From: Matt Renner Date: Sun, 28 Dec 2014 08:09:07 +0000 (+1300) Subject: CRM-15763 - Payment Express has deprecated SSLv3 X-Git-Url: https://vcs.fsf.org/?a=commitdiff_plain;h=9120cfd9fcc971d1628b14dc3e0f1f17c11cc6ac;p=civicrm-core.git CRM-15763 - Payment Express has deprecated SSLv3 Payment Express (DPS) no longer supports SSLv3 (3), so suggest this is adjusted to default (0) which will allow curl to auto-negotiate to use a compatible version of TLS --- diff --git a/CRM/Core/Payment/PaymentExpressUtils.php b/CRM/Core/Payment/PaymentExpressUtils.php index 8b513af143..8e64d0c14a 100644 --- a/CRM/Core/Payment/PaymentExpressUtils.php +++ b/CRM/Core/Payment/PaymentExpressUtils.php @@ -98,7 +98,7 @@ class CRM_Core_Payment_PaymentExpressUtils { curl_setopt($curl, CURLOPT_FOLLOWLOCATION, FALSE); } curl_setopt($curl, CURLOPT_HEADER, 0); - curl_setopt($curl, CURLOPT_SSLVERSION, 3); + curl_setopt($curl, CURLOPT_SSLVERSION, 0); if (strtoupper(substr(@php_uname('s'), 0, 3)) === 'WIN') { curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, CRM_Core_BAO_Setting::getItem(CRM_Core_BAO_Setting::SYSTEM_PREFERENCES_NAME, 'verifySSL'));