• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1# 指定PEM格式字符串数据转换非对称密钥对(ArkTS)
2
3<!--Kit: Crypto Architecture Kit-->
4<!--Subsystem: Security-->
5<!--Owner: @zxz--3-->
6<!--Designer: @lanming-->
7<!--Tester: @PAFT-->
8<!--Adviser: @zengyawen-->
9
10以RSA为例,根据指定的非对称密钥字符串数据,生成非对称密钥对(KeyPair)。
11
12> **说明:**
13>
14> 针对非对称密钥的convertPemKey操作:
15>
16> - 公钥需满足X.509规范、PKCS\#1规范、PEM编码格式。
17>
18> - 私钥需满足PKCS\#8规范、PKCS\#1规范、PEM编码格式。
19
20## 指定PEM格式字符串数据转换密钥对
21
22对应的算法规格请查看[非对称密钥生成和转换规格](crypto-asym-key-generation-conversion-spec.md)。
23
241. 调用[cryptoFramework.createAsyKeyGenerator](../../reference/apis-crypto-architecture-kit/js-apis-cryptoFramework.md#cryptoframeworkcreateasykeygenerator),指定字符串参数'RSA1024',创建RSA密钥类型为RSA1024、素数个数为2的非对称密钥生成器(AsyKeyGenerator)。
25
26   生成RSA非对称密钥时,默认素数为2,此处省略了参数PRIMES_2。
27
282. 调用[AsyKeyGenerator.convertPemKey](../../reference/apis-crypto-architecture-kit/js-apis-cryptoFramework.md#convertpemkey12),传入二进制密钥数据,生成非对称密钥对象(KeyPair)。
293. 调用[AsyKeyGenerator.getEncodedPem](../../reference/apis-crypto-architecture-kit/js-apis-cryptoFramework.md#getencodedpem12),将非对称密钥对象中的公钥转换成pkcs1或x509格式,私钥转换成pkcs1或pkcs8格式。
30
31- 以Promise方式生成RSA密钥对为例:
32
33  ```ts
34  import { cryptoFramework } from '@kit.CryptoArchitectureKit';
35
36  let priKeyPkcs1Str1024: string  =
37    "-----BEGIN RSA PRIVATE KEY-----\n"
38    + "MIICXQIBAAKBgQCwIN3mr21+N96ToxnVnaS+xyK9cNRAHiHGgrbjHw6RAj3V+l+W\n"
39    + "Y68IhIe3DudVlzE9oMjeOQwkMkq//HCxNlIlFR6O6pa0mrXSwPRE7YKG97CeKk2g\n"
40    + "YOS8YEh8toAvm7xKbiLkXuuMlxrjP2j/mb5iI/UASFSPZiQ/IyxDr0AQaQIDAQAB\n"
41    + "AoGAEvBFzBNa+7J4PXnRQlYEK/tvsd0bBZX33ceacMubHl6WVZbphltLq+fMTBPP\n"
42    + "LjXmtpC+aJ7Lvmyl+wTi/TsxE9vxW5JnbuRT48rnZ/Xwq0eozDeEeIBRrpsr7Rvr\n"
43    + "7ctrgzr4m4yMHq9aDgpxj8IR7oHkfwnmWr0wM3FuiVlj650CQQDineeNZ1hUTkj4\n"
44    + "D3O+iCi3mxEVEeJrpqrmSFolRMb+iozrIRKuJlgcOs+Gqi2fHfOTTL7LkpYe8SVg\n"
45    + "e3JxUdVLAkEAxvcZXk+byMFoetrnlcMR13VHUpoVeoV9qkv6CAWLlbMdgf7uKmgp\n"
46    + "a1Yp3QPDNQQqkPvrqtfR19JWZ4uy1qREmwJALTU3BjyBoH/liqb6fh4HkWk75Som\n"
47    + "MzeSjFIOubSYxhq5tgZpBZjcpvUMhV7Zrw54kwASZ+YcUJvmyvKViAm9NQJBAKF7\n"
48    + "DyXSKrem8Ws0m1ybM7HQx5As6l3EVhePDmDQT1eyRbKp+xaD74nkJpnwYdB3jyyY\n"
49    + "qc7A1tj5J5NmeEFolR0CQQCn76Xp8HCjGgLHw9vg7YyIL28y/XyfFyaZAzzK+Yia\n"
50    + "akNwQ6NeGtXSsuGCcyyfpacHp9xy8qXQNKSkw03/5vDO\n"
51    + "-----END RSA PRIVATE KEY-----\n";
52  let publicPkcs1Str1024: string  =
53    "-----BEGIN RSA PUBLIC KEY-----\n"
54    + "MIGJAoGBALAg3eavbX433pOjGdWdpL7HIr1w1EAeIcaCtuMfDpECPdX6X5ZjrwiE\n"
55    + "h7cO51WXMT2gyN45DCQySr/8cLE2UiUVHo7qlrSatdLA9ETtgob3sJ4qTaBg5Lxg\n"
56    + "SHy2gC+bvEpuIuRe64yXGuM/aP+ZvmIj9QBIVI9mJD8jLEOvQBBpAgMBAAE=\n"
57    + "-----END RSA PUBLIC KEY-----\n";
58  async function TestPkcs1ToPkcs8ByPromise() {
59    let asyKeyGenerator = cryptoFramework.createAsyKeyGenerator('RSA1024');
60    let keyPair = await asyKeyGenerator.convertPemKey(publicPkcs1Str1024, priKeyPkcs1Str1024);
61    let priPemKey = keyPair.priKey;
62    let pubPemKey = keyPair.pubKey;
63    let priString = priPemKey.getEncodedPem('PKCS8');
64    let pubString = pubPemKey.getEncodedPem('X509');
65    console.info("[promise]TestPkcs1ToPkcs8ByPromise priString output is " + priString);
66    console.info("[promise]TestPkcs1ToPkcs8ByPromise pubString output is " + pubString);
67  }
68  ```
69
70- 同步返回结果(调用方法[convertPemKeySync](../../reference/apis-crypto-architecture-kit/js-apis-cryptoFramework.md#convertpemkeysync12)):
71
72  ```ts
73  import { cryptoFramework } from '@kit.CryptoArchitectureKit';
74
75  let priKeyPkcs1Str1024: string  =
76    "-----BEGIN RSA PRIVATE KEY-----\n"
77    + "MIICXQIBAAKBgQCwIN3mr21+N96ToxnVnaS+xyK9cNRAHiHGgrbjHw6RAj3V+l+W\n"
78    + "Y68IhIe3DudVlzE9oMjeOQwkMkq//HCxNlIlFR6O6pa0mrXSwPRE7YKG97CeKk2g\n"
79    + "YOS8YEh8toAvm7xKbiLkXuuMlxrjP2j/mb5iI/UASFSPZiQ/IyxDr0AQaQIDAQAB\n"
80    + "AoGAEvBFzBNa+7J4PXnRQlYEK/tvsd0bBZX33ceacMubHl6WVZbphltLq+fMTBPP\n"
81    + "LjXmtpC+aJ7Lvmyl+wTi/TsxE9vxW5JnbuRT48rnZ/Xwq0eozDeEeIBRrpsr7Rvr\n"
82    + "7ctrgzr4m4yMHq9aDgpxj8IR7oHkfwnmWr0wM3FuiVlj650CQQDineeNZ1hUTkj4\n"
83    + "D3O+iCi3mxEVEeJrpqrmSFolRMb+iozrIRKuJlgcOs+Gqi2fHfOTTL7LkpYe8SVg\n"
84    + "e3JxUdVLAkEAxvcZXk+byMFoetrnlcMR13VHUpoVeoV9qkv6CAWLlbMdgf7uKmgp\n"
85    + "a1Yp3QPDNQQqkPvrqtfR19JWZ4uy1qREmwJALTU3BjyBoH/liqb6fh4HkWk75Som\n"
86    + "MzeSjFIOubSYxhq5tgZpBZjcpvUMhV7Zrw54kwASZ+YcUJvmyvKViAm9NQJBAKF7\n"
87    + "DyXSKrem8Ws0m1ybM7HQx5As6l3EVhePDmDQT1eyRbKp+xaD74nkJpnwYdB3jyyY\n"
88    + "qc7A1tj5J5NmeEFolR0CQQCn76Xp8HCjGgLHw9vg7YyIL28y/XyfFyaZAzzK+Yia\n"
89    + "akNwQ6NeGtXSsuGCcyyfpacHp9xy8qXQNKSkw03/5vDO\n"
90    + "-----END RSA PRIVATE KEY-----\n";
91  let publicPkcs1Str1024: string  =
92    "-----BEGIN RSA PUBLIC KEY-----\n"
93    + "MIGJAoGBALAg3eavbX433pOjGdWdpL7HIr1w1EAeIcaCtuMfDpECPdX6X5ZjrwiE\n"
94    + "h7cO51WXMT2gyN45DCQySr/8cLE2UiUVHo7qlrSatdLA9ETtgob3sJ4qTaBg5Lxg\n"
95    + "SHy2gC+bvEpuIuRe64yXGuM/aP+ZvmIj9QBIVI9mJD8jLEOvQBBpAgMBAAE=\n"
96    + "-----END RSA PUBLIC KEY-----\n";
97  function TestPkcs1ToPkcs8BySync() {
98    let asyKeyGenerator = cryptoFramework.createAsyKeyGenerator('RSA1024');
99    try {
100      let keyPairData = asyKeyGenerator.convertPemKeySync(publicPkcs1Str1024, priKeyPkcs1Str1024);
101      if (keyPairData !== null) {
102        console.info('[Sync]: convert pem key pair success');
103      } else {
104        console.error("[Sync]: convert pem key pair result fail!");
105      }
106      let priPemKey = keyPairData.priKey;
107      let pubPemKey = keyPairData.pubKey;
108      let priString = priPemKey.getEncodedPem('PKCS8');
109      let pubString = pubPemKey.getEncodedPem('X509');
110      console.info("[Sync]TestPkcs1ToPkcs8BySync priString output is " + priString);
111      console.info("[Sync]TestPkcs1ToPkcs8BySync pubString output is " + pubString);
112    } catch (e) {
113      console.error(`Sync error, ${e.code}, ${e.message}`);
114    }
115  }
116  ```
117
118