Главная Обзор Помощь
Регистрация Вход
zhouyuhuan
/
Cloudpods
1
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Ветка: feature/cloudpods
Ветки Метки
Cloudpods
/
backend
/
vendor
/
github.com
/
pion
/
srtp
/
v2
/
key_derivation.go

key_derivation.go 2.1 KB
Постоянная ссылка История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 
  1. package srtp
    2. 

  2. 

  3. import (
    4. 

  4. 	"crypto/aes"
    5. 

  5. 	"encoding/binary"
    6. 

  6. )
    7. 

  7. 

  8. func aesCmKeyDerivation(label byte, masterKey, masterSalt []byte, indexOverKdr int, outLen int) ([]byte, error) {
    9. 

  9. 	if indexOverKdr != 0 {
    10. 

  10. 		// 24-bit "index DIV kdr" must be xored to prf input.
    11. 

  11. 		return nil, errNonZeroKDRNotSupported
    12. 

  12. 	}
    13. 

  13. 

  14. 	// https://tools.ietf.org/html/rfc3711#appendix-B.3
    15. 

  15. 	// The input block for AES-CM is generated by exclusive-oring the master salt with the
    16. 

  16. 	// concatenation of the encryption key label 0x00 with (index DIV kdr),
    17. 

  17. 	// - index is 'rollover count' and DIV is 'divided by'
    18. 

  18. 

  19. 	nMasterKey := len(masterKey)
    20. 

  20. 	nMasterSalt := len(masterSalt)
    21. 

  21. 

  22. 	prfIn := make([]byte, nMasterKey)
    23. 

  23. 	copy(prfIn[:nMasterSalt], masterSalt)
    24. 

  24. 

  25. 	prfIn[7] ^= label
    26. 

  26. 

  27. 	// The resulting value is then AES encrypted using the master key to get the cipher key.
    28. 

  28. 	block, err := aes.NewCipher(masterKey)
    29. 

  29. 	if err != nil {
    30. 

  30. 		return nil, err
    31. 

  31. 	}
    32. 

  32. 

  33. 	out := make([]byte, ((outLen+nMasterKey)/nMasterKey)*nMasterKey)
    34. 

  34. 	var i uint16
    35. 

  35. 	for n := 0; n < outLen; n += nMasterKey {
    36. 

  36. 		binary.BigEndian.PutUint16(prfIn[nMasterKey-2:], i)
    37. 

  37. 		block.Encrypt(out[n:n+nMasterKey], prfIn)
    38. 

  38. 		i++
    39. 

  39. 	}
    40. 

  40. 	return out[:outLen], nil
    41. 

  41. }
    42. 

  42. 

  43. // Generate IV https://tools.ietf.org/html/rfc3711#section-4.1.1
    44. 

  44. // where the 128-bit integer value IV SHALL be defined by the SSRC, the
    45. 

  45. // SRTP packet index i, and the SRTP session salting key k_s, as below.
    46. 

  46. // - ROC = a 32-bit unsigned rollover counter (ROC), which records how many
    47. 

  47. // -       times the 16-bit RTP sequence number has been reset to zero after
    48. 

  48. // -       passing through 65,535
    49. 

  49. // i = 2^16 * ROC + SEQ
    50. 

  50. // IV = (salt*2 ^ 16) | (ssrc*2 ^ 64) | (i*2 ^ 16)
    51. 

  51. func generateCounter(sequenceNumber uint16, rolloverCounter uint32, ssrc uint32, sessionSalt []byte) (counter [16]byte) {
    52. 

  52. 	copy(counter[:], sessionSalt)
    53. 

  53. 

  54. 	counter[4] ^= byte(ssrc >> 24)
    55. 

  55. 	counter[5] ^= byte(ssrc >> 16)
    56. 

  56. 	counter[6] ^= byte(ssrc >> 8)
    57. 

  57. 	counter[7] ^= byte(ssrc)
    58. 

  58. 	counter[8] ^= byte(rolloverCounter >> 24)
    59. 

  59. 	counter[9] ^= byte(rolloverCounter >> 16)
    60. 

  60. 	counter[10] ^= byte(rolloverCounter >> 8)
    61. 

  61. 	counter[11] ^= byte(rolloverCounter)
    62. 

  62. 	counter[12] ^= byte(sequenceNumber >> 8)
    63. 

  63. 	counter[13] ^= byte(sequenceNumber)
    64. 

  64. 

  65. 	return counter
    66. 

  66. }
    67.