Age | Commit message (Collapse) | Author | |
---|---|---|---|
2017-07-20 | [feat] clean up the firewall on bitmask start | Ruben Pollan | |
Just in chance the firewall was not properly cleaned up in a previeous run (bitmask crashed, some bugs in the code, ...). Let's clean up the firewall when it starts. - Resolves: #8979 | |||
2017-07-20 | [feat] rise an exception if the vpn didn't turn down correctly | Ruben Pollan | |
2017-07-20 | [refactor] use VPNManagment in composition instead of inheritance | Ruben Pollan | |
We make an ugly step for that moving the VPNStatus into VPNManagement. Let's iterate on it a second time to clean up that. - Related: #8942 | |||
2017-07-20 | [refactor] rename VPNTunnel to TunnelManager | Ruben Pollan | |
So it's coherent with FirewallManager. - Related: #8942 | |||
2017-07-20 | [refactor] move TunnelManager duties to VPNService | Ruben Pollan | |
VPNService has knowledge of the tunnel and the firewall and controls them separately. Also exceptions from VPNControl are handled locally instead of being propagated. - Resolves: #8976 - Related: #8942 | |||
2017-07-18 | use the passed ca_cert | Kali Kaneko | |
if there is no ca_cert passed and the provider is configured, use the pinned ca cert when the autoconf parameter is true. | |||
2017-07-14 | [bug] handle 503 responses from nyckserver | Ruben Pollan | |
This can be produced by errors fetching keys from the server. - Resolves: #8971 | |||
2017-07-14 | [bug] don't raise exceptions stoping the VPN service | Ruben Pollan | |
Let's also catch the exceptions raised by stopping services so bitmaskd can stop. | |||
2017-07-14 | [refactor] skip looking for cacert bundle in bitmask | Kali Kaneko (leap communications) | |
leap.common is going to handle this | |||
2017-06-30 | [bug] don't restart the VPN if we want to stop it | Ruben Pollan | |
Let's signal clearly that we don't want to restart it. - Resolves: #8956 | |||
2017-06-29 | [feat] Stop the vpn (and all services) when application is shut down | Ruben Pollan | |
- Resolves: #8852 | |||
2017-06-29 | [feat] return starting status for a restarting VPN | Ruben Pollan | |
In case of the openvpn process being off, if we are restarting it we'll report the status as 'starting'. | |||
2017-06-29 | [feat] restart openvpn automatically | Ruben Pollan | |
Right now we are trying to restart openvpn every 2 seconds, for ever (or until the user turns down the VPN). Maybe we can be more smart making the retries longer with time. - Resolves: #8049 | |||
2017-06-29 | [refactor] make VPNControl logger an attribute of the class | Ruben Pollan | |
2017-06-29 | [bug] acknoledge max_retries to the openvpn telnet interface | Ruben Pollan | |
We were allways trying to reconnect for ever. | |||
2017-06-28 | [docs] fix the docstring since the implementation does not sign yet | Kali Kaneko (leap communications) | |
2017-06-23 | [bu] cleanup options in launcher | Kali Kaneko | |
Some reordering, and general cleanup of options. Some of the openvpn options are added now by bitmask-root. - Resolves: #8948 | |||
2017-06-23 | [refactor] remove unused code | Kali Kaneko | |
2017-06-23 | [bug] trim whitespace from options string | Kali Kaneko | |
this was producing a bug with parsing options in a recent enough openvpn. - Resolves: #8945 | |||
2017-06-21 | [style] reduce syslog verbosity | Kali Kaneko (leap communications) | |
2017-06-21 | [pkg] improve Packages script | Kali Kaneko | |
- use relative paths - there's still an absolute path (hardcoded, the REFERENCE FOLDER PATH). This should be changed (sed!) if we want to automate this for CI or for building in different environments: STILL NEEDS SOME MANUAL WORK. - Avoid deleting the build folders by default - Move the plist file to a subfolder | |||
2017-06-19 | [refactor] remove dead code | Kali Kaneko (leap communications) | |
2017-06-16 | [bug] add missing import | Kali Kaneko (leap communications) | |
2017-06-16 | [bug] fail gracefull if watcher process is not alive | Kali Kaneko (leap communications) | |
- plus general pep8 cleanup. | |||
2017-06-16 | [feat] fix OpenVPN start/stop in OSX using a process canary | Kali Kaneko | |
- correctly start the openvpn process canary - use helper to fix tearing down of the vpn | |||
2017-06-16 | [refactor] class and module renaming | Kali Kaneko (leap communications) | |
2017-06-16 | [feat] process logs through management interface | Kali Kaneko (leap communications) | |
2017-06-16 | [refactor] rename methods | Kali Kaneko (leap communications) | |
2017-06-16 | [bug] reset traffic when stopping vpn | Kali Kaneko (leap communications) | |
also, refactor a bit VPNManagement so that the `connect_to_management` method does not receive connection details. I plan to refactor management so that it is a separate object from the control object (but we need to stablish better its relation with the status parsing class). - Resolves: #8834 | |||
2017-06-16 | [refactor] use constants for state transitions | Kali Kaneko (leap communications) | |
2017-06-15 | [feat] Add a 'fetch' flag to key export | Ruben Pollan | |
If is set keyamanger will try to discover and download the key. - Resolves: #8821 | |||
2017-06-15 | [feat] handle maintenance mode from nicknym (503 responses) | Ruben Pollan | |
2017-06-15 | [bug] only start the child services if they are not running | Ruben Pollan | |
- Resolves: #8921 | |||
2017-06-15 | [bug] fix unread count on mail status | Ruben Pollan | |
- Resolves: #8931 | |||
2017-06-13 | [bug] pick the openvpn binary in the helper too | Kali Kaneko (leap communications) | |
2017-06-13 | [bug] only assign class variable once | Kali Kaneko (leap communications) | |
2017-06-13 | [feat] skip tun kext check for now | Kali Kaneko (leap communications) | |
2017-06-13 | [feat] use openvpn in the path provided by homebrew as a fallback | Kali Kaneko (leap communications) | |
2017-06-13 | [pkg] reorder osx helper files | Kali Kaneko (leap communications) | |
2017-06-13 | [bug] fix keymanager issues with last merge | Ruben Pollan | |
2017-06-12 | [bug] pass the --private flag to the dispatcher | Ruben Pollan | |
- Resolves: #8923 | |||
2017-06-12 | [feat] push private key updates into nicknym | Ruben Pollan | |
Deal as well with sending key if key is outdated in the providers nicknym. - Resolves: #8819, #8832 | |||
2017-06-12 | [feat] search first for gpg1 binary | Ruben Pollan | |
On debian stretch (and recent ubuntu) the gpg binary is version 2. If installed gpg version 1 is found in /usr/bin/gpg1. Let's search for this first. I use the oportunity to clean up the code. I'm happy using symlinks, if the user set them up let's use them. - Resolves: #8901 | |||
2017-06-12 | [bug] make openvpn and firewall able to launch | Kali Kaneko | |
with these fixes, I'm able to finally launch openvpn and firewall on osx. :) all that's left for a minimum vpn release is packaging and installing all the helpers in the proper place. | |||
2017-06-09 | [bug] make openvpn and firewall able to launch | Kali Kaneko | |
with these fixes, I'm able to finally launch openvpn and firewall on osx. :) all that's left for a minimum vpn release is packaging and installing all the helpers in the proper place. | |||
2017-06-07 | [docs] document testing of the osx helper | Kali Kaneko (leap communications) | |
2017-06-07 | [style] pep8 | Kali Kaneko (leap communications) | |
2017-06-07 | [feature] run vpn directly if user is root | Kali Kaneko (leap communications) | |
- Improve tests too: add entry in resolv.conf, not done without resolvconf | |||
2017-06-07 | [feature] log output of subprocess call | Kali Kaneko (leap communications) | |
2017-06-07 | [feat] do not use pkexec if we are root | Kali Kaneko (leap communications) | |