Slack: not final solution for certificate problems. @ge0rg...

Slack: not final solution for certificate problems. @ge0rg /MemorizingTrustManager library added as submodule. #502

Slack: not final solution for certificate problems. @ge0rg...
Slack: not final solution for certificate problems. @ge0rg /MemorizingTrustManager library added as submodule. #502
10bac8fd · Grigory Fedorov · e28e5d01 · 10bac8fd · 8b80fb17 · 10bac8fd
Commit 10bac8fd authored Jul 09, 2015 by Grigory Fedorov
6 changed files
--- a/.gitmodules
+++ b/.gitmodules
 [submodule "app/otr4j"]
 	path = app/otr4j
 	url = https://github.com/otr4j/otr4j.git
+[submodule "app/MemorizingTrustManager"]
+	path = app/MemorizingTrustManager
+	url = https://github.com/ge0rg/MemorizingTrustManager.git
--- a/MemorizingTrustManager @ 8b80fb17
+++ b/MemorizingTrustManager @ 8b80fb17
+Subproject commit 8b80fb176542fa96c1028c379be8de7e32c730df
--- a/app/build.gradle
+++ b/app/build.gradle
@@ -56,4 +56,5 @@ dependencies {
    compile "org.igniterealtime.smack:smack-experimental:4.1.2"
    compile "org.igniterealtime.smack:smack-tcp:4.1.2"
    compile project('otr4j')
+    compile project('MemorizingTrustManager')
 }
--- a/app/src/main/AndroidManifest.xml
+++ b/app/src/main/AndroidManifest.xml
@@ -415,5 +415,9 @@
        <receiver android:name="com.xabber.android.receiver.GoAwayReceiver" />
        <receiver android:name="com.xabber.android.receiver.GoXaReceiver" />
        <receiver android:name="com.xabber.android.receiver.ComposingPausedReceiver" />
+        <activity
+            android:name="de.duenndns.ssl.MemorizingActivity"
+            />
    </application>
 </manifest>
\ No newline at end of file
--- a/app/src/main/java/com/xabber/android/data/connection/ConnectionThread.java
+++ b/app/src/main/java/com/xabber/android/data/connection/ConnectionThread.java
@@ -41,6 +41,8 @@ import org.xbill.DNS.Record;
 import java.io.IOException;
 import java.net.InetAddress;
+import java.security.KeyManagementException;
+import java.security.NoSuchAlgorithmException;
 import java.security.cert.CertificateException;
 import java.util.concurrent.ExecutorService;
 import java.util.concurrent.Executors;
@@ -48,7 +50,11 @@ import java.util.concurrent.ThreadFactory;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
+import javax.net.ssl.SSLContext;
 import javax.net.ssl.SSLException;
+import javax.net.ssl.X509TrustManager;
+import de.duenndns.ssl.MemorizingTrustManager;
 /**
 * Provides connection workflow.
@@ -348,6 +354,19 @@ public class ConnectionThread implements
        builder.setSecurityMode(tlsMode.getSecurityMode());
        builder.setCompressionEnabled(compression);
+        {
+            try {
+                SSLContext sslContext = SSLContext.getInstance("TLS");
+                MemorizingTrustManager mtm = new MemorizingTrustManager(Application.getInstance());
+                sslContext.init(null, new X509TrustManager[]{mtm}, new java.security.SecureRandom());
+                builder.setCustomSSLContext(sslContext);
+                builder.setHostnameVerifier(
+                        mtm.wrapHostnameVerifier(new org.apache.http.conn.ssl.StrictHostnameVerifier()));
+            } catch (NoSuchAlgorithmException | KeyManagementException e) {
+                e.printStackTrace();
+            }
+        }
        xmppConnection = new XMPPTCPConnection(builder.build());
        xmppConnection.addAsyncStanzaListener(this, ACCEPT_ALL);
        xmppConnection.addConnectionListener(this);

--- a/settings.gradle
+++ b/settings.gradle
 include ':app'
 include ':app:otr4j'
+include ':app:MemorizingTrustManager'