I've got some 40x8 terminals successfully sip transformed. I can autoprovision it with HTTP without problem, now I try do the same with secure protocol HTTPS but I get handshake error (It could be different protocol server and phone, I dont know). I can connet to server https with any browser and get sipconfig.txt without problem.
The error in nginx: SSL_do_handshake() failed (SSL: error:1408A0C1:SSL routines:ssl3_get_client_hello:no shared cipher)
Some data:
Phone version 2.12.40 , run mode SIP
And phone has a certificate like that:
issuer: /CN=Wired Phones/C=FR/O=Alcatel-Lucent/OU=PKI Authority
subject: /CN=<MACADDRESS>/C=FR/O=Alcatel-Lucent/OU=PKI Authority
Server is Centos 7, and http server is nginx-1.12.2-1.el7.x86_64, config:
Code: Select all
server {
listen 443 ssl;
ssl on;
ssl_certificate /etc/ssl/certs/nginx.crt;
ssl_certificate_key /etc/ssl/private/nginx.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2 SSLv2 SSLv3;
server_name 10.2.132.15;
location / {
root /var/www;
}
}
Code: Select all
2018/03/26 14:34:31 [debug] 1716#0: epoll: fd:6 ev:0001 d:00007F16AFF86010
2018/03/26 14:34:31 [debug] 1716#0: accept on 0.0.0.0:443, ready: 0
2018/03/26 14:34:31 [debug] 1712#0: epoll: fd:6 ev:0001 d:00007F16AFF86010
2018/03/26 14:34:31 [debug] 1709#0: epoll: fd:6 ev:0001 d:00007F16AFF86010
2018/03/26 14:34:31 [debug] 1715#0: epoll: fd:6 ev:0001 d:00007F16AFF86010
2018/03/26 14:34:31 [debug] 1712#0: accept on 0.0.0.0:443, ready: 0
2018/03/26 14:34:31 [debug] 1716#0: posix_memalign: 00005639D48B0E60:512 @16
2018/03/26 14:34:31 [debug] 1709#0: accept on 0.0.0.0:443, ready: 0
2018/03/26 14:34:31 [debug] 1715#0: accept on 0.0.0.0:443, ready: 0
2018/03/26 14:34:31 [debug] 1716#0: *2 accept: 10.2.132.17:1024 fd:7
2018/03/26 14:34:31 [debug] 1712#0: accept() not ready (11: Resource temporarily unavailable)
2018/03/26 14:34:31 [debug] 1712#0: timer delta: 8968130
2018/03/26 14:34:31 [debug] 1716#0: *2 event timer add: 7: 60000:1522067731005
2018/03/26 14:34:31 [debug] 1715#0: accept() not ready (11: Resource temporarily unavailable)
2018/03/26 14:34:31 [debug] 1712#0: worker cycle
2018/03/26 14:34:31 [debug] 1709#0: accept() not ready (11: Resource temporarily unavailable)
2018/03/26 14:34:31 [debug] 1715#0: timer delta: 8968130
2018/03/26 14:34:31 [debug] 1716#0: *2 reusable connection: 1
2018/03/26 14:34:31 [debug] 1712#0: epoll timer: -1
2018/03/26 14:34:31 [debug] 1709#0: timer delta: 8968122
2018/03/26 14:34:31 [debug] 1715#0: worker cycle
2018/03/26 14:34:31 [debug] 1716#0: *2 epoll add event: fd:7 op:1 ev:80002001
2018/03/26 14:34:31 [debug] 1709#0: worker cycle
2018/03/26 14:34:31 [debug] 1715#0: epoll timer: -1
2018/03/26 14:34:31 [debug] 1716#0: timer delta: 8968130
2018/03/26 14:34:31 [debug] 1716#0: worker cycle
2018/03/26 14:34:31 [debug] 1709#0: epoll timer: -1
2018/03/26 14:34:31 [debug] 1716#0: epoll timer: 60000
2018/03/26 14:34:31 [debug] 1716#0: epoll: fd:7 ev:0001 d:00007F16AFF861E0
2018/03/26 14:34:31 [debug] 1716#0: *2 http check ssl handshake
2018/03/26 14:34:31 [debug] 1716#0: *2 http recv(): 1
2018/03/26 14:34:31 [debug] 1716#0: *2 https ssl handshake: 0x80
2018/03/26 14:34:31 [debug] 1716#0: *2 SSL_do_handshake: -1
2018/03/26 14:34:31 [debug] 1716#0: *2 SSL_get_error: 1
2018/03/26 14:34:31 [info] 1716#0: *2 SSL_do_handshake() failed (SSL: error:1408A0C1:SSL routines:ssl3_get_client_hello:no shared cipher) while SSL handshaking, client: 10.2.132.17, server: 0.0.0.0:443
2018/03/26 14:34:31 [debug] 1716#0: *2 close http connection: 7
2018/03/26 14:34:31 [debug] 1716#0: *2 SSL_shutdown: 1
2018/03/26 14:34:31 [debug] 1716#0: *2 event timer del: 7: 1522067731005
2018/03/26 14:34:31 [debug] 1716#0: *2 reusable connection: 0
2018/03/26 14:34:31 [debug] 1716#0: *2 free: 00005639D48B0E60, unused: 160
2018/03/26 14:34:31 [debug] 1716#0: timer delta: 32
2018/03/26 14:34:31 [debug] 1716#0: worker cycle
2018/03/26 14:34:31 [debug] 1716#0: epoll timer: -1
Sorry my english and thanks in advance.