OpenSSL DTLS-SRTP Problem

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

OpenSSL DTLS-SRTP Problem

Schuster Harald

Hi

I have a problem with DTLS-SRTP and I don’t know where to search. I tested two windows PCs with LinPhone 3.11.1 calling each other with DTLS active and the call works fine. The key exchange is ok and in wireshark everything works fine.

 

Now I have an external device with OpenSSL 1.0.2 and PjProject 2.9. I try to establish a call between the LinPhone and my external device. The LinPhone send the invite and the external device sends the following “client hello” message that could not be processed by the LinPhone. There is also no SRTP communication between them. After a specific time the external device sends a bye because of a RTP underrun. So my question is now if this is a problem in LinPhone (Something is no supported) or if the external device sends an incorrect message?!

 

Best regards
Harald

 

LinPhone Log:

warning: 2019-11-29 14:08:45:675 DTLS handhake returns -0x7900 : SSL - Processing of the ClientHello handshake message failed [on sessions: 068BF930 rtp session 0691CB80]

 

Message from external device:

Datagram Transport Layer Security

    SSL Record Layer: Handshake Protocol: Client Hello (Fragment)

        Content Type: Handshake (22)

        Version: DTLS 1.0 (0xfeff)

        Epoch: 0

        Sequence Number: 0

        Length: 243

        Handshake Protocol: Client Hello (Fragment)

            Handshake Type: Client Hello (1)

            Length: 298

            Message Sequence: 0

            Fragment Offset: 0

            Fragment Length: 231

    SSL Record Layer: Handshake Protocol: Client Hello (Reassembled)

        Content Type: Handshake (22)

        Version: DTLS 1.0 (0xfeff)

        Epoch: 0

        Sequence Number: 1

        Length: 79

        Handshake Protocol: Client Hello (Reassembled)

            Handshake Type: Client Hello (1)

            Length: 298

            Message Sequence: 0

            Fragment Offset: 231

            Fragment Length: 67

            Version: DTLS 1.2 (0xfefd)

            Random: 8783c8649728b9363eb99fb19230e7c717be5bcc6abb68c8...

            Session ID Length: 0

            Cookie Length: 0

            Cipher Suites Length: 160

            Cipher Suites (80 suites)

            Compression Methods Length: 1

            Compression Methods (1 method)

            Extensions Length: 96

            Extension: ec_point_formats (len=4)

            Extension: supported_groups (len=28)

            Extension: SessionTicket TLS (len=0)

            Extension: signature_algorithms (len=32)

            Extension: heartbeat (len=1)

            Extension: use_srtp (len=7)

        [2 Message fragments (298 bytes): #77(231), #77(67)]

            [Frame: 77, payload: 0-230 (231 bytes)]

            [Frame: 77, payload: 231-297 (67 bytes)]

            [Message fragment count: 2]

            [Reassembled DTLS length: 298]

 


_______________________________________________
Linphone-users mailing list
[hidden email]
https://lists.nongnu.org/mailman/listinfo/linphone-users