Closed wlynch closed 2 weeks ago
time.Before/After checks are exclusive, but these checks should be inclusive.
From https://datatracker.ietf.org/doc/html/rfc5280#section-4.1.2.5:
The validity period for a certificate is the period of time from notBefore through notAfter, inclusive.
(doc whitespace changes are coming from Go 1.19 gofmt)
Signed-off-by: Billy Lynch billy@chainguard.dev
time.Before/After checks are exclusive, but these checks should be inclusive.
From https://datatracker.ietf.org/doc/html/rfc5280#section-4.1.2.5:
(doc whitespace changes are coming from Go 1.19 gofmt)
Signed-off-by: Billy Lynch billy@chainguard.dev