Open Rafagd opened 9 months ago
Follow up:
I've been looking into the OpenSSL docs to have a clue on what I am supposed to send as parameters and it seems that the parameters accepted here are restricted to TLS1.2 or prior, and TLS1.3 onwards uses another set of parameters for choosing its cipher suite. I wonder if it's even possible to say "give me a tls 1/1.1/1.2/1.3 stream" at all, given they are working with completely different parameter sets.
From manual page: https://php.net/context.ssl
When you open the page for
stream_context_create
for a way to restrict the TLS version (in my case, for testing purposes), eventually you might be directed to this page, which lists all the parameters for the SSL context.In the ciphers section, it recommends you to have a look at this page: https://www.openssl.org/docs/manmaster/man1/ciphers.html#CIPHER-LIST-FORMAT for a list of supported formats supported by OpenSSL, but it seems like this page has since changed and does not contain the necessary information.
I'm still looking for the correct answer, but I'm just flagging this issue before I forget about it.