Add a CA section, to make sure the test will work with the changes in
authorRichard Levitte <levitte@openssl.org>
Thu, 3 Apr 2003 22:38:31 +0000 (22:38 +0000)
committerRichard Levitte <levitte@openssl.org>
Thu, 3 Apr 2003 22:38:31 +0000 (22:38 +0000)
CA.sh.

test/CAss.cnf

index b941b7ae15703a6eba452835c5f28a7eb85d19c6..0884fee36159c3fdba98084f49cbff30a3e1e7db 100644 (file)
@@ -23,3 +23,52 @@ organizationName_value               = Dodgy Brothers
 
 commonName                     = Common Name (eg, YOUR name)
 commonName_value               = Dodgy CA
+
+####################################################################
+[ ca ]
+default_ca     = CA_default            # The default ca section
+
+####################################################################
+[ CA_default ]
+
+dir            = ./demoCA              # Where everything is kept
+certs          = $dir/certs            # Where the issued certs are kept
+crl_dir                = $dir/crl              # Where the issued crl are kept
+database       = $dir/index.txt        # database index file.
+#unique_subject        = no                    # Set to 'no' to allow creation of
+                                       # several ctificates with same subject.
+new_certs_dir  = $dir/newcerts         # default place for new certs.
+
+certificate    = $dir/cacert.pem       # The CA certificate
+serial         = $dir/serial           # The current serial number
+crl            = $dir/crl.pem          # The current CRL
+private_key    = $dir/private/cakey.pem# The private key
+RANDFILE       = $dir/private/.rand    # private random number file
+
+x509_extensions        = v3_ca                 # The extentions to add to the cert
+
+name_opt       = ca_default            # Subject Name options
+cert_opt       = ca_default            # Certificate field options
+
+default_days   = 365                   # how long to certify for
+default_crl_days= 30                   # how long before next CRL
+default_md     = md5                   # which md to use.
+preserve       = no                    # keep passed DN ordering
+
+policy         = policy_anything
+
+[ policy_anything ]
+countryName            = optional
+stateOrProvinceName    = optional
+localityName           = optional
+organizationName       = optional
+organizationalUnitName = optional
+commonName             = supplied
+emailAddress           = optional
+
+
+
+[ v3_ca ]
+subjectKeyIdentifier=hash
+authorityKeyIdentifier=keyid:always,issuer:always
+basicConstraints = CA:true