MemorizingTrustManager
MemorizingTrustManager copied to clipboard
ge0rg
A "plugin" for Android Java to allow asking the user about SSL certificates
Hello, I'm trying to use MemorizingTrustManager with HttpsUrlConnection (setSSLSocketFactory, setHostnameVerifier). It's a quite simple setup so I don't think I've done anything wrong; it' works quite well, but there is...
See https://github.com/siacs/Conversations/issues/1084 .
Currently, MTM is using auto-increment integers for individual decisions. If an attacker gains a mechanism to inject decisions into MTM, he could easily enumerate the most probable IDs and cause...
the previously used implementation to print the stacktrace would only print the stacktrace of the resulting Exception/Throwable, but the really relevant stacktrace is the one from the causing Exception/Throwable. Androids...
Hi, I actually haven't tested this so PLEASE DO NOT MERGE. I just want to get your feedback on whether or not you would be interested in merging something like...
Some apps (F-Droid, ChatSecure, maybe others) want to have better control of when and how to ask the user about certificates, for example to suppress the dialog when connecting to...
as it prevents those components from getting gc'ed. The type of the `master` field should be changed to Application.
MTM needs a comprehensive test suite with proper code coverage. It is probably good to wait for #29 to get sorted out, so the test suite can plug into the...
Issue #24 demonstrates that using "KeyStore" as app directory for MTM may not be the wisest choice. It should be renamed to something more unique to avoid collisions, e.g. "MTMKeyStore"....
It seems that is requires for submodules with gradle 8.1.0.
