Summary: | ASTERISK-23134: [patch] res_rtp_asterisk port selection cannot handle selinux port restrictions | ||
Reporter: | Corey Farrell (coreyfarrell) | Labels: | |
Date Opened: | 2014-01-11 09:43:25.000-0600 | Date Closed: | 2014-01-30 14:29:03.000-0600 |
Priority: | Major | Regression? | |
Status: | Closed/Complete | Components: | Resources/res_rtp_asterisk |
Versions: | SVN 1.8.25.0 11.7.0 12.0.0 | Frequency of Occurrence | Occasional |
Related Issues: | |||
Environment: | CentOS 6, SELinux enabled with default settings | Attachments: | ( 0) res_rtp_asterisk-selinux-compat.patch ( 1) udptl-selinux-compat.patch |
Description: | When a port is reserved by SELinux, ast_bind to that port causes errno == EACCES. Instead of trying the next port ast_rtp_new gives up.
As an example CentOS 6 default SELinux reserves udp port 10080-10082 for Amanda backup. This overlaps the rtp.conf default port range, causing random failed call setup's. | ||
Comments: | By: Corey Farrell (coreyfarrell) 2014-01-12 21:55:48.277-0600 Looks like udptl has the same issue. I've done a compile only test for the udptl patch. Unlike RTP I don't have a way to test udptl. By: Kinsey Moore (kmoore) 2014-01-29 10:37:56.746-0600 Corey, These patches look good. Feel free to merge them into 1.8, 11, 12, and trunk. The repotools script 'gen_commit_msg' is great for taking care of the boilerplate in commit messages if you don't already know about it. |