您的位置:首页 > 移动开发 > Android开发

android生成bks keystore 记录 & 使用portecle把JKS密钥库转成BKS类型

2015-07-11 17:31 1171 查看 
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">生成root,生成ca</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">keytool -genkeypair -keystore root.jks -alias root -dname CN=root  -storepass 12344321keytool -genkeypair -keystore ca.jks -alias ca -dname CN=ca  -storepass 12344321</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">导出root证书,用root给ca签名,生成证书文件ca.pem</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">keytool -keystore root.jks -alias root -exportcert -rfc > root.pem</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">keytool -storepass 12344321 -keystore ca.jks -certreq -alias ca | keytool -storepass 12344321 -keystore root.jks -gencert -alias root -ext BC=0 -rfc > ca.pem</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">接上一篇日志http://blog.csdn.net/dinsonyoung/article/details/46815447</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;"></span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">发现android只支持keystore type 为 BKS的 keystore;</span></span>
keytool -keystore clienttrust.bks -importcert -alias server -file server.pem -storepass 12344321 -storetype BKS
keytool -list -v -keystore clienttrust.bks -providerclass org.bouncycastle.jce.provider.BouncyCastleProvider -providerpath C:\Users\Dell\Desktop\bcprov-jdk15on-152.jar  [报错:不可用的keystore format,先不管]
生成client.bks
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">keytool -genkeypair -keystore client.bks -alias client -dname CN=home -storepass 12344321 -keysize 160 -storetype BKS   [报错:wrong version of keystore,client.bks存在,是jks类型,删除 ]keytool -genkeypair -keystore client.bks -alias client -keyalg DSA -dname CN=home -storepass 12344321 -keysize 1024 -storetype BKS  [报错:size不可用或不支持 ]</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">各种错误,,,,,选用portecle-1.8工具;想把原来已经生成好的客户端用key和trust转成BKS类型的;</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">trust这书库可以转;key密钥对不行;</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">经多次多次尝试;</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">方法:</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">打开原来的keystore.jks;</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">在显示出的key上点右键export导出密钥对,格式选PEM,保存成keystore.pem</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">在新建一个keystore格式选BKS,然后选 import keypair 导入keystore.pem 成功;</span></span>
<span style="font-family:Courier New, Monaco, Courier, monospace;color:#444444;"><span style="font-size: 14px; line-height: 26px; white-space: pre-wrap;">保存成keystore.bks;</span></span>

                                            

                                        

                        
                        内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 点击这里给我发消息 
                    

                    

                    

                        

                         标签: 
                                                

                        

                    


                

            


            

                
相关文章推荐

                

                
            

        

        

            

            
            

                

                    
新的分享

                    

                        
                    

                

            


            

                

                    
章节导航