summaryrefslogtreecommitdiff
path: root/src/leap/bitmask
AgeCommit message (Collapse)Author
2017-07-20[bug] check if the helpers are installed before testing the firewallRuben Pollan
In case of the helpers not installed it was crashing the VPNService.
2017-07-20[feat] clean up the firewall on bitmask startRuben Pollan
Just in chance the firewall was not properly cleaned up in a previeous run (bitmask crashed, some bugs in the code, ...). Let's clean up the firewall when it starts. - Resolves: #8979
2017-07-20[feat] rise an exception if the vpn didn't turn down correctlyRuben Pollan
2017-07-20[refactor] use VPNManagment in composition instead of inheritanceRuben Pollan
We make an ugly step for that moving the VPNStatus into VPNManagement. Let's iterate on it a second time to clean up that. - Related: #8942
2017-07-20[refactor] rename VPNTunnel to TunnelManagerRuben Pollan
So it's coherent with FirewallManager. - Related: #8942
2017-07-20[refactor] move TunnelManager duties to VPNServiceRuben Pollan
VPNService has knowledge of the tunnel and the firewall and controls them separately. Also exceptions from VPNControl are handled locally instead of being propagated. - Resolves: #8976 - Related: #8942
2017-07-18use the passed ca_certKali Kaneko
if there is no ca_cert passed and the provider is configured, use the pinned ca cert when the autoconf parameter is true.
2017-07-14[bug] handle 503 responses from nyckserverRuben Pollan
This can be produced by errors fetching keys from the server. - Resolves: #8971
2017-07-14[bug] don't raise exceptions stoping the VPN serviceRuben Pollan
Let's also catch the exceptions raised by stopping services so bitmaskd can stop.
2017-07-14[refactor] skip looking for cacert bundle in bitmaskKali Kaneko (leap communications)
leap.common is going to handle this
2017-06-30[bug] don't restart the VPN if we want to stop itRuben Pollan
Let's signal clearly that we don't want to restart it. - Resolves: #8956
2017-06-29[feat] Stop the vpn (and all services) when application is shut downRuben Pollan
- Resolves: #8852
2017-06-29[feat] return starting status for a restarting VPNRuben Pollan
In case of the openvpn process being off, if we are restarting it we'll report the status as 'starting'.
2017-06-29[feat] restart openvpn automaticallyRuben Pollan
Right now we are trying to restart openvpn every 2 seconds, for ever (or until the user turns down the VPN). Maybe we can be more smart making the retries longer with time. - Resolves: #8049
2017-06-29[refactor] make VPNControl logger an attribute of the classRuben Pollan
2017-06-29[bug] acknoledge max_retries to the openvpn telnet interfaceRuben Pollan
We were allways trying to reconnect for ever.
2017-06-28[docs] fix the docstring since the implementation does not sign yetKali Kaneko (leap communications)
2017-06-23[bu] cleanup options in launcherKali Kaneko
Some reordering, and general cleanup of options. Some of the openvpn options are added now by bitmask-root. - Resolves: #8948
2017-06-23[refactor] remove unused codeKali Kaneko
2017-06-23[bug] trim whitespace from options stringKali Kaneko
this was producing a bug with parsing options in a recent enough openvpn. - Resolves: #8945
2017-06-21[style] reduce syslog verbosityKali Kaneko (leap communications)
2017-06-21[pkg] improve Packages scriptKali Kaneko
- use relative paths - there's still an absolute path (hardcoded, the REFERENCE FOLDER PATH). This should be changed (sed!) if we want to automate this for CI or for building in different environments: STILL NEEDS SOME MANUAL WORK. - Avoid deleting the build folders by default - Move the plist file to a subfolder
2017-06-19[refactor] remove dead codeKali Kaneko (leap communications)
2017-06-16[bug] add missing importKali Kaneko (leap communications)
2017-06-16[bug] fail gracefull if watcher process is not aliveKali Kaneko (leap communications)
- plus general pep8 cleanup.
2017-06-16[feat] fix OpenVPN start/stop in OSX using a process canaryKali Kaneko
- correctly start the openvpn process canary - use helper to fix tearing down of the vpn
2017-06-16[refactor] class and module renamingKali Kaneko (leap communications)
2017-06-16[feat] process logs through management interfaceKali Kaneko (leap communications)
2017-06-16[refactor] rename methodsKali Kaneko (leap communications)
2017-06-16[bug] reset traffic when stopping vpnKali Kaneko (leap communications)
also, refactor a bit VPNManagement so that the `connect_to_management` method does not receive connection details. I plan to refactor management so that it is a separate object from the control object (but we need to stablish better its relation with the status parsing class). - Resolves: #8834
2017-06-16[refactor] use constants for state transitionsKali Kaneko (leap communications)
2017-06-15[feat] Add a 'fetch' flag to key exportRuben Pollan
If is set keyamanger will try to discover and download the key. - Resolves: #8821
2017-06-15[feat] handle maintenance mode from nicknym (503 responses)Ruben Pollan
2017-06-15[bug] only start the child services if they are not runningRuben Pollan
- Resolves: #8921
2017-06-15[bug] fix unread count on mail statusRuben Pollan
- Resolves: #8931
2017-06-13[bug] pick the openvpn binary in the helper tooKali Kaneko (leap communications)
2017-06-13[bug] only assign class variable onceKali Kaneko (leap communications)
2017-06-13[feat] skip tun kext check for nowKali Kaneko (leap communications)
2017-06-13[feat] use openvpn in the path provided by homebrew as a fallbackKali Kaneko (leap communications)
2017-06-13[pkg] reorder osx helper filesKali Kaneko (leap communications)
2017-06-13[bug] fix keymanager issues with last mergeRuben Pollan
2017-06-12[bug] pass the --private flag to the dispatcherRuben Pollan
- Resolves: #8923
2017-06-12[feat] push private key updates into nicknymRuben Pollan
Deal as well with sending key if key is outdated in the providers nicknym. - Resolves: #8819, #8832
2017-06-12[feat] search first for gpg1 binaryRuben Pollan
On debian stretch (and recent ubuntu) the gpg binary is version 2. If installed gpg version 1 is found in /usr/bin/gpg1. Let's search for this first. I use the oportunity to clean up the code. I'm happy using symlinks, if the user set them up let's use them. - Resolves: #8901
2017-06-12[bug] make openvpn and firewall able to launchKali Kaneko
with these fixes, I'm able to finally launch openvpn and firewall on osx. :) all that's left for a minimum vpn release is packaging and installing all the helpers in the proper place.
2017-06-09[bug] make openvpn and firewall able to launchKali Kaneko
with these fixes, I'm able to finally launch openvpn and firewall on osx. :) all that's left for a minimum vpn release is packaging and installing all the helpers in the proper place.
2017-06-07[docs] document testing of the osx helperKali Kaneko (leap communications)
2017-06-07[style] pep8Kali Kaneko (leap communications)
2017-06-07[feature] run vpn directly if user is rootKali Kaneko (leap communications)
- Improve tests too: add entry in resolv.conf, not done without resolvconf
2017-06-07[feature] log output of subprocess callKali Kaneko (leap communications)