Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Location: moving WiFi location needs INTERNET permission #2820

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Location: moving WiFi location needs INTERNET permission #2820

wants to merge 1 commit into from

Conversation

TimoWilken
Copy link

Hopefully, this will fix #2704.

@ale5000-git
Copy link
Member

@TimoWilken

Isn't it already fixed by this? fbd84a1

@TimoWilken
Copy link
Author

Thanks @ale5000-git! I can try to test that the next time I'm on a German train, in a couple weeks' time.

Though I don't have a proxy configured on my phone (only a WireGuard VPN, but that only applies to 10.0.0.* IPs), and I did have network access through the in-train WiFi. The error in #2704 looks to me like it comes from a lower level than TLS/connection errors, but I'm not an Android developer.

@ale5000-git
Copy link
Member

ale5000-git commented Mar 16, 2025
edited
Loading

In the commit description:

Bypass ... and disable OCSP/CRL checks
...
OCSP/CRL might be impossible to resolve if in the hotspot no internet is available (e.g. in planes that have IFE without internet).

This is related to the https connection, maybe this was the problem.

@TimoWilken
Copy link
Author

I'm not sure, because in my case, the hotspot did have internet available, so GmsCore should've been able to query OCSP and/or fetch CRLs.

To my untrained eye, it doesn't get as far as trying to set up an HTTPS connection, because the EPERM happens when setting up the socket.

But anyway, I'll try to test the latest version in two weeks' time.

@ale5000-git
Copy link
Member

ale5000-git commented Mar 16, 2025
edited
Loading

@mar-v-in
I'm not sure about this but maybe we still need the internet permission.

Info: https://developer.android.com/privacy-and-security/local-network-permission?hl=en
Quote:

Devices on a LAN can be accessed by any app that has the INTERNET permission

Quote:

If a device's DNS server is on a local network, traffic to / from it (at port 53) doesn't require local network access permission.

So if DNS isn't local we can't access it.

In Android 16+ we probably also need "local network access permission".

Quote:

Traffic originating from Android Webviews that require local network access will inherit permission state from the host app

@mar-v-in
Copy link
Member

The INTERNET permission is already granted to microG from other manifests, so this PR does not actually change the resulting .apk and will not solve the issue. Regarding the underlying issue, see #2704 (comment)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Crash while fetching network location from WIFIonICE moving wifi network
3 participants
@TimoWilken @ale5000-git @mar-v-in