Merge remote-tracking branch 'origin/main' into pr/mildsunrise/612

pabuhler · pabuhler · commit b2932b378bb1 · 2022-12-15T05:30:42.000+01:00
diff --git a/.github/workflows/android.yml b/.github/workflows/android.yml
@@ -0,0 +1,44 @@
+name: Android CI
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    branches: [ main ]
+
+jobs:
+  build:
+    strategy:
+      fail-fast: false
+
+    runs-on: ubuntu-20.04
+
+    steps:
+
+    - uses: actions/checkout@v2
+
+    - name: Create Build Environment
+      run: cmake -E make_directory ${{github.workspace}}/build
+
+    - name: Configure CMake
+      working-directory: ${{github.workspace}}/build
+      shell: bash
+      run: cmake $GITHUB_WORKSPACE -DCMAKE_TOOLCHAIN_FILE=$ANDROID_NDK/build/cmake/android.toolchain.cmake -DANDROID_ABI=arm64-v8a
+
+    - name: Build
+      working-directory: ${{github.workspace}}/build
+      shell: bash
+      run: cmake --build .
+
+    - name: Create Build Environment (Shared Library)
+      run: cmake -E make_directory ${{github.workspace}}/build_shared
+
+    - name: Configure CMake (Shared Library)
+      working-directory: ${{github.workspace}}/build_shared
+      shell: bash
+      run: cmake $GITHUB_WORKSPACE -DBUILD_SHARED_LIBS=ON -DCMAKE_TOOLCHAIN_FILE=$ANDROID_NDK/build/cmake/android.toolchain.cmake -DANDROID_ABI=arm64-v8a
+
+    - name: Build (Shared Library)
+      working-directory: ${{github.workspace}}/build_shared
+      shell: bash
+      run: cmake --build .
diff --git a/.github/workflows/autotools.yml b/.github/workflows/autotools.yml
@@ -11,7 +11,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        os: [ubuntu-latest, macos-latest]
+        os: [ubuntu-20.04, macos-latest]
         crypto: [internal, openssl, nss]
         include:
           - crypto: internal
@@ -25,11 +25,11 @@ jobs:
 
     steps:
     - name: Setup Ubuntu
-      if: matrix.os == 'ubuntu-latest'
+      if: matrix.os == 'ubuntu-20.04'
       run: sudo apt-get install valgrind
 
     - name: Setup Ubuntu NSS
-      if: matrix.os == 'ubuntu-latest' && matrix.crypto == 'nss'
+      if: matrix.os == 'ubuntu-20.04' && matrix.crypto == 'nss'
       run: |
         sudo apt-get update
         sudo apt-get install libnss3-dev
@@ -54,5 +54,5 @@ jobs:
       run: make runtest
       
     - name: Test Valgrind
-      if:  matrix.os == 'ubuntu-latest'
+      if:  matrix.os == 'ubuntu-20.04'
       run: make runtest-valgrind
diff --git a/.github/workflows/cifuzz.yml b/.github/workflows/cifuzz.yml
@@ -0,0 +1,30 @@
+name: CIFuzz
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    branches: [ main ]
+
+jobs:
+  Fuzzing:
+    runs-on: ubuntu-latest
+    steps:
+    - name: Build Fuzzers
+      id: build
+      uses: google/oss-fuzz/infra/cifuzz/actions/build_fuzzers@master
+      with:
+        oss-fuzz-project-name: 'libsrtp'
+        language: c++
+    - name: Run Fuzzers
+      uses: google/oss-fuzz/infra/cifuzz/actions/run_fuzzers@master
+      with:
+        oss-fuzz-project-name: 'libsrtp'
+        fuzz-seconds: 300
+        language: c++
+    - name: Upload Crash
+      uses: actions/upload-artifact@v3
+      if: failure() && steps.build.outcome == 'success'
+      with:
+        name: artifacts
+        path: ./out/artifacts
diff --git a/.github/workflows/cmake.yml b/.github/workflows/cmake.yml
@@ -11,7 +11,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        os: [ubuntu-latest, macos-latest, windows-latest]
+        os: [ubuntu-20.04, macos-latest, windows-latest]
         crypto: [internal, openssl, nss, mbedtls]
         exclude:
           - os: windows-latest
@@ -37,13 +37,13 @@ jobs:
 
     steps:
     - name: Setup Ubuntu NSS
-      if: matrix.os == 'ubuntu-latest' && matrix.crypto == 'nss'
+      if: matrix.os == 'ubuntu-20.04' && matrix.crypto == 'nss'
       run: |
         sudo apt-get update
         sudo apt-get install libnss3-dev
       
     - name: Setup Ubuntu MbedTLS
-      if:  matrix.os == 'ubuntu-latest' && matrix.crypto == 'mbedtls'
+      if:  matrix.os == 'ubuntu-20.04' && matrix.crypto == 'mbedtls'
       run: sudo apt-get install libmbedtls-dev
     
     - name: Setup macOS OpenSSL
diff --git a/.github/workflows/coverity_scan.yml b/.github/workflows/coverity_scan.yml
@@ -6,7 +6,7 @@ on:
 
 jobs:
   coverity:
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
     steps:
     - uses: actions/checkout@v2
 
diff --git a/.github/workflows/format_check.yml b/.github/workflows/format_check.yml
@@ -8,10 +8,10 @@ on:
 
 jobs:
   format-check:
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
     steps:
       - uses: actions/checkout@v2
       - name: Install Clang Format
-        run: sudo apt install clang-format-10
+        run: sudo apt install clang-format-12
       - name: Run clang format
         run: ./format.sh -d
diff --git a/.github/workflows/fuzzer_build.yml b/.github/workflows/fuzzer_build.yml
@@ -10,7 +10,7 @@ on:
 
 jobs:
   fuzz:
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
     steps:
     - uses: actions/checkout@v2
     
diff --git a/CMakeLists.txt b/CMakeLists.txt
@@ -120,10 +120,12 @@ endif()
 
 if(BUILD_WITH_WARNINGS)
   if(CMAKE_C_COMPILER_ID MATCHES "Clang" OR CMAKE_C_COMPILER_ID MATCHES "GNU")
-    add_compile_options(-Wall -pedantic -Wextra -Werror)
+    set(WARNINGS -Wall -pedantic -Wextra -Werror)
   elseif(MSVC)
-    add_compile_options(/W4 /WX)
+    set(WARNINGS /W4 /WX)
   endif()
+  message(STATUS "Using warnings: ${WARNINGS}")
+  add_compile_options(${WARNINGS})
 endif()
 
 set(SOURCES_C
@@ -248,6 +250,7 @@ add_library(srtp2
   ${REPLAY_SOURCES_C}
   ${SOURCES_H}
 )
+add_library(libSRTP::srtp2 ALIAS srtp2)
 
 set_target_properties(srtp2 PROPERTIES VERSION ${CMAKE_PROJECT_VERSION})
 
diff --git a/README.md b/README.md
@@ -220,11 +220,21 @@ will want to read the Security Considerations section of [RFC 3711](https://tool
 In addition, it is important that you read and understand the
 terms outlined in the [License and Disclaimer](#license-and-disclaimer) section.
 
+This library also supports the AES-GCM Authenticated Encryption methods
+described in [RFC 7714](https://tools.ietf.org/html/rfc7714)
+
 --------------------------------------------------------------------------------
 
 <a name="implementation-notes"></a>
 ## Implementation Notes
 
+  * It is possible to configure which 3rd party (ie openssl/nss/etc) crypto backend
+    libSRTP will be built with. If no 3rd party backend is set then libSRTP provides
+    an internal implementation of AES and Sha1. The internal implementation only
+    supports AES-128 & AES-256, so to use AES-192 or the AES-GCM group of ciphers a
+    3rd party crypto backend must be configured. For this and performance reasons it
+    is highly recommended to use a 3rd party crypto backend.
+  
   * The `srtp_protect()` function assumes that the buffer holding the
     rtp packet has enough storage allocated that the authentication
     tag can be written to the end of that packet. If this assumption
diff --git a/crypto/cipher/cipher.c b/crypto/cipher/cipher.c
@@ -632,24 +632,47 @@ uint64_t srtp_cipher_bits_per_second(srtp_cipher_t *c,
     clock_t timer;
     unsigned char *enc_buf;
     unsigned int len = octets_in_buffer;
+    uint32_t tag_len = SRTP_MAX_TAG_LEN;
+    unsigned char aad[4] = { 0, 0, 0, 0 };
+    uint32_t aad_len = 4;
 
-    enc_buf = (unsigned char *)srtp_crypto_alloc(octets_in_buffer);
+    enc_buf = (unsigned char *)srtp_crypto_alloc(octets_in_buffer + tag_len);
     if (enc_buf == NULL) {
         return 0; /* indicate bad parameters by returning null */
     }
     /* time repeated trials */
     v128_set_to_zero(&nonce);
     timer = clock();
     for (i = 0; i < num_trials; i++, nonce.v32[3] = i) {
+        // Set IV
         if (srtp_cipher_set_iv(c, (uint8_t *)&nonce, srtp_direction_encrypt) !=
             srtp_err_status_ok) {
             srtp_crypto_free(enc_buf);
             return 0;
         }
+
+        // Set (empty) AAD if supported by the cipher
+        if (c->type->set_aad) {
+            if (srtp_cipher_set_aad(c, aad, aad_len) != srtp_err_status_ok) {
+                srtp_crypto_free(enc_buf);
+                return 0;
+            }
+        }
+
+        // Encrypt the buffer
         if (srtp_cipher_encrypt(c, enc_buf, &len) != srtp_err_status_ok) {
             srtp_crypto_free(enc_buf);
             return 0;
         }
+
+        // Get tag if supported by the cipher
+        if (c->type->get_tag) {
+            if (srtp_cipher_get_tag(c, (uint8_t *)(enc_buf + len), &tag_len) !=
+                srtp_err_status_ok) {
+                srtp_crypto_free(enc_buf);
+                return 0;
+            }
+        }
     }
     timer = clock() - timer;
 
diff --git a/crypto/kernel/crypto_kernel.c b/crypto/kernel/crypto_kernel.c
@@ -60,7 +60,7 @@ srtp_debug_module_t srtp_mod_crypto_kernel = {
 
 /* crypto_kernel is a global variable, the only one of its datatype */
 
-srtp_crypto_kernel_t crypto_kernel = {
+static srtp_crypto_kernel_t crypto_kernel = {
     srtp_crypto_kernel_state_insecure, /* start off in insecure state */
     NULL,                              /* no cipher types yet         */
     NULL,                              /* no auth types yet           */
@@ -69,7 +69,7 @@ srtp_crypto_kernel_t crypto_kernel = {
 
 #define MAX_RNG_TRIALS 25
 
-srtp_err_status_t srtp_crypto_kernel_init()
+srtp_err_status_t srtp_crypto_kernel_init(void)
 {
     srtp_err_status_t status;
 
@@ -168,7 +168,7 @@ srtp_err_status_t srtp_crypto_kernel_init()
     return srtp_err_status_ok;
 }
 
-srtp_err_status_t srtp_crypto_kernel_status()
+srtp_err_status_t srtp_crypto_kernel_status(void)
 {
     srtp_err_status_t status;
     srtp_kernel_cipher_type_t *ctype = crypto_kernel.cipher_type_list;
@@ -209,7 +209,7 @@ srtp_err_status_t srtp_crypto_kernel_status()
     return srtp_err_status_ok;
 }
 
-srtp_err_status_t srtp_crypto_kernel_list_debug_modules()
+srtp_err_status_t srtp_crypto_kernel_list_debug_modules(void)
 {
     srtp_kernel_debug_module_t *dm = crypto_kernel.debug_module_list;
 
@@ -228,7 +228,7 @@ srtp_err_status_t srtp_crypto_kernel_list_debug_modules()
     return srtp_err_status_ok;
 }
 
-srtp_err_status_t srtp_crypto_kernel_shutdown()
+srtp_err_status_t srtp_crypto_kernel_shutdown(void)
 {
     /*
      * free dynamic memory used in crypto_kernel at present
diff --git a/crypto/kernel/err.c b/crypto/kernel/err.c
@@ -54,7 +54,7 @@
 
 static FILE *srtp_err_file = NULL;
 
-srtp_err_status_t srtp_err_reporting_init()
+srtp_err_status_t srtp_err_reporting_init(void)
 {
 #ifdef ERR_REPORTING_STDOUT
     srtp_err_file = stdout;
diff --git a/crypto/math/datatypes.c b/crypto/math/datatypes.c
@@ -62,7 +62,7 @@
 /* include space for null terminator */
 static char bit_string[MAX_PRINT_STRING_LEN + 1];
 
-uint8_t srtp_nibble_to_hex_char(uint8_t nibble)
+static uint8_t srtp_nibble_to_hex_char(uint8_t nibble)
 {
     static const char buf[16] = { '0', '1', '2', '3', '4', '5', '6', '7',
                                   '8', '9', 'a', 'b', 'c', 'd', 'e', 'f' };
diff --git a/format.sh b/format.sh
@@ -7,7 +7,7 @@
 # assumes git tree is clean when reporting status
 
 if [ -z "${CLANG_FORMAT}" ]; then
-    CLANG_FORMAT=clang-format-10
+    CLANG_FORMAT=clang-format-12
 fi
 
 a=`git ls-files '*.h' '*.c'`
diff --git a/srtp.def b/srtp.def
@@ -17,6 +17,9 @@ srtp_crypto_policy_set_aes_cm_128_hmac_sha1_32
 srtp_crypto_policy_set_aes_cm_128_null_auth
 srtp_crypto_policy_set_null_cipher_hmac_sha1_80
 srtp_crypto_policy_set_null_cipher_hmac_null
+srtp_crypto_policy_set_aes_cm_192_hmac_sha1_80
+srtp_crypto_policy_set_aes_cm_192_hmac_sha1_32
+srtp_crypto_policy_set_aes_cm_192_null_auth
 srtp_crypto_policy_set_aes_cm_256_hmac_sha1_80
 srtp_crypto_policy_set_aes_cm_256_hmac_sha1_32
 srtp_crypto_policy_set_aes_cm_256_null_auth
diff --git a/srtp/srtp.c b/srtp/srtp.c
diff --git a/test/replay_driver.c b/test/replay_driver.c
diff --git a/test/rtp.c b/test/rtp.c
diff --git a/test/srtp_driver.c b/test/srtp_driver.c
diff --git a/test/test_srtp.c b/test/test_srtp.c
