[ca] / etc / config.tcl

### -*-tcl-*-

set C(ca-owner) "root"
set C(ca-group) "ca"

set C(ca-name) {
  countryName "GB"
  stateOrProvinceName "Cambridgeshire"
  localityName "Cambridge"
  organizationName "distorted.org.uk"
  commonName "distorted.org.uk Certificate Authority"
  emailAddress "ca@distorted.org.uk"
}

set P(tls-client) {
  extensions tls-client-extensions
  issue-time "*-*-* 00:00:00"
  start-skew 1
  expire-interval 32
}

set P(tls-server) {
  extensions tls-server-extensions
  issue-time "*-*-* 00:00:00"
  start-skew 1
  expire-interval 32
}

set P(tls-server-longterm) {
  extensions tls-server-extensions
  issue-time "*-*-* 00:00:00"
  start-skew 1
  expire-interval 43838
}

proc update-hook {} {
  exec 2>@stderr rsync -av --delete-after ca.cert crl cert req publish/
  exec 2>@stderr userv root publish-ca
}
Commit	Line	Data
69ab55f7 MW	1	### --tcl--
69ab55f7 MW	2
c4e3d3a6 MW	3	set C(ca-owner) "root"
	4	set C(ca-group) "ca"
	5
	6	set C(ca-name) {
	7	countryName "GB"
	8	stateOrProvinceName "Cambridgeshire"
	9	localityName "Cambridge"
	10	organizationName "distorted.org.uk"
	11	commonName "distorted.org.uk Certificate Authority"
	12	emailAddress "ca@distorted.org.uk"
	13	}
69ab55f7 MW	14
	15	set P(tls-client) {
	16	extensions tls-client-extensions
00e8593b	17	issue-time "--* 00:00:00"
69ab55f7	18	start-skew 1
a7411024	19	expire-interval 32
69ab55f7 MW	20	}
	21
	22	set P(tls-server) {
	23	extensions tls-server-extensions
00e8593b	24	issue-time "--* 00:00:00"
69ab55f7	25	start-skew 1
a7411024	26	expire-interval 32
69ab55f7	27	}
1fc4577e	28
c6fcdcc3 MW	29	set P(tls-server-longterm) {
	30	extensions tls-server-extensions
	31	issue-time "--* 00:00:00"
	32	start-skew 1
	33	expire-interval 43838
	34	}
	35
1fc4577e	36	proc update-hook {} {
c4e3d3a6 MW	37	exec 2>@stderr rsync -av --delete-after ca.cert crl cert req publish/
c4e3d3a6 MW	38	exec 2>@stderr userv root publish-ca
1fc4577e	39	}