Problen in Tapo: Camera Controll #1651
Description
[pytapo] Device TLS probe via default failed: [SSL: SSLV3_ALERT_HANDSHAKE_FAILURE] ssl/tls alert handshake failure (_ssl.c:1032)
[pytapo] unsecure ssl context: openssl=OpenSSL 3.5.4 30 Sep 2025, tls_min=TLSv1, tls_max=MAXIMUM_SUPPORTED, check_hostname=False, verify_mode=CERT_NONE, cipher_count=140, ciphers=['TLS_AES_256_GCM_SHA384', 'TLS_CHACHA20_POLY1305_SHA256', 'TLS_AES_128_GCM_SHA256', 'ECDHE-ECDSA-AES256-GCM-SHA384', 'ECDHE-RSA-AES256-GCM-SHA384', 'DHE-DSS-AES256-GCM-SHA384', 'DHE-RSA-AES256-GCM-SHA384', 'ECDHE-ECDSA-CHACHA20-POLY1305', 'ECDHE-RSA-CHACHA20-POLY1305', 'DHE-RSA-CHACHA20-POLY1305', 'ECDHE-ECDSA-AES256-CCM', 'DHE-RSA-AES256-CCM', 'ECDHE-ECDSA-ARIA256-GCM-SHA384', 'ECDHE-ARIA256-GCM-SHA384', 'DHE-DSS-ARIA256-GCM-SHA384', 'DHE-RSA-ARIA256-GCM-SHA384', 'ADH-AES256-GCM-SHA384', 'ECDHE-ECDSA-AES128-GCM-SHA256', 'ECDHE-RSA-AES128-GCM-SHA256', 'DHE-DSS-AES128-GCM-SHA256', 'DHE-RSA-AES128-GCM-SHA256', 'ECDHE-ECDSA-AES128-CCM', 'DHE-RSA-AES128-CCM', 'ECDHE-ECDSA-ARIA128-GCM-SHA256', 'ECDHE-ARIA128-GCM-SHA256', 'DHE-DSS-ARIA128-GCM-SHA256', 'DHE-RSA-ARIA128-GCM-SHA256', 'ADH-AES128-GCM-SHA256', 'ECDHE-ECDSA-AES256-CCM8', 'ECDHE-ECDSA-AES128-CCM8', 'DHE-RSA-AES256-CCM8', 'DHE-RSA-AES128-CCM8', 'ECDHE-ECDSA-AES256-SHA384', 'ECDHE-RSA-AES256-SHA384', 'DHE-RSA-AES256-SHA256', 'DHE-DSS-AES256-SHA256', 'ECDHE-ECDSA-CAMELLIA256-SHA384', 'ECDHE-RSA-CAMELLIA256-SHA384', 'DHE-RSA-CAMELLIA256-SHA256', 'DHE-DSS-CAMELLIA256-SHA256', 'ADH-AES256-SHA256', 'ADH-CAMELLIA256-SHA256', 'ECDHE-ECDSA-AES128-SHA256', 'ECDHE-RSA-AES128-SHA256', 'DHE-RSA-AES128-SHA256', 'DHE-DSS-AES128-SHA256', 'ECDHE-ECDSA-CAMELLIA128-SHA256', 'ECDHE-RSA-CAMELLIA128-SHA256', 'DHE-RSA-CAMELLIA128-SHA256', 'DHE-DSS-CAMELLIA128-SHA256', 'ADH-AES128-SHA256', 'ADH-CAMELLIA128-SHA256', 'ECDHE-ECDSA-AES256-SHA', 'ECDHE-RSA-AES256-SHA', 'DHE-RSA-AES256-SHA', 'DHE-DSS-AES256-SHA', 'DHE-RSA-CAMELLIA256-SHA', 'DHE-DSS-CAMELLIA256-SHA', 'AECDH-AES256-SHA', 'ADH-AES256-SHA', 'ADH-CAMELLIA256-SHA', 'ECDHE-ECDSA-AES128-SHA', 'ECDHE-RSA-AES128-SHA', 'DHE-RSA-AES128-SHA', 'DHE-DSS-AES128-SHA', 'DHE-RSA-CAMELLIA128-SHA', 'DHE-DSS-CAMELLIA128-SHA', 'AECDH-AES128-SHA', 'ADH-AES128-SHA', 'ADH-CAMELLIA128-SHA', 'RSA-PSK-AES256-GCM-SHA384', 'DHE-PSK-AES256-GCM-SHA384', 'RSA-PSK-CHACHA20-POLY1305', 'DHE-PSK-CHACHA20-POLY1305', 'ECDHE-PSK-CHACHA20-POLY1305', 'DHE-PSK-AES256-CCM', 'RSA-PSK-ARIA256-GCM-SHA384', 'DHE-PSK-ARIA256-GCM-SHA384', 'AES256-GCM-SHA384', 'AES256-CCM', 'ARIA256-GCM-SHA384', 'PSK-AES256-GCM-SHA384', 'PSK-CHACHA20-POLY1305', 'PSK-AES256-CCM', 'PSK-ARIA256-GCM-SHA384', 'RSA-PSK-AES128-GCM-SHA256', 'DHE-PSK-AES128-GCM-SHA256', 'DHE-PSK-AES128-CCM', 'RSA-PSK-ARIA128-GCM-SHA256', 'DHE-PSK-ARIA128-GCM-SHA256', 'AES128-GCM-SHA256', 'AES128-CCM', 'ARIA128-GCM-SHA256', 'PSK-AES128-GCM-SHA256', 'PSK-AES128-CCM', 'PSK-ARIA128-GCM-SHA256', 'DHE-PSK-AES256-CCM8', 'DHE-PSK-AES128-CCM8', 'AES256-CCM8', 'AES128-CCM8', 'PSK-AES256-CCM8', 'PSK-AES128-CCM8', 'AES256-SHA256', 'CAMELLIA256-SHA256', 'AES128-SHA256', 'CAMELLIA128-SHA256', 'ECDHE-PSK-AES256-CBC-SHA384', 'ECDHE-PSK-AES256-CBC-SHA', 'SRP-DSS-AES-256-CBC-SHA', 'SRP-RSA-AES-256-CBC-SHA', 'SRP-AES-256-CBC-SHA', 'RSA-PSK-AES256-CBC-SHA384', 'DHE-PSK-AES256-CBC-SHA384', 'RSA-PSK-AES256-CBC-SHA', 'DHE-PSK-AES256-CBC-SHA', 'ECDHE-PSK-CAMELLIA256-SHA384', 'RSA-PSK-CAMELLIA256-SHA384', 'DHE-PSK-CAMELLIA256-SHA384', 'AES256-SHA', 'CAMELLIA256-SHA', 'PSK-AES256-CBC-SHA384', 'PSK-AES256-CBC-SHA', 'PSK-CAMELLIA256-SHA384', 'ECDHE-PSK-AES128-CBC-SHA256', 'ECDHE-PSK-AES128-CBC-SHA', 'SRP-DSS-AES-128-CBC-SHA', 'SRP-RSA-AES-128-CBC-SHA', 'SRP-AES-128-CBC-SHA', 'RSA-PSK-AES128-CBC-SHA256', 'DHE-PSK-AES128-CBC-SHA256', 'RSA-PSK-AES128-CBC-SHA', 'DHE-PSK-AES128-CBC-SHA', 'ECDHE-PSK-CAMELLIA128-SHA256', 'RSA-PSK-CAMELLIA128-SHA256', 'DHE-PSK-CAMELLIA128-SHA256', 'AES128-SHA', 'CAMELLIA128-SHA', 'PSK-AES128-CBC-SHA256', 'PSK-AES128-CBC-SHA', 'PSK-CAMELLIA128-SHA256']
[pytapo] Device TLS probe via unsecure: tls_version=TLSv1.2, cipher=('ECDHE-RSA-AES128-GCM-SHA256', 'TLSv1.2', 128), alpn=None, cert_subject=None, cert_issuer=None, cert_not_before=None, cert_not_after=None, cert_sha256=8ed78bdecfa2d3f87998a4313446970e6492e0bce26ab6ddc7c59fe59c582562
[pytapo] Please report this issue to maintainers of python-kasa at https://github.com/python-kasa/python-kasa/issues/new so that the required cipher ECDHE-RSA-AES128-GCM-SHA256 can be added. The cipher most likely needs to be added to /transports/sslaestransport.py.
[pytapo] Integration will continue to work and accept any cipher on the device, but will output this warning message.