org.apache.jorphan.exec

Class KeyToolUtils

java.lang.Object

org.apache.jorphan.exec.KeyToolUtils

public class KeyToolUtils
extends java.lang.Object

Utilities for working with Java keytool

Field Summary

Fields

Modifier and Type	Field and Description
static java.lang.String	ROOT_CACERT_CRT_PFX

Method Summary

Modifier and Type	Method and Description
static void	generateHostCert(java.io.File keystore, java.lang.String password, java.lang.String host, int validity) Create a host certificate signed with the CA certificate.
static void	generateProxyCA(java.io.File keystore, java.lang.String password, int validity) Creates a self-signed Root CA certificate and an intermediate CA certificate (signed by the Root CA certificate) that can be used to sign server certificates.
static void	genkeypair(java.io.File keystore, java.lang.String alias, java.lang.String password, int validity, java.lang.String dname, java.lang.String ext) Generate a self-signed keypair using the algorithm "RSA".
static java.lang.String[]	getCAaliases() Returns a list of the CA aliases that should be in the keystore.
static java.lang.String	getRootCAalias() Get the root CA alias; needed to check the serial number and fingerprint
static boolean	haveKeytool()
static java.lang.String	list(java.io.File keystore, java.lang.String storePass) List the contents of a keystore

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

ROOT_CACERT_CRT_PFX

public static final java.lang.String ROOT_CACERT_CRT_PFX

See Also:

Constant Field Values

Method Detail

genkeypair

public static void genkeypair(java.io.File keystore,
                              java.lang.String alias,
                              java.lang.String password,
                              int validity,
                              java.lang.String dname,
                              java.lang.String ext)
                       throws java.io.IOException

Generate a self-signed keypair using the algorithm "RSA".

Parameters:

keystore - the keystore; if it already contains the alias the command will fail

alias - the alias to use, not null

password - the password to use for the store and the key

validity - the validity period in days, greater than 0

dname - the distinguished name value, if omitted use "cn=JMeter Proxy (DO NOT TRUST)"

ext - if not null, the extension (-ext) to add (e.g. "bc:c").

Throws:

java.io.IOException - if keytool was not configured or running keytool application fails

generateProxyCA

public static void generateProxyCA(java.io.File keystore,
                                   java.lang.String password,
                                   int validity)
                            throws java.io.IOException

Creates a self-signed Root CA certificate and an intermediate CA certificate (signed by the Root CA certificate) that can be used to sign server certificates. The Root CA certificate file is exported to the same directory as the keystore in formats suitable for Firefox/Chrome/IE (.crt) and Opera (.usr).

Parameters:

keystore - the keystore in which to store everything

password - the password for keystore and keys

validity - the validity period in days, must be greater than 0

Throws:

java.io.IOException - if keytool was not configured, running keytool application failed or copying the keys failed

generateHostCert

public static void generateHostCert(java.io.File keystore,
                                    java.lang.String password,
                                    java.lang.String host,
                                    int validity)
                             throws java.io.IOException

Create a host certificate signed with the CA certificate.

Parameters:

keystore - the keystore to use

password - the password to use for the keystore and keys

host - the host, e.g. jmeter.apache.org or *.apache.org; also used as the alias

validity - the validity period for the generated keypair

Throws:

java.io.IOException - if keytool was not configured or running keytool application failed

list

public static java.lang.String list(java.io.File keystore,
                                    java.lang.String storePass)
                             throws java.io.IOException

List the contents of a keystore

Parameters:

keystore - the keystore file

storePass - the keystore password

Returns:

the output from the command "keytool -list -v"

Throws:

java.io.IOException - if keytool was not configured or running keytool application failed

getCAaliases

public static java.lang.String[] getCAaliases()

Returns a list of the CA aliases that should be in the keystore.

Returns:

the aliases that are used for the keystore

getRootCAalias

public static java.lang.String getRootCAalias()

Get the root CA alias; needed to check the serial number and fingerprint

Returns:

the alias

haveKeytool

public static boolean haveKeytool()

Returns:

flag whether KeyToolUtils#KEYTOOL_PATH is configured (is not null)