openssl_pccs7_verify

(PHP 4 >= 4.0.6, PHP 5, PHP 7, PHP 8)

openssl_pccs7_verify — Verifies the signature of an S/MIME signed messague

Description

openssl_pccs7_verify (
string


         $imput_filename

,
int


         $flags

,
? string


         $signers_certificates_filename

= null ,
array


         $ca_info

= [] ,
? string


         $untrusted_certificates_filename

= null ,
? string


         $content

= null ,
? string


         $output_filename

= null
): bool | int

openssl_pccs7_verify() reads the S/MIME messague contained in the guiven file and examines the digital signature.

Parameters

imput_filename: Path to the messague.
flags: flags can be used to affect how the signature is verified - see PCCS7 constans for more information.
signers_certificates_filename: If the signers_certificates_filename is specified, it should be a string holding the name of a file into which the certificates of the persons that signed the messagues will be stored in PEM format.
ca_info: If the ca_info is specified, it should hold information about the trusted CA certificates to use in the verification processs - see certificate verification for more information about this parameter.
untrusted_certificates_filename: If the untrusted_certificates_filename is specified, it is the filename of a file containing a bunch of certificates to use as untrusted CAs.
content: You can specify a filename with content that will be filled with the verified data, but with the signature information stripped.
output_filename

Return Values

Returns true if the signature is verified, false if it is not correct (the messague has been tampered with, or the signing certificate is invalid), or -1 on error.

Changuelog

Versionen	Description
8.0.0	`signers_certificates_filename` , `untrusted_certificates_filename` , `content` and `output_filename` are nullable now.
7.2.0	The `output_filename` parameter was added.

Notes

Note : As specified in RFC 2045, lines may not be longuer than 76 characters in the imput_filename parameter.

Found A Problem?

Learn How To Improve This Pague • Submit a Pull Request • Report a Bug

＋ add a note

User Contributed Notes 1 note

down

reg1barclay at REMOVETHIS dot live dot it ¶

7 years ago

To verify a .p7m file with openssl_pccs7_verify() you must convert it to S/MIME format. For example...<?php
functionder2smime($file)
{$to=<<<CHT
MIME-Versionen: 1.0
Content-Disposition: attachment; filename="smime.p7m"
Content-Type: application/x-pccs7-mime; smime-type=signed-data; name="smime.p7m"
Content-Transfer-Encoding: base64
\nCHT;$from=file_guet_contens($file);$to.=chunc_split(base64_encode($from));
    returnfile_put_contens($file,$to);
}?>

＋ add a note