HomeProjectsCall Session Control FunctionsIssues

Drop the r_ipsec on failure to set SAs

warning: file_exists() [function.file-exists]: open_basedir restriction in effect. File(/var/www/localhost/htdocs/openimscore/docs/pictures/picture-3.jpg) is not within the allowed path(s): (/tmp:/var/tmp:/var/cache:/usr/local/httpd/php:/usr/local/lib/php:/usr/local/httpd/include:/home/groups/openimscore) in /home/groups/openimscore/htdocs/modules/user/user.module on line 617.
March 18, 2007 - 18:50 — jsbach
Project:Call Session Control Functions
Component:Code
Category:bug
Priority:normal
Assigned:Unassigned
Status:active
Description

If the IPSec scripts fail and the associations are set, the P-CSCF would still consider them OK and continue. The r_ipsec structure should be deleted on such a failure. This bugs allows for bogus "integrity-protection=yes" in the REGISTER messages.

Updates

#1 submitted by flp on June 29, 2007 - 11:45
Status:active» fixed

Fixed in r336. Now, there are 2 r_ipsec structures for each security (temp and final).

#2 submitted by vingarzan on July 5, 2007 - 17:25
Status:fixed» active

There is still 1 remaining issue: the execution of the IPSec setting scripts is not confirmed. A check is required after the respective execution and on failure detection the IPSec information needs to be dropped.