[Freeswitch-users] Crypto negotiated, but FS thinks otherwise and drops outbound calls.

Keith Laaks keith at laaks.com
Mon Jun 29 10:32:06 UTC 2020


> Hi All,
> 
> I am running: FreeSWITCH Version 1.10.3-release-15-129de34d84~64bit (-release-15-129de34d84 64bit) on Debian GNU/Linux 10 (buster)
> 
> I am bridging an incoming call to a destination over SIP TLS, using SRTP and ICE-lite. rtcp_mux is disabled. 
> 
> I have to use ‘mandatory’ in the export below (before the bridge), as this specific destination fails the call if the SDP includes the unencrypted optioN (i.e. m=audio 2354 RTP/AVP 18 8 98)
> <action application="export" data=“rtp_secure_media=mandatory:AES_CM_128_HMAC_SHA1_32"/>
> 
> I am having a problem in that FS drops the call as soon as the destination answers.
> 
> In the debug traces I can see that, although Secure RTP is indeed being negotiated (Activating audio Secure RTP RECV) FS somehow thinks otherwise (switch_core_media.c:5665 Crypto not negotiated but required.)
> 
> 2020-06-26 18:20:40.208635 [INFO] switch_core_media.c:8843 Activating Audio ICE
> 2020-06-26 18:20:40.208635 [NOTICE] switch_rtp.c:4915 Activating RTP audio ICE: ZyVg:nzPxIzWUEUYj6GjG 11.22.33.44:50004
> 2020-06-26 18:20:40.208635 [DEBUG] switch_core_media.c:8975 sofia/teams/27101234567 Set 2833 dtmf send payload to 101
> 2020-06-26 18:20:40.208635 [DEBUG] switch_core_media.c:8982 sofia/teams/27101234567 Set 2833 dtmf receive payload to 101
> 2020-06-26 18:20:40.208635 [DEBUG] switch_core_media.c:9005 sofia/teams/27101234567 Set rtp dtmf delay to 40
> 2020-06-26 18:20:40.208635 [DEBUG] switch_core_media.c:1501 LIFETIME found in |2^31, base 2 exp 31
> 2020-06-26 18:20:40.208635 [NOTICE] switch_core_media.c:1524 Skipping MKI due to empty index
> 2020-06-26 18:20:40.208635 [INFO] switch_rtp.c:4217 Activating audio Secure RTP SEND
> 2020-06-26 18:20:40.208635 [INFO] switch_rtp.c:4195 Activating audio Secure RTP RECV
> 2020-06-26 18:20:40.208635 [DEBUG] switch_core_sqldb.c:2836 Secure Type: srtp:sdes:AES_CM_128_HMAC_SHA1_32
> 2020-06-26 18:20:40.208635 [DEBUG] switch_core_sqldb.c:2836 Secure Type: srtp:sdes:AES_CM_128_HMAC_SHA1_32
> 2020-06-26 18:20:40.208635 [NOTICE] sofia.c:8503 Channel [sofia/teams/27101234567] has been answered
> 2020-06-26 18:20:40.208635 [DEBUG] switch_channel.c:3865 (sofia/teams/27101234567) Callstate Change RINGING -> ACTIVE
> 2020-06-26 18:20:40.228625 [DEBUG] switch_core_media.c:5592 Audio Codec Compare [G729:18:8000:20:8000:1]/[opus:116:48000:20:0:1]
> 2020-06-26 18:20:40.228625 [DEBUG] switch_core_media.c:5592 Audio Codec Compare [G729:18:8000:20:8000:1]/[PCMA:8:8000:20:64000:1]
> 2020-06-26 18:20:40.228625 [DEBUG] switch_core_media.c:5592 Audio Codec Compare [G729:18:8000:20:8000:1]/[PCMU:0:8000:20:64000:1]
> 2020-06-26 18:20:40.228625 [DEBUG] switch_core_media.c:5592 Audio Codec Compare [PCMA:8:8000:20:64000:1]/[opus:116:48000:20:0:1]
> 2020-06-26 18:20:40.228625 [DEBUG] switch_core_media.c:5592 Audio Codec Compare [PCMA:8:8000:20:64000:1]/[PCMA:8:8000:20:64000:1]
> 2020-06-26 18:20:40.228625 [DEBUG] switch_core_media.c:5647 Audio Codec Compare [PCMA:8:8000:20:64000:1] ++++ is saved as a match
> 2020-06-26 18:20:40.228625 [DEBUG] switch_core_media.c:5592 Audio Codec Compare [PCMA:8:8000:20:64000:1]/[PCMU:0:8000:20:64000:1]
> 2020-06-26 18:20:40.228625 [DEBUG] switch_core_media.c:5508 Set telephone-event payload to 98 at 8000
> 2020-06-26 18:20:40.228625 [WARNING] switch_core_media.c:5665 Crypto not negotiated but required.
> 2020-06-26 18:20:40.228625 [DEBUG] switch_core_media.c:5909 sofia/vox/0831233210 at 10.10.1.1 <mailto:sofia/vox/0831233210 at 10.10.1.1> Set 2833 dtmf send payload to 98 recv payload to 98
> 2020-06-26 18:20:40.228625 [NOTICE] switch_channel.c:3908 Hangup sofia/vox/0831233210 at 10.10.1.1 <mailto:sofia/vox/0831233210 at 10.10.1.1> [CS_EXECUTE] [INCOMPATIBLE_DESTINATION]
> 
> Am I missing something here? 
> 
> Thanks
> 
> Keith
> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20200629/afd172a3/attachment-0001.html>


More information about the FreeSWITCH-users mailing list