Alexandre Lision | 8af73cb | 2013-12-10 14:11:20 -0500 | [diff] [blame] | 1 | Changelog |
| 2 | |
| 3 | 1.3.20 |
| 4 | |
| 5 | Lots of changes. Thanks to Jeff Chan for catching a memory leak and |
| 6 | helping track down the endian issues with the SSRCs. |
| 7 | |
| 8 | 1.3.8 |
| 9 | |
| 10 | This is an interim release. Several little-endian bugs were identified |
| 11 | and fixed; this means that we can use intel/linux for development again. |
| 12 | |
| 13 | Cleaned up sha1 and hmac code significantly, got rid of some excess |
| 14 | functions and properly documented the fuctions in the .h files. |
| 15 | |
| 16 | Eliminated some vestigial files. |
| 17 | |
| 18 | There is a SIGBUS error in the AES encrypt function on sparc |
| 19 | (observed on both solaris and openbsd) with gcc 2.95. Was unable to |
| 20 | find bad pointer anywhere, so I'm wondering if it isn't a compiler |
| 21 | problem (there's a known problem whose profile it fits). It doesn't |
| 22 | appear on any other platform, even in the cipher_driver stress |
| 23 | tests. |
| 24 | |
| 25 | Planned changes |
| 26 | |
| 27 | Change interface to nonces (xtd_seq_num_t) so that it uses |
| 28 | network byte ordering, and is consistent with other arguments. |
| 29 | |
| 30 | |
| 31 | 1.3.6 |
| 32 | |
| 33 | Changed /dev/random (in configure.in and crypto/rng/rand_source.c) to |
| 34 | /dev/urandom; the latter is non-blocking on all known platforms (which |
| 35 | corrects some programs that seem to hang) and is actually present on |
| 36 | Open BSD (unlike /dev/random, which only works in the presence of |
| 37 | hardware supported random number generation). |
| 38 | |
| 39 | Added machine/types.h case in include/integers.h. |
| 40 | |
| 41 | 1.3.5 |
| 42 | |
| 43 | Removing srtp_t::template and stream_clone(). |
| 44 | |
| 45 | Adding a new policy structure, which will reflect a complete SRTP |
| 46 | policy (including SRTCP). |
| 47 | |
| 48 | This version is *incomplete* and will undergo more changes. It is |
| 49 | provided only as a basis for discussion. |
| 50 | |
| 51 | 1.3.4 |
| 52 | |
| 53 | Removed tmmh.c and tmmh.h, which implemented version one of TMMH. |
| 54 | |
| 55 | Changed srtp_get_trailer_length() to act on streams rather than |
| 56 | sessions, and documented the macro SRTP_MAX_TRAILER_LEN, which should |
| 57 | usually be used rather than that function. |
| 58 | |
| 59 | Removed 'salt' from cipher input. |
| 60 | |
| 61 | Changed rdbx to use err.h error codes. |
| 62 | |
| 63 | Changed malloc() and free() to xalloc() and xfree; these functions |
| 64 | are defined in crypto/kernel/alloc.c and declared in |
| 65 | include/alloc.h. |
| 66 | |
| 67 | Added 'output' functions to cipher, in addition to 'encrypt' |
| 68 | functions. It is no longer necessary to zeroize a buffer before |
| 69 | encrypting in order to get keystream. |
| 70 | |
| 71 | Changed octet_string_hex_string() so that "times two" isn't needed |
| 72 | in its input. |
| 73 | |
| 74 | Added crypto_kernel_init() prior to command-line parsing, so that |
| 75 | kernel can be passed command-line arguments, such as "-d |
| 76 | debug_module". This was done to for the applications |
| 77 | test/srtp-driver, test/kernel-driver, and test/ust-driver. |
| 78 | |
| 79 | Improved srtp_init_aes_128_prf - wrote key derivation function |
| 80 | (srtp_kdf_t). |
| 81 | |
| 82 | Add the tag_len as an argument to the auth_compute() function, but |
| 83 | not the corresponding macro. This change allows the tag length for |
| 84 | a given auth func to be set to different values at initialization |
| 85 | time. Previously, the structure auth_t contained the |
| 86 | output_length, but that value was inaccessible from hmac_compute() |
| 87 | and other functions. |
| 88 | |
| 89 | Re-named files from a-b.c to a_b.c. in order to help portability. |
| 90 | |
| 91 | Re-named rijndael to aes (or aes_128 as appropriate). |
| 92 | |
| 93 | |
| 94 | 1.2.1 |
| 95 | |
| 96 | Changes so that 1.2.0 compiles on cygwin-win2k. |
| 97 | |
| 98 | Added better error reporting system. If syslog is present on the |
| 99 | OS, then it is used. |
| 100 | |
| 101 | |
| 102 | 1.2.0 Many improvements and additions, and a fex fixes |
| 103 | |
| 104 | Fixed endian issues in RTP header construction in the function |
| 105 | rtp_sendto() in srtp/rtp.c. |
| 106 | |
| 107 | Implemented RIJNDAEL decryption operation, adding the functions |
| 108 | rijndael_decrypt() and rijndael_expand_decryption_key(). Also |
| 109 | re-named rijndael_expand_key() to rijndael_expand_encryption_key() |
| 110 | for consistency. |
| 111 | |
| 112 | Implemented random number source using /dev/random, in the files |
| 113 | crypto/rng/rand_source.c and include/rand_source.h. |
| 114 | |
| 115 | Added index check to SEAL cipher (only values less than 2^32 are |
| 116 | allowed) |
| 117 | |
| 118 | Added test case for null_auth authentication function. |
| 119 | |
| 120 | Added a timing test which tests the effect of CPU cache thrash on |
| 121 | cipher throughput. The test is done by the function |
| 122 | cipher_test_throughput_array(); the function |
| 123 | cipher_array_alloc_init() creates an array of ciphers for use in |
| 124 | this test. This test can be accessed by using the -a flag to |
| 125 | the application cipher-driver in the test subdirectory. |
| 126 | |
| 127 | Added argument processing to ust-driver.c, and added that app to |
| 128 | the 'runtest' target in Makefile.in. |
| 129 | |
| 130 | A minor auth_t API change: last argument of auth_init() eliminated. |
| 131 | |
| 132 | |
| 133 | 1.0.6 A small but important fix |
| 134 | |
| 135 | Fixed srtp_init_aes_128_prf() by adding octet_string_set_to_zero() |
| 136 | after buffer allocation. |
| 137 | |
| 138 | Eliminated references to no-longer-existing variables in debugging |
| 139 | code in srtp/srtp.c. This fixes the compilation failure that |
| 140 | occured when using PRINT_DEBUG in that file. |
| 141 | |
| 142 | Corrected spelling of Richard Priestley's name in credits. Sorry |
| 143 | Richard! |
| 144 | |
| 145 | |
| 146 | 1.0.5 Many little fixes |
| 147 | |
| 148 | Fixed octet_string_set_to_zero(), which was writing one |
| 149 | more zero octet than it should. This bug caused srtp_protect() |
| 150 | and srtp_unprotect() to overwrite the byte that followed the |
| 151 | srtp packet. |
| 152 | |
| 153 | Changed sizeof(uint32_t) to srtp_get_trailer_length() in |
| 154 | srtp-driver.c. This is just defensive coding. |
| 155 | |
| 156 | Added NULL check to malloc in srtp_alloc(). |
| 157 | |
| 158 | |
| 159 | 1.0.4 Many minor fixes and two big ones (thanks for the bug reports!) |
| 160 | |
| 161 | Removed 'ssrc' from the srtp_init_aes_128_prf() function argument |
| 162 | list. This is so that applications which do not a priori know the |
| 163 | ssrc which they will be receiving can still use libsrtp. Now the |
| 164 | SSRC value is gleaned from the rtp header and exored into the |
| 165 | counter mode offset in the srtp_protect() and srtp_unprotect() |
| 166 | functions, if that cipher is used. This change cascaed through |
| 167 | many other functions, including srtp_init_from_hex(), |
| 168 | srtp_sender_init() and srtp_receiver_init() in rtp.c, and also |
| 169 | changing the CLI to test/rtpw. In the future, another function |
| 170 | call will be added to the library that enables multiple ssrc/key |
| 171 | pairs to be installed into the same srtp session, so that libsrtp |
| 172 | works with multiple srtp senders. For now, this functionality is |
| 173 | lacking. |
| 174 | |
| 175 | Removed the GDOI interface to the rtpw demo program. This will be |
| 176 | added again at a later date, after the SRTP and GDOI distributions |
| 177 | stabilize. For now, I've left in the GDOI #defines and autoconf |
| 178 | definitions so that they'll be in place when needed. |
| 179 | |
| 180 | Updated tmmhv2_compute() so that it didn't assume any particular |
| 181 | alginment of the output tag. |
| 182 | |
| 183 | Changed bit field variables in srtp.h to unsigned char from |
| 184 | unsigned int in order to avoid a potential endianness issue. |
| 185 | |
| 186 | Fixed rdbx_estimate_index() to handle all input cases. This solves |
| 187 | the now notorious "abaft" bug in the rtpw demo app on linux/intel, |
| 188 | in which spurious replay protection failures happen after that word |
| 189 | is received. |
| 190 | |
| 191 | Added ntohs(hdr->seq) to srtp_protect and srtp_unprotect, removed |
| 192 | from rijndael_icm_set_segment(). |
| 193 | |
| 194 | Added error checking and handling to srtp_sender_init() and |
| 195 | srtp_receiver_init(). |
| 196 | |
| 197 | Changed srtp_alloc() so that it does what you'd expect: allocate an |
| 198 | srtp_ctx_t structure. This hides the library internals. |
| 199 | |
| 200 | |
| 201 | 1.0.1 Many minor fixes |
| 202 | |
| 203 | Added cipher_driver_buffer_test(...) to test/cipher-driver.c. This |
| 204 | function checks that the byte-buffering functions used by a cipher |
| 205 | are correct. |
| 206 | |
| 207 | Fixed SunOS/Solaris build problems: added HAVE_SYS_INT_TYPES_H and |
| 208 | changed index_t to xtd_seq_num_t (see include/rdbx.h). |
| 209 | |
| 210 | Fixed SEAL3.0 output byte buffering, added byte-buffering test to |
| 211 | cipher/cipher-driver.c. |
| 212 | |
| 213 | Fixed roc-driver so that the non-sequential insertion test |
| 214 | automatically recovers from bad estimates. This was required to |
| 215 | prevent spurious failures. |
| 216 | |
| 217 | Made rdbx_estimate_index(...) function smarter, so that initial RTP |
| 218 | sequence numbers greater than 32,768 don't cause it to estimate the |
| 219 | rollover counter of 0xffffffff. |
| 220 | |
| 221 | |
| 222 | 1.0.0 Initial release |
| 223 | |