[openssl-dev] [openssl.org #4287] Option -attime for "openssl ts -verify"
Stephen Henson via RT
rt at openssl.org
Tue Feb 2 16:02:32 UTC 2016
On Tue Feb 02 15:56:01 2016, Frank.Broda at ipb-halle.de wrote:
> Hi,
> please find my pull request on
> https://github.com/openssl/openssl/pull/610
>
> These two patches add an -attime option to "openssl ts -verify"
> similar to the same option in "openssl verify". This allows checking
> of timestamp responses with expired certificates. Documentation has
> been updated as well.
>
IMHO a better way to handle this is to make "ts" handle general verify options
the same way that ocsp, verify, cms, s_client and s_server do then you get
-attime support automatically.
Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
More information about the openssl-dev
mailing list