mirror of
https://github.com/ProxymanApp/Proxyman.git
synced 2026-04-25 16:15:55 +03:00
[GH-ISSUE #1452] SSL Handshake Failed at Users/nghiatran/Library/Developer/Xcode/DerivedData/ #1446
Labels
No labels
Discussion
Feature request
In Progress...
Plugins
Waiting response
Windows
Windows
bug
duplicate
enhancement
feature
good first issue
iOS
macOS 10.11
question
wontfix
✅ Done
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference
starred/Proxyman#1446
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @Yakow13 on GitHub (Dec 1, 2022).
Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/1452
Description
Trying to intercept SSL connection on Android phone
Steps to Reproduce
Current Behavior
SSL Handshake Failed handshakeFailed(NIOSSL.BoringSSLError.sslError([Error: 268436502 error:10000416:SSL routines:OPENSSL_internal:SSLV3_ALERT_CERTIFICATE_UNKNOWN at /Users/nghiatran/Library/Developer/Xcode/DerivedData/NSProxy-dpnvjsvnoedgpgfkomhjjqznnjsa/SourcePackages/checkouts/swift-nio-ssl/Sources/CNIOBoringSSL/ssl/tls_record.cc:594]))
Expected Behavior
Successful SSL Handshake. Able to see SSL communication
Environment
@NghiaTranUIT commented on GitHub (Dec 1, 2022):
Hi @Yakow13 To interpret HTTPS traffic from Android Devices, you have finish the step 5 in this Setup Guide: https://docs.proxyman.io/debug-devices/android-device
By adding the Security exception in
network_security_config.xml.Visit google.com from Android Web Browser doesn't work since you're not possible to modify the
network_security_config@NghiaTranUIT commented on GitHub (Dec 1, 2022):
Security on Android devices is trickier, and the 5th step is crucial to successfully intercept its HTTPS traffic. Otherwise, you will get a bunch of SSL errors.
@Yakow13 commented on GitHub (Dec 1, 2022):
Hey. Thanks for the quick response.
Going to google.com using Chrome was one of the troubleshooting points I was trying to take. But even this was unsuccessful.
At first, I'm trying to intercept my app, where the
network_security_config.xmlis set up properly. Same SSL handshake error. Then I was following the troubleshooting manual, where going to google.com was mentioned. Now I see that's for iOS not for Android.Any troubleshooting for Android? I'm stuck on this SSL handshake error for a week
@NghiaTranUIT commented on GitHub (Dec 1, 2022):
Is your Android app a Native app, or React Native?
To verify the certificate is installed & trusted, if you don't mind, please open the Setting app -> Security -> Trusted Credentials -> User Tab -> And see if Proxyman CA is here.
@NghiaTranUIT commented on GitHub (Dec 1, 2022):
The easier to intercept native Android app is using Android Emulator.
You can run the Emulator Script in Certificate Menu -> Install for Android -> Emulator. Document at https://docs.proxyman.io/debug-devices/android-device/automatic-script-for-android-emulator
It will automatically override the proxy, install & trust the certificate.
Make sure Android Emulator is the Google APIs version, not Google Play Store version.
@Yakow13 commented on GitHub (Dec 1, 2022):
The emulator one started work (I was sure that the certificate is correct, so I could try to modify different things).
Then with trial and error, I figured out that the missing piece was this:
<domain includeSubdomains="true">your_domain</domain>Didn't have this specified. When I added my domain, the emulator as well as the physical device started to work.
Thanks for troubleshooting :).
Closing the ticket
@NghiaTranUIT commented on GitHub (Dec 1, 2022):
Awesome. Glad to hear that it works.
You can use the Manage Domain to automatically generate the domain + Persist for the next launch. Save a little time for you ❤️