Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add certificate with a too long validity period (>397/398 days & >825 days) #523

Open
ca-stefan-cordes opened this issue May 25, 2023 · 2 comments
Open

Add certificate with a too long validity period (>397/398 days & >825 days) #523

ca-stefan-cordes opened this issue May 25, 2023 · 2 comments
Labels
help wanted local-only subdomain

Comments

@ca-stefan-cordes
Copy link

To check our zScaler it would be great to have https://badssl.com/ offering a certificate which

  • is valid
  • has a validity period of 400 days (more than 397 days)

and another (even worse) one which

  • is valid
  • has a validity period of 900 days (more than 825 days)
@Jyoticharan
Copy link

please assign me the issue I will try to add th certificate with long validity

@christhompson
Copy link
Collaborator

Unfortunately we can't add test cases that violate the BRs, as the public site requires publicly trusted certs and we can't convince CAs to misissue certificates for us ;-)

That said, we might be able to add such a test case to the local-only tests -- these are just generated under the (untrusted) root CA for the test server and can be anything that we can generate under OpenSSL 3.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
help wanted local-only subdomain
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@christhompson @ca-stefan-cordes @Jyoticharan