共 (1) 个答案

1. # 1 楼答案

   据我所知不是这样。在我看来，API相对来说是尽可能少地提供所需的东西

   KeyStore keyStore = keyStore.getInstance(KeyStore.getDefaultType());
   keyStore.load( inputStream, storePassword.getBytes() );
   
   // Get a key
   if ( keyStore.isKeyEntry(alias) ) {
      Key key = keyStore.getKey(alias, keyPassword.getBytes());
   }
   
   // Store a new key
   KeyFactory keyFactory = KeyFactory.getInstance(KeyStore.getDefaultType());
   KeySpec keySpec ...; // depends on what kind of key you want to create (ie. rsa, etc..)
   Key key = keyFactory.generatePrivate(keySpec);
   // sign the key here
   Certificate certChain[] = ...; // get the cert chain
   keyStore.setKeyEntry(newAlias, newKey, newKeyPassword.getBytes(), certChain);
   keyStore.store(outputStream, storePassword.getBytes());
   

   这是处理密钥库所需操作的相对最少的代码