STUN TLS connect works now fluently

darcs-hash:20051218225838-1b897-f57c575f11357071072c7cad088c0895f720a9a7.gz

STUN TLS connect works now fluently
darcs-hash:20051218225838-1b897-f57c575f11357071072c7cad088c0895f720a9a7.gz
1cda15ca · Martti Mela · 93ef9153 · 1cda15ca · 1cda15ca · 1cda15ca
Commit 1cda15ca authored Dec 19, 2005 by Martti Mela
Showing with 86 additions and 65 deletions

libsofia-sip-ua/stun/stun.c libsofia-sip-ua/stun/stun.c +48 -34

libsofia-sip-ua/stun/stun_common.c libsofia-sip-ua/stun/stun_common.c +37 -30

libsofia-sip-ua/stun/stunc.c libsofia-sip-ua/stun/stunc.c +1 -1

No files found.
--- a/libsofia-sip-ua/stun/stun.c
+++ b/libsofia-sip-ua/stun/stun.c
@@ -266,7 +266,7 @@ stun_handle_t *stun_handle_tcreate(stun_magic_t *context,
  /* Enviroment overrides */
  if (getenv("STUN_SERVER")) {
    server = getenv("STUN_SERVER");
-    SU_DEBUG_5(("stun: using STUN_SERVER=%s\n", server));
+    SU_DEBUG_5(("%s: using STUN_SERVER=%s\n", __func__, server));
  }

  SU_DEBUG_5(("%s(\"%s\"): called\n", 
@@ -416,7 +416,7 @@ int stun_handle_bind(stun_handle_t *se,
      memcpy(clnt_addr->li_addr, li->li_addr, sizeof(su_addrinfo_t));
      
      inet_ntop(clnt_addr->li_family, SU_ADDR(clnt_addr->li_addr), ipaddr, sizeof(ipaddr));
-      SU_DEBUG_3(("stun: local address found to be %s:%u\n", 
+      SU_DEBUG_3(("%s: local address found to be %s:%u\n", __func__, 
 		  ipaddr,
 		  (unsigned) ntohs(clnt_addr->li_addr->su_port)));
      found = 1;
@@ -441,12 +441,12 @@ int stun_handle_bind(stun_handle_t *se,

  inet_ntop(clnt_addr->li_family, SU_ADDR(clnt_addr->li_addr), ipaddr, sizeof(ipaddr));
  if (bind(sockfd, (struct sockaddr *) &clnt_addr->li_addr, clnt_addr->li_addrlen) < 0) {
-    SU_DEBUG_3(("stun: Error binding to %s:%u\n", ipaddr,
+    SU_DEBUG_3(("%s: Error binding to %s:%u\n", __func__, ipaddr,
 		(unsigned) ntohs(clnt_addr->li_addr->su_port)));
    return -1;
  }

-  SU_DEBUG_3(("stun: %s: socket bound to %s:%u\n", __func__, ipaddr,
+  SU_DEBUG_3(("%s: socket bound to %s:%u\n", __func__, ipaddr,
 	      (unsigned) ntohs(clnt_addr->li_addr->su_port)));

  bind_len = clnt_addr->li_addrlen;
@@ -456,7 +456,7 @@ int stun_handle_bind(stun_handle_t *se,
  }
  
  inet_ntop(clnt_addr->li_family, SU_ADDR(&bind_addr), ipaddr, sizeof(ipaddr));
-  SU_DEBUG_3(("stun: Local socket bound to: %s:%u\n", ipaddr, 
+  SU_DEBUG_3(("%s: Local socket bound to: %s:%u\n", __func__, ipaddr, 
 	      (unsigned) ntohs(bind_addr.su_port)));

  retval = stun_bind_test(se, &se->st_pri_info, se->st_pri_addr,
@@ -677,7 +677,9 @@ int stun_tls_callback(su_root_magic_t *m, su_wait_t *w, stun_handle_t *self)
     * (ssl_connecting) for it */

  case stun_tls_ssl_connecting:
-    SU_DEBUG_3(("%s: VOI KAKKA\n", __func__));
+    events = SU_WAIT_ERR | SU_WAIT_IN;
+    su_root_eventmask(self->st_root, self->st_root_index,
+		      self->st_socket, events);

    z = SSL_connect(ssl);
    err = SSL_get_error(ssl, z);
@@ -692,18 +694,22 @@ int stun_tls_callback(su_root_magic_t *m, su_wait_t *w, stun_handle_t *self)
      return -1;
    }
    
-    SU_DEBUG_3(("%s: VOI KAKKA taas\n", __func__));
+    /* Inform application about the progress  */
+    self->st_state = stun_tls_writing;
+    /* self->st_callback(self->st_context, self, self->st_state); */

-    events = SU_WAIT_ERR | SU_WAIT_OUT | SU_WAIT_IN;
+    events = SU_WAIT_ERR | SU_WAIT_OUT;
    su_root_eventmask(self->st_root, self->st_root_index,
 		      self->st_socket, events);

-    /* Inform application about the progress  */
-    self->st_state = stun_tls_writing;
-    /* self->st_callback(self->st_context, self, self->st_state); */
    break;

  case stun_tls_writing:
+
+    events = SU_WAIT_ERR | SU_WAIT_IN;
+    su_root_eventmask(self->st_root, self->st_root_index,
+		      self->st_socket, events);
+
    SU_DEBUG_3(("TLS connection using %s\n", SSL_get_cipher(ssl)));
    
    server_cert = SSL_get_peer_certificate(ssl); 
@@ -730,6 +736,10 @@ int stun_tls_callback(su_root_magic_t *m, su_wait_t *w, stun_handle_t *self)
    break;

  case stun_tls_reading:
+    events = SU_WAIT_ERR | SU_WAIT_OUT;
+    su_root_eventmask(self->st_root, self->st_root_index,
+		      self->st_socket, events);
+
    SU_DEBUG_5(("Shared Secret Request sent to server:\n"));
    debug_print(&req->enc_buf);

@@ -783,6 +793,7 @@ int stun_tls_callback(su_root_magic_t *m, su_wait_t *w, stun_handle_t *self)
 	stun_copy_buffer(&self->st_passwd, password->pattr);
      }
      break;
+
    case SHARED_SECRET_ERROR_RESPONSE:
      if (stun_process_error_response(resp) < 0) {
 	SU_DEBUG_5(("Error in Shared Secret Error Response.\n")); 
@@ -799,10 +810,11 @@ int stun_tls_callback(su_root_magic_t *m, su_wait_t *w, stun_handle_t *self)
    su_wait_destroy(w);
    su_root_deregister(self->st_root, self->st_root_index);

+    self->st_use_msgint = 1;
    self->st_state = stun_tls_done;
    self->st_callback(self->st_context, self, self->st_state);
    
-    self->st_use_msgint = 1;
+    break;

  default:
    return -1;
@@ -1026,7 +1038,7 @@ int stun_bind_callback(su_root_magic_t *m, su_wait_t *w, stun_handle_t *self)
  binding_response.enc_buf.size = len;
  memcpy(binding_response.enc_buf.data, dgram, len);

-  SU_DEBUG_3(("stun: response from server %s:%u\n",
+  SU_DEBUG_3(("%s: response from server %s:%u\n", __func__,
 	      inet_ntoa(recv_addr.sin_addr),
 	      ntohs(recv_addr.sin_port)));

@@ -1038,7 +1050,7 @@ int stun_bind_callback(su_root_magic_t *m, su_wait_t *w, stun_handle_t *self)
  if (stun_parse_message(&binding_response) < 0) {
    su_wait_destroy(w);
    su_root_deregister(self->st_root, self->ss_root_index);
-    SU_DEBUG_5(("stun: Error parsing response.\n"));
+    SU_DEBUG_5(("%s: Error parsing response.\n", __func__));
    stun_free_message(binding_request);
    stun_free_message(&binding_response);
    return retval;
@@ -1078,7 +1090,7 @@ int stun_bind_callback(su_root_magic_t *m, su_wait_t *w, stun_handle_t *self)
    
  case BINDING_ERROR_RESPONSE:
    if (stun_process_error_response(&binding_response) < 0) {
-      SU_DEBUG_3(("stun: Error in Binding Error Response.\n"));
+      SU_DEBUG_3(("%s: Error in Binding Error Response.\n", __func__));
    }
    break;
    
@@ -1139,7 +1151,7 @@ static void stun_sendto_timer_cb(su_root_magic_t *magic,
    return;
  }

-  SU_DEBUG_3(("stun: %s: Time out no. %d, retransmitting.\n", __func__, se->st_retry_count));
+  SU_DEBUG_3(("%s: Time out no. %d, retransmitting.\n", __func__, se->st_retry_count));

  if (stun_send_message(s, &se->st_pri_addr->su_sin, se->st_binding_request, &(se->st_passwd)) < 0) {
    stun_free_message(se->st_binding_request);
@@ -1197,7 +1209,9 @@ int stun_bind_test(stun_handle_t *se,
  s = se->ss_sockfd;

  inet_ntop(srvr_info->ai_family, SU_ADDR(srvr_addr), ipaddr, sizeof(ipaddr));
-  SU_DEBUG_3(("stun: sending to %s:%u (req-flags: msgint=%d, ch-addr=%d, chh-port=%d)\n", 
+  SU_DEBUG_3(("%s: sending to %s:%u (req-flags: msgint=%d, "
+	      "ch-addr=%d, chh-port=%d)\n",
+	      __func__,
 	      ipaddr, ntohs(srvr_addr->su_port),
 	      se->st_use_msgint, chg_ip, chg_port));

@@ -1303,7 +1317,7 @@ int stun_process_response(stun_msg_t *msg)

  /* parse msg first */
  if (stun_parse_message(msg) < 0) {
-    SU_DEBUG_3(("stun: Error parsing response.\n"));
+    SU_DEBUG_3(("%s: Error parsing response.\n", __func__));
    return -1;
  }

@@ -1348,8 +1362,8 @@ int stun_process_error_response(stun_msg_t *msg)

  ec = (stun_attr_errorcode_t *)attr->pattr;
  
-  SU_DEBUG_5(("stun: Received Binding Error Response:\n"));
-  SU_DEBUG_5(("stun: Error: %d %s\n", ec->code, ec->phrase));
+  SU_DEBUG_5(("%s: Received Binding Error Response:\n", __func__));
+  SU_DEBUG_5(("%s: Error: %d %s\n", __func__, ec->code, ec->phrase));

  return 0;
 }
@@ -1470,7 +1484,7 @@ int stun_handle_get_lifetime(stun_handle_t *se,

  assert(se);

-  SU_DEBUG_3(("stun: determining binding life time, this may take a while.\n"));
+  SU_DEBUG_3(("%s: determining binding life time, this may take a while.\n", __func__));

  /* get local ip address */
  clnt_addr = (struct sockaddr_in *) my_addr;
@@ -1481,7 +1495,7 @@ int stun_handle_get_lifetime(stun_handle_t *se,
      for (i = 0, li = res; li; li = li->li_next) {
 	if (li->li_family == AF_INET) {
 	  memcpy(clnt_addr, &li->li_addr->su_sin, sizeof(li->li_addr->su_sin));
-	  SU_DEBUG_3(("stun: local address found to be %s:%u\n", 
+	  SU_DEBUG_3(("%s: local address found to be %s:%u\n", __func__, 
 		      inet_ntoa(clnt_addr->sin_addr), 
 		      (unsigned)ntohs(clnt_addr->sin_port)));
 	  found = 1;
@@ -1489,12 +1503,12 @@ int stun_handle_get_lifetime(stun_handle_t *se,
 	}
      }
      if (!found) {
-	SU_DEBUG_5(("stun: su_getlocalinfo: %s\n", su_gli_strerror(error)));
+	SU_DEBUG_5(("%s: su_getlocalinfo: %s\n", __func__, su_gli_strerror(error)));
 	return errno = EFAULT, -1;
      }
    }
    else {
-      SU_DEBUG_5(("stun: su_getlocalinfo: %s\n", su_gli_strerror(error)));
+      SU_DEBUG_5(("%s: su_getlocalinfo: %s\n", __func__, su_gli_strerror(error)));
      return errno = EFAULT, -1;
    }
  }
@@ -1505,30 +1519,30 @@ int stun_handle_get_lifetime(stun_handle_t *se,
  clnt_addr->sin_port = 0;
  /* initialize socket x */
  if (bind(sockfdx, (struct sockaddr *) clnt_addr, *addrlen) < 0) {
-    SU_DEBUG_3(("stun: Error binding to %s:%u\n", inet_ntoa(clnt_addr->sin_addr),
+    SU_DEBUG_3(("%s: Error binding to %s:%u\n", __func__, inet_ntoa(clnt_addr->sin_addr),
 		(unsigned)ntohs(clnt_addr->sin_port)));
    return retval;
  }
  x_len = sizeof(x_addr);
  getsockname(sockfdx, (struct sockaddr *) &x_addr, &x_len);  
-  SU_DEBUG_3(("stun: Local socket x bound to: %s:%u\n", inet_ntoa(x_addr.sin_addr),
+  SU_DEBUG_3(("%s: Local socket x bound to: %s:%u\n", __func__, inet_ntoa(x_addr.sin_addr),
 	      (unsigned)ntohs(x_addr.sin_port)));

  /* initialize socket y */
  sockfdy = socket(AF_INET, SOCK_DGRAM, 0);
  if (bind(sockfdy, (struct sockaddr *)clnt_addr, *addrlen) < 0) {
-    SU_DEBUG_3(("stun: Error binding to %s:%u\n", inet_ntoa(clnt_addr->sin_addr),
+    SU_DEBUG_3(("%s: Error binding to %s:%u\n", __func__, inet_ntoa(clnt_addr->sin_addr),
 		(unsigned)ntohs(clnt_addr->sin_port)));
    return retval;
  }
  y_len = sizeof(y_addr);
  getsockname(sockfdy, (struct sockaddr *) &y_addr, &y_len);  
-  SU_DEBUG_3(("stun: Local socket y bound to: %s:%u\n", inet_ntoa(y_addr.sin_addr), 
+  SU_DEBUG_3(("%s: Local socket y bound to: %s:%u\n", __func__, inet_ntoa(y_addr.sin_addr), 
 	      (unsigned)ntohs(y_addr.sin_port)));
   
  i = 1;
  while (abs(lt_cur-lt) > STUN_LIFETIME_CI) {
-    SU_DEBUG_3(("stun: Lifetime determination round %d, testing lifetime of %d sec.\n", i++, lt));
+    SU_DEBUG_3(("%s: Lifetime determination round %d, testing lifetime of %d sec.\n", __func__, i++, lt));
    /* send request from X */
    if (stun_make_binding_req(se, &binding_request, 0, 0) < 0)
      return retval;
@@ -1552,16 +1566,16 @@ int stun_handle_get_lifetime(stun_handle_t *se,
      binding_response.enc_buf.data = (unsigned char *)malloc(z);
      binding_response.enc_buf.size = z;
      memcpy(binding_response.enc_buf.data, dgram, z);
-      SU_DEBUG_3(("stun: response from server %s:%u\n", inet_ntoa(recv_addr.sin_addr), ntohs(recv_addr.sin_port)));
+      SU_DEBUG_3(("%s: response from server %s:%u\n", __func__, inet_ntoa(recv_addr.sin_addr), ntohs(recv_addr.sin_port)));
      debug_print(&binding_response.enc_buf);      
    }
    else {
-      SU_DEBUG_3(("stun: No response from server. Check configuration.\n"));
+      SU_DEBUG_3(("%s: No response from server. Check configuration.\n", __func__));
      return retval;
    }
    /* process response */
    if (stun_parse_message(&binding_response) < 0) {
-      SU_DEBUG_5(("stun: Error parsing response.\n"));
+      SU_DEBUG_5(("%s: Error parsing response.\n", __func__));
      return retval;
    }
    if (binding_response.stun_hdr.msg_type == BINDING_RESPONSE) {
@@ -1600,14 +1614,14 @@ int stun_handle_get_lifetime(stun_handle_t *se,
      /* mapping with X still valid */
      lt_cur = lt;
      lt = (int) (lt+lt_max)/2;
-      SU_DEBUG_3(("stun: Response received from socket X, lifetime at least %d sec, next trial: %d sec\n\n", 
+      SU_DEBUG_3(("%s: Response received from socket X, lifetime at least %d sec, next trial: %d sec\n\n", __func__, 
 		  lt_cur, lt));
    }
    else {
      /* no response */
      lt_max = lt;
      lt = (int) (lt+lt_cur)/2;
-      SU_DEBUG_3(("stun: No response received from socket X, lifetime at most %d sec, next trial: %d sec\n\n", 
+      SU_DEBUG_3(("%s: No response received from socket X, lifetime at most %d sec, next trial: %d sec\n\n", __func__, 
 		  lt_max, lt));
    }
  }

--- a/libsofia-sip-ua/stun/stun_common.c
+++ b/libsofia-sip-ua/stun/stun_common.c
@@ -91,7 +91,7 @@ int stun_parse_message(stun_msg_t *msg) {
    msg->stun_hdr.tran_id[i] = ntohs(tmp16);
  }

-  SU_DEBUG_5(("stun: Parse STUN message: Length = %d\n", msg->stun_hdr.msg_len));
+  SU_DEBUG_5(("%s: Parse STUN message: Length = %d\n", __func__, msg->stun_hdr.msg_len));

  /* parse attributes */
  len = msg->stun_hdr.msg_len;
@@ -130,8 +130,9 @@ int stun_parse_attribute(stun_msg_t *msg, unsigned char *p) {
  p+=2;
  len = ntohs(tmp16);

-  SU_DEBUG_3(("stun: received attribute: Type %02X, Length %d - %s\n",
+  SU_DEBUG_3(("%s: received attribute: Type %02X, Length %d - %s\n", __func__,
 	      attr->attr_type, len, stun_attr_phrase(attr->attr_type)));
+
  switch(attr->attr_type) {
  case MAPPED_ADDRESS:
  case RESPONSE_ADDRESS:
@@ -212,7 +213,7 @@ int stun_parse_attr_address(stun_attr_t *attr, const unsigned char *p, unsigned
  memcpy(&addr->sin_port, p+2, 2);
  memcpy(&addr->sin_addr.s_addr, p+4, 4);

-  SU_DEBUG_3(("stun: address attribute: %s:%d\n", inet_ntoa(addr->sin_addr), ntohs(addr->sin_port)));
+  SU_DEBUG_3(("%s: address attribute: %s:%d\n", __func__, inet_ntoa(addr->sin_addr), ntohs(addr->sin_port)));

  attr->pattr = addr;
  stun_init_buffer(&attr->enc_buf);
@@ -257,9 +258,9 @@ int stun_parse_attr_uint32(stun_attr_t *attr, const unsigned char *p, unsigned l
 int stun_parse_attr_buffer(stun_attr_t *attr, const unsigned char *p, unsigned len)
 {
  stun_buffer_t *buf;
-  buf = (stun_buffer_t *)malloc(sizeof(stun_buffer_t));
+  buf = (stun_buffer_t *) malloc(sizeof(stun_buffer_t));
  buf->size = len;
-  buf->data = (unsigned char *)malloc(len);
+  buf->data = (unsigned char *) malloc(len);
  memcpy(buf->data, p, len);
  attr->pattr = buf;
  stun_init_buffer(&attr->enc_buf);
@@ -267,7 +268,9 @@ int stun_parse_attr_buffer(stun_attr_t *attr, const unsigned char *p, unsigned l
  return 0;
 }

-int stun_parse_attr_unknown_attributes(stun_attr_t *attr, const unsigned char *p, unsigned len)
+int stun_parse_attr_unknown_attributes(stun_attr_t *attr,
+				       const unsigned char *p,
+				       unsigned len)
 {
  return 0;
 }
@@ -276,8 +279,8 @@ int stun_parse_attr_unknown_attributes(stun_attr_t *attr, const unsigned char *p
 stun_attr_t *stun_get_attr(stun_attr_t *attr, uint16_t attr_type) {
  stun_attr_t *p;
  p = attr;
-  while(p!= NULL) {
-    if(p->attr_type==attr_type)
+  while (p != NULL) {
+    if (p->attr_type == attr_type)
      return p;
    else
      p = p->next;
@@ -291,7 +294,7 @@ void stun_init_buffer(stun_buffer_t *p) {
 }

 int stun_free_buffer(stun_buffer_t *p) {
-  if(p->data)
+  if (p->data)
    free(p->data);
  p->size = 0;
  return 0;
@@ -306,9 +309,10 @@ int stun_copy_buffer(stun_buffer_t *p, stun_buffer_t *p2) {
 }

 const char *stun_response_phrase(int status) {
-  if(status <100 || status >600)
+  if (status <100 || status >600)
    return NULL;
-  switch(status) {
+
+  switch (status) {
  case STUN_400_BAD_REQUEST: return stun_400_Bad_request;
  case STUN_401_UNAUTHORIZED: return stun_401_Unauthorized;
  case STUN_420_UNKNOWN_ATTRIBUTE: return stun_420_Unknown_attribute;
@@ -343,7 +347,7 @@ int stun_encode_address(stun_attr_t *attr) {

  a = (stun_attr_sockaddr_t *)attr->pattr;

-  if(stun_encode_type_len(attr, 2*sizeof(uint32_t))<0) {
+  if (stun_encode_type_len(attr, 2*sizeof(uint32_t)) < 0) {
    return -1;
  }

@@ -361,7 +365,7 @@ int stun_encode_uint32(stun_attr_t *attr) {
    return -1;
  }

-  tmp = htonl(((stun_attr_changerequest_t *)attr->pattr)->value);
+  tmp = htonl(((stun_attr_changerequest_t *) attr->pattr)->value);
  memcpy(attr->enc_buf.data+4, &tmp, sizeof(tmp));
  return attr->enc_buf.size;
 }
@@ -372,23 +376,23 @@ int stun_encode_error_code(stun_attr_t *attr) {
  int len;
  stun_attr_errorcode_t *error;

-  error = (stun_attr_errorcode_t *)attr->pattr;
-  class = error->code /100;
-  num = error->code %100;
+  error = (stun_attr_errorcode_t *) attr->pattr;
+  class = error->code / 100;
+  num = error->code % 100;
  len = strlen(error->phrase);
-  attr->enc_buf.size = len + (len%4==0? 0 : 4 - (len%4));
+  attr->enc_buf.size = len + (len % 4 == 0? 0 : 4 - (len % 4));
  reason = malloc(attr->enc_buf.size);
  memset(reason, 0, attr->enc_buf.size);
  memcpy(reason, error->phrase, len);

  attr->enc_buf.size +=4;
-  if(stun_encode_type_len(attr, attr->enc_buf.size)<0) {
+  if (stun_encode_type_len(attr, attr->enc_buf.size) < 0) {
    return -1;
  }
  memset(attr->enc_buf.data+4, 0, 2);
  memcpy(attr->enc_buf.data+6, &class, 1);
  memcpy(attr->enc_buf.data+7, &num, 1);
-  memcpy(attr->enc_buf.data+8, reason, attr->enc_buf.size-4);
+  memcpy(attr->enc_buf.data+8, reason, attr->enc_buf.size - 4);

  return attr->enc_buf.size;
 }
@@ -398,7 +402,7 @@ int stun_encode_buffer(stun_attr_t *attr) {

  a = (stun_buffer_t *)attr->pattr;

-  if(stun_encode_type_len(attr, a->size)<0) {
+  if (stun_encode_type_len(attr, a->size) < 0) {
    return -1;
  }

@@ -406,18 +410,21 @@ int stun_encode_buffer(stun_attr_t *attr) {
  return attr->enc_buf.size;
 }

-int stun_encode_message_integrity(stun_attr_t *attr, unsigned char *buf, int len, stun_buffer_t *pwd) {
+int stun_encode_message_integrity(stun_attr_t *attr,
+				  unsigned char *buf,
+				  int len,
+				  stun_buffer_t *pwd) {
  int padded_len;
  size_t dig_len;
  unsigned char *padded_text;

-  if(stun_encode_type_len(attr, 20)<0) {
+  if (stun_encode_type_len(attr, 20) < 0) {
    return -1;
  }

  /* zero padding */
-  padded_len = len + (len%64==0? 0:64 - (len%64));
-  padded_text = (unsigned char *)malloc(padded_len);
+  padded_len = len + (len % 64 == 0 ? 0 : 64 - (len % 64));
+  padded_text = (unsigned char *) malloc(padded_len);
  memset(padded_text, 0, padded_len);
  memcpy(padded_text, buf, len);

@@ -430,13 +437,13 @@ int stun_encode_message_integrity(stun_attr_t *attr, unsigned char *buf, int len
 /** this function allocates the enc_buf, fills in type, length */
 int stun_encode_type_len(stun_attr_t *attr, uint16_t len) {
  uint16_t tmp;
-  attr->enc_buf.data = (unsigned char *)malloc(len+4);
-  memset(attr->enc_buf.data, 0, len+4);
+  attr->enc_buf.data = (unsigned char *) malloc(len + 4);
+  memset(attr->enc_buf.data, 0, len + 4);
  tmp = htons(attr->attr_type);
  memcpy(attr->enc_buf.data, &tmp, 2);
  tmp = htons(len);
-  memcpy(attr->enc_buf.data+2, &tmp, 2);
-  attr->enc_buf.size = len+4;
+  memcpy(attr->enc_buf.data + 2, &tmp, 2);
+  attr->enc_buf.size = len + 4;
  return 0;
 }

@@ -460,7 +467,7 @@ int stun_validate_message_integrity(stun_msg_t *msg, stun_buffer_t *pwd) {
  }

  /* zero padding */
-  len = msg->enc_buf.size-24;
+  len = msg->enc_buf.size - 24;
  padded_len = len + (len % 64 == 0 ? 0 : 64 - (len % 64));
  padded_text = (unsigned char *) malloc(padded_len);
  memset(padded_text, 0, padded_len);
@@ -468,7 +475,7 @@ int stun_validate_message_integrity(stun_msg_t *msg, stun_buffer_t *pwd) {

  memcpy(dig, HMAC(EVP_sha1(), pwd->data, pwd->size, padded_text, padded_len, NULL, &dig_len), 20);

-  if (memcmp(dig, msg->enc_buf.data+msg->enc_buf.size-20, 20) != 0) {
+  if (memcmp(dig, msg->enc_buf.data + msg->enc_buf.size - 20, 20) != 0) {
    /* does not match, but try the test server's password */
    if (memcmp(msg->enc_buf.data+msg->enc_buf.size-20, "hmac-not-implemented", 20) != 0) {
      SU_DEBUG_5(("%s: error: message digest problem.\n", __func__));

--- a/libsofia-sip-ua/stun/stunc.c
+++ b/libsofia-sip-ua/stun/stunc.c
@@ -73,7 +73,7 @@ void stunc_callback(stunc_t *stunc, stun_handle_t *en, stun_states_t event)

  switch (event) {
  case stun_tls_done:
-    SU_DEBUG_3(("%s: %s\n", __func__, stun_str_state(event)));
+    /* SU_DEBUG_3(("%s: %s\n", __func__, stun_str_state(event))); */
    su_root_break(stun_handle_root(en));
    break;