Tomer Mayost :
I'm trying to convert an armored ECC gpg key to corresponding java class ECPrivateKey/ECPublicKey.
To generate the key pair I'm using: gpg --expert --full-generate-key
Then selecting (9) ECC and ECC (or (10) ECC (sign only))
Then selecting (3) NIST P-256
Resulting in:
-----BEGIN PGP PUBLIC KEY BLOCK-----
mFIEWUdzwhMIKoZIzj0DAQcCAwQkAvZC1PIJ8ke1myyKhNny9vN78TIYo2MuAOY+
F38L9S3+Za9cKV/iIHOqfapbMoqdSmSnqDkevwQSr5MF2UOXtCJzaWduZWNjIChF
Q0Mgc2lnbiBvbmx5KSA8c3NAc3MuY28+iJAEExMIADgWIQRiC+kefVkjnjKovKy5
XANFl5+n1gUCWUdzwgIbAwULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgAAKCRC5XANF
l5+n1mzGAQDsgutymxDTTXPKFfpFFVp4fxacx1MSqxP71gNJYjguXwD8CEXD20Vm
aU1WMi2jU7JC6oJn94Y4vWHwTLOU1zmQ19o=
=swfS
-----END PGP PUBLIC KEY BLOCK-----
-----BEGIN PGP PRIVATE KEY BLOCK-----
lHcEWUdzwhMIKoZIzj0DAQcCAwQkAvZC1PIJ8ke1myyKhNny9vN78TIYo2MuAOY+
F38L9S3+Za9cKV/iIHOqfapbMoqdSmSnqDkevwQSr5MF2UOXAAD9FhS2HZoWOyIi
l9nj+WPa9S1o50jM5bNIRALzcyS8SgoP97Qic2lnbmVjYyAoRUNDIHNpZ24gb25s
eSkgPHNzQHNzLmNvPoiQBBMTCAA4FiEEYgvpHn1ZI54yqLysuVwDRZefp9YFAllH
c8ICGwMFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AACgkQuVwDRZefp9ZsxgEA7ILr
cpsQ001zyhX6RRVaeH8WnMdTEqsT+9YDSWI4Ll8A/AhFw9tFZmlNVjIto1OyQuqC
Z/eGOL1h8EyzlNc5kNfa
=qHBB
-----END PGP PRIVATE KEY BLOCK-----
How do I get from this armored text format to a valid java.security.interfaces.ECPrivateKey and java.security.interfaces.ECPublicKey java classes?
My final goal is to sign in the following way:
String createSignatureFromJson(String jsonPayload, byte[] privateKey) {
Payload payload = new Payload(jsonPayload)
def key = privateKeyParse(privateKey)
JWSSigner signer = new ECDSASigner((ECPrivateKey)key)
JWSHeader header = new JWSHeader.Builder(JWSAlgorithm.ES256).build()
JWSObject jwsObject = new JWSObject(header, payload)
jwsObject.sign(signer)
jwsObject.signature
}
Tomer Mayost :
public static ECPrivateKey privateKeyParse(byte[] privateKey) throws Exception {
InputStream pgpIn = PGPUtil.getDecoderStream(new ByteArrayInputStream(privateKey));
PGPObjectFactory pgpFact = new PGPObjectFactory(pgpIn, new JcaKeyFingerprintCalculator());
PGPSecretKeyRing pgpSecRing = (PGPSecretKeyRing) pgpFact.nextObject();
PGPSecretKey pgpSec = pgpSecRing.getSecretKey();
PGPPrivateKey pgpPriv = pgpSec.extractPrivateKey(null);
JcaPGPKeyConverter converter = new JcaPGPKeyConverter();
// this is the part i was missing from Peter Dettman's answer. pass BC provider to the converter
converter.setProvider(new BouncyCastleProvider());
PrivateKey key = converter.getPrivateKey(pgpPriv);
return (ECPrivateKey) key;
}
Guess you like
Origin http://10.200.1.11:23101/article/api/json?id=444875&siteId=1