Question

我有PEM格式的证书，我希望使用C ++中的OpenSLL函数将其转换为DER格式。

我该怎么做？

感谢。

Answer 1

你可以这样做 -

#include <stdio.h>
#include <openssl/x509.h>
#include <openssl/pem.h>
#include <openssl/err.h>

void convert(char* cert_filestr,char* certificateFile)
{
    X509* x509 = NULL;
    FILE* fd = NULL,*fl = NULL;

    fl = fopen(cert_filestr,"rb");
    if(fl) 
    {
        fd = fopen(certificateFile,"w+");
        if(fd) 
        {
            x509 = PEM_read_X509(fl,&x509,NULL,NULL);
            if(x509) 
            {
                 i2d_X509_fp(fd, x509);
            }
            else 
            {
                printf("failed to parse to X509 from fl");
            }
            fclose(fd);
        }
        else
        {
             printf("can't open fd");
        }
        fclose(fl);
    }
    else 
    {
         printf("can't open f");
    }
}


int main()
{
    convert("abc.pem","axc.der");
    return 0;
}

Answer 2

试试这个 -

void convert(const unsigned char * pem_string_cert,char* certificateFile)
{
    X509* x509 = NULL;
    FILE* fd = NULL;

    BIO *bio;

    bio = BIO_new(BIO_s_mem());
    BIO_puts(bio, pem_string_cert);
    x509 = PEM_read_bio_X509(bio, NULL, NULL, NULL);

    fd = fopen(certificateFile,"w+");
    if(fd) 
    {
            i2d_X509_fp(fd, x509);
    }
    else 
    {
         printf("can't open fd");
    }
    fclose(fd);
}

Answer 3

您可以在不使用OpenSSL函数的情况下进行操作。试试这个

int CertConv_pem2der(const uint8_t *pem, uint32_t plen, uint8_t **der,
                 uint32_t *dlen)
{
  int value = 0;
  int i;
  int j;
  int padZero = 0;
  uint8_t *derPtr;
  uint32_t derLen;

  if ((pem == NULL) || (der == NULL))
  {
    return (-1);
  }

  for (i = plen; pem[i - 1] == '='; i--)
  {
    padZero++;
  }

  /* Base64 decode: 4 characters to 3 bytes */
  derLen = (plen / 4) * 3;
  derPtr = (uint8_t *) malloc(derLen);
  if (!derPtr)
  {
    return (-1);
  }

  for (i = 0, j = 0; (i + 3) < plen && (j + 2) < derLen; i += 4, j += 3)
  {
    value = (base64Decode(pem[i]) << 18) + (base64Decode(pem[i + 1]) << 12)
            + (base64Decode(pem[i + 2]) << 6) + base64Decode(pem[i + 3]);

    derPtr[j] = (value >> 16) & 0xFF;
    derPtr[j + 1] = (value >> 8) & 0xFF;
    derPtr[j + 2] = value & 0xFF;
  }

  /* Actual length of buffer filled */
  *dlen = derLen - padZero;
  *der = derPtr;

  return (0);
}


static uint8_t base64Decode(uint8_t ch)
{
  uint8_t ret = 0;
  if (ch >= 'A' && ch <= 'Z')
  {
    ret = ch - 'A';
  }
  else if (ch >= 'a' && ch <= 'z')
  {
    ret = ch - 'a' + 26;
  }
  else if (ch >= '0' && ch <= '9')
  {
    ret = ch - '0' + 52;
  }
  else if (ch == '+')
  {
    ret = 62;
  }
  else if (ch == '/')
  {
    ret = 63;
  }

  return (ret);
}

在C ++中将PEM转换为DER

3 个答案: