堆栈内存溢出
  简体   繁体   English

无法使用Java从PKCS12文件访问私钥

[英]Not able to access Private key from PKCS12 file using java

 原文  2015-05-07 09:29:08       java/ keystore/ keytool/ jks

问题描述

I have created a pkcs12 file having a private key entry without any password. 我创建了一个pkcs12文件,其中包含没有任何密码的私钥条目。 I am able to access the p12 file using keytool utility without providing any password. 我可以使用keytool实用程序访问p12文件,而无需提供任何密码。

The same I am not able to to programmatically. 同样,我无法以编程方式进行。 When I am trying like below 当我尝试如下 

if( keyStore.isKeyEntry(KEYSTORE_ALIAS)) {
    key = (PrivateKey) keyStore.getKey(KEYSTORE_ALIAS,new char[0]);
}

I am getting the below exception 我收到以下异常 

Caused by: javax.crypto.BadPaddingException: Given final block not
properly padded
    at com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:811)
    at com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:676)
    at com.sun.crypto.provider.PKCS12PBECipherCore.implDoFinal(PKCS12PBECipherCore.java:355)
    at com.sun.crypto.provider.PKCS12PBECipherCore$PBEWithSHA1AndDESede.engineDoFinal(PKCS12PBECipherCore.java:387)
    at javax.crypto.Cipher.doFinal(Cipher.java:2087)
    at sun.security.pkcs12.PKCS12KeyStore.engineGetKey(PKCS12KeyStore.java:266)
    ... 2 more

1 个解决方案

解决方案1
 0  2015-05-07 10:05:21

key = (PrivateKey) keyStore.getKey(KEYSTORE_ALIAS,new char[0]);

That's not the correct way to specify no key. 这不是指定没有密钥的正确方法。 Here you are specifying a zero-length key. 在这里,您指定一个零长度的密钥。 It isn't the same thing. 这不是同一回事。 Try this: 尝试这个: 

key = (PrivateKey) keyStore.getKey(KEYSTORE_ALIAS, null);

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 使用Java生成PKCS12文件 - Generate PKCS12 file using Java 如何以编程方式从pkcs12文件导出公钥 - How to export public key from pkcs12 file programmatically 如何从 PKCS12 文件为 Java 创建密钥库和信任库? - How to create keystore and truststore for Java from a PKCS12 file? 使用keytool更改密码时,从Java Keystore中提取PKCS12文件 - Extract PKCS12 file from Java Keystore while changing the password using keytool 无法将 .jks 转换为 .pkcs12:私钥过多 - Unable to convert .jks to .pkcs12: excess private key KeyStore不使用BouncyCastle在Android中为PKCS12文件应用/强制执行私钥密码 - KeyStore not applying / enforcing private key password for PKCS12 file in Android with BouncyCastle Java SSL - 使用 pkcs12 (.p12) 文件连接到安全 Rest 服务 - Java SSL - Connect to secure Rest Service using pkcs12 (.p12) file 来自CA的PKCS12 Java密钥库和java中的用户证书 - PKCS12 Java Keystore from CA and User certificate in java 如何在Java中以编程方式解析PKCS12文件? - How to parse a PKCS12 file programmatically in Java? 创建PKCS12文件以用作Java信任库 - Creating PKCS12 file to use as java trust store
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM