拿到一个私钥,需要将加密的数据给解密出来。怎么都解不出来,在获取PrivateKey的时候就报错algid parse error, not a sequence
KeyFactory.getInstance("RSA").generatePrivate(
new PKCS8EncodedKeySpec(Encodes.decodeBase64("priKey")))
原因是私钥串不是PKCS#8的格式,不使用第三方jar是转不出来的
解决办法一种是用openssl将私钥串转成PKCS#8格式
第二种是用第三方库,我用的第三方库bouncycastle,方便快捷点,就懒得安装openssl这些了
pom:
<dependency>
<groupId>org.bouncycastle</groupId>
<artifactId>bcprov-jdk15on</artifactId>
<version>1.59</version>
</dependency>
<dependency>
<groupId>org.bouncycastle</groupId>
<artifactId>bcmail-jdk15on</artifactId>
<version>1.59</version>
</dependency>
<dependency>
<groupId>org.bouncycastle</groupId>
<artifactId>bcpkix-jdk15on</artifactId>
<version>1.59</version>
</dependency>
将私钥/公钥还原成pem文件
public static PrivateKey get10027504355PrivateKey() throws Exception {
BufferedReader br=new BufferedReader(new InputStreamReader(ClassLoader.getSystemResourceAsStream("config/10027504355ssl.pem")));
PEMParser pemParser = new PEMParser(br);
PEMKeyPair pemKeyPair = (PEMKeyPair)pemParser.readObject();
pemParser.close();
JcaPEMKeyConverter converter = new JcaPEMKeyConverter();
KeyPair keyPair = converter.getKeyPair(pemKeyPair);
PublicKey publicKey=keyPair.getPublic();
return keyPair.getPrivate();
}
在应用启动的时候添加BouncyCastleProvider,初始化一次即可
package com.mktpay.admin.init;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.springframework.boot.CommandLineRunner;
import org.springframework.stereotype.Component;
import java.security.Security;
/**
* @ClassName Runner
* @Author yupanpan
* @Date 2021/10/11 15:03
*/
@Component
public class EDncryptRunner implements CommandLineRunner {
@Override
public void run(String... args) throws Exception {
//自定义其他方式加解密算法初始化
Security.addProvider(new BouncyCastleProvider());
}
}