TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / refs/heads/polarssl-1.2 / . / programs / ssl / test-ca / sslconf.txt
blob: 069255639aa81f230367c6c6e93cbc7cad21cc2f [file] [log] [blame]
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]1##================================================================
2##============== Example OpenSSL configuration file ==============
3##================================================================
4
5# References:
6#
7# /etc/ssl/openssl.conf
8# http://www.openssl.org/docs/apps/config.html
9# http://www.openssl.org/docs/apps/x509v3_config.html
10
11[ ca ]
12default_ca = my_ca
13
14[ my_ca ]
15certificate = test-ca.crt
16private_key = test-ca.key
17database = index
18serial = serial
19
20new_certs_dir = newcerts
Paul Bakker400ff6f2011-02-20 10:40:16 +0000[diff] [blame]21default_crl_days = 5
22default_days = 3653
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]23default_md = sha1
24policy = my_policy
25x509_extensions = v3_usr
Paul Bakkera8cd2392012-02-11 16:09:32 +0000[diff] [blame]26copy_extensions = copy
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]27
28[ my_policy ]
Paul Bakkerb29e23c2009-02-09 21:06:41 +0000[diff] [blame]29countryName = supplied
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]30organizationName = match
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]31commonName = supplied
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]32
33[ req ]
34distinguished_name = my_req_dn
35x509_extensions = v3_ca
Paul Bakkera8cd2392012-02-11 16:09:32 +0000[diff] [blame]36prompt = no
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]37
38[ v3_ca ]
39basicConstraints = CA:TRUE
40subjectKeyIdentifier = hash
41authorityKeyIdentifier = keyid:always,issuer:always
42
43[ v3_usr ]
44basicConstraints = CA:FALSE
45subjectKeyIdentifier = hash
46authorityKeyIdentifier = keyid,issuer
Paul Bakker3375b212009-01-15 20:46:08 +0000[diff] [blame]47
Paul Bakkerb29e23c2009-02-09 21:06:41 +0000[diff] [blame]48[ my_req_dn ]
49C=NL
50O=PolarSSL