Aaron created CB-10995: -------------------------- Summary: Android cannot load site with insecure content Key: CB-10995 URL: https://issues.apache.org/jira/browse/CB-10995 Project: Apache Cordova Issue Type: Bug Components: Android Reporter: Aaron
Environment: Samsung S3 (Android 4.3), Crosswalk 17, Cordova-Android 5.1.1 Issue: I'm trying to open the Sandbox PayPal page with this plugin with the following code: {code:java} var ref = cordova.InAppBrowser.open('http://www.sandbox.paypal.com' , '_blank', 'location=yes'); {code} But this causes a in-app-browser instance to open with "Webpage not available" and "The webpage at https://www.sandbox.paypal.com/ might be temporarily down or it may have moved permanently to a new web address.". In my debug console, I see the following: {code} 03-30 15:34:16.196 13936-14669/com.switch168.kosmos V/chromium_net: external/chromium/net/socket/ssl_client_socket_openssl.cc:302: [0330/153416:INFO:ssl_client_socket_openssl.cc(302)] [cac_debug_log][ssl_client_socket_openssl.cc] GetInstance() cac_state_: 0 CAC_CONTEXT_CAC: 3 03-30 15:34:16.196 13936-14669/com.switch168.kosmos V/chromium_net: external/chromium/net/socket/ssl_client_socket_openssl.cc:312: [0330/153416:INFO:ssl_client_socket_openssl.cc(312)] ssl_ctx_ is used 03-30 15:34:16.256 13936-14669/com.switch168.kosmos E/chromium_net: external/chromium/net/socket/ssl_client_socket_openssl.cc:905: [0330/153416:ERROR:ssl_client_socket_openssl.cc(905)] handshake failed; returned -1, SSL error code 1, net_error -107 03-30 15:34:16.256 13936-14669/com.switch168.kosmos V/chromium_net: external/chromium/net/socket/ssl_client_socket_openssl.cc:514: [0330/153416:INFO:ssl_client_socket_openssl.cc(514)] ~SSLClientSocketOpenSSL() 03-30 15:34:16.256 13936-14669/com.switch168.kosmos W/chromium_net: external/chromium/net/http/http_stream_factory_impl_job.cc:865: [0330/153416:WARNING:http_stream_factory_impl_job.cc(865)] Falling back to SSLv3 because host is TLS intolerant: 03-30 15:34:16.316 13936-14669/com.switch168.kosmos V/chromium_net: external/chromium/net/socket/ssl_client_socket_openssl.cc:302: [0330/153416:INFO:ssl_client_socket_openssl.cc(302)] [cac_debug_log][ssl_client_socket_openssl.cc] GetInstance() cac_state_: 0 CAC_CONTEXT_CAC: 3 03-30 15:34:16.316 13936-14669/com.switch168.kosmos V/chromium_net: external/chromium/net/socket/ssl_client_socket_openssl.cc:312: [0330/153416:INFO:ssl_client_socket_openssl.cc(312)] ssl_ctx_ is used 03-30 15:34:16.366 13936-14669/com.switch168.kosmos E/chromium_net: external/chromium/net/socket/ssl_client_socket_openssl.cc:905: [0330/153416:ERROR:ssl_client_socket_openssl.cc(905)] handshake failed; returned -1, SSL error code 1, net_error -107 03-30 15:34:16.366 13936-14669/com.switch168.kosmos V/chromium_net: external/chromium/net/socket/ssl_client_socket_openssl.cc:514: [0330/153416:INFO:ssl_client_socket_openssl.cc(514)] ~SSLClientSocketOpenSSL() 03-30 15:34:16.376 13936-14653/com.switch168.kosmos V/webkit: reportError errorCode(-11) desc(Couldn't establish a secure connection.) 03-30 15:34:16.386 13936-13936/com.switch168.kosmos W/Web Console: The page displayed insecure content! {code} The strange part is that this same page and code works on my other Samsung S3 running Android 4.4.1. It seems to be related to the SSL certificates ( https://www.paypal-knowledge.com/infocenter/index?page=content&id=FAQ1766 ). How do I make this work with that webpage? -- This message was sent by Atlassian JIRA (v6.3.4#6332) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org