Avatars (and probably other media) do not display with account on a self-signed server #816
Comments
|
I can confirm that all media does not load. Also the app keeps on reloading every couple of seconds so you have the spinning animation constantly displayed everywhere. |
|
I am experiencing the same problem, though the server's certs are CAcert-issued (not self-signed). It does not matter whether I give Riot permission to trust the certificate, or install the CAcert certificate profile into iOS. Probably the issue lies deep inside some Apple black box which fails (or refuses) to work with officially sanctioned certificate authorities. cc. @mjollnir |
…dy trusted certificate. This fixes e2e on self-signed hs. (element-hq/element-ios#816)
…t display with account on a self-signed server (element-hq/element-ios#816) Handle this by storing allowed certificates into a singleton that the static MXMediaManager can use.
|
This issue is still present on v0.4.3. Specifically, client connects to a server with self-signed cert. No media is displayed. It was the same with v0.3.13 (on app store previously; updated today). |
|
@edam: I tested it again, and I did not reproduce it on a self-signed server. |
|
Hi @giomfo, thanks for taking a look! Problem is definitely there, and was with v0.3.13 too. There is no media shown, and server has self-signed cert (although this is possibly not relevant). Can I help diagnose the problem? I'm a developer myself, but the phone is a friend's and I am not familiar with iOS myself. Would it help if I created an account for you on the server for you to test the client against? Would if help to know what version of iOS the device is running? |
|
@giomfo: platform is iOS v10.3.2 on iPhone 6s. |
|
Pinging. 🙂 Would you like me to set up an account on the server that this issue occurs on to help diagnose the issue in the client? |
|
@edam: Yes please (you may send this account credentials in a PM to |
|
May be solved by matrix-org/matrix-ios-sdk#332 |
|
@giom: PMed! |
|
@manuroe: matrix-org/matrix-ios-sdk#332 would seem to describe the problem accurately. The self-signed cert was accepted by the user, and all but media downloads work. |
|
I reproduced the issue with the provided account. Investigation is in progress |
…nt on a self-signed server. The MXMediaLoader adds now all the allowed certificates to the chain of trust at the time of preparing the SSL negotiation. element-hq/element-ios#816
|
@edam: Fixed on matrix-ios-sdk develop. Thanks again for your help. |
Avatars do not display with matrix.org account after trusting a self-signed certificate. Fix: reenable trusting anchor certificates in addition to those passed in via the SecTrustSetAnchorCertificates API. element-hq/element-ios#816
https://matrix.to/#/!tDRGDwZwQnlkowsjsm:matrix.org/$1479806434848416Rbrux:matrix.org
The text was updated successfully, but these errors were encountered: