openssl_pkcs7_decrypt

(PHP 4 >= 4.0.6, PHP 5, PHP 7, PHP 8)

openssl_pkcs7_decrypt — 解密一个 S/MIME 加密的消息

说明

openssl_pkcs7_decrypt(
    string $input_filename,
    string $output_filename,
    #[\SensitiveParameter] OpenSSLCertificate|string $certificate,
    #[\SensitiveParameter] OpenSSLAsymmetricKey|OpenSSLCertificate|array|string|null $private_key = null
): bool

使用由 certificate 和 private_key 指定的证书和与之关联的私钥解密 input_filename 文件中包含的 S/MIME 加密消息。

参数

input_filename
output_filename: 解密的消息将被存入的文件中，以 output_filename 命名。
certificate
private_key

返回值

成功时返回 true，或者在失败时返回 false。

更新日志

版本	说明
8.0.0	`private_key` 现在接受 OpenSSLAsymmetricKey 或 OpenSSLCertificate 实例；之前接受类型 `OpenSSL key` 或 `OpenSSL X.509 CSR` 的 resource。

示例

示例 #1 openssl_pkcs7_decrypt() 示例

<?php
// $cert and $key are assumed to contain your personal certificate and private
// key pair, and that you are the recipient of an S/MIME message
$infilename = "encrypted.msg";  // this file holds your encrypted message
$outfilename = "decrypted.msg"; // make sure you can write to this file

if (openssl_pkcs7_decrypt($infilename, $outfilename, $cert, $key)) {
    echo "decrypted!";
} else {
    echo "failed to decrypt!";
}
?>

发现了问题？

了解如何改进此页面 • 提交拉取请求 • 报告一个错误

＋添加备注

用户贡献的备注 1 note

down

oliver at anonsphere dot com ¶

14 years ago

If you want to decrypt a received email, keep in mind that you need the full encrypted message including the mime header.<?php// Get the full message$encrypted = imap_fetchmime($stream, $msg_number, "1", FT_UID);$encrypted .= imap_fetchbody($stream, $msg_number, "1", FT_UID);// Write the needed temporary files$infile = tempnam("", "enc");file_put_contents($infile, $encrypted); $outfile = tempnam("", "dec");// The certification stuff$public = file_get_contents("/path/to/your/cert.pem");$private = array(file_get_contents("/path/to/your/cert.pem"), "password");// Ready? Go!if(openssl_pkcs7_decrypt($infile, $outfile, $public, $private)){    // Decryption successful    echo file_get_contents($outfile);}else{    // Decryption failed    echo "Oh oh! Decryption failed!";}// Remove the temp files@unlink($infile);@unlink($outfile);?>