Win32 API 日本語リファレンス
ホームSecurity.Cryptography › SslVerifySignature

SslVerifySignature

関数
SSL公開鍵でハッシュの署名を検証する。
DLLncrypt.dll呼出規約winapi

シグネチャ

// ncrypt.dll
#include <windows.h>

HRESULT SslVerifySignature(
    NCRYPT_PROV_HANDLE hSslProvider,
    NCRYPT_KEY_HANDLE hPublicKey,
    BYTE* pbHashValue,
    DWORD cbHashValue,
    BYTE* pbSignature,
    DWORD cbSignature,
    DWORD dwFlags
);

パラメーター

名前方向説明
hSslProviderNCRYPT_PROV_HANDLEinSchannel SSLプロバイダのハンドル。
hPublicKeyNCRYPT_KEY_HANDLEin署名検証に使用する公開鍵のハンドル。
pbHashValueBYTE*in検証対象のハッシュ値へのポインタ。
cbHashValueDWORDinpbHashValueのバイト数。
pbSignatureBYTE*in検証する署名データへのポインタ。
cbSignatureDWORDinpbSignatureのバイト数。
dwFlagsDWORDin動作を制御するフラグ。

戻り値の型: HRESULT

各言語での呼び出し定義

// ncrypt.dll
#include <windows.h>

HRESULT SslVerifySignature(
    NCRYPT_PROV_HANDLE hSslProvider,
    NCRYPT_KEY_HANDLE hPublicKey,
    BYTE* pbHashValue,
    DWORD cbHashValue,
    BYTE* pbSignature,
    DWORD cbSignature,
    DWORD dwFlags
);
[DllImport("ncrypt.dll", ExactSpelling = true)]
static extern int SslVerifySignature(
    UIntPtr hSslProvider,   // NCRYPT_PROV_HANDLE
    UIntPtr hPublicKey,   // NCRYPT_KEY_HANDLE
    IntPtr pbHashValue,   // BYTE*
    uint cbHashValue,   // DWORD
    IntPtr pbSignature,   // BYTE*
    uint cbSignature,   // DWORD
    uint dwFlags   // DWORD
);
<DllImport("ncrypt.dll", ExactSpelling:=True)>
Public Shared Function SslVerifySignature(
    hSslProvider As UIntPtr,   ' NCRYPT_PROV_HANDLE
    hPublicKey As UIntPtr,   ' NCRYPT_KEY_HANDLE
    pbHashValue As IntPtr,   ' BYTE*
    cbHashValue As UInteger,   ' DWORD
    pbSignature As IntPtr,   ' BYTE*
    cbSignature As UInteger,   ' DWORD
    dwFlags As UInteger   ' DWORD
) As Integer
End Function
' hSslProvider : NCRYPT_PROV_HANDLE
' hPublicKey : NCRYPT_KEY_HANDLE
' pbHashValue : BYTE*
' cbHashValue : DWORD
' pbSignature : BYTE*
' cbSignature : DWORD
' dwFlags : DWORD
Declare PtrSafe Function SslVerifySignature Lib "ncrypt" ( _
    ByVal hSslProvider As LongPtr, _
    ByVal hPublicKey As LongPtr, _
    ByVal pbHashValue As LongPtr, _
    ByVal cbHashValue As Long, _
    ByVal pbSignature As LongPtr, _
    ByVal cbSignature As Long, _
    ByVal dwFlags As Long) As Long
' VBA7前提(PtrSafe)。32bit Office では LongPtr→Long。Integer=16bit / Long=32bit / LongLong=64bit。
import ctypes
from ctypes import wintypes

SslVerifySignature = ctypes.windll.ncrypt.SslVerifySignature
SslVerifySignature.restype = ctypes.c_int
SslVerifySignature.argtypes = [
    ctypes.c_size_t,  # hSslProvider : NCRYPT_PROV_HANDLE
    ctypes.c_size_t,  # hPublicKey : NCRYPT_KEY_HANDLE
    ctypes.POINTER(ctypes.c_ubyte),  # pbHashValue : BYTE*
    wintypes.DWORD,  # cbHashValue : DWORD
    ctypes.POINTER(ctypes.c_ubyte),  # pbSignature : BYTE*
    wintypes.DWORD,  # cbSignature : DWORD
    wintypes.DWORD,  # dwFlags : DWORD
]
require 'fiddle'
require 'fiddle/import'

lib = Fiddle.dlopen('ncrypt.dll')
SslVerifySignature = Fiddle::Function.new(
  lib['SslVerifySignature'],
  [
    Fiddle::TYPE_UINTPTR_T,  # hSslProvider : NCRYPT_PROV_HANDLE
    Fiddle::TYPE_UINTPTR_T,  # hPublicKey : NCRYPT_KEY_HANDLE
    Fiddle::TYPE_VOIDP,  # pbHashValue : BYTE*
    -Fiddle::TYPE_INT,  # cbHashValue : DWORD
    Fiddle::TYPE_VOIDP,  # pbSignature : BYTE*
    -Fiddle::TYPE_INT,  # cbSignature : DWORD
    -Fiddle::TYPE_INT,  # dwFlags : DWORD
  ],
  Fiddle::TYPE_INT)
#[link(name = "ncrypt")]
extern "system" {
    fn SslVerifySignature(
        hSslProvider: usize,  // NCRYPT_PROV_HANDLE
        hPublicKey: usize,  // NCRYPT_KEY_HANDLE
        pbHashValue: *mut u8,  // BYTE*
        cbHashValue: u32,  // DWORD
        pbSignature: *mut u8,  // BYTE*
        cbSignature: u32,  // DWORD
        dwFlags: u32  // DWORD
    ) -> i32;
}
// crates: windows-sys provides ready-made bindings for this API.
$sig = @"
[DllImport("ncrypt.dll")]
public static extern int SslVerifySignature(UIntPtr hSslProvider, UIntPtr hPublicKey, IntPtr pbHashValue, uint cbHashValue, IntPtr pbSignature, uint cbSignature, uint dwFlags);
"@
$api = Add-Type -MemberDefinition $sig -Name 'ncrypt_SslVerifySignature' -Namespace Win32 -PassThru
# $api::SslVerifySignature(hSslProvider, hPublicKey, pbHashValue, cbHashValue, pbSignature, cbSignature, dwFlags)
#uselib "ncrypt.dll"
#func global SslVerifySignature "SslVerifySignature" sptr, sptr, sptr, sptr, sptr, sptr, sptr
; SslVerifySignature hSslProvider, hPublicKey, varptr(pbHashValue), cbHashValue, varptr(pbSignature), cbSignature, dwFlags   ; 戻り値は stat
; hSslProvider : NCRYPT_PROV_HANDLE -> "sptr"
; hPublicKey : NCRYPT_KEY_HANDLE -> "sptr"
; pbHashValue : BYTE* -> "sptr"
; cbHashValue : DWORD -> "sptr"
; pbSignature : BYTE* -> "sptr"
; cbSignature : DWORD -> "sptr"
; dwFlags : DWORD -> "sptr"
; ※HSP3.7は #func のため戻り値はシステム変数 stat に格納されます。
出力引数:
#uselib "ncrypt.dll"
#cfunc global SslVerifySignature "SslVerifySignature" sptr, sptr, var, int, var, int, int
; res = SslVerifySignature(hSslProvider, hPublicKey, pbHashValue, cbHashValue, pbSignature, cbSignature, dwFlags)
; hSslProvider : NCRYPT_PROV_HANDLE -> "sptr"
; hPublicKey : NCRYPT_KEY_HANDLE -> "sptr"
; pbHashValue : BYTE* -> "var"
; cbHashValue : DWORD -> "int"
; pbSignature : BYTE* -> "var"
; cbSignature : DWORD -> "int"
; dwFlags : DWORD -> "int"
; ※出力/バッファ引数は var 方式(変数を直接渡す)。varptr 方式にも切替可。
出力引数:
; HRESULT SslVerifySignature(NCRYPT_PROV_HANDLE hSslProvider, NCRYPT_KEY_HANDLE hPublicKey, BYTE* pbHashValue, DWORD cbHashValue, BYTE* pbSignature, DWORD cbSignature, DWORD dwFlags)
#uselib "ncrypt.dll"
#cfunc global SslVerifySignature "SslVerifySignature" intptr, intptr, var, int, var, int, int
; res = SslVerifySignature(hSslProvider, hPublicKey, pbHashValue, cbHashValue, pbSignature, cbSignature, dwFlags)
; hSslProvider : NCRYPT_PROV_HANDLE -> "intptr"
; hPublicKey : NCRYPT_KEY_HANDLE -> "intptr"
; pbHashValue : BYTE* -> "var"
; cbHashValue : DWORD -> "int"
; pbSignature : BYTE* -> "var"
; cbSignature : DWORD -> "int"
; dwFlags : DWORD -> "int"
; ※出力/バッファ引数は var 方式(変数を直接渡す)。varptr 方式にも切替可。
import (
	"golang.org/x/sys/windows"
	"unsafe"
)

var (
	ncrypt = windows.NewLazySystemDLL("ncrypt.dll")
	procSslVerifySignature = ncrypt.NewProc("SslVerifySignature")
)

// hSslProvider (NCRYPT_PROV_HANDLE), hPublicKey (NCRYPT_KEY_HANDLE), pbHashValue (BYTE*), cbHashValue (DWORD), pbSignature (BYTE*), cbSignature (DWORD), dwFlags (DWORD)
r1, _, err := procSslVerifySignature.Call(
	uintptr(hSslProvider),
	uintptr(hPublicKey),
	uintptr(pbHashValue),
	uintptr(cbHashValue),
	uintptr(pbSignature),
	uintptr(cbSignature),
	uintptr(dwFlags),
)
_ = err  // syscall.Errno (valid when the call sets last-error)
_ = r1   // HRESULT
function SslVerifySignature(
  hSslProvider: NativeUInt;   // NCRYPT_PROV_HANDLE
  hPublicKey: NativeUInt;   // NCRYPT_KEY_HANDLE
  pbHashValue: Pointer;   // BYTE*
  cbHashValue: DWORD;   // DWORD
  pbSignature: Pointer;   // BYTE*
  cbSignature: DWORD;   // DWORD
  dwFlags: DWORD   // DWORD
): Integer; stdcall;
  external 'ncrypt.dll' name 'SslVerifySignature';
result := DllCall("ncrypt\SslVerifySignature"
    , "UPtr", hSslProvider   ; NCRYPT_PROV_HANDLE
    , "UPtr", hPublicKey   ; NCRYPT_KEY_HANDLE
    , "Ptr", pbHashValue   ; BYTE*
    , "UInt", cbHashValue   ; DWORD
    , "Ptr", pbSignature   ; BYTE*
    , "UInt", cbSignature   ; DWORD
    , "UInt", dwFlags   ; DWORD
    , "Int")   ; return: HRESULT
●SslVerifySignature(hSslProvider, hPublicKey, pbHashValue, cbHashValue, pbSignature, cbSignature, dwFlags) = DLL("ncrypt.dll", "int SslVerifySignature(int, int, void*, dword, void*, dword, dword)")
# 呼び出し: SslVerifySignature(hSslProvider, hPublicKey, pbHashValue, cbHashValue, pbSignature, cbSignature, dwFlags)
# hSslProvider : NCRYPT_PROV_HANDLE -> "int"
# hPublicKey : NCRYPT_KEY_HANDLE -> "int"
# pbHashValue : BYTE* -> "void*"
# cbHashValue : DWORD -> "dword"
# pbSignature : BYTE* -> "void*"
# cbSignature : DWORD -> "dword"
# dwFlags : DWORD -> "dword"
# なでしこ1は32bit・ANSI(Shift_JIS)。文字列=char*(ANSI)、ポインタ/ハンドル=void*(4byte)。
const std = @import("std");

extern "ncrypt" fn SslVerifySignature(
    hSslProvider: usize, // NCRYPT_PROV_HANDLE
    hPublicKey: usize, // NCRYPT_KEY_HANDLE
    pbHashValue: [*c]u8, // BYTE*
    cbHashValue: u32, // DWORD
    pbSignature: [*c]u8, // BYTE*
    cbSignature: u32, // DWORD
    dwFlags: u32 // DWORD
) callconv(std.os.windows.WINAPI) i32;
proc SslVerifySignature(
    hSslProvider: uint,  # NCRYPT_PROV_HANDLE
    hPublicKey: uint,  # NCRYPT_KEY_HANDLE
    pbHashValue: ptr uint8,  # BYTE*
    cbHashValue: uint32,  # DWORD
    pbSignature: ptr uint8,  # BYTE*
    cbSignature: uint32,  # DWORD
    dwFlags: uint32  # DWORD
): int32 {.importc: "SslVerifySignature", stdcall, dynlib: "ncrypt.dll".}
pragma(lib, "ncrypt");
extern(Windows)
int SslVerifySignature(
    size_t hSslProvider,   // NCRYPT_PROV_HANDLE
    size_t hPublicKey,   // NCRYPT_KEY_HANDLE
    ubyte* pbHashValue,   // BYTE*
    uint cbHashValue,   // DWORD
    ubyte* pbSignature,   // BYTE*
    uint cbSignature,   // DWORD
    uint dwFlags   // DWORD
);
ccall((:SslVerifySignature, "ncrypt.dll"), stdcall, Int32,
      (Csize_t, Csize_t, Ptr{UInt8}, UInt32, Ptr{UInt8}, UInt32, UInt32),
      hSslProvider, hPublicKey, pbHashValue, cbHashValue, pbSignature, cbSignature, dwFlags)
# hSslProvider : NCRYPT_PROV_HANDLE -> Csize_t
# hPublicKey : NCRYPT_KEY_HANDLE -> Csize_t
# pbHashValue : BYTE* -> Ptr{UInt8}
# cbHashValue : DWORD -> UInt32
# pbSignature : BYTE* -> Ptr{UInt8}
# cbSignature : DWORD -> UInt32
# dwFlags : DWORD -> UInt32
# stdcall は 32bit のみ意味を持つ(x64 では無視)。
local ffi = require("ffi")
ffi.cdef[[
int32_t SslVerifySignature(
    uintptr_t hSslProvider,
    uintptr_t hPublicKey,
    uint8_t* pbHashValue,
    uint32_t cbHashValue,
    uint8_t* pbSignature,
    uint32_t cbSignature,
    uint32_t dwFlags);
]]
local ncrypt = ffi.load("ncrypt")
-- ncrypt.SslVerifySignature(hSslProvider, hPublicKey, pbHashValue, cbHashValue, pbSignature, cbSignature, dwFlags)
-- hSslProvider : NCRYPT_PROV_HANDLE
-- hPublicKey : NCRYPT_KEY_HANDLE
-- pbHashValue : BYTE*
-- cbHashValue : DWORD
-- pbSignature : BYTE*
-- cbSignature : DWORD
-- dwFlags : DWORD
-- 構造体/GUIDへのポインタは cdef が通るよう void* で表記(実型は各引数コメント参照)。値渡し構造体・enum は対応する typedef を cdef に追加すること。
const koffi = require('koffi');
const lib = koffi.load('ncrypt.dll');
const SslVerifySignature = lib.func('__stdcall', 'SslVerifySignature', 'int32_t', ['uintptr_t', 'uintptr_t', 'uint8_t *', 'uint32_t', 'uint8_t *', 'uint32_t', 'uint32_t']);
// SslVerifySignature(hSslProvider, hPublicKey, pbHashValue, cbHashValue, pbSignature, cbSignature, dwFlags)
// hSslProvider : NCRYPT_PROV_HANDLE -> 'uintptr_t'
// hPublicKey : NCRYPT_KEY_HANDLE -> 'uintptr_t'
// pbHashValue : BYTE* -> 'uint8_t *'
// cbHashValue : DWORD -> 'uint32_t'
// pbSignature : BYTE* -> 'uint8_t *'
// cbSignature : DWORD -> 'uint32_t'
// dwFlags : DWORD -> 'uint32_t'
// 出力ポインタは koffi.out(...) で包む。構造体は koffi.struct で定義。
const lib = Deno.dlopen("ncrypt.dll", {
  SslVerifySignature: { parameters: ["usize", "usize", "pointer", "u32", "pointer", "u32", "u32"], result: "i32" },
});
// lib.symbols.SslVerifySignature(hSslProvider, hPublicKey, pbHashValue, cbHashValue, pbSignature, cbSignature, dwFlags)
// hSslProvider : NCRYPT_PROV_HANDLE -> "usize"
// hPublicKey : NCRYPT_KEY_HANDLE -> "usize"
// pbHashValue : BYTE* -> "pointer"
// cbHashValue : DWORD -> "u32"
// pbSignature : BYTE* -> "pointer"
// cbSignature : DWORD -> "u32"
// dwFlags : DWORD -> "u32"
// 文字列引数は "buffer"(NUL 終端のバイト列を Uint8Array で渡す)。
// 値渡し構造体は { struct: [ ...field types... ] } を使用。
<?php
$ffi = FFI::cdef(<<<C
int32_t SslVerifySignature(
    size_t hSslProvider,
    size_t hPublicKey,
    uint8_t* pbHashValue,
    uint32_t cbHashValue,
    uint8_t* pbSignature,
    uint32_t cbSignature,
    uint32_t dwFlags);
C, "ncrypt.dll");
// $ffi->SslVerifySignature(hSslProvider, hPublicKey, pbHashValue, cbHashValue, pbSignature, cbSignature, dwFlags);
// hSslProvider : NCRYPT_PROV_HANDLE
// hPublicKey : NCRYPT_KEY_HANDLE
// pbHashValue : BYTE*
// cbHashValue : DWORD
// pbSignature : BYTE*
// cbSignature : DWORD
// dwFlags : DWORD
// 構造体/GUIDへのポインタは cdef が通るよう void* で表記(実型は各引数コメント参照)。値渡し構造体・enum は対応する typedef を cdef に追加すること。
// WINAPI(stdcall): x64 では呼出規約が統一されるため問題なし。x86 では __stdcall 対応のラッパが必要な場合あり。
import com.sun.jna.*;
import com.sun.jna.ptr.*;
import com.sun.jna.win32.StdCallLibrary;
import com.sun.jna.win32.W32APIOptions;

public interface Ncrypt extends StdCallLibrary {
    Ncrypt INSTANCE = Native.load("ncrypt", Ncrypt.class);
    int SslVerifySignature(
        long hSslProvider,   // NCRYPT_PROV_HANDLE
        long hPublicKey,   // NCRYPT_KEY_HANDLE
        byte[] pbHashValue,   // BYTE*
        int cbHashValue,   // DWORD
        byte[] pbSignature,   // BYTE*
        int cbSignature,   // DWORD
        int dwFlags   // DWORD
    );
}
@[Link("ncrypt")]
lib Libncrypt
  fun SslVerifySignature = SslVerifySignature(
    hSslProvider : LibC::SizeT,   # NCRYPT_PROV_HANDLE
    hPublicKey : LibC::SizeT,   # NCRYPT_KEY_HANDLE
    pbHashValue : UInt8*,   # BYTE*
    cbHashValue : UInt32,   # DWORD
    pbSignature : UInt8*,   # BYTE*
    cbSignature : UInt32,   # DWORD
    dwFlags : UInt32   # DWORD
  ) : Int32
end
# 構造体/GUID/enum は lib 内に対応する型定義が必要。
# 呼出規約: x64 は規約統一のため OK。x86(32bit)は WINAPI=stdcall だが Crystal の fun に stdcall 付与構文がなく非対応。
import 'dart:ffi';
import 'package:ffi/ffi.dart';

typedef SslVerifySignatureNative = Int32 Function(UintPtr, UintPtr, Pointer<Uint8>, Uint32, Pointer<Uint8>, Uint32, Uint32);
typedef SslVerifySignatureDart = int Function(int, int, Pointer<Uint8>, int, Pointer<Uint8>, int, int);
final SslVerifySignature = DynamicLibrary.open('ncrypt.dll')
    .lookupFunction<SslVerifySignatureNative, SslVerifySignatureDart>('SslVerifySignature');
// hSslProvider : NCRYPT_PROV_HANDLE -> UintPtr
// hPublicKey : NCRYPT_KEY_HANDLE -> UintPtr
// pbHashValue : BYTE* -> Pointer<Uint8>
// cbHashValue : DWORD -> Uint32
// pbSignature : BYTE* -> Pointer<Uint8>
// cbSignature : DWORD -> Uint32
// dwFlags : DWORD -> Uint32
// 文字列は package:ffi の "...".toNativeUtf16()/toNativeUtf8() で変換。
{$mode objfpc}{$H+}
function SslVerifySignature(
  hSslProvider: NativeUInt;   // NCRYPT_PROV_HANDLE
  hPublicKey: NativeUInt;   // NCRYPT_KEY_HANDLE
  pbHashValue: Pointer;   // BYTE*
  cbHashValue: DWORD;   // DWORD
  pbSignature: Pointer;   // BYTE*
  cbSignature: DWORD;   // DWORD
  dwFlags: DWORD   // DWORD
): Integer; stdcall;
  external 'ncrypt.dll' name 'SslVerifySignature';
import Foreign
import Foreign.C.Types
import Foreign.C.String

foreign import stdcall safe "SslVerifySignature"
  c_SslVerifySignature :: CUIntPtr -> CUIntPtr -> Ptr Word8 -> Word32 -> Ptr Word8 -> Word32 -> Word32 -> IO Int32
-- hSslProvider : NCRYPT_PROV_HANDLE -> CUIntPtr
-- hPublicKey : NCRYPT_KEY_HANDLE -> CUIntPtr
-- pbHashValue : BYTE* -> Ptr Word8
-- cbHashValue : DWORD -> Word32
-- pbSignature : BYTE* -> Ptr Word8
-- cbSignature : DWORD -> Word32
-- dwFlags : DWORD -> Word32
-- 要 GHC(Windows)。stdcall は x64 では ccall として扱われる。ブロックする API は safe 呼び出し推奨。
open Ctypes
open Foreign

let sslverifysignature =
  foreign "SslVerifySignature"
    (size_t @-> size_t @-> (ptr uint8_t) @-> uint32_t @-> (ptr uint8_t) @-> uint32_t @-> uint32_t @-> returning int32_t)
(* hSslProvider : NCRYPT_PROV_HANDLE -> size_t *)
(* hPublicKey : NCRYPT_KEY_HANDLE -> size_t *)
(* pbHashValue : BYTE* -> (ptr uint8_t) *)
(* cbHashValue : DWORD -> uint32_t *)
(* pbSignature : BYTE* -> (ptr uint8_t) *)
(* cbSignature : DWORD -> uint32_t *)
(* dwFlags : DWORD -> uint32_t *)
(* foreign は cdecl 前提。x64 Windows では WINAPI と一致。構造体は ctypes structure を定義のこと。 *)
(cffi:define-foreign-library ncrypt (t "ncrypt.dll"))
(cffi:use-foreign-library ncrypt)

(cffi:defcfun ("SslVerifySignature" ssl-verify-signature :convention :stdcall) :int32
  (h-ssl-provider :uint64)   ; NCRYPT_PROV_HANDLE
  (h-public-key :uint64)   ; NCRYPT_KEY_HANDLE
  (pb-hash-value :pointer)   ; BYTE*
  (cb-hash-value :uint32)   ; DWORD
  (pb-signature :pointer)   ; BYTE*
  (cb-signature :uint32)   ; DWORD
  (dw-flags :uint32))   ; DWORD
; isize/usize(INT_PTR/SIZE_T)は x64 前提で :int64/:uint64。x86 では :int32/:uint32。
use Win32::API;
my $SslVerifySignature = Win32::API::More->new('ncrypt',
    'int SslVerifySignature(WPARAM hSslProvider, WPARAM hPublicKey, LPVOID pbHashValue, DWORD cbHashValue, LPVOID pbSignature, DWORD cbSignature, DWORD dwFlags)');
# my $ret = $SslVerifySignature->Call($hSslProvider, $hPublicKey, $pbHashValue, $cbHashValue, $pbSignature, $cbSignature, $dwFlags);
# hSslProvider : NCRYPT_PROV_HANDLE -> WPARAM
# hPublicKey : NCRYPT_KEY_HANDLE -> WPARAM
# pbHashValue : BYTE* -> LPVOID
# cbHashValue : DWORD -> DWORD
# pbSignature : BYTE* -> LPVOID
# cbSignature : DWORD -> DWORD
# dwFlags : DWORD -> DWORD
# 値渡し構造体は pack() した文字列、または Win32::API::Struct を使用。