Ionic Android应用程序-SSL证书错误-主要错误-5 [英] Ionic Android App - SSL Cert error - Primary Error - 5

问题描述

几周前，我们在Playstore中的应用停止在极少数的android设备上运行.调试后，我们发现该应用由于证书验证失败而无法与我们的服务器连接.我们的服务器证书非常有效.不知道为什么很少有设备突然认出它.在调试时，我们尝试将我们的应用程序与另一个启用了跨根(支持SHA-1和SHA-2)的证书链相连接.

Few weeks ago, our app in our playstore stopped working on very few android devices. After debugging, we found out that the app isn't able to connect with our server due to cert validation failure. Our server certificates are very much valid. Don't know why it is not recognized by few devices all of a sudden. While debugging we tried to connect our app with another certificate chain which is cross-root enabled(to support SHA-1 and SHA-2), it worked well.

Android设备最近是否有任何安全更新来强制执行严格的SHA算法验证?启用跨根证书证书是否会打开任何漏洞?非常感谢您的回答.

Was there any security update in android devices recently to enforce strict SHA algorithm validation? will enabling cross-root on certificate open any vulnerability? Your answers are much appreciated.

推荐答案

这似乎与Webview/Chrome的特定版本有关.在此处查看更多信息: https://www.chromium.org/developers/androidwebview/webview-ct-bug

This seems to issue with specific versions of Webview/Chrome. Check here for more info : https://www.chromium.org/developers/androidwebview/webview-ct-bug

"WebView开发人员只能采取的行动是要求用户更新WebView."

"The only action WebView developers can take is to ask the user to update WebView."

此处提供了示例代码，用于检查受影响的webview/chrome版本并重定向到Play商店: https://github.com/ntfschr-chromium/ct_workaround

Sample code is provided here to check affected webview/chrome versions and redirect to Play Store: https://github.com/ntfschr-chromium/ct_workaround

这篇关于Ionic Android应用程序-SSL证书错误-主要错误-5的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！