2 * Copyright (C) 2011-2012 Juho Vähä-Herttua
4 * This library is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU Lesser General Public
6 * License as published by the Free Software Foundation; either
7 * version 2.1 of the License, or (at your option) any later version.
9 * This library is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
12 * Lesser General Public License for more details.
32 /* Actually 345 bytes for 2048-bit key */
33 #define MAX_SIGNATURE_LEN 512
35 /* Let's just decide on some length */
36 #define MAX_PASSWORD_LEN 64
38 /* MD5 as hex fits here */
39 #define MAX_NONCE_LEN 33
42 /* Callbacks for audio */
43 raop_callbacks_t callbacks
;
48 /* HTTP daemon and RSA key */
52 /* Hardware address information */
53 unsigned char hwaddr
[MAX_HWADDR_LEN
];
56 /* Password information */
57 char password
[MAX_PASSWORD_LEN
+1];
67 unsigned char *remote
;
70 char nonce
[MAX_NONCE_LEN
+1];
72 typedef struct raop_conn_s raop_conn_t
;
75 conn_init(void *opaque
, unsigned char *local
, int locallen
, unsigned char *remote
, int remotelen
)
79 conn
= calloc(1, sizeof(raop_conn_t
));
84 conn
->raop_rtp
= NULL
;
87 logger_log(&conn
->raop
->logger
, LOGGER_INFO
,
88 "Local: %d.%d.%d.%d\n",
89 local
[0], local
[1], local
[2], local
[3]);
90 } else if (locallen
== 16) {
91 logger_log(&conn
->raop
->logger
, LOGGER_INFO
,
92 "Local: %02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x\n",
93 local
[0], local
[1], local
[2], local
[3], local
[4], local
[5], local
[6], local
[7],
94 local
[8], local
[9], local
[10], local
[11], local
[12], local
[13], local
[14], local
[15]);
97 logger_log(&conn
->raop
->logger
, LOGGER_INFO
,
98 "Remote: %d.%d.%d.%d\n",
99 remote
[0], remote
[1], remote
[2], remote
[3]);
100 } else if (remotelen
== 16) {
101 logger_log(&conn
->raop
->logger
, LOGGER_INFO
,
102 "Remote: %02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x\n",
103 remote
[0], remote
[1], remote
[2], remote
[3], remote
[4], remote
[5], remote
[6], remote
[7],
104 remote
[8], remote
[9], remote
[10], remote
[11], remote
[12], remote
[13], remote
[14], remote
[15]);
107 conn
->local
= malloc(locallen
);
109 memcpy(conn
->local
, local
, locallen
);
111 conn
->remote
= malloc(remotelen
);
112 assert(conn
->remote
);
113 memcpy(conn
->remote
, remote
, remotelen
);
115 conn
->locallen
= locallen
;
116 conn
->remotelen
= remotelen
;
118 digest_generate_nonce(conn
->nonce
, sizeof(conn
->nonce
));
123 conn_request(void *ptr
, http_request_t
*request
, http_response_t
**response
)
125 raop_conn_t
*conn
= ptr
;
126 raop_t
*raop
= conn
->raop
;
128 http_response_t
*res
;
131 const char *challenge
;
132 int require_auth
= 0;
134 method
= http_request_get_method(request
);
135 cseq
= http_request_get_header(request
, "CSeq");
136 if (!method
|| !cseq
) {
140 res
= http_response_init("RTSP/1.0", 200, "OK");
141 if (strlen(raop
->password
)) {
142 const char *authorization
;
144 authorization
= http_request_get_header(request
, "Authorization");
146 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Authorization: %s\n", authorization
);
148 if (!digest_is_valid("AppleTV", raop
->password
, conn
->nonce
, method
, authorization
)) {
152 /* Allocate the authenticate string */
153 authstrlen
= sizeof("Digest realm=\"AppleTV\", nonce=\"\"") + sizeof(conn
->nonce
) + 1;
154 authstr
= malloc(authstrlen
);
156 /* Concatenate the authenticate string */
157 memset(authstr
, 0, authstrlen
);
158 strcat(authstr
, "Digest realm=\"AppleTV\", nonce=\"");
159 strcat(authstr
, conn
->nonce
);
160 strcat(authstr
, "\"");
162 /* Construct a new response */
164 http_response_destroy(res
);
165 res
= http_response_init("RTSP/1.0", 401, "Unauthorized");
166 http_response_add_header(res
, "WWW-Authenticate", authstr
);
169 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "AUTHENTICATION SUCCESS!\n");
173 http_response_add_header(res
, "CSeq", cseq
);
174 http_response_add_header(res
, "Apple-Jack-Status", "connected; type=analog");
176 challenge
= http_request_get_header(request
, "Apple-Challenge");
178 char signature
[MAX_SIGNATURE_LEN
];
180 memset(signature
, 0, sizeof(signature
));
181 rsakey_sign(raop
->rsakey
, signature
, sizeof(signature
), challenge
,
182 conn
->local
, conn
->locallen
, raop
->hwaddr
, raop
->hwaddrlen
);
183 http_response_add_header(res
, "Apple-Response", signature
);
185 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Got challenge: %s\n", challenge
);
186 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Got response: %s\n", signature
);
190 /* Do nothing in case of authentication request */
191 } else if (!strcmp(method
, "OPTIONS")) {
192 http_response_add_header(res
, "Public", "ANNOUNCE, SETUP, RECORD, PAUSE, FLUSH, TEARDOWN, OPTIONS, GET_PARAMETER, SET_PARAMETER");
193 } else if (!strcmp(method
, "ANNOUNCE")) {
197 unsigned char aeskey
[16];
198 unsigned char aesiv
[16];
199 int aeskeylen
, aesivlen
;
201 data
= http_request_get_data(request
, &datalen
);
204 const char *remotestr
, *fmtpstr
, *aeskeystr
, *aesivstr
;
206 sdp
= sdp_init(data
, datalen
);
207 remotestr
= sdp_get_connection(sdp
);
208 fmtpstr
= sdp_get_fmtp(sdp
);
209 aeskeystr
= sdp_get_rsaaeskey(sdp
);
210 aesivstr
= sdp_get_aesiv(sdp
);
212 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "connection: %s\n", remotestr
);
213 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "fmtp: %s\n", fmtpstr
);
214 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "rsaaeskey: %s\n", aeskeystr
);
215 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "aesiv: %s\n", aesivstr
);
217 aeskeylen
= rsakey_decrypt(raop
->rsakey
, aeskey
, sizeof(aeskey
), aeskeystr
);
218 aesivlen
= rsakey_parseiv(raop
->rsakey
, aesiv
, sizeof(aesiv
), aesivstr
);
219 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "aeskeylen: %d\n", aeskeylen
);
220 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "aesivlen: %d\n", aesivlen
);
222 if (conn
->raop_rtp
) {
223 /* This should never happen */
224 raop_rtp_destroy(conn
->raop_rtp
);
225 conn
->raop_rtp
= NULL
;
227 conn
->raop_rtp
= raop_rtp_init(&raop
->logger
, &raop
->callbacks
, remotestr
, fmtpstr
, aeskey
, aesiv
);
230 } else if (!strcmp(method
, "SETUP")) {
231 unsigned short remote_cport
=0, remote_tport
=0;
232 unsigned short cport
=0, tport
=0, dport
=0;
233 const char *transport
;
237 transport
= http_request_get_header(request
, "Transport");
240 logger_log(&conn
->raop
->logger
, LOGGER_INFO
, "Transport: %s\n", transport
);
241 use_udp
= strncmp(transport
, "RTP/AVP/TCP", 11);
243 char *original
, *current
, *tmpstr
;
245 current
= original
= strdup(transport
);
247 while ((tmpstr
= utils_strsep(¤t
, ";")) != NULL
) {
248 unsigned short value
;
251 ret
= sscanf(tmpstr
, "control_port=%hu", &value
);
253 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Found remote control port: %hu\n", value
);
254 remote_cport
= value
;
256 ret
= sscanf(tmpstr
, "timing_port=%hu", &value
);
258 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Found remote timing port: %hu\n", value
);
259 remote_tport
= value
;
265 raop_rtp_start(conn
->raop_rtp
, use_udp
, remote_cport
, remote_tport
, &cport
, &tport
, &dport
);
267 memset(buffer
, 0, sizeof(buffer
));
269 snprintf(buffer
, sizeof(buffer
)-1,
270 "RTP/AVP/UDP;unicast;mode=record;timing_port=%hu;events;control_port=%hu;server_port=%hu",
271 tport
, cport
, dport
);
273 snprintf(buffer
, sizeof(buffer
)-1,
274 "RTP/AVP/TCP;unicast;interleaved=0-1;mode=record;server_port=%u",
277 logger_log(&conn
->raop
->logger
, LOGGER_INFO
, "Responding with %s\n", buffer
);
278 http_response_add_header(res
, "Transport", buffer
);
279 http_response_add_header(res
, "Session", "DEADBEEF");
280 } else if (!strcmp(method
, "SET_PARAMETER")) {
285 data
= http_request_get_data(request
, &datalen
);
286 datastr
= calloc(1, datalen
+1);
287 if (data
&& datastr
&& conn
->raop_rtp
) {
288 memcpy(datastr
, data
, datalen
);
289 if (!strncmp(datastr
, "volume: ", 8)) {
291 sscanf(data
+8, "%f", &vol
);
292 raop_rtp_set_volume(conn
->raop_rtp
, vol
);
295 } else if (!strcmp(method
, "FLUSH")) {
299 rtpinfo
= http_request_get_header(request
, "RTP-Info");
301 logger_log(&conn
->raop
->logger
, LOGGER_INFO
, "Flush with RTP-Info: %s\n", rtpinfo
);
302 if (!strncmp(rtpinfo
, "seq=", 4)) {
303 next_seq
= strtol(rtpinfo
+4, NULL
, 10);
306 if (conn
->raop_rtp
) {
307 raop_rtp_flush(conn
->raop_rtp
, next_seq
);
309 } else if (!strcmp(method
, "TEARDOWN")) {
310 http_response_add_header(res
, "Connection", "close");
311 if (conn
->raop_rtp
) {
312 /* Destroy our RTP session */
313 raop_rtp_stop(conn
->raop_rtp
);
314 raop_rtp_destroy(conn
->raop_rtp
);
315 conn
->raop_rtp
= NULL
;
318 http_response_finish(res
, NULL
, 0);
320 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Got request %s with URL %s\n", method
, http_request_get_url(request
));
325 conn_destroy(void *ptr
)
327 raop_conn_t
*conn
= ptr
;
329 if (conn
->raop_rtp
) {
330 /* This is done in case TEARDOWN was not called */
331 raop_rtp_destroy(conn
->raop_rtp
);
339 raop_init(raop_callbacks_t
*callbacks
, const char *pemkey
)
344 httpd_callbacks_t httpd_cbs
;
349 /* Initialize the network */
350 if (netutils_init() < 0) {
354 /* Validate the callbacks structure */
355 if (!callbacks
->audio_init
|| !callbacks
->audio_set_volume
||
356 !callbacks
->audio_process
|| !callbacks
->audio_flush
||
357 !callbacks
->audio_destroy
) {
361 /* Allocate the raop_t structure */
362 raop
= calloc(1, sizeof(raop_t
));
367 /* Initialize the logger */
368 logger_init(&raop
->logger
);
370 /* Set HTTP callbacks to our handlers */
371 memset(&httpd_cbs
, 0, sizeof(httpd_cbs
));
372 httpd_cbs
.opaque
= raop
;
373 httpd_cbs
.conn_init
= &conn_init
;
374 httpd_cbs
.conn_request
= &conn_request
;
375 httpd_cbs
.conn_destroy
= &conn_destroy
;
377 /* Initialize the http daemon */
378 httpd
= httpd_init(&raop
->logger
, &httpd_cbs
, 10, 1);
384 /* Copy callbacks structure */
385 memcpy(&raop
->callbacks
, callbacks
, sizeof(raop_callbacks_t
));
387 /* Initialize RSA key handler */
388 rsakey
= rsakey_init_pem(pemkey
);
396 raop
->rsakey
= rsakey
;
402 raop_init_from_keyfile(raop_callbacks_t
*callbacks
, const char *keyfile
)
407 if (utils_read_file(&pemstr
, keyfile
) < 0) {
410 raop
= raop_init(callbacks
, pemstr
);
416 raop_destroy(raop_t
*raop
)
421 httpd_destroy(raop
->httpd
);
422 rsakey_destroy(raop
->rsakey
);
425 /* Cleanup the network */
431 raop_start(raop_t
*raop
, unsigned short *port
, const char *hwaddr
, int hwaddrlen
, const char *password
)
437 /* Validate hardware address */
438 if (hwaddrlen
> MAX_HWADDR_LEN
) {
442 /* Validate password */
443 if (strlen(password
) > MAX_PASSWORD_LEN
) {
447 /* Copy hwaddr to the raop structure */
448 memcpy(raop
->hwaddr
, hwaddr
, hwaddrlen
);
449 raop
->hwaddrlen
= hwaddrlen
;
451 /* Copy password to the raop structure */
452 strncpy(raop
->password
, password
, MAX_PASSWORD_LEN
);
454 return httpd_start(raop
->httpd
, port
);
458 raop_stop(raop_t
*raop
)
462 httpd_stop(raop
->httpd
);