Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

iOS 13.3: Certificate installation instructions need improvement

See original GitHub issue

Problem Description

After installing profile and activating it, Safari still shows websites as “not trusted” and apps show “network error”

Steps to reproduce the behavior:

Configure wifi to use mitmproxy
Install and activate profile from mitm.it
Navigate anywhere in Safari

refs https://github.com/mitmproxy/mitmproxy/issues/3649 (added EKU) and #3647

System Information

Paste the output of “mitmproxy --version” here.

Mitmproxy: 5.0.0
Python:    3.7.5
OpenSSL:   OpenSSL 1.1.1d  10 Sep 2019
Platform:  Darwin-19.2.0-x86_64-i386-64bit

Issue Analytics

State:
Created 4 years ago
Comments:23 (7 by maintainers)

Top GitHub Comments

13reactions

andigcommented, Dec 20, 2019

I’ve found that I need to add one more step. After following 1-4, I needed to trust the certificate as root certificate. This is apparently not achieved by installing the profile alone:

Goto Settings -> General -> Info -> Certificate Trust -> Mitmproxy and enabled “Trusted Root” (German screenshot below):

IMG_5C7034BD2845-1

Is this the expected behaviour? Add to docs? Otherwise good to close!

4reactions

ohldcommented, Dec 19, 2019

I finally found out how to run all of this.

My settings

mitmproxy --version
  Mitmproxy: 5.0.0
  Python:    3.7.5
  OpenSSL:   OpenSSL 1.1.1d  10 Sep 2019
  Platform:  Darwin-18.7.0-x86_64-i386-64bit

iPhone XS (current latest OS).

Step-by-step

Macbook

brew install mitmproxy
run mitmweb for web interface
in new Terminal window run ifconfig to find out your laptop local IP address (probably starts with 192.168. ... )