[asterisk-bugs] [JIRA] (ASTERISK-26130) [patch] WebRTC: Should use latest DTLS version.
Alexander Traud (JIRA)
noreply at issues.asterisk.org
Tue Jun 21 07:10:56 CDT 2016
[ https://issues.asterisk.org/jira/browse/ASTERISK-26130?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Alexander Traud updated ASTERISK-26130:
---------------------------------------
Comment: was deleted
(was: Thanks for creating a report! The issue has entered the triage process. That means the issue will wait in this status until a Bug Marshal has an opportunity to review the issue. Once the issue has been reviewed you will receive comments regarding the next steps towards resolution.
A good first step is for you to review the [Asterisk Issue Guidelines|https://wiki.asterisk.org/wiki/display/AST/Asterisk+Issue+Guidelines] if you haven't already. The guidelines detail what is expected from an Asterisk issue report.
Then, if you are submitting a patch, please review the [Patch Contribution Process|https://wiki.asterisk.org/wiki/display/AST/Patch+Contribution+Process].)
> [patch] WebRTC: Should use latest DTLS version.
> -----------------------------------------------
>
> Key: ASTERISK-26130
> URL: https://issues.asterisk.org/jira/browse/ASTERISK-26130
> Project: Asterisk
> Issue Type: Bug
> Security Level: None
> Components: Resources/res_rtp_asterisk
> Affects Versions: 11.22.0, 13.9.1
> Reporter: Alexander Traud
> Severity: Minor
>
> Asterisk uses OpenSSL als crypto library. Currently for DTLS, the first version (based on TLS 1.1) is used -- always. DTLS 1.0 is used even if the installed OpenSSL supports newer DTLS versions. For example since OpenSSL 1.0.2 -- included in Ubuntu 16.04 LTS -- DTLS 1.2 is supported.
> DTLS 1.2 is used by Mozilla Firefox for WebRTC ([DTLS-SRTP|https://tools.ietf.org/html/rfc5764] via [SIP-over-Secure-WebSockets|https://tools.ietf.org/html/rfc7118]). Furthermore, DTLS 1.2 is required for AEAD-based cipher-suites like {{TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256}} and/or {{TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256}}.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
More information about the asterisk-bugs
mailing list