Still problems with creating the neccessary file for keystore reset (Lengthy mail)

Wed Aug 28 07:05:42 EDT 2024

Hi Panos,

still no joy...
...
java -jar pepk.jar --keystore=android_upload.keystore --alias=sehenkey --output=output.zip  --rsa-aes-encryption --encryption-key-path=upload_certificate.pem
Enter password for key 'sehenkey':
Error: Unable to export or encrypt the private key
java.security.spec.InvalidKeySpecException: java.security.InvalidKeyException: IOException: DerValue.getOID, not an OID 2
	at java.base/sun.security.rsa.RSAKeyFactory.engineGeneratePublic(RSAKeyFactory.java:241)
	at java.base/java.security.KeyFactory.generatePublic(KeyFactory.java:351)
	at com.google.wireless.android.vending.developer.signing.tools.extern.export.ExportEncryptedPrivateKeyTool.readPublicKey(ExportEncryptedPrivateKeyTool.java:309)
	at com.google.wireless.android.vending.developer.signing.tools.extern.export.ExportEncryptedPrivateKeyTool.encryptPrivateKeyWithCkmRsaAesKeyWrapEncryption(ExportEncryptedPrivateKeyTool.java:283)
	at com.google.wireless.android.vending.developer.signing.tools.extern.export.ExportEncryptedPrivateKeyTool.run(ExportEncryptedPrivateKeyTool.java:213)
	at com.google.wireless.android.vending.developer.signing.tools.extern.export.ExportEncryptedPrivateKeyTool.main(ExportEncryptedPrivateKeyTool.java:165)
Caused by: java.security.InvalidKeyException: IOException: DerValue.getOID, not an OID 2
	at java.base/sun.security.x509.X509Key.decode(X509Key.java:375)
	at java.base/sun.security.x509.X509Key.decode(X509Key.java:380)
	at java.base/sun.security.rsa.RSAPublicKeyImpl.<init>(RSAPublicKeyImpl.java:146)
	at java.base/sun.security.rsa.RSAPublicKeyImpl.newKey(RSAPublicKeyImpl.java:78)
	at java.base/sun.security.rsa.RSAKeyFactory.generatePublic(RSAKeyFactory.java:324)
	at java.base/sun.security.rsa.RSAKeyFactory.engineGeneratePublic(RSAKeyFactory.java:237)
	... 5 more

> Am 28.08.2024 um 12:58 schrieb panagiotis merakos via use-livecode <use-livecode at lists.runrev.com>:
> 
> Hello Klaus,
> 
> Hmm this looks like a different error. I also noticed that the new keystore
> you created has extension ".jks" and not ".keystore".

Yes, for testing I had created a new Keystore and PEM file with these names.

> Could you try with your old .keystore and .pem file, i.e. something like
> this:
> 
> java -jar pepk.jar --keystore=android_upload.keystore --alias=sehenkey
> --output=output.zip  --rsa-aes-encryption
> --encryption-key-path=upload_certificate.pem
> 
> Kind regards,
> Panos

Best

Klaus

--
Klaus Major
https://www.major-k.de
https://www.major-k.de/bass
klaus at major-k.de