Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(Tcl) Duplicate openssl rsautl -encrypt –in mytext.txt -out mytest.enc -inkey mycertificate.cer -certin –pkcsDemonstrates how to duplicate this OpenSSL command: openssl.exe rsautl -encrypt –in mytext.txt -out mytest.enc -inkey mycertificate.cer -certin –pkcs Important: The RSA encryption algorithm produces different results for each call, even when encrypting the same data with the same key. Decryption however, will produce the correct results. This example demonstrates. The reason this occurs is that RSA encryption uses PKCS1 v1.5 padding, and this padding scheme uses random bytes. It is random bytes in the padding that causes the result to be different each time. The mytext.txt file is a small file. (RSA can only be used to encrypt or sign small amounts of data.) How much data can be encrypted with "openssl rsautl"? The maximum size (in bytes) is the key size minus the overhead for the padding. The overhead size depends on the padding. With OAEP padding, the overhead is 42 bytes. With the default PKCSv1.5 padding, the overhead is 11 bytes. Given a 2048-bit RSA key (256 bytes) and using PKCSv1.5 padding, the max data size that can be signed is 256 - 11 = 245 bytes.
load ./chilkat.dll # This example requires the Chilkat API to have been previously unlocked. # See Global Unlock Sample for sample code. set cert [new_CkCert] # Load the certificate from a file. set success [CkCert_LoadFromFile $cert "mycertificate.cer"] if {$success != 1} then { puts [CkCert_lastErrorText $cert] delete_CkCert $cert exit } # Load the file to be encrypted. set bd [new_CkBinData] set success [CkBinData_LoadFile $bd "mytext.txt"] set rsa [new_CkRsa] # Get the cert's public key. # pubkey is a CkPublicKey set pubkey [CkCert_ExportPublicKey $cert] # Import the public key into the RSA component: set success [CkRsa_ImportPublicKeyObj $rsa $pubkey] if {$success != 1} then { delete_CkPublicKey $pubkey puts [CkRsa_lastErrorText $rsa] delete_CkCert $cert delete_CkBinData $bd delete_CkRsa $rsa exit } delete_CkPublicKey $pubkey # OpenSSL uses big-endian. CkRsa_put_LittleEndian $rsa 0 # Encrypt the contents of bd, replacing it with the encrypted data. set bUsePrivateKey 0 set success [CkRsa_EncryptBd $rsa $bd $bUsePrivateKey] if {$success != 1} then { puts [CkRsa_lastErrorText $rsa] delete_CkCert $cert delete_CkBinData $bd delete_CkRsa $rsa exit } # Save the RSA encrypted data to a file. set success [CkBinData_WriteFile $bd "mytest.enc"] if {$success != 1} then { puts "Failed to write RSA encrypted output file." delete_CkCert $cert delete_CkBinData $bd delete_CkRsa $rsa exit } puts "Success." delete_CkCert $cert delete_CkBinData $bd delete_CkRsa $rsa |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.