Support for EC key spec algorithm used in Docker EE client bundles (s…

…potify#887)
chrsoo · May 29, 2018 · 2310051 · 2310051
1 parent dbae73f
commit 2310051
Showing 1 changed file with 20 additions and 2 deletions.
diff --git a/src/main/java/com/spotify/docker/client/DockerCertificates.java b/src/main/java/com/spotify/docker/client/DockerCertificates.java
@@ -145,8 +145,26 @@ private PrivateKey readPrivateKey(Path file) throws IOException, InvalidKeySpecE
   private static PrivateKey generatePrivateKey(PrivateKeyInfo privateKeyInfo) throws IOException,
           InvalidKeySpecException, NoSuchAlgorithmException {
     final PKCS8EncodedKeySpec spec = new PKCS8EncodedKeySpec(privateKeyInfo.getEncoded());
-    final KeyFactory kf = KeyFactory.getInstance("RSA");
-    return kf.generatePrivate(spec);
+    return tryGeneratePrivateKey(spec, "RSA", "EC");
+  }
+
+  private static PrivateKey tryGeneratePrivateKey(PKCS8EncodedKeySpec spec, String... algorithms)
+          throws InvalidKeySpecException {
+
+    KeyFactory kf;
+    PrivateKey key;
+    for (String algorithm : algorithms) {
+      try {
+        kf = KeyFactory.getInstance(algorithm);
+        key = kf.generatePrivate(spec);
+        log.debug("Generated private key from spec using the '{}' algorithm", algorithm);
+        return key;
+      } catch (InvalidKeySpecException | NoSuchAlgorithmException e) {
+        log.debug("Tried generating private key from spec using the '{}' algorithm", algorithm, e);
+      }
+    }
+
+    throw new InvalidKeySpecException("Could not generate private key from spec");
   }
 
   private List<Certificate> readCertificates(Path file) throws CertificateException, IOException {