Blame - rtc_base/openssl_adapter.cc - src

blob: bc10e619ebd69a3ff184e339d180f2d34fd81bba [file] [log] [blame]

henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	1	/*
				2	* Copyright 2008 The WebRTC Project Authors. All rights reserved.
				3	*
				4	* Use of this source code is governed by a BSD-style license
				5	* that can be found in the LICENSE file in the root of the source
				6	* tree. An additional intellectual property rights grant can be found
				7	* in the file PATENTS. All contributing project authors may
				8	* be found in the AUTHORS file in the root of the source tree.
				9	*/
				10
Steve Anton	10542f2	2019-01-11 17:11:00	[diff] [blame]	11	#include "rtc_base/openssl_adapter.h"
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	12
Yves Gerey	988cc08	2018-10-23 10:03:01	[diff] [blame]	13	#include <errno.h>
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	14	#include <openssl/bio.h>
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	15	#include <openssl/err.h>
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	16	#ifdef OPENSSL_IS_BORINGSSL
				17	#include <openssl/pool.h>
				18	#endif
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	19	#include <openssl/rand.h>
henrike@webrtc.org	d5a0506	2014-06-30 20:38:56	[diff] [blame]	20	#include <openssl/x509.h>
Yves Gerey	988cc08	2018-10-23 10:03:01	[diff] [blame]	21	#include <string.h>
				22	#include <time.h>
				23
Mirko Bonadei	317a1f0	2019-09-17 15:06:18	[diff] [blame]	24	#include <memory>
				25
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	26	// Use CRYPTO_BUFFER APIs if available and we have no dependency on X509
				27	// objects.
				28	#if defined(OPENSSL_IS_BORINGSSL) && \
				29	defined(WEBRTC_EXCLUDE_BUILT_IN_SSL_ROOT_CERTS)
				30	#define WEBRTC_USE_CRYPTO_BUFFER_CALLBACK
				31	#endif
				32
Harald Alvestrand	8515d5a	2020-03-20 21:51:32	[diff] [blame]	33	#include "absl/memory/memory.h"
Mirko Bonadei	92ea95e	2017-09-15 04:47:31	[diff] [blame]	34	#include "rtc_base/checks.h"
Yves Gerey	988cc08	2018-10-23 10:03:01	[diff] [blame]	35	#include "rtc_base/location.h"
Mirko Bonadei	92ea95e	2017-09-15 04:47:31	[diff] [blame]	36	#include "rtc_base/logging.h"
Karl Wiberg	e40468b	2017-11-22 09:42:26	[diff] [blame]	37	#include "rtc_base/numerics/safe_conversions.h"
Jonas Olsson	a4d8737	2019-07-05 17:08:33	[diff] [blame]	38	#include "rtc_base/openssl.h"
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	39	#ifdef OPENSSL_IS_BORINGSSL
				40	#include "rtc_base/boringssl_identity.h"
				41	#else
				42	#include "rtc_base/openssl_identity.h"
				43	#endif
Steve Anton	10542f2	2019-01-11 17:11:00	[diff] [blame]	44	#include "rtc_base/openssl_utility.h"
				45	#include "rtc_base/string_encode.h"
Mirko Bonadei	92ea95e	2017-09-15 04:47:31	[diff] [blame]	46	#include "rtc_base/thread.h"
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	47
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	48	//////////////////////////////////////////////////////////////////////
				49	// SocketBIO
				50	//////////////////////////////////////////////////////////////////////
				51
				52	static int socket_write(BIO* h, const char* buf, int num);
				53	static int socket_read(BIO* h, char* buf, int size);
				54	static int socket_puts(BIO* h, const char* str);
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	55	static long socket_ctrl(BIO* h, int cmd, long arg1, void* arg2); // NOLINT
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	56	static int socket_new(BIO* h);
				57	static int socket_free(BIO* data);
				58
Jiawei Ou	eb0df08	2018-02-02 22:51:18	[diff] [blame]	59	static BIO_METHOD* BIO_socket_method() {
				60	static BIO_METHOD* methods = [] {
				61	BIO_METHOD* methods = BIO_meth_new(BIO_TYPE_BIO, "socket");
				62	BIO_meth_set_write(methods, socket_write);
				63	BIO_meth_set_read(methods, socket_read);
				64	BIO_meth_set_puts(methods, socket_puts);
				65	BIO_meth_set_ctrl(methods, socket_ctrl);
				66	BIO_meth_set_create(methods, socket_new);
				67	BIO_meth_set_destroy(methods, socket_free);
				68	return methods;
				69	}();
				70	return methods;
				71	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	72
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	73	static BIO* BIO_new_socket(rtc::Socket* socket) {
Jiawei Ou	eb0df08	2018-02-02 22:51:18	[diff] [blame]	74	BIO* ret = BIO_new(BIO_socket_method());
deadbeef	37f5ecf	2017-02-27 22:06:41	[diff] [blame]	75	if (ret == nullptr) {
				76	return nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	77	}
Jiawei Ou	eb0df08	2018-02-02 22:51:18	[diff] [blame]	78	BIO_set_data(ret, socket);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	79	return ret;
				80	}
				81
				82	static int socket_new(BIO* b) {
Jiawei Ou	eb0df08	2018-02-02 22:51:18	[diff] [blame]	83	BIO_set_shutdown(b, 0);
				84	BIO_set_init(b, 1);
				85	BIO_set_data(b, 0);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	86	return 1;
				87	}
				88
				89	static int socket_free(BIO* b) {
deadbeef	37f5ecf	2017-02-27 22:06:41	[diff] [blame]	90	if (b == nullptr)
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	91	return 0;
				92	return 1;
				93	}
				94
				95	static int socket_read(BIO* b, char* out, int outl) {
				96	if (!out)
				97	return -1;
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	98	rtc::Socket* socket = static_cast<rtc::Socket*>(BIO_get_data(b));
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	99	BIO_clear_retry_flags(b);
Stefan Holmer	9131efd	2016-05-23 16:19:26	[diff] [blame]	100	int result = socket->Recv(out, outl, nullptr);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	101	if (result > 0) {
				102	return result;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	103	} else if (socket->IsBlocking()) {
				104	BIO_set_retry_read(b);
				105	}
				106	return -1;
				107	}
				108
				109	static int socket_write(BIO* b, const char* in, int inl) {
				110	if (!in)
				111	return -1;
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	112	rtc::Socket* socket = static_cast<rtc::Socket*>(BIO_get_data(b));
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	113	BIO_clear_retry_flags(b);
				114	int result = socket->Send(in, inl);
				115	if (result > 0) {
				116	return result;
				117	} else if (socket->IsBlocking()) {
				118	BIO_set_retry_write(b);
				119	}
				120	return -1;
				121	}
				122
				123	static int socket_puts(BIO* b, const char* str) {
henrike@webrtc.org	d89b69a	2014-11-06 17:23:09	[diff] [blame]	124	return socket_write(b, str, rtc::checked_cast<int>(strlen(str)));
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	125	}
				126
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	127	static long socket_ctrl(BIO* b, int cmd, long num, void* ptr) { // NOLINT
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	128	switch (cmd) {
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	129	case BIO_CTRL_RESET:
				130	return 0;
				131	case BIO_CTRL_EOF: {
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	132	rtc::Socket* socket = static_cast<rtc::Socket*>(ptr);
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	133	// 1 means socket closed.
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	134	return (socket->GetState() == rtc::Socket::CS_CLOSED) ? 1 : 0;
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	135	}
				136	case BIO_CTRL_WPENDING:
				137	case BIO_CTRL_PENDING:
				138	return 0;
				139	case BIO_CTRL_FLUSH:
				140	return 1;
				141	default:
				142	return 0;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	143	}
				144	}
				145
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	146	static void LogSslError() {
				147	// Walk down the error stack to find the SSL error.
				148	uint32_t error_code;
				149	const char* file;
				150	int line;
				151	do {
				152	error_code = ERR_get_error_line(&file, &line);
				153	if (ERR_GET_LIB(error_code) == ERR_LIB_SSL) {
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	154	RTC_LOG(LS_ERROR) << "ERR_LIB_SSL: " << error_code << ", " << file << ":"
				155	<< line;
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	156	break;
				157	}
				158	} while (error_code != 0);
				159	}
				160
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	161	/////////////////////////////////////////////////////////////////////////////
				162	// OpenSSLAdapter
				163	/////////////////////////////////////////////////////////////////////////////
				164
				165	namespace rtc {
				166
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	167	bool OpenSSLAdapter::InitializeSSL() {
Jiawei Ou	eb0df08	2018-02-02 22:51:18	[diff] [blame]	168	if (!SSL_library_init())
				169	return false;
Torbjorn Granlund	9adc91d	2016-03-24 13:05:06	[diff] [blame]	170	#if !defined(ADDRESS_SANITIZER) \|\| !defined(WEBRTC_MAC) \|\| defined(WEBRTC_IOS)
				171	// Loading the error strings crashes mac_asan. Omit this debugging aid there.
				172	SSL_load_error_strings();
				173	#endif
				174	ERR_load_BIO_strings();
				175	OpenSSL_add_all_algorithms();
				176	RAND_poll();
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	177	return true;
				178	}
				179
Torbjorn Granlund	9adc91d	2016-03-24 13:05:06	[diff] [blame]	180	bool OpenSSLAdapter::CleanupSSL() {
Torbjorn Granlund	9adc91d	2016-03-24 13:05:06	[diff] [blame]	181	return true;
				182	}
				183
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	184	OpenSSLAdapter::OpenSSLAdapter(Socket* socket,
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	185	OpenSSLSessionCache* ssl_session_cache,
				186	SSLCertificateVerifier* ssl_cert_verifier)
deadbeef	37f5ecf	2017-02-27 22:06:41	[diff] [blame]	187	: SSLAdapter(socket),
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	188	ssl_session_cache_(ssl_session_cache),
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	189	ssl_cert_verifier_(ssl_cert_verifier),
deadbeef	37f5ecf	2017-02-27 22:06:41	[diff] [blame]	190	state_(SSL_NONE),
Steve Anton	786de70	2017-08-17 22:15:46	[diff] [blame]	191	role_(SSL_CLIENT),
deadbeef	37f5ecf	2017-02-27 22:06:41	[diff] [blame]	192	ssl_read_needs_write_(false),
				193	ssl_write_needs_read_(false),
deadbeef	37f5ecf	2017-02-27 22:06:41	[diff] [blame]	194	ssl_(nullptr),
				195	ssl_ctx_(nullptr),
				196	ssl_mode_(SSL_MODE_TLS),
Sergey Silkin	9c147dd	2018-09-12 10:45:38	[diff] [blame]	197	ignore_bad_cert_(false),
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	198	custom_cert_verifier_status_(false) {
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	199	// If a factory is used, take a reference on the factory's SSL_CTX.
				200	// Otherwise, we'll create our own later.
				201	// Either way, we'll release our reference via SSL_CTX_free() in Cleanup().
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	202	if (ssl_session_cache_ != nullptr) {
				203	ssl_ctx_ = ssl_session_cache_->GetSSLContext();
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	204	RTC_DCHECK(ssl_ctx_);
				205	// Note: if using OpenSSL, requires version 1.1.0 or later.
				206	SSL_CTX_up_ref(ssl_ctx_);
				207	}
				208	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	209
				210	OpenSSLAdapter::~OpenSSLAdapter() {
				211	Cleanup();
				212	}
				213
Sergey Silkin	9c147dd	2018-09-12 10:45:38	[diff] [blame]	214	void OpenSSLAdapter::SetIgnoreBadCert(bool ignore) {
				215	ignore_bad_cert_ = ignore;
				216	}
				217
				218	void OpenSSLAdapter::SetAlpnProtocols(const std::vector<std::string>& protos) {
				219	alpn_protocols_ = protos;
				220	}
				221
				222	void OpenSSLAdapter::SetEllipticCurves(const std::vector<std::string>& curves) {
				223	elliptic_curves_ = curves;
Diogo Real	7bd1f1b	2017-09-08 19:50:41	[diff] [blame]	224	}
				225
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	226	void OpenSSLAdapter::SetMode(SSLMode mode) {
				227	RTC_DCHECK(!ssl_ctx_);
nisse	ede5da4	2017-01-12 13:15:36	[diff] [blame]	228	RTC_DCHECK(state_ == SSL_NONE);
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	229	ssl_mode_ = mode;
				230	}
				231
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	232	void OpenSSLAdapter::SetCertVerifier(
				233	SSLCertificateVerifier* ssl_cert_verifier) {
				234	RTC_DCHECK(!ssl_ctx_);
				235	ssl_cert_verifier_ = ssl_cert_verifier;
				236	}
				237
Harald Alvestrand	8515d5a	2020-03-20 21:51:32	[diff] [blame]	238	void OpenSSLAdapter::SetIdentity(std::unique_ptr<SSLIdentity> identity) {
				239	RTC_DCHECK(!identity_);
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	240	#ifdef OPENSSL_IS_BORINGSSL
				241	identity_ =
				242	absl::WrapUnique(static_cast<BoringSSLIdentity*>(identity.release()));
				243	#else
Harald Alvestrand	8515d5a	2020-03-20 21:51:32	[diff] [blame]	244	identity_ =
				245	absl::WrapUnique(static_cast<OpenSSLIdentity*>(identity.release()));
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	246	#endif
Harald Alvestrand	8515d5a	2020-03-20 21:51:32	[diff] [blame]	247	}
				248
Steve Anton	786de70	2017-08-17 22:15:46	[diff] [blame]	249	void OpenSSLAdapter::SetRole(SSLRole role) {
				250	role_ = role;
				251	}
				252
Mirko Bonadei	2d2c294	2020-04-10 22:01:43	[diff] [blame]	253	int OpenSSLAdapter::StartSSL(const char* hostname) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	254	if (state_ != SSL_NONE)
				255	return -1;
				256
				257	ssl_host_name_ = hostname;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	258
Niels Möller	8729d78	2021-08-11 09:22:44	[diff] [blame]	259	if (GetSocket()->GetState() != Socket::CS_CONNECTED) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	260	state_ = SSL_WAIT;
				261	return 0;
				262	}
				263
				264	state_ = SSL_CONNECTING;
				265	if (int err = BeginSSL()) {
				266	Error("BeginSSL", err, false);
				267	return err;
				268	}
				269
				270	return 0;
				271	}
				272
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	273	int OpenSSLAdapter::BeginSSL() {
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	274	RTC_LOG(LS_INFO) << "OpenSSLAdapter::BeginSSL: " << ssl_host_name_;
nisse	ede5da4	2017-01-12 13:15:36	[diff] [blame]	275	RTC_DCHECK(state_ == SSL_CONNECTING);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	276
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	277	// Cleanup action to deal with on error cleanup a bit cleaner.
				278	EarlyExitCatcher early_exit_catcher(*this);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	279
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	280	// First set up the context. We should either have a factory, with its own
				281	// pre-existing context, or be running standalone, in which case we will
Artem Titov	96e3b99	2021-07-26 14:03:14	[diff] [blame]	282	// need to create one, and specify `false` to disable session caching.
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	283	if (ssl_session_cache_ == nullptr) {
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	284	RTC_DCHECK(!ssl_ctx_);
				285	ssl_ctx_ = CreateContext(ssl_mode_, false);
				286	}
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	287
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	288	if (!ssl_ctx_) {
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	289	return -1;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	290	}
				291
Steve Anton	786de70	2017-08-17 22:15:46	[diff] [blame]	292	if (identity_ && !identity_->ConfigureIdentity(ssl_ctx_)) {
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	293	return -1;
Steve Anton	786de70	2017-08-17 22:15:46	[diff] [blame]	294	}
				295
Niels Möller	8729d78	2021-08-11 09:22:44	[diff] [blame]	296	std::unique_ptr<BIO, decltype(&::BIO_free)> bio{BIO_new_socket(GetSocket()),
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	297	::BIO_free};
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	298	if (!bio) {
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	299	return -1;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	300	}
				301
				302	ssl_ = SSL_new(ssl_ctx_);
				303	if (!ssl_) {
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	304	return -1;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	305	}
				306
				307	SSL_set_app_data(ssl_, this);
				308
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	309	// SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER allows different buffers to be passed
				310	// into SSL_write when a record could only be partially transmitted (and thus
				311	// requires another call to SSL_write to finish transmission). This allows us
				312	// to copy the data into our own buffer when this occurs, since the original
				313	// buffer can't safely be accessed after control exits Send.
				314	// TODO(deadbeef): Do we want SSL_MODE_ENABLE_PARTIAL_WRITE? It doesn't
				315	// appear Send handles partial writes properly, though maybe we never notice
				316	// since we never send more than 16KB at once..
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	317	SSL_set_mode(ssl_, SSL_MODE_ENABLE_PARTIAL_WRITE \|
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	318	SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	319
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	320	// Enable SNI, if a hostname is supplied.
Emad Omara	dab1d2d	2017-06-16 22:43:11	[diff] [blame]	321	if (!ssl_host_name_.empty()) {
				322	SSL_set_tlsext_host_name(ssl_, ssl_host_name_.c_str());
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	323
				324	// Enable session caching, if configured and a hostname is supplied.
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	325	if (ssl_session_cache_ != nullptr) {
				326	SSL_SESSION* cached = ssl_session_cache_->LookupSession(ssl_host_name_);
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	327	if (cached) {
				328	if (SSL_set_session(ssl_, cached) == 0) {
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	329	RTC_LOG(LS_WARNING) << "Failed to apply SSL session from cache";
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	330	return -1;
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	331	}
				332
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	333	RTC_LOG(LS_INFO) << "Attempting to resume SSL session to "
				334	<< ssl_host_name_;
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	335	}
				336	}
Emad Omara	dab1d2d	2017-06-16 22:43:11	[diff] [blame]	337	}
				338
Jiawei Ou	eb0df08	2018-02-02 22:51:18	[diff] [blame]	339	#ifdef OPENSSL_IS_BORINGSSL
Sergey Silkin	9c147dd	2018-09-12 10:45:38	[diff] [blame]	340	// Set a couple common TLS extensions; even though we don't use them yet.
				341	SSL_enable_ocsp_stapling(ssl_);
				342	SSL_enable_signed_cert_timestamps(ssl_);
Jiawei Ou	eb0df08	2018-02-02 22:51:18	[diff] [blame]	343	#endif
Emad Omara	cb79d23	2017-07-20 23:34:34	[diff] [blame]	344
Sergey Silkin	9c147dd	2018-09-12 10:45:38	[diff] [blame]	345	if (!alpn_protocols_.empty()) {
				346	std::string tls_alpn_string = TransformAlpnProtocols(alpn_protocols_);
Diogo Real	1dca9d5	2017-08-29 19:18:32	[diff] [blame]	347	if (!tls_alpn_string.empty()) {
				348	SSL_set_alpn_protos(
				349	ssl_, reinterpret_cast<const unsigned char*>(tls_alpn_string.data()),
Mirko Bonadei	a041f92	2018-05-23 08:22:36	[diff] [blame]	350	rtc::dchecked_cast<unsigned>(tls_alpn_string.size()));
Diogo Real	1dca9d5	2017-08-29 19:18:32	[diff] [blame]	351	}
				352	}
				353
Sergey Silkin	9c147dd	2018-09-12 10:45:38	[diff] [blame]	354	if (!elliptic_curves_.empty()) {
				355	SSL_set1_curves_list(ssl_, rtc::join(elliptic_curves_, ':').c_str());
Diogo Real	7bd1f1b	2017-09-08 19:50:41	[diff] [blame]	356	}
				357
Artem Titov	96e3b99	2021-07-26 14:03:14	[diff] [blame]	358	// Now that the initial config is done, transfer ownership of `bio` to the
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	359	// SSL object. If ContinueSSL() fails, the bio will be freed in Cleanup().
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	360	SSL_set_bio(ssl_, bio.get(), bio.get());
				361	bio.release();
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	362
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	363	// Do the connect.
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	364	int err = ContinueSSL();
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	365	if (err != 0) {
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	366	return err;
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	367	}
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	368	early_exit_catcher.disable();
				369	return 0;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	370	}
				371
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	372	int OpenSSLAdapter::ContinueSSL() {
nisse	ede5da4	2017-01-12 13:15:36	[diff] [blame]	373	RTC_DCHECK(state_ == SSL_CONNECTING);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	374
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	375	// Clear the DTLS timer
				376	Thread::Current()->Clear(this, MSG_TIMEOUT);
				377
Steve Anton	786de70	2017-08-17 22:15:46	[diff] [blame]	378	int code = (role_ == SSL_CLIENT) ? SSL_connect(ssl_) : SSL_accept(ssl_);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	379	switch (SSL_get_error(ssl_, code)) {
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	380	case SSL_ERROR_NONE:
				381	if (!SSLPostConnectionCheck(ssl_, ssl_host_name_)) {
				382	RTC_LOG(LS_ERROR) << "TLS post connection check failed";
				383	// make sure we close the socket
				384	Cleanup();
				385	// The connect failed so return -1 to shut down the socket
				386	return -1;
				387	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	388
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	389	state_ = SSL_CONNECTED;
				390	AsyncSocketAdapter::OnConnectEvent(this);
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	391	// TODO(benwright): Refactor this code path.
				392	// Don't let ourselves go away during the callbacks
				393	// PRefPtr<OpenSSLAdapter> lock(this);
				394	// RTC_LOG(LS_INFO) << " -- onStreamReadable";
				395	// AsyncSocketAdapter::OnReadEvent(this);
				396	// RTC_LOG(LS_INFO) << " -- onStreamWriteable";
				397	// AsyncSocketAdapter::OnWriteEvent(this);
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	398	break;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	399
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	400	case SSL_ERROR_WANT_READ:
				401	RTC_LOG(LS_VERBOSE) << " -- error want read";
				402	struct timeval timeout;
				403	if (DTLSv1_get_timeout(ssl_, &timeout)) {
				404	int delay = timeout.tv_sec * 1000 + timeout.tv_usec / 1000;
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	405
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	406	Thread::Current()->PostDelayed(RTC_FROM_HERE, delay, this, MSG_TIMEOUT,
				407	0);
				408	}
				409	break;
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	410
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	411	case SSL_ERROR_WANT_WRITE:
				412	break;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	413
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	414	case SSL_ERROR_ZERO_RETURN:
				415	default:
				416	RTC_LOG(LS_WARNING) << "ContinueSSL -- error " << code;
				417	return (code != 0) ? code : -1;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	418	}
				419
				420	return 0;
				421	}
				422
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	423	void OpenSSLAdapter::Error(const char* context, int err, bool signal) {
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	424	RTC_LOG(LS_WARNING) << "OpenSSLAdapter::Error(" << context << ", " << err
				425	<< ")";
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	426	state_ = SSL_ERROR;
				427	SetError(err);
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	428	if (signal) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	429	AsyncSocketAdapter::OnCloseEvent(this, err);
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	430	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	431	}
				432
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	433	void OpenSSLAdapter::Cleanup() {
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	434	RTC_LOG(LS_INFO) << "OpenSSLAdapter::Cleanup";
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	435
				436	state_ = SSL_NONE;
				437	ssl_read_needs_write_ = false;
				438	ssl_write_needs_read_ = false;
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	439	custom_cert_verifier_status_ = false;
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	440	pending_data_.Clear();
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	441
				442	if (ssl_) {
				443	SSL_free(ssl_);
deadbeef	37f5ecf	2017-02-27 22:06:41	[diff] [blame]	444	ssl_ = nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	445	}
				446
				447	if (ssl_ctx_) {
				448	SSL_CTX_free(ssl_ctx_);
deadbeef	37f5ecf	2017-02-27 22:06:41	[diff] [blame]	449	ssl_ctx_ = nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	450	}
Steve Anton	786de70	2017-08-17 22:15:46	[diff] [blame]	451	identity_.reset();
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	452
				453	// Clear the DTLS timer
				454	Thread::Current()->Clear(this, MSG_TIMEOUT);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	455	}
				456
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	457	int OpenSSLAdapter::DoSslWrite(const void* pv, size_t cb, int* error) {
				458	// If we have pending data (that was previously only partially written by
				459	// SSL_write), we shouldn't be attempting to write anything else.
				460	RTC_DCHECK(pending_data_.empty() \|\| pv == pending_data_.data());
				461	RTC_DCHECK(error != nullptr);
				462
				463	ssl_write_needs_read_ = false;
				464	int ret = SSL_write(ssl_, pv, checked_cast<int>(cb));
				465	*error = SSL_get_error(ssl_, ret);
				466	switch (*error) {
				467	case SSL_ERROR_NONE:
				468	// Success!
				469	return ret;
				470	case SSL_ERROR_WANT_READ:
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	471	RTC_LOG(LS_INFO) << " -- error want read";
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	472	ssl_write_needs_read_ = true;
				473	SetError(EWOULDBLOCK);
				474	break;
				475	case SSL_ERROR_WANT_WRITE:
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	476	RTC_LOG(LS_INFO) << " -- error want write";
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	477	SetError(EWOULDBLOCK);
				478	break;
				479	case SSL_ERROR_ZERO_RETURN:
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	480	SetError(EWOULDBLOCK);
				481	// do we need to signal closure?
				482	break;
				483	case SSL_ERROR_SSL:
				484	LogSslError();
				485	Error("SSL_write", ret ? ret : -1, false);
				486	break;
				487	default:
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	488	Error("SSL_write", ret ? ret : -1, false);
				489	break;
				490	}
				491
				492	return SOCKET_ERROR;
				493	}
				494
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	495	///////////////////////////////////////////////////////////////////////////////
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	496	// Socket Implementation
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	497	///////////////////////////////////////////////////////////////////////////////
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	498
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	499	int OpenSSLAdapter::Send(const void* pv, size_t cb) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	500	switch (state_) {
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	501	case SSL_NONE:
				502	return AsyncSocketAdapter::Send(pv, cb);
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	503	case SSL_WAIT:
				504	case SSL_CONNECTING:
				505	SetError(ENOTCONN);
				506	return SOCKET_ERROR;
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	507	case SSL_CONNECTED:
				508	break;
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	509	case SSL_ERROR:
				510	default:
				511	return SOCKET_ERROR;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	512	}
				513
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	514	int ret;
				515	int error;
				516
				517	if (!pending_data_.empty()) {
				518	ret = DoSslWrite(pending_data_.data(), pending_data_.size(), &error);
				519	if (ret != static_cast<int>(pending_data_.size())) {
				520	// We couldn't finish sending the pending data, so we definitely can't
				521	// send any more data. Return with an EWOULDBLOCK error.
				522	SetError(EWOULDBLOCK);
				523	return SOCKET_ERROR;
				524	}
				525	// We completed sending the data previously passed into SSL_write! Now
				526	// we're allowed to send more data.
				527	pending_data_.Clear();
				528	}
				529
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	530	// OpenSSL will return an error if we try to write zero bytes
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	531	if (cb == 0) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	532	return 0;
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	533	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	534
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	535	ret = DoSslWrite(pv, cb, &error);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	536
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	537	// If SSL_write fails with SSL_ERROR_WANT_READ or SSL_ERROR_WANT_WRITE, this
				538	// means the underlying socket is blocked on reading or (more typically)
				539	// writing. When this happens, OpenSSL requires that the next call to
				540	// SSL_write uses the same arguments (though, with
				541	// SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER, the actual buffer pointer may be
				542	// different).
				543	//
				544	// However, after Send exits, we will have lost access to data the user of
				545	// this class is trying to send, and there's no guarantee that the user of
				546	// this class will call Send with the same arguements when it fails. So, we
				547	// buffer the data ourselves. When we know the underlying socket is writable
				548	// again from OnWriteEvent (or if Send is called again before that happens),
				549	// we'll retry sending this buffered data.
deadbeef	e5dce2b	2017-06-02 18:52:06	[diff] [blame]	550	if (error == SSL_ERROR_WANT_READ \|\| error == SSL_ERROR_WANT_WRITE) {
				551	// Shouldn't be able to get to this point if we already have pending data.
				552	RTC_DCHECK(pending_data_.empty());
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	553	RTC_LOG(LS_WARNING)
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	554	<< "SSL_write couldn't write to the underlying socket; buffering data.";
				555	pending_data_.SetData(static_cast<const uint8_t*>(pv), cb);
				556	// Since we're taking responsibility for sending this data, return its full
				557	// size. The user of this class can consider it sent.
Mirko Bonadei	a041f92	2018-05-23 08:22:36	[diff] [blame]	558	return rtc::dchecked_cast<int>(cb);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	559	}
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	560	return ret;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	561	}
				562
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	563	int OpenSSLAdapter::SendTo(const void* pv,
				564	size_t cb,
				565	const SocketAddress& addr) {
Niels Möller	8729d78	2021-08-11 09:22:44	[diff] [blame]	566	if (GetSocket()->GetState() == Socket::CS_CONNECTED &&
				567	addr == GetSocket()->GetRemoteAddress()) {
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	568	return Send(pv, cb);
				569	}
				570
				571	SetError(ENOTCONN);
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	572	return SOCKET_ERROR;
				573	}
				574
Stefan Holmer	9131efd	2016-05-23 16:19:26	[diff] [blame]	575	int OpenSSLAdapter::Recv(void* pv, size_t cb, int64_t* timestamp) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	576	switch (state_) {
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	577	case SSL_NONE:
				578	return AsyncSocketAdapter::Recv(pv, cb, timestamp);
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	579	case SSL_WAIT:
				580	case SSL_CONNECTING:
				581	SetError(ENOTCONN);
				582	return SOCKET_ERROR;
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	583	case SSL_CONNECTED:
				584	break;
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	585	case SSL_ERROR:
				586	default:
				587	return SOCKET_ERROR;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	588	}
				589
				590	// Don't trust OpenSSL with zero byte reads
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	591	if (cb == 0) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	592	return 0;
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	593	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	594
				595	ssl_read_needs_write_ = false;
henrike@webrtc.org	d89b69a	2014-11-06 17:23:09	[diff] [blame]	596	int code = SSL_read(ssl_, pv, checked_cast<int>(cb));
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	597	int error = SSL_get_error(ssl_, code);
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	598
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	599	switch (error) {
				600	case SSL_ERROR_NONE:
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	601	return code;
				602	case SSL_ERROR_WANT_READ:
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	603	SetError(EWOULDBLOCK);
				604	break;
				605	case SSL_ERROR_WANT_WRITE:
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	606	ssl_read_needs_write_ = true;
				607	SetError(EWOULDBLOCK);
				608	break;
				609	case SSL_ERROR_ZERO_RETURN:
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	610	SetError(EWOULDBLOCK);
				611	// do we need to signal closure?
				612	break;
				613	case SSL_ERROR_SSL:
				614	LogSslError();
				615	Error("SSL_read", (code ? code : -1), false);
				616	break;
				617	default:
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	618	Error("SSL_read", (code ? code : -1), false);
				619	break;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	620	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	621	return SOCKET_ERROR;
				622	}
				623
Stefan Holmer	9131efd	2016-05-23 16:19:26	[diff] [blame]	624	int OpenSSLAdapter::RecvFrom(void* pv,
				625	size_t cb,
				626	SocketAddress* paddr,
				627	int64_t* timestamp) {
Niels Möller	8729d78	2021-08-11 09:22:44	[diff] [blame]	628	if (GetSocket()->GetState() == Socket::CS_CONNECTED) {
Stefan Holmer	9131efd	2016-05-23 16:19:26	[diff] [blame]	629	int ret = Recv(pv, cb, timestamp);
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	630	*paddr = GetRemoteAddress();
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	631	return ret;
				632	}
				633
				634	SetError(ENOTCONN);
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	635	return SOCKET_ERROR;
				636	}
				637
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	638	int OpenSSLAdapter::Close() {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	639	Cleanup();
Mirko Bonadei	2d2c294	2020-04-10 22:01:43	[diff] [blame]	640	state_ = SSL_NONE;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	641	return AsyncSocketAdapter::Close();
				642	}
				643
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	644	Socket::ConnState OpenSSLAdapter::GetState() const {
Niels Möller	8729d78	2021-08-11 09:22:44	[diff] [blame]	645	ConnState state = GetSocket()->GetState();
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	646	if ((state == CS_CONNECTED) &&
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	647	((state_ == SSL_WAIT) \|\| (state_ == SSL_CONNECTING))) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	648	state = CS_CONNECTING;
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	649	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	650	return state;
				651	}
				652
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	653	bool OpenSSLAdapter::IsResumedSession() {
				654	return (ssl_ && SSL_session_reused(ssl_) == 1);
				655	}
				656
				657	void OpenSSLAdapter::OnMessage(Message* msg) {
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	658	if (MSG_TIMEOUT == msg->message_id) {
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	659	RTC_LOG(LS_INFO) << "DTLS timeout expired";
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	660	DTLSv1_handle_timeout(ssl_);
				661	ContinueSSL();
				662	}
				663	}
				664
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	665	void OpenSSLAdapter::OnConnectEvent(Socket* socket) {
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	666	RTC_LOG(LS_INFO) << "OpenSSLAdapter::OnConnectEvent";
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	667	if (state_ != SSL_WAIT) {
nisse	ede5da4	2017-01-12 13:15:36	[diff] [blame]	668	RTC_DCHECK(state_ == SSL_NONE);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	669	AsyncSocketAdapter::OnConnectEvent(socket);
				670	return;
				671	}
				672
				673	state_ = SSL_CONNECTING;
				674	if (int err = BeginSSL()) {
				675	AsyncSocketAdapter::OnCloseEvent(socket, err);
				676	}
				677	}
				678
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	679	void OpenSSLAdapter::OnReadEvent(Socket* socket) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	680	if (state_ == SSL_NONE) {
				681	AsyncSocketAdapter::OnReadEvent(socket);
				682	return;
				683	}
				684
				685	if (state_ == SSL_CONNECTING) {
				686	if (int err = ContinueSSL()) {
				687	Error("ContinueSSL", err);
				688	}
				689	return;
				690	}
				691
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	692	if (state_ != SSL_CONNECTED) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	693	return;
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	694	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	695
				696	// Don't let ourselves go away during the callbacks
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	697	// PRefPtr<OpenSSLAdapter> lock(this); // TODO(benwright): fix this
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	698	if (ssl_write_needs_read_) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	699	AsyncSocketAdapter::OnWriteEvent(socket);
				700	}
				701
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	702	AsyncSocketAdapter::OnReadEvent(socket);
				703	}
				704
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	705	void OpenSSLAdapter::OnWriteEvent(Socket* socket) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	706	if (state_ == SSL_NONE) {
				707	AsyncSocketAdapter::OnWriteEvent(socket);
				708	return;
				709	}
				710
				711	if (state_ == SSL_CONNECTING) {
				712	if (int err = ContinueSSL()) {
				713	Error("ContinueSSL", err);
				714	}
				715	return;
				716	}
				717
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	718	if (state_ != SSL_CONNECTED) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	719	return;
Benjamin Wright	243cabe	2018-10-16 08:55:28	[diff] [blame]	720	}
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	721
				722	// Don't let ourselves go away during the callbacks
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	723	// PRefPtr<OpenSSLAdapter> lock(this); // TODO(benwright): fix this
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	724
Yves Gerey	665174f	2018-06-19 13:03:05	[diff] [blame]	725	if (ssl_read_needs_write_) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	726	AsyncSocketAdapter::OnReadEvent(socket);
				727	}
				728
deadbeef	ed3b986	2017-06-02 17:33:16	[diff] [blame]	729	// If a previous SSL_write failed due to the underlying socket being blocked,
				730	// this will attempt finishing the write operation.
				731	if (!pending_data_.empty()) {
				732	int error;
				733	if (DoSslWrite(pending_data_.data(), pending_data_.size(), &error) ==
				734	static_cast<int>(pending_data_.size())) {
				735	pending_data_.Clear();
				736	}
				737	}
				738
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	739	AsyncSocketAdapter::OnWriteEvent(socket);
				740	}
				741
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	742	void OpenSSLAdapter::OnCloseEvent(Socket* socket, int err) {
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	743	RTC_LOG(LS_INFO) << "OpenSSLAdapter::OnCloseEvent(" << err << ")";
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	744	AsyncSocketAdapter::OnCloseEvent(socket, err);
				745	}
				746
Benjamin Wright	9201d1a	2018-04-05 19:12:26	[diff] [blame]	747	bool OpenSSLAdapter::SSLPostConnectionCheck(SSL* ssl, const std::string& host) {
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	748	bool is_valid_cert_name =
				749	openssl::VerifyPeerCertMatchesHost(ssl, host) &&
				750	(SSL_get_verify_result(ssl) == X509_V_OK \|\| custom_cert_verifier_status_);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	751
Sergey Silkin	9c147dd	2018-09-12 10:45:38	[diff] [blame]	752	if (!is_valid_cert_name && ignore_bad_cert_) {
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	753	RTC_DLOG(LS_WARNING) << "Other TLS post connection checks failed. "
Sergey Silkin	9c147dd	2018-09-12 10:45:38	[diff] [blame]	754	"ignore_bad_cert_ set to true. Overriding name "
				755	"verification failure!";
Benjamin Wright	9201d1a	2018-04-05 19:12:26	[diff] [blame]	756	is_valid_cert_name = true;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	757	}
Benjamin Wright	9201d1a	2018-04-05 19:12:26	[diff] [blame]	758	return is_valid_cert_name;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	759	}
				760
tfarina	a41ab93	2015-10-30 23:08:48	[diff] [blame]	761	#if !defined(NDEBUG)
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	762
				763	// We only use this for tracing and so it is only needed in debug mode
				764
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	765	void OpenSSLAdapter::SSLInfoCallback(const SSL* s, int where, int ret) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	766	const char* str = "undefined";
				767	int w = where & ~SSL_ST_MASK;
				768	if (w & SSL_ST_CONNECT) {
				769	str = "SSL_connect";
				770	} else if (w & SSL_ST_ACCEPT) {
				771	str = "SSL_accept";
				772	}
				773	if (where & SSL_CB_LOOP) {
Harald Alvestrand	977b265	2019-12-12 12:40:50	[diff] [blame]	774	RTC_DLOG(LS_VERBOSE) << str << ":" << SSL_state_string_long(s);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	775	} else if (where & SSL_CB_ALERT) {
				776	str = (where & SSL_CB_READ) ? "read" : "write";
Jonas Olsson	addc380	2018-02-01 08:53:06	[diff] [blame]	777	RTC_DLOG(LS_INFO) << "SSL3 alert " << str << ":"
				778	<< SSL_alert_type_string_long(ret) << ":"
				779	<< SSL_alert_desc_string_long(ret);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	780	} else if (where & SSL_CB_EXIT) {
				781	if (ret == 0) {
Jonas Olsson	addc380	2018-02-01 08:53:06	[diff] [blame]	782	RTC_DLOG(LS_INFO) << str << ":failed in " << SSL_state_string_long(s);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	783	} else if (ret < 0) {
Jonas Olsson	addc380	2018-02-01 08:53:06	[diff] [blame]	784	RTC_DLOG(LS_INFO) << str << ":error in " << SSL_state_string_long(s);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	785	}
				786	}
				787	}
				788
tfarina	a41ab93	2015-10-30 23:08:48	[diff] [blame]	789	#endif
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	790
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	791	#ifdef WEBRTC_USE_CRYPTO_BUFFER_CALLBACK
				792	// static
				793	enum ssl_verify_result_t OpenSSLAdapter::SSLVerifyCallback(SSL* ssl,
				794	uint8_t* out_alert) {
				795	// Get our stream pointer from the SSL context.
				796	OpenSSLAdapter* stream =
				797	reinterpret_cast<OpenSSLAdapter*>(SSL_get_app_data(ssl));
				798
				799	ssl_verify_result_t ret = stream->SSLVerifyInternal(ssl, out_alert);
				800
				801	// Should only be used for debugging and development.
				802	if (ret != ssl_verify_ok && stream->ignore_bad_cert_) {
				803	RTC_DLOG(LS_WARNING) << "Ignoring cert error while verifying cert chain";
				804	return ssl_verify_ok;
				805	}
				806
				807	return ret;
				808	}
				809
				810	enum ssl_verify_result_t OpenSSLAdapter::SSLVerifyInternal(SSL* ssl,
				811	uint8_t* out_alert) {
				812	if (ssl_cert_verifier_ == nullptr) {
				813	RTC_LOG(LS_WARNING) << "Built-in trusted root certificates disabled but no "
				814	"SSL verify callback provided.";
				815	return ssl_verify_invalid;
				816	}
				817
				818	RTC_LOG(LS_INFO) << "Invoking SSL Verify Callback.";
				819	const STACK_OF(CRYPTO_BUFFER)* chain = SSL_get0_peer_certificates(ssl);
				820	if (sk_CRYPTO_BUFFER_num(chain) == 0) {
				821	RTC_LOG(LS_ERROR) << "Peer certificate chain empty?";
				822	return ssl_verify_invalid;
				823	}
				824
				825	BoringSSLCertificate cert(bssl::UpRef(sk_CRYPTO_BUFFER_value(chain, 0)));
				826	if (!ssl_cert_verifier_->Verify(cert)) {
				827	RTC_LOG(LS_WARNING) << "Failed to verify certificate using custom callback";
				828	return ssl_verify_invalid;
				829	}
				830
				831	custom_cert_verifier_status_ = true;
				832	RTC_LOG(LS_INFO) << "Validated certificate using custom callback";
				833	return ssl_verify_ok;
				834	}
				835	#else // WEBRTC_USE_CRYPTO_BUFFER_CALLBACK
Harald Alvestrand	b32650e	2021-09-10 08:03:22	[diff] [blame]	836	int OpenSSLAdapter::SSLVerifyCallback(int status, X509_STORE_CTX* store) {
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	837	// Get our stream pointer from the store
				838	SSL* ssl = reinterpret_cast<SSL*>(
				839	X509_STORE_CTX_get_ex_data(store, SSL_get_ex_data_X509_STORE_CTX_idx()));
				840
				841	OpenSSLAdapter* stream =
				842	reinterpret_cast<OpenSSLAdapter*>(SSL_get_app_data(ssl));
Harald Alvestrand	b32650e	2021-09-10 08:03:22	[diff] [blame]	843	// Update status with the custom verifier.
				844	// Status is unchanged if verification fails.
				845	status = stream->SSLVerifyInternal(status, ssl, store);
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	846
				847	// Should only be used for debugging and development.
Harald Alvestrand	b32650e	2021-09-10 08:03:22	[diff] [blame]	848	if (!status && stream->ignore_bad_cert_) {
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	849	RTC_DLOG(LS_WARNING) << "Ignoring cert error while verifying cert chain";
				850	return 1;
				851	}
				852
Harald Alvestrand	b32650e	2021-09-10 08:03:22	[diff] [blame]	853	return status;
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	854	}
				855
Taylor Brandstetter	bd917a1	2021-09-14 22:22:41	[diff] [blame]	856	int OpenSSLAdapter::SSLVerifyInternal(int previous_status,
Harald Alvestrand	b32650e	2021-09-10 08:03:22	[diff] [blame]	857	SSL* ssl,
				858	X509_STORE_CTX* store) {
tfarina	a41ab93	2015-10-30 23:08:48	[diff] [blame]	859	#if !defined(NDEBUG)
Taylor Brandstetter	bd917a1	2021-09-14 22:22:41	[diff] [blame]	860	if (!previous_status) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	861	char data[256];
				862	X509* cert = X509_STORE_CTX_get_current_cert(store);
				863	int depth = X509_STORE_CTX_get_error_depth(store);
				864	int err = X509_STORE_CTX_get_error(store);
				865
Jonas Olsson	addc380	2018-02-01 08:53:06	[diff] [blame]	866	RTC_DLOG(LS_INFO) << "Error with certificate at depth: " << depth;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	867	X509_NAME_oneline(X509_get_issuer_name(cert), data, sizeof(data));
Jonas Olsson	addc380	2018-02-01 08:53:06	[diff] [blame]	868	RTC_DLOG(LS_INFO) << " issuer = " << data;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	869	X509_NAME_oneline(X509_get_subject_name(cert), data, sizeof(data));
Jonas Olsson	addc380	2018-02-01 08:53:06	[diff] [blame]	870	RTC_DLOG(LS_INFO) << " subject = " << data;
				871	RTC_DLOG(LS_INFO) << " err = " << err << ":"
				872	<< X509_verify_cert_error_string(err);
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	873	}
				874	#endif
Taylor Brandstetter	bd917a1	2021-09-14 22:22:41	[diff] [blame]	875	// `ssl_cert_verifier_` is used to override errors; if there is no error
				876	// there is no reason to call it.
				877	if (previous_status \|\| ssl_cert_verifier_ == nullptr) {
				878	return previous_status;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	879	}
				880
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	881	RTC_LOG(LS_INFO) << "Invoking SSL Verify Callback.";
				882	#ifdef OPENSSL_IS_BORINGSSL
				883	// Convert X509 to CRYPTO_BUFFER.
				884	uint8_t* data = nullptr;
				885	int length = i2d_X509(X509_STORE_CTX_get_current_cert(store), &data);
				886	if (length < 0) {
				887	RTC_LOG(LS_ERROR) << "Failed to encode X509.";
Taylor Brandstetter	bd917a1	2021-09-14 22:22:41	[diff] [blame]	888	return previous_status;
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	889	}
				890	bssl::UniquePtr<uint8_t> owned_data(data);
				891	bssl::UniquePtr<CRYPTO_BUFFER> crypto_buffer(
				892	CRYPTO_BUFFER_new(data, length, openssl::GetBufferPool()));
				893	if (!crypto_buffer) {
				894	RTC_LOG(LS_ERROR) << "Failed to allocate CRYPTO_BUFFER.";
Taylor Brandstetter	bd917a1	2021-09-14 22:22:41	[diff] [blame]	895	return previous_status;
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	896	}
				897	const BoringSSLCertificate cert(std::move(crypto_buffer));
				898	#else
				899	const OpenSSLCertificate cert(X509_STORE_CTX_get_current_cert(store));
				900	#endif
				901	if (!ssl_cert_verifier_->Verify(cert)) {
				902	RTC_LOG(LS_INFO) << "Failed to verify certificate using custom callback";
Taylor Brandstetter	bd917a1	2021-09-14 22:22:41	[diff] [blame]	903	return previous_status;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	904	}
				905
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	906	custom_cert_verifier_status_ = true;
				907	RTC_LOG(LS_INFO) << "Validated certificate using custom callback";
				908	return 1;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	909	}
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	910	#endif // !defined(WEBRTC_USE_CRYPTO_BUFFER_CALLBACK)
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	911
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	912	int OpenSSLAdapter::NewSSLSessionCallback(SSL* ssl, SSL_SESSION* session) {
				913	OpenSSLAdapter* stream =
				914	reinterpret_cast<OpenSSLAdapter*>(SSL_get_app_data(ssl));
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	915	RTC_DCHECK(stream->ssl_session_cache_);
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	916	RTC_LOG(LS_INFO) << "Caching SSL session for " << stream->ssl_host_name_;
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	917	stream->ssl_session_cache_->AddSession(stream->ssl_host_name_, session);
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	918	return 1; // We've taken ownership of the session; OpenSSL shouldn't free it.
				919	}
				920
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	921	SSL_CTX* OpenSSLAdapter::CreateContext(SSLMode mode, bool enable_cache) {
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	922	#ifdef WEBRTC_USE_CRYPTO_BUFFER_CALLBACK
				923	// If X509 objects aren't used, we can use these methods to avoid
				924	// linking the sizable crypto/x509 code.
				925	SSL_CTX* ctx = SSL_CTX_new(mode == SSL_MODE_DTLS ? DTLS_with_buffers_method()
				926	: TLS_with_buffers_method());
				927	#else
David Benjamin	170a4b3	2019-01-30 15:46:16	[diff] [blame]	928	SSL_CTX* ctx =
				929	SSL_CTX_new(mode == SSL_MODE_DTLS ? DTLS_method() : TLS_method());
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	930	#endif
deadbeef	37f5ecf	2017-02-27 22:06:41	[diff] [blame]	931	if (ctx == nullptr) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	932	unsigned long error = ERR_get_error(); // NOLINT: type used by OpenSSL.
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	933	RTC_LOG(LS_WARNING) << "SSL_CTX creation failed: " << '"'
Jonas Olsson	b2b2031	2020-01-14 11:11:31	[diff] [blame]	934	<< ERR_reason_error_string(error)
				935	<< "\" "
				936	"(error="
				937	<< error << ')';
deadbeef	37f5ecf	2017-02-27 22:06:41	[diff] [blame]	938	return nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	939	}
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	940
Mirko Bonadei	b889a20	2018-08-15 09:41:27	[diff] [blame]	941	#ifndef WEBRTC_EXCLUDE_BUILT_IN_SSL_ROOT_CERTS
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	942	if (!openssl::LoadBuiltinSSLRootCertificates(ctx)) {
				943	RTC_LOG(LS_ERROR) << "SSL_CTX creation failed: Failed to load any trusted "
				944	"ssl root certificates.";
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	945	SSL_CTX_free(ctx);
deadbeef	37f5ecf	2017-02-27 22:06:41	[diff] [blame]	946	return nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	947	}
Mirko Bonadei	b889a20	2018-08-15 09:41:27	[diff] [blame]	948	#endif // WEBRTC_EXCLUDE_BUILT_IN_SSL_ROOT_CERTS
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	949
tfarina	a41ab93	2015-10-30 23:08:48	[diff] [blame]	950	#if !defined(NDEBUG)
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	951	SSL_CTX_set_info_callback(ctx, SSLInfoCallback);
				952	#endif
				953
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	954	#ifdef OPENSSL_IS_BORINGSSL
				955	SSL_CTX_set0_buffer_pool(ctx, openssl::GetBufferPool());
				956	#endif
				957
				958	#ifdef WEBRTC_USE_CRYPTO_BUFFER_CALLBACK
				959	SSL_CTX_set_custom_verify(ctx, SSL_VERIFY_PEER, SSLVerifyCallback);
				960	#else
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	961	SSL_CTX_set_verify(ctx, SSL_VERIFY_PEER, SSLVerifyCallback);
Philipp Hancke	ae278d4	2021-06-16 08:26:56	[diff] [blame]	962	// Verify certificate chains up to a depth of 4. This is not
				963	// needed for DTLS-SRTP which uses self-signed certificates
				964	// (so the depth is 0) but is required to support TURN/TLS.
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	965	SSL_CTX_set_verify_depth(ctx, 4);
Taylor Brandstetter	165c618	2020-12-11 00:23:03	[diff] [blame]	966	#endif
Emad Omara	c6de0c9	2017-06-21 23:40:56	[diff] [blame]	967	// Use defaults, but disable HMAC-SHA256 and HMAC-SHA384 ciphers
				968	// (note that SHA256 and SHA384 only select legacy CBC ciphers).
				969	// Additionally disable HMAC-SHA1 ciphers in ECDSA. These are the remaining
David Benjamin	7a46cc5	2021-08-17 20:56:20	[diff] [blame]	970	// CBC-mode ECDSA ciphers. Finally, disable 3DES.
Emad Omara	c6de0c9	2017-06-21 23:40:56	[diff] [blame]	971	SSL_CTX_set_cipher_list(
David Benjamin	7a46cc5	2021-08-17 20:56:20	[diff] [blame]	972	ctx, "ALL:!SHA256:!SHA384:!aPSK:!ECDSA+SHA1:!ADH:!LOW:!EXP:!MD5:!3DES");
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	973
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	974	if (mode == SSL_MODE_DTLS) {
pthatcher@webrtc.org	a9b1ec0	2014-12-29 23:00:14	[diff] [blame]	975	SSL_CTX_set_read_ahead(ctx, 1);
				976	}
				977
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	978	if (enable_cache) {
				979	SSL_CTX_set_session_cache_mode(ctx, SSL_SESS_CACHE_CLIENT);
				980	SSL_CTX_sess_set_new_cb(ctx, &OpenSSLAdapter::NewSSLSessionCallback);
				981	}
				982
henrike@webrtc.org	f048872	2014-05-13 18:00:26	[diff] [blame]	983	return ctx;
				984	}
				985
Diogo Real	1dca9d5	2017-08-29 19:18:32	[diff] [blame]	986	std::string TransformAlpnProtocols(
				987	const std::vector<std::string>& alpn_protocols) {
				988	// Transforms the alpn_protocols list to the format expected by
				989	// Open/BoringSSL. This requires joining the protocols into a single string
				990	// and prepending a character with the size of the protocol string before
				991	// each protocol.
				992	std::string transformed_alpn;
				993	for (const std::string& proto : alpn_protocols) {
				994	if (proto.size() == 0 \|\| proto.size() > 0xFF) {
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	995	RTC_LOG(LS_ERROR) << "OpenSSLAdapter::Error("
Jonas Olsson	b2b2031	2020-01-14 11:11:31	[diff] [blame]	996	"TransformAlpnProtocols received proto with size "
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	997	<< proto.size() << ")";
Diogo Real	1dca9d5	2017-08-29 19:18:32	[diff] [blame]	998	return "";
				999	}
				1000	transformed_alpn += static_cast<char>(proto.size());
				1001	transformed_alpn += proto;
Mirko Bonadei	675513b	2017-11-09 10:09:25	[diff] [blame]	1002	RTC_LOG(LS_VERBOSE) << "TransformAlpnProtocols: Adding proto: " << proto;
Diogo Real	1dca9d5	2017-08-29 19:18:32	[diff] [blame]	1003	}
				1004	return transformed_alpn;
				1005	}
				1006
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	1007	//////////////////////////////////////////////////////////////////////
				1008	// OpenSSLAdapterFactory
				1009	//////////////////////////////////////////////////////////////////////
				1010
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	1011	OpenSSLAdapterFactory::OpenSSLAdapterFactory() = default;
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	1012
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	1013	OpenSSLAdapterFactory::~OpenSSLAdapterFactory() = default;
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	1014
				1015	void OpenSSLAdapterFactory::SetMode(SSLMode mode) {
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	1016	RTC_DCHECK(!ssl_session_cache_);
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	1017	ssl_mode_ = mode;
				1018	}
				1019
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	1020	void OpenSSLAdapterFactory::SetCertVerifier(
				1021	SSLCertificateVerifier* ssl_cert_verifier) {
				1022	RTC_DCHECK(!ssl_session_cache_);
				1023	ssl_cert_verifier_ = ssl_cert_verifier;
				1024	}
				1025
Niels Möller	ac9a288	2021-10-20 13:25:09	[diff] [blame]	1026	void OpenSSLAdapterFactory::SetIdentity(std::unique_ptr<SSLIdentity> identity) {
				1027	RTC_DCHECK(!ssl_session_cache_);
				1028	identity_ = std::move(identity);
				1029	}
				1030
				1031	void OpenSSLAdapterFactory::SetRole(SSLRole role) {
				1032	RTC_DCHECK(!ssl_session_cache_);
				1033	ssl_role_ = role;
				1034	}
				1035
				1036	void OpenSSLAdapterFactory::SetIgnoreBadCert(bool ignore) {
				1037	RTC_DCHECK(!ssl_session_cache_);
				1038	ignore_bad_cert_ = ignore;
				1039	}
				1040
Niels Möller	d0b8879	2021-08-12 08:32:30	[diff] [blame]	1041	OpenSSLAdapter* OpenSSLAdapterFactory::CreateAdapter(Socket* socket) {
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	1042	if (ssl_session_cache_ == nullptr) {
Benjamin Wright	d6f86e8	2018-05-08 20:12:25	[diff] [blame]	1043	SSL_CTX* ssl_ctx = OpenSSLAdapter::CreateContext(ssl_mode_, true);
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	1044	if (ssl_ctx == nullptr) {
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	1045	return nullptr;
				1046	}
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	1047	// The OpenSSLSessionCache will upref the ssl_ctx.
Karl Wiberg	918f50c	2018-07-05 09:40:33	[diff] [blame]	1048	ssl_session_cache_ =
Mirko Bonadei	317a1f0	2019-09-17 15:06:18	[diff] [blame]	1049	std::make_unique<OpenSSLSessionCache>(ssl_mode_, ssl_ctx);
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	1050	SSL_CTX_free(ssl_ctx);
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	1051	}
Niels Möller	ac9a288	2021-10-20 13:25:09	[diff] [blame]	1052	OpenSSLAdapter* ssl_adapter =
				1053	new OpenSSLAdapter(socket, ssl_session_cache_.get(), ssl_cert_verifier_);
				1054	ssl_adapter->SetRole(ssl_role_);
				1055	ssl_adapter->SetIgnoreBadCert(ignore_bad_cert_);
				1056	if (identity_) {
				1057	ssl_adapter->SetIdentity(identity_->Clone());
				1058	}
				1059	return ssl_adapter;
Justin Uberti	1d44550	2017-08-15 00:04:34	[diff] [blame]	1060	}
				1061
Vojin Ilic	f11f0e0	2021-06-30 12:22:11	[diff] [blame]	1062	OpenSSLAdapter::EarlyExitCatcher::EarlyExitCatcher(OpenSSLAdapter& adapter_ptr)
				1063	: adapter_ptr_(adapter_ptr) {}
				1064
				1065	void OpenSSLAdapter::EarlyExitCatcher::disable() {
				1066	disabled_ = true;
				1067	}
				1068
				1069	OpenSSLAdapter::EarlyExitCatcher::~EarlyExitCatcher() {
				1070	if (!disabled_) {
				1071	adapter_ptr_.Cleanup();
				1072	}
				1073	}
				1074
Benjamin Wright	19aab2e	2018-04-05 22:39:06	[diff] [blame]	1075	} // namespace rtc