Add certificate with a too long validity period (>397/398 days & >825 days)

chromium / badssl.com

:lock: Memorable site for testing clients against bad SSL configs.

https://badssl.com

Apache License 2.0

2.78k stars 186 forks source link

Add certificate with a too long validity period (>397/398 days & >825 days) #523

Open ca-stefan-cordes opened 1 year ago

ca-stefan-cordes commented 1 year ago

To check our zScaler it would be great to have https://badssl.com/ offering a certificate which

is valid
has a validity period of 400 days (more than 397 days)

and another (even worse) one which

is valid
has a validity period of 900 days (more than 825 days)

Jyoticharan commented 10 months ago

please assign me the issue I will try to add th certificate with long validity

christhompson commented 1 month ago

Unfortunately we can't add test cases that violate the BRs, as the public site requires publicly trusted certs and we can't convince CAs to misissue certificates for us ;-)

That said, we might be able to add such a test case to the local-only tests -- these are just generated under the (untrusted) root CA for the test server and can be anything that we can generate under OpenSSL 3.