直接上源代码,看了就清除了,不会的在联系我
package com.XX.test;
import org.apache.commons.codec.binary.Base64;
import com.pa.lib.CertificateCoder2;
public class Test08 {
private static String password = "你的文件密码";
private static final String alias = "你的文件的别名";
private static final String certificatePath = "keystore.p7b";
private static final String keyStorePath = "keystore.jks";
static String orgText = "plainText";
static String sign_base64 = "SgU63H9NH6fUY9aJ91RTzhR1t3BD6zVmDHXxKf6Ib5RnkiUAq23m7+RWkiDSpVl80WUzwLTOiBwoUYpc98tBlSqiSbfEy5t7QZzso7Fa7KSDZG34VTJ6Yiw7IJvhlkh5eSjyUTw7kfPE0rhw2oTEGu3kRP/nfvklRtTasxVVQkY="; // iOS客户端加签后的字符串base64编码
public static String enryptedText = "YWAOP2yS6vqOjT73bHSdE/yC8JRhm5Q2qZSSo4yij+uzY6zX9dDN3qzZfNZ2uX1n0nZ+0XdUVT0CVlgTnatABaGdunKIfThkEJygF0BCaL2MsVwYSzbwDHL8+Xt/9yY32w4kH8To9i/+vaBlkzfWTtCmpD63TJMoBa3ikX6u/qY=";// iOS客户端加密后的字符串base64编码
static String org = "Hello World!"; //加签的原文
/**
* @param args
* @throws Exception
*/
public static void main(String[] args) throws Exception {
boolean isSuc = CertificateCoder2.verify(org.getBytes(), Base64.decodeBase64(sign_base64), certificatePath);
System.out.println(isSuc);
byte[] decryted = CertificateCoder2.decryptByPrivateKey(Base64.decodeBase64(enryptedText), keyStorePath, alias, password);
System.out.println(new String(decryted));
}
}
com.pa.lib.CertificateCoder2 文件如下:
package com.XX.lib;
import java.io.File;
import java.io.FileInputStream;
import java.security.KeyStore;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.Signature;
import java.security.cert.Certificate;
import java.security.cert.CertificateFactory;
import java.security.cert.X509Certificate;
import javax.crypto.Cipher;
/**
* ÷§ È◊Ⱥ˛
* @author tony
*
*/
public abstract class CertificateCoder2 {
/**
* ˝◊÷÷§ ȵƒ∏Ò Ω
*/
public static final String CERT_TYPE = "X.509";
/**
* ∏˘æ›√‹‘øø‚µƒ¬∑æ∂°¢±√˚∫Õ√‹¬ÎªÒ»° ˝◊÷÷§ ȵƒÀΩ‘ø
* @param keyStorePath √‹‘øø‚µƒ¬∑æ∂
* @param alias ÷§ ȱ√˚
* @param password √‹¬Î
* @return ∑µªÿªÒ»°µΩµƒÀΩ‘ø∂‘œÛ
* @throws Exception
*/
public static PrivateKey getPrivateKeyByKeyStore(String keyStorePath, String alias, String password) throws Exception {
KeyStore keyStore = getKeyStore(keyStorePath, password);
return (PrivateKey) keyStore.getKey(alias, password.toCharArray());
}
/**
* ∏˘æ›√‹‘øø‚¬∑æ∂ªÒ»°π´‘ø
* @param keyStorePath
* @param alias
* @param password
* @return
* @throws Exception
*/
public static PublicKey getPublicKeyByKeyStore(String certificatePath) throws Exception {
Certificate certificate = getCertificate(certificatePath);
return certificate.getPublicKey();
}
/**
* ∏˘æ› ˝◊÷÷§ ȵƒ¬∑æ∂ªÒ»° ˝◊÷÷§ È∂‘œÛ
* @param certificatePath ˝◊÷÷§ Ȭ∑æ∂
* @return º”‘ÿ∫Ûµƒ ˝◊÷÷§ È∂‘œÛ
* @throws Exception
*/
public static Certificate getCertificate(String certificatePath) throws Exception {
CertificateFactory certificateFactory = CertificateFactory.getInstance(CERT_TYPE);
FileInputStream fileInputStream = new FileInputStream(new File(certificatePath));
Certificate certificate = certificateFactory.generateCertificate(fileInputStream);
fileInputStream.close();
return certificate;
}
/**
* ∏˘æ›√‹‘øø‚¬∑æ∂ªÒ»° ˝◊÷÷§ È
* @param keyStorePath √‹‘øø‚¬∑æ∂
* @param alias ±√˚
* @param password √‹¬Î
* @return ∑µªÿ ˝◊÷÷§ È∂‘œÛ
* @throws Exception
*/
public static Certificate getCertificate(String keyStorePath, String alias, String password) throws Exception {
// ªÒ»°√‹‘øø‚
KeyStore keyStore = getKeyStore(keyStorePath, password);
// ∏˘æ›√‹‘øø‚ªÒ»° ˝◊÷÷§ È
return keyStore.getCertificate(alias);
}
/**
* ∏˘æ›÷∏∂®µƒ√‹‘øø‚¬∑æ∂ªÒ»°√‹‘øø‚∂‘œÛ
* @param keyStorePath ˝◊÷÷§ Ȭ∑æ∂
* @param password √‹¬Î
* @return ∑µªÿªÒ»°µΩµƒ ˝◊÷÷§ È∂‘œÛ
* @throws Exception
*/
public static KeyStore getKeyStore(String keyStorePath, String password) throws Exception {
// µ¿˝ªØ√‹‘øø‚∂‘œÛ
KeyStore keyStore = KeyStore.getInstance(KeyStore.getDefaultType());
// ªÒµ√√‹‘øø‚µƒŒƒº˛¡˜∂‘œÛ
FileInputStream fileInputStream = new FileInputStream(new File(keyStorePath));
// º”‘ÿ√‹‘ø–≈œ¢
keyStore.load(fileInputStream, password.toCharArray());
// πÿ±’¡˜∂‘œÛ
fileInputStream.close();
// ∑µªÿº”‘ÿ∫Ûµƒ√‹‘øø‚∂‘œÛ
return keyStore;
}
/**
* π”√√‹‘øø‚∂‘ ˝æ›Ω¯––ÀΩ‘øº”√‹
* @param data “™º”√‹µƒ ˝æ›
* @param keyStorePath √‹‘øø‚¬∑æ∂
* @param alias √‹‘øø‚±√˚
* @param password √‹¬Î
* @return
* @throws Exception
*/
public static byte[] encryptByPrivateKey(byte[] data, String keyStorePath, String alias, String password) throws Exception {
PrivateKey privateKey = getPrivateKeyByKeyStore(keyStorePath, alias, password);
Cipher cipher = Cipher.getInstance(privateKey.getAlgorithm());
cipher.init(Cipher.ENCRYPT_MODE, privateKey);
return cipher.doFinal(data);
}
/**
* π”√√‹‘øø‚ÀΩ‘ø∂‘ ˝æ›Ω¯––Ω‚√‹
* @param data “™Ω‚√‹µƒ ˝æ›
* @param keyStorePath √‹‘øø‚¬∑æ∂
* @param alias ±√˚
* @param password √‹¬Î
* @return ∑µªÿΩ‚√‹∫Ûµƒ ˝æ›
* @throws Exception
*/
public static byte[] decryptByPrivateKey(byte[] data, String keyStorePath, String alias, String password) throws Exception {
PrivateKey privateKey = getPrivateKeyByKeyStore(keyStorePath, alias, password);
Cipher cipher = Cipher.getInstance(privateKey.getAlgorithm());
cipher.init(Cipher.DECRYPT_MODE, privateKey);
return cipher.doFinal(data);
}
/**
* π”√ ˝◊÷÷§ È∂‘ ˝æ›Ω¯––π´‘øº”√‹
* @param data “™º”√‹µƒ ˝æ›
* @param certificatePath ˝◊÷÷§ È
* @return
* @throws Exception
*/
public static byte[] encryptByPublicKey(byte[] data, String certificatePath) throws Exception {
PublicKey publicKey = getPublicKeyByKeyStore(certificatePath);
Cipher cipher = Cipher.getInstance(publicKey.getAlgorithm());
cipher.init(Cipher.ENCRYPT_MODE, publicKey);
return cipher.doFinal(data);
}
/**
* π”√ ˝◊÷÷§ È∂‘ ˝æ›Ω¯––π´‘øΩ‚√‹
* @param data “™Ω‚√‹µƒ ˝æ›
* @param certificatePath ˝◊÷÷§ ȵƒ¬∑æ∂
* @return
* @throws Exception
*/
public static byte[] decryptByPublicKey(byte[] data, String certificatePath) throws Exception {
PublicKey publicKey = getPublicKeyByKeyStore(certificatePath);
Cipher cipher = Cipher.getInstance(publicKey.getAlgorithm());
cipher.init(Cipher.DECRYPT_MODE, publicKey);
return cipher.doFinal(data);
}
/**
* π”√√‹‘øø‚∂‘ ˝æ›Ω¯––«©√˚£¨∑µªÿ ˝æ›µƒ ˝◊÷«©√˚
* @param data “™«©√˚µƒ ˝æ›
* @param keyStorePath √‹‘øø‚¬∑æ∂
* @param alias ±√˚
* @param password √‹¬Î
* @return
* @throws Exception
*/
public static byte[] sign(byte[] data, String keyStorePath, String alias, String password) throws Exception {
Signature signature = Signature.getInstance("SHA1withRSA");
signature.initSign(getPrivateKeyByKeyStore(keyStorePath, alias, password));
signature.update(data);
return signature.sign();
}
/**
* π”√ ˝◊÷÷§ È∂‘ ˝æ›Ω¯––—È÷§
* @param data “™—È÷§µƒ ˝æ›
* @param sign ˝æ›µƒ ˝◊÷«©√˚
* @param certificatePath ˝◊÷÷§ Ȭ∑æ∂
* @return ∑µªÿ «∑Ò—È÷§≥…π¶
* @throws Exception
*/
public static boolean verify(byte[] data, byte[] sign, String certificatePath) throws Exception {
// ªÒ»°X509∏Ò Ωµƒ ˝◊÷÷§ È∂‘œÛ
X509Certificate x509Certificate = (X509Certificate) getCertificate(certificatePath);
// µ¿˝ªØ“ª∏ˆ«©√˚∂‘œÛ
Signature signature = Signature.getInstance("SHA1withRSA");
signature.initVerify(x509Certificate);
signature.update(data);
return signature.verify(sign);
}
}