NEW 145819
Websocket Invalid Certificate Error after accepting self signed certificate 
https://bugs.webkit.org/show_bug.cgi?id=145819
Summary Websocket Invalid Certificate Error after accepting self signed certificate
Fabio Rojas
Reported 2015-06-09 15:10:21 PDT
Steps to Repro: - Get WebContent from Site A - Have webcontent retrieve webpage from site B - Site B uses a self signed cert - User accepts self signed cert but does not add it to keychain - Have web content try to communicate with site B using Websocket - See the the following error in the logs: [Error] WebSocket network error: OSStatus Error -9807: Invalid certificate chain (index.html, line 0) - At this point if the browser navigates to site B it displays that the certificate on site B is trusted because the user has accepted it for this session Seen on Safari Version 8.0.6 (10600.6.3) Note: - This works on: Chrome Version 43.0.2357.124 (64-bit) Firefox Version 38.0.5 IE: 10, 11 and Edge
Attachments
Add attachment proposed patch, testcase, etc.
Fabio Rojas
Comment 1 2015-06-09 15:27:02 PDT
Workaround: Add the self signed certificate from site B to the keychain
Alexey Proskuryakov
Comment 2 2015-06-09 21:51:45 PDT
rdar://problem/9697244
Sanjay Kumar
Comment 3 2019-08-29 13:20:08 PDT
Is this being considered for implementation ? Without Self signed certificate we can not connect IoT devices to mobile Safari. This is a huge problem.
Note You need to log in before you can comment on or make changes to this bug.