iphone - Accept untrusted SSL server certificate with CFStream socket on iOS -

-

i need open cfstream socket connection server has untrusted ca root. have certificate of server, , can create seccertificateref structure it. problem how set properties of stream.

i think should set kcfstreampropertysslsettings property cfdictionary in turn contains kcfstreamsslcertificates key. key should hold "a cfarray of seccertificaterefs except first element in array, secidentityref" according docs. can create seccertificateref server's certificate i'll ship app, how secidentityref? guess should client identity absolutely don't want client side authentication now. , can't find way how feed cfstream server certificate.

note, don't want add untrusted certificate keychain, neither disable kcfstreamsslvalidatescertificatechain in settings. need accept server authentication if based on own server certificate data loaded disk, , on cfstream.

i not have direct answer question, perhaps few guidelines:

  1. why need use cfstream api , not more intuitive nsurlconnection ?
    find in documentation, seams not available mac os x, regarding cfstream api, available ios. think it, , see if can switch nsurlconnection :-)

  2. for nsurlconnection, can use nsurlconnectiondelegate methods ssl challenge , validate certificate on own. can check wsdl2objc project, have implemented these features:

  3. now questions :-)
    don't see how can set custom (untrusted) ca in kcfstreampropertysslsettings. i'm not sure if can done using kcfstreamsslcertificates since meant used setting client-side certificates (thus requirement of having secidentityref on index 0, provides private key).

  4. when don't want add certificate keychain, mean manually or programmatically ? guess don't users of app have manually, can use security api import certificate programatically. in case certificate imported in sandboxed keychain available application. (again, not sure if work worths try)

in applications use nsurlconnectiondelegate manually validate untrusted certificates.

regards,
pece


Comments

Post a Comment

Popular posts from this blog

delphi - How to convert bitmaps to video? -

-
Image
my application creates images fractals , love feeling of 'flying' around fractal. once saved 2000 bitmaps file , created avi using premiere. experience rather frustrating though succeeded in creating movie. spectacular. of course want create video application. don't care niftyness of codec, compression or whatever. want have video can replay on systems. in past have tried never succeeded. triggered question alas not ffmpeg running. update i decided adapt question , put bounty it. have seen several solutions attractive (because it's simple) seems me taviwrite. tried taviwriter did not succeed. in procedure taviwriter.write; function call around line 370 avierr := avisavev(s, // pchar(filename), nil, // file handler nil, // callback nstreams, // number of streams streams, compoptions); // compress options
Read more

jasper reports - Fixed header in Excel using JasperReports -

-
how can create excel report fixed header using japserreports? mean need header fixed when scroll excel file. this possible adding couple properties in jrxml file each report. take @ advanced excel features freeze panes. if wanted freeze after first column header (down left side basically) this: <statictext> <reportelement style="sans_bold" mode="opaque" x="0" y="60" width="104" height="20" forecolor="#ffffff" backcolor="#666666"> <property name="net.sf.jasperreports.export.xls.auto.filter" value="start"/> <property name="net.sf.jasperreports.export.xls.column.width" value="110"/> <property name="net.sf.jasperreports.export.xls.freeze.column.edge" value="left"/> </reportelement> &
Read more

python - ('The SQL contains 0 parameter markers, but 50 parameters were supplied', 'HY000') or TypeError: 'tuple' object is not callable -

-
import pyodbc,nltk,array cnxn = pyodbc.connect('driver={mysql odbc 5.1 driver};server=127.0.0.1;port=3306;database=information_schema;user=root; password=1234;option=3;') cursor = cnxn.cursor() cursor.execute("use collegedatabase ;") cursor.execute("select * sampledata ; ") cnxn.commit() s=[] j=[] x=[] words = [] w = [] sfq = [] pos=[] entry in cursor: s.append(entry.injury_type),j.append(entry.injury_desc) nltk.tokenize import punktwordtokenizer nltk.corpus import stopwords tokenizer = punktwordtokenizer() english_stops = set(stopwords.words('english')) in range(0,26): # filter stop words tokenizer.tokenize(j[i]) w.append([word word in tokenizer.tokenize(j[i]) if word not in english_stops]) in range(0 , 26):#converting tokenzied text ito string sfq.append(" ".join(w[a])) replacers import regexpreplacer replacer = regexpreplacer() in range (0,26):#pos tagging replacer.repl
Read more