Am 03.06.2013 20:33, schrieb Privus 007: > Hello list, > > I've researched this issue quite a bit before posting it here, so I'm now > fairly confident this bug/issue is with PJSIP's implementation of ZRTP and > not an Android or CSipSimple issue. > > In a nutshell, as I reported in CSipSimple's issue tracker here > http://code.google.com/p/csipsimple/issues/detail?id=2378 , all my ZRTP > enabled calls crash after a few seconds with the log full of these error > messages: > > "zrtp_android.c !ZRTP warning message: Dropping packet because SRTP > replay check failed!" Actually this message occurs _after_ ZRTP has setup the SRTP crypto context. Do you see any other ZRTP message before the replay message on one of the clients? > > I don't see anyone reporting the issue here, and I believe CSip > basically uses PJSIP's code for its ZRTP and SRTP implementation, so I > think the root of the problem lies in PJSIP. Not really PJSIP. It could be in the handling of the SRTP packets. Replay error means that the SRTP crypto stack thinks the packet was already received, i.e. a duplicate sequence number. This can have several reasons: the packet was given twice to the SRTP stack or some data was overwritten or the SRTP stack has a bug > > I've experimented with different phones (Samsung S3 LTE running 4.2.2 > as well as Sony Xperia running stock 4.0.4) and the crashes always > occur with ZRTP. Plain old (SDES based) SRTP calls are fine though. Which version of CSipSimple do you use? Nightly? I need to check which version of the ZRTP/SRTP stack CSIpSImple uses. I did some small fixes in SRTP some time ago that solves a "border case problem" with replay handling, however your report does not indicate this border case. > > Let me know if there's anything I can do to help or if you need more > logs and/or info. > > Thanks, > > Privus > > > > _______________________________________________ > Visit our blog: http://blog.pjsip.org > > pjsip mailing list > pjsip at lists.pjsip.org > http://lists.pjsip.org/mailman/listinfo/pjsip_lists.pjsip.org > -- ---------------------------------------------- Werner Dittmann Werner.Dittmann at t-online.de Tel +49 173 44 37 659 PGP key: 82EF5E8B
