talk/session/phone/srtpfilter.h - vendor/opensource/libjingle - Git at Google

 /*
  * libjingle
  * Copyright 2009, Google Inc.
  *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions are met:
  *
  *  1. Redistributions of source code must retain the above copyright notice,
  *     this list of conditions and the following disclaimer.
  *  2. Redistributions in binary form must reproduce the above copyright notice,
  *     this list of conditions and the following disclaimer in the documentation
  *     and/or other materials provided with the distribution.
  *  3. The name of the author may not be used to endorse or promote products
  *     derived from this software without specific prior written permission.
  *
  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED
  * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
  * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO
  * EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
  * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS;
  * OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
  * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
  * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
  * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  */

 #ifndef TALK_SESSION_PHONE_SRTPFILTER_H_
 #define TALK_SESSION_PHONE_SRTPFILTER_H_

 #include <list>
 #include <string>
 #include <vector>
 #include "talk/base/basictypes.h"
 #include "talk/session/phone/cryptoparams.h"
 #include "talk/p2p/base/sessiondescription.h"

 // Forward declaration to avoid pulling in libsrtp headers here
 struct srtp_event_data_t;
 struct srtp_ctx_t;
 typedef srtp_ctx_t* srtp_t;
 struct srtp_policy_t;

 namespace cricket {

 // Cipher suite to use for SRTP. Typically a 80-bit HMAC will be used, except
 // in applications (voice) where the additional bandwidth may be significant.
 // A 80-bit HMAC is always used for SRTCP.
 extern const std::string& CS_DEFAULT;
 // 128-bit AES with 80-bit SHA-1 HMAC.
 extern const std::string CS_AES_CM_128_HMAC_SHA1_80;
 // 128-bit AES with 32-bit SHA-1 HMAC.
 extern const std::string CS_AES_CM_128_HMAC_SHA1_32;
 // Key is 128 bits and salt is 112 bits == 30 bytes. B64 bloat => 40 bytes.
 extern const int SRTP_MASTER_KEY_BASE64_LEN;

 // Class that wraps a libSRTP session. Used internally by SrtpFilter, below.
 class SrtpSession {
  public:
   SrtpSession();
   ~SrtpSession();

   // Configures the session for sending data using the specified
   // cipher-suite and key. Receiving must be done by a separate session.
   bool SetSend(const std::string& cs, const uint8* key, int len);
   // Configures the session for receiving data using the specified
   // cipher-suite and key. Sending must be done by a separate session.
   bool SetRecv(const std::string& cs, const uint8* key, int len);

   // Encrypts/signs an individual RTP/RTCP packet, in-place.
   // If an HMAC is used, this will increase the packet size.
   bool ProtectRtp(void* data, int in_len, int max_len, int* out_len);
   bool ProtectRtcp(void* data, int in_len, int max_len, int* out_len);
   // Decrypts/verifies an invidiual RTP/RTCP packet.
   // If an HMAC is used, this will decrease the packet size.
   bool UnprotectRtp(void* data, int in_len, int* out_len);
   bool UnprotectRtcp(void* data, int in_len, int* out_len);

  private:
   bool SetKey(int type, const std::string& cs, const uint8* key, int len);
   static bool Init();
   void HandleEvent(const srtp_event_data_t* ev);
   static void HandleEventThunk(srtp_event_data_t* ev);

   srtp_t session_;
   int rtp_auth_tag_len_;
   int rtcp_auth_tag_len_;
   static bool inited_;
   static std::list<SrtpSession*> sessions_;
 };

 // Class to transform SRTP to/from RTP.
 // Initialize by calling SetSend with the local security params, then call
 // SetRecv once the remote security params are received. At that point
 // Protect/UnprotectRt(c)p can be called to encrypt/decrypt data.
 // TODO: Figure out concurrency policy for SrtpFilter.
 class SrtpFilter {
  public:
   SrtpFilter();
   ~SrtpFilter();

   // Whether the filter is active (i.e. crypto has been properly negotiated).
   bool IsActive() const;

   // Indicates which crypto algorithms and keys were contained in the offer.
   // offer_params should contain a list of available parameters to use, or none,
   // if crypto is not desired. This must be called before SetAnswer.
   bool SetOffer(const std::vector<CryptoParams>& offer_params,
                 ContentSource source);
   // Indicates which crypto algorithms and keys were contained in the answer.
   // answer_params should contain the negotiated parameters, which may be none,
   // if crypto was not desired or could not be negotiated (and not required).
   // This must be called after SetOffer. If crypto negotiation completes
   // successfully, this will advance the filter to the active state.
   bool SetAnswer(const std::vector<CryptoParams>& answer_params,
                  ContentSource source);

   // Encrypts/signs an individual RTP/RTCP packet, in-place.
   // If an HMAC is used, this will increase the packet size.
   bool ProtectRtp(void* data, int in_len, int max_len, int* out_len);
   bool ProtectRtcp(void* data, int in_len, int max_len, int* out_len);
   // Decrypts/verifies an invidiual RTP/RTCP packet.
   // If an HMAC is used, this will decrease the packet size.
   bool UnprotectRtp(void* data, int in_len, int* out_len);
   bool UnprotectRtcp(void* data, int in_len, int* out_len);

  protected:
   bool StoreParams(const std::vector<CryptoParams>& offer_params,
                    ContentSource source);
   bool NegotiateParams(const std::vector<CryptoParams>& answer_params,
                        CryptoParams* selected_params);
   bool ApplyParams(const CryptoParams& send_params,
                    const CryptoParams& recv_params);
   bool ResetParams();
   static bool ParseKeyParams(const std::string& params, uint8* key, int len);

  private:
   enum State { ST_INIT, ST_SENTOFFER, ST_RECEIVEDOFFER, ST_ACTIVE };
   State state_;
   std::vector<CryptoParams> offer_params_;
   SrtpSession send_session_;
   SrtpSession recv_session_;
 };

 }  // namespace cricket

 #endif  // TALK_SESSION_PHONE_SRTPFILTER_H_
	/*
	* libjingle
	* Copyright 2009, Google Inc.
	*
	* Redistribution and use in source and binary forms, with or without
	* modification, are permitted provided that the following conditions are met:
	*
	* 1. Redistributions of source code must retain the above copyright notice,
	* this list of conditions and the following disclaimer.
	* 2. Redistributions in binary form must reproduce the above copyright notice,
	* this list of conditions and the following disclaimer in the documentation
	* and/or other materials provided with the distribution.
	* 3. The name of the author may not be used to endorse or promote products
	* derived from this software without specific prior written permission.
	*
	* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED
	* WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
	* MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO
	* EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
	* PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS;
	* OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
	* WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
	* OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
	* ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
	*/

	#ifndef TALK_SESSION_PHONE_SRTPFILTER_H_
	#define TALK_SESSION_PHONE_SRTPFILTER_H_

	#include <list>
	#include <string>
	#include <vector>
	#include "talk/base/basictypes.h"
	#include "talk/session/phone/cryptoparams.h"
	#include "talk/p2p/base/sessiondescription.h"

	// Forward declaration to avoid pulling in libsrtp headers here
	struct srtp_event_data_t;
	struct srtp_ctx_t;
	typedef srtp_ctx_t* srtp_t;
	struct srtp_policy_t;

	namespace cricket {

	// Cipher suite to use for SRTP. Typically a 80-bit HMAC will be used, except
	// in applications (voice) where the additional bandwidth may be significant.
	// A 80-bit HMAC is always used for SRTCP.
	extern const std::string& CS_DEFAULT;
	// 128-bit AES with 80-bit SHA-1 HMAC.
	extern const std::string CS_AES_CM_128_HMAC_SHA1_80;
	// 128-bit AES with 32-bit SHA-1 HMAC.
	extern const std::string CS_AES_CM_128_HMAC_SHA1_32;
	// Key is 128 bits and salt is 112 bits == 30 bytes. B64 bloat => 40 bytes.
	extern const int SRTP_MASTER_KEY_BASE64_LEN;

	// Class that wraps a libSRTP session. Used internally by SrtpFilter, below.
	class SrtpSession {
	public:
	SrtpSession();
	~SrtpSession();

	// Configures the session for sending data using the specified
	// cipher-suite and key. Receiving must be done by a separate session.
	bool SetSend(const std::string& cs, const uint8* key, int len);
	// Configures the session for receiving data using the specified
	// cipher-suite and key. Sending must be done by a separate session.
	bool SetRecv(const std::string& cs, const uint8* key, int len);

	// Encrypts/signs an individual RTP/RTCP packet, in-place.
	// If an HMAC is used, this will increase the packet size.
	bool ProtectRtp(void* data, int in_len, int max_len, int* out_len);
	bool ProtectRtcp(void* data, int in_len, int max_len, int* out_len);
	// Decrypts/verifies an invidiual RTP/RTCP packet.
	// If an HMAC is used, this will decrease the packet size.
	bool UnprotectRtp(void* data, int in_len, int* out_len);
	bool UnprotectRtcp(void* data, int in_len, int* out_len);

	private:
	bool SetKey(int type, const std::string& cs, const uint8* key, int len);
	static bool Init();
	void HandleEvent(const srtp_event_data_t* ev);
	static void HandleEventThunk(srtp_event_data_t* ev);

	srtp_t session_;
	int rtp_auth_tag_len_;
	int rtcp_auth_tag_len_;
	static bool inited_;
	static std::list<SrtpSession*> sessions_;
	};

	// Class to transform SRTP to/from RTP.
	// Initialize by calling SetSend with the local security params, then call
	// SetRecv once the remote security params are received. At that point
	// Protect/UnprotectRt(c)p can be called to encrypt/decrypt data.
	// TODO: Figure out concurrency policy for SrtpFilter.
	class SrtpFilter {
	public:
	SrtpFilter();
	~SrtpFilter();

	// Whether the filter is active (i.e. crypto has been properly negotiated).
	bool IsActive() const;

	// Indicates which crypto algorithms and keys were contained in the offer.
	// offer_params should contain a list of available parameters to use, or none,
	// if crypto is not desired. This must be called before SetAnswer.
	bool SetOffer(const std::vector<CryptoParams>& offer_params,
	ContentSource source);
	// Indicates which crypto algorithms and keys were contained in the answer.
	// answer_params should contain the negotiated parameters, which may be none,
	// if crypto was not desired or could not be negotiated (and not required).
	// This must be called after SetOffer. If crypto negotiation completes
	// successfully, this will advance the filter to the active state.
	bool SetAnswer(const std::vector<CryptoParams>& answer_params,
	ContentSource source);

	// Encrypts/signs an individual RTP/RTCP packet, in-place.
	// If an HMAC is used, this will increase the packet size.
	bool ProtectRtp(void* data, int in_len, int max_len, int* out_len);
	bool ProtectRtcp(void* data, int in_len, int max_len, int* out_len);
	// Decrypts/verifies an invidiual RTP/RTCP packet.
	// If an HMAC is used, this will decrease the packet size.
	bool UnprotectRtp(void* data, int in_len, int* out_len);
	bool UnprotectRtcp(void* data, int in_len, int* out_len);

	protected:
	bool StoreParams(const std::vector<CryptoParams>& offer_params,
	ContentSource source);
	bool NegotiateParams(const std::vector<CryptoParams>& answer_params,
	CryptoParams* selected_params);
	bool ApplyParams(const CryptoParams& send_params,
	const CryptoParams& recv_params);
	bool ResetParams();
	static bool ParseKeyParams(const std::string& params, uint8* key, int len);

	private:
	enum State { ST_INIT, ST_SENTOFFER, ST_RECEIVEDOFFER, ST_ACTIVE };
	State state_;
	std::vector<CryptoParams> offer_params_;
	SrtpSession send_session_;
	SrtpSession recv_session_;
	};

	} // namespace cricket

	#endif // TALK_SESSION_PHONE_SRTPFILTER_H_