php man page for openssl_x509_checkpurpose

Php Man Pages All Man Pages Latest Topics Forum Categories

Query: openssl_x509_checkpurpose

OS: php

Section: 3

Format: Original Unix Latex Style Formatted with HTML and a Horizontal Scroll Bar

OPENSSL_X509_CHECKPURPOSE(3)						 1					      OPENSSL_X509_CHECKPURPOSE(3)

openssl_x509_checkpurpose - Verifies if a certificate can be used for a particular purpose


SYNOPSIS

       int openssl_x509_checkpurpose (mixed  $x509cert, int  $purpose, [array  $cainfo = array()], [string  $untrustedfile])


DESCRIPTION

       openssl_x509_checkpurpose(3) examines a certificate to see if it can be used for the specified $purpose.


PARAMETERS

	      o $x509cert
		- The examined certificate.

	      o $purpose
		-

	      openssl_x509_checkpurpose(3) purposes

	      +---------------------------+---------------------------------------------------+
	      | 	Constant	  |						      |
	      | 			  |						      |
	      | 			  |		       Description		      |
	      | 			  |						      |
	      +---------------------------+---------------------------------------------------+
	      | X509_PURPOSE_SSL_CLIENT   |						      |
	      | 			  |						      |
	      | 			  | Can  the  certificate be used for the client side |
	      | 			  | of an SSL connection?			      |
	      | 			  |						      |
	      | X509_PURPOSE_SSL_SERVER   |						      |
	      | 			  |						      |
	      | 			  | Can the certificate be used for the  server  side |
	      | 			  | of an SSL connection?			      |
	      | 			  |						      |
	      |X509_PURPOSE_NS_SSL_SERVER |						      |
	      | 			  |						      |
	      | 			  |   Can the cert be used for Netscape SSL server?   |
	      | 			  |						      |
	      | X509_PURPOSE_SMIME_SIGN   |						      |
	      | 			  |						      |
	      | 			  |    Can the cert be used to sign S/MIME email?     |
	      | 			  |						      |
	      |X509_PURPOSE_SMIME_ENCRYPT |						      |
	      | 			  |						      |
	      | 			  |   Can the cert be used to encrypt S/MIME email?   |
	      | 			  |						      |
	      |  X509_PURPOSE_CRL_SIGN	  |						      |
	      | 			  |						      |
	      | 			  | Can  the cert be used to sign a certificate revo- |
	      | 			  | cation list (CRL)?				      |
	      | 			  |						      |
	      |     X509_PURPOSE_ANY	  |						      |
	      | 			  |						      |
	      | 			  |    Can the cert be used for Any/All purposes?     |
	      | 			  |						      |
	      +---------------------------+---------------------------------------------------+
	       These options are not bitfields - you may specify one only!

	      o $cainfo
		-$cainfo should be an array of trusted CA files/dirs as described in Certificate Verification.

	      o $untrustedfile
		- If specified, this should be the name of a PEM encoded file holding certificates that can be used to help  verify  the  certifi-
		cate, although no trust is placed in the certificates that come from that file.


RETURN VALUES

	Returns TRUE if the certificate can be used for the intended purpose, FALSE if it cannot, or -1 on error.

PHP Documentation Group 											      OPENSSL_X509_CHECKPURPOSE(3)
Related Man Pages
nbsvtool(1) - netbsd
ne_ssl_cert_subject(3) - debian
ne_ssl_cert_signedby(3) - debian
ne_ssl_set_verify(3) - suse
openssl_x509_checkpurpose(3) - php
Similar Topics in the Unix Linux Community
Digital Certificate Expiry Date
export SSL certificate
Query: How to install commercial cert into AIX and use it for FTPS connection
SSL certificate generation on OS level or application level
WebLogic SSL enabling ignoring CA certificate