Jump to content
Not connected, Your IP: 3.147.28.111
Staff

Hummingbird 1.0.2 released

Recommended Posts

@crypto1.0

Hello!

In Raspbian 10 you don't have a module for table "security". You can safely ignore those warnings, as Network Lock rules will be set anyway, no need of that table.

Kind regards
 

Share this post


Link to post
3 hours ago, Staff said:
@crypto1.0

Hello!

In Raspbian 10 you don't have a module for table "security". You can safely ignore those warnings, as Network Lock rules will be set anyway, no need of that table.

Kind regards
 

Thank you.
At the beginning it didn't work and i though the issue was related to those warning. Then i tried to remove opennic dns on my connection settings and now it's working like a charm :)

Share this post


Link to post

Strange;
Sat May 16 10:12:27.909 2020 net_route_add: 134.19.179.133/32 via 192.168.178.1 dev eth0 table 0 metric 0
Sat May 16 10:12:27.909 2020 Sat May 16 10:12:27.909 2020 Connecting to [nl3.vpn.airdns.org]:443 (134.19.179.133) via UDPv4
Sat May 16 10:12:27.909 2020 UDP send exception: send: Operation not permitted
Sat May 16 10:12:27.909 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 10:12:27.909 2020 UDP send exception: send: Operation not permitted
Sat May 16 10:12:27.909 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 10:12:28.909 2020 UDP send exception: send: Operation not permitted
Sat May 16 10:12:28.909 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 10:12:29.909 2020 UDP send exception: send: Operation not permitted
Sat May 16 10:12:29.909 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 10:12:30.909 2020 UDP send exception: send: Operation not permitted
Sat May 16 10:12:30.909 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 10:12:31.909 2020 UDP send exception: send: Operation not permitted
Sat May 16 10:12:31.909 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 10:12:32.910 2020 UDP send exception: send: Operation not permitted
Sat May 16 10:12:32.910 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 10:12:33.218 2020 Server poll timeout, trying next remote entry...
Sat May 16 10:12:33.218 2020 EVENT: RECONNECTING
Sat May 16 10:12:33.218 2020 ERROR: Backup copy of resolv.conf not found.
Sat May 16 10:12:33.229 2020 Network filter successfully restored
Sat May 16 10:12:33.229 2020 ERROR: N_RECONNECT
Sat May 16 10:12:33.229 2020 EVENT: RESOLVE
Sat May 16 10:12:33.229 2020 Network filter and lock is using iptables

 

Share this post


Link to post

Hello.
I've been using hummingbird with just ovpn configuration files for some time and works great, but when I've tried to use commandline options I found some trouble.
I compared different configuration files and saw that they where really similar one to another:

# diff AirVPN_NL-Alblasserdam_Alcyone_UDP-443.ovpn AirVPN_ES-Barcelona_Eridanus_UDP-443.ovpn
4c4
< # AirVPN_NL-Alblasserdam_Alcyone_UDP-443
---
> # AirVPN_ES-Barcelona_Eridanus_UDP-443
9c9
< remote 213.152.161.116 443
---
> remote 185.183.106.2 443

This made me think that I could have a reduced amount of configuration files and call hummingbird with its --server option to pick the server.
# hummingbird -s 213.152.161.116 AirVPN_ES-Barcelona_Eridanus_UDP-443.ovpn
But It didn't work as It looks like network lock adds the IP in the configuration file instead of the one provided as an argument (logs at the end)
I tried to do it setting network lock off and worked fine.
 

Hummingbird - AirVPN OpenVPN 3 Client 1.0.2 - 4 February 2020

Sat May 16 12:09:37.245 2020 Starting thread
Sat May 16 12:09:37.245 2020 OpenVPN core 3.6.3 AirVPN linux x86_64 64-bit
Sat May 16 12:09:37.250 2020 Frame=512/2048/512 mssfix-ctrl=1250
Sat May 16 12:09:37.254 2020 UNUSED OPTIONS
3 [resolv-retry] [infinite]
4 [nobind]
5 [persist-key]
6 [persist-tun]
7 [auth-nocache]
8 [route-delay] [5]
9 [verb] [3]
10 [explicit-exit-notify] [5]
Sat May 16 12:09:37.254 2020 EVENT: RESOLVE
Sat May 16 12:09:37.254 2020 Network filter and lock is using iptables-legacy
Sat May 16 12:09:37.260 2020 Successfully loaded kernel module iptable_filter
Sat May 16 12:09:37.275 2020 Successfully loaded kernel module iptable_nat
Sat May 16 12:09:37.281 2020 Successfully loaded kernel module iptable_mangle
Sat May 16 12:09:37.286 2020 Successfully loaded kernel module iptable_security
Sat May 16 12:09:37.291 2020 Successfully loaded kernel module iptable_raw
Sat May 16 12:09:37.296 2020 Successfully loaded kernel module ip6table_filter
Sat May 16 12:09:37.312 2020 Successfully loaded kernel module ip6table_nat
Sat May 16 12:09:37.318 2020 Successfully loaded kernel module ip6table_mangle
Sat May 16 12:09:37.323 2020 Successfully loaded kernel module ip6table_security
Sat May 16 12:09:37.328 2020 Successfully loaded kernel module ip6table_raw
Sat May 16 12:09:37.331 2020 Network filter successfully initialized
Sat May 16 12:09:37.331 2020 Local IPv4 address 192.168.1.7
Sat May 16 12:09:37.331 2020 Local interface enp62s0u1u2
Sat May 16 12:09:37.331 2020 Local interface wlp2s0
Sat May 16 12:09:37.331 2020 Setting up network filter and lock
Sat May 16 12:09:37.331 2020 Allowing system DNS 127.0.0.1 to pass through the network filter
Sat May 16 12:09:37.331 2020 Adding IPv4 server 185.183.106.2 to network filter
Sat May 16 12:09:37.349 2020 Network filter and lock successfully activated
Sat May 16 12:09:37.349 2020 Contacting 213.152.161.116:443 via UDP
Sat May 16 12:09:37.349 2020 EVENT: WAIT
Sat May 16 12:09:37.349 2020 net_route_best_gw query IPv4: 213.152.161.116/32
Sat May 16 12:09:37.349 2020 sitnl_route_best_gw result: via 192.168.1.1 dev enp62s0u1u2
Sat May 16 12:09:37.349 2020 net_route_add: 213.152.161.116/32 via 192.168.1.1 dev enp62s0u1u2 table 0 metric 0
Sat May 16 12:09:37.350 2020 Sat May 16 12:09:37.350 2020 Connecting to [213.152.161.116]:443 (213.152.161.116) via UDPv4
Sat May 16 12:09:37.350 2020 UDP send exception: send: Operation not permitted
Sat May 16 12:09:37.350 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 12:09:38.254 2020 UDP send exception: send: Operation not permitted
Sat May 16 12:09:38.254 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 12:09:39.255 2020 UDP send exception: send: Operation not permitted
Sat May 16 12:09:39.255 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 12:09:40.255 2020 UDP send exception: send: Operation not permitted
Sat May 16 12:09:40.255 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 12:09:41.255 2020 UDP send exception: send: Operation not permitted
Sat May 16 12:09:41.255 2020 ERROR: NETWORK_SEND_ERROR
Sat May 16 12:09:42.256 2020 UDP send exception: send: Operation not permitted
Sat May 16 12:09:42.256 2020 ERROR: NETWORK_SEND_ERROR

Share this post


Link to post
@eburom

Hello and thank you!

We confirm the bug you found. It is being fixed and a new version will be released before the end of May.

Kind regards
 

Share this post


Link to post

@colorman

Hello!

The quoted error is usually caused by a firewall rule blocking UDP, can you please check?

Kind regards

 

4 hours ago, colorman said:

Sat May 16 10:12:27.909 2020 UDP send exception: send: Operation not permitted

Share this post


Link to post

Thanks for taking care this fast.

I also had some trouble when trying to use the --proto option to pick the protocol to be used. In this case, when compared a TCP and UDP configuration files there's one extra different field in the UDP one so I'm not sure if I should have used some additional parameter in the commnad.

Files differ in:

# diff AirVPN_NL-Alblasserdam_Alcyone_TCP-443.ovpn AirVPN_NL-Alblasserdam_Alcyone_UDP-443.ovpn
4c4
< # AirVPN_NL-Alblasserdam_Alcyone_TCP-443
---
> # AirVPN_NL-Alblasserdam_Alcyone_UDP-443
16a17
> explicit-exit-notify 5
22c23
< proto tcp
---
> proto udp

I tried calling hummingbird with the UDP configuration file but overriding the protocol with tcp.
# hummingbird -P tcp AirVPN_NL-Alblasserdam_Alcyone_UDP-443.ovpn
The logs attached show the exact same as when run without de protocol argument (at the end).
I also checked sockets open in my system:
$ ss -tu
Netid      State      Recv-Q        Send-Q        Local Address:Port          Peer Address:Port         Process                
udp        ESTAB      0             0              192.168.1.70:58304       213.152.161.116:https

PS: As a side note, hummingbird asks for superuser even to check the help (-h)  and wont run show this help if already running.

 

Hummingbird - AirVPN OpenVPN 3 Client 1.0.2 - 4 February 2020

Sun May 17 00:26:40.247 2020 Starting thread
Sun May 17 00:26:40.247 2020 OpenVPN core 3.6.3 AirVPN linux x86_64 64-bit
Sun May 17 00:26:40.251 2020 Frame=512/2048/512 mssfix-ctrl=1250
Sun May 17 00:26:40.256 2020 UNUSED OPTIONS
3 [resolv-retry] [infinite]
4 [nobind]
5 [persist-key]
6 [persist-tun]
7 [auth-nocache]
8 [route-delay] [5]
9 [verb] [3]
10 [explicit-exit-notify] [5]
Sun May 17 00:26:40.256 2020 EVENT: RESOLVE
Sun May 17 00:26:40.256 2020 Network filter and lock is using iptables-legacy
Sun May 17 00:26:40.261 2020 Successfully loaded kernel module iptable_filter
Sun May 17 00:26:40.276 2020 Successfully loaded kernel module iptable_nat
Sun May 17 00:26:40.282 2020 Successfully loaded kernel module iptable_mangle
Sun May 17 00:26:40.288 2020 Successfully loaded kernel module iptable_security
Sun May 17 00:26:40.292 2020 Successfully loaded kernel module iptable_raw
Sun May 17 00:26:40.298 2020 Successfully loaded kernel module ip6table_filter
Sun May 17 00:26:40.312 2020 Successfully loaded kernel module ip6table_nat
Sun May 17 00:26:40.318 2020 Successfully loaded kernel module ip6table_mangle
Sun May 17 00:26:40.323 2020 Successfully loaded kernel module ip6table_security
Sun May 17 00:26:40.328 2020 Successfully loaded kernel module ip6table_raw
Sun May 17 00:26:40.331 2020 Network filter successfully initialized
Sun May 17 00:26:40.331 2020 Local IPv4 address 192.168.1.70
Sun May 17 00:26:40.331 2020 Local interface enp62s0u1u2
Sun May 17 00:26:40.331 2020 Local interface wlp2s0
Sun May 17 00:26:40.331 2020 Setting up network filter and lock
Sun May 17 00:26:40.331 2020 Allowing system DNS 127.0.0.1 to pass through the network filter
Sun May 17 00:26:40.331 2020 Adding IPv4 server 213.152.161.116 to network filter
Sun May 17 00:26:40.348 2020 Network filter and lock successfully activated
Sun May 17 00:26:40.348 2020 Contacting 213.152.161.116:443 via UDP
Sun May 17 00:26:40.348 2020 EVENT: WAIT
Sun May 17 00:26:40.348 2020 net_route_best_gw query IPv4: 213.152.161.116/32
Sun May 17 00:26:40.348 2020 sitnl_route_best_gw result: via 192.168.1.1 dev enp62s0u1u2
Sun May 17 00:26:40.348 2020 net_route_add: 213.152.161.116/32 via 192.168.1.1 dev enp62s0u1u2 table 0 metric 0
Sun May 17 00:26:40.349 2020 Sun May 17 00:26:40.349 2020 Connecting to [213.152.161.116]:443 (213.152.161.116) via UDPv4
Sun May 17 00:26:40.405 2020 EVENT: CONNECTING
Sun May 17 00:26:40.405 2020 Tunnel Options:V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client
Sun May 17 00:26:40.405 2020 Peer Info:
IV_VER=3.6.3 AirVPN
IV_PLAT=linux
IV_NCP=2
IV_TCPNL=1
IV_PROTO=2
IV_LZO_STUB=1
IV_COMP_STUB=1
IV_COMP_STUBv2=1
UV_IPV6=yes
IV_GUI_VER=Hummingbird - AirVPN OpenVPN 3 Client 1.0.2
IV_SSL=mbed TLS 2.16.3

Sun May 17 00:26:40.498 2020 VERIFY OK : depth=1
cert. version     : 3
serial number     : 8C:D8:43:EF:E4:5F:20:03
issuer name       : C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
subject name      : C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
issued  on        : 2014-04-11 10:15:45
expires on        : 2024-04-08 10:15:45
signed using      : RSA with SHA1
RSA key size      : 4096 bits
basic constraints : CA=true

Sun May 17 00:26:40.498 2020 VERIFY OK : depth=0
cert. version     : 3
serial number     : 6D
issuer name       : C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
subject name      : C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=Alcyone, emailAddress=info@airvpn.org
issued  on        : 2016-12-28 13:56:41
expires on        : 2026-12-26 13:56:41
signed using      : RSA with SHA-512
RSA key size      : 4096 bits
basic constraints : CA=false
cert. type        : SSL Server
key usage         : Digital Signature, Key Encipherment
ext key usage     : TLS Web Server Authentication

Sun May 17 00:26:40.806 2020 SSL Handshake: TLSv1.2/TLS-DHE-RSA-WITH-AES-256-GCM-SHA384
Sun May 17 00:26:40.806 2020 Session is ACTIVE
Sun May 17 00:26:40.806 2020 EVENT: GET_CONFIG
Sun May 17 00:26:40.806 2020 Sending PUSH_REQUEST to server...
Sun May 17 00:26:40.942 2020 OPTIONS:
0 [comp-lzo] [no]
1 [redirect-gateway] [ipv6] [def1] [bypass-dhcp]
2 [dhcp-option] [DNS] [10.5.220.1]
3 [dhcp-option] [DNS6] [fde6:7a:7d20:1dc::1]
4 [tun-ipv6]
5 [route-gateway] [10.5.220.1]
6 [topology] [subnet]
7 [ping] [10]
8 [ping-restart] [60]
9 [ifconfig-ipv6] [fde6:7a:7d20:1dc::10b4/64] [fde6:7a:7d20:1dc::1]
10 [ifconfig] [10.5.220.182] [255.255.255.0]
11 [peer-id] [2]
12 [cipher] [AES-256-GCM]

Sun May 17 00:26:40.942 2020 PROTOCOL OPTIONS:
  cipher: AES-256-GCM
  digest: NONE
  ncp enabled: yes
  compress: LZO_STUB
  peer ID: 2
Sun May 17 00:26:40.942 2020 EVENT: ASSIGN_IP
Sun May 17 00:26:40.942 2020 VPN Server has pushed IPv4 DNS server 10.5.220.1
Sun May 17 00:26:40.946 2020 Setting pushed IPv4 DNS server 10.5.220.1 in resolv.conf
Sun May 17 00:26:40.946 2020 VPN Server has pushed IPv6 DNS server fde6:7a:7d20:1dc::1
Sun May 17 00:26:40.950 2020 Setting pushed IPv6 DNS server fde6:7a:7d20:1dc::1 in resolv.conf
Sun May 17 00:26:40.950 2020 net_iface_mtu_set: mtu 1500 for tun0
Sun May 17 00:26:40.951 2020 net_iface_up: set tun0 up
Sun May 17 00:26:40.951 2020 net_addr_add: 10.5.220.182/24 brd 10.5.220.255 dev tun0
Sun May 17 00:26:40.951 2020 net_addr_add: fde6:7a:7d20:1dc::10b4/64 dev tun0
Sun May 17 00:26:40.951 2020 net_route_add: 0.0.0.0/1 via 10.5.220.1 dev tun0 table 0 metric 0
Sun May 17 00:26:40.951 2020 net_route_add: 128.0.0.0/1 via 10.5.220.1 dev tun0 table 0 metric 0
Sun May 17 00:26:40.952 2020 net_route_add: ::/1 via fde6:7a:7d20:1dc::1 dev tun0 table 0 metric 0
Sun May 17 00:26:40.952 2020 net_route_add: 8000::/1 via fde6:7a:7d20:1dc::1 dev tun0 table 0 metric 0
Sun May 17 00:26:40.952 2020 Connected via tun
Sun May 17 00:26:40.952 2020 LZO-ASYM init swap=0 asym=1
Sun May 17 00:26:40.952 2020 Comp-stub init swap=0
Sun May 17 00:26:40.952 2020 EVENT: CONNECTED 213.152.161.116:443 (213.152.161.116) via /UDPv4 on tun/10.5.220.182/fde6:7a:7d20:1dc::10b4 gw=[10.5.220.1/fde6:7a:7d20:1dc::1]
Sun May 17 00:26:40.952 2020 Server has pushed its own DNS. Removing system DNS from network filter.
Sun May 17 00:26:40.956 2020 System DNS 127.0.0.1 is now rejected by the network filter

Share this post


Link to post
18 hours ago, Staff said:

@colorman

Hello!

The quoted error is usually caused by a firewall rule blocking UDP, can you please check?

Kind regards

 

Hello Staff,
It was a one time thing.
Not seen again.
 
If you look at yesterday's eburom post, you can see he had the same error.

Share this post


Link to post
@colorman

Hello!

When you get UDP send exception: send: Operation not permitted please check the firewall rules, store them and send them to us.

@eburom
 
On 5/17/2020 at 12:59 AM, eburom said:

PS: As a side note, hummingbird asks for superuser even to check the help (-h)  and wont run show this help if already running.


Both cases are intended.
 
On 5/17/2020 at 12:59 AM, eburom said:

I tried calling hummingbird with the UDP configuration file but overriding the protocol with tcp.


We will check - (EDIT: bug confirmed); in general an UDP based profile is not compatible (explicit-exit-notify is incompatible with proto tcp) with protocol TCP. Maybe a better behavior might be: allow the override and let OpenVPN library throw the critical error, then exit. That's a design decision, we will check what the developer thinks about it.

Kind regards
 

Share this post


Link to post
Posted ... (edited)
I am unable to run Hummingbird through Eddie, on Mac Os X High Sierra, the option is grayed, i have selected the path of hummingbird binaries but it keeps loop trying to connect / disconnect Edited ... by acyclovir
Hummingbird only compatible since Mojave or later

Share this post


Link to post
Guest
This topic is now closed to further replies.

×
×
  • Create New...