php man page for openssl_x509_checkpurpose

Php Man Pages All Man Pages Latest Topics Forum Categories

Query: openssl_x509_checkpurpose

OS: php

Section: 3

Format: Original Unix Latex Style Formatted with HTML and a Horizontal Scroll Bar

OPENSSL_X509_CHECKPURPOSE(3)						 1					      OPENSSL_X509_CHECKPURPOSE(3)

openssl_x509_checkpurpose - Verifies if a certificate can be used for a particular purpose


SYNOPSIS

       int openssl_x509_checkpurpose (mixed  $x509cert, int  $purpose, [array  $cainfo = array()], [string  $untrustedfile])


DESCRIPTION

       openssl_x509_checkpurpose(3) examines a certificate to see if it can be used for the specified $purpose.


PARAMETERS

	      o $x509cert
		- The examined certificate.

	      o $purpose
		-

	      openssl_x509_checkpurpose(3) purposes

	      +---------------------------+---------------------------------------------------+
	      | 	Constant	  |						      |
	      | 			  |						      |
	      | 			  |		       Description		      |
	      | 			  |						      |
	      +---------------------------+---------------------------------------------------+
	      | X509_PURPOSE_SSL_CLIENT   |						      |
	      | 			  |						      |
	      | 			  | Can  the  certificate be used for the client side |
	      | 			  | of an SSL connection?			      |
	      | 			  |						      |
	      | X509_PURPOSE_SSL_SERVER   |						      |
	      | 			  |						      |
	      | 			  | Can the certificate be used for the  server  side |
	      | 			  | of an SSL connection?			      |
	      | 			  |						      |
	      |X509_PURPOSE_NS_SSL_SERVER |						      |
	      | 			  |						      |
	      | 			  |   Can the cert be used for Netscape SSL server?   |
	      | 			  |						      |
	      | X509_PURPOSE_SMIME_SIGN   |						      |
	      | 			  |						      |
	      | 			  |    Can the cert be used to sign S/MIME email?     |
	      | 			  |						      |
	      |X509_PURPOSE_SMIME_ENCRYPT |						      |
	      | 			  |						      |
	      | 			  |   Can the cert be used to encrypt S/MIME email?   |
	      | 			  |						      |
	      |  X509_PURPOSE_CRL_SIGN	  |						      |
	      | 			  |						      |
	      | 			  | Can  the cert be used to sign a certificate revo- |
	      | 			  | cation list (CRL)?				      |
	      | 			  |						      |
	      |     X509_PURPOSE_ANY	  |						      |
	      | 			  |						      |
	      | 			  |    Can the cert be used for Any/All purposes?     |
	      | 			  |						      |
	      +---------------------------+---------------------------------------------------+
	       These options are not bitfields - you may specify one only!

	      o $cainfo
		-$cainfo should be an array of trusted CA files/dirs as described in Certificate Verification.

	      o $untrustedfile
		- If specified, this should be the name of a PEM encoded file holding certificates that can be used to help  verify  the  certifi-
		cate, although no trust is placed in the certificates that come from that file.


RETURN VALUES

	Returns TRUE if the certificate can be used for the intended purpose, FALSE if it cannot, or -1 on error.

PHP Documentation Group 											      OPENSSL_X509_CHECKPURPOSE(3)
Related Man Pages
ne_ssl_set_verify(3) - centos
ne_ssl_cert_subject(3) - debian
ne_ssl_cert_issuer(3) - debian
ne_ssl_cert_issuer(3) - centos
ne_ssl_cert_signedby(3) - centos
Similar Topics in the Unix Linux Community
Installing an SSL certificate in Blue Quartz
Installing SSL certificate on AIX
Creation of SSL certificates
SSL certificate generation on OS level or application level
Installing SSL certificates on Ubuntu Server 12.04