Unplanned
Last Updated: 02 Mar 2021 14:38 by ADMIN
BjörnA
Created on: 01 Mar 2021 16:00
Type: Bug Report
0
Log message: Error when trying to check if certificate is trusted: '.', hexadecimal value 0x00, is an invalid character. Line 304, position 38.

Hi.

When I try to trusst the fiddler root certifficate, I get the message "not successfull" and see a line like this in the logfile:

[2021-03-01 16:29:48:866] [Information] [Fiddler] Error when trying to check if certificate is trusted: '.', hexadecimal value 0x00, is an invalid character. Line 304, position 38.

I also tried to trust the certificate by hand via the keyring utility.

What can I try?

Thanks.

 

4 comments
ADMIN
Nick Iliev
Posted on: 02 Mar 2021 14:38

Hello Björn,

 

Thanks for the fast response and the provided information! Due to the sensitive data, I've provided further instructions in our email threat.
For anyone interested in what was causing the problem (and how to solve it), here are some public details:

- The Keychain Access contained a certificate that had values with null characters like the one below:


 
- The team confirmed that this kind of character breaks the certificate parser (expect a fix in future releases). Meanwhile, a temporary solution would be to delete the certificate in question from the Keychain Access tool.


Regards,
Nick Iliev
Progress Telerik

Virtual Classroom, the free self-paced technical training that gets you up to speed with Telerik and Kendo UI products quickly just got a fresh new look + new and improved content including a brand new Blazor course! Check it out at https://learn.telerik.com/.

BjörnA
Posted on: 02 Mar 2021 10:32

Hi Nick.

I sent you the XML.

Thank you.

Best regards,

Björn

ADMIN
Nick Iliev
Posted on: 02 Mar 2021 08:56

Hello Bjorn,

 

Most likely  there is a special symbol (char) used in the name of the certificate, which is breaking the certificate trusting. You could send us the list of the certificate names, but please do not post the list here as this is sensitive information. If you are interested in sending us the information (so that we could investigate further), send it privately to nikolay.iliev at progress.com.

Here is the command that will auto-generate the list of the certificates with their file names:

security trust-settings-export /tmp/certificates.xml

The above will create a file called certificates.xml in the tmp folder.

 

 

 

Regards,
Nick Iliev
Progress Telerik

Virtual Classroom, the free self-paced technical training that gets you up to speed with Telerik and Kendo UI products quickly just got a fresh new look + new and improved content including a brand new Blazor course! Check it out at https://learn.telerik.com/.

BjörnA
Posted on: 01 Mar 2021 16:05

OS: MacOS Big Sur 11.2.2

Device: Macbook Pro 2015 15"

Network: Wifi / FTTH

VPN: There was a Fortinet 6.0 VPN client install for IPSEC VPN, which was removed due to Big Sur update. Now using the native VPN client.