In version: "3.0.0 RC6"

By commenting line 220 in app.src.main.java.org.tigase.messenger.phone.pre.service.service.SecureTrustManager you can use the app, currently this is the only way I got it working but sometimes errors come up, not sure if this is because of the certificate or another reason.

Same issue is found trying to connect to sure.im XMPP service. Multiple accounts and different networks (tigase.im, sure.im, my own servers) yield the same issue: "Connection Error" is displayed on step 1 in connection. This could be a particular problem with new users to XMPP.

I've found that adding a ca root certificate solves the connection error problem, it seems tigase messenger does not use the default ca certificates in android.

I've added a modified version of the following code to app\src\main\java\org\tigase\messenger\phone\pro\service\SecureTrustManagerFactory.java in the init function, and referenced to the downloaded ca certificate of the ca my xmpp server bought is't certificate from.

// Load CAs from an InputStream

// (could be from a resource or ByteArrayInputStream or ...)

CertificateFactory cf = CertificateFactory.getInstance("X.509");

// From https://www.washington.edu/itconnect/security/ca/load-der.crt

InputStream caInput = new BufferedInputStream(new FileInputStream("load-der.crt"));

Certificate ca;

try {

ca = cf.generateCertificate(caInput);

System.out.println("ca=" + ((X509Certificate) ca).getSubjectDN());

} finally {

caInput.close();

}

// Create a KeyStore containing our trusted CAs

String keyStoreType = KeyStore.getDefaultType();

KeyStore keyStore = KeyStore.getInstance(keyStoreType);

keyStore.load(null, null);

keyStore.setCertificateEntry("ca", ca);

source: https://developer.android.com/training/articles/security-ssl.html#SelfSigned