/// <summary>
/// Verifies that a file has a valid digital signature.
/// </summary>
/// <param name="owner">The parent/owner window for any UI that may be shown.</param>
/// <param name="fileName">The path to the file to be validate.</param>
/// <param name="showNegativeUI">Whether or not to show a UI in the case that the signature can not be found or validated.</param>
/// <param name="showPositiveUI">Whether or not to show a UI in the case that the signature is successfully found and validated.</param>
/// <returns>true if the file has a digital signature that validates up to a trusted root, or false otherwise</returns>
public static bool VerifySignedFile(IWin32Window owner, string fileName, bool showNegativeUI, bool showPositiveUI)
{
unsafe
{
fixed(char *szFileName = fileName)
{
Guid pgActionID = NativeConstants.WINTRUST_ACTION_GENERIC_VERIFY_V2;
var fileInfo = new NativeStructs.WINTRUST_FILE_INFO();
fileInfo.cbStruct = (uint)sizeof(NativeStructs.WINTRUST_FILE_INFO);
fileInfo.pcwszFilePath = szFileName;
var wintrustData = new NativeStructs.WINTRUST_DATA();
wintrustData.cbStruct = (uint)sizeof(NativeStructs.WINTRUST_DATA);
if (!showNegativeUI && !showPositiveUI)
{
wintrustData.dwUIChoice = NativeConstants.WTD_UI_NONE;
}
else if (!showNegativeUI && showPositiveUI)
{
wintrustData.dwUIChoice = NativeConstants.WTD_UI_NOBAD;
}
else if (showNegativeUI && !showPositiveUI)
{
wintrustData.dwUIChoice = NativeConstants.WTD_UI_NOGOOD;
}
else // if (showNegativeUI && showPositiveUI)
{
wintrustData.dwUIChoice = NativeConstants.WTD_UI_ALL;
}
wintrustData.fdwRevocationChecks = NativeConstants.WTD_REVOKE_WHOLECHAIN;
wintrustData.dwUnionChoice = NativeConstants.WTD_CHOICE_FILE;
wintrustData.pInfo = &fileInfo;
IntPtr handle;
if (owner == null)
{
handle = IntPtr.Zero;
}
else
{
handle = owner.Handle;
}
int result = NativeMethods.WinVerifyTrust(handle, ref pgActionID, ref wintrustData);
GC.KeepAlive(owner);
return(result >= 0);
}
}
}
internal static extern int WinVerifyTrust(
IntPtr hWnd,
ref Guid pgActionID,
ref NativeStructs.WINTRUST_DATA pWinTrustData
);
/// <summary>
/// Verifies that a file has a valid digital signature.
/// </summary>
/// <param name="owner">The parent/owner window for any UI that may be shown.</param>
/// <param name="fileName">The path to the file to be validate.</param>
/// <param name="showNegativeUI">Whether or not to show a UI in the case that the signature can not be found or validated.</param>
/// <param name="showPositiveUI">Whether or not to show a UI in the case that the signature is successfully found and validated.</param>
/// <returns>true if the file has a digital signature that validates up to a trusted root, or false otherwise</returns>
public static bool VerifySignedFile(IWin32Window owner, string fileName, bool showNegativeUI, bool showPositiveUI) {
unsafe {
fixed (char* szFileName = fileName) {
Guid pgActionID = NativeConstants.WINTRUST_ACTION_GENERIC_VERIFY_V2;
var fileInfo = new NativeStructs.WINTRUST_FILE_INFO();
fileInfo.cbStruct = (uint) sizeof (NativeStructs.WINTRUST_FILE_INFO);
fileInfo.pcwszFilePath = szFileName;
var wintrustData = new NativeStructs.WINTRUST_DATA();
wintrustData.cbStruct = (uint) sizeof (NativeStructs.WINTRUST_DATA);
if (!showNegativeUI && !showPositiveUI) {
wintrustData.dwUIChoice = NativeConstants.WTD_UI_NONE;
}
else if (!showNegativeUI && showPositiveUI) {
wintrustData.dwUIChoice = NativeConstants.WTD_UI_NOBAD;
}
else if (showNegativeUI && !showPositiveUI) {
wintrustData.dwUIChoice = NativeConstants.WTD_UI_NOGOOD;
}
else // if (showNegativeUI && showPositiveUI)
{
wintrustData.dwUIChoice = NativeConstants.WTD_UI_ALL;
}
wintrustData.fdwRevocationChecks = NativeConstants.WTD_REVOKE_WHOLECHAIN;
wintrustData.dwUnionChoice = NativeConstants.WTD_CHOICE_FILE;
wintrustData.pInfo = &fileInfo;
IntPtr handle;
if (owner == null) {
handle = IntPtr.Zero;
}
else {
handle = owner.Handle;
}
int result = NativeMethods.WinVerifyTrust(handle, ref pgActionID, ref wintrustData);
GC.KeepAlive(owner);
return result >= 0;
}
}
}
