 52c5af7d2d
commit 0776a43788
2 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
ChangeLog
View File

@ -16,6 +16,7 @@ Changes
* x509_crt_info() now prints information about parsed extensions as well * x509_crt_info() now prints information about parsed extensions as well
* pk_verify() now returns a specific error code when the signature is valid * pk_verify() now returns a specific error code when the signature is valid
but shorter than the supplied length. but shorter than the supplied length.
* Use UTC time to check certificate validity.
Security Security
* Avoid potential timing leak in ecdsa_sign() by blinding modular division. * Avoid potential timing leak in ecdsa_sign() by blinding modular division.

4
library/x509.c
View File

@ -627,7 +627,7 @@ static void x509_get_current_time( x509_time *now )
#if defined(_WIN32) && !defined(EFIX64) && !defined(EFI32) #if defined(_WIN32) && !defined(EFIX64) && !defined(EFI32)
SYSTEMTIME st; SYSTEMTIME st;
GetLocalTime(&st); GetSystemTime(&st);
now->year = st.wYear; now->year = st.wYear;
now->mon = st.wMonth; now->mon = st.wMonth;
@ -640,7 +640,7 @@ static void x509_get_current_time( x509_time *now )
time_t tt; time_t tt;
tt = time( NULL ); tt = time( NULL );
localtime_r( &tt, &lt ); gmtime_r( &tt, &lt );
now->year = lt.tm_year + 1900; now->year = lt.tm_year + 1900;
now->mon = lt.tm_mon + 1; now->mon = lt.tm_mon + 1;