Symaptic: os/security/cryptoservices/certificateandkeymgmt/testcertificates/openssl/openssl.config@260cb5ec6c19 (annotated)

sl@0	1	# openssl.config
sl@0	2	#
sl@0	3	# Config file for OpenSSL CA
sl@0	4
sl@0	5	[ ca ]
sl@0	6
sl@0	7	default_ca = ca_default # The default ca section
sl@0	8
sl@0	9	[ Root1 ]
sl@0	10
sl@0	11	dir = Root1
sl@0	12	database = $dir\\index.txt # index file.
sl@0	13	new_certs_dir = $dir\\certs # new certs dir
sl@0	14
sl@0	15	certificate = $dir\\certs\\ca.pem # The CA cert
sl@0	16	serial = $dir\\serial # serial no file
sl@0	17	private_key = $dir\\private\\ca.key.pem # CA private key
sl@0	18	RANDFILE = $dir\\private\\.rand # random number file
sl@0	19
sl@0	20	default_days = 365 # how long to certify for
sl@0	21	default_crl_days= 30 # how long before next CRL
sl@0	22	default_md = md5 # md to use
sl@0	23
sl@0	24	policy = ca_policy # our policy
sl@0	25	email_in_dn = no # Don't add the email into cert DN
sl@0	26
sl@0	27	nameopt = default_ca # Subject name display option
sl@0	28	certopt = default_ca # Certificate display option
sl@0	29	copy_extensions = none # Don't copy extensions from request
sl@0	30
sl@0	31	distinguished_name = root_ca_distinguished_name
sl@0	32
sl@0	33
sl@0	34	[ Root2 ]
sl@0	35
sl@0	36	dir = Root2
sl@0	37	database = $dir\\index.txt # index file.
sl@0	38	new_certs_dir = $dir\\certs # new certs dir
sl@0	39
sl@0	40	certificate = $dir\\certs\\ca.pem # The CA cert
sl@0	41	serial = $dir\\serial # serial no file
sl@0	42	private_key = $dir\\private\\ca.key.pem # CA private key
sl@0	43	RANDFILE = $dir\\private\\.rand # random number file
sl@0	44
sl@0	45	default_days = 365 # how long to certify for
sl@0	46	default_crl_days= 30 # how long before next CRL
sl@0	47	default_md = sha1 # md to use
sl@0	48
sl@0	49	policy = ca_policy # our policy
sl@0	50	email_in_dn = no # Don't add the email into cert DN
sl@0	51
sl@0	52	nameopt = default_ca # Subject name display option
sl@0	53	certopt = default_ca # Certificate display option
sl@0	54	copy_extensions = none # Don't copy extensions from request
sl@0	55
sl@0	56
sl@0	57	[ Root5]
sl@0	58
sl@0	59	dir = Root5
sl@0	60	database = $dir\\index.txt # index file.
sl@0	61	new_certs_dir = $dir\\certs # new certs dir
sl@0	62
sl@0	63	certificate = $dir\\certs\\ca.pem # The CA cert
sl@0	64	serial = $dir\\serial # serial no file
sl@0	65	private_key = $dir\\private\\ca.key.pem # CA private key
sl@0	66	RANDFILE = $dir\\private\\.rand # random number file
sl@0	67
sl@0	68	default_days = 365 # how long to certify for
sl@0	69	default_crl_days= 30 # how long before next CRL
sl@0	70	default_md = md5 # md to use
sl@0	71
sl@0	72	policy = ca_policy # our policy
sl@0	73	email_in_dn = no # Don't add the email into cert DN
sl@0	74
sl@0	75	nameopt = default_ca # Subject name display option
sl@0	76	certopt = default_ca # Certificate display option
sl@0	77	copy_extensions = none # Don't copy extensions from request
sl@0	78
sl@0	79
sl@0	80	[ Root5-Mid ]
sl@0	81	dir = Root5-Mid
sl@0	82	database = $dir\\index.txt # index file.
sl@0	83	new_certs_dir = $dir\\certs # new certs dir
sl@0	84
sl@0	85	certificate = $dir\\certs\\Mid-R5.pem # The CA cert
sl@0	86	serial = $dir\\serial # serial no file
sl@0	87	private_key = $dir\\private\\Mid-R5.key.pem # CA private key
sl@0	88	RANDFILE = $dir\\private\\.rand # random number file
sl@0	89
sl@0	90	default_days = 365 # how long to certify for
sl@0	91	default_crl_days= 30 # how long before next CRL
sl@0	92	default_md = md5 # md to use
sl@0	93
sl@0	94	policy = ca_policy # our policy
sl@0	95	email_in_dn = no # Don't add the email into cert DN
sl@0	96
sl@0	97	nameopt = default_ca # Subject name display option
sl@0	98	certopt = default_ca # Certificate display option
sl@0	99	copy_extensions = none # Don't copy extensions from request
sl@0	100
sl@0	101
sl@0	102
sl@0	103	[ Root3-OCSP ]
sl@0	104
sl@0	105	dir = Root3-OCSP
sl@0	106	database = $dir\\index.txt # index file.
sl@0	107	new_certs_dir = $dir\\certs # new certs dir
sl@0	108
sl@0	109	certificate = $dir\\certs\\ca.pem # The CA cert
sl@0	110	serial = $dir\\serial # serial no file
sl@0	111	private_key = $dir\\private\\ca.key.pem # CA private key
sl@0	112	RANDFILE = $dir\\private\\.rand # random number file
sl@0	113
sl@0	114	default_days = 365 # how long to certify for
sl@0	115	default_crl_days= 30 # how long before next CRL
sl@0	116	default_md = md5 # md to use
sl@0	117
sl@0	118	policy = ca_policy # our policy
sl@0	119	email_in_dn = no # Don't add the email into cert DN
sl@0	120
sl@0	121	nameopt = default_ca # Subject name display option
sl@0	122	certopt = default_ca # Certificate display option
sl@0	123	copy_extensions = none # Don't copy extensions from request
sl@0	124
sl@0	125
sl@0	126	[ OCSPSigningRoot ]
sl@0	127
sl@0	128	dir = OCSPSigningRoot
sl@0	129	database = $dir\\index.txt # index file.
sl@0	130	new_certs_dir = $dir\\certs # new certs dir
sl@0	131
sl@0	132	certificate = $dir\\certs\\ca.pem # The CA cert
sl@0	133	serial = $dir\\serial # serial no file
sl@0	134	private_key = $dir\\private\\ca.key.pem # CA private key
sl@0	135	RANDFILE = $dir\\private\\.rand # random number file
sl@0	136
sl@0	137	default_days = 365 # how long to certify for
sl@0	138	default_crl_days= 30 # how long before next CRL
sl@0	139	default_md = sha1 # md to use
sl@0	140
sl@0	141	policy = ca_policy # our policy
sl@0	142	email_in_dn = no # Don't add the email into cert DN
sl@0	143
sl@0	144	nameopt = default_ca # Subject name display option
sl@0	145	certopt = default_ca # Certificate display option
sl@0	146	copy_extensions = none # Don't copy extensions from request
sl@0	147
sl@0	148
sl@0	149	[ Root5_Root_Ext ]
sl@0	150	keyUsage=critical,keyCertSign
sl@0	151	basicConstraints=critical,CA:TRUE, pathlen:5
sl@0	152	subjectKeyIdentifier=hash
sl@0	153
sl@0	154	[ Root5_Ext ]
sl@0	155	extendedKeyUsage=codeSigning
sl@0	156	certificatePolicies=1.2.826.0.1.1796587.1
sl@0	157
sl@0	158	[ Root5_Mid ]
sl@0	159	keyUsage=critical,keyCertSign
sl@0	160	basicConstraints=critical,CA:TRUE, pathlen:5
sl@0	161	subjectKeyIdentifier=hash
sl@0	162
sl@0	163	[ Root5_Mid_EE ]
sl@0	164	extendedKeyUsage=codeSigning
sl@0	165	certificatePolicies=1.2.826.0.1.1796587.1
sl@0	166	basicConstraints=critical,CA:FALSE
sl@0	167
sl@0	168
sl@0	169	[ NoOCSP_Ext ]
sl@0	170	1.3.6.1.5.5.7.48.1.5=DER:0500
sl@0	171
sl@0	172
sl@0	173	[ req ]
sl@0	174	distinguished_name = root_ca_distinguished_name
sl@0	175
sl@0	176	[ ca_policy ]
sl@0	177
sl@0	178	organizationName = supplied
sl@0	179	commonName = supplied
sl@0	180
sl@0	181
sl@0	182	[ root_ca_distinguished_name ]
sl@0	183	commonName = Symbian Software Ltd
sl@0	184	stateOrProvinceName = London
sl@0	185	countryName = UK
sl@0	186	emailAddress = Jeremy.Smithers@Symbian.com
sl@0	187	organizationName = Symbian Software Ltd

author	sl
	Tue, 10 Jun 2014 14:32:02 +0200
changeset 1	260cb5ec6c19
permissions	-rw-r--r--