Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

VPN no longer binds to a fixed listening port #901

Merged
merged 1 commit into from
Jul 18, 2024
Merged

VPN no longer binds to a fixed listening port #901

merged 1 commit into from
Jul 18, 2024

Conversation

diegoreymendez
Copy link
Contributor

@diegoreymendez diegoreymendez commented Jul 18, 2024
edited
Loading

Task/Issue URL: https://app.asana.com/0/1207603085593419/1207825471514017/f

iOS PR: Will integrate this to iOS main once released. iOS doesn't need this with urgency.
macOS PR: duckduckgo/macos-browser#2992

What kind of version bump will this require?: Patch

Description

We were specifying a listening port for WireGuard, which is not a good idea for a VPN client both for technical and security reasons.

Testing

Test using the macOS PR.

Definition of Done:

Internal references:

Pull Request Review Checklist
Software Engineering Expectations
Technical Design Template
Pull Request Documentation

@diegoreymendez diegoreymendez mentioned this pull request Jul 18, 2024
Merged
2 tasks
@diegoreymendez diegoreymendez changed the title Removes the listen port from the wireguard client VPN no longer binds to a fixed listening port Jul 18, 2024
@afterxleep afterxleep self-requested a review July 18, 2024 14:15
afterxleep
afterxleep approved these changes Jul 18, 2024
View reviewed changes
Copy link
Collaborator

@afterxleep afterxleep left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Binding the WireGuard port using nc causes the issue in PROD. Build (1.9.7.0-221).

This fixes it 💪.

@diegoreymendez diegoreymendez self-assigned this Jul 18, 2024
@diegoreymendez diegoreymendez merged commit eea55b8 into release/171.1.1-1 Jul 18, 2024
9 checks passed
@diegoreymendez diegoreymendez deleted the diego/remove-listening-port-from-wireguard branch July 18, 2024 14:51
diegoreymendez added a commit to duckduckgo/macos-browser that referenced this pull request Jul 18, 2024
@diegoreymendez
VPN no longer binds to a fixed listening port (#2992)
fb46349 
Task/Issue URL:
https://app.asana.com/0/1207603085593419/1207825471514017/f

iOS PR: Will integrate this to iOS main once released. iOS doesn't need
this with urgency.
BSK PR: duckduckgo/BrowserServicesKit#901

## Description

We were specifying a listening port for WireGuard, which is not a good
idea for a VPN client both for technical and security reasons.
samsymons added a commit that referenced this pull request Jul 19, 2024
@samsymons
Merge branch 'main' into sam/reduce-vpn-manager-instances
51c110b 
* main:
  Resetting all state for the VPN will cancel the tunnel and stop the monitors (#900)
  Add support for skipping sending usage pixels for remote messages (#902)
  Bump Tests/BrowserServicesKitTests/Resources/privacy-reference-tests (#896)
  Removes the listen port from the wireguard client (#901)
samsymons added a commit that referenced this pull request Jul 19, 2024
@samsymons
Merge branch 'main' into sam/vpn-snooze-initial-support
4a27033 
* main:
  Remove unused VPN session utilities (#898)
  Add new deprecated Mac remote message attribute. (#903)
  Resetting all state for the VPN will cancel the tunnel and stop the monitors (#900)
  Add support for skipping sending usage pixels for remote messages (#902)
  Bump Tests/BrowserServicesKitTests/Resources/privacy-reference-tests (#896)
  Removes the listen port from the wireguard client (#901)
  Be explicit when performing developer redirects (#884)
  C-S-S cross origin fixes
  Update C-S-S version (#892)
  Add a debug menu action to reset Remote Messages on macOS (#891)
  Add desktop specific RMF attributes (#883)
  Upload exception message to Sentry (#856)
  Add locale to broken site report (#889)
  Add new subfeature for duckplayer (#885)
  Swiftlint refactoring (#882)
  Remote Messaging Framework for macOS (#876)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@afterxleep afterxleep afterxleep approved these changes

Assignees

@diegoreymendez diegoreymendez

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@diegoreymendez @afterxleep