打开证书存贮区的几种方式

最新推荐文章于 2023-01-27 12:38:33 发布
最新推荐文章于 2023-01-27 12:38:33 发布
阅读量1.1k 收藏
点赞数
分类专栏: CAPI 文章标签: encoding file system processing function parameters
来源:MS SDK
The following examples provide code to open a variety of common certificate stores. This is a series of code fragments and is not a stand-alone program.



// 1. Open the MY system store.

HCERTSTORE hSysStore;
hSysStore = CertOpenStore(
  CERT_STORE_PROV_SYSTEM,   // The store provider type.
  0,                 // The encoding type is not needed.
  NULL,               // Use the default HCRYPTPROV.
  CERT_SYSTEM_STORE_CURRENT_USER,
                  // Set the store location in a
                  // registry location.
  L"MY"               // The store name as a Unicode string.
  );

// Substitute other common system store names for "MY"
// including "root", "trust", or "CA".


//--------------------------------------------------------------------
// 2. Open a memory store.

HCERTSTORE hMemStore;
hMemStore = CertOpenStore(
  CERT_STORE_PROV_MEMORY,   // The memory provider type.
  0,                 // The encoding type is not needed.
  NULL,               // Use the default HCRYPTPROV.
  0,                 // Accept the default dwFlags.
  NULL               // pvPara is not used.
  );

//--------------------------------------------------------------------
// 3. Open a store from disk.

// In this example, the read-only flag is set.
HANDLE     hFile;
HCERTSTORE   hFileStore;
LPCSTR     pszFileName = "TestStor2.sto"
// Obtain a file handle.
hFile = CreateFile(
  pszFileName,             // The file name
  GENERIC_READ│GENERIC_WRITE,   // Access mode:
                      // Read from and write to this file
  0,                   // Share mode
  NULL,                 // Security
  OPEN_ALWAYS,             // How to create
  FILE_ATTRIBUTE_NORMAL,     // File attributes
  NULL);                 // Template

//--------------------------------------------------------------------
//   At this point, read and use data in the open file that precedes
//   the serialized certificate store data. The file pointer must
//   be placed at the beginning of the certificate store data before
//   CertOpenStore is called with the CERT_STORE_PROV_FILE provider.
//   Open the store.

hFileStore = CertOpenStore(
  CERT_STORE_PROV_FILE,   // Load certificates from a file.
  0,                 // Encoding type not used.
  NULL,               // Use the default HCRYPTPROV.
  CERT_STORE_READONLY_FLAG // See the LOWORD of dwFlags to make
                    // the store read-only.
  hFile               // The handle for the open file
                    // that is the source of the
                    // certificates.
  );

//--------------------------------------------------------------------
// Include code to work with the certificates.
// The data file from which the certificate store information has been
// read is still open. Any data in that file that follows the
// serialized store can be read from the file and used at this point.

//--------------------------------------------------------------------
// Close the file store and the file.

CertCloseStore(
    file_store,
    CERT_CLOSE_STORE_CHECK_FLAG);

CloseHandle(hFile);

//--------------------------------------------------------------------
// 4. Open a file-based store using CERT_STORE_PROV_FILENAME.


// The pvPara parameter here is the name of an existing file.
// The function fails if the file does not exist.
// The file is not opened using CreateFile before the call to
// CertOpenStore.
// CERT_STORE_PROV_FILENAME_A is used if the file name is in ASCII,
// CERT_STORE_PROV_FILENAME would be used if the file name was a
// Unicode string.

#define ENCODING_TYPE (PKCS_7_ASN_ENCODING │ X509_ASN_ENCODING)
HCERTSTORE   hFileStoreHandle;

hFileStoreHandle = CertOpenStore(
    CERT_STORE_PROV_FILENAME,   // The store provider type.
    ENCODING_TYPE,           // If needed, use the usual
                        // encoding types.
    NULL,                 // Use the default HCRYPTPROV.
    0,                   // Accept the default for all
                        // dwFlags.
    L"FileStore.sto" );       // The name of an existing file
                        // as a Unicode string.

//--------------------------------------------------------------------
// 5. Open a collection store.

// Note that the collection store is empty.
// Certificates, CRLs, and CTLs can be added to and found in
// stores that are added as sibling stores to the collection store.

HCERTSTORE hCollectionStoreHandle;
HCERTSTORE hSiblingStoreHandle;
hCollectionStoreHandle = CertOpenStore(
  CERT_STORE_PROV_COLLECTION,
  0,     // For CERT_STORE_PROV_COLLECTION,
          // the rest of the parameters
          // are 0 or NULL.
  NULL,
  0,
  NULL);

//--------------------------------------------------------------------
// Open the sibling store as a file-based store.

hSiblingStoreHandle = CertOpenStore(
    CERT_STORE_PROV_FILENAME,   // The store provider type.
    ENCODING_TYPE,           // If needed, use the usual
                        // encoding type.
    NULL,                 // Use the default HCRYPTPROV.
    0,                   // Accept the default for all
                        // dwFlags.
    L"siblstore.sto");       // The name of an existing file
                        // as a Unicode string.

//--------------------------------------------------------------------
// The open sibling store can now be added to the collection
// using CertAddStoreToCollection and processing of certificates can
// begin.

CertAddStoreToCollection(
      hCollectionStoreHandle,
      hSiblingStoreHandle,
      CERT_PHYSICAL_STORE_ADD_ENABLE_FLAG,
      1);

//--------------------------------------------------------------------
// All processing of the certificates in the
// collection store will also involve the certificates in the sibling
// store.


//--------------------------------------------------------------------
// 6. Open a register store

HKEY hkResult;
HCERTSTORE hRegStore = NULL;

//--------------------------------------------------------------------
// A register subkey be opened with RegOpenKeyEx or
// RegCreateKeyEx. A handle to the open register subkey, hkResult, is
// returned in one of parameters of RegOpenKeyEx or RegCreateKeyEx.
hRegStore = CertOpenStore(
    CERT_STORE_PROV_REG,
    0,             // No encoding type is needed.
    NULL,           // Accept the default HCRYPTPROV.
    0,             // Accept the default dwFlags.
    hkResult);         // hkResult is the handle of a
                  // register subkey opened by RegOpenKeyEX
                  // or created and opened by
                  // RegCreateKeyEX.

//--------------------------------------------------------------------
// 7. Open a certificate store based on a PKCS7 message.
HCERTSTORE     hSystemStore;
HCERTSTORE     hLastStore;
CRYPT_DATA_BLOB   message_BLOB;

//--------------------------------------------------------------------
// Initialize the message BLOB.

HCERTSTORE hSystemStore = CertOpenStore(
  CERT_STORE_PROV_SYSTEM,   // The store provider type.
  0,                 // The encoding type is not needed.
  NULL,               // Use the default HCRYPTPROV.
  CERT_SYSTEM_STORE_CURRENT_USER,
                  // Set the store location in a registry
                  // location.
  L"CA");             // The store name as a Unicode string.

message_BLOB.cbData = 0;
message_BLOB.pbData = NULL;

//--------------------------------------------------------------------
// Get the cbData length.

if(CertSaveStore(
    hSystemStore,
    PKCS_7_ASN_ENCODING │ X509_ASN_ENCODING,
    CERT_STORE_SAVE_AS_PKCS7,
    CERT_STORE_SAVE_TO_MEMORY,
    &message_BLOB,
    0))
{
  printf("The length is %d \n",message_BLOB.cbData);
}
else
{
// An error has occurred in saving the store. Print an error
// message and exit.
  HandleError("Error saving a file store.");
}

//--------------------------------------------------------------------
// Allocate the memory or pbData.

if( message_BLOB.pbData = (BYTE *)malloc(message_BLOB.cbData))
{
    printf("The function succeeded. \n");
}
else
{
// An error has occurred in memory allocation. Print an error
// message and exit.
  HandleError("Error in memory allocation.");
}

//--------------------------------------------------------------------
// Get the contents of pbData.

if(CertSaveStore(
    hSystemStore,
    PKCS_7_ASN_ENCODING │ X509_ASN_ENCODING,
    CERT_STORE_SAVE_AS_PKCS7,
    CERT_STORE_SAVE_TO_MEMORY,
    &message_BLOB,
    0))
{
  printf("Saved the store to a memory BLOB. \n");
}
else
{
// An error has occurred in saving the store. Print an error
// message and exit.
  HandleError("Error saving file store.");
}

if( hLastStore = CertOpenStore(
  CERT_STORE_PROV_PKCS7,
  PKCS_7_ASN_ENCODING │ X509_ASN_ENCODING,
  NULL,
  0,
  &message_BLOB))
{
    printf("The function succeeded. \n");
}
else
{
// An error has occurred in opening the store. Print an error
// message and exit.
  HandleError("Error opening file store.");
}
wdt3385
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
证书存储区
huasheng_007的专栏
06-20 7310
Windows XP 在申请证书的计算机或设备本地存储证书,如果申请证书的是一位用户,则证书将存放在该用户所使用的计算机或设备上。存储位置称为证书存储区。证书存储区通常会有许多证书,而且这些证书可能是由许多不同的证书颁发机构颁发的。使用“证书”管理单元,可以根据证书颁发的目的或使用其逻辑存储服务,而显示用户、计算机或服务的证书存储区。当根据存储类别显示证书时,也可以选择显示物理存储区,以显示证
CryptoApi基本函数总结
xringm的博客
01-13 998
原文:http://blog.csdn.net/ghevinn/article/details/12494171 1,CertOpenSystemStore打开系统最常用的证书存储区域。假如需要满足复杂的需要,请看CertOpenStore  HCERTSTORE WINAPI CertOpenSystemStore(  HCRYPTPROV hprov, //CSP句柄,NULL为默认句柄
CRYPTO学习入门
wdt3385的专栏
06-27 1077
来自:http://blog.csdn.net/tanken_007/article/details/5883782# 1,CertOpenSystemStore打开系统最常用的证书存储区域。假如需要满足复杂的需要,请看CertOpenStore    HCERTSTORE WINAPI CertOpenSystemStore(    HCRYPTPROV hprov, //CSP句柄,NU
vc++网络安全编程范例(18)-open ssl 实现数字证书编程
tubaluer
12-17 159
数字证书就是互联网通讯中标志通讯各方身份信息的一系列数据,提供了一种在Internet上验证您身份的方式,其作用类似于司机的驾驶执照或日常生活中的身份证。它是由一个由权威机构-----CA机构,又称为证书授权(Certificate Authority)中心发行的,人们可以在网上用它来识别对方的身份。数字证书是一个经证书授权中心数字签名的包含公开密钥拥有者信息以及公开密钥的文件。最简单的证书包含一...
枚举证书和 CAPI读取证书总结
wdt3385的专栏
07-19 6575
枚举证书 以下几点介绍下面的示例代码的关键部分。 调用以获取句柄 CertOpenSystemStore 函数 uint hCertStore = Crypt32.CertOpenSystemStore(0, "My"); 用户的个人证书存储区。 调用 CertEnumCertificatesInStore 函数,以获取证书上下文指针到 while (0
一种用于光存贮的酞菁薄膜
02-10
本文研究了金属取代酞菁衍生物(MPc)真空蒸镀薄膜在可见及近红外区域的吸收光谱和光学常数。以该酞菁薄膜作为记录介质的5.25″光盘的动态特性测试表明,载噪比(CNR)大于43 dB。
酞菁染料薄膜的光存贮特性
02-10
本文研究了酞菁分子结构与光存贮性能的关系,给出作用在酞菁薄膜上的激光功率和辐照时间,其阈值随酞菁分子侧链的增长而增加的特性。
第25章 存贮论.zip
05-14
在机器学习中,存贮论的应用可以体现在以下几个方面: 1. 数据预处理:在训练模型前,我们需要存储大量的原始数据。根据需求预测和计算资源,我们可以调整数据缓存策略,以减少频繁读取硬盘带来的性能损耗。 2. ...
数学建模存贮模型
10-26
数学建模模型,
(DIMM)双列存贮器组件
11-12
双列存贮器组件(DIMM)是一种广泛应用于现代个人计算机中的内存模块,它由一个或多个RAM(随机存取存储器)芯片组成,这些芯片安装在一块小的集成电路板上,通过板上的引脚直接与主板接口相连。DIMM的设计使得数据...
Windows证书管理
热门推荐
甜筒八部 的专栏
06-28 1万+
windows里提供了数字证书管理工具,用于管理我们电脑里安装的各种数字证书,首先数字证书是一种电子文件,那么它有一定的格式,也有拓展名。 证书扩展名 Windows中的证书扩展名有好几种,比如.cer和.crt。通常而言,.cer文件是二进制数据,而.crt文件是ASCII码的文本数据。 cer文件包含依据DER(Distinguished Encoding Rules)规则编码的证书数据,这是x.590标准中指定的编码格式。X.509是一个最基本的公钥格式标准,里面规定了证书需要包含的各种信息。通
[转载]打开证书存贮区几种方式
weixin_34192732的博客
09-21 231
The following examples provide code to open a variety of common certificate stores. This is a series of code fragments and is not a stand-alone program.// 1. Open the MY system store.HCERTSTORE hSysSt...
CAJ文件报错提示“file does not exist”之类如何解决
tfqw_lingtian的博客
01-27 2417
CAJ阅读器提示文件不存在或不能正常访问,可以通过”取消使用unicode UTF-8提供全球语言支持“来解决
学习CRYPTO第三天
Sagely's blog
04-28 2910
1,CertOpenSystemStore打开系统最常用的证书存储区域。假如需要满足复杂的需要,请看CertOpenStore HCERTSTORE WINAPI CertOpenSystemStore( HCRYPTPROV hprov, //CSP句柄,NULL为默认句柄,或者由CryptAcquireContext返回 LPTCSTR szSubsystemProtocol //打开的系统存
学习CRYPTO第二天
dlfer11的专栏
12-17 1746
因为是.net安全,所以必须在VC7上运行下面面的一些例子(今天害得我在VC6上运行,错误一大堆),上面介绍了CRYPTAPI的一些基础,下面我就不按照MSDN的往下看了,下面的几个专题是Hashing,Signing Data,Creating and Receiving Enveloped Data Messages以及Encrypting and Decrypting.这些专题等需要用到的时
priority_queue以struct为存贮的使用方式
最新发布
12-23
priority_queue以struct为存储的使用方式如下所示: ```cpp #include #include using namespace std; struct Student { string name; int score; }; struct Compare { bool operator()(const Student& s1, ...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值