Commit Graph

861 Commits

Author SHA1 Message Date
Davide De Rosa
1620fb0f99
Merge pull request #201 from passepartoutvpn/reference-passwords-in-app-group
Keychain: Use app group when dereferencing a password reference
2021-02-11 22:44:50 +01:00
Davide De Rosa
3ba63e9a88 Extend peer info with IV_PLAT_VER
Will then make them conditional based on --push-peer-info

See #202
2021-02-11 22:23:47 +01:00
Roopesh Chander
2b3eb5412c Keychain: Use app group when dereferencing a password reference
Co-authored-by: Davide De Rosa <keeshux@gmail.com>

Better retain access group every time keychain is written to or
read from, there is no good reason to omit it. Requires Keychain
method to be reverted to non-static.

Partially revert 4490f0c116, based
on wrong assumptions about password references.
2021-02-11 13:44:00 +01:00
Davide De Rosa
4114605520 Fix keychain method in Demo
Fixes #199
2021-02-02 09:03:18 +01:00
Davide De Rosa
8618b66900 Set release date 2021-01-28 10:43:54 +01:00
Davide De Rosa
1343fa592f Log time intervals better 2021-01-27 02:15:18 +01:00
Davide De Rosa
4490f0c116 Pick tunnel password reference from existing item
Assume that credentials already exist elsewhere for reuse as
password reference. Avoids a redundant keychain entry.
2021-01-27 01:28:27 +01:00
Jose Blaya
4b3f3dee5f
Check if cfg.sessionConfiguration.dnsServers is empty (#198) 2021-01-26 16:31:57 +01:00
Davide De Rosa
790ec276db Restrain DNS servers according to protocol
- Cleartext: pick any available
- HTTPS/TLS: only pick local servers, secure DNS may NEVER come
  from VPN server

Require for TLS, not for HTTPS (not even sure about their need).
2021-01-26 11:20:01 +01:00
Davide De Rosa
3abb7cbccc Fix up misleading log from condition in latest commit 2021-01-26 10:59:37 +01:00
Davide De Rosa
0f097d50af Fall back to network settings when no DNS servers
Rather than forcing CloudFlare (by default).

Fixes #197
2021-01-26 10:18:04 +01:00
Davide De Rosa
9567be7563
Merge pull request #196 from passepartoutvpn/secure-dns
DNS over HTTPS/TLS
2021-01-26 10:02:47 +01:00
Davide De Rosa
fd9d34b49c Print description of new DNS settings 2021-01-22 21:14:38 +01:00
Davide De Rosa
dd81ad7a99 Pick proper DNS settings according to protocol 2021-01-22 21:14:38 +01:00
Davide De Rosa
3c92e18c0e Add DNSProtocol 2021-01-22 21:14:38 +01:00
Davide De Rosa
e388842d37 Add fallback compression algorithm
Disabled.
2021-01-13 08:10:33 +01:00
Davide De Rosa
6beb303bcf Merge branch 'handle-data-ciphers' 2021-01-10 10:27:43 +01:00
Davide De Rosa
c15d6f521a Parse dataCiphersFallback as last resort
Prioritize over deprecate cipher.
2021-01-08 19:50:28 +01:00
Davide De Rosa
7ea088e4a1 Make peerInfo dynamic to add IV_CIPHERS
Fixes #193
2021-01-08 19:41:16 +01:00
Davide De Rosa
119d2f02e4 Add OpenVPN dataCiphers field 2021-01-08 19:26:20 +01:00
Davide De Rosa
e6a0622cc2 Bump version 2021-01-08 19:15:49 +01:00
Davide De Rosa
8e351f91b4 Set release date 2021-01-07 22:02:49 +01:00
Davide De Rosa
83202c6b6f Fix CI caching syntax 2021-01-07 21:52:04 +01:00
Davide De Rosa
c175ccf499 [ci skip] Fix instructions about Testing/Demo 2021-01-07 21:50:17 +01:00
Davide De Rosa
2886222cd6 Merge branch 'reorganize-project' 2021-01-03 19:47:31 +01:00
Davide De Rosa
f2d2d1936b Upgrade Xcode project 2021-01-03 19:47:25 +01:00
Davide De Rosa
f4cc06adfd Bump copyright 2021-01-03 19:47:25 +01:00
Davide De Rosa
e1b3ad8d3e Specify only appex API 2021-01-03 19:47:25 +01:00
Davide De Rosa
80472a6cd3 Move Demo into main project 2021-01-03 19:47:25 +01:00
Davide De Rosa
4670a5e634 Reorganize files hierarchy 2021-01-03 19:47:25 +01:00
Davide De Rosa
13af9338ae Share some resources across targets 2021-01-03 19:47:25 +01:00
Davide De Rosa
1bf6c9084a
Merge pull request #194 from passepartoutvpn/refactor-provider-configuration
Refactor internal provider configuration
2021-01-03 19:47:13 +01:00
Davide De Rosa
c4b86506cf Update Demo and metadata 2021-01-03 17:47:48 +01:00
Davide De Rosa
744257ea9f Adjust tests to new configuration hierarchy 2021-01-03 12:05:31 +01:00
Davide De Rosa
80d99cab6c Refactor legacy parsing of provider configuration
Leverage Codable implementation of OpenVPN*.Configuration
2021-01-03 10:47:06 +01:00
Davide De Rosa
6077f51acb Bump version 2021-01-03 01:00:51 +01:00
Davide De Rosa
3c2ed00c90 Set release date 2020-12-28 17:50:22 +01:00
Davide De Rosa
09886787b7 Update OpenSSL 2020-12-28 17:41:04 +01:00
Davide De Rosa
c64cb79bfe Update Demo and tests 2020-12-28 16:34:26 +01:00
Davide De Rosa
33bc533da2 Merge branch 'customize-mtu' 2020-12-28 16:27:55 +01:00
Davide De Rosa
e923382c81 Default to unspecified MTU
Hardcode control channel packets to 1000 bytes.
2020-12-28 16:04:15 +01:00
Davide De Rosa
1966143fe9 Parse MTU from --tun-mtu 2020-12-28 13:07:19 +01:00
Davide De Rosa
6cb04da05d Add MTU to OpenVPN layer 2020-12-28 13:02:09 +01:00
Davide De Rosa
e3ce38e47e Remove MTU from AppExtension layer 2020-12-27 22:51:58 +01:00
Davide De Rosa
ba3ead13a3 Update copyright 2020-12-27 17:29:39 +01:00
Davide De Rosa
663cab34c9 Centralize reconnection delay 2020-12-20 19:43:23 +01:00
Davide De Rosa
341e0e3ba8
Merge pull request #192 from passepartoutvpn/refactor-keychain-access
Refactor keychain access
2020-12-20 19:35:02 +01:00
Davide De Rosa
304d0215b6 Use keychain service as item context
Primary key = (context, username)
2020-12-20 10:57:06 +01:00
Davide De Rosa
4a5bc92fcb Remove password inside try/catch 2020-12-18 19:11:52 +01:00
Davide De Rosa
ecb2c951a8 Handle keychain cancelation
E.g. stop on "Deny" button.
2020-12-18 19:11:52 +01:00