openssl_pkcs7_verify
(PHP 4 >= 4.0.6, PHP 5, PHP 7, PHP 8)
openssl_pkcs7_verify — Verifies the signature of an S/MIME signed message
Description
string
$input_filename,int
$flags,?string
$signers_certificates_filename = null,array
$ca_info = [],?string
$untrusted_certificates_filename = null,?string
$content = null,?string
$output_filename = null): bool|int
openssl_pkcs7_verify() reads the S/MIME message contained in the given file and examines the digital signature.
Parameters
input_filenamePath to the message.
flagsflagscan be used to affect how the signature is verified - see PKCS7 constants for more information.signers_certificates_filenameIf the
signers_certificates_filenameis specified, it should be a string holding the name of a file into which the certificates of the persons that signed the messages will be stored in PEM format.ca_infoIf the
ca_infois specified, it should hold information about the trusted CA certificates to use in the verification process - see certificate verification for more information about this parameter.untrusted_certificates_filenameIf the
untrusted_certificates_filenameis specified, it is the filename of a file containing a bunch of certificates to use as untrusted CAs.contentYou can specify a filename with
contentthat will be filled with the verified data, but with the signature information stripped.output_filename
Return Values
Returns true if the signature is verified, false if it is not correct (the message has been tampered with, or the signing certificate is invalid), or -1 on error.
Changelog
| Version | Description |
|---|---|
| 8.0.0 | signers_certificates_filename, untrusted_certificates_filename, content and output_filename are nullable now. |
| 7.2.0 | The output_filename parameter was added. |
Notes
Note: As specified in RFC 2045, lines may not be longer than 76 characters in the
input_filenameparameter.