diff options
| author | Andrew Dolgov <[email protected]> | 2012-09-22 15:01:55 +0400 |
|---|---|---|
| committer | Andrew Dolgov <[email protected]> | 2012-09-22 15:01:55 +0400 |
| commit | 297259762228a2e7d7842d52074cf06c90cd7270 (patch) | |
| tree | 55a6a8cf50099be65ba4723f0c3ebf3dc41515b6 /src/org | |
| parent | 365b6514dba9ad6bc91ed8091cc0b7eaa495f946 (diff) | |
fix SSL host verification not being disabled by "trust all hosts"
Diffstat (limited to 'src/org')
| -rw-r--r-- | src/org/fox/ttrss/ApiRequest.java | 8 | ||||
| -rw-r--r-- | src/org/fox/ttrss/FeedsFragment.java | 8 |
2 files changed, 16 insertions, 0 deletions
diff --git a/src/org/fox/ttrss/ApiRequest.java b/src/org/fox/ttrss/ApiRequest.java index 53661885..c3cae1a5 100644 --- a/src/org/fox/ttrss/ApiRequest.java +++ b/src/org/fox/ttrss/ApiRequest.java @@ -12,8 +12,10 @@ import java.nio.CharBuffer; import java.security.cert.CertificateException;
import java.util.HashMap;
+import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.HttpsURLConnection;
import javax.net.ssl.SSLContext;
+import javax.net.ssl.SSLSession;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
@@ -291,6 +293,12 @@ public class ApiRequest extends AsyncTask<HashMap<String,String>, Integer, JsonE sc.init(null, trustAllCerts, new java.security.SecureRandom());
HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
+ HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {
+ @Override
+ public boolean verify(String hostname, SSLSession session) {
+ return true;
+ }
+ });
} catch (Exception e) {
e.printStackTrace();
diff --git a/src/org/fox/ttrss/FeedsFragment.java b/src/org/fox/ttrss/FeedsFragment.java index 8be4d92e..7462876c 100644 --- a/src/org/fox/ttrss/FeedsFragment.java +++ b/src/org/fox/ttrss/FeedsFragment.java @@ -15,8 +15,10 @@ import java.util.Comparator; import java.util.HashMap;
import java.util.List;
+import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.HttpsURLConnection;
import javax.net.ssl.SSLContext;
+import javax.net.ssl.SSLSession;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
@@ -606,6 +608,12 @@ public class FeedsFragment extends Fragment implements OnItemClickListener, OnSh sc.init(null, trustAllCerts, new java.security.SecureRandom());
HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
+ HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {
+ @Override
+ public boolean verify(String hostname, SSLSession session) {
+ return true;
+ }
+ });
} catch (Exception e) {
e.printStackTrace();
|