(C) SII XML Digital Signature

Example for SII XML Digital Signature.

Chilkat C/C++ Library Downloads
MS Visual C/C++ Linux/CentOS C/C++ Alpine Linux C/C++ MAC OS X C/C++	armhf/aarch64 C/C++ C++ Builder iOS C/C++ Android C/C++	Solaris C/C++ MinGW C/C++

#include <C_CkXml.h>
#include <C_CkXmlDSigGen.h>
#include <C_CkCert.h>
#include <C_CkStringBuilder.h>
#include <C_CkXmlDSig.h>

void ChilkatSample(void)
    {
    BOOL success;
    HCkXml xmlToSign;
    HCkXmlDSigGen gen;
    HCkXml xml1;
    HCkCert cert;
    HCkStringBuilder sbXml;
    HCkXmlDSig verifier;
    int numSigs;
    int verifyIdx;
    BOOL verified;

    success = TRUE;

    // Load the XML to be signed.
    xmlToSign = CkXml_Create();
    success = CkXml_LoadXmlFile(xmlToSign,"c:/aaworkarea/eduardo/sii_unsigned.xml");
    if (success == FALSE) {
        printf("%s\n",CkXml_lastErrorText(xmlToSign));
        CkXml_Dispose(xmlToSign);
        return;
    }

    // The sample XML to be signed looks like this:

    // <?xml version="1.0" encoding="ISO-8859-1"?>
    // <EnvioDTE xmlns="http://www.sii.cl/SiiDte" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.sii.cl/SiiDte EnvioDTE_v10.xsd" version="1.0">
    // <SetDTE ID="SetDocF0T33_20240425_170512">
    //  <Caratula version="1.0">
    //   <RutEmisor>99999999-4</RutEmisor>
    //   <RutEnvia>12345678-6</RutEnvia>
    //   <RutReceptor>888888000-K</RutReceptor>
    //   <FchResol>2014-08-22</FchResol>
    //   <NroResol>80</NroResol>
    //   <TmstFirmaEnv>2024-04-25T17:05:13</TmstFirmaEnv>
    //   <SubTotDTE>
    //    <TpoDTE>33</TpoDTE>
    //    <NroDTE>1</NroDTE>
    //   </SubTotDTE>
    //  </Caratula>
    // <DTE version="1.0">
    // <Documento ID="F555T55">
    // ...
    // </Documento>
    // </EnvioDTE>

    gen = CkXmlDSigGen_Create();

    CkXmlDSigGen_putSigLocation(gen,"EnvioDTE|SetDTE|DTE");
    CkXmlDSigGen_putSigLocationMod(gen,0);
    CkXmlDSigGen_putSigNamespacePrefix(gen,"");
    CkXmlDSigGen_putSigNamespaceUri(gen,"http://www.w3.org/2000/09/xmldsig#");
    CkXmlDSigGen_putSignedInfoCanonAlg(gen,"C14N");
    CkXmlDSigGen_putSignedInfoDigestMethod(gen,"sha1");

    // -------- Reference 1 --------
    xml1 = CkXml_Create();
    CkXml_putTag(xml1,"Transforms");
    CkXml_UpdateAttrAt(xml1,"Transform",TRUE,"Algorithm","http://www.w3.org/TR/2001/REC-xml-c14n-20010315");

    CkXmlDSigGen_AddSameDocRef2(gen,"F511T33","sha1",xml1,"");

    // Provide a certificate + private key. (PFX password is test123)
    cert = CkCert_Create();
    success = CkCert_LoadPfxFile(cert,"qa_data/pfx/cert_test123.pfx","test123");
    if (success != TRUE) {
        printf("%s\n",CkCert_lastErrorText(cert));
        CkXml_Dispose(xmlToSign);
        CkXmlDSigGen_Dispose(gen);
        CkXml_Dispose(xml1);
        CkCert_Dispose(cert);
        return;
    }

    CkXmlDSigGen_SetX509Cert(gen,cert,TRUE);

    CkXmlDSigGen_putKeyInfoType(gen,"X509Data+KeyValue");
    CkXmlDSigGen_putX509Type(gen,"Certificate");

    // Load XML to be signed...
    sbXml = CkStringBuilder_Create();
    CkXml_GetXmlSb(xmlToSign,sbXml);

    CkXmlDSigGen_putBehaviors(gen,"IndentedSignature");

    // Sign the XML...
    success = CkXmlDSigGen_CreateXmlDSigSb(gen,sbXml);
    if (success != TRUE) {
        printf("%s\n",CkXmlDSigGen_lastErrorText(gen));
        CkXml_Dispose(xmlToSign);
        CkXmlDSigGen_Dispose(gen);
        CkXml_Dispose(xml1);
        CkCert_Dispose(cert);
        CkStringBuilder_Dispose(sbXml);
        return;
    }

    // -----------------------------------------------

    // Save the signed XML to a file.
    success = CkStringBuilder_WriteFile(sbXml,"c:/temp/qa_output/signedXml.xml","utf-8",FALSE);

    printf("%s\n",CkStringBuilder_getAsString(sbXml));

    // ----------------------------------------
    // Verify the signatures we just produced...
    verifier = CkXmlDSig_Create();
    success = CkXmlDSig_LoadSignatureSb(verifier,sbXml);
    if (success != TRUE) {
        printf("%s\n",CkXmlDSig_lastErrorText(verifier));
        CkXml_Dispose(xmlToSign);
        CkXmlDSigGen_Dispose(gen);
        CkXml_Dispose(xml1);
        CkCert_Dispose(cert);
        CkStringBuilder_Dispose(sbXml);
        CkXmlDSig_Dispose(verifier);
        return;
    }

    numSigs = CkXmlDSig_getNumSignatures(verifier);
    verifyIdx = 0;
    while (verifyIdx < numSigs) {
        CkXmlDSig_putSelector(verifier,verifyIdx);
        verified = CkXmlDSig_VerifySignature(verifier,TRUE);
        if (verified != TRUE) {
            printf("%s\n",CkXmlDSig_lastErrorText(verifier));
            CkXml_Dispose(xmlToSign);
            CkXmlDSigGen_Dispose(gen);
            CkXml_Dispose(xml1);
            CkCert_Dispose(cert);
            CkStringBuilder_Dispose(sbXml);
            CkXmlDSig_Dispose(verifier);
            return;
        }

        verifyIdx = verifyIdx + 1;
    }

    printf("All signatures were successfully verified.\n");


    CkXml_Dispose(xmlToSign);
    CkXmlDSigGen_Dispose(gen);
    CkXml_Dispose(xml1);
    CkCert_Dispose(cert);
    CkStringBuilder_Dispose(sbXml);
    CkXmlDSig_Dispose(verifier);

    }