Note: Your user name is not your email address.
Your account is locked out! Please click here to unlock your account.
Your account is not activated yet. Please check your email and click on the activation link that was sent to you when you registered to our site. Did not received the activation email? Please click here to contact us.
Login failed, username or password is incorrect.
Contents
1. Introduction. 7
1.1. Document Scope. 7
1.2. Document Audience. 7
1.3. New Features/Enhancements. 7
2. Abbreviations and Definitions. 8
3. Related Documentation. 9
4. Compatibility. 10
5. Software Release Description. 11
5.1. Release Identification. 11
5.2. Software Tools Versions. 11
5.3. Released Files. 11
6. Software Changes Description. 12
6.1. Validated Corrections/Improvements. 12
6.2. Interface Changes. 12
7. Troubleshooting.. 13
8. Restrictions and Additional Information. 14
8.1. Restrictions. 14
List of Tables
Table 1. Abbreviations and Definitions. 8
Table 2. Related Documentation. 9
Table 3. Hardware Compatibility. 10
Table 4. Software Compatibility. 10
Table 5. Libraries Release Information. 11
Table 6. Software Tools Versions. 11
The scope of this document is the Open AT Security Library 2.2.4 release description for the AirPrime embedded modules listed in the compatibility section.
The Security Library 2.2.4 release includes:
· The Security Library for Open AT: an Open AT library, ready to be integrated into customer application thanks to a high level simple and generic SSL API set. See “Security User’s Manual” for API description and porting guidelines..
· The Crypto Sample application: This application is available in source code. This application uses the cryptographic API to demonstrate how to encrypt, decrypt or sign different messages
· The Client Sample application: This application is available in source code. This application uses the WIP SSL API to exchange information with an SSL server.
· The HTTPS Sample application: This application is available in source code. This application uses the WIP SSL API to exchange information with an HTTPS server.
· The Security_AT_cmd sample application (so called WIPSSLSoft): an application offering AT commands on top of Security Library. This application is available in source code and in binary allowing customer to use it as an example, to integrate it in its application, or to enhance it. See “Security AT Commands Interface Guide” for description of the Security AT commands implemented
This release note may be distributed to all direct and indirect customers and will be posted in Sierra Wireless Source.
N/A
Table 1. Abbreviations and Definitions
Abbreviation/Acronym
Definitions
3DES
Triple DES.
AES
Advanced Encryption Standard.
API
Application Programming Interface.
DES
Data Encryption Standard.
DSA
Digital Signature Algorithm.
DSS
Digital Signature Standard.
HTTPS
HTTP over SSL.
MAC
Message Authentication Code.
MD5
Message Digest version 5.
OpenSSL
A free SSL toolkit. Please refer to http://www.openssl.org/ for more information.
RSA
The RSA algorithm. R, S, A are the first letter of the surnames of the three creators.
SHA1
Secure Hash Algorithm, version 1.
SHA2
Secure Hash Algorithm, version 2, is a collective name for SHA256, SHA384, and SHA512.
SHA256
Secure Hash Algorithm, version 2, with digest length of 256 bits.
SSL
Secure Socket Layer. See TLS.
TLS
Transport Layer Security. The successor to SSL version. Sometimes referred to as SSL when talking generally about TLS/SSL.
Table 2. Related Documentation
Ref. #
Doc. #
Rev.
Document Title
[R-1]
4112704
Rev1.0
AirPrime - Security AT Commands for Open AT Application Framework - Interface Guide
[R-2]
4111868
Rev6.4
AirPrime - Security Library for Open AT Application Framework - Development Guide
[R-3]
4117611
Customer Release Notes – Firmware 7.54.0.A1
[R-4]
4118112
Customer Release Notes – OS 6.54.0.A1
[R-5]
4119123
Customer Release Notes – Firmware 7.54.2.A1
[R-6]
4119150
Customer Release Notes – Open AT OS 6.54.3.A1
Table 3. Hardware Compatibility
AirPrime Compatibility List
AirPrime SL808xBTA, SL808xT, SL808xBT
Table 4. Software Compatibility
Component
Version
Firmware
7.54.0.A1.201603171313 or 7.54.1.A1.201604141352 or 7.54.2.A1.201701061226
OS
6.54.0.A1.201511201000 or 6.54.1.A1.201602291326_1 or 6.54.3.A1.201609080909
Internet Library
5.58.0.A1.201512161421 or 5.58.1.A1.201605100735_1 or 5.58.3.A1.201610210959
Open AT Application Framework
2.54.0.A1.201603181529 or 2.54.1.A1.201604141552 or 2.54.2.A1.201702240946
Table 5. Libraries Release Information
Revision
Software Identification
2.2.4.201610061056
Date of generation
2016-10-06 10:56
OpenSSL release
1.0.1c
Table 6. Software Tools Versions
S/W Tools Name
Developer Studio
3.3
Compilation Tool Chain
ARM_EABI_GCC and RVDS
Download Option
Files
Upgrade through X-modem
WipsslSoft\bin\[Target.qct]_RVDS_Release\WipsslSoft.dwl
For the upgrade procedure, you can refer to:
· In-line help for upgrade procedure through Developer Studio
· The upgrade procedure through X-modem
ID
Description
Impacted Domain
Impacted Sub-Domain
Fixed in
192
WIP_CEV_PEER_CLOSE event may not be reported when the socket is closed by the peer.
Other
OAT
2.2.4
187
When SSL handshaking fails, invalid error code is returned in callback for wip_getFileOpts().
Security Library
2.2.3
180
SSL Library returns WIPSSL_CERR_BAD_KEY if PKCS8 certificates with header text as “BEGIN PRIVATE KEY” are used.
181
AirPrime may reset due to bad memory access by SSL task due to invalid pointer access by SSL library
171
wip_SSLGetSessionFromHTTPSDataChannel() might cause reset sometime
2.2.2
For Open AT Developers, please refer to the Troubleshooting Guide available in Sierra Wireless Source (formerly "Developer Zone") before contacting customer support.
For AT developers, please contact customer service for support and debugging information.
This section presents additional information or restrictions that must be taken into account regarding Security 2.2.4 Library package.
Note: Open AT restrictions linked to Firmware and OS part are listed in “7.54.2.A1 Firmware Customer Release Note” [R-5] and “OS 6.54.3.A1 Customer Release Note” [R-6].
Table 7. Restrictions and Additional Information
Issue ID
Description (What/When)
10
With some URLs two WIP_CEV_PEER_CLOSE events are received instead of one, after getting an HTTPS page through the GPRS bearer
OTHER
11
There is a limitation of the SSL buffer size and this impacts communicating with older Microsoft® applications that use non-standard SSL record sizes
53
When trying to get the Authority Key Identifier, only the key id is returned by wip_getOpts() API. The issuer authority and serial number entries are not returned
112
Unable to make TSV1_2 connection using DSA.
Not possible to use DSA certificates when doing TLS1.2
This document provides full description of the APIs associated with the IP Connectivity library 5.58.0.A1.
This document provides full description of the APIs associated with the Location Library
This document provides full description of the APIs associated with Internet Library SSL API, which provides SSL-secured communication channels to the Internet Library. This document assumes the reader is already familiar with Internet Library. Please refer to the following section for a list of related documents.