Really Simple SSL update 7.2.3 has generated critical error

Hi @treadsoftly,

Sorry to hear about the issue. It does appear that the website is still accessible though!

It looks like the error occurred because the /uploads/really-simple-ssl/ directory is not writable, so an error was thrown when the plugin tried writing to that folder.

Could you set the permissions of the /uploads/really-simple-ssl/ folder to 644? An easy way to do this would be to use an FTP client such as FileZilla (https://developer.www.ads-software.com/advanced-administration/server/file-permissions/#using-an-ftp-client). But you could also ask your Hosting Provider to do that for you, if you’re not comfortable with this.

Kind regards, Jarno

Thanks for your reply. I can access my folders and files via CP Panel.

There is no directory of this address /uploads/really-simple-ssl/ in the Uploads folder. In the Plug-Ins folder the Really Simple SSL directory is included, as it should.

I have a second website waitingtocreditmarvels.net using the same platforms. I did find the uploads directory for this site but can’t explain why this is different from my primary site.

However, I was able to change the permissions as you suggested. I then updated the plug-in to 7.2.3 but have now experienced exactly the same problem with this second website. Sorry but I need more help.

Hi @treadsoftly,

I understand. As the /uploads/ folder itself exists, but doesn’t contain a really-simple-ssl folder inside of it; could you verify that the /uploads/ folder itself has 755 permissions?

Kind regards, Jarno

Yes, the uploads folder has 755 permissions, as does every folder.

Bill

Hi @treadsoftly,

I see. Unfortunately, this is an issue we could not reproduce as of yet. Please manually create a folder called really-simple-ssl within the /uploads/ folder, and assign the folder 755 permissions.

So, you should end up with a folder like this:

/uploads/really-simple-ssl/

Kind regards, Jarno

I’ve done that

Hi @treadsoftly,

Great, thanks for confirming. Do you still experience this issue after doing so?

If that does turn out to be the case, could you share the new error log(s) with us?

Kind regards, Jarno

The problem remains and the error message looks the same (copied below) and, as I’ve mentioned, the same problems remain for my 2nd website. Please keep trying to solve this.

An error of type E_ERROR was caused in line 45 of the file /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-folder-name.php. Error message: Uncaught RuntimeException: Directory “/var/sites/t/treadsoftly.net/public_html/wp-content/uploads/really-simple-ssl/913b6301295c290fe9dd58b892e58d60” was not created in /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-folder-name.php:45
Stack trace: 0 /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-folder-name.php(35): security\wordpress\vulnerabilities\Rsssl_Folder_Name->createFolder() 1 /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-folder-name.php(10): security\wordpress\vulnerabilities\Rsssl_Folder_Name->verifyAndCreateFolder() 2 /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-folder-name.php(57): security\wordpress\vulnerabilities\Rsssl_Folder_Name->__construct() 3 /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-file-storage.php(20): security\wordpress\vulnerabilities\Rsssl_Folder_Name::getFolderName() 4 /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-file-storage.php(142): security\wordpress\vulnerabilities\Rsssl_File_Storage->__construct() 5 /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities.php(1041): security\wordpress\vulnerabilities\Rsssl_File_Storage::get_upload_dir() 6 /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities.php(504): rsssl_vulnerabilities->get_components() 7 /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities.php(296): rsssl_vulnerabilities->cache_installed_plugins() 8 /home/jgcm0j7txjpi/public_html/wp-includes/class-wp-hook.php(324): rsssl_vulnerabilities->show_help_notices() 9 /home/jgcm0j7txjpi/public_html/wp-includes/plugin.php(205): WP_Hook->apply_filters() 10 /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/class-admin.php(2400): apply_filters() 11 /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/class-admin.php(2615): rsssl_admin->get_notices_list() 12 /home/jgcm0j7txjpi/public_html/wp-content/plugins/really-simple-ssl/settings/settings.php(174): rsssl_admin->count_plusones() 13 /home/jgcm0j7txjpi/public_html/wp-includes/class-wp-hook.php(324): rsssl_add_option_menu() 14 /home/jgcm0j7txjpi/public_html/wp-includes/class-wp-hook.php(348): WP_Hook->apply_filters() 15 /home/jgcm0j7txjpi/public_html/wp-includes/plugin.php(517): WP_Hook->do_action() 16 /home/jgcm0j7txjpi/public_html/wp-admin/includes/menu.php(161): do_action() 17 /home/jgcm0j7txjpi/public_html/wp-admin/menu.php(417): require_once(‘/home/jgcm0j7tx…’) 18 /home/jgcm0j7txjpi/public_html/wp-admin/admin.php(158): require(‘/home/jgcm0j7tx…’) 19 /home/jgcm0j7txjpi/public_html/wp-admin/index.php(10): require_once(‘/home/jgcm0j7tx…’) 20 {main}

thrown

Hi @treadsoftly,

The problem is that the upload dir differs from the location dir. This means that the folder url differs.

We do not have a complete solution for this yet, however, for your specific case, we’re going to create a MU Plugin which manipulates the upload folder output to make it work.

We now have the necessary details for the “treadsoftly” site (as listed in the error message). Could you provide me with a log from the other site as well, so I could add this path to an MU Plugin as well?

If all goes well, I hope to be able to provide you with such an MU Plugin within a few business days.

Kind regards, Jarno

many thanks for your offer. It is important to me to be able to resume posting to these sites. Here’s the error message for my other site, waitingtocreditmarvels.net:

An error of type E_ERROR was caused in line 45 of the file /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-folder-name.php. Error message: Uncaught RuntimeException: Directory “/home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/uploads/really-simple-ssl/63ef34ce94e912ed8286e0405186d32b” was not created in /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-folder-name.php:45
Stack trace: 0 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-folder-name.php(35): security\wordpress\vulnerabilities\Rsssl_Folder_Name->createFolder() 1 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-folder-name.php(10): security\wordpress\vulnerabilities\Rsssl_Folder_Name->verifyAndCreateFolder() 2 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-folder-name.php(57): security\wordpress\vulnerabilities\Rsssl_Folder_Name->__construct() 3 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-file-storage.php(20): security\wordpress\vulnerabilities\Rsssl_Folder_Name::getFolderName() 4 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities/class-rsssl-file-storage.php(142): security\wordpress\vulnerabilities\Rsssl_File_Storage->__construct() 5 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities.php(1041): security\wordpress\vulnerabilities\Rsssl_File_Storage::get_upload_dir() 6 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities.php(504): rsssl_vulnerabilities->get_components() 7 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/security/wordpress/vulnerabilities.php(296): rsssl_vulnerabilities->cache_installed_plugins() 8 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-includes/class-wp-hook.php(324): rsssl_vulnerabilities->show_help_notices() 9 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-includes/plugin.php(205): WP_Hook->apply_filters() 10 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/class-admin.php(2400): apply_filters() 11 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/class-admin.php(2615): rsssl_admin->get_notices_list() 12 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-content/plugins/really-simple-ssl/settings/settings.php(174): rsssl_admin->count_plusones() 13 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-includes/class-wp-hook.php(324): rsssl_add_option_menu() 14 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-includes/class-wp-hook.php(348): WP_Hook->apply_filters() 15 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-includes/plugin.php(517): WP_Hook->do_action() 16 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-admin/includes/menu.php(161): do_action() 17 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-admin/menu.php(417): require_once(‘/home/jgcm0j7tx…’) 18 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-admin/admin.php(158): require(‘/home/jgcm0j7tx…’) 19 /home/jgcm0j7txjpi/public_html/waitingtocreditmarvels.net/wp-admin/index.php(10): require_once(‘/home/jgcm0j7tx…’) 20 {main}

thrown

Hi @treadsoftly,

Not a problem at all, please excuse the slight delay in response time while we looked further into this.

The below version of Really Simple SSL contains additional checks to prevent this error from occurring. Could you confirm whether this version resolves the error for you?

Download (WeTransfer): https://we.tl/t-yJdUhzRZRD

You can also manually obtain the aforementioned version from GitHub, if you prefer that: https://github.com/Really-Simple-Plugins/really-simple-ssl/tree/writable-%26-folder-exists-checks

Hope this helps! Kind regards, Jarno

thanks for doing this.

I can’t use WeTransfer because it’s asking me to sign up for ￡9 per month in order to Receive files.

On Github I can see a folder marked “Security” and in my File Manager I can see a folder of the same name in public_html/wp-content/plugins/really-simple-ssl/security.

I apologise that I don’t know how to proceed from this point. How can I download your work to my laptop? And should the Upload overwrite the existing code? Or is this a copy and paste job?

If it’s not feasible to explain what to do, is there any downside to deleting the plugin from the File Manager and starting again? The SSL certificate is valid and displays https:

Hi @treadsoftly,

WeTransfer is free (otherwise I wouldn’t have used this service), so I’m a bit confused by what you’re mentioning about having to sign up.

If I visit the link, all I have to do is accept the cookies and I can click the blue download button to obtain the plugin zip file; which you can upload directly as a new plugin on your WordPress site and overwrite the old one.

Kind regards, Jarno

Apologies for misunderstanding WeTransfer. I have now downloaded the zip file and extracted the contents to a folder really-simple-ssl.

The Cpanel FTP upload fails with an error message “is a directory”. I don’t understand this.

I can upload the original zip file but don’t know what to do with it inside the FTP manager.

I’m also unsure how I will be able to activate the plugin as I can’t log in to the site.

Sorry this is trying.

Hi @treadsoftly,

You can upload the new really-simple-ssl directory to the /wp-content/plugins/ directory over FTP, and replace the old version that’s already there.

Kind regards, Jarno