plans/dcaegen2-collectors-hv-ves/testsuites/ssl/README.md

   1 # Generating SSL certificates
   2
   3 ## Java keytool way (recommended)
   4
   5 To generate:
   6
   7 ```shell
   8 ./gen-certs.sh
   9 ```
  10
  11 To clean (remove generated files):
  12
  13 ```shell
  14 ./gen-certs.sh clean
  15 ```
  16
  17 ## OpenSSL way (currently might not work)
  18
  19 > Add `-f Makefile-openssl` to each command
  20
  21 Typical usage:
  22
  23 ```shell
  24 make FILE=client
  25 make FILE=server
  26 ```
  27
  28 or (to generate PKCS12 key and trust stores):
  29
  30 ```shell
  31 make create-key-store FILE=client
  32 make create-key-store FILE=server
  33 make create-trust-store
  34 ```
  35
  36 Will generate CA certificate and signed client and server certificates.
  37
  38 More "low-level" usage:
  39
  40 ```shell
  41 make generate-ca-certificate
  42 make generate-private-key FILE=client
  43 make sign FILE=client
  44 ```
  45
  46 # Connecting to a server
  47
  48 First generate *client* and *server* certificates. Then start a server with it's cert and make ca.crt a trusted certification authority.
  49
  50 After that you can:
  51
  52 ```shell
  53 ./connect.sh client localhost:8600 < file_with_a_data_to_be_sent.dat
  54 ```