projects / civicrm-core.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: bece104)
CRM-15763 - Payment Express has deprecated SSLv3
authorMatt Renner <matt@rennernz.com>
Sun, 28 Dec 2014 08:09:07 +0000 (21:09 +1300)
committerMatt Renner <matt@rennernz.com>
Sun, 28 Dec 2014 08:09:07 +0000 (21:09 +1300)
Payment Express (DPS) no longer supports SSLv3 (3), so suggest this is adjusted to default (0) which will allow curl to auto-negotiate to use a compatible version of TLS

CRM/Core/Payment/PaymentExpressUtils.php patch | blob | blame | history

diff --git a/CRM/Core/Payment/PaymentExpressUtils.php b/CRM/Core/Payment/PaymentExpressUtils.php
index 8b513af1435740cf8f3415df3f270ab9843b4a23..8e64d0c14a2192eca34d8938374aa3a4c4be0d13 100644 (file)
--- a/CRM/Core/Payment/PaymentExpressUtils.php
+++ b/CRM/Core/Payment/PaymentExpressUtils.php
@@ -98,7 +98,7 @@ class CRM_Core_Payment_PaymentExpressUtils {
       curl_setopt($curl, CURLOPT_FOLLOWLOCATION, FALSE);
     }
     curl_setopt($curl, CURLOPT_HEADER, 0);
-    curl_setopt($curl, CURLOPT_SSLVERSION, 3);
+    curl_setopt($curl, CURLOPT_SSLVERSION, 0);
 
     if (strtoupper(substr(@php_uname('s'), 0, 3)) === 'WIN') {
       curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, CRM_Core_BAO_Setting::getItem(CRM_Core_BAO_Setting::SYSTEM_PREFERENCES_NAME, 'verifySSL'));