starred/jellyfin
1
0
Fork 0
mirror of https://github.com/jellyfin/jellyfin.git synced 2026-05-04 18:09:12 +03:00
Code Issues 822 Packages Projects Releases 10 Wiki Activity

TLS/HTTPS support broken #437

New Issue
Closed
opened 2026-02-06 19:42:38 +03:00 by OVERLORD · 11 comments
OVERLORD commented 2026-02-06 19:42:38 +03:00
Owner
Copy Link

Originally created by @ghost on GitHub (Feb 19, 2019).

Describe the bug

Jellyfin documentation recommends using HTTPS over HTTP, but HTTPS/TLS support is broken, erroring with ERR_SSL_PROTOCOL_ERROR in Chrome Version 74.0.3702.0 (Official Build) dev (64-bit) and SSL_ERROR_RX_RECORD_TOO_LONG in IceCat (Firefox) 60.5.0esr (64-bit).

To Reproduce

  1. Go to https://localhost:8096
  2. Observe that it gives an SSL error and Jellyfin cannot be accessed.

Expected behavior

Jellyfin should work over HTTPS as the documentation implies/recommends.

Logs

N/A

Screenshots

N/A

System (please complete the following information):

  • OS: Fedora 29
  • Browser:
    • Chrome v74.0.3702.0
    • IceCat v60.5.0esr
  • Jellyfin Version: 10.2.0-2.fc29 (installed via official RPM)

Additional context

N/A

Originally created by @ghost on GitHub (Feb 19, 2019). **Describe the bug** <!-- A clear and concise description of what the bug is. --> [Jellyfin documentation](https://jellyfin.readthedocs.io/en/latest/administrator-docs/first-time/) recommends using HTTPS over HTTP, but HTTPS/TLS support is broken, erroring with `ERR_SSL_PROTOCOL_ERROR` in `Chrome Version 74.0.3702.0 (Official Build) dev (64-bit)` and `SSL_ERROR_RX_RECORD_TOO_LONG` in `IceCat (Firefox) 60.5.0esr (64-bit)`. **To Reproduce** <!-- Steps to reproduce the behavior: --> 1. Go to https://localhost:8096 2. Observe that it gives an SSL error and Jellyfin cannot be accessed. **Expected behavior** <!-- A clear and concise description of what you expected to happen. --> Jellyfin should work over HTTPS as the documentation implies/recommends. **Logs** <!-- Please paste any log errors. --> N/A **Screenshots** <!-- If applicable, add screenshots to help explain your problem. --> N/A **System (please complete the following information):** - OS: Fedora 29 - Browser: - Chrome v74.0.3702.0 - IceCat v60.5.0esr - Jellyfin Version: 10.2.0-2.fc29 (installed via official RPM) **Additional context** <!-- Add any other context about the problem here. --> N/A
OVERLORD added the bug label 2026-02-06 19:42:38 +03:00
OVERLORD commented 2026-02-06 19:42:40 +03:00
Author
Owner
Copy Link

@cvium commented on GitHub (Feb 19, 2019):

Did you generate an SSL certificate?

@cvium commented on GitHub (Feb 19, 2019): Did you generate an SSL certificate?
OVERLORD commented 2026-02-06 19:42:43 +03:00
Author
Owner
Copy Link

@ghost commented on GitHub (Feb 19, 2019):

I did not, as I encountered the error during first time setup; the first time setup documentation lists an HTTPS URL, so this may be a simple documentation error rather than a bug if Jellyfin cannot be setup under HTTPS the first time.

@ghost commented on GitHub (Feb 19, 2019): I did not, as I encountered the error during first time setup; the [first time setup documentation](https://jellyfin.readthedocs.io/en/latest/administrator-docs/first-time/) lists an HTTPS URL, so this may be a simple documentation error rather than a bug if Jellyfin cannot be setup under HTTPS the first time.
OVERLORD commented 2026-02-06 19:42:45 +03:00
Author
Owner
Copy Link

@cvium commented on GitHub (Feb 19, 2019):

It's on the roadmap to (re)implement self-signed cert generation and Let's Encrypt (as a plugin).

So yes, you are correct. It seems the documentation is lacking wrt. SSL certificate generation. It cannot be accessible via https without a certificate. I think you can generate a self-signed cert with openssl in Linux:

  1. https://github.com/Azure/azure-xplat-cli/wiki/Getting-Self-Signed-SSL-Certificates-(.pem-and-.pfx)

cc @joshuaboniface

@cvium commented on GitHub (Feb 19, 2019): It's on the roadmap to (re)implement self-signed cert generation and Let's Encrypt (as a plugin). So yes, you are correct. It seems the documentation is lacking wrt. SSL certificate generation. It cannot be accessible via https without a certificate. I think you can generate a self-signed cert with openssl in Linux: 1. https://github.com/Azure/azure-xplat-cli/wiki/Getting-Self-Signed-SSL-Certificates-(.pem-and-.pfx) cc @joshuaboniface
OVERLORD commented 2026-02-06 19:42:46 +03:00
Author
Owner
Copy Link

@JustAMan commented on GitHub (Feb 19, 2019):

Also port 8096 is by default plain http, not https. Maybe it's the reason for the issue you're seeing.

@JustAMan commented on GitHub (Feb 19, 2019): Also port 8096 is by default plain http, not https. Maybe it's the reason for the issue you're seeing.
OVERLORD commented 2026-02-06 19:42:48 +03:00
Author
Owner
Copy Link

@jerome-diver commented on GitHub (Jun 30, 2021):

is there any news about this bug report ? I have the same problem...

@jerome-diver commented on GitHub (Jun 30, 2021): is there any news about this bug report ? I have the same problem...
OVERLORD commented 2026-02-06 19:42:49 +03:00
Author
Owner
Copy Link

@RIS2000 commented on GitHub (Sep 12, 2021):

is there any news about this bug report ? I have the same problem...

same for me (

@RIS2000 commented on GitHub (Sep 12, 2021): > > > is there any news about this bug report ? I have the same problem... same for me (
OVERLORD commented 2026-02-06 19:42:50 +03:00
Author
Owner
Copy Link

@cvium commented on GitHub (Sep 12, 2021):

The issue is closed

@cvium commented on GitHub (Sep 12, 2021): The issue is closed
OVERLORD commented 2026-02-06 19:42:51 +03:00
Author
Owner
Copy Link

@RIS2000 commented on GitHub (Sep 12, 2021):

The issue is closed

what is the fix ?

@RIS2000 commented on GitHub (Sep 12, 2021): > > > The issue is closed what is the fix ?
OVERLORD commented 2026-02-06 19:42:52 +03:00
Author
Owner
Copy Link

@RIS2000 commented on GitHub (Oct 1, 2021):

изображение

this is helped me on desktop, but no luck on android (

@RIS2000 commented on GitHub (Oct 1, 2021): ![изображение](https://user-images.githubusercontent.com/30177105/135671957-01197e8a-643f-4d71-b41d-a79a2b0e47dd.png) this is helped me on desktop, but no luck on android (
OVERLORD commented 2026-02-06 19:42:53 +03:00
Author
Owner
Copy Link

@BigBrawler commented on GitHub (May 2, 2023):

The following fixed this issue for me. Did these with no dice.
Paid for keypair file online via csr service. [x]
Generated using openssl cli. [x]

THE FIX:

  1. Install SoftEther Server Manager.
  2. Use it's built-in Make certificate button to generate a .cer and .key file pair (the first option of three)
  3. Use this command with openssl windows installed openssl pkcs12 -export -out c:\jellyfin.pfx -inkey <path-to-privatekey>\jellyfin-private.key -in <path-to-certificate>\jellyfin-cert.cer -passout pass:
  4. Pick c:\jellyfin.pfx file in jellyfin
  5. Make SURE you restart Jellyfin. I had it installed using nssm and restarted it using taskmgr.
@BigBrawler commented on GitHub (May 2, 2023): The following fixed this issue for me. Did these with no dice. Paid for keypair file online via csr service. [x] Generated using openssl cli. [x] THE FIX: 1. Install SoftEther Server Manager. 2. Use it's built-in Make certificate button to generate a .cer and .key file pair (the first option of three) 3. Use this command with openssl windows installed ```openssl pkcs12 -export -out c:\jellyfin.pfx -inkey <path-to-privatekey>\jellyfin-private.key -in <path-to-certificate>\jellyfin-cert.cer -passout pass:``` 4. Pick c:\jellyfin.pfx file in jellyfin 5. Make SURE you restart Jellyfin. I had it installed using nssm and restarted it using taskmgr.
OVERLORD commented 2026-02-06 19:42:54 +03:00
Author
Owner
Copy Link

@Blarnix commented on GitHub (Jun 23, 2023):

@BigBrawler That was the fix for me. I was using a .p12 certificate before as Jellyfin had said in the networking UI and that wasn't valid as it seemed. Thanks for finding this fix.

@Blarnix commented on GitHub (Jun 23, 2023): @BigBrawler That was the fix for me. I was using a .p12 certificate before as Jellyfin had said in the networking UI and that wasn't valid as it seemed. Thanks for finding this fix.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
EFjellyfin.db
area:database
awaiting-feedback
backend
blocked
breaking change: web api
bug
build
ci
confirmed
discussion needed
dotnet future
downstream
duplicate
enhancement
feature
future
github-actions
good first issue
hdr
help wanted
invalid
investigation
librarydb
live-tv
lyrics
media playback
music
needs testing
nuget
performance
platform
pull-request
Mirrored from GitHub Pull Request
 question
regression
release critical
requires-web
roadmap
security
security
stale
support
syncplay
ui & ux
upstream
wontfix
No Label bug
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
OVERLORD
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/jellyfin#437
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?