Merge pull request android-async-http#1261 from BahadirBulduk/android-async-http#1260-TrustManager

smarek · web-flow · commit d494c8aac414 · 2017-11-29T16:49:00.000+01:00
Fixing a security issue which is banned by google play.
diff --git a/.travis.yml b/.travis.yml
@@ -3,10 +3,13 @@ sudo: false
 jdk: openjdk7
 android:
   components:
-    - build-tools-23.0.1
-    - extra-android-support
-    - extra-android-m2repository
+    - platform-tools
+    - tools
+    - build-tools-23.0.3
     - android-23
+    - extra-android-m2repository
+    - extra-google-m2repository
+
   licenses:
     - '.+'
 script:
diff --git a/library/build.gradle b/library/build.gradle
@@ -2,10 +2,10 @@ apply plugin: 'com.android.library'
 
 android {
     compileSdkVersion 23
-    buildToolsVersion '23.0.1'
+    buildToolsVersion '23.0.3'
 
     defaultConfig {
-        minSdkVersion 3
+        minSdkVersion 9
         targetSdkVersion 23
         consumerProguardFiles 'proguard.txt'
     }
diff --git a/library/src/main/java/com/loopj/android/http/MySSLSocketFactory.java b/library/src/main/java/com/loopj/android/http/MySSLSocketFactory.java
@@ -72,9 +72,19 @@ public MySSLSocketFactory(KeyStore truststore) throws NoSuchAlgorithmException,
 
         X509TrustManager tm = new X509TrustManager() {
             public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
+                try {
+                    chain[0].checkValidity();
+                } catch (Exception e) {
+                    throw new CertificateException("Certificate not valid or trusted.");
+                }
             }
 
             public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
+                try {
+                    chain[0].checkValidity();
+                } catch (Exception e) {
+                    throw new CertificateException("Certificate not valid or trusted.");
+                }
             }
 
             public X509Certificate[] getAcceptedIssuers() {
diff --git a/library/src/main/java/com/loopj/android/http/PersistentCookieStore.java b/library/src/main/java/com/loopj/android/http/PersistentCookieStore.java
@@ -97,7 +97,7 @@ public void addCookie(Cookie cookie) {
         SharedPreferences.Editor prefsWriter = cookiePrefs.edit();
         prefsWriter.putString(COOKIE_NAME_STORE, TextUtils.join(",", cookies.keySet()));
         prefsWriter.putString(COOKIE_NAME_PREFIX + name, encodeCookie(new SerializableCookie(cookie)));
-        prefsWriter.commit();
+        prefsWriter.apply();
     }
 
     @Override
@@ -108,7 +108,7 @@ public void clear() {
             prefsWriter.remove(COOKIE_NAME_PREFIX + name);
         }
         prefsWriter.remove(COOKIE_NAME_STORE);
-        prefsWriter.commit();
+        prefsWriter.apply();
 
         // Clear cookies from local store
         cookies.clear();
@@ -138,7 +138,7 @@ public boolean clearExpired(Date date) {
         if (clearedAny) {
             prefsWriter.putString(COOKIE_NAME_STORE, TextUtils.join(",", cookies.keySet()));
         }
-        prefsWriter.commit();
+        prefsWriter.apply();
 
         return clearedAny;
     }
@@ -168,7 +168,7 @@ public void deleteCookie(Cookie cookie) {
         cookies.remove(name);
         SharedPreferences.Editor prefsWriter = cookiePrefs.edit();
         prefsWriter.remove(COOKIE_NAME_PREFIX + name);
-        prefsWriter.commit();
+        prefsWriter.apply();
     }
 
     /**
diff --git a/sample/build.gradle b/sample/build.gradle
@@ -9,18 +9,18 @@ repositories {
 
 android {
     compileSdkVersion 23
-    buildToolsVersion '23.0.1'
+    buildToolsVersion '23.0.3'
 
     defaultConfig {
-        minSdkVersion 3
+        minSdkVersion 9
         targetSdkVersion 23
     }
 
     productFlavors {
         standard {
         }
         withLeakCanary {
-            minSdkVersion 8
+            minSdkVersion 9
             targetSdkVersion 23
         }
     }

Original file line number	Diff line number	Diff line change
`@@ -97,7 +97,7 @@ public void addCookie(Cookie cookie) {`
`97`	`97`	`SharedPreferences.Editor prefsWriter = cookiePrefs.edit();`
`98`	`98`	`prefsWriter.putString(COOKIE_NAME_STORE, TextUtils.join(",", cookies.keySet()));`
`99`	`99`	`prefsWriter.putString(COOKIE_NAME_PREFIX + name, encodeCookie(new SerializableCookie(cookie)));`
`100`		`- prefsWriter.commit();`
	`100`	`+ prefsWriter.apply();`
`101`	`101`	`}`
`102`	`102`
`103`	`103`	`@Override`
`@@ -108,7 +108,7 @@ public void clear() {`
`108`	`108`	`prefsWriter.remove(COOKIE_NAME_PREFIX + name);`
`109`	`109`	`}`
`110`	`110`	`prefsWriter.remove(COOKIE_NAME_STORE);`
`111`		`- prefsWriter.commit();`
	`111`	`+ prefsWriter.apply();`
`112`	`112`
`113`	`113`	`// Clear cookies from local store`
`114`	`114`	`cookies.clear();`
`@@ -138,7 +138,7 @@ public boolean clearExpired(Date date) {`
`138`	`138`	`if (clearedAny) {`
`139`	`139`	`prefsWriter.putString(COOKIE_NAME_STORE, TextUtils.join(",", cookies.keySet()));`
`140`	`140`	`}`
`141`		`- prefsWriter.commit();`
	`141`	`+ prefsWriter.apply();`
`142`	`142`
`143`	`143`	`return clearedAny;`
`144`	`144`	`}`
`@@ -168,7 +168,7 @@ public void deleteCookie(Cookie cookie) {`
`168`	`168`	`cookies.remove(name);`
`169`	`169`	`SharedPreferences.Editor prefsWriter = cookiePrefs.edit();`
`170`	`170`	`prefsWriter.remove(COOKIE_NAME_PREFIX + name);`
`171`		`- prefsWriter.commit();`
	`171`	`+ prefsWriter.apply();`
`172`	`172`	`}`
`173`	`173`
`174`	`174`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -9,18 +9,18 @@ repositories {`
`9`	`9`
`10`	`10`	`android {`
`11`	`11`	`compileSdkVersion 23`
`12`		`- buildToolsVersion '23.0.1'`
	`12`	`+ buildToolsVersion '23.0.3'`
`13`	`13`
`14`	`14`	`defaultConfig {`
`15`		`- minSdkVersion 3`
	`15`	`+ minSdkVersion 9`
`16`	`16`	`targetSdkVersion 23`
`17`	`17`	`}`
`18`	`18`
`19`	`19`	`productFlavors {`
`20`	`20`	`standard {`
`21`	`21`	`}`
`22`	`22`	`withLeakCanary {`
`23`		`- minSdkVersion 8`
	`23`	`+ minSdkVersion 9`
`24`	`24`	`targetSdkVersion 23`
`25`	`25`	`}`
`26`	`26`	`}`