[GH-ISSUE #1048] handshakeFailed(NIOSSL.BoringSSLError.sslError([Error: 268436502 error:10000416:SSL routines:OPENSSL_internal:SSLV3_ALERT_CERTIFICATE_UNKNOWN])) #1043

New issue

Open

opened 2026-03-03 19:24:03 +03:00 by kerem · 3 comments

kerem commented 2026-03-03 19:24:03 +03:00

Owner

Copy link

Originally created by @hrz0x on GitHub (Oct 27, 2021).
Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/1048

Originally assigned to: @NghiaTranUIT on GitHub.

Proxyman version? (Ex. Proxyman 1.4.3)

2.34.1

macOS Version? (Ex. mac 10.14)

12.0.1

Steps to reproduce

1. Connect Android Device to the Proxyman Proxy
2. Open Google Playstore or other apps
3. It doesn't show properly

I used my Android Device (Galaxy S7) to capture traffic from a specific app. I used it in Android 6 and everything (including Playstore) worked perfectly with the proxy enabled. The traffic was captureable as well.

However, after I updated my device to Android 7 yesterday, it keeps giving me handshakeFailed(NIOSSL.BoringSSLError.sslError([Error: 268436502 error:10000416:SSL routines:OPENSSL_internal:SSLV3_ALERT_CERTIFICATE_UNKNOWN])) error.

And I am not able to open and use any apps (including Playstore) with the proxy on.
Please help. (www.google.com shows properly though)

Screenshots (optional)

Originally created by @hrz0x on GitHub (Oct 27, 2021). Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/1048 Originally assigned to: @NghiaTranUIT on GitHub. ### Proxyman version? (Ex. Proxyman 1.4.3) 2.34.1 ### macOS Version? (Ex. mac 10.14) 12.0.1 ### Steps to reproduce 1. Connect Android Device to the Proxyman Proxy 2. Open Google Playstore or other apps 3. It doesn't show properly I used my Android Device (Galaxy S7) to capture traffic from a specific app. I used it in Android 6 and everything (including Playstore) worked perfectly with the proxy enabled. The traffic was captureable as well. However, after I updated my device to Android 7 yesterday, it keeps giving me ```handshakeFailed(NIOSSL.BoringSSLError.sslError([Error: 268436502 error:10000416:SSL routines:OPENSSL_internal:SSLV3_ALERT_CERTIFICATE_UNKNOWN]))``` error. And I am not able to open and use any apps (including Playstore) with the proxy on. Please help. (www.google.com shows properly though) ### Screenshots (optional)

kerem commented 2026-03-03 19:24:04 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Oct 27, 2021):

Hey @WHTJEON Android 7 has updated the security requirements.

From what I know, from Android 7, you could not intercept HTTP/HTTPS traffic from apps you don't control, such as traffic from PlayStore, Google Chrome, Facebook, ...).

The reason is that it requires you to do 1 important step:

• Check out step 5 in the following screenshot (website version)

5. From Android N, we have to trust the Proxyman Certificate in your app by adding the following code: It means that you can only use SSL Proxying in apps, which you are in control
Add res/xml/network_security_config.xml

and

Add to AndroidManifest.xml

---

If you do it properly, you can capture traffic from your own apps. Regarding the other apps, you could not capture them anymore.

<!-- gh-comment-id:952459081 --> @NghiaTranUIT commented on GitHub (Oct 27, 2021): Hey @WHTJEON Android 7 has updated the security requirements. From what I know, from Android 7, you **could not** intercept HTTP/HTTPS traffic from apps you don't control, such as traffic from PlayStore, Google Chrome, Facebook, ...). The reason is that it requires you to do 1 important step: - Check out step 5 in the following screenshot ([website version](https://docs.proxyman.io/debug-devices/android-device)) ``` 5. From Android N, we have to trust the Proxyman Certificate in your app by adding the following code: It means that you can only use SSL Proxying in apps, which you are in control Add res/xml/network_security_config.xml ``` and ``` Add to AndroidManifest.xml ``` <img width="839" alt="Screen Shot 2021-09-14 at 10 52 27" src="https://user-images.githubusercontent.com/5878421/138984049-bde28e93-d0f1-4a18-a05f-954ca54dbe3e.png"> ------------- If you do it properly, you can capture traffic from your own apps. Regarding the other apps, you could not capture them anymore.

kerem commented 2026-03-03 19:24:04 +03:00

Author

Owner

Copy link

@hrz0x commented on GitHub (Oct 27, 2021):

But it's weird since my other device which runs Android 10 works just fine.

<!-- gh-comment-id:952459626 --> @hrz0x commented on GitHub (Oct 27, 2021): But it's weird since my other device which runs Android 10 works just fine.

kerem commented 2026-03-03 19:24:04 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Oct 27, 2021):

Are you Android 10 rooted?

If you don't mind, please delete the certificate on Android 7 Devices, and try to install it again.

<!-- gh-comment-id:952459887 --> @NghiaTranUIT commented on GitHub (Oct 27, 2021): Are you Android 10 rooted? If you don't mind, please delete the certificate on Android 7 Devices, and try to install it again.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

6.9.0

6.8.0

6.7.0

6.6.0

6.5.0

6.4.0

6.3.0

6.2.0

6.1.0

6.0.2

6.0.0

6.0.1

5.25.0

5.24.0

5.23.0

5.23.1

5.22.0

5.20.0

5.21.0

5.19.0

5.18.0

5.17.0

5.16.0

5.15.0

5.14.0

5.12.2

5.12.1

5.12.0

5.11.0

5.10.0

5.8.0

5.9.0

5.7.0

5.6.1

5.6.0

5.5.0

5.4.0

5.2.0

5.3.0

5.1.1

5.0.0

4.16.0

4.15.0

4.14.0

4.13.0

4.12.0

4.11.0

4.10.0

4.9.1

4.9.0

4.8.2

4.8.1

4.8.0

4.7.1

4.7.0

4.6.1

4.6.0

4.5.0

4.4.0

4.3.1

4.3.0

4.2.1

4.2.0

4.1.0

4.0.0

3.15.0

3.14.0

3.13.0

3.12.0

3.11.0

3.10.0

3.9.0

3.8.0

3.7.0

3.6.2

3.6.1

3.6.0

3.5.2

3.5.1

3.5.0

3.4.0

3.3.0

3.2.0

3.1.0

3.0.0

2.35.4

2.35.3

2.35.2

2.35.1

2.35.0

2.34.1

2.34.0

2.33.0

2.32.1

2.32.0

2.31.0

2.30.0

2.29.0

2.28.0

2.27.0

2.26.0

2.25.0

2.24.0

2.23.0

2.22.0

2.21.1

2.21.0

2.20.0

2.19.0

2.18.0

2.17.0

2.16.1

2.16.0

2.15.2

2.15.1

2.15.0

2.14.2

2.14.1

2.14.0

2.13.0

2.12.0

2.11.1

2.11.0

2.10.0

2.9.1

2.9.0

2.8.0

2.7.0

2.6.0

2.5.3

2.5.2

2.5.1

2.5.0

2.4.2

2.4.1

2.4.0

2.3.0

2.2.0

2.1.1

2.1.0

2.0.1

2.0.0

1.24.0

1.23.0

1.22.0

1.21.0

1.20.0

1.19.0

1.18.1

1.18.0

1.17.1

1.17.0

1.16.0

1.15.0

1.14.1

1.14.0

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.3

1.9.2

1.9.1

1.9.0

1.8.0

1.7.2

1.7.1

1.7.0

1.6.2

1.6.1

1.6.0

1.5.1

1.5.0

1.4.7

1.4.6

1.4.5.1

1.4.5

1.4.4.1

1.4.4

1.4.3

1.4.2

1.4.1.1

1.4.1

1.4

1.3.9

1.3.8

1.3.7

1.3.6

1.3.5

1.3.4.3

1.3.4.2

1.3.4.1

1.3.4

1.3.3

1.3.2

1.3.1

1.3

1.2

1.1.2

1.1.1

1.1

1.0.3

1.0.2

1.0

0.8.1

0.8

0.7

0.6

0.5.1

0.5

v0.4.1

Labels

Clear labels   

Discussion

  

Feature request

  

In Progress...

  

Plugins

  

Waiting response

  

Windows

  

Windows

  

bug

  

duplicate

  

enhancement

  

feature

  

good first issue

  

iOS

  

macOS 10.11

  

question

  

wontfix

  

✅ Done

No labels

Discussion

Feature request

In Progress...

Plugins

Waiting response

Windows

Windows

bug

duplicate

enhancement

feature

good first issue

iOS

macOS 10.11

question

wontfix

✅ Done

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/Proxyman#1043

No description provided.