Visual FoxPro
Visual FoxPro
PKCS11 Generate Secret Key (such as AES)
See more PKCS11 Examples
Generates a symmetric secret key such as AES on the HSM.Note: This example requires Chilkat v9.5.0.96 or later.
Chilkat Visual FoxPro Downloads
LOCAL lnSuccess
LOCAL loPkcs11
LOCAL lcPin
LOCAL lnUserType
LOCAL lcKeyType
LOCAL loJson
LOCAL lnKeyHandle
lnSuccess = 0
* This example requires the Chilkat API to have been previously unlocked.
* See Global Unlock Sample for sample code.
* Note: Chilkat's PKCS11 implementation runs on Windows, Linux, Mac OS X, and other supported operating systems.
loPkcs11 = CreateObject('Chilkat.Pkcs11')
* Use the PKCS11 driver (.dll, .so, .dylib) for your particular HSM.
* (The format of the path will change with the operating system. Obviously, "C:/" is not used on non-Windows systems.
loPkcs11.SharedLibPath = "C:/Program Files (x86)/Gemalto/IDGo 800 PKCS#11/IDPrimePKCS1164.dll"
* Establish a logged-on session.
lcPin = "0000"
lnUserType = 1
lnSuccess = loPkcs11.QuickSession(lnUserType,lcPin)
IF (lnSuccess = 0) THEN
? loPkcs11.LastErrorText
RELEASE loPkcs11
CANCEL
ENDIF
* Let's generate a 256-bit AES key on the token, which will exist for the duration of this session.
* Symmetric keys, such as AES keys, are typically created (or imported) and used during a single session.
* Other possible values for keyType are "AES XTS", "Blowfish", "Twofish", "ChaCha20", and others.
* In virtually all cases, you'll want to create an AES key.
lcKeyType = "AES"
* Specify attributes and abilities (how this key can be used) by providing a JSON template.
loJson = CreateObject('Chilkat.JsonObject')
* The key can be extracted or wrapped.
loJson.UpdateBool("extractable",1)
* Allow the key to be used for encryption, decryption, wrapping other keys, and unwrapping other keys.
loJson.UpdateBool("encrypt",1)
loJson.UpdateBool("decrypt",1)
loJson.UpdateBool("wrap",1)
loJson.UpdateBool("unwrap",1)
* Indicate a 256-bit AES key is to be generated by setting the value_len attribute equal to the key size in bytes.
* (32 bytes * 8 bits/byte = 256 bits)
loJson.UpdateInt("value_len",32)
lnKeyHandle = loPkcs11.GenSecretKey(lcKeyType,loJson)
IF (lnKeyHandle = 0) THEN
? loPkcs11.LastErrorText
? "Failed to generate an AES key."
ELSE
? "key handle = " + STR(lnKeyHandle)
? "Success."
ENDIF
loPkcs11.Logout()
loPkcs11.CloseSession()
RELEASE loPkcs11
RELEASE loJson