Summary:ASTERISK-23134: [patch] res_rtp_asterisk port selection cannot handle selinux port restrictions
Reporter:Corey Farrell (coreyfarrell)Labels:
Date Opened:2014-01-11 09:43:25.000-0600Date Closed:2014-01-30 14:29:03.000-0600
Versions:SVN 11.7.0 12.0.0 Frequency of
Environment:CentOS 6, SELinux enabled with default settingsAttachments:( 0) res_rtp_asterisk-selinux-compat.patch
( 1) udptl-selinux-compat.patch
Description:When a port is reserved by SELinux, ast_bind to that port causes errno == EACCES.  Instead of trying the next port ast_rtp_new gives up.

As an example CentOS 6 default SELinux reserves udp port 10080-10082 for Amanda backup.  This overlaps the rtp.conf default port range, causing random failed call setup's.
Comments:By: Corey Farrell (coreyfarrell) 2014-01-12 21:55:48.277-0600

Looks like udptl has the same issue.  I've done a compile only test for the udptl patch.  Unlike RTP I don't have a way to test udptl.

By: Kinsey Moore (kmoore) 2014-01-29 10:37:56.746-0600

These patches look good. Feel free to merge them into 1.8, 11, 12, and trunk. The repotools script 'gen_commit_msg' is great for taking care of the boilerplate in commit messages if you don't already know about it.