Mercurial Mercurial > oss > FCL > sf > app > jrt / diff
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
javacommons/security/src/midpauthenticationmoduleimpl.cpp
changeset 56 abc41079b313
parent 49 35baca0e7a2e
child 57 59b3b4473dc8 
--- a/javacommons/security/src/midpauthenticationmoduleimpl.cpp	Fri Jul 09 16:35:45 2010 +0300
+++ b/javacommons/security/src/midpauthenticationmoduleimpl.cpp	Fri Jul 23 12:27:20 2010 +0300
@@ -472,7 +472,21 @@
         if (X509_verify_cert(x509_ctx) != 1)
         {
             ret_code = getErrCode(X509_STORE_CTX_get_error(x509_ctx));
-            break;
+            // If the secure time of the device has not yet been set
+            // (can happen some times during the first device boot),
+            // allow installing with not yet valid certificates
+            if (KCertNotYetValidFailure == ret_code)
+            {
+                if (!TelUtils::isSecureTimeSet())
+                {
+                    ret_code = KCertAndSignatureOk;
+                }
+            }
+
+            if (KCertAndSignatureOk != ret_code)
+            {
+                break;
+            }
         }
         // verify the extended key usage: it must point to id-kp-codeSigning (RFC3280 code signing)
         // or 1.3.6.1.4.1.94.1.49.1.2.2.3 (Nokia Java Code Signing Extension)
FCL/sf/app/jrt