如何将PEM编码的椭圆曲线公钥加载到Bouncy Castle？ [英] How to load PEM encoded Elliptic Curve public keys into Bouncy Castle?

查看：493 发布时间：2018/12/17 11:34:18 java clojure bouncycastle pem elliptic-curve

本文介绍了如何将PEM编码的椭圆曲线公钥加载到Bouncy Castle？的处理方法，对大家解决问题具有一定的参考价值，需要的朋友们下面随着小编来一起学习吧！

问题描述

我有一个PEM编码的Elliptic Curve公钥，我正试图加载到Bouncy Castle中，到目前为止我尝试的所有内容都失败了。这是我要加载的密钥的示例：

I have a PEM encoded Elliptic Curve public key that I'm trying to load into Bouncy Castle and everything I tried so far is failing. This is an example of the key I'm trying to load:

它由 NodeJS加密模块，曲线名称为secp521r1。它稍后由 npm package key-encoder 编码到PEM中。我已经在JavaScript（实际上是ClojureScript）中使用它来验证签名，现在我需要使用Java验证服务器上的签名（实际上是Clojure）。

It is generated by NodeJS Crypto module and the curve name is secp521r1. It's later on encoded into PEM by the npm package key-encoder. I already used it in JavaScript (ClojureScript actually) to verify a signature and now I need to verify the signature on the server with Java (Clojure actually).

我试过删除来自密钥的守卫，转换为byte []并创建X509EncodedKeySpec。那没用。它崩溃了：

I tried removing the guards from the key, coverting to a byte[] and creating a X509EncodedKeySpec. That didn't work. It crashed with:

InvalidKeySpecException encoded key spec not recognised  org.bouncycastle.jcajce.provider.asymmetric.util.BaseKeyFactorySpi.engineGeneratePublic (:-1)

我用来加载密钥的代码：

The code to I'm using to load the key:

KeyFactory.
  getInstance("ECDSA", "BC").
  generatePublic(new X509EncodedKeySpec(publicKey.getBytes()))

以防万一，这个是我的Clojure代码：

Just in case, this is my Clojure code:

(-> (KeyFactory/getInstance "ECDSA")
    (.generatePublic (X509EncodedKeySpec. (.getBytes public-key))))

我也尝试过PKCS8EncodedKeySpec，但是我得到了错误：

I also tried PKCS8EncodedKeySpec but I got the error:

InvalidKeySpecException key spec not recognised  org.bouncycastle.jcajce.provider.asymmetric.util.BaseKeyFactorySpi.engineGeneratePublic (:-1)

我也尝试过这种方法： https://gist.github.com/wuyongzheng/0e2ed6d8a075153efcd3#file-ecdh_bc-java-L47-L50 但是当运行decodePoint我收到错误：

I also tried this method here: https://gist.github.com/wuyongzheng/0e2ed6d8a075153efcd3#file-ecdh_bc-java-L47-L50 but when running decodePoint I get the error:

IllegalArgumentException Invalid point encoding 0x4d  org.bouncycastle.math.ec.ECCurve.decodePoint (:-1)

当我移除警卫并且：

IllegalArgumentException Invalid point encoding 0x2d  org.bouncycastle.math.ec.ECCurve.decodePoint (:-1)

随着警卫的到来。

任何想法我做错了什么或如何解决它？

Any ideas what I'm doing wrong or how to fix it?

，如果它有帮助，这是私钥：

Also, in case it helps, this is the private key:

一切似乎都有效：

$ openssl ec -in private.pem  -pubout
read EC key
writing EC key
-----BEGIN PUBLIC KEY-----
MIGbMBAGByqGSM49AgEGBSuBBAAjA4GGAAQBhsFCcWY2GaiN1BjPEd1v+ESKO6/0
D0sUR4y1amHnOr3FZx6TdqdoSBqxownQrnAKGCwagGxUb7BWwPFgHqKQJHgBq+J7
F+6m5SKAEL1wS5pqya91N7oudF3yFW8oZRE4RQRdSLl3fV2aVXKwGDXciwhUhw8k
x5OS4iZpMAY+LI4WVGU=
-----END PUBLIC KEY-----

推荐答案

做一些按摩我终于设法加载了它：

Doing a bit of massaging I finally managed to load it:

(require '[clojure.string :as s])
(import '[java.security KeyFactory]
        '[java.security.spec X509EncodedKeySpec]
        '[java.util Base64])

(def public-key "-----BEGIN PUBLIC KEY-----
MIGbMBAGByqGSM49AgEGBSuBBAAjA4GGAAQBhsFCcWY2GaiN1BjPEd1v+ESKO6/0
D0sUR4y1amHnOr3FZx6TdqdoSBqxownQrnAKGCwagGxUb7BWwPFgHqKQJHgBq+J7
F+6m5SKAEL1wS5pqya91N7oudF3yFW8oZRE4RQRdSLl3fV2aVXKwGDXciwhUhw8k
x5OS4iZpMAY+LI4WVGU=
-----END PUBLIC KEY-----")

(as-> public-key key
      (s/replace key "-----BEGIN PUBLIC KEY-----" "")
      (s/replace key "-----END PUBLIC KEY-----" "")
      (s/replace key #"\s" "")
      (.decode (Base64/getDecoder) key)
      (X509EncodedKeySpec. key)
      (.generatePublic (KeyFactory/getInstance "ECDSA" "BC") key))

这篇关于如何将PEM编码的椭圆曲线公钥加载到Bouncy Castle？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！

查看全文

如何将PEM编码的椭圆曲线公钥加载到Bouncy Castle？ [英] How to load PEM encoded Elliptic Curve public keys into Bouncy Castle?

问题描述

推荐答案

相关文章

Java开发最新文章

热门教程

热门工具

登录关闭

如何将PEM编码的椭圆曲线公钥加载到Bouncy Castle？ [英] How to load PEM encoded Elliptic Curve public keys into Bouncy Castle?

问题描述

推荐答案

相关文章

Java开发最新文章

热门教程

热门工具

登录 关闭

登录关闭