aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Device can be member of multiple groupsAndreas Steffen2013-06-251-74/+87
|
* capabilities: Return effective UID/GID if user did not configure anythingTobias Brunner2013-06-251-2/+2
|
* capabilities: Make the user and group charon(-nm) changes to configurableTobias Brunner2013-06-252-12/+36
|
* capabilities: Report effective UID/GID after dropping capabilitiesTobias Brunner2013-06-251-1/+1
|
* capabilities: CAP_CHOWN might be required by many plugins opening UNIX socketsTobias Brunner2013-06-258-0/+48
| | | | | But as the sockets will be created with the user/group of the running process this might not be required as no change may be needed.
* capabilities: Handle CAP_CHOWN specially as it might not be requiredTobias Brunner2013-06-252-2/+63
|
* capabilities: Check effective UID as fallback if capabilities are not supportedTobias Brunner2013-06-251-1/+1
|
* kernel-netlink: Make CAP_NET_ADMIN capability optionalTobias Brunner2013-06-251-3/+4
| | | | It is not required to use the kernel-net part of the plugin.
* farp: Require CAP_NET_RAW capability to open AF_PACKET socketTobias Brunner2013-06-251-0/+6
|
* dhcp: Require CAP_NET_BIND_SERVICE and CAP_NET_RAW to open/bind socketsTobias Brunner2013-06-252-0/+14
|
* socket-default: Require CAP_NET_BIND_SERVICE for ports < 1024Tobias Brunner2013-06-252-1/+16
| | | | | Since we don't know which ports are used with socket-dynamic we can't demand the capability there, but it might still be required.
* capabilities: Only plugins that require CAP_NET_ADMIN demand itTobias Brunner2013-06-255-10/+24
| | | | The daemon as such does not require this capability.
* capabilities: Move global capabilities_t instance to libstrongswanTobias Brunner2013-06-2521-49/+48
|
* capabilities: Ensure required capabilities are actually held by the process/userTobias Brunner2013-06-255-10/+77
|
* ikev2: keep the CHILD_SA we delete as initiator in the list to destroyMartin Willi2013-06-251-6/+5
| | | | | If the responder not correctly send the correct protocol or SPI in the delete response, we should remove the CHILD_SA regardless.
* Some IMV policy managers expect a TEXT stringAndreas Steffen2013-06-253-17/+23
|
* Assign default group to newly created devicesAndreas Steffen2013-06-251-1/+12
|
* Set device creation date if it hasn't been set yetAndreas Steffen2013-06-241-3/+18
|
* unit-tester: RSA test was removedTobias Brunner2013-06-241-1/+0
|
* Aligned AR Identity types to IF-IMV 1.4 R5 draftAndreas Steffen2013-06-243-6/+6
|
* Send PA-TNC assessment result even if no workitems are availableAndreas Steffen2013-06-242-7/+13
|
* Some pacman fixesAndreas Steffen2013-06-232-33/+32
|
* Some PTS database fixesAndreas Steffen2013-06-211-14/+14
|
* Implemented pacman in a more reliable wayAndreas Steffen2013-06-214-380/+471
|
* Define protocol stringAndreas Steffen2013-06-211-9/+10
|
* Generate result string for port scan workitemsAndreas Steffen2013-06-211-2/+29
|
* Ignore non-matching protocolsAndreas Steffen2013-06-211-2/+2
|
* Introduced workitems to Scanner IMVAndreas Steffen2013-06-217-194/+318
|
* Added ITA components to databaseAndreas Steffen2013-06-211-0/+26
|
* Added soft dependency on database pluginAndreas Steffen2013-06-211-0/+1
|
* fixed SQL queryAndreas Steffen2013-06-211-1/+1
|
* Shortened names of default policy groupsAndreas Steffen2013-06-212-10/+10
|
* Store device with product IDAndreas Steffen2013-06-215-24/+32
|
* Database changes needed to integrate Cygnet backendAndreas Steffen2013-06-213-84/+107
|
* Implemented get|set_action_flag() methodsAndreas Steffen2013-06-213-37/+20
|
* Implemented hierarchical policy groupsAndreas Steffen2013-06-213-144/+81
|
* Introduced workitems to Attestation IMVAndreas Steffen2013-06-2120-469/+775
|
* pts_meas_algo_probe() and pts_dh_group_probe() got lostAndreas Steffen2013-06-211-1/+3
|
* Converted all IMVs to use generic IF-IMV APIAndreas Steffen2013-06-2116-1409/+1485
|
* Remove the constructor from the IMV agent interfaceAndreas Steffen2013-06-211-10/+0
|
* Defined a generic IMV agent interfaceAndreas Steffen2013-06-215-99/+134
|
* Moved all functionality into imv_os_agent_t class turning imv_os_t into an ↵Andreas Steffen2013-06-217-780/+946
| | | | IF-IMV skeleton
* Moved batch_ending into separate source fileAndreas Steffen2013-06-216-295/+373
|
* do not process workitems with NULL resultAndreas Steffen2013-06-212-2/+3
|
* fixed enumeration of workitems for a given sessionAndreas Steffen2013-06-211-1/+1
|
* generate workitems based on group policyAndreas Steffen2013-06-214-64/+533
|
* Added file and directory reference measurements to workitemsAndreas Steffen2013-06-212-4/+8
|
* add overall recommendation to session database entryAndreas Steffen2013-06-216-38/+75
|
* don't define a default database URIAndreas Steffen2013-06-213-6/+4
|
* created a simple IMV Policy ManagerAndreas Steffen2013-06-215-0/+232
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 16:39:58 +0000