Sample code for 30+ languages & platforms
C

Decrypt S/MIME and Verify S/MIME Signatures

See more MIME Examples

_LANGUAGE_ example to decrypt S/MIME and verify S/MIME signatures. The S/MIME is unwrapped to get the original MIME prior to signing/encrypting.

Chilkat C Downloads

C
#include <C_CkMime.h>
#include <C_CkCert.h>

void ChilkatSample(void)
    {
    BOOL success;
    HCkMime mime;
    BOOL isEncrypted;
    BOOL isSigned;
    HCkCert signerCert;
    HCkCert decryptCert;

    success = FALSE;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    mime = CkMime_Create();

    // Load an S/MIME message from a file:
    success = CkMime_LoadMimeFile(mime,"signedMime.txt");
    if (success == FALSE) {
        printf("%s\n",CkMime_lastErrorText(mime));
        CkMime_Dispose(mime);
        return;
    }

    // The ContainsEncryptedParts/ContainsSignedParts methods
    // can be called to determine if the MIME is encrypted and/or signed:
    isEncrypted = CkMime_ContainsEncryptedParts(mime);
    isSigned = CkMime_ContainsSignedParts(mime);

    // We don't want the "unwrap extras".  You'll see what those
    // are in a few moments...
    CkMime_putUnwrapExtras(mime,FALSE);

    // To verify the signature, call UnwrapSecurity.  This will
    // verify the signature(s) and decrypt the S/MIME and restore
    // the MIME to the unsigned/unencrypted state.
    // The results of what was found are present in the MIME object's
    // properties, as well as extra header fields that are added
    // to the unwrapped MIME.
    success = CkMime_UnwrapSecurity(mime);
    if (success != TRUE) {
        // UnwrapSecurity returns TRUE if all signatures were
        // verified and all parts decrypted.
        printf("%s\n",CkMime_lastErrorText(mime));
        CkMime_Dispose(mime);
        return;
    }

    // The mime.UnwrapExtras property controls whether or not
    // these additional fields are added to the unwrapped MIME:
    // 
    // X-NumPartsSigned: 1
    // X-SignaturesValid: yes
    // X-NumPartsEncrypted: 1
    // X-Decrypted: no
    // 
    // The X-NumPartsSigned/X-SignaturesValid headers are added
    // if the MIME was signed.  
    // 
    // The X-NumPartsEncrypted/X-Decrypted headers are added
    // if the MIME was encrypted.
    // 

    // If the MIME was signed, get the certificate used for signing.
    if (isSigned == TRUE) {
        signerCert = CkCert_Create();

        // The NumSignerCerts property indicates how many certificates
        // were used for signing.  This example will assume the value is 1.
        // To get the 1st signer cert, call LastSignerCert with an index of 0:
        success = CkMime_LastSignerCert(mime,0,signerCert);
        if (success == TRUE) {
            printf("**** Signer Cert: %s\n",CkCert_subjectCN(signerCert));
        }

    }

    // If the MIME was encrypted, get the certificate used for decryption
    if (isEncrypted == TRUE) {
        // The NumDecryptCerts property indicates how many certificates
        // were used for decrypting.  This example will assume the value is 1.
        // To get the 1st decrypt cert, call LastDecryptCert with an index of 0:
        decryptCert = CkCert_Create();
        success = CkMime_LastDecryptCert(mime,0,decryptCert);
        if (success == TRUE) {
            printf("**** Decrypt Cert: %s\n",CkCert_subjectCN(decryptCert));
        }

    }

    // Display the unwrapped MIME:
    printf("%s\n",CkMime_getMime(mime));

    // Save the unwrapped MIME to a file:
    success = CkMime_SaveMime(mime,"unwrappedMime.txt");


    CkMime_Dispose(mime);
    CkCert_Dispose(signerCert);
    CkCert_Dispose(decryptCert);

    }