Gitiles
Code Review Sign In
gerrit.openfyde.cn / webrtc.googlesource.com / src / f7448fb8829b7cd639cdd5a6928c51722b7f17bc / . / rtc_base / ssl_stream_adapter.cc
blob: 5730af63d8c0dda4da89f78cbfca1f258597adf0 [file] [log] [blame]
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]1/*
2 * Copyright 2004 The WebRTC Project Authors. All rights reserved.
3 *
4 * Use of this source code is governed by a BSD-style license
5 * that can be found in the LICENSE file in the root of the source
6 * tree. An additional intellectual property rights grant can be found
7 * in the file PATENTS. All contributing project authors may
8 * be found in the AUTHORS file in the root of the source tree.
9 */
10
Steve Anton10542f22019-01-11 09:11:00 -0800[diff] [blame]11#include "rtc_base/ssl_stream_adapter.h"
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]12
Harald Alvestrand8515d5a2020-03-20 22:51:32 +0100[diff] [blame]13#include "absl/memory/memory.h"
Steve Anton10542f22019-01-11 09:11:00 -0800[diff] [blame]14#include "rtc_base/openssl_stream_adapter.h"
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]15
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]16///////////////////////////////////////////////////////////////////////////////
17
18namespace rtc {
19
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]20// TODO(guoweis): Move this to SDP layer and use int form internally.
21// webrtc:5043.
22const char CS_AES_CM_128_HMAC_SHA1_80[] = "AES_CM_128_HMAC_SHA1_80";
23const char CS_AES_CM_128_HMAC_SHA1_32[] = "AES_CM_128_HMAC_SHA1_32";
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]24const char CS_AEAD_AES_128_GCM[] = "AEAD_AES_128_GCM";
25const char CS_AEAD_AES_256_GCM[] = "AEAD_AES_256_GCM";
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]26
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]27std::string SrtpCryptoSuiteToName(int crypto_suite) {
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]28 switch (crypto_suite) {
Yves Gerey665174f2018-06-19 15:03:05 +0200[diff] [blame]29 case SRTP_AES128_CM_SHA1_32:
30 return CS_AES_CM_128_HMAC_SHA1_32;
31 case SRTP_AES128_CM_SHA1_80:
32 return CS_AES_CM_128_HMAC_SHA1_80;
33 case SRTP_AEAD_AES_128_GCM:
34 return CS_AEAD_AES_128_GCM;
35 case SRTP_AEAD_AES_256_GCM:
36 return CS_AEAD_AES_256_GCM;
37 default:
38 return std::string();
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]39 }
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]40}
41
42int SrtpCryptoSuiteFromName(const std::string& crypto_suite) {
43 if (crypto_suite == CS_AES_CM_128_HMAC_SHA1_32)
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]44 return SRTP_AES128_CM_SHA1_32;
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]45 if (crypto_suite == CS_AES_CM_128_HMAC_SHA1_80)
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]46 return SRTP_AES128_CM_SHA1_80;
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]47 if (crypto_suite == CS_AEAD_AES_128_GCM)
48 return SRTP_AEAD_AES_128_GCM;
49 if (crypto_suite == CS_AEAD_AES_256_GCM)
50 return SRTP_AEAD_AES_256_GCM;
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]51 return SRTP_INVALID_CRYPTO_SUITE;
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]52}
53
Yves Gerey665174f2018-06-19 15:03:05 +0200[diff] [blame]54bool GetSrtpKeyAndSaltLengths(int crypto_suite,
55 int* key_length,
56 int* salt_length) {
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]57 switch (crypto_suite) {
Yves Gerey665174f2018-06-19 15:03:05 +0200[diff] [blame]58 case SRTP_AES128_CM_SHA1_32:
59 case SRTP_AES128_CM_SHA1_80:
60 // SRTP_AES128_CM_HMAC_SHA1_32 and SRTP_AES128_CM_HMAC_SHA1_80 are defined
61 // in RFC 5764 to use a 128 bits key and 112 bits salt for the cipher.
62 *key_length = 16;
63 *salt_length = 14;
64 break;
65 case SRTP_AEAD_AES_128_GCM:
66 // SRTP_AEAD_AES_128_GCM is defined in RFC 7714 to use a 128 bits key and
67 // a 96 bits salt for the cipher.
68 *key_length = 16;
69 *salt_length = 12;
70 break;
71 case SRTP_AEAD_AES_256_GCM:
72 // SRTP_AEAD_AES_256_GCM is defined in RFC 7714 to use a 256 bits key and
73 // a 96 bits salt for the cipher.
74 *key_length = 32;
75 *salt_length = 12;
76 break;
77 default:
78 return false;
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]79 }
80 return true;
81}
82
83bool IsGcmCryptoSuite(int crypto_suite) {
84 return (crypto_suite == SRTP_AEAD_AES_256_GCM ||
85 crypto_suite == SRTP_AEAD_AES_128_GCM);
86}
87
88bool IsGcmCryptoSuiteName(const std::string& crypto_suite) {
89 return (crypto_suite == CS_AEAD_AES_256_GCM ||
90 crypto_suite == CS_AEAD_AES_128_GCM);
91}
92
Harald Alvestrand8515d5a2020-03-20 22:51:32 +0100[diff] [blame]93std::unique_ptr<SSLStreamAdapter> SSLStreamAdapter::Create(
94 std::unique_ptr<StreamInterface> stream) {
95 return std::make_unique<OpenSSLStreamAdapter>(std::move(stream));
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]96}
97
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]98bool SSLStreamAdapter::GetSslCipherSuite(int* cipher_suite) {
kwiberg@webrtc.org67186fe2015-03-09 22:21:53 +0000[diff] [blame]99 return false;
100}
101
102bool SSLStreamAdapter::ExportKeyingMaterial(const std::string& label,
Peter Boström0c4e06b2015-10-07 12:23:21 +0200[diff] [blame]103 const uint8_t* context,
kwiberg@webrtc.org67186fe2015-03-09 22:21:53 +0000[diff] [blame]104 size_t context_len,
105 bool use_context,
Peter Boström0c4e06b2015-10-07 12:23:21 +0200[diff] [blame]106 uint8_t* result,
kwiberg@webrtc.org67186fe2015-03-09 22:21:53 +0000[diff] [blame]107 size_t result_len) {
108 return false; // Default is unsupported
109}
110
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]111bool SSLStreamAdapter::SetDtlsSrtpCryptoSuites(
112 const std::vector<int>& crypto_suites) {
kwiberg@webrtc.org67186fe2015-03-09 22:21:53 +0000[diff] [blame]113 return false;
114}
115
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]116bool SSLStreamAdapter::GetDtlsSrtpCryptoSuite(int* crypto_suite) {
kwiberg@webrtc.org67186fe2015-03-09 22:21:53 +0000[diff] [blame]117 return false;
118}
119
Taylor Brandstetter4f0dfbd2016-06-15 17:15:23 -0700[diff] [blame]120bool SSLStreamAdapter::IsBoringSsl() {
121 return OpenSSLStreamAdapter::IsBoringSsl();
122}
torbjorng43166b82016-03-11 00:06:47 -0800[diff] [blame]123bool SSLStreamAdapter::IsAcceptableCipher(int cipher, KeyType key_type) {
124 return OpenSSLStreamAdapter::IsAcceptableCipher(cipher, key_type);
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]125}
torbjorng43166b82016-03-11 00:06:47 -0800[diff] [blame]126bool SSLStreamAdapter::IsAcceptableCipher(const std::string& cipher,
127 KeyType key_type) {
128 return OpenSSLStreamAdapter::IsAcceptableCipher(cipher, key_type);
129}
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]130std::string SSLStreamAdapter::SslCipherSuiteToName(int cipher_suite) {
131 return OpenSSLStreamAdapter::SslCipherSuiteToName(cipher_suite);
pthatcher@webrtc.org3ee4fe52015-02-11 22:34:36 +0000[diff] [blame]132}
Benjamin Wrightb19b4972018-10-25 10:46:49 -0700[diff] [blame]133
134///////////////////////////////////////////////////////////////////////////////
135// Test only settings
136///////////////////////////////////////////////////////////////////////////////
137
138void SSLStreamAdapter::EnableTimeCallbackForTesting() {
139 OpenSSLStreamAdapter::EnableTimeCallbackForTesting();
deadbeef6cf94a02016-11-28 17:38:34 -0800[diff] [blame]140}
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]141
142///////////////////////////////////////////////////////////////////////////////
143
144} // namespace rtc