strongswan-4.5.3dr8
-------------------

- Our private libraries (e.g. libstrongswan) are not installed directly in
  prefix/lib anymore.  Instead a subdirectory is used (prefix/lib/ipsec/ by
  default).  The plugins directory is also moved from libexec/ipsec/ to that
  directory.

- The dynamic IMC/IMV libraries were moved from the plugins directory to
  a new imcvs directory in the prefix/lib/ipsec/ subdirectory.

- configuration of type=pass and type=drop shunt policies now
  also supported via PFKEYv2 kernel interface.


strongswan-4.5.3dr7
-------------------

- created an IMC/IMV Scanner pair which scans listening server ports
  on TNC clients using netstat and reports them to a TNC server.

 
strongswan-4.5.3dr6
-------------------

- IKEv2 charon daemon supports start type=pass and type=drop shunt
  policies preventing specific traffic to go through IPsec connections.


strongswan-4.5.3dr5
-------------------

- implemented server-side handshake retry and output of
  known PA subtypes.


strongswan-4.5.3dr4
-------------------

- implemented the sending of reason strings and client-side handshake
  retry for the IMC/IMV Test pair.


strongswan-4.5.3dr3
-------------------

- introduced closeaction keyword in ipsec.conf to define
  action upon closing a connection.

- fixed compilation errors due to missing path to libtncif
  header files.
  
- implemented error handling in the RFC 5792 PA-TNC protocol.


strongswan-4.5.3dr2
-------------------

- IMC/IMV test pair depends on libstrongswan only and can be loaded
  by any third party TNC client or TNC server, respectively.

- Fixed mapping of IP range traffic selectors to subnets.


strongswan-4.5.3dr1
-------------------

- IMC/IMV test pair implementing the RFC 5792 PA-TNC (IF-M) protocol.
  (--enable-imc-test/--enable-imv-test).