no audio and no video the only error is org.bouncycastle.tls.TlsTimeoutException

[lbonco]

Hi,

I have a local running jitsi server, in the same physical machine I have nginx, prosody, coturn, jvb and jicofo. It works OK until I upgraded from stable/jitsi-meet_9646 to stable/jitsi-meet_10314. The only working conference is in p2p mode, if I need jvb, it stops working. If I downgrade only JVB everything works OK.

The only error I found is:

JVB 2025-06-16 17:37:19.179 GRAVE: [105] [confId=6f28661230ffc38f conf_name=test@muc.jitsi.svil.prjq meeting_id=be5447f0 epId=cd3c17bc stats_id=Raleigh-vRi] DtlsTransport.startDtlsHandshake#140: Error during DTLS negotiation, closing this transport manager
org.bouncycastle.tls.TlsTimeoutException: Handshake timed out
        at org.bouncycastle.tls.DTLSReliableHandshake.implReceiveMessage(Unknown Source)
        at org.bouncycastle.tls.DTLSReliableHandshake.receiveMessage(Unknown Source)
        at org.bouncycastle.tls.DTLSServerProtocol.serverHandshake(Unknown Source)
        at org.bouncycastle.tls.DTLSServerProtocol.accept(Unknown Source)
        at org.bouncycastle.tls.DTLSServerProtocol.accept(Unknown Source)
        at org.jitsi.nlj.dtls.DtlsServer.accept(DtlsServer.kt:45)
        at org.jitsi.nlj.dtls.DtlsServer.start(DtlsServer.kt:41)
        at org.jitsi.nlj.dtls.DtlsStack.start(DtlsStack.kt:151)
        at org.jitsi.videobridge.transport.dtls.DtlsTransport.startDtlsHandshake(DtlsTransport.kt:137)
        at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1095)
        at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:619)
        at java.base/java.lang.Thread.run(Thread.java:1447)

I verified that the UDP traffic is OK, and in a tcpdump on the server I noticed that the DTLS ClientHello is sent by all participants, but I'm not able to find anything about it in the log.

This is the video bridge configuration:

videobridge { 
    health {
       require-valid-address = false
    }
    http-servers { 
        public {
            port = 9090
            host = "jitsi.svil.XX"
        }
    }
    websockets {
        enabled = true
        domain = "jitsi.svil.XX:443"
        tls = true
        server-id = "10.8.0.140"
    }
    apis.xmpp-client.configs {
        shard {
            HOSTNAME = "xmpp.jitsi.svil.XX"
            PORT = "5222"
            DOMAIN = "auth.jitsi.svil.XX"
            USERNAME = "jvb"
            PASSWORD = "XXXXX"
            MUC_JIDS = "jvbbrewery@internal-muc.jitsi.svil.XX"
            MUC_NICKNAME = "b085310fce08"
            DISABLE_CERTIFICATE_VERIFICATION = true
        }
    }
}
ice4j {
    redact-remote-addresses = false
    harvest {
        use-ipv6 = false
        use-link-local-addresses = true
        timeout = 15 seconds
        udp {
            #receive-buffer-size = 10485760
            use-dynamic-ports = true
        }
        allowed-addresses = ["jitsi.svil.XX"]
        blocked-addresses = []
        allowed-interfaces = []
        blocked-interfaces = []
        mapping {
            aws {
                enabled = false
            }
            stun {
                addresses = ["turn.svil.XX:5349"]
            }
        }
    }
}

Thanks,
Luca