Bug #7885: Cert. Manager should validate EKUs on importing a certificate authority - pfSense - pfSense bugtracker

Actions

Copy link

Bug #7885

closed

Cert. Manager should validate EKUs on importing a certificate authority

Added by Kill Bill over 6 years ago. Updated over 6 years ago.

Status:

Resolved

Priority:

Low

Assignee:

Jim Pingle

Category:

Certificates

Target version:

2.4.2

Start date:

09/21/2017

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

Release Notes:

Affected Version:

All

Affected Architecture:

All

Description

Currently, you can import any certificate as a CA, even ones that are actually unusable as a CA. Subsequently, you can select that in packages that require a usable CA to sign their own certificates, such as Squid.

(Found randomly when debugging a Squid issue with a user, see https://forum.pfsense.org/index.php?topic=136883.msg749056#msg749056)

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #7885

Cert. Manager should validate EKUs on importing a certificate authority

Updated by Jim Pingle over 6 years ago

Updated by Jim Thompson over 6 years ago

Updated by Jim Pingle over 6 years ago

Updated by Jim Pingle over 6 years ago