Reply to this email directly, view it on GitHub, or unsubscribe.
You are receiving this because you are subscribed to this thread.
Hi @piotrgregor
The whole reason I started digging into this is precisely because I was seeing this in Kamailio logs
ERROR: stirshaken [stirshaken_mod.c:488]: ki_stirshaken_check_identity(): SIP Identity Header did not pass verification
ERROR: stirshaken [stirshaken_mod.c:560]: ki_stirshaken_check_identity(): identity check: fail
Upon investigation I determined this happened any time a certificate was cached that relied on a chain. The first call will succeed but any subsequent calls fail until the cached certificate expires or is manually deleted. Then the next call will validate ok, but subsequent calls fail.
This happens today with 5.6.2 on my unpatched machine.
—
Reply to this email directly, view it on GitHub, or unsubscribe.
You are receiving this because you are subscribed to this thread.