Sample code for 30+ languages & platforms
C++

PKCS11 Export Public Key from HSM

See more PKCS11 Examples

Demonstrates how to export a public key from a smartcard or token.

Chilkat C++ Downloads

C++
#include <CkPkcs11.h>
#include <CkJsonObject.h>
#include <CkPublicKey.h>

void ChilkatSample(void)
    {
    bool success = false;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // Note: Chilkat's PKCS11 implementation runs on Windows, Linux, Mac OS X, and other supported operating systems.

    CkPkcs11 pkcs11;

    // Use the PKCS11 driver (.dll, .so, .dylib) for your particular HSM.
    // (The format of the path will change with the operating system.  Obviously, "C:/" is not used on non-Windows systems.
    pkcs11.put_SharedLibPath("C:/Program Files (x86)/Gemalto/IDGo 800 PKCS#11/IDPrimePKCS1164.dll");

    // Establish a logged-on session. (We can typically skip the login by passing an empty PIN if only working with public keys)
    // Use your actual PIN here, or an empty string to skip login.
    const char *pin = "0000";
    int userType = 1;
    success = pkcs11.QuickSession(userType,pin);
    if (success == false) {
        std::cout << pkcs11.lastErrorText() << "\r\n";
        return;
    }

    // Get the handle of the public key we wish to export.
    // You can find public keys in many different ways.
    // This example will search for a public key by label.

    // Provide a template to find a PKCS11 object.
    CkJsonObject jsonTemplate;

    // Find the public key with the label "Belgium eHealth".
    jsonTemplate.UpdateString("class","public_key");
    jsonTemplate.UpdateString("label","Belgium eHealth");

    unsigned long pubKeyHandle = pkcs11.FindObject(jsonTemplate);
    if (pubKeyHandle == 0) {
        std::cout << pkcs11.lastErrorText() << "\r\n";
        return;
    }

    // Export to a Chilkat public key object.
    CkPublicKey pubKey;
    success = pkcs11.ExportPublicKey(pubKeyHandle,pubKey);
    if (success == false) {
        std::cout << pkcs11.lastErrorText() << "\r\n";
        return;
    }

    // Get the public key as PKCS8 PEM.
    std::cout << pubKey.getPem(false) << "\r\n";

    pkcs11.Logout();
    pkcs11.CloseSession();
    }