Runtime Configuration

The behaviour of these functions is affected by settings in php.ini.

openssl Configure Options
Name Default Changeable Changelog
openssl.cafile "" PHP_INI_PERDIR  
openssl.capath "" PHP_INI_PERDIR  
For further details and definitions of the PHP_INI_* modes, see the Where a configuration setting may be set.

Here's a short explanation of the configuration directives.

openssl.cafile string

Location of Certificate Authority file on local filesystem which should be used with the verify_peer context option to authenticate the identity of the remote peer.

openssl.capath string

If cafile is not specified or if the certificate is not found there, the directory pointed to by capath is searched for a suitable certificate. capath must be a correctly hashed certificate directory.

See also the SSL stream context options.