Expose TLS version and SRTP cipher to API

Bug: webrtc:10261 Change-Id: I5e0821e66a34448042cf73866511d79eefe40dfb Reviewed-on: https://webrtc-review.googlesource.com/c/src/+/158662 Reviewed-by: Steve Anton <steveanton@webrtc.org> Commit-Queue: Harald Alvestrand <hta@webrtc.org> Cr-Commit-Position: refs/heads/master@{#29645}
2019-10-29 12:19:31 +01:00 · 2019-10-29 12:19:31 +01:00 · c6c3f862e2
commit c6c3f862e2
parent 6981fb5fbd
3 changed files with 27 additions and 4 deletions
--- a/api/dtls_transport_interface.cc
+++ b/api/dtls_transport_interface.cc
@ -20,16 +20,22 @@ DtlsTransportInformation::DtlsTransportInformation(DtlsTransportState state)

 DtlsTransportInformation::DtlsTransportInformation(
    DtlsTransportState state,
+    absl::optional<int> tls_version,
    absl::optional<int> ssl_cipher_suite,
+    absl::optional<int> srtp_cipher_suite,
    std::unique_ptr<rtc::SSLCertChain> remote_ssl_certificates)
    : state_(state),
+      tls_version_(tls_version),
      ssl_cipher_suite_(ssl_cipher_suite),
+      srtp_cipher_suite_(srtp_cipher_suite),
      remote_ssl_certificates_(std::move(remote_ssl_certificates)) {}

 DtlsTransportInformation::DtlsTransportInformation(
    const DtlsTransportInformation& c)
    : state_(c.state()),
+      tls_version_(c.tls_version_),
      ssl_cipher_suite_(c.ssl_cipher_suite_),
+      srtp_cipher_suite_(c.srtp_cipher_suite_),
      remote_ssl_certificates_(c.remote_ssl_certificates()
                                   ? c.remote_ssl_certificates()->Clone()
                                   : nullptr) {}
@ -37,7 +43,9 @@ DtlsTransportInformation::DtlsTransportInformation(
 DtlsTransportInformation& DtlsTransportInformation::operator=(
    const DtlsTransportInformation& c) {
  state_ = c.state();
+  tls_version_ = c.tls_version_;
  ssl_cipher_suite_ = c.ssl_cipher_suite_;
+  srtp_cipher_suite_ = c.srtp_cipher_suite_;
  remote_ssl_certificates_ = c.remote_ssl_certificates()
                                 ? c.remote_ssl_certificates()->Clone()
                                 : nullptr;
--- a/api/dtls_transport_interface.h
+++ b/api/dtls_transport_interface.h
@ -44,7 +44,9 @@ class RTC_EXPORT DtlsTransportInformation {
  explicit DtlsTransportInformation(DtlsTransportState state);
  DtlsTransportInformation(
      DtlsTransportState state,
+      absl::optional<int> tls_version,
      absl::optional<int> ssl_cipher_suite,
+      absl::optional<int> srtp_cipher_suite,
      std::unique_ptr<rtc::SSLCertChain> remote_ssl_certificates);
  // Copy and assign
  DtlsTransportInformation(const DtlsTransportInformation& c);
@ -55,7 +57,9 @@ class RTC_EXPORT DtlsTransportInformation {
      default;

  DtlsTransportState state() const { return state_; }
+  absl::optional<int> tls_version() const { return tls_version_; }
  absl::optional<int> ssl_cipher_suite() const { return ssl_cipher_suite_; }
+  absl::optional<int> srtp_cipher_suite() const { return srtp_cipher_suite_; }
  // The accessor returns a temporary pointer, it does not release ownership.
  const rtc::SSLCertChain* remote_ssl_certificates() const {
    return remote_ssl_certificates_.get();
@ -63,7 +67,9 @@ class RTC_EXPORT DtlsTransportInformation {

 private:
  DtlsTransportState state_;
+  absl::optional<int> tls_version_;
  absl::optional<int> ssl_cipher_suite_;
+  absl::optional<int> srtp_cipher_suite_;
  std::unique_ptr<rtc::SSLCertChain> remote_ssl_certificates_;
 };

--- a/pc/dtls_transport.cc
+++ b/pc/dtls_transport.cc
@ -118,16 +118,25 @@ void DtlsTransport::UpdateInformation() {
  if (internal_dtls_transport_) {
    if (internal_dtls_transport_->dtls_state() ==
        cricket::DTLS_TRANSPORT_CONNECTED) {
+      bool success = true;
      int ssl_cipher_suite;
-      if (internal_dtls_transport_->GetSslCipherSuite(&ssl_cipher_suite)) {
+      int tls_version;
+      int srtp_cipher;
+      success &= internal_dtls_transport_->GetSslVersionBytes(&tls_version);
+      success &= internal_dtls_transport_->GetSslCipherSuite(&ssl_cipher_suite);
+      success &= internal_dtls_transport_->GetSrtpCryptoSuite(&srtp_cipher);
+      if (success) {
        info_ = DtlsTransportInformation(
-            TranslateState(internal_dtls_transport_->dtls_state()),
-            ssl_cipher_suite,
+            TranslateState(internal_dtls_transport_->dtls_state()), tls_version,
+            ssl_cipher_suite, srtp_cipher,
            internal_dtls_transport_->GetRemoteSSLCertChain());
      } else {
+        RTC_LOG(LS_ERROR) << "DtlsTransport in connected state has incomplete "
+                             "TLS information";
        info_ = DtlsTransportInformation(
            TranslateState(internal_dtls_transport_->dtls_state()),
-            absl::nullopt, internal_dtls_transport_->GetRemoteSSLCertChain());
+            absl::nullopt, absl::nullopt, absl::nullopt,
+            internal_dtls_transport_->GetRemoteSSLCertChain());
      }
    } else {
      info_ = DtlsTransportInformation(