潘志宝
2024-09-12 ac6fb5406fccf2d9a0e39ae5e299c7fa207978da
提交 | 用户 | 时间
a6de49 1 package com.iailab.module.data.channel.opcua.collector;
H 2
3 import com.sun.org.apache.xerces.internal.impl.dv.util.Base64;
4
5 import java.io.FileInputStream;
6 import java.io.FileNotFoundException;
7 import java.io.FileOutputStream;
8 import java.security.Key;
9 import java.security.KeyStore;
10 import java.security.PublicKey;
11 import java.security.cert.Certificate;
12 import java.security.cert.CertificateException;
13 import java.security.cert.CertificateFactory;
14
15 /**
16  * @Author: zhangsong
17  * @Date: 2019/5/28 20:21
18  * @Version 1.0
19  * 首先需要通过jdk的keytool生成秘钥库等,需确保机器中安装有jdk
20  * 0.在本代码环境下,执行1命令时,秘钥库的密码和证书的密码须一致,请自行修改路径
21  *   请确保路径下无名为mykeystore.keystore的文件,否则可能会报密码错等
22  * 1.keytool -genkey -alias mykey -keyalg RSA -keystore C:/Users/Lenovo/AppData/Local/Temp/security/mykeystore.keystore -keysize 1024 -validity 3650
23    2.keytool -export -alias mykey -keystore C:/Users/Lenovo/AppData/Local/Temp/security/mykeystore.keystore -file  C:/Users/Lenovo/AppData/Local/Temp/security/mykey.cer
24    3.代码中的秘钥库密码为keystore,请自行修改
25    4.查看信息  keytool -list -v -keystore C:/Users/Lenovo/AppData/Local/Temp/security/mykeystore.keystore -storepass "keystore"
26  *
27  */
28 public class RSACertHelper {
29
30     public static void main(String[] args) {
31         String path = "C:/Users/Lenovo/AppData/Local/Temp/security/";
32         String keyStoreFile = "mykeystore.keystore";
33         String passwd = "keystore";
34         String keyAlias = "mykey";
35         String pfxFile = "mykey.pfx";
36         String cerFile = "mykey.cer";
37
38         System.out.println("请确保已执行完注释中的两条命令再执行本代码\n\n");
39         System.out.println("1.开始生成PFX文件");
40         coverToPfx(path + keyStoreFile, passwd, keyAlias, path + pfxFile);
41         System.out.println("===============================================================");
42         System.out.println("2.开始提取.cer中的公钥字符串");
43         String cerStr = getPubStr(path + cerFile);
44         System.out.println("从.cer文件中提取的公钥字符串如下:");
45         System.out.println(cerStr);
46     }
47
48     //1生成pfx文件
49     public static void coverToPfx(String keyStoreFile, String passwd, String keyAlias, String pfxFile) {
50         try {
51             KeyStore inputKeyStore = KeyStore.getInstance("JKS");
52             FileInputStream fis = new FileInputStream(keyStoreFile);
53             char[] nPassword = null;
54             if ((passwd == null)
55                     || passwd.trim().equals("")) {
56                 nPassword = null;
57             } else {
58                 nPassword = passwd.toCharArray();
59             }
60             inputKeyStore.load(fis, nPassword);
61             fis.close();
62             KeyStore outputKeyStore = KeyStore.getInstance("PKCS12");
63             outputKeyStore.load(null, passwd.toCharArray());
64
65             if (inputKeyStore.isKeyEntry(keyAlias)) {
66                 Key key = inputKeyStore.getKey(keyAlias, passwd.toCharArray());
67                 Certificate[] certChain = inputKeyStore
68                         .getCertificateChain(keyAlias);
69                 outputKeyStore.setKeyEntry(keyAlias, key, passwd
70                         .toCharArray(), certChain);
71             }
72
73             FileOutputStream out = new FileOutputStream(pfxFile);
74             outputKeyStore.store(out, nPassword);
75             out.close();
76             System.out.println("已生成PFX文件" + pfxFile);
77         } catch (Exception e) {
78             e.printStackTrace();
79         }
80     }
81
82     //2获取公钥字符串
83     public static String getPubStr(String cerFile) {
84         String key = "";
85         // 读取证书文件
86         try {
87             CertificateFactory cf = CertificateFactory.getInstance("X.509");
88             FileInputStream in = new FileInputStream(cerFile);
89
90             //生成一个证书对象并使用从输入流 inStream 中读取的数据对它进行初始化。
91             Certificate c = cf.generateCertificate(in);
92             PublicKey publicKey = c.getPublicKey();
93             key = Base64.encode(publicKey.getEncoded());
94         } catch (CertificateException e) {
95             e.printStackTrace();
96         } catch (FileNotFoundException e) {
97             e.printStackTrace();
98         }
99         return key;
100     }
101 }