Use Certificate and Private Key PEM Files to Create a Digital Signature

Download Chilkat C/C++ Libraries for VC++ 9.0 / Win32

Download Chilkat C/C++ Libraries for VC++ 8.0 / Win32

Download Chilkat C/C++ 64-bit Libraries for VC++ 8.0 / x64

Download Chilkat Visual Studio 2005 C/C++ Libs for Windows Mobile, Pocket PC, SmartPhone, WinCE

Download Chilkat C/C++ Libraries for VC++ 7.0 / Win32

Download Chilkat C/C++ Libraries for VC++ 6.0 / Win32

Download Chilkat C/C++ Libraries for VC++ 6.0, Win 95/98/NT4 Compatible

Demonstrates how to load a digital certificate from a PEM file, load it's corresponding private key from a PEM file, save the private key to a key container (if necessary), link the certificate to the key container, and use it to create a digital signature.

#include <CkCert.h>
#include <CkPrivateKey.h>
#include <CkKeyContainer.h>
#include <CkCrypt2.h>

void ChilkatSample(void)
    {
    CkCert cert;

    //  Load the cert from a PEM file;
    cert.LoadFromFile("cert.pem");

    CkPrivateKey pkey;

    //  Load the private key from an RSA PEM file:
    pkey.LoadPemFile("pkey_rsa.pem");

    bool success;

    //  If the "chilkat" key container does not already exist,
    //  we'll create it and import the private key:
    CkKeyContainer container;
    bool needPrivateKeyAccess;
    needPrivateKeyAccess = true;
    bool machineKeyset;
    machineKeyset = false;
    if (container.OpenContainer("chilkat",needPrivateKeyAccess,machineKeyset) == false) {

        //  We need to create the key container and import
        //  the private key:
        success = container.CreateContainer("chilkat",machineKeyset);
        if (success == true) {
            bool isKeyExchangePair;
            isKeyExchangePair = false;
            success = container.ImportPrivateKey(pkey,isKeyExchangePair);
            if (success == false) {
                printf("Failed to import private key into key container\n");
                return;
            }

        }
        else {
            printf("Failed to create key container\n");
            return;
        }

    }

    //  At this point, the key container contains the private key.
    //  Link the certificate with the key container:
    bool bForSigning;
    bForSigning = true;
    success = cert.LinkPrivateKey("chilkat",machineKeyset,bForSigning);
    if (success == false) {
        printf("Failed to link certificate with key container\n");
        return;
    }

    //  Use Chilkat Crypt (a non-freeware component) to create
    //  a digital signature using the certificate w/ private key:
    CkCrypt2 crypt;

    //  Any string argument automatically begins the 30-day trial.

    success = crypt.UnlockComponent("30-day trial");
    if (success != true) {
        printf("Crypt component unlock failed\n");
        return;
    }

    //  Tell the crypt component to use this cert.
    crypt.SetSigningCert(cert);

    //  We can sign any type of file, creating a .p7s as output:
    success = crypt.CreateP7S("license.rtf","license.p7s");
    if (success == false) {
        printf("%s\n",crypt.lastErrorText());
        delete cert;
        return;
    }

    printf("%s\n",crypt.lastErrorText());

    //  Verify and restore the original file:
    crypt.SetVerifyCert(cert);

    success = crypt.VerifyP7S("license.rtf","license.p7s");
    if (success == false) {
        printf("%s\n",crypt.lastErrorText());
        delete cert;
        return;
    }

    printf("Success!\n");

    //  The Chilkat Certificate, Certificate Store, Private Key,
    //  Public Key, and Key Container classes / objects are freeware.

    //  They are used by and included with the Chilkat Email,
    //  Crypt, S/MIME, and other commercial Chilkat components.

    }