Details
-
Bug
-
Status: Closed
-
Not Evaluated
-
Resolution: Out of scope
-
6.2.4
-
None
-
None
-
Fails with Qt 5.12/OpenSSL 1.1.1c, and Qt 6.2.4/OpenSSL 1.1.1s compiled from source and deployed to iPad 7 / iOS 14.6.
-
iOS/tvOS/watchOS
Description
Full example at https://github.com/martinburchell/qt-network-test
When linked with downloaded Qt 6.2.4 binary with SecureTransport, this works fine.
When linked with self-compiled Qt 6.2.4 with OpenSSL I get SSL handshake errors.
The error for this particular example site is The issuer certificate of a locally looked up certificate could not be found. On other sites I see The root certificate of the certificate chain is self-signed, untrusted. I don't know if this is a problem with OpenSSL or Qt's interface with it.
#include <QApplication>
#include <QByteArray>
#include <QDialog>
#include <QListIterator>
#include <QMapIterator>
#include <QPlainTextEdit>
#include <QPointer>
#include <QtNetwork/QNetworkAccessManager>
#include <QtNetwork/QNetworkRequest>
#include <QtNetwork/QNetworkReply>
#include <QtNetwork/QSsl>
#include <QtNetwork/QSslConfiguration>
#include <QUrlQuery>
#include <QUuid>
#include <QVBoxLayout>
#include <QWidget>
class TestDialog : public QDialog
{{}}
{
Q_OBJECT
public:
TestDialog(QWidget* parent) : QDialog(parent)
{
auto mainlayout = new QVBoxLayout();
setLayout(mainlayout);
m_editor = new QPlainTextEdit();
m_editor->setReadOnly(true);
m_editor->setTextInteractionFlags(Qt::NoTextInteraction);
m_editor->setLineWrapMode(QPlainTextEdit::WidgetWidth);
mainlayout->addWidget(m_editor);
QNetworkRequest request;
QSslConfiguration config = QSslConfiguration::defaultConfiguration();
config.setProtocol(QSsl::SecureProtocols);
request.setSslConfiguration(config);
QListIterator<QSslCertificate> cert_it(QSslConfiguration::systemCaCertificates());
status_message("CA Certificates:");
while (cert_it.hasNext()) {
status_message(cert_it.next().toText());
}
QUrl url("https://webhook.site/e5b919b3-01dd-4f77-bbc3-f77b2be3ab68");
request.setUrl(url);
status_message("Request to server: " + url.toString());
auto mgr = new QNetworkAccessManager();
QObject::connect(mgr, &QNetworkAccessManager::finished,
this, &TestDialog::reply);
QObject::connect(mgr, &QNetworkAccessManager::sslErrors,
this, &TestDialog::ssl_errors);{}
mgr->get(request);
}
void reply(QNetworkReply* reply)
{
reply->deleteLater();
if (reply->error() != QNetworkReply::NoError) {
status_message("Network failure: " + reply->errorString());
return;
}
auto reply_data = reply->readAll();
status_message(&"... received " [ reply_data.length()]);
status_message("Network reply (raw): " + reply_data);
}
void ssl_errors(QNetworkReply *reply, const QList<QSslError> &errors)
{
status_message("SSL Errors:");
QListIterator<QSslError> it(errors);
while (it.hasNext()) {
auto error = it.next();
status_message(error.errorString());
}
QSslConfiguration config = reply->sslConfiguration();
status_message("Peer certificate: " + config.peerCertificate().toText());
QListIterator<QSslCertificate> cert_it(config.peerCertificateChain());
status_message("Peer certificate chain:");
while (cert_it.hasNext()) {
status_message(cert_it.next().toText());
}
}
void status_message(const QString& msg) const
{
m_editor->appendPlainText(msg);
{{ }}}
protected:
QPointer<QPlainTextEdit> m_editor;
};
int main(int argc, char* argv[])
{
QApplication app(argc,argv);
TestDialog dialog(nullptr);
dialog.exec();
return app.exec();
}
#include "main.moc"