openssl_pkey_get_private

(PHP 4 >= 4.2.0, PHP 5, PHP 7)

openssl_pkey_get_privateПолучить секретный ключ

Описание

resource openssl_pkey_get_private ( mixed $key [, string $passphrase = "" ] )

openssl_get_privatekey() разбирает key и подготавливает его к использованию в других функциях.

Список параметров

key

key может быть задан следующим образом:

  1. строка вида file://path/to/file.pem. Файл должен содержать кодированный в PEM сертификат/открытый ключ (может содержать и то и то).
  2. СЕкретный ключ в формате PEM.

passphrase

Если ключ защищен паролем, то его надо указать в параметре passphrase.

Возвращаемые значения

Возвращает идентификатор ресурса ключа, или FALSE в случае ошибки.

add a note add a note

User Contributed Notes 3 notes

up
19
kristof1 at mailbox dot hu
3 years ago
It's actually "file://key.pem" when you want to give a relative path using unix systems. It will be three '/' in case of absolute path (e.g "file:///home/username/..."). But this path consists of two '/' originated from "file://" and one '/' from the fact that home is a subfolder of the unix filesystem's root directory ("/home/username/..."). This two part will be concatenated and you will get three '/' characters following each other.

So you only have to concatenate "file://" with an existing path string in every case.
up
-5
joelhy
6 years ago
Please note that "file://path/to/file.pem" in documentation means file protocol + file path. In UNIX like OS, that is something like file:///rsa_private_key.pem. There is THREE slashes in the path string, not TWO.
up
-6
geoff at hostfission dot com
1 year ago
Since this function can be used to load a PEM encoded string also, those that are using it relying on user input should be sure to check that the passed data is indeed a PEM encoded string and not a malicious file path.

The following should be sufficient.

<?PHP
  $private
= trim($_POST['private']);
  if (
strpos($private, '-----') !== 0) return false;
?>
To Top