(PHP Extension) Duplicate OpensSSL Command that Decrypts Binary DER

This example duplicates the following:

openssl smime -decrypt -in INPUT_FILE -inform der -binary -out OUTPUT_FILE -recip PEM_CERT_AND_KEY -passin pass:PRIVKEY_PASSWORD

Note: Although "smime" is the OpenSSL command, we're not really dealing with S/MIME. The arguments "-inform der -binary" indicate that the input is simply the binary DER (i.e. the PKCS7 binary encrypted object). The output can be any type of file (whatever was encrypted).

Chilkat PHP Downloads PHP Extension for Windows, Linux, MacOS, Alpine Linux, Solaris

<?php

// The version number (9_5_0) should match version of the Chilkat extension used, omitting the micro-version number.
// For example, if using Chilkat v9.5.0.48, then include as shown here:
include("chilkat_9_5_0.php");

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

$crypt = new CkCrypt2();

$crypt->put_CryptAlgorithm('pki');

$pem = new CkPem();
$success = $pem->LoadPemFile('qa_data/pem/myPem.pem','password');
if ($success != true) {
    print $pem->lastErrorText() . "\n";
    exit;
}

// privkey is a CkPrivateKey
$privkey = $pem->GetPrivateKey(0);
if ($pem->get_LastMethodSuccess() != true) {
    print $pem->lastErrorText() . "\n";
    exit;
}

// cert is a CkCert
$cert = $pem->GetCert(0);
if ($pem->get_LastMethodSuccess() != true) {

    print $pem->lastErrorText() . "\n";
    exit;
}

$success = $crypt->SetDecryptCert2($cert,$privkey);
if ($success != true) {

    print $crypt->lastErrorText() . "\n";
    exit;
}

$success = $crypt->CkDecryptFile('qa_data/infile.enc','qa_output/outfile.dat');
if ($success != true) {
    print $crypt->lastErrorText() . "\n";
    exit;
}

print 'Success.' . "\n";

?>