php man page for openssl_x509_checkpurpose

Php Man Pages All Man Pages Latest Topics Forum Categories

Query: openssl_x509_checkpurpose

OS: php

Section: 3

Format: Original Unix Latex Style Formatted with HTML and a Horizontal Scroll Bar

OPENSSL_X509_CHECKPURPOSE(3)						 1					      OPENSSL_X509_CHECKPURPOSE(3)

openssl_x509_checkpurpose - Verifies if a certificate can be used for a particular purpose


SYNOPSIS

       int openssl_x509_checkpurpose (mixed  $x509cert, int  $purpose, [array  $cainfo = array()], [string  $untrustedfile])


DESCRIPTION

       openssl_x509_checkpurpose(3) examines a certificate to see if it can be used for the specified $purpose.


PARAMETERS

	      o $x509cert
		- The examined certificate.

	      o $purpose
		-

	      openssl_x509_checkpurpose(3) purposes

	      +---------------------------+---------------------------------------------------+
	      | 	Constant	  |						      |
	      | 			  |						      |
	      | 			  |		       Description		      |
	      | 			  |						      |
	      +---------------------------+---------------------------------------------------+
	      | X509_PURPOSE_SSL_CLIENT   |						      |
	      | 			  |						      |
	      | 			  | Can  the  certificate be used for the client side |
	      | 			  | of an SSL connection?			      |
	      | 			  |						      |
	      | X509_PURPOSE_SSL_SERVER   |						      |
	      | 			  |						      |
	      | 			  | Can the certificate be used for the  server  side |
	      | 			  | of an SSL connection?			      |
	      | 			  |						      |
	      |X509_PURPOSE_NS_SSL_SERVER |						      |
	      | 			  |						      |
	      | 			  |   Can the cert be used for Netscape SSL server?   |
	      | 			  |						      |
	      | X509_PURPOSE_SMIME_SIGN   |						      |
	      | 			  |						      |
	      | 			  |    Can the cert be used to sign S/MIME email?     |
	      | 			  |						      |
	      |X509_PURPOSE_SMIME_ENCRYPT |						      |
	      | 			  |						      |
	      | 			  |   Can the cert be used to encrypt S/MIME email?   |
	      | 			  |						      |
	      |  X509_PURPOSE_CRL_SIGN	  |						      |
	      | 			  |						      |
	      | 			  | Can  the cert be used to sign a certificate revo- |
	      | 			  | cation list (CRL)?				      |
	      | 			  |						      |
	      |     X509_PURPOSE_ANY	  |						      |
	      | 			  |						      |
	      | 			  |    Can the cert be used for Any/All purposes?     |
	      | 			  |						      |
	      +---------------------------+---------------------------------------------------+
	       These options are not bitfields - you may specify one only!

	      o $cainfo
		-$cainfo should be an array of trusted CA files/dirs as described in Certificate Verification.

	      o $untrustedfile
		- If specified, this should be the name of a PEM encoded file holding certificates that can be used to help  verify  the  certifi-
		cate, although no trust is placed in the certificates that come from that file.


RETURN VALUES

	Returns TRUE if the certificate can be used for the intended purpose, FALSE if it cannot, or -1 on error.

PHP Documentation Group 											      OPENSSL_X509_CHECKPURPOSE(3)
Related Man Pages
ne_ssl_set_verify(3) - redhat
nbsvtool(1) - netbsd
ne_ssl_set_verify(3) - debian
ne_ssl_cert_signedby(3) - centos
openssl_pkcs7_verify(3) - php
Similar Topics in the Unix Linux Community
SSL Certificate Installation problem
Installing an SSL certificate in Blue Quartz
AIX 6.1 Self-Signed Cert Creation Issue
SSL certificate generation on OS level or application level
SSL certificate generation error 8016