TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / e12b01d31b032e5db26f9b5f36f577668ad3e867 / . / tests / data_files / test-ca.opensslconf
blob: 16afebf77b1f7f31c7aa30af1ae682a0ffc2f96e [file] [log] [blame]
Gilles Peskinef040a172017-05-05 18:56:12 +0200[diff] [blame]1[req]
2x509_extensions = v3_ca
3distinguished_name = req_dn
4
5[req_dn]
6countryName = NL
7organizationalUnitName = PolarSSL
8commonName = PolarSSL Test CA
9
10[v3_ca]
11subjectKeyIdentifier=hash
12authorityKeyIdentifier=keyid:always,issuer:always
13basicConstraints = CA:true
Manuel Pégourié-Gonnardc10afdb2017-06-29 09:48:08 +0200[diff] [blame]14
Ron Eldorb2dc3fa2019-03-21 13:40:13 +0200[diff] [blame]15[othername_san]
16subjectAltName=otherName:1.3.6.1.5.5.7.8.4;SEQ:hw_module_name
17
Victor Barpp Gomesd0225af2022-09-29 11:40:20 -0300[diff] [blame]18[nonprintable_othername_san]
19subjectAltName=otherName:1.3.6.1.5.5.7.8.4;SEQ:nonprintable_hw_module_name
20
David Horstmann119d7e22022-11-25 15:50:30 +0000[diff] [blame]21[unsupported_othername_san]
Ron Eldorb2dc3fa2019-03-21 13:40:13 +0200[diff] [blame]22subjectAltName=otherName:1.2.3.4;UTF8:some other identifier
23
Ron Eldor9eeb8612019-02-12 15:03:42 +0200[diff] [blame]24[dns_alt_names]
25subjectAltName=DNS:example.com, DNS:example.net, DNS:*.example.org
26
Przemek Stekiel608e3ef2023-02-09 14:47:50 +0100[diff] [blame]27[rfc822name_names]
28subjectAltName=email:my@other.address,email:second@other.address
29
Ron Eldorb2dc3fa2019-03-21 13:40:13 +0200[diff] [blame]30[alt_names]
31DNS.1=example.com
32otherName.1=1.3.6.1.5.5.7.8.4;SEQ:hw_module_name
33DNS.2=example.net
34DNS.3=*.example.org
35
36[multiple_san]
37subjectAltName=@alt_names
38
39[hw_module_name]
40hwtype = OID:1.3.6.1.4.1.17.3
41hwserial = OCT:123456
42
Victor Barpp Gomesd0225af2022-09-29 11:40:20 -0300[diff] [blame]43[nonprintable_hw_module_name]
44hwtype = OID:1.3.6.1.4.1.17.3
45hwserial = FORMAT:HEX, OCT:3132338081008180333231
46
Ron Eldor74d9acc2019-03-21 14:00:03 +0200[diff] [blame]47[v3_any_policy_ca]
48basicConstraints = CA:true
49certificatePolicies = 2.5.29.32.0
50
51[v3_any_policy_qualifier_ca]
52basicConstraints = CA:true
53certificatePolicies = @policy_info
54
55[v3_multi_policy_ca]
56basicConstraints = CA:true
57certificatePolicies = 1.2.3.4,2.5.29.32.0
58
59[v3_unsupported_policy_ca]
60basicConstraints = CA:true
61certificatePolicies = 1.2.3.4
62
63[policy_info]
64policyIdentifier = 2.5.29.32.0
65CPS.1 ="CPS uri string"
66
Ron Eldor3c4734a2019-03-25 14:05:23 +0200[diff] [blame]67[fan_cert]
68extendedKeyUsage = 1.3.6.1.4.1.45605.1
69
Manuel Pégourié-Gonnardc10afdb2017-06-29 09:48:08 +0200[diff] [blame]70[noext_ca]
71basicConstraints = CA:true
Gilles Peskine15ad5792018-03-22 22:21:55 +0100[diff] [blame]72
Manuel Pégourié-Gonnardfd3e4fb2018-03-13 11:53:30 +0100[diff] [blame]73[test_ca]
74database = /dev/null
75
76[crl_ext_idp]
77issuingDistributionPoint=critical, @idpdata
78
Manuel Pégourié-Gonnarda63305d2018-03-14 12:23:56 +0100[diff] [blame]79[crl_ext_idp_nc]
80issuingDistributionPoint=@idpdata
81
Manuel Pégourié-Gonnardfd3e4fb2018-03-13 11:53:30 +0100[diff] [blame]82[idpdata]
83fullname=URI:http://pki.example.com/
Manuel Pégourié-Gonnard7d2a4d82020-07-23 12:39:53 +0200[diff] [blame]84
85# these IPs are the ascii values for 'abcd' and 'abcd.example.com'
86[tricky_ip_san]
87subjectAltName=IP:97.98.99.100,IP:6162:6364:2e65:7861:6d70:6c65:2e63:6f6d
Przemek Stekiele7fbbb32023-01-12 15:30:45 +0100[diff] [blame]88
89[csr_ext_v3_keyUsage]
90keyUsage = digitalSignature, keyEncipherment
91
92[csr_ext_v3_subjectAltName]
93subjectAltName=DNS:example.com, DNS:example.net, DNS:*.example.org
94
95[csr_ext_v3_nsCertType]
96nsCertType=server
97
98[csr_ext_v3_all]
99keyUsage = cRLSign
100subjectAltName=otherName:1.3.6.1.5.5.7.8.4;SEQ:nonprintable_hw_module_name
101nsCertType=client
Andrzej Kureke12b01d2023-01-10 06:47:38 -0500[diff] [blame^]102
103[directory_name_san]
104subjectAltName=dirName:dirname_sect
105
106[dirname_sect]
107C=UK
108O=Mbed TLS
109CN=Mbed TLS directoryName SAN