java程序中的java.security.spec.InvalidKeySpecException和不适当的密钥规范错误
作为项目实施的一部分,我做了以下工作: 1.通用DSA密钥 2.使用AES加密私钥 3.保存到文件中 4.打开文件并读取加密的私钥 5.我尝试将读取值转换为主键格式java程序中的java.security.spec.InvalidKeySpecException和不适当的密钥规范错误,java,encryption,cryptography,dsa,character-encoding,encoding,Java,Encryption,Cryptography,Dsa,Character Encoding,Encoding,作为项目实施的一部分,我做了以下工作: 1.通用DSA密钥 2.使用AES加密私钥 3.保存到文件中 4.打开文件并读取加密的私钥 5.我尝试将读取值转换为主键格式 import java.security.spec.EncodedKeySpec; import java.security.spec.PKCS8EncodedKeySpec; import java.security.Security; import java.io.File; import java.security.KeyFa
import java.security.spec.EncodedKeySpec;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.Security;
import java.io.File;
import java.security.KeyFactory;
import java.security.PrivateKey;
import java.security.Signature;
import java.security.spec.PKCS8EncodedKeySpec;
import java.io.*;
import java.security.*;
import java.util.logging.Level;
import java.util.logging.Logger;
import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.IllegalBlockSizeException;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.spec.SecretKeySpec;
public class Pgm {
public static void main(String[] args) {
try {
KeyPairGenerator dsa = KeyPairGenerator.getInstance("DSA");
SecureRandom random = new SecureRandom();
dsa.initialize(1024, random);
KeyPair keypair = dsa.generateKeyPair();
PrivateKey privateKey = (PrivateKey) keypair.getPrivate();
byte[] key = "�u���1�iw&a".getBytes();
Key aesKey = new SecretKeySpec(key, "AES");
Cipher cipher = Cipher.getInstance("AES");
String currentDir = System.getProperty("user.dir");
// encrypt the text
cipher.init(Cipher.ENCRYPT_MODE, aesKey);
byte[] abc = privateKey.getEncoded();
byte[] encrypted = cipher.doFinal(abc);
// System.out.println("len="+encrypted.length());
File dir = new File(currentDir);
File private_file = new File(dir, "privatekey.txt");
if (!private_file.exists()) {
private_file.createNewFile();
}
FileOutputStream fileos = new FileOutputStream(private_file);
ObjectOutputStream objectos = new ObjectOutputStream(fileos);
objectos.writeObject(encrypted);
objectos.close();
fileos.close();
File file_private = new File(dir, "privatekey.txt");
FileInputStream fileo = new FileInputStream(file_private);
ObjectInputStream objos = new ObjectInputStream(fileo);
Object obj = objos.readObject();
byte[] encrypted1 = (byte[]) obj;
cipher.init(Cipher.DECRYPT_MODE, aesKey);
String decrypted = new String(cipher.doFinal(encrypted1));
if (decrypted.equals(new String(abc)))
System.out.println("true");
else
System.out.println("false");
Signature tosign = Signature.getInstance("DSA");
byte[] val = decrypted.getBytes();
KeyFactory generator = KeyFactory.getInstance("DSA");
EncodedKeySpec privateKeySpec = new PKCS8EncodedKeySpec(val);
PrivateKey privatekey1 = generator.generatePrivate(privateKeySpec);
tosign.initSign(privatekey1);
} catch (Exception e) {
System.out.println("failed");
e.printStackTrace();
}
}
}
密文和密钥都应由随机字节组成。它们中的任何一个都不能用字符串1:1表示。并非所有字节都可以表示特定字节的有效编码 相反,您应该直接使用字节数组。如果需要实际文本,请使用十六进制或基数64 使用密文作为字节和以十六进制指定的密钥的代码:
import java.io.File;
import java.io.FileInputStream;
import java.io.FileOutputStream;
import java.io.ObjectInputStream;
import java.io.ObjectOutputStream;
import java.security.Key;
import java.security.KeyFactory;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.PrivateKey;
import java.security.SecureRandom;
import java.security.Signature;
import java.security.spec.EncodedKeySpec;
import java.security.spec.PKCS8EncodedKeySpec;
import java.util.Arrays;
import javax.crypto.Cipher;
import javax.crypto.spec.SecretKeySpec;
import codec.Hex;
public class Pgm {
public static void main(String[] args) {
try {
KeyPairGenerator dsa = KeyPairGenerator.getInstance("DSA");
SecureRandom random = new SecureRandom();
dsa.initialize(1024, random);
KeyPair keypair = dsa.generateKeyPair();
PrivateKey privateKey = (PrivateKey) keypair.getPrivate();
byte[] key = Hex.decode("000102030405060708090A0B0C0D0E0F");
Key aesKey = new SecretKeySpec(key, "AES");
Cipher cipher = Cipher.getInstance("AES");
String currentDir = System.getProperty("user.dir");
// encrypt the text
cipher.init(Cipher.ENCRYPT_MODE, aesKey);
byte[] abc = privateKey.getEncoded();
byte[] encrypted = cipher.doFinal(abc);
// System.out.println("len="+encrypted.length());
File dir = new File(currentDir);
File private_file = new File(dir, "privatekey.txt");
if (!private_file.exists()) {
private_file.createNewFile();
}
FileOutputStream fileos = new FileOutputStream(private_file);
ObjectOutputStream objectos = new ObjectOutputStream(fileos);
objectos.writeObject(encrypted);
objectos.close();
fileos.close();
File file_private = new File(dir, "privatekey.txt");
FileInputStream fileo = new FileInputStream(file_private);
ObjectInputStream objos = new ObjectInputStream(fileo);
Object obj = objos.readObject();
byte[] encrypted1 = (byte[]) obj;
cipher.init(Cipher.DECRYPT_MODE, aesKey);
byte[] decrypted = cipher.doFinal(encrypted1);
if (Arrays.equals(decrypted, abc))
System.out.println("true");
else
System.out.println("false");
Signature tosign = Signature.getInstance("DSA");
KeyFactory generator = KeyFactory.getInstance("DSA");
EncodedKeySpec privateKeySpec = new PKCS8EncodedKeySpec(decrypted);
PrivateKey privatekey1 = generator.generatePrivate(privateKeySpec);
tosign.initSign(privatekey1);
} catch (Exception e) {
System.out.println("failed");
e.printStackTrace();
}
}
}
我不知道答案,但也许能帮你解决问题。如果删除AES加密,是否有效?如果删除保存到文件中的内容(将所有内容保留在内存中),是否有效?尝试删除这样的片段,看看会发生什么。感谢您的评论,但我认为问题出在代码的最后部分。我发现这个()不确定它是否有帮助。我现在使用了Apache codec中的十六进制编解码器,但您当然可以使用任何编码。Java 8现在默认支持Base64编码,但hex还不支持(至少在
util