ホーム › Security.Cryptography › CertVerifySubjectCertificateContext

CertVerifySubjectCertificateContext

関数

サブジェクト証明書を発行者証明書で検証する。

DLLCRYPT32.dll呼出規約winapiSetLastErrorあり対応OSWindows XP 以降

シグネチャ

// CRYPT32.dll
#include <windows.h>

BOOL CertVerifySubjectCertificateContext(
    const CERT_CONTEXT* pSubject,
    const CERT_CONTEXT* pIssuer,   // optional
    DWORD* pdwFlags
);

パラメーター

名前	型	方向
pSubject	CERT_CONTEXT*	in
pIssuer	CERT_CONTEXT*	inoptional
pdwFlags	DWORD*	inout

戻り値の型: BOOL

各言語での呼び出し定義

// CRYPT32.dll
#include <windows.h>

BOOL CertVerifySubjectCertificateContext(
    const CERT_CONTEXT* pSubject,
    const CERT_CONTEXT* pIssuer,   // optional
    DWORD* pdwFlags
);

[return: MarshalAs(UnmanagedType.Bool)]
[DllImport("CRYPT32.dll", SetLastError = true, ExactSpelling = true)]
static extern bool CertVerifySubjectCertificateContext(
    IntPtr pSubject,   // CERT_CONTEXT*
    IntPtr pIssuer,   // CERT_CONTEXT* optional
    ref uint pdwFlags   // DWORD* in/out
);

<DllImport("CRYPT32.dll", SetLastError:=True, ExactSpelling:=True)>
Public Shared Function CertVerifySubjectCertificateContext(
    pSubject As IntPtr,   ' CERT_CONTEXT*
    pIssuer As IntPtr,   ' CERT_CONTEXT* optional
    ByRef pdwFlags As UInteger   ' DWORD* in/out
) As Boolean
End Function

' pSubject : CERT_CONTEXT*
' pIssuer : CERT_CONTEXT* optional
' pdwFlags : DWORD* in/out
Declare PtrSafe Function CertVerifySubjectCertificateContext Lib "crypt32" ( _
    ByVal pSubject As LongPtr, _
    ByVal pIssuer As LongPtr, _
    ByRef pdwFlags As Long) As Long
' VBA7前提(PtrSafe)。32bit Office では LongPtr→Long。Integer=16bit / Long=32bit / LongLong=64bit。

import ctypes
from ctypes import wintypes

CertVerifySubjectCertificateContext = ctypes.windll.crypt32.CertVerifySubjectCertificateContext
CertVerifySubjectCertificateContext.restype = wintypes.BOOL
CertVerifySubjectCertificateContext.argtypes = [
    ctypes.c_void_p,  # pSubject : CERT_CONTEXT*
    ctypes.c_void_p,  # pIssuer : CERT_CONTEXT* optional
    ctypes.POINTER(wintypes.DWORD),  # pdwFlags : DWORD* in/out
]
# GetLastError: use ctypes.GetLastError() (or ctypes.WinDLL(use_last_error=True))

require 'fiddle'
require 'fiddle/import'

lib = Fiddle.dlopen('CRYPT32.dll')
CertVerifySubjectCertificateContext = Fiddle::Function.new(
  lib['CertVerifySubjectCertificateContext'],
  [
    Fiddle::TYPE_VOIDP,  # pSubject : CERT_CONTEXT*
    Fiddle::TYPE_VOIDP,  # pIssuer : CERT_CONTEXT* optional
    Fiddle::TYPE_VOIDP,  # pdwFlags : DWORD* in/out
  ],
  Fiddle::TYPE_INT)

#[link(name = "crypt32")]
extern "system" {
    fn CertVerifySubjectCertificateContext(
        pSubject: *const CERT_CONTEXT,  // CERT_CONTEXT*
        pIssuer: *const CERT_CONTEXT,  // CERT_CONTEXT* optional
        pdwFlags: *mut u32  // DWORD* in/out
    ) -> i32;
}
// crates: windows-sys provides ready-made bindings for this API.

$sig = @"
[return: MarshalAs(UnmanagedType.Bool)]
[DllImport("CRYPT32.dll", SetLastError = true)]
public static extern bool CertVerifySubjectCertificateContext(IntPtr pSubject, IntPtr pIssuer, ref uint pdwFlags);
"@
$api = Add-Type -MemberDefinition $sig -Name 'CRYPT32_CertVerifySubjectCertificateContext' -Namespace Win32 -PassThru
# $api::CertVerifySubjectCertificateContext(pSubject, pIssuer, pdwFlags)

#uselib "CRYPT32.dll"
#func global CertVerifySubjectCertificateContext "CertVerifySubjectCertificateContext" sptr, sptr, sptr
; CertVerifySubjectCertificateContext varptr(pSubject), varptr(pIssuer), varptr(pdwFlags)   ; 戻り値は stat
; pSubject : CERT_CONTEXT* -> "sptr"
; pIssuer : CERT_CONTEXT* optional -> "sptr"
; pdwFlags : DWORD* in/out -> "sptr"
; ※HSP3.7は #func のため戻り値はシステム変数 stat に格納されます。

出力引数:

#uselib "CRYPT32.dll"
#cfunc global CertVerifySubjectCertificateContext "CertVerifySubjectCertificateContext" var, var, var
; res = CertVerifySubjectCertificateContext(pSubject, pIssuer, pdwFlags)
; pSubject : CERT_CONTEXT* -> "var"
; pIssuer : CERT_CONTEXT* optional -> "var"
; pdwFlags : DWORD* in/out -> "var"
; ※出力/バッファ引数は var 方式(変数を直接渡す)。varptr 方式にも切替可。#uselib "CRYPT32.dll"
#cfunc global CertVerifySubjectCertificateContext "CertVerifySubjectCertificateContext" sptr, sptr, sptr
; res = CertVerifySubjectCertificateContext(varptr(pSubject), varptr(pIssuer), varptr(pdwFlags))
; pSubject : CERT_CONTEXT* -> "sptr"
; pIssuer : CERT_CONTEXT* optional -> "sptr"
; pdwFlags : DWORD* in/out -> "sptr"
; ※出力/バッファ引数はポインタ方式(token=sptr / 呼び出しは varptr(変数))。

出力引数:

; BOOL CertVerifySubjectCertificateContext(CERT_CONTEXT* pSubject, CERT_CONTEXT* pIssuer, DWORD* pdwFlags)
#uselib "CRYPT32.dll"
#cfunc global CertVerifySubjectCertificateContext "CertVerifySubjectCertificateContext" var, var, var
; res = CertVerifySubjectCertificateContext(pSubject, pIssuer, pdwFlags)
; pSubject : CERT_CONTEXT* -> "var"
; pIssuer : CERT_CONTEXT* optional -> "var"
; pdwFlags : DWORD* in/out -> "var"
; ※出力/バッファ引数は var 方式(変数を直接渡す)。varptr 方式にも切替可。; BOOL CertVerifySubjectCertificateContext(CERT_CONTEXT* pSubject, CERT_CONTEXT* pIssuer, DWORD* pdwFlags)
#uselib "CRYPT32.dll"
#cfunc global CertVerifySubjectCertificateContext "CertVerifySubjectCertificateContext" intptr, intptr, intptr
; res = CertVerifySubjectCertificateContext(varptr(pSubject), varptr(pIssuer), varptr(pdwFlags))
; pSubject : CERT_CONTEXT* -> "intptr"
; pIssuer : CERT_CONTEXT* optional -> "intptr"
; pdwFlags : DWORD* in/out -> "intptr"
; ※出力/バッファ引数はポインタ方式(token=intptr / 呼び出しは varptr(変数))。

import (
	"golang.org/x/sys/windows"
	"unsafe"
)

var (
	crypt32 = windows.NewLazySystemDLL("CRYPT32.dll")
	procCertVerifySubjectCertificateContext = crypt32.NewProc("CertVerifySubjectCertificateContext")
)

// pSubject (CERT_CONTEXT*), pIssuer (CERT_CONTEXT* optional), pdwFlags (DWORD* in/out)
r1, _, err := procCertVerifySubjectCertificateContext.Call(
	uintptr(pSubject),
	uintptr(pIssuer),
	uintptr(pdwFlags),
)
_ = err  // syscall.Errno (valid when the call sets last-error)
_ = r1   // BOOL

function CertVerifySubjectCertificateContext(
  pSubject: Pointer;   // CERT_CONTEXT*
  pIssuer: Pointer;   // CERT_CONTEXT* optional
  pdwFlags: Pointer   // DWORD* in/out
): BOOL; stdcall;
  external 'CRYPT32.dll' name 'CertVerifySubjectCertificateContext';

result := DllCall("CRYPT32\CertVerifySubjectCertificateContext"
    , "Ptr", pSubject   ; CERT_CONTEXT*
    , "Ptr", pIssuer   ; CERT_CONTEXT* optional
    , "Ptr", pdwFlags   ; DWORD* in/out
    , "Int")   ; return: BOOL

●CertVerifySubjectCertificateContext(pSubject, pIssuer, pdwFlags) = DLL("CRYPT32.dll", "bool CertVerifySubjectCertificateContext(void*, void*, void*)")
# 呼び出し: CertVerifySubjectCertificateContext(pSubject, pIssuer, pdwFlags)
# pSubject : CERT_CONTEXT* -> "void*"
# pIssuer : CERT_CONTEXT* optional -> "void*"
# pdwFlags : DWORD* in/out -> "void*"
# なでしこ1は32bit・ANSI(Shift_JIS)。文字列=char*(ANSI)、ポインタ/ハンドル=void*(4byte)。