[MDL-57450] Remove TLS check from environment file whilst it is not reliable - Moodle Tracker

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 3.2
Fix Version/s: 3.2.1
Component/s: Installation, Libraries
Labels:
- ci
- triaged

Affected Branches:
MOODLE_32_STABLE
Fixed Branches:
MOODLE_32_STABLE
Pull from Repository:
git://github.com/danpoltawski/moodle.git
Pull Master Branch:
~~MDL-57450~~-master
Pull Master Diff URL:
https://github.com/danpoltawski/moodle/compare/5100c486bd...MDL-57450-master
Testing Instructions:

Hide

Compare the environment file between 32 and 31 - they should be the same.

Try install or upgrade

Show
Compare the environment file between 32 and 31 - they should be the same. Try install or upgrade

Description

In ~~MDL-55404~~ we added checks for curl versions to detect situations where TLS 1.2 can't be used, which affects integrations with external services (as well as our own updates service).

Unfortunately it has come to light that the version sniffing is just not reliable at all, operating system vendors backport security patches to older versions - so in many cases we reporting a problem which is not a problem. False positives and the solution to self-compile or something like php will be causing more harm than good.

To solve this properly, we need to stop sniffing versions, and instead do a real test of TLS support - ~~MDL-57262~~ is open about this.

But in the meantime, to prevent these false positves causing problems for people upgrading, we will remove the check from 3.2 environment requirements.

Attachments

Issue Links

has a non-specific relationship to

MDL-57262 Re-implement curl TLS check by checking functionality rather than sniffing versions

Closed

is a regression caused by

MDL-56917 Environment checks for TLS can trigger a false positive

Closed

will help resolve

MDL-56806 Add environment checks for TLS that missed stables in MDL-55404

Closed

Activity

People

Assignee:: Dan Poltawski

Reporter:: Dan Poltawski

Peer reviewer:: Ankit Agarwal

Integrator:: David Monllaó

Tester:: Mark Nelson

Participants:: Ankit Agarwal, CiBoT, Dan Poltawski, David Monllaó, Mark Nelson, Matteo Scaramuccia

Component watchers:: Matteo Scaramuccia, David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo, David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo

Votes:: 1 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 20/Dec/16 2:47 AM

Updated:: 07/Jan/17 12:56 AM

Resolved:: 07/Jan/17 12:56 AM

Fix Release Date:: 9/Jan/17