-
Notifications
You must be signed in to change notification settings - Fork 2.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
SDES key missmatch #2726
Comments
Yeah it looks like we have https://github.com/meetecho/janus-gateway/blob/master/plugins/janus_sip.c#L6111 so that would need to be fixed. Do you have a SIPp script that we can use to replicate the issue, to verify it works if/when we come up with a fix? |
Hm, I do not know how to do it with sipp. But you can reproduce this using a SIP comand line tool which has control over the encryption types used for the SRTP stream. Add the debian repo depending on your distro: https://docs-new.sipthor.net/w/debian_package_repositories/ sudo apt-get install sipclients3 Force encryption to SDES: sip-settings3 -a set bonjour rtp.encryption.key_negotiation=sdes_optional Then start a SIP audio session to somewhere where Janus plugin listens: sip-audio-session3 -s username@janus_ip You will see the SIP offer and answer in the console. Or I can do the testing if I know where your listen? |
I'll work locally so my server will not be available externally. I'm not familiar with that command-line client, tomorrow I'll check if it's available on Fedora too. |
Something unrelated or not, perhaps. If no SDES cyphers are comonly agreed (the 200 OK from sofia has no crypto lines) what we experience is that calling SIP end-point ca hear the web browser mic, but the web browser does not hear the SIP end-point. Perhaps the browser always expects to have an encrypted stream? Any idea what the bahviour should be without SDES? |
The SRTP on the WebRTC side has nothing to do with the one on the SIP side, they're separate contexts. |
@adigeo please test the PR above. |
I have tested this and I confirm that it works. Many thanks! |
SDP offer from outside (Blink SIP client)
SDP answer (Janus/Sofia plugin)
The crypto line should match the offer (Notice the “1" instead of correct 3) the line should read:
a=crypto:3 AES_CM_128...
The text was updated successfully, but these errors were encountered: