Cipher Errors for Siebel URL on Chrome 82 or FF 78 and Later Can Cause Ssl_Version_or_cipher_mismatch or no Cipher Suites in Common Error
(Doc ID 2712231.1)
Last updated on APRIL 18, 2023
Applies to:
Siebel CRM - Version 17.0 [IP2017] and laterInformation in this document applies to any platform.
Symptoms
While accessing Siebel URL from Chrome v.83+/ FF 78+, encountering ssl_version_or_cipher_mismatch error before login page. This error is not visible immediately for few minutes if the Tomcat AI is restarted.
This is a cipher issue even when enforcing TLS1.2. Fiddler traces show below error also noticed in Tomcat log.
Error :
https-jsse-nio-9001-exec-1, fatal error: 40: no cipher suites in common
javax.net.ssl.SSLHandshakeException: no cipher suites in common
%% Invalidated: [Session-15, SSL_NULL_WITH_NULL_NULL]
https-jsse-nio-9001-exec-2, fatal error: 40: no cipher suites in common
javax.net.ssl.SSLHandshakeException: no cipher suites in common
File Name or Source
-------------------------
tomcat-debug.log
Description
--------------
tomcat log file
Relevant Information Collection
---------------------------------------
%% Initialized: [Session-15, SSL_NULL_WITH_NULL_NULL]
%% Initialized: [Session-16, SSL_NULL_WITH_NULL_NULL]
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: Ignoring alias xxx: signature does not conform to negotiated signature algorithms
ssl: Ignoring alias xxx: signature does not conform to negotiated signature algorithms
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
https-jsse-nio-9001-exec-1, fatal error: 40: no cipher suites in common
javax.net.ssl.SSLHandshakeException: no cipher suites in common
%% Invalidated: [Session-15, SSL_NULL_WITH_NULL_NULL]
https-jsse-nio-9001-exec-2, fatal error: 40: no cipher suites in common
javax.net.ssl.SSLHandshakeException: no cipher suites in common
https-jsse-nio-9001-exec-1%% Invalidated: [Session-16, SSL_NULL_WITH_NULL_NULL]
, SEND TLSv1.2 ALERT: fatal, description = handshake_failure
https-jsse-nio-9001-exec-2, SEND TLSv1.2 ALERT: fatal, https-jsse-nio-9001-exec-1, WRITE: TLSv1.2 Alert, length = 2
description = handshake_failure
https-jsse-nio-9001-exec-1, fatal error: 40: no cipher suites in common
javax.net.ssl.SSLHandshakeException: no cipher suites in common
%% Invalidated: [Session-15, SSL_NULL_WITH_NULL_NULL]
https-jsse-nio-9001-exec-2, fatal error: 40: no cipher suites in common
javax.net.ssl.SSLHandshakeException: no cipher suites in common
File Name or Source
-------------------------
tomcat-debug.log
Description
--------------
tomcat log file
Relevant Information Collection
---------------------------------------
%% Initialized: [Session-15, SSL_NULL_WITH_NULL_NULL]
%% Initialized: [Session-16, SSL_NULL_WITH_NULL_NULL]
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: Ignoring alias xxx: signature does not conform to negotiated signature algorithms
ssl: Ignoring alias xxx: signature does not conform to negotiated signature algorithms
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
ssl: ServerHandshaker.setupPrivateKeyAndChain RSA
ssl: ServerHandshaker.setupPrivateKeyAndChain, chooseEngineServerAlias null
https-jsse-nio-9001-exec-1, fatal error: 40: no cipher suites in common
javax.net.ssl.SSLHandshakeException: no cipher suites in common
%% Invalidated: [Session-15, SSL_NULL_WITH_NULL_NULL]
https-jsse-nio-9001-exec-2, fatal error: 40: no cipher suites in common
javax.net.ssl.SSLHandshakeException: no cipher suites in common
https-jsse-nio-9001-exec-1%% Invalidated: [Session-16, SSL_NULL_WITH_NULL_NULL]
, SEND TLSv1.2 ALERT: fatal, description = handshake_failure
https-jsse-nio-9001-exec-2, SEND TLSv1.2 ALERT: fatal, https-jsse-nio-9001-exec-1, WRITE: TLSv1.2 Alert, length = 2
description = handshake_failure
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |
References |