sr-dev November 2009

sr-dev@lists.kamailio.org

30 participants
177 discussions

[ openser-Bugs-2901127 ] Kamctl cannot add user to dbtext

by SourceForge.net

Bugs item #2901127, was opened at 2009-11-20 08:14 Message generated for change (Tracker Item Submitted) made by ttrask01 You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=743020&aid=2901127&group_… Please note that this message will contain a full copy of the comment thread, including the initial issue submission, for this request, not just the latest update. Category: None Group: ver 1.5.x Status: Open Resolution: None Priority: 5 Private: No Submitted By: Ted Trask (ttrask01) Assigned to: Nobody/Anonymous (nobody) Summary: Kamctl cannot add user to dbtext Initial Comment: Running kamailio 1.5.2 on alpine linux. Same problem applies to 1.5.3. "kamctl add user password" fails with result: email_address cannot be empty or null \E[37;31mERROR: introducing the new user 'user' to the database failed The kamctl script does not accept an email-address on the command line, showing usage (too many command-line parameters). The problem is in the database definition. Here is the 'subscriber' definition for the various DB types: scripts/db_berkeley/kamailio/subscriber:id(int) username(str) domain(str) password(str) email_address(str) ha1(str) ha1b(str) rpid(str) scripts/postgres/auth_db-create.sql: email_address VARCHAR(64) DEFAULT '' NOT NULL, scripts/mysql/auth_db-create.sql: email_address VARCHAR(64) DEFAULT '' NOT NULL, scripts/oracle/auth_db-create.sql: email_address VARCHAR2(64) DEFAULT '', scripts/dbtext/kamailio/subscriber:id(int,auto) username(string) domain(string) password(string) email_address(string) ha1(string) ha1b(string) rpid(string,null) Ok, all of the databases have the email_address column, most saying non-null and default to "". The problem comes because kamctl doesn't take a parameter for email_address and tries to set it to null. For postgres it works just fine, because there's a default defined. Not true for dbtext. It says non-null, but doesn't define a default. Further, it appears the dbtext does not differentiate between "" and null. So, if we remove the non-null restriction, it will allow it to be set to null, which is actually "", which is what the default should be! So, to make this as clear as mud, the one line in scripts/dbtext/kamailio/subscriber (/usr/share/kamailio/dbtext/kamailio/subscriber on my device) should be changed from: id(int,auto) username(string) domain(string) password(string) email_address(string) ha1(string) ha1b(string) rpid(string,null) to (adding the word 'null' in the email_address column definition): id(int,auto) username(string) domain(string) password(string) email_address(string,null) ha1(string) ha1b(string) rpid(string,null) And that should fix the problem. Ted Trask ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=743020&aid=2901127&group_…

15 years

CVS:commitlog: rtpproxy/freebsd rtpproxy.in rtpproxy/scripts rtpproxy.in.freebsd

by Maxim Sobolev

sobomax 2009/11/20 12:23:20 CET SER CVS Repository Added files: scripts rtpproxy.in.freebsd Removed files: freebsd rtpproxy.in Log: Retire freebsd subdir too, moving startup script to scripts. Revision Changes Path 1.4 +0 -31 rtpproxy/freebsd/rtpproxy.in (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/freebsd/rtpproxy.in?… 1.1 +31 -0 rtpproxy/scripts/rtpproxy.in.freebsd (new) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/scripts/rtpproxy.in.…

15 years

CVS:commitlog: rtpproxy/debian README.Debian changelog compat conffiles.ex control copyright cron.d.ex dirs docs manpage.1.ex manpage.sgml.ex manpage.xml.ex menu.ex postinst.ex postrm.ex preinst.ex prerm.ex rtpproxy-default.ex rtpproxy.doc-base.EX ...

by Maxim Sobolev

sobomax 2009/11/20 12:20:04 CET SER CVS Repository Added files: scripts rtpproxy.init.debian Removed files: debian README.Debian changelog compat conffiles.ex control copyright cron.d.ex dirs docs manpage.1.ex manpage.sgml.ex manpage.xml.ex menu.ex postinst.ex postrm.ex preinst.ex prerm.ex rtpproxy-default.ex rtpproxy.doc-base.EX rtpproxy.init rules watch.ex Log: Remove debian package stuff out of the way. Only keep rtpproxy.init since I often find it useful to have startup script in the package when I need to install latest version from source. Revision Changes Path 1.2 +0 -6 rtpproxy/debian/README.Debian (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/README.Debian… 1.3 +0 -12 rtpproxy/debian/changelog (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/changelog?rev… 1.2 +0 -1 rtpproxy/debian/compat (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/compat?rev=1.… 1.2 +0 -7 rtpproxy/debian/conffiles.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/conffiles.ex?… 1.3 +0 -23 rtpproxy/debian/control (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/control?rev=1… 1.2 +0 -27 rtpproxy/debian/copyright (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/copyright?rev… 1.2 +0 -4 rtpproxy/debian/cron.d.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/cron.d.ex?rev… 1.2 +0 -2 rtpproxy/debian/dirs (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/dirs?rev=1.1&… 1.2 +0 -2 rtpproxy/debian/docs (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/docs?rev=1.1&… 1.2 +0 -59 rtpproxy/debian/manpage.1.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/manpage.1.ex?… 1.2 +0 -156 rtpproxy/debian/manpage.sgml.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/manpage.sgml.… 1.2 +0 -148 rtpproxy/debian/manpage.xml.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/manpage.xml.e… 1.2 +0 -2 rtpproxy/debian/menu.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/menu.ex?rev=1… 1.2 +0 -42 rtpproxy/debian/postinst.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/postinst.ex?r… 1.2 +0 -38 rtpproxy/debian/postrm.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/postrm.ex?rev… 1.2 +0 -38 rtpproxy/debian/preinst.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/preinst.ex?re… 1.2 +0 -38 rtpproxy/debian/prerm.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/prerm.ex?rev=… 1.2 +0 -10 rtpproxy/debian/rtpproxy-default.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/rtpproxy-defa… 1.2 +0 -22 rtpproxy/debian/rtpproxy.doc-base.EX (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/rtpproxy.doc-… 1.5 +0 -75 rtpproxy/debian/rtpproxy.init (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/rtpproxy.init… 1.2 +0 -107 rtpproxy/debian/rules (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/rules?rev=1.1… 1.2 +0 -17 rtpproxy/debian/watch.ex (dead) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/debian/watch.ex?rev=… 1.1 +75 -0 rtpproxy/scripts/rtpproxy.init.debian (new) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/rtpproxy/scripts/rtpproxy.ini…

15 years

CVS:commitlog: rtpproxy/scripts - New directory

by Maxim Sobolev

sobomax 2009/11/20 12:17:56 CET SER CVS Repository rtpproxy/scripts - New directory

15 years

Dialog timed calls

by Jason Penton

Hi All, Has anyone else noticed the significant inaccuracy of the timeout in the dialog module? We are using: modparam("dialog", "timeout_avp", "$avp(i:10)") However, the actual call is torn down a NUMBER of seconds past the timeout supplied. In some instances, for long calls, it is out by 30seconds or more....? For shorter calls it is accurate with a second or so. Anyone have any input, ideas? Cheers Jason

15 years

Patch for 3.0.0-rc2 for kamailio debian packaging

by Jonas Bergler

Hi All, I have updated the pkg/kamailio/debian-lenny packaging files to work with 3.0.0-rc2. Patch is attached if someone would like to look over it and commit it. Cheers, Jonas

15 years

git:kamailio_3.0: updated debian lenny packaging files for K 3.0

by Daniel-Constantin Mierla

Module: sip-router Branch: kamailio_3.0 Commit: f7e79e649988c787864594092b297865b0cdfb67 URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=f7e79e6… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Committer: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Wed Nov 18 08:55:49 2009 +0100 updated debian lenny packaging files for K 3.0 - credits to Jonas Bergler <jonas.bergler [at] staff.snap.net.nz> --- pkg/kamailio/debian-lenny/changelog | 7 ++ pkg/kamailio/debian-lenny/patches/00list | 3 - .../patches/10_no_lib64_on_64_bits.dpatch | 27 -------- .../debian-lenny/patches/11_always_smp.dpatch | 24 ------- pkg/kamailio/debian-lenny/rules | 71 +++++++++++++++----- 5 files changed, 62 insertions(+), 70 deletions(-) Diff: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commitdiff;h=f7e…

15 years

Re: [sr-dev] [Kamailio] Why is the nonce expiry checked so late?

by Alex Hermann

Jan, On Tuesday 17 November 2009, you wrote: > On Tue, Nov 17, 2009 at 4:13 PM, Alex Hermann <alex(a)speakup.nl> wrote: > > Hello, > > > > Why is the nonce expiry checked in post_auth instead of pre_auth? Now the > > expiry is checked after the username/password is checked against the DB. > > That seems a bit odd. > > > > I moved the check to check_nonce (which is called from pre_auth) and it > > seems to work fine. Did I miss something? Security issue? > > There are two major reasons for this: > > The server sends back stale=true in digest credentials if the nonce > has expired, but only if the credentials are otherwise valid (i.e. the > username and the password are correct). The parameter stale=true > indicates to the user agent that there is no need to ask the user for > username and password again, it can just generate a new authorization > header with ca> ched username and password and a new nonce string from > the server. The server can just as well generate a stale=true response immediately, independent of the credentials check. If later on a non-expired nonce arrives, it can do the credentials check and send a response without stale=true if necessary. > The second reason is that we need to accept credentials with old nonce > string for ACK and CANCEL requests. Those two requests cannot be > challenged (There is no reply for ACK and CANCEL must have the same > CSeq as the request being canceled), thus we cannot ask the user agent > to resubmit them again with a new nonce. This reason is invalid because of the following existing code in pre_auth: if ((_m->REQ_METHOD == METHOD_ACK) || (_m->REQ_METHOD == METHOD_CANCEL)) return AUTHORIZED; -- Met vriendelijke groet, Alex Hermann SpeakUp BV T: 088-SPEAKUP (088-7732587) F: 088-7732588

15 years

[Kamailio] Why is the nonce expiry checked so late?

by Alex Hermann

Hello, Why is the nonce expiry checked in post_auth instead of pre_auth? Now the expiry is checked after the username/password is checked against the DB. That seems a bit odd. I moved the check to check_nonce (which is called from pre_auth) and it seems to work fine. Did I miss something? Security issue? -- Greetings, Alex Hermann

15 years

SF.net SVN: openser:[5956] branches/1.5/modules/utils/conf.c

by Marius Zbihlei

Revision: 5956 http://openser.svn.sourceforge.net/openser/?rev=5956&view=rev Author: mariuszbihlei Date: 2009-11-17 16:02:06 +0000 (Tue, 17 Nov 2009) Log Message: ----------- Added fix http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=4fed4c7… to kamailio (problems where when the string was in the form of "0=on\n\0" ; this function caused a segmentation fault(canaries where overwritten). ) Modified Paths: -------------- branches/1.5/modules/utils/conf.c This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

15 years

← Newer
1
2
3
4
5
6
7
...
18
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

sr-dev November 2009