[SR-Users] Freezing development for 5.8.x series
Hello, I propose to aim freezing the development for 5.8.x series at the end of the 1st of February 2024 (Thursday). New features that one wants to get in this release series have to be pushed to git repository or pull requests made for them. Afterwards usually follows a 4-6 weeks of testing till the first release 5.8.0. Unfreezing will happen earlier, after the first weeks of testing when the 5.8 branch will be created. Cheers, Daniel -- Daniel-Constantin Mierla (@ asipto.com) twitter.com/miconda -- linkedin.com/in/miconda Kamailio Consultancy, Training and Development Services -- asipto.com Kamailio Advanced Training, February 20-22, 2024 -- asipto.com Kamailio World Conference, April 18-19, 2024, Berlin -- kamailioworld.com __ Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send an email to sr-users-le...@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender! Edit mailing list options or unsubscribe:
[SR-Users] Re: SSL key logger for Diffie-Hellman cipher
It turns out the system I was on really uses /lib/systemd/system/kamailio.service, despite /etc/init.d/kamailio also existing. I was able to make it work by following the Systemd process: mkdir /etc/default/kamailio.d/ edit /etc/default/kamailio.d/voipmonitor add lines: SSLKEYLOG_UDP='127.0.0.1:1234' LD_PRELOAD="/usr/local/src/voipmonitor-git/tools/ssl_keylogger/sslkeylog.so /usr/lib/x86_64-linux-gnu/libssl.so.3" The keys are captured by the VoIPmonitor sniffer and everything works as expected from there. I'd be happy to explain further to anyone interested in this setup. On Sun, Jan 28, 2024 at 3:20 AM Sergey Safarov wrote: > You can check this PR > https://github.com/kamailio/kamailio/pull/2785 > > On Fri, Jan 26, 2024 at 8:58 PM Calvin E. via sr-users < > sr-users@lists.kamailio.org> wrote: > >> I've been tasked to use LD_PRELOAD to log SSL keys for TLS connections >> using a Diffie-Hellman cipher. The first attempt did not work, so I wanted >> to sanity check whether Kamailio's TLS support is built in such a way that >> would defeat LD_PRELOAD. >> >> The instructions from the vendor are to update /etc/init.d/kamailio like >> this: >> >> env SSLKEYLOG_UDP='127.0.0.1:1234' >> LD_PRELOAD="/usr/local/src/voipmonitor-git/tools/ssl_keylogger/sslkeylog.so >> /usr/lib/x86_64-linux-gnu/libssl.so.3" \ >> start-stop-daemon --start --quiet --pidfile $PIDFILE \ >> --exec $DAEMON -- $OPTIONS || log_failure_msg " already >> running" >> >> Is there anything special in Kamailio (5.7.3 on Debian 12) that would >> prevent this from working? Not necessarily something to defeat a keylogger, >> but maybe the way tls.so gets loaded? >> >> The only discrepancy I've noticed is the vendor docs refer to libssl.so.3 >> not libssl.so.1, but the vendor said that should be OK. >> >> I'd love to hear from someone already using VoIPmonitor >> with Diffie-Hellman ciphers and Kamailio. >> >> __ >> Kamailio - Users Mailing List - Non Commercial Discussions >> To unsubscribe send an email to sr-users-le...@lists.kamailio.org >> Important: keep the mailing list in the recipients, do not reply only to >> the sender! >> Edit mailing list options or unsubscribe: >> > __ Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send an email to sr-users-le...@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender! Edit mailing list options or unsubscribe:
[SR-Users] Re: apt-key deprecation
Yes! Item 2 looks like the missing secret sauce. Thank you! On Mon, Jan 29, 2024 at 8:54 AM Moshe Katz wrote: > Hello, > > There is actually a new more-preferred way of doing this. It is slightly > more work, but it directly connects the GPG key to the repository with > which it is being used. > > 1. Download the key and de-armor it (i.e. convert from ASCII to binary): > > ``` > wget -O- https://deb.kamailio.org/kamailiodebkey.gpg | gpg --dearmor | > sudo tee /etc/apt/keyrings/kamailio.gpg > ``` > > 2. When adding the repository, tell apt that this is the key that should > be used for it: > > ``` > deb [signed-by=/etc/apt/keyrings/kamailio.gpg] > http://deb.kamailio.org/kamailio57 CODE_NAME main > ``` > > This has actually been supported for many years, but it is becoming a lot > more common now because it prevents a stolen key from one repository from > being used to sign fake packages in another repository. > > Moshe > > > On Mon, Jan 29, 2024 at 9:34 AM Tom Lynn via sr-users < > sr-users@lists.kamailio.org> wrote: > >> Thanks, I'll check it out! >> >> On Mon, Jan 29, 2024, 1:39 AM Who AmI wrote: >> >>> Hi TL, >>> >>> I use the below which may help: >>> >>> wget -O- https://deb.kamailio.org/kamailiodebkey.gpg | sudo tee >>> /etc/apt/trusted.gpg.d/kamailio.asc >>> >>> This adds the key but not via apt-key, then just add your repo to >>> sources.list.d like previously. >>> >>> Thanks, >>> >>> John. >>> >>> On Mon, 29 Jan 2024 at 05:05, tom--- via sr-users < >>> sr-users@lists.kamailio.org> wrote: >>> When I look at the debian repositories maintained by the project, there are instructions to import the public key of the repository for apt using this command: wget -O http://deb.kamailio.org/kamailiodebkey.gpg | sudo apt-key add - which results in: Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d instead (see apt-key(8)). gpg: no valid OpenPGP data found. Is there an alternate method that can be posted in the repository that will get better results? Thank you, TL __ Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send an email to sr-users-le...@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender! Edit mailing list options or unsubscribe: >>> __ >> Kamailio - Users Mailing List - Non Commercial Discussions >> To unsubscribe send an email to sr-users-le...@lists.kamailio.org >> Important: keep the mailing list in the recipients, do not reply only to >> the sender! >> Edit mailing list options or unsubscribe: >> > __ Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send an email to sr-users-le...@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender! Edit mailing list options or unsubscribe:
[SR-Users] Re: Kamailio 5.6 (and 5.7) core dumping.
Hi Mattis, We tried v5.6 and v5.7.2 also, in both of them the crash occurs. Peter From: Mattis Lind Date: Monday, 2024. January 29. 13:52 To: Dr. Barabás Péter Cc: Kamailio (SER) - Users Mailing List Subject: Re: [SR-Users] Kamailio 5.6 (and 5.7) core dumping. Hello Péter, Den ons 24 jan. 2024 kl 09:58 skrev Dr. Barabás Péter mailto:dr.peter.bara...@gmail.com>>: Hi Mattis, I have similar cases: https://github.com/kamailio/kamailio/issues/3522 Indeed it looks very similar. One of the core dumps we have seen is identical to one of those that you provided in your report. Question: is $uac_req(evroute) set to 1 and do you handle uac:reply event route? In my case crash only occurs when these are true. If I switch evroute off, no crash occurs. Yes, we have $uac_req(evroute) set to 1 and handle the uac:reply event route. We tested removing those but it had a lot of side-effects we weren't aware of in the rest of our system so we could enable it in our staging environment. What other versions of Kamailio have you tested? We have reverted back to 5.5 and so far it seems to be working, but we have had very little run time on it so we are not convinced yet. The problem is that there is a feature in the nathelp modules (alias_name) that we would like to have which only exists from 5.6 and onwards. /Mattis Péter Barabás From: Mattis Lind via sr-users mailto:sr-users@lists.kamailio.org>> Date: Wednesday, 2024. January 24. 9:46 To: Kamailio (SER) - Users Mailing List mailto:sr-users@lists.kamailio.org>> Cc: Mattis Lind mailto:mattisl...@gmail.com>> Subject: [SR-Users] Kamailio 5.6 (and 5.7) core dumping. Hello Kamailio list! We have a scenario that makes use of the UAC-module to send SIP MESSAGE and then in some cases the Kamailio process core dumps after some time after processing messages. I have been able to gather a core dump which shows this backtrace appended below. We are using Kamailio 5.6 retrieved from the kamailio repository: http://deb.kamailio.org/kamailio56. We are running Kamailio in a Docker container which runs on "5.10.0-25-cloud-amd64 #1 SMP Debian 5.10.191-1 (2023-08-16) x86_64 GNU/Linux" We have previously tried to use Kamailio 5.7 but it gave the same type of crashes. We have been using the uac module a lot but it is just in this scenario we get a core dump. We have some kind of relation to a specific scenario but it can take from several seconds from the last SIP message of this scenario up to 50 minutes until the crash occurs. To me this sounds like some kind of cleanup that is not handled properly. The back trace indicates that free of shared memory could be the issue, but I don't know the code unfortunately. The last things we see in the log file is: 2024-01-23T13:18:08.828+01:00 Jan 23 12:18:08 /usr/sbin/kamailio[4789]: INFO:
[SR-Users] Re: apt-key deprecation
Hello, There is actually a new more-preferred way of doing this. It is slightly more work, but it directly connects the GPG key to the repository with which it is being used. 1. Download the key and de-armor it (i.e. convert from ASCII to binary): ``` wget -O- https://deb.kamailio.org/kamailiodebkey.gpg | gpg --dearmor | sudo tee /etc/apt/keyrings/kamailio.gpg ``` 2. When adding the repository, tell apt that this is the key that should be used for it: ``` deb [signed-by=/etc/apt/keyrings/kamailio.gpg] http://deb.kamailio.org/kamailio57 CODE_NAME main ``` This has actually been supported for many years, but it is becoming a lot more common now because it prevents a stolen key from one repository from being used to sign fake packages in another repository. Moshe On Mon, Jan 29, 2024 at 9:34 AM Tom Lynn via sr-users < sr-users@lists.kamailio.org> wrote: > Thanks, I'll check it out! > > On Mon, Jan 29, 2024, 1:39 AM Who AmI wrote: > >> Hi TL, >> >> I use the below which may help: >> >> wget -O- https://deb.kamailio.org/kamailiodebkey.gpg | sudo tee >> /etc/apt/trusted.gpg.d/kamailio.asc >> >> This adds the key but not via apt-key, then just add your repo to >> sources.list.d like previously. >> >> Thanks, >> >> John. >> >> On Mon, 29 Jan 2024 at 05:05, tom--- via sr-users < >> sr-users@lists.kamailio.org> wrote: >> >>> When I look at the debian repositories maintained by the project, there >>> are instructions to import the public key of the repository for apt using >>> this command: >>> >>> wget -O http://deb.kamailio.org/kamailiodebkey.gpg | sudo apt-key add - >>> >>> which results in: >>> >>> Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d >>> instead (see apt-key(8)). >>> gpg: no valid OpenPGP data found. >>> >>> Is there an alternate method that can be posted in the repository that >>> will get better results? >>> >>> Thank you, >>> TL >>> __ >>> Kamailio - Users Mailing List - Non Commercial Discussions >>> To unsubscribe send an email to sr-users-le...@lists.kamailio.org >>> Important: keep the mailing list in the recipients, do not reply only to >>> the sender! >>> Edit mailing list options or unsubscribe: >>> >> __ > Kamailio - Users Mailing List - Non Commercial Discussions > To unsubscribe send an email to sr-users-le...@lists.kamailio.org > Important: keep the mailing list in the recipients, do not reply only to > the sender! > Edit mailing list options or unsubscribe: > __ Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send an email to sr-users-le...@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender! Edit mailing list options or unsubscribe:
[SR-Users] Re: Kamailio 5.6 (and 5.7) core dumping.
Hello Péter, Den ons 24 jan. 2024 kl 09:58 skrev Dr. Barabás Péter < dr.peter.bara...@gmail.com>: > Hi Mattis, > > > > I have similar cases: > > https://github.com/kamailio/kamailio/issues/3522 > Indeed it looks very similar. One of the core dumps we have seen is identical to one of those that you provided in your report. > > > Question: is $uac_req(evroute) set to 1 and do you handle uac:reply event > route? > > In my case crash only occurs when these are true. If I switch evroute off, > no crash occurs. > Yes, we have $uac_req(evroute) set to 1 and handle the uac:reply event route. We tested removing those but it had a lot of side-effects we weren't aware of in the rest of our system so we could enable it in our staging environment. What other versions of Kamailio have you tested? We have reverted back to 5.5 and so far it seems to be working, but we have had very little run time on it so we are not convinced yet. The problem is that there is a feature in the nathelp modules (alias_name) that we would like to have which only exists from 5.6 and onwards. /Mattis > Péter Barabás > > > > > > > > *From: *Mattis Lind via sr-users > *Date: *Wednesday, 2024. January 24. 9:46 > *To: *Kamailio (SER) - Users Mailing List > *Cc: *Mattis Lind > *Subject: *[SR-Users] Kamailio 5.6 (and 5.7) core dumping. > > Hello Kamailio list! > > > > We have a scenario that makes use of the UAC-module to send SIP MESSAGE > and then in some cases the Kamailio process core dumps after some time > after processing messages. I have been able to gather a core dump which > shows this backtrace appended below. We are using Kamailio 5.6 retrieved > from the kamailio repository: http://deb.kamailio.org/kamailio56. We are > running Kamailio in a Docker container which runs on "5.10.0-25-cloud-amd64 > #1 SMP Debian 5.10.191-1 (2023-08-16) x86_64 GNU/Linux" > > We have previously tried to use Kamailio 5.7 but it gave the same type of > crashes. > > > > We have been using the uac module a lot but it is just in this scenario we > get a core dump. We have some kind of relation to a specific scenario but > it can take from several seconds from the last SIP message of this scenario > up to 50 minutes until the crash occurs. To me this sounds like some kind > of cleanup that is not handled properly. The back trace indicates that free > of shared memory could be the issue, but I don't know the code > unfortunately. > > > > The last things we see in the log file is: > > 2024-01-23T13:18:08.828+01:00 Jan 23 12:18:08 /usr/sbin/kamailio[4789]: > INFO:
[SR-Users] Re: apt-key deprecation
Thanks, I'll check it out! On Mon, Jan 29, 2024, 1:39 AM Who AmI wrote: > Hi TL, > > I use the below which may help: > > wget -O- https://deb.kamailio.org/kamailiodebkey.gpg | sudo tee > /etc/apt/trusted.gpg.d/kamailio.asc > > This adds the key but not via apt-key, then just add your repo to > sources.list.d like previously. > > Thanks, > > John. > > On Mon, 29 Jan 2024 at 05:05, tom--- via sr-users < > sr-users@lists.kamailio.org> wrote: > >> When I look at the debian repositories maintained by the project, there >> are instructions to import the public key of the repository for apt using >> this command: >> >> wget -O http://deb.kamailio.org/kamailiodebkey.gpg | sudo apt-key add - >> >> which results in: >> >> Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d >> instead (see apt-key(8)). >> gpg: no valid OpenPGP data found. >> >> Is there an alternate method that can be posted in the repository that >> will get better results? >> >> Thank you, >> TL >> __ >> Kamailio - Users Mailing List - Non Commercial Discussions >> To unsubscribe send an email to sr-users-le...@lists.kamailio.org >> Important: keep the mailing list in the recipients, do not reply only to >> the sender! >> Edit mailing list options or unsubscribe: >> > __ Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send an email to sr-users-le...@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender! Edit mailing list options or unsubscribe:
[SR-Users] Re: How to achieve conversion from 180 to 183sdp
Hi, I don't think what you are wanting to do here is possible with a SIP proxy. :-) — Sent from mobile, apologies for brevity and errors. > On Jan 29, 2024, at 1:08 AM, mm e via sr-users > wrote: > > When receiving to-tag and returning 180 ring without SDP body, how can it be > converted into 183 with SDP and returned to from-tag. I want to realize that > when I receive 180 no sdp, I will play an audio clip for the from-tag.: > > INVITE (SDP) > ──> │ >100 Trying > <── │ >│ > INVITE (SDP) >│ > ──> > > 100 Trying >│ > <── > >180 Ringing >│ > <── >183 Session Progress (SDP) │ > <── │ > __ > Kamailio - Users Mailing List - Non Commercial Discussions > To unsubscribe send an email to sr-users-le...@lists.kamailio.org > Important: keep the mailing list in the recipients, do not reply only to the > sender! > Edit mailing list options or unsubscribe: __ Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send an email to sr-users-le...@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender! Edit mailing list options or unsubscribe:
[SR-Users] Re: apt-key deprecation
Hi TL, I use the below which may help: wget -O- https://deb.kamailio.org/kamailiodebkey.gpg | sudo tee /etc/apt/trusted.gpg.d/kamailio.asc This adds the key but not via apt-key, then just add your repo to sources.list.d like previously. Thanks, John. On Mon, 29 Jan 2024 at 05:05, tom--- via sr-users < sr-users@lists.kamailio.org> wrote: > When I look at the debian repositories maintained by the project, there > are instructions to import the public key of the repository for apt using > this command: > > wget -O http://deb.kamailio.org/kamailiodebkey.gpg | sudo apt-key add - > > which results in: > > Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d > instead (see apt-key(8)). > gpg: no valid OpenPGP data found. > > Is there an alternate method that can be posted in the repository that > will get better results? > > Thank you, > TL > __ > Kamailio - Users Mailing List - Non Commercial Discussions > To unsubscribe send an email to sr-users-le...@lists.kamailio.org > Important: keep the mailing list in the recipients, do not reply only to > the sender! > Edit mailing list options or unsubscribe: > __ Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send an email to sr-users-le...@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender! Edit mailing list options or unsubscribe:
[SR-Users] Re: usrloc database duplicate keys issue
Hi Henning > somehow the usrloc internal record id got duplicated. Are you seeing this > error frequently or just on some occasions, like the restart you mentioned? > You can try to activate this parameter: > https://kamailio.org/docs/modules/5.7.x/modules/usrloc.html#usrloc.p.db_insert_update It only happens when restarting. I fear, there is some racing condition when kamailio initially reads in the database and clients re-register at the same time. Then the problem persists, and constantly generates error entries in the log, until I delete the eventually 'expired' entries from the database manually. Dank you for pointing out: db_insert_update, I missed that option, that sounds like the solution I was looking for. Mit freundlichen Grüssen -Benoît Panizzon- -- I m p r o W a r e A G-Leiter Commerce Kunden __ Zurlindenstrasse 29 Tel +41 61 826 93 00 CH-4133 PrattelnFax +41 61 826 93 01 Schweiz Web http://www.imp.ch __ __ Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send an email to sr-users-le...@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender! Edit mailing list options or unsubscribe: