C
C
Decrypt S/MIME and Verify S/MIME Signatures
See more MIME Examples
_LANGUAGE_ example to decrypt S/MIME and verify S/MIME signatures. The S/MIME is unwrapped to get the original MIME prior to signing/encrypting.Chilkat C Downloads
#include <C_CkMime.h>
#include <C_CkCert.h>
void ChilkatSample(void)
{
BOOL success;
HCkMime mime;
BOOL isEncrypted;
BOOL isSigned;
HCkCert signerCert;
HCkCert decryptCert;
success = FALSE;
// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
mime = CkMime_Create();
// Load an S/MIME message from a file:
success = CkMime_LoadMimeFile(mime,"signedMime.txt");
if (success == FALSE) {
printf("%s\n",CkMime_lastErrorText(mime));
CkMime_Dispose(mime);
return;
}
// The ContainsEncryptedParts/ContainsSignedParts methods
// can be called to determine if the MIME is encrypted and/or signed:
isEncrypted = CkMime_ContainsEncryptedParts(mime);
isSigned = CkMime_ContainsSignedParts(mime);
// We don't want the "unwrap extras". You'll see what those
// are in a few moments...
CkMime_putUnwrapExtras(mime,FALSE);
// To verify the signature, call UnwrapSecurity. This will
// verify the signature(s) and decrypt the S/MIME and restore
// the MIME to the unsigned/unencrypted state.
// The results of what was found are present in the MIME object's
// properties, as well as extra header fields that are added
// to the unwrapped MIME.
success = CkMime_UnwrapSecurity(mime);
if (success != TRUE) {
// UnwrapSecurity returns TRUE if all signatures were
// verified and all parts decrypted.
printf("%s\n",CkMime_lastErrorText(mime));
CkMime_Dispose(mime);
return;
}
// The mime.UnwrapExtras property controls whether or not
// these additional fields are added to the unwrapped MIME:
//
// X-NumPartsSigned: 1
// X-SignaturesValid: yes
// X-NumPartsEncrypted: 1
// X-Decrypted: no
//
// The X-NumPartsSigned/X-SignaturesValid headers are added
// if the MIME was signed.
//
// The X-NumPartsEncrypted/X-Decrypted headers are added
// if the MIME was encrypted.
//
// If the MIME was signed, get the certificate used for signing.
if (isSigned == TRUE) {
signerCert = CkCert_Create();
// The NumSignerCerts property indicates how many certificates
// were used for signing. This example will assume the value is 1.
// To get the 1st signer cert, call LastSignerCert with an index of 0:
success = CkMime_LastSignerCert(mime,0,signerCert);
if (success == TRUE) {
printf("**** Signer Cert: %s\n",CkCert_subjectCN(signerCert));
}
}
// If the MIME was encrypted, get the certificate used for decryption
if (isEncrypted == TRUE) {
// The NumDecryptCerts property indicates how many certificates
// were used for decrypting. This example will assume the value is 1.
// To get the 1st decrypt cert, call LastDecryptCert with an index of 0:
decryptCert = CkCert_Create();
success = CkMime_LastDecryptCert(mime,0,decryptCert);
if (success == TRUE) {
printf("**** Decrypt Cert: %s\n",CkCert_subjectCN(decryptCert));
}
}
// Display the unwrapped MIME:
printf("%s\n",CkMime_getMime(mime));
// Save the unwrapped MIME to a file:
success = CkMime_SaveMime(mime,"unwrappedMime.txt");
CkMime_Dispose(mime);
CkCert_Dispose(signerCert);
CkCert_Dispose(decryptCert);
}