php-openssl

I am trying to encrypt a string using openssl_encrypt in PHP but it keeps returning FALSE. $encrypted = openssl_encrypt('1234', 'AES-256-CBC', 'kGJeGF2hEQ', OPENSSL_ZERO_PADDING, '1234123412341234'); What am I doing wrong? Mjh On top of answers posted, which are excellent, the code you're after, given your input parameters would be the following: $plaintext = '1234'; $cipher = 'AES-256-CBC'; $key = 'this is a bad key'; $iv = openssl_random_pseudo_bytes(openssl_cipher_iv_length($cipher)); $encrypted = openssl_encrypt($plaintext, $cipher, $key, 0, $iv); if(false === $encrypted) { echo openssl

In the command line, I can verify that certificate is issued by trusted CA by typing openssl verify mycert.pem How do I do same with PHP's OpenSSL library? PHP has an openssl_verify function which takes many extra parameters: data , string $signature , mixed $pub_key_id How do I repeat that simple command line operation with corresponding PHP function? This is pretty easy with phpseclib, a pure PHP X509 implementation . eg. <?php include('File/X509.php'); $x509 = new File_X509(); $x509->loadCA('...'); $x509->loadX509('...'); echo $x509->validateSignature() ? 'valid' : 'invalid'; ?> See http:/

I'm implementing a validator for validating incoming requests from Amazon Alexa . I'm on step 5 and 6 which state: 5) base64-decode the Signature header value on the request to obtain the encrypted signature. 6) Use the public key extracted from the signing certificate to decrypt the encrypted signature to produce the asserted hash value. I've managed to extract the public key from the PEM-encoded X.509 certificate by doing: $publicKey = openssl_pkey_get_public($pem); $keyData = openssl_pkey_get_details($publicKey); Which returns my public key. I've then attempted to decrypt the signature like

I am asked to recompile mo_ssl with openssl 1.0.2 in SuseSE11SP3. However, I am a newbie to Suse, but know a little bit of linux. OS : Suse SE11SP3 Openssl : 0.9.8j <-which comes with original Suse linux Web Server : Apache httpd 2.2.9 Here is limitation I have. I cannot use zypper or rpm because company security policy does not allow me to do it. It is absurd, this is how it goes here. Another limitation I have is this system is used by other web servers which I don't have permission. I have to make it as locally as possible. What I want it to happen is that when I recompile apache server, I