diff --git a/apps/i2ptunnel/java/src/net/i2p/i2ptunnel/TunnelController.java b/apps/i2ptunnel/java/src/net/i2p/i2ptunnel/TunnelController.java
index 4a6e85211f99aea2a0680a7a8bf2f5231f0b37fc..229a4b7d17032165416b45b33331e81ced4eabe8 100644
--- a/apps/i2ptunnel/java/src/net/i2p/i2ptunnel/TunnelController.java
+++ b/apps/i2ptunnel/java/src/net/i2p/i2ptunnel/TunnelController.java
@@ -24,6 +24,7 @@ import net.i2p.util.I2PAppThread;
import net.i2p.util.Log;
import net.i2p.util.SecureFile;
import net.i2p.util.SecureFileOutputStream;
+import net.i2p.util.SystemVersion;
/**
* Coordinate the runtime operation and configuration of a single I2PTunnel.
@@ -103,10 +104,17 @@ public class TunnelController implements Logging {
* This is guaranteed to be available.
* @since 0.9.17
*/
- public static final SigType PREFERRED_SIGTYPE = SigType.ECDSA_SHA256_P256.isAvailable() ?
- SigType.ECDSA_SHA256_P256 :
- SigType.DSA_SHA1;
-
+ public static final SigType PREFERRED_SIGTYPE;
+ static {
+ if (SystemVersion.isARM() || SystemVersion.isGNU() || SystemVersion.isAndroid()) {
+ if (SigType.ECDSA_SHA256_P256.isAvailable())
+ PREFERRED_SIGTYPE = SigType.ECDSA_SHA256_P256;
+ else
+ PREFERRED_SIGTYPE = SigType.DSA_SHA1;
+ } else {
+ PREFERRED_SIGTYPE = SigType.EdDSA_SHA512_Ed25519;
+ }
+ }
/**
* Create a new controller for a tunnel out of the specific config options.
@@ -185,8 +193,10 @@ public class TunnelController implements Logging {
if (backupDir.isDirectory() || backupDir.mkdir()) {
String name = b32 + '-' + I2PAppContext.getGlobalContext().clock().now() + ".dat";
File backup = new File(backupDir, name);
- if (FileUtil.copy(keyFile, backup, false, true))
+ if (FileUtil.copy(keyFile, backup, false, true)) {
+ SecureFileOutputStream.setPerms(backup);
log("Private key backup saved to " + backup.getAbsolutePath());
+ }
}
} catch (I2PException ie) {
if (_log.shouldLog(Log.ERROR))