(PHP ActiveX) Duplicate openssl dgst -sha256 -verify pubKey.pem -signature signature.sig in.dat

Demonstrates how to duplicate this OpenSSL command:

openssl dgst -sha256 -verify pubKey.pem -signature signature.sig in.dat

The in.dat file contains the original data that was signed, and can contain text or binary data of any type. The above OpenSSL command does the following:

Creates a SHA256 digest of the contents of the input file.
Verifies the SHA256 digest using the public key.

Chilkat ActiveX Downloads

ActiveX for 32-bit and 64-bit Windows

Note: The php_com_dotnet.dll may need to be enabled inside of php.ini.

<?php

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.PublicKey')
$pubKey = new COM("Chilkat.PublicKey");

// Load the public key from an PEM file:
$success = $pubKey->LoadFromFile('pubKey.pem');
if ($success != 1) {
    print $pubKey->LastErrorText . "\n";
    exit;
}

// Load the data of the original file that was signed.
// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.BinData')
$bdFileData = new COM("Chilkat.BinData");
$success = $bdFileData->LoadFile('in.dat');

// Load the signature.
// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.BinData')
$bdSig = new COM("Chilkat.BinData");
$success = $bdSig->LoadFile('signature.sig');

// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.Rsa')
$rsa = new COM("Chilkat.Rsa");

// Import the public key into the RSA component:
$success = $rsa->ImportPublicKeyObj($pubKey);
if ($success != 1) {
    print $rsa->LastErrorText . "\n";
    exit;
}

// OpenSSL uses big-endian.
$rsa->LittleEndian = 0;

$success = $rsa->VerifyBd($bdFileData,'sha256',$bdSig);
if ($success != 1) {
    print $rsa->LastErrorText . "\n";
    print 'The signature was invalid.' . "\n";
    exit;
}

print 'The signature was verified.' . "\n";

?>