summaryrefslogtreecommitdiffstats
path: root/remoting/protocol/jingle_stream_connector.cc
diff options
context:
space:
mode:
Diffstat (limited to 'remoting/protocol/jingle_stream_connector.cc')
-rw-r--r--remoting/protocol/jingle_stream_connector.cc193
1 files changed, 181 insertions, 12 deletions
diff --git a/remoting/protocol/jingle_stream_connector.cc b/remoting/protocol/jingle_stream_connector.cc
index 650c119..cc671e2 100644
--- a/remoting/protocol/jingle_stream_connector.cc
+++ b/remoting/protocol/jingle_stream_connector.cc
@@ -4,6 +4,7 @@
#include "remoting/protocol/jingle_stream_connector.h"
+#include "crypto/hmac.h"
#include "jingle/glue/channel_socket_adapter.h"
#include "jingle/glue/pseudotcp_adapter.h"
#include "net/base/cert_status_flags.h"
@@ -21,6 +22,12 @@ namespace protocol {
namespace {
+// Size of the HMAC-SHA-1 authentication digest.
+const int kAuthDigestLength = 20;
+
+// Labels for use when exporting the SSL master keys.
+const char kClientSslExporterLabel[] = "EXPORTER-remoting-channel-auth-client";
+
// Value is choosen to balance the extra latency against the reduced
// load due to ACK traffic.
const int kTcpAckDelayMilliseconds = 10;
@@ -30,6 +37,9 @@ net::SSLClientSocket* CreateSSLClientSocket(
net::StreamSocket* socket, const std::string& der_cert,
net::CertVerifier* cert_verifier) {
net::SSLConfig ssl_config;
+ // If False Start is enabled then the Connect callback will fire before
+ // the cipher has been set up, and ExportKeyingMaterial will fail.
+ ssl_config.false_start_enabled = false;
// Certificate provided by the host doesn't need authority.
net::SSLConfig::CertAndStatus cert_and_status;
@@ -59,10 +69,16 @@ JingleStreamConnector::JingleStreamConnector(
initiator_(false),
local_private_key_(NULL),
raw_channel_(NULL),
+ ssl_client_socket_(NULL),
+ ssl_server_socket_(NULL),
ALLOW_THIS_IN_INITIALIZER_LIST(tcp_connect_callback_(
this, &JingleStreamConnector::OnTCPConnect)),
ALLOW_THIS_IN_INITIALIZER_LIST(ssl_connect_callback_(
- this, &JingleStreamConnector::OnSSLConnect)) {
+ this, &JingleStreamConnector::OnSSLConnect)),
+ ALLOW_THIS_IN_INITIALIZER_LIST(auth_write_callback_(
+ this, &JingleStreamConnector::OnAuthBytesWritten)),
+ ALLOW_THIS_IN_INITIALIZER_LIST(auth_read_callback_(
+ this, &JingleStreamConnector::OnAuthBytesRead)) {
}
JingleStreamConnector::~JingleStreamConnector() {
@@ -115,11 +131,11 @@ bool JingleStreamConnector::EstablishSSLConnection() {
cert_verifier_.reset(new net::CertVerifier());
// Create client SSL socket.
- net::SSLClientSocket* ssl_client_socket = CreateSSLClientSocket(
+ ssl_client_socket_ = CreateSSLClientSocket(
socket_.release(), remote_cert_, cert_verifier_.get());
- socket_.reset(ssl_client_socket);
+ socket_.reset(ssl_client_socket_);
- result = ssl_client_socket->Connect(&ssl_connect_callback_);
+ result = ssl_client_socket_->Connect(&ssl_connect_callback_);
} else {
scoped_refptr<net::X509Certificate> cert =
net::X509Certificate::CreateFromBytes(
@@ -131,13 +147,13 @@ bool JingleStreamConnector::EstablishSSLConnection() {
// Create server SSL socket.
net::SSLConfig ssl_config;
+ ssl_config.false_start_enabled = false;
- net::SSLServerSocket* ssl_server_socket =
- net::CreateSSLServerSocket(socket_.release(), cert,
- local_private_key_, ssl_config);
- socket_.reset(ssl_server_socket);
+ ssl_server_socket_ = net::CreateSSLServerSocket(
+ socket_.release(), cert, local_private_key_, ssl_config);
+ socket_.reset(ssl_server_socket_);
- result = ssl_server_socket->Handshake(&ssl_connect_callback_);
+ result = ssl_server_socket_->Handshake(&ssl_connect_callback_);
}
if (result == net::ERR_IO_PENDING) {
@@ -175,18 +191,171 @@ void JingleStreamConnector::OnSSLConnect(int result) {
}
DCHECK(socket_->IsConnected());
+ AuthenticateChannel();
+}
+
+void JingleStreamConnector::AuthenticateChannel() {
+ DCHECK(CalledOnValidThread());
+ if (initiator_) {
+ // Allocate a buffer to write the authentication digest.
+ scoped_refptr<net::IOBuffer> write_buf =
+ new net::IOBuffer(kAuthDigestLength);
+ auth_write_buf_ = new net::DrainableIOBuffer(write_buf,
+ kAuthDigestLength);
+
+ // Generate the auth digest to send.
+ if (!GetAuthBytes(kClientSslExporterLabel, auth_write_buf_->data())) {
+ NotifyError();
+ return;
+ }
+
+ DoAuthWrite();
+ } else {
+ // Read an authentication digest.
+ auth_read_buf_ = new net::GrowableIOBuffer();
+ auth_read_buf_->SetCapacity(kAuthDigestLength);
+ DoAuthRead();
+ }
+}
+
+void JingleStreamConnector::DoAuthWrite() {
+ while (true) {
+ int result = socket_->Write(auth_write_buf_,
+ auth_write_buf_->BytesRemaining(),
+ &auth_write_callback_);
+ if (result == net::ERR_IO_PENDING)
+ break;
+ if (!HandleAuthBytesWritten(result))
+ break;
+ }
+}
+
+void JingleStreamConnector::DoAuthRead() {
+ while (true) {
+ int result = socket_->Read(auth_read_buf_,
+ auth_read_buf_->RemainingCapacity(),
+ &auth_read_callback_);
+ if (result == net::ERR_IO_PENDING)
+ break;
+ if (!HandleAuthBytesRead(result))
+ break;
+ }
+}
+
+void JingleStreamConnector::OnAuthBytesWritten(int result) {
+ if (HandleAuthBytesWritten(result))
+ DoAuthWrite();
+}
+
+void JingleStreamConnector::OnAuthBytesRead(int result) {
+ if (HandleAuthBytesRead(result))
+ DoAuthRead();
+}
+
+bool JingleStreamConnector::HandleAuthBytesWritten(int result) {
+ DCHECK(CalledOnValidThread());
+
+ if (result <= 0) {
+ LOG(ERROR) << "Error writing authentication: " << result;
+ NotifyError();
+ return false;
+ }
+
+ auth_write_buf_->DidConsume(result);
+ if (auth_write_buf_->BytesRemaining() > 0)
+ return true;
+
NotifyDone(socket_.release());
+ return false;
+}
+
+bool JingleStreamConnector::HandleAuthBytesRead(int read_result) {
+ DCHECK(CalledOnValidThread());
+
+ if (read_result <= 0) {
+ LOG(ERROR) << "Error reading authentication: " << read_result;
+ NotifyError();
+ return false;
+ }
+
+ auth_read_buf_->set_offset(auth_read_buf_->offset() + read_result);
+ if (auth_read_buf_->RemainingCapacity() > 0)
+ return true;
+
+ if (!VerifyAuthBytes(
+ kClientSslExporterLabel,
+ auth_read_buf_->StartOfBuffer())) {
+ NotifyError();
+ return false;
+ }
+
+ NotifyDone(socket_.release());
+ return false;
+}
+
+bool JingleStreamConnector::VerifyAuthBytes(const char* label,
+ const char* auth_bytes) {
+ char expected[kAuthDigestLength];
+ if (!GetAuthBytes(label, expected))
+ return false;
+ // Compare the received and expected digests in fixed time, to limit the
+ // scope for timing attacks.
+ uint8 result = 0;
+ for (unsigned i = 0; i < sizeof(expected); i++) {
+ result |= auth_bytes[i] ^ expected[i];
+ }
+ if (result != 0) {
+ LOG(ERROR) << "Mismatched authentication";
+ return false;
+ }
+ return true;
+}
+
+bool JingleStreamConnector::GetAuthBytes(const char* label,
+ char* out_bytes) {
+ // Fetch keying material from the socket.
+ unsigned char key_material[kAuthDigestLength];
+ int result;
+ if (initiator_) {
+ result = ssl_client_socket_->ExportKeyingMaterial(
+ kClientSslExporterLabel, "", key_material, sizeof(key_material));
+ } else {
+ result = ssl_server_socket_->ExportKeyingMaterial(
+ kClientSslExporterLabel, "", key_material, sizeof(key_material));
+ }
+ if (result != net::OK) {
+ LOG(ERROR) << "Error fetching keying material: " << result;
+ return false;
+ }
+
+ // Generate auth digest based on the keying material and shared secret.
+ crypto::HMAC response(crypto::HMAC::SHA1);
+ if (!response.Init(session_->shared_secret())) {
+ NOTREACHED() << "HMAC::Init failed";
+ return false;
+ }
+ base::StringPiece message(reinterpret_cast<const char*>(key_material),
+ sizeof(key_material));
+ if (!response.Sign(
+ message,
+ reinterpret_cast<unsigned char*>(out_bytes),
+ kAuthDigestLength)) {
+ NOTREACHED() << "HMAC::Sign failed";
+ return false;
+ }
+
+ return true;
}
void JingleStreamConnector::NotifyDone(net::StreamSocket* socket) {
- callback_.Run(name_, socket);
session_->OnChannelConnectorFinished(name_, this);
+ callback_.Run(name_, socket);
+ delete this;
}
void JingleStreamConnector::NotifyError() {
socket_.reset();
- callback_.Run(name_, NULL);
- session_->OnChannelConnectorFinished(name_, this);
+ NotifyDone(NULL);
}
} // namespace protocol
generated by cgit v1.1 at 2025-02-05 04:45:45 +0000