Blame - rtc_base/openssl_adapter.cc - webrtc.googlesource.com/src

blob: 7ac922041d1f7451f8fdce567b78b8b59a050db9 [file] [log] [blame]

henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	1	/*
				2	* Copyright 2008 The WebRTC Project Authors. All rights reserved.
				3	*
				4	* Use of this source code is governed by a BSD-style license
				5	* that can be found in the LICENSE file in the root of the source
				6	* tree. An additional intellectual property rights grant can be found
				7	* in the file PATENTS. All contributing project authors may
				8	* be found in the AUTHORS file in the root of the source tree.
				9	*/
				10
Steve Anton	10542f2	2019-01-11 09:11:00 -0800	[diff] [blame]	11	#include "rtc_base/openssl_adapter.h"
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	12
Yves Gerey	988cc08	2018-10-23 12:03:01 +0200	[diff] [blame]	13	#include <errno.h>
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	14	#include <openssl/bio.h>
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	15	#include <openssl/err.h>
Ali Tofigh	7fa9057	2022-03-17 15:47:49 +0100	[diff] [blame]	16
				17	#include "absl/strings/string_view.h"
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	18	#ifdef OPENSSL_IS_BORINGSSL
				19	#include <openssl/pool.h>
				20	#endif
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	21	#include <openssl/rand.h>
henrike@webrtc.org	d5a0506	2014-06-30 20:38:56 +0000	[diff] [blame]	22	#include <openssl/x509.h>
Yves Gerey	988cc08	2018-10-23 12:03:01 +0200	[diff] [blame]	23	#include <string.h>
				24	#include <time.h>
				25
Mirko Bonadei	317a1f0	2019-09-17 17:06:18 +0200	[diff] [blame]	26	#include <memory>
				27
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	28	// Use CRYPTO_BUFFER APIs if available and we have no dependency on X509
				29	// objects.
				30	#if defined(OPENSSL_IS_BORINGSSL) && \
				31	defined(WEBRTC_EXCLUDE_BUILT_IN_SSL_ROOT_CERTS)
				32	#define WEBRTC_USE_CRYPTO_BUFFER_CALLBACK
				33	#endif
				34
Harald Alvestrand	8515d5a	2020-03-20 22:51:32 +0100	[diff] [blame]	35	#include "absl/memory/memory.h"
Danil Chapovalov	e7280c3	2022-08-18 12:01:30 +0200	[diff] [blame]	36	#include "api/units/time_delta.h"
Mirko Bonadei	92ea95e	2017-09-15 06:47:31 +0200	[diff] [blame]	37	#include "rtc_base/checks.h"
				38	#include "rtc_base/logging.h"
Karl Wiberg	e40468b	2017-11-22 10:42:26 +0100	[diff] [blame]	39	#include "rtc_base/numerics/safe_conversions.h"
Jonas Olsson	a4d8737	2019-07-05 19:08:33 +0200	[diff] [blame]	40	#include "rtc_base/openssl.h"
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	41	#ifdef OPENSSL_IS_BORINGSSL
				42	#include "rtc_base/boringssl_identity.h"
				43	#else
				44	#include "rtc_base/openssl_identity.h"
				45	#endif
Steve Anton	10542f2	2019-01-11 09:11:00 -0800	[diff] [blame]	46	#include "rtc_base/openssl_utility.h"
Niels Möller	9aa46c6	2022-05-11 15:02:55 +0200	[diff] [blame]	47	#include "rtc_base/strings/string_builder.h"
Mirko Bonadei	92ea95e	2017-09-15 06:47:31 +0200	[diff] [blame]	48	#include "rtc_base/thread.h"
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	49
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	50	//////////////////////////////////////////////////////////////////////
				51	// SocketBIO
				52	//////////////////////////////////////////////////////////////////////
				53
				54	static int socket_write(BIO* h, const char* buf, int num);
				55	static int socket_read(BIO* h, char* buf, int size);
				56	static int socket_puts(BIO* h, const char* str);
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	57	static long socket_ctrl(BIO* h, int cmd, long arg1, void* arg2); // NOLINT
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	58	static int socket_new(BIO* h);
				59	static int socket_free(BIO* data);
				60
Jiawei Ou	eb0df08	2018-02-02 14:51:18 -0800	[diff] [blame]	61	static BIO_METHOD* BIO_socket_method() {
				62	static BIO_METHOD* methods = [] {
				63	BIO_METHOD* methods = BIO_meth_new(BIO_TYPE_BIO, "socket");
				64	BIO_meth_set_write(methods, socket_write);
				65	BIO_meth_set_read(methods, socket_read);
				66	BIO_meth_set_puts(methods, socket_puts);
				67	BIO_meth_set_ctrl(methods, socket_ctrl);
				68	BIO_meth_set_create(methods, socket_new);
				69	BIO_meth_set_destroy(methods, socket_free);
				70	return methods;
				71	}();
				72	return methods;
				73	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	74
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	75	static BIO* BIO_new_socket(rtc::Socket* socket) {
Jiawei Ou	eb0df08	2018-02-02 14:51:18 -0800	[diff] [blame]	76	BIO* ret = BIO_new(BIO_socket_method());
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	77	if (ret == nullptr) {
				78	return nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	79	}
Jiawei Ou	eb0df08	2018-02-02 14:51:18 -0800	[diff] [blame]	80	BIO_set_data(ret, socket);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	81	return ret;
				82	}
				83
				84	static int socket_new(BIO* b) {
Jiawei Ou	eb0df08	2018-02-02 14:51:18 -0800	[diff] [blame]	85	BIO_set_shutdown(b, 0);
				86	BIO_set_init(b, 1);
				87	BIO_set_data(b, 0);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	88	return 1;
				89	}
				90
				91	static int socket_free(BIO* b) {
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	92	if (b == nullptr)
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	93	return 0;
				94	return 1;
				95	}
				96
				97	static int socket_read(BIO* b, char* out, int outl) {
				98	if (!out)
				99	return -1;
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	100	rtc::Socket* socket = static_cast<rtc::Socket*>(BIO_get_data(b));
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	101	BIO_clear_retry_flags(b);
Stefan Holmer	9131efd	2016-05-23 18:19:26 +0200	[diff] [blame]	102	int result = socket->Recv(out, outl, nullptr);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	103	if (result > 0) {
				104	return result;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	105	} else if (socket->IsBlocking()) {
				106	BIO_set_retry_read(b);
				107	}
				108	return -1;
				109	}
				110
				111	static int socket_write(BIO* b, const char* in, int inl) {
				112	if (!in)
				113	return -1;
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	114	rtc::Socket* socket = static_cast<rtc::Socket*>(BIO_get_data(b));
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	115	BIO_clear_retry_flags(b);
				116	int result = socket->Send(in, inl);
				117	if (result > 0) {
				118	return result;
				119	} else if (socket->IsBlocking()) {
				120	BIO_set_retry_write(b);
				121	}
				122	return -1;
				123	}
				124
				125	static int socket_puts(BIO* b, const char* str) {
henrike@webrtc.org	d89b69a	2014-11-06 17:23:09 +0000	[diff] [blame]	126	return socket_write(b, str, rtc::checked_cast<int>(strlen(str)));
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	127	}
				128
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	129	static long socket_ctrl(BIO* b, int cmd, long num, void* ptr) { // NOLINT
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	130	switch (cmd) {
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	131	case BIO_CTRL_RESET:
				132	return 0;
				133	case BIO_CTRL_EOF: {
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	134	rtc::Socket* socket = static_cast<rtc::Socket*>(ptr);
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	135	// 1 means socket closed.
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	136	return (socket->GetState() == rtc::Socket::CS_CLOSED) ? 1 : 0;
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	137	}
				138	case BIO_CTRL_WPENDING:
				139	case BIO_CTRL_PENDING:
				140	return 0;
				141	case BIO_CTRL_FLUSH:
				142	return 1;
				143	default:
				144	return 0;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	145	}
				146	}
				147
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	148	static void LogSslError() {
				149	// Walk down the error stack to find the SSL error.
				150	uint32_t error_code;
				151	const char* file;
				152	int line;
				153	do {
				154	error_code = ERR_get_error_line(&file, &line);
				155	if (ERR_GET_LIB(error_code) == ERR_LIB_SSL) {
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	156	RTC_LOG(LS_ERROR) << "ERR_LIB_SSL: " << error_code << ", " << file << ":"
				157	<< line;
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	158	break;
				159	}
				160	} while (error_code != 0);
				161	}
				162
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	163	/////////////////////////////////////////////////////////////////////////////
				164	// OpenSSLAdapter
				165	/////////////////////////////////////////////////////////////////////////////
				166
				167	namespace rtc {
				168
Danil Chapovalov	e7280c3	2022-08-18 12:01:30 +0200	[diff] [blame]	169	using ::webrtc::TimeDelta;
				170
Niels Möller	9aa46c6	2022-05-11 15:02:55 +0200	[diff] [blame]	171	namespace webrtc_openssl_adapter_internal {
				172
				173	// Simple O(n^2) implementation is sufficient for current use case.
				174	std::string StrJoin(const std::vector<std::string>& list, char delimiter) {
				175	RTC_CHECK(!list.empty());
				176	StringBuilder sb;
				177	sb << list[0];
				178	for (size_t i = 1; i < list.size(); i++) {
				179	sb.AppendFormat("%c", delimiter);
				180	sb << list[i];
				181	}
				182	return sb.Release();
				183	}
				184	} // namespace webrtc_openssl_adapter_internal
				185
				186	using webrtc_openssl_adapter_internal::StrJoin;
				187
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	188	bool OpenSSLAdapter::InitializeSSL() {
Jiawei Ou	eb0df08	2018-02-02 14:51:18 -0800	[diff] [blame]	189	if (!SSL_library_init())
				190	return false;
Torbjorn Granlund	9adc91d	2016-03-24 14:05:06 +0100	[diff] [blame]	191	#if !defined(ADDRESS_SANITIZER) \|\| !defined(WEBRTC_MAC) \|\| defined(WEBRTC_IOS)
				192	// Loading the error strings crashes mac_asan. Omit this debugging aid there.
				193	SSL_load_error_strings();
				194	#endif
				195	ERR_load_BIO_strings();
				196	OpenSSL_add_all_algorithms();
				197	RAND_poll();
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	198	return true;
				199	}
				200
Torbjorn Granlund	9adc91d	2016-03-24 14:05:06 +0100	[diff] [blame]	201	bool OpenSSLAdapter::CleanupSSL() {
Torbjorn Granlund	9adc91d	2016-03-24 14:05:06 +0100	[diff] [blame]	202	return true;
				203	}
				204
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	205	OpenSSLAdapter::OpenSSLAdapter(Socket* socket,
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	206	OpenSSLSessionCache* ssl_session_cache,
				207	SSLCertificateVerifier* ssl_cert_verifier)
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	208	: SSLAdapter(socket),
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	209	ssl_session_cache_(ssl_session_cache),
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	210	ssl_cert_verifier_(ssl_cert_verifier),
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	211	state_(SSL_NONE),
Steve Anton	786de70	2017-08-17 15:15:46 -0700	[diff] [blame]	212	role_(SSL_CLIENT),
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	213	ssl_read_needs_write_(false),
				214	ssl_write_needs_read_(false),
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	215	ssl_(nullptr),
				216	ssl_ctx_(nullptr),
				217	ssl_mode_(SSL_MODE_TLS),
Sergey Silkin	9c147dd	2018-09-12 10:45:38 +0000	[diff] [blame]	218	ignore_bad_cert_(false),
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	219	custom_cert_verifier_status_(false) {
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	220	// If a factory is used, take a reference on the factory's SSL_CTX.
				221	// Otherwise, we'll create our own later.
				222	// Either way, we'll release our reference via SSL_CTX_free() in Cleanup().
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	223	if (ssl_session_cache_ != nullptr) {
				224	ssl_ctx_ = ssl_session_cache_->GetSSLContext();
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	225	RTC_DCHECK(ssl_ctx_);
				226	// Note: if using OpenSSL, requires version 1.1.0 or later.
				227	SSL_CTX_up_ref(ssl_ctx_);
				228	}
				229	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	230
				231	OpenSSLAdapter::~OpenSSLAdapter() {
				232	Cleanup();
				233	}
				234
Sergey Silkin	9c147dd	2018-09-12 10:45:38 +0000	[diff] [blame]	235	void OpenSSLAdapter::SetIgnoreBadCert(bool ignore) {
				236	ignore_bad_cert_ = ignore;
				237	}
				238
				239	void OpenSSLAdapter::SetAlpnProtocols(const std::vector<std::string>& protos) {
				240	alpn_protocols_ = protos;
				241	}
				242
				243	void OpenSSLAdapter::SetEllipticCurves(const std::vector<std::string>& curves) {
				244	elliptic_curves_ = curves;
Diogo Real	7bd1f1b	2017-09-08 12:50:41 -0700	[diff] [blame]	245	}
				246
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	247	void OpenSSLAdapter::SetMode(SSLMode mode) {
				248	RTC_DCHECK(!ssl_ctx_);
nisse	ede5da4	2017-01-12 05:15:36 -0800	[diff] [blame]	249	RTC_DCHECK(state_ == SSL_NONE);
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	250	ssl_mode_ = mode;
				251	}
				252
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	253	void OpenSSLAdapter::SetCertVerifier(
				254	SSLCertificateVerifier* ssl_cert_verifier) {
				255	RTC_DCHECK(!ssl_ctx_);
				256	ssl_cert_verifier_ = ssl_cert_verifier;
				257	}
				258
Harald Alvestrand	8515d5a	2020-03-20 22:51:32 +0100	[diff] [blame]	259	void OpenSSLAdapter::SetIdentity(std::unique_ptr<SSLIdentity> identity) {
				260	RTC_DCHECK(!identity_);
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	261	#ifdef OPENSSL_IS_BORINGSSL
				262	identity_ =
				263	absl::WrapUnique(static_cast<BoringSSLIdentity*>(identity.release()));
				264	#else
Harald Alvestrand	8515d5a	2020-03-20 22:51:32 +0100	[diff] [blame]	265	identity_ =
				266	absl::WrapUnique(static_cast<OpenSSLIdentity*>(identity.release()));
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	267	#endif
Harald Alvestrand	8515d5a	2020-03-20 22:51:32 +0100	[diff] [blame]	268	}
				269
Steve Anton	786de70	2017-08-17 15:15:46 -0700	[diff] [blame]	270	void OpenSSLAdapter::SetRole(SSLRole role) {
				271	role_ = role;
				272	}
				273
Ali Tofigh	2ab914c	2022-04-13 12:55:15 +0200	[diff] [blame]	274	int OpenSSLAdapter::StartSSL(absl::string_view hostname) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	275	if (state_ != SSL_NONE)
				276	return -1;
				277
Ali Tofigh	2ab914c	2022-04-13 12:55:15 +0200	[diff] [blame]	278	ssl_host_name_.assign(hostname.data(), hostname.size());
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	279
Niels Möller	8729d78	2021-08-11 11:22:44 +0200	[diff] [blame]	280	if (GetSocket()->GetState() != Socket::CS_CONNECTED) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	281	state_ = SSL_WAIT;
				282	return 0;
				283	}
				284
				285	state_ = SSL_CONNECTING;
				286	if (int err = BeginSSL()) {
				287	Error("BeginSSL", err, false);
				288	return err;
				289	}
				290
				291	return 0;
				292	}
				293
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	294	int OpenSSLAdapter::BeginSSL() {
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	295	RTC_LOG(LS_INFO) << "OpenSSLAdapter::BeginSSL: " << ssl_host_name_;
nisse	ede5da4	2017-01-12 05:15:36 -0800	[diff] [blame]	296	RTC_DCHECK(state_ == SSL_CONNECTING);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	297
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	298	// Cleanup action to deal with on error cleanup a bit cleaner.
				299	EarlyExitCatcher early_exit_catcher(*this);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	300
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	301	// First set up the context. We should either have a factory, with its own
				302	// pre-existing context, or be running standalone, in which case we will
Artem Titov	96e3b99	2021-07-26 16:03:14 +0200	[diff] [blame]	303	// need to create one, and specify `false` to disable session caching.
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	304	if (ssl_session_cache_ == nullptr) {
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	305	RTC_DCHECK(!ssl_ctx_);
				306	ssl_ctx_ = CreateContext(ssl_mode_, false);
				307	}
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	308
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	309	if (!ssl_ctx_) {
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	310	return -1;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	311	}
				312
Steve Anton	786de70	2017-08-17 15:15:46 -0700	[diff] [blame]	313	if (identity_ && !identity_->ConfigureIdentity(ssl_ctx_)) {
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	314	return -1;
Steve Anton	786de70	2017-08-17 15:15:46 -0700	[diff] [blame]	315	}
				316
Niels Möller	8729d78	2021-08-11 11:22:44 +0200	[diff] [blame]	317	std::unique_ptr<BIO, decltype(&::BIO_free)> bio{BIO_new_socket(GetSocket()),
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	318	::BIO_free};
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	319	if (!bio) {
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	320	return -1;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	321	}
				322
				323	ssl_ = SSL_new(ssl_ctx_);
				324	if (!ssl_) {
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	325	return -1;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	326	}
				327
				328	SSL_set_app_data(ssl_, this);
				329
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	330	// SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER allows different buffers to be passed
				331	// into SSL_write when a record could only be partially transmitted (and thus
				332	// requires another call to SSL_write to finish transmission). This allows us
				333	// to copy the data into our own buffer when this occurs, since the original
				334	// buffer can't safely be accessed after control exits Send.
				335	// TODO(deadbeef): Do we want SSL_MODE_ENABLE_PARTIAL_WRITE? It doesn't
				336	// appear Send handles partial writes properly, though maybe we never notice
				337	// since we never send more than 16KB at once..
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	338	SSL_set_mode(ssl_, SSL_MODE_ENABLE_PARTIAL_WRITE \|
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	339	SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	340
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	341	// Enable SNI, if a hostname is supplied.
Emad Omara	dab1d2d	2017-06-16 15:43:11 -0700	[diff] [blame]	342	if (!ssl_host_name_.empty()) {
				343	SSL_set_tlsext_host_name(ssl_, ssl_host_name_.c_str());
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	344
				345	// Enable session caching, if configured and a hostname is supplied.
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	346	if (ssl_session_cache_ != nullptr) {
				347	SSL_SESSION* cached = ssl_session_cache_->LookupSession(ssl_host_name_);
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	348	if (cached) {
				349	if (SSL_set_session(ssl_, cached) == 0) {
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	350	RTC_LOG(LS_WARNING) << "Failed to apply SSL session from cache";
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	351	return -1;
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	352	}
				353
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	354	RTC_LOG(LS_INFO) << "Attempting to resume SSL session to "
				355	<< ssl_host_name_;
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	356	}
				357	}
Emad Omara	dab1d2d	2017-06-16 15:43:11 -0700	[diff] [blame]	358	}
				359
Jiawei Ou	eb0df08	2018-02-02 14:51:18 -0800	[diff] [blame]	360	#ifdef OPENSSL_IS_BORINGSSL
Sergey Silkin	9c147dd	2018-09-12 10:45:38 +0000	[diff] [blame]	361	// Set a couple common TLS extensions; even though we don't use them yet.
				362	SSL_enable_ocsp_stapling(ssl_);
				363	SSL_enable_signed_cert_timestamps(ssl_);
Jiawei Ou	eb0df08	2018-02-02 14:51:18 -0800	[diff] [blame]	364	#endif
Emad Omara	cb79d23	2017-07-20 16:34:34 -0700	[diff] [blame]	365
Sergey Silkin	9c147dd	2018-09-12 10:45:38 +0000	[diff] [blame]	366	if (!alpn_protocols_.empty()) {
				367	std::string tls_alpn_string = TransformAlpnProtocols(alpn_protocols_);
Diogo Real	1dca9d5	2017-08-29 12:18:32 -0700	[diff] [blame]	368	if (!tls_alpn_string.empty()) {
				369	SSL_set_alpn_protos(
				370	ssl_, reinterpret_cast<const unsigned char*>(tls_alpn_string.data()),
Mirko Bonadei	a041f92	2018-05-23 10:22:36 +0200	[diff] [blame]	371	rtc::dchecked_cast<unsigned>(tls_alpn_string.size()));
Diogo Real	1dca9d5	2017-08-29 12:18:32 -0700	[diff] [blame]	372	}
				373	}
				374
Sergey Silkin	9c147dd	2018-09-12 10:45:38 +0000	[diff] [blame]	375	if (!elliptic_curves_.empty()) {
Niels Möller	9aa46c6	2022-05-11 15:02:55 +0200	[diff] [blame]	376	SSL_set1_curves_list(ssl_, StrJoin(elliptic_curves_, ':').c_str());
Diogo Real	7bd1f1b	2017-09-08 12:50:41 -0700	[diff] [blame]	377	}
				378
Artem Titov	96e3b99	2021-07-26 16:03:14 +0200	[diff] [blame]	379	// Now that the initial config is done, transfer ownership of `bio` to the
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	380	// SSL object. If ContinueSSL() fails, the bio will be freed in Cleanup().
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	381	SSL_set_bio(ssl_, bio.get(), bio.get());
				382	bio.release();
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	383
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	384	// Do the connect.
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	385	int err = ContinueSSL();
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	386	if (err != 0) {
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	387	return err;
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	388	}
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	389	early_exit_catcher.disable();
				390	return 0;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	391	}
				392
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	393	int OpenSSLAdapter::ContinueSSL() {
nisse	ede5da4	2017-01-12 05:15:36 -0800	[diff] [blame]	394	RTC_DCHECK(state_ == SSL_CONNECTING);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	395
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	396	// Clear the DTLS timer
Danil Chapovalov	e7280c3	2022-08-18 12:01:30 +0200	[diff] [blame]	397	timer_.reset();
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	398
Steve Anton	786de70	2017-08-17 15:15:46 -0700	[diff] [blame]	399	int code = (role_ == SSL_CLIENT) ? SSL_connect(ssl_) : SSL_accept(ssl_);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	400	switch (SSL_get_error(ssl_, code)) {
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	401	case SSL_ERROR_NONE:
				402	if (!SSLPostConnectionCheck(ssl_, ssl_host_name_)) {
				403	RTC_LOG(LS_ERROR) << "TLS post connection check failed";
				404	// make sure we close the socket
				405	Cleanup();
				406	// The connect failed so return -1 to shut down the socket
				407	return -1;
				408	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	409
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	410	state_ = SSL_CONNECTED;
				411	AsyncSocketAdapter::OnConnectEvent(this);
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	412	// TODO(benwright): Refactor this code path.
				413	// Don't let ourselves go away during the callbacks
				414	// PRefPtr<OpenSSLAdapter> lock(this);
				415	// RTC_LOG(LS_INFO) << " -- onStreamReadable";
				416	// AsyncSocketAdapter::OnReadEvent(this);
				417	// RTC_LOG(LS_INFO) << " -- onStreamWriteable";
				418	// AsyncSocketAdapter::OnWriteEvent(this);
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	419	break;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	420
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	421	case SSL_ERROR_WANT_READ:
				422	RTC_LOG(LS_VERBOSE) << " -- error want read";
				423	struct timeval timeout;
				424	if (DTLSv1_get_timeout(ssl_, &timeout)) {
Danil Chapovalov	e7280c3	2022-08-18 12:01:30 +0200	[diff] [blame]	425	TimeDelta delay = TimeDelta::Seconds(timeout.tv_sec) +
				426	TimeDelta::Micros(timeout.tv_usec);
				427	Thread::Current()->PostDelayedTask(
				428	SafeTask(timer_.flag(), [this] { OnTimeout(); }), delay);
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	429	}
				430	break;
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	431
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	432	case SSL_ERROR_WANT_WRITE:
				433	break;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	434
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	435	case SSL_ERROR_ZERO_RETURN:
				436	default:
				437	RTC_LOG(LS_WARNING) << "ContinueSSL -- error " << code;
				438	return (code != 0) ? code : -1;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	439	}
				440
				441	return 0;
				442	}
				443
Ali Tofigh	2ab914c	2022-04-13 12:55:15 +0200	[diff] [blame]	444	void OpenSSLAdapter::Error(absl::string_view context, int err, bool signal) {
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	445	RTC_LOG(LS_WARNING) << "OpenSSLAdapter::Error(" << context << ", " << err
				446	<< ")";
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	447	state_ = SSL_ERROR;
				448	SetError(err);
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	449	if (signal) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	450	AsyncSocketAdapter::OnCloseEvent(this, err);
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	451	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	452	}
				453
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	454	void OpenSSLAdapter::Cleanup() {
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	455	RTC_LOG(LS_INFO) << "OpenSSLAdapter::Cleanup";
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	456
				457	state_ = SSL_NONE;
				458	ssl_read_needs_write_ = false;
				459	ssl_write_needs_read_ = false;
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	460	custom_cert_verifier_status_ = false;
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	461	pending_data_.Clear();
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	462
				463	if (ssl_) {
				464	SSL_free(ssl_);
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	465	ssl_ = nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	466	}
				467
				468	if (ssl_ctx_) {
				469	SSL_CTX_free(ssl_ctx_);
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	470	ssl_ctx_ = nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	471	}
Steve Anton	786de70	2017-08-17 15:15:46 -0700	[diff] [blame]	472	identity_.reset();
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	473
				474	// Clear the DTLS timer
Danil Chapovalov	e7280c3	2022-08-18 12:01:30 +0200	[diff] [blame]	475	timer_.reset();
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	476	}
				477
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	478	int OpenSSLAdapter::DoSslWrite(const void* pv, size_t cb, int* error) {
				479	// If we have pending data (that was previously only partially written by
				480	// SSL_write), we shouldn't be attempting to write anything else.
				481	RTC_DCHECK(pending_data_.empty() \|\| pv == pending_data_.data());
				482	RTC_DCHECK(error != nullptr);
				483
				484	ssl_write_needs_read_ = false;
				485	int ret = SSL_write(ssl_, pv, checked_cast<int>(cb));
				486	*error = SSL_get_error(ssl_, ret);
				487	switch (*error) {
				488	case SSL_ERROR_NONE:
				489	// Success!
				490	return ret;
				491	case SSL_ERROR_WANT_READ:
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	492	RTC_LOG(LS_INFO) << " -- error want read";
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	493	ssl_write_needs_read_ = true;
				494	SetError(EWOULDBLOCK);
				495	break;
				496	case SSL_ERROR_WANT_WRITE:
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	497	RTC_LOG(LS_INFO) << " -- error want write";
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	498	SetError(EWOULDBLOCK);
				499	break;
				500	case SSL_ERROR_ZERO_RETURN:
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	501	SetError(EWOULDBLOCK);
				502	// do we need to signal closure?
				503	break;
				504	case SSL_ERROR_SSL:
				505	LogSslError();
				506	Error("SSL_write", ret ? ret : -1, false);
				507	break;
				508	default:
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	509	Error("SSL_write", ret ? ret : -1, false);
				510	break;
				511	}
				512
				513	return SOCKET_ERROR;
				514	}
				515
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	516	///////////////////////////////////////////////////////////////////////////////
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	517	// Socket Implementation
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	518	///////////////////////////////////////////////////////////////////////////////
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	519
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	520	int OpenSSLAdapter::Send(const void* pv, size_t cb) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	521	switch (state_) {
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	522	case SSL_NONE:
				523	return AsyncSocketAdapter::Send(pv, cb);
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	524	case SSL_WAIT:
				525	case SSL_CONNECTING:
				526	SetError(ENOTCONN);
				527	return SOCKET_ERROR;
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	528	case SSL_CONNECTED:
				529	break;
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	530	case SSL_ERROR:
				531	default:
				532	return SOCKET_ERROR;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	533	}
				534
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	535	int ret;
				536	int error;
				537
				538	if (!pending_data_.empty()) {
				539	ret = DoSslWrite(pending_data_.data(), pending_data_.size(), &error);
				540	if (ret != static_cast<int>(pending_data_.size())) {
				541	// We couldn't finish sending the pending data, so we definitely can't
				542	// send any more data. Return with an EWOULDBLOCK error.
				543	SetError(EWOULDBLOCK);
				544	return SOCKET_ERROR;
				545	}
				546	// We completed sending the data previously passed into SSL_write! Now
				547	// we're allowed to send more data.
				548	pending_data_.Clear();
				549	}
				550
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	551	// OpenSSL will return an error if we try to write zero bytes
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	552	if (cb == 0) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	553	return 0;
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	554	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	555
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	556	ret = DoSslWrite(pv, cb, &error);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	557
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	558	// If SSL_write fails with SSL_ERROR_WANT_READ or SSL_ERROR_WANT_WRITE, this
				559	// means the underlying socket is blocked on reading or (more typically)
				560	// writing. When this happens, OpenSSL requires that the next call to
				561	// SSL_write uses the same arguments (though, with
				562	// SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER, the actual buffer pointer may be
				563	// different).
				564	//
				565	// However, after Send exits, we will have lost access to data the user of
				566	// this class is trying to send, and there's no guarantee that the user of
				567	// this class will call Send with the same arguements when it fails. So, we
				568	// buffer the data ourselves. When we know the underlying socket is writable
				569	// again from OnWriteEvent (or if Send is called again before that happens),
				570	// we'll retry sending this buffered data.
deadbeef	e5dce2b	2017-06-02 11:52:06 -0700	[diff] [blame]	571	if (error == SSL_ERROR_WANT_READ \|\| error == SSL_ERROR_WANT_WRITE) {
				572	// Shouldn't be able to get to this point if we already have pending data.
				573	RTC_DCHECK(pending_data_.empty());
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	574	RTC_LOG(LS_WARNING)
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	575	<< "SSL_write couldn't write to the underlying socket; buffering data.";
				576	pending_data_.SetData(static_cast<const uint8_t*>(pv), cb);
				577	// Since we're taking responsibility for sending this data, return its full
				578	// size. The user of this class can consider it sent.
Mirko Bonadei	a041f92	2018-05-23 10:22:36 +0200	[diff] [blame]	579	return rtc::dchecked_cast<int>(cb);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	580	}
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	581	return ret;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	582	}
				583
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	584	int OpenSSLAdapter::SendTo(const void* pv,
				585	size_t cb,
				586	const SocketAddress& addr) {
Niels Möller	8729d78	2021-08-11 11:22:44 +0200	[diff] [blame]	587	if (GetSocket()->GetState() == Socket::CS_CONNECTED &&
				588	addr == GetSocket()->GetRemoteAddress()) {
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	589	return Send(pv, cb);
				590	}
				591
				592	SetError(ENOTCONN);
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	593	return SOCKET_ERROR;
				594	}
				595
Stefan Holmer	9131efd	2016-05-23 18:19:26 +0200	[diff] [blame]	596	int OpenSSLAdapter::Recv(void* pv, size_t cb, int64_t* timestamp) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	597	switch (state_) {
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	598	case SSL_NONE:
				599	return AsyncSocketAdapter::Recv(pv, cb, timestamp);
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	600	case SSL_WAIT:
				601	case SSL_CONNECTING:
				602	SetError(ENOTCONN);
				603	return SOCKET_ERROR;
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	604	case SSL_CONNECTED:
				605	break;
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	606	case SSL_ERROR:
				607	default:
				608	return SOCKET_ERROR;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	609	}
				610
				611	// Don't trust OpenSSL with zero byte reads
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	612	if (cb == 0) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	613	return 0;
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	614	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	615
				616	ssl_read_needs_write_ = false;
henrike@webrtc.org	d89b69a	2014-11-06 17:23:09 +0000	[diff] [blame]	617	int code = SSL_read(ssl_, pv, checked_cast<int>(cb));
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	618	int error = SSL_get_error(ssl_, code);
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	619
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	620	switch (error) {
				621	case SSL_ERROR_NONE:
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	622	return code;
				623	case SSL_ERROR_WANT_READ:
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	624	SetError(EWOULDBLOCK);
				625	break;
				626	case SSL_ERROR_WANT_WRITE:
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	627	ssl_read_needs_write_ = true;
				628	SetError(EWOULDBLOCK);
				629	break;
				630	case SSL_ERROR_ZERO_RETURN:
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	631	SetError(EWOULDBLOCK);
				632	// do we need to signal closure?
				633	break;
				634	case SSL_ERROR_SSL:
				635	LogSslError();
				636	Error("SSL_read", (code ? code : -1), false);
				637	break;
				638	default:
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	639	Error("SSL_read", (code ? code : -1), false);
				640	break;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	641	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	642	return SOCKET_ERROR;
				643	}
				644
Stefan Holmer	9131efd	2016-05-23 18:19:26 +0200	[diff] [blame]	645	int OpenSSLAdapter::RecvFrom(void* pv,
				646	size_t cb,
				647	SocketAddress* paddr,
				648	int64_t* timestamp) {
Niels Möller	8729d78	2021-08-11 11:22:44 +0200	[diff] [blame]	649	if (GetSocket()->GetState() == Socket::CS_CONNECTED) {
Stefan Holmer	9131efd	2016-05-23 18:19:26 +0200	[diff] [blame]	650	int ret = Recv(pv, cb, timestamp);
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	651	*paddr = GetRemoteAddress();
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	652	return ret;
				653	}
				654
				655	SetError(ENOTCONN);
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	656	return SOCKET_ERROR;
				657	}
				658
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	659	int OpenSSLAdapter::Close() {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	660	Cleanup();
Mirko Bonadei	2d2c294	2020-04-11 00:01:43 +0200	[diff] [blame]	661	state_ = SSL_NONE;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	662	return AsyncSocketAdapter::Close();
				663	}
				664
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	665	Socket::ConnState OpenSSLAdapter::GetState() const {
Niels Möller	8729d78	2021-08-11 11:22:44 +0200	[diff] [blame]	666	ConnState state = GetSocket()->GetState();
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	667	if ((state == CS_CONNECTED) &&
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	668	((state_ == SSL_WAIT) \|\| (state_ == SSL_CONNECTING))) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	669	state = CS_CONNECTING;
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	670	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	671	return state;
				672	}
				673
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	674	bool OpenSSLAdapter::IsResumedSession() {
				675	return (ssl_ && SSL_session_reused(ssl_) == 1);
				676	}
				677
Danil Chapovalov	e7280c3	2022-08-18 12:01:30 +0200	[diff] [blame]	678	void OpenSSLAdapter::OnTimeout() {
				679	RTC_LOG(LS_INFO) << "DTLS timeout expired";
				680	DTLSv1_handle_timeout(ssl_);
				681	ContinueSSL();
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	682	}
				683
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	684	void OpenSSLAdapter::OnConnectEvent(Socket* socket) {
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	685	RTC_LOG(LS_INFO) << "OpenSSLAdapter::OnConnectEvent";
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	686	if (state_ != SSL_WAIT) {
nisse	ede5da4	2017-01-12 05:15:36 -0800	[diff] [blame]	687	RTC_DCHECK(state_ == SSL_NONE);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	688	AsyncSocketAdapter::OnConnectEvent(socket);
				689	return;
				690	}
				691
				692	state_ = SSL_CONNECTING;
				693	if (int err = BeginSSL()) {
				694	AsyncSocketAdapter::OnCloseEvent(socket, err);
				695	}
				696	}
				697
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	698	void OpenSSLAdapter::OnReadEvent(Socket* socket) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	699	if (state_ == SSL_NONE) {
				700	AsyncSocketAdapter::OnReadEvent(socket);
				701	return;
				702	}
				703
				704	if (state_ == SSL_CONNECTING) {
				705	if (int err = ContinueSSL()) {
				706	Error("ContinueSSL", err);
				707	}
				708	return;
				709	}
				710
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	711	if (state_ != SSL_CONNECTED) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	712	return;
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	713	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	714
				715	// Don't let ourselves go away during the callbacks
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	716	// PRefPtr<OpenSSLAdapter> lock(this); // TODO(benwright): fix this
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	717	if (ssl_write_needs_read_) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	718	AsyncSocketAdapter::OnWriteEvent(socket);
				719	}
				720
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	721	AsyncSocketAdapter::OnReadEvent(socket);
				722	}
				723
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	724	void OpenSSLAdapter::OnWriteEvent(Socket* socket) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	725	if (state_ == SSL_NONE) {
				726	AsyncSocketAdapter::OnWriteEvent(socket);
				727	return;
				728	}
				729
				730	if (state_ == SSL_CONNECTING) {
				731	if (int err = ContinueSSL()) {
				732	Error("ContinueSSL", err);
				733	}
				734	return;
				735	}
				736
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	737	if (state_ != SSL_CONNECTED) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	738	return;
Benjamin Wright	243cabe	2018-10-16 01:55:28 -0700	[diff] [blame]	739	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	740
				741	// Don't let ourselves go away during the callbacks
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	742	// PRefPtr<OpenSSLAdapter> lock(this); // TODO(benwright): fix this
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	743
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	744	if (ssl_read_needs_write_) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	745	AsyncSocketAdapter::OnReadEvent(socket);
				746	}
				747
deadbeef	ed3b986	2017-06-02 10:33:16 -0700	[diff] [blame]	748	// If a previous SSL_write failed due to the underlying socket being blocked,
				749	// this will attempt finishing the write operation.
				750	if (!pending_data_.empty()) {
				751	int error;
				752	if (DoSslWrite(pending_data_.data(), pending_data_.size(), &error) ==
				753	static_cast<int>(pending_data_.size())) {
				754	pending_data_.Clear();
				755	}
				756	}
				757
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	758	AsyncSocketAdapter::OnWriteEvent(socket);
				759	}
				760
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	761	void OpenSSLAdapter::OnCloseEvent(Socket* socket, int err) {
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	762	RTC_LOG(LS_INFO) << "OpenSSLAdapter::OnCloseEvent(" << err << ")";
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	763	AsyncSocketAdapter::OnCloseEvent(socket, err);
				764	}
				765
Ali Tofigh	7fa9057	2022-03-17 15:47:49 +0100	[diff] [blame]	766	bool OpenSSLAdapter::SSLPostConnectionCheck(SSL* ssl, absl::string_view host) {
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	767	bool is_valid_cert_name =
				768	openssl::VerifyPeerCertMatchesHost(ssl, host) &&
				769	(SSL_get_verify_result(ssl) == X509_V_OK \|\| custom_cert_verifier_status_);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	770
Sergey Silkin	9c147dd	2018-09-12 10:45:38 +0000	[diff] [blame]	771	if (!is_valid_cert_name && ignore_bad_cert_) {
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	772	RTC_DLOG(LS_WARNING) << "Other TLS post connection checks failed. "
Sergey Silkin	9c147dd	2018-09-12 10:45:38 +0000	[diff] [blame]	773	"ignore_bad_cert_ set to true. Overriding name "
				774	"verification failure!";
Benjamin Wright	9201d1a	2018-04-05 12:12:26 -0700	[diff] [blame]	775	is_valid_cert_name = true;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	776	}
Benjamin Wright	9201d1a	2018-04-05 12:12:26 -0700	[diff] [blame]	777	return is_valid_cert_name;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	778	}
				779
tfarina	a41ab93	2015-10-30 16:08:48 -0700	[diff] [blame]	780	#if !defined(NDEBUG)
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	781
				782	// We only use this for tracing and so it is only needed in debug mode
				783
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	784	void OpenSSLAdapter::SSLInfoCallback(const SSL* s, int where, int ret) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	785	const char* str = "undefined";
				786	int w = where & ~SSL_ST_MASK;
				787	if (w & SSL_ST_CONNECT) {
				788	str = "SSL_connect";
				789	} else if (w & SSL_ST_ACCEPT) {
				790	str = "SSL_accept";
				791	}
				792	if (where & SSL_CB_LOOP) {
Harald Alvestrand	977b265	2019-12-12 13:40:50 +0100	[diff] [blame]	793	RTC_DLOG(LS_VERBOSE) << str << ":" << SSL_state_string_long(s);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	794	} else if (where & SSL_CB_ALERT) {
				795	str = (where & SSL_CB_READ) ? "read" : "write";
Jonas Olsson	addc380	2018-02-01 09:53:06 +0100	[diff] [blame]	796	RTC_DLOG(LS_INFO) << "SSL3 alert " << str << ":"
				797	<< SSL_alert_type_string_long(ret) << ":"
				798	<< SSL_alert_desc_string_long(ret);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	799	} else if (where & SSL_CB_EXIT) {
				800	if (ret == 0) {
Jonas Olsson	addc380	2018-02-01 09:53:06 +0100	[diff] [blame]	801	RTC_DLOG(LS_INFO) << str << ":failed in " << SSL_state_string_long(s);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	802	} else if (ret < 0) {
Jonas Olsson	addc380	2018-02-01 09:53:06 +0100	[diff] [blame]	803	RTC_DLOG(LS_INFO) << str << ":error in " << SSL_state_string_long(s);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	804	}
				805	}
				806	}
				807
tfarina	a41ab93	2015-10-30 16:08:48 -0700	[diff] [blame]	808	#endif
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	809
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	810	#ifdef WEBRTC_USE_CRYPTO_BUFFER_CALLBACK
				811	// static
				812	enum ssl_verify_result_t OpenSSLAdapter::SSLVerifyCallback(SSL* ssl,
				813	uint8_t* out_alert) {
				814	// Get our stream pointer from the SSL context.
				815	OpenSSLAdapter* stream =
				816	reinterpret_cast<OpenSSLAdapter*>(SSL_get_app_data(ssl));
				817
				818	ssl_verify_result_t ret = stream->SSLVerifyInternal(ssl, out_alert);
				819
				820	// Should only be used for debugging and development.
				821	if (ret != ssl_verify_ok && stream->ignore_bad_cert_) {
				822	RTC_DLOG(LS_WARNING) << "Ignoring cert error while verifying cert chain";
				823	return ssl_verify_ok;
				824	}
				825
				826	return ret;
				827	}
				828
				829	enum ssl_verify_result_t OpenSSLAdapter::SSLVerifyInternal(SSL* ssl,
				830	uint8_t* out_alert) {
				831	if (ssl_cert_verifier_ == nullptr) {
				832	RTC_LOG(LS_WARNING) << "Built-in trusted root certificates disabled but no "
				833	"SSL verify callback provided.";
				834	return ssl_verify_invalid;
				835	}
				836
				837	RTC_LOG(LS_INFO) << "Invoking SSL Verify Callback.";
				838	const STACK_OF(CRYPTO_BUFFER)* chain = SSL_get0_peer_certificates(ssl);
				839	if (sk_CRYPTO_BUFFER_num(chain) == 0) {
				840	RTC_LOG(LS_ERROR) << "Peer certificate chain empty?";
				841	return ssl_verify_invalid;
				842	}
				843
				844	BoringSSLCertificate cert(bssl::UpRef(sk_CRYPTO_BUFFER_value(chain, 0)));
				845	if (!ssl_cert_verifier_->Verify(cert)) {
				846	RTC_LOG(LS_WARNING) << "Failed to verify certificate using custom callback";
				847	return ssl_verify_invalid;
				848	}
				849
				850	custom_cert_verifier_status_ = true;
				851	RTC_LOG(LS_INFO) << "Validated certificate using custom callback";
				852	return ssl_verify_ok;
				853	}
				854	#else // WEBRTC_USE_CRYPTO_BUFFER_CALLBACK
Harald Alvestrand	b32650e	2021-09-10 08:03:22 +0000	[diff] [blame]	855	int OpenSSLAdapter::SSLVerifyCallback(int status, X509_STORE_CTX* store) {
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	856	// Get our stream pointer from the store
				857	SSL* ssl = reinterpret_cast<SSL*>(
				858	X509_STORE_CTX_get_ex_data(store, SSL_get_ex_data_X509_STORE_CTX_idx()));
				859
				860	OpenSSLAdapter* stream =
				861	reinterpret_cast<OpenSSLAdapter*>(SSL_get_app_data(ssl));
Harald Alvestrand	b32650e	2021-09-10 08:03:22 +0000	[diff] [blame]	862	// Update status with the custom verifier.
				863	// Status is unchanged if verification fails.
				864	status = stream->SSLVerifyInternal(status, ssl, store);
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	865
				866	// Should only be used for debugging and development.
Harald Alvestrand	b32650e	2021-09-10 08:03:22 +0000	[diff] [blame]	867	if (!status && stream->ignore_bad_cert_) {
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	868	RTC_DLOG(LS_WARNING) << "Ignoring cert error while verifying cert chain";
				869	return 1;
				870	}
				871
Harald Alvestrand	b32650e	2021-09-10 08:03:22 +0000	[diff] [blame]	872	return status;
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	873	}
				874
Taylor Brandstetter	bd917a1	2021-09-14 15:22:41 -0700	[diff] [blame]	875	int OpenSSLAdapter::SSLVerifyInternal(int previous_status,
Harald Alvestrand	b32650e	2021-09-10 08:03:22 +0000	[diff] [blame]	876	SSL* ssl,
				877	X509_STORE_CTX* store) {
tfarina	a41ab93	2015-10-30 16:08:48 -0700	[diff] [blame]	878	#if !defined(NDEBUG)
Taylor Brandstetter	bd917a1	2021-09-14 15:22:41 -0700	[diff] [blame]	879	if (!previous_status) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	880	char data[256];
				881	X509* cert = X509_STORE_CTX_get_current_cert(store);
				882	int depth = X509_STORE_CTX_get_error_depth(store);
				883	int err = X509_STORE_CTX_get_error(store);
				884
Jonas Olsson	addc380	2018-02-01 09:53:06 +0100	[diff] [blame]	885	RTC_DLOG(LS_INFO) << "Error with certificate at depth: " << depth;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	886	X509_NAME_oneline(X509_get_issuer_name(cert), data, sizeof(data));
Jonas Olsson	addc380	2018-02-01 09:53:06 +0100	[diff] [blame]	887	RTC_DLOG(LS_INFO) << " issuer = " << data;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	888	X509_NAME_oneline(X509_get_subject_name(cert), data, sizeof(data));
Jonas Olsson	addc380	2018-02-01 09:53:06 +0100	[diff] [blame]	889	RTC_DLOG(LS_INFO) << " subject = " << data;
				890	RTC_DLOG(LS_INFO) << " err = " << err << ":"
				891	<< X509_verify_cert_error_string(err);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	892	}
				893	#endif
Taylor Brandstetter	bd917a1	2021-09-14 15:22:41 -0700	[diff] [blame]	894	// `ssl_cert_verifier_` is used to override errors; if there is no error
				895	// there is no reason to call it.
				896	if (previous_status \|\| ssl_cert_verifier_ == nullptr) {
				897	return previous_status;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	898	}
				899
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	900	RTC_LOG(LS_INFO) << "Invoking SSL Verify Callback.";
				901	#ifdef OPENSSL_IS_BORINGSSL
				902	// Convert X509 to CRYPTO_BUFFER.
				903	uint8_t* data = nullptr;
				904	int length = i2d_X509(X509_STORE_CTX_get_current_cert(store), &data);
				905	if (length < 0) {
				906	RTC_LOG(LS_ERROR) << "Failed to encode X509.";
Taylor Brandstetter	bd917a1	2021-09-14 15:22:41 -0700	[diff] [blame]	907	return previous_status;
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	908	}
				909	bssl::UniquePtr<uint8_t> owned_data(data);
				910	bssl::UniquePtr<CRYPTO_BUFFER> crypto_buffer(
				911	CRYPTO_BUFFER_new(data, length, openssl::GetBufferPool()));
				912	if (!crypto_buffer) {
				913	RTC_LOG(LS_ERROR) << "Failed to allocate CRYPTO_BUFFER.";
Taylor Brandstetter	bd917a1	2021-09-14 15:22:41 -0700	[diff] [blame]	914	return previous_status;
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	915	}
				916	const BoringSSLCertificate cert(std::move(crypto_buffer));
				917	#else
				918	const OpenSSLCertificate cert(X509_STORE_CTX_get_current_cert(store));
				919	#endif
				920	if (!ssl_cert_verifier_->Verify(cert)) {
				921	RTC_LOG(LS_INFO) << "Failed to verify certificate using custom callback";
Taylor Brandstetter	bd917a1	2021-09-14 15:22:41 -0700	[diff] [blame]	922	return previous_status;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	923	}
				924
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	925	custom_cert_verifier_status_ = true;
				926	RTC_LOG(LS_INFO) << "Validated certificate using custom callback";
				927	return 1;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	928	}
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	929	#endif // !defined(WEBRTC_USE_CRYPTO_BUFFER_CALLBACK)
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	930
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	931	int OpenSSLAdapter::NewSSLSessionCallback(SSL* ssl, SSL_SESSION* session) {
				932	OpenSSLAdapter* stream =
				933	reinterpret_cast<OpenSSLAdapter*>(SSL_get_app_data(ssl));
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	934	RTC_DCHECK(stream->ssl_session_cache_);
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	935	RTC_LOG(LS_INFO) << "Caching SSL session for " << stream->ssl_host_name_;
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	936	stream->ssl_session_cache_->AddSession(stream->ssl_host_name_, session);
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	937	return 1; // We've taken ownership of the session; OpenSSL shouldn't free it.
				938	}
				939
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	940	SSL_CTX* OpenSSLAdapter::CreateContext(SSLMode mode, bool enable_cache) {
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	941	#ifdef WEBRTC_USE_CRYPTO_BUFFER_CALLBACK
				942	// If X509 objects aren't used, we can use these methods to avoid
				943	// linking the sizable crypto/x509 code.
				944	SSL_CTX* ctx = SSL_CTX_new(mode == SSL_MODE_DTLS ? DTLS_with_buffers_method()
				945	: TLS_with_buffers_method());
				946	#else
David Benjamin	170a4b3	2019-01-30 09:46:16 -0600	[diff] [blame]	947	SSL_CTX* ctx =
				948	SSL_CTX_new(mode == SSL_MODE_DTLS ? DTLS_method() : TLS_method());
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	949	#endif
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	950	if (ctx == nullptr) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	951	unsigned long error = ERR_get_error(); // NOLINT: type used by OpenSSL.
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	952	RTC_LOG(LS_WARNING) << "SSL_CTX creation failed: " << '"'
Jonas Olsson	b2b2031	2020-01-14 12:11:31 +0100	[diff] [blame]	953	<< ERR_reason_error_string(error)
				954	<< "\" "
				955	"(error="
				956	<< error << ')';
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	957	return nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	958	}
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	959
Mirko Bonadei	b889a20	2018-08-15 11:41:27 +0200	[diff] [blame]	960	#ifndef WEBRTC_EXCLUDE_BUILT_IN_SSL_ROOT_CERTS
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	961	if (!openssl::LoadBuiltinSSLRootCertificates(ctx)) {
				962	RTC_LOG(LS_ERROR) << "SSL_CTX creation failed: Failed to load any trusted "
				963	"ssl root certificates.";
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	964	SSL_CTX_free(ctx);
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	965	return nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	966	}
Mirko Bonadei	b889a20	2018-08-15 11:41:27 +0200	[diff] [blame]	967	#endif // WEBRTC_EXCLUDE_BUILT_IN_SSL_ROOT_CERTS
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	968
tfarina	a41ab93	2015-10-30 16:08:48 -0700	[diff] [blame]	969	#if !defined(NDEBUG)
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	970	SSL_CTX_set_info_callback(ctx, SSLInfoCallback);
				971	#endif
				972
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	973	#ifdef OPENSSL_IS_BORINGSSL
				974	SSL_CTX_set0_buffer_pool(ctx, openssl::GetBufferPool());
				975	#endif
				976
				977	#ifdef WEBRTC_USE_CRYPTO_BUFFER_CALLBACK
				978	SSL_CTX_set_custom_verify(ctx, SSL_VERIFY_PEER, SSLVerifyCallback);
				979	#else
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	980	SSL_CTX_set_verify(ctx, SSL_VERIFY_PEER, SSLVerifyCallback);
Philipp Hancke	ae278d4	2021-06-16 10:26:56 +0200	[diff] [blame]	981	// Verify certificate chains up to a depth of 4. This is not
				982	// needed for DTLS-SRTP which uses self-signed certificates
				983	// (so the depth is 0) but is required to support TURN/TLS.
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	984	SSL_CTX_set_verify_depth(ctx, 4);
Taylor Brandstetter	165c618	2020-12-10 16:23:03 -0800	[diff] [blame]	985	#endif
Emad Omara	c6de0c9	2017-06-21 16:40:56 -0700	[diff] [blame]	986	// Use defaults, but disable HMAC-SHA256 and HMAC-SHA384 ciphers
				987	// (note that SHA256 and SHA384 only select legacy CBC ciphers).
				988	// Additionally disable HMAC-SHA1 ciphers in ECDSA. These are the remaining
David Benjamin	7a46cc5	2021-08-17 16:56:20 -0400	[diff] [blame]	989	// CBC-mode ECDSA ciphers. Finally, disable 3DES.
Emad Omara	c6de0c9	2017-06-21 16:40:56 -0700	[diff] [blame]	990	SSL_CTX_set_cipher_list(
David Benjamin	7a46cc5	2021-08-17 16:56:20 -0400	[diff] [blame]	991	ctx, "ALL:!SHA256:!SHA384:!aPSK:!ECDSA+SHA1:!ADH:!LOW:!EXP:!MD5:!3DES");
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	992
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	993	if (mode == SSL_MODE_DTLS) {
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14 +0000	[diff] [blame]	994	SSL_CTX_set_read_ahead(ctx, 1);
				995	}
				996
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	997	if (enable_cache) {
				998	SSL_CTX_set_session_cache_mode(ctx, SSL_SESS_CACHE_CLIENT);
				999	SSL_CTX_sess_set_new_cb(ctx, &OpenSSLAdapter::NewSSLSessionCallback);
				1000	}
				1001
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	1002	return ctx;
				1003	}
				1004
Diogo Real	1dca9d5	2017-08-29 12:18:32 -0700	[diff] [blame]	1005	std::string TransformAlpnProtocols(
				1006	const std::vector<std::string>& alpn_protocols) {
				1007	// Transforms the alpn_protocols list to the format expected by
				1008	// Open/BoringSSL. This requires joining the protocols into a single string
				1009	// and prepending a character with the size of the protocol string before
				1010	// each protocol.
				1011	std::string transformed_alpn;
				1012	for (const std::string& proto : alpn_protocols) {
				1013	if (proto.size() == 0 \|\| proto.size() > 0xFF) {
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	1014	RTC_LOG(LS_ERROR) << "OpenSSLAdapter::Error("
Jonas Olsson	b2b2031	2020-01-14 12:11:31 +0100	[diff] [blame]	1015	"TransformAlpnProtocols received proto with size "
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	1016	<< proto.size() << ")";
Diogo Real	1dca9d5	2017-08-29 12:18:32 -0700	[diff] [blame]	1017	return "";
				1018	}
				1019	transformed_alpn += static_cast<char>(proto.size());
				1020	transformed_alpn += proto;
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	1021	RTC_LOG(LS_VERBOSE) << "TransformAlpnProtocols: Adding proto: " << proto;
Diogo Real	1dca9d5	2017-08-29 12:18:32 -0700	[diff] [blame]	1022	}
				1023	return transformed_alpn;
				1024	}
				1025
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	1026	//////////////////////////////////////////////////////////////////////
				1027	// OpenSSLAdapterFactory
				1028	//////////////////////////////////////////////////////////////////////
				1029
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	1030	OpenSSLAdapterFactory::OpenSSLAdapterFactory() = default;
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	1031
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	1032	OpenSSLAdapterFactory::~OpenSSLAdapterFactory() = default;
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	1033
				1034	void OpenSSLAdapterFactory::SetMode(SSLMode mode) {
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	1035	RTC_DCHECK(!ssl_session_cache_);
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	1036	ssl_mode_ = mode;
				1037	}
				1038
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	1039	void OpenSSLAdapterFactory::SetCertVerifier(
				1040	SSLCertificateVerifier* ssl_cert_verifier) {
				1041	RTC_DCHECK(!ssl_session_cache_);
				1042	ssl_cert_verifier_ = ssl_cert_verifier;
				1043	}
				1044
Niels Möller	ac9a288	2021-10-20 15:25:09 +0200	[diff] [blame]	1045	void OpenSSLAdapterFactory::SetIdentity(std::unique_ptr<SSLIdentity> identity) {
				1046	RTC_DCHECK(!ssl_session_cache_);
				1047	identity_ = std::move(identity);
				1048	}
				1049
				1050	void OpenSSLAdapterFactory::SetRole(SSLRole role) {
				1051	RTC_DCHECK(!ssl_session_cache_);
				1052	ssl_role_ = role;
				1053	}
				1054
				1055	void OpenSSLAdapterFactory::SetIgnoreBadCert(bool ignore) {
				1056	RTC_DCHECK(!ssl_session_cache_);
				1057	ignore_bad_cert_ = ignore;
				1058	}
				1059
Niels Möller	d0b8879	2021-08-12 10:32:30 +0200	[diff] [blame]	1060	OpenSSLAdapter* OpenSSLAdapterFactory::CreateAdapter(Socket* socket) {
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	1061	if (ssl_session_cache_ == nullptr) {
Benjamin Wright	d6f86e8	2018-05-08 13:12:25 -0700	[diff] [blame]	1062	SSL_CTX* ssl_ctx = OpenSSLAdapter::CreateContext(ssl_mode_, true);
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	1063	if (ssl_ctx == nullptr) {
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	1064	return nullptr;
				1065	}
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	1066	// The OpenSSLSessionCache will upref the ssl_ctx.
Karl Wiberg	918f50c	2018-07-05 11:40:33 +0200	[diff] [blame]	1067	ssl_session_cache_ =
Mirko Bonadei	317a1f0	2019-09-17 17:06:18 +0200	[diff] [blame]	1068	std::make_unique<OpenSSLSessionCache>(ssl_mode_, ssl_ctx);
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	1069	SSL_CTX_free(ssl_ctx);
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	1070	}
Niels Möller	ac9a288	2021-10-20 15:25:09 +0200	[diff] [blame]	1071	OpenSSLAdapter* ssl_adapter =
				1072	new OpenSSLAdapter(socket, ssl_session_cache_.get(), ssl_cert_verifier_);
				1073	ssl_adapter->SetRole(ssl_role_);
				1074	ssl_adapter->SetIgnoreBadCert(ignore_bad_cert_);
				1075	if (identity_) {
				1076	ssl_adapter->SetIdentity(identity_->Clone());
				1077	}
				1078	return ssl_adapter;
Justin Uberti	1d44550	2017-08-14 17:04:34 -0700	[diff] [blame]	1079	}
				1080
Vojin Ilic	f11f0e0	2021-06-30 14:22:11 +0200	[diff] [blame]	1081	OpenSSLAdapter::EarlyExitCatcher::EarlyExitCatcher(OpenSSLAdapter& adapter_ptr)
				1082	: adapter_ptr_(adapter_ptr) {}
				1083
				1084	void OpenSSLAdapter::EarlyExitCatcher::disable() {
				1085	disabled_ = true;
				1086	}
				1087
				1088	OpenSSLAdapter::EarlyExitCatcher::~EarlyExitCatcher() {
				1089	if (!disabled_) {
				1090	adapter_ptr_.Cleanup();
				1091	}
				1092	}
				1093
Benjamin Wright	19aab2e	2018-04-05 15:39:06 -0700	[diff] [blame]	1094	} // namespace rtc