Re: apps\ca Y2K bug (what i use for ynk bug)

Tue, 21 Dec 1999 01:43:39 -0800 

/// y2k pseudocode

int my_2_digits = <nn>;

date = get_current_date;

int date_cen = first2dig(date) * 100;
int date_add = last2dig(date + 50); // 2001 = 51, 1999 = 49, 2049 = 99
int date_cur = last2dig(date);      // 2001 = 01, 1999 = 99, 2049 = 49

if (date_add < date_cur) {
 if (my_2_digits <= date_add) {
  final_date = date_cen + 100 + my_2_digits;
 } else {
  final_date = date_cen + my_2_digits;
 }
} else {
 if (my_2_digits <= date_add) {
  final_date = date_cen + my_2_digits;
 } else {
  final_date = date_cen - 100 + my_2_digits;
 }
}


----- Original Message -----
From: Nelson A Silva F <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, December 20, 1999 12:47 AM
Subject: RE: apps\ca Y2K bug


I have got the point. If YY is less than 50, the year shall be interpreted
as 20YY.

Thank you for the accurate guidance.

Best regards.

Nelson.

-----Original Message-----
From: Dr Stephen Henson [SMTP:[EMAIL PROTECTED]]
Sent: Friday, 17 December, 1999 20:43
To: [EMAIL PROTECTED]
Subject: Re: apps\ca Y2K bug

Nelson Alves da Silva Filho wrote:
>
> POSSIBLE bug regarding the ca application (OpenSSL-0.9.4).
>
> I think the function ASN1_UTCTIME_set_string (a_utctm.c) is not Y2K safe
and, consequently, the "startdate" and "enddate" entries of openssl.cnf ca
section as well.
>

Check out the description of UTCTime in RFC2459. If you still think
there's a problem please be a bit more specific.

Steve.
--
Dr Stephen N. Henson.   http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the   OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.


______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to