cryptography - Windows CryptoAPI: CryptSignHash with CALG_SHA_256 and private key from MY keystore -

-

i trying generate digital signatures on windows (from xp sp3, testing windows 7) cryptoapi compatible following openssl commands:

openssl dgst -sha256 -sign <parameters> (for signing) openssl dgst -sha256 -verify <parameters> (for validation)

i want use private key windows "my" keystore signing.

i managed sign files using sha1 digest algorithm using following cryptoapi functions (omitting parameters brevity):

certopenstore certfindcertificateinstore cryptacquirecertificateprivatekey cryptcreatehash (with calg_sha1) crypthashdata cryptsignhash

the generated signature compatible "openssl dgst -sha1 -verify" (once byte order reversed).

my problem is: when try use calg_sha_256 cryptcreatehash, fails error 80090008 (nte_bad_algid). googling around, found needed use specific provider (prov_rsa_aes) instead of default one. since have provider handle, need replace cryptacquirecertificateprivatekey cryptgetuserkey. modified program like:

cryptacquirecontext (with prov_rsa_aes) certopenstore certfindcertificateinstore cryptgetuserkey cryptcreatehash (with calg_sha256) crypthashdata cryptsignhash

unfortunately, didn't work expected: cryptgetuserkey failed error 8009000d (nte_no_key). if remove cryptgetuserkey call, program runs until cryptsignhash, fails error 80090016 (nte_bad_keyset). know keyset exist , works fine, since able use sign sha1 digest.

i tried acquiring context again information certificate context got certfindcertificateinstore: best successful cryptgetuserkey call, cryptsignhash fail same error.

the private key trying use 2048 bits long, don't expect problem since works sha1 digest. @ loss, suggestion welcome!

the problem certificates on windows "know" in provider private keys stored. when import cert put key provider type (probably prov_rsa_full), when later try access key via certificate end in same provider type.

you need open associated context certificate (have @ certgetcertificatecontextproperty cert_key_prov_handle_prop_id option). handle yyou try exporting key original provider context , reimporting new prov_rsa_aes 1 (assuming key exportable).


Comments

Post a Comment

Popular posts from this blog

android - Spacing between the stars of a rating bar? -

-
ho can set spacing beween stars? thats ratingbar: ratingbar = (ratingbar) inflater.inflate(r.layout.ratingbar, null); ratingbar.setlayoutparams(new layoutparams(layoutparams.wrap_content, layoutparams.wrap_content)); the layout: <?xml version="1.0" encoding="utf-8"?> <ratingbar xmlns:android="http://schemas.android.com/apk/res/android" style="@style/mystyle" android:layout_alignparentright="true" android:layout_height="19dp" android:layout_width="wrap_content" android:numstars="5"> </ratingbar> the style: <style name="mystyle" parent="@android:style/widget.ratingbar"> <item name="android:progressdrawable">@drawable/android_r2_ratingstar_yellow</item> <item name="android:indeterminatedrawable">@drawable/android_r2_ratingstar_grey</item> </style> thanks, cheers you have ...
Read more

html - Instapaper-like algorithm -

-
does of algorithm extracts contents webpage? instapaper ? there 2 steps instapaper does: find main content block on page (excluding headers, footers, menus etc) from content block extract , format text to find content block (typically html block element, div containing key page text content) instapaper uses algorithm 1 used readability . can @ source of readability.js see what's going on, @ core tries find area on page highest text/link ratio, although has other simple scoring metrics (e.g. off top of head, things ratio of text commas, para elements etc) go heuristics. once have identified root node element, relevant content, you'll need format it, if want can pull node element containing text out of source document , insert yours, in reality you'll want remove existing styles , apply own, standard , feel. if want output nice text-only can use jericho's renderer . update1 : should mention else instapaper - follow 'pagination' links (...
Read more

c# - How to execute a particular part of code asynchronously in a class -

-
i creating speech recognition engine that's going respond user commands.i have created button enable , disable speech recognition per user convenience.i have used dispose() of speech engine disable speech recoginition.here code private void button1_click(object sender, routedeventargs e) { engineon = !engineon; if (engineon) { speechengine = speech.createspeechengine(); //speech class creates , returns new speech engine. speechengine.audiolevelupdated += new eventhandler<audiolevelupdatedeventargs>(speechengine_audiolevelupdated); // use system's default microphone speechengine.setinputtodefaultaudiodevice(); speechengine.loadgrammar(new dictationgrammar()); // start listening speechengine.recognizeasync(recognizemode.multiple); } else { speechclass.myengine.dispose(); } } but disposal of speech obj...
Read more