search

Tencent / TencentKonaSMSuite

Tencent Kona SM Suite contains a set of Java security providers, which support algorithms SM2, SM3 and SM4, and protocols TLCP/GMSSL, TLS 1.3 (with RFC 8998) and TLS 1.2.
Other
332 stars 70 forks source link

oracle jdk 1.8 201 报错 #814

Closed meteor199 closed 2 weeks ago

meteor199 commented 2 weeks ago

使用oracle jre 1.8 201 tlcp 双向认证,报错:

javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suites are inappropriate)
    at com.tencent.kona.sun.security.ssl.HandshakeContext.<init>(HandshakeContext.java:171)
    at com.tencent.kona.sun.security.ssl.ClientHandshakeContext.<init>(ClientHandshakeContext.java:103)
    at com.tencent.kona.sun.security.ssl.TransportContext.kickstart(TransportContext.java:246)
    at com.tencent.kona.sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:449)
    at com.tencent.kona.sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:427)
    at sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsClient.java:559)
    at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(AbstractDelegateHttpsURLConnection.java:185)
    at sun.net.www.protocol.http.HttpURLConnection.getInputStream0(HttpURLConnection.java:1564)
    at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:1492)
    at sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(HttpsURLConnectionImpl.java:263)

使用openjdk的1.8 201 是正常的

johnshajiang commented 2 weeks ago

能否提供更详细的握手日志? 需要为java进程加上系统属性-Dcom.tencent.kona.ssl.debug=all

meteor199 commented 2 weeks ago

不好意思,打扰您了,应该是我们 版本号的问题