Opened 5 years ago

Closed 5 years ago

#987 closed defect (duplicate)

ssl_ciphers default value incompatible with HTTP/2 when ssl_prefer_server_ciphers=on

Reported by: rundowncreator@… Owned by:
Priority: minor Milestone:
Component: nginx-core Version: 1.10.x
Keywords: http2, http/2 Cc:
uname -a: Linux redacted 4.5.3-x86_64-linode67 #3 SMP Tue May 10 10:22:44 EDT 2016 x86_64 x86_64 x86_64 GNU/Linux
nginx -V: nginx version: nginx/1.10.0 (Ubuntu)

Description

The default value for ssl_ciphers is incompatible with the HTTP/2 spec. When ssl_prefer_server_ciphers is set to on, this causes an ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY error in Chrome.

It would be nice if the default setting for ssl_ciphers was compatible with the HTTP/2 spec.

See also: https://github.com/http2/http2-spec/issues/755

Change History (1)

comment:1 by Maxim Dounin, 5 years ago

Resolution: duplicate
Status: newclosed

Duplicate of #794.

Note: See TracTickets for help on using tickets.