现在,我尝试像这样实例化X509Certificate2:
cert = new X509Certificate2(Resources.cred);
其中Resources.cred是表示 .pfx 文件的byte[]。
这在Windows / .NET上运行得非常好。
但是,在 Mono JIT编译器版本3.2.8(Debian 3.2.8 + dfsg-4ubuntu1)(Ubuntu Server 14.04 LTS上的Mono)下运行相同的代码,我得到以下异常:< / p>
System.TypeInitializationException: An exception was thrown by the type initializer for <snipped irrelevant type name> ---> System.Security.Cryptography.CryptographicException: Unable to decode certificate. ---> System.Security.Cryptography.CryptographicException: Input data cannot be coded as a valid certificate. ---> System.Security.Cryptography.CryptographicException: Input data cannot be coded as a valid certificate.
at Mono.Security.X509.X509Certificate.Parse (System.Byte[] data) [0x00000] in <filename unknown>:0
--- End of inner exception stack trace ---
at Mono.Security.X509.X509Certificate.Parse (System.Byte[] data) [0x00000] in <filename unknown>:0
at Mono.Security.X509.X509Certificate..ctor (System.Byte[] data) [0x00000] in <filename unknown>:0
at System.Security.Cryptography.X509Certificates.X509Certificate2.Import (System.Byte[] rawData, System.String password, X509KeyStorageFlags keyStorageFlags) [0x00000] in <filename unknown>:0
--- End of inner exception stack trace ---
at System.Security.Cryptography.X509Certificates.X509Certificate2.Import (System.Byte[] rawData, System.String password, X509KeyStorageFlags keyStorageFlags) [0x00000] in <filename unknown>:0
at System.Security.Cryptography.X509Certificates.X509Certificate2..ctor (System.Byte[] rawData) [0x00000] in <filename unknown>:0
--- End of relevant stack trace ---
如果重要,此认证是与我自己的CA签署的,并用于原始RSA。
我有此证书可用的 .pfx , .cer 和 .pvk 文件。
如何使用Mono下的私钥继续加载此证书?
答案 0 :(得分:3)
此构造函数抛出异常:
byte[] pkcs12 = ...;
X509Certificate2 cert = X509Certificate2(pkcs12);
这个构造函数有效:
byte[] pkcs12 = ...;
X509Certificate2 cert = X509Certificate2(pkcs12, string.Empty);
这似乎是一个错误,所以我将修复它并向上游开发人员发送补丁。我会告诉你进展情况。