原本用于获取X509公钥的方法，在HarmonyOS 应该使用哪个API

String publicKeyString = "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCqGKukO...";
byte[] publicKeyBytes = Base64.getDecoder().decode(publicKeyString);
// 创建 X509EncodedKeySpec 实例
X509EncodedKeySpec keySpec = new X509EncodedKeySpec(publicKeyBytes);
// 获取 KeyFactory 实例
KeyFactory keyFactory = KeyFactory.getInstance("RSA");
// 生成 PublicKey 实例
PublicKey publicKey = keyFactory.generatePublic(keySpec);
// 打印 PublicKey
System.out.println("Public Key: " + publicKey);

请问原本用于获取X509公钥的方法，在HarmonyOS 应该使用哪个API

HarmonyOS

zxjiu

2天前

浏览

回答 1

待解决

回答 1

按赞同

按时间

put_get

证书获取x509的代码demo如下

import { cert } from '@kit.DeviceCertificateKit';
import { BusinessError } from '@kit.BasicServicesKit';
import { util } from '@kit.ArkTS';

// 此处仅为示例的证书二进制数据，需根据业务的不同对证书数据进行赋值
let certData = '-----BEGIN CERTIFICATE-----\n' +
  'MIIBLzCB1QIUO/QDVJwZLIpeJyPjyTvE43xvE5cwCgYIKoZIzj0EAwIwGjEYMBYG\n' +
  'A1UEAwwPRXhhbXBsZSBSb290IENBMB4XDTIzMDkwNDExMjAxOVoXDTI2MDUzMDEx\n' +
  'MjAxOVowGjEYMBYGA1UEAwwPRXhhbXBsZSBSb290IENBMFkwEwYHKoZIzj0CAQYI\n' +
  'KoZIzj0DAQcDQgAEHjG74yMIueO7z3T+dyuEIrhxTg2fqgeNB3SGfsIXlsiUfLTa\n' +
  'tUsU0i/sePnrKglj2H8Abbx9PK0tsW/VgqwDIDAKBggqhkjOPQQDAgNJADBGAiEA\n' +
  '0ce/fvA4tckNZeB865aOApKXKlBjiRlaiuq5mEEqvNACIQDPD9WyC21MXqPBuRUf\n' +
  'BetUokslUfjT6+s/X4ByaxycAA==\n' +
  '-----END CERTIFICATE-----\n';

// 证书示例
function certSample(): void {
  let textEncoder = new util.TextEncoder();
  let encodingBlob: cert.EncodingBlob = {
    // 将证书数据从string类型转换成Unit8Array
    data: textEncoder.encodeInto(certData),
    // 证书格式，仅支持PEM和DER。在此示例中，证书为PEM格式
    encodingFormat: cert.EncodingFormat.FORMAT_PEM
  };

  // 创建X509Cert实例
  cert.createX509Cert(encodingBlob, (err, x509Cert) => {
    if (err != null) {
      // 创建X509Cert实例失败
      console.error(`createX509Cert failed, errCode:${err.code}, errMsg:${err.message}`);
      return;
    }
    // X509Cert实例创建成功
    console.log('createX509Cert success');

    // 获取证书版本
    let version = x509Cert.getVersion();
    let serial = x509Cert.getCertSerialNumber();
    console.log(`X509 version: ${version} , X509 serial:${serial}`);

    // 使用上级证书对象的getPublicKey()方法或本（自签名）证书对象获取公钥对象
    try {
      let pubKey = x509Cert.getPublicKey();
      // 验证证书签名
      x509Cert.verify(pubKey, (err, data) => {
        if (err == null) {
          // 签名验证成功
          console.log('verify success');
        } else {
          // 签名验证失败
          console.error(`verify failed, errCode: ${err.code} , errMsg:${err.message}`);
        }
      });
    } catch (error) {
      let e: BusinessError = error as BusinessError;
      console.error(`getPublicKey failed, errCode: ${e.code} , errMsg:${e.message}`);
    }

    // 用一个字符串代表时间
    let date = '20230930000001Z';

    // 验证证书的有效期
    try {
      x509Cert.checkValidityWithDate(date);
    } catch (error) {
      let e: BusinessError = error as BusinessError;
      console.error(`checkValidityWithDate failed, errCode: ${e.code}, errMsg:${e.message}`);
    }
  });
}

2天前

如何写精华回答，获更多曝光？

发布

51CTO

51CTO博客

51CTO学堂

原本用于获取X509公钥的方法，在HarmonyOS 应该使用哪个API

订阅鸿蒙技术特刊，精选内容抢先看