Loading X509Certificate2 crashing the ASP.NET MVC website
Simply I have X509Certificate2 certifacate which I want to load it in ASP.NET MVC Application.
simply here is the code
public partial class Startup
{
public void Configuration(IAppBuilder app)
{
string path = HostingEnvironment.MapPath("~/Certificates.p12");
// the path is correct, I logged it to a file and it was correct
byte [] certBytes = File.ReadAllBytes(path);
X509Certificate2 cert = new X509Certificate2(certBytes, "some password");
}
}
and even this is not working
public partial class Startup
{
public void Configuration(IAppBuilder app)
{
string path = HostingEnvironment.MapPath("~/Certificates.p12");
// the path is correct, I logged it to a file and it was correct
X509Certificate2 cert = new X509Certificate2(path, "some password");
}
}
in the two previous cases, the code is working on my local machine, BUT when moving this code to our server, then the statement
X509Certificate2 cert = new X509Certificate2(/*whatever bytes or path*/, "some password");
is breaking, actually this statement get my IIS's Application pool to be stopped and I get Http 503 Service Unavailable error when I try to reach the website.
When I remove the previous statement, there is no 503 Error and the website is reachable.
I tried to move this statement to another class (putting it not in the startup of the website) but the result was the same.
EDIT for some very strange reason I can not log the exception which occur. so I do not know what is the exact problem of this
EDIT I just created a small console application, and I tried to read the same certificate file from it, and it worked perfectly both on my local machine and on the server, so I suspect the problem not from the certificate file and not from the server, but the combination of the ASP.NET MVC project with the certificate file is producing this problem
EDIT
Here is the Event log of the server
Application pool 'SmaresDev' is being automatically disabled due to a series of failures in the process(es) serving that application pool.
A process serving application pool 'SmaresDev' suffered a fatal communication error with the Windows Process Activation Service. The process id was '8520'. The data field contains the error number.
A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. the TLS protocol defined fatal error code is 10. The windows SChannel error state is 1203.
Any Ideas.
I was experiencing something similar with a crash where no exceptions were being caught. I had the similar issues in the event viewer and also ran into the same thing with the console application working fine. I fixed it as the following
X509Certificate2 Cert = new X509Certificate2(path, "some password", X509KeyStorageFlags.MachineKeySet | X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
I'm not sure why it works, but it did for me, and hopefully does for you too.
- Is this declaration UB?
- Calling an external C function (in a shared lib) from Perl with Inline/C does not work
- Eclipse C/C++ how to find variable belongs to which struct quickly
- Is this truly best way to delete last element in C?
- Why do we need address virtualization in an operating system?
- Can a real floating-point type alias a complex floating-point type in C?
- Shadowing an iterator inside a for loop has undefined (?) behaviour in C
- Can a C program execute successfully if main() is defined as a macro?
- Ambiguity in scope of for loop declaration versus body
- Understanding the difference in timing of two functions that increment each element of an integer array
- Why MSVC generates warning C4127 when constant is used in "while" - C
- Executing a user-space function from the kernel space
- Why must the variable used to hold getchar's return value be declared as int?
- mpirun -np 4 ./a.out doesn't use all my cores (ubuntu 24.04LTS)
- Sleep for N seconds and wait for keypress
- Dereference twice in gdb
- Is it safe to cast a struct pointer to a different struct pointer having a prefix of elements?
- Can a C compiler legally reject a program if its call stack depth exceeds a fixed limit at compile time?
- return type defaults to 'int' [-Wimplicit-int]
- What is the scope of `fesetround()`?
- Which specific optimization flag causes libm functions to be treated as pure?
- How to render text in SDL2?
- Why would you use 'extern "C++"'?
- Strange Behavior Compiler Ignoring NULL Check Unless I Print Something in the if Statement
- Fast inverse square root using fixed point instead of floating point
- What is the const qualifier attached to in C: the memory area or the pointer?
- GCC options for strictest C code?
- How to do an explicit fall-through in C
- How do compilers treat CONST qualifier when the pointer points to a memory location obtained with malloc()?
- C: cmocka headers - how to unittest?