首页 发现 帮助
登录
OWEALs
/
openssl
镜像自地址 git://git.openssl.org/openssl.git
2
0
派生 0
文件 工单管理 1 Wiki
目录树: f5afac4bda
分支列表 标签列表
openssl
/
test
/
test.cnf

test.cnf 2.3 KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. 

  2. ####################################################################
    3. 

  3. [ ca ]
    4. 

  4. default_ca	= CA_default		# The default ca section
    5. 

  5. 

  6. ####################################################################
    7. 

  7. [ CA_default ]
    8. 

  8. 

  9. dir		= ./demoCA		# Where everything is kept
    10. 

  10. certs		= $dir/certs		# Where the issued certs are kept
    11. 

  11. crl_dir		= $dir/crl		# Where the issued crl are kept
    12. 

  12. database	= $dir/index.txt	# database index file.
    13. 

  13. new_certs_dir	= $dir/new_certs	# default place for new certs.
    14. 

  14. 

  15. certificate	= $dir/CAcert.pem 	# The CA certificate
    16. 

  16. serial		= $dir/serial 		# The current serial number
    17. 

  17. crl		= $dir/crl.pem 		# The current CRL
    18. 

  18. private_key	= $dir/private/CAkey.pem# The private key
    19. 

  19. 

  20. default_days	= 365			# how long to certify for
    21. 

  21. default_crl_days= 30			# how long before next CRL
    22. 

  22. default_md	= md5			# which md to use.
    23. 

  23. 

  24. # A few difference way of specifying how similar the request should look
    25. 

  25. # For type CA, the listed attributes must be the same, and the optional
    26. 

  26. # and supplied fields are just that :-)
    27. 

  27. policy		= policy_match
    28. 

  28. 

  29. # For the CA policy
    30. 

  30. [ policy_match ]
    31. 

  31. countryName		= match
    32. 

  32. stateOrProvinceName	= match
    33. 

  33. organizationName	= match
    34. 

  34. organizationalUnitName	= optional
    35. 

  35. commonName		= supplied
    36. 

  36. emailAddress		= optional
    37. 

  37. 

  38. # For the 'anything' policy
    39. 

  39. # At this point in time, you must list all acceptable 'object'
    40. 

  40. # types.
    41. 

  41. [ policy_anything ]
    42. 

  42. countryName		= optional
    43. 

  43. stateOrProvinceName	= optional
    44. 

  44. localityName		= optional
    45. 

  45. organizationName	= optional
    46. 

  46. organizationalUnitName	= optional
    47. 

  47. commonName		= supplied
    48. 

  48. emailAddress		= optional
    49. 

  49. 

  50. ####################################################################
    51. 

  51. [ req ]
    52. 

  52. default_bits		= 2048
    53. 

  53. default_keyfile 	= testkey.pem
    54. 

  54. distinguished_name	= req_distinguished_name
    55. 

  55. encrypt_rsa_key		= no
    56. 

  56. 

  57. # Make altreq be identical to req
    58. 

  58. [ altreq ]
    59. 

  59. default_bits		= 2048
    60. 

  60. default_keyfile 	= testkey.pem
    61. 

  61. distinguished_name	= req_distinguished_name
    62. 

  62. encrypt_rsa_key		= no
    63. 

  63. 

  64. [ req_distinguished_name ]
    65. 

  65. countryName			= C field
    66. 

  66. countryName_value		= AU
    67. 

  67. stateOrProvinceName		= SP field
    68. 

  68. stateOrProvinceName_value	=
    69. 

  69. localityName			= L field
    70. 

  70. localityName_value		= Brisbane
    71. 

  71. organizationName		= O field
    72. 

  72. organizationName_value		= CryptSoft Pty Ltd
    73. 

  73. organizationalUnitName		= OU field
    74. 

  74. organizationalUnitName_value	= .
    75. 

  75. commonName			= CN field
    76. 

  76. commonName_value		= Eric Young
    77. 

  77. emailAddress			= email field
    78. 

  78. emailAddress_value		= eay@mincom.oz.au
    79.