public GXDeviceCipheringSettings(string address, string title, string keysPath, string certificatesPath)
{
InitializeComponent();
_address = address;
_title = title;
_keysPath = keysPath;
_certificatesPath = certificatesPath;
_privateKeys = new GXPkcs8Collection();
_certifications = new GXx509CertificateCollection();
_privateKeys.Import(keysPath);
_certifications.Import(certificatesPath);
SigningCb.Items.AddRange(new object[] { Signing.None, Signing.OnePassDiffieHellman, Signing.StaticUnifiedModel, Signing.GeneralSigning });
SecuritySuiteCb.Items.AddRange(new object[] { SecuritySuite.Suite0, SecuritySuite.Suite1, SecuritySuite.Suite2 });
SecurityCB.Items.AddRange(new object[] { Security.None, Security.Authentication,
Security.Encryption, Security.AuthenticationEncryption });
SecurityCB.SelectedIndex = 0;
SecuritySuiteCb.SelectedIndex = 0;
ShowKeys();
_checkSystemTitle = true;
updateUI = true;
}
public GXKeyForm(IGXUpdater updater, string address, string keyFolder, string certificateFolder, string title, SecuritySuite securitySuite, byte[] systemTitle)
{
InitializeComponent();
_updater = updater;
_address = address;
_certificateFolder = certificateFolder;
_systemTitle = systemTitle;
privateKeys = new GXPkcs8Collection();
KeyFolder = keyFolder;
Title = title;
foreach (string p in Directory.GetFiles(keyFolder))
{
string ext = Path.GetExtension(p);
if (string.Compare(ext, ".pem", true) == 0 || string.Compare(ext, ".cer", true) == 0)
{
try
{
GXPkcs8 cert = GXPkcs8.Load(p);
AddKey(cert, p);
}
catch (Exception)
{
Debug.WriteLine("Failed to open " + p);
}
}
}
if (_systemTitle != null)
{
string path = Path.Combine(KeyFolder, "D" + GXDLMSTranslator.ToHex(_systemTitle, false)) + ".pem";
//Generate private key for digital signature.
GXPkcs8 digitalSignature = new GXPkcs8(GXEcdsa.GenerateKeyPair(securitySuite == SecuritySuite.Suite1 ? Ecc.P256 : Ecc.P384));
digitalSignature.Save(path);
AddKey(digitalSignature, path);
path = Path.Combine(KeyFolder, "A" + GXDLMSTranslator.ToHex(_systemTitle, false)) + ".pem";
//Generate private key for Key agreement.
GXPkcs8 keyAgreement = new GXPkcs8(GXEcdsa.GenerateKeyPair(Ecc.P256));
keyAgreement.Save(path);
AddKey(keyAgreement, path);
//Get CRS.
KeyValuePair <GXPublicKey, GXPrivateKey> kp = new KeyValuePair <GXPublicKey, GXPrivateKey>(digitalSignature.PublicKey, digitalSignature.PrivateKey);
//Generate certificate request and ask new x509Certificate.
//Note! There is a limit how many request you can do in a day.
List <GXCertificateRequest> certifications = new List <GXCertificateRequest>();
GXCertificateRequest it = new GXCertificateRequest();
it.Certificate = GXPkcs10.CreateCertificateSigningRequest(kp, GXAsn1Converter.SystemTitleToSubject(_systemTitle));
it.CertificateType = CertificateType.DigitalSignature;
certifications.Add(it);
it = new GXCertificateRequest();
it.Certificate = GXPkcs10.CreateCertificateSigningRequest(kp, GXAsn1Converter.SystemTitleToSubject(_systemTitle));
it.CertificateType = CertificateType.KeyAgreement;
certifications.Add(it);
GXx509Certificate[] certificates = GXPkcs10.GetCertificate(address, certifications);
foreach (GXx509Certificate cert in certificates)
{
if (cert.KeyUsage == KeyUsage.DigitalSignature)
{
path = "D" + GXDLMSTranslator.ToHex(_systemTitle, false);
}
else if (cert.KeyUsage == KeyUsage.KeyAgreement)
{
path = "A" + GXDLMSTranslator.ToHex(_systemTitle, false);
}
else if (cert.KeyUsage == (KeyUsage.KeyAgreement | KeyUsage.DigitalSignature))
{
path = "T" + GXDLMSTranslator.ToHex(_systemTitle, false);
}
else
{
path = "O" + GXDLMSTranslator.ToHex(_systemTitle, false);
}
path = Path.Combine(_certificateFolder, path) + ".pem";
cert.Save(path);
}
}
}
