GEANTLink

Amebis/GEANTLink

Fork 0

Commit Graph

Select branches

Hide Pull Requests

master

ver1.0

ver1.1

#26

1.0

1.0-alpha0

1.0-alpha1

1.0-alpha10

1.0-alpha10-owntls

1.0-alpha11

1.0-alpha12

1.0-alpha13

1.0-alpha14

1.0-alpha15

1.0-alpha16

1.0-alpha17

1.0-alpha2

1.0-alpha3

1.0-alpha4

1.0-alpha5

1.0-alpha6

1.0-alpha7

1.0-alpha8

1.0-alpha9

1.0-beta

1.0-beta1

1.0-beta2

1.0-beta3

1.0-beta4

1.0-beta5

1.0-beta6

1.0-beta7

1.0-beta8

1.0a

1.0b

1.0c

1.0d

1.0e

1.0f

1.0g

1.0h

1.0i

1.1

1.1-beta

1.1-beta1

1.1-beta2

1.1a

1.1b

1.1c

1.1d

1.1e

1.1f

1.1g

1.1h

1.2

1.2-beta

1.2-beta1

1.2-beta2

1.2a

1.2b

1.2c

1.2d

1.2e

1.2f

1.2g

1.3

1.3a

1.3b

1.3c

1.3d

1.3e

1.3f

1.3g

770b56e2cf credentials::get_name() now distinguish between empty credentials and blank identity Simon Rozman 2016-08-28 20:06:54 +02:00
df680e74f6 TLS credentials are considered empty regardless the state of custom identity setting now Simon Rozman 2016-08-28 20:05:41 +02:00
e66a7eb9ba dePAPization continues to pave the road for seamless MSCHAPv2 integration Simon Rozman 2016-08-28 20:04:45 +02:00
6c66862eed TTLS config and credentials are now expected to always have inner config and credentials object present; it can be blank, but it must not be nullptr Simon Rozman 2016-08-28 17:43:06 +02:00
fc5e54db05 Inner configuration/credential management virtualized to reduce cluttering code Simon Rozman 2016-08-28 17:20:24 +02:00
d20aafb3ff Identity selection revised to support cases where TLS certificate is present but contains no usable username Simon Rozman 2016-08-28 16:38:13 +02:00
8ce7154a77 Loading credentials from XML allows <UserName> absence and assumes blank identity in this case now Simon Rozman 2016-08-28 15:46:30 +02:00
d926ea66b0 Sub-module update Simon Rozman 2016-08-28 13:42:47 +02:00
3baa77d3bb WLANManager utility introduced (closes #7) Simon Rozman 2016-08-28 12:21:29 +02:00
25eb6d8d72 32-bit C++ compiler warning resolved Simon Rozman 2016-08-27 21:18:06 +02:00
349508701c Support for localization added to MSI setup (closes #9) Simon Rozman 2016-08-27 21:17:46 +02:00
9f770bbb3f peer_ttls_ui now initializes wxWidgets further to support localization Simon Rozman 2016-08-27 17:54:00 +02:00
bc1c56174a UI language in registry is ll_CC format now Simon Rozman 2016-08-27 17:28:30 +02:00
db585975e8 Saving event source set to registry simplified to reduce registry clutter Simon Rozman 2016-08-27 17:22:28 +02:00
8bf99423c8 Slovenian localization files added Simon Rozman 2016-08-27 16:47:48 +02:00
249c4db1de Default column widths adjusted to better fit the content initially Simon Rozman 2016-08-27 16:42:39 +02:00
3dd8f26c94 Registry settings key names changed as separate manufacturer name introduced Simon Rozman 2016-08-27 16:41:26 +02:00
4a9d496ba1 Log trace control named for more logical name of settings in registry Simon Rozman 2016-08-27 15:49:54 +02:00
6f5bbeffa2 UI text updated Simon Rozman 2016-08-27 15:45:31 +02:00
f64dbacdbd Version set to 1.0-alpha13 1.0-alpha13 Simon Rozman 2016-08-27 13:10:31 +02:00
2a88c4f2a8 Event sources and toolbar management now more dynamic Simon Rozman 2016-08-27 13:01:58 +02:00
6ee34cdd47 Additional mnemonics introduced in Edit menu Simon Rozman 2016-08-27 09:21:11 +02:00
65c87bcbc0 Toolbar management enhanced Simon Rozman 2016-08-27 09:20:06 +02:00
1bdf4a2b8a UI strings revised Simon Rozman 2016-08-27 07:30:30 +02:00
a8856b951b Windows folder icon arranged Simon Rozman 2016-08-27 06:45:26 +02:00
6e58183d16 Panel icon loading simplified Simon Rozman 2016-08-26 18:17:05 +02:00
9daa5b52a4 Incorrect letter case referencing EapHost service fixed Simon Rozman 2016-08-26 18:00:54 +02:00
9704046868 EventMonitor upgraded - Clipboard support - Filtering by source and/or by message level - Schannel event source added (closes #8) Simon Rozman 2016-08-26 17:58:19 +02:00
3b8bc90a0f "Add/Remove Programs" contact info changed from Amebis to GÉANT Simon Rozman 2016-08-26 17:56:28 +02:00
b5c8b8ee67 Product icon introduced Simon Rozman 2016-08-26 17:47:16 +02:00
53e31b1be7 Additional resource-loading functions introduced Simon Rozman 2016-08-26 15:54:31 +02:00
5483368640 Version set to 1.0-alpha12 1.0-alpha12 Simon Rozman 2016-08-25 13:10:42 +02:00
6077063599 The credentials are marked "invalid" at transition from handshake to application data phase only to prevent initial handshake problems from popping-up credential prompt when credentials have nothing to do with the connection failure. Simon Rozman 2016-08-25 13:08:11 +02:00
2857b2edd2 First application data message is now appended piggyback to the last client handshake message (Hopefully resolving issue with Radiator) Simon Rozman 2016-08-25 13:00:47 +02:00
6760287f0d Duplicate log record of EAP-TLS handshake removed Simon Rozman 2016-08-25 12:58:56 +02:00
7973a8d59b Handshake log events are a bit more specific now Simon Rozman 2016-08-25 12:57:47 +02:00
f5d8f653af Texts updated Simon Rozman 2016-08-25 10:46:35 +02:00
e1600e5aba Configuration GUIDs are not required any more Simon Rozman 2016-08-24 18:59:59 +02:00
352d546da1 Version set to 1.0-alpha11 1.0-alpha11 Simon Rozman 2016-08-24 18:48:10 +02:00
d2ff78a613 Credential prompt sometimes displayed in background issue fixed now Simon Rozman 2016-08-24 18:39:15 +02:00
10807fad18 Variable renamed from Slovenian to English Simon Rozman 2016-08-24 18:36:51 +02:00
c6d53cd13c eap::monitor_ui class to prevent multiple launches introduced Simon Rozman 2016-08-24 17:45:10 +02:00
6f25e4c0ad wxEAPGeneralDialog constructor parameters extended Simon Rozman 2016-08-24 17:43:02 +02:00
edac93e115 Custom TLS identity is correctly enabled/disabled now. Simon Rozman 2016-08-24 15:30:27 +02:00
d1c24efcf0 config_method_with_cred renamed to config_connection to describe it better Simon Rozman 2016-08-24 11:38:58 +02:00
1cb6ca5adb Connection configuration is equipped with GUID now for multiple credential prompt disambiguation later Simon Rozman 2016-08-24 11:34:30 +02:00
38e1443276 Logging of handshake progress introduced Simon Rozman 2016-08-24 11:04:04 +02:00
6835f5279c Certificate (TLS) credentials support custom identity now Simon Rozman 2016-08-24 09:14:02 +02:00
eb9c8a5f7c If configured trusted root CA certificate list is empty, that really means "Trust no one!" now Simon Rozman 2016-08-23 23:40:07 +02:00
5332b538aa Our own TLS merged back to master and compiles conditionally Simon Rozman 2016-08-23 22:46:00 +02:00
a9baa07227 Error type detection fixed Simon Rozman 2016-08-23 22:41:12 +02:00
387a12ab5e Additional cases of invalid certificate caught Simon Rozman 2016-08-23 17:41:20 +02:00
7b3251a758 Error throwing clean-up Simon Rozman 2016-08-23 17:20:04 +02:00
894f19a81e Binary publishing updated Simon Rozman 2016-08-23 15:18:23 +02:00
318ad7f355 Version set to 1.0-alpha10 1.0-alpha10 Simon Rozman 2016-08-23 14:53:27 +02:00
e4c3f5cbd8 Version set to 1.0-alpha10-owntls 1.0-alpha10-owntls Simon Rozman 2016-08-23 14:52:26 +02:00
1df98af5a1 Event descriptors updated Simon Rozman 2016-08-23 14:48:47 +02:00
3cbd749966 Sub-module update Simon Rozman 2016-08-23 14:46:06 +02:00
2125679385 Server certificate name check extended to search for the name in the subjectAltName(2) extension first; only when none present, compares against Common Name Simon Rozman 2016-08-23 14:43:07 +02:00
fb5d969c2b Support for the wild-char certificate names dropped Simon Rozman 2016-08-23 14:42:43 +02:00
f39cb94ee5 Server names can be Unicode now Simon Rozman 2016-08-23 14:42:11 +02:00
59768e8097 Cipher suite list size is now in number of elements, not bytes Simon Rozman 2016-08-23 14:41:25 +02:00
ef2042253c When server certificate has no subjectAltName(2), compare host name against Common Name Simon Rozman 2016-08-23 14:29:47 +02:00
9b997408a1 Switched to Schannel to do the TLS Simon Rozman 2016-08-23 13:53:23 +02:00
5720524abe Version set to 1.0-alpha9 1.0-alpha9 Simon Rozman 2016-08-18 06:33:02 +02:00
1f1b9b1084 GUI boots with a predefined configuration on new profiles now (closes #10) Simon Rozman 2016-08-18 06:31:16 +02:00
076c6b77d7 GUI updated to show "<Your Provider>" when provider ID is blank Simon Rozman 2016-08-18 06:30:02 +02:00
92460c571f Initial focus changed to the first non-mouse-wheel-capturing control to allow initial scrolling of the configuration dialog using mouse wheel Simon Rozman 2016-08-17 16:42:19 +02:00
b79a2f26f6 Support for read-only lock added to GUI Simon Rozman 2016-08-17 16:27:43 +02:00
373c83dbbe Provider identity and help-desk is configurable via GUI now Simon Rozman 2016-08-17 15:56:11 +02:00
543dada025 Provider and method lists are arrays now, to allow random access for configuration dialog coming-up Simon Rozman 2016-08-17 14:47:15 +02:00
ce22ec3bfa wxEAPCredentialsPanelPassBase >> wxEAPCredentialsPassPanelBase Simon Rozman 2016-08-17 13:48:14 +02:00
a04647b7b5 Version set to 1.0-alpha8 1.0-alpha8 Simon Rozman 2016-08-17 11:51:36 +02:00
df1d431bd0 - TLS revised (again) - TLS Session resumption issues resolved - Credential prompt has "Remember" checkbox initially selected when credentials originate from Windows Credential Manager - Last authentication attempt failure notice is more general and no longer insinuate user credentials are the likely cause of the failure - Additional log messages added Simon Rozman 2016-08-17 11:50:34 +02:00
16527c8124 Client explicitly refuses to accept change cipher spec if no or NULL cipher was proposed now Simon Rozman 2016-08-17 09:32:43 +02:00
69e6b775f8 Hello requests are no longer included in the handshake hashing (as per RFC) Simon Rozman 2016-08-17 09:29:55 +02:00
c69316071f Support for encrypted change cipher spec messages added Simon Rozman 2016-08-17 09:26:46 +02:00
a02d1e7094 Explicit checks on server certificate chain added: - Certificate can not be self-signed: Cannot check trust against configured root CAs when server certificate is self-signed - Server can provide full certificate chain up-to and including root CA. Importing root CA to the store for certificate chain validation would implicitly trust this certificate chain. Thus, we skip all self-signed certificates on import. Simon Rozman 2016-08-17 09:22:38 +02:00
078636eb14 make_change_chiper_spec() removed as this message can simply be created using make_message() Simon Rozman 2016-08-17 09:09:42 +02:00
cabae26e0b Flags describing handshake messages received assembled in a boolean table of flags Simon Rozman 2016-08-17 09:01:11 +02:00
7376693838 Additional constants Simon Rozman 2016-08-17 08:34:25 +02:00
a5b3914a09 Comments and some minor clean-up Simon Rozman 2016-08-16 22:27:30 +02:00
8beb7bd27a Version set to 1.0-alpha7 1.0-alpha7 Simon Rozman 2016-08-16 16:59:03 +02:00
00dd1277c5 Switched to the new key import method, as the old one had issues with PROV_RSA_AES crystallographic provider Simon Rozman 2016-08-16 16:55:18 +02:00
e9839706b6 TLS clean-up Simon Rozman 2016-08-16 16:44:19 +02:00
f5b03bc0bf Annotation update Simon Rozman 2016-08-16 10:39:42 +02:00
c953fb8db4 Version set to 1.0-alpha6 1.0-alpha6 Simon Rozman 2016-08-16 01:00:41 +02:00
db27355e46 Some last compiler warnings resolved Simon Rozman 2016-08-16 00:58:22 +02:00
85d7c3d4ec Support for TLS 1.2 added Simon Rozman 2016-08-16 00:47:47 +02:00
d68fd6ce08 Support for TLS 1.1 finished Simon Rozman 2016-08-15 22:49:45 +02:00
82e910fea4 Late pad-checking added to prevent [Canvel, B] attack Simon Rozman 2016-08-15 22:48:08 +02:00
7fa3289e3d Incorrect parameter reference fixed Simon Rozman 2016-08-15 22:45:54 +02:00
de802b7a28 Byte-enums redefined & code clean-up Simon Rozman 2016-08-15 21:01:38 +02:00
67fe27f6fd Support for stream ciphers added Simon Rozman 2016-08-15 19:04:56 +02:00
c8cfe4da42 TLS version no longer static, thou still fixed to TLS 1.0 Simon Rozman 2016-08-15 19:04:21 +02:00
3267b7f53d Missing credential storage added Simon Rozman 2016-08-15 18:36:01 +02:00
7b3ecda484 Clean-up Simon Rozman 2016-08-15 18:35:15 +02:00
d8ccf7cbc0 Credential management revised Simon Rozman 2016-08-15 17:33:10 +02:00
4dc7083028 wxEAPProviderLockedPanelBase renamed to wxEAPGeneralNotePanel to accommodate general use later Simon Rozman 2016-08-15 16:53:42 +02:00
e34d2ba275 Prefast declaration update Simon Rozman 2016-08-15 15:10:42 +02:00