Highlighted

AIR 19-22, SecureSocket: certificate is always invalid on Android

Community Beginner ,
Sep 01, 2016

Copy link to clipboard

Copied

When using SecureSocket for SSL connection, connection is established on Windows but not on Android devices: SecureCertificateStatus is "invalid" for any host, even for google.com.

In previous versions of AIR it was not an issue, and in AIR 19 openssl was updated so I believe it has something with it.

Here's the code fore reproducing the issue:

var ss:SecureSocket = new SecureSocket();

ss.addEventListener(Event.CONNECT, connect);

ss.addEventListener(IOErrorEvent.IO_ERROR, ioerror);

ss.connect("google.com", 443);

function ioerror(event:IOErrorEvent):void{

     trace(event);

     trace(ss.serverCertificateStatus);

     trace("Not connected!");

}

function connect(event:Event):void{

     trace("Connected!");

}

Is there any solution to make it connectable?

TOPICS
Performance issues

Views

2.5K

Likes

Translate

Translate

Report

Report
Community Guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more

AIR 19-22, SecureSocket: certificate is always invalid on Android

Community Beginner ,
Sep 01, 2016

Copy link to clipboard

Copied

When using SecureSocket for SSL connection, connection is established on Windows but not on Android devices: SecureCertificateStatus is "invalid" for any host, even for google.com.

In previous versions of AIR it was not an issue, and in AIR 19 openssl was updated so I believe it has something with it.

Here's the code fore reproducing the issue:

var ss:SecureSocket = new SecureSocket();

ss.addEventListener(Event.CONNECT, connect);

ss.addEventListener(IOErrorEvent.IO_ERROR, ioerror);

ss.connect("google.com", 443);

function ioerror(event:IOErrorEvent):void{

     trace(event);

     trace(ss.serverCertificateStatus);

     trace("Not connected!");

}

function connect(event:Event):void{

     trace("Connected!");

}

Is there any solution to make it connectable?

TOPICS
Performance issues

Views

2.5K

Likes

Translate

Translate

Report

Report
Community Guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
Sep 01, 2016 0
New Here ,
Oct 12, 2016

Copy link to clipboard

Copied

We can confirm that we have the same issue with Air for Android. We also checked Air versions 18 and 23 and got the same error:

[trace] [IOErrorEvent type="ioError" bubbles=false cancelable=false eventPhase=2 text="Error #2031: Socket Error. URL: google.com" errorID=2031]
[trace] principalMismatch

Web and iOS versions work fine. This issue seems to be on Android only.

Likes

Translate

Translate

Report

Report
Community Guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
Reply
Loading...
Oct 12, 2016 0
Community Beginner ,
Oct 28, 2016

Copy link to clipboard

Copied

If you have the same issue, please vote for the fix at adobe bug base Bug#4185838 - SecureSocket can't connect on Android

TNX

Likes

Translate

Translate

Report

Report
Community Guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
Reply
Loading...
Oct 28, 2016 0
New Here ,
Dec 13, 2016

Copy link to clipboard

Copied

The vote page has been moved to  Adobe Tracker

Likes

Translate

Translate

Report

Report
Community Guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
Reply
Loading...
Dec 13, 2016 0
Explorer ,
Mar 08, 2017

Copy link to clipboard

Copied

We just noticed this as well. Our servers are being upgraded to TLS 1.1 and 1.2 and secureSockets are needed to work with that. Like you said, it works flawlessly on ios and Windows, but not at all on Android. Did you ever find any resolution to this or a workaround?

Likes

Translate

Translate

Report

Report
Community Guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
Reply
Loading...
Mar 08, 2017 0
Explorer ,
Mar 23, 2017

Copy link to clipboard

Copied

Any reply to this would be great. This is really crippling our ability to deliver apps for android over https and TLS 1.2 which is being mandated by a lot of our fortune 100 clients. Please help!

Likes

Translate

Translate

Report

Report
Community Guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
Reply
Loading...
Mar 23, 2017 0
Adobe Employee ,
Mar 24, 2017

Copy link to clipboard

Copied

We're working on it but unfortunately it's not a trivial fix.  That said, it's a high priority item we'd like to address in one of the upcoming releases.

Likes

Translate

Translate

Report

Report
Community Guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
Reply
Loading...
Mar 24, 2017 1
Vivid75 LATEST
Explorer ,
Mar 27, 2017

Copy link to clipboard

Copied

Thanks for the update Chris. I'm glad it's a priority. Looking forward to a solution.

Likes

Translate

Translate

Report

Report
Community Guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
Reply
Loading...
Mar 27, 2017 0