Re: [Openvpn-devel] OpenVPN and Android 4.0 VPN API

Hi Gert, 2012/2/8 Gert Doering : > On Wed, Feb 08, 2012 at 11:27:10AM -0800, James Ring wrote: >> Does other code within openvpn care whether the fd is a UNIX socket or >> a tun/tap device? I'm guessing there may be some ioctls it wants to >> perform on the device. > > There aren't any ioctl()s (I

Re: [Openvpn-devel] OpenVPN and Android 4.0 VPN API

Hi, On Wed, Feb 08, 2012 at 11:27:10AM -0800, James Ring wrote: > > Exactly.  The first three things are sort of "nearly done", the > > "receive file descriptor to use for tun/tap" would need to be > > implemented (tun.c, open_tun(), #ifdef ANDROID_MAGIC_VPN :-) ) > > I was thinking about this a

Re: [Openvpn-devel] OpenVPN and Android 4.0 VPN API

Hi James, 2012/2/8 James Ring : > On Wed, Feb 8, 2012 at 10:24 AM, Gert Doering wrote: >> Exactly.  The first three things are sort of "nearly done", the >> "receive file descriptor to use for tun/tap" would need to be >> implemented (tun.c, open_tun(), #ifdef ANDROID_MAGIC_VPN :-) ) > > I was th

Re: [Openvpn-devel] OpenVPN and Android 4.0 VPN API

Hey Gert, On Wed, Feb 8, 2012 at 10:24 AM, Gert Doering wrote: > Hi, > > On Wed, Feb 08, 2012 at 04:47:35AM -0800, James Ring wrote: >> Perhaps I wrote this too hastily. I wasn't thinking of how OpenVPN >> actually works. OpenVPN would: >> >> * open the connection (tcp or udp) to the remote end >

Re: [Openvpn-devel] OpenVPN and Android 4.0 VPN API

Hi, On Wed, Feb 08, 2012 at 04:47:35AM -0800, James Ring wrote: > Perhaps I wrote this too hastily. I wasn't thinking of how OpenVPN > actually works. OpenVPN would: > > * open the connection (tcp or udp) to the remote end > * negotiate session parameters > * provide the Android Java wrapper with

Re: [Openvpn-devel] OpenVPN and Android 4.0 VPN API

Hi, On Wed, Feb 08, 2012 at 04:16:20AM -0800, James Ring wrote: > Looks like you need to pass a native fd. OpenVPN would not be able to > open the device itself. There looks to be a chicken and egg problem > here though: the fd is returned by the VpnService.Builder.establish() > method > > http:/

Re: [Openvpn-devel] OpenBSD platform cleanup

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 05/02/12 16:48, Gert Doering wrote: > Hi, > > On Sun, Feb 05, 2012 at 03:02:40PM +0100, David Sommerseth wrote: >>> as promised :-) - it now passes all my t_client.rc tests, and >>> smells a lot less funny. We now might even throw out all these

Re: [Openvpn-devel] [PATCH v2] Fix assert() situations where gc_malloc() is called without a gc_arena object

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 07/02/12 14:31, David Sommerseth wrote: > In commit bee92b479414d12035b0422f81ac5fcfe14fa645 the gc_malloc() > was hardened to always require a gc_arena object for garbage > collection. Some places in the code expected the old behaviour of a > norma

Re: [Openvpn-devel] [PATCH v2] Fix assert() situations where gc_malloc() is called without a gc_arena object

I give this one a feature-ACK as it seems to fix the buffer.c line 313 issue: All the best, -- Samuli Seppänen Community Manager OpenVPN Technologies, Inc irc freenode net: mattock > In commit bee92b479414d12035b0422f81ac5fcfe14fa645

Re: [Openvpn-devel] OpenVPN and Android 4.0 VPN API

Hey, On Wed, Feb 8, 2012 at 4:16 AM, James Ring wrote: > Looks like you need to pass a native fd. OpenVPN would not be able to > open the device itself. There looks to be a chicken and egg problem > here though: the fd is returned by the VpnService.Builder.establish() > method > > http://develope

Re: [Openvpn-devel] OpenVPN and Android 4.0 VPN API

Hi Gert, On Wed, Feb 8, 2012 at 12:09 AM, Gert Doering wrote: > Hi, > > On Wed, Feb 08, 2012 at 08:39:32AM +0100, Adriaan de Jong wrote: >>  - The ABI expects a two-stage setup process: set up a control >> channel first for negotiation, then a call VpnService.Builder with >> the proper routing, D

Re: [Openvpn-devel] [PATCH] Signed-off-by: Jan Just Keijser

Alon Bar-Lev wrote: > This is nice! > > Some questions: > > 1. Why not enable this automatically if openssl is sufficient version? > There is no point in not using this if available. > some distro's (notably RedHat) disable EC support by default; so it's not possible to check the OpenSSL version nu

Re: [Openvpn-devel] OpenVPN and Android 4.0 VPN API

Hi, On Wed, Feb 08, 2012 at 08:39:32AM +0100, Adriaan de Jong wrote: > - The ABI expects a two-stage setup process: set up a control > channel first for negotiation, then a call VpnService.Builder with > the proper routing, DNS, addresses, etc. As far as I've been told > by other developers, this

Re: [Openvpn-devel] OpenVPN and Android 4.0 VPN API

> -Original Message- > From: James Ring [mailto:s...@jdns.org] > Sent: dinsdag 7 februari 2012 23:33 > To: openvpn-devel@lists.sourceforge.net > Subject: [Openvpn-devel] OpenVPN and Android 4.0 VPN API > > Hi there, > > I was just wondering if anybody has seen the new Android 4.0 VPN API.