[GH-ISSUE #107] Chrome reporting ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY #59

New issue

Closed

opened 2026-02-25 22:32:30 +03:00 by kerem · 3 comments

kerem commented 2026-02-25 22:32:30 +03:00

Owner

Copy link

Originally created by @x2rider on GitHub (Jan 8, 2019).
Original GitHub issue: https://github.com/FiloSottile/mkcert/issues/107

A search on this error reports:
A deployment of HTTP/2 over TLS 1.2 SHOULD NOT use any of the cipher suites that are listed in the cipher suite black list.

I'm not sure how to change the cipher, or possibly the cipher order.

Is there something I can to do, to fix this?

Originally created by @x2rider on GitHub (Jan 8, 2019). Original GitHub issue: https://github.com/FiloSottile/mkcert/issues/107 A search on this error reports: A deployment of HTTP/2 over TLS 1.2 SHOULD NOT use any of the cipher suites that are listed in the cipher suite black list. I'm not sure how to change the cipher, or possibly the cipher order. Is there something I can to do, to fix this?

kerem 2026-02-25 22:32:30 +03:00

• closed this issue
• added the
  TLS stack issue
  label

kerem commented 2026-02-25 22:32:30 +03:00

Author

Owner

Copy link

@adamdecaf commented on GitHub (Jan 8, 2019):

What version of chrome are you using?

<!-- gh-comment-id:452353762 --> @adamdecaf commented on GitHub (Jan 8, 2019): What version of chrome are you using?

kerem commented 2026-02-25 22:32:30 +03:00

Author

Owner

Copy link

@FiloSottile commented on GitHub (Jan 8, 2019):

This sounds almost certainly like an issue with the HTTPS server implementation you are using, not with the certificate mkcert generated. mkcert has no control over the cipher suites your TLS implementation uses.

If it works with any other certificate, please reopen the issue.

<!-- gh-comment-id:452375998 --> @FiloSottile commented on GitHub (Jan 8, 2019): This sounds almost certainly like an issue with the HTTPS server implementation you are using, not with the certificate mkcert generated. mkcert has no control over the cipher suites your TLS implementation uses. If it works with any other certificate, please reopen the issue.

kerem commented 2026-02-25 22:32:30 +03:00

Author

Owner

Copy link

@x2rider commented on GitHub (Jan 11, 2019):

I was able to fix the issue I was having by running the IIS Crypto 2 tool
https://appuals.com/fix-err_spdy_inadequate_transport_security/

<!-- gh-comment-id:453652662 --> @x2rider commented on GitHub (Jan 11, 2019): I was able to fix the issue I was having by running the IIS Crypto 2 tool https://appuals.com/fix-err_spdy_inadequate_transport_security/

kerem referenced this issue 2026-02-25 22:33:18 +03:00

[PR #59] [CLOSED] Fix use of multiple CAs on Linux #375

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

v1.4.4

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.3.0

v1.2.0

v1.1.2

v1.1.1

v1.1.0

v1.0.1

v1.0.0

v0.9.1

v0.9.0

Labels

Clear labels   

TLS stack issue

  

Windows

  

bug

  

duplicate

  

duplicate

  

enhancement

  

help wanted

  

help wanted

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

question

  

root store

  

waiting for info

No labels

TLS stack issue

Windows

bug

duplicate

duplicate

enhancement

help wanted

help wanted

pull-request

question

question

root store

waiting for info

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/mkcert#59

No description provided.