使用指纹密码时,创建密钥的时候,原代码如下:
/**
* 创建密钥
* invalidatedByBiometricEnrollment是false的话,录入新的指纹创建的密钥不会失效
* 默认是true,true的话,注册新指纹,密钥将失效
* 7.0以上的系统这个参数才有效
*/
public void createKey(boolean invalidatedByBiometricEnrollment) {
try {
mKeyStore.load(null);
final KeyGenerator generator = KeyGenerator.getInstance(KeyProperties.KEY_ALGORITHM_AES, "AndroidKeyStore");
final int purpose = KeyProperties.PURPOSE_ENCRYPT | KeyProperties.PURPOSE_DECRYPT;
final KeyGenParameterSpec.Builder builder = new KeyGenParameterSpec.Builder(AppParam.getInstance().getKeyName(), purpose);
builder.setBlockModes(KeyProperties.BLOCK_MODE_CBC);
builder.setUserAuthenticationRequired(true);//每次使用这个密钥,需要指纹验证
builder.setEncryptionPaddings(KeyProperties.ENCRYPTION_PADDING_PKCS7);
//添加这个会报错:android.security.KeyStoreException: Key user not authenticated
// if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.N) {
// builder.setInvalidatedByBiometricEnrollment(invalidatedByBiometricEnrollment);
// }
generator.init(builder.build());
generator.generateKey();
} catch (Exception e) {
throw new RuntimeException(e);
}
}我在魅蓝E(安卓7.0)的手机上测试的时候,添加上面那个条件,不是像demo写那样,判断录入新指纹,而是报错
android.security.KeyStoreException: Key user not authenticated
找了好久的问题才找到。
