NCryptVerifyClaim

// ncrypt.dll
#include <windows.h>

HRESULT NCryptVerifyClaim(
    NCRYPT_KEY_HANDLE hSubjectKey,
    NCRYPT_KEY_HANDLE hAuthorityKey,   // optional
    DWORD dwClaimType,
    BCryptBufferDesc* pParameterList,   // optional
    BYTE* pbClaimBlob,
    DWORD cbClaimBlob,
    BCryptBufferDesc* pOutput,
    DWORD dwFlags
);

<DllImport("ncrypt.dll", ExactSpelling:=True)>
Public Shared Function NCryptVerifyClaim(
    hSubjectKey As UIntPtr,   ' NCRYPT_KEY_HANDLE
    hAuthorityKey As UIntPtr,   ' NCRYPT_KEY_HANDLE optional
    dwClaimType As UInteger,   ' DWORD
    pParameterList As IntPtr,   ' BCryptBufferDesc* optional
    pbClaimBlob As IntPtr,   ' BYTE*
    cbClaimBlob As UInteger,   ' DWORD
    pOutput As IntPtr,   ' BCryptBufferDesc* out
    dwFlags As UInteger   ' DWORD
) As Integer
End Function

' hSubjectKey : NCRYPT_KEY_HANDLE
' hAuthorityKey : NCRYPT_KEY_HANDLE optional
' dwClaimType : DWORD
' pParameterList : BCryptBufferDesc* optional
' pbClaimBlob : BYTE*
' cbClaimBlob : DWORD
' pOutput : BCryptBufferDesc* out
' dwFlags : DWORD
Declare PtrSafe Function NCryptVerifyClaim Lib "ncrypt" ( _
    ByVal hSubjectKey As LongPtr, _
    ByVal hAuthorityKey As LongPtr, _
    ByVal dwClaimType As Long, _
    ByVal pParameterList As LongPtr, _
    ByVal pbClaimBlob As LongPtr, _
    ByVal cbClaimBlob As Long, _
    ByVal pOutput As LongPtr, _
    ByVal dwFlags As Long) As Long
' VBA7前提(PtrSafe)。32bit Office では LongPtr→Long。Integer=16bit / Long=32bit / LongLong=64bit。

import ctypes
from ctypes import wintypes

NCryptVerifyClaim = ctypes.windll.ncrypt.NCryptVerifyClaim
NCryptVerifyClaim.restype = ctypes.c_int
NCryptVerifyClaim.argtypes = [
    ctypes.c_size_t,  # hSubjectKey : NCRYPT_KEY_HANDLE
    ctypes.c_size_t,  # hAuthorityKey : NCRYPT_KEY_HANDLE optional
    wintypes.DWORD,  # dwClaimType : DWORD
    ctypes.c_void_p,  # pParameterList : BCryptBufferDesc* optional
    ctypes.POINTER(ctypes.c_ubyte),  # pbClaimBlob : BYTE*
    wintypes.DWORD,  # cbClaimBlob : DWORD
    ctypes.c_void_p,  # pOutput : BCryptBufferDesc* out
    wintypes.DWORD,  # dwFlags : DWORD
]

require 'fiddle'
require 'fiddle/import'

lib = Fiddle.dlopen('ncrypt.dll')
NCryptVerifyClaim = Fiddle::Function.new(
  lib['NCryptVerifyClaim'],
  [
    Fiddle::TYPE_UINTPTR_T,  # hSubjectKey : NCRYPT_KEY_HANDLE
    Fiddle::TYPE_UINTPTR_T,  # hAuthorityKey : NCRYPT_KEY_HANDLE optional
    -Fiddle::TYPE_INT,  # dwClaimType : DWORD
    Fiddle::TYPE_VOIDP,  # pParameterList : BCryptBufferDesc* optional
    Fiddle::TYPE_VOIDP,  # pbClaimBlob : BYTE*
    -Fiddle::TYPE_INT,  # cbClaimBlob : DWORD
    Fiddle::TYPE_VOIDP,  # pOutput : BCryptBufferDesc* out
    -Fiddle::TYPE_INT,  # dwFlags : DWORD
  ],
  Fiddle::TYPE_INT)

#[link(name = "ncrypt")]
extern "system" {
    fn NCryptVerifyClaim(
        hSubjectKey: usize,  // NCRYPT_KEY_HANDLE
        hAuthorityKey: usize,  // NCRYPT_KEY_HANDLE optional
        dwClaimType: u32,  // DWORD
        pParameterList: *mut BCryptBufferDesc,  // BCryptBufferDesc* optional
        pbClaimBlob: *mut u8,  // BYTE*
        cbClaimBlob: u32,  // DWORD
        pOutput: *mut BCryptBufferDesc,  // BCryptBufferDesc* out
        dwFlags: u32  // DWORD
    ) -> i32;
}
// crates: windows-sys provides ready-made bindings for this API.

$sig = @"
[DllImport("ncrypt.dll")]
public static extern int NCryptVerifyClaim(UIntPtr hSubjectKey, UIntPtr hAuthorityKey, uint dwClaimType, IntPtr pParameterList, IntPtr pbClaimBlob, uint cbClaimBlob, IntPtr pOutput, uint dwFlags);
"@
$api = Add-Type -MemberDefinition $sig -Name 'ncrypt_NCryptVerifyClaim' -Namespace Win32 -PassThru
# $api::NCryptVerifyClaim(hSubjectKey, hAuthorityKey, dwClaimType, pParameterList, pbClaimBlob, cbClaimBlob, pOutput, dwFlags)

#uselib "ncrypt.dll"
#func global NCryptVerifyClaim "NCryptVerifyClaim" sptr, sptr, sptr, sptr, sptr, sptr, sptr, sptr
; NCryptVerifyClaim hSubjectKey, hAuthorityKey, dwClaimType, varptr(pParameterList), varptr(pbClaimBlob), cbClaimBlob, varptr(pOutput), dwFlags   ; 戻り値は stat
; hSubjectKey : NCRYPT_KEY_HANDLE -> "sptr"
; hAuthorityKey : NCRYPT_KEY_HANDLE optional -> "sptr"
; dwClaimType : DWORD -> "sptr"
; pParameterList : BCryptBufferDesc* optional -> "sptr"
; pbClaimBlob : BYTE* -> "sptr"
; cbClaimBlob : DWORD -> "sptr"
; pOutput : BCryptBufferDesc* out -> "sptr"
; dwFlags : DWORD -> "sptr"
; ※HSP3.7は #func のため戻り値はシステム変数 stat に格納されます。

#uselib "ncrypt.dll"
#cfunc global NCryptVerifyClaim "NCryptVerifyClaim" sptr, sptr, int, var, var, int, var, int
; res = NCryptVerifyClaim(hSubjectKey, hAuthorityKey, dwClaimType, pParameterList, pbClaimBlob, cbClaimBlob, pOutput, dwFlags)
; hSubjectKey : NCRYPT_KEY_HANDLE -> "sptr"
; hAuthorityKey : NCRYPT_KEY_HANDLE optional -> "sptr"
; dwClaimType : DWORD -> "int"
; pParameterList : BCryptBufferDesc* optional -> "var"
; pbClaimBlob : BYTE* -> "var"
; cbClaimBlob : DWORD -> "int"
; pOutput : BCryptBufferDesc* out -> "var"
; dwFlags : DWORD -> "int"
; ※出力/バッファ引数は var 方式(変数を直接渡す)。varptr 方式にも切替可。

; HRESULT NCryptVerifyClaim(NCRYPT_KEY_HANDLE hSubjectKey, NCRYPT_KEY_HANDLE hAuthorityKey, DWORD dwClaimType, BCryptBufferDesc* pParameterList, BYTE* pbClaimBlob, DWORD cbClaimBlob, BCryptBufferDesc* pOutput, DWORD dwFlags)
#uselib "ncrypt.dll"
#cfunc global NCryptVerifyClaim "NCryptVerifyClaim" intptr, intptr, int, var, var, int, var, int
; res = NCryptVerifyClaim(hSubjectKey, hAuthorityKey, dwClaimType, pParameterList, pbClaimBlob, cbClaimBlob, pOutput, dwFlags)
; hSubjectKey : NCRYPT_KEY_HANDLE -> "intptr"
; hAuthorityKey : NCRYPT_KEY_HANDLE optional -> "intptr"
; dwClaimType : DWORD -> "int"
; pParameterList : BCryptBufferDesc* optional -> "var"
; pbClaimBlob : BYTE* -> "var"
; cbClaimBlob : DWORD -> "int"
; pOutput : BCryptBufferDesc* out -> "var"
; dwFlags : DWORD -> "int"
; ※出力/バッファ引数は var 方式(変数を直接渡す)。varptr 方式にも切替可。

import (
	"golang.org/x/sys/windows"
	"unsafe"
)

var (
	ncrypt = windows.NewLazySystemDLL("ncrypt.dll")
	procNCryptVerifyClaim = ncrypt.NewProc("NCryptVerifyClaim")
)

// hSubjectKey (NCRYPT_KEY_HANDLE), hAuthorityKey (NCRYPT_KEY_HANDLE optional), dwClaimType (DWORD), pParameterList (BCryptBufferDesc* optional), pbClaimBlob (BYTE*), cbClaimBlob (DWORD), pOutput (BCryptBufferDesc* out), dwFlags (DWORD)
r1, _, err := procNCryptVerifyClaim.Call(
	uintptr(hSubjectKey),
	uintptr(hAuthorityKey),
	uintptr(dwClaimType),
	uintptr(pParameterList),
	uintptr(pbClaimBlob),
	uintptr(cbClaimBlob),
	uintptr(pOutput),
	uintptr(dwFlags),
)
_ = err  // syscall.Errno (valid when the call sets last-error)
_ = r1   // HRESULT

function NCryptVerifyClaim(
  hSubjectKey: NativeUInt;   // NCRYPT_KEY_HANDLE
  hAuthorityKey: NativeUInt;   // NCRYPT_KEY_HANDLE optional
  dwClaimType: DWORD;   // DWORD
  pParameterList: Pointer;   // BCryptBufferDesc* optional
  pbClaimBlob: Pointer;   // BYTE*
  cbClaimBlob: DWORD;   // DWORD
  pOutput: Pointer;   // BCryptBufferDesc* out
  dwFlags: DWORD   // DWORD
): Integer; stdcall;
  external 'ncrypt.dll' name 'NCryptVerifyClaim';

result := DllCall("ncrypt\NCryptVerifyClaim"
    , "UPtr", hSubjectKey   ; NCRYPT_KEY_HANDLE
    , "UPtr", hAuthorityKey   ; NCRYPT_KEY_HANDLE optional
    , "UInt", dwClaimType   ; DWORD
    , "Ptr", pParameterList   ; BCryptBufferDesc* optional
    , "Ptr", pbClaimBlob   ; BYTE*
    , "UInt", cbClaimBlob   ; DWORD
    , "Ptr", pOutput   ; BCryptBufferDesc* out
    , "UInt", dwFlags   ; DWORD
    , "Int")   ; return: HRESULT

●NCryptVerifyClaim(hSubjectKey, hAuthorityKey, dwClaimType, pParameterList, pbClaimBlob, cbClaimBlob, pOutput, dwFlags) = DLL("ncrypt.dll", "int NCryptVerifyClaim(int, int, dword, void*, void*, dword, void*, dword)")
# 呼び出し: NCryptVerifyClaim(hSubjectKey, hAuthorityKey, dwClaimType, pParameterList, pbClaimBlob, cbClaimBlob, pOutput, dwFlags)
# hSubjectKey : NCRYPT_KEY_HANDLE -> "int"
# hAuthorityKey : NCRYPT_KEY_HANDLE optional -> "int"
# dwClaimType : DWORD -> "dword"
# pParameterList : BCryptBufferDesc* optional -> "void*"
# pbClaimBlob : BYTE* -> "void*"
# cbClaimBlob : DWORD -> "dword"
# pOutput : BCryptBufferDesc* out -> "void*"
# dwFlags : DWORD -> "dword"
# なでしこ1は32bit・ANSI(Shift_JIS)。文字列=char*(ANSI)、ポインタ/ハンドル=void*(4byte)。