Unsupported ciphers were requested but cannot be used in this JVM; however there are supported ciphers – How to solve related issues

Unsupported ciphers were requested but cannot be used in this JVM; however there are supported ciphers – How to solve related issues

Opster Team

Jan-20, Version: 1.7-8.0

Before you begin reading this guide, we recommend you run Elasticsearch Error Check-Up which can resolve issues that cause many errors.

This guide will help you check for common problems that cause the log ” Unsupported ciphers were requested but cannot be used in this JVM; however there are supported ciphers ” to appear. It’s important to understand the issues related to the log, so to get started, read the general overview on common issues and tips related to the Elasticsearch concepts: plugin.

Advanced users might want to skip right to the common problems section in each concept or try running the Check-Up which analyses ES to pinpoint the cause of many errors and provides suitable actionable recommendations how to resolve them (free tool that requires no installation).

Log Context

Log “Unsupported ciphers [{}] were requested but cannot be used in this JVM; however there are supported ciphers” classname is SSLService.java.
We extracted the following from Elasticsearch source code for those seeking an in-depth context :

             throw new IllegalArgumentException("none of the ciphers " + Arrays.toString(requestedCiphers.toArray())
                    + " are supported by this JVM");
        }

        if (log && !unsupportedCiphers.isEmpty()) {
            logger.error("unsupported ciphers [{}] were requested but cannot be used in this JVM; however there are supported ciphers " +
                    "that will be used [{}]. If you are trying to use ciphers with a key length greater than 128 bits on an Oracle JVM; " +
                    "you will need to install the unlimited strength JCE policy files."; unsupportedCiphers; supportedCiphersList);
        }

        return supportedCiphersList.toArray(new String[supportedCiphersList.size()]);




 

Run the Check-Up to get a customized report like this:

Analyze your cluster