OLD | NEW |
1 CA_DIR=out | 1 CA_DIR=out |
2 CA_NAME=policy-root | 2 CA_NAME=policy-root |
3 | 3 |
4 [ca] | 4 [ca] |
5 default_ca = CA_root | 5 default_ca = CA_root |
6 preserve = yes | 6 preserve = yes |
7 | 7 |
8 [CA_root] | 8 [CA_root] |
9 dir = ${ENV::CA_DIR} | 9 dir = ${ENV::CA_DIR} |
10 key_size = 2048 | 10 key_size = 2048 |
11 algo = sha1 | 11 algo = sha256 |
12 database = $dir/${ENV::CA_NAME}-index.txt | 12 database = $dir/${ENV::CA_NAME}-index.txt |
13 new_certs_dir = $dir | 13 new_certs_dir = $dir |
14 serial = $dir/${ENV::CA_NAME}-serial | 14 serial = $dir/${ENV::CA_NAME}-serial |
15 certificate = $dir/${ENV::CA_NAME}.pem | 15 certificate = $dir/${ENV::CA_NAME}.pem |
16 private_key = $dir/${ENV::CA_NAME}.key | 16 private_key = $dir/${ENV::CA_NAME}.key |
17 RANDFILE = $dir/.rand | 17 RANDFILE = $dir/.rand |
18 default_days = 3650 | 18 default_days = 3650 |
19 default_crl_days = 30 | 19 default_crl_days = 30 |
20 default_md = sha1 | 20 default_md = sha256 |
21 policy = policy_anything | 21 policy = policy_anything |
22 unique_subject = no | 22 unique_subject = no |
23 copy_extensions = copy | 23 copy_extensions = copy |
24 | 24 |
25 [user_cert] | 25 [user_cert] |
26 basicConstraints = critical, CA:false | 26 basicConstraints = critical, CA:false |
27 extendedKeyUsage = serverAuth, clientAuth | 27 extendedKeyUsage = serverAuth, clientAuth |
28 certificatePolicies = 1.2.3.4 | 28 certificatePolicies = 1.2.3.4 |
29 | 29 |
30 [ca_cert] | 30 [ca_cert] |
(...skipping 11 matching lines...) Expand all Loading... |
42 countryName = optional | 42 countryName = optional |
43 stateOrProvinceName = optional | 43 stateOrProvinceName = optional |
44 localityName = optional | 44 localityName = optional |
45 organizationName = optional | 45 organizationName = optional |
46 organizationalUnitName = optional | 46 organizationalUnitName = optional |
47 commonName = optional | 47 commonName = optional |
48 emailAddress = optional | 48 emailAddress = optional |
49 | 49 |
50 [req] | 50 [req] |
51 default_bits = 2048 | 51 default_bits = 2048 |
52 default_md = sha1 | 52 default_md = sha256 |
53 string_mask = utf8only | 53 string_mask = utf8only |
54 prompt = no | 54 prompt = no |
55 encrypt_key = no | 55 encrypt_key = no |
56 distinguished_name = req_env_dn | 56 distinguished_name = req_env_dn |
57 | 57 |
58 [req_env_dn] | 58 [req_env_dn] |
59 CN = ${ENV::COMMON_NAME} | 59 CN = ${ENV::COMMON_NAME} |
60 | 60 |
OLD | NEW |