saymrwulf/cryptography
1
0
Fork 0
mirror of https://github.com/saymrwulf/cryptography.git synced 2026-05-14 20:37:55 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Remove nanoseconds from datetime in OCSP (#7530)

Browse source 
DER doesn't actually serialize them, and rust-asn1 may reject them
This commit is contained in:
Alex Gaynor 2022-08-19 18:09:53 -04:00 committed by GitHub
parent 9443f68813
commit 4fe495547f
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
src/rust/src/x509/ocsp_resp.rs
View file

@ -5,6 +5,7 @@
use crate::asn1::{big_byte_slice_to_py_int, oid_to_py_oid, PyAsn1Error, PyAsn1Result};
use crate::x509;
use crate::x509::{certificate, crl, extensions, ocsp, oid, py_to_chrono, sct};
use chrono::Timelike;
use std::sync::Arc;
const BASIC_RESPONSE_OID: asn1::ObjectIdentifier = asn1::oid!(1, 3, 6, 1, 5, 5, 7, 48, 1, 1);
@ -689,7 +690,7 @@ fn create_ocsp_basic_response<'p>(
let tbs_response_data = ResponseData {
version: 0,
produced_at: asn1::GeneralizedTime::new(chrono::Utc::now())?,
produced_at: asn1::GeneralizedTime::new(chrono::Utc::now().with_nanosecond(0).unwrap())?,
responder_id,
responses: x509::Asn1ReadableOrWritable::new_write(asn1::SequenceOfWriter::new(responses)),
response_extensions: x509::common::encode_extensions(