flibitijibibo / MonoKickstart

Kick start executable for running stand-alone distributed Mono applications
Other
73 stars 14 forks source link

Question on TLS 1.2 support #5

Closed jeffphilp closed 6 years ago

jeffphilp commented 6 years ago

Hi,

I have an application running on FNA, and MonoKickstart which is trying to access a secure web api which uses TLS1.2 and it would seem that the TLS provider which comes with Mono by default doesn't support this. Per (http://www.mono-project.com/docs/about-mono/releases/4.8.0/#tls-12-support) mono has been able to support TLS1.2 since 4.8.0 if compiled with export MONO_TLS_PROVIDER=btls.

Just a question when you create the updated MonoKickstart binaries do you compile them manually? and with that flag? Or do you install the precompiled binaries which Xamarin makes available and use those?

I have tried the latest Mono installation and it seems to have another regression which stops my application running on it, so I am looking at recompiling the version used currently in MonoKickstart to get around this TLS issue.

Many thanks, Jeff

flibitijibibo commented 6 years ago

I compile the static libraries from a tarball: https://download.mono-project.com/sources/mono/

I generally go with the default flags, though for macOS I think I used to send --disable-nls because it didn't work there, but I forget if that's still a thing you have to do now... been a while since I've rebuilt.

jeffphilp commented 6 years ago

Thanks for the quick response. I downloaded the 5.0.1.1 tar and rebuilt it with the export MONO_TLS_PROVIDER=btls and it is now able to use TLS1.2.

Good to know that about macOS though, thats the next one I need to rebuild.