stackoom
  简体   繁体   中英

Mono, WebClient & invalid SSL Certificates

 原文  2010-09-09 07:49:19       c#/ ssl/ mono

Question

I'm trying to port an existing Application to Mono 2.6.7/Linux. One Task is to receive data via the WebClient method from Servers with an invalid SSL Cert.

Our.Net 3.5 Code under Windows to accept all certificates works fine: 

ServicePointManager.ServerCertificateValidationCallback = TrustCertificate;
StreamReader webReader = new StreamReader(webClient.OpenRead(url));
...
private static bool TrustCertificate(object sender, X509Certificate x509Certificate, X509Chain x509Chain, SslPolicyErrors sslPolicyErrors)
{
   // all Certificates are accepted
   return true;
}

I tried misc. things to achieve the same in Mono without using specific Mono dll's but always the same error:

Error getting response stream (Write: The authentication or decryption has failed.): SendFailure

Any ideas how to solve this issue?

3 answers

solution1
 4  2010-10-02 20:27:37

The main reason is that Mono, unlike Microsoft's .NET implementation, does not include trusted root certificates, so all certificate validation will fail by default.

This page does an excellent job explaining how certificate validation on Mono works. It also describes how to implement your own policy responsibly, including sample code.

http://www.mono-project.com/UsingTrustedRootsRespectfully

The site is somewhat old and provides code for .NET 2.0, using the ServicePointManager.CertificatePolicy property. You should use the newer, non-deprecated ServicePointManager.ServerCertificateValidationCallback property instead.

solution2
 2  2010-09-20 15:00:22

Try using this instead (the callback property was implemented only recently I think): 

ServicePointManager.CertificatePolicy = new NoCheckCertificatePolicy ();

where NoCertificatePolicy is: 

using System;
using System.Net;
using System.Security.Cryptography.X509Certificates;

namespace MyNameSpace
{
 class NoCheckCertificatePolicy : ICertificatePolicy
 {
  public bool CheckValidationResult (ServicePoint srvPoint, X509Certificate certificate, WebRequest request, int certificateProblem)
  {
   return true;
  }
 }
}

solution3
 0  2022-08-24 08:32:01

For me it worked when I validated certificates like said before, but also be sure, not to use https but only use http requests. For me it didn't work until I did both.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question WebClient + SSL exception with Android 4 and Mono for Android Getting SSL Certificates onto Android Device Thru Unity Mono Using custom SSL client certificates System.Net.HttpClient on Mono Accepting invalid SSL certificates using WinRT Mono WebClient encoding issue Mono for Android WebClient Special characters Force WebClient to use SSL Allowing Untrusted SSL Certificates with HttpClient TLS/SSL where to install certificates SSL/TSL - Issue in finding Certificates
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM