Comments (6)
There isn't much detail in the asterisk bug report on this. The one comment about TLS and 3DES is a bit confusing since libsrtp supports neither of these. Perhaps the problem is in Asterisk.
Given the limited information in the bug report, this looks like the roll-over counter (ROC) logic isn't working. If the ROC were broken in libsrtp, it's difficult to imagine that nobody else would have experienced the same problem.
from libsrtp.
@jfigus this issue depens on the client implementation of srtp.
E.g. all nokia s60 devices have this issue and it is 100% reproducible with this devices.
Some nokia s40 phones with do not have this issue, but newer nokia phones do also have.
I saw this issue on some other devices too, but do not know the exact device model at the moment.
from libsrtp.
Just as an FYI, my test suite using libsrtp has one test that does 1 million encode/decodes on the same stream, which obviously causes the sequence number to roll over around 16 times - This always succeeds... Implies the issue is not in libsrtp. Maybe the nokia phones are doing something nonstandard (but not forbidden by RTP) like changing the ssrc when the sequence number rolls over - I've seen similar oddities in the past, and that would certainly cause decryption to break.
from libsrtp.
Alexander Traud (@traud) did some patches to fix this issue (see: https://issues.asterisk.org/jira/browse/ASTERISK-16898).
At the moment I did not had the time to test the patches, but I will report the result after some tests.
from libsrtp.
I have tested the patch with Nokia E66. I had to modify the recognition string in the asterisk patch since the E66 uses "E66-1 RM-343 510.21.009".
But the patch does work and fixes the issue.
from libsrtp.
Closing this since there are no plans to patch libsrtp.
from libsrtp.
Related Issues (20)
- Performance issue with OpennSSL 3 and libsrtp HOT 9
- Build fails on macOS -Wshorten-64-to-32 HOT 2
- How to compile libsrtp2.3.0 with AES-GCM cipher group support ? HOT 1
- Cross-compile libsrtp to Windows (64-bit) is failing given that OpenSSL can't be found HOT 1
- When is safe to use srtp_remove_stream? HOT 2
- Bad link in README.md HOT 1
- Release Version 3.0.0 HOT 3
- Use consistent types through out code base HOT 1
- Review public API
- libsrtp + openssl + certificates HOT 2
- remove NO_64BIT_MATH code
- Cygwin compile broken HOT 3
- update config options for crypto backend
- ABI break in 2.6.0 HOT 2
- meson ci build failing with mbedtls on macos HOT 2
- meson ci builds failing for openssl on macos HOT 4
- Return codes when calling unprotect HOT 7
- Failure to update key after mki failure HOT 3
- consider merging the gcm encrypt and get tag functions of cipher api
- Authentication error return by srtp_unprotect for AES CM 256 HMAC SHA1 80 HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from libsrtp.