[BUG] 开启h2后,网站图片加载失败,且ssllab显示http failure #171
Comments
ghost
added
the
|
Please provide your nginx configuration. |
|
server { server { server { |
|
http2 不支持 http(80)协议吧.... |
请你自己调试通过再说 |
废话 我生产服务器都是443 才开http2 |
我是指你用Trojan当前端的情况下 |
|
@blankhang Please don't try to answer this question if you have no idea what the problem is. @johnrosen1 Can you provide any browser debug info when loading the images? |
|
h2是个啥? |
|
需要升级到debian 10, |
|
I'll try to look into this myself. Thanks for reporting it. |
|
I can't reproduce this bug. With my configuration everything works fine. Nginx config: server {
listen 127.0.0.1:80 http2;
server_name localhost;
location / {
root /usr/share/nginx/html;
index index.html index.htm;
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root /usr/share/nginx/html;
}
}Trojan config: {
"run_type": "server",
"local_addr": "0.0.0.0",
"local_port": 443,
"remote_addr": "127.0.0.1",
"remote_port": 80,
"password": [
"password1",
"password2"
],
"log_level": 0,
"ssl": {
"cert": "certificate.crt",
"key": "private.key",
"key_password": "",
"cipher": "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256",
"cipher_tls13":"TLS_AES_128_GCM_SHA256:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_256_GCM_SHA384",
"prefer_server_cipher": true,
"alpn": [
"h2",
"http/1.1"
],
"reuse_session": true,
"session_ticket": false,
"session_timeout": 600,
"plain_http_response": "",
"curves": "",
"dhparam": ""
},
"tcp": {
"prefer_ipv4": false,
"no_delay": true,
"keep_alive": true,
"reuse_port": false,
"fast_open": false,
"fast_open_qlen": 20
},
"mysql": {
"enabled": false,
"server_addr": "127.0.0.1",
"server_port": 3306,
"database": "trojan",
"username": "trojan",
"password": ""
}
} |
all right, i will check again |
@GreaterFire HTTP request to this server failed, see below for details. ssllab still show this error |
How to build the lastest trojan? thanks |
|
it seems to be a bug of ssllab,close issue |
|
EDIT: This is already discussed in #226, sorry for the duplicate. Upon inspection, this seems to be due to https://trac.nginx.org/nginx/ticket/808. Specifically, since nginx does not support placing h2c (http2 over TCP) and http1.1 on the same port, clients that only support http1.1 would fail. This can be verified by running It may be possible to mitigate this by changing |
…entry `ssl.alpn_port_override` that changes the remote port according to the received ALPN.
that changes the remote port according to the ALPN. Fixes trojan-gfw#171 and trojan-gfw#226.
that changes the remote port according to the ALPN. Fixes trojan-gfw#171 and trojan-gfw#226.
that changes the remote port according to the ALPN. Fixes trojan-gfw#171 and trojan-gfw#226.
* Add an optional config entry `ssl.alpn_port_override` that changes the remote port according to the ALPN. Fixes #171 and #226. * Handle `ssl.alpn_port_override` only when the request is not valid. * Fixes to `ssl.alpn_port_override` Co-authored-by: GreaterFire <[email protected]>
Trojan Version
The version of trojan you are using.
1.13.0
Describe the bug
A clear and concise description of what the bug is.
服务器和nginx均开启h2情况下,访问网站图片加载失败,去掉h2支持后加载正常
To Reproduce
Steps to reproduce the behavior:
Expected behavior
A clear and concise description of what you expected to happen.
图片加载正常
Logs
If applicable, add logs to help explain your problem.
not trojan request, connecting to 127.0.0.1:80
Environment
Where are you running trojan? What is your proxy set up?
debian9 nginx
Additional context
Add any other context about the problem here.
h2有bug,开启后ssllab会出现http failure,仅使用http1.1则不会
The text was updated successfully, but these errors were encountered: