99aa53726d
- PPP authentication EAP response packet is correctly formed now
...
- MS-MPPE-Send-Key/MS-MPPE-Recv-Key sorted out
2016-08-14 21:04:19 +02:00
95e2f7e01b
Encryption/decryption revised
...
- Number of memory copying reduced
- HMAC verification of server packets added
- Handshake hashing simplified
2016-08-14 18:51:18 +02:00
735d669887
Check for "change cipher spec" before server "finished" message added
2016-08-14 16:32:28 +02:00
a8db309a76
Wrong HMAC byte order issue fixed
2016-08-14 16:31:38 +02:00
7b94f01aa7
method_tls::create_key() optimization
2016-08-14 16:31:07 +02:00
12beee54ad
Ambiguous variable name changed
2016-08-14 16:24:07 +02:00
956ef9bd4e
CryptGenRandom() return status check added
2016-08-14 16:22:59 +02:00
f9c5f608d0
Fixed missing server handshake message hashing
2016-08-14 14:03:12 +02:00
4982fc1a9a
Ambiguous logical expression equipped with parentheses
2016-08-14 14:01:20 +02:00
e7e8a88f32
Initialization of eap::tls_conn_state introduced
2016-08-14 13:59:54 +02:00
9a2663eb18
Non TLS1PRF case fixed in method_tls::prf()
2016-08-14 13:31:39 +02:00
940def31e6
Unused tls_conn_state member removed
2016-08-14 13:29:51 +02:00
47653492a2
Session key importing honours MSDN recommendation about exponent-one key usage
2016-08-14 12:44:49 +02:00
d1925a0704
method_tls::prf() simplified
2016-08-14 12:41:19 +02:00
a90a7722c7
PAP introduced
2016-08-13 18:56:37 +02:00
ae37c9aa6c
TLS and TTLS distinction
2016-08-13 18:55:33 +02:00
cbda758178
MS-MPPE-Send-Key and MS-MPPE-Recv-Key are swapped now
2016-08-13 18:52:20 +02:00
04444eb99d
Encrypted pre-master secret byte order is correct now
2016-08-13 18:51:14 +02:00
b7b45ea64c
Cipher block length is correctly translated from bits to bytes now
2016-08-13 18:50:09 +02:00
4528f2d1fc
Simplification
2016-08-13 18:48:56 +02:00
eb918f3141
Processing of vendor specific TLS messages introduced
2016-08-13 18:48:02 +02:00
c749753c68
State constants renamed more systematically
2016-08-13 18:45:40 +02:00
9f92a73aa1
make_handshake() renamed to make_message() and made more general
2016-08-13 18:42:52 +02:00
6d54d45512
Pre-master secret encryption moved to make_client_key_exchange()
2016-08-13 18:39:22 +02:00
9498e8c9a9
Fixed issue occurred after careless eap::tls_random::time elimination
2016-08-13 18:32:40 +02:00
f9c6bce0f8
Diameter AVP helper structures added
2016-08-13 18:26:19 +02:00
3d54c84430
method_ttls is now descendant of method_tls
2016-08-13 08:48:24 +02:00
1306c958fc
config_method_ttls is now descendant of config_method_tls
2016-08-13 08:48:01 +02:00
09924ea3d2
credentials_ttls is descendant of credentials_tls again
2016-08-13 08:36:10 +02:00
537d0c0cbc
Changing TLS configuration resets TLS session resumption
2016-08-13 08:31:03 +02:00
6408dbe237
Missing credentials error check lost with b71e30f642821afcc77ace8fdbb5feaf40c1ae5b reimplemented
2016-08-13 08:29:01 +02:00
534f6f6d7d
tls_conn_state is class now
2016-08-13 08:09:47 +02:00
f7fdfb8dda
EAP packet type check moved to Main.cpp
2016-08-13 08:09:13 +02:00
c7a41d891a
TLS work continues...
2016-08-12 21:09:50 +02:00
a8c306953a
TLS work continues...
2016-08-11 15:13:50 +02:00
77fe6b1bed
TLS connection state moved from eap::method_tls to eap::method_tls::conn_state to make reusable later
2016-08-11 12:00:38 +02:00
659629ed93
Clean-up
2016-08-11 09:44:01 +02:00
6b4f597f27
- Microsoft's HMAC had problems with secrets longer than 16B, therefore we implemented our own
...
- Key generation finished
- Additional memory sanitization
2016-08-10 16:10:40 +02:00
fb0fa0de31
HMAC fixed to start with the correct key now
2016-08-10 11:18:20 +02:00
e92f47677d
TLS implementation continues...
2016-08-09 18:37:12 +02:00
ba5bf1e533
HMAC cleanup
2016-08-09 06:39:33 +02:00
1bf51fda25
win_runtime_error moved to WinStd; eapxml functions return HRESULT now
2016-08-09 01:05:00 +02:00
b71e30f642
EAP_ERROR replaced with C++ exceptions for increased code readability
2016-08-08 22:59:17 +02:00
788c8cdb16
TLS implementation continues...
2016-08-08 18:52:13 +02:00
ce9e636840
TLS start packet processing logic made more robust
2016-08-08 10:42:24 +02:00
8f4c177d49
eap namespace clean-up
2016-08-08 10:13:34 +02:00
bf4b7f9787
Packet data updated correctly now; Missing server ACK detection added
2016-08-08 08:59:11 +02:00
be3c591955
TLS fragmented message correctly assembled now & Event manifest revised
2016-08-07 13:51:40 +02:00
d199cb68bb
Work continues...
...
- More event reporting added
- unsigned long and DWORD replaced with unsigned int for code readability and (possibly) portability
- Client hello message fixed
- SSL version reverted to TLS 1.0, will catch-up later if required
2016-08-07 12:15:45 +02:00
e649a86b1f
Error checking and size asserts added
2016-08-07 06:56:29 +02:00
