GitHub user alopresto opened a pull request:
https://github.com/apache/nifi/pull/156
Nifi 1354
Generated new self-signed RSA-2048 key for FQDN `localhost` in keystore and
exported to truststore.
```bash
hw12203:...ar-bundles/nifi-standard-bundle/nifi-standard-processors/src/test/resources
alopresto
0s @ 13:37:25 $ kt localhost-ks.jks
Enter keystore password:
Keystore type: JKS
Keystore provider: SUN
Your keystore contains 1 entry
Alias name: mykey
Creation date: May 16, 2014
Entry type: PrivateKeyEntry
Certificate chain length: 1
Certificate[1]:
Owner: CN=localhost, OU=Testing, O=Research, L=Metropolis, ST=New York, C=US
Issuer: CN=localhost, OU=Testing, O=Research, L=Metropolis, ST=New York,
C=US
Serial number: 56440aeb
Valid from: Fri May 16 07:48:18 PDT 2014 until: Thu Aug 14 07:48:18 PDT 2014
Certificate fingerprints:
MD5: 3B:22:2E:90:C9:58:5D:88:E0:AE:D9:F1:CB:42:33:DC
SHA1: 44:58:FD:E9:46:80:68:F6:DB:CB:3A:DE:53:89:C7:05:A5:2B:69:E0
SHA256:
6B:A1:D6:4C:6A:F7:11:57:A4:27:DB:22:8E:75:D5:E9:98:00:00:AA:39:C4:9C:E8:92:83:EB:11:D8:C5:3C:E9
Signature algorithm name: SHA1withDSA
Version: 3
Extensions:
#1: ObjectId: 2.5.29.14 Criticality=false
SubjectKeyIdentifier [
KeyIdentifier [
0000: 68 D3 4C B5 6E EE 0B 39 74 C1 5B C2 18 CC 48 E4 h.L.n..9t.[...H.
0010: 8C 73 20 1C .s .
]
]
*******************************************
*******************************************
hw12203:...ar-bundles/nifi-standard-bundle/nifi-standard-processors/src/test/resources
alopresto
2s @ 13:37:33 $ keytool -genkey -keyalg RSA -alias localhost -keystore
localhost-ks.jks -validity 360 -keysize 2048
Enter keystore password:
What is your first and last name?
[Unknown]: localhost
What is the name of your organizational unit?
[Unknown]: Apache NiFi
What is the name of your organization?
[Unknown]: Apache
What is the name of your City or Locality?
[Unknown]: Santa Monica
What is the name of your State or Province?
[Unknown]: CA
What is the two-letter country code for this unit?
[Unknown]: US
Is CN=localhost, OU=Apache NiFi, O=Apache, L=Santa Monica, ST=CA, C=US
correct?
[no]: yes
Enter key password for <localhost>
(RETURN if same as keystore password):
hw12203:...ar-bundles/nifi-standard-bundle/nifi-standard-processors/src/test/resources
alopresto
21s @ 13:38:16 $ keytool -exportcert -alias localhost -file localhost.der
-keystore localhost-ks.jks
Enter keystore password:
Certificate stored in file <localhost.der>
hw12203:...ar-bundles/nifi-standard-bundle/nifi-standard-processors/src/test/resources
alopresto
2s @ 13:38:31 $ keytool -import -alias localhost -file localhost.der
-keystore localhost-ts.jks
Enter keystore password:
Owner: CN=localhost, OU=Apache NiFi, O=Apache, L=Santa Monica, ST=CA, C=US
Issuer: CN=localhost, OU=Apache NiFi, O=Apache, L=Santa Monica, ST=CA, C=US
Serial number: 5f3a9166
Valid from: Tue Jan 05 13:38:14 PST 2016 until: Fri Dec 30 13:38:14 PST 2016
Certificate fingerprints:
MD5: 8F:C4:D6:06:4C:28:6C:01:62:22:C6:CA:A6:5E:AF:D4
SHA1: F2:05:9C:77:0B:F0:71:5B:A8:52:A9:4A:10:20:9F:BA:7D:43:13:12
SHA256:
57:FD:9B:B6:08:82:93:08:42:7F:59:96:E5:BB:3F:48:C9:8C:08:0D:EB:D5:EF:D0:E5:1A:B2:28:2B:FF:2D:20
Signature algorithm name: SHA256withRSA
Version: 3
Extensions:
#1: ObjectId: 2.5.29.14 Criticality=false
SubjectKeyIdentifier [
KeyIdentifier [
0000: 43 94 B1 6C 11 D2 5F 18 09 D1 0D F3 96 6D AE AD C..l.._......m..
0010: 6B EA B1 8F k...
]
]
Trust this certificate? [no]: yes
Certificate was added to keystore
hw12203:...ar-bundles/nifi-standard-bundle/nifi-standard-processors/src/test/resources
alopresto
5s @ 13:38:49 $ kt localhost-ks.jks
Enter keystore password:
Keystore type: JKS
Keystore provider: SUN
Your keystore contains 2 entries
Alias name: localhost
Creation date: Jan 5, 2016
Entry type: PrivateKeyEntry
Certificate chain length: 1
Certificate[1]:
Owner: CN=localhost, OU=Apache NiFi, O=Apache, L=Santa Monica, ST=CA, C=US
Issuer: CN=localhost, OU=Apache NiFi, O=Apache, L=Santa Monica, ST=CA, C=US
Serial number: 5f3a9166
Valid from: Tue Jan 05 13:38:14 PST 2016 until: Fri Dec 30 13:38:14 PST 2016
Certificate fingerprints:
MD5: 8F:C4:D6:06:4C:28:6C:01:62:22:C6:CA:A6:5E:AF:D4
SHA1: F2:05:9C:77:0B:F0:71:5B:A8:52:A9:4A:10:20:9F:BA:7D:43:13:12
SHA256:
57:FD:9B:B6:08:82:93:08:42:7F:59:96:E5:BB:3F:48:C9:8C:08:0D:EB:D5:EF:D0:E5:1A:B2:28:2B:FF:2D:20
Signature algorithm name: SHA256withRSA
Version: 3
Extensions:
#1: ObjectId: 2.5.29.14 Criticality=false
SubjectKeyIdentifier [
KeyIdentifier [
0000: 43 94 B1 6C 11 D2 5F 18 09 D1 0D F3 96 6D AE AD C..l.._......m..
0010: 6B EA B1 8F k...
]
]
*******************************************
*******************************************
Alias name: mykey
Creation date: May 16, 2014
Entry type: PrivateKeyEntry
Certificate chain length: 1
Certificate[1]:
Owner: CN=localhost, OU=Testing, O=Research, L=Metropolis, ST=New York, C=US
Issuer: CN=localhost, OU=Testing, O=Research, L=Metropolis, ST=New York,
C=US
Serial number: 56440aeb
Valid from: Fri May 16 07:48:18 PDT 2014 until: Thu Aug 14 07:48:18 PDT 2014
Certificate fingerprints:
MD5: 3B:22:2E:90:C9:58:5D:88:E0:AE:D9:F1:CB:42:33:DC
SHA1: 44:58:FD:E9:46:80:68:F6:DB:CB:3A:DE:53:89:C7:05:A5:2B:69:E0
SHA256:
6B:A1:D6:4C:6A:F7:11:57:A4:27:DB:22:8E:75:D5:E9:98:00:00:AA:39:C4:9C:E8:92:83:EB:11:D8:C5:3C:E9
Signature algorithm name: SHA1withDSA
Version: 3
Extensions:
#1: ObjectId: 2.5.29.14 Criticality=false
SubjectKeyIdentifier [
KeyIdentifier [
0000: 68 D3 4C B5 6E EE 0B 39 74 C1 5B C2 18 CC 48 E4 h.L.n..9t.[...H.
0010: 8C 73 20 1C .s .
]
]
*******************************************
*******************************************
hw12203:...ar-bundles/nifi-standard-bundle/nifi-standard-processors/src/test/resources
alopresto
2s @ 13:42:29 $ kta localhost localhost-ts.jks
Enter keystore password:
Alias name: localhost
Creation date: Jan 5, 2016
Entry type: trustedCertEntry
Owner: CN=localhost, OU=Apache NiFi, O=Apache, L=Santa Monica, ST=CA, C=US
Issuer: CN=localhost, OU=Apache NiFi, O=Apache, L=Santa Monica, ST=CA, C=US
Serial number: 5f3a9166
Valid from: Tue Jan 05 13:38:14 PST 2016 until: Fri Dec 30 13:38:14 PST 2016
Certificate fingerprints:
MD5: 8F:C4:D6:06:4C:28:6C:01:62:22:C6:CA:A6:5E:AF:D4
SHA1: F2:05:9C:77:0B:F0:71:5B:A8:52:A9:4A:10:20:9F:BA:7D:43:13:12
SHA256:
57:FD:9B:B6:08:82:93:08:42:7F:59:96:E5:BB:3F:48:C9:8C:08:0D:EB:D5:EF:D0:E5:1A:B2:28:2B:FF:2D:20
Signature algorithm name: SHA256withRSA
Version: 3
Extensions:
#1: ObjectId: 2.5.29.14 Criticality=false
SubjectKeyIdentifier [
KeyIdentifier [
0000: 43 94 B1 6C 11 D2 5F 18 09 D1 0D F3 96 6D AE AD C..l.._......m..
0010: 6B EA B1 8F k...
]
]
hw12203:...ar-bundles/nifi-standard-bundle/nifi-standard-processors/src/test/resources
alopresto
2s @ 13:43:29 $
```
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/alopresto/nifi NIFI-1354
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/nifi/pull/156.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #156
----
commit cb480d3dc238feab564d05145bfd7eca64e75ad1
Author: Andy LoPresto <[email protected]>
Date: 2015-12-23T03:24:25Z
Merge pull request #2 from apache/master
Pulling from upstream/master
commit e25b85c765c76562b1cc7b4ebe3e0659ca9f907e
Author: Andy LoPresto <[email protected]>
Date: 2016-01-05T21:40:01Z
NIFI-1354
Generated new self-signed RSA-2048 key for FQDN localhost in keystore and
exported to truststore.
----
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
