erm... but there's still one problem. where in IssueCertificate should I add the line X509_gmtime_roundup(X509_get_notAfter(x)); ? because currently the line is only added in renewCertificate... as I can't see where in IssueCertificate can I add those lines.. thanks again
On 7/16/07, David Schwartz <[EMAIL PROTECTED]> wrote:
I added the X509_gmtime_roundup(X509_get_notAfter(x)); at my renewCertificate function. When I renewed the cert valid to for example, to 31/7/2007, the cert valid to will be strangely changed to '1/8/2007 7:59:59". May I know which part should I alter here? There is nothing to change, as it is doing exactly what you wanted. The certificate now expires at the end of the day. 1/8/2007 7:59:59 is probably the last second of the day. You are probably looking at the time translated into the time where you happen to be, rather than looking at the UTC/GMT time. Are you asking that the time be set to the last second of the day in the timezone your computer happens to be in? That's essentially impossible because times can be changed at the whim of governments. There is no practical way to know what will be the last second of 1/8/2020 in San Francisco. (Because things like daylight savings time can change.) DS
