Hi all,
Hoping someone can help...
I am having a bizarre problem which I am unable to isolate concerning an SSL error that some users of my app are receiving when it fetches a file over HTTPS from our server. It only appears to affect some users, and only ever over 4G. The issue immediately goes away if the same phone is connected to WiFi. The error they are receiving is a generic one - "An SSL error has occurred and a secure connection to the server cannot be made". There does not appear to be a mobile network in common. Some phones on the same network (and in same physical location) are fine, whereas others on the same network are not. I cannot tie it down to a specific OS version either. The code in question is as follows (server address redacted):
(Note that I am using iHttpUtils2 in the B4i version of my app)
It is apparently affecting Android users as well (running the same code but compiled with B4A) but I have not seen proof of that as yet to confirm that it is definitely the case.
The app is being used at an event today but I cannot see any Schannel errors logged on our server to indicate a TLS handshake failure. I have installed Wireshark on our server to see if I can see anything in the logs and confirm this 100%.
I don't believe there is an issue with the SSL certificate or server configuration as there are no issues browsing to sites on the server using the certificate (it is a multi-domain certificate, if that is of any relevance), and I have run a check on the SSL certificate using the Qualys SSL tester and it doesn't flag anything up of concern.
It seems like too many people are experiencing the error to think it is network settings on the phones, nor anything like a transparent proxy misbehaving as phones on the same network yield different results. I am also curious as to why switching to WiFi on the same device resolves the issue.
Without being able to replicate the issue myself it is frustratingly hard to work out what is going on. My next step might be to try a different port (if I am able) from 442 and perhaps a different certificate (although why is it OK over WiFi on the same device if there was a certificate issue??).
Any help gratefully received at this stage!
Thanks very much!!
PS. Apologies if I have made any faux-pas in this post - it is my first post in the forum.
Hoping someone can help...
I am having a bizarre problem which I am unable to isolate concerning an SSL error that some users of my app are receiving when it fetches a file over HTTPS from our server. It only appears to affect some users, and only ever over 4G. The issue immediately goes away if the same phone is connected to WiFi. The error they are receiving is a generic one - "An SSL error has occurred and a secure connection to the server cannot be made". There does not appear to be a mobile network in common. Some phones on the same network (and in same physical location) are fine, whereas others on the same network are not. I cannot tie it down to a specific OS version either. The code in question is as follows (server address redacted):
(Note that I am using iHttpUtils2 in the B4i version of my app)
B4X:
Dim j As HttpJob
j.Initialize("", Me)
j.Download2("https://xxxxx.xxxx.xxx/xxxxxx/xxxxxx.php", Array As String("key", "abcdefghijkl", "lat", latitude, "lng", longitude, "app", appname))
Wait For (j) JobDone(j As HttpJob)
indLoading.Visible = False
If j.Success Then
HandleWebResponseGetStoresSuccess(j.GetString)
Else
Msgbox(j.ErrorMessage, "An error occurred")
End If
j.ReleaseIt is apparently affecting Android users as well (running the same code but compiled with B4A) but I have not seen proof of that as yet to confirm that it is definitely the case.
The app is being used at an event today but I cannot see any Schannel errors logged on our server to indicate a TLS handshake failure. I have installed Wireshark on our server to see if I can see anything in the logs and confirm this 100%.
I don't believe there is an issue with the SSL certificate or server configuration as there are no issues browsing to sites on the server using the certificate (it is a multi-domain certificate, if that is of any relevance), and I have run a check on the SSL certificate using the Qualys SSL tester and it doesn't flag anything up of concern.
It seems like too many people are experiencing the error to think it is network settings on the phones, nor anything like a transparent proxy misbehaving as phones on the same network yield different results. I am also curious as to why switching to WiFi on the same device resolves the issue.
Without being able to replicate the issue myself it is frustratingly hard to work out what is going on. My next step might be to try a different port (if I am able) from 442 and perhaps a different certificate (although why is it OK over WiFi on the same device if there was a certificate issue??).
Any help gratefully received at this stage!
Thanks very much!!
PS. Apologies if I have made any faux-pas in this post - it is my first post in the forum.
