Symptoms
Unable to create SSL Certificate or Key if the name extension starts with a special extension.
Impact
Key creation or Certificate creation will fail.
The following example command will fail with error.
tmsh create sys crypto key test.key1
tmsh create sys crypto cert test.key1 key test.key1.key common-name test
Error: Key management library returned bad status: 02, Not Found
Conditions
When creating a certificate or key, if the certificate/key name has an extension starts with one of (".key", ".crt", ".csr", ".crl", ".der", ".exp", ".pem"), then the creation will fail.
For example, it is an error to create a key named "test.key1". In this case, the key extension ".key1" starts with ".key".
Workaround
do not create a key or certificate with name extension starts with one of (.key .crt .csr .crl .der .exp .pem).
Fix Information
With this fix, certificate/key extension can start with one of these special extensions.
