BCCert can't make certificates resulting in Https requests not being captured

1 Answer 228 Views
Fiddler Classic Linux
Aiden
Top achievements
Rank 1
Aiden asked on 20 Jun 2022, 12:07 AM | edited on 20 Jun 2022, 12:09 AM

As the title says BCCertMaker can't make certificates

I am on Manjaro Linux and using Mono 6.12 and am using Fiddler to capture IOS 15 requests

19:53:46:8198 HTTPSLint> Warning: ClientHello record was 508 bytes long. Some servers have problems with ClientHello's greater than 255 bytes. https://github.com/ssllabs/research/wiki/Long-Handshake-Intolerance
19:53:46:8534 Fiddler.BCCertMaker> Failed to create certificate for *.gc.apple.com: Operation is not supported on this platform.
  at BCCertMaker.BCCertMaker.CreateCertificateFromCA (System.String sCN, Org.BouncyCastle.X509.X509Certificate caCert, Org.BouncyCastle.Crypto.AsymmetricKeyParameter caKey) [0x00377] in <186d138a6ba64111bc4131af9c9cbf93>:0 
  at BCCertMaker.BCCertMaker.MakeNewCert (System.String sHostname) [0x00102] in <186d138a6ba64111bc4131af9c9cbf93>:0 
19:53:46:8534 fiddler.https> Failed to obtain certificate for stats.gc.apple.com due to Certificate Maker returned null when asked for a certificate for stats.gc.apple.com
19:53:48:6149 HTTPSLint> Warning: ClientHello record was 508 bytes long. Some servers have problems with ClientHello's greater than 255 bytes. https://github.com/ssllabs/research/wiki/Long-Handshake-Intolerance
19:53:48:6510 Fiddler.BCCertMaker> Failed to create certificate for *.apple.com: Operation is not supported on this platform.
  at BCCertMaker.BCCertMaker.CreateCertificateFromCA (System.String sCN, Org.BouncyCastle.X509.X509Certificate caCert, Org.BouncyCastle.Crypto.AsymmetricKeyParameter caKey) [0x00377] in <186d138a6ba64111bc4131af9c9cbf93>:0 
  at BCCertMaker.BCCertMaker.MakeNewCert (System.String sHostname) [0x00102] in <186d138a6ba64111bc4131af9c9cbf93>:0 
19:53:48:6510 fiddler.https> Failed to obtain certificate for news-edge.apple.com due to Certificate Maker returned null when asked for a certificate for news-edge.apple.com
19:53:48:7116 HTTPSLint> Warning: ClientHello record was 508 bytes long. Some servers have problems with ClientHello's greater than 255 bytes. https://github.com/ssllabs/research/wiki/Long-Handshake-Intolerance
19:53:48:7477 Fiddler.BCCertMaker> Failed to create certificate for *.apple.com: Operation is not supported on this platform.
  at BCCertMaker.BCCertMaker.CreateCertificateFromCA (System.String sCN, Org.BouncyCastle.X509.X509Certificate caCert, Org.BouncyCastle.Crypto.AsymmetricKeyParameter caKey) [0x00377] in <186d138a6ba64111bc4131af9c9cbf93>:0 
  at BCCertMaker.BCCertMaker.MakeNewCert (System.String sHostname) [0x00102] in <186d138a6ba64111bc4131af9c9cbf93>:0 
19:53:48:7478 fiddler.https> Failed to obtain certificate for news-edge.apple.com due to Certificate Maker returned null when asked for a certificate for news-edge.apple.com
19:53:50:0979 HTTPSLint> Warning: ClientHello record was 508 bytes long. Some servers have problems with ClientHello's greater than 255 bytes. https://github.com/ssllabs/research/wiki/Long-Handshake-Intolerance
19:53:50:1347 Fiddler.BCCertMaker> Failed to create certificate for *.icloud.com: Operation is not supported on this platform.
  at BCCertMaker.BCCertMaker.CreateCertificateFromCA (System.String sCN, Org.BouncyCastle.X509.X509Certificate caCert, Org.BouncyCastle.Crypto.AsymmetricKeyParameter caKey) [0x00377] in <186d138a6ba64111bc4131af9c9cbf93>:0 
  at BCCertMaker.BCCertMaker.MakeNewCert (System.String sHostname) [0x00102] in <186d138a6ba64111bc4131af9c9cbf93>:0 
19:53:50:1347 fiddler.https> Failed to obtain certificate for gateway.icloud.com due to Certificate Maker returned null when asked for a certificate for gateway.icloud.com
19:53:50:2913 HTTPSLint> Warning: ClientHello record was 508 bytes long. Some servers have problems with ClientHello's greater than 255 bytes. https://github.com/ssllabs/research/wiki/Long-Handshake-Intolerance
19:53:50:2921 HTTPSLint> Warning: ClientHello record was 508 bytes long. Some servers have problems with ClientHello's greater than 255 bytes. https://github.com/ssllabs/research/wiki/Long-Handshake-Intolerance
19:53:50:2928 HTTPSLint> Warning: ClientHello record was 508 bytes long. Some servers have problems with ClientHello's greater than 255 bytes. https://github.com/ssllabs/research/wiki/Long-Handshake-Intolerance
19:53:50:3244 Fiddler.BCCertMaker> Failed to create certificate for c.apple.news: Operation is not supported on this platform.
  at BCCertMaker.BCCertMaker.CreateCertificateFromCA (System.String sCN, Org.BouncyCastle.X509.X509Certificate caCert, Org.BouncyCastle.Crypto.AsymmetricKeyParameter caKey) [0x00377] in <186d138a6ba64111bc4131af9c9cbf93>:0 
  at BCCertMaker.BCCertMaker.MakeNewCert (System.String sHostname) [0x00102] in <186d138a6ba64111bc4131af9c9cbf93>:0 
19:53:50:3245 fiddler.https> Failed to obtain certificate for c.apple.news due to Certificate Maker returned null when asked for a certificate for c.apple.news
19:53:50:3245 !Certificate cache didn't find certificate for [c.apple.news]. Returning null to thread #66.
19:53:50:3245 !Certificate cache didn't find certificate for [c.apple.news]. Returning null to thread #65.
19:53:50:3245 fiddler.https> Failed to obtain certificate for c.apple.news due to Certificate Maker returned null when asked for a certificate for c.apple.news
19:53:50:3245 fiddler.https> Failed to obtain certificate for c.apple.news due to Certificate Maker returned null when a

 

EDIT: It also seems like HTTPS requests are being sent like http://example.com:443/

1 Answer, 1 is accepted

Sort by
0
Rosen Vladimirov
Telerik team
answered on 21 Jun 2022, 01:14 PM

Hello,

Fiddler's mono version is not supported. In case you want to use Fiddler on Linux, you can install Fiddler Everywhere and give it a try: https://www.telerik.com/fiddler/fiddler-everywhere

Regards,
Rosen Vladimirov
Progress Telerik

Love the Telerik and Kendo UI products and believe more people should try them? Invite a fellow developer to become a Progress customer and each of you can get a $50 Amazon gift voucher.

Tags
Fiddler Classic Linux
Asked by
Aiden
Top achievements
Rank 1
Answers by
Rosen Vladimirov
Telerik team
Share this question
or