Unicode C++
Unicode C++
Create JCEKS Containing Secret Keys
See more Java KeyStore (JKS) Examples
Demonstrates how to create a JCEKS keystore file containing symmetric secret keys (for AES, Blowfish, HMAC SHA25, ChaCha20, etc.)This example requires Chilkat v9.5.0.66 or greater.
Chilkat Unicode C++ Downloads
#include <CkJavaKeyStoreW.h>
#include <CkPrngW.h>
#include <CkStringBuilderW.h>
#include <CkJsonObjectW.h>
void ChilkatSample(void)
{
bool success = false;
// IMPORTANT: This example requires Chilkat v9.5.0.66 or greater.
// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
CkJavaKeyStoreW jceks;
// We'll need a pseudo-random number generator (PRNG) to generate symmetric keys.
CkPrngW prng;
// Generate some keys..
// 128-bit AES key (16 bytes)
const wchar_t *aesKey = prng.genRandom(16,L"base64");
// 256-bit Blowfish key (32 bytes)
const wchar_t *blowfishKey = prng.genRandom(32,L"base64");
// HMAC SHA256 key
// (An HMAC key can be anything, and any length. We'll use the following string:
const wchar_t *hmacKey = L"This is my HMAC key";
// ChaCha20 256-bit
const wchar_t *chachaKey = prng.genRandom(32,L"base64");
// Add each secret key to the JCEKS
const wchar_t *encoding = L"base64";
const wchar_t *password = L"secret";
jceks.AddSecretKey(aesKey,encoding,L"AES",L"my aes key",password);
jceks.AddSecretKey(blowfishKey,encoding,L"BLOWFISH",L"my blowfish key",password);
// For HMAC, we're using the us-ascii bytes for the key..
jceks.AddSecretKey(hmacKey,L"ascii",L"HMAC_SHA256",L"my hmac key",password);
jceks.AddSecretKey(chachaKey,encoding,L"CHACHA",L"my chacha20 key",password);
const wchar_t *filePassword = L"password";
// Write the JCEKs to a file.
success = jceks.ToFile(filePassword,L"qa_output/secretKeys.jceks");
if (success != true) {
wprintf(L"%s\n",jceks.lastErrorText());
return;
}
// We can also emit as a JWK Set..
CkStringBuilderW sbJson;
success = jceks.ToJwkSet(L"secret",sbJson);
if (success != true) {
wprintf(L"%s\n",jceks.lastErrorText());
return;
}
// Emit the JSON in pretty-printed (indented) form:
CkJsonObjectW json;
json.LoadSb(sbJson);
json.put_EmitCompact(false);
wprintf(L"%s\n",json.emit());
// Output is:
// {
// "keys": [
// {
// "kty": "oct",
// "alg": "AES",
// "k": "vHekQQB0Gc1NvppapUTW2g",
// "kid": "my aes key"
// },
// {
// "kty": "oct",
// "alg": "BLOWFISH",
// "k": "qHsdXaJsXicVCZbK8l8hJQpYOa0GkiO9gsRK9WLtht8",
// "kid": "my blowfish key"
// },
// {
// "kty": "oct",
// "alg": "HMAC_SHA256",
// "k": "VGhpcyBpcyBteSBITUFDIGtleQ",
// "kid": "my hmac key"
// },
// {
// "kty": "oct",
// "alg": "CHACHA",
// "k": "yNv832U43C9BcWvaQAH2_rG-GwfmpgT5JBRllWGQY1o",
// "kid": "my chacha20 key"
// }
// ]
// }
//
}