[SR-Users] tls: ssl bug #1491 workaround
David Villasmil
david.villasmil.work at gmail.com
Wed Mar 18 12:00:29 CET 2020
So what was the solution?
On Wed, 18 Mar 2020 at 10:58, Javier Valencia <jv at voiper.es> wrote:
> root at webrtc:~ $ kamcmd -s /var/run/kamailio//kamailio_ctl
> kamcmd 1.5
> Copyright 2006 iptelorg GmbH
> This is free software with ABSOLUTELY NO WARRANTY.
> For details type `warranty'.
> kamcmd> stats.get_statistics all
> core:bad_URIs_rcvd = 0
> core:bad_msg_hdr = 0
> core:drop_replies = 11
> core:drop_requests = 3
> core:err_replies = 0
> core:err_requests = 0
> core:fwd_replies = 0
> core:fwd_requests = 305
> core:rcv_replies = 7730
> core:rcv_replies_18x = 447
> core:rcv_replies_1xx = 898
> core:rcv_replies_2xx = 3364
> core:rcv_replies_3xx = 0
> core:rcv_replies_401 = 2695
> core:rcv_replies_404 = 54
> core:rcv_replies_407 = 342
> core:rcv_replies_480 = 109
> core:rcv_replies_486 = 78
> core:rcv_replies_4xx = 3427
> core:rcv_replies_5xx = 35
> core:rcv_replies_6xx = 6
> core:rcv_requests = 7576
> core:rcv_requests_ack = 798
> core:rcv_requests_bye = 284
> core:rcv_requests_cancel = 76
> core:rcv_requests_info = 13
> core:rcv_requests_invite = 802
> core:rcv_requests_message = 0
> core:rcv_requests_notify = 10
> core:rcv_requests_options = 5
> core:rcv_requests_prack = 0
> core:rcv_requests_publish = 0
> core:rcv_requests_refer = 10
> core:rcv_requests_register = 5419
> core:rcv_requests_subscribe = 0
> core:rcv_requests_update = 32
> core:unsupported_methods = 0
> dialog:active_dialogs = 7
> dialog:early_dialogs = 2
> dialog:expired_dialogs = 0
> dialog:failed_dialogs = 500
> dialog:processed_dialogs = 769
> dns:failed_dns_request = 0
> mysql:driver_errors = 0
> pike:blocked_ips = 0
> registrar:accepted_regs = 0
> registrar:default_expire = 3600
> registrar:default_expires_range = 0
> registrar:expires_range = 0
> registrar:max_contacts = 0
> registrar:max_expires = 3600
> registrar:rejected_regs = 0
> shmem:fragments = 399
> shmem:free_size = 521012480
> shmem:max_used_size = 16070464
> shmem:real_used_size = 15858432
> shmem:total_size = 536870912
> shmem:used_size = 14234256
> sl:1xx_replies = 0
> sl:200_replies = 0
> sl:202_replies = 0
> sl:2xx_replies = 0
> sl:300_replies = 0
> sl:301_replies = 0
> sl:302_replies = 0
> sl:3xx_replies = 0
> sl:400_replies = 0
> sl:401_replies = 0
> sl:403_replies = 0
> sl:404_replies = 0
> sl:407_replies = 0
> sl:408_replies = 0
> sl:483_replies = 0
> sl:4xx_replies = 0
> sl:500_replies = 9
> sl:5xx_replies = 0
> sl:6xx_replies = 0
> sl:failures = 0
> sl:received_ACKs = 3
> sl:sent_err_replies = 0
> sl:sent_replies = 136
> sl:xxx_replies = 127
> tcp:con_reset = 0
> tcp:con_timeout = 11
> tcp:connect_failed = 0
> tcp:connect_success = 0
> tcp:current_opened_connections = 74
> tcp:current_write_queue_size = 0
> tcp:established = 127
> tcp:local_reject = 0
> tcp:passive_open = 127
> tcp:send_timeout = 0
> tcp:sendq_full = 0
> tmx:2xx_transactions = 3358
> tmx:3xx_transactions = 0
> tmx:4xx_transactions = 3236
> tmx:5xx_transactions = 42
> tmx:6xx_transactions = 2
> tmx:UAC_transactions = 0
> tmx:UAS_transactions = 6634
> tmx:active_transactions = 2
> tmx:inuse_transactions = 6
> tmx:rpl_absorbed = 750
> tmx:rpl_generated = 917
> tmx:rpl_received = 7719
> tmx:rpl_relayed = 6969
> tmx:rpl_sent = 7886
> usrloc:location-contacts = 0
> usrloc:location-expires = 0
> usrloc:location-users = 0
> usrloc:registered_users = 0
> websocket:ws_current_connections = 93
> websocket:ws_failed_connections = 0
> websocket:ws_failed_handshakes = 0
> websocket:ws_local_closed_connections = 0
> websocket:ws_max_concurrent_connections = 93
> websocket:ws_msrp_current_connections = 0
> websocket:ws_msrp_failed_connections = 0
> websocket:ws_msrp_local_closed_connections = 0
> websocket:ws_msrp_max_concurrent_connections = 0
> websocket:ws_msrp_received_frames = 0
> websocket:ws_msrp_remote_closed_connections = 0
> websocket:ws_msrp_successful_handshakes = 0
> websocket:ws_msrp_transmitted_frames = 0
> websocket:ws_received_frames = 7716
> websocket:ws_remote_closed_connections = 34
> websocket:ws_sip_current_connections = 93
> websocket:ws_sip_failed_connections = 0
> websocket:ws_sip_local_closed_connections = 0
> websocket:ws_sip_max_concurrent_connections = 93
> websocket:ws_sip_received_frames = 7493
> websocket:ws_sip_remote_closed_connections = 34
> websocket:ws_sip_successful_handshakes = 127
> websocket:ws_sip_transmitted_frames = 7797
> websocket:ws_successful_handshakes = 127
> websocket:ws_transmitted_frames = 7831
>
> Cheers, Javier Valencia
> [image: Logo] <http://www.voiper.es/>
> Javier Valencia | CTO
> Centro de Negocios Martín Buendía
> Camino de las Cañadas, nº 1C, Portal 1
> <https://www.google.com/maps/search/Camino+de+las%0D%0A++++++++++++++++++++++++++++++++++++++++++++++++++++++++++Ca%C3%B1adas,+n%C2%BA%0D%0A++++++++++++++++++++++++++++++++++++++++++++++++++++++++++1C,+Portal+1?entry=gmail&source=g>,
> 2ºG
> 29649 Mijas (Málaga)
> [image: #] 951562080 (T) <951562080> | 687486759 (M) <687486759>
> [image: #] www.voiper.es
> ------------------------------
>
> AVISO LEGAL
> -----------
>
> Este mensaje contiene información confidencial destinada para ser leída
> exclusivamente por el destinatario. Queda prohibida la reproducción,
> publicación, divulgación, total o parcial del mensaje así como el uso no
> autorizados por el emisor. En caso de recibir el mensaje por error, se ruega
> su comunicación al remitente lo antes posible. Por favor, indique
> inmediatamente si usted o su empresa no aceptan comunicaciones de este tipo
> por Internet.
>
> Las opiniones, conclusiones y demás información incluida en este mensaje que
> no esté relacionada con asuntos profesionales de SMART RECARGAS, S.L, se
> entenderá que nunca se ha dado, ni está respaldado por el mismo.
>
> Responsable del Tratamiento de Datos
> ------------------------------------
> SMART RECARGAS , SLCamino de las Cañadas, 1C PORTAL 1 <https://www.google.com/maps/search/Camino+de+las+Ca%C3%B1adas,+1C+PORTAL+1?entry=gmail&source=g> 2º G
> 29651 MIJAS COSTA (MALAGA)
>
> El 18/3/20 a las 11:36, Daniel-Constantin Mierla escribió:
>
> I think that for that version it should be:
>
> kamcmd stats.get_statistics all
>
> Newer versions should have json-friendlier output with:
>
> kamcmd stats.fetch all
>
> Cheers,
> Daniel
> On 18.03.20 10:52, Javier Valencia wrote:
>
> version: kamailio 5.1.4 (x86_64/linux) d2d349
> flags: STATS: Off, USE_TCP, USE_TLS, USE_SCTP, TLS_HOOKS, USE_RAW_SOCKS,
> DISABLE_NAGLE, USE_MCAST, DNS_IP_HACK, SHM_MEM, SHM_MMAP, PKG_MALLOC,
> Q_MALLOC, F_MALLOC, TLSF_MALLOC, DBG_SR_MEMORY, USE_FUTEX,
> FAST_LOCK-ADAPTIVE_WAIT, USE_DNS_CACHE, USE_DNS_FAILOVER, USE_NAPTR,
> USE_DST_BLACKLIST, HAVE_RESOLV_RES
> ADAPTIVE_WAIT_LOOPS=1024, MAX_RECV_BUFFER_SIZE 262144, MAX_LISTEN 16,
> MAX_URI_SIZE 1024, BUF_SIZE 65535, DEFAULT PKG_SIZE 8MB
> poll method support: poll, epoll_lt, epoll_et, sigio_rt, select.
> id: d2d349
> compiled on 08:39:47 Aug 14 2018 with gcc 6.3.0
>
> [image: Logo] <http://www.voiper.es/>
> Javier Valencia | CTO
> Centro de Negocios Martín Buendía
> Camino de las Cañadas, nº 1C, Portal 1
> <https://www.google.com/maps/search/Camino+de+las%0D%0A++++++++++++++++++++++++++++++++++++++++++++++++++++++++++Ca%C3%B1adas,+n%C2%BA%0D%0A++++++++++++++++++++++++++++++++++++++++++++++++++++++++++1C,+Portal+1?entry=gmail&source=g>,
> 2ºG
> 29649 Mijas (Málaga)
> [image: #] 951562080 (T) <951562080> | 687486759 (M) <687486759>
> [image: #] www.voiper.es
> ------------------------------
>
> AVISO LEGAL
> -----------
>
> Este mensaje contiene información confidencial destinada para ser leída
> exclusivamente por el destinatario. Queda prohibida la reproducción,
> publicación, divulgación, total o parcial del mensaje así como el uso no
> autorizados por el emisor. En caso de recibir el mensaje por error, se ruega
> su comunicación al remitente lo antes posible. Por favor, indique
> inmediatamente si usted o su empresa no aceptan comunicaciones de este tipo
> por Internet.
>
> Las opiniones, conclusiones y demás información incluida en este mensaje que
> no esté relacionada con asuntos profesionales de SMART RECARGAS, S.L, se
> entenderá que nunca se ha dado, ni está respaldado por el mismo.
>
> Responsable del Tratamiento de Datos
> ------------------------------------
> SMART RECARGAS , SLCamino de las Cañadas, 1C PORTAL 1 <https://www.google.com/maps/search/Camino+de+las+Ca%C3%B1adas,+1C+PORTAL+1?entry=gmail&source=g> 2º G
> 29651 MIJAS COSTA (MALAGA)
>
> El 18/3/20 a las 10:49, Daniel-Constantin Mierla escribió:
>
>
> On 18.03.20 10:38, Javier Valencia wrote:
>
> it is not enabled Kamailio's FIFO.
>
> A few minutes ago, I restart kamailio to increase memory limits. But
> usually there are around 280 users.
>
> But;
>
> kamcmd> ws.dump
> {
> connections: {
> 1: wss:212.81.134.66:47126 -> wss:212.81.134.66:2443 (state:
> OPEN, last used 157s ago, sub-protocol: sip)
> 2: wss:212.81.134.66:47128 -> wss:212.81.134.66:2443 (state:
> OPEN, last used 159s ago, sub-protocol: sip)
> *... omit verbose ...*
> 69: wss:212.81.134.66:47268 -> wss:212.81.134.66:2443 (state:
> OPEN, last used 64s ago, sub-protocol: sip)
> 71: wss:212.81.134.66:47276 -> wss:212.81.134.66:2443 (state:
> OPEN, last used 36s ago, sub-protocol: sip)
> }
> info: {
> wscounter: 50
> truncated: yes
> }
> }
> kamcmd> tls.info
> {
> max_connections: 2048
> opened_connections: 66
> clear_text_write_queued_bytes: 0
> }
>
> Which it's equivalent command in kamcmd for "kamctl stats"?
>
> What version of Kamailio do you run there?
>
> Cheers,
> Daniel
>
>
> Kind regards, Javier Valencia.
>
>
> [image: Logo] <http://www.voiper.es/>
> Javier Valencia | CTO
> Centro de Negocios Martín Buendía
> Camino de las Cañadas, nº 1C, Portal 1
> <https://www.google.com/maps/search/Camino+de+las%0D%0A++++++++++++++++++++++++++++++++++++++++++++++++++++++++++Ca%C3%B1adas,+n%C2%BA%0D%0A++++++++++++++++++++++++++++++++++++++++++++++++++++++++++1C,+Portal+1?entry=gmail&source=g>,
> 2ºG
> 29649 Mijas (Málaga)
> [image: #] 951562080 (T) <951562080> | 687486759 (M) <687486759>
> [image: #] www.voiper.es
> ------------------------------
>
> AVISO LEGAL
> -----------
>
> Este mensaje contiene información confidencial destinada para ser leída
> exclusivamente por el destinatario. Queda prohibida la reproducción,
> publicación, divulgación, total o parcial del mensaje así como el uso no
> autorizados por el emisor. En caso de recibir el mensaje por error, se ruega
> su comunicación al remitente lo antes posible. Por favor, indique
> inmediatamente si usted o su empresa no aceptan comunicaciones de este tipo
> por Internet.
>
> Las opiniones, conclusiones y demás información incluida en este mensaje que
> no esté relacionada con asuntos profesionales de SMART RECARGAS, S.L, se
> entenderá que nunca se ha dado, ni está respaldado por el mismo.
>
> Responsable del Tratamiento de Datos
> ------------------------------------
> SMART RECARGAS , SLCamino de las Cañadas, 1C PORTAL 1 <https://www.google.com/maps/search/Camino+de+las+Ca%C3%B1adas,+1C+PORTAL+1?entry=gmail&source=g> 2º G
> 29651 MIJAS COSTA (MALAGA)
>
> El 18/3/20 a las 10:24, Daniel-Constantin Mierla escribió:
>
> Hello,
>
> how many tls connections/active registrations and active calls do you have
> at the time you get the error messages? Can you give the output for:
>
> kamctl stats
>
> The first step for a fix is to increase the shared memory size via -m,
> like -m 256 if you want to double it for now.
>
> Cheers,
> Daniel
> On 18.03.20 09:56, Javier Valencia wrote:
>
> Hi there
>
> I have a Kamailio with TLS/Websocket solution. I'm getting some errors on
> log and some users can't connect.
>
> My log:
>
> Mar 18 09:49:15 webrtc /usr/sbin/kamailio[11915]: ERROR: tls
> [tls_server.c:192]: tls_complete_init(): tls: ssl bug #1491 workaround: not
> enough memory for safe operation: shm=8212904 threshold1=8388608
> Mar 18 09:49:15 webrtc /usr/sbin/kamailio[11915]: ERROR: <core>
> [core/tcp_read.c:1485]: tcp_read_req(): ERROR: tcp_read_req: error reading
> - c: 0x7f6297bd62c0 r: 0x7f6297bd6340
>
> Kamailio is running like:
>
> /usr/sbin/kamailio -P /var/run/kamailio/kamailio.pid -f
> /etc/kamailio/kamailio.cfg -m 128 -M 16 -u kamailio -g kamailio
>
> Kind regards, Javier Valencia.
>
>
> --
> [image: Logo] <http://www.voiper.es/>
> Javier Valencia | CTO
> Centro de Negocios Martín Buendía
> Camino de las Cañadas, nº 1C, Portal 1
> <https://www.google.com/maps/search/Camino+de+las%0D%0A++++++++++++++++++++++++++++++++++++++++++++++++++++++++++Ca%C3%B1adas,+n%C2%BA%0D%0A++++++++++++++++++++++++++++++++++++++++++++++++++++++++++1C,+Portal+1?entry=gmail&source=g>,
> 2ºG
> 29649 Mijas (Málaga)
> [image: #] 951562080 (T) <951562080> | 687486759 (M) <687486759>
> [image: #] www.voiper.es
> ------------------------------
>
> AVISO LEGAL
> -----------
>
> Este mensaje contiene información confidencial destinada para ser leída
> exclusivamente por el destinatario. Queda prohibida la reproducción,
> publicación, divulgación, total o parcial del mensaje así como el uso no
> autorizados por el emisor. En caso de recibir el mensaje por error, se ruega
> su comunicación al remitente lo antes posible. Por favor, indique
> inmediatamente si usted o su empresa no aceptan comunicaciones de este tipo
> por Internet.
>
> Las opiniones, conclusiones y demás información incluida en este mensaje que
> no esté relacionada con asuntos profesionales de SMART RECARGAS, S.L, se
> entenderá que nunca se ha dado, ni está respaldado por el mismo.
>
> Responsable del Tratamiento de Datos
> ------------------------------------
> SMART RECARGAS , SLCamino de las Cañadas, 1C PORTAL 1 <https://www.google.com/maps/search/Camino+de+las+Ca%C3%B1adas,+1C+PORTAL+1?entry=gmail&source=g> 2º G
> 29651 MIJAS COSTA (MALAGA)
>
>
> _______________________________________________
> Kamailio (SER) - Users Mailing Listsr-users at lists.kamailio.orghttps://lists.kamailio.org/cgi-bin/mailman/listinfo/sr-users
>
> --
> Daniel-Constantin Mierla -- www.asipto.comwww.twitter.com/miconda -- www.linkedin.com/in/miconda
>
>
> _______________________________________________
> Kamailio (SER) - Users Mailing Listsr-users at lists.kamailio.orghttps://lists.kamailio.org/cgi-bin/mailman/listinfo/sr-users
>
> --
> Daniel-Constantin Mierla -- www.asipto.comwww.twitter.com/miconda -- www.linkedin.com/in/miconda
>
>
> _______________________________________________
> Kamailio (SER) - Users Mailing Listsr-users at lists.kamailio.orghttps://lists.kamailio.org/cgi-bin/mailman/listinfo/sr-users
>
> --
> Daniel-Constantin Mierla -- www.asipto.comwww.twitter.com/miconda -- www.linkedin.com/in/miconda
>
> _______________________________________________
> Kamailio (SER) - Users Mailing List
> sr-users at lists.kamailio.org
> https://lists.kamailio.org/cgi-bin/mailman/listinfo/sr-users
>
--
Regards,
David Villasmil
email: david.villasmil.work at gmail.com
phone: +34669448337
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: hmdmeoolcmdnacda.png
Type: image/png
Size: 7800 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: cemajoijablmmamn.png
Type: image/png
Size: 453 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment-0001.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: nphijdekdobfpndn.png
Type: image/png
Size: 7800 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment-0002.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: mnbknmcglooeallm.png
Type: image/png
Size: 334 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment-0003.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ekocililbmkbbkcg.png
Type: image/png
Size: 334 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment-0004.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: dgeaglpglnodipip.png
Type: image/png
Size: 7800 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment-0005.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: flkoodjkjhogjpbe.png
Type: image/png
Size: 334 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment-0006.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: fgimigdbkaahjfkh.png
Type: image/png
Size: 334 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment-0007.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: gmcbnbaigedgigck.png
Type: image/png
Size: 7800 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment-0008.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ofhbcjgdimfbgppp.png
Type: image/png
Size: 453 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment-0009.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pnblgnmimclfdomp.png
Type: image/png
Size: 453 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment-0010.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: lpbjellagbgobccg.png
Type: image/png
Size: 453 bytes
Desc: not available
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20200318/cfe380c3/attachment-0011.png>
More information about the sr-users
mailing list