aboutsummaryrefslogtreecommitdiffstats
path: root/src/frontends/android/jni
Commit message (Collapse)AuthorAgeFilesLines
...
* android: Build native libraries also for x86Tobias Brunner2013-03-203-2/+5
| | | | Requires an updated build script for Vstr.
* android: Remove/filter header files from LOCAL_SRC_FILESTobias Brunner2013-03-201-10/+10
| | | | This avoids huge warnings when building the native code.
* android: Request and install an IPv6 DNS serverTobias Brunner2013-03-202-9/+17
|
* android: Also request a virtual IPv6 address and propose IPv6 TSTobias Brunner2013-03-203-23/+25
| | | | | This allows IPv6 over IPv4 but falls back nicely if we don't get a virtual IPv6 (or IPv4) address.
* kernel_ipsec_t.query_sa() additionally returns the number of processed packetsMartin Willi2013-03-141-1/+2
|
* android: Add support for combined certificate and EAP authenticationTobias Brunner2013-03-071-27/+50
| | | | | | This uses RFC 4739 multiple authentication rounds to first authenticate the client with a certificate followed by an EAP authentication round with username and password.
* Fixed Doxygen comments after scanning complete src directoryTobias Brunner2013-03-024-4/+4
|
* android: Mitigate race condition on reauthenticationTobias Brunner2013-03-011-0/+4
| | | | | | | | If the TUN device gets recreated while another thread in handle_plain() has not yet called select(2) but already stored the file descriptor of the old TUN device in its FD set, select() will fail with EBADF. Fixes #301.
* Add a DSCP configuration value to IKE configsMartin Willi2013-02-061-1/+1
|
* android: Implement kernel_net_t.get_interface via JNITobias Brunner2013-01-143-5/+62
| | | | | | This is now required to properly accept/install a virtual IP address. Fixes #275.
* android: Moved chunk_from_byte_array and byte_array_from_chunk helper functionsTobias Brunner2013-01-142-24/+32
|
* android: Set OPENSSL_NO_CMS in Android.mk as it is not set in opensslconf.h ↵Tobias Brunner2013-01-141-0/+1
| | | | on Android
* Added an option that allows to force IKEv1 fragmentationTobias Brunner2013-01-121-1/+2
|
* Use a connection specific option to en-/disable IKEv1 fragmentationTobias Brunner2012-12-241-1/+1
|
* Install virtual IPs via interface name, and use an interface lookup where ↵Martin Willi2012-11-291-1/+1
| | | | required
* Add an optional kernel-interface parameter to install IPs with a custom prefixMartin Willi2012-11-291-1/+2
|
* android: Properly handle exceptions when loading keys/certificatesTobias Brunner2012-11-211-3/+3
|
* android: Private key bug has been fixed with Android 4.2Tobias Brunner2012-11-191-1/+1
|
* Moved debug.[ch] to utils folderTobias Brunner2012-10-246-6/+6
|
* Moved data structures to new collections subfolderTobias Brunner2012-10-241-1/+1
|
* Moved host_t and host_resolver_t to a new networking subfolderTobias Brunner2012-10-242-2/+2
|
* Remove version argument on peer_cfg constructor, use ike_cfg version insteadMartin Willi2012-10-241-1/+1
|
* Add IKE version information to ike_cfg_tMartin Willi2012-10-241-1/+1
|
* android: Enable ECC in the app as our custom built libcrypto supports itTobias Brunner2012-10-231-3/+0
|
* Reload logger configuration on SIGHUPTobias Brunner2012-10-181-22/+14
| | | | | | Besides changing the configuration this allows to easily rotate log files. Also moved logger initialization back to daemon_t.
* Make syslog and file loggers configurable at runtimeTobias Brunner2012-10-181-13/+3
|
* Use a helper function to add milliseconds to timeval structsTobias Brunner2012-10-181-6/+1
|
* android: Ignore if peer is unreachable when reestablishing an SATobias Brunner2012-10-181-2/+7
|
* android: Use a shorter timeout for retransmitsTobias Brunner2012-10-181-1/+1
|
* android: Use keyingtries=%forever and dpd|closeaction=restartTobias Brunner2012-10-181-3/+3
| | | | | | | We also ignore the CHILD_SA_DOWN event. This should allow us to keep the connection up as long as the user does not manually disconnect.
* android: Handle unreachable peers via alertTobias Brunner2012-10-161-17/+5
|
* android: Use 0.0.0.0/0 as local traffic selectorTobias Brunner2012-10-161-1/+2
| | | | | This is helpful if the responder also wants to tunnel e.g. multicast packages.
* android: Bypass/protect previously bypassed sockets if connectivity changesTobias Brunner2012-10-163-4/+30
|
* android: Support for IPsec SA update addedTobias Brunner2012-10-161-1/+2
|
* android: Trigger roam events in case connectivity changesTobias Brunner2012-10-161-0/+63
|
* android: Register NetworkManager as BroadcastReceiver and relay events via JNITobias Brunner2012-10-163-6/+145
|
* android: Determine source address dynamicallyTobias Brunner2012-10-165-23/+47
|
* android: Added NetworkManager class which allows to retrieve a local IP addressTobias Brunner2012-10-163-0/+197
|
* android: Increase compile warningsTobias Brunner2012-10-161-0/+3
|
* android: Don't use the default ESP proposal as it includes unsupported ↵Tobias Brunner2012-10-161-1/+4
| | | | algorithms
* android: Leak the private key reference on Jelly Bean to avoid a bug in the ↵Tobias Brunner2012-09-241-1/+10
| | | | | | | | | framework A bug in the framework on Android Jelly Bean causes a SIGSEGV when the private key object returned from KeyChain.getPrivateKey is garbage collected. Leaking the global reference to that object prevents the garbage collection and thereby the crash.
* android: Added a global variable to check the current SDK versionTobias Brunner2012-09-242-1/+26
|
* android: Load the private key and certificates separately in android_creds_tTobias Brunner2012-09-242-31/+32
|
* android: Added a method to get the user's private key via JNITobias Brunner2012-09-242-1/+44
|
* android: Added a JNI backed private key implementationTobias Brunner2012-09-243-0/+324
| | | | | This is required because private keys are provided by an OpenSSL engine in Jelly Bean, which makes them inaccessible directly via getEncoding.
* android: Use AUTH_RULE_IDENTITY_LOOSETobias Brunner2012-09-181-0/+1
|
* android: Fix conversion of actual Unicode strings (i.e. bytes!=chars)Tobias Brunner2012-09-171-5/+6
|
* android: Properly handle reauthentication initiated by the clientTobias Brunner2012-09-061-7/+42
|
* Merge branch 'android-client-cert'Tobias Brunner2012-09-048-41/+245
|\ | | | | | | Introduces IKEv2 client certificate authentication for the Android App.
| * android: Native parts handle ikev2-cert VPN typeTobias Brunner2012-08-313-16/+71
| |
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 08:34:53 +0000