17426e4621
Merge branch 'split-core-openvpn'
2019-05-19 12:40:05 +02:00
930f05c984
Move OpenVPN timeouts out of Core
2019-05-19 12:39:51 +02:00
5b81aa6a78
Drop "Box" from error codes
2019-05-19 12:22:32 +02:00
ee4a446fa5
Add new OpenVPN subspec
...
- AppExtension will need to be protocol-agnostic
- Adjust Errors.h access in LZO subspec
Fixes "umbrella header for module 'xxx' does not include header".
2019-05-19 12:22:32 +02:00
9da7fa9667
Split Core into Core+OpenVPN
...
Two Obj-C modules:
- __TunnelKitCore
- __TunnelKitOpenVPN
Seems the only way to do it in multiple module maps.
Move OpenVPN specifics out of CoreConfiguration.
2019-05-19 12:22:32 +02:00
491092f2a3
Drop extra header lines
2019-05-19 12:21:44 +02:00
21b67fd9ff
Make CoreConfiguration a class for bundle lookup
2019-05-19 11:36:26 +02:00
470c50b037
Return just <masked> when masked description
...
Why bother with useless hashes?
2019-05-19 11:36:26 +02:00
d19e029131
Use guard
2019-05-19 11:36:26 +02:00
59e2c04aea
Fix a couple tests
2019-05-19 11:36:21 +02:00
6a59ac6e45
Bump major version
2019-05-19 02:05:26 +02:00
a33bde75e7
Beautify copyrights
2019-05-17 11:10:48 +02:00
e4f60ddd3a
Update GitHub URL in CHANGELOG
2019-05-14 11:17:18 +02:00
05d12a22d1
Update CHANGELOG
2019-05-14 11:16:56 +02:00
f2a06b0b3c
Update website URL
2019-05-14 11:06:50 +02:00
713a46d817
Update GitHub URL
...
Move to passepartoutvpn org.
2019-05-14 10:58:47 +02:00
7cbcfcd264
Fix condition for SOFT_RESET
...
May receive multiple packets while handling in progress.
2019-05-13 12:15:44 +02:00
d06b2e1928
Shut down if no default gateway
2019-05-11 17:40:46 +02:00
5ce49953a0
Assume empty policies to override server settings
...
Empty != nil. When nil, pull from server.
2019-05-11 16:33:49 +02:00
43c70b2673
Refine logging of some configuration
...
Log about routing entries.
2019-05-11 14:54:25 +02:00
0a80dec3a7
Add static key encryption to unsupported
2019-05-09 10:18:31 +02:00
977ff7e573
Merge pull request #98 from keeshux/customize-security-level
...
Customize security level
2019-05-09 10:18:04 +02:00
ff0dfc450c
Get TLS security level via AppExtension
...
Improves #97
2019-05-08 16:16:30 +02:00
3a136bdce9
Make TLS security level an option
...
Default level by default.
2019-05-08 16:10:35 +02:00
82f0431303
Take optional securityLevel field in TLSBox
2019-05-08 15:54:05 +02:00
97f178cdac
Tolerate weak certificates
...
Lower SSL security level.
Fixes #97
2019-05-05 17:51:24 +02:00
84a81ccd13
Merge pull request #96 from keeshux/block-local-network
...
Block local network
2019-05-05 17:48:57 +02:00
273007cc59
Copy route.h from macOS
...
Missing on iOS.
2019-05-03 15:14:25 +02:00
a693075e90
Block LAN when redirect-gateway block-local
...
Fixes #81
2019-05-03 15:14:25 +02:00
13cae06a49
Add method to partition a subnet
2019-05-03 15:14:25 +02:00
03a1eb2203
Return IPv4 network mask for a route
2019-05-03 15:14:25 +02:00
4295e63c98
Read relevant routing table
2019-05-03 15:14:25 +02:00
d44d08c95e
Retain self weakly for shutdown on timeout
2019-05-02 13:13:43 +02:00
705be661b0
Clarify README bit about proxy
2019-05-02 10:49:30 +02:00
1430241b0c
Do not fake BF-CBC, pleae
2019-05-01 23:18:54 +02:00
037f08ed62
Retry auth once without local options
...
Hack around picky server implementations.
Fixes #95
2019-05-01 11:14:52 +02:00
14b7f08fb5
Use strict ordering in local options
...
And add TLS wrapping.
2019-05-01 11:14:38 +02:00
7389d72f1f
Fix mutable SessionProxy.Configuration
2019-05-01 11:14:38 +02:00
edd15f661e
Bump version
2019-05-01 11:14:38 +02:00
2b41264e48
Set release date
2019-05-01 11:13:27 +02:00
295d5fa713
Bump minor version
...
Makes sense, lot of fixes.
2019-04-28 16:23:38 +02:00
f799f47c25
Add direct routes to DNS servers
...
If VPN is not default gateway.
Further fix of #94
2019-04-28 15:51:16 +02:00
0b72a30cdd
Add full set of CloudFlare DNS servers
2019-04-28 10:56:39 +02:00
ebabf02eb5
Fix DNS in VPN when not default gateway
...
Awful API requires .matchDomains = [""]
Fixes #94
2019-04-28 10:39:55 +02:00
b331e3cfe6
Mask fallback DNS servers
...
Comment about fallback DNS being public
2019-04-28 10:39:25 +02:00
a4d6f94b7f
Merge branch 'extend-redirect-gateway-flags'
2019-04-27 23:06:46 +02:00
7978398e1e
Fix logging of routing policies
2019-04-27 22:55:20 +02:00
0ee39c8fb0
Extend handling of redirect-gateway flags
...
- def1 (IPv4)
- ipv6 (IPv6)
- !ipv4 (IPv6 only)
2019-04-27 22:55:20 +02:00
155bd5f1e7
Revert def1 trick
...
Not needed, routes are not persistent.
Revert 7d26323d3f
2019-04-27 22:55:19 +02:00
7d26323d3f
Use OpenVPN trick to retain default gateway
...
Override default gateway with 2 split routes.
- IPv4: 0.0.0.0/1, 128.0.0.0/1
- IPv6: 2000::/4, 3000::/4
2019-04-27 22:29:51 +02:00
Davide De Rosa