Don't pass SRTP to the other leg on reinvite if it was not secured on initial invite #274

Elhodred · 2024-03-20T11:39:53Z

No description provided.

dev-ryanc · 2024-03-21T13:01:25Z

src/switch_core_media.c

@@ -5314,7 +5314,7 @@ static void check_stream_changes(switch_core_session_t *session, const char *r_s
 				switch_core_media_merge_sdp_codec_string(session, r_sdp, sdp_type, filter_codec_string);
 			}

-			if (switch_channel_test_flag(session->channel, CF_SECURE)) {
+			if (switch_channel_test_flag(session->channel, CF_SECURE) && switch_channel_test_flag(other_session->channel, CF_SECURE)) {


I think we also need to check the other_session for CF_SECURE. For example if somehow the current session isn't secure but the partner session is secure then we still need to execute switch_core_session_check_outgoing_crypto. If both is secured then we will set the crypto_mode and call switch_core_session_check_outgoing_crypto

Check if other session was secured

8ad0c86

Elhodred self-assigned this Mar 20, 2024

Elhodred requested review from dev-ryanc, baloeng and minhtuan1407-telnyx March 20, 2024 11:40

dev-ryanc requested changes Mar 21, 2024

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Don't pass SRTP to the other leg on reinvite if it was not secured on initial invite #274

Don't pass SRTP to the other leg on reinvite if it was not secured on initial invite #274

Elhodred commented Mar 20, 2024

dev-ryanc Mar 21, 2024

Don't pass SRTP to the other leg on reinvite if it was not secured on initial invite #274

Are you sure you want to change the base?

Don't pass SRTP to the other leg on reinvite if it was not secured on initial invite #274

Conversation

Elhodred commented Mar 20, 2024

dev-ryanc Mar 21, 2024

Choose a reason for hiding this comment