do {
bytes = kws_raw_read(kws, kws->buffer + kws->datalen, kws->buflen - kws->datalen, WS_BLOCK);
} while (bytes > 0 && !strstr((char *)kws->buffer, "\r\n\r\n"));
-
- char accept[128] = "";
- cheezy_get_var(kws->buffer, "Sec-WebSocket-Accept", accept, sizeof(accept));
+ if (bytes > 0) {
+ char accept[128] = "";
+
+ cheezy_get_var(kws->buffer, "Sec-WebSocket-Accept", accept, sizeof(accept));
- if (zstr_buf(accept) || !verify_accept(kws, enonce, (char *)accept)) {
+ if (zstr_buf(accept) || !verify_accept(kws, enonce, (char *)accept)) {
+ return -1;
+ }
+ } else {
return -1;
}
}
}
- if (bytes > kws->buflen -1) {
+ if (bytes < 0 || bytes > kws->buflen -1) {
goto err;
}
if (!kws->stay_open) {
- snprintf(respond, sizeof(respond), "HTTP/1.1 400 Bad Request\r\n"
- "Sec-WebSocket-Version: 13\r\n\r\n");
- respond[511] = 0;
+ if (bytes > 0) {
+ snprintf(respond, sizeof(respond), "HTTP/1.1 400 Bad Request\r\n"
+ "Sec-WebSocket-Version: 13\r\n\r\n");
+ respond[511] = 0;
- kws_raw_write(kws, respond, strlen(respond));
+ kws_raw_write(kws, respond, strlen(respond));
+ }
kws_close(kws, WS_NONE);
}
}
if (!kws->handshake) {
- return kws_close(kws, WS_PROTO_ERR);
+ return kws_close(kws, WS_NONE);
}
if ((kws->datalen = kws_raw_read(kws, kws->buffer, 9, kws->block)) < 0) {
if (kws->datalen == -2) {
return -2;
}
- return kws_close(kws, WS_PROTO_ERR);
+ return kws_close(kws, WS_NONE);
}
if (kws->datalen < need) {
- if ((kws->datalen += kws_raw_read(kws, kws->buffer + kws->datalen, 9 - kws->datalen, WS_BLOCK)) < need) {
+ ssize_t bytes = kws_raw_read(kws, kws->buffer + kws->datalen, 9 - kws->datalen, WS_BLOCK);
+
+ if (bytes < 0 || (kws->datalen += bytes) < need) {
/* too small - protocol err */
- return kws_close(kws, WS_PROTO_ERR);
+ return kws_close(kws, WS_NONE);
}
}
if (need > kws->datalen) {
/* too small - protocol err */
*oc = WSOC_CLOSE;
- return kws_close(kws, WS_PROTO_ERR);
+ return kws_close(kws, WS_NONE);
}
}
more = kws_raw_read(kws, kws->buffer + kws->datalen, need - kws->datalen, WS_BLOCK);
- if (more < need - kws->datalen) {
+ if (more < 0 || more < need - kws->datalen) {
*oc = WSOC_CLOSE;
- return kws_close(kws, WS_PROTO_ERR);
+ return kws_close(kws, WS_NONE);
} else {
kws->datalen += more;
}
if (need > kws->datalen) {
/* too small - protocol err */
*oc = WSOC_CLOSE;
- return kws_close(kws, WS_PROTO_ERR);
+ return kws_close(kws, WS_NONE);
}
u16 = (uint16_t *) kws->payload;
if (need < 0) {
/* invalid read - protocol err .. */
*oc = WSOC_CLOSE;
- return kws_close(kws, WS_PROTO_ERR);
+ return kws_close(kws, WS_NONE);
}
blen = kws->body - kws->bbuffer;
if (r < 1) {
/* invalid read - protocol err .. */
*oc = WSOC_CLOSE;
- return kws_close(kws, WS_PROTO_ERR);
+ return kws_close(kws, WS_NONE);
}
kws->datalen += r;
#define ms_sleep(x) usleep( x * 1000);
#else
#define ms_sleep(x) Sleep( x );
-#endif
+#endif
#ifdef _MSC_VER
/* warning C4706: assignment within conditional expression*/
#ifndef WSS_STANDALONE
-void init_ssl(void)
+void init_ssl(void)
{
// SSL_library_init();
}
-void deinit_ssl(void)
+void deinit_ssl(void)
{
return;
}
assert(ws_globals.ssl_ctx);
/* Disable SSLv2 */
- SSL_CTX_set_options(globals.ssl_ctx, SSL_OP_NO_SSLv2);
+ SSL_CTX_set_options(ws_globals.ssl_ctx, SSL_OP_NO_SSLv2);
/* Disable SSLv3 */
- SSL_CTX_set_options(globals.ssl_ctx, SSL_OP_NO_SSLv3);
+ SSL_CTX_set_options(ws_globals.ssl_ctx, SSL_OP_NO_SSLv3);
/* Disable TLSv1 */
- SSL_CTX_set_options(globals.ssl_ctx, SSL_OP_NO_TLSv1);
+ SSL_CTX_set_options(ws_globals.ssl_ctx, SSL_OP_NO_TLSv1);
/* Disable Compression CRIME (Compression Ratio Info-leak Made Easy) */
- SSL_CTX_set_options(globals.ssl_ctx, SSL_OP_NO_COMPRESSION);
+ SSL_CTX_set_options(ws_globals.ssl_ctx, SSL_OP_NO_COMPRESSION);
/* set the local certificate from CertFile */
SSL_CTX_use_certificate_file(ws_globals.ssl_ctx, ws_globals.cert, SSL_FILETYPE_PEM);
/* set the private key from KeyFile */
e = strchr(v, '\n');
}
}
-
+
if (v && e) {
int cplen;
size_t len = e - v;
-
+
if (len > buflen - 1) {
cplen = buflen -1;
} else {
cplen = len;
}
-
+
strncpy(buf, v, cplen);
*(buf+cplen) = '\0';
return 1;
}
-
+
}
}
return 0;
}
-static int b64encode(unsigned char *in, size_t ilen, unsigned char *out, size_t olen)
+static int b64encode(unsigned char *in, size_t ilen, unsigned char *out, size_t olen)
{
int y=0,bytes=0;
size_t x=0;
SHA1Update(&sha, in, strlen(in));
SHA1Final(&sha, digest);
}
-#else
+#else
static void sha1_digest(unsigned char *digest, char *in)
{
}
}
- if (bytes > wsh->buflen -1) {
+ if (bytes < 0 || bytes > wsh->buflen -1) {
goto err;
}
*(wsh->buffer + wsh->datalen) = '\0';
-
+
if (strncasecmp(wsh->buffer, "GET ", 4)) {
goto err;
}
-
+
p = wsh->buffer + 4;
-
+
e = strchr(p, ' ');
if (!e) {
goto err;
cheezy_get_var(wsh->buffer, "Sec-WebSocket-Key", key, sizeof(key));
cheezy_get_var(wsh->buffer, "Sec-WebSocket-Version", version, sizeof(version));
cheezy_get_var(wsh->buffer, "Sec-WebSocket-Protocol", proto, sizeof(proto));
-
+
if (!*key) {
goto err;
}
-
+
snprintf(input, sizeof(input), "%s%s", key, WEBSOCKET_GUID);
sha1_digest(output, input);
b64encode((unsigned char *)output, SHA1_HASH_SIZE, (unsigned char *)b64, sizeof(b64));
snprintf(proto_buf, sizeof(proto_buf), "Sec-WebSocket-Protocol: %s\r\n", proto);
}
- snprintf(respond, sizeof(respond),
+ snprintf(respond, sizeof(respond),
"HTTP/1.1 101 Switching Protocols\r\n"
"Upgrade: websocket\r\n"
"Connection: Upgrade\r\n"
if (!wsh->stay_open) {
- snprintf(respond, sizeof(respond), "HTTP/1.1 400 Bad Request\r\n"
- "Sec-WebSocket-Version: 13\r\n\r\n");
- respond[511] = 0;
+ if (bytes > 0) {
+ snprintf(respond, sizeof(respond), "HTTP/1.1 400 Bad Request\r\n"
+ "Sec-WebSocket-Version: 13\r\n\r\n");
+ respond[511] = 0;
- ws_raw_write(wsh, respond, strlen(respond));
+ ws_raw_write(wsh, respond, strlen(respond));
+ }
ws_close(wsh, WS_NONE);
}
if (r == -1) {
err = SSL_get_error(wsh->ssl, r);
-
+
if (err == SSL_ERROR_WANT_READ) {
if (!block) {
r = -2;
}
}
} while (r == -1 && xp_is_blocking(xp_errno()) && wsh->x < 1000);
-
+
end:
if (wsh->x >= 10000 || (block && wsh->x >= 1000)) {
if (r >= 0) {
wsh->x = 0;
}
-
+
return r;
}
if (ssl_err) {
r = ssl_err * -1;
}
-
+
return r;
}
do {
r = send(wsh->sock, (void *)((unsigned char *)data + wrote), bytes - wrote, 0);
-
+
if (r > 0) {
wrote += r;
}
}
ms_sleep(ms);
}
-
+
} while (--sanity > 0 && ((r == -1 && xp_is_blocking(xp_errno())) || (wsh->block && wrote < bytes)));
-
+
//if (r<0) {
//printf("wRITE FAIL: %s\n", strerror(errno));
//}
if (code == 0) {
return -1;
}
-
+
if (code < 0) {
if (code == -1 && SSL_get_error(wsh->ssl, code) != SSL_ERROR_WANT_READ) {
return -1;
}
} while (wsh->sanity > 0);
-
+
if (!wsh->sanity) {
return -1;
}
-
+
}
while (!wsh->down && !wsh->handshake) {
}
wsh->logical_established = 1;
-
+
return 0;
}
if (wsh->down > 1) {
return;
}
-
+
wsh->down = 2;
if (wsh->write_buffer) {
}
-ssize_t ws_close(wsh_t *wsh, int16_t reason)
+ssize_t ws_close(wsh_t *wsh, int16_t reason)
{
-
+
if (wsh->down) {
return -1;
}
wsh->down = 1;
-
+
if (wsh->uri) {
free(wsh->uri);
wsh->uri = NULL;
wsh->sock = ws_sock_invalid;
return reason * -1;
-
+
}
ssize_t ws_read_frame(wsh_t *wsh, ws_opcode_t *oc, uint8_t **data)
{
-
+
ssize_t need = 2;
char *maskp;
int ll = 0;
}
if (!wsh->handshake) {
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
if ((wsh->datalen = ws_raw_read(wsh, wsh->buffer, 9, wsh->block)) < 0) {
if (wsh->datalen == -2) {
return -2;
}
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
-
+
if (wsh->datalen < need) {
- if ((wsh->datalen += ws_raw_read(wsh, wsh->buffer + wsh->datalen, 9 - wsh->datalen, WS_BLOCK)) < need) {
+ ssize_t bytes = ws_raw_read(wsh, wsh->buffer + wsh->datalen, 9 - wsh->datalen, WS_BLOCK);
+
+ if (bytes < 0 || (wsh->datalen += bytes) < need) {
/* too small - protocol err */
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
}
{
int fin = (wsh->buffer[0] >> 7) & 1;
int mask = (wsh->buffer[1] >> 7) & 1;
-
+
if (!fin && *oc != WSOC_CONTINUATION) {
frag = 1;
if (mask) {
need += 4;
-
+
if (need > wsh->datalen) {
/* too small - protocol err */
*oc = WSOC_CLOSE;
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
}
wsh->plen = wsh->buffer[1] & 0x7f;
wsh->payload = &wsh->buffer[2];
-
+
if (wsh->plen == 127) {
uint64_t *u64;
int more = 0;
more = ws_raw_read(wsh, wsh->buffer + wsh->datalen, need - wsh->datalen, WS_BLOCK);
- if (more < need - wsh->datalen) {
+ if (more < 0 || more < need - wsh->datalen) {
*oc = WSOC_CLOSE;
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
} else {
wsh->datalen += more;
}
}
-
+
u64 = (uint64_t *) wsh->payload;
wsh->payload += 8;
wsh->plen = ntoh64(*u64);
if (need > wsh->datalen) {
/* too small - protocol err */
*oc = WSOC_CLOSE;
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
u16 = (uint16_t *) wsh->payload;
if (need < 0) {
/* invalid read - protocol err .. */
*oc = WSOC_CLOSE;
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
blen = wsh->body - wsh->bbuffer;
if (need + blen > (ssize_t)wsh->bbuflen) {
void *tmp;
-
+
wsh->bbuflen = need + blen + wsh->rplen;
if ((tmp = realloc(wsh->bbuffer, wsh->bbuflen))) {
}
wsh->rplen = wsh->plen - need;
-
+
if (wsh->rplen) {
memcpy(wsh->body, wsh->payload, wsh->rplen);
}
-
+
while(need) {
ssize_t r = ws_raw_read(wsh, wsh->body + wsh->rplen, need, WS_BLOCK);
if (r < 1) {
/* invalid read - protocol err .. */
*oc = WSOC_CLOSE;
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
wsh->datalen += r;
wsh->rplen += r;
need -= r;
}
-
+
if (mask && maskp) {
ssize_t i;
wsh->body[i] ^= maskp[i % 4];
}
}
-
+
if (*oc == WSOC_PING) {
ws_write_frame(wsh, WSOC_PONG, wsh->body, wsh->rplen);
}
*data = (uint8_t *)wsh->bbuffer;
-
+
//printf("READ[%ld][%d]-----------------------------:\n[%s]\n-------------------------------\n", wsh->packetlen, *oc, (char *)*data);
hdr[1] = 127;
hlen += 8;
-
+
u64 = (uint64_t *) &hdr[2];
*u64 = hton64(bytes);
}
abort();
}
}
-
+
bp = (uint8_t *) wsh->write_buffer;
memcpy(bp, (void *) &hdr[0], hlen);
memcpy(bp + hlen, data, bytes);
-
+
raw_ret = ws_raw_write(wsh, bp, (hlen + bytes));
if (raw_ret != (ssize_t) (hlen + bytes)) {
return raw_ret;
}
-
+
return bytes;
}
}
}
- if (bytes > wsh->buflen -1) {
+ if (bytes < 0 || bytes > wsh->buflen -1) {
goto err;
}
if (!wsh->stay_open) {
- snprintf(respond, sizeof(respond), "HTTP/1.1 400 Bad Request\r\n"
- "Sec-WebSocket-Version: 13\r\n\r\n");
- respond[511] = 0;
+ if (bytes > 0) {
+ snprintf(respond, sizeof(respond), "HTTP/1.1 400 Bad Request\r\n"
+ "Sec-WebSocket-Version: 13\r\n\r\n");
+ respond[511] = 0;
- ws_raw_write(wsh, respond, strlen(respond));
+ ws_raw_write(wsh, respond, strlen(respond));
+ }
ws_close(wsh, WS_NONE);
}
}
if (!wsh->handshake) {
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
if ((wsh->datalen = ws_raw_read(wsh, wsh->buffer, 9, wsh->block)) < 0) {
if (wsh->datalen == -2) {
return -2;
}
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
if (wsh->datalen < need) {
- if ((wsh->datalen += ws_raw_read(wsh, wsh->buffer + wsh->datalen, 9 - wsh->datalen, WS_BLOCK)) < need) {
+ ssize_t bytes = ws_raw_read(wsh, wsh->buffer + wsh->datalen, 9 - wsh->datalen, WS_BLOCK);
+
+ if (bytes < 0 || (wsh->datalen += bytes) < need) {
/* too small - protocol err */
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
}
if (need > wsh->datalen) {
/* too small - protocol err */
*oc = WSOC_CLOSE;
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
}
more = ws_raw_read(wsh, wsh->buffer + wsh->datalen, need - wsh->datalen, WS_BLOCK);
- if (more < need - wsh->datalen) {
+ if (more < 0 || more < need - wsh->datalen) {
*oc = WSOC_CLOSE;
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
} else {
wsh->datalen += more;
}
if (need > wsh->datalen) {
/* too small - protocol err */
*oc = WSOC_CLOSE;
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
u16 = (uint16_t *) wsh->payload;
if (need < 0) {
/* invalid read - protocol err .. */
*oc = WSOC_CLOSE;
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
blen = wsh->body - wsh->bbuffer;
if (r < 1) {
/* invalid read - protocol err .. */
*oc = WSOC_CLOSE;
- return ws_close(wsh, WS_PROTO_ERR);
+ return ws_close(wsh, WS_NONE);
}
wsh->datalen += r;
projects / thirdparty / freeswitch.git / commitdiff
