diff options
author | Jacek Konieczny <jkonieczny@eggsoft.pl> | 2016-03-25 16:59:05 +0100 |
---|---|---|
committer | Joshua Colp <jcolp@digium.com> | 2016-03-29 09:29:45 -0500 |
commit | 0cfab30b284286b74a4c58b040364b246a9680d7 (patch) | |
tree | 90ca535e3c0dd2b05d31810ae8ebf8181a88b526 /main/sdp_srtp.c | |
parent | 36d016b1abb6707bfde821ac2407933a447f3d13 (diff) |
res_rtp_asterisk: Use separate SRTP session for RTCP with DTLS
Asterisk uses separate UDP ports for RTP and RTCP traffic and RFC 5764
explicitly states:
There MUST be a separate DTLS-SRTP session for each distinct pair of
source and destination ports used by a media session
This means RTP keying material cannot be used for DTLS RTCP, which was
the reason why RTCP encryption would fail.
ASTERISK-25642
Change-Id: I7e8779d8b63e371088081bb113131361b2847e3a
Diffstat (limited to 'main/sdp_srtp.c')
-rw-r--r-- | main/sdp_srtp.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/main/sdp_srtp.c b/main/sdp_srtp.c index 2c49fd240..d77d4630d 100644 --- a/main/sdp_srtp.c +++ b/main/sdp_srtp.c @@ -183,7 +183,7 @@ static int crypto_activate(struct ast_sdp_crypto *p, int suite_val, unsigned cha } /* Add the SRTP policies */ - if (ast_rtp_instance_add_srtp_policy(rtp, remote_policy, local_policy)) { + if (ast_rtp_instance_add_srtp_policy(rtp, remote_policy, local_policy, 0)) { ast_log(LOG_WARNING, "Could not set SRTP policies\n"); goto err; } |