net/data/ssl/scripts/policy.cnf - Issue 515583004: Update test cert generation scripts to use SHA-256 by default

Side by Side Diff

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Side by Side Diff: net/data/ssl/scripts/policy.cnf

Issue 515583004: Update test cert generation scripts to use SHA-256 by default (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@test_cert_scripts

Patch Set: Rebased Created 6 years, 2 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch

OLD	NEW
1 CA_DIR=out	1 CA_DIR=out

2 CA_NAME=policy-root	2 CA_NAME=policy-root

3	3

4 [ca]	4 [ca]

5 default_ca = CA_root	5 default_ca = CA_root

6 preserve = yes	6 preserve = yes

7	7

8 [CA_root]	8 [CA_root]

9 dir = ${ENV::CA_DIR}	9 dir = ${ENV::CA_DIR}

10 key_size = 2048	10 key_size = 2048

11 algo = sha1	11 algo = sha256

12 database = $dir/${ENV::CA_NAME}-index.txt	12 database = $dir/${ENV::CA_NAME}-index.txt

13 new_certs_dir = $dir	13 new_certs_dir = $dir

14 serial = $dir/${ENV::CA_NAME}-serial	14 serial = $dir/${ENV::CA_NAME}-serial

15 certificate = $dir/${ENV::CA_NAME}.pem	15 certificate = $dir/${ENV::CA_NAME}.pem

16 private_key = $dir/${ENV::CA_NAME}.key	16 private_key = $dir/${ENV::CA_NAME}.key

17 RANDFILE = $dir/.rand	17 RANDFILE = $dir/.rand

18 default_days = 3650	18 default_days = 3650

19 default_crl_days = 30	19 default_crl_days = 30

20 default_md = sha1	20 default_md = sha256

21 policy = policy_anything	21 policy = policy_anything

22 unique_subject = no	22 unique_subject = no

23 copy_extensions = copy	23 copy_extensions = copy

24	24

25 [user_cert]	25 [user_cert]

26 basicConstraints = critical, CA:false	26 basicConstraints = critical, CA:false

27 extendedKeyUsage = serverAuth, clientAuth	27 extendedKeyUsage = serverAuth, clientAuth

28 certificatePolicies = 1.2.3.4	28 certificatePolicies = 1.2.3.4

29	29

30 [ca_cert]	30 [ca_cert]

(...skipping 11 matching lines...) Expand all Loading...
42 countryName = optional	42 countryName = optional

43 stateOrProvinceName = optional	43 stateOrProvinceName = optional

44 localityName = optional	44 localityName = optional

45 organizationName = optional	45 organizationName = optional

46 organizationalUnitName = optional	46 organizationalUnitName = optional

47 commonName = optional	47 commonName = optional

48 emailAddress = optional	48 emailAddress = optional

49	49

50 [req]	50 [req]

51 default_bits = 2048	51 default_bits = 2048

52 default_md = sha1	52 default_md = sha256

53 string_mask = utf8only	53 string_mask = utf8only

54 prompt = no	54 prompt = no

55 encrypt_key = no	55 encrypt_key = no

56 distinguished_name = req_env_dn	56 distinguished_name = req_env_dn

57	57

58 [req_env_dn]	58 [req_env_dn]

59 CN = ${ENV::COMMON_NAME}	59 CN = ${ENV::COMMON_NAME}

60	60

OLD	NEW

« no previous file with comments | « net/data/ssl/scripts/generate-test-certs.sh ('k') | net/data/ssl/scripts/redundant-ca.cnf » ('j') | no next file with comments »