Yihong Wu
ad4ce138e9
Merge pull request #1594 from domosekai/tray
...
Show connection names in tray tips
2022-05-16 15:23:36 +09:00
Yihong Wu
27d7f4cfbe
Fix route tracking on x86 Windows
2022-05-15 19:42:57 +09:00
Yihong Wu
4a3b4589c6
Show connection names in icon tips
2022-05-15 15:22:46 +08:00
Yihong Wu
53d8b10de2
Remove CM timer event to fix taskbar behavior on Win 11
2022-05-14 14:05:31 +08:00
Yihong Wu
ca996ed89a
Merge pull request #1522 from domosekai/tls
...
Implement complete server certificate verification
2022-05-12 23:38:38 +08:00
Daehun Hyun
cb6d9531b5
Fixed an issue where routing was not added when receiving DHCP static routing options.
2022-05-10 17:35:01 +09:00
sfreet
5a0227ba1d
Allow packets if the both source and destination session users are the same, even in PrivacyFilter mode
2022-05-09 15:45:55 +09:00
Yihong Wu
ca226cdc9d
Add CMakeSettings.json to facilitate VS configuration
...
Update build instructions for Windows
2022-04-30 15:03:05 +08:00
Yihong Wu
c8dca265b4
Merge pull request #1576 from domosekai/ipv6
...
Fix IPv6 ND for Windows 11 PPP clients
2022-04-27 20:37:25 +08:00
Yihong Wu
b3afbe37e9
Load legacy provider under OpenSSL 3.0
2022-04-26 22:00:15 +08:00
updatede
b4bb90ec5b
Fix udp acceleration unusable on big endian system
...
On big endian system, while store 32 bits and 16bits number in memory of UINT64 variable "tmp", first 4 bytes of it always be zero makes "cookie" and "size" always be zero, lead to udpaccel unusable.
2022-04-25 18:16:50 +08:00
Yihong Wu
a742e2d193
Fix IPv6 ND for Windows 11 PPP clients
2022-04-08 00:37:38 +08:00
Yihong Wu
992a998a34
Add missing translation for protocol details
2022-04-01 22:18:54 +08:00
Yihong Wu
3c0e3fa49c
Merge pull request #1564 from domosekai/bulk
2022-03-21 10:13:56 +08:00
Yihong Wu
d86cf181bf
Fix UDP bulk v2 and protocol display
2022-03-20 16:48:15 +08:00
dependabot[bot]
e8b88fd225
Bump tar from 4.4.8 to 4.4.19 in /src/bin/hamcore/wwwroot/admin/default
...
Bumps [tar](https://github.com/npm/node-tar ) from 4.4.8 to 4.4.19.
- [Release notes](https://github.com/npm/node-tar/releases )
- [Changelog](https://github.com/npm/node-tar/blob/main/CHANGELOG.md )
- [Commits](https://github.com/npm/node-tar/compare/v4.4.8...v4.4.19 )
---
updated-dependencies:
- dependency-name: tar
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-19 19:17:31 +00:00
Davide Beatrici
9764485774
Merge PR #1551 : Bump ajv from 6.10.0 to 6.12.6
2022-03-19 20:16:53 +01:00
Daiyuu Nobori
32a970f976
Admin.c: Fix wrong endianness in InRpcNodeInfo() and OutRpcNodeInfo()
2022-02-22 19:38:34 +01:00
Daiyuu Nobori
56aedd6817
Memory: Add LittleEndian16(), LittleEndian32() and LittleEndian64()
2022-02-22 19:38:03 +01:00
dependabot[bot]
b603d2658a
Bump ajv from 6.10.0 to 6.12.6 in /src/bin/hamcore/wwwroot/admin/default
...
Bumps [ajv](https://github.com/ajv-validator/ajv ) from 6.10.0 to 6.12.6.
- [Release notes](https://github.com/ajv-validator/ajv/releases )
- [Commits](https://github.com/ajv-validator/ajv/compare/v6.10.0...v6.12.6 )
---
updated-dependencies:
- dependency-name: ajv
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-12 02:08:14 +00:00
H William Welliver
fd92c754fc
Add missing headers required for solaris/illumos
2022-01-06 23:06:36 -05:00
Yihong Wu
0a4455ac40
Add more TLS negotiation info in logging and UI
2021-12-29 17:41:29 +08:00
Yihong Wu
f94ac6351e
Implement complete server certificate verification
2021-12-29 17:41:29 +08:00
weidi
09dd8a8b07
endif UNIX_LINUX before BSD
2021-12-26 16:13:53 +01:00
weidi
3c7d78a1bf
Merge branch 'SoftEtherVPN:master' into master
2021-12-26 11:51:55 +01:00
Yihong Wu
adbbe94675
Merge pull request #1528 from updatede/patch-1
...
Mayaqua/Network.h: Fix UDP acceleration under NAT-T connections
2021-12-26 12:32:48 +08:00
Yihong Wu
1c1560f6ca
Apply security level override in azure client mode
2021-12-26 12:12:00 +08:00
Yihong Wu
68dc4e23d8
Improve NAT-T hint string handling
2021-12-26 12:11:51 +08:00
Yihong Wu
f6edb5e165
Fix a typo that causes CascadeList to show blank hub name
2021-12-26 12:03:59 +08:00
Yihong Wu
a5565fce4b
Fix cascade links may start before configuration is loaded
2021-12-26 12:03:59 +08:00
Yihong Wu
d95d8ddefa
Fix account name in wrong case after editing
2021-12-26 12:03:59 +08:00
Johannes Weidacher
f1b464e84d
fix alpine compile issue.
2021-12-25 21:22:06 +01:00
Yihong Wu
51585e63e3
Fix server manager setting compatibility since build 9658
2021-12-25 13:25:34 +08:00
weidi
c72d4fddb8
Merge branch 'SoftEtherVPN:master' into master
2021-12-24 08:47:45 +01:00
Johannes Weidacher
fc15d1ebd5
fix alpine compile issue.
2021-12-23 21:06:19 +01:00
Johannes Weidacher
73ffa10f50
Fix build error on alpine
2021-12-23 20:59:48 +01:00
Yihong Wu
77ee848caa
Cedar/SM.c: Fix pointer usage before initialization
2021-12-23 17:23:15 +08:00
updatede
0b74a8e4ce
Update Network.h
...
Missing argument check lead to wrong value of IsIPv6 of struct UDP_ACCEL in NewUdpAccel(), eventually lead to UdpAccelInitClient() fail.
2021-12-22 13:19:50 +08:00
Yihong Wu
fc94843579
Fix the creation of a zero IPv6 address
...
Fix #1517
2021-12-12 20:05:36 +08:00
Yihong Wu
b91d9af5e3
Mayaqua/DNS: Fix memory safety in DNS operation threads
...
Fix #1329
2021-12-12 20:05:36 +08:00
Yihong Wu
2a40d21ef9
Merge pull request #1512 from domosekai/he
...
Perform TCP connection via IPv6 and IPv4 in parallel threads
2021-12-11 17:20:12 +08:00
Yihong Wu
02ee7b45d7
Save the correct server IP for route management
2021-12-10 16:53:28 +08:00
Yihong Wu
384ab07996
Perform TCP connection attempts via IPv6 and IPv4 in parallel
2021-12-10 16:18:45 +08:00
Yihong Wu
e6bf956806
Return and cache all addresses from DNS resolver
2021-12-10 16:18:45 +08:00
Yihong Wu
528f313dbe
Merge pull request #1511 from domosekai/ipstr
...
Fix IPv6 address display in session info dialog
2021-12-09 12:55:10 +08:00
Yihong Wu
b4aad09f21
Restore R-UDP listener when ListenIP is ::
2021-12-07 21:55:41 +08:00
Yihong Wu
14f5854ecf
Fix IPv6 address display in session info dialog
2021-12-07 15:48:32 +08:00
Yihong Wu
b178f26e52
Reduce redundant loop
...
Co-authored-by: Davide Beatrici <github@davidebeatrici.dev>
2021-12-04 16:16:22 +08:00
Yihong Wu
9692a8d961
Fix DNS resolution when no IPv6 address is configured
2021-12-03 14:18:43 +08:00
Yihong Wu
2d1c8765aa
Merge pull request #1433 from domosekai/chain
...
Support user-specified server trust chain
2021-11-25 17:15:53 +08:00
Yihong Wu
8392ccd1fa
Merge pull request #1391 from domosekai/master
2021-11-25 11:09:12 +08:00
Davide Beatrici
2955dc5580
Merge PR #1507 : Change default hub option to allow default router in IPv6 RA
2021-11-24 00:22:04 +01:00
Yihong Wu
e095283641
Change default hub option to allow default router in IPv6 RA
2021-11-23 23:54:42 +08:00
Yihong Wu
fb004345b4
Cedar/Proto_PPP: Fix IPC DHCP renewal
2021-11-23 19:48:46 +08:00
Ilya Shipitsin
4d594e00f8
add "data-ciphers" to generated OpenVPN configs
2021-10-02 15:00:20 +05:00
Yihong Wu
2990b5ae93
Fix memory overrun in policy copy
2021-09-30 19:36:36 +08:00
Yihong Wu
462ebfb960
Fix policy dialog
2021-09-30 16:59:22 +08:00
Yihong Wu
582a739179
Fix auto refreshing of client manager
2021-09-28 20:15:41 +08:00
Yihong Wu
3a2d588722
Merge pull request #1483 from domosekai/ecc
...
Support ECDSA certificates on server side and show parameters in dialog
2021-09-25 20:58:18 +08:00
Yihong Wu
9c2a573cf2
Display key algorithm and parameters in cert dialog
2021-09-24 17:12:51 +08:00
Tetsuo Sugiyama
c9508b7fb7
Password change from client increments config file revision
...
Fixed an issue where changing the password from the client did not increment the revision of the server config file and the changes were not saved
2021-09-21 18:28:17 +09:00
Yihong Wu
2853337b81
Allow ECDSA certificates on server side
2021-09-20 08:18:36 +00:00
Yihong Wu
03859eb515
Merge pull request #1443 from domosekai/win32
...
Add IPv6 route management for Windows client
2021-09-18 22:12:27 +08:00
Yihong Wu
82af38c482
Cedar/Protocol.c: Fix connection to server clusters
2021-09-18 08:06:10 +00:00
Ilya Shipitsin
fc9286b11b
enable Control-flow Enforcement Technology (CET) Shadow Stack mitigation
...
for Windows binaries
found by BinSkim
2021-08-27 12:43:42 +05:00
Ilya Shipitsin
5adeeb75ea
Enable Control flow guard and Qspectre protection for windows binaries
...
found by BinSkim
2021-08-26 23:09:13 +05:00
Steve Muskiewicz
472dde05de
apply permission fix suggested by @hornos (for #1457 )
2021-08-19 08:14:50 -04:00
Ilya Shipitsin
fbdd6f1f3c
Merge pull request #1453 from SoftEtherVPN/dependabot/npm_and_yarn/src/bin/hamcore/wwwroot/admin/default/path-parse-1.0.7
...
Merge PR #1453 : Bump path-parse from 1.0.6 to 1.0.7 in /src/bin/hamcore/wwwroot/admin/default
2021-08-16 11:32:13 +05:00
dependabot[bot]
2d00ab7dcc
Bump path-parse in /src/bin/hamcore/wwwroot/admin/default
...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse ) from 1.0.6 to 1.0.7.
- [Release notes](https://github.com/jbgutierrez/path-parse/releases )
- [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7 )
---
updated-dependencies:
- dependency-name: path-parse
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-08-11 02:56:38 +00:00
Davide Beatrici
7f8e527883
CMake: Fix BLAKE2 build failure with MSVC due to it not defining __SSE2__
2021-08-10 22:58:28 +02:00
Davide Beatrici
ffc095f95a
CMake: Add build time check for EVP_PKEY_get_raw_public_key() availability
...
We need the function since 9dbbfcd388
, but unfortunately it's not provided by LibreSSL.
By introducing a build time check we inform the user about the issue explicitly instead of just letting compilation fail.
2021-08-08 19:29:32 +02:00
Rosen Penev
ee3bf7f507
fix compilation without OpenSSL engines
...
Signed-off-by: Rosen Penev <rosenp@gmail.com>
2021-08-07 20:05:04 -07:00
domosekai
9b3077d955
Store interface metric separately as it mau change
2021-08-02 16:18:37 +08:00
domosekai
dd9c3546f7
Prevent IPv6 leak if only IPv4 default route is added
2021-08-02 16:18:37 +08:00
domosekai
4ddf39e760
Remove obsolete Win32 functions
2021-08-02 16:18:37 +08:00
domosekai
ce0591d924
Add IPv6 route management for Windows client
2021-08-02 16:18:36 +08:00
Ilya Shipitcin
37b5644291
src/Cedar/SW.c: treat "0" build as legitimate
...
installers built for PR have "0" build. let us treat them as legitimate
2021-08-01 12:26:51 +05:00
domosekai
9182a9b4e9
Mayaqua/Network.c: Fix race condition in TUBE operation
2021-07-22 11:59:15 +00:00
domosekai
8b87c9d4ef
Cedar/Proto_PPP.c: Fix memory leak in EAP-MSCHAPv2
...
Fixes : #1420 (Implement EAP-MSCHAPv2)
2021-07-21 11:16:35 +00:00
domosekai
2761c1ca42
Support user-specified server trust chain
2021-07-21 07:02:42 +00:00
domosekai
1bb01e55e5
Mayaqua/TcpIp.c: Fix building DHCP static routes in new format
...
Fixes: 1708998
(Change IP structure so that IPv4 addresses are stored in RFC3493 format)
2021-07-14 08:11:05 +00:00
Koichiro IWAO
fce3592917
hamcore(ja,tw,cn): translate "Authentication"
...
appeared in "OpenSSL Engine Authorization"
2021-07-13 18:44:42 +09:00
Koichiro IWAO
410b7a959d
Fix case of OpenSSL
2021-07-13 18:41:41 +09:00
Koichiro IWAO
1590e6afb3
Fix typo s/has beens/has been/g
2021-07-13 18:15:09 +09:00
domosekai
7863ce8a8e
Cedar/IPC.c: Add hub release in NewIPC()
2021-07-12 08:37:12 +00:00
domosekai
a1dff0f594
Mayaqua/Network.c: Create UDP listener for every interface if ListenIP is wildcard
2021-07-11 16:15:29 +00:00
Ilya Shipitsin
7881f8657a
Merge pull request #1420 from domosekai/eap
...
Implement EAP-MSCHAPv2
2021-07-10 23:27:10 +05:00
domosekai
dfb105c2d7
Fix use-after-free timeout issue for L2TP and SSTP
2021-07-10 16:07:09 +00:00
domosekai
66dc5ee581
Cedar/Radius.c: Fix EAP Message buffer overflow
2021-07-10 08:15:03 +00:00
domosekai
56bd9733d6
Cedar/Proto_PPP.c: Use unified format for negative condition
2021-07-10 05:30:06 +00:00
domosekai
eff784b624
Improve EAP behavior with RADIUS
2021-07-10 05:29:23 +00:00
domosekai
22a9231c33
Implement EAP-MSCHAPv2
2021-07-08 14:26:31 +00:00
domosekai
41b9973c24
Mayaqua/Network.c: Fix L2TP/IPsec over IPv6 when listening on ::
2021-07-07 17:37:06 +00:00
Ilya Shipitsin
60db1962f9
Merge pull request #1416 from domosekai/listener
...
Fix TCP and UDP listener behavior
2021-07-07 16:08:05 +05:00
domosekai
6e400c19af
Fix TCP and UDP listener behavior
2021-07-07 10:50:23 +00:00
Ilya Shipitsin
f2466eb919
Merge pull request #1415 from davidebeatrici/vpncmd-wireguard-keys
...
Cedar/Command: Add GenX25519 and GetPublicX25519 commands
2021-07-07 13:04:13 +05:00
Davide Beatrici
c310163244
Cedar/Command: Add GenX25519 and GetPublicX25519 commands
...
GenX25519 command - Create new X25519 keypair
Help for command "GenX25519"
Purpose:
Create new X25519 keypair
Description:
Use this to create a new X25519 keypair, which can be used for WireGuard.
Both the private and public key will be shown.
The public key can be shared and is used to identify a peer.
Also, it can always be retrieved from the private key using the GetPublicX25519 command.
The private key should be kept in a secure place and never be shared.
It cannot be recovered once lost.
Usage:
GenX25519
==========================================================================================
GetPublicX25519 command - Retrieve public X25519 key from a private one
Help for command "GetPublicX25519"
Purpose:
Retrieve public X25519 key from a private one
Description:
Use this if you have a private X25519 key and want to get its corresponding public key.
Usage:
GetPublicX25519 [private]
Parameters:
private - The private X25519 key you want to get the corresponding public key of.
2021-07-07 08:43:41 +02:00
Davide Beatrici
9dbbfcd388
Mayaqua: Add new cryptographic functions for X25519/X448 keys management
...
The files are created in a new folder to keep the source tree tidier.
Please note that only X25519/X448 keys are supported due to an OpenSSL limitation:
https://www.openssl.org/docs/manmaster/man3/EVP_PKEY_new.html
We have functions that handle AES keys in Encrypt.c/.h.
Ideally we should move them into the new files.
2021-07-07 08:11:08 +02:00
Davide Beatrici
4328e6e5ab
CMake: Link Cedar to Mayaqua directly
...
It's Cedar itself that depends on Mayaqua, not the executables.
2021-07-07 08:08:12 +02:00
domosekai
4efed994dc
Mayaqua/Network.c: Use int as boolean flags for socket options
2021-07-07 03:07:06 +00:00