Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Read a Private Encrypted Key in Java

Tags:

java

encryption

private-key

I have the following piece of code:

    PEMParser pemParser;
    File telexuskeys = new File(locationKey);
    if(telexuskeys.exists())
        pemParser = new PEMParser(new FileReader(telexuskeys));
    else{
        usage(ops);
        throw new FileNotFoundException("The key file (company's certificate) doesn't exist!");
    }

    System.out.println("Loading company's certificate");

    Object object = pemParser.readObject();
    Object object2 = pemParser.readObject();

    PEMDecryptorProvider decProv = new JcePEMDecryptorProviderBuilder().build(passwordPem.toCharArray());
    JcaPEMKeyConverter converter = new JcaPEMKeyConverter().setProvider("BC"); 

    byte[] keyBytes = PrivateKeyInfo.getInstance(object2).getEncoded();
    PKCS8EncodedKeySpec spec = new PKCS8EncodedKeySpec(keyBytes);
    KeyFactory kf = KeyFactory.getInstance("RSA", "BC");        
    PrivateKey pk = kf.generatePrivate(spec);

My pem file just have the certificate and the private key. I used to be able to read the file and obtain the private key but now the file is protected (encrypted) with a password. What is the instruction that I'm still missing. I know I need to use the PEMDecryptorProvider and the JcaPEMKeyConverter objects in order to obtain it but I haven't found the correct combination.

like image 596
Manuel Gustavo Guillen Avatar asked Jul 15 '13 15:07

Manuel Gustavo Guillen

1 Answers

The following code does the work for me. (Using the bcpkix and bcprov libs from Bouncy Castle).

private PrivateKey readPrivateKey(String privateKeyPath, String keyPassword) throws IOException {

    FileReader fileReader = new FileReader(privateKeyPath);
    PEMParser keyReader = new PEMParser(fileReader);

    JcaPEMKeyConverter converter = new JcaPEMKeyConverter();
    PEMDecryptorProvider decryptionProv = new JcePEMDecryptorProviderBuilder().build(keyPassword.toCharArray());

    Object keyPair = keyReader.readObject();
    PrivateKeyInfo keyInfo;

    if (keyPair instanceof PEMEncryptedKeyPair) {
        PEMKeyPair decryptedKeyPair = ((PEMEncryptedKeyPair) keyPair).decryptKeyPair(decryptionProv);
        keyInfo = decryptedKeyPair.getPrivateKeyInfo();
    } else {
        keyInfo = ((PEMKeyPair) keyPair).getPrivateKeyInfo();
    }

    keyReader.close();
    return converter.getPrivateKey(keyInfo);
like image 137
lockner Avatar answered Oct 06 '22 15:10

lockner
Sign in to Comment

Related questions

jfreechart setbackgroundpaint not doing anything
Several decimal for double in JAXB
Constant expressions from an Enum
RestEasy - Unable to find MessageBodyReader?
How to access gmail with 2-step verification?
Java Logging API generating empty log files
Java interface Start/Stop already exist?
Libgdx gl10.glLineWidth()
How should I serialize domain model snapshots for event sourcing
ForkJoinPool stalls during invokeAll/join
How to call an a overridden super class method in Java through JNI?
Can I use an annotation inside a method body?
What's the difference between using @BeforeClass and using instance or static variable in JUnit 4 Java?
Class members in Fragment become null after Home button press and wait
JAXB Marshalling with xmldsig Signature
How to implement graph data structure in java? Is there any existing library available? [duplicate]
JVM bug? Cached Object field value cause ArrayIndexOutOfBoundsException
Javafx Tableview Keep selected row in current view
limiting number of threads used by the JVM
Map containing itself as a value;

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!