From eba5cb9dc973062e68c2629a5fbcb1adab19fa3e Mon Sep 17 00:00:00 2001 From: Wade Cline Date: Sun, 30 Apr 2023 23:29:34 -0700 Subject: Fix cert expiration for dates after year 2049 --- src/modules/extra/m_ssl_openssl.cpp | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'src/modules') diff --git a/src/modules/extra/m_ssl_openssl.cpp b/src/modules/extra/m_ssl_openssl.cpp index 906b09529..0e26bf1b4 100644 --- a/src/modules/extra/m_ssl_openssl.cpp +++ b/src/modules/extra/m_ssl_openssl.cpp @@ -704,11 +704,11 @@ class OpenSSLIOHook : public SSLIOHook certinfo->activation = GetTime(X509_getm_notBefore(cert)); certinfo->expiration = GetTime(X509_getm_notAfter(cert)); - int activated = ASN1_UTCTIME_cmp_time_t(X509_getm_notBefore(cert), ServerInstance->Time()); + int activated = ASN1_TIME_cmp_time_t(X509_getm_notBefore(cert), ServerInstance->Time()); if (activated != -1 && activated != 0) certinfo->error = "Certificate not activated"; - int expired = ASN1_UTCTIME_cmp_time_t(X509_getm_notAfter(cert), ServerInstance->Time()); + int expired = ASN1_TIME_cmp_time_t(X509_getm_notAfter(cert), ServerInstance->Time()); if (expired != 0 && expired != 1) certinfo->error = "Certificate has expired"; -- cgit v1.3.1-10-gc9f91