Hello, In the releases after 5.7.2 there have been a lot of TLS related changes. There were necessary due to several critical memory corruption bugs due to implementation decisions from the OpenSSL team in version 3.x. These changes were somewhat larger as usually expected in minor releases, but ultimately necessary due to the mentioned problems. Due to the complexity of the problems, several iterations were necessary to solve it completely.
So, without looking too much into the details of your issue - I suspect that the problems you are observing might be caused from these changes. It might that you did a security package update that changes some memory layout, for example, that triggered it. I think that these TLS changes are now done in the releases 5.7.5 and 5.8.1, and these releases should be stable again. This has been confirmed on multiples reports on our issue tracker and also in some of our customer environments. So, I would suggest you give the 5.7.5 a try. If there are still crashes on startup, please let provide an update on the list or on the issue tracker. Cheers, Henning -- Henning Westerholt - https://skalatan.de/blog/ Kamailio services - https://gilawa.com > -----Original Message----- > From: stefanr--- via sr-users <sr-users@lists.kamailio.org> > Sent: Freitag, 17. Mai 2024 19:00 > To: sr-users@lists.kamailio.org > Cc: stef...@wave.com > Subject: [SR-Users] Re: Segfault on startup when using TLS in kamailio 5.7.4 > > For additional context: > > - Our Kamailio setup receives SIP messages from one endpoint over UDP and > forwards them to another endpoint over TLS, with rtpengine for RTP proxying. > - The issue only occurs on startup. E.g., after a VM reboot hosting our > Kamailio > container, after deploying an updated Docker container onto the VM, or just > after > restarting the docker container. > - Out of business hours, when the instance doesn't handle any traffic, we > can't > reproduce the issue. > - We've been running 5.7.4 for about two months. We did the upgrade out of > hours so the initial upgrade didn't trigger the issue. The issue occurred > during > redeployments yesterday and today, while the instance was handling traffic. We > saw a few dozen segfaults as we troubleshooted the issue during the incidents > yesterday and today. After business hours, we couldn't reproduce the issue. > - We've been doing regular kamailio upgrades to the latest 5.4.x-5.7.x > versions > and this instance has been around for years without any similar issues or > significant configuration changes. > __________________________________________________________ > Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send > an email to sr-users-le...@lists.kamailio.org > Important: keep the mailing list in the recipients, do not reply only to the > sender! > Edit mailing list options or unsubscribe: __________________________________________________________ Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send an email to sr-users-le...@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender! Edit mailing list options or unsubscribe:
