FORUMS
Remove All Ads from XDA
Honor View 10

(Update 5/02/2012 0.9.4) [APP][ICS4.0.3+]OpenVPN for ICS (no root/jailbreak required)

42 posts
Thanks Meter: 24
 
By zealot0630, Member on 10th April 2012, 06:15 AM
Post Reply Email Thread
Note:
  • You can't install a pfx/p12 certification file which is not password protected, it is UNSAFE, android won't allow you do that
  • Please uninstall previous version first before install 0.9.0.
  • Due to Titanium Backup can't restore the permission to the keystore, if you are using Titanium Backup to backup/restore configurations, after a restore, please reconfigure your profile, repick the user certification to grant the permission to the keystore.

Features:
  • Compatible to all ICS device (NO ROOT REQUIRED, works on stock firmware)
  • Easy to use
  • Multiple VPN profile
  • Username/password authentication
  • Secure (Don't store your private key in App, but managed by Android system)
  • Open source

Limitation:
  • Only TUN mode, no TAP mode. (system API limitation)
  • One simultaneous connection only. (system API limitation)

ChangeLog:
5/02/2012 0.9.4
  • Fix redirect-gateway option
4/28/2012 0.9.3
  • Temporary fix tls-auth (Store tls key file in sdcard is insecure !!!)
  • Fix crash
4/27/2012 0.9.2
  • Add ns-cert-type option
  • Fix connection without user certification
4/25/2012 0.9.1
  • More error message
  • Fix extra arguments option
4/23/2012 0.9.0
  • Fix some crash
4/21/2012
  • Add username/password based authentication support. (Need to input password manually every time when connect)

Issues:
  • Connection interrupted if leave GUI while preparing/connecting. (It will be OK to leave once connected)
  • Won't work on JB, wait until google release openssl engine for system keystore

Screen Shots: Here

Download: Here

Source code: Here

Any feedback is welcome.
The Following 6 Users Say Thank You to zealot0630 For This Useful Post: [ View ] Gift zealot0630 Ad-Free
 
 
12th April 2012, 10:41 PM |#2  
Senior Member
Flag New York
Thanks Meter: 4
 
More
OpenVPN
Please don't retire this! people haven't stumbled on it but this is great!
The #1 reason most people root their phones even when they don't want to!
14th April 2012, 09:42 PM |#3  
Senior Member
Flag Montreal
Thanks Meter: 33
 
More
Thumbs up
Thank you very much. I was using the one in cm7 and worked perfectly. Is there any plans to port it to cm9, this is the most missing feature for me in cm9. Thank you.
15th April 2012, 12:30 AM |#4  
jcasares's Avatar
Senior Member
Flag Buenos Aires
Thanks Meter: 75
 
More
Waiting for password authentication.
Nice work anyway!
21st April 2012, 09:06 AM |#5  
OP Member
Thanks Meter: 24
 
More
Quote:
Originally Posted by jcasares

Waiting for password authentication.
Nice work anyway!

Sure, I'm still working on it, it will be done soon. And I need to setup a test openvpn server first.
21st April 2012, 12:57 PM |#6  
jcasares's Avatar
Senior Member
Flag Buenos Aires
Thanks Meter: 75
 
More
I can provide an OpenVPN connection (username and password) if required or it's too much work building a test server.
21st April 2012, 02:57 PM |#7  
OP Member
Thanks Meter: 24
 
More
Quote:
Originally Posted by jcasares

I can provide an OpenVPN connection (username and password) if required or it's too much work building a test server.

I have already completed it, still thanks
22nd April 2012, 08:37 PM |#8  
Junior Member
Thanks Meter: 0
 
More
Seems to be an issue with using the tls-auth option. It ignores the file even though the path is correct.
22nd April 2012, 10:35 PM |#9  
OP Member
Thanks Meter: 24
 
More
Quote:
Originally Posted by idmud

Seems to be an issue with using the tls-auth option. It ignores the file even though the path is correct.

I haven't test this feature before, maybe I should migrate this with the new keystore API.
23rd April 2012, 07:15 PM |#10  
Senior Member
Flag New York
Thanks Meter: 4
 
More
can't select trusted CA
When I select my CA nothing changes so I'm not sure if it registers the certificate in the connection.
When I hit connect the icon flashes in the notification area and disappears.
I have tried the CA certificate in both .pem and .crt formats
Log says: No log.
Am running CM9 on AT&T Nexus S.
23rd April 2012, 10:27 PM |#11  
Junior Member
Thanks Meter: 0
 
More
config request
Hi! Thanks for your great work!!!

Could you please add a simple checkbox in the connection settings to make the option "--ns-cert-type server" optional?
Post Reply Subscribe to Thread

Guest Quick Reply (no urls or BBcode)
Message:
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes