summaryrefslogtreecommitdiff
path: root/src/leap/bitmask
AgeCommit message (Collapse)Author
2017-08-11[feature] automatic vpn gateway selection, based on timezoneKali Kaneko
This is a first approach to automatic gateways selection. More things are missing: - allow manual selection, by location or country code. - take the hemisphere into account. - expose the selected gw to the api/cli but overall seems this is a good approach to make 0.10 release usable in terms of vpn. - Resolves: #8804
2017-08-11[feature] add a new bitmask_chromium gui entrypointKali Kaneko
If chromium is installed in the system, there's no need to depend on qt5.
2017-08-10[refactor] fail gracefully if some modules not presentKali Kaneko
this allows for better modularization in, for instance, the debian package. we should be able to install just the submodules for the vpn service, or the mail service. a better modularization needs the mail_services under core to be moved to bitmask.mail, and do the switch in the main service module for bitmask daemon.
2017-07-28[bug] change status only when key is generatedKali Kaneko
- Resolves: #8986
2017-07-25[refactor] use pixelated-www in leap namespaceKali Kaneko
2017-07-20[bug] check if the helpers are installed before testing the firewallRuben Pollan
In case of the helpers not installed it was crashing the VPNService.
2017-07-20[feat] clean up the firewall on bitmask startRuben Pollan
Just in chance the firewall was not properly cleaned up in a previeous run (bitmask crashed, some bugs in the code, ...). Let's clean up the firewall when it starts. - Resolves: #8979
2017-07-20[feat] rise an exception if the vpn didn't turn down correctlyRuben Pollan
2017-07-20[refactor] use VPNManagment in composition instead of inheritanceRuben Pollan
We make an ugly step for that moving the VPNStatus into VPNManagement. Let's iterate on it a second time to clean up that. - Related: #8942
2017-07-20[refactor] rename VPNTunnel to TunnelManagerRuben Pollan
So it's coherent with FirewallManager. - Related: #8942
2017-07-20[refactor] move TunnelManager duties to VPNServiceRuben Pollan
VPNService has knowledge of the tunnel and the firewall and controls them separately. Also exceptions from VPNControl are handled locally instead of being propagated. - Resolves: #8976 - Related: #8942
2017-07-18use the passed ca_certKali Kaneko
if there is no ca_cert passed and the provider is configured, use the pinned ca cert when the autoconf parameter is true.
2017-07-14[bug] handle 503 responses from nyckserverRuben Pollan
This can be produced by errors fetching keys from the server. - Resolves: #8971
2017-07-14[bug] don't raise exceptions stoping the VPN serviceRuben Pollan
Let's also catch the exceptions raised by stopping services so bitmaskd can stop.
2017-07-14[refactor] skip looking for cacert bundle in bitmaskKali Kaneko (leap communications)
leap.common is going to handle this
2017-06-30[bug] don't restart the VPN if we want to stop itRuben Pollan
Let's signal clearly that we don't want to restart it. - Resolves: #8956
2017-06-29[feat] Stop the vpn (and all services) when application is shut downRuben Pollan
- Resolves: #8852
2017-06-29[feat] return starting status for a restarting VPNRuben Pollan
In case of the openvpn process being off, if we are restarting it we'll report the status as 'starting'.
2017-06-29[feat] restart openvpn automaticallyRuben Pollan
Right now we are trying to restart openvpn every 2 seconds, for ever (or until the user turns down the VPN). Maybe we can be more smart making the retries longer with time. - Resolves: #8049
2017-06-29[refactor] make VPNControl logger an attribute of the classRuben Pollan
2017-06-29[bug] acknoledge max_retries to the openvpn telnet interfaceRuben Pollan
We were allways trying to reconnect for ever.
2017-06-28[docs] fix the docstring since the implementation does not sign yetKali Kaneko (leap communications)
2017-06-23[bu] cleanup options in launcherKali Kaneko
Some reordering, and general cleanup of options. Some of the openvpn options are added now by bitmask-root. - Resolves: #8948
2017-06-23[refactor] remove unused codeKali Kaneko
2017-06-23[bug] trim whitespace from options stringKali Kaneko
this was producing a bug with parsing options in a recent enough openvpn. - Resolves: #8945
2017-06-21[style] reduce syslog verbosityKali Kaneko (leap communications)
2017-06-21[pkg] improve Packages scriptKali Kaneko
- use relative paths - there's still an absolute path (hardcoded, the REFERENCE FOLDER PATH). This should be changed (sed!) if we want to automate this for CI or for building in different environments: STILL NEEDS SOME MANUAL WORK. - Avoid deleting the build folders by default - Move the plist file to a subfolder
2017-06-19[refactor] remove dead codeKali Kaneko (leap communications)
2017-06-16[bug] add missing importKali Kaneko (leap communications)
2017-06-16[bug] fail gracefull if watcher process is not aliveKali Kaneko (leap communications)
- plus general pep8 cleanup.
2017-06-16[feat] fix OpenVPN start/stop in OSX using a process canaryKali Kaneko
- correctly start the openvpn process canary - use helper to fix tearing down of the vpn
2017-06-16[refactor] class and module renamingKali Kaneko (leap communications)
2017-06-16[feat] process logs through management interfaceKali Kaneko (leap communications)
2017-06-16[refactor] rename methodsKali Kaneko (leap communications)
2017-06-16[bug] reset traffic when stopping vpnKali Kaneko (leap communications)
also, refactor a bit VPNManagement so that the `connect_to_management` method does not receive connection details. I plan to refactor management so that it is a separate object from the control object (but we need to stablish better its relation with the status parsing class). - Resolves: #8834
2017-06-16[refactor] use constants for state transitionsKali Kaneko (leap communications)
2017-06-15[feat] Add a 'fetch' flag to key exportRuben Pollan
If is set keyamanger will try to discover and download the key. - Resolves: #8821
2017-06-15[feat] handle maintenance mode from nicknym (503 responses)Ruben Pollan
2017-06-15[bug] only start the child services if they are not runningRuben Pollan
- Resolves: #8921
2017-06-15[bug] fix unread count on mail statusRuben Pollan
- Resolves: #8931
2017-06-13[bug] pick the openvpn binary in the helper tooKali Kaneko (leap communications)
2017-06-13[bug] only assign class variable onceKali Kaneko (leap communications)
2017-06-13[feat] skip tun kext check for nowKali Kaneko (leap communications)
2017-06-13[feat] use openvpn in the path provided by homebrew as a fallbackKali Kaneko (leap communications)
2017-06-13[pkg] reorder osx helper filesKali Kaneko (leap communications)
2017-06-13[bug] fix keymanager issues with last mergeRuben Pollan
2017-06-12[bug] pass the --private flag to the dispatcherRuben Pollan
- Resolves: #8923
2017-06-12[feat] push private key updates into nicknymRuben Pollan
Deal as well with sending key if key is outdated in the providers nicknym. - Resolves: #8819, #8832
2017-06-12[feat] search first for gpg1 binaryRuben Pollan
On debian stretch (and recent ubuntu) the gpg binary is version 2. If installed gpg version 1 is found in /usr/bin/gpg1. Let's search for this first. I use the oportunity to clean up the code. I'm happy using symlinks, if the user set them up let's use them. - Resolves: #8901
2017-06-12[bug] make openvpn and firewall able to launchKali Kaneko
with these fixes, I'm able to finally launch openvpn and firewall on osx. :) all that's left for a minimum vpn release is packaging and installing all the helpers in the proper place.