openwrtv3/package/wpa_supplicant/patches/100-timestamp_check.patch

16 lines
432 B
Diff
Raw Normal View History

--- a/src/tls/x509v3.c
+++ b/src/tls/x509v3.c
@@ -1591,8 +1591,11 @@ int x509_certificate_chain_validate(stru
if (chain_trusted)
continue;
- if ((unsigned long) now.sec <
+ if (
+#ifndef NO_TIMESTAMP_CHECK
+ (unsigned long) now.sec <
(unsigned long) cert->not_before ||
+#endif
(unsigned long) now.sec >
(unsigned long) cert->not_after) {
wpa_printf(MSG_INFO, "X509: Certificate not valid "