android: Use %any as AAA identity, but disable EAP-only authentication
authorTobias Brunner <tobias@strongswan.org>
Tue, 21 Oct 2014 16:28:24 +0000 (18:28 +0200)
committerTobias Brunner <tobias@strongswan.org>
Thu, 6 Nov 2014 15:28:40 +0000 (16:28 +0100)
commit0e44999867d746123329a132ceea7e25942ce3d8
treeab242f5dc2c71e607fd10d96f0c420706b1718b8
parent4b39a4117a5f8a7515ff2130f784b9f378e79120
android: Use %any as AAA identity, but disable EAP-only authentication

Without verification of the identity we can't prevent a malicious user
with a valid certificate from impersonating the AAA server and thus the
VPN gateway.  So unless we make the AAA identity configurable we have to
prevent EAP-only authentication.
src/frontends/android/jni/libandroidbridge/backend/android_service.c