All Downloads are FREE. Search and download functionalities are using the official Maven repository.

org.ofdrw.gm.cert.PEMLoader Maven / Gradle / Ivy

Go to download

符合《GMT 0031-2014 安全电子签章密码技术规范》与 《GB/T 38540-2020 信息安全技术 安全电子签章密码技术规范》的ASN1数据结构。

There is a newer version: 2.3.4
Show newest version
package org.ofdrw.gm.cert;

import org.bouncycastle.cert.X509CertificateHolder;
import org.bouncycastle.cert.jcajce.JcaX509CertificateConverter;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.openssl.PEMKeyPair;
import org.bouncycastle.openssl.PEMParser;
import org.bouncycastle.openssl.jcajce.JcaPEMKeyConverter;

import java.io.IOException;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.nio.file.Files;
import java.nio.file.Path;
import java.security.GeneralSecurityException;
import java.security.PrivateKey;
import java.security.Security;
import java.security.cert.Certificate;

/**
 * PEM文件加载工具
 *
 * @author 权观宇
 * @since 2021-07-29 19:39:31
 */
final public class PEMLoader {
    static {
        Security.addProvider(new BouncyCastleProvider());
    }

    /**
     * 从PEM文件中加载明文的SM2私钥
     *
     * @param in PEM文件位置
     * @return SM2私钥
     * @throws IOException              文件读写异常
     * @throws GeneralSecurityException 密钥解析异常
     */
    public static PrivateKey loadPrivateKey(Path in) throws IOException, GeneralSecurityException {
        try (final InputStream keyOut = Files.newInputStream(in);
             final PEMParser keyParser = new PEMParser(new InputStreamReader(keyOut))) {
            JcaPEMKeyConverter converter = new JcaPEMKeyConverter().setProvider("BC");
            final PEMKeyPair pemKeyPair = (PEMKeyPair) keyParser.readObject();
            return converter.getPrivateKey(pemKeyPair.getPrivateKeyInfo());
        }
    }

    /**
     * 从PEM文件中加载的国密 SM2证书
     *
     * @param in PEM文件位置
     * @return 国密 SM2证书
     * @throws IOException              文件读写异常
     * @throws GeneralSecurityException 密钥解析异常
     */
    public static Certificate loadCert(Path in) throws IOException, GeneralSecurityException {
        try (final InputStream certOut = Files.newInputStream(in);
             final PEMParser certParser = new PEMParser(new InputStreamReader(certOut))) {
            final X509CertificateHolder certificateHolder = (X509CertificateHolder) certParser.readObject();
            return new JcaX509CertificateConverter().setProvider("BC").getCertificate(certificateHolder);
        }
    }
}




© 2015 - 2025 Weber Informatics LLC | Privacy Policy