stackoom
  简体   繁体   中英

Creating PrivateKey Object from PKCS12

 原文  2013-09-05 19:20:28       java/ security/ encryption/ cryptography

Question

I created private key from PKCS12 file with this command:

openssl pkcs12 -in test.p12 -nocerts -out privateKey.pem

How can I create PrivateKey Object from this privateKey.pem file now?

I tried using PKCS12 file itself with this code:

 KeyStore pfx = KeyStore.getInstance("pkcs12");
 pfx.load(new FileInputStream(P12), "123456".toCharArray());
 final Enumeration<String> aliases = pfx.aliases(); //this is empty

pfx.aliases() - was empty, I verified using keytool that it is really empty, no entries. 

keytool -v -list -storetype pkcs12 -keystore test.p12

Keystore type: PKCS12
Keystore provider: SunJSSE

Your keystore contains 0 entries

My question is how can I create PrivateKey using code like this:

 public static RSAPrivateKey getPrivateKey(File privateKeyFile) throws IOException {
        byte[] keyBytes = new byte[(int) privateKeyFile.length()];
        FileInputStream fis = new FileInputStream(privateKeyFile);
        fis.read(keyBytes);
        PKCS8EncodedKeySpec spec = new PKCS8EncodedKeySpec(keyBytes);// it works only with PKCS8
        KeyFactory keyFactory = KeyFactory.getInstance("RSA");
        RSAPrivateKey privKey = (RSAPrivateKey) keyFactory.generatePrivate(spec);
        return privKey;
    }

The problem with this code it only works for PKCS8, I need something like this for PKCS12.

3 answers

solution1
 2  2013-09-05 19:35:06

The only way I know is a bit low-level, but it works:

public PrivateKey getPrivateKey(File file) throws IOException, GeneralSecurityException {
    try (FileInputStream fileStream = new FileInputStream(file);
         DataInputStream dataStream = new DataInputStream(fileStream)) {
        byte[] keyBytes = new byte[(int) file.length()];
        dataStream.readFully(keyBytes);
        String temp = new String(keyBytes);
        String header = temp.replace("-----BEGIN PRIVATE KEY-----\n", "");
        header = header.replace("-----END PRIVATE KEY-----", "");
        byte[] decoded = new Base64().decode(header);
        PKCS8EncodedKeySpec spec = new PKCS8EncodedKeySpec(decoded);
        KeyFactory kf = KeyFactory.getInstance("RSA");
        return kf.generatePrivate(spec);
    }
}

This code assumes, that required key is a RSA key.

solution2
 0  2019-04-30 06:15:06

您可以尝试使用 KeyStore Explorer ( https://keystore-explorer.org/ ),我们使用它来代替 Java Keytool(因为我觉得它很难使用)。

solution3
 -1  2020-06-03 10:33:35

Maybe this will help someone.

Here is how you can generate a private key from your pkcs12 certificate file.

public PrivateKey getPrivateKey(String pathToPKCS12File) {
    try {
        InputStream stream = new FileInputStream(new File(pathToPKCS12File));
        KeyStore ks = KeyStore.getInstance("PKCS12");
        ks.load(stream, "123456".toCharArray());
        return (PrivateKey) ks.getKey(
            ks.aliases.nextElement(),
            "123456".toCharArray()
        );
    } catch (Exception e) {
        //error
    }
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to create a PKCS12 keystore with privatekey encryption PBEWithHmacSHA512AndAES_128 How to convert Base64 encoded pkcs12 content to java.security.PrivateKey? Creating PKCS12 file to use as java trust store PKCS12 CERTIFICATE ERROR Error Read Certificate (pkcs12) from Server (Java) How to export public key from pkcs12 file programmatically How to create keystore and truststore for Java from a PKCS12 file? PKCS12 Java Keystore from CA and User certificate in java Export certificate authority from PKCS12 on Android How to get PrivateKey from keystore.pkcs12 file
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM