java.security.cert.CertificateParsingException:签名字段无效
声明:本页面是StackOverFlow热门问题的中英对照翻译,遵循CC BY-SA 4.0协议,如果您需要使用它,必须同样遵循CC BY-SA许可,注明原文地址和作者信息,同时你必须将它归于原作者(不是我):StackOverFlow
原文地址: http://stackoverflow.com/questions/21794117/
Warning: these are provided under cc-by-sa 4.0 license. You are free to use/share it, But you must attribute it to the original authors (not me):
StackOverFlow
java.security.cert.CertificateParsingException: signed fields invalid
提问by Suresh Atta
I'm trying to read a X509 certificate
我正在尝试阅读 X509 certificate
FileInputStream fr = new FileInputStream("suresh.pfx");
CertificateFactory cf = CertificateFactory.getInstance("X509");
X509Certificate c = (X509Certificate) cf.generateCertificate(fr);
And run in to the exception
并遇到异常
java.security.cert.CertificateParsingException: signed fields invalid
at sun.security.x509.X509CertImpl.parse(Unknown Source)
at sun.security.x509.X509CertImpl.<init>(Unknown Source)
at sun.security.provider.X509Factory.engineGenerateCertificate(Unknown Source)
at java.security.cert.CertificateFactory.generateCertificate(Unknown Source)
at com.nextenders.certificategeenrator.CertificateGenerator.testGenerateSignCertWithKeyStore(CertificateGenerator.java:102)
at com.nextenders.certificategeenrator.CertificateGenerator.main(CertificateGenerator.java:65)
Found something related to it from Oracle forumwith no solution.
从Oracle 论坛中找到了与之相关的内容,但没有解决方案。
Any hints ?
任何提示?
回答by MorAdan
PFX isn't a certificate but a keystore in itself.
PFX 本身不是证书,而是密钥库。
To get the certificate you have to load the pfx into a keystore and then get the certificate:
要获取证书,您必须将 pfx 加载到密钥库中,然后获取证书:
InputStream certIs=new FileInputStream("suresh.pfx");
Keystore ks=KeyStore.getInstance("PKCS12");
ks.load(certIs.getInputStream(),"password".toCharArray());
Certificate cert=ks.getCertificate("alias");
Regards
问候
