Please sign in to comment.
Add one second for 825 day validity test
The CA browser form agreed on a validity period of 825 days or less (https://cabforum.org/wp-content/uploads/CA-Browser-Forum-BR-1.5.3-redlined.pdf, p4). PR #1427 addressed that. However when an issuer signed/issued a certificate with exactly 825 days, the check reported incorrectly that the life time is too long. This commit addressed that by adding a second to the calulation. Also the output takes into account that it must be over ('>') 825 days, not '>='.
- Loading branch information