TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / refs/heads/polarssl-0.13 / . / programs / ssl / test-ca / sslconf.txt
blob: 81022d77ecd2ff39214c81170c8660b918a9e609 [file] [log] [blame]
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]1##================================================================
2##============== Example OpenSSL configuration file ==============
3##================================================================
4
5# References:
6#
7# /etc/ssl/openssl.conf
8# http://www.openssl.org/docs/apps/config.html
9# http://www.openssl.org/docs/apps/x509v3_config.html
10
11[ ca ]
12default_ca = my_ca
13
14[ my_ca ]
15certificate = test-ca.crt
16private_key = test-ca.key
17database = index
18serial = serial
19
20new_certs_dir = newcerts
21default_crl_days = 60
22default_days = 730
23default_md = sha1
24policy = my_policy
25x509_extensions = v3_usr
26
27[ my_policy ]
Paul Bakkerb29e23c2009-02-09 21:06:41 +0000[diff] [blame]28countryName = supplied
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]29organizationName = match
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]30commonName = supplied
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]31
32[ req ]
33distinguished_name = my_req_dn
34x509_extensions = v3_ca
Paul Bakkerb29e23c2009-02-09 21:06:41 +0000[diff] [blame]35prompt = no
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]36
37[ v3_ca ]
38basicConstraints = CA:TRUE
39subjectKeyIdentifier = hash
40authorityKeyIdentifier = keyid:always,issuer:always
41
42[ v3_usr ]
43basicConstraints = CA:FALSE
44subjectKeyIdentifier = hash
45authorityKeyIdentifier = keyid,issuer
Paul Bakker3375b212009-01-15 20:46:08 +0000[diff] [blame]46
Paul Bakkerb29e23c2009-02-09 21:06:41 +0000[diff] [blame]47[ my_req_dn ]
48C=NL
49O=PolarSSL