OpenSSL（*） · PHP筆記

本擴展使用[??OpenSSL](http://www.openssl.org/)庫來對稱/非對稱加解密，以及 PBKDF2、 PKCS7、 PKCS12、 X509 和其他加密操作。除此之外還提供了 TLS 流的實現。 OpenSSL 還提供了更多本模塊暫不支持的功能，某些功能以后可能會增加。手動開啟：要使用 PHP 的 OpenSSL 支持，你應該使用**\--with-openssl\[=DIR\]**參數來編譯PHP. * [預定義常量](https://www.php.net/manual/zh/openssl.constants.php) * [目的檢查標志](https://www.php.net/manual/zh/openssl.purpose-check.php) * [非對稱加密的填充標志](https://www.php.net/manual/zh/openssl.padding.php) * [密鑰類型](https://www.php.net/manual/zh/openssl.key-types.php) * [PKCS7 標志/常量](https://www.php.net/manual/zh/openssl.pkcs7.flags.php) * [Signature Algorithms](https://www.php.net/manual/zh/openssl.signature-algos.php) * [Ciphers](https://www.php.net/manual/zh/openssl.ciphers.php) * [Version constants](https://www.php.net/manual/zh/openssl.constversion.php) * [Server Name Indication constants](https://www.php.net/manual/zh/openssl.constsni.php) * [密鑰/證書參數](https://www.php.net/manual/zh/openssl.certparams.php) * [證書驗證](https://www.php.net/manual/zh/openssl.cert.verification.php) * [OpenSSL 函數](https://www.php.net/manual/zh/ref.openssl.php) * [openssl\_cipher\_iv\_length](https://www.php.net/manual/zh/function.openssl-cipher-iv-length.php)— 獲取密碼iv長度 * [openssl\_csr\_export\_to\_file](https://www.php.net/manual/zh/function.openssl-csr-export-to-file.php)— 將CSR導出到文件 * [openssl\_csr\_export](https://www.php.net/manual/zh/function.openssl-csr-export.php)— 將CSR作為字符串導出 * [openssl\_csr\_get\_public\_key](https://www.php.net/manual/zh/function.openssl-csr-get-public-key.php)— 返回CSR的公鑰 * [openssl\_csr\_get\_subject](https://www.php.net/manual/zh/function.openssl-csr-get-subject.php)— 返回CSR的主題 * [openssl\_csr\_new](https://www.php.net/manual/zh/function.openssl-csr-new.php)— 生成一個 CSR * [openssl\_csr\_sign](https://www.php.net/manual/zh/function.openssl-csr-sign.php)— 用另一個證書簽署 CSR (或者本身) 并且生成一個證書 * [openssl\_decrypt](https://www.php.net/manual/zh/function.openssl-decrypt.php)— 解密數據 * [openssl\_dh\_compute\_key](https://www.php.net/manual/zh/function.openssl-dh-compute-key.php)— 計算遠程DH密鑰(公鑰)和本地DH密鑰的共享密鑰 * [openssl\_digest](https://www.php.net/manual/zh/function.openssl-digest.php)— 計算摘要 * [openssl\_encrypt](https://www.php.net/manual/zh/function.openssl-encrypt.php)— 加密數據 * [openssl\_error\_string](https://www.php.net/manual/zh/function.openssl-error-string.php)— 返回 openSSL 錯誤消息 * [openssl\_free\_key](https://www.php.net/manual/zh/function.openssl-free-key.php)— 釋放密鑰資源 * [openssl\_get\_cert\_locations](https://www.php.net/manual/zh/function.openssl-get-cert-locations.php)— 檢索可用的證書位置 * [openssl\_get\_cipher\_methods](https://www.php.net/manual/zh/function.openssl-get-cipher-methods.php)— 獲取可用的加密算法 * [openssl\_get\_curve\_names](https://www.php.net/manual/zh/function.openssl-get-curve-names.php)— 獲得ECC的可用曲線名稱列表 * [openssl\_get\_md\_methods](https://www.php.net/manual/zh/function.openssl-get-md-methods.php)— 獲取可用的摘要算法 * [openssl\_get\_privatekey](https://www.php.net/manual/zh/function.openssl-get-privatekey.php)— 別名 openssl\_pkey\_get\_private * [openssl\_get\_publickey](https://www.php.net/manual/zh/function.openssl-get-publickey.php)— 別名 openssl\_pkey\_get\_public * [openssl\_open](https://www.php.net/manual/zh/function.openssl-open.php)— 打開密封的數據 * [openssl\_pbkdf2](https://www.php.net/manual/zh/function.openssl-pbkdf2.php)— 生成一個 PKCS5 v2 PBKDF2 字符串 * [openssl\_pkcs12\_export\_to\_file](https://www.php.net/manual/zh/function.openssl-pkcs12-export-to-file.php)— 輸出一個 PKCS#12 兼容的證書存儲文件 * [openssl\_pkcs12\_export](https://www.php.net/manual/zh/function.openssl-pkcs12-export.php)— 將 PKCS#12 兼容證書存儲文件導出到變量 * [openssl\_pkcs12\_read](https://www.php.net/manual/zh/function.openssl-pkcs12-read.php)— 將 PKCS#12 證書存儲區解析到數組中 * [openssl\_pkcs7\_decrypt](https://www.php.net/manual/zh/function.openssl-pkcs7-decrypt.php)— 解密一個 S/MIME 加密的消息 * [openssl\_pkcs7\_encrypt](https://www.php.net/manual/zh/function.openssl-pkcs7-encrypt.php)— 加密一個 S/MIME 消息 * [openssl\_pkcs7\_read](https://www.php.net/manual/zh/function.openssl-pkcs7-read.php)— 將PKCS7文件導出為PEM格式證書的數組 * [openssl\_pkcs7\_sign](https://www.php.net/manual/zh/function.openssl-pkcs7-sign.php)— 對一個 S/MIME 消息進行簽名 * [openssl\_pkcs7\_verify](https://www.php.net/manual/zh/function.openssl-pkcs7-verify.php)— 校驗一個已簽名的 S/MIME 消息的簽名 * [openssl\_pkey\_export\_to\_file](https://www.php.net/manual/zh/function.openssl-pkey-export-to-file.php)— 將密鑰導出到文件中 * [openssl\_pkey\_export](https://www.php.net/manual/zh/function.openssl-pkey-export.php)— 將一個密鑰的可輸出表示轉換為字符串 * [openssl\_pkey\_free](https://www.php.net/manual/zh/function.openssl-pkey-free.php)— 釋放一個私鑰 * [openssl\_pkey\_get\_details](https://www.php.net/manual/zh/function.openssl-pkey-get-details.php)— 返回包含密鑰詳情的數組 * [openssl\_pkey\_get\_private](https://www.php.net/manual/zh/function.openssl-pkey-get-private.php)— 獲取私鑰 * [openssl\_pkey\_get\_public](https://www.php.net/manual/zh/function.openssl-pkey-get-public.php)— 從證書中解析公鑰，以供使用。 * [openssl\_pkey\_new](https://www.php.net/manual/zh/function.openssl-pkey-new.php)— 生成一個新的私鑰 * [openssl\_private\_decrypt](https://www.php.net/manual/zh/function.openssl-private-decrypt.php)— 使用私鑰解密數據 * [openssl\_private\_encrypt](https://www.php.net/manual/zh/function.openssl-private-encrypt.php)— 使用私鑰加密數據 * [openssl\_public\_decrypt](https://www.php.net/manual/zh/function.openssl-public-decrypt.php)— 使用公鑰解密數據 * [openssl\_public\_encrypt](https://www.php.net/manual/zh/function.openssl-public-encrypt.php)— 使用公鑰加密數據 * [openssl\_random\_pseudo\_bytes](https://www.php.net/manual/zh/function.openssl-random-pseudo-bytes.php)— 生成一個偽隨機字節串 * [openssl\_seal](https://www.php.net/manual/zh/function.openssl-seal.php)— 密封 (加密) 數據 * [openssl\_sign](https://www.php.net/manual/zh/function.openssl-sign.php)— Generate signature * [openssl\_spki\_export\_challenge](https://www.php.net/manual/zh/function.openssl-spki-export-challenge.php)— 導出與簽名公鑰和挑戰相關的挑戰字符串 * [openssl\_spki\_export](https://www.php.net/manual/zh/function.openssl-spki-export.php)— 通過簽名公鑰和挑戰導出一個可用的PEM格式的公鑰 * [openssl\_spki\_new](https://www.php.net/manual/zh/function.openssl-spki-new.php)— 生成一個新的簽名公鑰和挑戰 * [openssl\_spki\_verify](https://www.php.net/manual/zh/function.openssl-spki-verify.php)— 驗證簽名公鑰和挑戰。 * [openssl\_verify](https://www.php.net/manual/zh/function.openssl-verify.php)— 驗證簽名 * [openssl\_x509\_check\_private\_key](https://www.php.net/manual/zh/function.openssl-x509-check-private-key.php)— 檢查私鑰是否對應于證書 * [openssl\_x509\_checkpurpose](https://www.php.net/manual/zh/function.openssl-x509-checkpurpose.php)— 驗證是否可以為特定目的使用證書 * [openssl\_x509\_export\_to\_file](https://www.php.net/manual/zh/function.openssl-x509-export-to-file.php)— 導出證書至文件 * [openssl\_x509\_export](https://www.php.net/manual/zh/function.openssl-x509-export.php)— 以字符串格式導出證書 * [openssl\_x509\_fingerprint](https://www.php.net/manual/zh/function.openssl-x509-fingerprint.php)— 計算一個給定的x.509證書的指紋或摘要 * [openssl\_x509\_free](https://www.php.net/manual/zh/function.openssl-x509-free.php)— 釋放證書資源 * [openssl\_x509\_parse](https://www.php.net/manual/zh/function.openssl-x509-parse.php)— 解析一個X509證書并作為一個數組返回信息 * [openssl\_x509\_read](https://www.php.net/manual/zh/function.openssl-x509-read.php)— 解析一個x.509證書并返回一個資源標識符 * [openssl\_x509\_verify](https://www.php.net/manual/zh/function.openssl-x509-verify.php)— Verifies digital signature of x509 certificate against a public key