[asterisk-bugs] [Asterisk 0018674]: [patch] Unable to choose which SRTP suite to offer

Asterisk Bug Tracker noreply at bugs.digium.com
Tue Jan 25 14:35:16 CST 2011


A NOTE has been added to this issue. 
====================================================================== 
https://issues.asterisk.org/view.php?id=18674 
====================================================================== 
Reported By:                bbeers
Assigned To:                
====================================================================== 
Project:                    Asterisk
Issue ID:                   18674
Category:                   Channels/chan_sip/SRTP
Reproducibility:            always
Severity:                   minor
Priority:                   normal
Status:                     new
Asterisk Version:           SVN 
JIRA:                        
Regression:                 No 
Reviewboard Link:            
SVN Branch (only for SVN checkouts, not tarball releases):  trunk 
SVN Revision (number only!): 303637 
Request Review:              
====================================================================== 
Date Submitted:             2011-01-25 09:56 CST
Last Modified:              2011-01-25 14:35 CST
====================================================================== 
Summary:                    [patch] Unable to choose which SRTP suite to offer
Description: 
Setting encryption=yes in sip.conf will cause asterisk to
 generate a line in SIP INVITE SDP:

 a=crypto: AES_CM_128_HMAC_SHA1_80 ...

There is no way to specify that asterisk should offer
 AES_CM_128_HMAC_SHA1_32 instead of
 AES_CM_128_HMAC_SHA1_80.

====================================================================== 

---------------------------------------------------------------------- 
 (0131045) bbeers (reporter) - 2011-01-25 14:35
 https://issues.asterisk.org/view.php?id=18674#c131045 
---------------------------------------------------------------------- 
With my initial patch, a user can ignore the new parameter and get exactly
 the same behavior as before by using only encryption=[yes|no].  
I thought that might help gain acceptance.  
But, going forward, I can see the 'encyption' param (which maps directly
to
 SIP_PAGE2_USE_SRTP) becoming superfluous, since the internal flag might
 be easily derived from the value/presence of the new parameter,
 'encryption_suite', and any others which may become available as new
 capabilities are added. 

Issue History 
Date Modified    Username       Field                    Change               
====================================================================== 
2011-01-25 14:35 bbeers         Note Added: 0131045                          
======================================================================




More information about the asterisk-bugs mailing list