![]() |
Chilkat HOME Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi DLL Go Java Node.js Objective-C PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(VBScript) Verify Opaque Signature and Retrieve Signing CertificatesDemonstrates how to verify a PCKS7 opaque digital signature (signed data), extract the original file/data, and then extract the certificate(s) that were used to sign.
Dim fso, outFile Set fso = CreateObject("Scripting.FileSystemObject") 'Create a Unicode (utf-16) output text file. Set outFile = fso.CreateTextFile("output.txt", True, True) ' This example assumes the Chilkat API to have been previously unlocked. ' See Global Unlock Sample for sample code. ' For versions of Chilkat < 10.0.0, use CreateObject("Chilkat_9_5_0.Crypt2") set crypt = CreateObject("Chilkat.Crypt2") ' Verify a PKCS7 signed-data (opaque signature) file and extract the original content to a file. success = crypt.VerifyP7M("qa_data/p7m/opaqueSig.p7","qa_output/originalData.dat") If (success <> 1) Then outFile.WriteLine(crypt.LastErrorText) WScript.Quit End If ' Alternatively, we can do it in memory... ' For versions of Chilkat < 10.0.0, use CreateObject("Chilkat_9_5_0.BinData") set binData = CreateObject("Chilkat.BinData") success = binData.LoadFile("qa_data/p7m/opaqueSig.p7") ' Your app should check for success, but we'll skip the check for brevity.. ' If verified, the signature is unwrapped and binData is replaced with the original data that was signed. success = crypt.OpaqueVerifyBd(binData) If (success <> 1) Then outFile.WriteLine(crypt.LastErrorText) WScript.Quit End If ' For our testing, we signed some text, so we can get it from the binData.. outFile.WriteLine("Original Data:") outFile.WriteLine(binData.GetString("utf-8")) ' After any method call that verifies a signature, the crypt object will contain the certificate(s) ' that were used for signing (assuming the X.509 certs were available in the signature, which is typically the case). ' Get the number of signing certificates, and get each.. numCerts = crypt.NumSignerCerts i = 0 Do While i < numCerts ' cert is a Chilkat.Cert Set cert = crypt.GetSignerCert(i) outFile.WriteLine(cert.SubjectDN) i = i + 1 Loop ' We could also get the complete certificate chain of each signer cert, ' assuming the certs in the chain of authentication to the trusted root ' are available on the system, or provided to Chilkat by some other means ' (such as via the XmlCertVault class, the TrustedRoots class, etc.) i = 0 Do While i < numCerts ' certChain is a Chilkat.CertChain Set certChain = crypt.GetSignerCertChain(i) ' You can examine the various properties and methods for certChain in the online ' reference documentation... i = i + 1 Loop outFile.Close |
© 2000-2025 Chilkat Software, Inc. All Rights Reserved.