summaryrefslogtreecommitdiffstats
path: root/tools/ssl/README.md
diff options
context:
space:
mode:
authorPiotr Jaszczyk <piotr.jaszczyk@nokia.com>2019-07-03 12:39:12 +0000
committerGerrit Code Review <gerrit@onap.org>2019-07-03 12:39:12 +0000
commit2c80da49d88ef2fc81741f99e76e85d31ef2ffa4 (patch)
treecff2c9be11e3c13f1fc520a252dd0cd31cb5a917 /tools/ssl/README.md
parent3e4f108d66fb31e5ea713fef1cf7bc99c0510c21 (diff)
parent83a1d39bca162e8fdabfb3ad9189c5e4f94a44df (diff)
Merge "Create script to run performance test locally"
Diffstat (limited to 'tools/ssl/README.md')
-rw-r--r--tools/ssl/README.md54
1 files changed, 54 insertions, 0 deletions
diff --git a/tools/ssl/README.md b/tools/ssl/README.md
new file mode 100644
index 00000000..c2819d24
--- /dev/null
+++ b/tools/ssl/README.md
@@ -0,0 +1,54 @@
+# Generating SSL certificates
+
+## Java keytool way (recommended)
+
+To generate:
+
+```shell
+./gen-certs.sh
+```
+
+To clean (remove generated files):
+
+```shell
+./gen-certs.sh clean
+```
+
+## OpenSSL way (currently might not work)
+
+> Add `-f Makefile-openssl` to each command
+
+Typical usage:
+
+```shell
+make FILE=client
+make FILE=server
+```
+
+or (to generate PKCS12 key and trust stores):
+
+```shell
+make create-key-store FILE=client
+make create-key-store FILE=server
+make create-trust-store
+```
+
+Will generate CA certificate and signed client and server certificates.
+
+More "low-level" usage:
+
+```shell
+make generate-ca-certificate
+make generate-private-key FILE=client
+make sign FILE=client
+```
+
+# Connecting to a server
+
+First generate *client* and *server* certificates. Then start a server with it's cert and make ca.crt a trusted certification authority.
+
+After that you can:
+
+```shell
+./connect.sh client localhost:8600 < file_with_a_data_to_be_sent.dat
+```