2006-04-07 12:10:03 -04:00
Changelog
2021-08-28 07:19:05 -04:00
2.4.0
Major changes
#529 - Remove EKT files, this was never completed and the draft has since changed.
#512 - Adds suport for Mbedtls as a crypto backend.
#503 - Support apple silicon build.
#495 - Adds support for the Meson build system. This is an alternative to Cmake and auto tools.
Other changes
#546 - Improve OpenSSL KDF check.
#542 - Add void to function declarations for EVP_EncryptInit check.
#531 - Remove dead code.
#524 - Support running against nss >= 3.52.
#521 - Remove references to dtls from libsrtp.
#520 - Use nss based hmac when nss enabled.
#519 - Move selftest vectors form backends to common files.
#515 - Extend cmake support.
#514 - Fix gcc11 warning by defining output length.
#502 - Remove visual studio build files.
#501 - cmake: Set the VERSION property of the srtp2 library.
#500 - Fixed issue #499 with buffer overflow.
#498 - Feature/additional error checks.
#496 - Rework check for OPENSSL_cleanse().
#492 - Avoid non-existing compiler flag -O4.
#491 - Fix two-byte RTP header extension encryption.
#478 - Modify cmake to install crypto_types.h instead of cipher_types.h
2.3.0
Major changes
A fuzzer was added to the project based on libFuzzer. This is run as part of Google oss-fuzz, the current status can be found at https://oss-fuzz-build-logs.storage.googleapis.com/index.html#libsrtp . Details available in PR #442 and issue #393.
CMake support was added as an alternative build system. This was primarily added to replace the Visual Studio project files currently checked in but has been extend to support building on all platforms. Initial PR #449 and #455 but has been support has been continuously improved.
NSS support for crypto backend was added. This is can be used as an alternative to openssl. Initial PR #413 but there has been numerous improvements.
Other changes
PR #474 - Add flag to disable pcap dependency when build test apps.
PR #472 - Add ci builds for ios and android.
PR #463 - problem on srtp_aes_icm_openssl_encrypt.
PR #471 - Allow the pcap file to be read from a physical file.
PR #457 - Fix docs crypto_policy_* -> srtp_crypto_policy_* .
PR #452 - crypto/cipher: Reset the EVP_CIPHER_CTX structure before each test.
PR #444 - Extend rtp_ecoder to support RTCP and multiplexed SSRC's.
PR #443 - rtp_decoder avoid crash when no packets found.
PR #429 - Rand for test only.
PR #421 - Fix GCM IV logging.
PR #415 - Fixes unaligned trailer access.
PR #414 - Detect and handle broken "OPENSSL_cleanse".
2.2.0
2019-04-26 07:31:40 -04:00
Major changes
All code has been reformatted to be consistent. A .clang-format file and format.sh script has been added that can be use to verify and enforce consistent formatting. An automated check on code formatting is now part of travis build.
Other changes
PR #409 - Compatibilty with LibreSSL
PR #406 - Fix unprotect when pktlen < (2*mki_size + tag_len)
PR #405 - Prevent potential double free
PR #404 - Add back extern to global variables
PR #403 - Set gcm IV directly with EVP_CipherInit_ex
PR #401 - Fix memory access issue in srtp_get_session_keys()
PR #398 - Fix memory access fixes when invalid profiles where used
PR #391 - Return NULL when allocating memory of size zero
PR #390 - Bitvector of length zero is not valid
PR #385 - Treat warnings as errors on travis builds
PR #388 - Moved externs from crypto_kernel into its own header
PR #379 - Fixed several compiler warnings from Firefox builds
PR #377 - Removed variable init code in rdbx which never gets used
PR #381 - Added error in case the platform is not detected
PR #376 - Add coverity scan to travis builds
PR #374 - Add a big endian build on travis
PR #373 - Fixed buffer size issue in test/srtp_driver.c
PR #372 - Make rtp_decoder compile on MinGW
PR #367 - Rename configure.in to configure.ac
PR #365 - Replace calls to free() with srtp_crypto_free()
PR #364 - Add valgrind to travis and fix leaks in tests
PR #363 - Change smtp_crypto_alloc to initialize memory to zero
PR #354 - Fix potential leak if cloning of stream fails
PR #340 - Fix potential leak in srtp_add_stream()
PR #323 - Fix running test in out of source builds
Issue #316 - Remove VERSION file
2017-06-26 13:11:02 -04:00
2.1.0
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
Compatibility changes
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #253 - Cipher type cleanup for AES
When libSRTP is compiled with OpenSSL and the AES 256 ICM cipher is used
with RTCP an incorrect initialization vector is formed.
This change will break backwards compatibility with older versions (1.5,
2.0) of libSRTP when using the AES 256 ICM cipher with OpenSSL for RTCP.
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #259 - Sequence number incorrectly masked for AES GCM IV
The initialization vector for AES GCM encryption was incorrectly formed on
little endian machines.
This change will break backwards compatibility with older versions (1.5,
2.0) of libSRTP when using the AES GCM cipher for RTCP.
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #287 - Fix OOB read in key generation for encrypted headers with GCM ciphers
Adds padding of GCM salt to the corresponding ICM length used for header
encryption.
This change will break backwards compatibility with version 2.0 of libSRTP
when using the header encryption extension with the AES GCM cipher.
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
Major changes
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #204 - OpenSSL performance improvements
Changed key expansion to occur once per key instead of once per packet.
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #209 - Restore AES-192 under BoringSSL
BoringSSL supports AES-192 and is now enabled in libSRTP.
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #224 - Master Key Identifiers (MKI) Support patch
Adds MKI support with up to 4 keys.
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #234 - Report SSRC instead of srtp_stream_t in srtp_event_data_t
srtp_stream_t is an opaque type making the event framework almost useless.
Now the SSRC is returned instead for use as a key in the public API.
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #238 - Configure changes and improvements
CFLAGS check more shell neutral, quotation fixes, always generate and
install pkg-config file, improved OpenSSL discovery and linking, remove
-fPIC flag on Windows, fix shared library generation under Cygwin, replace
hardcoded CFLAGS with compiler checks, and regenerate configure after
configure.in changes.
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #241 & PR #261 - Improved logging API to receive log messages from libSRTP
Provides a logging API and the ability to enable logging to stdout and a
file, as well as a switch to enable all internal debug modules.
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #289 - Added support for set and get the roll-over-counter
Adds an API to set and get the ROC in an (S)RTP session.
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #304 - Fix (S)RTP and (S)RTCP for big endian machines
The structures srtp_hdr_t, srtcp_hdr_t and srtcp_trailer_t were defined
incorrectly on big endian systems.
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
Other changes
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #149 - Don't create a symlink if there is no $(SHAREDLIBVERSION)
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #151 - Make srtp_driver compile for MIPS
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #160 - Use PKG_PROG_PKG_CONFIG to find correct pkg-config
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #167 - Additional RTCP and SRTCP tests
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #169 - Identified merge conflict created by commit 6b71fb9
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #173 - Avoid error 'possibly undefined macro: AM_PROG_AR'
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #174 - Avoid warning 'The macro AC_TRY_LINK is obsolete.'
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #175 - Remove 2nd -fPIC
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #182 - Add a length check before reading packet data
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #191 - On debug, output correct endianness of SSRC
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #192 - Replace octet_string_is_eq with a constant-time implementation
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #195 - Add missing __cplusplus header guards
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #198 - Update sha1_driver.c to avoid memory leaks
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #202 - Add an explicit cast to avoid a printf format warning on macOS
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #205 - Update Windows build files to Visual Studio 2015
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #207 - Fix to install-win.bat syntax, and add installation of x64 libraries
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #208 - Make replace_cipher and replace_auth public again
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #211 - Changes for OpenSSL 1.1.0 compatibility
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #213 - Add cast to `unsigned int` in call to printf in test
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #214 - Avoid empty initializer braces
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #222 - Fix issue: No consistency when use some srtp_* functions
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #231 - Advance version on master in preparation for 2.1 release
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #232 - Update Travis, do not build with OpenSSL on OSX
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #233 - crypto/replay/rdbx.c: Return type of srtp_index_guess from int to
int32_t
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #236 - test/rtp_decoder.c: Removed superfluous conditional
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #237 - test/rtp_decoder.c: spring cleaning
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #239 - octet_string_set_to_zero() delegates to OPENSSL_cleanse() if
available, if not it will use srtp_cleanse() to zero memory
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #243 - EKT is not really supported yet, remove from install
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #244 - Add simple error checking in timing test to avoid false results
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #245 - Add missing srtp_cipher_dealloc calls when test fails
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #246 - test/rtp_decoder: Add missing conditional
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #248 - New README.md that integrates intro, credits and references from
/doc/ and is used to generate documentation
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #249 - Remove support for generic aesicm from configure.in
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #250 - Update README.md, incorrect tag for link
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #255 - Cleanup outdated comment related to MKI
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #258 - Add AES-GCM to DTLS-SRTP Protection Profiles
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #263 - Cleaning up and removing duplicated and outdated code
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #265 - Introduction of unit test framework: CUTest
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #267 - crypto/kernel/err.c: Include datatypes.h
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #272 - Reduce literal constants
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #273 - SRTP AEAD SRTCP initialization vector regression tests
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #274 - Update Travis build - add ccache
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #276 - Reference and docs updates
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #278 - Removed crypto/test/auth_driver.c and test/lfsr.c
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #279 - Bump copyright year
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #283 - Add missing docs in srtp.h
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #284 - Add strict-prototypes warning if supported
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #291 - Use const char * for srtp_set_debug_module()
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #294 - Fix incorrect result of rdb_increment on overflow
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #300 - Standalone tests
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #301 - Configure fixes
2006-04-07 12:10:03 -04:00
2017-06-26 13:11:02 -04:00
PR #302 - Fix warning regarding unused variable
2006-04-07 12:10:03 -04:00
2019-04-26 07:31:40 -04:00
PR #303 - Makefile.in: Add gnu as match for shared lib suffix