There should be enough example code in the KeyStore Javadocs page to get you started:

KeyStore Javadocs 页面中应该有足够的示例代码来帮助您入门：

• https://docs.oracle.com/javase/9/docs/api/java/security/KeyStore.html

• https://docs.oracle.com/javase/9​​/docs/api/java/security/KeyStore.html

As for the 'default' keystore - I'm not sure such a thing exists, normally you either load it explicitly from a file, or you can configure it using the following system properties:

至于“默认”密钥库 - 我不确定是否存在这样的东西，通常您可以从文件中显式加载它，或者您可以使用以下系统属性对其进行配置：

• javax.net.ssl.keyStore - Keystore location
• javax.net.ssl.keyStorePassword - Keystore password
• javax.net.ssl.keyStoreType - Keystore type (JKS, P12 etc)

• javax.net.ssl.keyStore - 密钥库位置
• javax.net.ssl.keyStorePassword - 密钥库密码
• javax.net.ssl.keyStoreType - 密钥库类型（JKS、P12 等）

And similar for the trust store:

与信任商店类似：

• javax.net.ssl.trustStore
• javax.net.ssl.trustStorePassword
• javax.net.ssl.trustStoreType

• javax.net.ssl.trustStore
• javax.net.ssl.trustStorePassword
• javax.net.ssl.trustStoreType

There is no default keystore in Java. This is documented in the customization section of the JSSE Reference Guide.

Java 中没有默认的密钥库。这记录在JSSE 参考指南的定制部分。

The default trust store is:

默认信任存储是：

jssecacerts, if it exists. Otherwise, cacerts

jssecacerts，如果它存在。否则，cacerts

However, it doesn't mean that these are the stores used by the default SSLContext, since it's also possible to change the default SSLContext(since Java 6) with one that would have been initialised with custom trust managers. (See this answerfor more details).

但是，这并不意味着这些是 default 使用的存储SSLContext，因为也可以SSLContext使用自定义信任管理器初始化的存储来更改默认值（自 Java 6 起）。（有关更多详细信息，请参阅此答案）。