-
Type:
Bug
-
Status: Closed
-
Priority:
Minor
-
Resolution: Fixed
-
Affects Version/s: 16.0.21
-
Fix Version/s: None
-
Component/s: Core
-
Labels:None
-
Sprint:Sprint 75
-
Bug Tracker:Customer Issue
-
ToDo:
-
Asterisk Version:Asterisk 18.13.0
-
Distro Version:FreePBX 16.0.21.9 - Centos 7.8
-
Distro:FreePBX Distro
Hello,
After a fpbx box update (also couple of fresh installs) i am facing a dysfunctional behaviour of freepbx core (precisely gen config).
First i noticed our endpoints not being able to answer calls (Failed to execute ‘setRemoteDescription’ on ‘RTCPeerConnection’: Failed to parse SessionDescription. a=fingerprint:SHA-256 Failed to create fingerprint from the digest.)
No hash is visible after "a=fingerprint:SHA-256".
I am using SIPJs webrtc clients.
I concluded that Freepbx does not export dtls parameters of the endpoint (pjsip.endpoint).
I checked that Media Encryption is set to DTLS-SRTP, DTLS is also enabled.
Still these variables are not generated :
40 => “dtls_verify=fingerprint”
41 => “dtls_setup=actpass”
42 => “dtls_rekey=0”
43 => “dtls_cert_file=/etc/asterisk/keys/XXXX.crt”
44 => “dtls_private_key=/etc/asterisk/keys/XXXX.key”
I traced some of the admin scripts , Certman.class.php is getting the data correctly , and is successfully setting the PJSIP class "_endpoint" array attribute via dialplanHooks.
But later it gets cleared right before Languages class is editing the attribute(_endpoint).
The variable ends up containing only language parameter, which explain why PJSIP Hook genConfig doesnt export the dtls variables.
I tried hosting my b2bua on different datacenters, different asterisk versions, new domain/certificate, OpenSSL 1.0.2k-fips upgrade to openssl 1.1.1, no success.
- is duplicated by
-
FREEPBX-23689
DTLS Fingerprint blank
-
- Closed
-
