(Lianja) Duplicate OpensSSL to Create Signature using Cert and Key Files

This example duplicates the following:

openssl smime –sign -in something.xml -out something.der -signer mycert.crt -inkey cert.key -outform der –nodetach

Note: Although "smime" is the OpenSSL command, it's not actually producing S/MIME. The arguments "-outform der -binary" indicates that the output is binary DER (i.e. the PKCS7 binary signature). The input can be any type of file: XML, PDF, JPG, ... *anything*...

Chilkat Lianja Extension Download Chilkat Lianja Extension

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

loCrypt = createobject("CkCrypt2")

// Load the cert and private key from separate files.
loCert = createobject("CkCert")
llSuccess = loCert.LoadFromFile("myCert.crt")
if (llSuccess <> .T.) then
    ? loCert.LastErrorText
    release loCrypt
    release loCert
    return
endif

loBd = createobject("CkBinData")
llSuccess = loBd.LoadFile("cert.key")
loPrivkey = createobject("CkPrivateKey")
// Load from any format private key.
// If the file does not need a password, the 2nd arg is ignored.
llSuccess = loPrivkey.LoadAnyFormat(loBd,"password_if_needed")
if (llSuccess <> .T.) then
    ? loPrivkey.LastErrorText
    release loCrypt
    release loCert
    release loBd
    release loPrivkey
    return
endif

llSuccess = loCrypt.SetSigningCert2(loCert,loPrivkey)
if (llSuccess <> .T.) then
    ? loCrypt.LastErrorText
    release loCrypt
    release loCert
    release loBd
    release loPrivkey
    return
endif

// Create the opaque signature (PKCS7 binary DER that contains both the signature and original file data).
llSuccess = loCrypt.CreateP7M("qa_data/infile.anything","qa_output/outfile.der")
if (llSuccess <> .T.) then
    ? loCrypt.LastErrorText
    release loCrypt
    release loCert
    release loBd
    release loPrivkey
    return
endif

? "Success."


release loCrypt
release loCert
release loBd
release loPrivkey