+ // Indicates that tunnel is being torn down.
+ // If disconnect == true, then the teardown is occurring
+ // prior to final disconnect.
+ virtual void tun_builder_teardown(bool disconnect) {}
(const std::string& server_address and bool server_address_ipv6)
because they are redundant. The same info is passed via
tun_builder_set_remote_address.
1. route all DNS requests through pushed DNS server if no added
search domains.
2. route selected DNS requests through pushed DNS server if at
least one added search domain.
On Android, apparently there is no selective DNS routing, so all
DNS requests will be routed through pushed DNS server, if at least
one exists.
With redirect-gateway on both platforms, all DNS requests are always
routed through the VPN.
Android: 1.1.9 build 31
* Reverted key-direction back to a default of 1.
* Raise fatal error if "fragment" option is used.
* Made TunBuilderCapture more useful as a base class for
tun construction on various platforms.
* Added disableClientCert flag at ovpncli.hpp API.
* Updated help FAQ with more details on how to
properly set key-direction, and notes about
possible network disconnect during voice calls.
* Implement a simple DNS cache to work around issue with
Seamless Tunnel -- When Seamless Tunnel is enabled,
reconnections are unable to send DNS requests because
the internet is blocked. This fix caches the IP address
used for the initial connection, then reuses it
over the lifetime of the Seamless Tunnel.
* Try to ensure that connections properly pause on device
sleep (when sleep on screen blanking is NOT enabled) so
that they will survive until wakeup.
iOS:
* Don't choke on foreign profiles (such as VPN On Demand) that are
imported onto the device but lack critical info such as a
config file.
Versioning:
iOS -- 1.0 Beta 23
Android -- 1.1.0 (build 6)
Both clients:
* Bundled IPv6 test profile as provided by Gert Doering.
Modified iOS beta testing notes with info on this profile.
* Fixed issue where profile import might fail if profile
filename ended in .OVPN (i.e. all-caps extension).
Android client:
* General UI cleanup:
1. Added status icon,
2. eliminated long "Connected" line that wrapped badly on
phone-sized devices,
3. reorganized connection details,
4. include all stats that are provided by the core,
including "last packet received n seconds ago".
* Fixed issue where importing profiles via web browser would not
ultimately land on the OpenVPN main page after import completion.
* Added profile rename (select via long-touch on profile name).
* Added "Auto Keyboard" preference similar to iOS.
* Turn on full compression by default (can be modified via
a preference), just as it is for iOS.
* Disable spell-checker on all input fields.
* Wait a maximum of 5 seconds (formerly 3) after Disconnect button
press before abandoning core thread.
* Added versionName and versionCode to AndroidManifest.xml for
Google play submission.
* Revamped OpenVPNService event model for profile management events,
to fix some corner-case issues.
Android API changes:
This release includes some minor changes to the OpenVPN Service API:
1. Added enable_trust_error_dialog boolean parameter to
OpenVPNClientBase.importProfileRemote. This should be set to false
for Private Tunnel client.
2. Changed the way that profile import events signal back to the UI
layer. OpenVPNClientBase.get_priority_profile_name has been
removed, and profile signaling events are now performed completely
via the standard event stream.
Implemented IPv6 in iOS client.
Added new flags to redirect-gateway to control whether redirection
occurs at IPv4 or IPv6 levels (or both):
* ipv4 (default)
* !ipv4
* ipv6
* !ipv6
Added new directive "redirect-dns yes|no". If yes, all DNS requests
will be forwarded through pushed DNS servers. If no, only DNS
requests that match domains enumerated in "dhcp-option DOMAIN"
directives will be forwarded. If redirect-dns is omitted, it will
default to yes if redirect-gateway is specified at the IPv4 level
(this is the normal pre-existing behavior).
Allow the following aggregated options that are normally pushed by
the server to be defined in the config file as well. These options
will be combined with server-pushed options:
* route
* route-ipv6
* redirect-gateway
* redirect-private
* dhcp-option
Allow the following singleton options (i.e. options that don't
aggregate), that are normally pushed, to be defined in the config
file (note that server-pushed singleton options will override the
config file setting):
* redirect-dns
The Connection Details section of the UI now displays VPN IP
addresses for IPv4 and IPv6.
Added new pushable option "client-ip IP_ADDR" that can be pushed
by the server with the client's IP address as seen by the server.
The client will then show the address in the Connection Details
section of the UI.
connect intent to service when already connected.
One of the ramifications of the "hot connect" fix above is that
OpenVPNClientBase.is_active() will now return a value that is
instantaneously up-to-date, whereas events might lag because
of the mechanics of inter-thread message posting. Keep this in
mind when correlating received events to is_active() values.
For C++ core threads, increased allowed thread-stop delay to 2.5
seconds before thread is marked as unresponsive and abandoned.
Previous delay was 1 second. This delay can't be made too long,
otherwise Android will tell the user that the app is unresponsive
and invite them to kill it.
When closing out an abandoned core thread, indicate this condition
with a new event type called CORE_THREAD_ABANDONED. If the thread
is abandoned due to lack of response to a disconnect request, then
the CORE_THREAD_ABANDONED event will occur followed by
CORE_THREAD_INACTIVE. For core threads that properly exit,
the DISCONNECTED event will be followed by CORE_THREAD_INACTIVE.
Added save_as_filename parameter to importProfileRemote method for
controlling the filename that the imported profile is saved as.
This parameter may be set to null to have the method choose an
appropriate name. To have an imported profile replace an existing
profile, the filenames much match.
Added UI_OVERLOADED debugging constant to OpenVPNClient to allow
the UI to connect to a profile when already connected to another
profile in order to test "hot connect".
Added new events CLIENT_HALT and CLIENT_RESTART for compatibility
with an Access Server feature that allows the server to remotely
kill or restart the client.
When connecting a profile, the core will now automatically fill in
the username if it is not specified for userlocked profiles.
Version 0.902.
* Implemented connection timeout.
* Implemented show raw stats page.
* Work around issue where sometimes core doesn't stop when
stop() method is called, because of delays in canceling
Asio DNS resolution thread.
* Multi-profile support.
* UI now only shows required fields for each profile.
* Added support for server field.
* Added support for static challenge/response.
* Persist profile/server settings to preferences store.
