Reputation: 910
Java how to use private key file instead of PEM to decrypt?
Using Java and Bouncy Castle 1.52, I can load the private key through the PEM certificate using the following code. I also have a private.key file of the same in PKCS8 format. What is the code to use the private.key file directly instead of the PEM?
String keyPath = "C:\\RSA7\\privatenopass.pem";
BufferedReader br = new BufferedReader(new FileReader(keyPath));
PEMParser pp = new PEMParser(br);
PEMKeyPair pemKeyPair = (PEMKeyPair) pp.readObject();
KeyPair kp = new JcaPEMKeyConverter().getKeyPair(pemKeyPair);
pp.close();
cipher.init(Cipher.DECRYPT_MODE, kp.getPrivate());
Upvotes: 4
Views: 2498
Answers (2)
Reputation: 910
Resolved. The following worked for me.
File mypkfile = new File("C:\\myfolder\\private.key");
byte[] myPK = fullyReadFile(mypkfile);
PKCS8EncodedKeySpec privateKeySpec = new PKCS8EncodedKeySpec(myPK);
KeyFactory kf = KeyFactory.getInstance("RSA");
PrivateKey privKey = kf.generatePrivate(privateKeySpec);
cipher.init(Cipher.DECRYPT_MODE, privKey);
The fullyReadFIle method:
public static byte[] fullyReadFile(File file) throws IOException
{
DataInputStream dis = new DataInputStream(new FileInputStream(file));
byte[] bytesOfFile = new byte[(int) file.length()];
dis.readFully(bytesOfFile);
dis.close();
return bytesOfFile;
}
Upvotes: 0
Reputation: 93968
That's simple, as Java itself already uses PKCS#8 encoding to encode RSA private keys.
Note that this example only uses the inner encoding of PKCS#8. PKCS#8 keys actually consist of an a layered structure (inner encoding to indicate key type, which is wrapped, and an outer encoding to indicate the wrapping mechanism used).
It also uses some convenience methods from Java 7/8 to read the bytes from file. You can replace this with any code to read all bytes from the file.
Path path = (new File("privatenopass.pkcs8")).toPath();
byte[] pkcs8Data = Files.readAllBytes(path);
KeyFactory kf = KeyFactory.getInstance("RSA");
PKCS8EncodedKeySpec keyspec = new PKCS8EncodedKeySpec(pkcs8Data);
RSAPrivateKey pk = (RSAPrivateKey) kf.generatePrivate(keyspec);
You directly gave the file reader to Bouncy Castle to decode the PEM. In this case however you do have to perform the stream handling yourself.
Upvotes: 0
Related Questions
- Converting a PEM private key file to a JAVA PrivateKey Object
- How to decrypt a pkcs8 encrypted private key using bouncy castle?
- Load an Encrypted PCKS8 PEM Private Key In Java
- Reading PEM-encoded encrypted private key from file in Java
- Importing PEM encrypted key pair in java using bouncycastle
- JAVA: How to save a private key in a pem file with password protection
- How to generate a pem format privateKey with Java?
- Decrypt PEM private (RSA) key with Bouncy Castle
- Unable to use public RSA key (PEM file created with bouncycastle) to encrypt files
- how to export a private key encrypted in a .pem file