发表新帖
发表新帖

SSL Java java.io.IOException: Invalid keystore format

后端 未结
关注
5 842
忘掉有多难
忘掉有多难 2020-12-15 23:08

I am testing SSL in java with SSLServerSocket and other classes in the java.ssl package. When I run the following code, I get the exception java.io.IOException: Invalid keys

相关标签:
5条回答
  • 抹茶落季
    2020-12-15 23:48

    I was seeing this exception:

    Invalid keystore format

    while running a java application using JRE-1.8.0_40 on CentOS 6.6 64-bit linux.

    On using JRE-1.8.0_172, the exception went away.

    0 讨论(0)
  • 盖世英雄少女心
    2020-12-16 00:03

    I had exactly the same issue. Indeed, the keystore file was invalid and not related to the JDK//JRE version. The problem in my case was caused by Maven. I was using the following option in my pom file:

    <resources>
        <resource>
            <directory>src/main/resources</directory>
            <filtering>true</filtering>
        </resource>
    </resources>

    The "true" value in the filtering was messing with the key file. Therefore, the keyfile that was available in my classpath when Spring run was not exactly the same I had under my directory "src/main/resources" and that caused the Invalid Keystore Format exception. When I tested with keytool I was using the one under the "resources" folder so that was misleading the real issue.

    Solving the issue: in your pom.xml file, change the value for "filtering" to "false". Another way of solving the issue was to specify explicitly the location of the keystore in the application.properties file. So instead of:

    server.ssl.key-store: classpath:keystore.jks

    I used

    server.ssl.key-store: keystore/keystore.jks
    0 讨论(0)
  • 醉话见心
    2020-12-16 00:06

    I faced with the same problem when load keystore with the following code:

    KeyStore trustStore = KeyStore.getInstance(KeyStore.getDefaultType());
Resource resource = new ClassPathResource(file);
trustStore.load(resource.getInputStream(), password.toCharArray());

    It turned out to be the JDK issue, it doesn't work with jre1.8.0_25. when I upgrade JDK version to the latest jre1.8.0_121, it works.

    0 讨论(0)
  • 面向向阳花
    2020-12-16 00:06

    How did you generate the JKS file? I tried all suggested solutions but none worked for me. I was getting the same error when trying to read (in my code) a JKS file that I generated using OpenJDK Zulu 11's keytool.

    I fixed this by instead generating the JKS file using the "KeyStore Explorer" tool, which I believe uses oracle JDK internally. Using the tool, I basically created a JKS file and added my trusted certificate to it.

    I hope this helps.

    0 讨论(0)
  • 刺人心
    2020-12-16 00:12

    Your file is invalid. You have to import a JKS keystore file and not a txt one. You have to use the keytool to create your keystore file and then import this file.

    0 讨论(0)
 看不清?
提交回复
热议问题