Accept only valid hostnames and certificates

Author: sunkup

lib/src/test/java/at/bitfire/cert4android/CustomCertManagerTest.kt

@@ -16,14 +16,9 @@ import org.junit.BeforeClass
 import org.junit.Test
 import java.io.IOException
 import java.net.URL
-import java.security.SecureRandom
 import java.security.cert.CertificateException
 import java.security.cert.X509Certificate
-import javax.net.ssl.HostnameVerifier
 import javax.net.ssl.HttpsURLConnection
-import javax.net.ssl.SSLContext
-import javax.net.ssl.TrustManager
-import javax.net.ssl.X509TrustManager
 
 class CustomCertManagerTest {
 
@@ -101,18 +96,6 @@ class CustomCertManagerTest {
             try {
                 conn.connectTimeout = 5000
                 conn.readTimeout = 5000
-                conn.hostnameVerifier = HostnameVerifier { _, _ -> true }
-                conn.sslSocketFactory = SSLContext.getInstance("TLS").apply {
-                    init(
-                        null,
-                        arrayOf<TrustManager>(object : X509TrustManager {
-                            override fun checkClientTrusted(chain: Array<out X509Certificate>?, authType: String?) {}
-                            override fun checkServerTrusted(chain: Array<out X509Certificate>?, authType: String?) {}
-                            override fun getAcceptedIssuers(): Array<X509Certificate> = emptyArray()
-                        }),
-                        SecureRandom()
-                    )
-                }.socketFactory
                 conn.inputStream.use { stream ->
                     stream.read()
                     val certs = mutableListOf<X509Certificate>()