Skip to main content

CCD: Addressables SSL Error Android workarounds UNITYTLS_X509VERIFY_FLAG_USER_ERROR1

Updated

Symptoms:

  • The Addressables network connection has an SSL error the Addressables retry is ignored.
  • UNITYTLS_X509VERIFY_FLAG_USER_ERROR1
  • Curl error 52: Cert verify failed: UNITYTLS_X509VERIFY_FLAG_USER_ERROR1 UnityWebRequest result : ConnectionError : SSL CA certificate error

Cause:

A user reported multiple SSL errors when trying to load assets from Cloud Content Delivery on multiple Samsung devices

We were able to reproduce the scenario:

  • Samsung Note 9
  • Mobile network with speed ~3-5 Mbps
  • Download your game/application and install on an Android device
  • Restart device
  • Disable Wi-Fi
  • If possible be on a slow mobile connection
  • If possible connect the device to a laptop and open LOGCAT 
  • Launch application
  • Observe possible SSL error in logcat
  • Curl error 52: Cert verify failed: UNITYTLS_X509VERIFY_FLAG_USER_ERROR1 UnityWebRequest result : ConnectionError : SSL CA certificate error
  • Curl error 60: Cert handshake failed. verify result: UNITYTLS_X509VERIFY_FATAL_ERROR. error state: 7

Resolution:

A modification to the Addressables package’s code should be made as described below. In addition, the RETRY parameter of the Addressables Groups should be set to 30, and the Max Connections should be set to 10.

 

The workaround involves a few verifications within the editor, as well as some modifications to the package. 

EDITOR

  • Backup your project
  • Go to Window > Asset Management > Addressables > Groups
  • Click on the asset groups
  • In the Inspector window click on Advanced Options
  • Change Retry Count to 30
  • Go to Window > Asset Management > Addressables > Settings
  • Under Downloads in the Inspector window change Maximum Concurrent Web Requests to 10

 

PROJECT FOLDER

  • Locate and open your project folder
  • Locate the folder Library > Package Cache >com.unity.addressables@1.19.19
  • Move the folder into Packages NB:Moving the file will allow you to edit the code without the package manager attempting to re-import the un-modified code.
  • Go to com.unity.addressables@1.19.19 > Runtime > ResourceManager > Util
  • Open the file UnityWebRequestUtilities.cs with VS Code or equivalent.

  • Modify Line 137 by commenting out  Error == "SSL CA certificate error |"

    mceclip1.png

  • Save your changes
  • Return to the Editor

 

EDITOR

  • Rebuild your assets. You must create a New Build script for your assets; failing to do so may lead to the error still being present.
     

mceclip0.png
 

More information:

This doesn’t eliminate the SSL errors completely. If a connection is bad, and the retries fail and certificate cannot be verified you may still receive an error message. During testing we were able to see a 75% improvement to errors. This may even be closer to 100% depending on the circumstances. If these steps were taken and there are still errors that cannot be bypassed, please create a support ticket.

 

 




 

Related to

Related articles