|
Chilkat • HOME • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi DLL • Go • Java • Node.js • Objective-C • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(PureBasic) Working with PEM Encrypted Private KeysDemonstrates how to load and save PEM encrypted private keys.
IncludeFile "CkGlobal.pb" IncludeFile "CkPrivateKey.pb" IncludeFile "CkFileAccess.pb" IncludeFile "CkPem.pb" Procedure ChilkatExample() ; Starting in v9.5.0.49, all Chilkat classes can be unlocked at once at the beginning of a program ; by calling UnlockBundle. It requires a Bundle unlock code. chilkatGlob.i = CkGlobal::ckCreate() If chilkatGlob.i = 0 Debug "Failed to create object." ProcedureReturn EndIf success.i = CkGlobal::ckUnlockBundle(chilkatGlob,"Anything for 30-day trial.") If success <> 1 Debug CkGlobal::ckLastErrorText(chilkatGlob) CkGlobal::ckDispose(chilkatGlob) ProcedureReturn EndIf pem.i = CkPem::ckCreate() If pem.i = 0 Debug "Failed to create object." ProcedureReturn EndIf pemPassword.s = "secret" ; To load a PEM file containing encrypted private keys, simply ; provide the password. success = CkPem::ckLoadPemFile(pem,"/Users/chilkat/testData/pem/pemContainingEncryptedPrivateKeys.pem",pemPassword) If success <> 1 Debug CkPem::ckLastErrorText(pem) CkGlobal::ckDispose(chilkatGlob) CkPem::ckDispose(pem) ProcedureReturn EndIf fac.i = CkFileAccess::ckCreate() If fac.i = 0 Debug "Failed to create object." ProcedureReturn EndIf pemText.s = CkFileAccess::ckReadEntireTextFile(fac,"/Users/chilkat/testData/pem/pemContainingEncryptedPrivateKeys.pem",pemPassword) ; To load a PEM from a string, call LoadPem instead of LoadPemFile: success = CkPem::ckLoadPem(pem,pemText) If success <> 1 Debug CkPem::ckLastErrorText(pem) CkGlobal::ckDispose(chilkatGlob) CkPem::ckDispose(pem) CkFileAccess::ckDispose(fac) ProcedureReturn EndIf ; A few notes: ; The PEM may contain both private keys and certificates (or anything else). ; The password is utilized for whatever content in the PEM is encrypted. ; It is OK to have both encrypted and non-encrypted content within a given PEM. ; PEM private keys can be encrypted in different formats. The LoadPem and LoadPemFile ; methods automatically handle the different formats. ; One format is PKCS8 and is indicated by this delimiter within the PEM: ; -----BEGIN ENCRYPTED PRIVATE KEY----- ; MIICoTAbBgkqhkiG9w0BBQMwDgQIfdD0zv24lgkCAggABIICgE0PdHJmRbNs6cBX ; ... ; Another format, we'll call "passphrase" looks like this in the PEM: ; -----BEGIN RSA PRIVATE KEY----- ; Proc-Type: 4,ENCRYPTED ; DEK-Info: DES-EDE3-CBC,A4215544D11C5D0C ; ; paqy9XRexcSjurHfG0xhCaUD0HrvIdhuC0CbRxxxeMlkLaV6+uT80rBxt2AaibWG ; ... ; Show the bit length of each private key: i.i numPrivateKeys.i = CkPem::ckNumPrivateKeys(pem) If numPrivateKeys = 0 Debug ("Error: Expected the PEM to contain private keys.") CkGlobal::ckDispose(chilkatGlob) CkPem::ckDispose(pem) CkFileAccess::ckDispose(fac) ProcedureReturn EndIf For i = 1 To numPrivateKeys privKey.i = CkPem::ckGetPrivateKey(pem,i - 1) Debug Str(i) + ": " + Str(CkPrivateKey::ckBitLength(privKey)) + " bits" CkPrivateKey::ckDispose(privKey) Next CkGlobal::ckDispose(chilkatGlob) CkPem::ckDispose(pem) CkFileAccess::ckDispose(fac) ProcedureReturn EndProcedure |
||||
© 2000-2025 Chilkat Software, Inc. All Rights Reserved.