Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / webrtc / fae640003cf028477819309777ecd29a74c25eff / . / pc / srtp_transport_unittest.cc
blob: fa095bf39928be94733b411df670d9f1797cb386 [file] [log] [blame]
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]1/*
2 * Copyright 2017 The WebRTC project authors. All Rights Reserved.
3 *
4 * Use of this source code is governed by a BSD-style license
5 * that can be found in the LICENSE file in the root of the source
6 * tree. An additional intellectual property rights grant can be found
7 * in the file PATENTS. All contributing project authors may
8 * be found in the AUTHORS file in the root of the source tree.
9 */
10
Jonas Olssona4d87372019-07-05 19:08:33 +0200[diff] [blame]11#include "pc/srtp_transport.h"
12
Yves Gerey3e707812018-11-28 16:47:49 +0100[diff] [blame]13#include <string.h>
Jonas Olssona4d87372019-07-05 19:08:33 +0200[diff] [blame]14
Mirko Bonadei317a1f02019-09-17 17:06:18 +0200[diff] [blame]15#include <memory>
Yves Gerey3e707812018-11-28 16:47:49 +0100[diff] [blame]16#include <set>
Steve Anton36b29d12017-10-30 09:57:42 -0700[diff] [blame]17#include <vector>
18
Yves Gerey3e707812018-11-28 16:47:49 +0100[diff] [blame]19#include "call/rtp_demuxer.h"
Steve Anton10542f22019-01-11 09:11:00 -0800[diff] [blame]20#include "media/base/fake_rtp.h"
21#include "p2p/base/dtls_transport_internal.h"
22#include "p2p/base/fake_packet_transport.h"
Steve Anton10542f22019-01-11 09:11:00 -0800[diff] [blame]23#include "pc/test/rtp_transport_test_util.h"
24#include "pc/test/srtp_test_util.h"
25#include "rtc_base/async_packet_socket.h"
26#include "rtc_base/byte_order.h"
Yves Gerey3e707812018-11-28 16:47:49 +0100[diff] [blame]27#include "rtc_base/checks.h"
Steve Anton10542f22019-01-11 09:11:00 -0800[diff] [blame]28#include "rtc_base/ssl_stream_adapter.h"
Yves Gerey3e707812018-11-28 16:47:49 +0100[diff] [blame]29#include "rtc_base/third_party/sigslot/sigslot.h"
30#include "test/gtest.h"
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]31
32using rtc::kTestKey1;
33using rtc::kTestKey2;
34using rtc::kTestKeyLen;
35using rtc::SRTP_AEAD_AES_128_GCM;
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]36
37namespace webrtc {
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]38static const uint8_t kTestKeyGcm128_1[] = "ABCDEFGHIJKLMNOPQRSTUVWXYZ12";
39static const uint8_t kTestKeyGcm128_2[] = "21ZYXWVUTSRQPONMLKJIHGFEDCBA";
40static const int kTestKeyGcm128Len = 28; // 128 bits key + 96 bits salt.
41static const uint8_t kTestKeyGcm256_1[] =
42 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqr";
43static const uint8_t kTestKeyGcm256_2[] =
44 "rqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA";
45static const int kTestKeyGcm256Len = 44; // 256 bits key + 96 bits salt.
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]46
Mirko Bonadei6a489f22019-04-09 15:11:12 +0200[diff] [blame]47class SrtpTransportTest : public ::testing::Test, public sigslot::has_slots<> {
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]48 protected:
49 SrtpTransportTest() {
50 bool rtcp_mux_enabled = true;
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]51
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]52 rtp_packet_transport1_ =
Mirko Bonadei317a1f02019-09-17 17:06:18 +0200[diff] [blame]53 std::make_unique<rtc::FakePacketTransport>("fake_packet_transport1");
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]54 rtp_packet_transport2_ =
Mirko Bonadei317a1f02019-09-17 17:06:18 +0200[diff] [blame]55 std::make_unique<rtc::FakePacketTransport>("fake_packet_transport2");
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]56
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]57 bool asymmetric = false;
58 rtp_packet_transport1_->SetDestination(rtp_packet_transport2_.get(),
59 asymmetric);
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]60
Mirko Bonadei317a1f02019-09-17 17:06:18 +0200[diff] [blame]61 srtp_transport1_ = std::make_unique<SrtpTransport>(rtcp_mux_enabled);
62 srtp_transport2_ = std::make_unique<SrtpTransport>(rtcp_mux_enabled);
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]63
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]64 srtp_transport1_->SetRtpPacketTransport(rtp_packet_transport1_.get());
65 srtp_transport2_->SetRtpPacketTransport(rtp_packet_transport2_.get());
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]66
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]67 srtp_transport1_->SignalRtcpPacketReceived.connect(
68 &rtp_sink1_, &TransportObserver::OnRtcpPacketReceived);
69 srtp_transport2_->SignalRtcpPacketReceived.connect(
70 &rtp_sink2_, &TransportObserver::OnRtcpPacketReceived);
71
72 RtpDemuxerCriteria demuxer_criteria;
73 // 0x00 is the payload type used in kPcmuFrame.
74 demuxer_criteria.payload_types = {0x00};
75
76 srtp_transport1_->RegisterRtpDemuxerSink(demuxer_criteria, &rtp_sink1_);
77 srtp_transport2_->RegisterRtpDemuxerSink(demuxer_criteria, &rtp_sink2_);
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]78 }
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]79
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]80 ~SrtpTransportTest() {
81 if (srtp_transport1_) {
82 srtp_transport1_->UnregisterRtpDemuxerSink(&rtp_sink1_);
83 }
84 if (srtp_transport2_) {
85 srtp_transport2_->UnregisterRtpDemuxerSink(&rtp_sink2_);
86 }
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]87 }
88
89 // With external auth enabled, SRTP doesn't write the auth tag and
90 // unprotect would fail. Check accessing the information about the
91 // tag instead, similar to what the actual code would do that relies
92 // on external auth.
93 void TestRtpAuthParams(SrtpTransport* transport, const std::string& cs) {
94 int overhead;
95 EXPECT_TRUE(transport->GetSrtpOverhead(&overhead));
96 switch (rtc::SrtpCryptoSuiteFromName(cs)) {
97 case rtc::SRTP_AES128_CM_SHA1_32:
98 EXPECT_EQ(32 / 8, overhead); // 32-bit tag.
99 break;
100 case rtc::SRTP_AES128_CM_SHA1_80:
101 EXPECT_EQ(80 / 8, overhead); // 80-bit tag.
102 break;
103 default:
104 RTC_NOTREACHED();
105 break;
106 }
107
108 uint8_t* auth_key = nullptr;
109 int key_len = 0;
110 int tag_len = 0;
111 EXPECT_TRUE(transport->GetRtpAuthParams(&auth_key, &key_len, &tag_len));
112 EXPECT_NE(nullptr, auth_key);
113 EXPECT_EQ(160 / 8, key_len); // Length of SHA-1 is 160 bits.
114 EXPECT_EQ(overhead, tag_len);
115 }
116
117 void TestSendRecvRtpPacket(const std::string& cipher_suite_name) {
118 size_t rtp_len = sizeof(kPcmuFrame);
119 size_t packet_size = rtp_len + rtc::rtp_auth_tag_len(cipher_suite_name);
120 rtc::Buffer rtp_packet_buffer(packet_size);
121 char* rtp_packet_data = rtp_packet_buffer.data<char>();
122 memcpy(rtp_packet_data, kPcmuFrame, rtp_len);
123 // In order to be able to run this test function multiple times we can not
124 // use the same sequence number twice. Increase the sequence number by one.
125 rtc::SetBE16(reinterpret_cast<uint8_t*>(rtp_packet_data) + 2,
126 ++sequence_number_);
127 rtc::CopyOnWriteBuffer rtp_packet1to2(rtp_packet_data, rtp_len,
128 packet_size);
129 rtc::CopyOnWriteBuffer rtp_packet2to1(rtp_packet_data, rtp_len,
130 packet_size);
131
132 char original_rtp_data[sizeof(kPcmuFrame)];
133 memcpy(original_rtp_data, rtp_packet_data, rtp_len);
134
135 rtc::PacketOptions options;
136 // Send a packet from |srtp_transport1_| to |srtp_transport2_| and verify
137 // that the packet can be successfully received and decrypted.
138 ASSERT_TRUE(srtp_transport1_->SendRtpPacket(&rtp_packet1to2, options,
139 cricket::PF_SRTP_BYPASS));
140 if (srtp_transport1_->IsExternalAuthActive()) {
141 TestRtpAuthParams(srtp_transport1_.get(), cipher_suite_name);
142 } else {
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]143 ASSERT_TRUE(rtp_sink2_.last_recv_rtp_packet().data());
144 EXPECT_EQ(0, memcmp(rtp_sink2_.last_recv_rtp_packet().data(),
145 original_rtp_data, rtp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]146 // Get the encrypted packet from underneath packet transport and verify
147 // the data is actually encrypted.
148 auto fake_rtp_packet_transport = static_cast<rtc::FakePacketTransport*>(
149 srtp_transport1_->rtp_packet_transport());
Steve Anton36b29d12017-10-30 09:57:42 -0700[diff] [blame]150 EXPECT_NE(0, memcmp(fake_rtp_packet_transport->last_sent_packet()->data(),
151 original_rtp_data, rtp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]152 }
153
154 // Do the same thing in the opposite direction;
155 ASSERT_TRUE(srtp_transport2_->SendRtpPacket(&rtp_packet2to1, options,
156 cricket::PF_SRTP_BYPASS));
157 if (srtp_transport2_->IsExternalAuthActive()) {
158 TestRtpAuthParams(srtp_transport2_.get(), cipher_suite_name);
159 } else {
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]160 ASSERT_TRUE(rtp_sink1_.last_recv_rtp_packet().data());
161 EXPECT_EQ(0, memcmp(rtp_sink1_.last_recv_rtp_packet().data(),
162 original_rtp_data, rtp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]163 auto fake_rtp_packet_transport = static_cast<rtc::FakePacketTransport*>(
164 srtp_transport2_->rtp_packet_transport());
Steve Anton36b29d12017-10-30 09:57:42 -0700[diff] [blame]165 EXPECT_NE(0, memcmp(fake_rtp_packet_transport->last_sent_packet()->data(),
166 original_rtp_data, rtp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]167 }
168 }
169
170 void TestSendRecvRtcpPacket(const std::string& cipher_suite_name) {
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]171 size_t rtcp_len = sizeof(::kRtcpReport);
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]172 size_t packet_size =
173 rtcp_len + 4 + rtc::rtcp_auth_tag_len(cipher_suite_name);
174 rtc::Buffer rtcp_packet_buffer(packet_size);
175 char* rtcp_packet_data = rtcp_packet_buffer.data<char>();
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]176 memcpy(rtcp_packet_data, ::kRtcpReport, rtcp_len);
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]177
178 rtc::CopyOnWriteBuffer rtcp_packet1to2(rtcp_packet_data, rtcp_len,
179 packet_size);
180 rtc::CopyOnWriteBuffer rtcp_packet2to1(rtcp_packet_data, rtcp_len,
181 packet_size);
182
183 rtc::PacketOptions options;
184 // Send a packet from |srtp_transport1_| to |srtp_transport2_| and verify
185 // that the packet can be successfully received and decrypted.
186 ASSERT_TRUE(srtp_transport1_->SendRtcpPacket(&rtcp_packet1to2, options,
187 cricket::PF_SRTP_BYPASS));
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]188 ASSERT_TRUE(rtp_sink2_.last_recv_rtcp_packet().data());
189 EXPECT_EQ(0, memcmp(rtp_sink2_.last_recv_rtcp_packet().data(),
190 rtcp_packet_data, rtcp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]191 // Get the encrypted packet from underneath packet transport and verify the
192 // data is actually encrypted.
193 auto fake_rtp_packet_transport = static_cast<rtc::FakePacketTransport*>(
194 srtp_transport1_->rtp_packet_transport());
Steve Anton36b29d12017-10-30 09:57:42 -0700[diff] [blame]195 EXPECT_NE(0, memcmp(fake_rtp_packet_transport->last_sent_packet()->data(),
196 rtcp_packet_data, rtcp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]197
198 // Do the same thing in the opposite direction;
199 ASSERT_TRUE(srtp_transport2_->SendRtcpPacket(&rtcp_packet2to1, options,
200 cricket::PF_SRTP_BYPASS));
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]201 ASSERT_TRUE(rtp_sink1_.last_recv_rtcp_packet().data());
202 EXPECT_EQ(0, memcmp(rtp_sink1_.last_recv_rtcp_packet().data(),
203 rtcp_packet_data, rtcp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]204 fake_rtp_packet_transport = static_cast<rtc::FakePacketTransport*>(
205 srtp_transport2_->rtp_packet_transport());
Steve Anton36b29d12017-10-30 09:57:42 -0700[diff] [blame]206 EXPECT_NE(0, memcmp(fake_rtp_packet_transport->last_sent_packet()->data(),
207 rtcp_packet_data, rtcp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]208 }
209
210 void TestSendRecvPacket(bool enable_external_auth,
211 int cs,
212 const uint8_t* key1,
213 int key1_len,
214 const uint8_t* key2,
215 int key2_len,
216 const std::string& cipher_suite_name) {
217 EXPECT_EQ(key1_len, key2_len);
218 EXPECT_EQ(cipher_suite_name, rtc::SrtpCryptoSuiteToName(cs));
219 if (enable_external_auth) {
220 srtp_transport1_->EnableExternalAuth();
221 srtp_transport2_->EnableExternalAuth();
222 }
Zhi Huangc99b6c72017-11-10 16:44:46 -0800[diff] [blame]223 std::vector<int> extension_ids;
224 EXPECT_TRUE(srtp_transport1_->SetRtpParams(
225 cs, key1, key1_len, extension_ids, cs, key2, key2_len, extension_ids));
226 EXPECT_TRUE(srtp_transport2_->SetRtpParams(
227 cs, key2, key2_len, extension_ids, cs, key1, key1_len, extension_ids));
228 EXPECT_TRUE(srtp_transport1_->SetRtcpParams(
229 cs, key1, key1_len, extension_ids, cs, key2, key2_len, extension_ids));
230 EXPECT_TRUE(srtp_transport2_->SetRtcpParams(
231 cs, key2, key2_len, extension_ids, cs, key1, key1_len, extension_ids));
Zhi Huange830e682018-03-30 10:48:35 -0700[diff] [blame]232 EXPECT_TRUE(srtp_transport1_->IsSrtpActive());
233 EXPECT_TRUE(srtp_transport2_->IsSrtpActive());
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]234 if (rtc::IsGcmCryptoSuite(cs)) {
235 EXPECT_FALSE(srtp_transport1_->IsExternalAuthActive());
236 EXPECT_FALSE(srtp_transport2_->IsExternalAuthActive());
237 } else if (enable_external_auth) {
238 EXPECT_TRUE(srtp_transport1_->IsExternalAuthActive());
239 EXPECT_TRUE(srtp_transport2_->IsExternalAuthActive());
240 }
241 TestSendRecvRtpPacket(cipher_suite_name);
242 TestSendRecvRtcpPacket(cipher_suite_name);
243 }
244
245 void TestSendRecvPacketWithEncryptedHeaderExtension(
246 const std::string& cs,
247 const std::vector<int>& encrypted_header_ids) {
248 size_t rtp_len = sizeof(kPcmuFrameWithExtensions);
249 size_t packet_size = rtp_len + rtc::rtp_auth_tag_len(cs);
250 rtc::Buffer rtp_packet_buffer(packet_size);
251 char* rtp_packet_data = rtp_packet_buffer.data<char>();
252 memcpy(rtp_packet_data, kPcmuFrameWithExtensions, rtp_len);
253 // In order to be able to run this test function multiple times we can not
254 // use the same sequence number twice. Increase the sequence number by one.
255 rtc::SetBE16(reinterpret_cast<uint8_t*>(rtp_packet_data) + 2,
256 ++sequence_number_);
257 rtc::CopyOnWriteBuffer rtp_packet1to2(rtp_packet_data, rtp_len,
258 packet_size);
259 rtc::CopyOnWriteBuffer rtp_packet2to1(rtp_packet_data, rtp_len,
260 packet_size);
261
262 char original_rtp_data[sizeof(kPcmuFrameWithExtensions)];
263 memcpy(original_rtp_data, rtp_packet_data, rtp_len);
264
265 rtc::PacketOptions options;
266 // Send a packet from |srtp_transport1_| to |srtp_transport2_| and verify
267 // that the packet can be successfully received and decrypted.
268 ASSERT_TRUE(srtp_transport1_->SendRtpPacket(&rtp_packet1to2, options,
269 cricket::PF_SRTP_BYPASS));
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]270 ASSERT_TRUE(rtp_sink2_.last_recv_rtp_packet().data());
271 EXPECT_EQ(0, memcmp(rtp_sink2_.last_recv_rtp_packet().data(),
272 original_rtp_data, rtp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]273 // Get the encrypted packet from underneath packet transport and verify the
274 // data and header extension are actually encrypted.
275 auto fake_rtp_packet_transport = static_cast<rtc::FakePacketTransport*>(
276 srtp_transport1_->rtp_packet_transport());
Steve Anton36b29d12017-10-30 09:57:42 -0700[diff] [blame]277 EXPECT_NE(0, memcmp(fake_rtp_packet_transport->last_sent_packet()->data(),
278 original_rtp_data, rtp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]279 CompareHeaderExtensions(
280 reinterpret_cast<const char*>(
281 fake_rtp_packet_transport->last_sent_packet()->data()),
282 fake_rtp_packet_transport->last_sent_packet()->size(),
283 original_rtp_data, rtp_len, encrypted_header_ids, false);
284
285 // Do the same thing in the opposite direction;
286 ASSERT_TRUE(srtp_transport2_->SendRtpPacket(&rtp_packet2to1, options,
287 cricket::PF_SRTP_BYPASS));
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]288 ASSERT_TRUE(rtp_sink1_.last_recv_rtp_packet().data());
289 EXPECT_EQ(0, memcmp(rtp_sink1_.last_recv_rtp_packet().data(),
290 original_rtp_data, rtp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]291 fake_rtp_packet_transport = static_cast<rtc::FakePacketTransport*>(
292 srtp_transport2_->rtp_packet_transport());
Steve Anton36b29d12017-10-30 09:57:42 -0700[diff] [blame]293 EXPECT_NE(0, memcmp(fake_rtp_packet_transport->last_sent_packet()->data(),
294 original_rtp_data, rtp_len));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]295 CompareHeaderExtensions(
296 reinterpret_cast<const char*>(
297 fake_rtp_packet_transport->last_sent_packet()->data()),
298 fake_rtp_packet_transport->last_sent_packet()->size(),
299 original_rtp_data, rtp_len, encrypted_header_ids, false);
300 }
301
302 void TestSendRecvEncryptedHeaderExtension(int cs,
303 const uint8_t* key1,
304 int key1_len,
305 const uint8_t* key2,
306 int key2_len,
307 const std::string& cs_name) {
308 std::vector<int> encrypted_headers;
Zhi Huangf2d7beb2017-11-20 14:35:11 -0800[diff] [blame]309 encrypted_headers.push_back(kHeaderExtensionIDs[0]);
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]310 // Don't encrypt header ids 2 and 3.
Zhi Huangf2d7beb2017-11-20 14:35:11 -0800[diff] [blame]311 encrypted_headers.push_back(kHeaderExtensionIDs[1]);
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]312 EXPECT_EQ(key1_len, key2_len);
313 EXPECT_EQ(cs_name, rtc::SrtpCryptoSuiteToName(cs));
Zhi Huangc99b6c72017-11-10 16:44:46 -0800[diff] [blame]314 EXPECT_TRUE(srtp_transport1_->SetRtpParams(cs, key1, key1_len,
315 encrypted_headers, cs, key2,
316 key2_len, encrypted_headers));
317 EXPECT_TRUE(srtp_transport2_->SetRtpParams(cs, key2, key2_len,
318 encrypted_headers, cs, key1,
319 key1_len, encrypted_headers));
Zhi Huange830e682018-03-30 10:48:35 -0700[diff] [blame]320 EXPECT_TRUE(srtp_transport1_->IsSrtpActive());
321 EXPECT_TRUE(srtp_transport2_->IsSrtpActive());
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]322 EXPECT_FALSE(srtp_transport1_->IsExternalAuthActive());
323 EXPECT_FALSE(srtp_transport2_->IsExternalAuthActive());
324 TestSendRecvPacketWithEncryptedHeaderExtension(cs_name, encrypted_headers);
325 }
326
327 std::unique_ptr<SrtpTransport> srtp_transport1_;
328 std::unique_ptr<SrtpTransport> srtp_transport2_;
329
330 std::unique_ptr<rtc::FakePacketTransport> rtp_packet_transport1_;
331 std::unique_ptr<rtc::FakePacketTransport> rtp_packet_transport2_;
332
Zhi Huang365381f2018-04-13 16:44:34 -0700[diff] [blame]333 TransportObserver rtp_sink1_;
334 TransportObserver rtp_sink2_;
335
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]336 int sequence_number_ = 0;
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]337};
338
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]339class SrtpTransportTestWithExternalAuth
340 : public SrtpTransportTest,
Mirko Bonadei6a489f22019-04-09 15:11:12 +0200[diff] [blame]341 public ::testing::WithParamInterface<bool> {};
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]342
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]343TEST_P(SrtpTransportTestWithExternalAuth,
344 SendAndRecvPacket_AES_CM_128_HMAC_SHA1_80) {
345 bool enable_external_auth = GetParam();
346 TestSendRecvPacket(enable_external_auth, rtc::SRTP_AES128_CM_SHA1_80,
347 kTestKey1, kTestKeyLen, kTestKey2, kTestKeyLen,
348 rtc::CS_AES_CM_128_HMAC_SHA1_80);
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]349}
350
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]351TEST_F(SrtpTransportTest,
352 SendAndRecvPacketWithHeaderExtension_AES_CM_128_HMAC_SHA1_80) {
353 TestSendRecvEncryptedHeaderExtension(rtc::SRTP_AES128_CM_SHA1_80, kTestKey1,
354 kTestKeyLen, kTestKey2, kTestKeyLen,
355 rtc::CS_AES_CM_128_HMAC_SHA1_80);
356}
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]357
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]358TEST_P(SrtpTransportTestWithExternalAuth,
359 SendAndRecvPacket_AES_CM_128_HMAC_SHA1_32) {
360 bool enable_external_auth = GetParam();
361 TestSendRecvPacket(enable_external_auth, rtc::SRTP_AES128_CM_SHA1_32,
362 kTestKey1, kTestKeyLen, kTestKey2, kTestKeyLen,
363 rtc::CS_AES_CM_128_HMAC_SHA1_32);
364}
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]365
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]366TEST_F(SrtpTransportTest,
367 SendAndRecvPacketWithHeaderExtension_AES_CM_128_HMAC_SHA1_32) {
368 TestSendRecvEncryptedHeaderExtension(rtc::SRTP_AES128_CM_SHA1_32, kTestKey1,
369 kTestKeyLen, kTestKey2, kTestKeyLen,
370 rtc::CS_AES_CM_128_HMAC_SHA1_32);
371}
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]372
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]373TEST_P(SrtpTransportTestWithExternalAuth,
374 SendAndRecvPacket_SRTP_AEAD_AES_128_GCM) {
375 bool enable_external_auth = GetParam();
376 TestSendRecvPacket(enable_external_auth, rtc::SRTP_AEAD_AES_128_GCM,
377 kTestKeyGcm128_1, kTestKeyGcm128Len, kTestKeyGcm128_2,
378 kTestKeyGcm128Len, rtc::CS_AEAD_AES_128_GCM);
379}
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]380
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]381TEST_F(SrtpTransportTest,
382 SendAndRecvPacketWithHeaderExtension_SRTP_AEAD_AES_128_GCM) {
383 TestSendRecvEncryptedHeaderExtension(
384 rtc::SRTP_AEAD_AES_128_GCM, kTestKeyGcm128_1, kTestKeyGcm128Len,
385 kTestKeyGcm128_2, kTestKeyGcm128Len, rtc::CS_AEAD_AES_128_GCM);
386}
387
388TEST_P(SrtpTransportTestWithExternalAuth,
389 SendAndRecvPacket_SRTP_AEAD_AES_256_GCM) {
390 bool enable_external_auth = GetParam();
391 TestSendRecvPacket(enable_external_auth, rtc::SRTP_AEAD_AES_256_GCM,
392 kTestKeyGcm256_1, kTestKeyGcm256Len, kTestKeyGcm256_2,
393 kTestKeyGcm256Len, rtc::CS_AEAD_AES_256_GCM);
394}
395
396TEST_F(SrtpTransportTest,
397 SendAndRecvPacketWithHeaderExtension_SRTP_AEAD_AES_256_GCM) {
398 TestSendRecvEncryptedHeaderExtension(
399 rtc::SRTP_AEAD_AES_256_GCM, kTestKeyGcm256_1, kTestKeyGcm256Len,
400 kTestKeyGcm256_2, kTestKeyGcm256Len, rtc::CS_AEAD_AES_256_GCM);
401}
402
403// Run all tests both with and without external auth enabled.
Mirko Bonadeic84f6612019-01-31 12:20:57 +0100[diff] [blame]404INSTANTIATE_TEST_SUITE_P(ExternalAuth,
405 SrtpTransportTestWithExternalAuth,
406 ::testing::Values(true, false));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]407
408// Test directly setting the params with bogus keys.
409TEST_F(SrtpTransportTest, TestSetParamsKeyTooShort) {
Zhi Huangc99b6c72017-11-10 16:44:46 -0800[diff] [blame]410 std::vector<int> extension_ids;
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]411 EXPECT_FALSE(srtp_transport1_->SetRtpParams(
Zhi Huangc99b6c72017-11-10 16:44:46 -0800[diff] [blame]412 rtc::SRTP_AES128_CM_SHA1_80, kTestKey1, kTestKeyLen - 1, extension_ids,
413 rtc::SRTP_AES128_CM_SHA1_80, kTestKey1, kTestKeyLen - 1, extension_ids));
Zhi Huangcf990f52017-09-22 12:12:30 -0700[diff] [blame]414 EXPECT_FALSE(srtp_transport1_->SetRtcpParams(
Zhi Huangc99b6c72017-11-10 16:44:46 -0800[diff] [blame]415 rtc::SRTP_AES128_CM_SHA1_80, kTestKey1, kTestKeyLen - 1, extension_ids,
416 rtc::SRTP_AES128_CM_SHA1_80, kTestKey1, kTestKeyLen - 1, extension_ids));
zstein398c3fd2017-07-19 13:38:02 -0700[diff] [blame]417}
418
419} // namespace webrtc