1--TEST-- 2Capture SSL session meta array in stream context for TLSv1.3 3--SKIPIF-- 4<?php 5if (!extension_loaded("openssl")) die("skip openssl not loaded"); 6if (!function_exists("proc_open")) die("skip no proc_open"); 7if (OPENSSL_VERSION_NUMBER < 0x10101000) die("skip OpenSSL v1.1.1 required"); 8?> 9--FILE-- 10<?php 11$certFile = __DIR__ . DIRECTORY_SEPARATOR . 'session_meta_capture_tlsv13.pem.tmp'; 12$cacertFile = __DIR__ . DIRECTORY_SEPARATOR . 'session_meta_capture_tlsv13-ca.pem.tmp'; 13 14$serverCode = <<<'CODE' 15 $serverUri = "ssl://127.0.0.1:64321"; 16 $serverFlags = STREAM_SERVER_BIND | STREAM_SERVER_LISTEN; 17 $serverCtx = stream_context_create(['ssl' => [ 18 'local_cert' => '%s', 19 'crypto_method' => STREAM_CRYPTO_METHOD_TLSv1_3_SERVER, 20 ]]); 21 22 $server = stream_socket_server($serverUri, $errno, $errstr, $serverFlags, $serverCtx); 23 phpt_notify(); 24 25 @stream_socket_accept($server, 1); 26CODE; 27$serverCode = sprintf($serverCode, $certFile); 28 29$peerName = 'session_meta_capture_tlsv13'; 30$clientCode = <<<'CODE' 31 $serverUri = "ssl://127.0.0.1:64321"; 32 $clientFlags = STREAM_CLIENT_CONNECT; 33 $clientCtx = stream_context_create(['ssl' => [ 34 'verify_peer' => true, 35 'cafile' => '%s', 36 'peer_name' => '%s' 37 ]]); 38 39 phpt_wait(); 40 41 stream_context_set_option($clientCtx, 'ssl', 'crypto_method', STREAM_CRYPTO_METHOD_TLSv1_3_CLIENT); 42 $stream = stream_socket_client($serverUri, $errno, $errstr, 1, $clientFlags, $clientCtx); 43 var_dump(stream_get_meta_data($stream)['crypto']['protocol']); 44CODE; 45$clientCode = sprintf($clientCode, $cacertFile, $peerName); 46 47include 'CertificateGenerator.inc'; 48$certificateGenerator = new CertificateGenerator(); 49$certificateGenerator->saveCaCert($cacertFile); 50$certificateGenerator->saveNewCertAsFileWithKey($peerName, $certFile); 51 52include 'ServerClientTestCase.inc'; 53ServerClientTestCase::getInstance()->run($clientCode, $serverCode); 54?> 55--EXPECT-- 56string(7) "TLSv1.3" 57