sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-12-04 00:00:21 -05:00
Code Issues Projects Releases Wiki Activity
8,235 Commits 104 Branches 331 Tags
Commit Graph

8235 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andreas Steffen
584178c3bb version bump to 4.6.3dr2 2012-03-16 22:21:54 +01:00
Andreas Steffen
f673958e59 added the strongswan.conf options of the tnc-pdp plugin 2012-03-16 11:14:40 +01:00
Andreas Steffen
bd360b3911 keep a copy of refreshed carolCert-ocsp.pem 2012-03-15 07:59:42 +01:00
Andreas Steffen
ebf292bad0 refreshed carolCert-ocsp.pem 2012-03-15 07:58:35 +01:00
Andreas Steffen
68c2c7ece4 eliminate unneeded private variable 2012-03-14 21:38:30 +01:00
Andreas Steffen
ea2f340e27 added tnc/tnccs-20-pdp scenario 2012-03-14 08:47:12 +01:00
Andreas Steffen
9b8053a63a edited description of tnc/tnccs-11-radius scenario 2012-03-14 08:46:52 +01:00
Andreas Steffen
fb5450a435 use MAX_RADIUS_ATTRIBUTE_SIZE constant from radius_message header file 2012-03-14 07:51:56 +01:00
Andreas Steffen
c224f7654d version bump to 4.6.3dr1 2012-03-14 07:45:35 +01:00
Andreas Steffen
dae4ada4cd make the mppe salt unique 2012-03-14 07:31:19 +01:00
Andreas Steffen
3cff2b598b straightene radius_mppe header file 2012-03-14 06:52:26 +01:00
Andreas Steffen
6fd612913e implemented MS_MPPE encryption 2012-03-13 23:26:15 +01:00
Andreas Steffen
5fdb849293 use predefined Microsoft PEN 2012-03-13 19:23:35 +01:00
Andreas Steffen
4adc3c147e use MAX_RADIUS_ATTRIBUTE_SIZE constant 2012-03-13 18:06:56 +01:00
Andreas Steffen
ff4e447954 use RADIUS_TUNNEL_TYPE_ESP defined in header file 2012-03-13 17:00:37 +01:00
Andreas Steffen
d90ade8f79 implemented RADIUS Filter-ID attribute 2012-03-13 16:27:18 +01:00
Andreas Steffen
dfa3084223 removed double library entry 2012-03-13 16:27:17 +01:00
Andreas Steffen
27a91de071 adapted debug output 2012-03-13 16:27:17 +01:00
Andreas Steffen
70b2bfa5cb keep a list of RADIUS connections with EAP method states 2012-03-13 16:27:17 +01:00
Andreas Steffen
595f44e9a3 apply maximum RADIUS attribute size to outbound EAP messages 2012-03-13 16:27:17 +01:00
Andreas Steffen
d1a311f631 read PDP server name from strongswan.conf 2012-03-13 16:27:17 +01:00
Andreas Steffen
4853efe891 define MAX_RADIUS_ATTRIBUTE_SIZE 2012-03-13 16:27:17 +01:00
Andreas Steffen
135822e11b define peer and server identities 2012-03-13 16:27:17 +01:00
Andreas Steffen
cd9bde335c added EAP_SUCCESS/FAILURE message to RADIUS Accept/Reject 2012-03-13 16:27:17 +01:00
Andreas Steffen
b3ec652192 added msg_auth flag in radius_message_t sign() method 2012-03-13 16:27:17 +01:00
Andreas Steffen
4fc6c7d442 allow debug of raw RADIUS data 2012-03-13 16:27:17 +01:00
Andreas Steffen
d4db9f44c2 simple RADIUS server example works 2012-03-13 16:27:17 +01:00
Andreas Steffen
e9f32b010a first use of libradius 2012-03-13 16:27:17 +01:00
Andreas Steffen
21b0f216b9 created libradius shared by eap-radius and tnc-pdp plugins 2012-03-13 16:27:17 +01:00
Andreas Steffen
70fd2d1af7 created tnc-pdp policy decision point plugin 2012-03-13 16:27:16 +01:00
Martin Willi
bc403eb1e5 Fixed crash and locking issues while unrouting connections via stroke 2012-03-13 10:56:22 +01:00
Tobias Brunner
cd6b5bf8e9 Clear peer addresses during HA update. 2012-03-09 10:30:37 +01:00
Tobias Brunner
72b2811204 Simplified some route lookups now that we store all peer addresses in a list. 2012-03-09 10:22:21 +01:00
Tobias Brunner
94bbc60256 Renamed list of additional peer addresses as it now stores all known addresses. 2012-03-09 10:17:42 +01:00
Tobias Brunner
2fe624cca9 Store the peer's current address as additional known address on the IKE_SA. 
This allows to switch back to the original address after switching to
any of the additional addresses.
 2012-03-09 10:08:41 +01:00
Martin Willi
4bbd943038 Include radattr RADIUS attribute only if an EAP payload is present 2012-03-06 16:08:32 +01:00
Martin Willi
bb0b203186 By default include radattr RADIUS attribute in any IKE_AUTH exchange 2012-03-06 16:08:29 +01:00
Martin Willi
45f20f8a79 farp plugin sends ARP responses for any tunneled address, not only virtual IPs 2012-03-06 16:06:33 +01:00
Martin Willi
21796bac9a Be less verbose if we don't have a local address for a tunnel 2012-03-06 16:05:58 +01:00
Martin Willi
4d7a2128b6 Re-resolve hosts on additional keyingtries 2012-03-06 16:05:28 +01:00
Martin Willi
d1fbb0a4b3 Renamed radius_server to radius_config, as some real RADIUS server functionality is coming 2012-03-05 18:31:30 +01:00
Martin Willi
2e3615e4ad Prefer EAP-Identity to read radattr RADIUS attribute file 2012-03-05 18:08:04 +01:00
Martin Willi
4cd176d525 Invoke ike_updown hook on authentication failure not before response sent 2012-03-05 18:08:04 +01:00
Martin Willi
0853ff39c5 Build libradius if radattr plugin is enabled 2012-03-05 18:08:04 +01:00
Martin Willi
3ccc8a191c Inject RADIUS attribute in radattr plugin read from an identity specific file 2012-03-05 18:08:04 +01:00
Martin Willi
caf4b88efc Added a radattr plugin that prints any received RADIUS notify to console 2012-03-05 18:08:04 +01:00
Martin Willi
f0f94e2ce6 Moved generic RADIUS protocol support to a dedicated libradius 2012-03-05 18:08:04 +01:00
Martin Willi
990fda9d88 Removed libcharon dependencies from generic RADIUS protocol support 2012-03-05 18:06:15 +01:00
Martin Willi
99cb353968 Forward specifcied RADIUS attributes between AAA backend and client 2012-03-05 18:06:15 +01:00
Martin Willi
007d5b9218 Defined a private status notify to transport arbitrary RADIUS attributes 2012-03-05 18:06:14 +01:00