| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2018-06-12 | [feat] add support for tcp management in bitmask-root | Ruben Pollan | |
| 2018-04-11 | [style] pep8 | Kali Kaneko | |
| 2018-04-11 | several fixes for riseupvpn snap | Kali Kaneko | |
| - move snap folder to root folder, to allow automated builds - install only polkit file outside of snap - change path of bitmask-root accordingly in bitmask - fix check for polkit file inside snap - change and document the algorithm for picking bitmask-root in linux - add LD_LIBRARY_PATH as an environment entry for bitmask-systray | |||
| 2018-03-28 | [refactor] move platform constants into leap.bitmask | Ruben Pollan | |
| The IS_${platform} constants are used in more places than the vpn module. Let's define them in leap.bitmask. | |||
| 2018-03-05 | [style] pep8 | Kali Kaneko | |
| 2018-03-02 | [feat] increase verbosity on vpn checks to ease debugging | Kali Kaneko | |
| 2018-03-02 | [bug] fix openvpn path in snap check | Kali Kaneko | |
| 2018-03-02 | [bug] fix bitmask-root detection in snap | Kali Kaneko | |
| 2018-03-02 | [pkg] add snap openvpn to bitmask-root | Kali Kaneko | |
| 2018-03-02 | [bug] fix launching of vpn for snaps | Kali Kaneko | |
| 2018-03-01 | [style] pep8 | Kali Kaneko | |
| 2018-02-15 | [bug] privcheck takes one argument | Kali Kaneko | |
| 2018-02-15 | [style] pep8 | Kali Kaneko | |
| 2018-01-26 | [style] some wording fixes | Kali Kaneko | |
| 2018-01-26 | [refactor] yet another readability pass | Ruben Pollan | |
| 2018-01-26 | [refactor] clean up the helpers check to make it more readable | Ruben Pollan | |
| 2018-01-26 | [bug] don't check for updates on polkit just for its existence | Ruben Pollan | |
| We don't update the polkit file normally, for now let's check if it's installed. It should be more clever, detecting wich file is needed, depending on wich bitmask-root will be executed. But for now it's just a dummy check. | |||
| 2018-01-25 | [tests] workaround for functional tests in docker | Kali Kaneko | |
| polkit doesn't work inside docker. | |||
| 2018-01-25 | [feat] report missing polkit properly from main UI | Kali Kaneko | |
| also refactor and move polkit_agent so that it does not depend on having bitmask on the path. | |||
| 2018-01-25 | [feat] hardcode tcp4 in vpn connections | Kali Kaneko | |
| for now, we'll be hardcoding tcp as a more reliable alternative, no matter what the provider announces. explicitely specifying ipv4 should fix the case in which vpn fails to start because ipv6 is disabled. -Resolves: #9181, #9129 | |||
| 2018-01-16 | [bug] fix the systemctl run | Ruben Pollan | |
| 2018-01-12 | [feat] bump bitmask-root version | Ruben Pollan | |
| 2018-01-12 | Add Qubes DNS support, fixes | Christopher Laprise | |
| 2018-01-12 | Add anti-leak rules for qubes-firewall | Christopher Laprise | |
| 2018-01-09 | [bug] fix issues with dns resolution with systemd-resolved | Ruben Pollan | |
| In ubuntu 17.10 some changes with systemd-resolved broke our firewall, blocking all DNS queries. The masquerade rules in the firewall, that are used to rewrite the source IP address of the DNS queries, were wrongly modifying the queries to systemd-resolved. Let's apply masquerade only to the packets addressed to the nameserver. - Resolves: #9137 | |||
| 2018-01-08 | [feat] try other gateways if the main one fails | Ruben Pollan | |
| Removing '--persist-ip' param on openvpn it will try to connect to a different gateway if the first one fails. This means, that in case of network disconnection for some minutes bitmask will keep rotating between the different gateways and one the network comes back it will not connect anymore to the first one, but to the one that was trying at this moment. - Resolves: #9188 | |||
| 2017-12-21 | [doc] add note about expected paths to bitmask-root itself | Kali Kaneko | |
| I should remember this change when we merge elijah's fix again. Hopefully that happens soon enough. | |||
| 2017-12-21 | [bug] temporarily revert dnsmasq firewall fix | Kali Kaneko | |
| It has been reported that, after this fix, dns leaks happen under some circumstances not yet clear. Preparing for a release, we have decided to revert this change until the problem can be properly triaged. This means a broken vpn aartful support for the time being, but a non-leaking master. https://0xacab.org/leap/bitmask-dev/issues/9137 - Related: #9137 | |||
| 2017-12-20 | [bug] add lock in command dispatcher | Kali Kaneko | |
| 2017-12-07 | [feat] update bitmask-root if needed | Ruben Pollan | |
| Chech the hash of the installed bitmask root and sign as not installed if doesn't match the one we have in the bundle. Also for running bitmask-root, if there is more than one (in /usr/local/sbin and /usr/sbin) run the one with higher version number. - Resolves: #9020 | |||
| 2017-12-05 | [bug] change bitmask-root to work with dnsmasq | elijah | |
| 2017-11-30 | [refactor] use /var/run for osx helper socket | Kali Kaneko | |
| 2017-11-02 | [feature] support deepin polkit agent | Kali Kaneko | |
| -Resolves: #9119 | |||
| 2017-10-25 | [feat] support pantheon polkit agent | Kali Kaneko | |
| Apparently, this would allow us to run in Elementary OS. -Resolves: #9076 | |||
| 2017-10-11 | [style] pep8 | Kali Kaneko | |
| 2017-10-11 | [bug] import linux specific constants inside if block | kali | |
| 2017-10-09 | [bug] properly check for local openvpn path | Kali Kaneko | |
| - Resolves: #9099 | |||
| 2017-10-03 | [feat] Update polkit options | Ruben Pollan | |
| 2017-09-29 | [bug] look also from bitmask-root in the debian path | Kali Kaneko | |
| 2017-09-29 | [bug] create /usr/local/sbin folder if it does not exist | Kali Kaneko | |
| - Resolves: #9084 | |||
| 2017-09-20 | [feat] detect if pkexec is present in the system | Ruben Pollan | |
| Check it before starting the vpn. - Resolves: #8895 | |||
| 2017-09-15 | [feat] add --nodaemon param to polkit_agent | Ruben Pollan | |
| 2017-09-15 | [docs] having the polkits to try in a list sets already a prio to them | Ruben Pollan | |
| 2017-09-15 | [bug] get the VPN restart working again | Ruben Pollan | |
| Don't persist-tun on the vpn, so it can restart properly. Also let's match better the options that are sent and taken into account from bitmask-root. - Resolves: #9048 | |||
| 2017-09-10 | [bug] fix policykit helper paths | Kali Kaneko | |
| the debian package was failing because of a bad polkit policy file name. | |||
| 2017-08-30 | [tests] do not fail if helper installed in debian path | Kali Kaneko | |
| 2017-08-30 | [bug] flatten args to allow keepalive params | Kali Kaneko | |
| 2017-08-30 | [refactor] restart by allowing to send SIGUSR1 to openvpn process | Kali Kaneko | |
| by properly allowing openvpn to restart when receiving SIGUSR1, we can reserve the hard process restarts for cases in which the process is aborted. this depends on bitmask-root adding --persist-tun and --persist-key as mandatory/allowed parameters. | |||
| 2017-08-14 | [bug] proper vpn shutdown in osx bundles | kali | |
| the restarting flag was not being set. - Resolves: #8959 | |||
| 2017-06-23 | [bug] trim whitespace from options string | Kali Kaneko | |
| this was producing a bug with parsing options in a recent enough openvpn. - Resolves: #8945 | |||
 |
index : bitmask-dev.git | |
| [bitmask-dev] | git repository hosting |
| summaryrefslogtreecommitdiff |