pkcs#7

I am trying to sign PDF using TCPDF, but I have got this error: Warning: openssl_pkcs7_sign(): error getting private key in C:\wamp\www\tcpdf\tcpdf.php on line 7594. My PHP version is 5.5.12 and TCPDF 6.2.11. Windows 7. Other examples run well but this fails. I have tried: 'file://'.( dirname(FILE)).'./path/to/file' and again $certificate = 'file://'.realpath('../tcpdf.crt'); but does not work for me. I think file:// is not correct. You fetch die real path with dirname(__FILE__) that should be enough. So i prefer: $certificate = __DIR__'/../tcpdf.crt'; __DIR__ or dirname(FILE) is the path to

I am using TCPDF to sign PDF, but when running the example 52 I got this error: Warning: openssl_pkcs7_sign() [function.openssl-pkcs7-sign]: error getting private key in C:\xampp\htdocs\this\tcpdf\tcpdf.php on line 8366 Could you please tell me or guide me where is the problem. I am just running the example without changing anything. I am using xampp. The problem is with the location from where it tries to access the private key. Instead of '' like in their example use 'file://'.( dirname( FILE )).'./path/to/file'. This worked for me. I solved it by using: $certificate = 'file://'.realpath('..

I have a quick question about calculating the digest of a PDF document to use for a digital signature (somewhat related to one of my earlier questions, I'm trying to figure out why you would need to know a client's certificate to create the correct digest). In Adobe's documentation about the PDF format the following is specified: A byte range digest shall be computed over a range of bytes in the file, that shall be indicated by the ByteRange entry in the signature dictionary. This range should be the entire file, including the signature dictionary but excluding the signature value itself (the

I have a PKCS7 signature which i can get parsed contents from with openssl pkcs7 -inform DER -in signature.pkcs7 -print_certs -text But how do archieve the same output with PHPs openssl functions? Edit. I succeeded in creating a correct PEM file with the following function: function der2pem($der_data, $type="CERTIFICATE") { $pem = chunk_split(base64_encode($der_data), 64, "\n"); $pem = "-----BEGIN $type-----\n".$pem."-----END $type-----\n"; return $pem; } $data = der2pem($der_data, "PKCS7"); Im not however successfull in parsing the data with any of the functions mentioned in the PHP manual.

How to sign and verify some data on iOS with an RSA key (preferably using the system own libcommonCrypto )? Since there hasn't been nearly any knowledge about signing and verifying found on StackOverflow and the Apple docs, I had to manually browse around in the iOS header files and found SecKeyRawSign and SecKeyRawVerify . The following lines of code seem to work. Signing NSData (using SHA256 with RSA): NSData* PKCSSignBytesSHA256withRSA(NSData* plainData, SecKeyRef privateKey) { size_t signedHashBytesSize = SecKeyGetBlockSize(privateKey); uint8_t* signedHashBytes = malloc(signedHashBytesSize

Is there any openssl api function to convert PKCS7 file to PEM. I am able to convert a PKCS12 file to PEM using PKCS12_parse() function which returns key and certificate given the password. There is no similar function for pkcs7. My pkcs7 input has just the certificate in binary format. I am able to do the conversion using command openssl pkcs7 -inform DER -in input.p7b -printcerts -text How do I do this in a C program? I am able to read it to a PKCS7 structure like this FILE* fp; if (!(fp = fopen("ca.p7b", "rb"))) { fprintf(stderr, "Error reading input pkcs7 file\n" ); exit(1); } PKCS7 *p7;