[asterisk-bugs] [Asterisk 0005413]: [patch] [branch] Secure RTP (SRTP)
Asterisk Bug Tracker
noreply at bugs.digium.com
Tue Mar 9 22:25:11 CST 2010
A NOTE has been added to this issue.
======================================================================
https://issues.asterisk.org/view.php?id=5413
======================================================================
Reported By: mikma
Assigned To:
======================================================================
Project: Asterisk
Issue ID: 5413
Category: Channels/chan_sip/NewFeature
Reproducibility: N/A
Severity: feature
Priority: normal
Status: confirmed
Target Version: 1.8
Asterisk Version: SVN
JIRA:
Regression: No
Reviewboard Link:
SVN Branch (only for SVN checkouts, not tarball releases): N/A
SVN Revision (number only!): 48491
Request Review:
======================================================================
Date Submitted: 2005-10-09 10:36 CDT
Last Modified: 2010-03-09 22:24 CST
======================================================================
Summary: [patch] [branch] Secure RTP (SRTP)
Description:
This patch adds initial support for secure RTP using libsrt[1]. It can
be used in for example an implementation of the sdecriptions draft[2].
[1] http://srtp.sourceforge.net/srtp.html
[2]
http://www.ietf.org/internet-drafts/draft-ietf-mmusic-sdescriptions-12.txt
Update (17/12/2008): Branch against trunk is located here
http://svn.digium.com/svn/asterisk/team/group/srtp
======================================================================
Relationships ID Summary
----------------------------------------------------------------------
related to 0010129 Module SRTP can't loaded
======================================================================
----------------------------------------------------------------------
(0119200) hemanshurpatel (reporter) - 2010-03-09 22:24
https://issues.asterisk.org/view.php?id=5413#c119200
----------------------------------------------------------------------
thanks twilson for replying....
lolz...someone is maintaining at least....
Well when i use both my grandstream video phones with kamailio for getting
working log of sip message flow for making it work with asterisk.... i got
that kamailio was forwarding both crypto message, for audio as well as for
video.... while in our case asterisk forwards only one crypto message....
and so my other grandstream phone was discarding the message as it is asked
to go fot SRTP forcefully and it was receving a SDP packet where protocol
was SAVP but still there was no a=crypto tag after video's h264 tag....
i applied modifications and make asterisk also proxying the sip message
even in case of SRTP, and it works great, but when i asked astersik to
handle the SRTP data, after adding the hacks so that call was established
by adding one more crypto tag for video as well...
but in this case i am getting audio only....for first few frames i am
getting video as well and then suddenly it started giving message as
below:
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
[Mar 10 09:51:47] DEBUG[3371]: res_srtp.c:397 res_srtp_unprotect: SRTP
unprotect: authentication failure
now how can authentication work for first say 2 to 6 frames(just
estimate...), and then authentication failure....
Any idea about it?
Issue History
Date Modified Username Field Change
======================================================================
2010-03-09 22:24 hemanshurpatel Note Added: 0119200
======================================================================
More information about the asterisk-bugs
mailing list