| Summary: | ASTERISK-12335: [patch] new feature: iax2 encryption key rotation at 2-5 minute intervals. | ||
| Reporter: | Brett Bryant (bbryant) | Labels: | |
| Date Opened: | 2008-07-07 18:00:03 | Date Closed: | 2008-08-01 13:08:08 |
| Priority: | Major | Regression? | No |
| Status: | Closed/Complete | Components: | Channels/chan_iax2 |
| Versions: | Frequency of Occurrence | ||
| Related Issues: | |||
| Environment: | Attachments: | ( 0) 07072008__iax2_key_rotation.diff | |
| Description: | This patch adds iax2 encryption key rotation at 2-5 minute intervals. There is also an asterisk/team/bbryant/keyrotation/ branch that contains this code. | ||
| Comments: | By: Russell Bryant (russell) 2008-07-14 09:35:16 I'm going to mark this as a candidate for testing while it's waiting on my review. By: Brett Bryant (bbryant) 2008-08-01 10:02:44 A configuration option has been added to the branch to disable this for backwards compatibility. By: Digium Subversion (svnbot) 2008-08-01 13:08:06 Repository: asterisk Revision: 135158 U trunk/CHANGES U trunk/channels/chan_iax2.c U trunk/channels/iax2-parser.c U trunk/channels/iax2.h U trunk/configs/iax.conf.sample ------------------------------------------------------------------------ r135158 | russell | 2008-08-01 13:08:05 -0500 (Fri, 01 Aug 2008) | 14 lines Merge changes from team/bbryant/keyrotation This set of changes enhances IAX2 encryption support by adding key rotation to provide enhanced security. The key used for encryption is rotated right after the call gets set up, and then again every few minutes. This was discussed at the last AstriDevCon. For interoperability with older versions of Asterisk, there is an option that disables key rotation. (closes issue ASTERISK-12335) Reported by: bbryant Patches: 07072008__iax2_key_rotation.diff uploaded by bbryant (license 36) Tested by: russell, bbryant ------------------------------------------------------------------------ http://svn.digium.com/view/asterisk?view=rev&revision=135158 | ||