1# 明文导入密钥(C/C++) 2 3以明文导入ECC密钥为例。具体的场景介绍及支持的算法规格,请参考[密钥导入的支持的算法](huks-key-import-overview.md#支持的算法)。 4 5## 在CMake脚本中链接相关动态库 6```txt 7target_link_libraries(entry PUBLIC libhuks_ndk.z.so) 8``` 9## 开发步骤 10 111. 指定密钥别名keyAlias。 12 密钥别名的最大长度为128字节。 13 142. 封装密钥属性集和密钥材料。通过[OH_Huks_InitParamSet](../../reference/apis-universal-keystore-kit/_huks_param_set_api.md#oh_huks_initparamset)、[OH_Huks_AddParams](../../reference/apis-universal-keystore-kit/_huks_param_set_api.md#oh_huks_addparams)、[OH_Huks_BuildParamSet](../../reference/apis-universal-keystore-kit/_huks_param_set_api.md#oh_huks_buildparamset)构造密钥属性集paramSet。 15 - 密钥属性集中必须包含[OH_Huks_KeyAlg](../../reference/apis-universal-keystore-kit/_huks_type_api.md#oh_huks_keyalg)、[OH_Huks_KeySize](../../reference/apis-universal-keystore-kit/_huks_type_api.md#oh_huks_keysize)、[OH_Huks_KeyPurpose](../../reference/apis-universal-keystore-kit/_huks_type_api.md#oh_huks_keypurpose)属性。 16 - 密钥材料须符合[HUKS密钥材料格式](huks-concepts.md#密钥材料格式)。 17 183. 调用[OH_Huks_ImportKeyItem](../../reference/apis-universal-keystore-kit/_huks_key_api.md#oh_huks_importkeyitem),传入密钥别名和密钥属性集,导入密钥。 19 20```c++ 21/* 以下以明文导入ECC密钥为例 */ 22#include "huks/native_huks_api.h" 23#include "huks/native_huks_param.h" 24#include "napi/native_api.h" 25#include <string.h> 26OH_Huks_Result InitParamSet(struct OH_Huks_ParamSet **paramSet, const struct OH_Huks_Param *params, 27 uint32_t paramCount) { 28 OH_Huks_Result ret = OH_Huks_InitParamSet(paramSet); 29 if (ret.errorCode != OH_HUKS_SUCCESS) { 30 return ret; 31 } 32 ret = OH_Huks_AddParams(*paramSet, params, paramCount); 33 if (ret.errorCode != OH_HUKS_SUCCESS) { 34 OH_Huks_FreeParamSet(paramSet); 35 return ret; 36 } 37 ret = OH_Huks_BuildParamSet(paramSet); 38 if (ret.errorCode != OH_HUKS_SUCCESS) { 39 OH_Huks_FreeParamSet(paramSet); 40 return ret; 41 } 42 return ret; 43} 44struct OH_Huks_Param g_testImportKeyParam[] = {{.tag = OH_HUKS_TAG_ALGORITHM, .uint32Param = OH_HUKS_ALG_ECC}, 45 {.tag = OH_HUKS_TAG_PURPOSE, .uint32Param = OH_HUKS_KEY_PURPOSE_AGREE}, 46 {.tag = OH_HUKS_TAG_KEY_SIZE, .uint32Param = OH_HUKS_ECC_KEY_SIZE_256}, 47 {.tag = OH_HUKS_TAG_DIGEST, .uint32Param = OH_HUKS_DIGEST_NONE}}; 48 49static napi_value ImportKey(napi_env env, napi_callback_info info) { 50 const char *alias = "test_import"; 51 struct OH_Huks_Blob aliasBlob = {.size = (uint32_t)strlen(alias), .data = (uint8_t *)alias}; 52 /* DER格式的公钥,用于后续导入密钥 */ 53 uint8_t pubKey[OH_HUKS_ECC_KEY_SIZE_256] = { 54 0x30, 0x2A, 0x30, 0x05, 0x06, 0x03, 0x2B, 0x65, 0x6E, 0x03, 0x21, 0x00, 0xD2, 0x36, 0x9E, 0xCF, 55 0xF0, 0x61, 0x5B, 0x73, 0xCE, 0x4F, 0xF0, 0x40, 0x2B, 0x89, 0x18, 0x3E, 0x06, 0x33, 0x60, 0xC6 56 }; 57 struct OH_Huks_Blob publicKey = {OH_HUKS_ECC_KEY_SIZE_256, pubKey}; 58 struct OH_Huks_ParamSet *testImportKeyParamSet = nullptr; 59 struct OH_Huks_Result ohResult; 60 do { 61 ohResult = InitParamSet(&testImportKeyParamSet, g_testImportKeyParam, 62 sizeof(g_testImportKeyParam) / sizeof(OH_Huks_Param)); 63 if (ohResult.errorCode != OH_HUKS_SUCCESS) { 64 break; 65 } 66 if (ohResult.errorCode != OH_HUKS_SUCCESS) { 67 break; 68 } 69 /* 4. Import Key */ 70 char newKey[] = "test_import"; 71 struct OH_Huks_Blob newKeyAlias = {.size = (uint32_t)strlen(newKey), .data = (uint8_t *)newKey}; 72 ohResult = OH_Huks_ImportKeyItem(&newKeyAlias, testImportKeyParamSet, &publicKey); 73 } while (0); 74 OH_Huks_FreeParamSet(&testImportKeyParamSet); 75 napi_value ret; 76 napi_create_int32(env, ohResult.errorCode, &ret); 77 return ret; 78} 79``` 80