https://bugs.kde.org/show_bug.cgi?id=368172
Bug ID: 368172 Summary: Cannot connect to app on Android 4.4.4 -- SSLHandshakeException Product: kdeconnect Version: 1.4 Platform: Android OS: Android 4.x Status: UNCONFIRMED Severity: major Priority: NOR Component: android-application Assignee: albertv...@gmail.com Reporter: masterofex...@hotmail.com My desktop (running kde-connect 1.0) and Android 6.0 devices cannot see my Android 4.4.4 device and my Android 4.4.4 device cannot see any devices on the network. However, Android 6.0 & the desktop can see each other. Clicking refresh makes no difference; switching wireless networks makes no difference. Both Android devices are running 1.4.1. On the desktop, I can clearly see the UDP broadcast from the Android 4.4.4 device, and it doesn't look much different from the packets sent by the Android 6.0 device. Running logcat on the Android 4.4.4 device produces the following output: I/KDE/LanLinkProvider( 2948): Broadcast identity package received from xxx@xxx I/KDE/LanLinkProvider( 2948): Starting SSL handshake with xxx@xxx trusted:false E/KDE/LanLinkProvider( 2948): Handshake failed with xxx@xxx W/System.err( 2948): javax.net.ssl.SSLHandshakeException: javax.net.ssl.SSLProtocolException: SSL handshake aborted: ssl=0xxxxxxxxx: Failure in SSL library, usually a protocol error W/System.err( 2948): error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher (external/openssl/ssl/s3_srvr.c:1381 0xxxxxxxxx:0x00000000) W/System.err( 2948): at com.android.org.conscrypt.OpenSSLSocketImpl.startHandshake(OpenSSLSocketImpl.java:449) W/System.err( 2948): at org.kde.kdeconnect.Backends.LanBackend.LanLinkProvider$4.run(LanLinkProvider.java:246) W/System.err( 2948): at java.lang.Thread.run(Thread.java:841) W/System.err( 2948): Caused by: javax.net.ssl.SSLProtocolException: SSL handshake aborted: ssl=0xxxxxxxxx: Failure in SSL library, usually a protocol error W/System.err( 2948): error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher (external/openssl/ssl/s3_srvr.c:1381 0xxxxxxxxx:0x00000000) W/System.err( 2948): at com.android.org.conscrypt.NativeCrypto.SSL_do_handshake(Native Method) W/System.err( 2948): at com.android.org.conscrypt.OpenSSLSocketImpl.startHandshake(OpenSSLSocketImpl.java:406) W/System.err( 2948): ... 2 more My wild guess is that KDE Connect requires strong ciphers to avoid a downgrade attack, and my Android device is unfortunately too old to support the minimum. If I'm right, I see a few possible resolutions: 0) nothing to do (because my phone manufacturer omitted strong SSL ciphers -- I wouldn't put it past Motorola) 1) update minimum requirements for KDE Connect on Android 2) allow weaker ciphers (possibly with a big red warning during pairing) 3) fallback to RSA encryption Regardless, an error message for this issue would be helpful. Reproducible: Always Steps to Reproduce: 1. Connect Android 4.4.4 device to wireless network 2. Connect desktop to the same wireless network 3. Open KDE Connect on Android; hit refresh 4. Open KDE Connect Settings on desktop; hit refresh Actual Results: No device seen in list of connectable devices Expected Results: Desktop and Android 4.4.4 devices see each other and can be paired. -- You are receiving this mail because: You are watching all bug changes.