Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | | | Use IP address as ID as responder if not configured or no IDr received. | Tobias Brunner | 2012-04-16 | 1 | -3/+11 | |
| | | | ||||||
* | | | Fall back on IP address as IDi if none is configured at all. | Tobias Brunner | 2012-04-16 | 1 | -7/+7 | |
| | | | ||||||
* | | | Use auth_cfg_t.replace_value where appropriate. | Tobias Brunner | 2012-04-16 | 2 | -26/+5 | |
| | | | ||||||
* | | | Added a simple method to replace the value of a rule in auth_cfg_t. | Tobias Brunner | 2012-04-16 | 2 | -32/+74 | |
| | | | ||||||
* | | | Fixed IDi in case neither left nor leftid is configured. | Tobias Brunner | 2012-04-16 | 1 | -0/+21 | |
| | | | ||||||
* | | | fixed parsing of port ranges in Scanner IMV | Andreas Steffen | 2012-04-15 | 1 | -4/+4 | |
| | | | ||||||
* | | | Don't invoke child_updown hook twice as responder | Martin Willi | 2012-04-11 | 1 | -3/+8 | |
| | | | ||||||
* | | | Accept zero-length certificate request payloads | Martin Willi | 2012-04-11 | 1 | -2/+1 | |
| | | | ||||||
* | | | Properly initialize src in ike_sa_t.is_any_path_valid(). | Tobias Brunner | 2012-04-06 | 1 | -1/+1 | |
| | | | ||||||
* | | | checksum need a libradius_init() symbol | Andreas Steffen | 2012-04-05 | 2 | -0/+13 | |
| | | | ||||||
* | | | remove leading zero in ASN.1 encoded serial numbers | Andreas Steffen | 2012-04-05 | 6 | -12/+14 | |
| | | | ||||||
* | | | ASN.1 two's complement encoding prevents overflow in CRL serial number | Andreas Steffen | 2012-04-04 | 1 | -10/+18 | |
| | | | ||||||
* | | | Make AES-CMAC actually usable for IKEv2. | Tobias Brunner | 2012-04-04 | 2 | -0/+6 | |
| | | | ||||||
* | | | represent 0 as a single byte | Andreas Steffen | 2012-04-03 | 1 | -5/+1 | |
| | | | ||||||
* | | | moved chunk_skip_zero to chunk.h | Andreas Steffen | 2012-04-03 | 3 | -19/+21 | |
| | | | ||||||
* | | | added IKEv2 Generic Secure Password Authentication Method | Andreas Steffen | 2012-04-03 | 2 | -3/+10 | |
| | | | ||||||
* | | | added IKEv2 Generic Secure Password Authentication Method | Andreas Steffen | 2012-04-03 | 2 | -6/+17 | |
| | | | ||||||
* | | | added GSPM IKEv2 payload | Andreas Steffen | 2012-04-03 | 2 | -8/+20 | |
| | | | ||||||
* | | | fixed typo | Andreas Steffen | 2012-04-03 | 1 | -2/+2 | |
| | | | ||||||
* | | | Doxygen fixes. | Tobias Brunner | 2012-04-03 | 2 | -2/+2 | |
| | | | ||||||
* | | | Added test vectors for AES-CMAC. | Tobias Brunner | 2012-04-03 | 3 | -0/+153 | |
| | | | ||||||
* | | | Implemented AES-CMAC based PRF and signer. | Tobias Brunner | 2012-04-03 | 10 | -0/+922 | |
| | | | | | | | | | | | | | | | | | | The cmac plugin implements AES-CMAC as defined in RFC 4493 and the signer and PRF based on it as defined in RFC 4494 and RFC 4615, respectively. | |||||
* | | | Fixed GNU license header in hmac and xcbc plugins. | Tobias Brunner | 2012-04-03 | 2 | -4/+4 | |
| | | | ||||||
* | | | Add support for dnQualifier in DNs. | Tobias Brunner | 2012-03-29 | 3 | -1/+6 | |
| | | | ||||||
* | | | remove leading zeros in ASN.1 encoded serial numbers | Andreas Steffen | 2012-03-27 | 1 | -2/+22 | |
| | | | ||||||
* | | | Make resolvconf interface prefix configurable. | Tobias Brunner | 2012-03-27 | 1 | -2/+10 | |
| | | | ||||||
* | | | Added support for the resolvconf framework in resolve plugin. | Tobias Brunner | 2012-03-27 | 1 | -52/+149 | |
| | | | | | | | | | | | | | | | If /sbin/resolvconf is found nameservers are not written directly to /etc/resolv.conf but instead resolvconf is invoked. | |||||
* | | | Don't cast second argument of mem_printf_hook (%b) to size_t. | Tobias Brunner | 2012-03-27 | 9 | -19/+25 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Also treat the given number as unsigned int. Due to the printf hook registration the second argument of mem_printf_hook (if called via printf etc.) is always of type int*. Casting this to a size_t pointer and then dereferencing that as int does not work on big endian machines if int is smaller than size_t (e.g. on ppc64). In order to make this change work if the argument is of a type larger than int, size_t for instance, the second argument for %b has to be casted to (u_)int. | |||||
* | | | smp: Use proper signed type to get return value of read(2). | Tobias Brunner | 2012-03-27 | 1 | -1/+1 | |
| | | | ||||||
* | | | pluto: Use time_monotonic() instead of a custom implementation. | Tobias Brunner | 2012-03-27 | 1 | -12/+1 | |
| | | | ||||||
* | | | Don't include individual glib headers in nm plugin. | Tobias Brunner | 2012-03-26 | 1 | -1/+1 | |
| | | | | | | | | | | | | | | | Expections are glib/gi18n.h, glib/gi18n-lib.h, glib/gprintf.h and glib/gstdio.h. | |||||
* | | | fixed parsing of IF-MAP SOAP responses | Andreas Steffen | 2012-03-21 | 1 | -35/+30 | |
|/ / | ||||||
* | | added the strongswan.conf options of the tnc-pdp plugin | Andreas Steffen | 2012-03-16 | 1 | -1/+1 | |
| | | ||||||
* | | eliminate unneeded private variable | Andreas Steffen | 2012-03-14 | 1 | -3/+3 | |
| | | ||||||
* | | use MAX_RADIUS_ATTRIBUTE_SIZE constant from radius_message header file | Andreas Steffen | 2012-03-14 | 2 | -4/+3 | |
| | | ||||||
* | | make the mppe salt unique | Andreas Steffen | 2012-03-14 | 1 | -8/+18 | |
| | | ||||||
* | | straightene radius_mppe header file | Andreas Steffen | 2012-03-14 | 1 | -9/+4 | |
| | | ||||||
* | | implemented MS_MPPE encryption | Andreas Steffen | 2012-03-13 | 4 | -35/+148 | |
| | | ||||||
* | | use predefined Microsoft PEN | Andreas Steffen | 2012-03-13 | 1 | -6/+2 | |
| | | ||||||
* | | use MAX_RADIUS_ATTRIBUTE_SIZE constant | Andreas Steffen | 2012-03-13 | 1 | -1/+1 | |
| | | ||||||
* | | use RADIUS_TUNNEL_TYPE_ESP defined in header file | Andreas Steffen | 2012-03-13 | 1 | -3/+1 | |
| | | ||||||
* | | implemented RADIUS Filter-ID attribute | Andreas Steffen | 2012-03-13 | 4 | -24/+89 | |
| | | ||||||
* | | removed double library entry | Andreas Steffen | 2012-03-13 | 1 | -2/+0 | |
| | | ||||||
* | | adapted debug output | Andreas Steffen | 2012-03-13 | 1 | -1/+1 | |
| | | ||||||
* | | keep a list of RADIUS connections with EAP method states | Andreas Steffen | 2012-03-13 | 4 | -12/+320 | |
| | | ||||||
* | | apply maximum RADIUS attribute size to outbound EAP messages | Andreas Steffen | 2012-03-13 | 1 | -0/+9 | |
| | | ||||||
* | | read PDP server name from strongswan.conf | Andreas Steffen | 2012-03-13 | 1 | -7/+29 | |
| | | ||||||
* | | define MAX_RADIUS_ATTRIBUTE_SIZE | Andreas Steffen | 2012-03-13 | 2 | -4/+7 | |
| | | ||||||
* | | define peer and server identities | Andreas Steffen | 2012-03-13 | 1 | -2/+9 | |
| | | ||||||
* | | added EAP_SUCCESS/FAILURE message to RADIUS Accept/Reject | Andreas Steffen | 2012-03-13 | 1 | -2/+7 | |
| | |