Mirror only. Official repository is at https://git.zx2c4.com/wireguard-apple
Go to file
Jason A. Donenfeld 20bdf46792 Kit: PacketTunnelSettingsGenerator: do not require DNS queries if no DNS
Prior, we would set matchDomains=[""] even if the user didn't provide
any DNS servers. This was kind of incoherent, but I guess we had in mind
some kind of non-sensical leakproof scheme that never really worked
anyway. NetworkExtension didn't like this, so setTunnelNetworkSettings
would, rather than return an error, simply timeout and never call its
callback function. But everything worked fine, so we had code in the UI
to check to make sure everything was okay after 5 seconds or so of no
callback. Recent changes made the timeout fatal on the network extension
side, so rather than succeed, configs with no DNS server started
erroring out, causing user reports.

This commit attempts to handle the root cause of the timeout issue by
not twiddling with DNS settings if no DNS server was specified. For now,
however, it leaves the hard-timeout semantics in place.

Reported-by: Filipe Mendonça <cfilipem@gmail.com>
Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
2020-12-17 00:10:28 +01:00
Sources Kit: PacketTunnelSettingsGenerator: do not require DNS queries if no DNS 2020-12-17 00:10:28 +01:00
WireGuard.xcodeproj WireGuardApp: modify xcodeproj when syncing translations 2020-12-11 12:39:43 +01:00
.gitignore Fix paths pointing to xcconfigs 2020-12-03 13:32:25 +01:00
.swiftlint.yml global: fix remaining swiftlint violations 2020-12-09 14:35:21 +01:00
COPYING global: bump year in header 2020-12-04 12:15:29 +01:00
MOBILECONFIG.md Update repo urls 2019-12-30 11:54:13 +01:00
Package.swift WireGuardKit: Rename WireGuardKitSwift -> WireGuardKit 2020-12-03 13:32:25 +01:00
README.md WireGuardKitGo: rebase boottime patch onto Go 1.15.6 2020-12-09 14:08:45 +01:00
sync-translations.sh WireGuardApp: modify xcodeproj when syncing translations 2020-12-11 12:39:43 +01:00

WireGuard for iOS and macOS

This project contains an application for iOS and for macOS, as well as many components shared between the two of them. You may toggle between the two platforms by selecting the target from within Xcode.

Building

  • Clone this repo:
$ git clone https://git.zx2c4.com/wireguard-apple
$ cd wireguard-apple
  • Rename and populate developer team ID file:
$ cp Sources/WireGuardApp/Config/Developer.xcconfig.template Sources/WireGuardApp/Config/Developer.xcconfig
$ vim Sources/WireGuardApp/Config/Developer.xcconfig
  • Install swiftlint and go 1.15:
$ brew install swiftlint go
  • Open project in Xcode:
$ open WireGuard.xcodeproj
  • Flip switches, press buttons, and make whirling noises until Xcode builds it.

WireGuardKit integration

  1. Open your Xcode project and add the Swift package with the following URL:

    https://git.zx2c4.com/wireguard-apple
    
  2. WireGuardKit links against wireguard-go-bridge library, but it cannot build it automatically due to Swift package manager limitations. So it needs a little help from a developer. Please follow the instructions below to create a build target(s) for wireguard-go-bridge.

    • In Xcode, click File -> New -> Target. Switch to "Other" tab and choose "External Build System".

    • Type in WireGuardGoBridge<PLATFORM> under the "Product name", replacing the <PLATFORM> placeholder with the name of the platform. For example, when targeting macOS use macOS, or when targeting iOS use iOS. Make sure the build tool is set to: /usr/bin/make (default).

    • In the appeared "Info" tab of a newly created target, type in the "Directory" path under the "External Build Tool Configuration":

      $BUILD_DIR/../../SourcePackages/checkouts/wireguard-apple/Sources/WireGuardKitGo
      
    • Switch to "Build Settings" and find SDKROOT. Type in macosx if you target macOS, or type in iphoneos if you target iOS.

  3. Go to Xcode project settings and locate your network extension target and switch to "Build Phases" tab.

    • Locate "Dependencies" section and hit "+" to add WireGuardGoBridge<PLATFORM> replacing the <PLATFORM> placeholder with the name of platform matching the network extension deployment target (i.e macOS or iOS).

    • Locate the "Link with binary libraries" section and hit "+" to add WireGuardKit.

  4. In Xcode project settings, locate your main bundle app and switch to "Build Phases" tab. Locate the "Link with binary libraries" section and hit "+" to add WireGuardKit.

  5. iOS only: Locate Bitcode settings under your application target, Build settings -> Enable Bitcode, change the corresponding value to "No".

Note that if you ship your app for both iOS and macOS, make sure to repeat the steps 2-4 twice, once per platform.

MIT License

Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:

The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.