Martin Willi
|
13f418b442
|
Added a doxygen group for libsimaka, some cleanups
|
2009-11-12 10:34:00 +01:00 |
Martin Willi
|
bcf8a0ff94
|
Added missing hasher include
|
2009-11-12 10:33:59 +01:00 |
Martin Willi
|
4735965fc0
|
EAP servers check if the received EAP message was expected
|
2009-11-12 10:33:59 +01:00 |
Martin Willi
|
02f785b050
|
Use existing triplet length definitions
|
2009-11-12 10:33:59 +01:00 |
Martin Willi
|
aea334ec1c
|
Splitted EAP-AKA in peer and server implementations, use libsimaka helper library
|
2009-11-12 10:33:59 +01:00 |
Martin Willi
|
6d90881573
|
Proper handling of non-skippable attributes and client error codes in EAP-SIM
|
2009-11-12 10:33:59 +01:00 |
Martin Willi
|
fad4e5f393
|
Centralized SIM/AKA notifications and client errors
|
2009-11-12 10:33:59 +01:00 |
Martin Willi
|
e9c03f5243
|
Use the EAP-SIM/AKA crypto helper in EAP-SIM
|
2009-11-12 10:33:59 +01:00 |
Martin Willi
|
55916dcc9e
|
libsimaka provides cryptographic functionality used in EAP-SIM and EAP-AKA
|
2009-11-12 10:33:58 +01:00 |
Martin Willi
|
ac4dd5439b
|
Migrated EAP-SIM to libsimaka, separated server/peer implementations
|
2009-11-12 10:33:58 +01:00 |
Martin Willi
|
f8330d0395
|
Added a libsimaka library with shared message handling code for EAP-SIM/AKA
|
2009-11-12 10:33:58 +01:00 |
Martin Willi
|
44e8eea17a
|
sim_provider_t API gained support for pseudonym/fast reauthentication
|
2009-11-12 10:33:58 +01:00 |
Martin Willi
|
8f364b5433
|
sim_card_t API gained support for pseudonym/fast reauthentication
|
2009-11-12 10:33:58 +01:00 |
Andreas Steffen
|
6ae43b9333
|
mixed fingerprint / userid
|
2009-11-11 11:17:59 +01:00 |
Andreas Steffen
|
209f52cb63
|
fixed 4.3.6 ocsp regression
|
2009-11-11 11:06:07 +01:00 |
Andreas Steffen
|
ee8486afdb
|
adapted log message
|
2009-11-10 23:55:55 +01:00 |
Andreas Steffen
|
a618e33e8b
|
merged pluto's PGP certificate parsing with charon's
|
2009-11-10 23:54:51 +01:00 |
Andreas Steffen
|
f565d0c575
|
merged pluto's PGP certificate parsing with charon's
|
2009-11-10 23:54:04 +01:00 |
Andreas Steffen
|
cc543182bc
|
added separating line
|
2009-11-10 21:50:34 +01:00 |
Andreas Steffen
|
bb7ae382fd
|
added some debugging to pgp certificate parsing
|
2009-11-10 10:04:55 +01:00 |
Andreas Steffen
|
262af16179
|
accept PGP v3 or v4 fingerprint as alternative to PGP user_id
|
2009-11-09 23:15:17 +01:00 |
Martin Willi
|
5269150ebc
|
If cross-compiling, test for the existence of pthread_condattr_setclock only
|
2009-11-09 15:07:01 +01:00 |
Martin Willi
|
67c3875c02
|
Install bypass policies after creating XFRM netlink socket, loading xfrm_user module
|
2009-11-09 15:07:00 +01:00 |
Andreas Steffen
|
8a650a2bc8
|
put PGP userid in single quotes
|
2009-11-08 23:58:41 +01:00 |
Andreas Steffen
|
b25311fbe2
|
added ikev2/net2net-pgp-v3 scenario
|
2009-11-08 23:49:04 +01:00 |
Andreas Steffen
|
bc662125c2
|
removed nocrsend=yes statement
|
2009-11-08 23:48:26 +01:00 |
Andreas Steffen
|
2846e51a5b
|
added ikev2/net2net-pgp-v4 scenario
|
2009-11-08 23:23:45 +01:00 |
Andreas Steffen
|
ab5762e32a
|
list v3 or v4 fingerprint
|
2009-11-08 23:21:03 +01:00 |
Andreas Steffen
|
9a127590ac
|
stroke_list supports listing of PGP certificates
|
2009-11-08 21:01:12 +01:00 |
Andreas Steffen
|
9f0327e652
|
define TIME_32_BITS_SIGNED_MAX in utils.h
|
2009-11-08 18:55:52 +01:00 |
Andreas Steffen
|
e92e19c177
|
pluto ignores proprietary Juniper SRX notification 40001
|
2009-11-05 08:38:00 +01:00 |
Andreas Steffen
|
16dca5c2f2
|
moved multi-level-ca-pathlen scenario
|
2009-11-04 23:43:43 +01:00 |
Andreas Steffen
|
4c68a85a75
|
implemented path length constraint checkinf for IKEv2
|
2009-11-04 23:37:15 +01:00 |
Andreas Steffen
|
fef3b0b7fd
|
display printable characters in dntoa()
|
2009-11-04 20:17:12 +01:00 |
Andreas Steffen
|
8fac84bcdd
|
check if acerts linked_list has been initialized before destroying it
|
2009-11-04 19:36:02 +01:00 |
Andreas Steffen
|
32c8b1847b
|
renamed multi-level-pathlen scenario to multi-level-ca-pathlen
|
2009-11-04 18:18:43 +01:00 |
Andreas Steffen
|
cd36095e38
|
added ikev1/multi-level-pathlen scenario
|
2009-11-04 18:15:26 +01:00 |
Andreas Steffen
|
28c554088d
|
added a subsidiary Duck Research CA
|
2009-11-04 18:13:06 +01:00 |
Andreas Steffen
|
c95671cec2
|
implemented path length constraint checking for IKEv1
|
2009-11-04 18:10:31 +01:00 |
Andreas Steffen
|
bed19335b8
|
put directory path into single quotes
|
2009-11-04 14:34:14 +01:00 |
Andreas Steffen
|
efab9f551d
|
removed redundant and buggy debug statement
|
2009-11-04 14:28:20 +01:00 |
Andreas Steffen
|
fae322219f
|
output optional pathLenConstraint in ipsec listcacerts
|
2009-11-04 07:30:07 +01:00 |
Andreas Steffen
|
5d1d7e82b5
|
refreshened and fortified strongSwan Root CA certificate
|
2009-11-04 00:16:48 +01:00 |
Andreas Steffen
|
00aa027503
|
implemented parsing of pathLenConstraint
|
2009-11-04 00:03:10 +01:00 |
Andreas Steffen
|
a58b1722b0
|
version bump to 4.3.6
|
2009-11-02 22:47:55 +01:00 |
Martin Willi
|
4a38687ae7
|
Use XFRM instead of PF_KEY IKE bypass policies in netlink based kernel interface
|
2009-10-30 11:19:32 +01:00 |
Andreas Steffen
|
f893bce3e7
|
fixed a memory leak in OCSP fetching
|
2009-10-29 10:00:19 +01:00 |
Martin Willi
|
140816b055
|
Query secrets in EAP-MD5 with me/other identities, fixing lookup in NetworkManager
|
2009-10-26 08:47:40 +01:00 |
Martin Willi
|
3dc40325d5
|
Show the number of times a lock was acquired in lock profiler
|
2009-10-23 08:12:17 +02:00 |
Martin Willi
|
c5f36782ca
|
Hand out shared secret of load tester for all identities
|
2009-10-22 16:44:07 +02:00 |