PHP Manual: Runtime Configuration

Runtime Configuration

The behaviour of these functions is affected by settings in php.ini.

**openssl Configure Options**
Name	Default	Changeable	Changelog
openssl.cafile	""	PHP_INI_PERDIR	Available since PHP 5.6.0.
openssl.capath	""	PHP_INI_PERDIR	Available since PHP 5.6.0.

For further details and definitions of the PHP_INI_* modes, see the Where a configuration setting may be set.

Here's a short explanation of the configuration directives.

openssl.cafile string: Location of Certificate Authority file on local filesystem which should be used with the verify_peer context option to authenticate the identity of the remote peer.
openssl.capath string: If cafile is not specified or if the certificate is not found there, the directory pointed to by capath is searched for a suitable certificate. capath must be a correctly hashed certificate directory.

See also the SSL stream context options.