Hello Maxim,
thanks for the context. Regarding RFC 8760 interoperability, there have been also recently some extensions to the module to configure the SHA256 on a per-message base, I think.
The auth module in Kamailio is based on the one from SER which supported additional security protection mechanism, so it’s not that closely related to the code base used in the other project.
Due to the mentioned differences in the module implementation, it’s not feasible to import the code changes done there right away. But of course, we are always open for fixes e.g. as a pull request.
Cheers,
Henning
From: Maxim Sobolev via sr-users sr-users@lists.kamailio.org Sent: Samstag, 26. April 2025 21:33 To: Kamailio (SER) - Users Mailing List sr-users@lists.kamailio.org Cc: 13715209697@139.com; Maxim Sobolev sobomax@sippysoft.com Subject: [SR-Users] Re: Authentication qop auth-int
Kamalio support for auth-int (and all md5-sess too) is likely to be broken. I've fixed quite few bugs originating from 2005 era in the scope of the RFC8760 Interop prep that we've done for OpenSIPIt few years ago. To the best of my knowledge none has been pulled back into Kamalio and when confronting Daniel about RFC8760 year or two ago he was not particularly interested.
Your best recourse therefore is disable auth-int on the OpenSIPS side while dealing with Kamalio.
-Max
On Sat, Apr 26, 2025, 3:52 AM 13715209697--- via sr-users <sr-users@lists.kamailio.orgmailto:sr-users@lists.kamailio.org> wrote: There is a project that requires auth_int,OpenSIPS and Kamailio handle auth_int differently, which confuses me. __________________________________________________________ Kamailio - Users Mailing List - Non Commercial Discussions -- sr-users@lists.kamailio.orgmailto:sr-users@lists.kamailio.org To unsubscribe send an email to sr-users-leave@lists.kamailio.orgmailto:sr-users-leave@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender!