diff -r 000000000000 -r 2c201484c85f cryptoservices/certificateandkeymgmt/testcertificates/oldCA/openssl.config --- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/cryptoservices/certificateandkeymgmt/testcertificates/oldCA/openssl.config Wed Jul 08 11:25:26 2009 +0100 @@ -0,0 +1,209 @@ +# openssl.config +# +# Config file for OpenSSL CA + +[ ca ] + +default_ca = ca_default # The default ca section + +[ Root1 ] + +dir = Root1 +database = $dir\\index.txt # index file. +new_certs_dir = $dir\\certs # new certs dir + +certificate = $dir\\certs\\ca.pem # The CA cert +serial = $dir\\serial # serial no file +private_key = $dir\\private\\ca.key.pem # CA private key +RANDFILE = $dir\\private\\.rand # random number file + +default_days = 365 # how long to certify for +default_crl_days= 30 # how long before next CRL +default_md = md5 # md to use + +policy = ca_policy # our policy +email_in_dn = no # Don't add the email into cert DN + +nameopt = default_ca # Subject name display option +certopt = default_ca # Certificate display option +copy_extensions = none # Don't copy extensions from request + +distinguished_name = root_ca_distinguished_name + + +[ Root2 ] + +dir = Root2 +database = $dir\\index.txt # index file. +new_certs_dir = $dir\\certs # new certs dir + +certificate = $dir\\certs\\ca.pem # The CA cert +serial = $dir\\serial # serial no file +private_key = $dir\\private\\ca.key.pem # CA private key +RANDFILE = $dir\\private\\.rand # random number file + +default_days = 365 # how long to certify for +default_crl_days= 30 # how long before next CRL +default_md = sha1 # md to use + +policy = ca_policy # our policy +email_in_dn = no # Don't add the email into cert DN + +nameopt = default_ca # Subject name display option +certopt = default_ca # Certificate display option +copy_extensions = none # Don't copy extensions from request + + +[ Root5] + +dir = Root5 +database = $dir\\index.txt # index file. +new_certs_dir = $dir\\certs # new certs dir + +certificate = $dir\\certs\\ca.pem # The CA cert +serial = $dir\\serial # serial no file +private_key = $dir\\private\\ca.key.pem # CA private key +RANDFILE = $dir\\private\\.rand # random number file + +default_days = 365 # how long to certify for +default_crl_days= 30 # how long before next CRL +default_md = md5 # md to use + +policy = ca_policy # our policy +email_in_dn = no # Don't add the email into cert DN + +nameopt = default_ca # Subject name display option +certopt = default_ca # Certificate display option +copy_extensions = none # Don't copy extensions from request + + +[ Root5-Mid ] +dir = Root5-Mid +database = $dir\\index.txt # index file. +new_certs_dir = $dir\\certs # new certs dir + +certificate = $dir\\certs\\Mid-R5.pem # The CA cert +serial = $dir\\serial # serial no file +private_key = $dir\\private\\Mid-R5.key.pem # CA private key +RANDFILE = $dir\\private\\.rand # random number file + +default_days = 365 # how long to certify for +default_crl_days= 30 # how long before next CRL +default_md = md5 # md to use + +policy = ca_policy # our policy +email_in_dn = no # Don't add the email into cert DN + +nameopt = default_ca # Subject name display option +certopt = default_ca # Certificate display option +copy_extensions = none # Don't copy extensions from request + + + +[ Root3-OCSP ] + +dir = Root3-OCSP +database = $dir\\index.txt # index file. +new_certs_dir = $dir\\certs # new certs dir + +certificate = $dir\\certs\\ca.pem # The CA cert +serial = $dir\\serial # serial no file +private_key = $dir\\private\\ca.key.pem # CA private key +RANDFILE = $dir\\private\\.rand # random number file + +default_days = 365 # how long to certify for +default_crl_days= 30 # how long before next CRL +default_md = md5 # md to use + +policy = ca_policy # our policy +email_in_dn = no # Don't add the email into cert DN + +nameopt = default_ca # Subject name display option +certopt = default_ca # Certificate display option +copy_extensions = none # Don't copy extensions from request + + +[ Root1-OCSP ] + +dir = Root1-OCSP +database = $dir\\index.txt # index file. +new_certs_dir = $dir\\certs # new certs dir + +certificate = $dir\\certs\\ca.pem # The CA cert +serial = $dir\\serial # serial no file +private_key = $dir\\private\\ca.key.pem # CA private key +RANDFILE = $dir\\private\\.rand # random number file + +default_days = 365 # how long to certify for +default_crl_days= 30 # how long before next CRL +default_md = md5 # md to use + +policy = ca_policy # our policy +email_in_dn = no # Don't add the email into cert DN + +nameopt = default_ca # Subject name display option +certopt = default_ca # Certificate display option +copy_extensions = none + + +[ Root2-OCSP ] + +dir = Root2-OCSP +database = $dir\\index.txt # index file. +new_certs_dir = $dir\\certs # new certs dir + +certificate = $dir\\certs\\ca.pem # The CA cert +serial = $dir\\serial # serial no file +private_key = $dir\\private\\ca.key.pem # CA private key +RANDFILE = $dir\\private\\.rand # random number file + +default_days = 365 # how long to certify for +default_crl_days= 30 # how long before next CRL +default_md = md5 # md to use + +policy = ca_policy # our policy +email_in_dn = no # Don't add the email into cert DN + +nameopt = default_ca # Subject name display option +certopt = default_ca # Certificate display option +copy_extensions = none + +[ Root5_Root_Ext ] +keyUsage=critical,keyCertSign +basicConstraints=critical,CA:TRUE, pathlen:5 +subjectKeyIdentifier=hash + +[ Root5_Ext ] +extendedKeyUsage=codeSigning +certificatePolicies=1.2.826.0.1.1796587.1 + +[ Root5_Mid ] +keyUsage=critical,keyCertSign +basicConstraints=critical,CA:TRUE, pathlen:5 +subjectKeyIdentifier=hash + +[ Root5_Mid_EE ] +extendedKeyUsage=codeSigning +certificatePolicies=1.2.826.0.1.1796587.1 +basicConstraints=critical,CA:FALSE + + +[ NoOCSP_Ext ] +1.3.6.1.5.5.7.48.1.5=DER:0500 + + +[ req ] +distinguished_name = root_ca_distinguished_name + +[ ca_policy ] + +organizationName = supplied +commonName = supplied + + +[ root_ca_distinguished_name ] + commonName = Symbian Software Ltd + stateOrProvinceName = London + countryName = UK + emailAddress = Jeremy.Smithers@Symbian.com + organizationName = Symbian Software Ltd