无法解析证书：java.io.IOException异常：不支持的编码

Question

我收到的时候我试图将证书转让给X.509

“无法解析证书以下异常：java.io. IOException异常：不支持的编码 ”

从CA的证书2048是这样的（所述certicicate是不具有换行仅有一个线），这是正常的？

----- BEGIN CERTIFICATE ----- MIIERTCCAy2gAwIBAgIFIBkicgAwDQYJKoZIhvcNAQEFBQAwWTELMAkGA1UEBhMCQ04xMDAuBgNVBAoTJ0NoaW5hIEZpbmFuY2lhbCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTEYMBYGA1UEAxMPQ0ZDQSBURVNUIE9DQTExMB4XDTE3MDQwNjA2NDQ1OVoXDTE5MDQwNjA2NDQ1OVowdzELMAkGA1UEBhMCQ04xFTATBgNVBAoTDENGQ0EgVEVTVCBDQTERMA8GA1UECxMITG9jYWwgUkExGTAXBgNVBAsTEE9yZ2FuaXphdGlvbmFsLTExIzAhBgNVBAMUGjA1MUBDSl9BQUJCQ0BaMDAwMDAwMDU1MUAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgAftvnIcaGITXhuWY1R1IYfrCstmDKJYO9anhFcUrsEe7l1BHcmXeF1Fr7KzTr + XmQx8RkSrECm6Gyfg/jElmh6XHEL3UyExIuSxuCoTs + 71JlBPkCDcTdyo4lDI6Ox3JsKU/W8LFKSpae6jAA0uhgwjPCI5uizONLWTdRiXRNRUG7zvGaCgHDipP7gN1Tm + KvlDs8xJGtLdeErlIIDy4Tw2EkK + LD + L9FD8CruzpY52UkTfYfqM3Mwu1EZtfIke0M/dpSkP + 46XPJH7CCbXv + f65ST2Uh + PclwPo3O2raZMZ2R3alCEMx0ZKYbA4hekdt/FJygUwN9e1MCu8KqyQIDA QABo4H1MIHyMB8GA1UdIwQYMBaAFPwLvESaDjGhg6mBhyceBULGv1b4MEgGA1UdIARBMD8wPQYIYIEchu8qAQIwMTAvBggrBgEFBQcCARYjaHR0cDovL3d3dy5jZmNhLmNvbS5jbi91cy91cy0xNS5odG0wOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovLzIxMC43NC40Mi4zL09DQTExL1JTQS9jcmwxODExOS5jcmwwCwYDVR0PBAQDAgPoMB0GA1UdDgQWBBTNUgad4XedWMDOeezrG + J + iwFxQDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwQwDQYJKoZIhvcNAQEFBQADggEBAI906RKm5xPIaJzIeVpXRUIyHtf/9klxqNdjoXbwfplSocUioYZDPOy33w2b9Wfl/HDNKVUksv6n09dx0hdwiJZaNaVbLw0VGPwg5eTEcSEj1iQzkGGlsCt8uNROGilB8Vn0cPfhByroFO9e8bj7GNAxYtg7fvUB9XIXlMqLukIZ5JY6yOLj2y/MvoQp7B/9xdBWxqDqWhZaaEgsRxeezZ3CIGQjevSF/xNe8g2zM/13K38h64FGS3P1iNAcyJUfjoMSAXMSgPWE8uPDtENU + XgthSsNrTPBxkkY5ZuEj7YGHsiHt8mAK37QigC12fL1gF7OG8oCE/a1ZyfTukj0KRI = ----- END CERTIFICATE -----

该方案是这样的：

public static X509Certificate getX509Certificate(String base64Cert) 
{ 
    X509Certificate cert = null; 
    if (!isNullOrEmpty(base64Cert)) 
    { 
     log.error("getX509Certificate(): " + base64Cert); 
     BufferedInputStream is = new BufferedInputStream(
       new ByteArrayInputStream(base64Cert.getBytes())); 
     CertificateFactory cf; 
     try 
     { 
      cf = CertificateFactory.getInstance("X.509"); 
      cert = (X509Certificate) cf.generateCertificate(is); 
     } catch (CertificateException e) 
     { 
      log.error("cert format error,cert content is [" + base64Cert 
        + "]"); 
     } 
    } else 
    { 
     log.error("cert is null"); 
    } 
    return cert; 
} 

任何帮助将不胜感激！

Answer 1

无论如何，这是我的解决方案，将单线证书转移到多线。 但我仍然不知道原因的原因，任何人都可以解释这一点，请发表您的答案。

public static String singleLine2MultiLine(String p10) throws Exception{ 
    byte[] base64Data = p10.getBytes(); 
    ByteArrayInputStream bis = new ByteArrayInputStream(base64Data); 
    ByteArrayOutputStream bos = new ByteArrayOutputStream(); 
    byte tmp; 
    while ((tmp = (byte) bis.read()) != -1) { 
     if (tmp != 0x0a && tmp != 0x0d) { 
      bos.write(tmp); 
     } 
    } 
    byte[] bSingleLine = bos.toByteArray(); 
    ByteArrayOutputStream bos2 = new ByteArrayOutputStream(); 
    for (int i = 0; i < bSingleLine.length; i++) { 
     if (i != 0 && i % 64 == 0) { 
      bos2.write("\r\n".getBytes()); 
     } 
     bos2.write(bSingleLine[i]); 
     if (i == bSingleLine.length - 1) { 
      bos2.write("\r\n".getBytes()); 
     } 
    } 
    return new String(bos2.toByteArray()); 
} 

Answer 2

PEM文件格式是

• 忽略的数据
• 的换行，或数据缓冲区的开始
• 5连字符
• “BEGIN”
• 一个或多个字（型号信息）
• 5连字符
• 的换行
• Base64编码数据（有效负载）
• 的换行
• 5连字符
• “END”
• 类型信息相同的值
• 5连字符
• 忽略的数据

换行符是格式的一部分。没有它，你不是PEM，并且因为它大概只支持PEM和DER（base64编码数据的二进制表示），并且你的价值既不是那些，它也是在一些“不受支持的编码”，这发生在是“PEM状，但不换行”

Answer 3

这是我的解决方案为Base64格式的证书转换为x509证书

byte[] decodedCertificate = 
    Base64.decodeBase64(encodedCertificate.getBytes()); 
    CertificateFactory certificateFactory; 
    Certificate certificate = null; 

    try { 
     certificateFactory = CertificateFactory.getInstance("X.509"); 
     certificate = certificateFactory.generateCertificate(new 
      ByteArrayInputStream(decodedCertificate)); 
    } catch (CertificateException e) { 
     e.printStackTrace(); 
    } 

     X509Certificate x509Certificate = (X509Certificate) certificate;