[Freeswitch-users] SRTP crypto selection

Joel Serrano joel at gogii.net
Sun Mar 25 16:07:36 UTC 2018


Not sure if this is related: https://freeswitch.org/jira/browse/FS-11052

On Sat, Mar 24, 2018 at 11:17 PM, Bipin Patel <bipin at xbipin.com> wrote:

> hi,
>
> i had reported this to zoiper team and they said they have talked to FS
> team about this and its related to crypto naming convention in the RFC
> standards and it should be fixed in FS so eagerly waiting for the patch
>
>
> Regards,
> Bipin
>
>
> ------------------------------
> -------- Original Message --------
> Subject: Re: [Freeswitch-users] SRTP crypto selection
> From: Bipin Patel <bipin at xbipin.com> <bipin at xbipin.com>
> To: FreeSWITCH Users Help <freeswitch-users at lists.freeswitch.org>
> <freeswitch-users at lists.freeswitch.org>
> Date: 3/16/2018, 7:56:08 PM
>
> HI,
>
> it seems many other dialers also send the crypto in a similar way so all
> cant be wrong i guess, should i file a bug request in FS?
>
>
> Regards,
> Bipin
>
>
> ------------------------------
> -------- Original Message --------
> Subject: Re: [Freeswitch-users] SRTP crypto selection
> From: Bipin Patel <bipin at xbipin.com> <bipin at xbipin.com>
> To: FreeSWITCH Users Help <freeswitch-users at lists.freeswitch.org>
> <freeswitch-users at lists.freeswitch.org>
> Date: 3/16/2018, 12:22:37 AM
>
> Hi,
>
> Thanks for that link but the other thing is the below line where zoiper
> sends a crypto that looks alike but the placement of characters is
> different so doesn't match so is zoiper doing it wrongly or it's a total
> different crypto that FS doesn't support
>
> switch_core_media.c:1479 looking for crypto suite
> [AES_CM_192_HMAC_SHA1_32] in [4 AES_192_CM_HMAC_SHA1_32
>
>
>
> On March 15, 2018 4:15:59 PM Jurijs Ivolga <jurijs.ivolga at gmail.com>
> <jurijs.ivolga at gmail.com> wrote:
>
>> Hi,
>>
>> Have you checked this:
>>
>> https://freeswitch.org/confluence/display/FREESWITCH/rtp_secure_media
>>
>> With kind regards,
>>
>> Jurijs
>>
>> On Thu, Mar 15, 2018 at 2:03 PM, Bipin Patel <bipin at xbipin.com> wrote:
>>
>>> hi,
>>>
>>> is it possible to force a selected crypto for SRTP as i cant seem to
>>> find a way to force a crypto to the user such that is phone uses that for
>>> media, secondly i see zoiper sends the below in SDP
>>>
>>> a=crypto:5 AES_256_CM_HMAC_SHA1_80 inline:854nJNIKSyhr0sJs+Ol+Qv2
>>> eSqC2gnydK8iVHUAXb4Xx7oW8iMM2jVi7R9xV6A==
>>> a=crypto:6 AES_256_CM_HMAC_SHA1_32 inline:854nJNIKSyhr0sJs+Ol+Qv2
>>> eSqC2gnydK8iVHUAXb4Xx7oW8iMM2jVi7R9xV6A==
>>> a=crypto:3 AES_192_CM_HMAC_SHA1_80 inline:854nJNIKSyhr0sJs+Ol+Qv2
>>> eSqC2gnydK8iVHUAXb4Xx7oW8iMM=
>>> a=crypto:4 AES_192_CM_HMAC_SHA1_32 inline:854nJNIKSyhr0sJs+Ol+Qv2
>>> eSqC2gnydK8iVHUAXb4Xx7oW8iMM=
>>> a=crypto:1 AES_CM_128_HMAC_SHA1_80 inline:854nJNIKSyhr0sJs+Ol+Qv2
>>> eSqC2gnydK8iVHUAX
>>> a=crypto:2 AES_CM_128_HMAC_SHA1_32 inline:854nJNIKSyhr0sJs+Ol+Qv2
>>> eSqC2gnydK8iVHUAX
>>>
>>> where as FS always uses the below only
>>>
>>> switch_core_media.c:1484 Found suite AES_CM_128_HMAC_SHA1_80
>>>
>>> and also i noticed FS and zoiper have some variations in crypto names
>>> such as
>>>
>>> switch_core_media.c:1479 looking for crypto suite
>>> [AES_CM_192_HMAC_SHA1_32] in [4 AES_192_CM_HMAC_SHA1_32
>>>
>>> and this never matches and never used at all (notice the placement of
>>> CM_192 in FS whereas zoiper has 192_CM)
>>>
>>>
>>> --
>>> Regards,
>>> Bipin
>>>
>>>
>>> ------------------------------
>>>
>>> ____________________________________________________________
>>> _____________
>>> Professional FreeSWITCH Consulting Services:
>>> consulting at freeswitch.org
>>> http://www.freeswitchsolutions.com
>>>
>>> Official FreeSWITCH Sites
>>> http://www.freeswitch.org
>>> http://confluence.freeswitch.org
>>> http://www.cluecon.com
>>>
>>> FreeSWITCH-users mailing list
>>> FreeSWITCH-users at lists.freeswitch.org
>>> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
>>> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
>>> http://www.freeswitch.org
>>>
>>
>> _________________________________________________________________________
>> Professional FreeSWITCH Consulting Services:
>> consulting at freeswitch.org
>> http://www.freeswitchsolutions.com
>>
>> Official FreeSWITCH Sites
>> http://www.freeswitch.org
>> http://confluence.freeswitch.org
>> http://www.cluecon.com
>>
>> FreeSWITCH-users mailing list
>> FreeSWITCH-users at lists.freeswitch.org
>> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
>> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
>> http://www.freeswitch.org
>
>
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:consulting at freeswitch.orghttp://www.freeswitchsolutions.com
>
> Official FreeSWITCH Siteshttp://www.freeswitch.orghttp://confluence.freeswitch.orghttp://www.cluecon.com
>
> FreeSWITCH-users mailing listFreeSWITCH-users at lists.freeswitch.orghttp://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-usershttp://www.freeswitch.org
>
>
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:consulting at freeswitch.orghttp://www.freeswitchsolutions.com
>
> Official FreeSWITCH Siteshttp://www.freeswitch.orghttp://confluence.freeswitch.orghttp://www.cluecon.com
>
> FreeSWITCH-users mailing listFreeSWITCH-users at lists.freeswitch.orghttp://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-usershttp://www.freeswitch.org
>
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:
> consulting at freeswitch.org
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20180325/fc8c578f/attachment-0001.html>


More information about the FreeSWITCH-users mailing list