disable TLS cert validation for stun/turn server

Daniel Gultsch created 

turns out libwebrtc doesn’t use the system root CA store but comes with only a few default CAs.

in anyway we will probably only use tcp/443 to bypass firewalls and not to actually secure anything.

Change summary

src/main/java/eu/siacs/conversations/xmpp/jingle/JingleRtpConnection.java | 4 
1 file changed, 3 insertions(+), 1 deletion(-)

Detailed changes

src/main/java/eu/siacs/conversations/xmpp/jingle/JingleRtpConnection.java 🔗 

@@ -1091,7 +1091,9 @@ public class JingleRtpConnection extends AbstractJingleConnection implements Web
                                     continue;
                                 }
                                 //TODO wrap ipv6 addresses
-                                PeerConnection.IceServer.Builder iceServerBuilder = PeerConnection.IceServer.builder(String.format("%s:%s:%s?transport=%s", type, host, port, transport));
+                                final PeerConnection.IceServer.Builder iceServerBuilder = PeerConnection.IceServer
+                                        .builder(String.format("%s:%s:%s?transport=%s", type, host, port, transport));
+                                iceServerBuilder.setTlsCertPolicy(PeerConnection.TlsCertPolicy.TLS_CERT_POLICY_INSECURE_NO_CHECK);
                                 if (username != null && password != null) {
                                     iceServerBuilder.setUsername(username);
                                     iceServerBuilder.setPassword(password);