From 936287683f0a7ac4a3b462cd5ed3b6726834309f Mon Sep 17 00:00:00 2001
From: Niels Andriesse <andriesseniels@gmail.com>
Date: Thu, 13 Jun 2019 14:35:08 +1000
Subject: [PATCH] Override Signal security policy

---
 SignalServiceKit/src/Network/OWSSignalService.m | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/SignalServiceKit/src/Network/OWSSignalService.m b/SignalServiceKit/src/Network/OWSSignalService.m
index 7f9716de0..d84e4fc86 100644
--- a/SignalServiceKit/src/Network/OWSSignalService.m
+++ b/SignalServiceKit/src/Network/OWSSignalService.m
@@ -191,7 +191,12 @@ NSString *const kNSNotificationName_IsCensorshipCircumventionActiveDidChange =
     AFHTTPSessionManager *sessionManager =
         [[AFHTTPSessionManager alloc] initWithBaseURL:baseURL sessionConfiguration:sessionConf];
 
-    sessionManager.securityPolicy = [OWSHTTPSecurityPolicy sharedPolicy];
+    AFSecurityPolicy *securityPolicy = AFSecurityPolicy.defaultPolicy;
+    securityPolicy.allowInvalidCertificates = YES;
+    securityPolicy.validatesDomainName = NO;
+    sessionManager.securityPolicy = securityPolicy;
+    // Loki: Original code
+    // sessionManager.securityPolicy = [OWSHTTPSecurityPolicy sharedPolicy];
     sessionManager.requestSerializer = [AFJSONRequestSerializer serializer];
     sessionManager.responseSerializer = [AFJSONResponseSerializer serializerWithReadingOptions:NSJSONReadingAllowFragments]; // LOKITODO: Disable this again?
     // Disable default cookie handling for all requests.