[Freeswitch-svn] [commit] r11770 - freeswitch/trunk/libs/sofia-sip
FreeSWITCH SVN
mikej at freeswitch.org
Wed Feb 11 08:11:56 PST 2009
Author: mikej
Date: Wed Feb 11 10:11:56 2009
New Revision: 11770
Log:
Mon Jan 5 04:22:01 CST 2009 Pekka Pessi <first.last at nokia.com>
* RELEASE: added Jarod's description of TLS improvements
Modified:
freeswitch/trunk/libs/sofia-sip/RELEASE
Modified: freeswitch/trunk/libs/sofia-sip/RELEASE
==============================================================================
--- freeswitch/trunk/libs/sofia-sip/RELEASE (original)
+++ freeswitch/trunk/libs/sofia-sip/RELEASE Wed Feb 11 10:11:56 2009
@@ -48,6 +48,8 @@
Contributors to this release
----------------------------
+Jarod Neuner <j dot neuner at networkharbor dot com>
+Michael Jerris <mike at jerris dot com>
<list of people who contributed to _this_ release
- update as people's patches are added, or when you commit stuff
- current development team members (see AUTHORS) may be omitted,
@@ -65,11 +67,18 @@
Notes on new features
---------------------
-<information about major new features
- - new/changed/removed functionality
- - links to further documentation
- - section may be omitted for minor releases
-/>
+Jarod Neuner has improved certificate validation facilities of TLS
+transport. Significant changes include:
+
+1) The TLS handshake is no longer handled via transparent negotiation.
+Certain static methods from tport.c were exposed to make this possible.
+
+2) Certificate subjects are copied out of the peer certificate before
+the first message is sent. The next patch will include code that allows
+the stack to reject messages sent to a untrusted peer.
+
+3) The tport module can now report whether a secondary has a verified
+certificate chain and the subjects of the peer certificate.
Bugs fixed in this release
--------------------------
More information about the Freeswitch-svn
mailing list