aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/plugins/eap_tnc
Commit message (Collapse)AuthorAgeFilesLines
* libhydra: Remove empty unused libraryTobias Brunner2016-03-031-1/+0
|
* Fix of the mutual TNC measurement use caseAndreas Steffen2016-02-161-1/+1
| | | | | | | | | | | | | | | | | If the IKEv2 initiator acting as a TNC server receives invalid TNC measurements from the IKEv2 responder acting as a TNC clienti, the exchange of PB-TNC batches is continued until the IKEv2 responder acting as a TNC server has also finished its TNC measurements. In the past if these measurements in the other direction were correct the IKEv2 responder acting as EAP server declared the IKEv2 EAP authentication successful and the IPsec connection was established even though the TNC measurement verification on the EAP peer side failed. The fix adds an "allow" group membership on each endpoint if the corresponding TNC measurements of the peer are successful. By requiring a "allow" group membership in the IKEv2 connection definition the IPsec connection succeeds only if the TNC measurements on both sides are valid.
* Fixed AR identities in mutual TNC measurements caseAndreas Steffen2015-08-151-0/+4
|
* eap-tnc: Free eap-tnc object if IKE_SA not found to get IPsTobias Brunner2015-03-251-0/+1
|
* Make access requestor IP address available to TNC serverAndreas Steffen2015-03-081-2/+24
|
* plugins: Don't link with -rdynamic on WindowsMartin Willi2014-06-041-1/+1
|
* Implemented PT-EAP protocol (RFC 7171)Andreas Steffen2014-05-123-20/+70
|
* libcharon: Use lib->ns instead of charon->nameTobias Brunner2014-02-121-3/+3
|
* check it specified IF-TNCCS protocol is enabledAndreas Steffen2013-10-211-0/+6
|
* Keep a copy of the tnccs instance for PT-TLS handoverAndreas Steffen2013-10-091-2/+16
|
* moved tnc_imv plugin to libtnccs thanks to recommendation callback functionAndreas Steffen2013-08-151-2/+61
|
* automake: replace INCLUDES by AM_CPPFLAGSMartin Willi2013-07-181-3/+3
| | | | | | INCLUDES are now deprecated and throw warnings when using automake 1.13. We now also differentiate AM_CPPFLAGS and AM_CFLAGS, where includes and defines are passed to AM_CPPFLAGS only.
* Aligned AR Identity types to IF-IMV 1.4 R5 draftAndreas Steffen2013-06-241-1/+1
|
* make TNC client authentication type available to IMVsAndreas Steffen2013-02-122-16/+68
|
* determine underlying IF-T transport protocolAndreas Steffen2013-02-121-4/+4
|
* Make IKE/EAP IDs available to TNC server/clientAndreas Steffen2013-02-111-2/+3
|
* Moved debug.[ch] to utils folderTobias Brunner2012-10-241-1/+1
|
* updated Copyright infoAndreas Steffen2012-07-132-2/+2
|
* removed unused variablesAndreas Steffen2012-07-111-2/+0
|
* due to single fragment, total length does not have to be includedAndreas Steffen2012-07-111-3/+1
|
* EAP-TNC does not support fragmentationAndreas Steffen2012-07-111-12/+14
|
* missing references to daemon.hAndreas Steffen2012-05-051-0/+1
|
* Use name from initialization to access settings in libcharon.Tobias Brunner2012-05-031-6/+8
| | | | Also fixes several whitespace errors.
* Moved eap/xauth classes out of protocol specific subdirectoriesMartin Willi2012-03-201-1/+1
|
* Separated libcharon/sa directory with ikev1 and ikev2 subfoldersMartin Willi2012-03-201-1/+1
|
* Revert "fixed integrity tests of plugins using libtls or libtnccs"Tobias Brunner2011-11-081-0/+3
| | | | | This reverts commit b597ac4a4cbcd9197b886d743c75d58293264580 (not completely).
* fixed integrity tests of plugins using libtls or libtnccsAndreas Steffen2011-11-021-3/+0
|
* refactored TNC frameworkAndreas Steffen2011-10-253-9/+15
|
* Add features support to eap-tnc pluginAndreas Steffen2011-10-141-10/+16
|
* explicitly activate use of TNC headersAndreas Steffen2011-06-072-2/+5
|
* do not include length field in non-fragmented EAP-PEAP packetsAndreas Steffen2011-04-211-2/+6
|
* Revert alloc_str changesMartin Willi2011-04-211-4/+2
| | | | | | This reverts commit fdead26ffe1da8501a6ff5e0639a6f44c723e763. This reverts commit 3e2419ebe32de72d824864eb2e0e677a7c197af1. This reverts commit 17ce69b47a1efd6234960cf7d1f50712aee61db5.
* Use thread save settings alloc_str function where appropriateMartin Willi2011-04-211-2/+4
|
* Added a (not yet implemented) plugin_t method to reload plugin configurationMartin Willi2011-04-151-0/+1
|
* Added a get_name() function to plugin_t, create_plugin_enumerator enumerates ↵Martin Willi2011-04-151-0/+7
| | | | over plugin_t
* added get|set_identifier() methods to eap_tnc_tAndreas Steffen2011-04-061-0/+14
|
* implemented dynamic detection of TNCCS protocolAndreas Steffen2011-01-311-2/+19
|
* select TNCCS protocol via charon.plugins.eap-tnc.protocolAndreas Steffen2010-11-091-1/+6
|
* created tnc-imc and tnc-imv pluginsAndreas Steffen2010-10-071-1/+1
|
* moved TNCCS layer out of eap_tnc pluginAndreas Steffen2010-09-284-182/+5
|
* debug output of inbound and outbound TNCCS batchesAndreas Steffen2010-09-091-9/+14
|
* send well-formed TNCCS-BatchAndreas Steffen2010-09-081-1/+9
|
* max max_message_count configurable and move it into tls_eap_tAndreas Steffen2010-09-081-12/+4
|
* moved tls_t existance test into tls_eap_create() againAndreas Steffen2010-09-081-5/+0
|
* generalized tls_eap_t to support EAP_TNC wrapping the TNC_IF_TNCCS protocolAndreas Steffen2010-09-084-90/+234
|
* fixed copy-and-paste errorsAndreas Steffen2010-08-302-2/+2
|
* created an eap-tnc method hullAndreas Steffen2010-08-305-0/+356
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-02 23:58:30 +0000