-
Type:
Bug
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 15
-
Fix Version/s: None
-
Component/s: FreePBX Framework
-
Labels:None
-
Sprint:Sprint 62
-
ToDo:
You have a dependency on this package to do file transfers, and it's locked at version 1.7.0, which was released 5 years ago.
Since the recent expiration of the LetsEncrypt root CA, all file transfers to servers using LE certificates are failing. Why? Because in addition to being ancient, the author of this package thought it would be a good idea to use their own certificate bundle in the codebase. (Hint: it's a shitty idea.)
How to fix quickly? Setting the `verify` option to true will let the package use the system CA bundle.
--- /var/www/html/admin/libraries/modulefunctions.class.php
+++ /var/www/html/admin/libraries/modulefunctions.class.php
@@ -1711,6 +1711,7 @@
'hooks' => $hooks,
'timeout' => 1800, // Allow up to 1800 seconds (30 minutes) for the download to complete
'filename' => $filename, //avoid the requests object redundant decompress code
+ 'verify' => true,
);
$response = $requests->get('', array(), $options);
The real fix is to use a modern library and not something from 2016.
