convert .key to .pem

Question

I need to encrypt with private key and I'm attempting to do so with the following code:

$content = file_get_contents("file.key");

$plaintext = "14d9df79-8c4c-4380-8444-d31e1fd3f78a";

openssl_private_encrypt($plaintext, $encrypted, $content);

$transfer = base64_encode($encrypted);

echo "text encrypted is:" . $transfer;  //encrypted string

I'm getting the error: openssl_private_encrypt(): key param is not a valid private key in

Do I have to do something to the key file? It is binary.

Answer 1

Solved I just use the

openssl pkcs8 .....

command

hope this is useful to someone else

Answer 2

First, try converting a key into PEM format using openssl:

openssl rsa -inform der -in file.key -outform pem -out filekey.pem

Next, extract the private key from the PEM file using openssl_pkey_get_private

$key = openssl_pkey_get_private(file_get_contents("filekey.pem"));

$plaintext = "14d9df79-8c4c-4380-8444-d31e1fd3f78a";

openssl_private_encrypt($plaintext, $encrypted, $key);

$transfer = base64_encode($encrypted);

echo "text encrypted is:" . $transfer;  //encrypted string

Answer 3

I don't know of any x509 file format using a .key extension. There's pem (which is the format you need to load into openssl), DER (files may have .der, .crt or .cer extension) or PKCS#12 (.pfx .p12). It's probably DER or PKCS#12:

 openssl pkcs12 -in file.key -out file.pem -nodes

...converts a PKCS#12 to file.pem,

openssl x509 -inform der -in file.key -out file.pem

...converts a DER file. They'll report an error if it's the wrong file format. OTOH you could just use the 'file' command to find out the file type. (this is assuming that you've got a Posix / Linux system - you didn't say).

Or you could just ask the person who gave it to you what format it is.