[asterisk-dev] [Code Review] Randomize IAX2 encryption padding

David Vossel dvossel at digium.com
Fri Mar 13 11:58:28 CDT 2009


-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
http://reviewboard.digium.com/r/193/
-----------------------------------------------------------

(Updated 2009-03-13 11:58:28.590605)


Review request for Asterisk Developers and Russell Bryant.


Changes
-------

the padding is now randomized every time the encryption key is built, which means it will be re-randomized during keyrotation. 


Summary
-------

The 16-32 byte random padding at the beginning of an encrypted IAX2 frame turns out to not be all that random at all.  This patch calls ast_random to fill the padding buffer with random data.  The padding is randomized at the beginning of every encrypted call and for every encrypted retransmit frame.


Diffs (updated)
-----

  /trunk/channels/chan_iax2.c 181963 

Diff: http://reviewboard.digium.com/r/193/diff


Testing
-------

ran an encrypted call, everything worked as expected. 


Thanks,

David




More information about the asterisk-dev mailing list