2 * Copyright (C) 2011-2012 Juho Vähä-Herttua
4 * This library is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU Lesser General Public
6 * License as published by the Free Software Foundation; either
7 * version 2.1 of the License, or (at your option) any later version.
9 * This library is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
12 * Lesser General Public License for more details.
32 /* Actually 345 bytes for 2048-bit key */
33 #define MAX_SIGNATURE_LEN 512
35 /* Let's just decide on some length */
36 #define MAX_PASSWORD_LEN 64
38 /* MD5 as hex fits here */
39 #define MAX_NONCE_LEN 32
42 /* Callbacks for audio */
43 raop_callbacks_t callbacks
;
48 /* HTTP daemon and RSA key */
52 /* Hardware address information */
53 unsigned char hwaddr
[MAX_HWADDR_LEN
];
56 /* Password information */
57 char password
[MAX_PASSWORD_LEN
+1];
67 unsigned char *remote
;
70 char nonce
[MAX_NONCE_LEN
+1];
72 typedef struct raop_conn_s raop_conn_t
;
75 conn_init(void *opaque
, unsigned char *local
, int locallen
, unsigned char *remote
, int remotelen
)
79 conn
= calloc(1, sizeof(raop_conn_t
));
84 conn
->raop_rtp
= NULL
;
87 logger_log(&conn
->raop
->logger
, LOGGER_INFO
,
89 local
[0], local
[1], local
[2], local
[3]);
90 } else if (locallen
== 16) {
91 logger_log(&conn
->raop
->logger
, LOGGER_INFO
,
92 "Local: %02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x",
93 local
[0], local
[1], local
[2], local
[3], local
[4], local
[5], local
[6], local
[7],
94 local
[8], local
[9], local
[10], local
[11], local
[12], local
[13], local
[14], local
[15]);
97 logger_log(&conn
->raop
->logger
, LOGGER_INFO
,
98 "Remote: %d.%d.%d.%d",
99 remote
[0], remote
[1], remote
[2], remote
[3]);
100 } else if (remotelen
== 16) {
101 logger_log(&conn
->raop
->logger
, LOGGER_INFO
,
102 "Remote: %02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x:%02x%02x",
103 remote
[0], remote
[1], remote
[2], remote
[3], remote
[4], remote
[5], remote
[6], remote
[7],
104 remote
[8], remote
[9], remote
[10], remote
[11], remote
[12], remote
[13], remote
[14], remote
[15]);
107 conn
->local
= malloc(locallen
);
109 memcpy(conn
->local
, local
, locallen
);
111 conn
->remote
= malloc(remotelen
);
112 assert(conn
->remote
);
113 memcpy(conn
->remote
, remote
, remotelen
);
115 conn
->locallen
= locallen
;
116 conn
->remotelen
= remotelen
;
118 digest_generate_nonce(conn
->nonce
, sizeof(conn
->nonce
));
123 conn_request(void *ptr
, http_request_t
*request
, http_response_t
**response
)
125 raop_conn_t
*conn
= ptr
;
126 raop_t
*raop
= conn
->raop
;
128 http_response_t
*res
;
131 const char *challenge
;
132 int require_auth
= 0;
134 method
= http_request_get_method(request
);
135 cseq
= http_request_get_header(request
, "CSeq");
136 if (!method
|| !cseq
) {
140 res
= http_response_init("RTSP/1.0", 200, "OK");
141 if (strlen(raop
->password
)) {
142 const char *authorization
;
144 authorization
= http_request_get_header(request
, "Authorization");
146 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Our nonce: %s", conn
->nonce
);
147 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Authorization: %s", authorization
);
149 if (!digest_is_valid("AppleTV", raop
->password
, conn
->nonce
, method
, http_request_get_url(request
), authorization
)) {
153 /* Allocate the authenticate string */
154 authstrlen
= sizeof("Digest realm=\"AppleTV\", nonce=\"\"") + sizeof(conn
->nonce
) + 1;
155 authstr
= malloc(authstrlen
);
157 /* Concatenate the authenticate string */
158 memset(authstr
, 0, authstrlen
);
159 strcat(authstr
, "Digest realm=\"AppleTV\", nonce=\"");
160 strcat(authstr
, conn
->nonce
);
161 strcat(authstr
, "\"");
163 /* Construct a new response */
165 http_response_destroy(res
);
166 res
= http_response_init("RTSP/1.0", 401, "Unauthorized");
167 http_response_add_header(res
, "WWW-Authenticate", authstr
);
170 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "AUTHENTICATION SUCCESS!");
174 http_response_add_header(res
, "CSeq", cseq
);
175 http_response_add_header(res
, "Apple-Jack-Status", "connected; type=analog");
177 challenge
= http_request_get_header(request
, "Apple-Challenge");
178 if (!require_auth
&& challenge
) {
179 char signature
[MAX_SIGNATURE_LEN
];
181 memset(signature
, 0, sizeof(signature
));
182 rsakey_sign(raop
->rsakey
, signature
, sizeof(signature
), challenge
,
183 conn
->local
, conn
->locallen
, raop
->hwaddr
, raop
->hwaddrlen
);
184 http_response_add_header(res
, "Apple-Response", signature
);
186 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Got challenge: %s", challenge
);
187 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Got response: %s", signature
);
191 /* Do nothing in case of authentication request */
192 } else if (!strcmp(method
, "OPTIONS")) {
193 http_response_add_header(res
, "Public", "ANNOUNCE, SETUP, RECORD, PAUSE, FLUSH, TEARDOWN, OPTIONS, GET_PARAMETER, SET_PARAMETER");
194 } else if (!strcmp(method
, "ANNOUNCE")) {
198 unsigned char aeskey
[16];
199 unsigned char aesiv
[16];
200 int aeskeylen
, aesivlen
;
202 data
= http_request_get_data(request
, &datalen
);
205 const char *remotestr
, *fmtpstr
, *aeskeystr
, *aesivstr
;
207 sdp
= sdp_init(data
, datalen
);
208 remotestr
= sdp_get_connection(sdp
);
209 fmtpstr
= sdp_get_fmtp(sdp
);
210 aeskeystr
= sdp_get_rsaaeskey(sdp
);
211 aesivstr
= sdp_get_aesiv(sdp
);
213 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "connection: %s", remotestr
);
214 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "fmtp: %s", fmtpstr
);
215 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "rsaaeskey: %s", aeskeystr
);
216 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "aesiv: %s", aesivstr
);
218 aeskeylen
= rsakey_decrypt(raop
->rsakey
, aeskey
, sizeof(aeskey
), aeskeystr
);
219 aesivlen
= rsakey_parseiv(raop
->rsakey
, aesiv
, sizeof(aesiv
), aesivstr
);
220 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "aeskeylen: %d", aeskeylen
);
221 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "aesivlen: %d", aesivlen
);
223 if (conn
->raop_rtp
) {
224 /* This should never happen */
225 raop_rtp_destroy(conn
->raop_rtp
);
226 conn
->raop_rtp
= NULL
;
228 conn
->raop_rtp
= raop_rtp_init(&raop
->logger
, &raop
->callbacks
, remotestr
, fmtpstr
, aeskey
, aesiv
);
231 } else if (!strcmp(method
, "SETUP")) {
232 unsigned short remote_cport
=0, remote_tport
=0;
233 unsigned short cport
=0, tport
=0, dport
=0;
234 const char *transport
;
238 transport
= http_request_get_header(request
, "Transport");
241 logger_log(&conn
->raop
->logger
, LOGGER_INFO
, "Transport: %s", transport
);
242 use_udp
= strncmp(transport
, "RTP/AVP/TCP", 11);
244 char *original
, *current
, *tmpstr
;
246 current
= original
= strdup(transport
);
248 while ((tmpstr
= utils_strsep(¤t
, ";")) != NULL
) {
249 unsigned short value
;
252 ret
= sscanf(tmpstr
, "control_port=%hu", &value
);
254 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Found remote control port: %hu", value
);
255 remote_cport
= value
;
257 ret
= sscanf(tmpstr
, "timing_port=%hu", &value
);
259 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Found remote timing port: %hu", value
);
260 remote_tport
= value
;
266 raop_rtp_start(conn
->raop_rtp
, use_udp
, remote_cport
, remote_tport
, &cport
, &tport
, &dport
);
268 memset(buffer
, 0, sizeof(buffer
));
270 snprintf(buffer
, sizeof(buffer
)-1,
271 "RTP/AVP/UDP;unicast;mode=record;timing_port=%hu;events;control_port=%hu;server_port=%hu",
272 tport
, cport
, dport
);
274 snprintf(buffer
, sizeof(buffer
)-1,
275 "RTP/AVP/TCP;unicast;interleaved=0-1;mode=record;server_port=%u",
278 logger_log(&conn
->raop
->logger
, LOGGER_INFO
, "Responding with %s", buffer
);
279 http_response_add_header(res
, "Transport", buffer
);
280 http_response_add_header(res
, "Session", "DEADBEEF");
281 } else if (!strcmp(method
, "SET_PARAMETER")) {
286 data
= http_request_get_data(request
, &datalen
);
287 datastr
= calloc(1, datalen
+1);
288 if (data
&& datastr
&& conn
->raop_rtp
) {
289 memcpy(datastr
, data
, datalen
);
290 if (!strncmp(datastr
, "volume: ", 8)) {
292 sscanf(datastr
+8, "%f", &vol
);
293 raop_rtp_set_volume(conn
->raop_rtp
, vol
);
297 } else if (!strcmp(method
, "FLUSH")) {
301 rtpinfo
= http_request_get_header(request
, "RTP-Info");
303 logger_log(&conn
->raop
->logger
, LOGGER_INFO
, "Flush with RTP-Info: %s", rtpinfo
);
304 if (!strncmp(rtpinfo
, "seq=", 4)) {
305 next_seq
= strtol(rtpinfo
+4, NULL
, 10);
308 if (conn
->raop_rtp
) {
309 raop_rtp_flush(conn
->raop_rtp
, next_seq
);
311 } else if (!strcmp(method
, "TEARDOWN")) {
312 http_response_add_header(res
, "Connection", "close");
313 if (conn
->raop_rtp
) {
314 /* Destroy our RTP session */
315 raop_rtp_stop(conn
->raop_rtp
);
316 raop_rtp_destroy(conn
->raop_rtp
);
317 conn
->raop_rtp
= NULL
;
320 http_response_finish(res
, NULL
, 0);
322 logger_log(&conn
->raop
->logger
, LOGGER_DEBUG
, "Got request %s with URL %s", method
, http_request_get_url(request
));
327 conn_destroy(void *ptr
)
329 raop_conn_t
*conn
= ptr
;
331 if (conn
->raop_rtp
) {
332 /* This is done in case TEARDOWN was not called */
333 raop_rtp_destroy(conn
->raop_rtp
);
341 raop_init(raop_callbacks_t
*callbacks
, const char *pemkey
)
346 httpd_callbacks_t httpd_cbs
;
351 /* Initialize the network */
352 if (netutils_init() < 0) {
356 /* Validate the callbacks structure */
357 if (!callbacks
->audio_init
|| !callbacks
->audio_set_volume
||
358 !callbacks
->audio_process
|| !callbacks
->audio_flush
||
359 !callbacks
->audio_destroy
) {
363 /* Allocate the raop_t structure */
364 raop
= calloc(1, sizeof(raop_t
));
369 /* Initialize the logger */
370 logger_init(&raop
->logger
);
372 /* Set HTTP callbacks to our handlers */
373 memset(&httpd_cbs
, 0, sizeof(httpd_cbs
));
374 httpd_cbs
.opaque
= raop
;
375 httpd_cbs
.conn_init
= &conn_init
;
376 httpd_cbs
.conn_request
= &conn_request
;
377 httpd_cbs
.conn_destroy
= &conn_destroy
;
379 /* Initialize the http daemon */
380 httpd
= httpd_init(&raop
->logger
, &httpd_cbs
, 10, 1);
386 /* Copy callbacks structure */
387 memcpy(&raop
->callbacks
, callbacks
, sizeof(raop_callbacks_t
));
389 /* Initialize RSA key handler */
390 rsakey
= rsakey_init_pem(pemkey
);
398 raop
->rsakey
= rsakey
;
404 raop_init_from_keyfile(raop_callbacks_t
*callbacks
, const char *keyfile
)
409 if (utils_read_file(&pemstr
, keyfile
) < 0) {
412 raop
= raop_init(callbacks
, pemstr
);
418 raop_destroy(raop_t
*raop
)
423 httpd_destroy(raop
->httpd
);
424 rsakey_destroy(raop
->rsakey
);
427 /* Cleanup the network */
433 raop_is_running(raop_t
*raop
)
437 return httpd_is_running(raop
->httpd
);
441 raop_start(raop_t
*raop
, unsigned short *port
, const char *hwaddr
, int hwaddrlen
, const char *password
)
447 /* Validate hardware address */
448 if (hwaddrlen
> MAX_HWADDR_LEN
) {
452 memset(raop
->password
, 0, sizeof(raop
->password
));
454 /* Validate password */
455 if (strlen(password
) > MAX_PASSWORD_LEN
) {
459 /* Copy password to the raop structure */
460 strncpy(raop
->password
, password
, MAX_PASSWORD_LEN
);
463 /* Copy hwaddr to the raop structure */
464 memcpy(raop
->hwaddr
, hwaddr
, hwaddrlen
);
465 raop
->hwaddrlen
= hwaddrlen
;
467 return httpd_start(raop
->httpd
, port
);
471 raop_stop(raop_t
*raop
)
475 httpd_stop(raop
->httpd
);