diff options
Diffstat (limited to 'src/lib/libssl/x509v3.cnf')
| -rw-r--r-- | src/lib/libssl/x509v3.cnf | 29 |
1 files changed, 0 insertions, 29 deletions
diff --git a/src/lib/libssl/x509v3.cnf b/src/lib/libssl/x509v3.cnf deleted file mode 100644 index 8c6b775da1..0000000000 --- a/src/lib/libssl/x509v3.cnf +++ /dev/null | |||
| @@ -1,29 +0,0 @@ | |||
| 1 | # default settings | ||
| 2 | CERTPATHLEN = 1 | ||
| 3 | CERTUSAGE = digitalSignature,keyCertSign,cRLSign | ||
| 4 | EXTCERTUSAGE = serverAuth,clientAuth | ||
| 5 | CERTIP = 0.0.0.0 | ||
| 6 | CERTFQDN = nohost.nodomain | ||
| 7 | |||
| 8 | # This section should be referenced when building an x509v3 CA | ||
| 9 | # Certificate. | ||
| 10 | # The default path length and the key usage can be overriden | ||
| 11 | # modified by setting the CERTPATHLEN and CERTUSAGE environment | ||
| 12 | # variables. | ||
| 13 | [x509v3_CA] | ||
| 14 | basicConstraints=critical,CA:true,pathlen:$ENV::CERTPATHLEN | ||
| 15 | keyUsage=$ENV::CERTUSAGE | ||
| 16 | |||
| 17 | # This section should be referenced to add an IP Address | ||
| 18 | # as an alternate subject name, needed by isakmpd | ||
| 19 | # The address must be provided in the CERTIP environment variable | ||
| 20 | [x509v3_IPAddr] | ||
| 21 | subjectAltName=IP:$ENV::CERTIP | ||
| 22 | extendedKeyUsage=$ENV::EXTCERTUSAGE | ||
| 23 | |||
| 24 | # This section should be referenced to add a FQDN hostname | ||
| 25 | # as an alternate subject name, needed by isakmpd | ||
| 26 | # The address must be provided in the CERTFQDN environment variable | ||
| 27 | [x509v3_FQDN] | ||
| 28 | subjectAltName=DNS:$ENV::CERTFQDN | ||
| 29 | extendedKeyUsage=$ENV::EXTCERTUSAGE | ||