Summary:ASTERISK-12335: [patch] new feature: iax2 encryption key rotation at 2-5 minute intervals.
Reporter:Brett Bryant (bbryant)Labels:
Date Opened:2008-07-07 18:00:03Date Closed:2008-08-01 13:08:08
Versions:Frequency of
Environment:Attachments:( 0) 07072008__iax2_key_rotation.diff
Description:This patch adds iax2 encryption key rotation at 2-5 minute intervals.

There is also an asterisk/team/bbryant/keyrotation/ branch that contains this code.
Comments:By: Russell Bryant (russell) 2008-07-14 09:35:16

I'm going to mark this as a candidate for testing while it's waiting on my review.

By: Brett Bryant (bbryant) 2008-08-01 10:02:44

A configuration option has been added to the branch to disable this for backwards compatibility.

By: Digium Subversion (svnbot) 2008-08-01 13:08:06

Repository: asterisk
Revision: 135158

U   trunk/CHANGES
U   trunk/channels/chan_iax2.c
U   trunk/channels/iax2-parser.c
U   trunk/channels/iax2.h
U   trunk/configs/iax.conf.sample

r135158 | russell | 2008-08-01 13:08:05 -0500 (Fri, 01 Aug 2008) | 14 lines

Merge changes from team/bbryant/keyrotation

This set of changes enhances IAX2 encryption support by adding key rotation
to provide enhanced security.  The key used for encryption is rotated right
after the call gets set up, and then again every few minutes.  This was
discussed at the last AstriDevCon.  For interoperability with older versions
of Asterisk, there is an option that disables key rotation.

(closes issue ASTERISK-12335)
Reported by: bbryant
     07072008__iax2_key_rotation.diff uploaded by bbryant (license 36)
Tested by: russell, bbryant