Skip to content

Check X509 certificate validity period during cert verification#86

Open
marcelamelara wants to merge 5 commits intomainfrom
msm-add-cert-expiry-validation
Open

Check X509 certificate validity period during cert verification#86
marcelamelara wants to merge 5 commits intomainfrom
msm-add-cert-expiry-validation

Conversation

@marcelamelara
Copy link
Contributor

@marcelamelara marcelamelara commented Mar 14, 2026

This PR adds X509 certificate validity period and expiration checking during certificate verification.

Test this PR (Linux platform required)

sudo apt install pkg-config  # needed by openssl Rust lib
cargo test --features host-verification

@marcelamelara
Add certificate expiry check
c10b041 
Signed-off-by: Marcela Melara <marcela.melara@intel.com>
@marcelamelara
Ungate signature utils from host-gcp-tdx feature
f6f7352 
Signed-off-by: Marcela Melara <marcela.melara@intel.com>
@marcelamelara
Add negative tests for certificate validity
ab163c9 
Signed-off-by: Marcela Melara <marcela.melara@intel.com>
@marcelamelara
Debug cert tests
c860c5d 
Signed-off-by: Marcela Melara <marcela.melara@intel.com>
@marcelamelara marcelamelara requested a review from sandlbn as a code owner March 14, 2026 01:24
@marcelamelara
cargo format
8e040c3 
Signed-off-by: Marcela Melara <marcela.melara@intel.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sandlbn sandlbn Awaiting requested review from sandlbn sandlbn is a code owner

@michaelbeale-IL michaelbeale-IL Awaiting requested review from michaelbeale-IL

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@marcelamelara