[GH-ISSUE #4335] log中报错：Accept new mux stream error: tls: client offered only unsupported versions: [302 301]

Originally created by @milanyu17 on GitHub (Jul 13, 2024). Original GitHub issue: https://github.com/fatedier/frp/issues/4335 ### Bug Description 配置双向TLS认证时，frp服务端连接中报错，但仍然可以连接上。 ### frpc Version 0.59 ### frps Version 0.59 ### System Architecture fpc centos9\frps debian 11 ### Configurations frpc.toml serverAddr = "X.X.X.X" serverPort = 7000 log.to = "./frpc.log" log.level = "debug" log.maxDays = 5 auth.method = "token" auth.token = "6S" transport.tls.enable = true transport.tls.certFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/client.crt" transport.tls.keyFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/client.key" transport.tls.trustedCaFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/ca.crt" [[proxies]] name = "TCP" type = "tcp" localIP = "127.0.0.1" localPort = 63444 remotePort = 62444 transport.useEncryption = true transport.useCompression = true frps.toml bindPort = 7000 auth.method = "token" auth.token = "6S" transport.tls.force = true transport.tls.certFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/server.crt" transport.tls.keyFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/server.key" transport.tls.trustedCaFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/ca.crt" log.to = "./frps.log" log.level = "debug" log.maxDays = 5 ### Logs frps.log 2024-07-12 22:50:09.842 [D] [server/service.go:525] Accept new mux stream error: keepalive timeout 2024-07-12 23:05:23.379 [D] [server/service.go:525] Accept new mux stream error: tls: client didn't provide a certificate 2024-07-12 23:05:23.470 [D] [server/service.go:525] Accept new mux stream error: tls: client didn't provide a certificate 2024-07-12 23:05:23.528 [W] [server/service.go:501] CheckAndEnableTLSServerConnWithTimeout error: non-TLS connection received on a TlsOnly server 2024-07-12 23:05:23.587 [W] [server/service.go:501] CheckAndEnableTLSServerConnWithTimeout error: non-TLS connection received on a TlsOnly server 2024-07-12 23:28:24.016 [D] [server/control.go:243] [a6c954d960a3c741] new work connection registered 2024-07-12 23:30:04.018 [D] [proxy/proxy.go:271] [a6c954d960a3c741] [TCP] join connections closed 2024-07-12 23:34:20.867 [D] [server/service.go:525] Accept new mux stream error: tls: client didn't provide a certificate 2024-07-12 23:37:15.092 [I] [proxy/proxy.go:204] [a6c954d960a3c741] [TCP] get a user connection [X.X.X.X:X] 2024-07-12 23:37:15.092 [D] [server/control.go:272] [a6c954d960a3c741] get work connection from pool 2024-07-12 23:37:15.092 [D] [proxy/proxy.go:131] [a6c954d960a3c741] [TCP] get a new work connection: [27.16.182.40:40758] 2024-07-12 23:37:15.092 [D] [proxy/proxy.go:261] [a6c954d960a3c741] [TCP] join connections, workConn(l[X.X.X.X:X] r[X.X.X.X:X]) userConn(l[X.X.X.X:X] r[X.X.X.X:X]) 2024-07-12 23:37:15.116 [D] [server/control.go:243] [a6c954d960a3c741] new work connection registered 2024-07-12 23:41:50.399 [D] [server/service.go:525] Accept new mux stream error: EOF 2024-07-12 23:41:50.737 [D] [server/service.go:525] Accept new mux stream error: EOF 2024-07-12 23:41:51.118 [D] [server/service.go:525] Accept new mux stream error: EOF 2024-07-12 23:41:51.451 [D] [server/service.go:525] Accept new mux stream error: EOF 2024-07-12 23:41:51.861 [D] [server/service.go:525] Accept new mux stream error: EOF 2024-07-12 23:41:52.019 [D] [server/service.go:525] Accept new mux stream error: tls: client offered only unsupported versions: [302 301] 2024-07-12 23:41:52.555 [D] [server/service.go:525] Accept new mux stream error: EOF 2024-07-12 23:41:52.951 [D] [server/service.go:525] Accept new mux stream error: EOF 2024-07-12 23:41:53.283 [D] [server/service.go:525] Accept new mux stream error: EOF 2024-07-12 23:41:53.623 [D] [server/service.go:525] Accept new mux stream error: EOF 2024-07-12 23:55:12.683 [I] [proxy/proxy.go:204] [a6c954d960a3c741] [TCP] get a user connection [X.X.X.X:X] 2024-07-12 23:55:12.684 [D] [server/control.go:272] [a6c954d960a3c741] get work connection from pool frpc无错误内容 ### Steps to reproduce 1. 2. 3. ... ### Affected area - [ ] Docs - [ ] Installation - [ ] Performance and Scalability - [ ] Security - [ ] User Experience - [ ] Test and Release - [ ] Developer Infrastructure - [ ] Client Plugin - [ ] Server Plugin - [ ] Extensions - [ ] Others

gitea-mirror commented

2026-05-05 14:12:20 -06:00

Owner

Originally created by @milanyu17 on GitHub (Jul 13, 2024).
Original GitHub issue: https://github.com/fatedier/frp/issues/4335

Bug Description

配置双向TLS认证时，frp服务端连接中报错，但仍然可以连接上。

frpc Version

0.59

frps Version

System Architecture

fpc centos9\frps debian 11

Configurations

frpc.toml
serverAddr = "X.X.X.X"
serverPort = 7000
log.to = "./frpc.log"
log.level = "debug"
log.maxDays = 5
auth.method = "token"
auth.token = "6S"
transport.tls.enable = true

transport.tls.certFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/client.crt"
transport.tls.keyFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/client.key"
transport.tls.trustedCaFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/ca.crt"

proxies
name = "TCP"
type = "tcp"
localIP = "127.0.0.1"
localPort = 63444
remotePort = 62444
transport.useEncryption = true
transport.useCompression = true

frps.toml
bindPort = 7000
auth.method = "token"
auth.token = "6S"
transport.tls.force = true
transport.tls.certFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/server.crt"
transport.tls.keyFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/server.key"
transport.tls.trustedCaFile = "/usr/local/frp_0.59.0_linux_amd64/ca_key/ca.crt"

log.to = "./frps.log"
log.level = "debug"
log.maxDays = 5

Logs

frps.log
2024-07-12 22:50:09.842 [D] [server/service.go:525] Accept new mux stream error: keepalive timeout

2024-07-12 23:05:23.379 [D] [server/service.go:525] Accept new mux stream error: tls: client didn't provide a certificate
2024-07-12 23:05:23.470 [D] [server/service.go:525] Accept new mux stream error: tls: client didn't provide a certificate
2024-07-12 23:05:23.528 [W] [server/service.go:501] CheckAndEnableTLSServerConnWithTimeout error: non-TLS connection received on a TlsOnly server
2024-07-12 23:05:23.587 [W] [server/service.go:501] CheckAndEnableTLSServerConnWithTimeout error: non-TLS connection received on a TlsOnly server

2024-07-12 23:28:24.016 [D] [server/control.go:243] [a6c954d960a3c741] new work connection registered
2024-07-12 23:30:04.018 [D] [proxy/proxy.go:271] [a6c954d960a3c741] [TCP] join connections closed
2024-07-12 23:34:20.867 [D] [server/service.go:525] Accept new mux stream error: tls: client didn't provide a certificate
2024-07-12 23:37:15.092 [I] [proxy/proxy.go:204] [a6c954d960a3c741] [TCP] get a user connection [X.X.X.X:X]
2024-07-12 23:37:15.092 [D] [server/control.go:272] [a6c954d960a3c741] get work connection from pool
2024-07-12 23:37:15.092 [D] [proxy/proxy.go:131] [a6c954d960a3c741] [TCP] get a new work connection: [27.16.182.40:40758]
2024-07-12 23:37:15.092 [D] [proxy/proxy.go:261] [a6c954d960a3c741] [TCP] join connections, workConn(l[X.X.X.X:X] r[X.X.X.X:X]) userConn(l[X.X.X.X:X] r[X.X.X.X:X])
2024-07-12 23:37:15.116 [D] [server/control.go:243] [a6c954d960a3c741] new work connection registered
2024-07-12 23:41:50.399 [D] [server/service.go:525] Accept new mux stream error: EOF
2024-07-12 23:41:50.737 [D] [server/service.go:525] Accept new mux stream error: EOF
2024-07-12 23:41:51.118 [D] [server/service.go:525] Accept new mux stream error: EOF
2024-07-12 23:41:51.451 [D] [server/service.go:525] Accept new mux stream error: EOF
2024-07-12 23:41:51.861 [D] [server/service.go:525] Accept new mux stream error: EOF
2024-07-12 23:41:52.019 [D] [server/service.go:525] Accept new mux stream error: tls: client offered only unsupported versions: [302 301]
2024-07-12 23:41:52.555 [D] [server/service.go:525] Accept new mux stream error: EOF
2024-07-12 23:41:52.951 [D] [server/service.go:525] Accept new mux stream error: EOF
2024-07-12 23:41:53.283 [D] [server/service.go:525] Accept new mux stream error: EOF
2024-07-12 23:41:53.623 [D] [server/service.go:525] Accept new mux stream error: EOF
2024-07-12 23:55:12.683 [I] [proxy/proxy.go:204] [a6c954d960a3c741] [TCP] get a user connection [X.X.X.X:X]
2024-07-12 23:55:12.684 [D] [server/control.go:272] [a6c954d960a3c741] get work connection from pool

frpc无错误内容

Steps to reproduce

...

Affected area

Docs
Installation
Performance and Scalability
Security
User Experience
Test and Release
Developer Infrastructure
Client Plugin
Server Plugin
Extensions
Others

gitea-mirror

closed this issue
added the
lifecycle/stale
label

2026-05-05 14:12:23 -06:00

Author

@github-actions[bot] commented on GitHub (Aug 4, 2024):

Issues go stale after 21d of inactivity. Stale issues rot after an additional 7d of inactivity and eventually close.

@github-actions[bot] commented on GitHub (Aug 4, 2024): Issues go stale after 21d of inactivity. Stale issues rot after an additional 7d of inactivity and eventually close.

Rows
Columns

[GH-ISSUE #4335] log中报错：Accept new mux stream error: tls: client offered only unsupported versions: [302 301] #3423