ANSCENTER/ANSLibs
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
ANSLibs/chilkat/include/CkPrivateKey.h

902 lines
33 KiB
C++
Raw Permalink Blame History

This file contains invisible Unicode characters
This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
// CkPrivateKey.h: interface for the CkPrivateKey class.
//
//////////////////////////////////////////////////////////////////////
// This header is generated for Chilkat 11.3.0
#define _CkVersion 11.3.0
#ifndef _CkPrivateKey_H
#define _CkPrivateKey_H
#include "chilkatDefs.h"
#include "CkString.h"
#include "CkClassWithCallbacks.h"
class CkByteData;
class CkBinData;
class CkPublicKey;
class CkStringBuilder;
class CkTask;
class CkJsonObject;
class CkBaseProgress;
#if !defined(__sun__) && !defined(__sun)
#pragma pack (push, 8)
#endif
#undef Copy
// CLASS: CkPrivateKey
class CK_VISIBLE_PUBLIC CkPrivateKey : public CkClassWithCallbacks
{
private:
// Don't allow assignment or copying these objects.
CkPrivateKey(const CkPrivateKey &);
CkPrivateKey &operator=(const CkPrivateKey &);
public:
CkPrivateKey(void);
virtual ~CkPrivateKey(void);
static CkPrivateKey *createNew(void);
static CkPrivateKey *createNew2(int progLang);
void CK_VISIBLE_PRIVATE inject(void *impl);
// May be called when finished with the object to free/dispose of any
// internal resources held by the object.
void dispose(void);
CkBaseProgress *get_EventCallbackObject(void) const;
void put_EventCallbackObject(CkBaseProgress *progress);
// BEGIN PUBLIC INTERFACE
// ----------------------
// Properties
// ----------------------
// The bit length (strength) of the private key.
int get_BitLength(void);
// The type of private key. Can be empty , rsa , dsa , ecc (i.e. ECDSA), or ed25519
// .
void get_KeyType(CkString &str);
// The type of private key. Can be empty , rsa , dsa , ecc (i.e. ECDSA), or ed25519
// .
const char *keyType(void);
// The encryption algorithm to be used when exporting the key to encrypted PKCS8.
// The default value is 3des . Possible choices also include aes128 , aes192 , and
// aes256 . All of the encryption algorithm choices use CBC mode.
void get_Pkcs8EncryptAlg(CkString &str);
// The encryption algorithm to be used when exporting the key to encrypted PKCS8.
// The default value is 3des . Possible choices also include aes128 , aes192 , and
// aes256 . All of the encryption algorithm choices use CBC mode.
const char *pkcs8EncryptAlg(void);
// The encryption algorithm to be used when exporting the key to encrypted PKCS8.
// The default value is 3des . Possible choices also include aes128 , aes192 , and
// aes256 . All of the encryption algorithm choices use CBC mode.
void put_Pkcs8EncryptAlg(const char *newVal);
// This is a catch-all property to be used for uncommon needs. This property
// defaults to the empty string, and should typically remain empty.
void get_UncommonOptions(CkString &str);
// This is a catch-all property to be used for uncommon needs. This property
// defaults to the empty string, and should typically remain empty.
const char *uncommonOptions(void);
// This is a catch-all property to be used for uncommon needs. This property
// defaults to the empty string, and should typically remain empty.
void put_UncommonOptions(const char *newVal);
// ----------------------
// Methods
// ----------------------
// Gets the private key in JWK (JSON Web Key) format.
//
// RSA keys have this JWK format: {"kty":"RSA",
// "n":"0vx7agoebGcQ ... JzKnqDKgw",
// "e":"AQAB",
// "d":"X4cTteJY_gn4F ... 4jfcKoAC8Q",
// "p":"83i-7IvMGXoMX ... vn7O0nVbfs",
// "q":"3dfOR9cuYq-0S ... 4vIcb6yelxk",
// "dp":"G4sPXkc6Ya9 ... 8YeiKkTiBj0",
// "dq":"s9lAH9fggBso ... w494Q_cgk",
// "qi":"GyM_p6JrXySi ... zTKhAVRU"}
//
//
// ECC keys have this JWK format. {"kty":"EC",
// "crv":"P-256",
// "x":"MKBCTNIcKUSDii11ySs3526iDZ8AiTo7Tu6KPAqv7D4",
// "y":"4Etl6SRW2YiLUrN5vfvVHuhp7x8PxltmWWlbbM4IFyM",
// "d":"870MB6gfuTJ4HtUnUvYMyJpr5eUZNP4Bk43bVdj3eAE"}
//
//
// Ed25519 keys (added in v9.5.0.83) have this JWK format. {"kty": "OKP",
// "crv": "Ed25519",
// "x": "SE2Kne5xt51z1eciMH2T2ftDQp96Gl6FhY6zSQujiP0",
// "d": "O-eRXewadF0sNyB0U9omcnt8Qg2ZmeK3WSXPYgqe570",
// "use": "sig"}
//
bool GetJwk(CkString &outStr);
// Gets the private key in JWK (JSON Web Key) format.
//
// RSA keys have this JWK format: {"kty":"RSA",
// "n":"0vx7agoebGcQ ... JzKnqDKgw",
// "e":"AQAB",
// "d":"X4cTteJY_gn4F ... 4jfcKoAC8Q",
// "p":"83i-7IvMGXoMX ... vn7O0nVbfs",
// "q":"3dfOR9cuYq-0S ... 4vIcb6yelxk",
// "dp":"G4sPXkc6Ya9 ... 8YeiKkTiBj0",
// "dq":"s9lAH9fggBso ... w494Q_cgk",
// "qi":"GyM_p6JrXySi ... zTKhAVRU"}
//
//
// ECC keys have this JWK format. {"kty":"EC",
// "crv":"P-256",
// "x":"MKBCTNIcKUSDii11ySs3526iDZ8AiTo7Tu6KPAqv7D4",
// "y":"4Etl6SRW2YiLUrN5vfvVHuhp7x8PxltmWWlbbM4IFyM",
// "d":"870MB6gfuTJ4HtUnUvYMyJpr5eUZNP4Bk43bVdj3eAE"}
//
//
// Ed25519 keys (added in v9.5.0.83) have this JWK format. {"kty": "OKP",
// "crv": "Ed25519",
// "x": "SE2Kne5xt51z1eciMH2T2ftDQp96Gl6FhY6zSQujiP0",
// "d": "O-eRXewadF0sNyB0U9omcnt8Qg2ZmeK3WSXPYgqe570",
// "use": "sig"}
//
const char *getJwk(void);
// Gets the private key in JWK (JSON Web Key) format.
//
// RSA keys have this JWK format: {"kty":"RSA",
// "n":"0vx7agoebGcQ ... JzKnqDKgw",
// "e":"AQAB",
// "d":"X4cTteJY_gn4F ... 4jfcKoAC8Q",
// "p":"83i-7IvMGXoMX ... vn7O0nVbfs",
// "q":"3dfOR9cuYq-0S ... 4vIcb6yelxk",
// "dp":"G4sPXkc6Ya9 ... 8YeiKkTiBj0",
// "dq":"s9lAH9fggBso ... w494Q_cgk",
// "qi":"GyM_p6JrXySi ... zTKhAVRU"}
//
//
// ECC keys have this JWK format. {"kty":"EC",
// "crv":"P-256",
// "x":"MKBCTNIcKUSDii11ySs3526iDZ8AiTo7Tu6KPAqv7D4",
// "y":"4Etl6SRW2YiLUrN5vfvVHuhp7x8PxltmWWlbbM4IFyM",
// "d":"870MB6gfuTJ4HtUnUvYMyJpr5eUZNP4Bk43bVdj3eAE"}
//
//
// Ed25519 keys (added in v9.5.0.83) have this JWK format. {"kty": "OKP",
// "crv": "Ed25519",
// "x": "SE2Kne5xt51z1eciMH2T2ftDQp96Gl6FhY6zSQujiP0",
// "d": "O-eRXewadF0sNyB0U9omcnt8Qg2ZmeK3WSXPYgqe570",
// "use": "sig"}
//
const char *jwk(void);
// Returns the JWK thumbprint for the private key. This is the thumbprint of the
// JSON Web Key (JWK) as per RFC 7638.
bool GetJwkThumbprint(const char *hashAlg, CkString &outStr);
// Returns the JWK thumbprint for the private key. This is the thumbprint of the
// JSON Web Key (JWK) as per RFC 7638.
const char *getJwkThumbprint(const char *hashAlg);
// Returns the JWK thumbprint for the private key. This is the thumbprint of the
// JSON Web Key (JWK) as per RFC 7638.
const char *jwkThumbprint(const char *hashAlg);
// Gets the private key in unencrypted binary DER format, preferring PKCS1 if
// possible.
//
// RSA keys are returned in PKCS1 ASN.1 DER format:RSAPrivateKey ::= SEQUENCE {
// version Version,
// modulus INTEGER, -- n
// publicExponent INTEGER, -- e
// privateExponent INTEGER, -- d
// prime1 INTEGER, -- p
// prime2 INTEGER, -- q
// exponent1 INTEGER, -- d mod (p-1)
// exponent2 INTEGER, -- d mod (q-1)
// coefficient INTEGER, -- (inverse of q) mod p
// otherPrimeInfos OtherPrimeInfos OPTIONAL
// }
//
//
// DSA keys are returned in this ASN.1 DER format:SEQUENCE(6 elem)
// INTEGER 0
// INTEGER(2048 bit) (p)
// INTEGER(160 bit) (q)
// INTEGER(2044 bit) (g)
// INTEGER(2040 bit) (y - public key)
// INTEGER(156 bit) (x - private key)
//
//
// ECC keys are returned in this ASN.1 DER format:(from RFC 5915)
// ECPrivateKey ::= SEQUENCE {
// version INTEGER { ecPrivkeyVer1(1) } (ecPrivkeyVer1),
// privateKey OCTET STRING,
// parameters [0] ECParameters {{ NamedCurve }} OPTIONAL,
// publicKey [1] BIT STRING OPTIONAL (This is the ANSI X9.63 public key format.)
//
bool GetPkcs1(CkByteData &outBytes);
// Gets the private key in unencrypted binary DER format, preferring PKCS1 if
// possible, and returns in an encoded string, as specified by the encoding argument.
//
// RSA keys are returned in PKCS1 ASN.1 DER format:RSAPrivateKey ::= SEQUENCE {
// version Version,
// modulus INTEGER, -- n
// publicExponent INTEGER, -- e
// privateExponent INTEGER, -- d
// prime1 INTEGER, -- p
// prime2 INTEGER, -- q
// exponent1 INTEGER, -- d mod (p-1)
// exponent2 INTEGER, -- d mod (q-1)
// coefficient INTEGER, -- (inverse of q) mod p
// otherPrimeInfos OtherPrimeInfos OPTIONAL
// }
//
//
// DSA keys are returned in this ASN.1 DER format:SEQUENCE(6 elem)
// INTEGER 0
// INTEGER(2048 bit) (p)
// INTEGER(160 bit) (q)
// INTEGER(2044 bit) (g)
// INTEGER(2040 bit) (y - public key)
// INTEGER(156 bit) (x - private key)
//
//
// ECC keys are returned in this ASN.1 DER format:(from RFC 5915)
// ECPrivateKey ::= SEQUENCE {
// version INTEGER { ecPrivkeyVer1(1) } (ecPrivkeyVer1),
// privateKey OCTET STRING,
// parameters [0] ECParameters {{ NamedCurve }} OPTIONAL,
// publicKey [1] BIT STRING OPTIONAL (This is the ANSI X9.63 public key format.)
//
bool GetPkcs1ENC(const char *encoding, CkString &outStr);
// Gets the private key in unencrypted binary DER format, preferring PKCS1 if
// possible, and returns in an encoded string, as specified by the encoding argument.
//
// RSA keys are returned in PKCS1 ASN.1 DER format:RSAPrivateKey ::= SEQUENCE {
// version Version,
// modulus INTEGER, -- n
// publicExponent INTEGER, -- e
// privateExponent INTEGER, -- d
// prime1 INTEGER, -- p
// prime2 INTEGER, -- q
// exponent1 INTEGER, -- d mod (p-1)
// exponent2 INTEGER, -- d mod (q-1)
// coefficient INTEGER, -- (inverse of q) mod p
// otherPrimeInfos OtherPrimeInfos OPTIONAL
// }
//
//
// DSA keys are returned in this ASN.1 DER format:SEQUENCE(6 elem)
// INTEGER 0
// INTEGER(2048 bit) (p)
// INTEGER(160 bit) (q)
// INTEGER(2044 bit) (g)
// INTEGER(2040 bit) (y - public key)
// INTEGER(156 bit) (x - private key)
//
//
// ECC keys are returned in this ASN.1 DER format:(from RFC 5915)
// ECPrivateKey ::= SEQUENCE {
// version INTEGER { ecPrivkeyVer1(1) } (ecPrivkeyVer1),
// privateKey OCTET STRING,
// parameters [0] ECParameters {{ NamedCurve }} OPTIONAL,
// publicKey [1] BIT STRING OPTIONAL (This is the ANSI X9.63 public key format.)
//
const char *getPkcs1ENC(const char *encoding);
// Gets the private key in unencrypted binary DER format, preferring PKCS1 if
// possible, and returns in an encoded string, as specified by the encoding argument.
//
// RSA keys are returned in PKCS1 ASN.1 DER format:RSAPrivateKey ::= SEQUENCE {
// version Version,
// modulus INTEGER, -- n
// publicExponent INTEGER, -- e
// privateExponent INTEGER, -- d
// prime1 INTEGER, -- p
// prime2 INTEGER, -- q
// exponent1 INTEGER, -- d mod (p-1)
// exponent2 INTEGER, -- d mod (q-1)
// coefficient INTEGER, -- (inverse of q) mod p
// otherPrimeInfos OtherPrimeInfos OPTIONAL
// }
//
//
// DSA keys are returned in this ASN.1 DER format:SEQUENCE(6 elem)
// INTEGER 0
// INTEGER(2048 bit) (p)
// INTEGER(160 bit) (q)
// INTEGER(2044 bit) (g)
// INTEGER(2040 bit) (y - public key)
// INTEGER(156 bit) (x - private key)
//
//
// ECC keys are returned in this ASN.1 DER format:(from RFC 5915)
// ECPrivateKey ::= SEQUENCE {
// version INTEGER { ecPrivkeyVer1(1) } (ecPrivkeyVer1),
// privateKey OCTET STRING,
// parameters [0] ECParameters {{ NamedCurve }} OPTIONAL,
// publicKey [1] BIT STRING OPTIONAL (This is the ANSI X9.63 public key format.)
//
const char *pkcs1ENC(const char *encoding);
// Gets the private key in non-encrypted PEM format, preferring PKCS1 over PKCS8 if
// possible for the key type.
bool GetPkcs1Pem(CkString &outStr);
// Gets the private key in non-encrypted PEM format, preferring PKCS1 over PKCS8 if
// possible for the key type.
const char *getPkcs1Pem(void);
// Gets the private key in non-encrypted PEM format, preferring PKCS1 over PKCS8 if
// possible for the key type.
const char *pkcs1Pem(void);
// Gets the private key in unencrypted PKCS8 format.
//
// RSA keys are returned in PKCS8 ASN.1 DER format:SEQUENCE // PrivateKeyInfo
// +- INTEGER // Version - 0 (v1998)
// +- SEQUENCE // AlgorithmIdentifier
// +- OID // 1.2.840.113549.1.1.1
// +- NULL // Optional Parameters
// +- OCTETSTRING // PrivateKey
// +- SEQUENCE // RSAPrivateKey
// +- INTEGER(0) // Version - v1998(0)
// +- INTEGER(N) // N
// +- INTEGER(E) // E
// +- INTEGER(D) // D
// +- INTEGER(P) // P
// +- INTEGER(Q) // Q
// +- INTEGER(DP) // d mod p-1
// +- INTEGER(DQ) // d mod q-1
// +- INTEGER(Inv Q) // INV(q) mod p
//
//
// DSA keys are returned in this ASN.1 DER format:SEQUENCE // PrivateKeyInfo
// +- INTEGER // Version
// +- SEQUENCE // AlgorithmIdentifier
// +- OID // 1.2.840.10040.4.1
// +- SEQUENCE // DSS-Params (Optional Parameters)
// +- INTEGER(P) // P
// +- INTEGER(Q) // Q
// +- INTEGER(G) // G
// +- OCTETSTRING // PrivateKey
// +- INTEGER(X) // DSAPrivateKey X
//
//
// ECC keys are returned in this ASN.1 DER format:(from RFC 5915)
// ECPrivateKey ::= SEQUENCE {
// version INTEGER { ecPrivkeyVer1(1) } (ecPrivkeyVer1),
// privateKey OCTET STRING,
// parameters [0] ECParameters {{ NamedCurve }} OPTIONAL,
// publicKey [1] BIT STRING OPTIONAL (This is the ANSI X9.63 public key format.)
//
bool GetPkcs8(CkByteData &outData);
// Gets the private key in unencrypted PKCS8 format and returned in an encoded
// string, as specified by the encoding argument.
bool GetPkcs8ENC(const char *encoding, CkString &outStr);
// Gets the private key in unencrypted PKCS8 format and returned in an encoded
// string, as specified by the encoding argument.
const char *getPkcs8ENC(const char *encoding);
// Gets the private key in unencrypted PKCS8 format and returned in an encoded
// string, as specified by the encoding argument.
const char *pkcs8ENC(const char *encoding);
// Writes the private key to password-protected PKCS8 format. The Pkcs8EncryptAlg
// property controls the encryption algorithm used to encrypt.
bool GetPkcs8Encrypted(const char *password, CkByteData &outBytes);
// Writes the private key to password-protected PKCS8 format and returns as an
// encoded string as specified by the encoding argument. The Pkcs8EncryptAlg property
// controls the encryption algorithm used to encrypt.
bool GetPkcs8EncryptedENC(const char *encoding, const char *password, CkString &outStr);
// Writes the private key to password-protected PKCS8 format and returns as an
// encoded string as specified by the encoding argument. The Pkcs8EncryptAlg property
// controls the encryption algorithm used to encrypt.
const char *getPkcs8EncryptedENC(const char *encoding, const char *password);
// Writes the private key to password-protected PKCS8 format and returns as an
// encoded string as specified by the encoding argument. The Pkcs8EncryptAlg property
// controls the encryption algorithm used to encrypt.
const char *pkcs8EncryptedENC(const char *encoding, const char *password);
// Writes the private key to password-protected PKCS8 PEM format. The
// Pkcs8EncryptAlg property controls the encryption algorithm used to encrypt.
bool GetPkcs8EncryptedPem(const char *password, CkString &outStr);
// Writes the private key to password-protected PKCS8 PEM format. The
// Pkcs8EncryptAlg property controls the encryption algorithm used to encrypt.
const char *getPkcs8EncryptedPem(const char *password);
// Writes the private key to password-protected PKCS8 PEM format. The
// Pkcs8EncryptAlg property controls the encryption algorithm used to encrypt.
const char *pkcs8EncryptedPem(const char *password);
// Gets the private key in PKCS8 PEM format.
bool GetPkcs8Pem(CkString &outStr);
// Gets the private key in PKCS8 PEM format.
const char *getPkcs8Pem(void);
// Gets the private key in PKCS8 PEM format.
const char *pkcs8Pem(void);
// Retrieves the private key in binary DER format. If pkcs1 is true, it uses the
// PKCS1 format; if false, it uses the PKCS8 format. If password is non-empty and the
// PKCS8 format is specified, an encrypted PKCS8 key is returned. The private key
// is returned in bd.
bool GetPkcsBd(bool pkcs1, const char *password, CkBinData &bd);
// Applications should instead call ToPublicKey .
//
// Returns the public key portion of the private key as a public key object.
//
// The caller is responsible for deleting the object returned by this method.
CkPublicKey *GetPublicKey(void);
// Returns the private key in raw hex format (lowercase). The public key is written
// to pubKey.
//
// Ed25519 private and public keys are 32-byte each (64 chars in hex format).
//
// The length of an EC key depends on the curve. The private key is a single hex
// string. The public key is a hex string composed of the x and y parts of the
// public key like this: 04||HEX(x)||HEX(y)
//
//
// Note: This method is only applicable to Ed25519 and ECDSA keys. An RSA key
// cannot be returned in such as simple raw format because it is composed of
// multiple parts (modulus, exponent, and more).
//
bool GetRawHex(CkStringBuilder &pubKey, CkString &outStr);
// Returns the private key in raw hex format (lowercase). The public key is written
// to pubKey.
//
// Ed25519 private and public keys are 32-byte each (64 chars in hex format).
//
// The length of an EC key depends on the curve. The private key is a single hex
// string. The public key is a hex string composed of the x and y parts of the
// public key like this: 04||HEX(x)||HEX(y)
//
//
// Note: This method is only applicable to Ed25519 and ECDSA keys. An RSA key
// cannot be returned in such as simple raw format because it is composed of
// multiple parts (modulus, exponent, and more).
//
const char *getRawHex(CkStringBuilder &pubKey);
// Returns the private key in raw hex format (lowercase). The public key is written
// to pubKey.
//
// Ed25519 private and public keys are 32-byte each (64 chars in hex format).
//
// The length of an EC key depends on the curve. The private key is a single hex
// string. The public key is a hex string composed of the x and y parts of the
// public key like this: 04||HEX(x)||HEX(y)
//
//
// Note: This method is only applicable to Ed25519 and ECDSA keys. An RSA key
// cannot be returned in such as simple raw format because it is composed of
// multiple parts (modulus, exponent, and more).
//
const char *rawHex(CkStringBuilder &pubKey);
// Returns the private key in XML format. The private key is returned unencrypted
// and the parts are base64 encoded.
//
// RSA keys have this XML format:  ...  ...  
//
// ...
//
// ... ... ... ... ...
//
// DSA keys have this XML format:
//
// ...
//
// ............
//
// ECC keys have this XML format. The CURVE_NAME could be one of secp256r1,
// secp384r1, secp521r1, secp256k1 (or others as new curves are supported.)...
//
bool GetXml(CkString &outStr);
// Returns the private key in XML format. The private key is returned unencrypted
// and the parts are base64 encoded.
//
// RSA keys have this XML format:  ...  ...  
//
// ...
//
// ... ... ... ... ...
//
// DSA keys have this XML format:
//
// ...
//
// ............
//
// ECC keys have this XML format. The CURVE_NAME could be one of secp256r1,
// secp384r1, secp521r1, secp256k1 (or others as new curves are supported.)...
//
const char *getXml(void);
// Returns the private key in XML format. The private key is returned unencrypted
// and the parts are base64 encoded.
//
// RSA keys have this XML format:  ...  ...  
//
// ...
//
// ... ... ... ... ...
//
// DSA keys have this XML format:
//
// ...
//
// ............
//
// ECC keys have this XML format. The CURVE_NAME could be one of secp256r1,
// secp384r1, secp521r1, secp256k1 (or others as new curves are supported.)...
//
const char *xml(void);
// Loads a private key from any format (PKCS1, PKCS8, PEM, JWK, PVK, etc.). The
// contents of the key (binary or text) is passed in privKeyData. The password is optional and
// should be specified if needed.
bool LoadAnyFormat(CkBinData &privKeyData, const char *password);
// Loads a private key from a file in any format (PKCS1, PKCS8, PEM, JWK, PVK,
// etc.). The password is optional and should be specified if needed.
bool LoadAnyFormatFile(const char *path, const char *password);
// Loads the private key object with an ed25519 key pair. The privKey is the 32-byte
// private key as a hex string. The pubKey is the 32-byte public key as a hex string.
// pubKey may be an empty string, in which case the public key is automatically
// computed from the private key.
bool LoadEd25519(const char *privKey, const char *pubKey);
// Loads the private key from an in-memory encrypted PEM string. An encrypted PEM
// contains the private key in encrypted PKCS#8 format, where the data begins and
// ends with the following tags:-----BEGIN ENCRYPTED PRIVATE KEY-----
// BASE64 ENCODED DATA
// -----END ENCRYPTED PRIVATE KEY-----
//
// For those requiring a deeper understanding: The base64 data contains ASN.1 DER
// with the following structure:EncryptedPrivateKeyInfo ::= SEQUENCE {
// encryptionAlgorithm EncryptionAlgorithmIdentifier,
// encryptedData EncryptedData
// }
//
// EncryptionAlgorithmIdentifier ::= AlgorithmIdentifier
//
// EncryptedData ::= OCTET STRING
//
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadEncryptedPem(const char *pemStr, const char *password);
// Loads a private key from an encrypted PEM file.
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadEncryptedPemFile(const char *path, const char *password);
// Loads a private key from an JWK (JSON Web Key) string.
//
// RSA keys have this JWK format: {"kty":"RSA",
// "n":"0vx7agoebGcQ ... JzKnqDKgw",
// "e":"AQAB",
// "d":"X4cTteJY_gn4F ... 4jfcKoAC8Q",
// "p":"83i-7IvMGXoMX ... vn7O0nVbfs",
// "q":"3dfOR9cuYq-0S ... 4vIcb6yelxk",
// "dp":"G4sPXkc6Ya9 ... 8YeiKkTiBj0",
// "dq":"s9lAH9fggBso ... w494Q_cgk",
// "qi":"GyM_p6JrXySi ... zTKhAVRU"}
//
//
// ECC keys have this JWK format. {"kty":"EC",
// "crv":"P-256",
// "x":"MKBCTNIcKUSDii11ySs3526iDZ8AiTo7Tu6KPAqv7D4",
// "y":"4Etl6SRW2YiLUrN5vfvVHuhp7x8PxltmWWlbbM4IFyM",
// "d":"870MB6gfuTJ4HtUnUvYMyJpr5eUZNP4Bk43bVdj3eAE"}
//
//
// Ed25519 keys (added in v9.5.0.83) have this JWK format. {"kty": "OKP",
// "crv": "Ed25519",
// "x": "SE2Kne5xt51z1eciMH2T2ftDQp96Gl6FhY6zSQujiP0",
// "d": "O-eRXewadF0sNyB0U9omcnt8Qg2ZmeK3WSXPYgqe570",
// "use": "sig"}
//
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadJwk(const char *jsonStr);
// Loads the private key from an in-memory PEM string. If the PEM contains an
// encrypted private key, then the LoadEncryptedPem method should instead be
// called. This method is for loading an unencrypted private key stored in PEM
// using PKCS#1 or PKCS#8.
//
// A private key stored in PKCS#1 format begins and ends with the tags:-----BEGIN RSA PRIVATE KEY-----
// BASE64 ENCODED DATA
// -----END RSA PRIVATE KEY-----
//
//
// For those requiring a deeper understanding, the PKCS1 base64 contains ASN.1 in
// DER encoding with the following structure:RSAPrivateKey ::= SEQUENCE {
// version Version,
// modulus INTEGER, -- n
// publicExponent INTEGER, -- e
// privateExponent INTEGER, -- d
// prime1 INTEGER, -- p
// prime2 INTEGER, -- q
// exponent1 INTEGER, -- d mod (p-1)
// exponent2 INTEGER, -- d mod (q-1)
// coefficient INTEGER, -- (inverse of q) mod p
// otherPrimeInfos OtherPrimeInfos OPTIONAL
// }
//
//
// A private key stored in PKCS#8 format begins and ends with the tags:-----BEGIN PRIVATE KEY-----
// BASE64 ENCODED DATA
// -----END PRIVATE KEY-----
//
//
// For those requiring a deeper understanding, the PKCS8 base64 contains ASN.1 in
// DER encoding with the following structure:PrivateKeyInfo ::= SEQUENCE {
// version Version,
// algorithm AlgorithmIdentifier,
// PrivateKey BIT STRING
// }
//
// AlgorithmIdentifier ::= SEQUENCE {
// algorithm OBJECT IDENTIFIER,
// parameters ANY DEFINED BY algorithm OPTIONAL
// }
//
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadPem(const char *str);
// Loads a private key from a PEM file.
bool LoadPemFile(const char *path);
// Loads an RSA, ECC, or DSA private key from binary DER.
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadPkcs1(CkByteData &data);
// Loads a private key from a PKCS1 file.
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadPkcs1File(const char *path);
// Loads a private key from in-memory PKCS8 byte data.
//
// For those requiring a deeper understanding, the PKCS8 contains ASN.1 in DER
// encoding with the following structure:PrivateKeyInfo ::= SEQUENCE {
// version Version,
// algorithm AlgorithmIdentifier,
// PrivateKey BIT STRING
// }
//
// AlgorithmIdentifier ::= SEQUENCE {
// algorithm OBJECT IDENTIFIER,
// parameters ANY DEFINED BY algorithm OPTIONAL
// }
//
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadPkcs8(CkByteData &data);
// Loads a private key from in-memory password-protected PKCS8 byte data.
//
// For those requiring a deeper understanding, the encrypted PKCS8 contains ASN.1
// in DER encoding with the following structure:EncryptedPrivateKeyInfo ::= SEQUENCE {
// encryptionAlgorithm EncryptionAlgorithmIdentifier,
// encryptedData EncryptedData
// }
//
// EncryptionAlgorithmIdentifier ::= AlgorithmIdentifier
//
// EncryptedData ::= OCTET STRING
//
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadPkcs8Encrypted(CkByteData &data, const char *password);
// Loads a private key from an encrypted PKCS8 file.
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadPkcs8EncryptedFile(const char *path, const char *password);
// Loads a private key from a PKCS8 file.
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadPkcs8File(const char *path);
// Loads a private key from in-memory PVK byte data.
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadPvk(CkByteData &data, const char *password);
// Loads a private key from a PVK format file.
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadPvkFile(const char *path, const char *password);
// Loads a private key from an XML string.
//
// RSA keys have this XML format:  ...  ...  
//
// ...
//
// ... ... ... ... ...
//
// DSA keys have this XML format:
//
// ...
//
// ............
//
// ECC keys have this XML format. The CURVE_NAME could be one of secp256r1,
// secp384r1, secp521r1, secp256k1 (or others as new curves are supported.)...
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadXml(const char *xml);
// Loads a private key from an XML file.
//
// Note: Each of the private key Load* methods willl auto-recognize the content and
// will parse appropriately. The private key should be successfully loaded even
// when the wrong format data is passed to the wrong method.
//
bool LoadXmlFile(const char *path);
// Saves the private key to an unencrypted PKCS1 PEM format file.
bool SavePemFile(const char *path);
// Saves the private key to an unencrypted binary PKCS1 format file.
bool SavePkcs1File(const char *path);
// Saves the private key to a password-protected PKCS8 format file. The
// Pkcs8EncryptAlg property controls the encryption algorithm used to encrypt.
bool SavePkcs8EncryptedFile(const char *password, const char *path);
// Saves the private key to a password-protected PKCS8 PEM format file. The
// Pkcs8EncryptAlg property controls the encryption algorithm used to encrypt.
bool SavePkcs8EncryptedPemFile(const char *password, const char *path);
// Saves the private key to an unencrypted binary PKCS8 format file. The path is an
// absolute or relative file path conforming to the operating system. For example,
// C:\temp\myKey.key .
//
// Starting in Chilkat v10.0.0, on MacOS, the path can be formatted as
// keychain:<label> to save the private key to the Apple Keychain.
//
bool SavePkcs8File(const char *path);
// Saves the private key to a PKCS8 PEM format file.
bool SavePkcs8PemFile(const char *path);
// Saves the private key to an XML file.
bool SaveXmlFile(const char *path);
// Returns in pubKey the public key portion of the private key.
bool ToPublicKey(CkPublicKey &pubKey);
// This is an open-ended method to accomodate uploading the private key to a cloud
// service, such as AWS KMS, or Azure Key Vault. For details, see the examples
// below.
bool UploadToCloud(CkJsonObject &jsonIn, CkJsonObject &jsonOut);
// This is an open-ended method to accomodate uploading the private key to a cloud
// service, such as AWS KMS, or Azure Key Vault. For details, see the examples
// below.
CkTask *UploadToCloudAsync(CkJsonObject &jsonIn, CkJsonObject &jsonOut);
// END PUBLIC INTERFACE
};
#if !defined(__sun__) && !defined(__sun)
#pragma pack (pop)
#endif
#endif
Reference in New Issue View Git Blame Copy Permalink