Renewal breaks certificate purposes #14

aTanCS · 2016-02-11T10:11:56Z

S/MIME signing and encryption are missing after renewal

After creating a new certificate:

Certificate purposes:
SSL client : Yes
SSL client CA : No
SSL server : No
SSL server CA : No
Netscape SSL server : No
Netscape SSL server CA : No
S/MIME signing : Yes
S/MIME signing CA : No
S/MIME encryption : Yes
S/MIME encryption CA : No
CRL signing : No
CRL signing CA : No
Any Purpose : Yes
Any Purpose CA : Yes
OCSP helper : Yes
OCSP helper CA : No
Time Stamp signing : No
Time Stamp signing CA : No

After renewal:

Certificate purposes:
SSL client : Yes
SSL client CA : No
SSL server : No
SSL server CA : No
Netscape SSL server : No
Netscape SSL server CA : No
S/MIME signing : No
S/MIME signing CA : No
S/MIME encryption : No
S/MIME encryption CA : No
CRL signing : No
CRL signing CA : No
Any Purpose : Yes
Any Purpose CA : Yes
OCSP helper : Yes
OCSP helper CA : No
Time Stamp signing : No
Time Stamp signing CA : No

The text was updated successfully, but these errors were encountered:

aTanCS · 2016-02-11T10:36:26Z

Quick fix: replace code in openssl_functions.php at 706 to:

    if (ereg('E-mail Protection', $certtext) && ereg('Code Signing', $certtest)) {
        $cert_type = 'email_signing';
    }
    if (ereg('E-mail Protection', $certtext)) {
        $cert_type = 'email';
    }

reetp pushed a commit to reetp/phpki that referenced this issue Feb 27, 2020

Revert changes which I am not sure about. Add fix from radicand#14

1f87347

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Renewal breaks certificate purposes #14

Renewal breaks certificate purposes #14

aTanCS commented Feb 11, 2016

aTanCS commented Feb 11, 2016

Renewal breaks certificate purposes #14

Renewal breaks certificate purposes #14

Comments

aTanCS commented Feb 11, 2016

aTanCS commented Feb 11, 2016