{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 ゆ 、 Hurt° 的问题《Android <= 4.4.2 and TLS 1.2》','https://www.manongdao.com/q-1346354.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I did an app for a company and it supported API level 13+ (3.0+). It collects data from their CMS via XML and displays it on the app. This is done over HTTPS which worked fine until they upgraded their server to TLS 1.2. Now android versions below API level 20 won't fetch the XML because of SSLPeerUnverifiedException and a whole lot of phones can't see this app anymore.
Is there a way to get past SSLPeerUnverified while leaving TLS 1.2 enabled?
Note: The current SSL certificates are as follows:
AddTrust External CA Root
--> COMODO High-Assurance Secure Server CA
--> *.appdomain.com
Most helpful SOF article so far: Implementing TLS 1.2 on Android 2.3.3
Someone else on the team answered this but the result included the following:
SSLContext helper=null;helper.init(null,null,null);SSLContext.getInstance("TLSv1.2");SSLEngine engine = helper.createSSLEngine();Here's the function he used to check ssl and put everything in: