Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | sw-collector: Query central collector database | Andreas Steffen | 2017-07-08 | 9 | -42/+601 |
| | |||||
* | libimcv: Moved REST API from imv_swid and imv_swima to libimcv | Andreas Steffen | 2017-07-08 | 10 | -241/+114 |
| | |||||
* | swidtag: strongSwan swidtag file with double underscores | Andreas Steffen | 2017-07-08 | 4 | -12/+10 |
| | |||||
* | sw-collector: Collects endpoint software events | Andreas Steffen | 2017-07-08 | 10 | -3/+1434 |
| | |||||
* | imv-swima: Created SWIMA IMV plugin | Andreas Steffen | 2017-07-08 | 12 | -2/+1682 |
| | |||||
* | imc-swima: Created SWIMA IMC plugin | Andreas Steffen | 2017-07-08 | 10 | -1/+711 |
| | |||||
* | unit-tests: Added IETF SWIMA PA-TNC attribute tests | Andreas Steffen | 2017-07-08 | 3 | -2/+1127 |
| | |||||
* | libimcv: Implemented IETF SW PA-TNC attributes | Andreas Steffen | 2017-07-08 | 26 | -14/+3532 |
| | |||||
* | libimcv: Fixed memory leak | Andreas Steffen | 2017-07-08 | 1 | -0/+2 |
| | |||||
* | libimcv: Corrected order of subscription flags | Andreas Steffen | 2017-07-08 | 2 | -4/+4 |
| | |||||
* | libimcv: Added IETF Software PA-TNC attributes | Andreas Steffen | 2017-07-08 | 4 | -13/+70 |
| | |||||
* | libtncif: Added IETF Software PA-TNC message subtype | Andreas Steffen | 2017-07-08 | 2 | -6/+7 |
| | |||||
* | libimcv: SWID tag generation and discovery | Andreas Steffen | 2017-07-08 | 11 | -271/+40 |
| | |||||
* | libimcv: Update database to ISO 19770-2:2015 SWID standard | Andreas Steffen | 2017-07-08 | 6 | -155/+257 |
| | |||||
* | testing: Fixed typo in openssl-ikev2/rw-suite-b-192 scenario | Andreas Steffen | 2017-07-08 | 1 | -1/+1 |
| | |||||
* | testing: Support running multiple tests with * as wildcard (e.g. ikev2/ocsp-*) | Tobias Brunner | 2017-07-07 | 1 | -6/+10 |
| | |||||
* | x509: Correctly encode nonce in OCSP request | Tobias Brunner | 2017-07-07 | 1 | -1/+2 |
| | | | | | The nonce value is encoded as OCTET STRING, however, the extension values themselves must also be encoded as OCTET STRING. | ||||
* | swanctl: Document eap_id in remote sections | Tobias Brunner | 2017-07-05 | 1 | -0/+6 |
| | |||||
* | kernel-pfroute: Make sure there is a netmask when enumerating subnets | Tobias Brunner | 2017-07-05 | 1 | -2/+2 |
| | |||||
* | pki: Load pubkey plugin to print public keys | Tobias Brunner | 2017-07-05 | 1 | -1/+1 |
| | | | | | | | | Since 3317d0e77b1a the public keys are printed via certificate printer, but that only works if the public key is actually wrapped, which requires the pubkey plugin. Fixes: 3317d0e77b1a ("Standardized printing of certificate information") | ||||
* | pki: Fix typo in --print man page | Tobias Brunner | 2017-07-05 | 1 | -3/+3 |
| | |||||
* | sql: Use qualified names in SQL query statements | Tobias Brunner | 2017-07-05 | 2 | -49/+54 |
| | | | | | | | VIRTUAL is a new reserved keyword in MySQL 5.7.6 that caused some of these queries to fail. Fixes #2359. | ||||
* | stroke: Don't load configs with invalid proposals | Tobias Brunner | 2017-07-05 | 1 | -7/+20 |
| | | | | References #2347. | ||||
* | ikev1: Determine transform ID before mapping integrity algorithm ID | Tobias Brunner | 2017-07-05 | 1 | -1/+1 |
| | | | | | | | | | Due to the lookup based on the mapped algorithm ID the resulting AH proposals were invalid. Fixes #2347. Fixes: 8456d6f5a8e9 ("ikev1: Don't require AH mapping for integrity algorithm when generating proposal") | ||||
* | eap-aka-3gpp: Add plugin that implements 3GPP MILENAGE algorithm in software | Tobias Brunner | 2017-07-05 | 16 | -2/+1395 |
| | | | | | | | | | | This is similar to the eap-aka-3gpp2 plugin. K (optionally concatenated with OPc) may be configured as binary EAP secret in ipsec.secrets or swanctl.conf. Based on a patch by Thomas Strangert. Fixes #2326. | ||||
* | utils: Make second argument to memxor() const | Tobias Brunner | 2017-07-05 | 2 | -2/+2 |
| | |||||
* | android: New release after fixing issues with older Android versions and DB ↵ | Tobias Brunner | 2017-07-04 | 1 | -2/+2 |
| | | | | upgrade | ||||
* | android: Fix database update from older versions | Tobias Brunner | 2017-07-04 | 1 | -50/+80 |
| | |||||
* | android: Fix version string on older Android releases | Tobias Brunner | 2017-07-04 | 1 | -2/+6 |
| | | | | SECURITY_PATCH is apparently only available since Android 6. | ||||
* | android: New release after fixing crash with existing profiles | Tobias Brunner | 2017-07-03 | 1 | -2/+2 |
| | |||||
* | android: Fix null pointer dereference with existing profiles | Tobias Brunner | 2017-07-03 | 1 | -1/+1 |
| | |||||
* | android: Only show disconnect button if actually connected | Tobias Brunner | 2017-07-03 | 1 | -5/+11 |
| | |||||
* | android: New release after adding lots of new stuff | Tobias Brunner | 2017-07-03 | 1 | -2/+2 |
| | |||||
* | Merge branch '2309-android-disconnect-button' | Tobias Brunner | 2017-07-03 | 12 | -6/+104 |
|\ | | | | | | | | | | | Adds a disconnect button to the permanent notification. Fixes #2309. | ||||
| * | android: Close activity when dialog is canceled if it was not visible before | Tobias Brunner | 2017-07-03 | 1 | -8/+42 |
| | | | | | | | | | | onPause/onResume() won't work because onPause() is called right before onNewIntent(). | ||||
| * | android: Allow disconnecting via MainActivity but display a confirmation dialog | Tobias Brunner | 2017-07-03 | 9 | -6/+65 |
| | | |||||
| * | android: Add disconnect button to notification | Tobias Brunner | 2017-07-03 | 4 | -0/+5 |
|/ | |||||
* | Merge branch 'android-certreq' | Tobias Brunner | 2017-07-03 | 14 | -6/+79 |
|\ | | | | | | | | | This adds an option that allows disabling certificate requests during IKE_AUTH. | ||||
| * | android: Make sending certificate requests configurable in the GUI | Tobias Brunner | 2017-07-03 | 9 | -2/+43 |
| | | |||||
| * | android: Import the flag to suppress certificate requests | Tobias Brunner | 2017-07-03 | 1 | -0/+7 |
| | | |||||
| * | android: Add flag to suppress sending certificate requests | Tobias Brunner | 2017-07-03 | 3 | -1/+6 |
| | | |||||
| * | android: Add property for simple flags | Tobias Brunner | 2017-07-03 | 2 | -3/+23 |
|/ | |||||
* | Merge branch '2365-android-nat-keepalive' | Tobias Brunner | 2017-07-03 | 15 | -7/+79 |
|\ | | | | | | | | | | | This makes the NAT-T keepalive interval configurable per connection. Fixes #2365. | ||||
| * | android: Import NAT-T keepalive interval | Tobias Brunner | 2017-07-03 | 1 | -0/+1 |
| | | |||||
| * | android: Make NAT-T keepalive interval configurable in the GUI | Tobias Brunner | 2017-07-03 | 10 | -1/+49 |
| | | |||||
| * | android: Use configured NAT-T keepalive interval | Tobias Brunner | 2017-07-03 | 2 | -3/+6 |
| | | |||||
| * | android: Add property for NAT-T keepalive interval | Tobias Brunner | 2017-07-03 | 2 | -3/+23 |
|/ | |||||
* | Merge branch 'android-updates' | Tobias Brunner | 2017-07-03 | 54 | -120/+3444 |
|\ | | | | | | | | | | | | | This adds support for configuring split-tunneling and per-app VPN, adds a simple HTTP/S fetcher and enables the revocation plugin, makes the log view more efficient, imports profiles via SAF and changes multiple other things. | ||||
| * | android: Use arrays as primary config option for subnets in profile files | Tobias Brunner | 2017-07-03 | 1 | -4/+22 |
| | | |||||
| * | android: Change format of address ranges and print sets | Tobias Brunner | 2017-07-03 | 4 | -2/+24 |
| | |