Skip to content
Snippets Groups Projects
Select Git revision
  • main default protected
  • fix-34
  • test-ci-fix
  • fix-20
  • fix_menshen_locations
  • update_menshen_fix_provider_service
  • maxb/testing-menshen-removing-replace-build
  • update_swagger_client
  • fetch_ca
  • maxb/add-introducer-client-example
  • add_gomobile_ci
  • bridges_api
  • bitmask-core-support-connect-without-ssl-on-leap-namespace
  • patch-local-init
  • enable_no_tls
15 results

bitmask-core

  • Clone with SSH
  • Clone with HTTPS
    • atanarjuat's avatar
    wip
    atanarjuat tfr authored
    b8a9f0ed
    History
    atanarjuat's avatar b8a9f0ed
    History
    Name Last commit Last update
    cmd
    internal/client
    models
    pkg
    .gitignore
    LICENSE
    Makefile
    README.md
    go.mod
    go.sum
    go.work
    go.work.sum
    README.md

    bitmask-core

    bitmask-core is a library to handle bootstrap for a LEAP provider in an unified way.

    features

    • For the initial boostrap, use DoH or an arbitrary SOCKS5 proxy (for Tor/snowflake).
    • Handle a local registry of private bridges.
    • Handle a local registry of known introducers.

    Compile

    go build ./cmd/bitmaskcfg

    Usage

    bitmaskcfg is a CLI tool to fetch a working configuration 
from a LEAP VPN service.

This application can be used to generate an openvpn config file,
or to inspect the health of different endpoints.

Usage:
  bitmaskcfg [command]

Available Commands:
  bridge      Manage private bridges
  completion  Generate the autocompletion script for the specified shell
  config      Fetch and handle configuration
  help        Help about any command
  introducer  Manage obfuscated introducers
  locations   List all known locations

Flags:
      --config string   config file
  -v, --verbose         verbose output
  -h, --help            help for bitmaskcfg

Use "bitmaskcfg [command] --help" for more information about a command.

    Examples

    Fetching a list of locations

    ❯ ./bitmaskcfg locations --host menshen.example.org ls
4:08PM INF Using uTLS client with direct connection
4:08PM INF Using DoH resolver: 208.67.222.222
ID  location
1   amsterdam
2   miami
3   montreal
4   newyorkcity
5   paris
6   seattle

    Picking the best location

    This command will first fetch gateways for a subset of locations, ping them and then evaluate the best one based on the measured latency:

    ❯ ./bitmaskcfg locations --host menshen.example.org best
4:09PM INF Picking best location...
4:09PM INF using host: menshen.example.org
4:09PM INF Using uTLS client with direct connection
4:09PM INF Using DoH resolver: 208.67.222.222
Best: paris (163.172.58.132)

    Add an introducer

    Add a new introducer:

    ❯ ./bitmaskcfg introducer add litteintroducer "obfsvpnintro://1.2.3.4:8443/?cert=neVUoIX/qGFP59HAz8M5XZAt9vbHIXPx5W68Bo6iZdHaqs9Ec3LTTGV8unhLJslVC0mmGA&kcp=1&fqdn=menshen.asdf.network"

    Use the introducer to communicate with the API

    After successfully adding an introducer to the database, it can be used to contact the API:

    ❯ ./bitmaskcfg introducer ls
ID  Selected  Name              Created       Last used
11            littleintroducer  1 min ago     never

❯ ./bitmaskcfg locations best --introducer littleintroducer
4:23PM INF Picking best location...
4:23PM INF using host: menshen.example.org
4:23PM WRN --host=menshen.example.org will be overriden with --fqdn=other.example.org because introducer has precedence
4:23PM INF Using obfuscated http client
Best: paris (163.172.83.106)

    Persistent config

    You can use $HOME/.bitmaskcfg for some common settings that will be picked by default:

    ❯ cat ~/.bitmaskcfg
host: menshen.example.org
#bridge: bridge-1
#introducer: littleintroducer

    bitmask-linux tool

    Additionally, refer to the documentation in cmd/bitmask-linux for an experimental linux client using openvpn3 and dbus.

    Maintenance

    For synchronized changes in the api, you will need to import internal/client and models as generated by menshen (make swag). An utility script should be provided at some point.