gecko-dev/media/webrtc/signaling/src/mediapipeline/SrtpFlow.cpp

/* This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this file,
 * You can obtain one at http://mozilla.org/MPL/2.0/. */

// Original author: ekr@rtfm.com

#include "SrtpFlow.h"

#include "srtp.h"
#include "ssl.h"
#include "sslproto.h"

#include "logging.h"

#include "mozilla/RefPtr.h"
  
// Logging context
using namespace mozilla;
MOZ_MTLOG_MODULE("mediapipeline");

namespace mozilla {

bool SrtpFlow::initialized;  // Static

SrtpFlow::~SrtpFlow() {
  if (session_) {
    srtp_dealloc(session_);
  }
}

RefPtr<SrtpFlow> SrtpFlow::Create(int cipher_suite,
                                           bool inbound,
                                           const void *key,
                                           size_t key_len) {
  nsresult res = Init();
  if (!NS_SUCCEEDED(res))
    return NULL;

  RefPtr<SrtpFlow> flow = new SrtpFlow();

  if (!key) {
    MOZ_MTLOG(PR_LOG_ERROR, "Null SRTP key specified");
    return NULL;
  }

  if (key_len != SRTP_TOTAL_KEY_LENGTH) {
    MOZ_MTLOG(PR_LOG_ERROR, "Invalid SRTP key length");
    return NULL;
  }

  srtp_policy_t policy;
  memset(&policy, 0, sizeof(srtp_policy_t));

  // Note that we set the same cipher suite for RTP and RTCP
  // since any flow can only have one cipher suite with DTLS-SRTP
  switch (cipher_suite) {
    case SRTP_AES128_CM_HMAC_SHA1_80:
      MOZ_MTLOG(PR_LOG_DEBUG, "Setting SRTP cipher suite SRTP_AES128_CM_HMAC_SHA1_80");
      crypto_policy_set_aes_cm_128_hmac_sha1_80(&policy.rtp);
      crypto_policy_set_aes_cm_128_hmac_sha1_80(&policy.rtcp);
      break;
    case SRTP_AES128_CM_HMAC_SHA1_32:
      MOZ_MTLOG(PR_LOG_DEBUG, "Setting SRTP cipher suite SRTP_AES128_CM_HMAC_SHA1_32");
      crypto_policy_set_aes_cm_128_hmac_sha1_32(&policy.rtp);
      crypto_policy_set_aes_cm_128_hmac_sha1_32(&policy.rtcp);
      break;
    default:
      MOZ_MTLOG(PR_LOG_ERROR, "Request to set unknown SRTP cipher suite");
      return NULL;
  }
  // This key is copied into the srtp_t object, so we don't
  // need to keep it.
  policy.key = const_cast<unsigned char *>(
      static_cast<const unsigned char *>(key));
  policy.ssrc.type = inbound ? ssrc_any_inbound : ssrc_any_outbound;
  policy.ssrc.value = 0;
  policy.ekt = NULL;
  policy.window_size = 0;      // Use the default value.
  policy.allow_repeat_tx = 0;  // TODO(ekr@rtfm.com): revisit?
  policy.next = NULL;

  // Now make the session
  err_status_t r = srtp_create(&flow->session_, &policy);
  if (r != err_status_ok) {
    MOZ_MTLOG(PR_LOG_ERROR, "Error creating srtp session");
    return NULL;
  }

  return flow;
}


nsresult SrtpFlow::CheckInputs(bool protect, void *in, int in_len,
                               int max_len, int *out_len) {
  MOZ_ASSERT(in);
  if (!in) {
    MOZ_MTLOG(PR_LOG_ERROR, "NULL input value");
    return NS_ERROR_NULL_POINTER;
  }

  if (in_len < 0) {
    MOZ_MTLOG(PR_LOG_ERROR, "Input length is negative");
    return NS_ERROR_ILLEGAL_VALUE;
  }

  if (max_len < 0) {
    MOZ_MTLOG(PR_LOG_ERROR, "Max output length is negative");
    return NS_ERROR_ILLEGAL_VALUE;
  }

  if (protect) {
    if ((max_len < SRTP_MAX_EXPANSION) ||
        ((max_len - SRTP_MAX_EXPANSION) < in_len)) {
      MOZ_MTLOG(PR_LOG_ERROR, "Output too short");
      return NS_ERROR_ILLEGAL_VALUE;
    }
  }
  else {
    if (in_len > max_len) {
      MOZ_MTLOG(PR_LOG_ERROR, "Output too short");
      return NS_ERROR_ILLEGAL_VALUE;
    }
  }

  return NS_OK;
}

nsresult SrtpFlow::ProtectRtp(void *in, int in_len,
                              int max_len, int *out_len) {
  nsresult res = CheckInputs(true, in, in_len, max_len, out_len);
  if (NS_FAILED(res))
    return res;

  int len = in_len;
  err_status_t r = srtp_protect(session_, in, &len);

  if (r != err_status_ok) {
    MOZ_MTLOG(PR_LOG_ERROR, "Error protecting SRTP packet");
    return NS_ERROR_FAILURE;
  }

  MOZ_ASSERT(len <= max_len);
  *out_len = len;


  MOZ_MTLOG(PR_LOG_DEBUG, "Successfully protected an SRTP packet of len " << *out_len);

  return NS_OK;
}

nsresult SrtpFlow::UnprotectRtp(void *in, int in_len,
                                int max_len, int *out_len) {
  nsresult res = CheckInputs(false, in, in_len, max_len, out_len);
  if (NS_FAILED(res))
    return res;

  int len = in_len;
  err_status_t r = srtp_unprotect(session_, in, &len);

  if (r != err_status_ok) {
    MOZ_MTLOG(PR_LOG_ERROR, "Error unprotecting SRTP packet");
    return NS_ERROR_FAILURE;
  }

  MOZ_ASSERT(len <= max_len);
  *out_len = len;

  MOZ_MTLOG(PR_LOG_DEBUG, "Successfully unprotected an SRTP packet of len " << *out_len);

  return NS_OK;
}

nsresult SrtpFlow::ProtectRtcp(void *in, int in_len,
                               int max_len, int *out_len) {
  nsresult res = CheckInputs(true, in, in_len, max_len, out_len);
  if (NS_FAILED(res))
    return res;

  int len = in_len;
  err_status_t r = srtp_protect_rtcp(session_, in, &len);

  if (r != err_status_ok) {
    MOZ_MTLOG(PR_LOG_ERROR, "Error protecting SRTCP packet");
    return NS_ERROR_FAILURE;
  }

  MOZ_ASSERT(len <= max_len);
  *out_len = len;

  MOZ_MTLOG(PR_LOG_DEBUG, "Successfully protected an SRTCP packet of len " << *out_len);

  return NS_OK;
}

nsresult SrtpFlow::UnprotectRtcp(void *in, int in_len,
                                 int max_len, int *out_len) {
  nsresult res = CheckInputs(false, in, in_len, max_len, out_len);
  if (NS_FAILED(res))
    return res;

  int len = in_len;
  err_status_t r = srtp_unprotect_rtcp(session_, in, &len);

  if (r != err_status_ok) {
    MOZ_MTLOG(PR_LOG_ERROR, "Error unprotecting SRTCP packet");
    return NS_ERROR_FAILURE;
  }

  MOZ_ASSERT(len <= max_len);
  *out_len = len;

  MOZ_MTLOG(PR_LOG_DEBUG, "Successfully unprotected an SRTCP packet of len " << *out_len);

  return NS_OK;
}

// Statics
void SrtpFlow::srtp_event_handler(srtp_event_data_t *data) {
  // TODO(ekr@rtfm.com): Implement this
  MOZ_CRASH();
}

nsresult SrtpFlow::Init() {
  if (!initialized) {
    err_status_t r = srtp_init();
    if (r != err_status_ok) {
      MOZ_MTLOG(PR_LOG_ERROR, "Could not initialize SRTP");
      MOZ_ASSERT(PR_FALSE);
      return NS_ERROR_FAILURE;
    }

    r = srtp_install_event_handler(&SrtpFlow::srtp_event_handler);
    if (r != err_status_ok) {
      MOZ_MTLOG(PR_LOG_ERROR, "Could not install SRTP event handler");
      MOZ_ASSERT(PR_FALSE);
      return NS_ERROR_FAILURE;
    }

    initialized = true;
  }

  return NS_OK;
}

}  // end of namespace
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`/* This Source Code Form is subject to the terms of the Mozilla Public`
			`* License, v. 2.0. If a copy of the MPL was not distributed with this file,`
			`* You can obtain one at http://mozilla.org/MPL/2.0/. */`

			`// Original author: ekr@rtfm.com`

			`#include "SrtpFlow.h"`

			`#include "srtp.h"`
			`#include "ssl.h"`
			`#include "sslproto.h"`

			`#include "logging.h"`

			`#include "mozilla/RefPtr.h"`

			`// Logging context`
			`using namespace mozilla;`
			`MOZ_MTLOG_MODULE("mediapipeline");`

			`namespace mozilla {`

			`bool SrtpFlow::initialized; // Static`

			`SrtpFlow::~SrtpFlow() {`
			`if (session_) {`
			`srtp_dealloc(session_);`
			`}`
			`}`

			`RefPtr<SrtpFlow> SrtpFlow::Create(int cipher_suite,`
			`bool inbound,`
			`const void *key,`
			`size_t key_len) {`
			`nsresult res = Init();`
			`if (!NS_SUCCEEDED(res))`
			`return NULL;`

			`RefPtr<SrtpFlow> flow = new SrtpFlow();`

			`if (!key) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Null SRTP key specified");`
			`return NULL;`
			`}`

			`if (key_len != SRTP_TOTAL_KEY_LENGTH) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Invalid SRTP key length");`
			`return NULL;`
			`}`

Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`srtp_policy_t policy;`
			`memset(&policy, 0, sizeof(srtp_policy_t));`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00
			`// Note that we set the same cipher suite for RTP and RTCP`
			`// since any flow can only have one cipher suite with DTLS-SRTP`
			`switch (cipher_suite) {`
			`case SRTP_AES128_CM_HMAC_SHA1_80:`
			`MOZ_MTLOG(PR_LOG_DEBUG, "Setting SRTP cipher suite SRTP_AES128_CM_HMAC_SHA1_80");`
Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`crypto_policy_set_aes_cm_128_hmac_sha1_80(&policy.rtp);`
			`crypto_policy_set_aes_cm_128_hmac_sha1_80(&policy.rtcp);`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`break;`
			`case SRTP_AES128_CM_HMAC_SHA1_32:`
			`MOZ_MTLOG(PR_LOG_DEBUG, "Setting SRTP cipher suite SRTP_AES128_CM_HMAC_SHA1_32");`
Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`crypto_policy_set_aes_cm_128_hmac_sha1_32(&policy.rtp);`
			`crypto_policy_set_aes_cm_128_hmac_sha1_32(&policy.rtcp);`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`break;`
			`default:`
			`MOZ_MTLOG(PR_LOG_ERROR, "Request to set unknown SRTP cipher suite");`
			`return NULL;`
			`}`
Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`// This key is copied into the srtp_t object, so we don't`
			`// need to keep it.`
			`policy.key = const_cast<unsigned char *>(`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`static_cast<const unsigned char *>(key));`
Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`policy.ssrc.type = inbound ? ssrc_any_inbound : ssrc_any_outbound;`
			`policy.ssrc.value = 0;`
			`policy.ekt = NULL;`
			`policy.window_size = 0; // Use the default value.`
			`policy.allow_repeat_tx = 0; // TODO(ekr@rtfm.com): revisit?`
			`policy.next = NULL;`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00
			`// Now make the session`
Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`err_status_t r = srtp_create(&flow->session_, &policy);`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`if (r != err_status_ok) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Error creating srtp session");`
			`return NULL;`
			`}`

			`return flow;`
			`}`


			`nsresult SrtpFlow::CheckInputs(bool protect, void *in, int in_len,`
			`int max_len, int *out_len) {`
Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`MOZ_ASSERT(in);`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`if (!in) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "NULL input value");`
			`return NS_ERROR_NULL_POINTER;`
			`}`

			`if (in_len < 0) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Input length is negative");`
			`return NS_ERROR_ILLEGAL_VALUE;`
			`}`

			`if (max_len < 0) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Max output length is negative");`
			`return NS_ERROR_ILLEGAL_VALUE;`
			`}`

			`if (protect) {`
			`if ((max_len < SRTP_MAX_EXPANSION) \|\|`
			`((max_len - SRTP_MAX_EXPANSION) < in_len)) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Output too short");`
			`return NS_ERROR_ILLEGAL_VALUE;`
			`}`
			`}`
			`else {`
			`if (in_len > max_len) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Output too short");`
			`return NS_ERROR_ILLEGAL_VALUE;`
			`}`
			`}`

			`return NS_OK;`
			`}`

			`nsresult SrtpFlow::ProtectRtp(void *in, int in_len,`
			`int max_len, int *out_len) {`
			`nsresult res = CheckInputs(true, in, in_len, max_len, out_len);`
			`if (NS_FAILED(res))`
			`return res;`

			`int len = in_len;`
			`err_status_t r = srtp_protect(session_, in, &len);`

			`if (r != err_status_ok) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Error protecting SRTP packet");`
			`return NS_ERROR_FAILURE;`
			`}`

Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`MOZ_ASSERT(len <= max_len);`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`*out_len = len;`


			`MOZ_MTLOG(PR_LOG_DEBUG, "Successfully protected an SRTP packet of len " << *out_len);`

			`return NS_OK;`
			`}`

			`nsresult SrtpFlow::UnprotectRtp(void *in, int in_len,`
			`int max_len, int *out_len) {`
			`nsresult res = CheckInputs(false, in, in_len, max_len, out_len);`
			`if (NS_FAILED(res))`
			`return res;`

			`int len = in_len;`
			`err_status_t r = srtp_unprotect(session_, in, &len);`

			`if (r != err_status_ok) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Error unprotecting SRTP packet");`
			`return NS_ERROR_FAILURE;`
			`}`

Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`MOZ_ASSERT(len <= max_len);`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`*out_len = len;`

			`MOZ_MTLOG(PR_LOG_DEBUG, "Successfully unprotected an SRTP packet of len " << *out_len);`

			`return NS_OK;`
			`}`

			`nsresult SrtpFlow::ProtectRtcp(void *in, int in_len,`
			`int max_len, int *out_len) {`
			`nsresult res = CheckInputs(true, in, in_len, max_len, out_len);`
			`if (NS_FAILED(res))`
			`return res;`

			`int len = in_len;`
			`err_status_t r = srtp_protect_rtcp(session_, in, &len);`

			`if (r != err_status_ok) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Error protecting SRTCP packet");`
			`return NS_ERROR_FAILURE;`
			`}`

Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`MOZ_ASSERT(len <= max_len);`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`*out_len = len;`

			`MOZ_MTLOG(PR_LOG_DEBUG, "Successfully protected an SRTCP packet of len " << *out_len);`

			`return NS_OK;`
			`}`

			`nsresult SrtpFlow::UnprotectRtcp(void *in, int in_len,`
			`int max_len, int *out_len) {`
			`nsresult res = CheckInputs(false, in, in_len, max_len, out_len);`
			`if (NS_FAILED(res))`
			`return res;`

			`int len = in_len;`
			`err_status_t r = srtp_unprotect_rtcp(session_, in, &len);`

			`if (r != err_status_ok) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Error unprotecting SRTCP packet");`
			`return NS_ERROR_FAILURE;`
			`}`

Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`MOZ_ASSERT(len <= max_len);`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`*out_len = len;`

			`MOZ_MTLOG(PR_LOG_DEBUG, "Successfully unprotected an SRTCP packet of len " << *out_len);`

			`return NS_OK;`
			`}`

			`// Statics`
			`void SrtpFlow::srtp_event_handler(srtp_event_data_t *data) {`
			`// TODO(ekr@rtfm.com): Implement this`
Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`MOZ_CRASH();`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`}`

			`nsresult SrtpFlow::Init() {`
			`if (!initialized) {`
			`err_status_t r = srtp_init();`
			`if (r != err_status_ok) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Could not initialize SRTP");`
Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`MOZ_ASSERT(PR_FALSE);`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`return NS_ERROR_FAILURE;`
			`}`

			`r = srtp_install_event_handler(&SrtpFlow::srtp_event_handler);`
			`if (r != err_status_ok) {`
			`MOZ_MTLOG(PR_LOG_ERROR, "Could not install SRTP event handler");`
Bug 792188: Fixes to signaling MediaPipeline and Srtpflow r=jesup,derf 2012-10-07 05:34:29 +00:00			`MOZ_ASSERT(PR_FALSE);`
Bug 792188: rollup of changes to signaling from alder r=jesup,ekr,derf,ehugg,ted Bug 797258: Increase max sdp line length to work with longer SHA-256 fingerprints. r=jesup 2012-10-07 05:34:29 +00:00			`return NS_ERROR_FAILURE;`
			`}`

			`initialized = true;`
			`}`

			`return NS_OK;`
			`}`

			`} // end of namespace`