Issue when connecting to an ongoing SRTP session.

BENMOUSSA Yahia - Contractor yahia.benmoussa at external.thalesgroup.com
Wed Sep 18 08:56:07 PDT 2024


Hi Ross,




Live555 does not handle the use case where a receiver joins an ongoing SRTP session.




Actually, the server must provide the receiver with the value of the rollover counter (ROC) the sender is currently using.


According to RFC 3830, section 6.1.1 :


“ROC_i (32 bits): Current rollover counter used in SRTP.  If the SRTP session has not started, this field is set to 0.  This field

is used to enable a member to join and synchronize with a already started stream.”




However, the ROC sent by live555 is always 0.




To reproduce the issue :




1- Configure testOndemandeServer to use SRTP.




2- Configure live555ProxyServer to use SRTP.




3- Connect a first openRTSP client to testOndemandeServer through live555ProxyServer using RTSPS.




4- Wait until the rollover counter is set to 1.




5- Connect a second openRTSP client to testOndemandeServer through live555ProxyServer using RTSPS.




6- The second openRTSP client will fail to authenticate received SRTP packets.




Thanks



Yahia Benmoussa



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.live555.com/pipermail/live-devel/attachments/20240918/79e99470/attachment.htm>


More information about the live-devel mailing list