You try to add certificate and expect that it will be private key – its confusion between two different things. Generally, when you create keystore (.jks) it include the private key inside. If its empty (deleted) you should generate bundle (.p12 file) from your key and certificates. In order to create new free key and … Read more
You have a typo – it is trustStore. Apart from setting the variables with System.setProperty(..), you can also use -Djavax.net.ssl.keyStore=path/to/keystore.jks
The answer I would provide is that a keystore file is to authenticate yourself to anyone who is asking. It isn’t restricted to just signing .apk files, you can use it to store personal certificates, sign data to be transmitted and a whole variety of authentication. In terms of what you do with it for … Read more
[Update 2016-06-08: According to https://bugs.openjdk.java.net/browse/JDK-8154757 the IdenTrust CA will be included in Oracle Java 8u101.] [Update 2016-08-05: Java 8u101 has been released and does indeed include the IdenTrust CA: release notes] Does Java support Let’s Encrypt certificates? Yes. The Let’s Encrypt certificate is just a regular public key certificate. Java supports it (according to Let’s … Read more
A keystore contains private keys, and the certificates with their corresponding public keys. A truststore contains certificates from other parties that you expect to communicate with, or from Certificate Authorities that you trust to identify other parties.
You can run the following command to list the content of your keystore file (and alias name): keytool -v -list -keystore .keystore If you are looking for a specific alias, you can also specify it in the command: keytool -list -keystore .keystore -alias foo If the alias is not found, it will display an exception: … Read more
I solved it by using the default password for cacerts keystore : ‘changeit’
You could use a similar pattern to what I’ve mentioned in a previous answer (for a different problem). Essentially, get hold of the default trust manager, create a second trust manager that uses your own trust store. Wrap them both in a custom trust manager implementation that delegates call to both (falling back on the … Read more
First, convert your certificate in a DER format : openssl x509 -outform der -in certificate.pem -out certificate.der And after, import it in the keystore : keytool -import -alias your-alias -keystore cacerts -file certificate.der
Just encountered this problem myself – luckily I was able to find the password in some Gradle’s temporary file. Just in case anyone lands here: try looking for this file ..Project\.gradle\2.4\taskArtifacts\taskArtifacts.bin or .gradle/3.5/taskHistory/taskHistory.bin .gradle/5.1.1/executionHistory/executionHistory.bin .gradle/caches/5.1.1/executionHistory/executionHistory.bin .gradle/5.1.1/executionHistory/executionHistory.bin .gradle/3.5/taskHistory/taskHistory.bin .gradle/2.10/taskArtifacts/taskArtifacts.bin and search for storePassword It was there in cleartext. In general, if you do remember at least … Read more