[asterisk-bugs] [JIRA] (ASTERISK-24712) xmpp: starttls problem causes connection spew
Friendly Automation (JIRA)
noreply at issues.asterisk.org
Fri Mar 24 09:15:10 CDT 2017
[ https://issues.asterisk.org/jira/browse/ASTERISK-24712?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=236106#comment-236106 ]
Friendly Automation commented on ASTERISK-24712:
------------------------------------------------
Change 5301 merged by zuul:
res_xmpp: Try to provide useful errors messages from OpenSSL
[https://gerrit.asterisk.org/5301|https://gerrit.asterisk.org/5301]
> xmpp: starttls problem causes connection spew
> ---------------------------------------------
>
> Key: ASTERISK-24712
> URL: https://issues.asterisk.org/jira/browse/ASTERISK-24712
> Project: Asterisk
> Issue Type: Bug
> Security Level: None
> Components: Resources/res_xmpp
> Affects Versions: 13.0.2, 13.1.0
> Environment: Linux with not-quite-correctly-installed openSSL
> Reporter: Matthias Urlichs
> Assignee: Sean Bright
> Severity: Minor
>
> Three issues here.
> (A) ERROR[27439]: res_xmpp.c:2556 in xmpp_client_requested_tls: TLS connection for client 'asterisk' cannot be established. OpenSSL initialization failed.
> … so what exactly is the problem with initializing OpenSSL? do we get an error code or anything?
> (B) Asterisk now immediately retries the connection attempt. Which is extremely anti-social. There should *always* be at least a linear, or even an exponential, back-off. This goes on indefinitely, except …
> (C) ERROR[27439]: res_xmpp.c:3334 in xmpp_action_hook: xmpp_action_hook was called without a packet. This happens because the connection is closed by the server (you're flooding it, after all). Again, there is no back-off here, Asterisk immediately retries. And retries. And retries. By the time somebody notices the problem, the server has banned our IP.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
More information about the asterisk-bugs
mailing list