Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Enable quantum resistant tunnels by default on Windows #6804

Merged
merged 2 commits into from
Sep 24, 2024
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
9 changes: 6 additions & 3 deletions CHANGELOG.md
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,9 @@ Line wrap the file at 100 chars. Th
multihop, quantum-resistant tunnels, or DAITA.
- Improved output format of `mullvad status` command, which now also prints feature indicators.

#### Windows
- Enable quantum-resistant tunnels by default (when set to `auto`).

#### macOS
- Disable split tunnel interface when disconnected. This prevents traffic from being sent through
the daemon when the VPN is disconnected.
Expand Down Expand Up @@ -65,7 +68,7 @@ Line wrap the file at 100 chars. Th
- Ignore obfuscation protocol constraints when the obfuscation mode is set to auto.

#### macOS
- Enable quantum resistant tunnels by default (when set to `auto`).
- Enable quantum-resistant tunnels by default (when set to `auto`).

### Fixed
- Fix mullvad cli bug causing `mullvad status listen` command to miss events if they occurred
Expand Down Expand Up @@ -207,7 +210,7 @@ This release is identical to 2024.3-beta1.
- Update support email address to new email address, [email protected].

#### Linux
- Enable quantum resistant tunnels by default (when set to `auto`). On other platforms, `auto` still
- Enable quantum-resistant tunnels by default (when set to `auto`). On other platforms, `auto` still
always means the same thing as `off`.

#### Windows
Expand Down Expand Up @@ -393,7 +396,7 @@ This release is identical to 2024.3-beta1.
Quantum-resistant-tunnels feature now mixes both Classic McEliece and Kyber for added protection.
- Add notification dot to tray icon and system notification throttling.
- Add troubleshooting information to some in-app notifications.
- Add setting for quantum resistant tunnels to the desktop GUI.
- Add setting for quantum-resistant tunnels to the desktop GUI.
- Enable `TCP_NODELAY` for the socket used by WireGuard over TCP. Improves latency and performance.

### Changed
Expand Down
10 changes: 7 additions & 3 deletions mullvad-types/src/wireguard.rs
Original file line number Diff line number Diff line change
Expand Up @@ -11,9 +11,13 @@ pub const MAX_ROTATION_INTERVAL: Duration = Duration::from_secs(30 * 24 * 60 * 6
pub const DEFAULT_ROTATION_INTERVAL: Duration = MAX_ROTATION_INTERVAL;

/// Whether to enable or disable quantum resistant tunnels when the setting is set to
/// `QuantumResistantState::Auto`. It is currently enabled by default on Linux and macOS,
/// but disabled on all other platforms.
const QUANTUM_RESISTANT_AUTO_STATE: bool = cfg!(any(target_os = "linux", target_os = "macos"));
/// `QuantumResistantState::Auto`. It is currently enabled by default on desktop,
/// but disabled on Android.
const QUANTUM_RESISTANT_AUTO_STATE: bool = cfg!(any(
target_os = "linux",
target_os = "macos",
target_os = "windows"
));

#[derive(Serialize, Deserialize, Default, Copy, Clone, Debug, PartialEq, Eq)]
#[serde(rename_all = "lowercase")]
Expand Down
Loading