Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Version 3.0.0 #283

Merged
merged 178 commits into from
Oct 27, 2021
Merged

Version 3.0.0 #283

merged 178 commits into from
Oct 27, 2021

Conversation

jotyGill
Copy link
Owner

New release in 3 years. This is a major release that includes many improvements and bugfixes including fix for new API rate limiting set by Nordvpn, causing JSONDecodeErrors.

Some of the changes are:

New feature: Allow Openpyn to invoke sudo to run the specified command

Added MacOS manual DNS patch and revert to prevent DNS leak

New option --allow-locally To be used with "-f" to allow input traffic on all ports from locally connected devices / INTERNAL IP SUBNET

[New option --add-route to Add route to default-gateway; Needed to continue serving any service including SSH. Required on VPSs. To ensure it doesn't leak traffic use it with -f and --allow]

New options --allow-config and --allow-config-json. These options load a JSON config object that gets converted into a series of ip table rules that get loaded before the firewall to exclude certain ports.

[Logs are now stored in ~/.local/share/openpyn/logs/ instead of /var/log/openpyn/]

New option --stats

Send pings in parrallel

Removed --ping option

Added new Netflix servers

Fixed ping issue on systems with LC_NUMERIC other den en_*

Bugfix, kill_management_client() should be called before kill_openpyn

Bugfix: Revert /etc/resolv.conf only if skip_dns_patch is false

Improvement: invocations of openpyn --kill will now exit with status code 0

Add more verbose logging for JSON decode errors

Bugfix: revert /etc/resolv.conf back to the original if it was modified in a finally block (only for connect code invocations), ran tests on macOS

Changes for ASUSWRT-Merlin

Features (ASUSWRT-Merlin)

Feature: NVRAM connect and kill support for Asuswrt-merlin

Note:
Previously only write support was enabled meaning that a user would have to go to the web interface of the router to toggle an off/on switch, now this process is fully automated, and kill also works as a bonus. So now openpyn has full native Asuswrt-merlin support!

Bugfixes (ASUSWRT-Merlin)

Bugfix (nvram) and optimisations

Bugfixes and new features for NVRAM users, external app users

Bugfix: nvram write would fail if certificates folder does not exist yet (e.g., when user has never before used OpenVPN client in web interface)

Bugfix: ASUSWRT-Merlin 384.18 is now supported

Bugfix: ASUSWRT-Merlin latest is now supported

Bugfix: Improve check VPN client status for Asuswrt-merlin

Bugfix: Suppress output for VPN service connect/disconnect for Asuswrt-merlin

Bugfix: Suppress output for VPN service connect/disconnect for Asuswrt-merlin

jotyGill and others added 30 commits September 11, 2018 14:23
@jotyGill
Working on --status
b0917bb
@jotyGill
Suppress shutdown down notification
1d741b8
@jotyGill
Added python_requires='>=3.5'
6690cb3
@jotyGill
Added --status, improved security permissions of log folder/files
0db005c 
removed write permissions for others to folder "/var/log/openpyn" and
 execute permissions to files in it.
couldn't have Rotating logs to facilitate it.
added --status   stores status in "/var/log/openpyn/status"
store "openvpn --status" option's output to
"/var/log/openpyn/openvpn-status"
Except FileNotFoundError when config file is not yet downloaded
@jotyGill
Change file handler to work with better security permissions
e2fce20
@jotyGill
Send UP/DOWN to /var/log/openpyn/status
1b4419f
@jotyGill
2.7.6.dev1
65a22a4
@jotyGill
Merge branch 'test' into temp-status
9013663
@jotyGill
Merge pull request #213 from jotyGill/temp-status
9705f4e 
added --status
@1951FDG
Massive commit, bug fixes, refactoring, linting, testing, use of exce…
d1e1133 
…ptions instead of status returns, removal of sys.exit() calls
@1951FDG
Load tun module under routerOS, only if nvram is disabled, netflix fi…
666c5ed 
…lter optimisation (CPU in a router is very slow)
@1951FDG
Change get_status() to print_status(), add check if openpyn-managemen…
ba50397 
…t is running
@1951FDG
beautify lint and add optional steps for Asuswrt-merlin setup
5a239d4
@1951FDG
n/a
d0aa0cc
@1951FDG
Included omitted text, DNS must be changed manually on Asuswrt-merlin…
0f73488 
…, until further testing is done!
@1951FDG
Small performance fix, some servers could have multiple categories, a…
7afcbf0 
…nd if using 'if' instead of 'elif', that very same server would be added multiple times to the remaining_servers list
@jotyGill
Merge pull request #219 from 1951FDG/test
c1e8ac7 
A very big pull request :)
@1951FDG
Bugfix, log files are removed upon reboot on routerOS
3bc279a
@1951FDG
Same theoretical max number of retries for server as country_code 3 x…
193f578 
… 10 (default) == 30
@1951FDG
Bugfix, kill_management_client() should be called before kill_openpyn…
60f907b 
…_process()
@1951FDG
Add comments, kill_openpyn_process() returns exit code 143 since it k…
b509a21 
…ills the calling process as well (no clean exit code of 0)
@1951FDG
Bugfix, don't touch iptable rules for routerOS
15a6c87
@1951FDG
Bugfix, proper detection when openvpn is killed, now if openvpn is ki…
f9cb261 
…lled, openpyn will exit gracefully as well, explanation -- "sudo openpyn --kill" would kill openvpn, but openvpn could/would be run just in time again before "sudo killall openpyn" call in kill_all()
@1951FDG
Bugfix, no need to add the same server multiple times
35bfb19
@1951FDG
Bugfix, set formatter for handler, set level on handler instead of lo…
4ce01d4 
…gger
@1951FDG
Comment remaining logger.debug() lines
18e834c
@1951FDG
Change log levels to more appropiate ones
5819f69
@1951FDG
Remove set level on handler, android app allows setting the logging l…
d06efd5 
…evel in preferences now
@jotyGill
Merge pull request #221 from 1951FDG/test
682d4da 
Some minor fixes by 1951FDG
@ranisalt
Drop external software dependencies and need for root access
5ee459b
1951FDG and others added 27 commits March 19, 2021 01:39
@1951FDG
rename variables to avoid conflicts with built-ins and global variabl…
8941293 
…e root
@1951FDG
comment out loop that does nothing (needs clarification)
2bdaa88
@1951FDG
Bugfix: revert /etc/resolv.conf back to the original if it was modifi…
5aa0aa5 
…ed in a finally block (only for connect code invocations), ran tests on macOS
@1951FDG
Overwrite requirements.txt (proper)
e3a82e2
@1951FDG
Update README (update installation method for macOS, Asuswrt-merlin, …
2c51175 
…Entware, OpenWrt)
@1951FDG
Feature: NVRAM connect and kill support for Asuswrt-merlin
ad3f6cf
@1951FDG
Bugfix: Improve check VPN client status for Asuswrt-merlin
3ad4f0b
@1951FDG
Bugfix: Suppress output for VPN service connect/disconnect for Asuswr…
552d4df 
…t-merlin
@1951FDG
Bugfix: Suppress output for VPN service connect/disconnect for Asuswr…
fa1fa5c 
…t-merlin
@1951FDG
Bugfix: Revert /etc/resolv.conf only if both skip_dns_patch and test …
0864aac 
…is false
@1951FDG
Update README (update installation method for macOS, Asuswrt-merlin)
90fc9b9
@jotyGill
Merge pull request #276 from 1951FDG/test
333fd95 
Update README, bugfixes and new features run as another privileged user, NVRAM connect and kill support for Asuswrt-merlin
@1951FDG
Improve spelling
05ab9f9
@1951FDG
Add Black configuration file (Python 3.5)
19e0038
@1951FDG
Updated pylama.ini
a89a21a
@1951FDG
Add Flake8 configuration
bfd15c9
@1951FDG
Add Pylint configuration file
61fc326
@1951FDG
Pylint cleanup 1
8434544
@1951FDG
Pylint cleanup 2
c83b520
@1951FDG
Pylint cleanup 3
cc5f085
@1951FDG
Improve logging (asus/converter), change logging level defaults
62028de
@1951FDG
Remove config.json (file is not used)
9f6d7e4
@1951FDG
Cache the response of the API (respect the rate-limits)
29a5a8f
@jotyGill
Merge pull request #282 from 1951FDG/test
2849d1c 
Several changes including fix for new API rate limiting
@jotyGill
Only run revert-manual-dns-patch.sh, if manual-dns-patch was applied
faa5dcc
@jotyGill
Graceful error when --stats needs sudo access
47dd730
@jotyGill
Version 3.0.0
2772381
@jotyGill jotyGill merged commit 74a2c4d into master Oct 27, 2021
@1951FDG
Copy link
Contributor

1951FDG commented Oct 27, 2021
edited
Loading

@jotyGill This is a huge release ! !, :)

I wasn't expecting a release this quickly, we also need to update the Netflix code, we should remove the argument and everything Netflix related, since its no longer relevant, and there is no documentation anymore about it on NordVPN.

Let me know if you're ok with this.

Edit: We leave the argument, but deprecate it, with or without a warning, and we remove all code Netflix related

@jotyGill
Copy link
Owner Author

jotyGill commented Nov 2, 2021

@1951FDG
Cool, sounds good. When somene uses --netflix, I think we should display something like,
Support for --netflix option has been deprecated by NordVPN. Please remove it from your scripts.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@jotyGill @1951FDG @ranisalt @christopherreay @geeks-r-us