Support sMIMECapabilities extensions in certificates (RFC 4262)

pki-bot commented 3 years ago

This issue was migrated from Pagure Issue #659. Originally filed by awnuk (@awnuk) on 2013-06-14 00:18:08:

Assigned to nobody
Associated bugzillas
- https://bugzilla.redhat.com/show_bug.cgi?id=652482
- https://bugzilla.redhat.com/show_bug.cgi?id=509481

Bug 509481 - Original description

RFC 4262 defines a new certificate extension which is merely an sMIMECapabilities SEQUENCE, just like the one put into a signed S/MIME email. Microsoft's Certificate Server product puts these extensions into S/MIME encryption certs that it issues. DogTag should fully support them.

This certificate extension has an identifying OID of sMIMECapabilities (1 2 840 113549 1 9 15) and the OCTET STRING encapsulates a data structure that is identical to the data structure of the SMIMECapabilities attribute defined in RFC 3851.

Additional comment

Support requires pretty prints, encoding and decoding procedures, administrative interface support, and enrollment profile support.

http://tools.ietf.org/html/rfc4262

http://tools.ietf.org/html/rfc3851

http://tools.ietf.org/html/rfc5751

pki-bot commented 3 years ago

Comment from awnuk (@awnuk) at 2013-06-14 00:24:10

https://bugzilla.redhat.com/show_bug.cgi?id=509481

https://bugzilla.redhat.com/show_bug.cgi?id=652482

pki-bot commented 3 years ago

Comment from awnuk (@awnuk) at 2017-02-27 14:05:20

Metadata Update from @awnuk:

Issue set to the milestone: UNTRIAGED

pki-bot / pki-issues-final

Support sMIMECapabilities extensions in certificates (RFC 4262) #656

Bug 509481 - Original description

Additional comment