You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -108,7 +108,7 @@ like this in your `FiltersSource` implementation:
### Workarounds for Known Problems
* HTTPS fails with Exception: Handshake has already been started on Android Version 5+ (https://github.com/netty/netty/issues/4718). It's possible to use the Netty 4.1 branch (4.1.0.CR1-SNAPSHOT) with one line commented out: https://github.com/netty/netty/blob/4.1/handler/src/main/java/io/netty/handler/ssl/SslHandler.java#L1266. This is not perfect, but it works with Android 5.0, 5.1, and 6.0.
* HTTPS fails with Exception: Handshake has already been started on Android Version 5+ (https://github.com/netty/netty/issues/4718). It's fixed with [PR #4767](https://github.com/netty/netty/pull/4764). Using Netty 4.1.0.CR2-SNAPSHOT MITM works well with Android 5.0, 5.1, and 6.0, just as Java platforms too.
* Connection failure with some HTTPS sites like https://www.archlinux.org/ for example. You have to use [Java Cryptography Extension](http://en.wikipedia.org/wiki/Java_Cryptography_Extension) to fix it.
The reason will be displayed to describe this comment to others. Learn more.
Hi
Iam trying to port littleproxy-mitm to my Samsung Galaxy S5 android phone. I had used below code configurations
LittleProxy-mitm latest release
io netty version - 4.0.34.Final
My client code looks like below
try {
// Create an SSLContext that uses our TrustManager
SSLContext context = SSLContext.getInstance("TLS");
TrustManager[] trustManagers = InsecureTrustManagerFactory.INSTANCE
.getTrustManagers();
context.init(null, trustManagers, null);
// Tell the URLConnection to use a SocketFactory from our SSLContext
URL url = new URL("https://www.google.com");
HttpsURLConnection urlConnection = (HttpsURLConnection)url.
openConnection(new Proxy(Proxy.Type.HTTP, new InetSocketAddress("127.0.0.1", 8888))); //Updated littleproxy-mitim default proxy server to listen to port - 8888
urlConnection.setSSLSocketFactory(context.getSocketFactory());
urlConnection.connect();
}
catch (Exception ex)
{
Log.e(TAG,"Failed to establish SSL connection to server: "+ ex.toString());
}
Error Faced - Iam getting a gateway timeout error..When i checked pcap logs, client hello , server hello negotiations are happening. Also observed that some fields in client hello request are not populated(like Extension-Server). I included littleproxy-mitm pem as user trusted certificate
Can you pls let me know if any additional configuration has to be included to make it work on Android phone?
The reason will be displayed to describe this comment to others. Learn more.
Hi,
it's not possible to use SSL on Android 5+ with such an old Netty
version. Please use Netty 4.1.0.CR3 within your project. It works well
for me.
See:
Android 5, 5.1, 6.0 issue:
netty/netty#4764netty/netty#4718
Android 5 issue:
netty/netty#4116
Blocking behavior (Out Of Memory):
netty/netty#3904
Please, try out my application based on LittleProxy-mitm onto your phone:
https://ganskef.github.io/MoCuishle/
I don't understand why you use this client code instead of a client like
the LittleProxy-mitm Launcher class.
Regards Frank
Am 27.02.2016 um 03:02 schrieb karthikarunach:
Hi
Iam trying to port littleproxy-mitm to my Samsung Galaxy S5 android
phone. I had used below code configurations
1. LittleProxy-mitm latest release
2. io netty version - 4.0.34.Final
3. My client code looks like below
try {
// Create an SSLContext that uses our TrustManager
SSLContext context = SSLContext.getInstance("TLS");
TrustManager[] trustManagers = InsecureTrustManagerFactory.INSTANCE
.getTrustManagers();
context.init(null, trustManagers, null);
|// Tell the URLConnection to use a SocketFactory from our SSLContext URL
url = new URL("https://www.google.com"); HttpsURLConnection
urlConnection = (HttpsURLConnection)url. openConnection(new
Proxy(Proxy.Type.HTTP, new InetSocketAddress("127.0.0.1", 8888)));
//Updated littleproxy-mitim default proxy server to listen to port -
8888 urlConnection.setSSLSocketFactory(context.getSocketFactory());
urlConnection.connect(); } catch (Exception ex) { Log.e(TAG,"Failed to
establish SSL connection to server: "+ ex.toString()); } |
Error Faced - Iam getting a gateway timeout error..When i checked pcap
logs, client hello , server hello negotiations are happening. Also
observed that some fields in client hello request are not populated(like
Extension-Server). I included littleproxy-mitm pem as user trusted
certificate
Can you pls let me know if any additional configuration has to be
included to make it work on Android phone?
—
Reply to this email directly or view it on GitHub
8fb7c92#commitcomment-16367933.
The reason will be displayed to describe this comment to others. Learn more.
Hi Frank
Thx for your suggestion..
I used Netty 4.1.0.CR3 and bouncycastle 1.54 on my Samsung S5. But still iam getting the gateway timeout error. Is there any additional 3rd party library dependancy involved here?
The reason will be displayed to describe this comment to others. Learn more.
I've never used an URLConnection based client on Android. I'm using a Mozilla browser which provides the possibility to set the proxy settings and to import a pem file by an add-on.
You could try to set withAllowLocalOnly(false) in the Bootstrap and use the proxy with an external client.
I use logback-android-classic-1.1.1-2.jar, logback-android-core-1.1.1-2.jar to get log files.
8fb7c92There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Hi
Iam trying to port littleproxy-mitm to my Samsung Galaxy S5 android phone. I had used below code configurations
try {
// Create an SSLContext that uses our TrustManager
SSLContext context = SSLContext.getInstance("TLS");
TrustManager[] trustManagers = InsecureTrustManagerFactory.INSTANCE
.getTrustManagers();
context.init(null, trustManagers, null);
Error Faced - Iam getting a gateway timeout error..When i checked pcap logs, client hello , server hello negotiations are happening. Also observed that some fields in client hello request are not populated(like Extension-Server). I included littleproxy-mitm pem as user trusted certificate
Can you pls let me know if any additional configuration has to be included to make it work on Android phone?
8fb7c92There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
8fb7c92There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Hi Frank
Thx for your suggestion..
I used Netty 4.1.0.CR3 and bouncycastle 1.54 on my Samsung S5. But still iam getting the gateway timeout error. Is there any additional 3rd party library dependancy involved here?
Request sent out
CONNECT www.google.com:443 HTTP/1.1
Host: www.google.com
User-Agent: Dalvik/2.1.0 (Linux; U; Android 5.0; SM-G900I Build/LRX21T)
content-length: 0
Via: 1.1 localhost
Response Received
HTTP/1.1 504 Gateway Timeout
Content-Length: 15
Content-Type: text/html; charset=UTF-8
8fb7c92There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@karthikarunach it works for me with bcprov-jdk15on-1.51.jar, bcpkix-jdk15on-1.51.jar and Netty 4.1.0.CR3 on some Android 4 ... 6 devices.
Hmm, please answer:
8fb7c92There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I've never used an URLConnection based client on Android. I'm using a Mozilla browser which provides the possibility to set the proxy settings and to import a pem file by an add-on.
You could try to set
withAllowLocalOnly(false)in the Bootstrap and use the proxy with an external client.I use logback-android-classic-1.1.1-2.jar, logback-android-core-1.1.1-2.jar to get log files.