passepartoutvpn
/
tunnelkit
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
718 Commits 1 Branch 58 Tags 3.2 MiB
Commit Graph

718 Commits

Author SHA1 Message Date
Davide De Rosa 59e2c04aea Fix a couple tests 2019-05-19 11:36:21 +02:00
Davide De Rosa 6a59ac6e45 Bump major version 2019-05-19 02:05:26 +02:00
Davide De Rosa a33bde75e7 Beautify copyrights 2019-05-17 11:10:48 +02:00
Davide De Rosa e4f60ddd3a Update GitHub URL in CHANGELOG 2019-05-14 11:17:18 +02:00
Davide De Rosa 05d12a22d1 Update CHANGELOG 2019-05-14 11:16:56 +02:00
Davide De Rosa f2a06b0b3c Update website URL 2019-05-14 11:06:50 +02:00
Davide De Rosa 713a46d817 Update GitHub URL 
Move to passepartoutvpn org.
 2019-05-14 10:58:47 +02:00
Davide De Rosa 7cbcfcd264 Fix condition for SOFT_RESET 
May receive multiple packets while handling in progress.
 2019-05-13 12:15:44 +02:00
Davide De Rosa d06b2e1928 Shut down if no default gateway 2019-05-11 17:40:46 +02:00
Davide De Rosa 5ce49953a0 Assume empty policies to override server settings 
Empty != nil. When nil, pull from server.
 2019-05-11 16:33:49 +02:00
Davide De Rosa 43c70b2673 Refine logging of some configuration 
Log about routing entries.
 2019-05-11 14:54:25 +02:00
Davide De Rosa 0a80dec3a7 Add static key encryption to unsupported 2019-05-09 10:18:31 +02:00
Davide De Rosa 977ff7e573
Merge pull request #98 from keeshux/customize-security-level 
Customize security level
 2019-05-09 10:18:04 +02:00
Davide De Rosa ff0dfc450c Get TLS security level via AppExtension 
Improves #97
 2019-05-08 16:16:30 +02:00
Davide De Rosa 3a136bdce9 Make TLS security level an option 
Default level by default.
 2019-05-08 16:10:35 +02:00
Davide De Rosa 82f0431303 Take optional securityLevel field in TLSBox 2019-05-08 15:54:05 +02:00
Davide De Rosa 97f178cdac Tolerate weak certificates 
Lower SSL security level.

Fixes #97
 2019-05-05 17:51:24 +02:00
Davide De Rosa 84a81ccd13
Merge pull request #96 from keeshux/block-local-network 
Block local network
 2019-05-05 17:48:57 +02:00
Davide De Rosa 273007cc59 Copy route.h from macOS 
Missing on iOS.
 2019-05-03 15:14:25 +02:00
Davide De Rosa a693075e90 Block LAN when redirect-gateway block-local 
Fixes #81
 2019-05-03 15:14:25 +02:00
Davide De Rosa 13cae06a49 Add method to partition a subnet 2019-05-03 15:14:25 +02:00
Davide De Rosa 03a1eb2203 Return IPv4 network mask for a route 2019-05-03 15:14:25 +02:00
Davide De Rosa 4295e63c98 Read relevant routing table 2019-05-03 15:14:25 +02:00
Davide De Rosa d44d08c95e Retain self weakly for shutdown on timeout 2019-05-02 13:13:43 +02:00
Davide De Rosa 705be661b0 Clarify README bit about proxy 2019-05-02 10:49:30 +02:00
Davide De Rosa 1430241b0c Do not fake BF-CBC, pleae 2019-05-01 23:18:54 +02:00
Davide De Rosa 037f08ed62 Retry auth once without local options 
Hack around picky server implementations.

Fixes #95
 2019-05-01 11:14:52 +02:00
Davide De Rosa 14b7f08fb5 Use strict ordering in local options 
And add TLS wrapping.
 2019-05-01 11:14:38 +02:00
Davide De Rosa 7389d72f1f Fix mutable SessionProxy.Configuration 2019-05-01 11:14:38 +02:00
Davide De Rosa edd15f661e Bump version 2019-05-01 11:14:38 +02:00
Davide De Rosa 2b41264e48 Set release date 2019-05-01 11:13:27 +02:00
Davide De Rosa 295d5fa713 Bump minor version 
Makes sense, lot of fixes.
 2019-04-28 16:23:38 +02:00
Davide De Rosa f799f47c25 Add direct routes to DNS servers 
If VPN is not default gateway.

Further fix of #94
 2019-04-28 15:51:16 +02:00
Davide De Rosa 0b72a30cdd Add full set of CloudFlare DNS servers 2019-04-28 10:56:39 +02:00
Davide De Rosa ebabf02eb5 Fix DNS in VPN when not default gateway 
Awful API requires .matchDomains = [""]

Fixes #94
 2019-04-28 10:39:55 +02:00
Davide De Rosa b331e3cfe6 Mask fallback DNS servers 
Comment about fallback DNS being public
 2019-04-28 10:39:25 +02:00
Davide De Rosa a4d6f94b7f Merge branch 'extend-redirect-gateway-flags' 2019-04-27 23:06:46 +02:00
Davide De Rosa 7978398e1e Fix logging of routing policies 2019-04-27 22:55:20 +02:00
Davide De Rosa 0ee39c8fb0 Extend handling of redirect-gateway flags 
- def1 (IPv4)
- ipv6 (IPv6)
- !ipv4 (IPv6 only)
 2019-04-27 22:55:20 +02:00
Davide De Rosa 155bd5f1e7 Revert def1 trick 
Not needed, routes are not persistent.

Revert 7d26323d3f
 2019-04-27 22:55:19 +02:00
Davide De Rosa 7d26323d3f Use OpenVPN trick to retain default gateway 
Override default gateway with 2 split routes.

- IPv4: 0.0.0.0/1, 128.0.0.0/1
- IPv6: 2000::/4, 3000::/4
 2019-04-27 22:29:51 +02:00
Davide De Rosa a047d2bdd5 Fix Demo 
- Update pods
- Prevent crash when no debug log available (#93)
 2019-04-27 22:29:15 +02:00
Davide De Rosa 3505f68b04 Revert DNS merge 
Revert 1d3660459e
 2019-04-27 18:25:08 +02:00
Davide De Rosa 53c393f2d7 Update CHANGELOG 
Fixes #91
 2019-04-27 18:24:48 +02:00
Davide De Rosa 56d05e17ae Update README 2019-04-27 13:54:14 +02:00
Davide De Rosa a48bcc7261 Decrypt generic EVP private key 
Why PKCS#8?
 2019-04-27 10:54:32 +02:00
Davide De Rosa e0c06ece18 Drop extra EVP_PKEY_free call 2019-04-27 10:44:08 +02:00
Davide De Rosa 212ef481dc Upgrade OpenSSL to 1.1.0j 2019-04-27 10:01:09 +02:00
Davide De Rosa 6fb409b112 Drop UDP packets on no buffer space available 
Tolerate only on data channel. Control channel should never reach
high speeds.

Fixes #87
 2019-04-25 17:29:10 +02:00
Davide De Rosa 4acf7f3b49 Merge branch 'improve-dns-fallback' 
Fixes #84
 2019-04-25 17:23:01 +02:00