sr-dev March 2024

sr-dev@lists.kamailio.org

14 participants
238 discussions

git:master:67785fea: tls/docs: Update certificate generation docs

by Daniel-Constantin Mierla

Module: kamailio Branch: master Commit: 67785fea8f906236e4a30bc09bb11b3292c46572 URL: https://github.com/kamailio/kamailio/commit/67785fea8f906236e4a30bc09bb11b3… Author: Xenofon Karamanos <22965395+xkaraman(a)users.noreply.github.com> Committer: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T19:40:26+01:00 tls/docs: Update certificate generation docs --- Modified: src/modules/tls/doc/tls.xml --- Diff: https://github.com/kamailio/kamailio/commit/67785fea8f906236e4a30bc09bb11b3… Patch: https://github.com/kamailio/kamailio/commit/67785fea8f906236e4a30bc09bb11b3… --- diff --git a/src/modules/tls/doc/tls.xml b/src/modules/tls/doc/tls.xml index 9b3f4eaacb3..5697792655a 100644 --- a/src/modules/tls/doc/tls.xml +++ b/src/modules/tls/doc/tls.xml @@ -93,7 +93,10 @@ </para> <para> When installing tls module of kamailio, a sample 'tls.cfg' file is deployed in the same - folder with 'kamailio.cfg', along with freshly generated self signed certificates. + folder with 'kamailio.cfg'. For freshly generated self signed certificates make must be called from tls folder + <programlisting> +make install-tls-cert + </programlisting> </para> <para> HINT: be sure you have <emphasis>enable_tls=yes</emphasis> to your kamailio.cfg.

5 months, 1 week

git:master:4c9cfa7a: tls/docs: Update tls.reload docs

by Daniel-Constantin Mierla

Module: kamailio Branch: master Commit: 4c9cfa7a6a770a693ecb3b840ad042fb201db675 URL: https://github.com/kamailio/kamailio/commit/4c9cfa7a6a770a693ecb3b840ad042f… Author: Xenofon Karamanos <22965395+xkaraman(a)users.noreply.github.com> Committer: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T19:40:26+01:00 tls/docs: Update tls.reload docs --- Modified: src/modules/tls/doc/rpc.xml Modified: src/modules/tls/doc/tls.xml --- Diff: https://github.com/kamailio/kamailio/commit/4c9cfa7a6a770a693ecb3b840ad042f… Patch: https://github.com/kamailio/kamailio/commit/4c9cfa7a6a770a693ecb3b840ad042f… --- diff --git a/src/modules/tls/doc/rpc.xml b/src/modules/tls/doc/rpc.xml index 495fc7b31c2..d9e75b014b2 100644 --- a/src/modules/tls/doc/rpc.xml +++ b/src/modules/tls/doc/rpc.xml @@ -70,6 +70,10 @@ terminated and they continue to use the old certificates. The new configuration will be used for new connections. </para> + <para> + Reload is generally safe and usable in production environments. If possible should + be done in a time where the service has lower usage/connections. + </para> <para> This RPC command is exported with "RPC_EXEC_DELTA" flag, therefore its execution rate can be restricted to specific time intervals by setting diff --git a/src/modules/tls/doc/tls.xml b/src/modules/tls/doc/tls.xml index 9460d73c89f..9b3f4eaacb3 100644 --- a/src/modules/tls/doc/tls.xml +++ b/src/modules/tls/doc/tls.xml @@ -284,10 +284,6 @@ make -C modules/tls extra_defs="-DTLS_WR_DEBUG -DTLS_RD_DEBUG" but also not exactly standard conforming (the verification should happen during TLS connection establishment and not after). </para> - <para> - TLS specific config reloading is not safe, so for now better don't use it, - especially under heavy traffic. - </para> <para> This documentation is incomplete. The provided selects are not documented in this file. A list with all the @@ -364,4 +360,3 @@ event_route[tls:connection-out] { </section> </chapter> </book> -

5 months, 1 week

git: new commits in branch 5.8

by Daniel-Constantin Mierla

- URL: https://github.com/kamailio/kamailio/commit/15ffdf7c0721fb5d05772d96e133ac7… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:44:00+01:00 ndb_redis: reformat exported structures (cherry picked from commit fb21f89dc544551b1bb65805303131fa990d2f44) - URL: https://github.com/kamailio/kamailio/commit/3415be29303bbacaf25b646d6c86027… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:44:16+01:00 evrexec: reformat exported structures (cherry picked from commit 65eef5c5446c1f6870eecf8bbc84d68d12271bc7) - URL: https://github.com/kamailio/kamailio/commit/2d2006701f491f732ea07b36a48016f… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:44:23+01:00 microhttpd: docs - note about variables available in the event route (cherry picked from commit 993583015b127b0a83603acd352925c8d6e6db70) - URL: https://github.com/kamailio/kamailio/commit/50c759030f024dd080c08a3d94127f1… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:44:32+01:00 ndb_redis: init enabled for tcp-main and postchildinit callbacks - GH #3768 (cherry picked from commit 19e5bf3d4cfc2b7d47623e307fff7e60e73e8a18) - URL: https://github.com/kamailio/kamailio/commit/c2ac3ffc907ded71bcde59c3c5c0d6b… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:44:41+01:00 tcpops: variables to get active connection attributes (cherry picked from commit 59230a07b8c6a79c4a574890bae775c3d166c471) - URL: https://github.com/kamailio/kamailio/commit/8835f04334981b81df7eed6c03e581f… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:44:47+01:00 tcpops: if connection not found, return attributes from sip msg rcv (cherry picked from commit c3d753885b3cd1bc0cb9f46986e5798dfb5f6552) - URL: https://github.com/kamailio/kamailio/commit/ab981daa54c1afc1017af16afbb67ef… Author: herlesupreeth <herlesupreeth(a)gmail.com> Date: 2024-03-06T17:45:09+01:00 ims_usrloc: make matching of username in contact conditional (cherry picked from commit 17bdbd34b1038de936f14c1a41ce55f571e6402a) - URL: https://github.com/kamailio/kamailio/commit/c06ea12d0fff50569803ea0fef94867… Author: herlesupreeth <herlesupreeth(a)gmail.com> Date: 2024-03-06T17:45:14+01:00 ims_registrar_pcscf: update registered state to pending registration if contact exists (cherry picked from commit 4fb8accc6747ad56fec3dc84d70cb2b8bbd7316e) - URL: https://github.com/kamailio/kamailio/commit/0747c18d5c4db2e7e8408ad2c7efa12… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:45:27+01:00 core: rthreads - init return variable (cherry picked from commit 181c602616e13323786335e8e28f182871aa5e9b) - URL: https://github.com/kamailio/kamailio/commit/219c21fe62638e7191dd1b5ad32ba09… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:45:35+01:00 influxdbc: copy with buffer size limit (cherry picked from commit 73c66150c604326c07d454002c12cb221289936a) - URL: https://github.com/kamailio/kamailio/commit/4c78a564c5ad8662014cf686428a372… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:45:44+01:00 core: ppcfg - jump to end when defexp eval does not get a str val (cherry picked from commit daac0bdb88f6f732bda7c683af45b90f87fdb7c9) - URL: https://github.com/kamailio/kamailio/commit/089bf63178039b13cde0beccfacab15… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:45:54+01:00 core: select - handle ws and wss inside select_ip_port() (cherry picked from commit d8e0942c9e83c8cad7c182bf41c156ba35bf24d2) - URL: https://github.com/kamailio/kamailio/commit/4626cb7f0e0b273153ce0004900a925… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:46:07+01:00 core: parser rr - check for rr value before serializing (cherry picked from commit 6ee26a3ae3293aaeb4507d5d0b16ad31173cc39a) - URL: https://github.com/kamailio/kamailio/commit/42282a2c78fc24ff2b3856983a6dbb1… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:46:15+01:00 acc: cdr - do not free static empty string in case of error (cherry picked from commit 0fc0cdd791ce5157232dd2139238708403cdde1d) - URL: https://github.com/kamailio/kamailio/commit/d45c78eeeaea6a9fc9dcb927436f834… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:46:22+01:00 ctl: reset log prefix on reading ctl traffic - it may be previously set in process by some event route (cherry picked from commit 5b8b2717ee2f57da932132683b27eb33cea3fd59) - URL: https://github.com/kamailio/kamailio/commit/500e5fabf9da31b5fa2949cac90956d… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:46:33+01:00 core: main - init local variables used for cli param parsing (cherry picked from commit 8a2894cd6180f904dd37acb4985db4e4935aa434) - URL: https://github.com/kamailio/kamailio/commit/a814df7e828db7be0b34738c2eb78b1… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-06T17:46:45+01:00 presence: docs - remove extra section end tag (cherry picked from commit ed32512f4594cc0ddc3437e274bcba5acfc16410)

5 months, 1 week

[kamailio/kamailio] secfilter.reload does not work for destination block list (Issue #3694)

by Ali

Hi When I add a destination to MySQL server to block and use kamcmd to reload, the call will not be blocked, while if I use kamcmd to add destination with `secfilter.add_dst` it works properly. It's considerable that after reloading if I print the blocked list in kamcmd (with `secfilter.print`) new database row will be printed correctly. my secfilter SQL table: +----+--------+------+------+ | id | action | type | data | +----+--------+------+------+ | 1 | 2 | 4 | 1111 | +----+--------+------+------+ kamailio 5.4.6 (x86_64/linux) Ubuntu 22.04.3 LTS -- Reply to this email directly or view it on GitHub: https://github.com/kamailio/kamailio/issues/3694 You are receiving this because you are subscribed to this thread. Message ID: <kamailio/kamailio/issues/3694(a)github.com>

5 months, 1 week

git:master:ed32512f: presence: docs - remove extra section end tag

by Daniel-Constantin Mierla

Module: kamailio Branch: master Commit: ed32512f4594cc0ddc3437e274bcba5acfc16410 URL: https://github.com/kamailio/kamailio/commit/ed32512f4594cc0ddc3437e274bcba5… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Committer: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: 2024-03-05T20:54:09+01:00 presence: docs - remove extra section end tag --- Modified: src/modules/presence/doc/presence_admin.xml --- Diff: https://github.com/kamailio/kamailio/commit/ed32512f4594cc0ddc3437e274bcba5… Patch: https://github.com/kamailio/kamailio/commit/ed32512f4594cc0ddc3437e274bcba5… --- diff --git a/src/modules/presence/doc/presence_admin.xml b/src/modules/presence/doc/presence_admin.xml index f3d1127f7ac..503fd615918 100644 --- a/src/modules/presence/doc/presence_admin.xml +++ b/src/modules/presence/doc/presence_admin.xml @@ -1285,7 +1285,6 @@ pres_update_watchers("sip:test@kamailio.org", "presence"); </programlisting> </section> -<section> <section id="presence.r.publish_cache_sync"> <title>presence.publish_cache_sync</title> <para>

5 months, 1 week

[kamailio/kamailio] uac_reg_unregister(attr, val) (Issue #3702)

by QWERTY

The uac module lacks the uac_reg_unregister(attr, val) method, Send REGISTER with expires 0 for matching record in real time, instead of through RPC command。uac_reg_disable(attr, val) ：SIP processing is done on the next timer routine. -- Reply to this email directly or view it on GitHub: https://github.com/kamailio/kamailio/issues/3702 You are receiving this because you are subscribed to this thread. Message ID: <kamailio/kamailio/issues/3702(a)github.com>

5 months, 1 week

git:5.8:dae15377: tls: NULL safety check

by S-P Chan

Module: kamailio Branch: 5.8 Commit: dae15377dac1b019f2278baca208162154d5a7ad URL: https://github.com/kamailio/kamailio/commit/dae15377dac1b019f2278baca208162… Author: S-P Chan <shihping.chan(a)gmail.com> Committer: S-P Chan <shihping.chan(a)gmail.com> Date: 2024-03-05T10:01:03+08:00 tls: NULL safety check (cherry picked from commit f6f9d90ada963b53b6552e1a172b8f2fd021c33b) --- Modified: src/modules/tls/tls_mod.c --- Diff: https://github.com/kamailio/kamailio/commit/dae15377dac1b019f2278baca208162… Patch: https://github.com/kamailio/kamailio/commit/dae15377dac1b019f2278baca208162… --- diff --git a/src/modules/tls/tls_mod.c b/src/modules/tls/tls_mod.c index 6dfde00c93a..b4a2afb7818 100644 --- a/src/modules/tls/tls_mod.c +++ b/src/modules/tls/tls_mod.c @@ -871,6 +871,8 @@ EVP_PKEY *tls_engine_private_key(const char *key_id) while(!(OSSL_STORE_eof(ctx))) { OSSL_STORE_INFO *info = OSSL_STORE_load(ctx); + if(info == NULL) + continue; int type; type = OSSL_STORE_INFO_get_type(info);

5 months, 1 week

git:master:f6f9d90a: tls: NULL safety check

by S-P Chan

Module: kamailio Branch: master Commit: f6f9d90ada963b53b6552e1a172b8f2fd021c33b URL: https://github.com/kamailio/kamailio/commit/f6f9d90ada963b53b6552e1a172b8f2… Author: S-P Chan <shihping.chan(a)gmail.com> Committer: S-P Chan <shihping.chan(a)gmail.com> Date: 2024-03-05T09:59:41+08:00 tls: NULL safety check --- Modified: src/modules/tls/tls_mod.c --- Diff: https://github.com/kamailio/kamailio/commit/f6f9d90ada963b53b6552e1a172b8f2… Patch: https://github.com/kamailio/kamailio/commit/f6f9d90ada963b53b6552e1a172b8f2… --- diff --git a/src/modules/tls/tls_mod.c b/src/modules/tls/tls_mod.c index 6dfde00c93a..b4a2afb7818 100644 --- a/src/modules/tls/tls_mod.c +++ b/src/modules/tls/tls_mod.c @@ -871,6 +871,8 @@ EVP_PKEY *tls_engine_private_key(const char *key_id) while(!(OSSL_STORE_eof(ctx))) { OSSL_STORE_INFO *info = OSSL_STORE_load(ctx); + if(info == NULL) + continue; int type; type = OSSL_STORE_INFO_get_type(info);

5 months, 1 week

git:5.8:56aeb072: etc/kamailio.cfg: document tls_threads_mode = 2 to use atfork handler

by S-P Chan

Module: kamailio Branch: 5.8 Commit: 56aeb0723562409aa97098e51c602bcddc8b6789 URL: https://github.com/kamailio/kamailio/commit/56aeb0723562409aa97098e51c602bc… Author: S-P Chan <shihping.chan(a)gmail.com> Committer: S-P Chan <shihping.chan(a)gmail.com> Date: 2024-03-05T06:48:35+08:00 etc/kamailio.cfg: document tls_threads_mode = 2 to use atfork handler (cherry picked from commit 5b4926b04ba0fcd8f65f5709789abd83181a381a) --- Modified: etc/kamailio.cfg --- Diff: https://github.com/kamailio/kamailio/commit/56aeb0723562409aa97098e51c602bc… Patch: https://github.com/kamailio/kamailio/commit/56aeb0723562409aa97098e51c602bc… --- diff --git a/etc/kamailio.cfg b/etc/kamailio.cfg index 2d68f7692e1..3f9a5fe793f 100755 --- a/etc/kamailio.cfg +++ b/etc/kamailio.cfg @@ -224,8 +224,9 @@ tls_max_connections=2048 /* For OpenSSL 3 integration * functions calling libssl3 can be invoked in a transient thread * 0: disable threaded calls - * 1: use threads for process#0 only - * 2: use threads for all processes */ + * 1: use thread executors for process#0 only + * 2: no thread executors, but use atfork handler to reset thread-locals to NULL + * 3: use thread executors for all processes */ tls_threads_mode=1 #!endif

5 months, 1 week

git:master:5b4926b0: etc/kamailio.cfg: document tls_threads_mode = 2 to use atfork handler

by S-P Chan

Module: kamailio Branch: master Commit: 5b4926b04ba0fcd8f65f5709789abd83181a381a URL: https://github.com/kamailio/kamailio/commit/5b4926b04ba0fcd8f65f5709789abd8… Author: S-P Chan <shihping.chan(a)gmail.com> Committer: S-P Chan <shihping.chan(a)gmail.com> Date: 2024-03-05T06:47:24+08:00 etc/kamailio.cfg: document tls_threads_mode = 2 to use atfork handler --- Modified: etc/kamailio.cfg --- Diff: https://github.com/kamailio/kamailio/commit/5b4926b04ba0fcd8f65f5709789abd8… Patch: https://github.com/kamailio/kamailio/commit/5b4926b04ba0fcd8f65f5709789abd8… --- diff --git a/etc/kamailio.cfg b/etc/kamailio.cfg index 2d68f7692e1..3f9a5fe793f 100755 --- a/etc/kamailio.cfg +++ b/etc/kamailio.cfg @@ -224,8 +224,9 @@ tls_max_connections=2048 /* For OpenSSL 3 integration * functions calling libssl3 can be invoked in a transient thread * 0: disable threaded calls - * 1: use threads for process#0 only - * 2: use threads for all processes */ + * 1: use thread executors for process#0 only + * 2: no thread executors, but use atfork handler to reset thread-locals to NULL + * 3: use thread executors for all processes */ tls_threads_mode=1 #!endif

5 months, 1 week

← Newer
1
...
17
18
19
20
21
22
23
24
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

sr-dev March 2024