aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* with --relative --file do not insert absolute filenames into databaseAndreas Steffen2012-07-271-3/+5
|
* Don't include acquiring packet traffic selectors in IKEv1Martin Willi2012-07-261-0/+5
| | | | | | | | As we only can negotiate a single TS in IKEv1, don't prepend the triggering packet TS, as we do in IKEv2. Otherwise we don't establish the TS of the configuration, but only that of the triggering packet. Fixes #207.
* Implement late peer config switching after XAuth authenticationMartin Willi2012-07-261-15/+80
| | | | | | | If additional authentication constraints, such as group membership, is not fulfilled by an XAuth backend, we search for another peer configuration that fulfills all constraints, including those from phase1.
* Check if XAuth round complies to configured authentication roundMartin Willi2012-07-261-7/+18
|
* Show which group would be required when failing in constraint checkMartin Willi2012-07-261-8/+10
|
* Don't add ANY identity constraint to auth config, as XAuth rounds don't use oneMartin Willi2012-07-262-3/+15
|
* Merge auth config items added from XAuth backends to IKE_SAMartin Willi2012-07-261-0/+1
|
* Add an ipsec.conf leftgroups2 parameter for the second authentication roundMartin Willi2012-07-269-3/+21
|
* IMA SHA1 file measurement is not needed any moreAndreas Steffen2012-07-231-9/+1
|
* fixed typoAndreas Steffen2012-07-231-1/+1
|
* Release leaking child config after uninstalling shunt policyMartin Willi2012-07-231-0/+1
|
* moved PA-TNC message logging to level 1Andreas Steffen2012-07-231-2/+2
|
* transport IMA file info via PTS Component Evidence Policy URIAndreas Steffen2012-07-2311-119/+156
|
* ipsec attest now deletes file hashesAndreas Steffen2012-07-222-2/+25
|
* buffer PA-TNC attributes until Generate Attestation Evidence attribute is ↵Andreas Steffen2012-07-213-21/+20
| | | | received
* allow --rel as an abbreviation for --relativeAndreas Steffen2012-07-211-0/+1
|
* moved all shadow PCR stuff to the pts_pcr classAndreas Steffen2012-07-218-292/+335
|
* Support Unity split-include/exclude options in attr pluginMartin Willi2012-07-201-7/+9
|
* Don't print hexdumps on loglevel 1 if hash verification failsMartin Willi2012-07-201-3/+3
|
* created a pts_pcr class for PCR computationsAndreas Steffen2012-07-204-53/+285
|
* renamed build_database.sh to build-database.shAndreas Steffen2012-07-202-1/+2
|
* why the hell do firefox, thunderbird and acroread their own Linux libraries?Andreas Steffen2012-07-191-1/+40
|
* Add a libstrongswan-dev debian package with development headersMartin Willi2012-07-193-2/+13
|
* Pass CC/CFLAGS to ./configure, not to make, adding -include config.hMartin Willi2012-07-191-2/+2
|
* Upgraded our Debian package to 5.0Martin Willi2012-07-1942-574/+102
|
* added some multiply defined librariesAndreas Steffen2012-07-191-0/+4
|
* queries with relative filenames might return multiple resultsAndreas Steffen2012-07-191-9/+13
|
* updated build_database.shAndreas Steffen2012-07-191-123/+190
|
* added index to files tableAndreas Steffen2012-07-191-0/+4
|
* updated build_database.shAndreas Steffen2012-07-191-4/+52
|
* Fix EAP-MSCHAPv2 master key derivation, broken with 87dd205bMartin Willi2012-07-181-4/+12
|
* Remove debugging leftoversMartin Willi2012-07-181-10/+2
|
* Add a SHA1 test vector forcing padding over block boundaryMartin Willi2012-07-182-0/+7
|
* builds an Ubuntu 12.04 LTS measurement databaseAndreas Steffen2012-07-182-0/+79
|
* minor fixes in attestAndreas Steffen2012-07-182-2/+2
|
* Add a tool to burn hashersMartin Willi2012-07-173-1/+78
|
* Use centralized hasher names in pki utilityMartin Willi2012-07-176-45/+8
|
* Use centralized hasher names in coupling pluginMartin Willi2012-07-171-20/+2
|
* Use centralized hasher names in openssl pluginMartin Willi2012-07-172-73/+10
|
* Add short names for hasher algorithmsMartin Willi2012-07-172-0/+18
|
* various PTS fixesAndreas Steffen2012-07-174-6/+8
|
* parcel IMA file measurements into batchesAndreas Steffen2012-07-171-24/+39
|
* register _check_file_measurement() methodAndreas Steffen2012-07-172-45/+46
|
* Fix tls_prf bug introduced with bc474883Martin Willi2012-07-171-4/+7
|
* check IMA file measurements against database referenceAndreas Steffen2012-07-175-9/+84
|
* Support void return values in OpenSSL 0.9.8 HMAC functionsMartin Willi2012-07-171-17/+28
|
* handled return values in tnc-pdpAndreas Steffen2012-07-161-8/+17
|
* fixed potential hasher problem in IMA template hashAndreas Steffen2012-07-161-3/+11
|
* fixed potential hasher problemsAndreas Steffen2012-07-162-11/+29
|
* use a nonce for a PA-TNC message identifierAndreas Steffen2012-07-164-9/+26
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-21 23:27:56 +0000