27 Commits (c14650010ebc758f54ff5eb26b67f9756e980826)

Author SHA1 Message Date
Alessandro Astone c14650010e A13 houdini 3 weeks ago
Maciej Krüger c5110830f7
Add fdroidpriv for installing f-droid privleged extension 2 years ago
Claudia b1c88db1ce
Feature: install self-signed cacert to trust store
For analysis and reverse engineering, it can be helpful to insert a
custom CA certificate into Waydroid’s system-wide trust store.
Users used to be able to do that via Android’s settings but not anymore.

The `install mitm` command accepts a path to a file that contains a
– typically self-signed – CA certificate in PEM format.
It then renames [1] and copies the file into the overlay file system,
placing it into Waydroid’s trust store.

As a usage example, the following command lines enable your host to use
mitmproxy [2] to act as a proxy and to intercept [3] HTTP(S) connections
that come from the Waydroid container:

```sh
$ timeout --preserve-status 2 mitmdump -n                           # creates a CA cert in ~/.mitmproxy
$ sudo venv/bin/python3 main.py install mitm --ca-cert ~/.mitmproxy/mitmproxy-ca-cert.pem
INFO: Creating directory: /system/etc/security/cacerts
INFO: Copying /home/yourname/.mitmproxy/mitmproxy-ca-cert.pem to system trust store
INFO: Target file: /system/etc/security/cacerts/6320a7db.0
INFO: mitm installation finished
$ sudo waydroid shell -- ls -l /system/etc/security/cacerts         # double-check that it worked
[…]
-rw-r--r-- 1 root root 1191 2024-01-01 00:00 6320a7db.0
[…]
$ adb shell settings put global http_proxy ${YOUR_IP_HERE?}:3128    # tell Waydroid to use the proxy
                                                                    #     for all connections
$ mitmproxy -p 3128                                                 # start proxy and display a TUI
                                                                    #     with HTTP(S) connections
                                                                    #     coming from Waydroid
```

[1]: https://docs.mitmproxy.org/stable/howto-install-system-trusted-ca-android/#2-rename-certificate

[2]: https://mitmproxy.org/

[3]: https://docs.mitmproxy.org/stable/mitmproxytutorial-interceptrequests/
2 years ago
Rikka e1ee7f0b0c
Fix capitalization of MicroG and update nodataperm 2 years ago
ayasa520 337d066eeb
fix(microg): typos 2 years ago
Rikka cb206cc8c0
libndk: fix libndk parameter 2 years ago
Rikka 910291ceb9
libndk: match the correct version of libndk 2 years ago
Rikka 4777296b34
smartdock: download from fdroid 2 years ago
Rikka cb9d2b4726
update: README.md 2 years ago
Rikka 0ab4b1c0f7
fix: ndk translation prop 2 years ago
Rikka 7fcfe62e66
Fix typing errors 2 years ago
Rikka 3900328b83
Add interactive command line interface 2 years ago
Rikka 48ea54fc3e
refactor 2 years ago
Rikka 6922bdba0d
microg: use MinMicroG 2 years ago
Rikka c48b1df5cd
support a13 image 2 years ago
Rikka d72bf018d1
Execute commands on waydroid shell with pipes 2 years ago
Rikka 53a4bad536
Add: hide status bar 2 years ago
Rikka 0d7681bccb
add uninstall function 2 years ago
Rikka 0bc2cedc2d
add microG 2 years ago
Rikka fa9e89e868
HACK: granting full permission for apps data 2 years ago
Rikka dbf630ba7e
update smartdock 2 years ago
Rikka 59ad317684
install smart dock 2 years ago
Casu Al Snek 4f6410c3bb
Merge pull request #84 from tutacat/patch-5
Allow CLI help without root
2 years ago
cobalt2727 545e733566
fix widevine typo 2 years ago
tutacat 771b8d7224
Allow CLI help without root
Move helper.check_root to after argparse runs, so it can display the help without needing root.
2 years ago
Rikka 62749bbb8e
Refuse to install arm translation on x86 2 years ago
Rikka df46ba8fed
Refactor: Split into multiple small scripts 2 years ago