tor-browser

CHANGES (11663B)

---

Changelog

2.7.0

#746 - Fix function signature mismatch for srtp_remove_stream

#733 - Fix srtp_unprotect_rtcp_mki when RTP auth != RTCP

2.6.0

#667 - remove use of pointers to 32bit values

#666 - Cleaning up cmake and enabled more warnings.

#665 - start using const on internal arguments

#662 - Some srtp_driver fixes

#661 - remove travis reference from README.md

#660 - meson.build: implement mbedtls support

#649 - iv length is constant so set only once

#507 - Add x86 SIMD optimizations to crypto datatypes

#643 - Add a missing typedef for stream list ctx

#641 - cmake: Rename TEST_APPS as LIBSRTP_TEST_APPS option

#640 - cmake: Support configuring as subproject

2.5.0

#636 - Make mbedtls hmac less restrictive in line with RFC and library capabilities

#612 - Allow overriding stream list implementation

#629 - update min openssl version to 1.1.0

#602 - Openssl 3 support for EVP MAC

#628 - Add android build to CI

#616 - add CIFuzz Github action to workflows

#621 - Add policy_set_aes_cm_192_xxx symbols to def file

#617 - Use current directions in stream update test

#614 - Call `set_aad` and `get_tag` in AEAD performance tests

#611 - Create alias for srtp2 as libSRTP::srtp2

#593 - Remove compatibility code for legacy OpenSSL to fix LibreSSL build

#573 - Export CMake Targets

#586 - Avoid initializing local char table when converting nibble to hex

#591 - EVP_CIPHER_CTX_cleanup() is deprecated in OpenSSL 1.1.0

#589 - Correct null cipher key sizes and be more defensive

#570 - Include directory should point to 'include' not to 'include/srtp2'

#551 - Count blocks instead of bytes in AES-ICM limit computation

#561 - Rtp decoder support ssrc and roc

#559 - Use a full-length key even with null ciphers

#558 - Fix set ROC functionality with gcm

2.4.0

Major changes

#529 - Remove EKT files, this was never completed and the draft has since changed.

#512 - Adds support for Mbedtls as a crypto backend.

#503 - Support apple silicon build.

#495 - Adds support for the Meson build system. This is an alternative to Cmake and auto tools.

Other changes

#546 - Improve OpenSSL KDF check.

#542 - Add void to function declarations for EVP_EncryptInit check.

#531 - Remove dead code.

#524 - Support running against nss >= 3.52.

#521 - Remove references to dtls from libsrtp.

#520 - Use nss based hmac when nss enabled.

#519 - Move selftest vectors form backends to common files.

#515 - Extend cmake support.

#514 - Fix gcc11 warning by defining output length.

#502 - Remove visual studio build files.

#501 - cmake: Set the VERSION property of the srtp2 library.

#500 - Fixed issue #499 with buffer overflow.

#498 - Feature/additional error checks.

#496 - Rework check for OPENSSL_cleanse().

#492 - Avoid non-existing compiler flag -O4.

#491 - Fix two-byte RTP header extension encryption.

#478 - Modify cmake to install crypto_types.h instead of cipher_types.h

2.3.0

Major changes

A fuzzer was added to the project based on libFuzzer. This is run as part of Google oss-fuzz, the current status can be found at https://oss-fuzz-build-logs.storage.googleapis.com/index.html#libsrtp . Details available in PR #442 and issue #393.

CMake support was added as an alternative build system. This was primarily added to replace the Visual Studio project files currently checked in but has been extend to support building on all platforms. Initial PR #449 and #455 but has been support has been continuously improved.

NSS support for crypto backend was added. This is can be used as an alternative to openssl. Initial PR #413 but there has been numerous improvements.

Other changes

PR #474 - Add flag to disable pcap dependency when build test apps.

PR #472 - Add ci builds for ios and android.

PR #463 - problem on srtp_aes_icm_openssl_encrypt.

PR #471 - Allow the pcap file to be read from a physical file.

PR #457 - Fix docs crypto_policy_* -> srtp_crypto_policy_* .

PR #452 - crypto/cipher: Reset the EVP_CIPHER_CTX structure before each test.

PR #444 - Extend rtp_ecoder to support RTCP and multiplexed SSRC's.

PR #443 - rtp_decoder avoid crash when no packets found.

PR #429 - Rand for test only.

PR #421 - Fix GCM IV logging.

PR #415 - Fixes unaligned trailer access.

PR #414 - Detect and handle broken "OPENSSL_cleanse".

2.2.0

Major changes

All code has been reformatted to be consistent. A .clang-format file and format.sh script has been added that can be use to verify and enforce consistent formatting. An automated check on code formatting is now part of travis build.

Other changes

PR #409 - Compatibilty with LibreSSL

PR #406 - Fix unprotect when pktlen < (2*mki_size + tag_len)

PR #405 - Prevent potential double free

PR #404 - Add back extern to global variables

PR #403 - Set gcm IV directly with EVP_CipherInit_ex

PR #401 - Fix memory access issue in srtp_get_session_keys()

PR #398 - Fix memory access fixes when invalid profiles where used

PR #391 - Return NULL when allocating memory of size zero

PR #390 - Bitvector of length zero is not valid

PR #385 - Treat warnings as errors on travis builds

PR #388 - Moved externs from crypto_kernel into its own header

PR #379 - Fixed several compiler warnings from Firefox builds

PR #377 - Removed variable init code in rdbx which never gets used

PR #381 - Added error in case the platform is not detected

PR #376 - Add coverity scan to travis builds

PR #374 - Add a big endian build on travis

PR #373 - Fixed buffer size issue in test/srtp_driver.c

PR #372 - Make rtp_decoder compile on MinGW

PR #367 - Rename configure.in to configure.ac

PR #365 - Replace calls to free() with srtp_crypto_free()

PR #364 - Add valgrind to travis and fix leaks in tests

PR #363 - Change smtp_crypto_alloc to initialize memory to zero

PR #354 - Fix potential leak if cloning of stream fails

PR #340 - Fix potential leak in srtp_add_stream()

PR #323 - Fix running test in out of source builds

Issue #316  - Remove VERSION file

2.1.0

Compatibility changes

  PR #253 - Cipher type cleanup for AES
    When libSRTP is compiled with OpenSSL and the AES 256 ICM cipher is used
    with RTCP an incorrect initialization vector is formed.
    This change will break backwards compatibility with older versions (1.5,
    2.0) of libSRTP when using the AES 256 ICM cipher with OpenSSL for RTCP.

  PR #259 - Sequence number incorrectly masked for AES GCM IV
    The initialization vector for AES GCM encryption was incorrectly formed on
    little endian machines.
    This change will break backwards compatibility with older versions (1.5,
    2.0) of libSRTP when using the AES GCM cipher for RTCP.

  PR #287 - Fix OOB read in key generation for encrypted headers with GCM ciphers
    Adds padding of GCM salt to the corresponding ICM length used for header
    encryption.
    This change will break backwards compatibility with version 2.0 of libSRTP
    when using the header encryption extension with the AES GCM cipher.

Major changes

  PR #204 - OpenSSL performance improvements
    Changed key expansion to occur once per key instead of once per packet.

  PR #209 - Restore AES-192 under BoringSSL
    BoringSSL supports AES-192 and is now enabled in libSRTP.

  PR #224 - Master Key Identifiers (MKI) Support patch
    Adds MKI support with up to 4 keys.

  PR #234 - Report SSRC instead of srtp_stream_t in srtp_event_data_t
    srtp_stream_t is an opaque type making the event framework almost useless.
    Now the SSRC is returned instead for use as a key in the public API.

  PR #238 - Configure changes and improvements
    CFLAGS check more shell neutral, quotation fixes, always generate and
    install pkg-config file, improved OpenSSL discovery and linking, remove
    -fPIC flag on Windows, fix shared library generation under Cygwin, replace
    hardcoded CFLAGS with compiler checks, and regenerate configure after
    configure.in changes.

  PR #241 & PR #261 - Improved logging API to receive log messages from libSRTP
    Provides a logging API and the ability to enable logging to stdout and a
    file, as well as a switch to enable all internal debug modules.

  PR #289 - Added support for set and get the roll-over-counter
    Adds an API to set and get the ROC in an (S)RTP session.

  PR #304 - Fix (S)RTP and (S)RTCP for big endian machines
    The structures srtp_hdr_t, srtcp_hdr_t and srtcp_trailer_t were defined
    incorrectly on big endian systems.

Other changes

  PR #149 - Don't create a symlink if there is no $(SHAREDLIBVERSION)

  PR #151 - Make srtp_driver compile for MIPS

  PR #160 - Use PKG_PROG_PKG_CONFIG to find correct pkg-config

  PR #167 - Additional RTCP and SRTCP tests

  PR #169 - Identified merge conflict created by commit 6b71fb9

  PR #173 - Avoid error 'possibly undefined macro: AM_PROG_AR'

  PR #174 - Avoid warning 'The macro AC_TRY_LINK is obsolete.'

  PR #175 - Remove 2nd -fPIC

  PR #182 - Add a length check before reading packet data

  PR #191 - On debug, output correct endianness of SSRC

  PR #192 - Replace octet_string_is_eq with a constant-time implementation

  PR #195 - Add missing __cplusplus header guards

  PR #198 - Update sha1_driver.c to avoid memory leaks

  PR #202 - Add an explicit cast to avoid a printf format warning on macOS

  PR #205 - Update Windows build files to Visual Studio 2015

  PR #207 - Fix to install-win.bat syntax, and add installation of x64 libraries

  PR #208 - Make replace_cipher and replace_auth public again

  PR #211 - Changes for OpenSSL 1.1.0 compatibility

  PR #213 - Add cast to `unsigned int` in call to printf in test

  PR #214 - Avoid empty initializer braces

  PR #222 - Fix issue: No consistency when use some srtp_* functions

  PR #231 - Advance version on master in preparation for 2.1 release

  PR #232 - Update Travis, do not build with OpenSSL on OSX

  PR #233 - crypto/replay/rdbx.c: Return type of srtp_index_guess from int to
    int32_t

  PR #236 - test/rtp_decoder.c: Removed superfluous conditional

  PR #237 - test/rtp_decoder.c: spring cleaning

  PR #239 - octet_string_set_to_zero() delegates to OPENSSL_cleanse() if
    available, if not it will use srtp_cleanse() to zero memory

  PR #243 - EKT is not really supported yet, remove from install

  PR #244 - Add simple error checking in timing test to avoid false results

  PR #245 - Add missing srtp_cipher_dealloc calls when test fails

  PR #246 - test/rtp_decoder: Add missing conditional

  PR #248 - New README.md that integrates intro, credits and references from
    /doc/ and is used to generate documentation

  PR #249 - Remove support for generic aesicm from configure.in

  PR #250 - Update README.md, incorrect tag for link

  PR #255 - Cleanup outdated comment related to MKI

  PR #258 - Add AES-GCM to DTLS-SRTP Protection Profiles

  PR #263 - Cleaning up and removing duplicated and outdated code

  PR #265 - Introduction of unit test framework: CUTest

  PR #267 - crypto/kernel/err.c: Include datatypes.h

  PR #272 - Reduce literal constants

  PR #273 - SRTP AEAD SRTCP initialization vector regression tests

  PR #274 - Update Travis build - add ccache

  PR #276 - Reference and docs updates

  PR #278 - Removed crypto/test/auth_driver.c and test/lfsr.c

  PR #279 - Bump copyright year

  PR #283 - Add missing docs in srtp.h

  PR #284 - Add strict-prototypes warning if supported

  PR #291 - Use const char * for srtp_set_debug_module()

  PR #294 - Fix incorrect result of rdb_increment on overflow

  PR #300 - Standalone tests

  PR #301 - Configure fixes

  PR #302 - Fix warning regarding unused variable

  PR #303 - Makefile.in: Add gnu as match for shared lib suffix