vlm | fa67ddc | 2004-06-03 03:38:44 +0000 | [diff] [blame] | 1 | |
vlm | 4573af0 | 2005-08-13 23:30:24 +0000 | [diff] [blame] | 2 | 0.9.18: 2005-Aug-13 |
vlm | 131ba38 | 2005-08-12 05:13:35 +0000 | [diff] [blame] | 3 | |
vlm | 5d89c3d | 2005-08-13 09:07:11 +0000 | [diff] [blame] | 4 | * The obsolete X.208 syntax is handled gracefully now (compound types' |
| 5 | member names are invented on the fly). (Test case 87). |
vlm | 4573af0 | 2005-08-13 23:30:24 +0000 | [diff] [blame] | 6 | * Generating enumeration tables for INTEGER types (Test case 88). |
vlm | 131ba38 | 2005-08-12 05:13:35 +0000 | [diff] [blame] | 7 | |
vlm | ed18fe1 | 2005-08-08 01:34:03 +0000 | [diff] [blame] | 8 | 0.9.17: 2005-Aug-07 |
vlm | b012da8 | 2005-07-21 01:18:19 +0000 | [diff] [blame] | 9 | |
| 10 | * Tagging mode is implicitly IMPLICIT if AUTOMATIC TAGS is used, #30.6. |
| 11 | (Test cases 55, 86). |
vlm | 3a41758 | 2005-07-24 09:03:44 +0000 | [diff] [blame] | 12 | * Started to use extern "C" {} in skeleton headers. |
| 13 | * Introduced -finline-choice command line option to fix |
| 14 | yet another class of circular references. |
vlm | b012da8 | 2005-07-21 01:18:19 +0000 | [diff] [blame] | 15 | |
| 16 | 0.9.16: 2005-July-04 |
vlm | b5abdc9 | 2005-07-02 21:42:40 +0000 | [diff] [blame] | 17 | |
vlm | 50f0a17 | 2005-07-03 05:32:55 +0000 | [diff] [blame] | 18 | * GeneralizedTime API now supports fractions of seconds. |
| 19 | Thanks to Bent Nicolaisen <BN@JAI.com> for support. |
vlm | b5abdc9 | 2005-07-02 21:42:40 +0000 | [diff] [blame] | 20 | * ASN.1 parser has been tweaked to allow parsing something like |
vlm | 754a90f | 2005-07-04 02:03:57 +0000 | [diff] [blame] | 21 | "SEQUENCE----comment----", which is ambiguous for many reasons. |
vlm | 50f0a17 | 2005-07-03 05:32:55 +0000 | [diff] [blame] | 22 | * XER decoder better handles not-yet-defined future extensions. |
vlm | b5abdc9 | 2005-07-02 21:42:40 +0000 | [diff] [blame] | 23 | |
vlm | 67b528d | 2005-07-02 08:19:26 +0000 | [diff] [blame] | 24 | 0.9.15: 2005-July-02 |
vlm | e6c8973 | 2005-05-17 21:46:18 +0000 | [diff] [blame] | 25 | |
| 26 | * Compiler now checks 64-bit overflows in constraints range handling |
| 27 | code. No effect on the code produced by the compiler. |
vlm | 1457c0d | 2005-06-02 17:53:17 +0000 | [diff] [blame] | 28 | * Compiler support for tagged and marked parametrized members. |
vlm | 611bc33 | 2005-05-27 21:58:52 +0000 | [diff] [blame] | 29 | * Empty tags to element map avoided. |
vlm | 67b528d | 2005-07-02 08:19:26 +0000 | [diff] [blame] | 30 | * Compiled code GCC 4.x compatibility. |
vlm | e6c8973 | 2005-05-17 21:46:18 +0000 | [diff] [blame] | 31 | |
vlm | fca0fe4 | 2005-04-29 18:55:12 +0000 | [diff] [blame] | 32 | 0.9.14: 2005-Apr-29 |
| 33 | |
| 34 | * Fixed check-70.-fnative-integers.c test (it was failing |
| 35 | when no test directory was found). |
| 36 | |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 37 | 0.9.13: 2005-Apr-24 |
vlm | 2f2df93 | 2005-03-10 18:53:33 +0000 | [diff] [blame] | 38 | |
| 39 | * Added extra const qualifiers into the support code. |
vlm | 35fcb7c | 2005-03-18 04:25:17 +0000 | [diff] [blame] | 40 | * More RFC variations supported in crfc2asn1.pl. |
vlm | 5e2c4b9 | 2005-03-20 11:12:40 +0000 | [diff] [blame] | 41 | * Refined string values compatibility. (Test cases 77, 78). |
vlm | a6a12e3 | 2005-03-20 12:58:00 +0000 | [diff] [blame] | 42 | * Support for ContainedSubtype constraints. (Test case 16). |
vlm | 6611add | 2005-03-20 14:28:32 +0000 | [diff] [blame] | 43 | * Parsing support for CONSTRAINED BY. (Test case 79). |
vlm | e1e6ed8 | 2005-03-24 14:26:38 +0000 | [diff] [blame] | 44 | * Support for CharsDefn (Quadruple and Tuple, most used in |
| 45 | ASN1-CHARACTER-MODULE) (Test case 80). |
vlm | 7bbdc9f | 2005-03-28 15:01:27 +0000 | [diff] [blame] | 46 | * Pretty-printing support for WITH COMPONENT[S]. (Test case 82). |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 47 | * Streamed OCTET STRING decoding of large values: fixed allocation |
| 48 | problem introduced in 0.9.9. (Severity: high; Security impact: medium) |
| 49 | Reported by Yann Grossel <olrick@users.sourceforge.net>. |
vlm | 0919fcc | 2005-04-25 21:08:25 +0000 | [diff] [blame] | 50 | * Fixed BASIC-XER encoding of REAL numbers. |
vlm | 2f2df93 | 2005-03-10 18:53:33 +0000 | [diff] [blame] | 51 | |
vlm | b04419e | 2005-03-10 11:27:28 +0000 | [diff] [blame] | 52 | 0.9.12: 2005-Mar-10 |
vlm | 67d57fe | 2005-03-06 09:29:03 +0000 | [diff] [blame] | 53 | |
| 54 | * Fixed a name clash in produced constraint checking code. |
vlm | 24b7eb1 | 2005-03-06 09:31:59 +0000 | [diff] [blame] | 55 | * #includes are now in single quotes (to solve a name |
| 56 | clash with system's <time.h> on a Win32 system). |
vlm | 4df9cc1 | 2005-03-09 22:19:25 +0000 | [diff] [blame] | 57 | * Small refinement of XML DTD generation (`asn1c -X`). |
| 58 | * Relaxed XER processing rules to skip extra whitespace |
| 59 | in some more places. It also skips XML comments (although |
vlm | be7a532 | 2005-03-10 11:50:12 +0000 | [diff] [blame] | 60 | XML comments in XER are prohibited by X.693, #8.2.1). |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 61 | (Test case 70) (Severity: medium; Security impact: none) |
vlm | 4df9cc1 | 2005-03-09 22:19:25 +0000 | [diff] [blame] | 62 | Reported by <Dominique.Nerriec@alcatel.fr>. |
vlm | b04419e | 2005-03-10 11:27:28 +0000 | [diff] [blame] | 63 | * Constraints on primitive types being defined are now supported. |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 64 | (Test case 74) (Severity: low; Security impact: none) |
vlm | f726ec3 | 2005-03-10 13:44:50 +0000 | [diff] [blame] | 65 | * XMLValueList generation fixed for CHOICE type. |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 66 | (Severity: medium; Security impact: none) |
vlm | b735371 | 2005-03-10 15:09:02 +0000 | [diff] [blame] | 67 | * Added the GSM TAP3 decoder into ./examples/sample.source.TAP3 |
vlm | 67d57fe | 2005-03-06 09:29:03 +0000 | [diff] [blame] | 68 | |
vlm | 4fff94d | 2005-03-04 09:01:15 +0000 | [diff] [blame] | 69 | 0.9.11: 2005-Mar-04 |
vlm | dca4830 | 2005-03-03 21:29:10 +0000 | [diff] [blame] | 70 | |
vlm | 4fff94d | 2005-03-04 09:01:15 +0000 | [diff] [blame] | 71 | * Released -fcompound-names to fix the name clashes in the code |
| 72 | produced by the asn1c. |
vlm | 9f554a3 | 2005-03-05 00:33:27 +0000 | [diff] [blame] | 73 | * Released -fno-include-deps to avoid #including non-critical |
| 74 | external dependencies. |
| 75 | * Compiler is taught to produce compilable code for yet another class |
| 76 | of circular ASN.1 type references. |
vlm | 9a89df6 | 2005-03-04 11:18:59 +0000 | [diff] [blame] | 77 | * X.693:8.3.4 prohibits anything but SignedNumber; fixed XER codec. |
| 78 | * Fixed ENUMERATED identifier to value conversion in XER. |
vlm | 560eeb8 | 2005-03-04 11:20:17 +0000 | [diff] [blame] | 79 | Reported by <jacque.celaire@caramail.com>. |
vlm | 4fff94d | 2005-03-04 09:01:15 +0000 | [diff] [blame] | 80 | * If the compiled file contents are the same as in already existing |
| 81 | file (left from previous compilation), the old file is retained. |
| 82 | This prevents thrashing `make` dependencies if amount of changes in |
| 83 | the original ASN.1 module(s) is small. |
vlm | dca4830 | 2005-03-03 21:29:10 +0000 | [diff] [blame] | 84 | |
vlm | 80a4859 | 2005-02-25 12:10:27 +0000 | [diff] [blame] | 85 | 0.9.10: 2005-Feb-25 |
vlm | a9e5543 | 2005-02-24 21:07:35 +0000 | [diff] [blame] | 86 | |
vlm | 80a4859 | 2005-02-25 12:10:27 +0000 | [diff] [blame] | 87 | * Completed the XER XMLValueList encoding and decoding. |
| 88 | * Native integer type is now using "long". |
| 89 | * Fixed #1150856. Reported by <vvvy@users.sourceforge.net>. |
vlm | 90717f6 | 2005-02-25 14:26:43 +0000 | [diff] [blame] | 90 | * Some WIN32 portability fixes. |
vlm | a9e5543 | 2005-02-24 21:07:35 +0000 | [diff] [blame] | 91 | |
vlm | d7f47c0 | 2005-02-22 08:14:24 +0000 | [diff] [blame] | 92 | 0.9.9: 2005-Feb-22 |
vlm | 54af01c | 2005-01-17 15:27:47 +0000 | [diff] [blame] | 93 | |
vlm | 0b09f2a | 2005-02-18 18:16:14 +0000 | [diff] [blame] | 94 | * First release of XER (XML) decoding implementation (somewhat |
| 95 | experimental). |
vlm | 6bbe0bc | 2005-01-22 00:13:45 +0000 | [diff] [blame] | 96 | * ANY allocation routine fixed. |
| 97 | Reported by <mikko.ahonen@elma.net>. |
vlm | 62a1475 | 2005-01-23 09:51:53 +0000 | [diff] [blame] | 98 | * Fixed tag parsing (tags like "[ 0 ]" were not supported). |
vlm | d7f47c0 | 2005-02-22 08:14:24 +0000 | [diff] [blame] | 99 | * Compiler now checks for duplicate ASN.1 types across modules. |
vlm | 54af01c | 2005-01-17 15:27:47 +0000 | [diff] [blame] | 100 | |
vlm | 34dcd57 | 2005-01-17 11:40:49 +0000 | [diff] [blame] | 101 | 0.9.8: 2005-Jan-17 |
vlm | 0aa8690 | 2004-10-12 23:26:53 +0000 | [diff] [blame] | 102 | |
vlm | 32d29a5 | 2004-10-26 10:44:18 +0000 | [diff] [blame] | 103 | * [NEW PLATFORM] Compiled and tested on Linux @ alpha64 (LP64). |
| 104 | Some code needed to be fixed regarding int-long conversions |
| 105 | (mostly inside the test suite), and floating point handling |
| 106 | code needed to be restructured to handle signalling NAN and |
| 107 | other floating point exceptions quietly. Smooth transition! |
| 108 | * [NEW PLATFORM] Compiled and tested on Sun Solaris 9 @ sparc. |
| 109 | Improved includes/defines of/for system headers. |
vlm | 60e7ef0 | 2004-10-13 09:13:56 +0000 | [diff] [blame] | 110 | * -X command line option added to asn1c to generate XML DTD. |
vlm | 0aa8690 | 2004-10-12 23:26:53 +0000 | [diff] [blame] | 111 | * Empty SEQUENCE and SET clauses are now allowed. |
vlm | ba67bd1 | 2004-10-25 22:58:49 +0000 | [diff] [blame] | 112 | * Removed confusion between &xNN; and &#xNN; in enber and unber. |
vlm | 7972927 | 2004-10-31 00:11:50 +0000 | [diff] [blame] | 113 | * Removed order dependency in DEFAULT references to ENUMERATED |
| 114 | identifiers (./tests/68-*-OK.asn1). |
vlm | bd8d05f | 2005-01-17 12:35:57 +0000 | [diff] [blame] | 115 | * ber_dec_rval_t renamed into asn_dec_rval_t: more generality. |
vlm | 34dcd57 | 2005-01-17 11:40:49 +0000 | [diff] [blame] | 116 | * Extensions in CHOICE types are properly marked as non-pointers |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 117 | (Test case 59) (Severity: medium; Security impact: medium) |
vlm | 34dcd57 | 2005-01-17 11:40:49 +0000 | [diff] [blame] | 118 | Reported by <roman.pfender@sdm.de>. |
vlm | bd8d05f | 2005-01-17 12:35:57 +0000 | [diff] [blame] | 119 | * Tagged CHOICE type is now supported again. |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 120 | (Test case 59) (Severity: low; Security impact: low) |
vlm | bd8d05f | 2005-01-17 12:35:57 +0000 | [diff] [blame] | 121 | Reported by <orlinkata@dir.bg>. |
vlm | cd05d3d | 2004-11-16 09:46:00 +0000 | [diff] [blame] | 122 | * Implemented der_encode_to_buffer() procedure. |
vlm | 0aa8690 | 2004-10-12 23:26:53 +0000 | [diff] [blame] | 123 | |
| 124 | 0.9.7.1: 2004-Oct-12 |
| 125 | |
| 126 | * Fixed automatic tagging for extensions of compound types. |
| 127 | * Fixed ParametrizedReference parsing: {} are now recognized. |
| 128 | |
vlm | 267b7fd | 2004-10-11 11:43:08 +0000 | [diff] [blame] | 129 | 0.9.7: 2004-Oct-11 |
vlm | 745fe25 | 2004-10-02 00:12:11 +0000 | [diff] [blame] | 130 | |
vlm | aa930cb | 2005-02-24 22:37:07 +0000 | [diff] [blame] | 131 | * Finished CXER implementation by adding SET and SET OF canonical |
| 132 | ordering support. |
vlm | 17cbadb | 2004-10-03 10:55:08 +0000 | [diff] [blame] | 133 | * Fixed unber(1) limits controlling logic. |
vlm | 745fe25 | 2004-10-02 00:12:11 +0000 | [diff] [blame] | 134 | * Removed C99'izm from the x509dump, now understood by older compilers. |
vlm | ee5afb0 | 2004-10-02 15:55:20 +0000 | [diff] [blame] | 135 | * Enhanced UTF8String constraint validation, now it checks |
| 136 | for the minimal encoding length; API of UTF8String_length() changed. |
vlm | 5cb31d5 | 2004-10-05 06:39:35 +0000 | [diff] [blame] | 137 | * Fixed SEQUENCE dealing with premature termination of the |
| 138 | optionals-laden indefinite length structure. The code was previously |
| 139 | refusing to parse such structures. |
vlm | 267b7fd | 2004-10-11 11:43:08 +0000 | [diff] [blame] | 140 | * Fixed explicitly tagged ANY type encoding and decoding |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 141 | (Severity: medium; Security impact: low). |
vlm | 5cb31d5 | 2004-10-05 06:39:35 +0000 | [diff] [blame] | 142 | * Fixed CHOICE code spin when indefinite length structures appear |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 143 | in the extensions (Severity: medium; Security impact: medium). |
vlm | 5cb31d5 | 2004-10-05 06:39:35 +0000 | [diff] [blame] | 144 | Reported by <siden@ul-gsm.ru>. |
vlm | 0f1ab76 | 2004-10-12 05:57:23 +0000 | [diff] [blame] | 145 | * BIT STRING now stores the number of unused octets in a separate field. |
vlm | 745fe25 | 2004-10-02 00:12:11 +0000 | [diff] [blame] | 146 | |
vlm | 0d181f2 | 2004-09-29 13:30:32 +0000 | [diff] [blame] | 147 | 0.9.6: 2004-Sep-29 |
vlm | e43659a | 2004-09-19 19:40:52 +0000 | [diff] [blame] | 148 | |
vlm | 0d181f2 | 2004-09-29 13:30:32 +0000 | [diff] [blame] | 149 | * Added several security firewalls: decoder's stack usage control |
| 150 | and the stricter checking of the TLV length. |
vlm | f7ed148 | 2004-09-22 16:06:52 +0000 | [diff] [blame] | 151 | * Implemented BASIC-XER encoding support (X.693). |
vlm | 74e9e34 | 2004-09-24 21:06:19 +0000 | [diff] [blame] | 152 | * Implemented unber(1) and enber(1) for BER<->XML translation. |
vlm | f7ed148 | 2004-09-22 16:06:52 +0000 | [diff] [blame] | 153 | * Implemented CGI for online ASN.1 compilation (asn1c/webcgi). |
vlm | 74e9e34 | 2004-09-24 21:06:19 +0000 | [diff] [blame] | 154 | * Implemented the sample X.509 decoder (./examples/sample.source.PKIX1). |
vlm | f7ed148 | 2004-09-22 16:06:52 +0000 | [diff] [blame] | 155 | * NamedType is now supported for SET OF/SEQUENCE OF type. |
vlm | 986afd6 | 2004-09-26 13:16:56 +0000 | [diff] [blame] | 156 | * Added -fno-constraints option to asn1c, which disabled generation of |
| 157 | ASN.1 subtype constraints checking code. |
vlm | f7ed148 | 2004-09-22 16:06:52 +0000 | [diff] [blame] | 158 | * Added ASN1C_ENVIRONMENT_VERSION and get_asn1c_environment_version(). |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 159 | * Fixed ANY type decoding (Severity: high; Security impact: low). |
vlm | 74e9e34 | 2004-09-24 21:06:19 +0000 | [diff] [blame] | 160 | * Fixed BER decoder restartability problem with certain primitive |
| 161 | types (BOOLEAN, INTEGER, and REAL). The problem occured when the |
| 162 | encoding of such type is split between several bytes. |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 163 | (Severity: high; Security impact: low) |
vlm | 0d181f2 | 2004-09-29 13:30:32 +0000 | [diff] [blame] | 164 | * Support for cross-referencing type definitions (updated ./tests/43-*). |
vlm | c8ee305 | 2004-09-27 20:56:03 +0000 | [diff] [blame] | 165 | * Fixed pretty-printing of the REAL type. Added lots of test cases. |
vlm | 0d181f2 | 2004-09-29 13:30:32 +0000 | [diff] [blame] | 166 | * Renamed asn1_* into asn_* in function and type names. |
vlm | 74e9e34 | 2004-09-24 21:06:19 +0000 | [diff] [blame] | 167 | * Updated documentation. |
vlm | e43659a | 2004-09-19 19:40:52 +0000 | [diff] [blame] | 168 | |
vlm | bed6f81 | 2004-09-17 06:46:10 +0000 | [diff] [blame] | 169 | 0.9.5: 2004-Sep-17 |
vlm | f72653e | 2004-09-13 08:32:15 +0000 | [diff] [blame] | 170 | |
| 171 | * Fixed CER (common BER) decoder code. See check-25.c/VisibleString |
| 172 | case for details. X.690 specifies that inner structures in BER |
| 173 | encoding must be tagged by stripping off the outer tag for each |
| 174 | subsequent containment level. See also X.690: 8.21.5.4 and |
| 175 | the "Spouse" case in A.3. |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 176 | (Severity: medium; Security impact: low) |
vlm | f72653e | 2004-09-13 08:32:15 +0000 | [diff] [blame] | 177 | * Added converters between any generic type and the ANY type. |
vlm | b807ac4 | 2004-09-14 02:46:22 +0000 | [diff] [blame] | 178 | * Parser fixed: Information Object Class fields may be taged. |
| 179 | * Parser fixed: tagged types inside SEQUENCE OF/SET OF support. |
vlm | 9e4815d | 2004-09-15 12:01:04 +0000 | [diff] [blame] | 180 | * Improved DEFAULT Value parsing and pretty-printing. |
| 181 | * Condition on distinct tags checker was incorrectly dealing with |
| 182 | tagged CHOICE types. Fixed. Modified tests/37-indirect-choice-OK.asn1 |
vlm | b47f48e | 2004-09-17 06:32:12 +0000 | [diff] [blame] | 183 | * Improved type name generation code ("struct foo" vs "foo_t"). |
vlm | 9e4815d | 2004-09-15 12:01:04 +0000 | [diff] [blame] | 184 | * Fixed constraint checking code incorrectly dealing with imported |
| 185 | types with constraint values defined in other modules. |
vlm | f9d178d | 2004-09-14 12:47:45 +0000 | [diff] [blame] | 186 | * Real REAL support! (Haven't tested denormals support yet!) |
| 187 | See skeletons/tests/check-REAL.c |
vlm | f72653e | 2004-09-13 08:32:15 +0000 | [diff] [blame] | 188 | |
vlm | 1308d2b | 2004-09-10 15:49:15 +0000 | [diff] [blame] | 189 | 0.9.4: 2004-Sep-10 |
vlm | dbf655b | 2004-09-10 09:38:17 +0000 | [diff] [blame] | 190 | |
| 191 | * More support for recursive type definitions. |
| 192 | * Explicit support for ANY type decoding. |
vlm | 1308d2b | 2004-09-10 15:49:15 +0000 | [diff] [blame] | 193 | * Refactored tags processing code. |
| 194 | * Fixed constraints checking code: non-exploitable buffer overflow. |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 195 | (Severity: medium; Security impact: low) |
vlm | dbf655b | 2004-09-10 09:38:17 +0000 | [diff] [blame] | 196 | |
vlm | 8c80dc5 | 2004-09-08 02:49:06 +0000 | [diff] [blame] | 197 | 0.9.3: 2004-Sep-07 |
vlm | 7a35b65 | 2004-08-26 06:19:23 +0000 | [diff] [blame] | 198 | |
vlm | e9a56c9 | 2004-09-05 10:41:39 +0000 | [diff] [blame] | 199 | * Extended constraints support in parametrized types. |
| 200 | * Better support for parametrization and constraints handling. |
vlm | 21c7045 | 2004-09-08 00:27:33 +0000 | [diff] [blame] | 201 | * Better handling of recursive type definitions. |
vlm | 39c5061 | 2004-09-04 05:02:31 +0000 | [diff] [blame] | 202 | * Added support for ANY type. |
vlm | 7a35b65 | 2004-08-26 06:19:23 +0000 | [diff] [blame] | 203 | |
vlm | d86c925 | 2004-08-25 01:34:11 +0000 | [diff] [blame] | 204 | 0.9.2: 2004-Aug-24 |
| 205 | |
vlm | 3231b9f | 2004-08-25 02:06:48 +0000 | [diff] [blame] | 206 | * More flexible subtype constraints handling, with relaxed |
| 207 | PER visibility rules for actual constraints checking code generator. |
vlm | d86c925 | 2004-08-25 01:34:11 +0000 | [diff] [blame] | 208 | * Indirect references in constraints resolver code fixed. |
| 209 | * Avoided compilation warning on gcc 3.3.3 systems. |
vlm | da4df3f | 2004-08-25 02:27:47 +0000 | [diff] [blame] | 210 | * Better ValueSet printing. |
vlm | d86c925 | 2004-08-25 01:34:11 +0000 | [diff] [blame] | 211 | |
vlm | ef427fd | 2004-08-24 05:25:57 +0000 | [diff] [blame] | 212 | 0.9.1: 2004-Aug-23 |
| 213 | |
| 214 | * Documentation updated: doc/asn1c-usage.pdf |
| 215 | * Fixed OBJECT IDENTIFIER human-readable printing. |
| 216 | Reported by <siden@ul-gsm.ru>. |
| 217 | |
vlm | 8262070 | 2004-08-23 09:24:40 +0000 | [diff] [blame] | 218 | 0.9: 2004-Aug-23 |
vlm | d3d0fbd | 2004-08-18 05:43:55 +0000 | [diff] [blame] | 219 | |
| 220 | * Reworked subtype constraints handling, aiming at PER-applicability. |
vlm | 7ce9add | 2004-08-19 13:35:01 +0000 | [diff] [blame] | 221 | * BOOLEAN and NULL are now implemented in terms of native int type. |
| 222 | * Compiler now links in only necessary skeleton files. |
vlm | f25d281 | 2004-08-20 13:38:25 +0000 | [diff] [blame] | 223 | * -t option added to asn1c to ease manual BER/CER/DER decoding. |
vlm | dae7f9d | 2004-08-22 03:25:24 +0000 | [diff] [blame] | 224 | * Added support COMPONENTS OF construct. |
| 225 | * Numerous parser fixes and enhancements. |
vlm | 758530a | 2004-08-22 13:47:59 +0000 | [diff] [blame] | 226 | * Better constraint failure reporting. |
vlm | d3d0fbd | 2004-08-18 05:43:55 +0000 | [diff] [blame] | 227 | |
vlm | 19aae98 | 2004-08-18 09:05:12 +0000 | [diff] [blame] | 228 | 0.8.19: 2004-Aug-18 |
| 229 | |
| 230 | * Fixed BER encoder (problem encoding large tag values) |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 231 | (Severity: medium; Security impact: low) |
vlm | 19aae98 | 2004-08-18 09:05:12 +0000 | [diff] [blame] | 232 | |
vlm | 2273649 | 2004-08-13 12:39:17 +0000 | [diff] [blame] | 233 | 0.8.18: 2004-Aug-12 |
| 234 | |
| 235 | * Parser: fixed multiple IMPORTS problem (incorrect assertion). |
| 236 | * Parser: constraints extensibility parsing fix. |
| 237 | |
vlm | 6e73a04 | 2004-08-11 07:17:22 +0000 | [diff] [blame] | 238 | 0.8.17: 2004-Aug-11 |
vlm | 8ed2f6f | 2004-08-11 05:35:51 +0000 | [diff] [blame] | 239 | |
| 240 | * Improved compiler output: duplicate #includes eliminated. |
vlm | 6e73a04 | 2004-08-11 07:17:22 +0000 | [diff] [blame] | 241 | * Win32 portability fixes. |
vlm | e167bf7 | 2004-08-11 08:11:50 +0000 | [diff] [blame] | 242 | * More compatibility with C++ or non-GCC compilers. |
vlm | 8ed2f6f | 2004-08-11 05:35:51 +0000 | [diff] [blame] | 243 | |
vlm | 972a538 | 2004-07-22 12:19:42 +0000 | [diff] [blame] | 244 | 0.8.16: 2004-Jul-22 |
| 245 | |
| 246 | * Fixed application-level problem in SET OF/SEQUENCE OF array cleanup. |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 247 | (Severity: medium; Security impact: low) |
vlm | 81057a8 | 2004-08-07 03:52:26 +0000 | [diff] [blame] | 248 | * Improved asn_GT2time() and added asn_time2{GT,UT}() functions. |
vlm | 49b511a | 2004-08-07 05:01:45 +0000 | [diff] [blame] | 249 | * BIT STRING pretty-printing. |
vlm | 972a538 | 2004-07-22 12:19:42 +0000 | [diff] [blame] | 250 | |
vlm | 796c1da | 2004-07-21 03:55:44 +0000 | [diff] [blame] | 251 | 0.8.15: 2004-Jul-20 |
vlm | f0769b4 | 2004-07-15 10:52:58 +0000 | [diff] [blame] | 252 | |
| 253 | * Fixed parser: memory leak in free_struct code for SET OF/SEQUENCE OF. |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 254 | (Severity: high; Security impact: medium) |
vlm | de1d8f7 | 2004-07-21 04:15:24 +0000 | [diff] [blame] | 255 | * Fixed parser: invalid memory reference in code constructing tags. |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 256 | (Test case 48) (Severity: high; Security impact: medium) |
vlm | 796c1da | 2004-07-21 03:55:44 +0000 | [diff] [blame] | 257 | When encoding data for certain ASN.1 specifications containing |
| 258 | explicit tags, the tag is always written incorrectly due to |
| 259 | incorrect memory reference. The encoding will almost always produce |
| 260 | unparseable data and might well reference unmapped region so program |
| 261 | would produce segmentation violation. Fortunately, memory is |
| 262 | read, not written, so remote exploits cannot execute arbitrary |
| 263 | code and triggering unmapped memory reference is highly unlikely |
| 264 | even it attacker knows the code (basically, the compiler should place |
| 265 | asn1_DEF_... right before the end of the mapped memory region, which |
| 266 | is extremely rare). |
vlm | 7d278c4 | 2004-07-19 17:30:25 +0000 | [diff] [blame] | 267 | * Improved INTEGER type printing. |
vlm | f0769b4 | 2004-07-15 10:52:58 +0000 | [diff] [blame] | 268 | |
vlm | 79b08d5 | 2004-07-01 00:52:50 +0000 | [diff] [blame] | 269 | 0.8.14: 2004-Jun-30 |
| 270 | |
| 271 | * Fixed compiler: extensibility of CHOICE and SET type has not been |
| 272 | taken into account during table construction. |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 273 | (Test case 47) (Severity: high; Security impact: low) |
vlm | 79b08d5 | 2004-07-01 00:52:50 +0000 | [diff] [blame] | 274 | |
vlm | 65328a8 | 2004-06-28 21:22:20 +0000 | [diff] [blame] | 275 | 0.8.13: 2004-Jun-29 |
| 276 | |
| 277 | * Fixed compiler: the skip values for IMPLICIT tagging were broken |
| 278 | in some complex cases where one type is defined using another. |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 279 | (Test case 46) (Severity: medium; Security impact: low). |
vlm | 65328a8 | 2004-06-28 21:22:20 +0000 | [diff] [blame] | 280 | * Added -fknown-extern-type command line parameter to asn1c. |
| 281 | * Removed -N command line flag and underlying functionality |
| 282 | to honor KISS principle. |
| 283 | |
vlm | d315be5 | 2004-06-18 00:03:54 +0000 | [diff] [blame] | 284 | 0.8.12: 2004-Jun-17 |
vlm | e511d3e | 2004-06-14 13:53:32 +0000 | [diff] [blame] | 285 | |
vlm | d315be5 | 2004-06-18 00:03:54 +0000 | [diff] [blame] | 286 | * RELATIVE-OID and OBJECT IDENTIFIER encoders/decoders are not bound |
| 287 | anymore to an integer type of specific size (unsigned long). The |
| 288 | size of an integer must be provided explicitly. |
| 289 | See {OBJECT_IDENTIFIER|RELATIVE_OID}_{get|set}_arcs(). |
vlm | e511d3e | 2004-06-14 13:53:32 +0000 | [diff] [blame] | 290 | * SEQUENCE BER decoder fixed again for complex CHOICE case |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 291 | (Test case 44) (Severity: medium; Security impact: low). |
vlm | e511d3e | 2004-06-14 13:53:32 +0000 | [diff] [blame] | 292 | |
vlm | 97986e4 | 2004-06-05 08:47:18 +0000 | [diff] [blame] | 293 | 0.8.11: 2004-Jun-05 |
| 294 | |
vlm | 387ab0c | 2004-07-21 04:28:32 +0000 | [diff] [blame] | 295 | * Enforced stricter conformance with C standards. |
vlm | e511d3e | 2004-06-14 13:53:32 +0000 | [diff] [blame] | 296 | * SEQUENCE BER decoder is now equipped with the sorted map |
vlm | 45191f5 | 2004-06-06 07:20:37 +0000 | [diff] [blame] | 297 | in case of complex CHOICE descendants. Test case 44 created. |
vlm | 97986e4 | 2004-06-05 08:47:18 +0000 | [diff] [blame] | 298 | |
vlm | fa67ddc | 2004-06-03 03:38:44 +0000 | [diff] [blame] | 299 | 0.8.10: 2004-Jun-02 |
| 300 | |
| 301 | * Added const qualifier where necessary. |
| 302 | * Changed position of outmost_tag fetcher within asn1_TYPE_descriptor_t |
| 303 | structure. |
| 304 | |
| 305 | 0.8.9: 2004-May-26 |
| 306 | |
| 307 | * Added *_{get|set}_arcs_*() functions for OBJECT IDENTIFIER |
| 308 | and RELATIVE-OID, together with test cases. |
| 309 | |
| 310 | 0.8.8: 2004-May-09 |
| 311 | |
| 312 | * Introduced subtype constraints support (incomplete!). |
| 313 | * Fixed compiler. If the last member of the SEQUENCE is OPTIONAL |
| 314 | and absent in the encoding, and the type is extensible (...) or |
| 315 | EXTENSIBILITY IMPLIED flag is set, then the structure could not |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 316 | be correctly decoded. (Severity: high; Security impact: low). |
vlm | fa67ddc | 2004-06-03 03:38:44 +0000 | [diff] [blame] | 317 | * Compiler: fixed recursive ASN.1 types inclusion (Severity: low, |
| 318 | Security impact: none). |
| 319 | * Parser: IMPORTS/FROM fixes, now allowing multiple sections. |
vlm | 32d29a5 | 2004-10-26 10:44:18 +0000 | [diff] [blame] | 320 | * NEW PLATFORM: Compiled and tested on MacOS X (@ PowerPC). |
| 321 | No major portability issues experienced. |
vlm | fa67ddc | 2004-06-03 03:38:44 +0000 | [diff] [blame] | 322 | |
| 323 | 0.8.7: 2004-Apr-11 T-version-0-8-7 |
| 324 | |
| 325 | * Fixed SEQUENCE BER decoder: if the last member of the SEQUENCE is |
| 326 | OPTIONAL and absent in the encoding, RC_FAIL was returned instead |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 327 | of RC_OK (Severity: high; Security impact: low). |
vlm | fa67ddc | 2004-06-03 03:38:44 +0000 | [diff] [blame] | 328 | * Added test case to check the above problem. |
| 329 | * Added test case to check -fnative-integers mode. |
| 330 | |
| 331 | 0.8.6: 2004-Apr-03 T-version-0-8-6 |
| 332 | |
| 333 | * Fixed compiler output for embedded ASN.1 structures. |
| 334 | |
| 335 | 0.8.5: 2004-Mar-28 T-version-0-8-5 |
| 336 | |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 337 | * Fixed ber_tlv_length() computation problem (Severity: high, |
vlm | fa67ddc | 2004-06-03 03:38:44 +0000 | [diff] [blame] | 338 | Security impact: none). |
| 339 | Reported by <vss@high.net.ru> |
| 340 | |
| 341 | 0.8.4: 2004-Mar-22 |
| 342 | |
| 343 | * Removed RC_ITAG enumeration element from BER decoder. |
| 344 | This return code did not have much practical value. |
| 345 | |
| 346 | 0.8.3: 2004-Mar-14 T-version-0-8-3 |
| 347 | |
| 348 | * Fixed SET::BER decoder: restart after reaching a buffer boundary |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 349 | weas broken (Severity: high; Security impact: low). |
vlm | fa67ddc | 2004-06-03 03:38:44 +0000 | [diff] [blame] | 350 | * Fixed OCTET STRING::BER decoder: restart after reaching a buffer |
vlm | 82abba8 | 2005-04-25 19:38:21 +0000 | [diff] [blame] | 351 | boundary was broken (Severity: high; Security impact: low). |
vlm | fa67ddc | 2004-06-03 03:38:44 +0000 | [diff] [blame] | 352 | Reported by <vss@high.net.ru> |
| 353 | * Added test cases to check decoders restartability. |
| 354 | * Slightly more general INTEGER2long decoder. |
| 355 | * Allowed nested /* C-type */ comments, as per X.680:2002. |
| 356 | |
| 357 | 0.8.2: 2004-Mar-01 T-version-0-8-2 |
| 358 | |
| 359 | * Fixed SEQUENCE BER decoder: an OPTIONAL element was required, where |
| 360 | should not have been (Severity: major; Security impact: low). |
| 361 | * Fixed print_struct pointer inheritance. |
| 362 | * Added -fno-c99 and -funnamed-unions |
| 363 | |
| 364 | 0.8.1: 2004-Feb-22 |
| 365 | |
| 366 | * -R switch to asn1c: Omit support code, compile only the tables. |
| 367 | * Introduced NativeInteger pseudotype. |
| 368 | * Corrected the informal print_struct()'s output format. |
| 369 | |
| 370 | 0.8.0: 2004-Feb-03 T-version-0-8-0 |
| 371 | |
| 372 | * Some documentation is created (a .pdf and a short manual page). |
| 373 | * Last touches to the code. |
| 374 | |
| 375 | 0.7.9: 2004-Feb-01 T-version-0-7-9 |
| 376 | |
| 377 | * Human readable printing support. |
| 378 | * Support for implicit (standard) constraints. |
| 379 | |
| 380 | 0.7.8: 2004-Jan-31 |
| 381 | |
| 382 | * SET now rejects duplicate fields in the data stream. |
| 383 | |
| 384 | 0.7.7: 2004-Jan-25 |
| 385 | |
| 386 | * Added types: GeneralizedTime and UTCTime. |
| 387 | |
| 388 | 0.7.6: 2004-Jan-24 T-version-0-7-6 |
| 389 | |
| 390 | * DER encoding of a SET OF now involves dynamic sorting. |
| 391 | |
| 392 | 0.7.5: 2004-Jan-24 T-version-0-7-5 |
| 393 | |
| 394 | * DER encoding of a SET with untagged CHOICE |
| 395 | now involves dynamic sorting. |
| 396 | |
| 397 | 0.7.0: 2004-Jan-19 T-version-0-7-0 |
| 398 | |
| 399 | * A bunch of DER encoders is implemented. |
| 400 | |
| 401 | 0.6.6: 2004-Jan-11 |
| 402 | |
| 403 | * Implemented CHOICE decoder. |
| 404 | * Implemented destructors support. |
| 405 | |
| 406 | 0.6.5: 2004-Jan-03 |
| 407 | |
| 408 | * Implemented SET decoder. |
| 409 | * Implemented SET OF and SEQUENCE OF decoders. |
| 410 | |
| 411 | 0.6.4: 2003-Dec-31 |
| 412 | |
| 413 | * Implemented BOOLEAN, NULL, ENUMERATED decoders. |
| 414 | * Implemented OCTET STRING decoder. |
| 415 | * Implemented BIT STRING decoder. |
| 416 | |
| 417 | 0.6: 2003-Dec-30 |
| 418 | |
| 419 | * First decoding of a BER-encoded structure! |
| 420 | |
| 421 | 0.5: 2003-Dec-28 |
| 422 | |
| 423 | * Framework and most of the compiler backbone coding done. |
| 424 | |
| 425 | 0.1: 2003-Nov-28 |
| 426 | |
| 427 | * Programming started. |
vlm | 5cb31d5 | 2004-10-05 06:39:35 +0000 | [diff] [blame] | 428 | |
| 429 | === Bug importance disclosure terms === |
| 430 | |
| 431 | SEVERITY. |
| 432 | This term applies to the frequence the particular construct is used |
| 433 | in the real world. The higher the frequency, the more chances of triggering |
| 434 | this bug. |
| 435 | low: The ASN.1 specifications which could trigger |
| 436 | this kind of bug are not widespread. |
| 437 | medium: The particular ASN.1 construct is used quite often, |
| 438 | so the chance of triggering an error is considerable. |
| 439 | high: This fix is considered urgent, or the particular ASN.1 |
| 440 | construct triggering this bug is in wide use. |
| 441 | |
| 442 | SECURITY IMPACT. |
| 443 | This term applies to the amount of potential damage a bug exploitation |
| 444 | could cause. |
| 445 | low: The local exploitation is unlikely; the remote exploitation |
| 446 | is impossible. |
| 447 | medium: The remote exploitation is possible when a particular ASN.1 |
| 448 | construct is being used. If possible, only hard failure, spin |
| 449 | or memory leak are the possible outcome: no shellcode |
| 450 | injection could possibly be carried by the attack. |
| 451 | high: The remote shellcode injection is possible, or the bug is |
| 452 | otherwise remotely exploitable for most specifications. |
| 453 | |