Authorize.Net Sandbox: April 30, 2017
What does this mean?
- PHP uses the system-supplied cURL library, which requires OpenSSL 1.0.1c or later.
- You might need to update your SSL/TLS libraries.
- OpenSSL installed in your operating system's openssl version.
- OpenSSL extension installed in your PHP. Find this in your php.ini.
- OpenSSL used by PHP_CURL.curl_version().
- To find the openssl_version information for cURL, run:
php -r 'echo json_encode(curl_version(), JSON_PRETTY_PRINT);'
The returned php_curl version might be different from the openssl version because they are different components.
- When you update your OpenSSL libraries, you must update the php_curl OpenSSL version and not the OS OpenSSL version.
- Download cacert.pem and TlsCheck.php.
- In a shell on your production system, run:
php -f TlsCheck.php
- Make sure that your command line test uses the same versions of PHP and SSL/TLS libraries that your web server uses.
- If you use MAMP or XAMPP as your development set up, the PHP that is packaged with them uses an earlier version of OpenSSL, which you cannot easily update. For more information about this issue and a temporary workaround, see Unknown SSL protocol error.