source: doc/ChangeLog @ 212e99f

mei_rt2mei_rt2_fix_1 libabac-0.2.2apre-partial
Last change on this file since 212e99f was b8a6fd2a, checked in by Mei <mei@…>, 12 years ago

1) add new tests for attribute creation also for Attribute_chunk,

ID_chunk

  • Property mode set to 100644
File size: 4.2 KB
RevLine 
[09496b3]1= 0.2.3 =
2
3    2012-XX-YY
[b8a6fd2a]4        * Added new python attribute and id example tests for the new
5          api calls
6        * Added a new Attribute api call, ABAC::Attribute::Attribute_chunk,
7          creating Attribute from a certificate chunk (Ezra)
8        * Added a new ID api call, ABAC::ID::ID_chunk, creating ID from a
9          certificate chunk(Ezra)
[09496b3]10
[ba6027a]11= 0.2.2 =
[7c5d673]12
[c67bfa3]13     2012-09-26
[7c5d673]14
[c67bfa3]15        * Remove the self-signing verification check in abac_verifier to allow
16          none self-signing principal credential
17        * Replaced cn extraction code used in libabac with a more generalized
[6244e28]18          method that retrieves the last "CN=" term from the subject line
19          of a principal credential before chopping it out
[abf8d5d]20        * Added a new API call, next_proof (abac_context_query_again) that can
21          force YAP to backtrack and produce a new solution proof if exists
22        * New performance testing setup under examples directory. Added
23          plotting and graphing scripts
24        * Updated examples directory to use Makefile, added performance
25          testing setup, plotting scripts, and graphing scripts
[7c5d673]26        * Added support for accepting encrypted private key with passphrase
27          for principal credential creation and for attribute rule creation
28        * API is expanded to allow specifying private key file and passphrase
29          file
30        * creddy attribute and generate options are expanded to accept
31          a specific private key and allowing passphrase option
32        * a new keycheck option is added to creddy to do access check on
33          a key file (encrypted and none encrypted)
[abf8d5d]34        * added encryption/passphrase examples
[7c5d673]35        * migrate the sample scripts that used to be under swig directory to
36          examples directory and setup as part of regression test suite
37        * add examples for timing/performance runs
38        * change the proof buffer allocation to YAP_AllocSpaceFromYap and sizing
39          the buffer repeatedly and progressively if the initial size is too small
40        * tested with Yap 6.2.3 but not required
[ba6027a]41
[888df49]42= 0.2.1 =
[2efdff5]43
[7c5d673]44     2012-07-06
45 
46        * The API visible to programmers is much richer and should make
47          development simpler.  As part of this, the libcreddy/libabac
48          distinction has disappeared.  All libcreddy functions are now
49          available through libabac.
50        * updated to use strongswan 4.6.4.  Strongswan 4.4.0 had become very
51          outdated.
52        * Added more examples and documentation.
53        * add a new '--subject-link' option to creddy --attribute to hold the
54          linking role
55        * add --dbdump option to abac_prover_yap to retrieve all prolog clauses
56          stored in the db
57       
58       WARNING
59       - There are occasional spurious error messages originated
60         from Strongswan during access of the attribute credentials.  Those
61         messages are due to libstrongswan mishandling certain values of
62         authorizedKeyIdentifier in a non-destructive way.  While we are
63         working with the strongswan developers to remove these messages, they
64         should not affect ABAC in any way.
65       
66         Here are sample messages:
67       
68         L6 - keyIdentifier:  length of ASN.1 object invalid or too large
69         L6 - authorityCertSerialNumber:  length of ASN.1 object invalid or too large
70       
71         Do report to us if your ABAC is not behaving as
72         expected and messages like above seem to be a factor..
73       
[888df49]74= 0.2.0 =
[7c5d673]75
76     2012-02-27
77
78        * '''API-breaking change''': libcreddy ID and attribute cert creation validity
79          periods are now measured in seconds
80        * significant performance improvements on Linux, see [source:doc/INSTALL] for
81          configure flags
82        * [CredPrinterDocs credential printer]
83        * several bugs and segfaults fixed
[888df49]84
85= 0.1.3 =
[7c5d673]86
87     2011-03-30
88
89        * native Java support
90        * many, many bugfixes
[888df49]91
92= 0.1.2 =
[7c5d673]93
94     2010-10-01
95
96        * libcreddy extracted
97        * credddy rewritten to use libcreddy
98        * sample code for libcreddy in python
[888df49]99
100= 0.1.1 =
[7c5d673]101
102     2010-09-17, updated 2010-09-20
103
104        * Support for intersection rules
105        * Support for encrypted private keys
106        * Build issues on FreeBSD addressed
[888df49]107
[549656e]108
Note: See TracBrowser for help on using the repository browser.