|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Unicode C) Verify a CAdES-BES Signature and Examine Signature ContentsDemonstrates how to validate a .p7m (.p7s) signature and examine the contents of the signature.
#include <C_CkCrypt2W.h> #include <C_CkJsonObjectW.h> #include <C_CkDtObjW.h> void ChilkatSample(void) { HCkCrypt2W crypt; const wchar_t *outputFile; const wchar_t *inFile; BOOL success; HCkJsonObjectW json; HCkDtObjW authAttrSigningTimeUtctime; const wchar_t *issuerCN; const wchar_t *serial; const wchar_t *strVal; const wchar_t *certSubjectKeyIdentifier; const wchar_t *certDigestAlgOid; const wchar_t *certDigestAlgName; const wchar_t *signingAlgOid; const wchar_t *signingAlgName; const wchar_t *authAttrContentTypeName; const wchar_t *authAttrContentTypeOid; const wchar_t *authAttrSigningTimeName; const wchar_t *authAttrMessageDigestName; const wchar_t *authAttrMessageDigestDigest; const wchar_t *authAttrSigningCertificateV2Name; const wchar_t *authAttrSigningCertificateV2Der; int i; int count_i; // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. crypt = CkCrypt2W_Create(); outputFile = L"qa_output/original.xml"; inFile = L"qa_data/p7m/fattura_signature.xml.p7m"; // Verify the signature and extract the contained file, which in this case is XML. success = CkCrypt2W_VerifyP7M(crypt,inFile,outputFile); if (success == FALSE) { wprintf(L"%s\n",CkCrypt2W_lastErrorText(crypt)); CkCrypt2W_Dispose(crypt); return; } wprintf(L"Signature validated.\n"); // Now let's examine the information about the signature. json = CkCrypt2W_LastJsonData(crypt); if (CkCrypt2W_getLastMethodSuccess(crypt) == FALSE) { // This should never be the case... wprintf(L"No information available.\n"); CkCrypt2W_Dispose(crypt); return; } CkJsonObjectW_putEmitCompact(json,FALSE); wprintf(L"%s\n",CkJsonObjectW_emit(json)); // Here's an example of the information about the signature: // { // "pkcs7": { // "verify": { // "certs": [ // { // "issuerCN": "Xyz EU Qualified Certificates CA G1", // "serial": "99A28A51AC389999" // } // ], // "useConstructedOctets": true, // "digestAlgorithms": [ // "sha256" // ], // "signerInfo": [ // { // "cert": { // "subjectKeyIdentifier": "5VM4x8AWnXf07yzbXuLtbb0U3yY=", // "digestAlgOid": "2.16.840.1.101.3.4.2.1", // "digestAlgName": "SHA256" // }, // "signingAlgOid": "1.2.840.113549.1.1.11", // "signingAlgName": "RSA-SHA256-PKCSV-1_5", // "authAttr": { // "1.2.840.113549.1.9.3": { // "name": "contentType", // "oid": "1.2.840.113549.1.7.1" // }, // "1.2.840.113549.1.9.5": { // "name": "signingTime", // "utctime": "190901152340Z" // }, // "1.2.840.113549.1.9.4": { // "name": "messageDigest", // "digest": "y+gd/zAQK33A//HInhaZba7w1fUJleV9AHbP1Ntx6U0=" // }, // "1.2.840.113549.1.9.16.2.47": { // "name": "signingCertificateV2", // "der": "MIH4MI..w4vv0=" // } // } // } // ] // } // } // } // Use this online tool to generate parsing code from sample JSON: // Generate Parsing Code from JSON // Chilkat functions returning "const char *" return a pointer to temporary internal memory owned and managed by Chilkat. // See this example explaining how this memory should be used: const char * functions. authAttrSigningTimeUtctime = CkDtObjW_Create(); i = 0; count_i = CkJsonObjectW_SizeOfArray(json,L"pkcs7.verify.certs"); while (i < count_i) { CkJsonObjectW_putI(json,i); issuerCN = CkJsonObjectW_stringOf(json,L"pkcs7.verify.certs[i].issuerCN"); serial = CkJsonObjectW_stringOf(json,L"pkcs7.verify.certs[i].serial"); i = i + 1; } i = 0; count_i = CkJsonObjectW_SizeOfArray(json,L"pkcs7.verify.digestAlgorithms"); while (i < count_i) { CkJsonObjectW_putI(json,i); strVal = CkJsonObjectW_stringOf(json,L"pkcs7.verify.digestAlgorithms[i]"); i = i + 1; } i = 0; count_i = CkJsonObjectW_SizeOfArray(json,L"pkcs7.verify.signerInfo"); while (i < count_i) { CkJsonObjectW_putI(json,i); certSubjectKeyIdentifier = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].cert.subjectKeyIdentifier"); certDigestAlgOid = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].cert.digestAlgOid"); certDigestAlgName = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].cert.digestAlgName"); signingAlgOid = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].signingAlgOid"); signingAlgName = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].signingAlgName"); authAttrContentTypeName = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].authAttr.\"1.2.840.113549.1.9.3\".name"); authAttrContentTypeOid = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].authAttr.\"1.2.840.113549.1.9.3\".oid"); authAttrSigningTimeName = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].authAttr.\"1.2.840.113549.1.9.5\".name"); CkJsonObjectW_DtOf(json,L"pkcs7.verify.signerInfo[i].authAttr.\"1.2.840.113549.1.9.5\".utctime",FALSE,authAttrSigningTimeUtctime); authAttrMessageDigestName = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].authAttr.\"1.2.840.113549.1.9.4\".name"); authAttrMessageDigestDigest = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].authAttr.\"1.2.840.113549.1.9.4\".digest"); authAttrSigningCertificateV2Name = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].authAttr.\"1.2.840.113549.1.9.16.2.47\".name"); authAttrSigningCertificateV2Der = CkJsonObjectW_stringOf(json,L"pkcs7.verify.signerInfo[i].authAttr.\"1.2.840.113549.1.9.16.2.47\".der"); i = i + 1; } CkJsonObjectW_Dispose(json); CkCrypt2W_Dispose(crypt); CkDtObjW_Dispose(authAttrSigningTimeUtctime); } |
|||||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.