php - fockopen: Failed to enable crypto -


similar questions have been answered before, haven't been able solve particular case.

on php 5.6+ machine when try use fsockopen on particular domain receive following (not real domain):

$ php -r "var_dump(fsockopen(\"ssl://www.domain.net\", 9085, \$errnum, \$errstr, 5));" php warning:  fsockopen(): failed enable crypto in command line code on line 1 php warning:  fsockopen(): unable connect ssl://www.domain.net:9085 (unknown error) in command line code on line 1 bool(false)

this works fine on php 5.5, points being change in 5.6 dealing way fsockopen verifies ssl certificates.

other connections can made without issue:

$ php -r "var_dump(fsockopen(\"ssl://www.google.com\", 443, \$errnum, \$errstr, 5));" resource(4) of type (stream)

based on other suggestions i've checked default cert file

$ php -r "print_r(openssl_get_cert_locations());" array (     [default_cert_file] => /usr/lib/ssl/cert.pem     [default_cert_file_env] => ssl_cert_file     [default_cert_dir] => /usr/lib/ssl/certs     [default_cert_dir_env] => ssl_cert_dir     [default_private_dir] => /usr/lib/ssl/private     [default_default_cert_area] => /usr/lib/ssl     [ini_cafile] =>     [ini_capath] => )

the file /usr/lib/ssl/cert.pem missing, download ca bundle curl , renamed match. still no luck.

i'm not receiving additional information indicating verifying certificate fails. there other ways debug issue?

after head bashing, discovered cause.

php 5.6 implemented default set of support ciphers, removed support older more vulnerable ones. http://php.net/manual/en/migration56.openssl.php

the default ciphers used php have been updated more secure list based on » mozilla cipher recommendations, 2 additional exclusions: anonymous diffie-hellman ciphers, , rc4. domain attempting connected supports tlsv1/sslv3, cipher rc4-md5

do work around issue switched stream_socket_client instead of fsockopen. added rc4-md5 stream cipher support in context:

$context = stream_context_create(['ssl' => [   'ciphers' => 'rc4-md5' ]]);  $socket = stream_socket_client('ssl://'.$host.':'.$port, $errno, $errstr, 30, stream_client_connect, $context);

Comments

Post a Comment

Popular posts from this blog

asynchronous - C# WinSCP .NET assembly: How to upload multiple files asynchronously -

i using winscp .net assembly uploading files. want upload multiple files asynchronous way. have created method works single upload. public class uploadingdata { private sessionoptions _sessionoptions; private session _session; //connection etc private void onconnected() { foreach (var fileinfo in localfileslist) { var task = task.factory.startnew(() => uploadfilesasync(fileinfo)); } } private async task uploadfilesasync(string file) { string remotefilepath = _session.translatelocalpathtoremote(file, @"/", "/test_data_upload"); var uploading = _session.putfiles(file, remotefilepath, false); //when done await task.run(() => thread.sleep(1000)); } } please suggest me correct way. thanks you can use backgroundworker class this: string[] images = new string[50]; foreach (var path in images) { backgroundworker
Read more

aws api gateway - SerializationException in posting new Records via Dynamodb Proxy Service in API -

i getting "__type": "com.amazon.coral.service#serializationexception" as reply in postman & in test console in api gateway trying post record directly dynamodb using api proxy services.. referring aws article - https://aws.amazon.com/blogs/compute/using-amazon-api-gateway-as-a-proxy-for-dynamodb/ here's mapping { "tablename": "tablenamegoeshere", "item": { "id" : "$context.requestid" "eventname" : "$input.path('$.eventname')", "timestamp" : $input.path('$.timestamp'), "answers": "$util.parsejson($input.path('$.answers'))" } } update: did asked ... , worked if try add array of json objects gives me above same error - here's trying now. please - couldnt find on google well #set($inputroot = $input.path('$')) { "tablename": "answer", "item": {
Read more

asp.net - Problems sending emails from forum -

i have been redesigning site has message board, has been written guy looked after site. it has few problems , written in .asp , uses .mdb files database. you can see whole thing here . feel free post if helps, test thing have set using original files , new database. the basic problem when posts message, supposed email sent them, have posted it. when replies, originator supposed message, replier has been posted. i’d have thought @ point in process there should script/file in postmessage.asp? the postmessage.asp page below. <% option explicit %> <!-- #include virtual="common/adovbs.inc" --> <html> <head> <meta http-equiv="content-type" content="text/html; charset=windows-1252"> <meta name="generator" content="microsoft frontpage 4.0"> <meta name="progid" content="frontpage.editor.document"> <title>new page 2</title> <base target="_self"
Read more