Amebis/GEANTLink
1
1
Fork 0
Code Issues 3 Pull Requests Actions Packages Projects Releases 50 Wiki Activity
981 Commits 3 Branches 69 Tags
96b104f0a6c8bfaa5d36586d44032e532ea0bf13
Commit Graph

981 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Simon Rozman
96b104f0a6 Prevent empty GTC responses 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-04-20 11:28:49 +02:00
Simon Rozman
8b8690c71a Touch-up radio button and checkbox spacing 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-04-17 15:48:41 +02:00
Simon Rozman
d945ccac73 Prevent empty credentials 
Always require identity (username).

Zero passwords are no security. Prevent zero passwords too.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-04-17 14:56:26 +02:00
Simon Rozman
63db62453a Add TortoiseGit settings 
This unifies language (spell-checking), Signed-off-by requirement and
icon branding across all clones and working copies.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-04-17 14:45:47 +02:00
Simon Rozman
a7dc7d2525 Make Wingdings icons non-localizable 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-04-17 07:01:11 +02:00
Simon Rozman
ae0085cfdf Update documentation 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-04-14 11:19:52 +02:00
Simon Rozman
fdc1e5cb73 Resolve C5205 warning 
Reference: https://developercommunity.visualstudio.com/content/problem/893960/compiling-atlsecurityh-raises-several-c5205-warnin.html
Reference: https://developercommunity.visualstudio.com/idea/937938/msvc-version-1650-preview-20-introduces-a-new-c-wa.html
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-04-14 08:51:34 +02:00
Simon Rozman
9671daecf4 Update documentation 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-03-16 10:12:55 +01:00
Simon Rozman
7d53ec52b7 Makefile: PackageGUID.mak moved to %TEMP% 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-03-03 13:48:31 +01:00
Simon Rozman
709a9e8709 Makefile: Stop digitally signing intermediate packaging files 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-03-03 13:48:31 +01:00
Simon Rozman
e8ff739ca5 Makefile: Simplify intermediate packaging filenames 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-03-03 13:30:54 +01:00
Simon Rozman
5b452a25fe Makefile: Optimize cleaning 
NMAKE invocations are costly (slow, no-parallel support).

Rather than pinpoint cleaning of each combination of $(LANG), $(PLAT)
and $(CFG) related files, we do the wildcard cleaning of all packaging
files.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-03-03 13:28:14 +01:00
Simon Rozman
90e21bd6e6 Makefile: Optimize building 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-03-03 13:28:13 +01:00
Simon Rozman
8b9d99a944 Pre-set version to 1.3a 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-03-03 12:47:15 +01:00
Simon Rozman
c81af549bf Set version to 1.3 
Signed-off-by: Simon Rozman <simon@rozman.si>
1.3 		2020-02-28 14:12:59 +01:00
Simon Rozman
1286bd0b87 Automate source publishing 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-28 14:12:59 +01:00
Simon Rozman
f0e2d2d40d Revert back to "x64" platform designation of deliverables 
Renaming MSI and other output files just to unify platform designation
doesn't justify the cause. Not to break other people's installers, the
"AMD64" was renamed back to "x64" in output filenames.

This partially reverts 152e3a9176.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-28 13:37:19 +01:00
Simon Rozman
3fc0f89291 wxExtend: Bump 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-28 10:39:48 +01:00
Simon Rozman
96fede14ed Pull translations from Transifex 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-28 10:14:30 +01:00
Simon Rozman
aadd1c8472 MSI: Change upgrade GUID and perform major upgrade 
As component GUIDs changed, but the component path remained, the minor
update will no longer work correctly.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-28 09:50:34 +01:00
Simon Rozman
14726b14d4 Makefile: Revise language list 
To speed up building, remove untranslated and severly undertranslated
languages: Bulgarian, Czech, Welsh, Basque, Finnish, French, Gaelish,
Icelandic, Korean, Lithuanian, Dutch, Russian, Slovak, Swedish,
Vietnamese

Enable already translated, but overlooked languages: Hungarian,
Portuguese (Portugal), Turkish

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-28 09:33:38 +01:00
Simon Rozman
9c50c949b1 wxExtend: Bump 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-28 08:22:21 +01:00
Simon Rozman
61d3ef43ad WinStd: Bump 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-28 08:22:03 +01:00
Simon Rozman
152e3a9176 Unify platform designations 
- .sln uses the same as .vcxproj and Makefile
- Output MSI files use the same as %PROCESSOR_ARCHITECTURE%

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-08 08:23:08 +01:00
Simon Rozman
ddaf4cc598 EAPMethods: Move build and src files one folder up 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 15:44:47 +01:00
Simon Rozman
8c2225992e TLS: Revise Schannel flags 
- SCH_USE_STRONG_CRYPTO is now declared in the Windows SDK included with
  Visual Studio 2019. No need to enter this flag numerically any more.

- m_sc_ctx.initialize() and m_sc_ctx.process() should use same flags.
  They are actually. Rather than copy&paste them, declare them in a
  single place.

- Add ISC_REQ_USE_SUPPLIED_CREDS flag. Use the client certificate we
  supply or none at all.

- Add ISC_REQ_MANUAL_CRED_VALIDATION flag. We validate the server
  certificate.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:59 +01:00
Simon Rozman
dedaee0693 UI: Upgrade wxFromBuilder 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:59 +01:00
Simon Rozman
fdb1340b9d EAP-GTC UI: Prevent wxChoicebook from stretching pages 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:59 +01:00
Simon Rozman
f98996c13d UI: Reorder outer and inner configuration panels 
This follows the natural workflow.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:58 +01:00
Simon Rozman
0aab5f2e94 UI touch-up 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:58 +01:00
Simon Rozman
8d42db2f56 TLS: Use protocol version enabled on the system by default 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:58 +01:00
Simon Rozman
4dad574377 Rename StdAfx.h to PCH.h 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:58 +01:00
Simon Rozman
cd0a99c518 wxUICanceller: Move upstream and make reusable 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:58 +01:00
Simon Rozman
3bd2d1fd09 credentials_tls: Update documentation 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:57 +01:00
Simon Rozman
d4c01a5345 config_method_tls: Cleanup 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:57 +01:00
Simon Rozman
6e97a04bfe credentials_tls: Keep thumbprint rather than client certificate 
By storing the client certificate the certificate became detached from
its private key stored in user certificate store. This rendered client
certificates useless for client TLS authentication.

Now, the client certificate thumbprint is stored instead. The client
certificate is looked up in the user certificate store as required.

This breaks profile XML and BLOB backward compatibility. Since the
client certificate support was broken, nobody probably used those in
the settings before.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:57 +01:00
Simon Rozman
75488ba870 credentials: Move user impersonation to peer::get_identity() 
To retrieve user credentials, EapHost provides us the interactive user's
token we can use to impersonate.

By doing the impersonation early in peer::get_identity(), we don't need
to pass the token down the lower methods. This is rather a
simplification than a performance optimization.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:57 +01:00
Simon Rozman
e2eb41e811 credentials_tls: Use WinCrypt to get client certificate name 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:57 +01:00
Simon Rozman
e8b1e157d9 module: Make make_config() pure virtual 
It is important to implement this method in derived classes. When we
provided default implementation returning NULL, introducing new methods
might leave this method not implemented without a compiler error.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:57 +01:00
Simon Rozman
6511d826a0 peer: Move all generic methods upstream from peer_tls_base 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:57 +01:00
Simon Rozman
33e765adcd Cleanup 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:56 +01:00
Simon Rozman
5b02352f1a Resolve the make_...() methods 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:56 +01:00
Simon Rozman
5195b79eed method_ttls: Reintroduce 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:56 +01:00
Simon Rozman
d400901c52 Rename peer_tls to peer_tls_base 
peer_tls is actually not a complete EAP-TLS implementation.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:38 +01:00
Simon Rozman
570eb83558 peer_tls: Move all applicable methods upstream to make reusable 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:38 +01:00
Simon Rozman
db056f5150 Cleanup 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:38 +01:00
Simon Rozman
1d558c939e Rename method_tls_tunnel to method_tls and move upstream 
CRL checking was also moved upstream as method_tls triggers it.

Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:10:37 +01:00
Simon Rozman
5c0299197b method_defrag: Move upstream to make reusable 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:09:43 +01:00
Simon Rozman
383a85c18b method: Merge with method_tunnel 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:09:43 +01:00
Simon Rozman
3fa48c3650 MSIBuild: Bump 
Signed-off-by: Simon Rozman <simon@rozman.si>
 2020-02-07 13:09:43 +01:00