Commit Graph

21436 Commits

Author SHA1 Message Date
Brian West afeb7f327c OpenCNAM frontend so you can feed it 10 or 11 digits and cache the results. 2012-05-31 14:18:58 -05:00
Ken Rice 24f6c4056b missed a spot removing mod_fax 2012-05-31 11:25:28 -05:00
Anthony Minessale 693e04a7de FS-4250 please post a new log if this does not work 2012-05-31 09:04:14 -05:00
Ken Rice 5be9857af2 remove mod_fax. this has been deprecated for quite a while 2012-05-31 10:25:49 -05:00
Christopher Rienzo be2ec29282 Add Maintainer to mod_posix_timer, mod_unimrcp, mod_http_cache 2012-05-31 13:24:24 +00:00
Giovanni Maruzzelli 07bc7ba763 gsmopen and skypopen: updated License headers 2012-05-31 07:41:14 +02:00
Jeff Lenk 39bad5b13e vs2010 reswig for last commit 2012-05-30 15:58:48 -05:00
Anthony Minessale 3e1d68b0a6 FS-4250 --resolve erase replaces header after using it 2012-05-30 13:08:31 -05:00
Anthony Minessale 192030c578 add metadata col to internal registrations table 2012-05-30 13:05:05 -05:00
Travis Cross 82b00ecbc8 don't build mod_ilbc or mod_siren by default
Our default build probably shouldn't include non-free software.  With
mod_ilbc, the licensing situation is merely ambiguous.  With
mod_siren, the user can't use this code without getting explicit
permission from Polycom (though it is apparently easily given).
2012-05-30 15:10:00 +00:00
Travis Cross 76c3580e83 fix build test for revision number
The test was backward.  If the revision is in switch_version.h.in then
we have the version already.
2012-05-29 22:14:03 +00:00
Anthony Minessale 8bb55ed4bf abstract out originate_signal_bond to a function to avoid confustion and regressions 2012-05-29 13:10:15 -05:00
Travis Cross 4d8cdb3276 debian: don't depend on non-free codecs for meta-vanilla 2012-05-29 18:42:35 +00:00
Travis Cross 226851e8b0 don't use Siren or iLBC by default in example configs
These codecs are non-free which creates issues for distributions, so
let's not require these by default to run our example configs.  We can
add back in iLBC once we resolve the licensing situation with our
in-tree implementation.
2012-05-29 18:41:17 +00:00
Travis Cross 6679e3f589 debian: add option to run builds in parallel 2012-05-29 16:52:11 +00:00
Anthony Minessale baf5bbd565 FS-4266 --resolve 2012-05-29 08:42:51 -05:00
Travis Cross 25287f3828 debian: add option to control make/bootstrap -j settings 2012-05-28 19:21:06 +00:00
Travis Cross 9f578ca440 debian: use bootstrap.sh -j
We believe it to be safe now.  In test run on multi-core machines it
is producing bit-for-bit identical result compared to the non-parallel
invocation.
2012-05-28 18:28:23 +00:00
Travis Cross b4816ae952 debian: place build results in ../ 2012-05-28 18:24:11 +00:00
Travis Cross a5d696d517 debian: ensure set -e behavior when run under build-all
build_all call each of these subroutines under a sub-shell, so the set
-e gets wiped out.
2012-05-28 18:22:13 +00:00
Travis Cross 2365f41fdc debian: add a build quicktest feature 2012-05-28 18:22:12 +00:00
Travis Cross d3cb703697 debian: force build output to stderr
Because we're capturing the string return value of these functions, we
can't see any output that goes to stdout.
2012-05-28 18:22:09 +00:00
Travis Cross 496b9a9c78 debian: add utility for building all distros and architectures 2012-05-28 18:21:35 +00:00
Travis Cross 40a98d4b49 debian: disable modules that break the build 2012-05-28 18:21:35 +00:00
Travis Cross 8fb3f54c15 debian: add option to create pbuilder debug hook 2012-05-28 18:21:30 +00:00
Travis Cross 139485855d debian: don't try to build non-dfsg modules 2012-05-28 18:20:43 +00:00
Travis Cross 0bab77bf96 debian: refactor and improve build utilities 2012-05-28 18:20:37 +00:00
Travis Cross 15a67097d8 debian: add utility for rolling nightly builds 2012-05-28 16:35:01 +00:00
Travis Cross 870ef6f83f debian: don't bundle sounds in orig tarball
We've moved the sounds to a separate source package.
2012-05-28 16:35:01 +00:00
Travis Cross 7d5062f9c9 debian: don't force-create the orig tarball 2012-05-28 16:35:00 +00:00
Travis Cross fa0de2efd3 add .gitattributes
Add some attributes that are useful for packaging.
2012-05-28 16:35:00 +00:00
Travis Cross dfddd3ec10 debian: remove utilities that duplicate debian tools
install-build-depends is inferior to:

  mk-build-deps -i
2012-05-28 16:34:52 +00:00
Travis Cross be3ee2404c reindent 2012-05-28 12:24:46 +00:00
Stefan Knoblich 44e6dd2680 FreeSWITCH: Make libzrtp library paths absolute (or relative to top srcdir), fixes FS-4260.
Reference-URL: http://jira.freeswitch.org/browse/FS-4260
Tested-by: Stefan Knoblich <stkn@openisdn.net>
Signed-off-by: Stefan Knoblich <stkn@openisdn.net>
2012-05-27 14:36:15 +02:00
Travis Cross 219831edf3 debian: pull in mod_spandsp with other codecs 2012-05-27 06:34:52 +00:00
Travis Cross 890a89b6e3 debian: suggest rather than depend on problematic codecs 2012-05-27 06:17:58 +00:00
Travis Cross c6b523c65f add inbound-zrtp-passthru to sample configs 2012-05-27 05:58:12 +00:00
Travis Cross 8513be49de enable inbound-late-negotiation in sample configs
We often tell people to enable this for various reasons; it likely
makes a sensible default.
2012-05-27 05:50:47 +00:00
Travis Cross 73614127fc whitespace cleanup 2012-05-27 05:44:14 +00:00
Travis Cross 9b569ec875 cleanup and consolidate mod_sofia configuration example 2012-05-27 05:23:29 +00:00
Anthony Minessale 03b92c9ba1 FS-4251 --resolve just a silly oversight in the code specific to this use case, thanks 2012-05-25 11:02:56 -05:00
Marc Olivier Chouinard 09bef08b83 FS-4254 --resolve
I've changed the variable name from cc_export to cc_export_vars to be more consistant from the original patch
2012-05-25 13:45:02 -04:00
Anthony Minessale 452e1d8271 FS-4249 --resolve 2012-05-25 07:54:11 -05:00
Marc Olivier Chouinard d7002351d7 mod_voicemail: Make sure vm_fsdb api create the user directory before trying to move file into it 2012-05-25 07:18:55 -04:00
Travis Cross 771819c430 setup-git.sh: set pull.rebase=true
git-pull learned about pull.rebase in git-1.7.9.  This value is used
as a fallback if branch.<name>.rebase isn't found.
2012-05-25 04:46:28 +00:00
Travis Cross 409ff21cc4 debian: improve policy compliance on debian/copyright 2012-05-25 02:45:00 +00:00
Jeff Lenk b0e95fdad6 vs2010 reswig mod_managed 2012-05-24 16:03:56 -05:00
Anthony Minessale 9b6702da67 swigall 2012-05-24 13:53:23 -05:00
Anthony Minessale 9daf595443 swigall 2012-05-24 13:52:53 -05:00
Travis Cross 23f8967c32
add enhanced zrtp passthrough (zrtp passthru) mode
ZRTP passthrough mode allows two ZRTP-capable clients to negotiate an
end-to-end security association through FreeSWITCH.  The clients are
therefore able to be certain that the FreeSWITCH instance mediating
the call cannot eavesdrop on their conversation.

Importantly, this capability is maintained across multiple FreeSWITCH
hops.  If widely deployed, this enables a global network architecture
where two people can speak securely with strong cryptographically
protected authentication and confidentiality.

With this commit we implement a zrtp-passthru mode that handles all
the details of the negotiation intelligently.  This mode can be
selected by setting the boolean parameter inbound-zrtp-passthru in the
sofia profile.  This will also force late-negotiation as it is
essential for correctly negotiating an end-to-end ZRTP security
association.

When an incoming call with a zrtp-hash is received and this mode is
enabled, we find the first audio and the first video zrtp-hash in the
SDP and store them as remote values on this channel.  Once a b-leg is
available, we set the local zrtp-hash values on that channel to the
remote zrtp-hash values collected from the a-leg.

Because zrtp-passthru absolutely requires that the channels negotiate
the same codec, we offer to the b-leg only codecs that the a-leg can
speak.  Once the b-leg accepts a codec, we will force that choice onto
the a-leg.

If the b-leg sends us zrtp-hash values in the signaling, we store
those as remote values on the b-leg and copy them to the local values
on the a-leg.

At this point, each leg has the zrtp-hash values from the other, and
we know we can do ZRTP passthrough mode on the call.  We send the
b-leg's zrtp-hash back to the a-leg in the 200 OK.

We then enable UDPTL mode on the rtp streams for both the audio and
the video so that we don't interfere in the ZRTP negotiation.

If the b-leg fails to return a zrtp-hash in the signaling, we set up a
ZRTP security association with the a-leg ourselves, if we are so
equipped.  Likewise, if the a-leg fails to send a zrtp-hash in the
signaling, we attempt to set up a ZRTP security association ourselves
with the b-leg.

The zrtp-passthru mode can also be enabled in the dialplan by setting
the boolean channel variable zrtp_passthru.  If enabled in this
manner, we can't force late-negotiation, so the user would need to be
sure this is configured.

If ZRTP passthrough mode is not enabled in either manner, this change
should have no effect.

Channel variables for each of the various zrtp-hash values are set,
though it is anticipated that there is no good reason to use them, so
they may be removed without warning.  For checking whether zrtp
passthrough mode was successful, we provide the channel variable
zrtp_passthru_active which is set on both legs.

Though not implemented by this commit, the changes here should make it
more straightforward to add correct zrtp-hash values to the signaling
and verify that correct hello hash values are received when FreeSWITCH
is acting as a terminating leg of the ZRTP security association.

A historical note...

This commit replaces the recently-added sdp_zrtp_hash_string method,
commit 2ab1605a88.

This prior method sets a channel variable from the a-leg's zrtp-hash,
then relies on the dialplan to export this channel variable to the
b-leg, where it is put into the SDP.

While it was a great start and wonderful for testing, this approach
has some drawbacks that motivated the present work:

 * There's no good way to pass the zrtp-hash from the b-leg back to
   the a-leg.  In fact, the implementation seems to send the a-leg's
   zrtp-hash back to the originating client in the 200 OK.  This is
   not correct.

 * To support video, we'd need to have a separate dialplan variable,
   and the dialplan author would need to deal with that explicitly.

 * The API is problematic as it requires the dialplan author to
   understand intricate details of how ZRTP works to implement a
   correct dialplan.  Further, by providing too fine-grained control
   (but at the same time, not enough control) it would limit our
   ability to make the behavior smarter once people started relying on
   this.
2012-05-24 20:39:03 +00:00