TLS Version not changing

[Nixh5]

I'm trying to get 771 at the ja3 fingerprint but its not working, the curl_cffi asks me for an integer and I've tried what it allows me but the 772 never changes to 771 so I assume the TLS version is not changing no matter what I do, or something else...

from curl_cffi import CurlOpt, requests

response = requests.get("https://tools.scrapfly.io/api/fp/ja3",
    curl_options={
        CurlOpt.SSLVERSION: 6, #tried also, 0, 1 ...
})
print(response.text)

I've looked to use CURL_SSLVERSION_MAX_TLSv1_2 as well but I dont find any way to do that with curl_cffi.

Versions
curl_cffi 0.6.3b1
Kubuntu 12
Python 3.11.6

[Nixh5]

ok I'll close this, I would say its a bug of scrapfly or something because here I get 771:
https://check.ja3.zone/

[Nixh5]

ok at https://check.ja3.zone/ I get 771 but the TLS version is still 1.3, when what I want is 1.2, for example using this code it uses 1.2 how can I do this with curl_cffi?:

import requests
from requests.adapters import HTTPAdapter
from requests.packages.urllib3.poolmanager import PoolManager
import ssl
from urllib3.util.ssl_ import create_urllib3_context


class ForceTLS12Adapter(HTTPAdapter):

    def init_poolmanager(self, *args, **kwargs):
        context = create_urllib3_context(ssl_version=ssl.PROTOCOL_TLSv1_2)
        self.poolmanager = PoolManager(*args, ssl_context=context, **kwargs)


s = requests.Session()
s.mount('https://', ForceTLS12Adapter())

response = s.get('https://check.ja3.zone/')

print(response.text)

[yifeikong]

Sorry, this won't work, as curl_cffi does not use urllib3 under the hood. The reason is probably that TLS version is fixed in upstream curl-impersonate. Anyway, TLS 1.3 is preferred to TLS 1.2.

[Alexei17]

Sorry, this won't work, as curl_cffi does not use urllib3 under the hood. The reason is probably that TLS version is fixed in upstream curl-impersonate. Anyway, TLS 1.3 is preferred to TLS 1.2.

Hi, here #30 you suggested that putting in CURL_SSLVERSION_MAX_TLSv1_2 will work. Getting mixed signals, is changing TLS versions not supported by this library?

[Nixh5]

I would like it to be supported because I'm trying to achieve an specific ja3 fingerprint so not being allowed to change the TLS version is breaking my ja3.

[yifeikong]

Hi, here #30 you suggested that putting in CURL_SSLVERSION_MAX_TLSv1_2 will work. Getting mixed signals, is changing TLS versions not supported by this library?

This SHOULD work theoretically, but I havn't tried that in practice. If it does not work, it's probably because TLS version is fixed by the patch.

I'm trying to achieve an specific ja3 fingerprint

You can follow the updates of the pinned issue, customized fingerprints support is tracked there.