Security Library 2.2.4 Release Notes

May 12, 2017 - Author: Sierra Wireless - Version 2.2.4 - 2329 Views
Customer Release Notes

1.        Introduction

1.1.           Document Scope

The scope of this document is the Open AT Security Library 2.2.4 release description for the AirPrime embedded modules listed in the compatibility section.

The Security Library 2.2.4 release includes:

·         The Security Library for Open AT: an Open AT library, ready to be integrated into customer application thanks to a high level simple and generic SSL API set. See “Security User’s Manual” for API description and porting guidelines..

·         The Crypto Sample application: This application is available in source code. This application uses the cryptographic API to demonstrate how to encrypt, decrypt or sign different messages

·         The Client Sample application: This application is available in source code. This application uses the WIP SSL API to exchange information with an SSL server.

·         The HTTPS Sample application: This application is available in source code. This application uses the WIP SSL API to exchange information with an HTTPS server.

·         The Security_AT_cmd sample application (so called WIPSSLSoft): an application offering AT commands on top of Security Library. This application is available in source code and in binary allowing customer to use it as an example, to integrate it in its application, or to enhance it. See “Security AT Commands Interface Guide” for description of the Security AT commands implemented

1.2.           Document Audience

This release note may be distributed to all direct and indirect customers and will be posted in Sierra Wireless Source.

1.3.           New Features/Enhancements

N/A


2.        Abbreviations and Definitions

Table 1.       Abbreviations and Definitions

Abbreviation/Acronym

Definitions

3DES

Triple DES.

AES

Advanced Encryption Standard.

API

Application Programming Interface.

DES

Data Encryption Standard.

DSA

Digital Signature Algorithm.

DSS

Digital Signature Standard.

HTTPS

HTTP over SSL.

MAC

Message Authentication Code.

MD5

Message Digest version 5.

OpenSSL

A free SSL toolkit. Please refer to http://www.openssl.org/ for more information.

RSA

The RSA algorithm. R, S, A are the first letter of the surnames of the three creators.

SHA1

Secure Hash Algorithm, version 1.

SHA2

Secure Hash Algorithm, version 2, is a collective name for SHA256, SHA384, and SHA512.

SHA256

Secure Hash Algorithm, version 2, with digest length of 256 bits.

SSL

Secure Socket Layer. See TLS.

TLS

Transport Layer Security. The successor to SSL version. Sometimes referred to as SSL when talking generally about TLS/SSL.

 


3.        Related Documentation

Table 2.       Related Documentation

Ref. #

Doc. #

Rev.

Document Title

[R-1]

4112704

Rev1.0

AirPrime - Security AT Commands for Open AT Application Framework - Interface Guide

[R-2]

4111868

Rev6.4

AirPrime - Security Library for Open AT Application Framework - Development Guide

[R-3]

4117611

Rev1.0

Customer Release Notes – Firmware 7.54.0.A1

 

[R-4]

4118112

Rev1.0

Customer Release Notes – OS 6.54.0.A1

 

[R-5]

4119123

Rev1.0

Customer Release Notes – Firmware 7.54.2.A1

 

[R-6]

4119150

Rev1.0

Customer Release Notes – Open AT OS 6.54.3.A1

 

 


4.        Compatibility

Table 3.       Hardware Compatibility

AirPrime Compatibility List

AirPrime SL808xBTA, SL808xT, SL808xBT

Table 4.       Software Compatibility

Component

Version

Firmware

7.54.0.A1.201603171313 or 7.54.1.A1.201604141352 or 7.54.2.A1.201701061226

OS

6.54.0.A1.201511201000 or 6.54.1.A1.201602291326_1 or 6.54.3.A1.201609080909

Internet Library

5.58.0.A1.201512161421 or 5.58.1.A1.201605100735_1 or 5.58.3.A1.201610210959

Open AT Application Framework

2.54.0.A1.201603181529 or 2.54.1.A1.201604141552 or 2.54.2.A1.201702240946


5.        Software Release Description

5.1.           Release Identification

Table 5.       Libraries Release Information

Component

Revision

Software Identification

2.2.4.201610061056

Date of generation

2016-10-06 10:56

OpenSSL release

1.0.1c

5.2.           Software Tools Versions

Table 6.       Software Tools Versions

S/W Tools Name

Version

Developer Studio

3.3

Compilation Tool Chain

ARM_EABI_GCC and RVDS

5.3.           Released Files

Download Option

Files

Upgrade through X-modem

WipsslSoft\bin\[Target.qct]_RVDS_Release\WipsslSoft.dwl

For the upgrade procedure, you can refer to:

·         In-line help for upgrade procedure through Developer Studio

·         The upgrade procedure through X-modem


6.        Software Changes Description

6.1.           Validated Corrections/Improvements

ID

Description

Impacted Domain

Impacted Sub-Domain

Fixed in

192

WIP_CEV_PEER_CLOSE event may not be reported when the socket is closed by the peer.

Other

OAT

2.2.4

187

When SSL handshaking fails, invalid error code is returned in callback for wip_getFileOpts().

Security Library

Other

2.2.3

180

SSL Library returns WIPSSL_CERR_BAD_KEY if PKCS8 certificates with header text as “BEGIN PRIVATE KEY” are used.

Security Library

Other

2.2.3

181

AirPrime may reset due to bad memory access by SSL task due to invalid pointer access by SSL library

Security Library

Other

2.2.3

171

wip_SSLGetSessionFromHTTPSDataChannel() might cause reset sometime

Security Library

HTTPS

2.2.2

6.2.           Interface Changes

N/A


7.        Troubleshooting

For Open AT Developers, please refer to the Troubleshooting Guide available in Sierra Wireless Source (formerly "Developer Zone") before contacting customer support.

For AT developers, please contact customer service for support and debugging information.

 


8.        Restrictions and Additional Information

8.1.           Restrictions

This section presents additional information or restrictions that must be taken into account regarding Security 2.2.4 Library package.

Note:               Open AT restrictions linked to Firmware and OS part are listed in “7.54.2.A1 Firmware Customer Release Note” [R-5] and “OS 6.54.3.A1 Customer Release Note” [R-6].

 

Table 7.           Restrictions and Additional Information

Issue ID

Description (What/When)

Impacted Domain

10

With some URLs two WIP_CEV_PEER_CLOSE events are received instead of one, after getting an HTTPS page through the GPRS bearer

OTHER

11

There is a limitation of the SSL buffer size and this impacts communicating with older Microsoft® applications that use non-standard SSL record sizes

OTHER

53

When trying to get the Authority Key Identifier, only the key id is returned by wip_getOpts() API. The issuer authority and serial number entries are not returned

OTHER

112

Unable to make TSV1_2 connection using DSA.

Not possible to use DSA certificates when doing TLS1.2

OTHER

 

Related items

ADL User Guide OS 6.54.0.A1
This document provides full description of the APIs associated with the Open AT Application Framework OS
Open AT Application Framework 2.54.2.A1 Full Installer for SL808xT/BT
Full installer for Open AT Application Framework 2.54.2.A1 for AirPrime SL808xT/BT
Internet Library 5.58.0.A1 Connectivity Development Guide

This document provides full description of the APIs associated with the IP Connectivity library 5.58.0.A1.

Location Library for Open AT Framework Development Guide

This document provides full description of the APIs associated with the Location Library

Security Library for Open AT Framework Development Guide

This document provides full description of the APIs associated with Internet Library SSL API, which provides SSL-secured communication channels to the Internet Library. This document assumes the reader is already familiar with Internet Library. Please refer to the following section for a list of related documents.

eCall In-Band Modem Library Development Guide
This document provides Sierra Wireless customers with full description of the APIs associated with the eCall In-Band Modem Library.
ERA Glonass Service Library Development Guide
This document is to provide Sierra Wireless customers with a full description of the APIs associated with the ERA Glonass Service Manager Library.
Extended AT Commands Manual
This document provides full description of AT commands supported by AirPrime wireless modules and AirLink Programmable Gateways through Extended AT Application.
©2020 Sierra Wireless. All rights reserved.
×
You have been successfully unsubscribed to this product. To access your subscription click here.