641c9b6932
Credentials are no longer stored using method name (TLS/PAP/MSCHAPv2) but with level/type identifier
2016-09-06 15:39:41 +02:00
b11cb3a5f2
MSCHAPv2 now functional
...
(closes #5 )
2016-09-06 14:10:46 +02:00
c765954c0f
"Last Authentication Failed" flag extended to support finer feedback, why last authentication failed
2016-09-06 14:10:02 +02:00
b7ed9d076f
When inner method admits its authentication (credentials) failed, failed authentication flag for outer method is cleared
2016-09-06 10:02:55 +02:00
d83f5422d7
MSCHAPv2 almost finished...
2016-09-05 16:44:18 +02:00
4076655e2e
MSCHAPv2 work continues...
2016-09-04 18:00:36 +02:00
e4e9604297
method_ttls::derive_challenge() introduced
2016-09-04 18:00:10 +02:00
765466f535
Missing memory-sanitation added
2016-09-04 17:57:59 +02:00
a8070e9bba
Clean-up
2016-09-02 14:07:56 +02:00
621669828b
Schannel and ownTLS MSK derivation unified
2016-09-02 14:03:34 +02:00
00aee5bb78
ownTLS updated
2016-09-02 11:38:28 +02:00
198b9a576e
Maximum packet size parameter is now optional
2016-09-02 10:19:39 +02:00
566785192a
Requirement that eap::method processes EAP packets only dropped, work with non-EAP methods simplified
2016-09-02 09:50:21 +02:00
6c11b23267
MSCHAPv2 stub added - it's a PAP clone, so selecting it does PAP really
2016-09-01 14:59:40 +02:00
56e2448f71
Clearing session resumption for ownTLS added.
...
(Have yet to learn how do you do this for Schannel. Better yet: How do you make Schannel resume a session in the first place.)
2016-09-01 14:59:03 +02:00
1e60d21860
On session reconnect skip inner re-authentication now
2016-09-01 12:49:20 +02:00
844b185887
EAP packet classes organized in hierarchy now
2016-09-01 10:25:33 +02:00
cafd786e19
Own TLS updated to keep it alive (now that the fuss around outer/inner methods settled)
2016-08-29 20:40:37 +02:00
a7c8052ee2
eap::method revised to support nesting, so the PAP method was made a stand-alone method
2016-08-29 20:05:58 +02:00
9daa5b52a4
Incorrect letter case referencing EapHost service fixed
2016-08-27 06:58:57 +02:00
6077063599
The credentials are marked "invalid" at transition from handshake to application data phase only to prevent initial handshake problems from popping-up credential prompt when credentials have nothing to do with the connection failure.
2016-08-25 13:08:11 +02:00
d1c24efcf0
config_method_with_cred renamed to config_connection to describe it better
2016-08-24 11:39:37 +02:00
5332b538aa
Our own TLS merged back to master and compiles conditionally
2016-08-23 22:46:00 +02:00
9b997408a1
Switched to Schannel to do the TLS
2016-08-23 13:53:23 +02:00
df1d431bd0
- TLS revised (again)
...
- TLS Session resumption issues resolved
- Credential prompt has "Remember" checkbox initially selected when credentials originate from Windows Credential Manager
- Last authentication attempt failure notice is more general and no longer insinuate user credentials are the likely cause of the failure
- Additional log messages added
2016-08-17 11:50:34 +02:00
cabae26e0b
Flags describing handshake messages received assembled in a boolean table of flags
2016-08-17 09:01:11 +02:00
e9839706b6
TLS clean-up
2016-08-16 16:44:19 +02:00
85d7c3d4ec
Support for TLS 1.2 added
2016-08-16 00:47:47 +02:00
d8ccf7cbc0
Credential management revised
2016-08-15 17:33:10 +02:00
3d6849a523
Peer correctly returns providers configuration instead of method configuration in method_tls::get_result()
2016-08-15 14:13:14 +02:00
e807336e7b
The TLS phase can be determined from flags alone, therefore m_phase member eliminated
2016-08-15 10:40:27 +02:00
95426cde7c
Clean-up
2016-08-15 10:09:01 +02:00
92c62c53d7
16B PAP password padding added (RFC 5281)
2016-08-15 05:40:23 +02:00
99aa53726d
- PPP authentication EAP response packet is correctly formed now
...
- MS-MPPE-Send-Key/MS-MPPE-Recv-Key sorted out
2016-08-14 21:04:19 +02:00
956ef9bd4e
CryptGenRandom() return status check added
2016-08-14 16:22:59 +02:00
d1925a0704
method_tls::prf() simplified
2016-08-14 12:41:19 +02:00
a90a7722c7
PAP introduced
2016-08-13 18:56:37 +02:00
ae37c9aa6c
TLS and TTLS distinction
2016-08-13 18:55:33 +02:00
3d54c84430
method_ttls is now descendant of method_tls
2016-08-13 08:48:24 +02:00
f7fdfb8dda
EAP packet type check moved to Main.cpp
2016-08-13 08:09:13 +02:00
a8c306953a
TLS work continues...
2016-08-11 15:13:50 +02:00
1bf51fda25
win_runtime_error moved to WinStd; eapxml functions return HRESULT now
2016-08-09 01:05:00 +02:00
b71e30f642
EAP_ERROR replaced with C++ exceptions for increased code readability
2016-08-08 22:59:17 +02:00
8f4c177d49
eap namespace clean-up
2016-08-08 10:13:34 +02:00
d199cb68bb
Work continues...
...
- More event reporting added
- unsigned long and DWORD replaced with unsigned int for code readability and (possibly) portability
- Client hello message fixed
- SSL version reverted to TLS 1.0, will catch-up later if required
2016-08-07 12:15:45 +02:00
a0efb6742d
EAP-TTLS work continues...
2016-08-06 16:27:15 +02:00
b39cc927d2
Session.h/cpp >> Method.h/cpp
2016-08-06 10:36:58 +02:00
