Jump to content

New AlmaLinux 9.5 server with CWP Pro compiled PHP 8.3 both with OpenSSL 3.2.2 and OpenSSL 1.1 and it breaks SMTP connections.

TheHolbi
TheHolbi
in CWP - Control WEB Panel

Featured Replies

Posted

Output of command (PHP 8.2): php -i | grep "OpenSSL"

SSL Version => OpenSSL/3.2.2

OpenSSL support => enabled

OpenSSL Library Version => OpenSSL 1.1.1t 7 Feb 2023

OpenSSL Header Version => OpenSSL 1.1.1t 7 Feb 2023

Native OpenSSL support => enabled

Output of command (PHP-FPM 8.3): /opt/alt/php-fpm83/usr/bin/php -i | grep "OpenSSL"

SSL Version => OpenSSL/3.2.2

OpenSSL support => enabled

OpenSSL Library Version => OpenSSL 1.1.1t 7 Feb 2023

OpenSSL Header Version => OpenSSL 1.1.1t 7 Feb 2023

Native OpenSSL support => enabled

php -i | grep "Configure Command"

Configure Command => './configure' '--with-config-file-path=/usr/local/php' '--enable-cgi' '--with-config-file-scan-dir=/usr/local/php/php.d' '--with-zlib=/usr' '--enable-mbstring' '--with-zip' '--enable-bcmath' '--enable-pcntl' '--enable-ftp' '--enable-exif' '--enable-calendar' '--enable-sysvmsg' '--enable-sysvsem' '--enable-sysvshm' '--with-tidy' '--with-curl' '--with-gmp' '--with-pspell' '--enable-gd' '--with-jpeg' '--with-freetype' '--enable-gd-jis-conv' '--with-webp' '--with-avif' '--with-zlib-dir=/usr' '--with-xpm' '--with-openssl' '--with-pdo-mysql=mysqlnd' '--with-gettext=/usr' '--with-bz2=/usr' '--with-mysqli' '--enable-soap' '--enable-phar' '--with-xsl' '--with-kerberos' '--enable-posix' '--enable-sockets' '--with-external-pcre' '--with-libdir=lib64' '--with-mysql-sock=/var/lib/mysql/mysql.sock' '--enable-intl' '--with-imap' '--with-imap-ssl' '--with-password-argon2' 'PKG_CONFIG_PATH=/usr/local/opensslso/lib/pkgconfig'

/opt/alt/php-fpm83/usr/bin/php -i | grep "Configure Command"

Configure Command => './configure' '--prefix=/opt/alt/php-fpm83/usr' '--with-config-file-path=/opt/alt/php-fpm83/usr/php' '--with-config-file-scan-dir=/opt/alt/php-fpm83/usr/php/php.d' '--with-zlib=/usr' '--enable-mbstring' '--with-zip' '--enable-bcmath' '--enable-pcntl' '--enable-ftp' '--enable-exif' '--enable-calendar' '--enable-sysvmsg' '--enable-sysvsem' '--enable-sysvshm' '--with-tidy' '--with-curl' '--with-iconv' '--with-gmp' '--with-pspell' '--enable-gd' '--with-jpeg' '--with-freetype' '--enable-gd-jis-conv' '--with-webp' '--with-avif' '--with-zlib-dir=/usr' '--with-xpm' '--with-openssl' '--with-pdo-mysql=mysqlnd' '--with-gettext=/usr' '--with-bz2=/usr' '--with-mysqli' '--enable-soap' '--enable-phar' '--with-xsl' '--with-kerberos' '--enable-posix' '--enable-sockets' '--with-external-pcre' '--with-libdir=lib64' '--with-mysql-sock=/var/lib/mysql/mysql.sock' '--enable-intl' '--with-imap' '--with-imap-ssl' '--enable-fpm' '--enable-opcache' '--with-password-argon2' 'PKG_CONFIG_PATH=/usr/local/opensslso/lib/pkgconfig'

The PHP is configured to use OpenSSL from:
🔴 PKG_CONFIG_PATH=/usr/local/opensslso/lib/pkgconfig
This means PHP is still linked to OpenSSL 1.1.1t instead of OpenSSL 3.2.2.

@Sandeep B. Do you have any suggestion to correct it as fast as possible?

May all CWP in AlmaLinux 9 have this issue.

Edited by TheHolbi
typo in title

  • Author

So, we need change the PHP build script to include the right OpenSSL library (e.g. 3.2.2 for the AlmaLinux 9.5), or we need to move the OpenSSL 3.x to location /usr/local/opensslso/ instead of the v.1.1.
The CWP uses PHP 7.x for admin-panel function so, the OpenSSL v.1.1 is not removable.

@Sandeep B. What is your opinion?

Edited by TheHolbi
typo, with OpenSSL version

  • TheHolbi changed the title to New AlmaLinux 9.5 server with CWP Pro compiled PHP 8.3 both with OpenSSL 3.2.2 and OpenSSL 1.1 and it breaks SMTP connections.
  • Author

This is the SMTP debug, from a WordPress SMTP Plugin, where the PHP is connecting to OpenSSL 1.1, instead of the OpenSSL 3.2.2:

Versions:

WordPress: 6.7.2

WordPress MS: No

PHP: 8.2.27

WP Mail SMTP: 4.4.0

Params:

Mailer: smtp

Constants: No

ErrorInfo: SMTP Error: Could not connect to SMTP host. Failed to connect to serverSMTP server error: Failed to connect to server

Host: vps.example.com

Port: 465

SMTPSecure: ssl

SMTPAutoTLS: bool(false)

SMTPAuth: bool(true)

Server:

OpenSSL: OpenSSL 1.1.1t 7 Feb 2023

Debug:

Email Source: WP Mail SMTP

Mailer: Other SMTP

SMTP Error: Could not connect to SMTP host. Failed to connect to serverSMTP server error: Failed to connect to server

SMTP Debug:

2025-03-09 20:58:34 Connection: opening to ssl://vps.example.com:465, timeout=30, options=array()

2025-03-09 20:58:34 Connection failed. Error #2: stream_socket_client(): SSL operation failed with code 1. OpenSSL Error messages:error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed [/home/user/public_html/wp-includes/PHPMailer/SMTP.php line 412]

2025-03-09 20:58:34 Connection failed. Error #2: stream_socket_client(): Failed to enable crypto [/home/user/public_html/wp-includes/PHPMailer/SMTP.php line 412]

2025-03-09 20:58:34 Connection failed. Error #2: stream_socket_client(): Unable to connect to ssl://vps.example.com:465 (Unknown error) [/home/user/public_html/wp-includes/PHPMailer/SMTP.php line 412]

2025-03-09 20:58:34 SMTP ERROR: Failed to connect to server: (0)

SMTP Error: Could not connect to SMTP host. Failed to connect to server

Create an account or sign in to comment

Go to topic listing

Topics