(PHP ActiveX) Duplicate openssl smime -encrypt -binary -aes-256-cbc -in some_file.dat -out some_file.dat.enc -outform DER cert.crt

Demonstrates how to encrypt to binary DER using 256-bit AES (CBC mode) as the underlying symmetric encryption algorithm, to produce PKCS7 enveloped data (binary DER).

Duplicates the following openssl command:

openssl smime -encrypt -binary -aes-256-cbc -in some_file.dat -out some_file.dat.enc -outform DER cert.crt

Chilkat ActiveX Downloads ActiveX for 32-bit and 64-bit Windows Note: The php_com_dotnet.dll may need to be enabled inside of php.ini.

<?php

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.Cert')
$cert = new COM("Chilkat.Cert");
$success = $cert->LoadFromFile('qa_data/openssl/EE.cer');
if ($success == 0) {
    print $cert->LastErrorText . "\n";
    exit;
}

// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.BinData')
$bd = new COM("Chilkat.BinData");
$success = $bd->LoadFile('qa_data/openssl/hello.txt');
// Assuming success..

// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.Crypt2')
$crypt = new COM("Chilkat.Crypt2");
$success = $crypt->SetEncryptCert($cert);
if ($success == 0) {
    print $crypt->LastErrorText . "\n";
    exit;
}

$crypt->CryptAlgorithm = 'PKI';

// Indicate the underlying symmetric encryption to be used:
$crypt->Pkcs7CryptAlg = 'aes';
$crypt->KeyLength = 256;
$crypt->CipherMode = 'cbc';

$success = $crypt->CkEncryptFile('qa_data/openssl/hello.txt','qa_output/hello.txt.enc');
if ($success == 0) {
    print $crypt->LastErrorText . "\n";
    exit;
}

print 'Success.' . "\n";

?>