|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(PHP Extension) Working with PEM Encrypted Private KeysDemonstrates how to load and save PEM encrypted private keys.
<?php // The version number (9_5_0) should match version of the Chilkat extension used, omitting the micro-version number. // For example, if using Chilkat v9.5.0.48, then include as shown here: include("chilkat_9_5_0.php"); // Starting in v9.5.0.49, all Chilkat classes can be unlocked at once at the beginning of a program // by calling UnlockBundle. It requires a Bundle unlock code. $chilkatGlob = new CkGlobal(); $success = $chilkatGlob->UnlockBundle('Anything for 30-day trial.'); if ($success != true) { print $chilkatGlob->lastErrorText() . "\n"; exit; } $pem = new CkPem(); $pemPassword = 'secret'; // To load a PEM file containing encrypted private keys, simply // provide the password. $success = $pem->LoadPemFile('/Users/chilkat/testData/pem/pemContainingEncryptedPrivateKeys.pem',$pemPassword); if ($success != true) { print $pem->lastErrorText() . "\n"; exit; } $fac = new CkFileAccess(); $pemText = $fac->readEntireTextFile('/Users/chilkat/testData/pem/pemContainingEncryptedPrivateKeys.pem',$pemPassword); // To load a PEM from a string, call LoadPem instead of LoadPemFile: $success = $pem->LoadPem($pemText); if ($success != true) { print $pem->lastErrorText() . "\n"; exit; } // A few notes: // The PEM may contain both private keys and certificates (or anything else). // The password is utilized for whatever content in the PEM is encrypted. // It is OK to have both encrypted and non-encrypted content within a given PEM. // PEM private keys can be encrypted in different formats. The LoadPem and LoadPemFile // methods automatically handle the different formats. // One format is PKCS8 and is indicated by this delimiter within the PEM: // -----BEGIN ENCRYPTED PRIVATE KEY----- // MIICoTAbBgkqhkiG9w0BBQMwDgQIfdD0zv24lgkCAggABIICgE0PdHJmRbNs6cBX // ... // Another format, we'll call "passphrase" looks like this in the PEM: // -----BEGIN RSA PRIVATE KEY----- // Proc-Type: 4,ENCRYPTED // DEK-Info: DES-EDE3-CBC,A4215544D11C5D0C // // paqy9XRexcSjurHfG0xhCaUD0HrvIdhuC0CbRxxxeMlkLaV6+uT80rBxt2AaibWG // ... // Show the bit length of each private key: $numPrivateKeys = $pem->get_NumPrivateKeys(); if ($numPrivateKeys == 0) { print (('Error: Expected the PEM to contain private keys.')) . "\n"; exit; } for ($i = 1; $i <= $numPrivateKeys; $i++) { // privKey is a CkPrivateKey $privKey = $pem->GetPrivateKey($i - 1); print $i . ': ' . $privKey->get_BitLength() . ' bits' . "\n"; } ?> |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.