Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Chain is null when retrieving private key

Tags:

android

android-keystore

private-key

android-security

I'm encrypting data in my app using a RSA keypair that I am storing in the Android keystore.

I've been seeing NullPointerExceptions in the Play Store, but I have not been able to reproduce them:

java.lang.NullPointerException: chain == null
    at java.security.KeyStore$PrivateKeyEntry.<init>(KeyStore.java:1205)
    at java.security.KeyStoreSpi.engineGetEntry(KeyStoreSpi.java:374)
    at java.security.KeyStore.getEntry(KeyStore.java:644)
    at MyClass.getKeyStoreEntry(MyClass.java:111)

The source code to create the key pair

Calendar start = Calendar.getInstance();
start.setTimeInMillis(0);
Calendar end = Calendar.getInstance();
end.set(Calendar.YEAR, 3000);

KeyPairGeneratorSpec.Builder keySpecBuilder = new KeyPairGeneratorSpec.Builder(context)
    .setAlias(keyName)
    .setSubject(new X500Principal("CN=" + keyName))
    .setSerialNumber(BigInteger.TEN)
    .setStartDate(start.getTime())
    .setEndDate(end.getTime())
    .setKeySize(RSA_KEY_SIZE);

KeyPairGeneratorSpec spec = keySpecBuilder.build();
KeyPairGenerator gen = KeyPairGenerator.getInstance("RSA", "AndroidKeyStore");
gen.initialize(spec);
gen.generateKeyPair();

And then to retrieve the key:

private KeyStore.PrivateKeyEntry getKeyStoreEntry() {
    KeyStore keyStore = KeyStore.getInstance(ANDROID_KEY_STORE);
    keyStore.load(null);

    if (!keyStore.containsAlias(keyName)) {
        throw new KeyNotFoundException();
    }
    return (KeyStore.PrivateKeyEntry) keyStore.getEntry(keyName, null);
}

This is only happening when I make use of the KeyPairGeneratorSpec on API level 19-22. The 23+ implementation works fine.

I do not have another key with the same name and I also have not deleted the key.

like image 667
AesSedai101 Avatar asked Aug 24 '16 09:08

AesSedai101

2 Answers

I believe you are simply facing Keystore bugs. See this article for example: Android Security: The Forgetful Keystore. There are also numberous bug reports in Android tracker related to keystore, like AndroidKeyStore deleted after changing screen lock type.

like image 52
Marcin Orlowski Avatar answered Nov 20 '22 05:11

Marcin Orlowski

Please use directly getKey method of KeyStore

private java.security.Key getSecretKey(Context context) throws Exception {
  return keyStore.getKey(XEALTH_KEY_ALIAS, null);
}
like image 27
Abhishek Hirapara Avatar answered Nov 20 '22 06:11

Abhishek Hirapara
Sign in to Comment

Related questions

Is it possibile to set hint Spinner in Android [duplicate]
Trigger back-button functionality on button click in Android
How can I change the style of a ProgressBar to small?
Find out if Android device is portrait or landscape for normal usage?
HorizontalScrollView inside SwipeRefreshLayout
Text-transform:uppercase equivalent in Android?
What does top, left, right and bottom mean in Android Rect object
How to remove title bar from the android activity?
Disable LogCat Output COMPLETELY in release Android app?
Show all items in AutocompleteTextView without writing text
Is there a better way to refresh WebView?
How to autofocus Android camera automatically?
Android Room SQLite_ERROR no such table
Unable to find bundled Java version with flutter doctor, after updating Android studio Arctic Fox(2020.3.1) on M1 Apple Silicon
How to get screen width and height
Links in TextView
Set upper case for TextView
Problems creating a Popup Window in Android Activity
How to get NFC working on Android using Qt 5.6
SecurityException: not allowed to perform OP_READ_PHONE_STATE

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!