SRTP and SDP Security descriptions. More...

#include "asterisk.h"
#include "asterisk/linkedlists.h"
#include "asterisk/logger.h"
#include "asterisk/sdp_srtp.h"

Include dependency graph for sdp_srtp.c:

Go to the source code of this file.

Functions
struct ast_sdp_crypto *	ast_sdp_crypto_alloc (void)
	Initialize an return an ast_sdp_crypto struct.

int	ast_sdp_crypto_build_offer (struct ast_sdp_crypto *p, int taglen)
	Generate an SRTP a=crypto offer.

void	ast_sdp_crypto_destroy (struct ast_sdp_crypto *crypto)
	Destroy a previously allocated ast_sdp_crypto struct.

int	ast_sdp_crypto_process (struct ast_rtp_instance rtp, struct ast_sdp_srtp srtp, const char *attr)
	Parse the a=crypto line from SDP and set appropriate values on the ast_sdp_crypto struct.

int	ast_sdp_crypto_register (struct ast_sdp_crypto_api *api)
	Register SDP SRTP crypto processing routines.

void	ast_sdp_crypto_unregister (struct ast_sdp_crypto_api *api)
	Unregister SDP SRTP crypto processing routines.

char *	ast_sdp_get_rtp_profile (unsigned int sdes_active, struct ast_rtp_instance *instance, unsigned int using_avpf, unsigned int force_avp)
	Get the RTP profile in use by a media session.

struct ast_sdp_srtp *	ast_sdp_srtp_alloc (void)
	allocate a ast_sdp_srtp structure

void	ast_sdp_srtp_destroy (struct ast_sdp_srtp *srtp)
	free a ast_sdp_srtp structure

const char *	ast_sdp_srtp_get_attrib (struct ast_sdp_srtp *srtp, int dtls_enabled, int default_taglen_32)
	Get the crypto attribute line for the srtp structure.

Variables
static struct ast_sdp_crypto_api *	sdp_crypto_api

Detailed Description

SRTP and SDP Security descriptions.

Specified in RFC 3711, 6188, 7714, and 4568

Author: Mikael Magnusson mikma.nosp@m.@use.nosp@m.rs.so.nosp@m.urce.nosp@m.forge.nosp@m..net

Definition in file sdp_srtp.c.

Function Documentation

◆ ast_sdp_crypto_alloc()

struct ast_sdp_crypto * ast_sdp_crypto_alloc ( void )

Initialize an return an ast_sdp_crypto struct.

This function allocates a new ast_sdp_crypto struct and initializes its values

Return values

NULL	on failure

Returns: a pointer to a new ast_sdp_crypto structure

Definition at line 71 of file sdp_srtp.c.

{
    if (!sdp_crypto_api) {
        return NULL;
    }
    return sdp_crypto_api->alloc();
}

References ast_sdp_crypto_api::alloc, NULL, and sdp_crypto_api.

Referenced by setup_srtp().

◆ ast_sdp_crypto_build_offer()

int ast_sdp_crypto_build_offer	(	struct ast_sdp_crypto *	p,
		int	taglen
	)

Generate an SRTP a=crypto offer.

The offer is stored on the ast_sdp_crypto struct in a_crypto

Parameters

p	A valid ast_sdp_crypto struct
taglen	Length

Return values

0	success
nonzero	failure

Definition at line 87 of file sdp_srtp.c.

{
    if (!sdp_crypto_api) {
        return -1;
    }
    return sdp_crypto_api->build_offer(p, taglen);
}

References ast_sdp_crypto_api::build_offer, and sdp_crypto_api.

◆ ast_sdp_crypto_destroy()

void ast_sdp_crypto_destroy ( struct ast_sdp_crypto * crypto )

Destroy a previously allocated ast_sdp_crypto struct.

Definition at line 64 of file sdp_srtp.c.

{
    if (sdp_crypto_api) {
        sdp_crypto_api->dtor(crypto);
    }
}

References ast_sdp_srtp::crypto, ast_sdp_crypto_api::dtor, and sdp_crypto_api.

Referenced by ast_sdp_srtp_destroy().

◆ ast_sdp_crypto_process()

int ast_sdp_crypto_process	(	struct ast_rtp_instance *	rtp,
		struct ast_sdp_srtp *	srtp,
		const char *	attr
	)

Parse the a=crypto line from SDP and set appropriate values on the ast_sdp_crypto struct.

The attribute line should already have "a=crypto:" removed.

Parameters

rtp	The rtp instance associated with the SDP being parsed
srtp	SRTP structure
attr	the a:crypto line from SDP

Return values

0	success
nonzero	failure

Definition at line 79 of file sdp_srtp.c.

{
    if (!sdp_crypto_api) {
        return -1;
    }
    return sdp_crypto_api->parse_offer(rtp, srtp, attr);
}

References ast_sdp_crypto_api::parse_offer, and sdp_crypto_api.

Referenced by setup_sdes_srtp().

◆ ast_sdp_crypto_register()

int ast_sdp_crypto_register ( struct ast_sdp_crypto_api * api )

Register SDP SRTP crypto processing routines.

Since: 14.0.0

Parameters

api	Callbacks to register.

Return values

0	on success.
-1	on error.

Definition at line 123 of file sdp_srtp.c.

{
    if (sdp_crypto_api) {
        return -1;
    }
    sdp_crypto_api = api;
    return 0;
}

References sdp_crypto_api.

Referenced by res_srtp_init().

◆ ast_sdp_crypto_unregister()

void ast_sdp_crypto_unregister ( struct ast_sdp_crypto_api * api )

Unregister SDP SRTP crypto processing routines.

Since: 14.0.0

Parameters

api	Callbacks to unregister.

Definition at line 132 of file sdp_srtp.c.

{
    if (sdp_crypto_api == api) {
        sdp_crypto_api = NULL;
    }
}

References NULL, and sdp_crypto_api.

Referenced by res_srtp_shutdown().

◆ ast_sdp_get_rtp_profile()

char * ast_sdp_get_rtp_profile	(	unsigned int	sdes_active,
		struct ast_rtp_instance *	instance,
		unsigned int	using_avpf,
		unsigned int	force_avp
	)

Get the RTP profile in use by a media session.

Parameters

sdes_active	Whether the media session is using SDES-SRTP
instance	The RTP instance associated with this media session
using_avpf	Whether the media session is using early feedback (AVPF)
force_avp	Force SAVP or SAVPF profile when DTLS is in use

Returns: A non-allocated string describing the profile in use (does not need to be freed)

Definition at line 103 of file sdp_srtp.c.

{
    struct ast_rtp_engine_dtls *dtls;
 
    if ((dtls = ast_rtp_instance_get_dtls(instance)) && dtls->active(instance)) {
        if (force_avp) {
            return using_avpf ? "RTP/SAVPF" : "RTP/SAVP";
        } else {
            return using_avpf ? "UDP/TLS/RTP/SAVPF" : "UDP/TLS/RTP/SAVP";
        }
    } else {
        if (using_avpf) {
            return sdes_active ? "RTP/SAVPF" : "RTP/AVPF";
        } else {
            return sdes_active ? "RTP/SAVP" : "RTP/AVP";
        }
    }
}

References ast_rtp_engine_dtls::active, and ast_rtp_instance_get_dtls().

Referenced by create_outgoing_sdp_stream().

◆ ast_sdp_srtp_alloc()

struct ast_sdp_srtp * ast_sdp_srtp_alloc ( void )

allocate a ast_sdp_srtp structure

Returns: a new malloc'd ast_sdp_srtp structure on success

Return values

NULL	on failure

Definition at line 41 of file sdp_srtp.c.

{
    if (!ast_rtp_engine_srtp_is_registered()) {
           ast_debug(1, "No SRTP module loaded, can't setup SRTP session.\n");
           return NULL;
    }
 
    return ast_calloc(1, sizeof(struct ast_sdp_srtp));
}

References ast_calloc, ast_debug, ast_rtp_engine_srtp_is_registered(), and NULL.

Referenced by add_crypto_to_stream(), res_sdp_srtp_get_attr(), and setup_srtp().

◆ ast_sdp_srtp_destroy()

void ast_sdp_srtp_destroy ( struct ast_sdp_srtp * srtp )

free a ast_sdp_srtp structure

Parameters

srtp	a ast_sdp_srtp structure

Definition at line 51 of file sdp_srtp.c.

{
    struct ast_sdp_srtp *next;
 
    for (next = AST_LIST_NEXT(srtp, sdp_srtp_list);
         srtp;
         srtp = next, next = srtp ? AST_LIST_NEXT(srtp, sdp_srtp_list) : NULL) {
        ast_sdp_crypto_destroy(srtp->crypto);
        srtp->crypto = NULL;
        ast_free(srtp);
    }
}

References ast_free, AST_LIST_NEXT, ast_sdp_crypto_destroy(), ast_sdp_srtp::crypto, ast_sdp_srtp::next, NULL, and ast_sdp_srtp::sdp_srtp_list.

Referenced by session_media_dtor().

◆ ast_sdp_srtp_get_attrib()

const char * ast_sdp_srtp_get_attrib	(	struct ast_sdp_srtp *	srtp,
		int	dtls_enabled,
		int	default_taglen_32
	)

Get the crypto attribute line for the srtp structure.

The attribute line does not contain the initial "a=crypto:" and does not terminate with "\r\n".

Parameters

srtp	The ast_sdp_srtp structure for which to get an attribute line
dtls_enabled	Whether this connection is encrypted with datagram TLS
default_taglen_32	Whether to default to a tag length of 32 instead of 80

Returns: An attribute line containing cryptographic information

Return values

NULL	if the srtp structure does not require an attribute line containing crypto information

Definition at line 95 of file sdp_srtp.c.

{
    if (!sdp_crypto_api) {
        return NULL;
    }
    return sdp_crypto_api->get_attr(srtp, dtls_enabled, default_taglen_32);
}

References ast_sdp_crypto_api::get_attr, NULL, and sdp_crypto_api.

Referenced by add_crypto_to_stream().

Variable Documentation

◆ sdp_crypto_api

struct ast_sdp_crypto_api* sdp_crypto_api

static

Registered SDP crypto API

Definition at line 39 of file sdp_srtp.c.

Referenced by ast_sdp_crypto_alloc(), ast_sdp_crypto_build_offer(), ast_sdp_crypto_destroy(), ast_sdp_crypto_process(), ast_sdp_crypto_register(), ast_sdp_crypto_unregister(), and ast_sdp_srtp_get_attrib().

Functions

Variables

Detailed Description

Function Documentation

◆ ast_sdp_crypto_alloc()

◆ ast_sdp_crypto_build_offer()

◆ ast_sdp_crypto_destroy()

◆ ast_sdp_crypto_process()

◆ ast_sdp_crypto_register()

◆ ast_sdp_crypto_unregister()

◆ ast_sdp_get_rtp_profile()

◆ ast_sdp_srtp_alloc()

◆ ast_sdp_srtp_destroy()

◆ ast_sdp_srtp_get_attrib()

Variable Documentation

◆ sdp_crypto_api