Chrome 63 having issue with DTLS

classic Classic list List threaded Threaded
5 messages Options
Reply | Threaded
Open this post in threaded view
|

Chrome 63 having issue with DTLS

nihar_deb
Opensips SDP generation with rtpengine is having issues. Chrome 63 version is expecting SDP with DTLS without "crypto " attribute.

setRemoteDescription(offer)
v=0
o=root 877343088 877343088 IN IP4 172.16.15.10
s=Asterisk PBX 14.5.0
c=IN IP4 172.16.15.10
t=0 0
m=audio 50000 RTP/SAVPF 8
a=rtpmap:8 PCMA/8000
a=maxptime:150
a=sendrecv
a=rtcp:50001
a=crypto:1 AES_CM_128_HMAC_SHA1_80 inline:qSLzXGrfvihzkg53/vEJAOOZepbUT+gjXhH7vvm0
a=setup:actpass
a=fingerprint:sha-1 66:BC:61:E1:4D:DC:B4:37:F9:17:C6:73:27:7D:78:79:6C:13:F0:00
a=ice-ufrag:lzIENyWZ
a=ice-pwd:1eFE8yWUCcyNBw7HXUCrvXi7uc
a=candidate:SpK0uqXBttDKehjj 1 UDP 2130706431 172.16.15.10 50000 typ host
a=candidate:SpK0uqXBttDKehjj 2 UDP 2130706430 172.16.15.10 50001 typ host

SIPml-api.js?svn=250:1 State machine: s0000_Started_2_Ringing_X_iINVITE
SIPml-api.js?svn=250:1 onSetRemoteDescriptionError


"SIPml-api.js?svn=250:1 DOMException: Failed to set remote offer sdp: Session error code: ERROR_CONTENT. Session error description: Cryptos must be empty when DTLS is active.."


I tried to remove crypto line from outgoing SDP on branch. But failed.


Please suggest what is the correct way to get rid of this issue.

1. Can we get response without crypto from rtpengine.
2. Or how to remove crypto from outgoing SDP.

Thanks in advance.

Reply | Threaded
Open this post in threaded view
|

Re: Chrome 63 having issue with DTLS

nihar_deb
Any help on this.
Reply | Threaded
Open this post in threaded view
|

Re: Chrome 63 having issue with DTLS

nihar_deb
In reply to this post by nihar_deb
We are passing following string to RTP engine in offer

UDP/TLS/RTP/SAVPF ICE=force DTLS=passive rtcp-mux-offer    media-address=xxx.xxx.xxx.xxx

Got  SDP shared previously from rtpengine. I need DTLS fingerprint in SDP but do not want crypto line in SDP from rtpengine. Can anyone please suggest what string to pass to rtpengine in offer.  
Reply | Threaded
Open this post in threaded view
|

Re: Chrome 63 having issue with DTLS

Anand Kumar
Same issue is coming with kamailio + rtpengine.


sip-0.7.8.min.js:36 Wed Dec 13 2017 17:49:01 GMT+0530 (India Standard Time) | sip.inviteservercontext | invalid description

sip-0.7.8.min.js:36 DOMException: Failed to set remote offer sdp: Session error code: ERROR_CONTENT. Session error description: Cryptos must be empty when DTLS is active..


Reply | Threaded
Open this post in threaded view
|

Re: Chrome 63 having issue with DTLS

kris
had the same. Resolved by deactivate SDES in rtpengine_offer function with SDES-disable flag.