pimterry
commented
3 years ago Hi @richerve that's unusual, and very interesting.
It's possible there's something awry with certificate date generation on the 1st of the year, although I haven't seen this elsewhere myself, and it seems to work for me right now. Could you please export the public CA certificate and share it here, so I can take a look? I think the easiest way is:
- Open an intercepted Chrome from HTTP Toolkit
- Click the padlock in the address bar
- Click 'Certificate' -> 'Details' to show the details
- Select the 'HTTP Toolkit CA' certificate in the hierarchy
- Click 'Export', to export the certificate data as seen by Chrome
Can you still reproduce the issue today? When exactly did you first install HTTP Toolkit?
richerve
Hi, I'm trying out the app to capture traffic from my android phone and it looks pretty cool, but have a small issue with certs.
I tried first to use the user certificate method and it didn't work because I'm running an android version 7+. Later I tried the ADB method, as my phone is rooted, and it successfully works in terms of the certificate injection, but then I noticed that it cannot use the certificate because of the aforementioned error ERR_CERT_DATE_INVALID, even when trying the the "amiusing" site.
Inspecting the cert, I can verify that is using the mocked cert CN: HTTP Toolkit CA, with the following validity period:
Issued: Dec 31, 2020 Expires: Jan 1, 2021
I'm trying this out today, of course. Not sure if those dates or the change of year has any effect.
I installed the apk directly from the releases site in this repo.