fix SSL host verification not being disabled by "trust all hosts"

author: Andrew Dolgov <fox@fakecake.org> 2012-09-22 15:01:55 +0400
committer: Andrew Dolgov <fox@fakecake.org> 2012-09-22 15:01:55 +0400
commit: 297259762228a2e7d7842d52074cf06c90cd7270 (patch)
tree: 55a6a8cf50099be65ba4723f0c3ebf3dc41515b6 /src/org/fox/ttrss/ApiRequest.java
parent: 365b6514dba9ad6bc91ed8091cc0b7eaa495f946 (diff)
1 files changed, 8 insertions, 0 deletions
diff --git a/src/org/fox/ttrss/ApiRequest.java b/src/org/fox/ttrss/ApiRequest.java
index 53661885..c3cae1a5 100644
--- a/src/org/fox/ttrss/ApiRequest.java
+++ b/src/org/fox/ttrss/ApiRequest.java
@@ -12,8 +12,10 @@ import java.nio.CharBuffer;
 import java.security.cert.CertificateException;
 import java.util.HashMap;
 
+import javax.net.ssl.HostnameVerifier;
 import javax.net.ssl.HttpsURLConnection;
 import javax.net.ssl.SSLContext;
+import javax.net.ssl.SSLSession;
 import javax.net.ssl.TrustManager;
 import javax.net.ssl.X509TrustManager;
 
@@ -291,6 +293,12 @@ public class ApiRequest extends AsyncTask<HashMap<String,String>, Integer, JsonE
 	        sc.init(null, trustAllCerts, new java.security.SecureRandom());
 
 	        HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
+	        HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {				
+				@Override
+				public boolean verify(String hostname, SSLSession session) {
+					return true;
+				}
+			});
 
 	    } catch (Exception e) {
 	            e.printStackTrace();
author	Andrew Dolgov <fox@fakecake.org>	2012-09-22 15:01:55 +0400
committer	Andrew Dolgov <fox@fakecake.org>	2012-09-22 15:01:55 +0400
commit	297259762228a2e7d7842d52074cf06c90cd7270 (patch)
tree	55a6a8cf50099be65ba4723f0c3ebf3dc41515b6 /src/org/fox/ttrss/ApiRequest.java
parent	365b6514dba9ad6bc91ed8091cc0b7eaa495f946 (diff)