1*d9f75844SAndroid Build Coastguard Worker /*
2*d9f75844SAndroid Build Coastguard Worker * Copyright 2017 The WebRTC project authors. All Rights Reserved.
3*d9f75844SAndroid Build Coastguard Worker *
4*d9f75844SAndroid Build Coastguard Worker * Use of this source code is governed by a BSD-style license
5*d9f75844SAndroid Build Coastguard Worker * that can be found in the LICENSE file in the root of the source
6*d9f75844SAndroid Build Coastguard Worker * tree. An additional intellectual property rights grant can be found
7*d9f75844SAndroid Build Coastguard Worker * in the file PATENTS. All contributing project authors may
8*d9f75844SAndroid Build Coastguard Worker * be found in the AUTHORS file in the root of the source tree.
9*d9f75844SAndroid Build Coastguard Worker */
10*d9f75844SAndroid Build Coastguard Worker
11*d9f75844SAndroid Build Coastguard Worker #include "pc/ice_server_parsing.h"
12*d9f75844SAndroid Build Coastguard Worker
13*d9f75844SAndroid Build Coastguard Worker #include <stddef.h>
14*d9f75844SAndroid Build Coastguard Worker
15*d9f75844SAndroid Build Coastguard Worker #include <cctype> // For std::isdigit.
16*d9f75844SAndroid Build Coastguard Worker #include <string>
17*d9f75844SAndroid Build Coastguard Worker #include <tuple>
18*d9f75844SAndroid Build Coastguard Worker
19*d9f75844SAndroid Build Coastguard Worker #include "p2p/base/port_interface.h"
20*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/arraysize.h"
21*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/checks.h"
22*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/ip_address.h"
23*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/logging.h"
24*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/socket_address.h"
25*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/string_encode.h"
26*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/string_to_number.h"
27*d9f75844SAndroid Build Coastguard Worker
28*d9f75844SAndroid Build Coastguard Worker namespace webrtc {
29*d9f75844SAndroid Build Coastguard Worker
30*d9f75844SAndroid Build Coastguard Worker namespace {
31*d9f75844SAndroid Build Coastguard Worker // Number of tokens must be preset when TURN uri has transport param.
32*d9f75844SAndroid Build Coastguard Worker const size_t kTurnTransportTokensNum = 2;
33*d9f75844SAndroid Build Coastguard Worker // The default stun port.
34*d9f75844SAndroid Build Coastguard Worker const int kDefaultStunPort = 3478;
35*d9f75844SAndroid Build Coastguard Worker const int kDefaultStunTlsPort = 5349;
36*d9f75844SAndroid Build Coastguard Worker const char kTransport[] = "transport";
37*d9f75844SAndroid Build Coastguard Worker
38*d9f75844SAndroid Build Coastguard Worker // Allowed characters in hostname per RFC 3986 Appendix A "reg-name"
39*d9f75844SAndroid Build Coastguard Worker const char kRegNameCharacters[] =
40*d9f75844SAndroid Build Coastguard Worker "abcdefghijklmnopqrstuvwxyz"
41*d9f75844SAndroid Build Coastguard Worker "ABCDEFGHIJKLMNOPQRSTUVWXYZ"
42*d9f75844SAndroid Build Coastguard Worker "0123456789"
43*d9f75844SAndroid Build Coastguard Worker "-._~" // unreserved
44*d9f75844SAndroid Build Coastguard Worker "%" // pct-encoded
45*d9f75844SAndroid Build Coastguard Worker "!$&'()*+,;="; // sub-delims
46*d9f75844SAndroid Build Coastguard Worker
47*d9f75844SAndroid Build Coastguard Worker // NOTE: Must be in the same order as the ServiceType enum.
48*d9f75844SAndroid Build Coastguard Worker const char* kValidIceServiceTypes[] = {"stun", "stuns", "turn", "turns"};
49*d9f75844SAndroid Build Coastguard Worker
50*d9f75844SAndroid Build Coastguard Worker // NOTE: A loop below assumes that the first value of this enum is 0 and all
51*d9f75844SAndroid Build Coastguard Worker // other values are incremental.
52*d9f75844SAndroid Build Coastguard Worker enum class ServiceType {
53*d9f75844SAndroid Build Coastguard Worker STUN = 0, // Indicates a STUN server.
54*d9f75844SAndroid Build Coastguard Worker STUNS, // Indicates a STUN server used with a TLS session.
55*d9f75844SAndroid Build Coastguard Worker TURN, // Indicates a TURN server
56*d9f75844SAndroid Build Coastguard Worker TURNS, // Indicates a TURN server used with a TLS session.
57*d9f75844SAndroid Build Coastguard Worker INVALID, // Unknown.
58*d9f75844SAndroid Build Coastguard Worker };
59*d9f75844SAndroid Build Coastguard Worker static_assert(static_cast<size_t>(ServiceType::INVALID) ==
60*d9f75844SAndroid Build Coastguard Worker arraysize(kValidIceServiceTypes),
61*d9f75844SAndroid Build Coastguard Worker "kValidIceServiceTypes must have as many strings as ServiceType "
62*d9f75844SAndroid Build Coastguard Worker "has values.");
63*d9f75844SAndroid Build Coastguard Worker
64*d9f75844SAndroid Build Coastguard Worker // `in_str` should follow of RFC 7064/7065 syntax, but with an optional
65*d9f75844SAndroid Build Coastguard Worker // "?transport=" already stripped. I.e.,
66*d9f75844SAndroid Build Coastguard Worker // stunURI = scheme ":" host [ ":" port ]
67*d9f75844SAndroid Build Coastguard Worker // scheme = "stun" / "stuns" / "turn" / "turns"
68*d9f75844SAndroid Build Coastguard Worker // host = IP-literal / IPv4address / reg-name
69*d9f75844SAndroid Build Coastguard Worker // port = *DIGIT
70*d9f75844SAndroid Build Coastguard Worker
71*d9f75844SAndroid Build Coastguard Worker // Return tuple is service_type, host, with service_type == ServiceType::INVALID
72*d9f75844SAndroid Build Coastguard Worker // on failure.
GetServiceTypeAndHostnameFromUri(absl::string_view in_str)73*d9f75844SAndroid Build Coastguard Worker std::tuple<ServiceType, absl::string_view> GetServiceTypeAndHostnameFromUri(
74*d9f75844SAndroid Build Coastguard Worker absl::string_view in_str) {
75*d9f75844SAndroid Build Coastguard Worker const auto colonpos = in_str.find(':');
76*d9f75844SAndroid Build Coastguard Worker if (colonpos == absl::string_view::npos) {
77*d9f75844SAndroid Build Coastguard Worker RTC_LOG(LS_WARNING) << "Missing ':' in ICE URI: " << in_str;
78*d9f75844SAndroid Build Coastguard Worker return {ServiceType::INVALID, ""};
79*d9f75844SAndroid Build Coastguard Worker }
80*d9f75844SAndroid Build Coastguard Worker if ((colonpos + 1) == in_str.length()) {
81*d9f75844SAndroid Build Coastguard Worker RTC_LOG(LS_WARNING) << "Empty hostname in ICE URI: " << in_str;
82*d9f75844SAndroid Build Coastguard Worker return {ServiceType::INVALID, ""};
83*d9f75844SAndroid Build Coastguard Worker }
84*d9f75844SAndroid Build Coastguard Worker for (size_t i = 0; i < arraysize(kValidIceServiceTypes); ++i) {
85*d9f75844SAndroid Build Coastguard Worker if (in_str.compare(0, colonpos, kValidIceServiceTypes[i]) == 0) {
86*d9f75844SAndroid Build Coastguard Worker return {static_cast<ServiceType>(i), in_str.substr(colonpos + 1)};
87*d9f75844SAndroid Build Coastguard Worker }
88*d9f75844SAndroid Build Coastguard Worker }
89*d9f75844SAndroid Build Coastguard Worker return {ServiceType::INVALID, ""};
90*d9f75844SAndroid Build Coastguard Worker }
91*d9f75844SAndroid Build Coastguard Worker
ParsePort(absl::string_view in_str)92*d9f75844SAndroid Build Coastguard Worker absl::optional<int> ParsePort(absl::string_view in_str) {
93*d9f75844SAndroid Build Coastguard Worker // Make sure port only contains digits. StringToNumber doesn't check this.
94*d9f75844SAndroid Build Coastguard Worker for (const char& c : in_str) {
95*d9f75844SAndroid Build Coastguard Worker if (!std::isdigit(static_cast<unsigned char>(c))) {
96*d9f75844SAndroid Build Coastguard Worker return false;
97*d9f75844SAndroid Build Coastguard Worker }
98*d9f75844SAndroid Build Coastguard Worker }
99*d9f75844SAndroid Build Coastguard Worker return rtc::StringToNumber<int>(in_str);
100*d9f75844SAndroid Build Coastguard Worker }
101*d9f75844SAndroid Build Coastguard Worker
102*d9f75844SAndroid Build Coastguard Worker // This method parses IPv6 and IPv4 literal strings, along with hostnames in
103*d9f75844SAndroid Build Coastguard Worker // standard hostname:port format.
104*d9f75844SAndroid Build Coastguard Worker // Consider following formats as correct.
105*d9f75844SAndroid Build Coastguard Worker // `hostname:port`, |[IPV6 address]:port|, |IPv4 address|:port,
106*d9f75844SAndroid Build Coastguard Worker // `hostname`, |[IPv6 address]|, |IPv4 address|.
107*d9f75844SAndroid Build Coastguard Worker
108*d9f75844SAndroid Build Coastguard Worker // Return tuple is success, host, port.
ParseHostnameAndPortFromString(absl::string_view in_str,int default_port)109*d9f75844SAndroid Build Coastguard Worker std::tuple<bool, absl::string_view, int> ParseHostnameAndPortFromString(
110*d9f75844SAndroid Build Coastguard Worker absl::string_view in_str,
111*d9f75844SAndroid Build Coastguard Worker int default_port) {
112*d9f75844SAndroid Build Coastguard Worker if (in_str.empty()) {
113*d9f75844SAndroid Build Coastguard Worker return {false, "", 0};
114*d9f75844SAndroid Build Coastguard Worker }
115*d9f75844SAndroid Build Coastguard Worker absl::string_view host;
116*d9f75844SAndroid Build Coastguard Worker int port = default_port;
117*d9f75844SAndroid Build Coastguard Worker
118*d9f75844SAndroid Build Coastguard Worker if (in_str.at(0) == '[') {
119*d9f75844SAndroid Build Coastguard Worker // IP_literal syntax
120*d9f75844SAndroid Build Coastguard Worker auto closebracket = in_str.rfind(']');
121*d9f75844SAndroid Build Coastguard Worker if (closebracket == absl::string_view::npos) {
122*d9f75844SAndroid Build Coastguard Worker return {false, "", 0};
123*d9f75844SAndroid Build Coastguard Worker }
124*d9f75844SAndroid Build Coastguard Worker auto colonpos = in_str.find(':', closebracket);
125*d9f75844SAndroid Build Coastguard Worker if (absl::string_view::npos != colonpos) {
126*d9f75844SAndroid Build Coastguard Worker if (absl::optional<int> opt_port =
127*d9f75844SAndroid Build Coastguard Worker ParsePort(in_str.substr(closebracket + 2))) {
128*d9f75844SAndroid Build Coastguard Worker port = *opt_port;
129*d9f75844SAndroid Build Coastguard Worker } else {
130*d9f75844SAndroid Build Coastguard Worker return {false, "", 0};
131*d9f75844SAndroid Build Coastguard Worker }
132*d9f75844SAndroid Build Coastguard Worker }
133*d9f75844SAndroid Build Coastguard Worker host = in_str.substr(1, closebracket - 1);
134*d9f75844SAndroid Build Coastguard Worker } else {
135*d9f75844SAndroid Build Coastguard Worker // IPv4address or reg-name syntax
136*d9f75844SAndroid Build Coastguard Worker auto colonpos = in_str.find(':');
137*d9f75844SAndroid Build Coastguard Worker if (absl::string_view::npos != colonpos) {
138*d9f75844SAndroid Build Coastguard Worker if (absl::optional<int> opt_port =
139*d9f75844SAndroid Build Coastguard Worker ParsePort(in_str.substr(colonpos + 1))) {
140*d9f75844SAndroid Build Coastguard Worker port = *opt_port;
141*d9f75844SAndroid Build Coastguard Worker } else {
142*d9f75844SAndroid Build Coastguard Worker return {false, "", 0};
143*d9f75844SAndroid Build Coastguard Worker }
144*d9f75844SAndroid Build Coastguard Worker host = in_str.substr(0, colonpos);
145*d9f75844SAndroid Build Coastguard Worker } else {
146*d9f75844SAndroid Build Coastguard Worker host = in_str;
147*d9f75844SAndroid Build Coastguard Worker }
148*d9f75844SAndroid Build Coastguard Worker // RFC 3986 section 3.2.2 and Appendix A - "reg-name" syntax
149*d9f75844SAndroid Build Coastguard Worker if (host.find_first_not_of(kRegNameCharacters) != absl::string_view::npos) {
150*d9f75844SAndroid Build Coastguard Worker return {false, "", 0};
151*d9f75844SAndroid Build Coastguard Worker }
152*d9f75844SAndroid Build Coastguard Worker }
153*d9f75844SAndroid Build Coastguard Worker return {!host.empty(), host, port};
154*d9f75844SAndroid Build Coastguard Worker }
155*d9f75844SAndroid Build Coastguard Worker
156*d9f75844SAndroid Build Coastguard Worker // Adds a STUN or TURN server to the appropriate list,
157*d9f75844SAndroid Build Coastguard Worker // by parsing `url` and using the username/password in `server`.
ParseIceServerUrl(const PeerConnectionInterface::IceServer & server,absl::string_view url,cricket::ServerAddresses * stun_servers,std::vector<cricket::RelayServerConfig> * turn_servers)158*d9f75844SAndroid Build Coastguard Worker RTCError ParseIceServerUrl(
159*d9f75844SAndroid Build Coastguard Worker const PeerConnectionInterface::IceServer& server,
160*d9f75844SAndroid Build Coastguard Worker absl::string_view url,
161*d9f75844SAndroid Build Coastguard Worker cricket::ServerAddresses* stun_servers,
162*d9f75844SAndroid Build Coastguard Worker std::vector<cricket::RelayServerConfig>* turn_servers) {
163*d9f75844SAndroid Build Coastguard Worker // RFC 7064
164*d9f75844SAndroid Build Coastguard Worker // stunURI = scheme ":" host [ ":" port ]
165*d9f75844SAndroid Build Coastguard Worker // scheme = "stun" / "stuns"
166*d9f75844SAndroid Build Coastguard Worker
167*d9f75844SAndroid Build Coastguard Worker // RFC 7065
168*d9f75844SAndroid Build Coastguard Worker // turnURI = scheme ":" host [ ":" port ]
169*d9f75844SAndroid Build Coastguard Worker // [ "?transport=" transport ]
170*d9f75844SAndroid Build Coastguard Worker // scheme = "turn" / "turns"
171*d9f75844SAndroid Build Coastguard Worker // transport = "udp" / "tcp" / transport-ext
172*d9f75844SAndroid Build Coastguard Worker // transport-ext = 1*unreserved
173*d9f75844SAndroid Build Coastguard Worker
174*d9f75844SAndroid Build Coastguard Worker // RFC 3986
175*d9f75844SAndroid Build Coastguard Worker // host = IP-literal / IPv4address / reg-name
176*d9f75844SAndroid Build Coastguard Worker // port = *DIGIT
177*d9f75844SAndroid Build Coastguard Worker
178*d9f75844SAndroid Build Coastguard Worker RTC_DCHECK(stun_servers != nullptr);
179*d9f75844SAndroid Build Coastguard Worker RTC_DCHECK(turn_servers != nullptr);
180*d9f75844SAndroid Build Coastguard Worker cricket::ProtocolType turn_transport_type = cricket::PROTO_UDP;
181*d9f75844SAndroid Build Coastguard Worker RTC_DCHECK(!url.empty());
182*d9f75844SAndroid Build Coastguard Worker std::vector<absl::string_view> tokens = rtc::split(url, '?');
183*d9f75844SAndroid Build Coastguard Worker absl::string_view uri_without_transport = tokens[0];
184*d9f75844SAndroid Build Coastguard Worker // Let's look into transport= param, if it exists.
185*d9f75844SAndroid Build Coastguard Worker if (tokens.size() == kTurnTransportTokensNum) { // ?transport= is present.
186*d9f75844SAndroid Build Coastguard Worker std::vector<absl::string_view> transport_tokens =
187*d9f75844SAndroid Build Coastguard Worker rtc::split(tokens[1], '=');
188*d9f75844SAndroid Build Coastguard Worker if (transport_tokens[0] != kTransport) {
189*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(
190*d9f75844SAndroid Build Coastguard Worker RTCErrorType::SYNTAX_ERROR,
191*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: Invalid transport parameter key.");
192*d9f75844SAndroid Build Coastguard Worker }
193*d9f75844SAndroid Build Coastguard Worker if (transport_tokens.size() < 2) {
194*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(
195*d9f75844SAndroid Build Coastguard Worker RTCErrorType::SYNTAX_ERROR,
196*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: Transport parameter missing value.");
197*d9f75844SAndroid Build Coastguard Worker }
198*d9f75844SAndroid Build Coastguard Worker
199*d9f75844SAndroid Build Coastguard Worker absl::optional<cricket::ProtocolType> proto =
200*d9f75844SAndroid Build Coastguard Worker cricket::StringToProto(transport_tokens[1]);
201*d9f75844SAndroid Build Coastguard Worker if (!proto ||
202*d9f75844SAndroid Build Coastguard Worker (*proto != cricket::PROTO_UDP && *proto != cricket::PROTO_TCP)) {
203*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(
204*d9f75844SAndroid Build Coastguard Worker RTCErrorType::SYNTAX_ERROR,
205*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: Transport parameter should "
206*d9f75844SAndroid Build Coastguard Worker "always be udp or tcp.");
207*d9f75844SAndroid Build Coastguard Worker }
208*d9f75844SAndroid Build Coastguard Worker turn_transport_type = *proto;
209*d9f75844SAndroid Build Coastguard Worker }
210*d9f75844SAndroid Build Coastguard Worker
211*d9f75844SAndroid Build Coastguard Worker auto [service_type, hoststring] =
212*d9f75844SAndroid Build Coastguard Worker GetServiceTypeAndHostnameFromUri(uri_without_transport);
213*d9f75844SAndroid Build Coastguard Worker if (service_type == ServiceType::INVALID) {
214*d9f75844SAndroid Build Coastguard Worker RTC_LOG(LS_ERROR) << "Invalid transport parameter in ICE URI: " << url;
215*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(
216*d9f75844SAndroid Build Coastguard Worker RTCErrorType::SYNTAX_ERROR,
217*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: Invalid transport parameter in ICE URI");
218*d9f75844SAndroid Build Coastguard Worker }
219*d9f75844SAndroid Build Coastguard Worker
220*d9f75844SAndroid Build Coastguard Worker // GetServiceTypeAndHostnameFromUri should never give an empty hoststring
221*d9f75844SAndroid Build Coastguard Worker RTC_DCHECK(!hoststring.empty());
222*d9f75844SAndroid Build Coastguard Worker
223*d9f75844SAndroid Build Coastguard Worker int default_port = kDefaultStunPort;
224*d9f75844SAndroid Build Coastguard Worker if (service_type == ServiceType::TURNS) {
225*d9f75844SAndroid Build Coastguard Worker default_port = kDefaultStunTlsPort;
226*d9f75844SAndroid Build Coastguard Worker turn_transport_type = cricket::PROTO_TLS;
227*d9f75844SAndroid Build Coastguard Worker }
228*d9f75844SAndroid Build Coastguard Worker
229*d9f75844SAndroid Build Coastguard Worker if (hoststring.find('@') != absl::string_view::npos) {
230*d9f75844SAndroid Build Coastguard Worker RTC_LOG(LS_ERROR) << "Invalid url with long deprecated user@host syntax: "
231*d9f75844SAndroid Build Coastguard Worker << uri_without_transport;
232*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(RTCErrorType::SYNTAX_ERROR,
233*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: Invalid url with long "
234*d9f75844SAndroid Build Coastguard Worker "deprecated user@host syntax");
235*d9f75844SAndroid Build Coastguard Worker }
236*d9f75844SAndroid Build Coastguard Worker
237*d9f75844SAndroid Build Coastguard Worker auto [success, address, port] =
238*d9f75844SAndroid Build Coastguard Worker ParseHostnameAndPortFromString(hoststring, default_port);
239*d9f75844SAndroid Build Coastguard Worker if (!success) {
240*d9f75844SAndroid Build Coastguard Worker RTC_LOG(LS_ERROR) << "Invalid hostname format: " << uri_without_transport;
241*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(RTCErrorType::SYNTAX_ERROR,
242*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: Invalid hostname format");
243*d9f75844SAndroid Build Coastguard Worker }
244*d9f75844SAndroid Build Coastguard Worker
245*d9f75844SAndroid Build Coastguard Worker if (port <= 0 || port > 0xffff) {
246*d9f75844SAndroid Build Coastguard Worker RTC_LOG(LS_ERROR) << "Invalid port: " << port;
247*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(RTCErrorType::SYNTAX_ERROR,
248*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: Invalid port");
249*d9f75844SAndroid Build Coastguard Worker }
250*d9f75844SAndroid Build Coastguard Worker
251*d9f75844SAndroid Build Coastguard Worker switch (service_type) {
252*d9f75844SAndroid Build Coastguard Worker case ServiceType::STUN:
253*d9f75844SAndroid Build Coastguard Worker case ServiceType::STUNS:
254*d9f75844SAndroid Build Coastguard Worker stun_servers->insert(rtc::SocketAddress(address, port));
255*d9f75844SAndroid Build Coastguard Worker break;
256*d9f75844SAndroid Build Coastguard Worker case ServiceType::TURN:
257*d9f75844SAndroid Build Coastguard Worker case ServiceType::TURNS: {
258*d9f75844SAndroid Build Coastguard Worker if (server.username.empty() || server.password.empty()) {
259*d9f75844SAndroid Build Coastguard Worker // The WebRTC spec requires throwing an InvalidAccessError when username
260*d9f75844SAndroid Build Coastguard Worker // or credential are ommitted; this is the native equivalent.
261*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(
262*d9f75844SAndroid Build Coastguard Worker RTCErrorType::INVALID_PARAMETER,
263*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: TURN server with empty "
264*d9f75844SAndroid Build Coastguard Worker "username or password");
265*d9f75844SAndroid Build Coastguard Worker }
266*d9f75844SAndroid Build Coastguard Worker // If the hostname field is not empty, then the server address must be
267*d9f75844SAndroid Build Coastguard Worker // the resolved IP for that host, the hostname is needed later for TLS
268*d9f75844SAndroid Build Coastguard Worker // handshake (SNI and Certificate verification).
269*d9f75844SAndroid Build Coastguard Worker absl::string_view hostname =
270*d9f75844SAndroid Build Coastguard Worker server.hostname.empty() ? address : server.hostname;
271*d9f75844SAndroid Build Coastguard Worker rtc::SocketAddress socket_address(hostname, port);
272*d9f75844SAndroid Build Coastguard Worker if (!server.hostname.empty()) {
273*d9f75844SAndroid Build Coastguard Worker rtc::IPAddress ip;
274*d9f75844SAndroid Build Coastguard Worker if (!IPFromString(address, &ip)) {
275*d9f75844SAndroid Build Coastguard Worker // When hostname is set, the server address must be a
276*d9f75844SAndroid Build Coastguard Worker // resolved ip address.
277*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(
278*d9f75844SAndroid Build Coastguard Worker RTCErrorType::INVALID_PARAMETER,
279*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: "
280*d9f75844SAndroid Build Coastguard Worker "IceServer has hostname field set, but URI does not "
281*d9f75844SAndroid Build Coastguard Worker "contain an IP address.");
282*d9f75844SAndroid Build Coastguard Worker }
283*d9f75844SAndroid Build Coastguard Worker socket_address.SetResolvedIP(ip);
284*d9f75844SAndroid Build Coastguard Worker }
285*d9f75844SAndroid Build Coastguard Worker cricket::RelayServerConfig config =
286*d9f75844SAndroid Build Coastguard Worker cricket::RelayServerConfig(socket_address, server.username,
287*d9f75844SAndroid Build Coastguard Worker server.password, turn_transport_type);
288*d9f75844SAndroid Build Coastguard Worker if (server.tls_cert_policy ==
289*d9f75844SAndroid Build Coastguard Worker PeerConnectionInterface::kTlsCertPolicyInsecureNoCheck) {
290*d9f75844SAndroid Build Coastguard Worker config.tls_cert_policy =
291*d9f75844SAndroid Build Coastguard Worker cricket::TlsCertPolicy::TLS_CERT_POLICY_INSECURE_NO_CHECK;
292*d9f75844SAndroid Build Coastguard Worker }
293*d9f75844SAndroid Build Coastguard Worker config.tls_alpn_protocols = server.tls_alpn_protocols;
294*d9f75844SAndroid Build Coastguard Worker config.tls_elliptic_curves = server.tls_elliptic_curves;
295*d9f75844SAndroid Build Coastguard Worker
296*d9f75844SAndroid Build Coastguard Worker turn_servers->push_back(config);
297*d9f75844SAndroid Build Coastguard Worker break;
298*d9f75844SAndroid Build Coastguard Worker }
299*d9f75844SAndroid Build Coastguard Worker default:
300*d9f75844SAndroid Build Coastguard Worker // We shouldn't get to this point with an invalid service_type, we should
301*d9f75844SAndroid Build Coastguard Worker // have returned an error already.
302*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(
303*d9f75844SAndroid Build Coastguard Worker RTCErrorType::INTERNAL_ERROR,
304*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: Unexpected service type");
305*d9f75844SAndroid Build Coastguard Worker }
306*d9f75844SAndroid Build Coastguard Worker return RTCError::OK();
307*d9f75844SAndroid Build Coastguard Worker }
308*d9f75844SAndroid Build Coastguard Worker
309*d9f75844SAndroid Build Coastguard Worker } // namespace
310*d9f75844SAndroid Build Coastguard Worker
ParseIceServersOrError(const PeerConnectionInterface::IceServers & servers,cricket::ServerAddresses * stun_servers,std::vector<cricket::RelayServerConfig> * turn_servers)311*d9f75844SAndroid Build Coastguard Worker RTCError ParseIceServersOrError(
312*d9f75844SAndroid Build Coastguard Worker const PeerConnectionInterface::IceServers& servers,
313*d9f75844SAndroid Build Coastguard Worker cricket::ServerAddresses* stun_servers,
314*d9f75844SAndroid Build Coastguard Worker std::vector<cricket::RelayServerConfig>* turn_servers) {
315*d9f75844SAndroid Build Coastguard Worker for (const PeerConnectionInterface::IceServer& server : servers) {
316*d9f75844SAndroid Build Coastguard Worker if (!server.urls.empty()) {
317*d9f75844SAndroid Build Coastguard Worker for (const std::string& url : server.urls) {
318*d9f75844SAndroid Build Coastguard Worker if (url.empty()) {
319*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(RTCErrorType::SYNTAX_ERROR,
320*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: Empty uri.");
321*d9f75844SAndroid Build Coastguard Worker }
322*d9f75844SAndroid Build Coastguard Worker RTCError err =
323*d9f75844SAndroid Build Coastguard Worker ParseIceServerUrl(server, url, stun_servers, turn_servers);
324*d9f75844SAndroid Build Coastguard Worker if (!err.ok()) {
325*d9f75844SAndroid Build Coastguard Worker return err;
326*d9f75844SAndroid Build Coastguard Worker }
327*d9f75844SAndroid Build Coastguard Worker }
328*d9f75844SAndroid Build Coastguard Worker } else if (!server.uri.empty()) {
329*d9f75844SAndroid Build Coastguard Worker // Fallback to old .uri if new .urls isn't present.
330*d9f75844SAndroid Build Coastguard Worker RTCError err =
331*d9f75844SAndroid Build Coastguard Worker ParseIceServerUrl(server, server.uri, stun_servers, turn_servers);
332*d9f75844SAndroid Build Coastguard Worker
333*d9f75844SAndroid Build Coastguard Worker if (!err.ok()) {
334*d9f75844SAndroid Build Coastguard Worker return err;
335*d9f75844SAndroid Build Coastguard Worker }
336*d9f75844SAndroid Build Coastguard Worker } else {
337*d9f75844SAndroid Build Coastguard Worker LOG_AND_RETURN_ERROR(RTCErrorType::SYNTAX_ERROR,
338*d9f75844SAndroid Build Coastguard Worker "ICE server parsing failed: Empty uri.");
339*d9f75844SAndroid Build Coastguard Worker }
340*d9f75844SAndroid Build Coastguard Worker }
341*d9f75844SAndroid Build Coastguard Worker return RTCError::OK();
342*d9f75844SAndroid Build Coastguard Worker }
343*d9f75844SAndroid Build Coastguard Worker
ParseIceServers(const PeerConnectionInterface::IceServers & servers,cricket::ServerAddresses * stun_servers,std::vector<cricket::RelayServerConfig> * turn_servers)344*d9f75844SAndroid Build Coastguard Worker RTCErrorType ParseIceServers(
345*d9f75844SAndroid Build Coastguard Worker const PeerConnectionInterface::IceServers& servers,
346*d9f75844SAndroid Build Coastguard Worker cricket::ServerAddresses* stun_servers,
347*d9f75844SAndroid Build Coastguard Worker std::vector<cricket::RelayServerConfig>* turn_servers) {
348*d9f75844SAndroid Build Coastguard Worker return ParseIceServersOrError(servers, stun_servers, turn_servers).type();
349*d9f75844SAndroid Build Coastguard Worker }
350*d9f75844SAndroid Build Coastguard Worker
351*d9f75844SAndroid Build Coastguard Worker } // namespace webrtc
352