vanja/gluetun
1
0
Fork 0
mirror of https://github.com/qdm12/gluetun.git synced 2026-05-06 20:10:11 +02:00
Code Issues Packages Projects Releases Wiki Activity
2,318 Commits 27 Branches 78 Tags
c47cc90181d1ca8b885924a6208f2bd41a096034
Commit Graph

2318 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Quentin McGaw c47cc90181 chore(ci): test protonvpn OpenVPN with port forwarding 2026-05-03 03:50:16 +00:00
Quentin McGaw f8400c1b1c chore(ci): test protonvpn Wireguard with port forwarding 2026-05-03 02:42:07 +00:00
Quentin McGaw 4bada8f0cd docs(Dockerfile): remove amneziawg ENV declared twice 2026-05-03 01:48:27 +00:00
Quentin McGaw b1b991b84e feat(devrun): add initial implementation of devrun tool 
See ./devrun/README.md for more details.
 2026-05-02 05:07:10 +00:00
Quentin McGaw 4a78989d9d chore: do not use sentinel errors when unneeded 
- main reason being it's a burden to always define sentinel errors at global scope, wrap them with `%w` instead of using a string directly
- only use sentinel errors when it has to be checked using `errors.Is`
- replace all usage of these sentinel errors in `fmt.Errorf` with direct strings that were in the sentinel error
- exclude the sentinel error definition requirement from .golangci.yml
- update unit tests to use ContainersError instead of ErrorIs so it stays as a "not a change detector test" without requiring a sentinel error
 2026-05-02 03:29:46 +00:00
Quentin McGaw 9b6f048fe8 chore(pmtud): fix integration tests not compiling 2026-05-02 03:29:01 +00:00
Quentin McGaw 7a74d4f462 hotfix(openvpn): revert "feat(openvpn): reduce handshake window to 10 seconds for faster failure detection" 
This reverts commit f615e3c780.
 2026-05-01 17:05:09 +00:00
Quentin McGaw 66b9f71ecf hotfix(openvpn): fix support for tcp-client 
- always use `proto tcp-client` when using TCP
- parses `tcp-client` (on top of `tcp`, `tcp4`, `tcp6`) as meaning TCP
- Fix #3302
 2026-05-01 00:39:58 +00:00
Quentin McGaw 704a7fd7ef chore(dev): add AGENTS.md 2026-04-30 23:55:59 +00:00
Quentin McGaw f615e3c780 feat(openvpn): reduce handshake window to 10 seconds for faster failure detection 2026-04-30 23:55:59 +00:00
Quentin McGaw f1a8303db7 chore(dev): add markdownlint-cli2 (and nodejs) in dev container 2026-04-30 11:12:52 +00:00
Quentin McGaw 628b0a22e2 hotfix(pia): fix servers data updater and update servers data 
- use v7 API endpoint to get correct list of servers
- skip offline regions
- do not skip *.pvt.site
 2026-04-22 12:34:56 +00:00
Quentin McGaw ea3d138bd6 fix(pia): ignore *.pvt.site regions 2026-04-22 00:49:47 +00:00
Quentin McGaw c3a6809447 fix(pia): try x.y.128.1 and x.y.0.1 from the gateway IP to find the API IP address 2026-04-22 00:42:23 +00:00
Quentin McGaw 792a5ff5f3 hotfix(dns): fix pool panicing (again) 2026-04-21 17:31:36 +00:00
Quentin McGaw 7eef1c89a7 fix(portforward): no longer stuck after failed port forwarding 2026-04-20 15:27:47 +00:00
Quentin McGaw 8bc2fbd487 hotfix(dns): fix race condition with DoT pool 2026-04-20 14:31:35 +00:00
Quentin McGaw a4eb625fbe chore(settings/dns): remove unused code 2026-04-19 18:05:19 +00:00
Quentin McGaw 17a7bf6d54 fix(privateinternetaccess): use AES-GCM for all presets 2026-04-19 18:00:56 +00:00
Quentin McGaw b11de4f0c3 fix(privateinternetaccess): remove none encryption preset 2026-04-19 17:51:20 +00:00
Quentin McGaw e87a92efa0 hotfix(boringpoll): fix race condition on stop 2026-04-19 17:48:38 +00:00
Quentin McGaw 44977f4d9e fix(dns): DNS over TLS pool behavior fixed 
- handle timed out connections the same as closed connections
- close connection on TLS handshake failure
- improve mutex handling during connection renewal and retrieval
 2026-04-19 01:31:09 +00:00
Quentin McGaw c473579261 chore(provider/utils): remove unused code 2026-04-19 01:31:09 +00:00
Quentin McGaw d5eeec6fb3 feat(protonvpn): support up to 5 forwarded ports (#3208) 2026-04-18 02:36:06 +02:00
Quentin McGaw 7e7e8182ef fix(proton): fix updater code 
- simplest fix ever
- proton: how can you return such obscure error messages
- ai: you suck hard at fixing anything still it's embarassing
 2026-04-10 14:48:54 +00:00
Quentin McGaw 64fd11d013 chore(github): add drunk AI label 2026-04-10 14:12:34 +00:00
Drew Wells 2006fae0e3 fix(wireguard): support IPv6 address formatting from config files (#3273) 2026-04-08 17:04:35 +02:00
Quentin McGaw 3b9c9b24bd fix(server/auth): return 404 or 405 depending on route 
- Fix #3275
 2026-04-07 19:44:07 +00:00
Quentin McGaw 11883aa830 feat(netlink): detect ipv6 support level (#2523) 
- add option `IPV6_CHECK_ADDRESSESES=[2001:4860:4860::8888]:53,[2606:4700:4700::1111]:53`
- gluetun needs access to the addresses above through the host firewall, to test ipv6 support before setting up the vpn
 2026-04-07 07:48:15 -04:00
Damoon Tahmasbi 1ae85aa5d0 fix(vyprvpn/updater): update OpenVPN configs zip URL (#3264) 2026-04-03 14:34:10 +02:00
Quentin McGaw 763c5be119 fix(server/portforward): use port and ports for both single port and multiple ports forwarded 2026-03-29 01:22:04 +00:00
Michael Bisbjerg 5b88c76a14 fix(openvpn): bundle provider CA certificates in one block (#3258) 2026-03-26 22:32:43 +01:00
Quentin McGaw 086e3740f3 fix(firewall/iptables): shared mutex for both iptables and ip6tables 2026-03-23 14:35:33 +00:00
Quentin McGaw 57cf276d31 chore(firewall/iptables): log restore data on failure to restore 2026-03-23 14:35:33 +00:00
Quentin McGaw 405a6f699d hotfix(dns): always run and use built-in DNS server 
- start DNS server before healthcheck
- do not fallback to plaintext anymore
- allow to use plain addresses with a port different than 53, system-wide
- do not wait for the DNS server and rely on healtcheck only
 2026-03-23 14:35:12 +00:00
Quentin McGaw 72af17cc91 hotfix(dns): fix behavior for DNS_UPSTREAM_PLAIN_ADDRESSES 2026-03-21 23:37:36 +00:00
Zhurik 8a2e8bda0f hotfix(amneziawg): fix errors (#3240) 2026-03-21 23:24:03 +01:00
Quentin McGaw 5e6c11b045 feat(dns): add leak check report log 2026-03-16 13:57:14 +00:00
Quentin McGaw 85d2917e8e chore(dns): refactor loop code Run to have less indentation 2026-03-16 13:53:14 +00:00
Quentin McGaw 9a5995fa72 hotfix(dns): DNS_UPSTREAM_RESOLVERS defaults to empty if DNS_UPSTREAM_PLAIN_ADDRESSES is not empty 2026-03-16 13:48:35 +00:00
Quentin McGaw 2438fc2c3a chore!(firewall): iptables logger level is set at FIREWALL_IPTABLES_LOG_LEVEL 
- firewall log level is still fully controlled by `LOG_LEVEL`
- iptables log level defaults to `info` even if global log level is `debug` to minimize the amount of debug logs
- iptables log level is only set to debug if retro-compatible `FIREWALL_DEBUG=on` or if `FIREWALL_IPTABLES_LOG_LEVEL=debug`
 2026-03-16 12:46:53 +00:00
Quentin McGaw 8aaf998fa1 chore!(firewall): FIREWALL_DEBUG no longer affects the routing logger log level 2026-03-13 18:05:56 +00:00
Quentin McGaw f0cbcbb60d chore(ci): bump timeout from 30s to 60s 2026-03-13 17:52:48 +00:00
Quentin McGaw 4e5d4f7793 feat(docker): bump Alpine from 3.22 to 3.23 2026-03-13 15:39:25 +00:00
Quentin McGaw 460ffb637a fix(ci): set hash of PR commit instead of synthetic commit in docker build argument 2026-03-13 15:13:03 +00:00
dependabot[bot] c83d4b0926 Chore(deps): Bump golang.org/x/text from 0.34.0 to 0.35.0 (#3227) 2026-03-13 15:57:47 +01:00
Quentin McGaw 00d1592899 hotfix(sources/secrets): fix wireguard/amnezia mixup 
- Fix #3228
 2026-03-13 14:48:11 +00:00
dependabot[bot] b5b0e01376 Chore(deps): Bump github.com/mdlayher/netlink from 1.7.2 to 1.9.0 (#3199) 2026-03-11 21:43:10 +01:00
Quentin McGaw b04529c380 chore!(amneziawg): refactor to be separate from wireguard 
- amneziawg is now a VPN protocol and no longer a Wireguard implementation
- Use it with VPN_TYPE=amneziawg
- document AMNEZIAWG_* options in Dockerfile
- document amneziawg support in readme
- separate amneziawg settings and code from wireguard
- re-use code from wireguard whenever possible
 2026-03-11 17:16:18 +00:00
Quentin McGaw efea169495 hotfix(vpn): fix vpn stop when down command is empty 2026-03-11 16:26:13 +00:00