[asterisk-bugs] [JIRA] (ASTERISK-23216) Crash while Forwarding from TLS extension with CHANNEL args secure_bridge_media and secure_bridge_signaling

Rusty Newton (JIRA) noreply at issues.asterisk.org
Wed Jan 29 19:23:05 CST 2014 

Rusty Newton created ASTERISK-23216:
---------------------------------------

             Summary: Crash while Forwarding from TLS extension with CHANNEL args secure_bridge_media and secure_bridge_signaling
                 Key: ASTERISK-23216
                 URL: https://issues.asterisk.org/jira/browse/ASTERISK-23216
             Project: Asterisk
          Issue Type: Bug
      Security Level: None
          Components: Resources/res_srtp
    Affects Versions: 1.8.14.0, 1.8.24.0, 11.2.2, 11.5.0, 11.6.0, 11.7.0
         Environment: CentOS release 5.8 (Final)  kernel 2.6.18-308.24.1.el5 64bit, libsrtp 1.4.2(compiled manually)  with 1.8.14 with and without patch (https://issues.asterisk.org/jira/browse/ASTERISK-18345)
Debian GNU/Linux 7 (wheezy) kenrel 3.2.0-4-amd64 (3.2.51-1 64bit), with above patch on 11.5.0 and without patch on 1.8.24.0 11.7.0-rc1 11.6.0
with libsrtp 1.4.4 (from debian repo), self compiled 1.4.2, as well as 1.4.4 self compiled and self compiled with patch ( http://srtp.cvs.sourceforge.net/viewvc/srtp/srtp/crypto/replay/rdb.c?r1=1.4&r2=1.5) as mentioned on https://issues.asterisk.org/jira/browse/ASTERISK-16665

2 phones were tested snom 710 and fanvil C62 

            Reporter: Shlomi Gutman


Steps to reproduce:
1)Asterisk with self signed certificates or GoDaddy certificates
2)Extension connected with TLS transport (behind NAT in our case)
3)Route incoming call to that extension, while forward call from it without answering (302 - FORWARD)
4)Crash

I know that this bug may be related to srtp, but as we see it was not developed and maintained for a long time and as asterisk srtp based on itץ
I think at least it should crash the call only, but not whole asterisk.


--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.asterisk.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the asterisk-bugs mailing list