[wp-trac] [WordPress Trac] #34924: Network upgrade fails on tls 1.2 only servers
WordPress Trac
noreply at wordpress.org
Wed Dec 9 01:37:05 UTC 2015
#34924: Network upgrade fails on tls 1.2 only servers
--------------------------+-----------------------------
Reporter: mensmaximus | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version: 4.4
Severity: normal | Keywords:
Focuses: |
--------------------------+-----------------------------
Setup:
Nginx 1.9.7 on Centos 7.1 with cURL 7.29
SSL configured with 'ssl_protocols TLSv1.2' only because Firefox does only
accept TLS 1.2 for http/2
Symptom:
After upgrading from WordPress 4.3 to 4.4 the network upgrade fails with
error message:
'Your server may not be able to connect to sites running on it. Error
message: TCP connection reset by peer'
Test:
Setting 'curl_setopt ( $handle, CURLOPT_SSLVERSION, CURL_SSLVERSION_TLSv1
);' in WP_Http_Curl::request solves the issue
This is definitely an issue with older cURL versions. cURL 7.45 works well
as reported by @dd32.
Suggestion:
Conditionally set CURLOPT_SSLVERSION if the first connect over https
fails.
Hint:
Since WP_Http_Curl has been introduced in WordPress 2.7.0 I guess all
version since 2.7.0 are affected.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/34924>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list