簡體   English   中英

如何在C#上讀取.Key文件?

[英]How To Read .Key file on C#?

我閱讀.der文件如下。

byte[] byteKey = File.ReadAllBytes(openFileDialog1.FileName);
X509Certificate2 cert = new X509Certificate2(byteKey);

但它沒有私鑰。 它只有公共密鑰。

cert.HasPrivateKey返回false。

當我搜索它時,我發現“ .der文件沒有私鑰,私鑰位於.key文件中”。

我使用記事本++在與.der文件相同的路徑中打開.key文件,將打印出損壞的文本。

第一個問題,如何從C#的.key文件中讀取私鑰?

第二,如何在C#上將.key文件轉換為.pem文件? 只是使用openssl嗎?

謝謝您的教your。

.NET的當前版本在這里沒有很好的故事。 .NET Core 3.0有一個更好的故事。 而且,如果您願意使用帶有“ Experimental”名稱的NuGet軟件包,那么情況會更好。

注意:在整個答案中,我不會考慮諸如BouncyCastle之類的第三方庫。 它可能會完美地滿足您的要求,但這不是我的專業領域。 當我知道它們時,我將考慮由與開發.NET收件箱庫相同的一組人員開發的NuGet軟件包。

解釋1:“我要調用哪種方法從文件中加載私鑰?”

當前版本

沒有解決方案。

.NET Core 3.0

沒有一個答案,您需要知道您擁有哪種文件(或嘗試所有答案)。

  • RSA
    • ImportRSAPrivateKey
      • 用於數據何時為PKCS#1 RSAPrivateKey格式(PEM打開頭:BEGIN RSA PRIVATE KEY)
    • ImportPkcs8PrivateKey
      • 用於數據何時為PKCS#8 PrivateKeyInfo格式(PEM打開頭:BEGIN PRIVATE KEY)
    • ImportEncryptedPkcs8PrivateKey
      • 用於數據何時為PKCS#8 EncryptedPrivateKeyInfo格式(PEM打開頭:BEGIN ENCRYPTED PRIVATE KEY)
  • ECDSA
    • ImportECPrivateKey
      • 用於數據何時采用RFC 5915 ECPrivateKey格式(PEM開放頭:BEGIN EC PRIVATE KEY)
    • ImportPkcs8PrivateKey
    • ImportEncryptedPkcs8PrivateKey
  • ECDiffieHellman
    • ImportECPrivateKey
    • ImportPkcs8PrivateKey
    • ImportEncryptedPkcs8PrivateKey
  • DSA
    • ImportPkcs8PrivateKey
    • ImportEncryptedPkcs8PrivateKey

這些方法的警告是它們僅了解BER / DER數據,而不了解PEM數據。 因此,如果您的文件采用PEM格式(這樣最容易識別有效載荷應該是什么),則首先需要將其轉換為BER / DER。

對於大多數PEM文件而言,這很容易:您只需在BEGIN和END標記之間找到內容,即可通過Convert.FromBase64String和voila運行它。 從技術上講,PEM支持屬性,並且處理屬性更加困難(並且超出了此答案的范圍)。

因此,您可能最終會遇到類似

RSA rsa = RSA.Create();

try
{
    rsa.ImportRSAPrivateKey(data, out _);
    return rsa;
}
catch (CryptographicException)
{
}

try
{
    rsa.ImportPkcs8PrivateKey(data, out _);
    return rsa;
}
catch (CryptographicException)
{
}

try
{
    // prompt for password, then
    rsa.ImportEncryptedPkcs8PrivateKey(password, data, out _);
    return rsa;
}
catch (CryptographicException)
{
}

rsa.Dispose();
ECDsa ecdsa = ECDsa.Create();
...

忽略的out值是從輸入字節使用的字節數。 它主要僅在從文件中間讀取時才有意義。

System.Security.Cryptography.Asn1.Experimental

沒有解決方案,此庫的級別比該級別低得多。

解釋2:“我如何在實踐中理解這些文件?”

好的,這實際上不是問題的解釋方式,而是一種猜測。

加密密鑰文件(根據我的經驗)始終是DER-(盡管偶爾會放寬到BER-)編碼的ASN.1數據結構。 要完全理解它們,您需要閱讀和理解

  • ITU-T REC X.680建議書 :ASN.1語言
  • ITU-T REC X.690建議書ASN.1數據的基本編碼規則(BER)字節布局(以及很少使用的約束規范編碼規則(CER)和常用的約束可分辨編碼規則(DER))。
  • 無論什么描述了特定的格式,可能還有它們引用的東西。
    • RSAPrivateKey:公鑰加密標准#1(PKCS#1)或RFC 8017
    • ECPrivateKey: RFC 5915
    • PKCS#8 PrivateKeyInfo:PKCS#8 / RFC 5208
    • PKCS#8 EncryptedPrivateKeyInfo:PKCS#8 / RFC 5208 (以及至少PKCS#5,作為依賴項)

然后有時會使用“隱私增強郵件”(PEM)語法將這些結構轉換為文本表示形式,

  • 5個連字符減號
  • 全大寫字母BEGIN后跟空格
  • 格式標識符,不以空格結尾
  • 5個連字符減號
  • 換行符(CRLF或LF)
  • BER / DER數據的base64編碼版本,每行64個字符
  • base64數據最后一部分末尾的換行符(CRLF或LF)
  • 5個連字符減號
  • 全大寫END后跟一個空格
  • 與BEGIN中使用的格式標識符相同
  • 5個連字符減號
  • (理想情況下是換行符或只是文件結尾)

有關更多信息,請參見RFC 7468

解釋3:“如何在代碼中讀取這些文件的部分?”

當前版本

沒有解決方案。

.NET Core 3.0

沒有解決方案。

System.Security.Cryptography.Asn1.Experimental

此NuGet程序包是.NET Core 2.1 / 3.0的ASN.1讀取器公開的(這種想法是在一些可用性反饋后從.NET Core公開的)。

例如,要讀取RSAPrivateKey:

// PKCS#1 doesn't say that this structure is always DER encoded, so read it as BER
AsnReader reader = new AsnReader(data, AsnEncodingRules.BER);

// RSAPrivateKey ::= SEQUENCE {
AsnReader contents = reader.ReadSequence();

// version Version (0 for two-prime RSA)
if (!contents.TryReadInt32(out int version) || version != 0)
{
    throw new CryptographicException();
}

// modulus INTEGER,
BigInteger modulus = contents.ReadInteger();
// publicExponent INTEGER,
BigInteger publicExponent = contents.ReadInteger();
// privateExponent INTEGER,
BigInteger privateExponent = contents.ReadInteger();
// prime1 INTEGER,
BigInteger prime1 = contents.ReadInteger();
// prime2 INTEGER,
BigInteger prime2 = contents.ReadInteger();
// exponent1 INTEGER,
BigInteger exponent1 = contents.ReadInteger();
// exponent2 INTEGER,
BigInteger exponent2 = contents.ReadInteger();
// coefficient INTEGER,
BigInteger coefficient = contents.ReadInteger();
// otherPrimeInfos OtherPrimeInfos OPTIONAL,
// we don't support this, we limited to version 0.
// good thing the next token is:
// }
contents.ThrowIfNotEmpty();
// All done.
// If you expected no trailing data:
reader.ThrowIfNotEmpty();

其他格式也一樣。

我之前已經解決了這個問題,但我只能回答一半。您應該使用openssl打開.key,這是代碼(注意:此代碼來自此codeproject帖子):

using System;
using System.IO;
using System.Text;
using System.Security.Cryptography;
using System.Security.Cryptography.X509Certificates;
using System.Runtime.InteropServices;
using System.Security;
using System.Diagnostics;
using System.ComponentModel;
namespace OpenSSL
{
 public class opensslkey
{

    public string SignString(string pKeyFile,string pPassword,string OriginalString)
    {
        string SignedString = "";
        string filename = pKeyFile;
        if (!File.Exists(filename))
        {
            return ".key file does not exist " + pKeyFile;
        }

        RSACryptoServiceProvider rsa=OpenKeyFile(filename, pPassword);
        if (rsa != null)
        {
            byte[] CO=Encoding.UTF8.GetBytes(OriginalString);
            byte[] SignedBytes=rsa.SignData(CO, new SHA1CryptoServiceProvider());
            SignedString = Convert.ToBase64String(SignedBytes);
        }
        return SignedString;
    }

    public RSACryptoServiceProvider OpenKeyFile(String filename,string pPassword)
    {
        RSACryptoServiceProvider rsa = null;
        byte[] keyblob = GetFileBytes(filename);
        if (keyblob == null)
            return null;

        rsa = DecodePrivateKeyInfo(keyblob, pPassword); //PKCS #8 encrypted
        if (rsa != null)
        {
            return rsa;
        }
        return null;
    }

    public static RSACryptoServiceProvider 
              DecodePrivateKeyInfo(byte[] encpkcs8,string pPassword)
    {
        // encoded OID sequence for  PKCS #1 rsaEncryption szOID_RSA_RSA ="1.2.840.113549.1.1.1"
        // this byte[] includes the sequence byte and terminal encoded null 
        byte[] OIDpkcs5PBES2 = { 0x06, 0x09, 0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x01, 0x05, 0x0D };
        byte[] OIDpkcs5PBKDF2 = { 0x06, 0x09, 0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x01, 0x05, 0x0C };
        byte[] OIDdesEDE3CBC = { 0x06, 0x08, 0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x03, 0x07 };
        byte[] seqdes = new byte[10];
        byte[] seq = new byte[11];
        byte[] salt;
        byte[] IV;
        byte[] encryptedpkcs8;
        byte[] pkcs8;

        int saltsize, ivsize, encblobsize;
        int iterations;

        // ---------  Set up stream to read the asn.1 encoded SubjectPublicKeyInfo blob  ------
        MemoryStream mem = new MemoryStream(encpkcs8);
        int lenstream = (int)mem.Length;
        BinaryReader binr = new BinaryReader(mem);    //wrap Memory Stream with BinaryReader for easy reading
        byte bt = 0;
        ushort twobytes = 0;

        try
        {

            twobytes = binr.ReadUInt16();
            if (twobytes == 0x8130)
            //data read as little endian order (actual data order for Sequence is 30 81)
                binr.ReadByte();    //advance 1 byte
            else if (twobytes == 0x8230)
                binr.ReadInt16();   //advance 2 bytes
            else
                return null;

            twobytes = binr.ReadUInt16();   //inner sequence
            if (twobytes == 0x8130)
                binr.ReadByte();
            else if (twobytes == 0x8230)
                binr.ReadInt16();


            seq = binr.ReadBytes(11);       //read the Sequence OID
            if (!CompareBytearrays(seq, OIDpkcs5PBES2)) //is it a OIDpkcs5PBES2 ?
                return null;

            twobytes = binr.ReadUInt16();   //inner sequence for pswd salt
            if (twobytes == 0x8130)
                binr.ReadByte();
            else if (twobytes == 0x8230)
                binr.ReadInt16();

            twobytes = binr.ReadUInt16();   //inner sequence for pswd salt
            if (twobytes == 0x8130)
                binr.ReadByte();
            else if (twobytes == 0x8230)
                binr.ReadInt16();

            seq = binr.ReadBytes(11);       //read the Sequence OID
            if (!CompareBytearrays(seq, OIDpkcs5PBKDF2))    //is it a OIDpkcs5PBKDF2 ?
                return null;

            twobytes = binr.ReadUInt16();
            if (twobytes == 0x8130)
                binr.ReadByte();
            else if (twobytes == 0x8230)
                binr.ReadInt16();

            bt = binr.ReadByte();
            if (bt != 0x04)     //expect octet string for salt
                return null;
            saltsize = binr.ReadByte();
            salt = binr.ReadBytes(saltsize);

            bt = binr.ReadByte();
            if (bt != 0x02)     //expect an integer for PBKF2 interation count
                return null;

            int itbytes = binr.ReadByte();  //PBKD2 iterations should fit in 2 bytes.
            if (itbytes == 1)
                iterations = binr.ReadByte();
            else if (itbytes == 2)
                iterations = 256 * binr.ReadByte() + binr.ReadByte();
            else
                return null;

            twobytes = binr.ReadUInt16();
            if (twobytes == 0x8130)
                binr.ReadByte();
            else if (twobytes == 0x8230)
                binr.ReadInt16();


            seqdes = binr.ReadBytes(10);        //read the Sequence OID
            if (!CompareBytearrays(seqdes, OIDdesEDE3CBC))  //is it a OIDdes-EDE3-CBC ?
                return null;

            bt = binr.ReadByte();
            if (bt != 0x04)     //expect octet string for IV
                return null;
            ivsize = binr.ReadByte();   // IV byte size should fit in one byte (24 expected for 3DES)
            IV = binr.ReadBytes(ivsize);

            bt = binr.ReadByte();
            if (bt != 0x04)     // expect octet string for encrypted PKCS8 data
                return null;


            bt = binr.ReadByte();

            if (bt == 0x81)
                encblobsize = binr.ReadByte();  // data size in next byte
            else if (bt == 0x82)
                encblobsize = 256 * binr.ReadByte() + binr.ReadByte();
            else
                encblobsize = bt;       // we already have the data size


            encryptedpkcs8 = binr.ReadBytes(encblobsize);
            SecureString secpswd = new SecureString();
            foreach (char c in pPassword)
                secpswd.AppendChar(c);

            pkcs8 = DecryptPBDK2(encryptedpkcs8, salt, IV, secpswd, iterations);
            if (pkcs8 == null)  // probably a bad pswd entered.
                return null;

            RSACryptoServiceProvider rsa = DecodePrivateKeyInfo(pkcs8);
            return rsa;
        }

        catch (Exception)
        {
            return null;
        }

        finally { binr.Close(); }


    }

    public void CertificateData(string pCerFile, out string Certificate, out string CertificateNumber)
    {
        X509Certificate cert = new X509Certificate(pCerFile);
        byte[] strcert = cert.GetRawCertData();
        Certificate = Convert.ToBase64String(strcert);

        strcert = cert.GetSerialNumber();
        CertificateNumber = Reverse(System.Text.Encoding.UTF8.GetString(strcert));
    }

    public string Reverse(string Original)
    {
        string Reverse = "";
        for (int i = Original.Length - 1; i >= 0; i--)
            Reverse += Original.Substring(i, 1);
        return Reverse;
    }

    private static byte[] GetFileBytes(String filename)
    {
        if (!File.Exists(filename))
            return null;
        Stream stream = new FileStream(filename, FileMode.Open);
        int datalen = (int)stream.Length;
        byte[] filebytes = new byte[datalen];
        stream.Seek(0, SeekOrigin.Begin);
        stream.Read(filebytes, 0, datalen);
        stream.Close();
        return filebytes;
    }

    private static bool CompareBytearrays(byte[] a, byte[] b)
    {
        if (a.Length != b.Length)
            return false;
        int i = 0;
        foreach (byte c in a)
        {
            if (c != b[i])
                return false;
            i++;
        }
        return true;
    }

    public static byte[] DecryptPBDK2(byte[] edata, byte[] salt, 
              byte[] IV, SecureString secpswd, int iterations)
    {
        CryptoStream decrypt = null;

        IntPtr unmanagedPswd = IntPtr.Zero;
        byte[] psbytes = new byte[secpswd.Length];
        unmanagedPswd = Marshal.SecureStringToGlobalAllocAnsi(secpswd);
        Marshal.Copy(unmanagedPswd, psbytes, 0, psbytes.Length);
        Marshal.ZeroFreeGlobalAllocAnsi(unmanagedPswd);

        try
        {
            Rfc2898DeriveBytes kd = new Rfc2898DeriveBytes(psbytes, salt, iterations);
            TripleDES decAlg = TripleDES.Create();
            decAlg.Key = kd.GetBytes(24);
            decAlg.IV = IV;
            MemoryStream memstr = new MemoryStream();
            decrypt = new CryptoStream(memstr, decAlg.CreateDecryptor(), CryptoStreamMode.Write);
            decrypt.Write(edata, 0, edata.Length);
            decrypt.Flush();
            decrypt.Close();    // this is REQUIRED.
            byte[] cleartext = memstr.ToArray();
            return cleartext;
        }
        catch (Exception e)
        {
            Console.WriteLine("Problem decrypting: {0}", e.Message);
            return null;
        }
    }

    public static RSACryptoServiceProvider DecodePrivateKeyInfo(byte[] pkcs8)
    {
        // encoded OID sequence for  PKCS #1 rsaEncryption szOID_RSA_RSA = "1.2.840.113549.1.1.1"
        // this byte[] includes the sequence byte and terminal encoded null 
        byte[] SeqOID = { 0x30, 0x0D, 0x06, 0x09, 0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x01, 0x01, 0x01, 0x05, 0x00 };
        byte[] seq = new byte[15];
        // ---------  Set up stream to read the asn.1 encoded SubjectPublicKeyInfo blob  ------
        MemoryStream mem = new MemoryStream(pkcs8);
        int lenstream = (int)mem.Length;
        BinaryReader binr = new BinaryReader(mem);    //wrap Memory Stream with BinaryReader for easy reading
        byte bt = 0;
        ushort twobytes = 0;

        try
        {

            twobytes = binr.ReadUInt16();
            if (twobytes == 0x8130) //data read as little endian order (actual data order for Sequence is 30 81)
                binr.ReadByte();    //advance 1 byte
            else if (twobytes == 0x8230)
                binr.ReadInt16();   //advance 2 bytes
            else
                return null;


            bt = binr.ReadByte();
            if (bt != 0x02)
                return null;

            twobytes = binr.ReadUInt16();

            if (twobytes != 0x0001)
                return null;

            seq = binr.ReadBytes(15);       //read the Sequence OID
            if (!CompareBytearrays(seq, SeqOID))    //make sure Sequence for OID is correct
                return null;

            bt = binr.ReadByte();
            if (bt != 0x04) //expect an Octet string 
                return null;

            bt = binr.ReadByte();       //read next byte, or next 2 bytes is  0x81 or 0x82; otherwise bt is the byte count
            if (bt == 0x81)
                binr.ReadByte();
            else
                if (bt == 0x82)
                    binr.ReadUInt16();
            //------ at this stage, the remaining sequence should be the RSA private key

            byte[] rsaprivkey = binr.ReadBytes((int)(lenstream - mem.Position));
            RSACryptoServiceProvider rsacsp = DecodeRSAPrivateKey(rsaprivkey);
            return rsacsp;
        }

        catch (Exception)
        {
            return null;
        }

        finally { binr.Close(); }
    }

    public static RSACryptoServiceProvider DecodeRSAPrivateKey(byte[] privkey)
    {
        byte[] MODULUS, E, D, P, Q, DP, DQ, IQ;

        // ---------  Set up stream to decode the asn.1 encoded RSA private key  ------
        MemoryStream mem = new MemoryStream(privkey);
        BinaryReader binr = new BinaryReader(mem);    //wrap Memory Stream with BinaryReader for easy reading
        byte bt = 0;
        ushort twobytes = 0;
        int elems = 0;
        try
        {
            twobytes = binr.ReadUInt16();
            if (twobytes == 0x8130) //data read as little endian order (actual data order for Sequence is 30 81)
                binr.ReadByte();    //advance 1 byte
            else if (twobytes == 0x8230)
                binr.ReadInt16();   //advance 2 bytes
            else
                return null;

            twobytes = binr.ReadUInt16();
            if (twobytes != 0x0102) //version number
                return null;
            bt = binr.ReadByte();
            if (bt != 0x00)
                return null;


            //------  all private key components are Integer sequences ----
            elems = GetIntegerSize(binr);
            MODULUS = binr.ReadBytes(elems);

            elems = GetIntegerSize(binr);
            E = binr.ReadBytes(elems);

            elems = GetIntegerSize(binr);
            D = binr.ReadBytes(elems);

            elems = GetIntegerSize(binr);
            P = binr.ReadBytes(elems);

            elems = GetIntegerSize(binr);
            Q = binr.ReadBytes(elems);

            elems = GetIntegerSize(binr);
            DP = binr.ReadBytes(elems);

            elems = GetIntegerSize(binr);
            DQ = binr.ReadBytes(elems);

            elems = GetIntegerSize(binr);
            IQ = binr.ReadBytes(elems);

            Console.WriteLine("showing components ..");

            // ------- create RSACryptoServiceProvider instance and initialize with public key -----
            RSACryptoServiceProvider RSA = new RSACryptoServiceProvider();
            RSAParameters RSAparams = new RSAParameters();
            RSAparams.Modulus = MODULUS;
            RSAparams.Exponent = E;
            RSAparams.D = D;
            RSAparams.P = P;
            RSAparams.Q = Q;
            RSAparams.DP = DP;
            RSAparams.DQ = DQ;
            RSAparams.InverseQ = IQ;
            RSA.ImportParameters(RSAparams);
            return RSA;
        }
        catch (Exception)
        {
            return null;
        }
        finally { binr.Close(); }
    }

    private static int GetIntegerSize(BinaryReader binr)
    {
        byte bt = 0;
        byte lowbyte = 0x00;
        byte highbyte = 0x00;
        int count = 0;
        bt = binr.ReadByte();
        if (bt != 0x02)     //expect integer
            return 0;
        bt = binr.ReadByte();

        if (bt == 0x81)
            count = binr.ReadByte();    // data size in next byte
        else
            if (bt == 0x82)
            {
                highbyte = binr.ReadByte(); // data size in next 2 bytes
                lowbyte = binr.ReadByte();
                byte[] modint = { lowbyte, highbyte, 0x00, 0x00 };
                count = BitConverter.ToInt32(modint, 0);
            }
            else
            {
                count = bt;     // we already have the data size
            }
        while (binr.ReadByte() == 0x00)
        {   //remove high order zeros in data
            count -= 1;
        }
        binr.BaseStream.Seek(-1, SeekOrigin.Current);
        //last ReadByte wasn't a removed zero, so back up a byte
        return count;
    }

}
}

這是一個示例:

//using code
public void Sample()
{
OpenSSL.opensslkey libssl = new OpenSSL.opensslkey();
string SignedString = libssl.SignString(@"c:\test\aaaa121213123123aaa_t.key", 
  "0123456789", "||3.2|test|cadena|original|");
string Certificate = "";
string CertificateNumber = "";
libssl.CertificateData(@"c:\test\aaaa121213123123aaa_t.cer", out Certificate, out CertificateNumber);

暫無
暫無

聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.

 
粵ICP備18138465號  © 2020-2024 STACKOOM.COM