[wp-trac] [WordPress Trac] #33978: Don't set CURLOPT_CAINFO if sslverify is false
WordPress Trac
noreply at wordpress.org
Sun Sep 27 21:37:02 UTC 2015
#33978: Don't set CURLOPT_CAINFO if sslverify is false
--------------------------+--------------------------
Reporter: johnbillion | Owner: johnbillion
Type: defect (bug) | Status: closed
Priority: normal | Milestone: 4.4
Component: HTTP API | Version:
Severity: normal | Resolution: fixed
Keywords: has-patch | Focuses:
--------------------------+--------------------------
Changes (by johnbillion):
* status: assigned => closed
* resolution: => fixed
Comment:
In [changeset:"34639"]:
{{{
#!CommitTicketReference repository="" revision="34639"
Don't set `CURLOPT_CAINFO` when `sslverify` is false when sending HTTP API
requests through cURL. This avoids sending redundant information to cURL,
and avoids a bug in Apple's SecureTransport library which causes a request
to fail when a CA bundle is set but certificate verification is disabled.
This fixes issues with local HTTPS requests (eg. WP Cron) on OS X where
cURL is using SecureTransport instead of OpenSSL.
Fixes #33978
}}}
--
Ticket URL: <https://core.trac.wordpress.org/ticket/33978#comment:4>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list