diff options
| author |  Nokis Mavrogiannopoulos
| 2009-06-30 18:02:38 +0000 |
|---|---|---|
| committer | Nokis Mavrogiannopoulos
| 2009-06-30 18:02:38 +0000 |
| commit | 3a6321c9117950817d01cba3bd4201334a6ab70a (patch) | |
| tree | cc5b3e409b00da3b2c836068981629e38143ddb3 /src/gnutls_hooks.c | |
| parent | 02615723b973a293c153ff4915f98878f3c7bd00 (diff) | |
Allow openpgp certificates that have infinite expiration time. Suggestion by MattLoar at http://issues.outoforder.cc/view.php?id=96.
Diffstat (limited to 'src/gnutls_hooks.c')
| -rw-r--r-- | src/gnutls_hooks.c | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/src/gnutls_hooks.c b/src/gnutls_hooks.c index e671a60..9ac17a0 100644 --- a/src/gnutls_hooks.c +++ b/src/gnutls_hooks.c | |||
| @@ -1109,11 +1109,13 @@ static int mgs_cert_verify(request_rec * r, mgs_handle_t * ctxt) | |||
| 1109 | expired = 1; | 1109 | expired = 1; |
| 1110 | } | 1110 | } |
| 1111 | 1111 | ||
| 1112 | if (expiration_time < cur_time) { | 1112 | if (gnutls_certificate_type_get( ctxt->session) != GNUTLS_CRT_OPENPGP || expiration_time != 0) { |
| 1113 | ap_log_rerror(APLOG_MARK, APLOG_INFO, 0, r, | 1113 | if (expiration_time < cur_time) { |
| 1114 | ap_log_rerror(APLOG_MARK, APLOG_INFO, 0, r, | ||
| 1114 | "GnuTLS: Failed to Verify Peer: " | 1115 | "GnuTLS: Failed to Verify Peer: " |
| 1115 | "Peer Certificate is expired."); | 1116 | "Peer Certificate is expired."); |
| 1116 | expired = 1; | 1117 | expired = 1; |
| 1118 | } | ||
| 1117 | } | 1119 | } |
| 1118 | 1120 | ||
| 1119 | if (status & GNUTLS_CERT_SIGNER_NOT_FOUND) { | 1121 | if (status & GNUTLS_CERT_SIGNER_NOT_FOUND) { |