Davide De Rosa
9095ea250e
Address concerns from Guido Vranken fuzzers ( #141 )
...
* 002: Assert return value of snprintf/getnameinfo
* 003: Address OOB reads on decrypted data
* 004: Handle boundary prefixes in .partitioned()
* 005: Fix OOB read in matchesDestination()
* 006: Fix parsing in netname6()
* 007: Fix incorrect use of sizeof()
* 008: Add safety checks in MSSFix()
* 009: Fix bad usage of minilzo calls
* Add checks after RoutingTableEntryAddress4/6
2020-05-16 15:10:07 +02:00
Davide De Rosa
1749eb3ff1
Update podspec email
2020-05-13 13:53:40 +02:00
Davide De Rosa
78da6f16d9
Add GitHub Sponsors
2020-05-13 08:31:59 +02:00
Davide De Rosa
2619036961
Set release date
2020-05-12 15:13:10 +02:00
Davide De Rosa
6c05d2b544
Bump version
2020-05-12 15:10:44 +02:00
Davide De Rosa
6993372e18
Merge branch 'revert-ip-header-parsing'
2020-05-12 15:10:40 +02:00
Davide De Rosa
01554713b8
Move IP header logic to separate struct
2020-05-12 13:07:09 +02:00
Davide De Rosa
f1a28a8d32
Revert to more efficient ternary op in IP header
...
See #169 and 753927f36b
2020-05-12 12:59:33 +02:00
Davide De Rosa
05a55bec4f
Add copyright to README
2020-05-11 09:53:09 +02:00
Davide De Rosa
fe697c2c56
Update CHANGELOG
...
And fix year of recent releases (was 2019).
2020-05-10 11:33:37 +02:00
Davide De Rosa
5285ba7aa8
Set reasserting to false if canRebindLink()
...
Code is currently disabled (canRebindLink() is hardcoded to false),
still it's good to stay consistent with semantics of
reasserting = false, i.e. "connection has become active again".
2020-05-09 15:01:11 +02:00
Davide De Rosa
0d4fc503ec
Update CHANGELOG
2020-05-09 12:12:27 +02:00
Davide De Rosa
9b82d7f9ec
Evaluate reconnection without touching reasserting
...
Use a different variable to signal an upcoming reconnection. Make
sure that reasserting is never set to false with the meaning of
"do not reconnect", because doing so would trigger a transient
"connected" state in the VPN.
Reverts use of cancelTunnelWithError() in sessionDidStop.
2020-05-09 12:09:03 +02:00
Davide De Rosa
93c24a96cf
Refactor with an error parameter in sessionDidStop
...
Both versions prevent clients from compiling, but this version
impacts less on existing codebase.
2020-05-09 12:09:03 +02:00
Robert Patchett
1cd00f9459
Call cancelTunnelWithError(_:) if a connection fails and won't be retried
2020-05-09 12:09:03 +02:00
Davide De Rosa
12ba6f34b7
Embed TunnelKit in test host target
...
Fix "Reason: image not found" dyld error.
2020-05-09 09:50:27 +02:00
Davide De Rosa
77e6c4d305
Add development team to test targets
2020-05-09 09:33:44 +02:00
Jose Blaya
c22bfb3edd
Set MTU value in Tunnel settings
2020-05-09 01:09:20 +02:00
Jaroslav_
1ceeb8ddbb
SAN host check ( #168 )
...
* Check if host is present in certificates SAN list
* Save .tlsServerHost error as .tlsServerVerification into last error
Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-09 00:02:16 +02:00
Davide De Rosa
56eda2720e
Fix CHANGELOG format
2020-05-08 23:50:03 +02:00
Davide De Rosa
60213bafb8
Fix and improve #169
...
- Use constants
- Check packet length for OOB read
- Replace assertion with logging
2020-05-08 21:01:36 +02:00
Davide De Rosa
aa580240b8
Merge pull request #169 from roop/mojave-ipv4-and-ipv6
...
Fix how NETunnelInterface handles IP protocol number
2020-05-08 20:19:16 +02:00
Roopesh Chander
753927f36b
Fix how NETunnelInterface handles IP protocol number
...
The IP protocol number passed to NEPacketTunnelFlow is determined per
packet based on the IP header, instead of determining it based on
whether IPv6 settings are available or not.
2020-05-06 09:37:24 +05:30
Davide De Rosa
09f4f28fc9
Prepend license with copyright notice
2020-05-05 14:09:19 +02:00
Davide De Rosa
7719e8d72c
Bump version
2020-05-03 12:03:08 +02:00
Davide De Rosa
15e215dc4d
Replace Patreon with PayPal
2020-04-30 13:49:35 +02:00
Davide De Rosa
60e6bcdba8
Update OpenSSL to 1.1.1g
...
Fixes #166
2020-04-21 22:03:08 +02:00
Davide De Rosa
6ebc1b4623
Bump version
2020-04-21 22:01:22 +02:00
Davide De Rosa
7ba022527c
Update CHANGELOG and README
2020-04-19 02:33:44 +02:00
Davide De Rosa
b4c0c8ca1b
Bump OpenSSL in podspec
2020-04-19 02:24:47 +02:00
Davide De Rosa
735c1fd7fd
Update CHANGELOG
2020-04-18 17:11:39 +02:00
Davide De Rosa
106eeb4715
Update pods
...
Fixes #164 , #165
2020-04-18 17:07:49 +02:00
Davide De Rosa
0fa5c22619
Update bundle
2020-04-18 17:02:24 +02:00
Davide De Rosa
d24fe30c7e
Update CHANGELOG
2020-04-15 11:22:54 +02:00
Davide De Rosa
d74a7bf637
Merge pull request #162 from johankool/feature/mojave
...
Mitigate IP traffic breaking on Mojave
2020-04-15 11:21:18 +02:00
Davide De Rosa
a35636b1b1
Merge pull request #163 from passepartoutvpn/enforce-ipv4-ipv6-resolution
...
Enforce IPv4/6 endpoints
2020-04-15 11:13:31 +02:00
Davide De Rosa
e8f3d74894
Update CHANGELOG
...
Fixes #153
2020-04-14 22:57:23 +02:00
Davide De Rosa
4bdf6b7006
Redefine endpoint strategy according to IPv4/6
2020-04-14 22:57:23 +02:00
Davide De Rosa
40eb98fd72
Return IP version-aware records from DNSResolver
...
FIXME: compilation errors in ConnectionStrategy and related.
2020-04-14 22:57:08 +02:00
Davide De Rosa
6f235e9ea2
Handle IPv4/IPv6 variants in SocketType
2020-04-14 21:54:21 +02:00
Davide De Rosa
c7595ed295
Rewrite IPv4-to-String conversion
...
Flaky Swift pointer API.
2020-04-14 21:54:19 +02:00
Davide De Rosa
af9f7f8165
Update CHANGELOG
2020-04-13 17:53:10 +02:00
Davide De Rosa
abe5922269
Merge pull request #161 from johankool/feature/connecting
...
Continue instead of early return on unknown key id
2020-04-13 12:20:46 +02:00
Johan Kool
78e332d48b
Force IPv4 on Mojave otherwise it breaks
2020-04-10 13:37:15 +02:00
Johan Kool
ffe7fc0a0a
Continue instead of early return on unknown key id
2020-04-10 13:35:12 +02:00
Davide De Rosa
e606a261f4
Merge branch 'xcode-warnings'
2020-04-05 17:30:40 +02:00
Davide De Rosa
deff855bbc
Fix pointers to local buffers
2020-04-05 17:30:17 +02:00
Davide De Rosa
a02857fdb9
Drop unused variable
2020-04-05 17:16:55 +02:00
Davide De Rosa
ccd9e58062
Merge branch 'handle-server-restart'
2020-04-05 17:09:59 +02:00
Davide De Rosa
8825a4e9c8
Update CHANGELOG
2020-02-29 19:26:43 +01:00