Add new DTLS-SRTP protection profiles from RFC 7714

Reviewed-by: N Kurt Roeckx <kurt@openssl.org> Reviewed-by: N Matt Caswell <matt@openssl.org>

Add new DTLS-SRTP protection profiles from RFC 7714
Reviewed-by: N Kurt Roeckx <kurt@openssl.org> Reviewed-by: N Matt Caswell <matt@openssl.org>
43e5faa2 · Dmitry Sobinov · Matt Caswell · b7be6d22 · 43e5faa2 · 43e5faa2
显示空白变更内容
内联并排

Showing with 12 addition and 0 deletion

include/openssl/srtp.h include/openssl/srtp.h +4 -0

ssl/d1_srtp.c ssl/d1_srtp.c +8 -0

未找到文件。
--- a/include/openssl/srtp.h
+++ b/include/openssl/srtp.h
@@ -129,6 +129,10 @@ extern "C" {
 # define SRTP_NULL_SHA1_80      0x0005
 # define SRTP_NULL_SHA1_32      0x0006

+/* AEAD SRTP protection profiles from RFC 7714 */
+# define SRTP_AEAD_AES_128_GCM  0x0007
+# define SRTP_AEAD_AES_256_GCM  0x0008
+
 # ifndef OPENSSL_NO_SRTP

 __owur int SSL_CTX_set_tlsext_use_srtp(SSL_CTX *ctx, const char *profiles);

--- a/ssl/d1_srtp.c
+++ b/ssl/d1_srtp.c
@@ -128,6 +128,14 @@ static SRTP_PROTECTION_PROFILE srtp_known_profiles[] = {
     "SRTP_AES128_CM_SHA1_32",
     SRTP_AES128_CM_SHA1_32,
     },
+    {
+     "SRTP_AEAD_AES_128_GCM",
+     SRTP_AEAD_AES_128_GCM
+     },
+    {
+     "SRTP_AEAD_AES_256_GCM",
+     SRTP_AEAD_AES_256_GCM
+     },
    {0}
 };