sr-dev July 2014

sr-dev@lists.kamailio.org

25 participants
140 discussions

TLS module - tls version
by Olle E. Johansson 30 Jul '14

30 Jul '14

Reading the docs I'm a bit confused Does the TLSv1 setting equal TLS v1.0 or does it include all v1.x, like TLS v1.2? /O

2 2

Re: [sr-dev] Obscuring SIP traffic and using with NoSIP
by Muhammad Shahzad 30 Jul '14

30 Jul '14

Humm, no reply so far, may be because my email was very long and no body bothered to read it all. Anyways, here is the shorter more direct version of it. (including kamailio dev list, since question is rather technical). Is it possible to implement a custom SIP transport in Kamailio script file i.e. kamailio.cfg. The purpose is to allow experimentation with custom encryption algorithms such as this, https://github.com/mshary/itv What we need is a couple of functions, one to receive incoming … [View More]raw / encrypted data received on SIP socket, which then can be parsed / decrypted in kamailio.cfg (using e.g. LUA or PERL language modules etc.) and afterwords feed to kamailio for usual processing (as if it was normal / plain-text sip data received on sip socket). The second function to do the opposite, it receives the normal / plain-text sip data that is ready to be sent out from kamailio's core, encrypts it and then send it out to actual destination. In case above is not possible. Can i do it in kamailio's native code? Any hooks / example code for reference? Many thanks and kind regards for your help. On Mon, Jul 28, 2014 at 2:38 AM, Muhammad Shahzad <shaheryarkh(a)gmail.com> wrote: > Hi, > > As the mobile voip is getting more and more popular these days, there has > been a strong opposition from GSM operators against mobile voip apps. They > often use tactics like blocking voip ports, or detect and block voip > traffic and in some cases restricting udp traffic altogether to very low > upload and download speeds. See below link for some details, > > http://www.linphone.org/eng/blog/linphone-over-3g.html > > While not all the problems can be solved right now (especially the > limiting udp traffic, since RTP always uses udp transport) I was wondering > if we can at least handle the sip related problems. The most important of > them is SIP traffic detection. While some forks would suggest using TCP/TLS > to encrypt SIP traffic, it has a few problems, e.g. > > 1. It requires somewhat high resources on mobile devices, so many low-end > android phones simply can't use it. > > 2. There is possibility that encryption signature may identify it as SIP > traffic. There exists firewalls (often deployed in middle eastern > countries) which have huge database of encryption signatures and patterns > which although may not decrypt the sip packet but at least identify it as > sip packet and block it. > > Also with rough agencies of evil empires spying over millions of users > worldwide makes the current encryption standards pretty much pointless, at > least in terms of user privacy and network security. So there is a strong > need to experiment with new ideas and concepts to regain internet freedom. > Some of such ideas are, > > 1. Convert sip traffic which is plain text to binary format just before > transmitting it and revert it to plain text upon reception. > > 2. XOR the sip traffic (pretty much same as binary sip). > > 3. Use some very lightweight but effective / non-standard encryption > algorithm, e.g. > > https://github.com/mshary/itv > > All these ideas require that SIP server such as Kamailio is able to adopt > to these, preferably with minimal or no change in native code. The NoSIP > module seems an interesting module in this regard. It provides all traffic > it thinks is not the SIP traffic to configuration script, where we can do > our own parsing and do whatever we want with it. I have two questions about > this, > > 1. If parsed message is SIP, we can we send it back to kamailio core to > get it processed as if it is a normal SIP message received by kamailio? > > 2. Can this module or any other module available in kamailio, that can > provide us full sip packet that is about to be transmitted over sip socket, > so we can "encode" it just before it is sent to next hop? > > I know this would be like writing a SIP transport in kamailio script which > would be very tough if not impossible to implement in native core. But it > will really help in winning the modern mobile voip challenges. > > Thank you. > > > [View Less]

2 3

git:master: modules/acc: added reason_from_reason_hf module paramater
by Juha Heinanen 29 Jul '14

29 Jul '14

Module: sip-router Branch: master Commit: 7f136429e5b676077c4f71c5cc178dd0c125951b URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=7f13642… Author: Juha Heinanen <jh(a)tutpro.com> Committer: Juha Heinanen <jh(a)tutpro.com> Date: Sat May 31 10:34:19 2014 +0300 modules/acc: added reason_from_reason_hf module paramater - in schema, increased size of sip_reason field to 128 chars --- lib/srdb1/schema/acc.xml | 2 +- lib/srdb1/schema/… [View More]entities.xml | 2 +- lib/srdb1/schema/missed_calls.xml | 2 +- modules/acc/README | 33 +++++++++++++++++++++++++-------- modules/acc/acc_logic.c | 21 ++++++++++++++++++++- modules/acc/acc_mod.c | 2 ++ modules/acc/acc_mod.h | 1 + modules/acc/doc/acc_admin.xml | 20 ++++++++++++++++++++ 8 files changed, 71 insertions(+), 12 deletions(-) diff --git a/lib/srdb1/schema/acc.xml b/lib/srdb1/schema/acc.xml index 719298e..2d8d66b 100644 --- a/lib/srdb1/schema/acc.xml +++ b/lib/srdb1/schema/acc.xml @@ -9,7 +9,7 @@ <table id="acc" xmlns:db="http://docbook.org/ns/docbook"> <name>acc</name> - <version>4</version> + <version>5</version> <type db="mysql">&MYSQL_TABLE_TYPE;</type> <description> <db:para>This table is used by the ACC module to report on transactions - accounted calls. More information is available at: &KAMAILIO_MOD_DOC;acc.html diff --git a/lib/srdb1/schema/entities.xml b/lib/srdb1/schema/entities.xml index 526ac55..bb3ddf3 100644 --- a/lib/srdb1/schema/entities.xml +++ b/lib/srdb1/schema/entities.xml @@ -13,7 +13,7 @@ <!ENTITY avp_val_len "128"> <!ENTITY ip_add_len "50"> <!ENTITY sip_code_len "3"> -<!ENTITY sip_reason_len "32"> +<!ENTITY sip_reason_len "128"> <!ENTITY cseq_len "11"> <!ENTITY callid_len "255"> <!ENTITY expires_len "11"> diff --git a/lib/srdb1/schema/missed_calls.xml b/lib/srdb1/schema/missed_calls.xml index 7a66440..8c824ab 100644 --- a/lib/srdb1/schema/missed_calls.xml +++ b/lib/srdb1/schema/missed_calls.xml @@ -9,7 +9,7 @@ <table id="missed_calls" xmlns:db="http://docbook.org/ns/docbook"> <name>missed_calls</name> - <version>3</version> + <version>4</version> <type db="mysql">&MYSQL_TABLE_TYPE;</type> <description> <db:para>This table is used by the ACC module for keeping track of missed calls. This table is similar to the 'acc' table. More information is available at: &KAMAILIO_MOD_DOC;acc.html</db:para> diff --git a/modules/acc/README b/modules/acc/README index ea72fd6..8316b52 100644 --- a/modules/acc/README +++ b/modules/acc/README @@ -131,6 +131,7 @@ Sven Knoblich 6.48. time_attr (str) 6.49. time_exten (str) 6.50. time_format (str) + 6.51. reason_from_reason_hf (int) 7. Functions @@ -193,10 +194,11 @@ Sven Knoblich 1.48. time_attr example 1.49. time_exten example 1.50. time_format example - 1.51. acc_log_request usage - 1.52. acc_db_request usage - 1.53. acc_rad_request usage - 1.54. acc_diam_request usage + 1.51. reason_from_reason_hf + 1.52. acc_log_request usage + 1.53. acc_db_request usage + 1.54. acc_rad_request usage + 1.55. acc_diam_request usage Chapter 1. Admin Guide @@ -291,6 +293,7 @@ Chapter 1. Admin Guide 6.48. time_attr (str) 6.49. time_exten (str) 6.50. time_format (str) + 6.51. reason_from_reason_hf (int) 7. Functions @@ -705,6 +708,7 @@ $dlg_var(callee) = $avp(callee); #callee='C' 6.48. time_attr (str) 6.49. time_exten (str) 6.50. time_format (str) + 6.51. reason_from_reason_hf (int) 6.1. early_media (integer) @@ -1350,6 +1354,19 @@ modparam("acc", "time_exten", "micorsecs") modparam("acc", "time_format", "%Y/%m/%d %H:%M:%S") ... +6.51. reason_from_reason_hf (int) + + Tells where to take sip_reason from. If value is 0, sip_reason is taken + from status line. Otherwise, sip_reason is taken from Reason header + field(s) if present. Currently only the first Reason header is used. + + Default value is 0. + + Example 1.51. reason_from_reason_hf +... +modparam("acc", "reason_from_reason_hf", 1) +... + 7. Functions 7.1. acc_log_request(comment) @@ -1370,7 +1387,7 @@ modparam("acc", "time_format", "%Y/%m/%d %H:%M:%S") This function can be used from ANY_ROUTE. - Example 1.51. acc_log_request usage + Example 1.52. acc_log_request usage ... acc_log_request("Some comment"); $var(code) = 404; @@ -1392,7 +1409,7 @@ acc_log_request("$var(code) Error: $avp(reason)"); This function can be used from ANY_ROUTE. - Example 1.52. acc_db_request usage + Example 1.53. acc_db_request usage ... acc_db_request("Some comment", "SomeTable"); acc_db_request("Some comment", "acc_$time(year)_$time(mon)"); @@ -1410,7 +1427,7 @@ acc_db_request("$var(code) Error: $avp(reason)", "SomeTable"); This function can be used from ANY_ROUTE. - Example 1.53. acc_rad_request usage + Example 1.54. acc_rad_request usage ... acc_rad_request("Some comment"); acc_rad_request("$var(code) Error: $avp(reason)"); @@ -1427,7 +1444,7 @@ acc_rad_request("$var(code) Error: $avp(reason)"); This function can be used from ANY_ROUTE. - Example 1.54. acc_diam_request usage + Example 1.55. acc_diam_request usage ... acc_diam_request("Some comment"); acc_diam_request("$var(code) Error: $avp(reason)"); diff --git a/modules/acc/acc_logic.c b/modules/acc/acc_logic.c index 0641388..452e171 100644 --- a/modules/acc/acc_logic.c +++ b/modules/acc/acc_logic.c @@ -42,6 +42,7 @@ #include "../../sr_module.h" #include "../../parser/parse_from.h" #include "../../parser/parse_content.h" +#include "../../lib/kcore/cmpapi.h" #include "../../modules/tm/tm_load.h" #include "../rr/api.h" #include "../../flags.h" @@ -132,6 +133,8 @@ static inline void env_set_text(char *p, int len) static inline void env_set_code_status( int code, struct sip_msg *reply) { static char code_buf[INT2STR_MAX_LEN]; + str reason = {"Reason", 6}; + struct hdr_field *hf; acc_env.code = code; if (reply==FAKED_REPLY || reply==NULL) { @@ -143,7 +146,23 @@ static inline void env_set_code_status( int code, struct sip_msg *reply) acc_env.reason.len = strlen(acc_env.reason.s); } else { acc_env.code_s = reply->first_line.u.reply.status; - acc_env.reason = reply->first_line.u.reply.reason; + hf = NULL; + if (reason_from_reason_hf) { + /* TODO: take reason from all Reason headers */ + if(parse_headers(reply, HDR_EOH_F, 0) < 0) { + LM_ERR("error parsing headers\n"); + } else { + for (hf=reply->headers; hf; hf=hf->next) { + if (cmp_hdrname_str(&hf->name, &reason)==0) + break; + } + } + } + if (hf == NULL) { + acc_env.reason = reply->first_line.u.reply.reason; + } else { + acc_env.reason = hf->body; + } } } diff --git a/modules/acc/acc_mod.c b/modules/acc/acc_mod.c index ff94baa..347e054 100644 --- a/modules/acc/acc_mod.c +++ b/modules/acc/acc_mod.c @@ -110,6 +110,7 @@ static char* leg_info_str = 0; /*!< multi call-leg support */ struct acc_extra *leg_info = 0; int acc_prepare_flag = -1; /*!< should the request be prepared for later acc */ char *acc_time_format = "%Y-%m-%d %H:%M:%S"; +int reason_from_reason_hf = 0; /*!< assign reason from reason hf if present */ /* ----- time mode variables ------- */ /*! \name AccTimeModeVariables Time Mode Variables */ @@ -258,6 +259,7 @@ static param_export_t params[] = { {"multi_leg_info", STR_PARAM, &leg_info_str }, {"detect_direction", INT_PARAM, &detect_direction }, {"acc_prepare_flag", INT_PARAM, &acc_prepare_flag }, + {"reason_from_reason_hf", INT_PARAM, &reason_from_reason_hf }, /* syslog specific */ {"log_flag", INT_PARAM, &log_flag }, {"log_missed_flag", INT_PARAM, &log_missed_flag }, diff --git a/modules/acc/acc_mod.h b/modules/acc/acc_mod.h index 98cef33..68911dc 100644 --- a/modules/acc/acc_mod.h +++ b/modules/acc/acc_mod.h @@ -50,6 +50,7 @@ extern int failed_transaction_flag; extern unsigned short failed_filter[]; extern int detect_direction; extern int acc_prepare_flag; +extern int reason_from_reason_hf; extern int log_facility; extern int log_level; diff --git a/modules/acc/doc/acc_admin.xml b/modules/acc/doc/acc_admin.xml index 54b9517..b0a1217 100644 --- a/modules/acc/doc/acc_admin.xml +++ b/modules/acc/doc/acc_admin.xml @@ -1479,6 +1479,26 @@ modparam("acc", "time_format", "%Y/%m/%d %H:%M:%S") </programlisting> </example> </section> + <section id="acc.p.reason_from_reason_hf"> + <title><varname>reason_from_reason_hf</varname> (int)</title> + <para> + Tells where to take sip_reason from. If value is 0, + sip_reason is taken from status line. Otherwise, sip_reason + is taken from Reason header field(s) if present. + Currently only the first Reason header is used. + </para> + <para> + Default value is 0. + </para> + <example> + <title>reason_from_reason_hf</title> + <programlisting format="linespecific"> +... +modparam("acc", "reason_from_reason_hf", 1) +... +</programlisting> + </example> + </section> </section> <section> [View Less]

3 2

[tracker] Task opened: PARAM_STR vs STR_PARAM (Attachment added)
by sip-router 29 Jul '14

29 Jul '14

THIS IS AN AUTOMATED MESSAGE, DO NOT REPLY. A new Flyspray task has been opened. Details are below. User who did this - Alekzander Spiridonov (alekz) Attached to Project - sip-router Summary - PARAM_STR vs STR_PARAM Task Type - Improvement Category - Module Status - Unconfirmed Assigned To - Operating System - All Severity - Low Priority - Normal Reported Version - Development Due in Version - Undecided Due Date - Undecided Details - As a follow-up for mailing thread "PARAM_STR vs … [View More]

1 0

Acc: cdr extra2strar allocation issue and proposed fix
by Lucian Balaceanu 29 Jul '14

29 Jul '14

Hello, At 1&1 we have spotted an issue related to the cdr_extra parameters: for more than 10 string cdr_extra parameters, the addresses used by the new parameters overwrite the previous ones (this did not happen in 3.1, but is reproducible since at least 3.3). I attached a patch that implements a solution where we allocate memory for the cdr extra params with pkg_malloc() and free it once it is no longer needed. Daniel, if there is no comment related to this solution, I will commit … [View More]

2 4

git:master: tm: Generate synonym_id based on original request
by Hugh Waite 28 Jul '14

28 Jul '14

Module: sip-router Branch: master Commit: c5afbe15361bbf7e9493ad02dcabfd4c6d420109 URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=c5afbe1… Author: Hugh Waite <hugh.waite(a)acision.com> Committer: Hugh Waite <hugh.waite(a)acision.com> Date: Sat Jul 26 01:18:50 2014 +0100 tm: Generate synonym_id based on original request - Prevent allocating pkg memory in a shm-alloc'd copy - Prevents a crash that can occur in requests with pre-3261 branch tags --- … [View More]

1 0

git:4.1: tm: Generate synonym_id based on original request
by Hugh Waite 28 Jul '14

28 Jul '14

Module: sip-router Branch: 4.1 Commit: 19b5458e616e4dde1bb7b23cfbae0388849539ee URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=19b5458… Author: Hugh Waite <hugh.waite(a)acision.com> Committer: Hugh Waite <hugh.waite(a)acision.com> Date: Sat Jul 26 01:18:50 2014 +0100 tm: Generate synonym_id based on original request - Prevent allocating pkg memory in a shm-alloc'd copy - Prevents a crash that can occur in requests with pre-3261 branch tags (cherry … [View More]

1 0

git:4.0: tm: Generate synonym_id based on original request
by Hugh Waite 28 Jul '14

28 Jul '14

Module: sip-router Branch: 4.0 Commit: 13ccd42997733cf4a9d567378bdfd4d37df9752a URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=13ccd42… Author: Hugh Waite <hugh.waite(a)acision.com> Committer: Hugh Waite <hugh.waite(a)acision.com> Date: Sat Jul 26 01:55:46 2014 +0100 tm: Generate synonym_id based on original request - Prevent allocating pkg memory in a shm-alloc'd copy - Prevents a crash that can occur in requests with pre-3261 branch tags --- … [View More]

1 0

[tracker] Comment added: Crash in core when freeing shm dup'ed request
by sip-router 28 Jul '14

28 Jul '14

THIS IS AN AUTOMATED MESSAGE, DO NOT REPLY. The following task has a new comment added: FS#454 - Crash in core when freeing shm dup'ed request User who did this - Daniel-Constantin Mierla (miconda) ---------- Thanks, go ahead and commit your patch. Somehow I had in mind From is parsed before creating transaction, but can be only its URI -- I have to check the sources. ---------- More information can be found at the following URL: http://sip-router.org/tracker/index.php?do=details&… [View More]

1 0

[tracker] Comment added: Crash in core when freeing shm dup'ed request
by sip-router 28 Jul '14

28 Jul '14

THIS IS AN AUTOMATED MESSAGE, DO NOT REPLY. The following task has a new comment added: FS#454 - Crash in core when freeing shm dup'ed request User who did this - Hugh Waite (hugh.waite) ---------- (gdb) frame 5 #5 0x000000000054fea1 in clean_hdr_field (hf=0x7fd11837aa18) at parser/hf.c:114 114 free_to(hf->parsed); (gdb) p *hf $18 = {type = HDR_FROM_T, name = { s = 0x7fd11837a7b6 "From: <sip:nm@nm>;tag=root\r\nTo: <sip:nm2@nm2>\r\nCall-ID: 1-… [View More]

1 0

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

sr-dev July 2014