stdworkflow
  

SSL_DO_HANDSHAKE() FAILED SSL: ERROR:1408A0C1/14094418

created at 10-19-2021 views: 85

background

The SSL certificate is about to expire. A colleague applied for a new SSL certificate to replace the old one, and reloaded Nginx.

error

SSL_do_handshake() failed (SSL: error:1408A0C1:SSL routines:ssl3_get_client_hello:no shared cipher) while SSL handshaking

SSL_do_handshake() failed (SSL: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac) while SSL handshaking

SSL_do_handshake() failed (SSL: error:14094418:SSL routines:ssl3_read_bytes:tlsv1 alert unknown ca:SSL alert number 48) while SSL handshaking

solution

N kinds of schemes were invalid after Googling, and finally I changed the certificate .pem to .crt and solved it successfully

# replace
ssl_certificate "*/*.pem"
  
# to

ssl_certificate "*/*.crt"

ssl_certificate

nginx
created at:10-19-2021
user-image TwoPunch
edited at: 10-19-2021:

related posts

Nginx (./configure: error: SSL modules require the OpenSSL library.)
How to compile and install nginx 1.20.2 under Centos7.9
nginx install error:checking for --with-ld-opt="-ljemalloc" ... not found
centos7 nginx: nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use)
Solve the problem that the disk space is not freed after deleting files in CentOS (lsof command)
nginx: SSL: error:0200107B:system library:fopen:Unknown error:fopen
nginx: [error] open() “/usr/local/nginx/logs/nginx.pid“ failed (2: No such file or directory)
docker: Error response from daemon: No command specified.
nginx error: Nginx 403 error: directory index of “xxx” is forbidden
make[1]: *** [objs/Makefile:445: objs/src/core/ngx_murmurhash.o] Error
  improve this post