status-go/vendor/github.com/pion/srtp/v2/srtcp.go

// SPDX-FileCopyrightText: 2023 The Pion community <https://pion.ly>
// SPDX-License-Identifier: MIT

package srtp

import (
	"encoding/binary"
	"fmt"

	"github.com/pion/rtcp"
)

const maxSRTCPIndex = 0x7FFFFFFF

func (c *Context) decryptRTCP(dst, encrypted []byte) ([]byte, error) {
	out := allocateIfMismatch(dst, encrypted)

	authTagLen, err := c.cipher.rtcpAuthTagLen()
	if err != nil {
		return nil, err
	}
	aeadAuthTagLen, err := c.cipher.aeadAuthTagLen()
	if err != nil {
		return nil, err
	}
	tailOffset := len(encrypted) - (authTagLen + srtcpIndexSize)

	if tailOffset < aeadAuthTagLen {
		return nil, fmt.Errorf("%w: %d", errTooShortRTCP, len(encrypted))
	} else if isEncrypted := encrypted[tailOffset] >> 7; isEncrypted == 0 {
		return out, nil
	}

	index := c.cipher.getRTCPIndex(encrypted)
	ssrc := binary.BigEndian.Uint32(encrypted[4:])

	s := c.getSRTCPSSRCState(ssrc)
	markAsValid, ok := s.replayDetector.Check(uint64(index))
	if !ok {
		return nil, &duplicatedError{Proto: "srtcp", SSRC: ssrc, Index: index}
	}

	out, err = c.cipher.decryptRTCP(out, encrypted, index, ssrc)
	if err != nil {
		return nil, err
	}

	markAsValid()
	return out, nil
}

// DecryptRTCP decrypts a buffer that contains a RTCP packet
func (c *Context) DecryptRTCP(dst, encrypted []byte, header *rtcp.Header) ([]byte, error) {
	if header == nil {
		header = &rtcp.Header{}
	}

	if err := header.Unmarshal(encrypted); err != nil {
		return nil, err
	}

	return c.decryptRTCP(dst, encrypted)
}

func (c *Context) encryptRTCP(dst, decrypted []byte) ([]byte, error) {
	ssrc := binary.BigEndian.Uint32(decrypted[4:])
	s := c.getSRTCPSSRCState(ssrc)

	if s.srtcpIndex >= maxSRTCPIndex {
		// ... when 2^48 SRTP packets or 2^31 SRTCP packets have been secured with the same key
		// (whichever occurs before), the key management MUST be called to provide new master key(s)
		// (previously stored and used keys MUST NOT be used again), or the session MUST be terminated.
		// https://www.rfc-editor.org/rfc/rfc3711#section-9.2
		return nil, errExceededMaxPackets
	}

	// We roll over early because MSB is used for marking as encrypted
	s.srtcpIndex++

	return c.cipher.encryptRTCP(dst, decrypted, s.srtcpIndex, ssrc)
}

// EncryptRTCP Encrypts a RTCP packet
func (c *Context) EncryptRTCP(dst, decrypted []byte, header *rtcp.Header) ([]byte, error) {
	if header == nil {
		header = &rtcp.Header{}
	}

	if err := header.Unmarshal(decrypted); err != nil {
		return nil, err
	}

	return c.encryptRTCP(dst, decrypted)
}
chore_: bump go-waku (#5150) 2024-05-15 23:15:00 +00:00			`// SPDX-FileCopyrightText: 2023 The Pion community <https://pion.ly>`
			`// SPDX-License-Identifier: MIT`

Add torrent library dependency 2022-03-10 09:44:48 +00:00			`package srtp`

			`import (`
			`"encoding/binary"`
			`"fmt"`

			`"github.com/pion/rtcp"`
			`)`

			`const maxSRTCPIndex = 0x7FFFFFFF`

			`func (c *Context) decryptRTCP(dst, encrypted []byte) ([]byte, error) {`
			`out := allocateIfMismatch(dst, encrypted)`

chore_: bump go-waku (#5150) 2024-05-15 23:15:00 +00:00			`authTagLen, err := c.cipher.rtcpAuthTagLen()`
			`if err != nil {`
			`return nil, err`
			`}`
			`aeadAuthTagLen, err := c.cipher.aeadAuthTagLen()`
			`if err != nil {`
			`return nil, err`
			`}`
			`tailOffset := len(encrypted) - (authTagLen + srtcpIndexSize)`

			`if tailOffset < aeadAuthTagLen {`
Add torrent library dependency 2022-03-10 09:44:48 +00:00			`return nil, fmt.Errorf("%w: %d", errTooShortRTCP, len(encrypted))`
			`} else if isEncrypted := encrypted[tailOffset] >> 7; isEncrypted == 0 {`
			`return out, nil`
			`}`

			`index := c.cipher.getRTCPIndex(encrypted)`
			`ssrc := binary.BigEndian.Uint32(encrypted[4:])`

			`s := c.getSRTCPSSRCState(ssrc)`
			`markAsValid, ok := s.replayDetector.Check(uint64(index))`
			`if !ok {`
chore_: bump go-waku (#5150) 2024-05-15 23:15:00 +00:00			`return nil, &duplicatedError{Proto: "srtcp", SSRC: ssrc, Index: index}`
Add torrent library dependency 2022-03-10 09:44:48 +00:00			`}`

chore_: bump go-waku (#5150) 2024-05-15 23:15:00 +00:00			`out, err = c.cipher.decryptRTCP(out, encrypted, index, ssrc)`
Add torrent library dependency 2022-03-10 09:44:48 +00:00			`if err != nil {`
			`return nil, err`
			`}`

			`markAsValid()`
			`return out, nil`
			`}`

			`// DecryptRTCP decrypts a buffer that contains a RTCP packet`
			`func (c Context) DecryptRTCP(dst, encrypted []byte, header rtcp.Header) ([]byte, error) {`
			`if header == nil {`
			`header = &rtcp.Header{}`
			`}`

			`if err := header.Unmarshal(encrypted); err != nil {`
			`return nil, err`
			`}`

			`return c.decryptRTCP(dst, encrypted)`
			`}`

			`func (c *Context) encryptRTCP(dst, decrypted []byte) ([]byte, error) {`
			`ssrc := binary.BigEndian.Uint32(decrypted[4:])`
			`s := c.getSRTCPSSRCState(ssrc)`

chore_: bump go-waku (#5150) 2024-05-15 23:15:00 +00:00			`if s.srtcpIndex >= maxSRTCPIndex {`
			`// ... when 2^48 SRTP packets or 2^31 SRTCP packets have been secured with the same key`
			`// (whichever occurs before), the key management MUST be called to provide new master key(s)`
			`// (previously stored and used keys MUST NOT be used again), or the session MUST be terminated.`
			`// https://www.rfc-editor.org/rfc/rfc3711#section-9.2`
			`return nil, errExceededMaxPackets`
			`}`

Add torrent library dependency 2022-03-10 09:44:48 +00:00			`// We roll over early because MSB is used for marking as encrypted`
			`s.srtcpIndex++`

			`return c.cipher.encryptRTCP(dst, decrypted, s.srtcpIndex, ssrc)`
			`}`

			`// EncryptRTCP Encrypts a RTCP packet`
			`func (c Context) EncryptRTCP(dst, decrypted []byte, header rtcp.Header) ([]byte, error) {`
			`if header == nil {`
			`header = &rtcp.Header{}`
			`}`

			`if err := header.Unmarshal(decrypted); err != nil {`
			`return nil, err`
			`}`

			`return c.encryptRTCP(dst, decrypted)`
			`}`