stackoom
  简体   繁体   中英

SSL connection could not be established

 原文  2021-10-20 09:05:58       c#/ http/ ssl/ httpclient

Question

I've got an issue with sending HTTP requests to as part of automation testing, I want to check URL's status code. When I send the request I have an Exception:

System.AggregateException: 'One or more errors occurred. (The SSL connection could not be established, see inner exception.)'

The inner exceptions are:

HttpRequestException: The SSL connection could not be established, see inner exception.

IOException: Unable to read data from the transport connection: An existing connection was forcibly closed by the remote host.

SocketException: An existing connection was forcibly closed by the remote host.

My code:

    public HttpStatusCode SendRequest(string _url)
    {
        SetUrl(_url);

        HttpClientHandler clientHandler = new HttpClientHandler();
        clientHandler.ServerCertificateCustomValidationCallback += (sender, cert, chain, sslPolicyErrors) => { return true; };
        clientHandler.SslProtocols = SslProtocols.Tls;

        HttpClient client = new HttpClient(clientHandler);

        var response = client.GetAsync(Url).Result;

        StatusCode = response.StatusCode;

        return StatusCode;
    }

Thank you in advance !

2 answers

solution1
 1  2021-10-20 09:13:29

The remote host does (rightfully) not accept that you want to connect using TLS 1.0, which is deprecated.

Specify .Tls12 or .Tls13.

solution2
 1  2021-10-20 09:24:01

As @CodeCaster already mentioned: SslProtocols.Tls (TLS 1.0) is not an option nowadays. Simply use SslProtocols.None (which is the default) to let the OS choose the best option for you:

None: Allows the operating system to choose the best protocol to use, and to block protocols that are not secure. Unless your app has a specific reason not to, you should use this field.

https://docs.microsoft.com/en-us/dotnet/api/system.security.authentication.sslprotocols?view=net-5.0#fields

Furthermore skipping the server certificate validation (by letting ServerCertificateCustomValidationCallback just return true) is a very dangerous thing. You should avoid that.

Is the remote host under your control? Can you check which TLS version it's using?

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question The SSL connection could not be established SignalR The SSL connection could not be established Mailgun response The SSL connection could not be established The SSL connection could not be established, see inner exception The SSL connection could not be established in dotNet Core Azure Function The SSL connection could not be established The SSL connection could not be established. Authentication failed C# .NET Core 3.1 The SSL connection could not be established Dotnet 5 on mac with IS4 returns SSL connection could not be established The SSL connection could not be established: System.Security.Authentication.AuthenticationException
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM