Okhttp: Caused by: java.lang.IllegalStateException: Unable to extract the trust manager on Android10Platform, sslSocketFactory is class com.android.org.conscrypt.OpenSSLSocketFactoryImpl

Created on 19 Mar 2020  ·  4Comments  ·  Source: square/okhttp

Process: com.chaincat.wallet, PID: 8914
java.lang.RuntimeException: Unable to start activity ComponentInfo{com.chaincat.wallet/top.andnux.moudles.base.ui.main.MainActivity}: java.lang.IllegalStateException: Unable to extract the trust manager on Android10Platform, sslSocketFactory is class com.android.org.conscrypt.OpenSSLSocketFactoryImpl
at android.app.ActivityThread.performLaunchActivity(ActivityThread.java:3333)
at android.app.ActivityThread.handleLaunchActivity(ActivityThread.java:3477)
at android.app.servertransaction.LaunchActivityItem.execute(LaunchActivityItem.java:83)
at android.app.servertransaction.TransactionExecutor.executeCallbacks(TransactionExecutor.java:135)
at android.app.servertransaction.TransactionExecutor.execute(TransactionExecutor.java:95)
at android.app.ActivityThread$H.handleMessage(ActivityThread.java:2043)
at android.os.Handler.dispatchMessage(Handler.java:106)
at android.os.Looper.loop(Looper.java:216)
at android.app.ActivityThread.main(ActivityThread.java:7464)
at java.lang.reflect.Method.invoke(Native Method)
at com.android.internal.os.RuntimeInit$MethodAndArgsCaller.run(RuntimeInit.java:549)
at com.android.internal.os.ZygoteInit.main(ZygoteInit.java:955)

bug
Source
picture andnux

All 4 comments

I assume you are calling the deprecated form of sslSocketFactory, which is broken on newer Android versions.

https://github.com/square/okhttp/blob/master/okhttp/src/main/java/okhttp3/OkHttpClient.kt#L719

    /**
     * Sets the socket factory used to secure HTTPS connections. If unset, the system default will
     * be used.
     *
     * @deprecated [SSLSocketFactory] does not expose its [X509TrustManager], which is a field that
     *     OkHttp needs to build a clean certificate chain. This method instead must use reflection
     *     to extract the trust manager. Applications should prefer to call
     *     `sslSocketFactory(SSLSocketFactory, X509TrustManager)`, which avoids such reflection.
     */
    @Deprecated(
        message = "Use the sslSocketFactory overload that accepts a X509TrustManager.",
        level = DeprecationLevel.ERROR
    )
    fun sslSocketFactory(sslSocketFactory: SSLSocketFactory) = apply {
      if (sslSocketFactory != this.sslSocketFactoryOrNull) {
        this.routeDatabase = null
      }

      this.sslSocketFactoryOrNull = sslSocketFactory
      this.certificateChainCleaner = Platform.get().buildCertificateChainCleaner(sslSocketFactory)
    }
yschimke picture yschimke on 19 Mar 2020

Fix is required in client code.

yschimke picture yschimke on 19 Mar 2020

这个问题是在okhttp那个版本上修复的

nysin picture nysin on 14 May 2020

这个问题是在okhttp那个版本上修复的

貌似没有修复。

spwCoding picture spwCoding on 17 Jun 2020
😕1 👍1
Was this page helpful?
0 / 5 - 0 ratings

Related issues

NitzDKoder picture NitzDKoder  ·  3Comments
HyakYegoryaln picture HyakYegoryaln  ·  3Comments
albka1986 picture albka1986  ·  3Comments
SElab2019 picture SElab2019  ·  3Comments
rfc2822 picture rfc2822  ·  3Comments