tor-browser

The Tor Browser
git clone https://git.dasho.dev/tor-browser.git
Log | Files | Refs | README | LICENSE

ipsec.cfg (2231B)

      1 # This Source Code Form is subject to the terms of the Mozilla Public
      2 # License, v. 2.0. If a copy of the MPL was not distributed with this
      3 # file, You can obtain one at http://mozilla.org/MPL/2.0/.
      4 
      5 scenario IPsec
      6 
      7 entity Root
      8  type Root
      9 
     10 entity CA1
     11  type Intermediate
     12  issuer Root 
     13 
     14 entity NoKU
     15  type EE
     16  issuer CA1
     17 
     18 entity DigSig
     19  type EE
     20  issuer CA1
     21    ku digitalSignature
     22 
     23 entity NonRep
     24  type EE
     25  issuer CA1
     26    ku nonRepudiation
     27 
     28 entity DigSigNonRepAndExtra
     29  type EE
     30  issuer CA1
     31    ku digitalSignature,nonRepudiation,keyEncipherment,dataEncipherment,keyAgreement
     32 
     33 entity NoMatch
     34  type EE
     35  issuer CA1
     36    ku keyEncipherment,dataEncipherment,keyAgreement
     37 
     38 entity NonCriticalServerAuthEKU
     39  type EE
     40  issuer CA1
     41    eku serverAuth
     42 
     43 entity NonIPSECEKU
     44  type EE
     45  issuer CA1
     46    eku codeSigning
     47 
     48 entity CriticalServerAuthEKU
     49  type EE
     50  issuer CA1
     51    ku digitalSignature
     52    eku critical,serverAuth
     53 
     54 entity EKUIPsecIKE
     55  type EE
     56  issuer CA1
     57    ku digitalSignature
     58    eku critical,ipsecIKE
     59 
     60 entity EKUIPsecIKEEnd
     61  type EE
     62  issuer CA1
     63    ku digitalSignature
     64    eku ipsecIKEEnd
     65 
     66 entity EKUIPsecIKEIntermediate
     67  type EE
     68  issuer CA1
     69    ku digitalSignature
     70    eku codeSigning,serverAuth,ipsecIKEIntermediate
     71 
     72 entity EKUAny
     73  type EE
     74  issuer CA1
     75    ku digitalSignature
     76    eku x509Any
     77 
     78 entity EKUEmail
     79  type EE
     80  issuer CA1
     81    ku digitalSignature
     82    eku emailProtection
     83 
     84 entity EKUIPsecUser
     85  type EE
     86  issuer CA1
     87    ku digitalSignature
     88    eku ipsecUser
     89 
     90 db All
     91 
     92 import Root::C,,
     93 import CA1:Root:
     94 
     95 verify NoKU:CA1
     96  usage 12
     97  result pass
     98 
     99 verify DigSig:CA1
    100  usage 12
    101  result pass
    102 
    103 verify NonRep:CA1
    104  usage 12
    105  result pass
    106 
    107 verify DigSigNonRepAndExtra:CA1
    108  usage 12
    109  result pass
    110 
    111 verify NoMatch:CA1
    112  usage 12
    113  result fail
    114 
    115 verify NonIPSECEKU:CA1
    116  usage 12
    117  result fail
    118 
    119 verify NonCriticalServerAuthEKU:CA1
    120  usage 12
    121  result pass
    122 
    123 verify CriticalServerAuthEKU:CA1
    124  usage 12
    125  result pass
    126 
    127 verify EKUIPsecIKE:CA1
    128  usage 12
    129  result pass
    130 
    131 verify EKUIPsecIKEEnd:CA1
    132  usage 12
    133  result pass
    134 
    135 verify EKUIPsecIKEIntermediate:CA1
    136  usage 12
    137  result pass
    138 
    139 verify EKUAny:CA1
    140  usage 12
    141  result pass
    142 
    143 verify EKUEmail:CA1
    144  usage 12
    145  result pass
    146 
    147 verify EKUIPsecUser:CA1
    148  usage 12
    149  result pass