I have passed a wrong hash in Certificate Pinner but I am st kotlinlang #ktor

I have passed a wrong hash in Certificate Pinner ,...

Aryan Gupta

07/11/2025, 3:37 PM

I have passed a wrong hash in Certificate Pinner , but I am still getting 200 status code using this client implementation . What could be the reason here ? I believe this call should fail with exception

Copy code

val cp = CertificatePinner.Builder().add("ktor.io", "sha256/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=").build()
usePreconfiguredSession(
    session =  NSURLSession.sessionWithConfiguration(
        NSURLSessionConfiguration.defaultSessionConfiguration,
        NsUrlSessionDelegate(),
        delegateQueue = NSOperationQueue()
    ),
    delegate = KtorNSURLSessionDelegate(cp),
)

Aryan Gupta

07/11/2025, 3:39 PM

When I am doing this way then certificate Pinning is respected

Copy code

configureSession {
     NSURLSession.sessionWithConfiguration(
        NSURLSessionConfiguration.defaultSessionConfiguration,
        NsUrlSessionDelegate(),
        delegateQueue = NSOperationQueue()
    )
}

handleChallenge(cp)

But my custom NsUrlSessionDelegate callbacks are not executing in this case

Aryan Gupta

07/11/2025, 3:40 PM

What is the difference in both cases

Aleksei Tirman [JB]

07/14/2025, 9:08 AM

The difference is that in the first code snippet, the delegate is only used to call the read method. As far as I understand, to make the challenge handler be called in the right place, the session must be created with the

KtorNSURLSessionDelegate

delegate.

2 Views

Open in Slack

Previous Next