The howsmyssl site does not fully support TLS 1.3 (IDFGH-13611)

[gojimmypi]

Answers checklist.

• I have read the documentation ESP-IDF Programming Guide and the issue is not addressed there.
• I have updated my IDF branch (master or release) to the latest version and checked that the issue is present there.
• I have searched the issue tracker for a similar issue and not found a similar issue.

General issue report

While working on adding wolfSSL Certificate Bundle support in wolfSSL/wolfssl#7936 to the Espressif esp-tls, I encountered a problem with the howsmyssl.com web site used in many of the Espressif examples.

When using wolfSSL in a client and forcing only TLS1.3, the connection fails, even though the web site indicates the TLS 1.3 is supported:

As it turns out, TLS 1.3 is not fully supported. See jmhodges/howsmyssl#716:

Howsmyssl doesn't yet fully support TLS 1.3. It's working off an old fork of the crypto/tls library from long ago. There's been a tradeoff between upgrading it to a version that supports 1.3 and continuing to have support for the older versions of TLS and ciphersuites that it detects problems in.

I might have said "Hey, let's use wolfSSL there", but the site is implemented in the Go Programming Language, and I have little experience with that.

I've initiated some internal conversations at wolfSSL to see how to best proceed.

Many users choose wolfSSL specifically for the robust TLS1.3 support. This issue is to bring light to a known problem with the sample code in the Espressif ESP-IDF.

See also #13966

[mahavirj]

@gojimmypi

The endpoint that we have in examples is for testing purpose only. It can be overridden as per the end users requirement. If you suggest more suitable endpoint supporting both TLS1.2 and TLS1.3 then we can consider that one as well.