[Home]

Summary:ASTERISK-13623: iax2 show peers show encryption on all peers which is not true
Reporter:Michiel van Baak (mvanbaak)Labels:
Date Opened:2009-02-22 06:02:33.000-0600Date Closed:2009-02-23 14:50:25.000-0600
Priority:MajorRegression?Yes
Status:Closed/CompleteComponents:Channels/chan_iax2
Versions:Frequency of
Occurrence
Related
Issues:
Environment:Attachments:
Description:'iax2 show peers' on the asterisk CLI shows the (E) on all peers, but I have only enabled encryption on one of them.




****** ADDITIONAL INFORMATION ******

asterisk*CLI> iax2 show peers
Name/Username    Host                 Mask             Port          Status
ITSP01/vanba  XXX.XXX.XXX.77  (S)  255.255.255.255  4569      (E) OK (21 ms)
ITSP02/vanba  XXX.XXX.XXX.67  (S)  255.255.255.255  4569      (E) OK (23 ms)
ITSP03/vanba  XXX.XXX.XXX.81   (S)  255.255.255.255  4569      (E) OK (36 ms)
threedimensiona  XXX.XXX.XXX.183  (S)  255.255.255.255  4569      (E) OK (32 ms)
5 iax2 peers [4 online, 0 offline, 1 unmonitored]

iax.conf:
I have not set encryption options in the global section. They are still commented out


[ITSP01]
type=peer
username=foo
auth=rsa
outkey=switch.vanbaak.info
host=switch01.ITSP.nl
accountcode=outgoing-ITSP
amaflags=billing
qualify=yes

[ITSP02]
type=peer
username=foo
auth=rsa
outkey=switch.vanbaak.info
host=switch02.ITSP.nl
accountcode=outgoing-ITSP
amaflags=billing
qualify=yes

[ITSP03]
type=peer
username=foo
secret=bar
auth=md5
host=iax1.ITSP.nl
accountcode=outgoing-ITSP
amaflags=billing
qualify=yes

[threedimensional]
type=friend
host=XXX.XXX.XXX.183
auth=md5
username=blaat
secret=something
context=from-ITSP
qualify=yes
encryption=yes
keyrotate=off

ITSP, usernames and passwords are masked to protect the innocent.

The (E) indicator used to work fine before I updated to current trunk today.
Cant remember what revision I was running, but it was roughly 3 weeks old.
Comments:By: Digium Subversion (svnbot) 2009-02-23 11:59:56.000-0600

Repository: asterisk
Revision: 178030

U   trunk/channels/chan_iax2.c

------------------------------------------------------------------------
r178030 | dvossel | 2009-02-23 11:59:55 -0600 (Mon, 23 Feb 2009) | 7 lines

Changes the way keyrotation is enabled by default

Key rotation was enabled by default by setting the global encryption method to IAX_ENCRYPT_KEYROTATE.  the problem with this is that if encryption is not enabled, and the encryption method is set to anything except 0, the peer appears to have encryption enabled when issuing a "iax2 show peers".  Rather than have the key rotation bit always set by default, it is now only set when an encryption method is enabled.

(closes issue ASTERISK-13623)
Reported by: mvanbaak

------------------------------------------------------------------------

http://svn.digium.com/view/asterisk?view=rev&revision=178030
By: Digium Subversion (svnbot) 2009-02-23 14:49:37.000-0600

Repository: asterisk
Revision: 178105

_U  branches/1.6.0/

------------------------------------------------------------------------
r178105 | dvossel | 2009-02-23 14:49:37 -0600 (Mon, 23 Feb 2009) | 13 lines

Blocked revisions 178030 via svnmerge

........
 r178030 | dvossel | 2009-02-23 11:59:55 -0600 (Mon, 23 Feb 2009) | 7 lines
 
 Changes the way keyrotation is enabled by default
 
 Key rotation was enabled by default by setting the global encryption method to IAX_ENCRYPT_KEYROTATE.  the problem with this is that if encryption is not enabled, and the encryption method is set to anything except 0, the peer appears to have encryption enabled when issuing a "iax2 show peers".  Rather than have the key rotation bit always set by default, it is now only set when an encryption method is enabled.
 
 (closes issue ASTERISK-13623)
 Reported by: mvanbaak
........

------------------------------------------------------------------------

http://svn.digium.com/view/asterisk?view=rev&revision=178105
By: Digium Subversion (svnbot) 2009-02-23 14:50:25.000-0600

Repository: asterisk
Revision: 178106

_U  branches/1.6.1/

------------------------------------------------------------------------
r178106 | dvossel | 2009-02-23 14:50:25 -0600 (Mon, 23 Feb 2009) | 13 lines

Blocked revisions 178030 via svnmerge

........
 r178030 | dvossel | 2009-02-23 11:59:55 -0600 (Mon, 23 Feb 2009) | 7 lines
 
 Changes the way keyrotation is enabled by default
 
 Key rotation was enabled by default by setting the global encryption method to IAX_ENCRYPT_KEYROTATE.  the problem with this is that if encryption is not enabled, and the encryption method is set to anything except 0, the peer appears to have encryption enabled when issuing a "iax2 show peers".  Rather than have the key rotation bit always set by default, it is now only set when an encryption method is enabled.
 
 (closes issue ASTERISK-13623)
 Reported by: mvanbaak
........

------------------------------------------------------------------------

http://svn.digium.com/view/asterisk?view=rev&revision=178106