1c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org# 2c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org# SSLeay example configuration file. 3c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org# This is mostly being used for generation of certificate requests. 4c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org# 5c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 67453c6c0666947e06d87565404f4397a4b387f91digit@chromium.orgRANDFILE = /sdcard/android.testssl/.rnd 7c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 8c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#################################################################### 9c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org[ req ] 102c4508dfe2bc5b6296c01114ed11ddc64b7718c6digit@chromium.orgdefault_bits = 2048 11c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgdefault_keyfile = keySS.pem 12c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgdistinguished_name = req_distinguished_name 13c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgencrypt_rsa_key = no 14c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgdefault_md = sha1 15c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 16c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org[ req_distinguished_name ] 17c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcountryName = Country Name (2 letter code) 18c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcountryName_default = AU 19c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcountryName_value = AU 20c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 21c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgorganizationName = Organization Name (eg, company) 22c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgorganizationName_value = Dodgy Brothers 23c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 24c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcommonName = Common Name (eg, YOUR name) 25c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcommonName_value = Dodgy CA 26c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 27c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#################################################################### 28c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org[ ca ] 29c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgdefault_ca = CA_default # The default ca section 30c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 31c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#################################################################### 32c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org[ CA_default ] 33c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 34c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgdir = ./demoCA # Where everything is kept 35c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcerts = $dir/certs # Where the issued certs are kept 36c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcrl_dir = $dir/crl # Where the issued crl are kept 37c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgdatabase = $dir/index.txt # database index file. 38c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#unique_subject = no # Set to 'no' to allow creation of 39c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org # several ctificates with same subject. 40c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgnew_certs_dir = $dir/newcerts # default place for new certs. 41c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 42c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcertificate = $dir/cacert.pem # The CA certificate 43c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgserial = $dir/serial # The current serial number 44c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcrl = $dir/crl.pem # The current CRL 45c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgprivate_key = $dir/private/cakey.pem# The private key 46c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgRANDFILE = $dir/private/.rand # private random number file 47c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 48c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgx509_extensions = v3_ca # The extentions to add to the cert 49c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 50c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgname_opt = ca_default # Subject Name options 51c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcert_opt = ca_default # Certificate field options 52c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 53c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgdefault_days = 365 # how long to certify for 54c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgdefault_crl_days= 30 # how long before next CRL 55c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgdefault_md = md5 # which md to use. 56c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgpreserve = no # keep passed DN ordering 57c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 58c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgpolicy = policy_anything 59c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 60c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org[ policy_anything ] 61c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcountryName = optional 62c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgstateOrProvinceName = optional 63c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orglocalityName = optional 64c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgorganizationName = optional 65c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgorganizationalUnitName = optional 66c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgcommonName = supplied 67c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgemailAddress = optional 68c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 69c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 70c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 71c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org[ v3_ca ] 72c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgsubjectKeyIdentifier=hash 73c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgauthorityKeyIdentifier=keyid:always,issuer:always 74c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgbasicConstraints = CA:true,pathlen:1 75c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgkeyUsage = cRLSign, keyCertSign 76c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgissuerAltName=issuer:copy 77