ホーム › Security.Cryptography › CertVerifyCertificateChainPolicy
CertVerifyCertificateChainPolicy
関数証明書チェーンが指定ポリシーに適合するか検証する。
シグネチャ
// CRYPT32.dll
#include <windows.h>
BOOL CertVerifyCertificateChainPolicy(
LPCSTR pszPolicyOID,
CERT_CHAIN_CONTEXT* pChainContext,
CERT_CHAIN_POLICY_PARA* pPolicyPara,
CERT_CHAIN_POLICY_STATUS* pPolicyStatus
);パラメーター
| 名前 | 型 | 方向 |
|---|---|---|
| pszPolicyOID | LPCSTR | in |
| pChainContext | CERT_CHAIN_CONTEXT* | in |
| pPolicyPara | CERT_CHAIN_POLICY_PARA* | in |
| pPolicyStatus | CERT_CHAIN_POLICY_STATUS* | inout |
戻り値の型: BOOL
各言語での呼び出し定義
// CRYPT32.dll
#include <windows.h>
BOOL CertVerifyCertificateChainPolicy(
LPCSTR pszPolicyOID,
CERT_CHAIN_CONTEXT* pChainContext,
CERT_CHAIN_POLICY_PARA* pPolicyPara,
CERT_CHAIN_POLICY_STATUS* pPolicyStatus
);[return: MarshalAs(UnmanagedType.Bool)]
[DllImport("CRYPT32.dll", ExactSpelling = true)]
static extern bool CertVerifyCertificateChainPolicy(
[MarshalAs(UnmanagedType.LPStr)] string pszPolicyOID, // LPCSTR
IntPtr pChainContext, // CERT_CHAIN_CONTEXT*
IntPtr pPolicyPara, // CERT_CHAIN_POLICY_PARA*
IntPtr pPolicyStatus // CERT_CHAIN_POLICY_STATUS* in/out
);<DllImport("CRYPT32.dll", ExactSpelling:=True)>
Public Shared Function CertVerifyCertificateChainPolicy(
<MarshalAs(UnmanagedType.LPStr)> pszPolicyOID As String, ' LPCSTR
pChainContext As IntPtr, ' CERT_CHAIN_CONTEXT*
pPolicyPara As IntPtr, ' CERT_CHAIN_POLICY_PARA*
pPolicyStatus As IntPtr ' CERT_CHAIN_POLICY_STATUS* in/out
) As Boolean
End Function' pszPolicyOID : LPCSTR
' pChainContext : CERT_CHAIN_CONTEXT*
' pPolicyPara : CERT_CHAIN_POLICY_PARA*
' pPolicyStatus : CERT_CHAIN_POLICY_STATUS* in/out
Declare PtrSafe Function CertVerifyCertificateChainPolicy Lib "crypt32" ( _
ByVal pszPolicyOID As String, _
ByVal pChainContext As LongPtr, _
ByVal pPolicyPara As LongPtr, _
ByVal pPolicyStatus As LongPtr) As Long
' VBA7前提(PtrSafe)。32bit Office では LongPtr→Long。Integer=16bit / Long=32bit / LongLong=64bit。import ctypes
from ctypes import wintypes
CertVerifyCertificateChainPolicy = ctypes.windll.crypt32.CertVerifyCertificateChainPolicy
CertVerifyCertificateChainPolicy.restype = wintypes.BOOL
CertVerifyCertificateChainPolicy.argtypes = [
wintypes.LPCSTR, # pszPolicyOID : LPCSTR
ctypes.c_void_p, # pChainContext : CERT_CHAIN_CONTEXT*
ctypes.c_void_p, # pPolicyPara : CERT_CHAIN_POLICY_PARA*
ctypes.c_void_p, # pPolicyStatus : CERT_CHAIN_POLICY_STATUS* in/out
]require 'fiddle'
require 'fiddle/import'
lib = Fiddle.dlopen('CRYPT32.dll')
CertVerifyCertificateChainPolicy = Fiddle::Function.new(
lib['CertVerifyCertificateChainPolicy'],
[
Fiddle::TYPE_VOIDP, # pszPolicyOID : LPCSTR
Fiddle::TYPE_VOIDP, # pChainContext : CERT_CHAIN_CONTEXT*
Fiddle::TYPE_VOIDP, # pPolicyPara : CERT_CHAIN_POLICY_PARA*
Fiddle::TYPE_VOIDP, # pPolicyStatus : CERT_CHAIN_POLICY_STATUS* in/out
],
Fiddle::TYPE_INT)#[link(name = "crypt32")]
extern "system" {
fn CertVerifyCertificateChainPolicy(
pszPolicyOID: *const u8, // LPCSTR
pChainContext: *mut CERT_CHAIN_CONTEXT, // CERT_CHAIN_CONTEXT*
pPolicyPara: *mut CERT_CHAIN_POLICY_PARA, // CERT_CHAIN_POLICY_PARA*
pPolicyStatus: *mut CERT_CHAIN_POLICY_STATUS // CERT_CHAIN_POLICY_STATUS* in/out
) -> i32;
}
// crates: windows-sys provides ready-made bindings for this API.$sig = @"
[return: MarshalAs(UnmanagedType.Bool)]
[DllImport("CRYPT32.dll")]
public static extern bool CertVerifyCertificateChainPolicy([MarshalAs(UnmanagedType.LPStr)] string pszPolicyOID, IntPtr pChainContext, IntPtr pPolicyPara, IntPtr pPolicyStatus);
"@
$api = Add-Type -MemberDefinition $sig -Name 'CRYPT32_CertVerifyCertificateChainPolicy' -Namespace Win32 -PassThru
# $api::CertVerifyCertificateChainPolicy(pszPolicyOID, pChainContext, pPolicyPara, pPolicyStatus)#uselib "CRYPT32.dll"
#func global CertVerifyCertificateChainPolicy "CertVerifyCertificateChainPolicy" sptr, sptr, sptr, sptr
; CertVerifyCertificateChainPolicy pszPolicyOID, varptr(pChainContext), varptr(pPolicyPara), varptr(pPolicyStatus) ; 戻り値は stat
; pszPolicyOID : LPCSTR -> "sptr"
; pChainContext : CERT_CHAIN_CONTEXT* -> "sptr"
; pPolicyPara : CERT_CHAIN_POLICY_PARA* -> "sptr"
; pPolicyStatus : CERT_CHAIN_POLICY_STATUS* in/out -> "sptr"
; ※HSP3.7は #func のため戻り値はシステム変数 stat に格納されます。出力引数:
#uselib "CRYPT32.dll" #cfunc global CertVerifyCertificateChainPolicy "CertVerifyCertificateChainPolicy" str, var, var, var ; res = CertVerifyCertificateChainPolicy(pszPolicyOID, pChainContext, pPolicyPara, pPolicyStatus) ; pszPolicyOID : LPCSTR -> "str" ; pChainContext : CERT_CHAIN_CONTEXT* -> "var" ; pPolicyPara : CERT_CHAIN_POLICY_PARA* -> "var" ; pPolicyStatus : CERT_CHAIN_POLICY_STATUS* in/out -> "var" ; ※出力/バッファ引数は var 方式(変数を直接渡す)。varptr 方式にも切替可。#uselib "CRYPT32.dll" #cfunc global CertVerifyCertificateChainPolicy "CertVerifyCertificateChainPolicy" str, sptr, sptr, sptr ; res = CertVerifyCertificateChainPolicy(pszPolicyOID, varptr(pChainContext), varptr(pPolicyPara), varptr(pPolicyStatus)) ; pszPolicyOID : LPCSTR -> "str" ; pChainContext : CERT_CHAIN_CONTEXT* -> "sptr" ; pPolicyPara : CERT_CHAIN_POLICY_PARA* -> "sptr" ; pPolicyStatus : CERT_CHAIN_POLICY_STATUS* in/out -> "sptr" ; ※出力/バッファ引数はポインタ方式(token=sptr / 呼び出しは varptr(変数))。
出力引数:
; BOOL CertVerifyCertificateChainPolicy(LPCSTR pszPolicyOID, CERT_CHAIN_CONTEXT* pChainContext, CERT_CHAIN_POLICY_PARA* pPolicyPara, CERT_CHAIN_POLICY_STATUS* pPolicyStatus) #uselib "CRYPT32.dll" #cfunc global CertVerifyCertificateChainPolicy "CertVerifyCertificateChainPolicy" str, var, var, var ; res = CertVerifyCertificateChainPolicy(pszPolicyOID, pChainContext, pPolicyPara, pPolicyStatus) ; pszPolicyOID : LPCSTR -> "str" ; pChainContext : CERT_CHAIN_CONTEXT* -> "var" ; pPolicyPara : CERT_CHAIN_POLICY_PARA* -> "var" ; pPolicyStatus : CERT_CHAIN_POLICY_STATUS* in/out -> "var" ; ※出力/バッファ引数は var 方式(変数を直接渡す)。varptr 方式にも切替可。; BOOL CertVerifyCertificateChainPolicy(LPCSTR pszPolicyOID, CERT_CHAIN_CONTEXT* pChainContext, CERT_CHAIN_POLICY_PARA* pPolicyPara, CERT_CHAIN_POLICY_STATUS* pPolicyStatus) #uselib "CRYPT32.dll" #cfunc global CertVerifyCertificateChainPolicy "CertVerifyCertificateChainPolicy" str, intptr, intptr, intptr ; res = CertVerifyCertificateChainPolicy(pszPolicyOID, varptr(pChainContext), varptr(pPolicyPara), varptr(pPolicyStatus)) ; pszPolicyOID : LPCSTR -> "str" ; pChainContext : CERT_CHAIN_CONTEXT* -> "intptr" ; pPolicyPara : CERT_CHAIN_POLICY_PARA* -> "intptr" ; pPolicyStatus : CERT_CHAIN_POLICY_STATUS* in/out -> "intptr" ; ※出力/バッファ引数はポインタ方式(token=intptr / 呼び出しは varptr(変数))。
import (
"golang.org/x/sys/windows"
"unsafe"
)
var (
crypt32 = windows.NewLazySystemDLL("CRYPT32.dll")
procCertVerifyCertificateChainPolicy = crypt32.NewProc("CertVerifyCertificateChainPolicy")
)
// pszPolicyOID (LPCSTR), pChainContext (CERT_CHAIN_CONTEXT*), pPolicyPara (CERT_CHAIN_POLICY_PARA*), pPolicyStatus (CERT_CHAIN_POLICY_STATUS* in/out)
r1, _, err := procCertVerifyCertificateChainPolicy.Call(
uintptr(unsafe.Pointer(windows.BytePtrFromString(pszPolicyOID))),
uintptr(pChainContext),
uintptr(pPolicyPara),
uintptr(pPolicyStatus),
)
_ = err // syscall.Errno (valid when the call sets last-error)
_ = r1 // BOOLfunction CertVerifyCertificateChainPolicy(
pszPolicyOID: PAnsiChar; // LPCSTR
pChainContext: Pointer; // CERT_CHAIN_CONTEXT*
pPolicyPara: Pointer; // CERT_CHAIN_POLICY_PARA*
pPolicyStatus: Pointer // CERT_CHAIN_POLICY_STATUS* in/out
): BOOL; stdcall;
external 'CRYPT32.dll' name 'CertVerifyCertificateChainPolicy';result := DllCall("CRYPT32\CertVerifyCertificateChainPolicy"
, "AStr", pszPolicyOID ; LPCSTR
, "Ptr", pChainContext ; CERT_CHAIN_CONTEXT*
, "Ptr", pPolicyPara ; CERT_CHAIN_POLICY_PARA*
, "Ptr", pPolicyStatus ; CERT_CHAIN_POLICY_STATUS* in/out
, "Int") ; return: BOOL●CertVerifyCertificateChainPolicy(pszPolicyOID, pChainContext, pPolicyPara, pPolicyStatus) = DLL("CRYPT32.dll", "bool CertVerifyCertificateChainPolicy(char*, void*, void*, void*)")
# 呼び出し: CertVerifyCertificateChainPolicy(pszPolicyOID, pChainContext, pPolicyPara, pPolicyStatus)
# pszPolicyOID : LPCSTR -> "char*"
# pChainContext : CERT_CHAIN_CONTEXT* -> "void*"
# pPolicyPara : CERT_CHAIN_POLICY_PARA* -> "void*"
# pPolicyStatus : CERT_CHAIN_POLICY_STATUS* in/out -> "void*"
# なでしこ1は32bit・ANSI(Shift_JIS)。文字列=char*(ANSI)、ポインタ/ハンドル=void*(4byte)。