Open hellow554 opened 2 years ago
https://badssl.com/ seems lacks TLSv1.3-only subdomain. Is there alternative endpoint to test connectivity with TLSv1.3-only servers?
On Windows, websocat is supposed to use system crypto libraries. Can Windows itself connect to TLSv1.3?
Maybe it can be possible to build Websocat for Windows with integrated OpenSSL instead of relying on Windows libraries.
According to this page you can use
openssl s_client -tls1_3 -connect tls13.cloudflare.com:443
you could setup your own nginx with a dummy certificate ;)
openssl s_client -tls1_2 -connect tls13.cloudflare.com:443
works as well.
Note that use can try workaround method of using TLS in Websocat, outsourcing it to external program.
Does that work on Windows?
Testing that on Monday
I'm under Windows 11, installed websocat via
My nginx server is configured to only accept TLSv1.3 connections via
it seems that websocat is not able to connect to it and errors out with:
which translates roughly to:
If I add TLSv1.2 to the nginx config as well, it works.