java - DerInputStream.getLength() : lengthTag=66

标签 java certificate keystore pkcs#12

当我尝试加载证书时遇到以下问题:

> java.io.IOException: DerInputStream.getLength(): lengthTag=66, too big.
|   at sun.security.util.DerInputStream.getLength(DerInputStream.java:561)
|   at sun.security.util.DerValue.init(DerValue.java:365)
|   at sun.security.util.DerValue.<init>(DerValue.java:320)
|   at sun.security.pkcs12.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:1914)
|   at java.security.KeyStore.load(KeyStore.java:1445)
|   at com.sequenceiq.cloudbreak.cloud.wap.client.WapClient.getFactory(WapClient.java:61)
|   at com.sequenceiq.cloudbreak.cloud.wap.client.WapClient.checkConnect(WapClient.java:80)
|   at com.sequenceiq.cloudbreak.cloud.wap.WapCredentialConnector.verify(WapCredentialConnector.java:53)
|   at com.sequenceiq.cloudbreak.cloud.handler.CredentialVerificationHandler.accept(CredentialVerificationHandler.java:43)
|   at com.sequenceiq.cloudbreak.cloud.handler.CredentialVerificationHandler.accept(CredentialVerificationHandler.java:20)
|   at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
|   at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
|   at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
|   at java.lang.reflect.Method.invoke(Method.java:498)
|   at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:302)
|   at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:190)
|   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:157)
|   at org.springframework.aop.framework.adapter.MethodBeforeAdviceInterceptor.invoke(MethodBeforeAdviceInterceptor.java:52)
|   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
|   at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:92)
|   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
|   at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:208)
|   at com.sun.proxy.$Proxy201.accept(Unknown Source)
|   at reactor.bus.EventBus$3.accept(EventBus.java:317)
|   at reactor.bus.EventBus$3.accept(EventBus.java:310)
|   at reactor.bus.routing.ConsumerFilteringRouter.route(ConsumerFilteringRouter.java:72)
|2016-06-07 19:56:59,465 [reactorDispatcher-17] accept:56 [34mINFO [0;39m c.s.c.c.h.CredentialVerificationHandler - [owner:c90f9d2e-587f-4af6-a3a8-f1d321caa3a1] [type:springLog] [id:null] [name:debug2] Credential verification successfully finished
|   at reactor.bus.routing.TraceableDelegatingRouter.route(TraceableDelegatingRouter.java:51)
|   at reactor.bus.EventBus.accept(EventBus.java:591)
|   at reactor.bus.EventBus.accept(EventBus.java:63)
|   at reactor.core.dispatch.AbstractLifecycleDispatcher.route(AbstractLifecycleDispatcher.java:160)
web01#3|2016-06-07 19:56:59,466 [http-nio-9091-exec-4] init:51 [34mINFO [0;39m c.s.c.s.s.c.a.ServiceProviderCredentialAdapter - [owner:c90f9d2e-587f-4af6-a3a8-f1d321caa3a1] [type:springLog] [id:] [name:] Result: CloudPlatformResult{status=OK, statusReason='null', errorDetails=null, request=CloudPlatformRequest{cloudContext=CloudContext{id=null, name='debug2', platform='StringType{value='WAP'}', owner='c90f9d2e-587f-4af6-a3a8-f1d321caa3a1'}, cloudCredential=com.sequenceiq.cloudbreak.cloud.model.CloudCredential@4bd64260}}
|   at reactor.core.dispatch.MultiThreadDispatcher$MultiThreadTask.run(MultiThreadDispatcher.java:74)
|   at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
|   at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
|   at java.lang.Thread.run(Thread.java:745)

这是代码示例:

          keyInput = new FileInputStream(pKeyFile);
          keyStore.load(keyInput, pKeyPassword.toCharArray());
          keyInput.close();

请注意,在加载之前,我将服务器收到的证书写入新文件中:

        File file = new File(name);
        try(FileWriter fw = new FileWriter(file)){
            fw.write(certificate);
        }catch(IOException e){
            LOGGER.debug("Writer issue",e);
        }

我已经尝试在写入文件后读取该文件并且它有效。所以我很确定这不是一个InputStream问题。

证书是 pkcs12 文件。 难道我无法加载我刚刚在新文件中写入的证书吗?

最佳答案

PKCS#12 采用 DER 格式编码,DER 格式是二进制。

您正在使用的 FileReader(来自 javadoc)

Convenience class for writing character files.

继承自OutputStreamWriter

An OutputStreamWriter is a bridge from character streams to byte streams: Characters written to it are encoded into bytes using a specified charset.

因此

  1. 将二进制转换为字符时遇到编码问题
  2. 您收到的文件并不是真正的二进制格式。它可能是 Base64

在这两种情况下,都使用 FileOutputStream.writeFiles.write 来存储文件,如果您的“certificate”变量是字符串,请首先将其转换为二进制

File file = new File(name);
FileOutputStream fout = new FileOutputStream(file);
fout.write (data);

Files.write(Paths.get("name"), data);

关于java - DerInputStream.getLength() : lengthTag=66,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/37939592/

上一篇:java - 使用文件列表作为参数编写 Ant 任务

下一篇:java - 从插件写入 'Problems' 表或 'Console'

相关文章:

java - 强制 Maven 命令行参数

java - super 函数在java中是如何工作的?

ios - xcode 8 配置文件错误

android - 在 eclipse 升级期间丢失私钥

java - keystore 和 cacerts 之间相同的别名不同的 key 正常吗?或者,如何在 keystore /cacerts之间导出/导入 key ?

java - Intellij maven 项目编译 fatal error : invalid flag: --release

java - Java 中用于验证用户名的正则表达式

flash - 如何找出在 openssl 中制作的 .p12 文档的密码?

git - 无法通过 Git Bash 克隆 git 存储库

java.io.IOException : Invalid Keystore format

©2024 IT工具网  联系我们