无法将私钥强制转换为RSACryptoServiceProvider [英] Casting private key to RSACryptoServiceProvider not working
问题描述
我有一个X509Certificate2变量,我正在尝试将该变量的私钥转换为RSACryptoServiceProvider
I have a X509Certificate2 variable and I'm trying to cast the private key of the variable to a RSACryptoServiceProvider
RSACryptoServiceProvider pkey = (RSACryptoServiceProvider)cert.PrivateKey;
但是我得到这个例外.
System.InvalidCastException:'无法将类型为'System.Security.Cryptography.RSACng'的对象转换为类型为'System.Security.Cryptography.RSACryptoServiceProvider'.'
System.InvalidCastException: 'Unable to cast object of type 'System.Security.Cryptography.RSACng' to type 'System.Security.Cryptography.RSACryptoServiceProvider'.'
发生这种情况很奇怪,因为SO中的其他答案建议的程序与我的相同,但我得到了例外.有什么解决办法吗?
It's weird that this happens because other answers in SO suggested the same procedure as mine but I get an exception. Any solutions to this?
推荐答案
因此,在进行了几次尝试和评论后,我提出了以下解决方案.
So after a few tries and discussions in the comments I came up with the following solution.
RSA rsa = (RSA)cert.PrivateKey;
(cert.PrivateKey as RSACng).Key.SetProperty(
new CngProperty(
"Export Policy",
BitConverter.GetBytes((int)CngExportPolicies.AllowPlaintextExport),
CngPropertyOptions.Persist));
RSAParameters RSAParameters = rsa.ExportParameters(true);
AsymmetricCipherKeyPair keypair = DotNetUtilities.GetRsaKeyPair(RSAParameters);
问题是变量 rsa
无法导出.要更改此设置,我为导出策略设置了一个新的CngProperty.现在可以正常运行
The problem was that the variable rsa
wasn't exportable. To change this I set a new CngProperty for the export policy. Works perfectly now
这篇关于无法将私钥强制转换为RSACryptoServiceProvider的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!