xref: /netbsd-src/crypto/external/bsd/openssl/dist/test/test.cnf (revision 0e2e28bced52bda3788c857106bde6c44d2df3b8) 
1a89c9211Schristos
2a89c9211Schristos####################################################################
3a89c9211Schristos[ ca ]
4a89c9211Schristosdefault_ca	= CA_default		# The default ca section
5a89c9211Schristos
6a89c9211Schristos####################################################################
7a89c9211Schristos[ CA_default ]
8a89c9211Schristos
9a89c9211Schristosdir		= ./demoCA		# Where everything is kept
10a89c9211Schristoscerts		= $dir/certs		# Where the issued certs are kept
11a89c9211Schristoscrl_dir		= $dir/crl		# Where the issued crl are kept
12a89c9211Schristosdatabase	= $dir/index.txt	# database index file.
13a89c9211Schristosnew_certs_dir	= $dir/new_certs	# default place for new certs.
14a89c9211Schristos
15a89c9211Schristoscertificate	= $dir/CAcert.pem 	# The CA certificate
16a89c9211Schristosserial		= $dir/serial 		# The current serial number
17a89c9211Schristoscrl		= $dir/crl.pem 		# The current CRL
18a89c9211Schristosprivate_key	= $dir/private/CAkey.pem# The private key
19a89c9211Schristos
20a89c9211Schristosdefault_days	= 365			# how long to certify for
21a89c9211Schristosdefault_crl_days= 30			# how long before next CRL
22a89c9211Schristosdefault_md	= md5			# which md to use.
23a89c9211Schristos
24a89c9211Schristos# A few difference way of specifying how similar the request should look
25a89c9211Schristos# For type CA, the listed attributes must be the same, and the optional
26a89c9211Schristos# and supplied fields are just that :-)
27a89c9211Schristospolicy		= policy_match
28a89c9211Schristos
29a89c9211Schristos# For the CA policy
30a89c9211Schristos[ policy_match ]
31a89c9211SchristoscountryName		= match
32a89c9211SchristosstateOrProvinceName	= match
33a89c9211SchristosorganizationName	= match
34a89c9211SchristosorganizationalUnitName	= optional
35a89c9211SchristoscommonName		= supplied
36a89c9211SchristosemailAddress		= optional
37a89c9211Schristos
38a89c9211Schristos# For the 'anything' policy
39a89c9211Schristos# At this point in time, you must list all acceptable 'object'
40a89c9211Schristos# types.
41a89c9211Schristos[ policy_anything ]
42a89c9211SchristoscountryName		= optional
43a89c9211SchristosstateOrProvinceName	= optional
44a89c9211SchristoslocalityName		= optional
45a89c9211SchristosorganizationName	= optional
46a89c9211SchristosorganizationalUnitName	= optional
47a89c9211SchristoscommonName		= supplied
48a89c9211SchristosemailAddress		= optional
49a89c9211Schristos
50a89c9211Schristos####################################################################
51a89c9211Schristos[ req ]
52b0d17251Schristosdistinguished_name	= req_distinguished_name
53b0d17251Schristosencrypt_rsa_key		= no
54b0d17251Schristos
55b0d17251Schristos# Make altreq be identical to req
56b0d17251Schristos[ altreq ]
57a89c9211Schristosdistinguished_name	= req_distinguished_name
58a89c9211Schristosencrypt_rsa_key		= no
59a89c9211Schristos
60a89c9211Schristos[ req_distinguished_name ]
61b0d17251SchristoscountryName			= C field
62a89c9211SchristoscountryName_value		= AU
63b0d17251SchristosstateOrProvinceName		= SP field
64a89c9211SchristosstateOrProvinceName_value	=
65b0d17251SchristoslocalityName			= L field
66a89c9211SchristoslocalityName_value		= Brisbane
67b0d17251SchristosorganizationName		= O field
68a89c9211SchristosorganizationName_value		= CryptSoft Pty Ltd
69b0d17251SchristosorganizationalUnitName		= OU field
70a89c9211SchristosorganizationalUnitName_value	= .
71b0d17251SchristoscommonName			= CN field
72a89c9211SchristoscommonName_value		= Eric Young
73b0d17251SchristosemailAddress			= email field
74a89c9211SchristosemailAddress_value		= eay@mincom.oz.au
75*0e2e28bcSchristos
76*0e2e28bcSchristos[ dirname_sec ]
77*0e2e28bcSchristosC  = UK
78*0e2e28bcSchristosO  = My Organization
79*0e2e28bcSchristosOU = My Unit
80*0e2e28bcSchristosCN = My Name
81