source: doc/ChangeLog @ 41a4690

mei_rt2mei_rt2_fix_1
Last change on this file since 41a4690 was e3c7769, checked in by Mei <mei@…>, 12 years ago

1) wrap up java interface with swig/jni/abac linkup
2) java regression tests
3) update doc related to new java implmentation

  • Property mode set to 100644
File size: 4.7 KB
Line 
1= 0.2.3 =
2
3    2012-11-YY
4        * Added java libabac regression tests in example_scripts/java
5        * Added java interface to libabac using JNI generated via SWIG
6          (Remember to take down the context with free_context_now()
7          instead of counting on the destructor, this is to avoid the
8          threading problem in libstrongswan when it got GC'ed
9          prematurely by Java, see swig/java/ProverTest.java)
10        * Added default partial proof generation upon fact query failure
11        * Added new python attribute and id example tests for the new
12          api calls
13        * Added a new Attribute api call, ABAC::Attribute::Attribute_chunk,
14          creating Attribute from a certificate chunk (Ezra)
15        * Added a new ID api call, ABAC::ID::ID_chunk, creating ID from a
16          certificate chunk (Ezra)
17
18= 0.2.2 =
19
20     2012-09-26
21
22        * Remove the self-signing verification check in abac_verifier to allow
23          none self-signing principal credential
24        * Replaced cn extraction code used in libabac with a more generalized
25          method that retrieves the last "CN=" term from the subject line
26          of a principal credential before chopping it out
27        * Added a new API call, next_proof (abac_context_query_again) that can
28          force YAP to backtrack and produce a new solution proof if exists
29        * New performance testing setup under examples directory. Added
30          plotting and graphing scripts
31        * Updated examples directory to use Makefile, added performance
32          testing setup, plotting scripts, and graphing scripts
33        * Added support for accepting encrypted private key with passphrase
34          for principal credential creation and for attribute rule creation
35        * API is expanded to allow specifying private key file and passphrase
36          file
37        * creddy attribute and generate options are expanded to accept
38          a specific private key and allowing passphrase option
39        * a new keycheck option is added to creddy to do access check on
40          a key file (encrypted and none encrypted)
41        * added encryption/passphrase examples
42        * migrate the sample scripts that used to be under swig directory to
43          examples directory and setup as part of regression test suite
44        * add examples for timing/performance runs
45        * change the proof buffer allocation to YAP_AllocSpaceFromYap and sizing
46          the buffer repeatedly and progressively if the initial size is too small
47        * tested with Yap 6.2.3 but not required
48
49= 0.2.1 =
50
51     2012-07-06
52 
53        * The API visible to programmers is much richer and should make
54          development simpler.  As part of this, the libcreddy/libabac
55          distinction has disappeared.  All libcreddy functions are now
56          available through libabac.
57        * updated to use strongswan 4.6.4.  Strongswan 4.4.0 had become very
58          outdated.
59        * Added more examples and documentation.
60        * add a new '--subject-link' option to creddy --attribute to hold the
61          linking role
62        * add --dbdump option to abac_prover_yap to retrieve all prolog clauses
63          stored in the db
64       
65       WARNING
66       - There are occasional spurious error messages originated
67         from Strongswan during access of the attribute credentials.  Those
68         messages are due to libstrongswan mishandling certain values of
69         authorizedKeyIdentifier in a non-destructive way.  While we are
70         working with the strongswan developers to remove these messages, they
71         should not affect ABAC in any way.
72       
73         Here are sample messages:
74       
75         L6 - keyIdentifier:  length of ASN.1 object invalid or too large
76         L6 - authorityCertSerialNumber:  length of ASN.1 object invalid or too large
77       
78         Do report to us if your ABAC is not behaving as
79         expected and messages like above seem to be a factor..
80       
81= 0.2.0 =
82
83     2012-02-27
84
85        * '''API-breaking change''': libcreddy ID and attribute cert creation validity
86          periods are now measured in seconds
87        * significant performance improvements on Linux, see [source:doc/INSTALL] for
88          configure flags
89        * [CredPrinterDocs credential printer]
90        * several bugs and segfaults fixed
91
92= 0.1.3 =
93
94     2011-03-30
95
96        * native Java support
97        * many, many bugfixes
98
99= 0.1.2 =
100
101     2010-10-01
102
103        * libcreddy extracted
104        * credddy rewritten to use libcreddy
105        * sample code for libcreddy in python
106
107= 0.1.1 =
108
109     2010-09-17, updated 2010-09-20
110
111        * Support for intersection rules
112        * Support for encrypted private keys
113        * Build issues on FreeBSD addressed
114
115
Note: See TracBrowser for help on using the repository browser.