sofia-sip/tport.h:
* tport_delivered_from_subjects() returns type (su_strlst_t const *)
* Export tport_subject_search()

sofia-sip/tport_tag.h + tport_tag.c:
* Remove TPTAG_TLS_VERIFY_PEER()
  - Depreciated.  Use TPTAG_TLS_VERIFY_POLICY instead.
  - Binary Compatibility is preserved.
* Add TPTAG_TLS_VERIFY_POLICY()
  - tport can verify incoming and/or outgoing connections, using:
    1) Certificate Signatures only - or -
    2) Certificate Signatures and Certificate Subjects
* Add TPTAG_TLS_VERIFY_DEPTH()
  - Restrict certificate chain verification to a set length.
* Add TPTAG_TLS_VERIFY_DATE()
  - Disable notBefore/notAfter checking (application: embedded devices)
* Add TPTAG_TLS_VERIFY_SUBJECTS()
  - Incoming connections must present client certificates with subjects
    that match an item in this list.
  - Intended Use: Proxy Authentication
* Replaced TPTAG_TRUSTED() with TPTAG_X509_SUBJECT()
  - Commented out for future use.
  - Intended Use: SIP User Identities in Server Certificates.
* Add appropriate doxygen documentation.

tport.c
* Add tport_subject_search()
  - Subject can be a hostname, IP Address, or a URI.
  - Valid subject examples include:
      example.com
      alice@example.com
      sip:alice@example.com
      sips:alice@example.com
* tport_by_addrinfo() matches tpn_canon against the subject list
    of reusable TLS connections.

tport_tls.h:
* Add tls_init_secondary()
* Remove tls_init_slave() & tls_init_client()

tport_tls.c:
* tls_verify_cb() supports TPTAG_TLS_VERIFY_DATE()
* tls_post_connection_check() verifies certificate subjects.
* tls_init_secondary()
  - Replaces tls_init_slave(), tls_init_client(), and tls_clone().

tport_type_tls.c:
* Removed erroneous reference to tport_tls_deliver()
* Fix a memory leak caused by duplicate calls to tls_clone().
* Populate the (tport_t *)->tp_subjects field with peer certificate data for
  new secondary connections.

darcs-hash:20090115155045-2152f-aaec406d8e5dbf146949d4d3cbc9f56e201cba46.gz

tport_type_tls.c:
* tport_tls_accept():
  - Replaces tport_accept for incoming TLS connections.
* tport_tls_connect():
  - Replaces tport_base_connect() for outgoing TLS connections.

tport_tls.c:
* tls_t now use a memory home instead of malloc.
* removed tls_check_hosts()
* tls_connect():
  - Replaces tport_base_connect for TLS connection setup.
  - Completes TLS handshake and verifies peer certificates.
  - Destroys suspect TLS connections before sending/receiving payload.
  - Populates a su_strlst_t with subjects from the peer certificate.

tport.c:
* tport_is_verified()
  - true if peer certificate validated successfully
* tport_delivered_from_subjects()
  - Certificate subjects listed in the peer certificate.

darcs-hash:20081216221937-2152f-3d6b74d411b57c22230e4840fca133da48c86368.gz

- Expose tport_setname() and tport_wakeup() via tport_internal.h
- Add tport_register_secondary() for adding secondaries to a root, and
  to alleviate the need to export tprb_append.

darcs-hash:20081216175826-2152f-1a5680d4ca61ba2405b497cfc12bde3a776bfd64.gz

darcs-hash:20081127130800-db55f-7141caa14fdaf5a8da2a5e4d13d3334628355774.gz

darcs-hash:20080307164706-65a35-034b8624e76d011172beb02c452c4e915401d81c.gz

darcs-hash:20080227213431-16063-b9be07d945c93dd41e64ad929de2060c1143bb37.gz

darcs-hash:20080111171933-65a35-1a27eac56ebaf28d14e96c9c962df3c2e2456e3b.gz

darcs-hash:20071129171740-88462-33724a96db36afb7ac6d070bafe3f27ff88d1c53.gz

darcs-hash:20070920173622-65a35-344f484ee50de63c28e6e9b82658784672064641.gz

Now detecting closed connections on TLS, too.

Added tests for idle timeout, receive timeout, ping-pong timeout.

darcs-hash:20070725160906-65a35-0d568677e950abbc55b7ab10ae9a1fc8000155e6.gz

darcs-hash:20070725160533-65a35-c1217c49eab31628bb688cb1ed74e315a2dd8a9e.gz

darcs-hash:20070628122222-1b897-6c46d2c3a967791e436abd2b1adee945f7361616.gz

darcs-hash:20070430115348-1b897-3123dcc6c9b727e6b05f75c0fd45220b3c7291f1.gz

darcs-hash:20070430115348-1b897-1b7a71015a5d915ee5b815ed395f4614196fc2c1.gz

darcs-hash:20070423131444-1b897-6275c45cd5d9b5275c93219c8a38f11557bc5851.gz

darcs-hash:20070206213418-65a35-22b4149175415558e950184ae72475bb487d3ad3.gz

darcs-hash:20061207003355-8fcfa-e9a956858ce8162313812664271dbcb133c59214.gz

darcs-hash:20061205172738-65a35-6f652d5e4cd9fb2b20d67956866f2508ecccaa1c.gz

If tport_is_connected() return true if connection-oriented transport has an
established connection.

darcs-hash:20061205163213-65a35-5b6eae0241438515046e4fdd2cc510e8e2480621.gz

The session-expires header had "uac" even when uac did not support timer.
The UAS failed to send re-INVITEs.

Thanks for Chung Pak Lai for reporting this problem.

darcs-hash:20061116152534-65a35-84ba5e3a90dd6db4face90925f173b2141999971.gz

darcs-hash:20060926193056-65a35-cf8f5793ec0faba314657ee41bacd15c4a31e8ec.gz

tl_gets(), tl_tgets(): reverted back using int as return type. Ditto for soa_get_params()/soa_set_params().

darcs-hash:20060926092619-65a35-765f07b0b4d0020d328685caec866c2b018ba996.gz

darcs-hash:20060925192135-65a35-7620f560dd3957017f11bc5c8fa01098def8fcca.gz

darcs-hash:20060920152906-65a35-0b099206786428ea2d7876c7895b40245e9149b3.gz

darcs-hash:20060919212846-16063-2e6c7c40d1edf44fa28915fd0105838e7d31e7bf.gz

su, sip, msg, http, url, sdp, soa, etc..

darcs-hash:20060919133329-65a35-62b9f9819398d39e889315e8bd1b24ba0b8a9b23.gz

darcs-hash:20060911125444-65a35-774501fccad12bb431bbc9e4e1ef2b4c1b9a1d4b.gz

Using internally size_t.

darcs-hash:20060906195027-65a35-8ce244cb4b2cd32f0649d48fbebeadfea78eb6ad.gz

Maximum length of logged line is now 2048 (including final \n).

tport_internal.h, tport.c, tport_threadpool.c: updated
tport_log_msg()prototype.

test_tport.c: using test protocol version on request line.

darcs-hash:20060823104436-65a35-390e8c6bab982c85eb95c680f09c34cd960b8365.gz

darcs-hash:20060517130101-65a35-cf0e5af13bf73fa8b488dda4ea79ae2d23029197.gz

Trying to solve ai_addrlen problem.

darcs-hash:20060512144731-65a35-ab57c9da2634bc6ff45ef9c87d7ceea0fe6b28fc.gz

We avoid peeking and fussing around with message size.
Simply allocate 64K buffer, receive(), then reduce the buffer size.

darcs-hash:20060426173237-65a35-4b3090659246d7e48a2d182deafa6cba457a34cd.gz

Now using already received data within a msg_t.

darcs-hash:20060426173005-65a35-9c94c74a101f7c2c95d490cd50e65713cef914aa.gz

Changed tport_primary_t in tport_internal.h, updated tport_type_stun.c.

darcs-hash:20060426172449-65a35-dd7c1a246d1708996c081666a684c1579f9b77f0.gz

darcs-hash:20060426171851-65a35-4b51c44caf31117062f744d3aac220cea7f251ea.gz

Calling tport_alloc_seconary() when client socket has been created, making
it possible to set socket options before connecting the socket. Currently,
this benefits SCTP and TLS.

This change affects tport_internal.h, tport.c, tport_type_sctp.c,
tport_type_tcp.c, and tport_type_tls.c.

darcs-hash:20060426165300-65a35-6d262b339a4362e16a2b20777e1d580efff33194.gz

darcs-hash:20060425092811-65a35-a63787c7c8e096e115d027a7041555cea9271dc9.gz

darcs-hash:20060418053826-65a35-dc1fe031a2f10d1318f87c18558989547afdc112.gz

Added tport_compressor_t type, tport_delivered_with_comp().
Removed tpac_sigcomp_accept() and tport_delivered_using_udvm().

darcs-hash:20060417233320-65a35-8a2571e39146a82f57e58d5e97c126392840c873.gz

Added TPORT_STUN_SERVER().
Having stun server dependencies in <tport_stub_stun.c>.
Moved sigcomp dependencies into <tport_stub_sigcomp.c>.

darcs-hash:20060331154135-88462-90caca9b5511bfdae6efa5d609deee9d03841607.gz