[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ms-cryptoapi
Subject:    Re: How to get and use a CAPI CSP  signature
From:       Corinne Dive-Reclus <CDive () BALTIMORE ! COM>
Date:       2001-08-28 8:34:06
[Download RAW message or body]


Have you changed the registry value SIGINFILE associated with your provider
from 0 to 1 ?

> -----Original Message-----
> From: Harry Cai [mailto:harrycai@21CN.COM]
> Sent: 26 August 2001 10:10
> To: CryptoAPI@DISCUSS.MICROSOFT.COM
> Subject: How to get and use a CAPI CSP signature
> 
> 
> Hello, all,
> 
> We developed a MS CAPI CSP and sent a request to
> cspsign@microsoft.com for signing. We got a signature from
> cspsign@microsoft.com but failed to use it with our CSP.
> 
> When we sent request to cspsign@microsoft.com, we sent the
> DLL file itself (thinkereccsp.dll) and the hash value of the
> entire DLL file (including MD5 and SHA-1).
> 
> We got the signature (136 bytes) and put it into the Windows
> registry as following:
> ---------------------------------------------
> [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\P
> rovider\EKey CSP Provider]
> "Image Path"="E:\\mscspsdk\\Release\\thinkereccsp.dll"
> "Signature"=hex:5e,d5,67,17,ca,44,3f,92,1b,f8,e0,c3,be,68,d2,f
> 8,50,ca,45,26,9d,\
> 
> 13,30,06,af,c7,21,d6,c0,06,f0,2d,a6,99,75,4e,5a,b4,6e,ff,0b,f4
> ,42,94,8e,df,\
> 
> 05,33,34,19,9a,2e,20,86,40,6a,b6,6d,54,9a,22,72,20,cc,47,e5,74
> ,d4,4d,c8,90,\
> 
> f6,c2,d9,f3,37,ea,fd,48,66,08,7f,29,86,d6,a6,06,37,5c,23,5d,82
> ,26,d0,4d,2c,\
> 
> eb,7d,e3,c8,c0,d2,51,7f,c6,51,de,0d,ee,c5,e2,15,f4,60,11,90,97
> ,97,61,27,0b,\
> b5,7e,30,6b,cb,37,31,00,00,00,00,00,00,00,00
> "Type"=dword:00000001
> ---------------------------------------------
> And when we called the CSP DLL, a error saying "error
> signature" returned, the error code was
> NTE_BAD_SIGNATURE(0x80090006L).
> 
> We tried to write a program to test it, the result said that
> it was a bad signature.
> 
> The test program source code is as following:
> ------------------------------------------
> #define _WIN32_WINNT 0x400
> #include <windows.h>
> #include <wincrypt.h>
> #define ERROR_OUT(x) if(!x) {printf("Error AT %d,err code
> is  0x%x",__LINE__,GetLastError())}
> main()
> {
> HCRYPTPROV hProv;
> ERROR_OUT(CryptAcquireContext(&hProv,NULL,"EKey CSP Provider",
> PROV_RSA_FULL,CRYPT_VERIFYCONTEXT))
> }
> -------------------------------------------
> A Error Code returned and it was 0x80090006--NTE_BAD_SIGNATURE
> 
> 
> Could anybody help us to solve the problem?
> Does Microsoft use MD5 or SHA-1 for singing the CSP DLL?
> Can we get the corresponding public key (associated with the
> private key used to make the signature) to verify the
> signature and to make sure that the signature is the correct one?
> 
> 
> Thanks in advanced,
> Harry.
> 
> 
> 
> This footnote confirms that this email message has been swept by
> MIMEsweeper for the presence of computer viruses.
> 
> 


-----------------------------------------------------------------------------------------------------------------
 The information contained in this message is confidential and is intended
for the addressee(s) only.  If you have received this message in error or
there are any problems please notify the originator immediately.  The
unauthorized use, disclosure, copying or alteration of this message is
strictly forbidden. Baltimore Technologies plc will not be liable for direct,
special, indirect or consequential damages arising from alteration of the
contents of this message by a third party or as a result of any virus being
passed on.

In addition, certain Marketing collateral may be added from time to time to
promote Baltimore Technologies products, services, Global e-Security or
appearance at trade shows and conferences.

This footnote confirms that this email message has been swept by
Baltimore MIMEsweeper for Content Security threats, including
computer viruses.

----------------------------------------------------------------
Users Guide http://discuss.microsoft.com/archives/mailfaq.asp
contains important info. Save time, search the archives at
http://discuss.microsoft.com/archives/index.html .
To unsubscribe, mailto:CryptoAPI-signoff-request@DISCUSS.MICROSOFT.COM


[prev in list] [next in list] [prev in thread] [next in thread]