[openssl-users] Strange problem in using verify command

David Li dlipubkey at gmail.com
Fri Sep 11 04:25:03 UTC 2015


Hi Jakob,

The computer has been up running for quite a while. I wonder if it
really needs NTP to take that long to sync up.

David

On Thu, Sep 10, 2015 at 7:20 PM, Jakob Bohm <jb-openssl at wisemo.com> wrote:
> On 11/09/2015 02:13, David Li wrote:
>>
>> Hi,
>>
>> I am using "openssl verify -CAfile <ca> <cert>" to verify the
>> certificate. It's been running as expected.
>>
>> Recently I started to run this command on a different x86 platform.
>> What I found is the the first few times I always got:
>>
>> error 9 at 1 depth lookup:certificate is not yet valid
>>
>> Then I waited 10 min and reran the same cmd and got "OK".
>>
>> I am puzzled by this. Is this a some timing issue?
>
> Chances are that the clock on the computer was wrong until
> NTP corrected it from the network.
>>
>>
>> My openssl version is:
>>
>> OpenSSL 1.0.1e-fips 11 Feb 2013
>
> That's kind of old.
>
>
> Enjoy
>
> Jakob
> --
> Jakob Bohm, CIO, Partner, WiseMo A/S.  http://www.wisemo.com
> Transformervej 29, 2860 Søborg, Denmark.  Direct +45 31 13 16 10
> This public discussion message is non-binding and may contain errors.
> WiseMo - Remote Service Management for PCs, Phones and Embedded
>
> _______________________________________________
> openssl-users mailing list
> To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users


More information about the openssl-users mailing list