[Sofia-sip-devel] STUN and TLS

[Dimitri E. Prado]

Hello All,   Even though RFC3489 mandates the use of “shared secrets” through TLS , quite a few STUN implementations do not use it. I am actually having a hard time locating one that does use it. I noticed that the current sofia stun implementation does not work without shared keys, even though it will compile without openssl. In case someone compiles sofia without openssl , stun_handle_request_shared_secret() will be replaced by a dummy function and the loop with su_root_step that normally follows it,  will run forever and plenty of trouble follows. I have a few questions:   A) should the STUN implementation support servers withough shared secrets   Or   B) should we generate a runtime error in case someone tries to use stun functionality without sofia being linked with openssl?     Regards   Dimitri