Add basic trust module

This is based off the roots-store from gnome-keyring and loads certificates from a root directory and exposes them as PKCS#11 objects.
author: Stef Walter <stefw@gnome.org> 2013-01-24 11:34:47 +0100
committer: Stef Walter <stefw@gnome.org> 2013-02-05 14:54:46 +0100
commit: 5147d71466455b3d087b3f3a7472a35e8216c55a (patch)
tree: 4b81eee35b7d0ec877a34c4fde06478d700a3960 /build/certs/with-ku.conf
parent: 603c7d4eb996f51178ccc9d235597497bbb2c7a4 (diff)
download: p11-kit-5147d71466455b3d087b3f3a7472a35e8216c55a.tar.gz
1 files changed, 19 insertions, 0 deletions
diff --git a/build/certs/with-ku.conf b/build/certs/with-ku.conf
new file mode 100644
index 0000000..aa0acc1
--- /dev/null
+++ b/build/certs/with-ku.conf
@@ -0,0 +1,19 @@
+#
+# Use with the following command
+# $ openssl req -new -x509 -outform DER -out self-signed-with-eku.pem \
+#    -newkey rsa -keyout self-signed-with-eku.key -nodes \
+#    -config with-eku.conf -set_serial 888 -extensions v3_ca
+#
+
+[ req ]
+default_bits           = 1024
+distinguished_name     = req_distinguished_name
+x509_extensions        = v3_ca
+dirstring_type = nobmp
+
+[ req_distinguished_name ]
+commonName                     = Common Name
+commonName_max                 = 64
+
+[ v3_ca ]
+extendedKeyUsage=clientAuth,emailProtection,1.2.3.4
+\ No newline at end of file
author	Stef Walter <stefw@gnome.org>	2013-01-24 11:34:47 +0100
committer	Stef Walter <stefw@gnome.org>	2013-02-05 14:54:46 +0100
commit	5147d71466455b3d087b3f3a7472a35e8216c55a (patch)
tree	4b81eee35b7d0ec877a34c4fde06478d700a3960 /build/certs/with-ku.conf
parent	603c7d4eb996f51178ccc9d235597497bbb2c7a4 (diff)
download	p11-kit-5147d71466455b3d087b3f3a7472a35e8216c55a.tar.gz