Databases
StackOverflow2013
Postsdbo
PO
 

Note that there are some explanatory texts on larger screens.

plurals
  1. PO
    primarykey
    data
    text
    <p>There are some functions in C OpenSSL API with name <code>i2d_*</code> to parse an internal type (for the c programming language are structures with name X509,RSA ...) to DER and <code>d2i_*</code> to parse DER to an internal type and this is how you can convert an x509 certificate file from DER format to PEM with the c programming language.</p> <pre><code>#include &lt;stdio.h&gt; #include &lt;openssl/x509.h&gt; int main(int argc,char* argv[]){ if(argc != 3) { printf("Usage: der2pem derfile pemfile\n"); return 1; } // try open the derfile FILE* derfile = fopen(argv[1],"r"); if(derfile) { // try open or create the pemfile FILE* pemfile = fopen(argv[2],"w+"); if(pemfile) { // parse DER to internal X509 structure // d2i is d for DER and i for internal which means c data X509* internal = d2i_X509_fp(derfile,NULL); if(internal) { // write from the internal X509 to pemfile PEM_write_X509(pemfile,internal); } else { printf("wasn't possible to parse to X509 from the 'derfile'\n"); } fclose(pemfile); } else { printf("can't create or open the 'pemfile' file\n"); return 1; } fclose(derfile); } else { printf("can't open the 'derfile' file\n"); return 1; } return 0; } </code></pre> <p>The X.509 digital certificate is a data structure that contains, at minimum, the following fields:</p> <ul> <li>The distinguished name of the owner of the public key, also called the subject's name</li> <li>The distinguished name of the issuer of the certificate, also called the issuer's name</li> <li>The public key itself</li> <li>The time period during which the certificate is valid, also called the validity period</li> <li>The certificate's serial number as designated by the issuer</li> <li>The issuer's digital signature.</li> </ul> <p>source <a href="http://publib.boulder.ibm.com/infocenter/zos/v1r11/index.jsp?topic=/com.ibm.zos.r11.icha700/xcerts.htm" rel="nofollow">http://publib.boulder.ibm.com/infocenter/zos/v1r11/index.jsp?topic=/com.ibm.zos.r11.icha700/xcerts.htm</a></p> <p>Which means this example is not for private keys of any type, certificate requests, certificate revocation lists. If you need to convert from these types of DER files you have to dive more into the OpenSSL API, because for example the private keys have to do with encryption and decryption.</p> <p>Something @owlstead said and that is true ... the PEM format is the <code>base64</code> encoding of the DER format plus the header and footer. Then i wrote one more example in c, but you need to know the right header and footer to create a complete PEM file:</p> <pre><code>#include &lt;stdio.h&gt; #include &lt;string.h&gt; #include &lt;sys/stat.h&gt; #include &lt;openssl/bio.h&gt; #include &lt;openssl/evp.h&gt; int main(int argc,char* argv[]){ if(argc != 5) { printf("Usage: der2pem_simple derfile pemfile \"-----BEGIN CERTIFICATE-----\" \"-----END CERTIFICATE-----\"\n"); return 1; } // to create a buffer as small as possible // we need the size of the input file struct stat fistat; if(stat(argv[1],&amp;fistat)&lt;0) { printf("derfile not found\n"); return 1; } // open the derfile FILE* derfile = fopen(argv[1],"r"); if (!derfile){ printf("can't open derfile\n"); return 1; } char buff[fistat.st_size]; // write the derfile to the buffer fread(buff,fistat.st_size,1,derfile); fclose(derfile); // open pemfile FILE* pemfile = fopen(argv[2],"w+"); if (!pemfile){ printf("can't open or create pemfile\n"); return 1; } // create a BIO context with base64 filter BIO* bio_base64 = BIO_new(BIO_f_base64()); // create a BIO for the pemfile BIO* bio_out = BIO_new_fp(pemfile,BIO_NOCLOSE); // write the header BIO_write(bio_out,argv[3],strlen(argv[3])); BIO_write(bio_out,"\n",1); // combine bio_base64-&gt;bio_out : enables base64 filter bio_out = BIO_push(bio_base64,bio_out); // write the buffer BIO_write(bio_out,buff,fistat.st_size); // flush before disable base64 filter BIO_flush(bio_out); // uncombine bio_base64 X bio_out : disables base64 filter bio_out = BIO_pop(bio_base64); // write the footer BIO_write(bio_out,argv[4],strlen(argv[4])); // flush to free the BIO resources BIO_flush(bio_out); BIO_free_all(bio_out); fclose(pemfile); } </code></pre> <p>and this example in Java:</p> <pre><code>import java.io.File; import java.io.FileInputStream; import java.io.FileOutputStream; import java.io.FileNotFoundException; import java.io.IOException; import org.apache.commons.codec.binary.Base64; //import org.apache.commons.codec.binary.Base64OutputStream; public class der2pem { public static void main(String args[]) { if(args.length &lt; 4) { System.out.println("Usage: der2pem_simple derfile pemfile \"-----BEGIN CERTIFICATE-----\" \"-----END CERTIFICATE-----\""); return; } FileOutputStream pemfile; try { // open the pemfile pemfile = new FileOutputStream(args[1]); } catch (FileNotFoundException e) { try { // try to create if not found new File(args[1]).createNewFile(); } catch (IOException e1) { System.out.println(e1.getMessage()); return; } try { // if created open it pemfile = new FileOutputStream(args[1]); } catch (FileNotFoundException e1) { e1.printStackTrace(); return; } } FileInputStream derfile; try { // open the derfile derfile = new FileInputStream(args[0]); } catch (FileNotFoundException e) { // if not found print error and get out System.out.println(e.getMessage()); try { pemfile.close(); } catch (IOException e1) { e1.printStackTrace(); } return; } try { //---- last part // write the header to pemfile pemfile.write(args[2].getBytes()); pemfile.write('\n'); // get the size of the derfile and create a buff that fits to this file int derf_size = (int) new File(args[0]).length(); byte[] buffer = new byte[derf_size]; // read from derfile and write to buffer derfile.read(buffer); // create the Base64 object for the encoding Base64 base64 = new Base64(64,"\n".getBytes()); // encode and write to pemfile pemfile.write(base64.encode(buffer)); // write the footer to pemfile pemfile.write(args[3].getBytes()); // flush to cleanup pemfile.flush(); pemfile.close(); derfile.close(); //---- last part end } catch (IOException e) { e.printStackTrace(); } } } </code></pre> <p>I tried to use a method with <code>Base64OutputStream</code> but has some unexpected results on the PEM file. If you wanna check just replace the <code>last part</code> with this:</p> <pre><code> // write the header to pemfile pemfile.write(args[2].getBytes()); pemfile.write('\n'); // get the size of the derfile and create a buff that fits to this file int derf_size = (int) new File(args[0]).length(); byte[] buffer = new byte[derf_size]; // read from derfile and write to buffer derfile.read(buffer); // create the Base64OutputStream object for the encoding Base64OutputStream b64f_pemfile = new Base64OutputStream(pemfile,true,64,"\n".getBytes()); // write to b64f_pemfile which encodes to base64 b64f_pemfile.write(buffer); // flush before write the footer b64f_pemfile.flush(); // write the footer pemfile.write('\n'); pemfile.write(args[3].getBytes()); // flush to cleanup pemfile.flush(); b64f_pemfile.close(); pemfile.close(); derfile.close(); </code></pre> <p>I compiled it with:</p> <pre><code>javac der2pem.java -classpath "$CLASSPATH:/usr/share/java/commons-codec.jar" </code></pre> <p>and ran with:</p> <pre><code>java -classpath "$CLASSPATH:/usr/share/java/commons-codec.jar" der2pem test.der tttttt "-----BEGIN CERTIFICATE-----" "-----END CERTIFICATE-----" </code></pre> <p>something similar you have to do in your system.</p>
    singulars
    1. This table or related slice is empty.
    1. POconvert rsa private key from .DER format to .PEM format programatically using opensl
      singulars
      1. PTQuestion
    1. PTAnswer
    1. USmemosdp
    1. USmemosdp
    plurals
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. POconvert rsa private key from .DER format to .PEM format programatically using opensl
      singulars
      1. PTQuestion
    1. This table or related slice is empty.
    1. VO
      singulars
      1. PO
      1. This table or related slice is empty.
      1. VTUpMod
    2. VO
      singulars
      1. PO
      1. This table or related slice is empty.
      1. VTModeratorReview
    3. VO
      singulars
      1. PO
      1. This table or related slice is empty.
      1. VTUpMod
    1. CO@owlstead i don't expected a downvote because i did it with parsing ... but any way i'll spent some more time to write an example without parsing
      singulars
      1. PO
      1. USmemosdp
    2. CO@owlstead and the other if you don't know for example if is a private key how to write to the file the right header and footer? you have to parse it
      singulars
      1. PO
      1. USmemosdp
    3. COWell, normally you look at the file extension or mime type, or - more commonly I guess - you just know (e.g. from a configuration file). It is a pretty weird use case if you are going to scan folders looking for a private key. On unix systems you may use the `file` command as well. Oh, now it is a +1, I figured an edit would do it.
      singulars
      1. PO
      1. USMaarten Bodewes
 

Querying!

 
Guidance
A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload