1 Keystores used for the JSSE regression test suite. 2 3 keystore 4 truststore 5 ========== 6 7 These are the primary two keystores and contain entries for testing most 8 of the JSSE regression test files. There are three entries, one RSA-based, 9 one DSA-based and one EC-based. If they expire, simply recreate them 10 using keytool and most of the test cases should work. 11 12 The password on both files is: 13 14 passphrase 15 16 There are no individual key entry passwords at this time. 17 18 19 keystore entries 20 ================ 21 22 Alias name: dummy 23 ----------------- 24 Creation date: May 16, 2016 25 Entry type: PrivateKeyEntry 26 Certificate chain length: 1 27 Certificate[1]: 28 Owner: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US 29 Issuer: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US 30 Serial number: 57399b87 31 Valid from: Mon May 16 10:06:38 UTC 2016 until: Sat May 16 10:06:38 UTC 2026 32 Signature algorithm name: SHA256withRSA 33 Version: 1 34 35 This can be generated using hacked (update the keytool source code so that 36 it can be used for version 1 X.509 certificate) keytool command: 37 % keytool -genkeypair -alias dummy -keyalg RSA -keysize 2048 \ 38 -sigalg SHA256withRSA \ 39 -dname "CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US" \ 40 -validity 3652 -keypass passphrase -keystore keystore -storepass passphrase 41 42 43 Alias name: dummyecdsa 44 ---------------------- 45 Creation date: May 16, 2016 46 Entry type: PrivateKeyEntry 47 Certificate chain length: 1 48 Certificate[1]: 49 Owner: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US 50 Issuer: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US 51 Serial number: 57399c1d 52 Valid from: Mon May 16 10:09:01 UTC 2016 until: Sat May 16 10:09:01 UTC 2026 53 Signature algorithm name: SHA256withECDSA 54 Version: 1 55 56 This can be generated using hacked (update the keytool source code so that 57 it can be used for version 1 X.509 certificate) keytool command: 58 % keytool -genkeypair -alias dummy -keyalg EC -keysize 256 \ 59 -sigalg SHA256withECDSA \ 60 -dname "CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US" \ 61 -validity 3652 -keypass passphrase -keystore keystore -storepass passphrase 62 63 Alias name: dummydsa 64 -------------------- 65 Creation date: Mar 29, 2018 66 Entry type: PrivateKeyEntry 67 Certificate chain length: 1 68 Certificate[1]: 69 Owner: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US 70 Issuer: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US 71 Serial number: 324d85f0 72 Valid from: Thu Mar 29 16:06:34 PDT 2018 until: Tue Mar 28 16:06:34 PDT 2028 73 Signature algorithm name: SHA256withDSA 74 Version: 3 75 76 This can be generated using hacked (update the keytool source code so that 77 it can be used for version 1 X.509 certificate) keytool command: 78 % keytool -genkeypair -alias dummydsa -keyalg DSA -keysize 1024 \ 79 -sigalg SHA256withDSA \ 80 -dname "CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US" \ 81 -validity 3652 -keypass passphrase -keystore keystore -storepass passphrase 82 83 Alias name: dummyecrsa 84 -------------------- 85 Creation date: Apr 13, 2018 86 Entry type: PrivateKeyEntry 87 Certificate chain length: 2 88 Certificate[1]: 89 Owner: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US 90 Issuer: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US 91 Serial number: 6f2d1faa 92 Valid from: Fri Apr 13 16:20:55 CST 2018 until: Wed Apr 12 16:20:55 CST 2028 93 Version: 3 94 95 This can be generated by using keytool command: 96 % keytool -genkeypair -alias dummyecrsa -keyalg EC -keysize 256 \ 97 -keypass passphrase -storepass passphrase -keystore keystore \ 98 -dname "CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US" 99 % keytool -certreq -alias dummyecrsa -storepass passphrase -keystore keystore \ 100 -file ecrsa.csr 101 % keytool -gencert -alias dummy -storepass passphrase -keystore keystore \ 102 -validity 3652 -infile ecrsa.csr -outfile ecrsa.cer 103 % keytool -importcert -alias dummyecrsa -storepass passphrase -keystore keystore \ 104 -file ecrsa.cer 105 106 107 truststore entries 108 ================== 109 This key store contains only trusted certificate entries. The same 110 certificates, except dummyecrsa, are used in both keystore and truststore. 111 112 113 unknown_keystore 114 ================ 115 A keystore you can use when you don't want things to be verified. 116 Use this with keystore/truststore, and you'll never get a match.