Handle ICE credentials.

4f6328c1 · Ghislain MARY · c59fff59 · 4f6328c1 · 4f6328c1 · 4f6328c1
Commit 4f6328c1 authored Jul 09, 2012 by Ghislain MARY
Hide whitespace changes
Inline Side-by-side

Showing with 147 additions and 4 deletions

include/mediastreamer2/ice.h include/mediastreamer2/ice.h +33 -1

src/ice.c src/ice.c +110 -3

tests/mediastream.c tests/mediastream.c +4 -0

No files found.
--- a/include/mediastreamer2/ice.h
+++ b/include/mediastreamer2/ice.h
@@ -53,6 +53,10 @@ typedef enum {

 typedef struct _IceSession {
 	MSList *streams;	/**< List of IceChecklist structures */
+	char *local_ufrag;
+	char *local_pwd;
+	char *remote_ufrag;
+	char *remote_pwd;
 	IceRole role;
 	uint64_t tie_breaker;
 	uint8_t max_connectivity_checks;
@@ -92,6 +96,8 @@ typedef struct _IcePairFoundation {

 typedef struct _IceCheckList {
 	IceSession *session;
+	char *remote_ufrag;
+	char *remote_pwd;
 	MSList *local_candidates;	/**< List of IceCandidate structures */
 	MSList *remote_candidates;	/**< List of IceCandidate structures */
 	MSList *pairs;	/**< List of IceCandidatePair structures */
@@ -113,14 +119,38 @@ IceCheckList * ice_check_list_new(void);

 void ice_check_list_destroy(IceCheckList *cl);

+const char * ice_session_local_ufrag(IceSession *session);
+
+const char * ice_session_local_pwd(IceSession *session);
+
+const char * ice_session_remote_ufrag(IceSession *session);
+
+const char * ice_session_remote_pwd(IceSession *session);
+
 void ice_session_set_role(IceSession *session, IceRole role);

+/**
+ * This function SHOULD not be used. However, it is used by mediastream for testing purpose to
+ * apply the same credentials for local and remote agents because the SDP exchange is bypassed.
+ */
+void ice_session_set_local_credentials(IceSession *session, const char *ufrag, const char *pwd);
+
+void ice_session_set_remote_credentials(IceSession *session, const char *ufrag, const char *pwd);
+
 void ice_session_set_max_connectivity_checks(IceSession *session, uint8_t max_connectivity_checks);

 void ice_session_add_check_list(IceSession *session, IceCheckList *cl);

 IceCheckListState ice_check_list_state(IceCheckList *cl);

+const char * ice_check_list_local_ufrag(IceCheckList *cl);
+
+const char * ice_check_list_local_pwd(IceCheckList *cl);
+
+const char * ice_check_list_remote_ufrag(IceCheckList *cl);
+
+const char * ice_check_list_remote_pwd(IceCheckList *cl);
+
 /**
 * This function is not to be used directly. The ice_gather_candidates() function SHOULD be used instead.
 * However, it is used by mediastream for testing purpose since it does not use gathering.
@@ -142,11 +172,13 @@ void ice_pair_candidates(IceCheckList *cl, bool_t first_media_stream);
 void ice_check_list_process(IceCheckList *cl, RtpSession *session);

 /**
- * This function SHOULD not to be used. However, it is used by mediastream for testing purpose to
+ * This function SHOULD not be used. However, it is used by mediastream for testing purpose to
 * work around the fact that it does not use candidates gathering.
 */
 void ice_set_base_for_srflx_candidates(IceCheckList *cl);

+void ice_dump_session(IceSession *session);
+
 void ice_dump_candidates(IceCheckList *cl);

 void ice_dump_candidate_pairs(IceCheckList *cl);

--- a/src/ice.c
+++ b/src/ice.c
@@ -36,6 +36,8 @@ Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
 #define ICE_MIN_COMPONENTID		1
 #define ICE_MAX_COMPONENTID		256
 #define ICE_INVALID_COMPONENTID		0
+#define ICE_MAX_UFRAG_LEN		256
+#define ICE_MAX_PWD_LEN			256


 typedef struct _Type_ComponentID {
@@ -51,10 +53,18 @@ typedef struct _Foundations_Pair_Priority_ComponentID {
 } Foundations_Pair_Priority_ComponentID;


+static void ice_set_credentials(char **ufrag, char **pwd, const char *ufrag_str, const char *pwd_str);
+
+
 /******************************************************************************
 * CONSTANTS DEFINITIONS                                                      *
 *****************************************************************************/

+static const char * const role_values[] = {
+	"Controlling",	/* IR_Controlling */
+	"Controlled",	/* IR_Controlled */
+};
+
 static const char * const candidate_type_values[] = {
 	"host",		/* ICT_HostCandidate */
 	"srflx",	/* ICT_ServerReflexiveCandidate */
@@ -91,6 +101,14 @@ static void ice_session_init(IceSession *session)
 	session->role = IR_Controlling;
 	session->tie_breaker = (random() << 32) | (random() & 0xffffffff);
 	session->max_connectivity_checks = ICE_MAX_NB_CANDIDATE_PAIRS;
+	session->local_ufrag = ms_malloc(9);
+	sprintf(session->local_ufrag, "%08lx", random());
+	session->local_ufrag[8] = '\0';
+	session->local_pwd = ms_malloc(25);
+	sprintf(session->local_pwd, "%08lx%08lx%08lx", random(), random(), random());
+	session->local_pwd[24] = '\0';
+	session->remote_ufrag = NULL;
+	session->remote_pwd = NULL;
 }

 IceSession * ice_session_new(void)
@@ -106,6 +124,10 @@ IceSession * ice_session_new(void)

 void ice_session_destroy(IceSession *session)
 {
+	if (session->local_ufrag) ms_free(session->local_ufrag);
+	if (session->local_pwd) ms_free(session->local_pwd);
+	if (session->remote_ufrag) ms_free(session->remote_ufrag);
+	if (session->remote_pwd) ms_free(session->remote_pwd);
 	ms_list_free(session->streams);
 	ms_free(session);
 }
@@ -118,6 +140,7 @@ void ice_session_destroy(IceSession *session)
 static void ice_check_list_init(IceCheckList *cl)
 {
 	cl->session = NULL;
+	cl->remote_ufrag = cl->remote_pwd = NULL;
 	cl->local_candidates = cl->remote_candidates = cl->pairs = cl->foundations = NULL;
 	cl->state = ICL_Running;
 	cl->foundation_generator = 1;
@@ -151,6 +174,8 @@ static void ice_free_candidate(IceCandidate *candidate)

 void ice_check_list_destroy(IceCheckList *cl)
 {
+	if (cl->remote_ufrag) ms_free(cl->remote_ufrag);
+	if (cl->remote_pwd) ms_free(cl->remote_pwd);
 	ms_list_for_each(cl->foundations, (void (*)(void*))ice_free_pair_foundation);
 	ms_list_for_each(cl->pairs, (void (*)(void*))ice_free_candidate_pair);
 	ms_list_for_each(cl->remote_candidates, (void (*)(void*))ice_free_candidate);
@@ -172,16 +197,75 @@ IceCheckListState ice_check_list_state(IceCheckList *cl)
 	return cl->state;
 }

+const char * ice_check_list_local_ufrag(IceCheckList *cl)
+{
+	/* Do not handle media specific ufrag for the moment, so use the session local ufrag. */
+	return cl->session->local_ufrag;
+}
+
+const char * ice_check_list_local_pwd(IceCheckList *cl)
+{
+	/* Do not handle media specific pwd for the moment, so use the session local pwd. */
+	return cl->session->local_pwd;
+}
+
+const char * ice_check_list_remote_ufrag(IceCheckList *cl)
+{
+	if (cl->remote_ufrag) return cl->remote_ufrag;
+	else return cl->session->remote_ufrag;
+}
+
+const char * ice_check_list_remote_pwd(IceCheckList *cl)
+{
+	if (cl->remote_pwd) return cl->remote_pwd;
+	else return cl->session->remote_pwd;
+}
+
+void ice_check_list_set_remote_credentials(IceCheckList *cl, const char *ufrag, const char *pwd)
+{
+	ice_set_credentials(&cl->remote_ufrag, &cl->remote_pwd, ufrag, pwd);
+}
+

 /******************************************************************************
 * SESSION ACCESSORS                                                          *
 *****************************************************************************/

+const char * ice_session_local_ufrag(IceSession *session)
+{
+	return session->local_ufrag;
+}
+
+const char * ice_session_local_pwd(IceSession *session)
+{
+	return session->local_pwd;
+}
+
+const char * ice_session_remote_ufrag(IceSession *session)
+{
+	return session->remote_ufrag;
+}
+
+const char * ice_session_remote_pwd(IceSession *session)
+{
+	return session->remote_pwd;
+}
+
 void ice_session_set_role(IceSession *session, IceRole role)
 {
 	session->role = role;
 }

+void ice_session_set_local_credentials(IceSession *session, const char *ufrag, const char *pwd)
+{
+	ice_set_credentials(&session->local_ufrag, &session->local_pwd, ufrag, pwd);
+}
+
+void ice_session_set_remote_credentials(IceSession *session, const char *ufrag, const char *pwd)
+{
+	ice_set_credentials(&session->remote_ufrag, &session->remote_pwd, ufrag, pwd);
+}
+
 void ice_session_set_max_connectivity_checks(IceSession *session, uint8_t max_connectivity_checks)
 {
 	session->max_connectivity_checks = max_connectivity_checks;
@@ -639,10 +723,10 @@ void ice_check_list_process(IceCheckList *cl, RtpSession *rtp_session)
 		IceCandidatePair *pair = (IceCandidatePair*)list->data;
 		ms_message("Need to send a STUN request for candidate pair %p", pair);

-		// TODO: Fill in real username and password
-		snprintf(username.value, sizeof(username.value) - 1, "RFRAG:LFRAG");
+		// TODO: Check size of username.value because "RFRAG:LFRAG" can be up to 513 bytes!
+		snprintf(username.value, sizeof(username.value) - 1, "%s:%s", ice_check_list_remote_ufrag(cl), ice_check_list_local_ufrag(cl));
 		username.sizeValue = strlen(username.value);
-		snprintf(password.value, sizeof(password.value) - 1, "RPASS");
+		snprintf(password.value, sizeof(password.value) - 1, "%s", ice_check_list_remote_pwd(cl));
 		password.sizeValue = strlen(password.value);

 		ice_send_stun_request(pair, cl->session, rtp_session, &username, &password);
@@ -654,6 +738,21 @@ void ice_check_list_process(IceCheckList *cl, RtpSession *rtp_session)
 * OTHER FUNCTIONS                                                            *
 *****************************************************************************/

+static void ice_set_credentials(char **ufrag, char **pwd, const char *ufrag_str, const char *pwd_str)
+{
+	size_t len_ufrag = MIN(strlen(ufrag_str), ICE_MAX_UFRAG_LEN);
+	size_t len_pwd = MIN(strlen(pwd_str), ICE_MAX_PWD_LEN);
+
+	if (*ufrag) ms_free(*ufrag);
+	if (*pwd) ms_free(*pwd);
+	*ufrag = ms_malloc(len_ufrag + 1);
+	strncpy(*ufrag, ufrag_str, len_ufrag);
+	(*ufrag)[len_ufrag] = '\0';
+	*pwd = ms_malloc(len_pwd + 1);
+	strncpy(*pwd, pwd_str, len_pwd);
+	(*pwd)[len_pwd] = '\0';
+}
+
 static int ice_find_host_candidate(const IceCandidate *candidate, const uint16_t *componentID)
 {
 	if ((candidate->type == ICT_HostCandidate) && (candidate->componentID == *componentID)) return 0;
@@ -685,6 +784,14 @@ void ice_set_base_for_srflx_candidates(IceCheckList *cl)
 * DEBUG FUNCTIONS                                                            *
 *****************************************************************************/

+void ice_dump_session(IceSession *session)
+{
+	ms_debug("Session:");
+	ms_debug("\trole=%s tie-breaker=%016llx\n"
+		"\tlocal_ufrag=%s local_pwd=%s\n\tremote_ufrag=%s remote_pwd=%s",
+		role_values[session->role], session->tie_breaker, session->local_ufrag, session->local_pwd, session->remote_ufrag, session->remote_pwd);
+}
+
 static void ice_dump_candidate(IceCandidate *candidate, const char * const prefix)
 {
 	ms_debug("%s[%p]: %stype=%s ip=%s port=%u componentID=%d priority=%u foundation=%s base=%p", prefix, candidate,

--- a/tests/mediastream.c
+++ b/tests/mediastream.c
@@ -551,6 +551,10 @@ void setup_media_streams(MediastreamDatas* args) {
 	ms_filter_enable_statistics(TRUE);
 	ms_filter_reset_statistics();
 	args->ice_session=ice_session_new();
+	ice_session_set_remote_credentials(args->ice_session,"1234","1234567890abcdef123456");
+	// ICE local credentials are assigned when creating the ICE session, but force them here to simplify testing
+	ice_session_set_local_credentials(args->ice_session,"1234","1234567890abcdef123456");
+	ice_dump_session(args->ice_session);

 	signal(SIGINT,stop_handler);
 	args->pt=rtp_profile_get_payload(args->profile,args->payload);