StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POiOS - Install SSL certificate programmatically
primarykey
Id
12798950
data
AcceptedAnswerId
0
AnswerCount
2
ClosedDate
CommentCount
9
CommunityOwnedDate
CreationDate
2012-10-09T11:22:01.887
FavoriteCount
14
LastActivityDate
2017-04-15T18:58:35.153
LastEditDate
2017-04-15T18:58:35.153
LastEditorUserId
1033581
OwnerUserId
417580
ParentId
0
PostTypeId
1
Score
20
ViewCount
10042
LastEditorDisplayName
text
Body
I'm writing a phonegap plugin that installs both CA root certificate and user certificate in the app keychain. Here is the code used to install the certificate: <pre><code>NSData *PKCS12Data = [[NSData alloc] initWithContentsOfFile:certpath]; CFDataRef inPKCS12Data = (CFDataRef)PKCS12Data; CFStringRef password = (CFStringRef)certPassword; const void *keys[] = { kSecImportExportPassphrase }; const void *values[] = { password }; CFDictionaryRef optionsDictionary = CFDictionaryCreate(NULL, keys, values, 1, NULL, NULL); CFArrayRef items = CFArrayCreate(NULL, 0, 0, NULL); OSStatus securityError = SecPKCS12Import(inPKCS12Data, optionsDictionary, &items); if (securityError == 0) { NSLog(@" *** Certificate install Success ***"); } else { NSLog(@" *** Certificate install Failure ***"); } </code></pre> The code above works fine (securityError equals 0). However, I'm obtaining those errors: <pre><code>unknown apsd[59] <Warning>: <APSCourier: 0xee1ba80>: Stream error occurred for <APSTCPStream: 0x126940>: TLS Error Code=-9844 "peer dropped connection before responding" unknown securityd[638] <Error>: CFReadStream domain: 12 error: 8 </code></pre> That indicates that the device does not accept the installed certificate, so i'm wondering that the certificate is not validated against the CA Root certificate installed on the device. Do I have to install the CA Root certificate for the app ? Any ideas ? P.S: I'm new to Objective-C and XCode environment. EDIT: The code below is used to store CA root certificat in keychain: <pre><code>NSString *rootCertPath = [[NSBundle mainBundle] pathForResource:@"rootca" ofType:@"cer"]; NSData *rootCertData = [NSData dataWithContentsOfFile:rootCertPath]; OSStatus err = noErr; SecCertificateRef rootCert = SecCertificateCreateWithData(kCFAllocatorDefault, (CFDataRef) rootCertData); CFTypeRef result; NSDictionary* dict = [NSDictionary dictionaryWithObjectsAndKeys: (id)kSecClassCertificate, kSecClass, rootCert, kSecValueRef, nil]; err = SecItemAdd((CFDictionaryRef)dict, &result); if( err == noErr) { NSLog(@"Install root certificate success"); } else if( err == errSecDuplicateItem ) { NSLog(@"duplicate root certificate entry"); } else { NSLog(@"install root certificate failure"); } </code></pre> EDIT: It seems that the certificate is not sent to server. I think that I have to send manually the certificate each time an https request is made... I'm looking for a way to catch every https call in phonegap.
Tags
<objective-c><ios><cordova><ssl><certificate>
Title
iOS - Install SSL certificate programmatically
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. USCœur
UserOwnerUserId
1. USridan
plurals
PostLinksPostIdRelatedPostId
1. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 POiOS - Install SSL certificate programmatically
 UserUserId
 USbryanmac
 VoteTypeVoteTypeId
 VTFavorite
2. VO
 singulars
 PostPostId
 POiOS - Install SSL certificate programmatically
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
3. VO
 singulars
 PostPostId
 POiOS - Install SSL certificate programmatically
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.