openssl/demos/bio/accept.cnf

# Example configuration file
# Port to listen on
Port = 4433
# Disable TLS v1.2 for test.
# Protocol = ALL, -TLSv1.2
# Only support 3 curves
Curves = P-521:P-384:P-256
# Automatic curve selection
ECDHParameters = Automatic
# Restricted signature algorithms
SignatureAlgorithms = RSA+SHA512:ECDSA+SHA512 
Certificate=server.pem
PrivateKey=server.pem
ChainCAFile=root.pem
VerifyCAFile=root.pem

# Request certificate
VerifyMode=Request
ClientCAFile=root.pem
Add demo for SSL server using SSL_CONF. 2013-10-18 15:28:38 +00:00			`# Example configuration file`
Modify sample accept.cnf 2013-10-20 21:21:09 +00:00			`# Port to listen on`
			`Port = 4433`
Add demo for SSL server using SSL_CONF. 2013-10-18 15:28:38 +00:00			`# Disable TLS v1.2 for test.`
			`# Protocol = ALL, -TLSv1.2`
			`# Only support 3 curves`
			`Curves = P-521:P-384:P-256`
Modify sample accept.cnf 2013-10-20 21:21:09 +00:00			`# Automatic curve selection`
Add demo for SSL server using SSL_CONF. 2013-10-18 15:28:38 +00:00			`ECDHParameters = Automatic`
			`# Restricted signature algorithms`
			`SignatureAlgorithms = RSA+SHA512:ECDSA+SHA512`
			`Certificate=server.pem`
			`PrivateKey=server.pem`
Update demo. Use new SSL_CONF options in demo. Add intermediate and root CAs and update all to use SHA256. Reviewed-by: Viktor Dukhovni <viktor@openssl.org> 2015-07-14 13:19:38 +00:00			`ChainCAFile=root.pem`
			`VerifyCAFile=root.pem`

			`# Request certificate`
			`VerifyMode=Request`
			`ClientCAFile=root.pem`