Submit a Pull Request Report a Bug

    openssl_cms_sign

    (PHP 8)

    openssl_cms_signSign a file

    Beschreibung

    openssl_cms_sign ( string $input_filename , string $output_filename , OpenSSLCertificate|string $certificate , OpenSSLAsymmetricKey|OpenSSLCertificate|array|string $private_key , array|null $headers , int $flags = 0 , int $encoding = OPENSSL_ENCODING_SMIME , string|null $untrusted_certificates_filename = null ) : bool

    This function signs a file with an X.509 certificate and key.

    Parameter-Liste

    input_filename

    The name of the file to be signed.

    output_filename

    The name of the file to deposit the results.

    certificate

    The name of the file containing the signing certificate.

    private_key

    The name of file containing the key associated with certificate.

    headers

    An array of headers to be included in S/MIME output.

    flags

    Flags to be passed to cms_sign().

    encoding

    The encoding of the output file. One of OPENSSL_CMS_SMIME, OPENSLL_CMS_DER or OPENSSL_CMS_PEM.

    untrusted_certificates_filename

    Intermediate certificates to be included in the signature.

    Rückgabewerte

    Gibt bei Erfolg true zurück. Im Fehlerfall wird false zurückgegeben.

    add a note add a note

    User Contributed Notes 1 note

    up
    1
    miranda dot markmorgan at gmail dot com
    3 years ago
    Manage to make it work at last.

    $dn = array(
        "countryName" => "XX",
        "stateOrProvinceName" => "Location",
        "localityName" => "Local",
        "organizationName" => "Sample Organization",
        "organizationalUnitName" => "Organizational Unit",
        "commonName" => "Sample",
        "emailAddress" => "contactus@email.com"
    );

    // Generate a new private (and public) key pair
    $privkey = openssl_pkey_new(array(
        "private_key_bits" => 4096,
        "private_key_type" => OPENSSL_KEYTYPE_RSA,
    ));

    // Generate a certificate signing request
    $csr = openssl_csr_new($dn, $privkey, array('digest_alg' => 'sha512'));

    // Generate a self-signed cert, valid for 365 days
    $x509 = openssl_csr_sign($csr, null, $privkey, $days=365, array('digest_alg' => 'sha512'));

    // Save your private key, CSR and self-signed cert for later use
    openssl_csr_export($csr, $csrout) and var_dump($csrout); // .csr
    openssl_x509_export($x509, $certout) and var_dump($certout); // .crt.pem
    openssl_pkey_export($privkey, $pkeyout, "user_defined_password") and var_dump($pkeyout); // .key.pem

    if(openssl_cms_sign ( "file_to_sign", "Sample.p7m" , $x509 , $privkey, null , 0 , 0 , null )){
        echo "SIGNED SUCCESSFULLY! Sample.p7m created... \r\n";
    }
    else
    {
        echo "SIGNED FAILED!\r\n";
    }
    add a note add a note
    To Top