Docker container emulating RDS MySQL/MariaDB with SSL

Before start please read the following

https://techsparx.com/software-development/docker/damp/mysql-ssl-connection.html

This article can help you

Thanks for your answer, I didn't come across this article and it is very detailed. I found others that are pretty similar but not as precise as this one. I also tried following the steps in this article, but I keep having the same issue. please allow me to be more specific.

This article works great for creating a docker image allowing you to use SSL connections for your MySQL/MariaDB docker instance. As you can see in the following code I can connect to the docker instance through SSL with CA verify

$ docker run -d  --rm --name test  -e MARIADB_ROOT_PASSWORD=12345 -p 3306:3306 c7cc3d08c5b7
459e69f98d36016a55b38810ef580160972e64240b1b4b80f54fbbc736df832e
$ mysql -uroot -p -h127.0.0.1 --ssl --ssl-ca=ca.pem
Welcome to the MariaDB monitor.  Commands end with ; or \g.
Your MariaDB connection id is 61
Server version: 10.6.11-MariaDB-1:10.6.11+maria~ubu2004 mariadb.org binary distribution

Copyright (c) 2000, 2018, Oracle, MariaDB Corporation Ab and others.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

MariaDB [(none)]> \s
--------------
mysql  Ver 15.1 Distrib 10.11.2-MariaDB, for Linux (x86_64) using readline 5.1

Connection id:          61
Current database:
Current user:           root@172.17.0.1
SSL:                    Cipher in use is TLS_AES_256_GCM_SHA384
Current pager:          stdout
Using outfile:          ''
Using delimiter:        ;
Server:                 MariaDB
Server version:         10.6.11-MariaDB-1:10.6.11+maria~ubu2004 mariadb.org binary distribution
Protocol version:       10
Connection:             127.0.0.1 via TCP/IP
Server characterset:    utf8mb4
Db     characterset:    utf8mb4
Client characterset:    utf8mb3
Conn.  characterset:    utf8mb3
TCP port:               3306
Uptime:                 23 hours 8 min 1 sec

Threads: 1  Questions: 15  Slow queries: 0  Opens: 17  Open tables: 10  Queries per second avg: 0.000
--------------

Until here, everything looks perfect and as expected. But my real problem is when I try to execute the following PHP code:

<?php
error_reporting(E_ALL);
ini_set('display_errors', '1');

$server = '127.0.0.1';
$port = '3306';
$dbname = 'test';
$username = 'root';
$password = '12345';

$options = array(
    PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION,
    PDO::MYSQL_ATTR_SSL_VERIFY_SERVER_CERT => true,
    PDO::MYSQL_ATTR_SSL_CA => 'ca.pem',
);

try {
    $dsn = "mysql:host=$server;port=$port;charset=utf8;dbname=$dbname";
    $pdo_nossl = new PDO($dsn, $username, $password, $options);
    echo "Connection successful";
} catch (PDOException $e) {
    echo "Connection failed: " . $e->getMessage();
}

The same code but pointing to an RDS works perfectly, no need to add the SSL client Key, Cert. Only with MYSQL_ATTR_SSL_CA and the proper bundle, works. To be more precise, if you set MYSQL_ATTR_SSL_VERIFY_SERVER_CERT to false, the code works. But I just wanted to keep the same configuration I have with an RDS, which is verifying the SSL cert.

I have also tried creating the CA with the domain "local." and the server and client with "mariadb.local." and start the docker instance with this name, also set this on internal DNS just to have resolution, also modify the PHP code to point to its name instead of IP.

Not sure if what I'm asking is possible or I am missing something

Thanks!