Gitiles
Code Review Sign In
gerrit.openfyde.cn / webrtc.googlesource.com / src / fa52efadf16eadef63edea1b7467d603c909e578 / . / rtc_base / ssl_stream_adapter.cc
blob: 372c37ff0df761eca0a9537d482c2969e7b733fe [file] [log] [blame]
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]1/*
2 * Copyright 2004 The WebRTC Project Authors. All rights reserved.
3 *
4 * Use of this source code is governed by a BSD-style license
5 * that can be found in the LICENSE file in the root of the source
6 * tree. An additional intellectual property rights grant can be found
7 * in the file PATENTS. All contributing project authors may
8 * be found in the AUTHORS file in the root of the source tree.
9 */
10
Steve Anton10542f22019-01-11 09:11:00 -0800[diff] [blame]11#include "rtc_base/ssl_stream_adapter.h"
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]12
Steve Anton10542f22019-01-11 09:11:00 -0800[diff] [blame]13#include "rtc_base/openssl_stream_adapter.h"
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]14
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]15///////////////////////////////////////////////////////////////////////////////
16
17namespace rtc {
18
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]19// TODO(guoweis): Move this to SDP layer and use int form internally.
20// webrtc:5043.
21const char CS_AES_CM_128_HMAC_SHA1_80[] = "AES_CM_128_HMAC_SHA1_80";
22const char CS_AES_CM_128_HMAC_SHA1_32[] = "AES_CM_128_HMAC_SHA1_32";
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]23const char CS_AEAD_AES_128_GCM[] = "AEAD_AES_128_GCM";
24const char CS_AEAD_AES_256_GCM[] = "AEAD_AES_256_GCM";
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]25
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]26std::string SrtpCryptoSuiteToName(int crypto_suite) {
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]27 switch (crypto_suite) {
Yves Gerey665174f2018-06-19 15:03:05 +0200[diff] [blame]28 case SRTP_AES128_CM_SHA1_32:
29 return CS_AES_CM_128_HMAC_SHA1_32;
30 case SRTP_AES128_CM_SHA1_80:
31 return CS_AES_CM_128_HMAC_SHA1_80;
32 case SRTP_AEAD_AES_128_GCM:
33 return CS_AEAD_AES_128_GCM;
34 case SRTP_AEAD_AES_256_GCM:
35 return CS_AEAD_AES_256_GCM;
36 default:
37 return std::string();
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]38 }
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]39}
40
41int SrtpCryptoSuiteFromName(const std::string& crypto_suite) {
42 if (crypto_suite == CS_AES_CM_128_HMAC_SHA1_32)
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]43 return SRTP_AES128_CM_SHA1_32;
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]44 if (crypto_suite == CS_AES_CM_128_HMAC_SHA1_80)
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]45 return SRTP_AES128_CM_SHA1_80;
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]46 if (crypto_suite == CS_AEAD_AES_128_GCM)
47 return SRTP_AEAD_AES_128_GCM;
48 if (crypto_suite == CS_AEAD_AES_256_GCM)
49 return SRTP_AEAD_AES_256_GCM;
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]50 return SRTP_INVALID_CRYPTO_SUITE;
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]51}
52
Yves Gerey665174f2018-06-19 15:03:05 +0200[diff] [blame]53bool GetSrtpKeyAndSaltLengths(int crypto_suite,
54 int* key_length,
55 int* salt_length) {
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]56 switch (crypto_suite) {
Yves Gerey665174f2018-06-19 15:03:05 +0200[diff] [blame]57 case SRTP_AES128_CM_SHA1_32:
58 case SRTP_AES128_CM_SHA1_80:
59 // SRTP_AES128_CM_HMAC_SHA1_32 and SRTP_AES128_CM_HMAC_SHA1_80 are defined
60 // in RFC 5764 to use a 128 bits key and 112 bits salt for the cipher.
61 *key_length = 16;
62 *salt_length = 14;
63 break;
64 case SRTP_AEAD_AES_128_GCM:
65 // SRTP_AEAD_AES_128_GCM is defined in RFC 7714 to use a 128 bits key and
66 // a 96 bits salt for the cipher.
67 *key_length = 16;
68 *salt_length = 12;
69 break;
70 case SRTP_AEAD_AES_256_GCM:
71 // SRTP_AEAD_AES_256_GCM is defined in RFC 7714 to use a 256 bits key and
72 // a 96 bits salt for the cipher.
73 *key_length = 32;
74 *salt_length = 12;
75 break;
76 default:
77 return false;
jbauchcb560652016-08-04 05:20:32 -0700[diff] [blame]78 }
79 return true;
80}
81
82bool IsGcmCryptoSuite(int crypto_suite) {
83 return (crypto_suite == SRTP_AEAD_AES_256_GCM ||
84 crypto_suite == SRTP_AEAD_AES_128_GCM);
85}
86
87bool IsGcmCryptoSuiteName(const std::string& crypto_suite) {
88 return (crypto_suite == CS_AEAD_AES_256_GCM ||
89 crypto_suite == CS_AEAD_AES_128_GCM);
90}
91
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]92SSLStreamAdapter* SSLStreamAdapter::Create(StreamInterface* stream) {
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]93 return new OpenSSLStreamAdapter(stream);
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]94}
95
zhihuangd82eee02016-08-26 11:25:05 -0700[diff] [blame]96SSLStreamAdapter::SSLStreamAdapter(StreamInterface* stream)
Benjamin Wrightb19b4972018-10-25 10:46:49 -0700[diff] [blame]97 : StreamAdapterInterface(stream) {}
zhihuangd82eee02016-08-26 11:25:05 -0700[diff] [blame]98
99SSLStreamAdapter::~SSLStreamAdapter() {}
100
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]101bool SSLStreamAdapter::GetSslCipherSuite(int* cipher_suite) {
kwiberg@webrtc.org67186fe2015-03-09 22:21:53 +0000[diff] [blame]102 return false;
103}
104
105bool SSLStreamAdapter::ExportKeyingMaterial(const std::string& label,
Peter Boström0c4e06b2015-10-07 12:23:21 +0200[diff] [blame]106 const uint8_t* context,
kwiberg@webrtc.org67186fe2015-03-09 22:21:53 +0000[diff] [blame]107 size_t context_len,
108 bool use_context,
Peter Boström0c4e06b2015-10-07 12:23:21 +0200[diff] [blame]109 uint8_t* result,
kwiberg@webrtc.org67186fe2015-03-09 22:21:53 +0000[diff] [blame]110 size_t result_len) {
111 return false; // Default is unsupported
112}
113
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]114bool SSLStreamAdapter::SetDtlsSrtpCryptoSuites(
115 const std::vector<int>& crypto_suites) {
kwiberg@webrtc.org67186fe2015-03-09 22:21:53 +0000[diff] [blame]116 return false;
117}
118
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]119bool SSLStreamAdapter::GetDtlsSrtpCryptoSuite(int* crypto_suite) {
kwiberg@webrtc.org67186fe2015-03-09 22:21:53 +0000[diff] [blame]120 return false;
121}
122
Taylor Brandstetter4f0dfbd2016-06-15 17:15:23 -0700[diff] [blame]123bool SSLStreamAdapter::IsBoringSsl() {
124 return OpenSSLStreamAdapter::IsBoringSsl();
125}
torbjorng43166b82016-03-11 00:06:47 -0800[diff] [blame]126bool SSLStreamAdapter::IsAcceptableCipher(int cipher, KeyType key_type) {
127 return OpenSSLStreamAdapter::IsAcceptableCipher(cipher, key_type);
Guo-wei Shieh456696a2015-09-30 21:48:54 -0700[diff] [blame]128}
torbjorng43166b82016-03-11 00:06:47 -0800[diff] [blame]129bool SSLStreamAdapter::IsAcceptableCipher(const std::string& cipher,
130 KeyType key_type) {
131 return OpenSSLStreamAdapter::IsAcceptableCipher(cipher, key_type);
132}
Guo-wei Shieh521ed7b2015-11-18 19:41:53 -0800[diff] [blame]133std::string SSLStreamAdapter::SslCipherSuiteToName(int cipher_suite) {
134 return OpenSSLStreamAdapter::SslCipherSuiteToName(cipher_suite);
pthatcher@webrtc.org3ee4fe52015-02-11 22:34:36 +0000[diff] [blame]135}
Benjamin Wrightb19b4972018-10-25 10:46:49 -0700[diff] [blame]136
137///////////////////////////////////////////////////////////////////////////////
138// Test only settings
139///////////////////////////////////////////////////////////////////////////////
140
141void SSLStreamAdapter::EnableTimeCallbackForTesting() {
142 OpenSSLStreamAdapter::EnableTimeCallbackForTesting();
deadbeef6cf94a02016-11-28 17:38:34 -0800[diff] [blame]143}
henrike@webrtc.orgf0488722014-05-13 18:00:26 +0000[diff] [blame]144
145///////////////////////////////////////////////////////////////////////////////
146
147} // namespace rtc