Sample code for 30+ languages & platforms
Pascal (Lazarus/Delphi)

Sign Mexico Pedimento

See more Misc Examples

Add a signature to a Mexico pedimento file.

Chilkat Pascal (Lazarus/Delphi) Downloads

Pascal (Lazarus/Delphi)
program ChilkatDemo;

// Demonstrates using the Chilkat Pascal wrapper via the C bridge DLL.
// Builds as a console application under Lazarus (FPC) or Delphi.

{$IFDEF FPC}
  {$MODE DELPHI}
{$ENDIF}
{$APPTYPE CONSOLE}

uses
  {$IFDEF UNIX}
  cthreads,
  {$ENDIF}
  SysUtils,
  CkDllLoader,
  Chilkat.Asn,
  Chilkat.Cert,
  Chilkat.StringBuilder,
  Chilkat.BinData,
  Chilkat.PrivateKey,
  Chilkat.Xml,
  Chilkat.Rsa;

// ---------------------------------------------------------------------------

procedure RunDemo;
var
  success: Boolean;
  bCRLF: Boolean;
  sb: TStringBuilder;
  md5_base64: string;
  privKey: TPrivateKey;
  xml: TXml;
  asn: TAsn;
  rsa: TRsa;
  bdSig: TBinData;
  cert: TCert;
  serialHex: string;
  sbSerial: TStringBuilder;
  numReplaced: Integer;

begin
  success := False;

  //  This example requires the Chilkat API to have been previously unlocked.
  //  See Global Unlock Sample for sample code.

  //  This is the contents before signing:

  //  500|1|3621|4199800|400||
  //  601|3621|4199800|400|IN|1||EKU9003173C9|EKU9003173C9FRNN09|1||
  //  507|4199800|IM|2006-7888">
  //  507|4199800|MS|2">
  //  800|4199800|1">
  //  801|M3621037.222|1|5|011|

  //  This is the contents after signing

  //  500|1|3621|4199800|400||
  //  601|3621|4199800|400|IN|1||EKU9003173C9|EKU9003173C9FRNN09|1||
  //  507|4199800|IM|2006-7888">
  //  507|4199800|MS|2">
  //  800|4199800|1|fhP2Ker54D2+3+UZch23F0E72 .... 9qNSPIuAqpj524qLZbbA==|30001000000500003416|
  //  801|M3621037.222|1|5|011|

  //  First create the text to be signed.
  bCRLF := True;
  sb := TStringBuilder.Create;
  //  Use CRLF line endings.
  sb.AppendLine('500|1|3621|4199800|400||',bCRLF);
  sb.AppendLine('601|3621|4199800|400|IN|1||EKU9003173C9|EKU9003173C9FRNN09|1||',bCRLF);
  sb.AppendLine('507|4199800|IM|2006-7888">',bCRLF);
  sb.AppendLine('507|4199800|MS|2">',bCRLF);

  //  Generate the MD5 hash of what we have so far..
  md5_base64 := sb.GetHash('md5','base64','utf-8');
  WriteLn('MD5 hash = ' + md5_base64);

  //  Complete the original file.
  //  After signing, we'll update the BASE64_SIGNATURE and CERT_SERIAL
  sb.AppendLine('800|4199800|1|BASE64_SIGNATURE|CERT_SERIAL|',bCRLF);
  sb.AppendLine('801|M3621037.222|1|5|011|',bCRLF);

  //  We're going to sign the MD5 hash using the private key.
  privKey := TPrivateKey.Create;
  success := privKey.LoadAnyFormatFile('qa_data/certs/mexico_test/Certificados_de_Prueba/Certificados_Pruebas/Personas Morales/EKU9003173C9_20230517223532/CSD_EKU9003173C9_20230517223903/CSD_Sucursal_1_EKU9003173C9_20230517_223850.key','12345678a');
  if (success = False) then
    begin
      WriteLn(privKey.LastErrorText);
      Exit;
    end;

  //  Generate the ASN.1 to be signed.

  //  <sequence>
  //      <sequence>
  //          <oid>1.2.840.113549.2.5</oid>
  //          <null/>
  //      </sequence>
  //      <octets>SwxHfaJhG+N3pPqay6UzVA==</octets>
  //  </sequence>

  xml := TXml.Create;
  xml.Tag := 'sequence';
  xml.UpdateChildContent('sequence|oid','1.2.840.113549.2.5');
  xml.UpdateChildContent('sequence|null','');
  xml.UpdateChildContent('octets',md5_base64);

  asn := TAsn.Create;
  asn.LoadAsnXml(xml.GetXml());
  WriteLn('ASN.1 = ' + asn.GetEncodedDer('base64'));

  //  Sign with the private key.
  rsa := TRsa.Create;
  success := rsa.UsePrivateKey(privKey);
  if (success = False) then
    begin
      WriteLn(rsa.LastErrorText);
      Exit;
    end;

  //  Create the opaque signature.
  bdSig := TBinData.Create;
  bdSig.AppendEncoded(asn.GetEncodedDer('base64'),'base64');
  success := rsa.SignRawBd(bdSig);
  if (success = False) then
    begin
      WriteLn(rsa.LastErrorText);
      Exit;
    end;

  //  bd now contains the opaque signature, which embeds the ASN.1, which contains the MD5 hash.
  //  We're going to add this line:
  //  800|4199800|1|BASE64_SIGNATURE|CERT_SERIAL_NUM|

  cert := TCert.Create;
  success := cert.LoadFromFile('qa_data/certs/mexico_test/Certificados_de_Prueba/Certificados_Pruebas/Personas Morales/EKU9003173C9_20230517223532/CSD_EKU9003173C9_20230517223903/CSD_Sucursal_1_EKU9003173C9_20230517_223850.cer');
  if (success = False) then
    begin
      WriteLn(cert.LastErrorText);
      Exit;
    end;

  serialHex := cert.SerialNumber;
  //  The serial in hex form looks like this:   3330303031303030303030353030303033343136
  //  Decode to us-ascii.
  sbSerial := TStringBuilder.Create;
  sbSerial.DecodeAndAppend(serialHex,'hex','us-ascii');
  WriteLn('serial number in us-ascii: ' + sbSerial.GetAsString());

  numReplaced := sb.Replace('CERT_SERIAL',sbSerial.GetAsString());
  numReplaced := sb.Replace('BASE64_SIGNATURE',bdSig.GetEncoded('base64'));

  WriteLn('------------------------------------');
  WriteLn('Result:');
  WriteLn(sb.GetAsString());


  sb.Free;
  privKey.Free;
  xml.Free;
  asn.Free;
  rsa.Free;
  bdSig.Free;
  cert.Free;
  sbSerial.Free;

end;

// ---------------------------------------------------------------------------

begin

  try
    RunDemo;
  except
    on E: Exception do
      WriteLn('Unhandled exception: ', E.ClassName, ': ', E.Message);
  end;

  WriteLn;
  {$IFDEF MSWINDOWS}
  WriteLn('Press Enter to exit...');
  ReadLn;
  {$ENDIF}
end.