1# 指定二进制数据转换非对称密钥对 2 3 4以RSA、ECC、SM2为例,根据指定的对称密钥二进制数据,生成非对称密钥对(KeyPair)。即将外部或存储的二进制数据转换为算法库的密钥对象,该对象可用于后续的加解密等操作。 5 6 7> **说明:** 8> 9> 针对非对称密钥的convertKey操作: 10> 11> - 公钥需满足:ASN.1语法、X.509规范、DER编码格式。 12> 13> - 私钥需满足:ASN.1语法、PKCS\#8规范、DER编码格式。 14 15 16## 指定二进制数据转换RSA密钥对 17 18对应的算法规格请查看[非对称密钥生成和转换规格:RSA](crypto-asym-key-generation-conversion-spec.md#rsa)。 19 201. 获取RSA公钥或私钥二进制数据,封装成DataBlob对象。 21 22 公钥和私钥可只传入其中一个,此处示例以传入公钥为例。 23 242. 调用[cryptoFramework.createAsyKeyGenerator](../../reference/apis-crypto-architecture-kit/js-apis-cryptoFramework.md#cryptoframeworkcreateasykeygenerator),指定字符串参数'RSA1024',创建RSA密钥类型为RSA1024、素数个数为2的非对称密钥生成器(AsyKeyGenerator)。 25 26 生成RSA非对称密钥时,默认素数为2,此处省略了参数PRIMES_2。 27 283. 调用[AsyKeyGenerator.convertKey](../../reference/apis-crypto-architecture-kit/js-apis-cryptoFramework.md#convertkey-3),传入二进制密钥数据,生成非对称密钥对象(KeyPair)。 29 30以使用callback方式生成RSA密钥对为例: 31 32```ts 33import cryptoFramework from '@ohos.security.cryptoFramework'; 34 35function convertAsyKey() { 36 let rsaGenerator = cryptoFramework.createAsyKeyGenerator('RSA1024'); 37 let pkVal = new Uint8Array([48, 129, 159, 48, 13, 6, 9, 42, 134, 72, 134, 247, 13, 1, 1, 1, 5, 0, 3, 129, 141, 0, 48, 129, 137, 2, 129, 129, 0, 174, 203, 113, 83, 113, 3, 143, 213, 194, 79, 91, 9, 51, 142, 87, 45, 97, 65, 136, 24, 166, 35, 5, 179, 42, 47, 212, 79, 111, 74, 134, 120, 73, 67, 21, 19, 235, 80, 46, 152, 209, 133, 232, 87, 192, 140, 18, 206, 27, 106, 106, 169, 106, 46, 135, 111, 118, 32, 129, 27, 89, 255, 183, 116, 247, 38, 12, 7, 238, 77, 151, 167, 6, 102, 153, 126, 66, 28, 253, 253, 216, 64, 20, 138, 117, 72, 15, 216, 178, 37, 208, 179, 63, 204, 39, 94, 244, 170, 48, 190, 21, 11, 73, 169, 156, 104, 193, 3, 17, 100, 28, 60, 50, 92, 235, 218, 57, 73, 119, 19, 101, 164, 192, 161, 197, 106, 105, 73, 2, 3, 1, 0, 1]); 38 let pkBlob: cryptoFramework.DataBlob = { data: pkVal }; 39 rsaGenerator.convertKey(pkBlob, null, (err, keyPair) => { 40 if (err) { 41 console.error(`convertKey failed, ${err.code}, ${err.message}`); 42 return; 43 } 44 console.info('convertKey success'); 45 }); 46} 47``` 48 49 50## 指定二进制数据转换ECC密钥对 51 52对应的算法规格请查看[非对称密钥生成和转换规格:ECC](crypto-asym-key-generation-conversion-spec.md#ecc)。 53 541. 获取ECC公钥或私钥二进制数据,封装成DataBlob对象。 55 56 公钥和私钥可只传入其中一个,此处示例以传入公钥、私钥为例。 57 582. 调用[cryptoFramework.createAsyKeyGenerator](../../reference/apis-crypto-architecture-kit/js-apis-cryptoFramework.md#cryptoframeworkcreateasykeygenerator),指定字符串参数'ECC256',创建密钥算法为ECC、密钥长度为256位的非对称密钥生成器(AsyKeyGenerator)。 59 603. 调用[AsyKeyGenerator.convertKey](../../reference/apis-crypto-architecture-kit/js-apis-cryptoFramework.md#convertkey-3),传入公钥二进制和私钥二进制,生成非对称密钥对象(KeyPair)。 61 62以使用callback方式生成ECC密钥对为例: 63 64```ts 65import cryptoFramework from '@ohos.security.cryptoFramework'; 66 67function convertEccAsyKey() { 68 let pubKeyArray = new Uint8Array([48, 89, 48, 19, 6, 7, 42, 134, 72, 206, 61, 2, 1, 6, 8, 42, 134, 72, 206, 61, 3, 1, 7, 3, 66, 0, 4, 83, 96, 142, 9, 86, 214, 126, 106, 247, 233, 92, 125, 4, 128, 138, 105, 246, 162, 215, 71, 81, 58, 202, 121, 26, 105, 211, 55, 130, 45, 236, 143, 55, 16, 248, 75, 167, 160, 167, 106, 2, 152, 243, 44, 68, 66, 0, 167, 99, 92, 235, 215, 159, 239, 28, 106, 124, 171, 34, 145, 124, 174, 57, 92]); 69 let priKeyArray = new Uint8Array([48, 49, 2, 1, 1, 4, 32, 115, 56, 137, 35, 207, 0, 60, 191, 90, 61, 136, 105, 210, 16, 27, 4, 171, 57, 10, 61, 123, 40, 189, 28, 34, 207, 236, 22, 45, 223, 10, 189, 160, 10, 6, 8, 42, 134, 72, 206, 61, 3, 1, 7]); 70 let pubKeyBlob: cryptoFramework.DataBlob = { data: pubKeyArray }; 71 let priKeyBlob: cryptoFramework.DataBlob = { data: priKeyArray }; 72 let generator = cryptoFramework.createAsyKeyGenerator('ECC256'); 73 generator.convertKey(pubKeyBlob, priKeyBlob, (error, data) => { 74 if (error) { 75 console.error(`convertKey failed, ${error.code}, ${error.message}`); 76 return; 77 } 78 console.info('convertKey success'); 79 }); 80} 81``` 82 83 84## 指定二进制数据生成SM2密钥对 85 86对应的算法规格请查看[非对称密钥生成和转换规格:SM2](crypto-asym-key-generation-conversion-spec.md#sm2)。 87 881. 获取SM2公钥或私钥二进制数据,封装成DataBlob对象。 89 90 公钥和私钥可只传入其中一个,此处示例以传入公钥、私钥为例。 91 922. 调用[cryptoFramework.createAsyKeyGenerator](../../reference/apis-crypto-architecture-kit/js-apis-cryptoFramework.md#cryptoframeworkcreateasykeygenerator),指定字符串参数'SM2_256',创建密钥算法为SM2、密钥长度为256位的非对称密钥生成器(AsyKeyGenerator)。 93 943. 调用[AsyKeyGenerator.convertKey](../../reference/apis-crypto-architecture-kit/js-apis-cryptoFramework.md#convertkey-3),传入公钥二进制和私钥二进制,生成非对称密钥对象(KeyPair)。 95 96以使用callback方式生成SM2密钥对为例: 97 98```ts 99import cryptoFramework from '@ohos.security.cryptoFramework'; 100 101function convertSM2AsyKey() { 102 let pubKeyArray = new Uint8Array([48, 89, 48, 19, 6, 7, 42, 134, 72, 206, 61, 2, 1, 6, 8, 42, 129, 28, 207, 85, 1, 130, 45, 3, 66, 0, 4, 90, 3, 58, 157, 190, 248, 76, 7, 132, 200, 151, 208, 112, 230, 96, 140, 90, 238, 211, 155, 128, 109, 248, 40, 83, 214, 78, 42, 104, 106, 55, 148, 249, 35, 61, 32, 221, 135, 143, 100, 45, 97, 194, 176, 52, 73, 136, 174, 40, 70, 70, 34, 103, 103, 161, 99, 27, 187, 13, 187, 109, 244, 13, 7]); 103 let priKeyArray = new Uint8Array([48, 49, 2, 1, 1, 4, 32, 54, 41, 239, 240, 63, 188, 134, 113, 31, 102, 149, 203, 245, 89, 15, 15, 47, 202, 170, 60, 38, 154, 28, 169, 189, 100, 251, 76, 112, 223, 156, 159, 160, 10, 6, 8, 42, 129, 28, 207, 85, 1, 130, 45]); 104 let pubKeyBlob: cryptoFramework.DataBlob = { data: pubKeyArray }; 105 let priKeyBlob: cryptoFramework.DataBlob = { data: priKeyArray }; 106 let generator = cryptoFramework.createAsyKeyGenerator('SM2_256'); 107 generator.convertKey(pubKeyBlob, priKeyBlob, (error, data) => { 108 if (error) { 109 console.error(`convertKey failed, ${error.code}, ${error.message}`); 110 return; 111 } 112 console.info('convertKey success'); 113 }); 114} 115``` 116