Coverage Report

Created: 2025-06-13 06:58

/src/openssl31/ssl/d1_srtp.c
Line
Count
Source (jump to first uncovered line)
1
/*
2
 * Copyright 2011-2020 The OpenSSL Project Authors. All Rights Reserved.
3
 *
4
 * Licensed under the Apache License 2.0 (the "License").  You may not use
5
 * this file except in compliance with the License.  You can obtain a copy
6
 * in the file LICENSE in the source distribution or at
7
 * https://www.openssl.org/source/license.html
8
 */
9
10
/*
11
 * DTLS code by Eric Rescorla <ekr@rtfm.com>
12
 *
13
 * Copyright (C) 2006, Network Resonance, Inc. Copyright (C) 2011, RTFM, Inc.
14
 */
15
16
#include <stdio.h>
17
#include <openssl/objects.h>
18
#include "ssl_local.h"
19
20
#ifndef OPENSSL_NO_SRTP
21
22
static SRTP_PROTECTION_PROFILE srtp_known_profiles[] = {
23
    {
24
     "SRTP_AES128_CM_SHA1_80",
25
     SRTP_AES128_CM_SHA1_80,
26
     },
27
    {
28
     "SRTP_AES128_CM_SHA1_32",
29
     SRTP_AES128_CM_SHA1_32,
30
     },
31
    {
32
     "SRTP_AEAD_AES_128_GCM",
33
     SRTP_AEAD_AES_128_GCM,
34
     },
35
    {
36
     "SRTP_AEAD_AES_256_GCM",
37
     SRTP_AEAD_AES_256_GCM,
38
     },
39
    {0}
40
};
41
42
static int find_profile_by_name(char *profile_name,
43
                                SRTP_PROTECTION_PROFILE **pptr, size_t len)
44
0
{
45
0
    SRTP_PROTECTION_PROFILE *p;
46
47
0
    p = srtp_known_profiles;
48
0
    while (p->name) {
49
0
        if ((len == strlen(p->name))
50
0
            && strncmp(p->name, profile_name, len) == 0) {
51
0
            *pptr = p;
52
0
            return 0;
53
0
        }
54
55
0
        p++;
56
0
    }
57
58
0
    return 1;
59
0
}
60
61
static int ssl_ctx_make_profiles(const char *profiles_string,
62
                                 STACK_OF(SRTP_PROTECTION_PROFILE) **out)
63
0
{
64
0
    STACK_OF(SRTP_PROTECTION_PROFILE) *profiles;
65
66
0
    char *col;
67
0
    char *ptr = (char *)profiles_string;
68
0
    SRTP_PROTECTION_PROFILE *p;
69
70
0
    if ((profiles = sk_SRTP_PROTECTION_PROFILE_new_null()) == NULL) {
71
0
        ERR_raise(ERR_LIB_SSL, SSL_R_SRTP_COULD_NOT_ALLOCATE_PROFILES);
72
0
        return 1;
73
0
    }
74
75
0
    do {
76
0
        col = strchr(ptr, ':');
77
78
0
        if (!find_profile_by_name(ptr, &p, col ? (size_t)(col - ptr)
79
0
                                               : strlen(ptr))) {
80
0
            if (sk_SRTP_PROTECTION_PROFILE_find(profiles, p) >= 0) {
81
0
                ERR_raise(ERR_LIB_SSL, SSL_R_BAD_SRTP_PROTECTION_PROFILE_LIST);
82
0
                goto err;
83
0
            }
84
85
0
            if (!sk_SRTP_PROTECTION_PROFILE_push(profiles, p)) {
86
0
                ERR_raise(ERR_LIB_SSL, SSL_R_SRTP_COULD_NOT_ALLOCATE_PROFILES);
87
0
                goto err;
88
0
            }
89
0
        } else {
90
0
            ERR_raise(ERR_LIB_SSL, SSL_R_SRTP_UNKNOWN_PROTECTION_PROFILE);
91
0
            goto err;
92
0
        }
93
94
0
        if (col)
95
0
            ptr = col + 1;
96
0
    } while (col);
97
98
0
    sk_SRTP_PROTECTION_PROFILE_free(*out);
99
100
0
    *out = profiles;
101
102
0
    return 0;
103
0
 err:
104
0
    sk_SRTP_PROTECTION_PROFILE_free(profiles);
105
0
    return 1;
106
0
}
107
108
int SSL_CTX_set_tlsext_use_srtp(SSL_CTX *ctx, const char *profiles)
109
0
{
110
0
    return ssl_ctx_make_profiles(profiles, &ctx->srtp_profiles);
111
0
}
112
113
int SSL_set_tlsext_use_srtp(SSL *s, const char *profiles)
114
0
{
115
0
    return ssl_ctx_make_profiles(profiles, &s->srtp_profiles);
116
0
}
117
118
STACK_OF(SRTP_PROTECTION_PROFILE) *SSL_get_srtp_profiles(SSL *s)
119
14.5k
{
120
14.5k
    if (s != NULL) {
121
14.5k
        if (s->srtp_profiles != NULL) {
122
0
            return s->srtp_profiles;
123
14.5k
        } else if ((s->ctx != NULL) && (s->ctx->srtp_profiles != NULL)) {
124
0
            return s->ctx->srtp_profiles;
125
0
        }
126
14.5k
    }
127
128
14.5k
    return NULL;
129
14.5k
}
130
131
SRTP_PROTECTION_PROFILE *SSL_get_selected_srtp_profile(SSL *s)
132
0
{
133
0
    return s->srtp_profile;
134
0
}
135
#endif