tunnelkit

Author	SHA1	Message	Date
Davide De Rosa	dcac7cb2d4	Fix hidden IPv4Settings fields	2019-10-23 10:55:37 +02:00
Davide De Rosa	d22f40f7e9	Fix potential OOB in memcmp()	2019-09-17 23:41:35 +02:00
Davide De Rosa	d815f5222f	Change var to let Xcode no more signals wrong side-effect in withUnsafeBytes.	2019-09-17 16:09:09 +02:00
Davide De Rosa	eb56a9a56c	Optimize [Data].flatCount	2019-06-05 14:14:15 +02:00
Davide De Rosa	2ddf712176	Update jazzy YAML	2019-05-24 16:04:19 +02:00
Davide De Rosa	21eee24e7c	Add missing documentation	2019-05-24 16:02:06 +02:00
Davide De Rosa	72ce14b676	Make AppExtension entities public	2019-05-24 16:02:06 +02:00
Davide De Rosa	9445b825d0	Make AppExtension generic - Make AppExtension a standalone util subspec - Move OpenVPN tunnel provider to OpenVPN subspec - Move Utils to Core subspec - Depend OpenVPN on Core + AppExtension	2019-05-24 10:41:26 +02:00
Davide De Rosa	6ebf025859	Take Session protocol out of OpenVPNSession Fix some doc.	2019-05-19 15:08:43 +02:00
Davide De Rosa	313d076ddf	Move Error extension to Core	2019-05-19 14:34:27 +02:00
Davide De Rosa	50d492096f	Move a few generic entities to Core - IPv4Settings - IPv6Settings - Proxy - EndpointProtocol (Codable)	2019-05-19 12:40:20 +02:00
Davide De Rosa	930f05c984	Move OpenVPN timeouts out of Core	2019-05-19 12:39:51 +02:00
Davide De Rosa	5b81aa6a78	Drop "Box" from error codes	2019-05-19 12:22:32 +02:00
Davide De Rosa	9da7fa9667	Split Core into Core+OpenVPN Two Obj-C modules: - __TunnelKitCore - __TunnelKitOpenVPN Seems the only way to do it in multiple module maps. Move OpenVPN specifics out of CoreConfiguration.	2019-05-19 12:22:32 +02:00
Davide De Rosa	491092f2a3	Drop extra header lines	2019-05-19 12:21:44 +02:00
Davide De Rosa	21b67fd9ff	Make CoreConfiguration a class for bundle lookup	2019-05-19 11:36:26 +02:00
Davide De Rosa	470c50b037	Return just <masked> when masked description Why bother with useless hashes?	2019-05-19 11:36:26 +02:00
Davide De Rosa	d19e029131	Use guard	2019-05-19 11:36:26 +02:00
Davide De Rosa	713a46d817	Update GitHub URL Move to passepartoutvpn org.	2019-05-14 10:58:47 +02:00
Davide De Rosa	7cbcfcd264	Fix condition for SOFT_RESET May receive multiple packets while handling in progress.	2019-05-13 12:15:44 +02:00
Davide De Rosa	3a136bdce9	Make TLS security level an option Default level by default.	2019-05-08 16:10:35 +02:00
Davide De Rosa	82f0431303	Take optional securityLevel field in TLSBox	2019-05-08 15:54:05 +02:00
Davide De Rosa	97f178cdac	Tolerate weak certificates Lower SSL security level. Fixes #97	2019-05-05 17:51:24 +02:00
Davide De Rosa	273007cc59	Copy route.h from macOS Missing on iOS.	2019-05-03 15:14:25 +02:00
Davide De Rosa	a693075e90	Block LAN when redirect-gateway block-local Fixes #81	2019-05-03 15:14:25 +02:00
Davide De Rosa	13cae06a49	Add method to partition a subnet	2019-05-03 15:14:25 +02:00
Davide De Rosa	03a1eb2203	Return IPv4 network mask for a route	2019-05-03 15:14:25 +02:00
Davide De Rosa	4295e63c98	Read relevant routing table	2019-05-03 15:14:25 +02:00
Davide De Rosa	1430241b0c	Do not fake BF-CBC, pleae	2019-05-01 23:18:54 +02:00
Davide De Rosa	037f08ed62	Retry auth once without local options Hack around picky server implementations. Fixes #95	2019-05-01 11:14:52 +02:00
Davide De Rosa	14b7f08fb5	Use strict ordering in local options And add TLS wrapping.	2019-05-01 11:14:38 +02:00
Davide De Rosa	7389d72f1f	Fix mutable SessionProxy.Configuration	2019-05-01 11:14:38 +02:00
Davide De Rosa	0ee39c8fb0	Extend handling of redirect-gateway flags - def1 (IPv4) - ipv6 (IPv6) - !ipv4 (IPv6 only)	2019-04-27 22:55:20 +02:00
Davide De Rosa	a48bcc7261	Decrypt generic EVP private key Why PKCS#8?	2019-04-27 10:54:32 +02:00
Davide De Rosa	e0c06ece18	Drop extra EVP_PKEY_free call	2019-04-27 10:44:08 +02:00
Davide De Rosa	6fb409b112	Drop UDP packets on no buffer space available Tolerate only on data channel. Control channel should never reach high speeds. Fixes #87	2019-04-25 17:29:10 +02:00
Davide De Rosa	31d9019f1a	Read system-wide DNS servers Add libresolv to podspec.	2019-04-25 16:36:16 +02:00
Davide De Rosa	f9f642b64e	Set as default gateway based on routing policies Also fix IPv6 routes not properly set.	2019-04-25 14:39:40 +02:00
Davide De Rosa	224a76ac58	Parse --redirect-gateway from configuration FIXME: for now only redirects ALL traffic when the option is found in the configuration file, whatever the arguments. Also drop unnecessary base options in tests as everything was made optional recently.	2019-04-25 14:39:23 +02:00
Davide De Rosa	1b8647bcac	Convert PacketSteram to Obj-C For better TCP efficiency.	2019-04-25 12:42:29 +02:00
Davide De Rosa	ef5180a4ed	Set tls-auth/crypt timestamp once Packets rejected due to replay protection. Fixes #88 Fixes #61	2019-04-23 23:07:32 +02:00
Davide De Rosa	65af163aeb	Do not resend non-acked packets if reliable In control channel.	2019-04-23 23:06:39 +02:00
Davide De Rosa	707db2c6de	Add keydir to local options	2019-04-20 17:20:45 +02:00
Davide De Rosa	9b8be02c2a	Shut down when no IPv4/6 routing available Would fake-connect without VPN icon otherwise.	2019-04-19 09:45:15 +02:00
Davide De Rosa	c565e32dcd	Add "dev-type tun" to local options Plus other hardcoded options like key-method and tls-client. Seems that older OpenVPN servers didn't send routing info in PUSH_REPLY if dev-type is not specified explicitly. Fixes #86	2019-04-18 13:10:57 +02:00
Davide De Rosa	887e2ae55d	Consider stale if HARD_RESET while connected Was disconnecting when more than one HARD_RESET_SERVER was received during negotiation.	2019-04-17 09:24:16 +02:00
Davide De Rosa	28fd80f4e0	Treat empty DNS servers as nil Empty local DNS array was pretty much hiding server-pushed DNS.	2019-04-17 00:50:53 +02:00
Davide De Rosa	6fd6d228bf	Loop pulling plain text from TLS There might be more data to read. Fixes #71, #73	2019-04-17 00:18:02 +02:00
Davide De Rosa	88cd62064a	Handle continuation in PUSH_REPLY	2019-04-16 23:59:56 +02:00
Davide De Rosa	380ac2beac	Throw to exit PUSH_REPLY parsing on continuation	2019-04-16 23:59:56 +02:00

1 2 3 4 5 ...

263 Commits