Tobias Brunner
|
a2eb581781
|
capabilities: Move global capabilities_t instance to libstrongswan
|
2013-06-25 17:16:32 +02:00 |
Tobias Brunner
|
2e21bac19a
|
capabilities: Ensure required capabilities are actually held by the process/user
|
2013-06-25 17:16:32 +02:00 |
Martin Willi
|
a650242643
|
ikev2: keep the CHILD_SA we delete as initiator in the list to destroy
If the responder not correctly send the correct protocol or SPI in the delete
response, we should remove the CHILD_SA regardless.
|
2013-06-25 14:03:51 +02:00 |
Andreas Steffen
|
72631301eb
|
Some IMV policy managers expect a TEXT string
|
2013-06-25 12:47:07 +02:00 |
Andreas Steffen
|
59c9ec107f
|
Assign default group to newly created devices
|
2013-06-25 11:49:32 +02:00 |
Andreas Steffen
|
632e5b0b99
|
Set device creation date if it hasn't been set yet
|
2013-06-24 20:18:16 +02:00 |
Tobias Brunner
|
e8db483f41
|
unit-tester: RSA test was removed
|
2013-06-24 16:01:23 +02:00 |
Andreas Steffen
|
7867c1a315
|
Aligned AR Identity types to IF-IMV 1.4 R5 draft
|
2013-06-24 00:23:50 +02:00 |
Andreas Steffen
|
69c4715bf8
|
Send PA-TNC assessment result even if no workitems are available
|
2013-06-24 00:22:38 +02:00 |
Andreas Steffen
|
02497901d0
|
Some pacman fixes
|
2013-06-23 16:23:19 +02:00 |
Andreas Steffen
|
6b081a4c21
|
Some PTS database fixes
|
2013-06-21 23:25:25 +02:00 |
Andreas Steffen
|
45eb318ed4
|
Implemented pacman in a more reliable way
|
2013-06-21 23:25:25 +02:00 |
Andreas Steffen
|
4fe7294bb3
|
Define protocol string
|
2013-06-21 23:25:25 +02:00 |
Andreas Steffen
|
41dabbad41
|
Generate result string for port scan workitems
|
2013-06-21 23:25:25 +02:00 |
Andreas Steffen
|
8fbfe03e4e
|
Ignore non-matching protocols
|
2013-06-21 23:25:25 +02:00 |
Andreas Steffen
|
e5dd8a1d34
|
Introduced workitems to Scanner IMV
|
2013-06-21 23:25:24 +02:00 |
Andreas Steffen
|
da99df1443
|
Added ITA components to database
|
2013-06-21 23:25:24 +02:00 |
Andreas Steffen
|
10bb71261c
|
Added soft dependency on database plugin
|
2013-06-21 23:25:24 +02:00 |
Andreas Steffen
|
a2e30d601a
|
fixed SQL query
|
2013-06-21 23:25:24 +02:00 |
Andreas Steffen
|
4cf568a785
|
Shortened names of default policy groups
|
2013-06-21 23:25:24 +02:00 |
Andreas Steffen
|
19ce03be73
|
Store device with product ID
|
2013-06-21 23:25:24 +02:00 |
Andreas Steffen
|
bf250acb06
|
Database changes needed to integrate Cygnet backend
|
2013-06-21 23:25:24 +02:00 |
Andreas Steffen
|
01afff71cb
|
Implemented get|set_action_flag() methods
|
2013-06-21 23:25:24 +02:00 |
Andreas Steffen
|
a45a2c9291
|
Implemented hierarchical policy groups
|
2013-06-21 23:25:24 +02:00 |
Andreas Steffen
|
b1da8368d0
|
Introduced workitems to Attestation IMV
|
2013-06-21 23:25:23 +02:00 |
Andreas Steffen
|
7e9bdd20aa
|
pts_meas_algo_probe() and pts_dh_group_probe() got lost
|
2013-06-21 23:25:23 +02:00 |
Andreas Steffen
|
c174c116fe
|
Converted all IMVs to use generic IF-IMV API
|
2013-06-21 23:25:23 +02:00 |
Andreas Steffen
|
ea2663ec03
|
Remove the constructor from the IMV agent interface
|
2013-06-21 23:25:23 +02:00 |
Andreas Steffen
|
97f0a7ea77
|
Defined a generic IMV agent interface
|
2013-06-21 23:25:23 +02:00 |
Andreas Steffen
|
7513a09ee5
|
Moved all functionality into imv_os_agent_t class turning imv_os_t into an IF-IMV skeleton
|
2013-06-21 23:25:23 +02:00 |
Andreas Steffen
|
99c6a5f8a4
|
Moved batch_ending into separate source file
|
2013-06-21 23:25:23 +02:00 |
Andreas Steffen
|
e1db511bbd
|
do not process workitems with NULL result
|
2013-06-21 23:25:23 +02:00 |
Andreas Steffen
|
c219d7e31f
|
fixed enumeration of workitems for a given session
|
2013-06-21 23:25:23 +02:00 |
Andreas Steffen
|
65148217b0
|
generate workitems based on group policy
|
2013-06-21 23:25:23 +02:00 |
Andreas Steffen
|
0fca778254
|
Added file and directory reference measurements to workitems
|
2013-06-21 23:25:22 +02:00 |
Andreas Steffen
|
2964562199
|
add overall recommendation to session database entry
|
2013-06-21 23:25:22 +02:00 |
Andreas Steffen
|
4f6bf1a843
|
don't define a default database URI
|
2013-06-21 23:25:22 +02:00 |
Andreas Steffen
|
1ecff25917
|
created a simple IMV Policy Manager
|
2013-06-21 23:25:22 +02:00 |
Andreas Steffen
|
1571a11fa4
|
register received scanner attributes
|
2013-06-21 23:25:22 +02:00 |
Andreas Steffen
|
9d63ad17d4
|
used tnc_policy_update functions for default policy
|
2013-06-21 23:25:22 +02:00 |
Andreas Steffen
|
a6266485be
|
refactored IMV policy management
|
2013-06-21 23:25:22 +02:00 |
Andreas Steffen
|
4f9aabbfd7
|
implemented policy rules for OS IMV
|
2013-06-21 23:25:22 +02:00 |
Andreas Steffen
|
7daf6d8cc5
|
check for zero-length device ID
|
2013-06-21 23:25:22 +02:00 |
Andreas Steffen
|
033834719d
|
ITA-HSR/Device ID attribute & IMV OS state machine
|
2013-06-21 23:25:22 +02:00 |
Andreas Steffen
|
bb9d8b1853
|
execute an _imv_policy script
|
2013-06-21 23:25:22 +02:00 |
Andreas Steffen
|
b8db66de15
|
implemented IMV session control
|
2013-06-21 23:25:21 +02:00 |
Andreas Steffen
|
1f179c63b3
|
Manage files and directories
|
2013-06-21 23:25:21 +02:00 |
Martin Willi
|
45dcf4df57
|
osx-attr: add plugin installing config attributes using SystemConfiguration
Currently installs DNS servers only, by prepending IP addresses to the
DNS configuration of the primary networking service.
|
2013-06-21 17:03:22 +02:00 |
Tobias Brunner
|
12488efa78
|
kernel-pfroute: Simplify route lookup after fixing sockaddr parsing
|
2013-06-21 17:03:22 +02:00 |
Tobias Brunner
|
4b3fea3d54
|
kernel-pfroute: Alignment of sockaddrs is not always the same
|
2013-06-21 17:03:22 +02:00 |