net/data/ssl/certificates/openssl_ca.cnf - Issue 5535006: Add unittests for net::TestRootCerts and regenerate test certificates

Side by Side Diff

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Side by Side Diff: net/data/ssl/certificates/openssl_ca.cnf

Issue 5535006: Add unittests for net::TestRootCerts and regenerate test certificates (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Address wtc feedback Created 10 years ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch | Annotate | Revision Log

« net/data/ssl/certificates/expired_cert.pem ('K') | « net/data/ssl/certificates/ok_cert.pem ('k') | net/data/ssl/certificates/openssl_cert.cnf » ('j') | net/data/ssl/certificates/openssl_cert.cnf » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

OLD	NEW
(Empty)
	1 [ca]

	2 default_ca = CA_root

	3 preserve = yes

	4

	5 # The default test root, used to generate certificates and CRLs.

	6 [CA_root]

	7 dir = ./root_ca

	8 database = $dir/index.txt

	9 new_certs_dir = $dir/newcerts

	10 serial = $dir/serial

	11 certificate = $dir/cacert.pem

	12 private_key = $dir/private/cacert.key

	13 RANDFILE = $dir/private/.rand

	14 default_days = 365

	15 default_crl_days = 30

	16 default_md = sha1

	17 policy = policy_anything

	18 unique_subject = no

	19 copy_extensions = copy

	20

	21 [user_cert]

	22 # Extensions to add when signing a request for an EE cert

	23 basicConstraints = critical, CA:false

	24 subjectKeyIdentifier = hash

	25 authorityKeyIdentifier = keyid:always

	26 extendedKeyUsage = serverAuth,clientAuth

	27

	28 [ca_cert]

	29 # Extensions to add when signing a request for an intermediate/CA cert

	30 basicConstraints = critical, CA:true

	31 subjectKeyIdentifier = hash

	32 authorityKeyIdentifier = keyid:always

	33 keyUsage = critical, keyCertSign, cRLSign

	34

	35 [crl_extensions]

	36 # Extensions to add when signing a CRL

	37 authorityKeyIdentifier = keyid:always

	38

	39 [policy_anything]

	40 # Default signing policy

	41 countryName = optional

	42 stateOrProvinceName = optional

	43 localityName = optional

	44 organizationName = optional

	45 organizationalUnitName = optional

	46 commonName = optional

	47 emailAddress = optional

	48

	49 [req]

	50 # The request section used to generate the root CA certificate. This should

	51 # not be used to generate end-entity certificates. For certificates other

	52 # than the root CA, see README to find the appropriate configuration file

	53 # (ie: openssl_cert.cnf).

	54 default_bits = 1024

	55 default_md = sha1

	56 string_mask = utf8only

	57 prompt = no

	58 encrypt_key = no

	59 distinguished_name = req_ca_dn

	60 x509_extensions = req_ca_exts

	61

	62 [req_ca_dn]

	63 C = US

	64 ST = California

	65 L = Mountain View

	66 O = Test CA

	67 CN = Test Root CA

	68

	69 [req_ca_exts]

	70 basicConstraints = critical, CA:true

	71 keyUsage = critical, keyCertSign, cRLSign

	72 subjectKeyIdentifier = hash

OLD	NEW