{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 傲 的问题《Paypal SDK Adaptive Payments Unknown cipher in lis》','https://www.manongdao.com/q-204400.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I'm trying to implement adaptive payments with SetPaymentOptions. I'm getting the following error:
SDK Exception Type PPConnectionException
Message Unknown cipher in list: TLSv1
Detailed message Error connecting to https://svcs.paypal.com/AdaptivePayments/SetPaymentOptions
I dont know what this means. Any idea on how to get this working? I have this for part of my code in the PPHttpconfig:
public static $DEFAULT_CURL_OPTS = array(
CURLOPT_SSLVERSION => 1,
CURLOPT_CONNECTTIMEOUT => 10,
CURLOPT_RETURNTRANSFER => TRUE,
CURLOPT_TIMEOUT => 60, // maximum number of seconds to allow cURL functions to execute
CURLOPT_USERAGENT => 'PayPal-PHP-SDK',
CURLOPT_HTTPHEADER => array(),
CURLOPT_SSL_VERIFYHOST => 2,
CURLOPT_SSL_VERIFYPEER => 1,
CURLOPT_SSL_CIPHER_LIST => 'TLSv1',
);
Seems if you are using NSS instead of OpenSSL, Having Cipher List is causing the issue, as TLSv1 is not in the NSS.
If you are having that error, you might want to run
If the output has
It means, you have NSS. Then you can just remove the CURLOPT_SSL_CIPHER_LIST from the array
EDIT: The release was made with the fix at : https://github.com/paypal/sdk-core-php/releases/tag/v2.5.8
There are not TLSv1 ciphers. TLS 1.0 and TLS 1.1 use SSL 3.0 ciphers. TLS 1.2 adds some new ciphers but still supports the SSL 3.0 ciphers. If you want to make your code safe against POODLE you need to care about the SSL protocol version only, not the ciphers.