[asterisk-commits] file: trunk r431386 - in /trunk: ./ res/res_rtp_asterisk.c

SVN commits to the Asterisk project asterisk-commits at lists.digium.com
Thu Jan 29 06:10:00 CST 2015


Author: file
Date: Thu Jan 29 06:09:58 2015
New Revision: 431386

URL: http://svnview.digium.com/svn/asterisk?view=rev&rev=431386
Log:
res_rtp_asterisk: Fix DTLS when used with OpenSSL 1.0.1k

A recent security fix for OpenSSL broke DTLS negotiation for many
applications. This was caused by read ahead not being enabled when it
should be. While a commit has gone into OpenSSL to force read ahead
on for DTLS it may take some time for a release to be made and the
change to be present in distributions (if at all). As enabling read
ahead is a simple one line change this commit does that and fixes
the issue.

ASTERISK-24711 #close
Reported by: Jared Biel
........

Merged revisions 431384 from http://svn.asterisk.org/svn/asterisk/branches/11
........

Merged revisions 431385 from http://svn.asterisk.org/svn/asterisk/branches/13

Modified:
    trunk/   (props changed)
    trunk/res/res_rtp_asterisk.c

Propchange: trunk/
------------------------------------------------------------------------------
Binary property 'branch-13-merged' - no diff available.

Modified: trunk/res/res_rtp_asterisk.c
URL: http://svnview.digium.com/svn/asterisk/trunk/res/res_rtp_asterisk.c?view=diff&rev=431386&r1=431385&r2=431386
==============================================================================
--- trunk/res/res_rtp_asterisk.c (original)
+++ trunk/res/res_rtp_asterisk.c Thu Jan 29 06:09:58 2015
@@ -1280,6 +1280,8 @@
 	if (!(rtp->ssl_ctx = SSL_CTX_new(DTLSv1_method()))) {
 		return -1;
 	}
+
+	SSL_CTX_set_read_ahead(rtp->ssl_ctx, 1);
 
 	rtp->dtls_verify = dtls_cfg->verify;
 




More information about the asterisk-commits mailing list