Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

docs: add alternative solution for TLS/SSL issues using symbolic link #1287

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

NaufalAns
Copy link

This pull request updates the documentation to include an alternative solution for resolving TLS/SSL issues with static binaries. The added method involves creating a symbolic link from /etc/ssl to the root directory, which simplifies the process of pointing OpenSSL to the required certificates.

I have successfully tested this approach and found it to be the easiest and most straightforward method compared to the other solutions described in the documentation.

@crazywhalecc
Copy link
Contributor

crazywhalecc commented Dec 24, 2024

I recently did some research between static-php and different distributions, maybe it is a better and permanent(maybe) solution to directly specify --openssldir=/etc/ssl when static-php builds static openssl.

Doing this will allow PHP to detect and use the same configuration and certificates as your system, and it should be hard to find an OS missing root certificates in 2024.

This path currently works well on common distributions such as CentOS, Ubuntu, Debian, Alpine, etc., and adding it upstream should solve most OpenSSL problems, including frankenphp.

Some edge cases, such as special customized or stripped distributions, do not have it, but AFAIK, even the minimal Docker Alpine uses this path. We can still modify it through the configuration file for those cases.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants