< prev index next >

test/jdk/javax/net/ssl/etc/README

Print this page 







  63 Alias name: dummydsa
  64 --------------------
  65 Creation date: Mar 29, 2018
  66 Entry type: PrivateKeyEntry
  67 Certificate chain length: 1
  68 Certificate[1]:
  69 Owner: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
  70 Issuer: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
  71 Serial number: 324d85f0
  72 Valid from: Thu Mar 29 16:06:34 PDT 2018 until: Tue Mar 28 16:06:34 PDT 2028
  73 Signature algorithm name: SHA256withDSA
  74 Version: 3
  75 
  76 This can be generated using hacked (update the keytool source code so that
  77 it can be used for version 1 X.509 certificate) keytool command:
  78 % keytool -genkeypair -alias dummydsa -keyalg DSA -keysize 1024 \
  79   -sigalg SHA256withDSA \
  80   -dname "CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US" \
  81   -validity 3652 -keypass passphrase -keystore keystore -storepass passphrase
  82 























  83 
  84 truststore entries
  85 ==================
  86 This key store contains only trusted certificate entries.  The same
  87 certificates are used in both keystore and truststore.
  88 
  89 
  90 unknown_keystore
  91 ================
  92 A keystore you can use when you don't want things to be verified.
  93 Use this with keystore/truststore, and you'll never get a match.



  63 Alias name: dummydsa
  64 --------------------
  65 Creation date: Mar 29, 2018
  66 Entry type: PrivateKeyEntry
  67 Certificate chain length: 1
  68 Certificate[1]:
  69 Owner: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
  70 Issuer: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
  71 Serial number: 324d85f0
  72 Valid from: Thu Mar 29 16:06:34 PDT 2018 until: Tue Mar 28 16:06:34 PDT 2028
  73 Signature algorithm name: SHA256withDSA
  74 Version: 3
  75 
  76 This can be generated using hacked (update the keytool source code so that
  77 it can be used for version 1 X.509 certificate) keytool command:
  78 % keytool -genkeypair -alias dummydsa -keyalg DSA -keysize 1024 \
  79   -sigalg SHA256withDSA \
  80   -dname "CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US" \
  81   -validity 3652 -keypass passphrase -keystore keystore -storepass passphrase
  82 
  83 Alias name: dummyecrsa
  84 --------------------
  85 Creation date: Apr 13, 2018
  86 Entry type: PrivateKeyEntry
  87 Certificate chain length: 2
  88 Certificate[1]:
  89 Owner: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
  90 Issuer: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
  91 Serial number: 6f2d1faa
  92 Valid from: Fri Apr 13 16:20:55 CST 2018 until: Wed Apr 12 16:20:55 CST 2028
  93 Version: 3
  94 
  95 This can be generated by using keytool command:
  96 % keytool -genkeypair -alias dummyecrsa -keyalg EC -keysize 256 \
  97   -keypass passphrase -storepass passphrase -keystore keystore \
  98   -dname "CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US"
  99 % keytool -certreq -alias dummyecrsa -storepass passphrase -keystore keystore \
 100   -file ecrsa.csr
 101 % keytool -gencert -alias dummy -storepass passphrase -keystore keystore \
 102   -validity 3652 -infile ecrsa.csr -outfile ecrsa.cer
 103 % keytool -importcert -alias dummyecrsa -storepass passphrase -keystore keystore \
 104   -file ecrsa.cer
 105 
 106 
 107 truststore entries
 108 ==================
 109 This key store contains only trusted certificate entries. The same
 110 certificates, except dummyecrsa, are used in both keystore and truststore.
 111 
 112 
 113 unknown_keystore
 114 ================
 115 A keystore you can use when you don't want things to be verified.
 116 Use this with keystore/truststore, and you'll never get a match.





< prev index next >