openclaw - 💡(How to fix) Fix `openclaw docs` fails on macOS — TLS handshake error against docs.openclaw.ai [1 participants]

SSE error: TypeError: fetch failed: Client network socket disconnected before secure TLS connection was established

TL;DR

• The TLS failure when connecting to docs.openclaw.ai from macOS can be worked around by adjusting the cipher suite negotiation in Node.js or LibreSSL to match the more aggressive fallback used by browsers.

Guidance

• Investigate updating the Node.js version to one that supports more aggressive cipher suite negotiation, similar to browsers.
• Consider using a custom HTTPS agent in Node.js that specifies a broader range of acceptable cipher suites to improve handshake compatibility.
• Review the OpenSSL version used by LibreSSL and Node.js to ensure it is up-to-date and supports the necessary cipher suites for the TLS connection to docs.openclaw.ai.
• Test the connection using tools like openssl s_client to diagnose the specific cipher suite mismatch causing the TLS handshake failure.

Example

const https = require('https');
const agent = new https.Agent({
  // Specify a broader range of cipher suites
  ciphers: 'ALL:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS',
});
https.get('https://docs.openclaw.ai/', { agent }, (r) => console.log(r.statusCode))
  .on('error', (e) => console.error(e.message));

Notes

• The effectiveness of the workaround may depend on the specific versions of Node.js, LibreSSL, and OpenSSL in use.
• Further investigation into the server-side configuration of docs.openclaw.ai may be necessary to determine the optimal cipher suite for compatibility.

Recommendation

• Apply workaround: Adjusting the cipher suite negotiation in Node.js or LibreSSL is likely the most straightforward solution to restore functionality on macOS, given the information provided.