0

尝试加载证书时出现以下问题:

> java.io.IOException: DerInputStream.getLength(): lengthTag=66, too big.
|   at sun.security.util.DerInputStream.getLength(DerInputStream.java:561)
|   at sun.security.util.DerValue.init(DerValue.java:365)
|   at sun.security.util.DerValue.<init>(DerValue.java:320)
|   at sun.security.pkcs12.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:1914)
|   at java.security.KeyStore.load(KeyStore.java:1445)
|   at com.sequenceiq.cloudbreak.cloud.wap.client.WapClient.getFactory(WapClient.java:61)
|   at com.sequenceiq.cloudbreak.cloud.wap.client.WapClient.checkConnect(WapClient.java:80)
|   at com.sequenceiq.cloudbreak.cloud.wap.WapCredentialConnector.verify(WapCredentialConnector.java:53)
|   at com.sequenceiq.cloudbreak.cloud.handler.CredentialVerificationHandler.accept(CredentialVerificationHandler.java:43)
|   at com.sequenceiq.cloudbreak.cloud.handler.CredentialVerificationHandler.accept(CredentialVerificationHandler.java:20)
|   at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
|   at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
|   at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
|   at java.lang.reflect.Method.invoke(Method.java:498)
|   at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:302)
|   at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:190)
|   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:157)
|   at org.springframework.aop.framework.adapter.MethodBeforeAdviceInterceptor.invoke(MethodBeforeAdviceInterceptor.java:52)
|   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
|   at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:92)
|   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
|   at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:208)
|   at com.sun.proxy.$Proxy201.accept(Unknown Source)
|   at reactor.bus.EventBus$3.accept(EventBus.java:317)
|   at reactor.bus.EventBus$3.accept(EventBus.java:310)
|   at reactor.bus.routing.ConsumerFilteringRouter.route(ConsumerFilteringRouter.java:72)
|2016-06-07 19:56:59,465 [reactorDispatcher-17] accept:56 [34mINFO [0;39m c.s.c.c.h.CredentialVerificationHandler - [owner:c90f9d2e-587f-4af6-a3a8-f1d321caa3a1] [type:springLog] [id:null] [name:debug2] Credential verification successfully finished
|   at reactor.bus.routing.TraceableDelegatingRouter.route(TraceableDelegatingRouter.java:51)
|   at reactor.bus.EventBus.accept(EventBus.java:591)
|   at reactor.bus.EventBus.accept(EventBus.java:63)
|   at reactor.core.dispatch.AbstractLifecycleDispatcher.route(AbstractLifecycleDispatcher.java:160)
web01#3|2016-06-07 19:56:59,466 [http-nio-9091-exec-4] init:51 [34mINFO [0;39m c.s.c.s.s.c.a.ServiceProviderCredentialAdapter - [owner:c90f9d2e-587f-4af6-a3a8-f1d321caa3a1] [type:springLog] [id:] [name:] Result: CloudPlatformResult{status=OK, statusReason='null', errorDetails=null, request=CloudPlatformRequest{cloudContext=CloudContext{id=null, name='debug2', platform='StringType{value='WAP'}', owner='c90f9d2e-587f-4af6-a3a8-f1d321caa3a1'}, cloudCredential=com.sequenceiq.cloudbreak.cloud.model.CloudCredential@4bd64260}}
|   at reactor.core.dispatch.MultiThreadDispatcher$MultiThreadTask.run(MultiThreadDispatcher.java:74)
|   at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
|   at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
|   at java.lang.Thread.run(Thread.java:745)

这是代码示例:

          keyInput = new FileInputStream(pKeyFile);
          keyStore.load(keyInput, pKeyPassword.toCharArray());
          keyInput.close();

请注意,在加载它之前,我将服务器收到的证书写入一个新文件:

        File file = new File(name);
        try(FileWriter fw = new FileWriter(file)){
            fw.write(certificate);
        }catch(IOException e){
            LOGGER.debug("Writer issue",e);
        }

我已经尝试在写入文件后读取它并且它可以工作。所以我很确定这不是 InputStream 问题。

证书是一个 pkcs12 文件。难道是我无法加载我刚刚写在新文件中的证书吗?

4

1 回答 1

1

PKCS#12 以 DER 格式编码,DER 格式为 binary 。

您正在使用的 FileReader 是(来自 javadoc)

编写字符文件的便利类。

继承自 OutputStreamWriter

OutputStreamWriter 是从字符流到字节流的桥梁:写入其中的字符使用指定的字符集编码为字节。

所以

  1. 将二进制转换为字符时遇到编码问题
  2. 您收到的文件并不是真正的二进制格式。它可能在 Base64 中

在这两种情况下,使用FileOutputStream.writeorFiles.write来存储文件,如果您的“证书”变量是字符串,请先将其转换为二进制

File file = new File(name);
FileOutputStream fout = new FileOutputStream(file);
fout.write (data);

Files.write(Paths.get("name"), data);
于 2016-06-21T12:41:55.113 回答