| Summary: | ASTERISK-15513: IAX always attempts authentication against first (alphabetically) user | ||
| Reporter: | clint (clint) | Labels: | |
| Date Opened: | 2010-01-25 11:53:47.000-0600 | Date Closed: | 2011-06-07 14:00:43 |
| Priority: | Major | Regression? | No |
| Status: | Closed/Complete | Components: | Channels/chan_iax2 |
| Versions: | Frequency of Occurrence | ||
| Related Issues: | |||
| Environment: | Attachments: | ||
| Description: | With more than one IAX user configured with secrets, authentication is always attempted against alphabetically first user. Others fail with "no authority found for <wrong user>" error. Debug output on both ends confirms that server is prompting for authentication incorrectly. ****** ADDITIONAL INFORMATION ****** Test scenario: Calls from clienta to serverc work; calls from clientb to serverc do not. iax.conf - "Client" server A: [serverc] type=peer host=10.0.0.3 username=clienta secret=clientapw iax.conf - "Client" server B: [serverc] type=peer host=10.0.0.3 username=clientb secret=clientbpw iax.conf - "Server" server C: [clienta] type=user host=10.0.0.1 secret=clientapw context=from-clienta [serverb] type=user host=10.0.0.2 secret=clientbpw context=from-clientb Debug output from clientb when attempting call: -- Accepting call from '5555555555' to '5555555' on channel 0/1, span 1 -- Executing [5555555@incoming:1] Dial("DAHDI/1-1", "IAX2/serverc/+15555555555") in new stack -- Called serverc/+15555555555 Tx-Frame Retry[000] -- OSeqno: 000 ISeqno: 000 Type: IAX Subclass: NEW Timestamp: 00006ms SCall: 07514 DCall: 00000 [10.0.0.3:4569] VERSION : 2 CALLED NUMBER : +15555555555 CODEC_PREFS : () CALLING NUMBER : 5555555555 CALLING PRESNTN : 0 CALLING TYPEOFN : 33 CALLING TRANSIT : 0 CALLING NAME : LANGUAGE : en FORMAT : 2 CAPABILITY : 1795 ADSICPE : 2 DATE TIME : 2010-01-25 10:48:00 Rx-Frame Retry[Yes] -- OSeqno: 000 ISeqno: 001 Type: IAX Subclass: CTOKEN Timestamp: 00006ms SCall: 00001 DCall: 07514 [10.0.0.3:4569] Unknown IE 054 : Present Tx-Frame Retry[000] -- OSeqno: 000 ISeqno: 000 Type: IAX Subclass: NEW Timestamp: 00114ms SCall: 07514 DCall: 00000 [10.0.0.3:4569] VERSION : 2 CALLED NUMBER : +15555555555 CODEC_PREFS : () CALLING NUMBER : 5555555555 CALLING PRESNTN : 0 CALLING TYPEOFN : 33 CALLING TRANSIT : 0 CALLING NAME : LANGUAGE : en FORMAT : 2 CAPABILITY : 1795 ADSICPE : 2 DATE TIME : 2010-01-25 10:48:00 Unknown IE 054 : Present Rx-Frame Retry[ No] -- OSeqno: 000 ISeqno: 001 Type: IAX Subclass: AUTHREQ Timestamp: 00004ms SCall: 00359 DCall: 07514 [10.0.0.3:4569] AUTHMETHODS : 3 CHALLENGE : \x37\x31\x37\x37\x34\x36\x31\x39\x35 USERNAME : clienta Tx-Frame Retry[000] -- OSeqno: 001 ISeqno: 001 Type: IAX Subclass: AUTHREP Timestamp: 00220ms SCall: 07514 DCall: 00359 [10.0.0.3:4569] MD5 RESULT : fcf30f9571058dc080b051af921fc61c Rx-Frame Retry[ No] -- OSeqno: 001 ISeqno: 002 Type: IAX Subclass: ACK Timestamp: 00220ms SCall: 00359 DCall: 07514 [10.0.0.3:4569] Rx-Frame Retry[ No] -- OSeqno: 001 ISeqno: 002 Type: IAX Subclass: REJECT Timestamp: 00113ms SCall: 00359 DCall: 07514 [10.0.0.3:4569] CAUSE : No authority found CAUSE CODE : 50 [Jan 25 10:48:00] WARNING[16025]: chan_iax2.c:10190 socket_process: Call rejected by 10.0.0.3: No authority found Tx-Frame Retry[-01] -- OSeqno: 002 ISeqno: 002 Type: IAX Subclass: ACK Timestamp: 00113ms SCall: 07514 DCall: 00359 [10.0.0.3:4569] -- Hungup 'IAX2/banbury-7514' == Everyone is busy/congested at this time (1:0/0/1) -- Auto fallthrough, channel 'DAHDI/1-1' status is 'CHANUNAVAIL' -- Channel 0/1, span 1 got hangup request, cause 16 -- Hungup 'DAHDI/1-1' Debug output from serverc during same: Rx-Frame Retry[ No] -- OSeqno: 000 ISeqno: 000 Type: IAX Subclass: NEW Timestamp: 00006ms SCall: 07514 DCall: 00000 [10.0.0.2:4569] VERSION : 2 CALLED NUMBER : +15555555555 CODEC_PREFS : () CALLING NUMBER : 5555555555 CALLING PRESNTN : 0 CALLING TYPEOFN : 33 CALLING TRANSIT : 0 CALLING NAME : LANGUAGE : en FORMAT : 2 CAPABILITY : 1795 ADSICPE : 2 DATE TIME : 2010-01-25 10:48:00 Rx-Frame Retry[ No] -- OSeqno: 000 ISeqno: 000 Type: IAX Subclass: NEW Timestamp: 00114ms SCall: 07514 DCall: 00000 [10.0.0.2:4569] VERSION : 2 CALLED NUMBER : +15555555555 CODEC_PREFS : () CALLING NUMBER : 5555555555 CALLING PRESNTN : 0 CALLING TYPEOFN : 33 CALLING TRANSIT : 0 CALLING NAME : LANGUAGE : en FORMAT : 2 CAPABILITY : 1795 ADSICPE : 2 DATE TIME : 2010-01-25 10:48:00 Unknown IE 054 : Present Tx-Frame Retry[000] -- OSeqno: 000 ISeqno: 001 Type: IAX Subclass: AUTHREQ Timestamp: 00004ms SCall: 00359 DCall: 07514 [10.0.0.2:4569] AUTHMETHODS : 3 CHALLENGE : \x37\x31\x37\x37\x34\x36\x31\x39\x35 USERNAME : clienta Rx-Frame Retry[ No] -- OSeqno: 001 ISeqno: 001 Type: IAX Subclass: AUTHREP Timestamp: 00220ms SCall: 07514 DCall: 00359 [10.0.0.2:4569] MD5 RESULT : fcf30f9571058dc080b051af921fc61c [Jan 25 11:52:27] NOTICE[881]: chan_iax2.c:10425 socket_process: Host 10.0.0.2 failed to authenticate as clienta Tx-Frame Retry[-01] -- OSeqno: 001 ISeqno: 002 Type: IAX Subclass: ACK Timestamp: 00220ms SCall: 00359 DCall: 07514 [10.0.0.2:4569] Tx-Frame Retry[000] -- OSeqno: 001 ISeqno: 002 Type: IAX Subclass: REJECT Timestamp: 00113ms SCall: 00359 DCall: 07514 [10.0.0.2:4569] CAUSE : No authority found CAUSE CODE : 50 Rx-Frame Retry[ No] -- OSeqno: 002 ISeqno: 002 Type: IAX Subclass: ACK Timestamp: 00113ms SCall: 07514 DCall: 00359 [10.0.0.2:4569] | ||
| Comments: | By: David Vossel (dvossel) 2010-01-25 17:42:08.000-0600 "Calls from clienta to serverc work; calls from clientb to serverc do not." Did you mean calls from clientb to serverb do not work? By: David Vossel (dvossel) 2010-02-16 11:36:18.000-0600 I'm closing due to lack of feedback. Please re-open if you can provide additional information. | ||