Eu estou tentando gerar as assinaturas digitais, para finalizar um pagamento de compras. A autorização de compra, utilizando uma assinatura digital. Só não estou conseguindo gerar as assinaturas. O código está com esse erro abaixo:
Grave: java.io.IOException: DER input, Integer tag error
at sun.security.util.DerInputStream.getInteger(DerInputStream.java:168)
at sun.security.pkcs12.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:1916)
at java.security.KeyStore.load(KeyStore.java:1445)
at servidor.servlets.SrvSincronia.autorizarPedido(SrvSincronia.java:291)
at servidor.servlets.SrvSincronia.processRequest(SrvSincronia.java:142)
at servidor.servlets.SrvSincronia.doPost(SrvSincronia.java:184)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
at org.apache.catalina.core.StandardWrapper.service(StandardWrapper.java:1682)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:318)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:160)
at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:734)
at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:673)
at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:99)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:174)
at org.apache.catalina.connector.CoyoteAdapter.doService(CoyoteAdapter.java:416)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:283)
at com.sun.enterprise.v3.services.impl.ContainerMapper$HttpHandlerCallable.call(ContainerMapper.java:459)
at com.sun.enterprise.v3.services.impl.ContainerMapper.service(ContainerMapper.java:167)
at org.glassfish.grizzly.http.server.HttpHandler.runService(HttpHandler.java:206)
at org.glassfish.grizzly.http.server.HttpHandler.doHandle(HttpHandler.java:180)
at org.glassfish.grizzly.http.server.HttpServerFilter.handleRead(HttpServerFilter.java:235)
at org.glassfish.grizzly.filterchain.ExecutorResolver$9.execute(ExecutorResolver.java:119)
at org.glassfish.grizzly.filterchain.DefaultFilterChain.executeFilter(DefaultFilterChain.java:283)
at org.glassfish.grizzly.filterchain.DefaultFilterChain.executeChainPart(DefaultFilterChain.java:200)
at org.glassfish.grizzly.filterchain.DefaultFilterChain.execute(DefaultFilterChain.java:132)
at org.glassfish.grizzly.filterchain.DefaultFilterChain.process(DefaultFilterChain.java:111)
at org.glassfish.grizzly.ProcessorExecutor.execute(ProcessorExecutor.java:77)
at org.glassfish.grizzly.nio.transport.TCPNIOTransport.fireIOEvent(TCPNIOTransport.java:536)
at org.glassfish.grizzly.strategies.AbstractIOStrategy.fireIOEvent(AbstractIOStrategy.java:112)
at org.glassfish.grizzly.strategies.WorkerThreadIOStrategy.run0(WorkerThreadIOStrategy.java:117)
at org.glassfish.grizzly.strategies.WorkerThreadIOStrategy.access$100(WorkerThreadIOStrategy.java:56)
at org.glassfish.grizzly.strategies.WorkerThreadIOStrategy$WorkerThreadRunnable.run(WorkerThreadIOStrategy.java:137)
at org.glassfish.grizzly.threadpool.AbstractThreadPool$Worker.doWork(AbstractThreadPool.java:591)
at org.glassfish.grizzly.threadpool.AbstractThreadPool$Worker.run(AbstractThreadPool.java:571)
at java.lang.Thread.run(Thread.java:745)
static final String KEYSTORE_FILE = "E:/eu/root.cer";
static final String KEYSTORE_INSTANCE = "PKCS12";
static final String KEYSTORE_PWD = "test";
static final String KEYSTORE_ALIAS = "Key1";
Security.addProvider(new BouncyCastleProvider());
String text = "pedido="+carrinho.getId()+ ",cliente=" +carrinho.getUsuario().getId();
for (int i = 0; i < carrinho.getCarrinhoItens().size(); i++) {
text+=",item="+carrinho.getCarrinhoItens().get(i).getId();
}
KeyStore ks = KeyStore.getInstance(KEYSTORE_INSTANCE);
ks.load(new FileInputStream(KEYSTORE_FILE), KEYSTORE_PWD.toCharArray());
ks.setCertificateEntry(KEYSTORE_ALIAS, x509certificate);
Key key = ks.getKey(KEYSTORE_ALIAS, KEYSTORE_PWD.toCharArray());
//
// //Sign
PrivateKey privKey = (PrivateKey) key;
Signature signature = Signature.getInstance(“SHA1withRSA”, “BC”);
signature.initSign(privKey);
signature.update(text.getBytes());
//
// //Build CMS
X509Certificate cert = (X509Certificate) ks.getCertificate(KEYSTORE_ALIAS);
List certList = new ArrayList();
CMSTypedData msg = new CMSProcessableByteArray(signature.sign());
certList.add(x509certificate);
Store certs = new JcaCertStore(certList);
CMSSignedDataGenerator gen = new CMSSignedDataGenerator();
ContentSigner sha1Signer = new JcaContentSignerBuilder(“SHA1withRSA”).setProvider(“BC”).build(privKey);
gen.addSignerInfoGenerator(new JcaSignerInfoGeneratorBuilder(new JcaDigestCalculatorProviderBuilder().setProvider(“BC”).build()).build(sha1Signer, x509certificate));
gen.addCertificates(certs);
CMSTypedData cmsdata = null;
CMSSignedData sigData = gen.generate(cmsdata);
//
BASE64Encoder encoder = new BASE64Encoder();
//
String signedContent = encoder.encode((byte[]) sigData.getSignedContent().getContent());
System.out.println("Signed content: " + signedContent + “\n”);
ArrayList<String> sqls = new ArrayList<String>();
String sql = "UPDATE pedido SET assinatura = '" + signedContent + "'";
sqls.add(sql);
for (int i = 0; i < carrinho.getCarrinhoItens().size(); i++) {
sql = " UPDATE itempedido SET status = 'AUTORIZADO' WHERE id = " + carrinho.getId();
sqls.add(sql);
System.out.println("SQL: " + sql);
}
try {
for (int i = 0; i < sqls.size(); i++) {
stmt.executeUpdate(sqls.get(i));
}
} catch (SQLException ex) {
Logger.getLogger(Carrinho.class.getName()).log(Level.SEVERE, null, ex);
System.out.println("Erro ao listar os pedidos no banco. TESTE");
}
} catch (Exception ex) {
ex.printStackTrace();
System.out.println("Erro ao conectar com o banco.");
} finally {
try {
stmt.close();
conn.close();
} catch (Exception ex) {
ex.printStackTrace();
}
}
}
Realmente está difícil, não consigo gerar as assinaturas. O problema aparece nessa linha aqui:
ks.load(new FileInputStream(KEYSTORE_FILE), KEYSTORE_PWD.toCharArray());