Michael Jerris 38dabb3635 Thu Jan 15 09:50:45 CST 2009 Jarod Neuner <janeuner@networkharbor.com> ... * TLS Subject Checking in tport sofia-sip/tport.h: * tport_delivered_from_subjects() returns type (su_strlst_t const *) * Export tport_subject_search() sofia-sip/tport_tag.h + tport_tag.c: * Remove TPTAG_TLS_VERIFY_PEER() - Depreciated. Use TPTAG_TLS_VERIFY_POLICY instead. - Binary Compatibility is preserved. * Add TPTAG_TLS_VERIFY_POLICY() - tport can verify incoming and/or outgoing connections, using: 1) Certificate Signatures only - or - 2) Certificate Signatures and Certificate Subjects * Add TPTAG_TLS_VERIFY_DEPTH() - Restrict certificate chain verification to a set length. * Add TPTAG_TLS_VERIFY_DATE() - Disable notBefore/notAfter checking (application: embedded devices) * Add TPTAG_TLS_VERIFY_SUBJECTS() - Incoming connections must present client certificates with subjects that match an item in this list. - Intended Use: Proxy Authentication * Replaced TPTAG_TRUSTED() with TPTAG_X509_SUBJECT() - Commented out for future use. - Intended Use: SIP User Identities in Server Certificates. * Add appropriate doxygen documentation. tport.c * Add tport_subject_search() - Subject can be a hostname, IP Address, or a URI. - Valid subject examples include: example.com alice@example.com sip:alice@example.com sips:alice@example.com * tport_by_addrinfo() matches tpn_canon against the subject list of reusable TLS connections. tport_tls.h: * Add tls_init_secondary() * Remove tls_init_slave() & tls_init_client() tport_tls.c: * tls_verify_cb() supports TPTAG_TLS_VERIFY_DATE() * tls_post_connection_check() verifies certificate subjects. * tls_init_secondary() - Replaces tls_init_slave(), tls_init_client(), and tls_clone(). tport_type_tls.c: * Removed erroneous reference to tport_tls_deliver() * Fix a memory leak caused by duplicate calls to tls_clone(). * Populate the (tport_t *)->tp_subjects field with peer certificate data for new secondary connections. git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@11830 d0543943-73ff-0310-b7d9-9358b9ac24b2		2009-02-11 17:03:59 +00:00
..
apr	merge parts of libtool 2.2 fixes (FSBUILD-82)	2009-02-06 19:15:42 +00:00
apr-util	merge parts of libtool 2.2 fixes (FSBUILD-82)	2009-02-06 19:15:42 +00:00
codec/ilbc	libilbc: fix build with -Werror	2009-01-28 00:46:47 +00:00
curl	tweak for proper bootstrap after removing generated file	2008-04-12 05:57:04 +00:00
esl	Too many people asking 'how do I...' with fs_cli	2009-02-06 20:33:20 +00:00
iksemel	merge in new iksemel patches	2009-02-05 00:18:50 +00:00
js	libjs: fix build warning under gcc 4.3	2009-01-27 23:20:23 +00:00
libdingaling	update email	2009-02-04 21:18:55 +00:00
libedit	Adding more output as example. Added libedit cmake	2009-02-11 06:07:46 +00:00
libg722_1	fixing windows build 1/2	2009-02-02 16:14:45 +00:00
libresample	don't build the tests that use libsndfile and libsamplerate (FSBUILD-67)	2008-08-18 16:53:31 +00:00
libsndfile	merge parts of libtool 2.2 fixes (FSBUILD-82)	2009-02-06 19:15:42 +00:00
libteletone	clean up tone_detect	2009-02-11 00:16:36 +00:00
pcre	FSCORE-258 pcre compile warnings	2008-12-18 23:32:58 +00:00
portaudio	doh	2009-01-24 00:42:11 +00:00
sofia-sip	Thu Jan 15 09:50:45 CST 2009 Jarod Neuner <janeuner@networkharbor.com>	2009-02-11 17:03:59 +00:00
spandsp	fix gcc 4.3.2 build warnings	2009-02-05 16:21:18 +00:00
speex	remove the build stubs for the exe's and the ogg dependency as we don't use them	2008-01-25 15:17:48 +00:00
sqlite	FSCORE-292	2009-02-11 15:15:44 +00:00
srtp	FSCORE-280	2009-01-27 18:01:17 +00:00
stfu	update email	2009-02-04 21:17:44 +00:00
udns	openbsd tweak	2008-02-23 00:26:21 +00:00
voipcodecs	add 'pa rescan' to portaudio to look for new devices	2008-06-25 13:45:59 +00:00
win32	add new files to msvc build	2009-02-11 16:44:14 +00:00
xmlrpc-c	fix build warnings.	2008-12-18 22:23:31 +00:00
yaml	Yet Another Mega Labotomy	2008-06-30 18:56:29 +00:00