Mustard

Avatars not loaded on untrusted ssl

Bug #910979 reported by Michael Auß on 2012-01-02

This bug affects 2 people

Affects		Status	Importance	Assigned to	Milestone
	Mustard	Fix Released	Medium	Michele Azzolari

Avatars don't get loaded from a status.net instance with untrusted or self-signed ssl certificates.

CAcert SSL CA is missing in android, therefor it is untrusted.

Every fetch of a user avatar logs:

01-02 22:08:29.880: E/Mustard/MessagingController(10917): No peer certificate

But only a few of the fetches log:
01-02 22:08:25.280: I/ImageManager(10917): Image is missing: https://example.org/status/avatar/11-48-20110524103009.jpeg

Revision history for this message

Michael Auß (michael-auss) wrote on 2012-01-02:

adding cacert root certificate in android stock browser and restart does not solve the problem.

Michele Azzolari (macno) on 2012-01-17

Changed in mustardroid:
status:	New → Confirmed
importance:	Undecided → Medium
assignee:	nobody → Michele Azzolari (macno)

Revision history for this message

Michele Azzolari (macno) wrote on 2012-01-18:

Added a beta apk for testing at http://mustard.macno.org/0.3.1

Changed in mustardroid:
status:	Confirmed → Fix Committed

Revision history for this message

Michael Auß (michael-auss) wrote on 2012-01-18:

Thank you, this beta fixes the issue for me.

Revision history for this message

Mark Waters (mark-collective-b-deactivatedaccount) wrote on 2012-02-27:

0.3.1 fixes missing avatar problem for my on private ssl only site too.
thanks macno

Michele Azzolari (macno) on 2012-04-15

Changed in mustardroid:
status:	Fix Committed → Fix Released

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Bug watches keep track of this bug in other bug trackers.