Submit a Pull Request Report a Bug

    Налаштування під час виконання

    The behaviour of these functions is affected by settings in php.ini.

    openssl Параметри Конфігурації
    Назва Початково Де можна змінювати Changelog
    openssl.cafile "" PHP_INI_PERDIR Available since PHP 5.6.0.
    openssl.capath "" PHP_INI_PERDIR Available since PHP 5.6.0.
    For further details and definitions of the INI_* modes, see the Де можна встановлювати параметри конфігурації.

    Here's a short explanation of the configuration directives.

    openssl.cafile string

    Location of Certificate Authority file on local filesystem which should be used with the verify_peer context option to authenticate the identity of the remote peer.

    openssl.capath string

    If cafile is not specified or if the certificate is not found there, the directory pointed to by capath is searched for a suitable certificate. capath must be a correctly hashed certificate directory.

    See also the SSL stream context options.

    add a note add a note

    User Contributed Notes 3 notes

    up
    2
    mmi at uhb-consulting dot de
    5 years ago
    in capath the Certificates must be placed with the certificates hash as name and .0 as Ending.

    Here is how to get the hashes from Certificates lying in this folder and automatically rename them in a correct way:
    <?php
        $paths    =openssl_get_cert_locations();
            $allowed=array("cer","crt","pem");
        if (!empty(    $paths['ini_capath'])){
                $capathDirectory = dir($paths['ini_capath']);
            while (    false !== ($entry = $capathDirectory->read())) {
                    $Sourcefile=$paths['ini_capath']."/".$entry;
                if (    file_exists( $Sourcefile)){
                        $path_parts = pathinfo($Sourcefile);
                    if (    in_array(strtolower($path_parts['extension']),$allowed)){
                            $ParsedCertificatePbject = openssl_x509_parse(file_get_contents($Sourcefile));
                            $Sourcefile= $ParsedCertificatePbject["hash"].".0";
                            $TargetFilename = dirname($Sourcefile)."/".$Sourcefile;
                        if (!    file_exists($TargetFilename)) {
                                rename ($Sourcefile ,$TargetFilename);
                        }
                    }
                }
            }
                $capathDirectory->close();
        }
    ?>
    up
    0
    ofrick at bluewin dot ch
    5 years ago
    above code should be corrected to:

                        $Destfile= $ParsedCertificatePbject["hash"].".0";
                        $TargetFilename = dirname($Sourcefile)."/".$Destfile;
    up
    -9
    mmi at uhb-consulting dot de
    5 years ago
    Hashed directory bedeutet die Dateinamen müssen mit dem Openssl hash, den ihr mittels openssl_x509_parse im Wert hash bekommt (Name) + die Dateiendung 0.
    Bei doppelten HASH werten wird die Dateiendung incrementiert.
    add a note add a note
    To Top