devbox
小蓝xlanll
这个屌丝很懒,什么也没留下!
关注作者
热门标签
热门文章
当前位置:   article > 正文

JAVA中的RSA密钥生成及签名验签_sign.initsign

作者:小蓝xlanll | 2024-06-17 20:19:39

sign.initsign

RSA密钥生成

生成一个别名为test的私钥和证书,需要按提示输入私钥密码和证书信息,

keytool -genkey -keystore test.p12 -alias test -keyalg RSA -keysize 1024 -storetype pkcs12

导出公钥证书

keytool -export -alias test -keystore test.p12 -file test.crt

  1. @Component
  2. public class RSAEncrypt {
  3.  
  4. 	private static Logger logger = LoggerFactory.getLogger(RSAEncrypt.class);
  5. 	private static RSAEncrypt rsaEncrypt;
  6.  
  7. 	@PostConstruct
  8. 	private void initPro() throws Exception {
  9. 		rsaEncrypt = this;
  10. 		rsaEncrypt.hbpayConfig = this.hbpayConfig;
  11. 		RSAEncrypt.init();
  12. 	}
  13.  
  14. 	/**
  15. 	 * 初始化证书
  16. 	 * @throws Exception 
  17. 	 */
  18. 	private static void init() throws Exception {
  19. 		getPrivateKey();
  20. 		getPublicKey();
  21. 	}
  22.  
  23. 	@Autowired
  24. 	private HBpayConfig hbpayConfig;
  25.  
  26. 	private static PrivateKey privateKey;
  27.  
  28. 	private static PublicKey publicKey;
  29.  
  30. 	// 从keystore文件中提取私钥 filename:D:\certs\test.p12
  31. 	private static PrivateKey getPrivateKey() {
  32. 		if(rsaEncrypt.privateKey == null){
  33. 			BufferedInputStream bufferedInputStream = null;
  34. 			try {
  35. 				FileInputStream is = new FileInputStream(rsaEncrypt.hbpayConfig.getPrivateKeyPath());
  36. 				bufferedInputStream = new BufferedInputStream(is);
  37. 				KeyStore keystore = KeyStore.getInstance(KeyStore.getDefaultType());
  38. 				char[] passwd = rsaEncrypt.hbpayConfig.getPrivateKeyPwd().toCharArray();
  39. 				keystore.load(bufferedInputStream, passwd);
  40. 				rsaEncrypt.privateKey = (PrivateKey) keystore.getKey(rsaEncrypt.hbpayConfig.getPrivateKeyAlias(), passwd);
  41. 				return rsaEncrypt.privateKey;
  42. 			} catch (KeyStoreException e) {
  43. 				e.printStackTrace();
  44. 			} catch (IOException e) {
  45. 				e.printStackTrace();
  46. 			} catch (NoSuchAlgorithmException e) {
  47. 				e.printStackTrace();
  48. 			} catch (CertificateException e) {
  49. 				e.printStackTrace();
  50. 			} catch (UnrecoverableKeyException e) {
  51. 				e.printStackTrace();
  52. 			} finally {
  53.  
  54. 				try {
  55. 					if(bufferedInputStream != null){
  56. 						bufferedInputStream.close();
  57. 					}
  58. 				} catch (IOException e) {
  59. 					e.printStackTrace();
  60. 				}
  61. 			}
  62. 			return null;
  63. 		}else{
  64. 			return rsaEncrypt.privateKey;
  65. 		}
  66.  
  67. 	}
  68.  
  69. 	// 签名
  70. 	private static String sign(PrivateKey privateKey, String message) throws Exception {
  71. 		Signature sign = Signature.getInstance("SHA1withRSA");
  72. 		sign.initSign(privateKey);
  73. 		sign.update(message.getBytes("UTF-8"));
  74. 		return new String(Base64.getEncoder().encodeToString(sign.sign()));
  75. 	}
  76.  
  77. 	// 验签 读取公钥 ,公钥和包提供filename:D:\certs\test.crt
  78. 	private static PublicKey getPublicKey() throws Exception {
  79. 		if(rsaEncrypt.publicKey == null){
  80. 			BufferedInputStream bufferedInputStream = null;
  81. 			try {
  82. 				CertificateFactory cf = CertificateFactory.getInstance("X.509");
  83. 				FileInputStream inStream = new FileInputStream(rsaEncrypt.hbpayConfig.getPublicKeyPath());
  84. 				bufferedInputStream = new BufferedInputStream(inStream);
  85. 				Certificate cert = cf.generateCertificate(bufferedInputStream);
  86. 				rsaEncrypt.publicKey = cert.getPublicKey();
  87. 				return rsaEncrypt.publicKey;
  88. 			} catch (CertificateException e) {
  89. 				e.printStackTrace();
  90. 			} catch (FileNotFoundException e) {
  91. 				e.printStackTrace();
  92. 			} finally {
  93. 				try {
  94. 					if(bufferedInputStream != null){
  95. 						bufferedInputStream.close();
  96. 					}
  97. 				} catch (IOException e) {
  98. 					e.printStackTrace();
  99. 				}
  100. 			}
  101. 			return null;
  102. 		}
  103. 		return rsaEncrypt.publicKey;
  104. 	}
  105.  
  106. 	// 验签
  107. 	public static boolean verify(String message, String signature) throws Exception {
  108. 		Signature sign = Signature.getInstance("SHA1withRSA");
  109. 		sign.initVerify(rsaEncrypt.publicKey);
  110. 		sign.update(message.getBytes("UTF-8"));
  111. 		return sign.verify(Base64.getDecoder().decode(signature));
  112. 	}
  113.  
  114. 	// 请求报文 签名 message=body
  115. 	public static String getSign(String message) {
  116.  
  117. 		logger.info("签名数据:{}",message);
  118. 		String sign = null;
  119. 		try {
  120. 			sign = sign(rsaEncrypt.privateKey, message);
  121. 		} catch (Exception e) {
  122. 			e.printStackTrace();
  123. 		}
  124. 		return sign;
  125. 	}
  126.  
  127. 	// 请求报文 签名 map=body
  128. 	public String getSignByMap(LinkedHashMap<String, String> header, LinkedHashMap<String, String> body) {
  129. 		String sign = null;
  130. 		StringBuilder message = new StringBuilder();
  131. 		for (Map.Entry<String, String> entry : header.entrySet()) {
  132. 			String value = entry.getValue();
  133. 			message.append(value);
  134. 		}
  135. 		for (Map.Entry<String, String> entry : body.entrySet()) {
  136. 			String value = entry.getValue();
  137. 			message.append(value);
  138. 		}
  139. 		try {
  140. 			sign = sign(rsaEncrypt.privateKey, message.toString());
  141. 		} catch (Exception e) {
  142. 			e.printStackTrace();
  143. 		}
  144. 		return sign;
  145. 	}
  146. }

 

声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/小蓝xlanll/article/detail/732669
推荐阅读
相关标签

Copyright © 2003-2013 www.wpsshop.cn 版权所有,并保留所有权利。

  

闽ICP备14008679号