Martin Willi
|
85fc1eb640
|
Added an XAuth plugin that forwards authentication to EAP methods
|
2012-03-20 17:31:28 +01:00 |
Martin Willi
|
7d788af0a0
|
Don't include ikev1/ikev2 subfolders in build when using --disable-ikev1/ikev2
|
2012-03-20 17:31:28 +01:00 |
Martin Willi
|
326a94232d
|
Moved eap/xauth classes out of protocol specific subdirectories
|
2012-03-20 17:31:27 +01:00 |
Martin Willi
|
15a682f4c2
|
Separated libcharon/sa directory with ikev1 and ikev2 subfolders
|
2012-03-20 17:31:26 +01:00 |
Martin Willi
|
2e3c9f8799
|
Renamed ike_vendor_v1 to isakmp_vendor
|
2012-03-20 17:31:26 +01:00 |
Martin Willi
|
79d6fc7f72
|
Renamed ike_natd_v1 to isakmp_natd
|
2012-03-20 17:31:26 +01:00 |
Martin Willi
|
824dc0adad
|
Renamed ike_cert_pre_v1 to isakmp_cert_pre
|
2012-03-20 17:31:26 +01:00 |
Martin Willi
|
0aa2af5efc
|
Renamed ike_cert_post_v1 to isakmp_cert_post
|
2012-03-20 17:31:26 +01:00 |
Martin Willi
|
5f10938592
|
Added a dedicated IKEv1 task to delete CHILD_SAs
|
2012-03-20 17:31:22 +01:00 |
Martin Willi
|
8db202f1b0
|
Added a dedicated delete task for IKEv1 IKE_SAs
|
2012-03-20 17:31:21 +01:00 |
Martin Willi
|
29101ce978
|
Added a IKEv1 hybrid authenticator based on Pubkey/PSK authenticators
|
2012-03-20 17:31:21 +01:00 |
Martin Willi
|
f492907667
|
Added a task stub to create and process IKEv1 informational exchanges
|
2012-03-20 17:31:18 +01:00 |
Tobias Brunner
|
3d44d735c6
|
Added generic XAuth backend, using secrets provided by credential sets.
|
2012-03-20 17:31:17 +01:00 |
Tobias Brunner
|
41e1e435d9
|
Removed xauth-null dummy plugin.
|
2012-03-20 17:31:17 +01:00 |
Martin Willi
|
b155084c42
|
Added IKEv1 Mode Config task based on IKEv2 ike_config
|
2012-03-20 17:31:16 +01:00 |
Martin Willi
|
4e73f85b81
|
Remove xauth_authenticator, we handle it in the task
|
2012-03-20 17:31:15 +01:00 |
Martin Willi
|
69adeb5bf2
|
Replace xauth_request task with a new stub where we reimplement it
|
2012-03-20 17:31:15 +01:00 |
Martin Willi
|
7c27c914d4
|
Implemented IKEv1 pubkey SIG payload processing in an authenticator
|
2012-03-20 17:31:14 +01:00 |
Martin Willi
|
2792587875
|
Implemented IKEv1 PSK HASH payload processing in separated authenticator
|
2012-03-20 17:31:14 +01:00 |
Martin Willi
|
c64a4b4f8e
|
Implemented post-authentication certificate handling for IKEv1
|
2012-03-20 17:31:13 +01:00 |
Martin Willi
|
0bcdb8e571
|
Implemented pre-authentication certificate handling for IKEv1
|
2012-03-20 17:31:13 +01:00 |
Clavister OpenSource
|
f00ffe4dd2
|
IKEv1 XAuth: Added changes to Makefile.am to compile the xauth_null plugin.
|
2012-03-20 17:31:11 +01:00 |
Clavister OpenSource
|
9c5366446a
|
IKEv1 XAuth: Added plugin support for XAuth, which allows us to have plugins to talk to servers with different quirks for XAuth authentication.
|
2012-03-20 17:31:11 +01:00 |
Tobias Brunner
|
1cc4ec46cf
|
Task added for IKEv1 NAT detection.
There is already support for both Main and Aggressive Mode.
|
2012-03-20 17:31:10 +01:00 |
Clavister OpenSource
|
2e210e3ef5
|
IKEv1 XAuth: Added a job to call the initiate_xauth method of ike_sa after the completion of the current set of tasks is complete.
|
2012-03-20 17:31:09 +01:00 |
Martin Willi
|
a2f8fc9711
|
Use a dedicated IKEv1 vendor ID task to fix using IKEv2 payloads in IKEv1
|
2012-03-20 17:31:07 +01:00 |
Martin Willi
|
017d98bf39
|
Merged IKEv1 attribute payload/data into configuration payload/attribute
|
2012-03-20 17:30:49 +01:00 |
Clavister OpenSource
|
23f4e4b42d
|
IKEv1 XAUTH: Added ability to configure XAUTH+PSK. Added task to handle XAUTH requests. Modified task_manager_v1 to enable it to initiate new tasks immediately after finishing a response.
|
2012-03-20 17:30:49 +01:00 |
Clavister OpenSource
|
54a8a94fa9
|
IKEv1 ConfigMode: Added TRANSACTION exchange type. Added attribute_payload (IKEv2 equiv cp_payload) and data_attribute (IKEv2 equiv configuration_attribute) payload types. Did not combine with IKEv2 because it wasn't trivial to do so. This might be a task worth investigating in the future, because there is a decent amount of shared code here.
|
2012-03-20 17:30:49 +01:00 |
Martin Willi
|
2b04aa46ea
|
Added a quick mode task stub
|
2012-03-20 17:30:44 +01:00 |
Tobias Brunner
|
273f2f8054
|
Added factory function to create task_manager_t implementations.
|
2012-03-20 17:30:43 +01:00 |
Tobias Brunner
|
4b64a1a17d
|
Added factory function to create keymat_t implementations.
|
2012-03-20 17:30:43 +01:00 |
Tobias Brunner
|
0fc9acdd23
|
Added stub for IKEv1 keymat_t implementation.
|
2012-03-20 17:30:42 +01:00 |
Tobias Brunner
|
6ab936f046
|
Use keymat_t as common interface, renamed current implementation to _v2.
|
2012-03-20 17:30:42 +01:00 |
Martin Willi
|
ee50a29385
|
Implemented IKEv1 hash payload
|
2012-03-20 17:30:42 +01:00 |
Martin Willi
|
c73c832c5a
|
Added an IKEv1 main mode task stub
|
2012-03-20 17:30:41 +01:00 |
Martin Willi
|
4a09d9ee7f
|
Added a stub for a IKEv1 task manager
|
2012-03-20 17:30:41 +01:00 |
Martin Willi
|
e69f7dcddf
|
Use task manager as generic interface, renamed implementation to _v2.
|
2012-03-20 17:30:41 +01:00 |
Tobias Brunner
|
856baca23e
|
Fixed monolithic build of libcharon with libtnccs enabled.
|
2011-11-08 18:35:11 +01:00 |
Tobias Brunner
|
59c5f048bb
|
Correctly refer to tnc-tnccs plugin when building monolithically.
|
2011-11-08 18:35:11 +01:00 |
Andreas Steffen
|
f0a8bf47f7
|
refactored TNC framework
|
2011-10-25 01:10:16 +02:00 |
Andreas Steffen
|
c008d2cc46
|
moved imv_manager to libtnccs
|
2011-10-25 01:10:16 +02:00 |
Andreas Steffen
|
f0fa002fd1
|
moved imc_manager to libtnccs
|
2011-10-25 01:10:16 +02:00 |
Martin Willi
|
8b6881cfc5
|
Added socket plugin feature loading callback
|
2011-10-14 10:05:48 +02:00 |
Martin Willi
|
ba2201edf0
|
Added plugin stub of certexpire plugin
|
2011-08-22 18:42:32 +02:00 |
Andreas Steffen
|
c77af76807
|
created tnc-ifmap plugin
|
2011-08-10 09:29:33 +02:00 |
Martin Willi
|
efee3ed80f
|
Migrated all SIM/AKA code to libsimaka, use SIM and AKA backend managers registered by name
|
2011-08-08 13:36:56 +02:00 |
Tobias Brunner
|
60d62b9e5c
|
Don't install the libraries directly in lib/.
Instead use a subdirectory (prefix/lib/ipsec by default). Also moved the
plugins from libexec to a subdirectory of that dir.
|
2011-07-05 14:42:14 +02:00 |
Andreas Steffen
|
f87991704e
|
implemented PASS and DROP shunt policies
|
2011-06-28 19:42:54 +02:00 |
Andreas Steffen
|
7c4d4d209d
|
make IMC/IMV pairs independent of libcharon
|
2011-06-01 16:33:44 +02:00 |