JavaScript导出RSA-OAEP公钥

时间:2018-06-23 13:04:08

标签: javascript rsa webcryptoapi

我正在尝试使用here中所述的导出密钥来访问公共密钥。我有以下代码:

window.crypto.subtle.generateKey(
            {
                name: "RSA-OAEP",
                modulusLength: 2048, //can be 1024, 2048, or 4096
                publicExponent: new Uint8Array([0x01, 0x00, 0x01]),
                hash: {name: "SHA-256"}, //can be "SHA-1", "SHA-256", "SHA-384", or "SHA-512"
            },
            true, //whether the key is extractable (i.e. can be used in exportKey)
            ["encrypt", "decrypt"] //must be ["encrypt", "decrypt"] or ["wrapKey", "unwrapKey"]
        )
            .then(function(key){
                //returns a keypair object
                console.log(key);
                console.log(key.publicKey);
                console.log(key.privateKey);

        window.crypto.subtle.exportKey("spki",key.publicKey)
            .then(function(keydata){
                //returns the exported key data
                console.log(keydata);
                document.getElementById("key").innerHTML = String(key.publicKey)
            })
            .catch(function(err){
                console.error(err);
            });
    })

我想查看公共密钥,例如,将HTML元素设置为[object CryptoKey]时,将其设置为HTML元素。如何直接访问公钥?

谢谢

编辑:

window.crypto.subtle.generateKey(
            {
                name: "RSA-OAEP",
                modulusLength: 2048, //can be 1024, 2048, or 4096
                publicExponent: new Uint8Array([0x01, 0x00, 0x01]),
                hash: {name: "SHA-256"}, //can be "SHA-1", "SHA-256", "SHA-384", or "SHA-512"
            },
            true, //whether the key is extractable (i.e. can be used in exportKey)
            ["encrypt", "decrypt"] //must be ["encrypt", "decrypt"] or ["wrapKey", "unwrapKey"]
        )
            .then(function(key){
                //returns a keypair object
                console.log(key);
                console.log(key.publicKey);
                console.log(key.privateKey);

                window.crypto.subtle.exportKey("spki",key.publicKey)
                    .then(function(keydata){
                        //returns the exported key data
                        console.log(keydata);
                        var  publicKeyB64 = ab2str(keydata);
                        document.getElementById("key").innerHTML = publicKeyB64;

                    })
                    .catch(function(err){
                        console.error(err);
                    });
            })




        function ab2str( buffer ) {
            var binary = '';
            var bytes = new Uint8Array( buffer );
            var len = bytes.byteLength;
            for (var i = 0; i < len; i++) {
                binary += String.fromCharCode( bytes[ i ] );
            }
            return window.btoa( binary );
        }

1 个答案:

答案 0 :(得分:2)

keydata是一个ArrayBuffer,其中包含导出为DER格式的公钥。由于DER是二进制的,因此需要将结果编码为文本,例如使用base64

选择首选的功能,将ArrayBuffer从Converting between strings and ArrayBuffers转换为字符串

var  publicKeyB64 = btoa(ab2str(keydata));
document.getElementById("key").innerHTML = publicKeyB64;