| 2eaed9368eedb97549b5f52dacfa50686b596ab2 |
12-Jul-2017 |
Di Lu <ludi@google.com> |
Merge "Remove the return value of ipSecAddSecurityAssociation"
|
| 5e63762feedd9506a8e8c556c8fef2ae7ec70478 |
10-Jul-2017 |
Ben Schwartz <bemasc@google.com> |
Remove incorrect doc line
Removes one line of documentation that is no longer
accurate.
Bug: 34953048
Test: None
Change-Id: Ideed8c5ddc91c73559fb7f0a86b1a48e61bc0535
Netd.aidl
|
| e760181ff41a5f4526e4f543f3838eb05690e2aa |
28-Apr-2017 |
Ben Schwartz <bemasc@google.com> |
Support RFC 7858 DNS over TLS
This change adds the core capability for DNS over TLS, and creates
private APIs for activating it, but does not provide any way to
activate the functionality in a development environment or on a
real device.
Based on https://android-review.googlesource.com/#/c/373776/
Test: Complete unit+integration tests. Manual tests look good.
Bug: 34953048
Change-Id: Ib99ac1f631fd2c2c8fbf53bdb05f67f8be7713ac
Netd.aidl
|
| de9379641d5fc4b5912d6838075df9490518cca6 |
01-Jun-2017 |
Joel Scherpelz <jscherpelz@google.com> |
Enable RFC 7217 stable privacy addresses
... on kernels that support this feature. Android property server is
used in combination with SELinux policy to limit access to the
necessary stable secret.
This change also makes some small improvements and fixes to
libnetdutils.
ip -6 addr indicates stable_privacy addresses with "flags 800"
wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 state UP qlen 3000
inet6 fdd5:6241:900d:0:d547:442:33d7:1982/64 scope global temporary dynamic
inet6 fdd5:6241:900d:0:9dbe:3875:1cab:eaf2/64 scope global mngtmpaddr dynamic flags 800
inet6 2401:fa00:4:ca0:d547:442:33d7:1982/64 scope global temporary dynamic
inet6 2401:fa00:4:ca0:6281:68a2:7124:6848/64 scope global mngtmpaddr dynamic flags 800
inet6 fe80::d5a7:18ed:4ea7:50d8/64 scope link flags 800
Test: as follows
- built
- flashed
- booted
- "runtest -x .../netd_unit_test.cpp" passes
Bug: 17613910
Change-Id: I0e0b6bbd15cb9d46368bed8aef5dac2f6183d32a
Netd.aidl
|
| 08b84cd0d223ae3059ce7d4d55b389fdea187580 |
22-May-2017 |
Joel Scherpelz <jscherpelz@google.com> |
Add WakeupController and NFLogListener
These classes work together to parse and dispatch NFLOG messages in
response to inbound packets annotated by the WiFi driver.
Test: as follows
- built
- flashed
- booted
- netd_unit_test passes
Change-Id: Id26d62858bf4bc4186ae66850f08077adf6fc2ac
Netd.aidl
etrics/INetdEventListener.aidl
|
| ec83605aa1e6e49610b80393c944d1fe2ffabc44 |
20-May-2017 |
ludi <ludi@google.com> |
Remove the return value of ipSecAddSecurityAssociation
Bug:38350493
Test: runtest -x tests/netd_integration_test.cpp
Change-Id: I48f8462d94e8c4e95d6766c1ce7f24b8a596b743
Netd.aidl
|
| 1a37153768aa605e0787591c39d73b674acd92c3 |
30-Jan-2017 |
Nathan Harold <nharold@google.com> |
Add XfrmController to NetdNativeService
Add a new controller to Netd that can handle IPSec XFRM
commands from the framework.
-Add new XfrmController controller
-Connect XfrmController to Controllers
-Add APIs in XfrmController for creating Transport IpSec Assocs
Bug: 34811756
Test: 34812052
Change-Id: If518a53a83fa76ea4c866992055a741ae064c30d
Netd.aidl
|
| 7dfaa78c00346fdc2818c06bb96e3750b7cc99ee |
31-Oct-2016 |
Hugo Benichi <hugobenichi@google.com> |
DO NOT MERGE: Add success/errno to connect() event reporting
Test: $ runtest -x system/netd/tests/netd_integration_test.cpp
Bug: 32198976
(cherry picked from commit 794c5c714a4d4cf169769ec956845a6fb24e7ebc)
Change-Id: I19701289da9458b723277580992f8bcf45305530
etrics/INetdEventListener.aidl
|
| dc0d578a69cc5a57167a508207e2198590142d51 |
20-Jul-2016 |
Robin Lee <rgl@google.com> |
UidRanges: use class instead of pair<uid_t, uid_t>
Reuse the UidRange that was introduced in 7.0 (NYC) to ease transition
from CommandListener to binder which supports this as a parcelable type.
There is a small difference in behaviour: UidRange uses signed int32_t
vs. uid_t being unsigned and potentially a different size. This should
not be a problem as all of the java-side code is converting from int.
Updating to use int64_t in future would be a large effort and involve
changing the java-side UidRange class to use longs, and not fixing the
native side would cause unit tests to fail, so it shouldn't be possible
to overlook if that happens.
Committing this early with an appropriately loud warning so that it can
get soak time over the next year.
Test: runtest -x netd_integration_test.cpp
Change-Id: I6c217b347724ba5bfe2df28d6142a4343cb06353
idRange.cpp
idRange.h
|
| 7d374533e2daadee5d7f01dd9aa3c98e42759d50 |
06-Oct-2016 |
Michal Karpinski <mkarpinski@google.com> |
Add connect event reporting
Adds reporting of connect events including netId, destination IP address,
destination port, uid and connect latency.
Also enables the relevant tests in the connect_benchmark.
Currently ignores the new data it receives, further work will be
done in the subsequent CLs.
Test: for now just the benchmarking, in the future CTS
Bug: 29748723
(cherry picked from commit 4b9b78aa02336de9291e5085401cef44c03c3bba)
Change-Id: If8e5ddcd2d29271e2f63a3338a3daf83e7afccdc
etrics/INetdEventListener.aidl
|
| d46aa71fdad655f9dc2e33e0fbb96a776a55d095 |
13-Oct-2016 |
Michal Karpinski <mkarpinski@google.com> |
Fixing the netd benchmark
Bug: 29748723
(cherry picked from commit fe7f72b4709c2b735287d817b6f1277e2f40b11c)
Change-Id: Ic586c18f0a13cc2dbeb93193a4c4e374ed9a08cc
etrics/INetdEventListener.aidl
|
| 69943802dcf2e1005b9d233f0ef97698d0e87332 |
06-Oct-2016 |
Michal Karpinski <mkarpinski@google.com> |
Extending DNS event reporting
This adds hostname, array of addresses, total count of IP addresses
and uid to the existing pipeline.
Currently ignores the new data it receives, further work will be
done in the subsequent CLs.
Test: for now just the benchmarking, in the future CTS
Bug: 29748723
(cherry picked from commit 36deff74215db202db9e29aa7ff1375ae5f2bc5d)
Change-Id: I46e9fa6bc5904d823f2138449f07a324a3cb5d4e
etrics/INetdEventListener.aidl
|
| d544011db2537092fe4f76d238dfe3a82ad15a36 |
06-Oct-2016 |
Michal Karpinski <mkarpinski@google.com> |
Adding EventReporter class
This class stores the reporting level and can be used to get
the event listener service.
Bug: 29748723
(cherry picked from commit be581e228bd1a97efd179edcdd3e744622fb99b8)
Change-Id: I98bfa97cb502f4d19ccf8c79f32d347e7e168492
Netd.aidl
etrics/INetdEventListener.aidl
|
| 2cf561722c2661cc0d4db502a44a3021609f307e |
13-Sep-2016 |
Robin Lee <rgl@google.com> |
Benchmarks for network metrics reporting
Bug: 29748723
Test: this is an APCT test.
(cherry picked from commit 484dac1d071c7476895c4a3184e8dbdd7b63e524)
Change-Id: I482a7d5c15210906069e0fe7ef55ab3f21bfc127
Netd.aidl
|
| 095ec2f699e9ffa0247f5275c761b5724fbbac42 |
03-Jun-2016 |
Robin Lee <rgl@google.com> |
UidRange bounds-checking typo
This is from copy-pasting the line above and changing the assert
message but not the actual check.
(cherry picked from commit 927c40f40148880ce6f6bbe5335c2741b4195ad3)
Change-Id: I5b7c17a5ac3ba07353e57398a8278e7e0e3e6d9f
idRange.cpp
|
| 55b06f85b13553b7b0b5a76f650f452d5a9473c5 |
04-Jul-2016 |
Erik Kline <ek@google.com> |
Add general /proc/sys/net/ipv[46]/{conf,neigh}/ interface
Bug: 21859053
Bug: 28135208
(cherry picked from commit b218a87e0777d3d2c93231e03ef7315d783e3279)
Change-Id: Ie32c86511b97358d208a4c84a1c69a75c703bf3b
Netd.aidl
|
| 53c2088c4091e511c713ee759ce905e40e6d8975 |
02-Aug-2016 |
Erik Kline <ek@google.com> |
Support adding/removing IPv4 and IPv6 addresses on interfaces
Bug: 30298058
(cherry picked from commit c296f098b63a986265ded8adf13118ba512a0fa7)
Change-Id: I4e40f4c0fe82696dc580d30e50e8c5b9fe17be88
Netd.aidl
|
| f48e4dd80eb164394a8119abc59a5b9ecf36c4db |
17-Jul-2016 |
Erik Kline <ek@google.com> |
Add tetherApplyDnsInterfaces() binder interface.
Bug: 9580643
(cherry picked from commit 212c405c296ed869eda927e683734aff80248872)
Change-Id: I0f636266bbaa8c39847ea1e0ffbfdea789b3de53
Netd.aidl
|
| 5005134a6ab717c55a02a2684cfae42484b801aa |
15-Sep-2016 |
Michal Karpinski <mkarpinski@google.com> |
Rename the DnsEventListenerService to NetdEventListenerService
The service will be extended to include listening for connect events as well
Test: this is just a renaming change
Bug: 29748723
Change-Id: I6e290c0e559856490b24ce3e7fc1f13f33a22828
etrics/IDnsEventListener.aidl
etrics/INetdEventListener.aidl
|
| beedec3bc42d6f40a2c83a65522e85b5ff046f79 |
12-Apr-2016 |
Pierre Imai <imaipi@google.com> |
Add two Netd binder calls to set/get resolver config.
setResolverConfiguration() sets the name servers, search domains,
and resolver parameters.
getResolverInfo() returns the configured information and also the
statistics for each server.
Also includes tests for the new functionality.
BUG: 25731675
Change-Id: Idde486f36bb731f9edd240d62dc1795f8e621fe6
Netd.aidl
|
| 563d98b27d02a1d694fc4ed82b5554fd534c9daf |
24-Apr-2016 |
Lorenzo Colitti <lorenzo@google.com> |
Add a binder IPC to close socket connections.
Bug: 27824851
Bug: 27867653
Change-Id: I2e63ccfb268db763ec732594a73c2908838468b8
Netd.aidl
|
| b8087363143050d214d48e5620a330776ca95a69 |
30-Mar-2016 |
Robin Lee <rgl@google.com> |
Server API to only allow networking by VPN apps
Secure virtual networks already create rules to route all traffic into
theirselves. This depends on the secure network already existing.
API creates an ip rule at a priority level below SECURE_VPN which
can catch traffic before VPN comes up, if it is a requirement that no
traffic ever leaves without first going through VPN.
Bug: 26694104
Bug: 26354134
Change-Id: If23df0760c6eb0ad137fc26c5124e48edf23b722
Netd.aidl
|
| 9f9aae9102f62f5f96ccec670170ee1fb262ef09 |
30-Mar-2016 |
Robin Lee <rgl@google.com> |
Move UidRange aidl to create a native cpp version
Moved from:
//frameworks/base/core/java/android/net/
To:
//system/netd/binder
Since frameworks/base depends on netd but not vice versa, it is cleaner
to keep the internal aidl in the same place as the native implementation
in netd.
Bug: 26694104
Change-Id: If21a72978ad5b93f0eed04c75143b55157c1a014
idRange.aidl
idRange.cpp
idRange.h
|
| 6c97716e41d751cb0ebf49c93943923a356d3a96 |
12-Apr-2016 |
Lorenzo Colitti <lorenzo@google.com> |
Netd metrics logging for DNS queries
This CL defines a new IDnsEventListener interface and instruments
DnsProxyListener to send log events to it after every DNS query.
Bug: 28204408
Change-Id: I7ef09d8fac2a583fb3dc8e392c4fff5649258b28
etrics/IDnsEventListener.aidl
|
| dedd271d9961dbe8b99ffa7d54ffd63ac326f866 |
21-Mar-2016 |
Lorenzo Colitti <lorenzo@google.com> |
Add a binder RPC to enable/disable data saver.
Bug: 26685616
Bug: 27506285
Change-Id: Id11ee717cfc1c79070b6bbec397986c25947646c
Netd.aidl
|
| 89faa349525ad1110b6fa3f2149e6ef825c65662 |
26-Feb-2016 |
Lorenzo Colitti <lorenzo@google.com> |
Add an RPC to replace a UID firewall rule.
Also add a binder_test that exercises binder RPCs to the real
netd service running on the device
Bug: 21725996
Bug: 27239233
Change-Id: Ic83d81605021a0578d6cd32f889290be61d76125
Netd.aidl
|
| e4d626ea35b7a402388b524e2feafc81e6387697 |
02-Feb-2016 |
Lorenzo Colitti <lorenzo@google.com> |
Initial netd binder interface.
In this change:
1. AIDL files for a new, android.net.INetd service, and
corresponding implementation using generated code. For now the
interface is just a prototype: it only has one trivial method.
2. Permission checking code to check for CONNECTIVITY_INTERNAL.
3. Add a Big Netd Lock and provide a wrapper that makes it easy
to ensure that it is taken by every CommandListener command.
Bug: 27239233
Change-Id: I448d0ac233edd0e351a7fe7f13901fb6871683a2
Netd.aidl
|