[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Quickest way to get SHA-1 thumbprint of a cert from a SecCertificateRef?

Subject: Re: Quickest way to get SHA-1 thumbprint of a cert from a SecCertificateRef?
From: Paul Nelson <email@hidden>
Date: Wed, 27 Sep 2006 11:29:09 -0500
Delivered-to: email@hidden
Delivered-to: email@hidden
Thread-index: Acbh5mNzsxUVXO16QqilYx17xuIoAgAa6tXQ
Thread-topic: Quickest way to get SHA-1 thumbprint of a cert from a SecCertificateRef?
User-agent: Microsoft-Entourage/11.2.5.060620

Title: Re: Quickest way to get SHA-1 thumbprint of a cert from a SecCertificateRef?

Signatures can be made with different algorithms. Are you trying to use the signature to verify something, or just to uniquely identify a cert?
If any case you should use CSSMOID_X509V1Signature and the data returned will be the signature bytes.
If you need the signature algorithm, you should get that using CSSMOID_X509V1SignatureAlgorithm

I don’t think that “CSSMOID_X509V1SignatureCStruct” works, nor does “CSSMOID_X509V1SignatureStruct”
Paul Nelson
Thursby Software Systems, Inc.

on 9/26/06 10:38 PM, Nathan Herring at email@hidden wrote:

I could go through the certificate and do the SHA-1 calculation via SecCertificateGetData, CSSM_CreateDigestDataContext, etc., but is there just some key field that I could pull out of the CL layer? From looking at the docs, X509V1Signature looks potentially useful, but perhaps not what I want – the related Signature OIDs (e.g., X509V1SignatureCStruct) don’t appear to have a definition as to what would their format for me to read out of.

Thx,
nh

_______________________________________________
Do not post admin requests to the list. They will be ignored.
Apple-cdsa mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/apple-cdsa/email@hidden

This email sent to email@hidden

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Apple-cdsa mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/apple-cdsa/email@hidden

This email sent to email@hidden

Follow-Ups:
- Re: Quickest way to get SHA-1 thumbprint of a cert from a SecCertificateRef?
  - From: Ken McLeod <email@hidden>

References:
	>Quickest way to get SHA-1 thumbprint of a cert from a SecCertificateRef? (From: Nathan Herring <email@hidden>)

Prev by Date: Quickest way to get SHA-1 thumbprint of a cert from a SecCertificateRef?
Next by Date: Re: Quickest way to get SHA-1 thumbprint of a cert from a SecCertificateRef?
Previous by thread: Quickest way to get SHA-1 thumbprint of a cert from a SecCertificateRef?
Next by thread: Re: Quickest way to get SHA-1 thumbprint of a cert from a SecCertificateRef?
Index(es):
- Date
- Thread

Home