I am working on a client server based application.
Where I get PublicKey in this format
as I saved it into String.
Now I want to use this key in my Android(Java code), how can I use this ?
可以将文章内容翻译成中文,广告屏蔽插件可能会导致该功能失效(如失效,请关闭广告屏蔽插件后再试):
问题:
回答1:
First you need to generate the public key from the pem format you provided, here is my method for doing this:
/**
*
* @param PEMString -A file/string in .pem format with a generated RSA key (with "des3", using "openssl genrsa".)
* @param isFilePath - If it's a file path or a string
* @return java.security.PublicKey
* @throws IOException -No key found
* @throws NoSuchAlgorithmException
* @throws InvalidKeySpecException
*
* @author hsigmond
*/
private static PublicKey getPublicKeyFromPemFormat(String PEMString,
boolean isFilePath) throws IOException, NoSuchAlgorithmException,
InvalidKeySpecException {
BufferedReader pemReader = null;
if (isFilePath) {
pemReader = new BufferedReader(new InputStreamReader(
new FileInputStream(PEMString)));
} else {
pemReader = new BufferedReader(new InputStreamReader(
new ByteArrayInputStream(PEMString.getBytes("UTF-8"))));
}
StringBuffer content = new StringBuffer();
String line = null;
while ((line = pemReader.readLine()) != null) {
if (line.indexOf("-----BEGIN PUBLIC KEY-----") != -1) {
while ((line = pemReader.readLine()) != null) {
if (line.indexOf("-----END PUBLIC KEY") != -1) {
break;
}
content.append(line.trim());
}
break;
}
}
if (line == null) {
throw new IOException("PUBLIC KEY" + " not found");
}
Log.i("PUBLIC KEY: ", "PEM content = : " + content.toString());
KeyFactory keyFactory = KeyFactory.getInstance("RSA");
return keyFactory.generatePublic(new X509EncodedKeySpec(Base64.decode(content.toString(), Base64.DEFAULT)));
}
And here is how I use it to read (decode) the content signed with the public key provided.
/**
*
* @param PEMString -A file/string in .pem format with a generated RSA key (with "des3", using "openssl genrsa".)
* @param content
* @return String value of content Decoded
* @throws NoSuchAlgorithmException
* @throws InvalidKeySpecException
* @throws IOException
* @throws NoSuchProviderException
* @throws NoSuchPaddingException
* @throws InvalidKeyException
* @throws IllegalBlockSizeException
* @throws BadPaddingException
*
* @author hsigmond
*/
public static String getContentWithPublicKeyFromPemFormat(String PEMString,
String content,boolean isFilePath) throws NoSuchAlgorithmException,
InvalidKeySpecException, IOException, NoSuchProviderException,
NoSuchPaddingException, InvalidKeyException,
IllegalBlockSizeException, BadPaddingException {
PublicKey publicKey = getPublicKeyFromPemFormat(PEMString,isFilePath);
if (publicKey != null)
Log.i("PUBLIC KEY: ", "FORMAT : " + publicKey.getFormat()
+ " \ntoString : " + publicKey.toString());
byte[] contentBytes = Base64.decode(content, Base64.DEFAULT);
byte[] decoded = null;
Cipher cipher = Cipher.getInstance("RSA/ECB/PKCS1Padding", "BC");//BC=BouncyCastle Provider
cipher.init(Cipher.DECRYPT_MODE, publicKey);
decoded = cipher.doFinal(contentBytes);
return new String(decoded, "UTF-8");
}
回答2:
There is a project called "bouncycastle" we use it on j2me but it woll work on android too. it can be used to handle openssl certificates.
bouncycastle.org
Java KeyStore implementation:
import java.security.cert.Certificate import java.security.KeyStore
and readme a LOT because openssl keys are not directly supported by java which is bringing their own mechanisms.
Java example for KeyStore stuff:
byte[] certData = ...
/* create KeyStore */
KeyStore ks = KeyStore.getInstance("JKS", "SUN");
/* load key store (initialization */
ks.load(null, null);
/* create CertificateFactory */
CertificateFactory cf = CertificateFactory.getInstance("X509");
/* create certificate from input stream */
Certificate cert;
/* provide cert data */
ByteArrayInputStream in = new ByteArrayInputStream(makeCert(certData));
private static byte[] makeCert(byte[] data) {
String headline = "-----BEGIN CERTIFICATE-----";
String footline = "-----END CERTIFICATE-----";
String certStr = headline;
for (int i = 0; i < data.length; i++) {
if (i%64 == 0) {
certStr += "\n";
}
certStr += (char)data[i];
}
if ((data.length-1)%64 != 0) {
certStr += "\n";
}
certStr += footline;
return certStr.getBytes();
}
{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://i.stack.imgur.com/1Bex4.png', '推荐 做个烂人 的文章《Convert PHP RSA PublicKey into Android PublicKey》','https://www.manongdao.com/article-1818833.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}