-
Notifications
You must be signed in to change notification settings - Fork 5
/
PublicKey.class.php
44 lines (39 loc) · 1.43 KB
/
PublicKey.class.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
<?php
class PublicKey {
public $keyResource = null;
public function __construct($certificate) {
if(!extension_loaded('openssl'))
throw new OpenSSLExtensionNotLoadedException('The openssl module is not loaded.');
$this->keyResource = openssl_pkey_get_public($certificate);
}
/**
* Verifies that the data and the signature belong to this public key.
* Returns true on success, false on failure.
* @param mixed $data The data to be verified
* @param mixed $signature The signature of the data
* @param string $algoritm Which algorithm to use for signing
* @return boolean
* @throws InvalidMessageDigestAlgorithmException
*/
public function verify($data, $signature, $algorithm = 'RSA-SHA256') {
if(!in_array($algorithm, openssl_get_md_methods(true)))
throw new InvalidMessageDigestAlgorithmException(
"The digest algorithm '$algorithm' is not supported by this openssl implementation.");
return openssl_verify($data, $signature, $this->keyResource, $algorithm) == 1;
}
/**
* Decrypts $data using this public key.
* @param mixed $data
* @return string
* @throws DecryptionFailedException
*/
public function decrypt($data) {
if(!openssl_public_decrypt($data, $decrypted, $this->keyResource))
throw new DecryptionFailedException('Failed decrypting the data with this public key.');
return $decrypted;
}
public function __destruct() {
if($this->keyResource)
openssl_free_key($this->keyResource);
}
}