认证流程【5】-authenticate_client()函数

最新推荐文章于 2024-08-06 11:07:15 发布
原创 最新推荐文章于 2024-08-06 11:07:15 发布 · 1.2k 阅读 · 0 ·
CC 4.0 BY-SA版权
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
文章标签:

#WifiDog #认证 #源码


void authenticate_client(request *r)
{
    t_client    *client;
    t_authresponse  auth_response;
       auth_response.ext = NULL;
    char    *mac,
        *token;
    char *urlFragment = NULL;
    s_config    *config = NULL;
    t_auth_serv *auth_server = NULL;

    LOCK_CLIENT_LIST();

     /* 之前已经把这个客户端追加到链表里了,所以首先去客户端链表里找*/
    client = client_list_find_by_ip(r->clientAddr);

    if (client == NULL) {
        debug(LOG_ERR, "authenticate_client(): Could not find client for %s", r->clientAddr);
        UNLOCK_CLIENT_LIST();
        return;
    }
   
    mac = safe_strdup(client->mac);
    token = safe_strdup(client->token);
    /*************************************************************************/

    UNLOCK_CLIENT_LIST();
   
    /*
     * At this point we've released the lock while we do an HTTP request since it could
     * take multiple seconds to do and the gateway would effectively be frozen if we
     * kept the lock.
     */
     /* 网关将此客户端的mac、ip、token发送个login 请求到认证服务器
           验证此token 和之前认证服务器给客户端的token 是否一致 */
    auth_server_request(&auth_response, REQUEST_TYPE_LOGIN, r->clientAddr, mac, token, 0, 0);
&
最低0.47元/天 解锁文章
Nakama:Nakama用户认证与授权机制_2024-07-24_10-37-44.Tex
02-16 1069
Nakama的用户认证与授权机制为开发者提供了灵活且安全的用户管理方案。通过设置不同类型的账户,实现多样化的登录方式,以及精细的会话管理,Nakama确保了用户数据的安全性和应用的流畅体验。开发者可以根据应用需求选择最适合的认证方式,并利用会话管理功能来增强应用的安全性和用户交互。注意:上述代码示例假设你已经安装了Nakama的Python客户端库,并且你的Nakama服务器已经正确配置。在实际应用中,你需要替换和为你的Nakama服务器地址和API密钥。
【QNX+Android虚拟化方案】51 - libDSI_MAX9678x_0.so驱动库 之 QDI_Panel_SetPower上下电流程及QDI_Panel_GetInfo 获取显示屏信息
|~~~热爱生活、努力学习的小伙汁~~~|
05-30 1374
【QNX+Android虚拟化方案】51 - libDSI_MAX9678x_0.so驱动库 之 QDI_Panel_SetPower上下电流程及QDI_Panel_GetInfo 获取显示屏信息等代码分析
[CVSession::authenticateClient]
csdn20142的博客
01-27 151
[CVSession::authenticateClient]:Remote system []. Failed authentication returned from server. Published 01/16...
Client cannot authenticate via:[TOKEN, KERBEROS]
cn_lynn的专栏
03-11 4420
kerberos认证报错
Spring Boot + Spring Security Oauth 搭建SSO服务器和客户端教程
李剑
04-26 2691
简介 本项目分为auth-server(auth-server-demo)和auth-client(auth-clien-demo)两个部分,两个项目都采用Spring boot搭建,为了演示方便,采用内存存储用户和token,登录与授权页面都引用自带的页面,虽然样式不美观,但不影响演示效果。 auth-server-demo引用了spring-cloud-starter-oauth2依赖,他...
Oauth2单点登录 vue前后端分离实现
weixin_39515823的博客
04-16 5498
Oauth2+Vue实现前后端分离,多域名下的单点登录。
wifidog 源码初分析(三)
技术无止境
04-05 1496
上一篇分析了 接入设备 在接入路由器,并发起首次 HTTP/80 请求到路由器上时,wifidog 是如何将此 HTTP 请求重定向至 auth-server 的流程。 之后接入设备的浏览器接收到 wifidog 返回的 302 重定向请求后,会将页面重定向至 auth-server 的 /login 页面,并且在此 URL 中会携带一些路由器/网关 参数,以及接入设备的 MAC 地址和客户
精选资源
http-client-digest_auth:针对Crystal的RFC 2617摘要访问身份验证的实现
02-04
摘要认证的工作流程大致如下: 1. **请求**:客户端发送未认证的HTTP请求。 2. **挑战**:服务器返回401未经授权响应,包含一个`WWW-Authenticate`头,提供摘要认证的参数。 3. **计算响应**:客户端使用收到的参数...
认证流程【4】-http_callback_auth()函数
lee_bin的博客
09-11 828
void http_callback_auth(httpd *webserver, request *r) {     t_client    *client;     httpVar * token;     char    *mac;     httpVar *logout = httpdGetVariableByName(r, "logout");     if (wx_li
Android Wifi断开问题分析和802.11原因码
sdkdlwk的博客
12-03 5万+
Android Wifi连接和断链分析思路。1.密码错误导致的连接失败2.关联被拒绝3.热点未回复AUTH_RSP或者STA未收到 AUTH_RSP4.热点未回复ASSOC_RSP或者STA未收到ASSOC_RSP6.发生roaming7.AP发送了DEAUTH帧导致断开连接下面详细介绍。
OAuth2-client配置oauth2Login源码解读
m0_53097017的博客
11-08 2633
本文主要讲述了oauth-client2.0的oauthLogin配置的源码解读,和讲解使用gateway以客户端身份去访问oautn2.0的授权服务器的过程
搭建微服务下统一认证授权服务,鉴权客户端大致流程(基于无状态)
BurukeYou
02-11 7058
1.简介 基于无状态令牌(jwt)的认证方案,服务端无需保存用户登陆状态 基于spring security框架 + oauth2协议 搭建 基于spring cloud nacos,服务调用使用RestTemplate 前置知识: jwt (也就是这里用到的token) 就是一大串加密的字符串,用户的登陆状态都保存在里面,但这种字符串里面的数据不能被修改,一但修改校验一定会出错....
wpa_supplicant日志分析记录
yudelian的博客
10-27 2322
目录 1、应该是sta向热点发送deauth,通过P2P_GROUP_REMOVE p2p0 1、应该是sta向热点发送deauth,通过P2P_GROUP_REMOVE p2p0 Jan 1 00:00:10 Avatar daemon.debug wpa_supplicant[502]: CTRL-DEBUG: ctrl_sock-sendto: sock=13 sndbuf=163840 outq=0 send_len=263 Jan 1 00:00:10 Avatar daemon...
微服务国产化改造-金蝶Apusic应用服务器
全栈攻城狮JSON的博客
09-30 6125
一、金蝶Apusic配置 2.1、修改启动端口 注意查看端口是否被使用 lsof -i tcp:9999 修改/opt/AAS/domains/mydomain/config/apusic.conf <ATTRIBUTE NAME="Port" VALUE="9999" /> 2.2、修改jvm启动参数 根据需要,修改/opt/AAS/domains/mydomain/bin/data.xml <aasjvm>-Xms2g -Xmx2g -XX:MaxPermSize=76
python与mongoDB交互,怎么与mongoDB建立数据库连接?
9527
09-06 442
mongoDB作为存储海量低价值数据的首选数据库,在很多场景都能看到它的身影,它也是一款最像关系型数据库的非关系型数据库 from pymongo import MongoClient #导入客户端代理 client = MongoClient(host='localhost',port=27017) #建立连接 client.admin.authenticate('admin','123...
Auth2.0-Client客户端数据库配置
wenhaipan的博客
11-16 1140
Auth2.0-Client客户端数据库配置 Client客户端信息通常以HardCode方式放在inMemory里面。本文我们将把ta放到数据库里面,以方便维护。 1.0 修改代码如下 privatefinalDataSourcedataSource; @Override publicvoidconfigure(ClientDetailsServiceConfigurerclients)throwsException{ client...
网关与auth微服务缓存打通
Sun的个人博客
08-06 876
A 线程把数据删了,正在更新数据库,这个时候 B 线程来了,发现缓存没了,又查数据,又放入缓存。缓存里面存的就一直是老数据了。监听数据库的变化,做一个公共服务,专门来对接缓存刷新。假设数据库更新成功,缓存更新失败,在缓存失效和过期的时候,读取到的都是老数据缓存。删除失败的缓存,作为消息打入 mq,mq 消费者进行监听,再次进行重试刷缓存。缓存更新成功了,数据库更新失败,是不是读取的缓存的都是错误的。比如说有两个线程,一个是 A 线程,一个是 B 线程。更新完数据库之后,再删一次。以上两种,全都不推荐。
4种认证authentication)或授权(authorization)方式
热门推荐
漫游学海之旅
04-12 9万+
Authentication vs. authorization It is easy to confuse authentication with another element of the security plan: authorization. While authentication verifies the user’s identity, authorization verifie...
分析如下RTSP函数流程,并指明哪里实际发送了数据包 int TPSendRtpQueueCb(trans_session_desc_t *desc, trans_stream_t *stream) { RTPDATAFRAME *p_frame = NULL; TPRTSPSERVERSESSION *pSession = NULL; TPRTPPACKAGE *ptr_rtp_package = NULL; int iSessionID = 0; int sendmute = 0; unsigned char mutebuf[RTP_MAX_PACKET_SIZE] = {0}; unsigned char RTPextern[RTP_MAX_EXTEN_LEN + 1] = {0}; unsigned char pucPrefix[RTP_PREFIX_SIZE] = {0}; int externtionlen = 0; unsigned long cur_time = 0; struct iovec iov[RTP_MAX_SEND_NUM * 3]; int ret = 0; RETRY_INFO *p_retry_info = NULL; RETRY_INFO tmp_retry_info = {0}; unsigned long long ullCurrentTime = 0; RETURN_VALUE_IF(!desc || !desc->send_data || !desc->priv || !stream->package, 0); p_frame = (RTPDATAFRAME *)desc->send_data; pSession = (TPRTSPSERVERSESSION *)desc->priv; ptr_rtp_package = (TPRTPPACKAGE )stream->package; / 可能底层给的数据是错的,这里就可能出现打包异常,增加一个防护机制 */ RETURN_VALUE_IF(!p_frame->rtp_head_pos || !p_frame->rtp_payload_pos, 0); if(pSession->pRTPServer->bIsRunning != 1) { return 0; } if (pSession->iAudioVideo == RTSP_AUDIO) { pSession->getIFrame = 1; } if (pSession->iAudioVideo == RTSP_META_DATA) { pSession->getIFrame = 1; } if ( ptr_rtp_package->av_codec >= TP_ENCODE_TYPE_AUDIO_MIN && ptr_rtp_package->av_codec <= TP_ENCODE_TYPE_AUDIO_MAX) { iSessionID = RTP_SESSION_AUDIO; } #ifdef RTSP_USE_SMART_DATA else if (TP_ENCODE_TYPE_VIDEO_SMART == ptr_rtp_package->av_codec) { iSessionID = RTP_SESSION_SMART_DATA; } #endif else if (TP_ENCODE_TYPE_VIDEO_META == ptr_rtp_package->av_codec) { iSessionID = RTP_SESSION_META_DATA; } else if (TP_ENCODE_TYPE_VIDEO_SMART != ptr_rtp_package->av_codec) { iSessionID = RTP_SESSION_VIDEO; } //回放数据流中同时有音频与视频数据,onvif回放会出现只拉取音频/视频的操作,此处判断过虑不需要的数据,防止空指针引用 if (pSession->pRTPServer == NULL || pSession->pRTPServer->pSessions[iSessionID] == NULL) { return 0; } if (pSession->iSessionState == TPHTTP_SESSION_STATE_PLAYING && pSession->iCurStreamID == TPRTP_STREAM_ID_ONVIF_REPLAY && ptr_rtp_package->DataFrame.iExtension && pSession->end_time > 0 && pSession->end_time <= (ptr_rtp_package->DataFrame.RTPHeaderExtension.piAddr[0] - SECS_FROM_1900_TO_1970)) { pSession->iSessionState = TPHTTP_SESSION_STATE_PAUSE; pSession->start_time = -1; trans_pause(&pSession->vedio_desc); } p_retry_info = (iSessionID == RTP_SESSION_AUDIO) ? &pSession->audio_retry_info : &pSession->video_retry_info; if (iSessionID != RTP_SESSION_AUDIO && iSessionID != RTP_SESSION_VIDEO) { p_retry_info = &tmp_retry_info; } //没收到I帧数据的话其他的数据丢掉 if ((!pSession->getIFrame && (!ptr_rtp_package->is_iframe || !ptr_rtp_package->is_first_rtp || p_retry_info->retry_flag)) && pSession->iStreamType != TPRTP_STREAM_TYPE_VIDEO_JPEG) { p_retry_info->send_pos = 0; p_retry_info->retry_flag = 0; return 0; } if (!pSession->getIFrame && pSession->ulFirstVideoRTPTS == 0) { pSession->ulFirstVideoRTPTS = (unsigned long)ptr_rtp_package->curPTS; } else if (pSession->getIFrame && pSession->ulFirstAudioRTPTS == 0 && iSessionID == RTP_SESSION_AUDIO) { pSession->ulFirstAudioRTPTS = (unsigned long)ptr_rtp_package->curPTS; } #ifdef RTSP_USE_SMART_DATA else if (pSession->getIFrame && pSession->ulFirstSmartRTPTS == 0 && iSessionID == RTP_SESSION_SMART_DATA) { pSession->ulFirstSmartRTPTS = (unsigned long)ptr_rtp_package->curPTS; } #endif else if (pSession->getIFrame && pSession->ulFirstSmartRTPTS == 0 && iSessionID == RTP_SESSION_META_DATA) { pSession->ulFirstSmartRTPTS = (unsigned long)ptr_rtp_package->curPTS; } pSession->getIFrame = 1; rtsp_send_notify(pSession); #ifdef TAPO_USE_RTSP_MULTITRANS //流控 if (pSession->start_time != -1 && pSession->windowsize != 0 && pSession->stream_seq - pSession->recv_size > pSession->windowsize) { set_retry_info(p_retry_info, ptr_rtp_package, p_frame->rtp_payload_len); p_retry_info->send_pos = 0; return RTSP_SEND_RETRY; } #endif /* 如果音频或视频流没有传输完,则不能交叉传输,需要将剩余数据发完,其他流走重传流程 */ if ((pSession->video_retry_info.send_pos != 0 && iSessionID != RTP_SESSION_VIDEO) || (pSession->audio_retry_info.send_pos != 0 && iSessionID != RTP_SESSION_AUDIO)) { set_retry_info(p_retry_info, ptr_rtp_package, p_frame->rtp_payload_len); p_retry_info->sn = p_frame->iSN; // RTSP_ERROR(“cannot send all data send retry, client ip:%s, dump socket:%d”, pSession->pcClientIP, pSession->iSock); // tcp_dump_info(pSession->iSock); return RTSP_SEND_RETRY; } #ifdef TAPO_USE_RTSP_MULTITRANS //半双工时有语音数据时不发送音频数据 if (RTSPGetMute() == 1 && iSessionID == RTP_SESSION_AUDIO) { sendmute = 1; } #endif if (ptr_rtp_package->av_codec != TP_ENCODE_TYPE_UNDET && iSessionID == RTP_SESSION_VIDEO) { char codestr[TEMP_FORMAT_LEN]; if (ptr_rtp_package->av_codec == TP_ENCODE_TYPE_VIDEO_H264) snprintf(codestr, TEMP_FORMAT_LEN, “H264”); else if (ptr_rtp_package->av_codec == TP_ENCODE_TYPE_VIDEO_H265) snprintf(codestr, TEMP_FORMAT_LEN, “H265”); else if (ptr_rtp_package->av_codec == TP_ENCODE_TYPE_SNAPSHOT_JPEG) { snprintf(codestr, TEMP_FORMAT_LEN, “JPEG”); } else { return 0; } if (strcmp(pSession->SDPServer.SDPInfo.MediaInfo.pcVideoFormat, codestr) != 0) { snprintf(pSession->SDPServer.SDPInfo.MediaInfo.pcVideoFormat, 16, codestr); #ifdef TAPO_USE_RTSP_MULTITRANS RTSPSessionNotificationResChange(pSession, “HD”); #endif } } #ifdef TAPO_USE_RTSP_MULTITRANS /* 仅当multitrans时 */ if (MULTITRANS_NONE != pSession->multitrans_business_type && iSessionID == RTP_SESSION_AUDIO) { char codestr[TEMP_FORMAT_LEN]; if (ptr_rtp_package->av_codec == TP_ENCODE_TYPE_AUDIO_G711A) snprintf(codestr, TEMP_FORMAT_LEN, “PCMA”); else if (ptr_rtp_package->av_codec == TP_ENCODE_TYPE_AUDIO_G711U) snprintf(codestr, TEMP_FORMAT_LEN, “PCMU”); else return 0; if (strcmp(pSession->SDPServer.SDPInfo.MediaInfo.pcAudioFormat, codestr) != 0) { snprintf(pSession->SDPServer.SDPInfo.MediaInfo.pcAudioFormat, 16, codestr); RTSPSessionNotificationResChange(pSession, “HD”); } } #endif if(RTP4SIsMulticast(pSession->pRTPServer) && p_frame->multicast_send == 1) { return 0; } else if(RTP4SIsMulticast(pSession->pRTPServer)) { p_frame->multicast_send = 1; } if ((iSessionID == RTP_SESSION_AUDIO || iSessionID == RTP_SESSION_VIDEO)) { if (p_retry_info->send_pos > 0) { if (iSessionID == RTP_SESSION_AUDIO) { pSession->usCurAudioRTPSN = p_retry_info->sn; p_frame->iSN = pSession->usCurAudioRTPSN++; } else { pSession->usCurVideoRTPSN = p_retry_info->sn; p_frame->iSN = pSession->usCurVideoRTPSN++; } RtspPutUshortToBufBE((unsigned char *)p_frame->rtp_head_pos + 2, p_frame->iSN); } else { if (iSessionID == RTP_SESSION_AUDIO) { p_frame->iSN = pSession->usCurAudioRTPSN++; } else { p_frame->iSN = pSession->usCurVideoRTPSN++; } RtspPutUshortToBufBE((unsigned char *)p_frame->rtp_head_pos + 2, p_frame->iSN); } } RtspPutUintToBufBE((unsigned char *)p_frame->rtp_head_pos + 8, pSession->pRTPServer->pSessions[iSessionID]->iClientSSRC); RtspGetUintFromBufBE((unsigned char *)p_frame->rtp_head_pos + 4, (unsigned int *)&cur_time); RtspPutUintToBufBE((unsigned char *)p_frame->rtp_head_pos + 4, cur_time - ((iSessionID == RTP_SESSION_VIDEO) ? pSession->ulFirstVideoRTPTS : pSession->ulFirstAudioRTPTS)); #ifdef RTSP_USE_SMART_DATA if (RTP_SESSION_SMART_DATA == iSessionID) { RtspPutUintToBufBE((unsigned char *)p_frame->rtp_head_pos + 4, cur_time - pSession->ulFirstSmartRTPTS ); } #endif if (RTP_SESSION_META_DATA == iSessionID) { RtspPutUintToBufBE((unsigned char )p_frame->rtp_head_pos + 4, cur_time - pSession->ulFirstSmartRTPTS ); } #ifdef TAPO_USE_RTSP_MULTITRANS if (ptr_rtp_package->is_first_rtp && pSession->multitrans_business_type != MULTITRANS_NONE) { / I帧 */ if(ptr_rtp_package->is_iframe == 1) { *(p_frame->rtp_head_pos) |= RTP_HEADER_EXTENTION_BIT; /* 只解码I帧 / if (ptr_rtp_package->is_decode_only == 1) { externtionlen = RtspAddExtention(RTPextern, ptr_rtp_package->utc_time, RTP_EXTEN_DECODE_ONLY_BIT); } / 普通I帧 / else { externtionlen = RtspAddExtention(RTPextern, ptr_rtp_package->utc_time, RTP_EXTEN_I_FRAME_BIT); } } / 虚拟I帧 */ else if (ptr_rtp_package->is_virtual_iframe == 1) { *(p_frame->rtp_head_pos) |= RTP_HEADER_EXTENTION_BIT; externtionlen = RtspAddExtention(RTPextern, ptr_rtp_package->utc_time, RTP_EXTEN_VIRTUAL_FRAME_BIT); } } #endif /* TP NVR虚拟I帧的RTP包要包含扩展字段 */ if (pSession->bIsVirtualIFrameEnabled && ptr_rtp_package->is_virtual_iframe == 1 #ifdef TAPO_USE_RTSP_MULTITRANS && pSession->multitrans_business_type == MULTITRANS_NONE #endif ) { *(p_frame->rtp_head_pos) |= RTP_HEADER_EXTENTION_BIT; externtionlen = RtspAddAvbrExtention(RTPextern); } int need_encrypt = pSession->bIsRTPSessionCrypto[iSessionID] && (iSessionID!=RTP_SESSION_VIDEO || (ptr_rtp_package->is_iframe && pSession->rtp_send_data_index < SRTP_ENCRYPT_RTP_NUM)); // 标识加密的情况 if (pSession->bIsRTPSessionCrypto[iSessionID] == 1 && iSessionID != RTP_SESSION_SMART_DATA) { if ( (ptr_rtp_package->is_iframe && pSession->rtp_send_data_index < SRTP_ENCRYPT_RTP_NUM) || iSessionID == RTP_SESSION_AUDIO) { (p_frame->rtp_head_pos) |= RTP_HEADER_EXTENTION_BIT; externtionlen = RtspAddSrtpExtention(RTPextern); } } if (iSessionID == RTP_SESSION_SMART_DATA) { //common_version为0,表示这是不支持SRTP 2.0的NVR客户端,需要按照SRTP 1.0的方式对智能数据帧进行全部加密 //判断RTP包索引,如果相等则表示当前RTP需要加密 if(pSession->common_version == 0 || (g_smart_data_is_first_rtp_set == 1 && g_smart_data_rtp_index[smart_data_rtp_index] == pSession->rtp_send_data_index)) { (p_frame->rtp_head_pos) |= RTP_HEADER_EXTENTION_BIT; externtionlen = RtspAddSrtpExtention(RTPextern); smart_data_rtp_index = (smart_data_rtp_index + 1) % 10; need_encrypt = 1; } else { need_encrypt = 0; } } if(pSession->bRTPOverTCP) { int rtp_length = p_frame->rtp_head_len + p_frame->rtp_payload_len + externtionlen; if (need_encrypt) { rtp_length += SRTP_TAG_SIZE; } int send_count = 0; int expectlen = 0; int rtp_cur_index = pSession->rtp_send_data_index; int i = 0; pucPrefix[0] = ‘$’; pucPrefix[1] = pSession->piTCPDataID[iSessionID]; pucPrefix[2] = rtp_length >> 8; pucPrefix[3] = rtp_length & 0xff; iov[send_count].iov_base = pucPrefix; iov[send_count++].iov_len = 4; int fu_header_len = p_frame->rtp_head_len - RTP_HEADER_SIZE; if (externtionlen > 0) { iov[send_count].iov_base = p_frame->rtp_head_pos; iov[send_count++].iov_len = RTP_HEADER_SIZE; iov[send_count].iov_base = RTPextern; iov[send_count++].iov_len = externtionlen; if(fu_header_len > 0) { // 如果没有加密则把fu放在header中 if (!need_encrypt) { iov[send_count].iov_base = p_frame->rtp_head_pos + RTP_HEADER_SIZE; iov[send_count++].iov_len = fu_header_len; } } } else { iov[send_count].iov_base = p_frame->rtp_head_pos; iov[send_count++].iov_len = need_encrypt ? RTP_HEADER_SIZE : p_frame->rtp_head_len; } iov[send_count].iov_base = sendmute ? mutebuf : p_frame->rtp_payload_pos; iov[send_count++].iov_len = p_frame->rtp_payload_len; pSession->rtp_send_data[rtp_cur_index].rtp_head_size = 0; for (i = 0; i < send_count - 1; i ++) { memcpy(pSession->rtp_send_data[rtp_cur_index].rtp_header_data + pSession->rtp_send_data[rtp_cur_index].rtp_head_size, iov[i].iov_base, iov[i].iov_len); pSession->rtp_send_data[rtp_cur_index].rtp_head_size += iov[i].iov_len; } if (need_encrypt) { // 重传不需要再次分配内存加密 if (!p_retry_info->send_pos) { // 如果有fu,则需要填充到payload前面,这里把fu和payload拼起来放在加密后的地址,原地加密 unsigned char cur_encrypted_pos = pSession->encrypted_pos+rtp_cur_indexRTP_MAX_PACKET_SIZE; if (fu_header_len > 0) { memcpy(cur_encrypted_pos, p_frame->rtp_head_pos+RTP_HEADER_SIZE, fu_header_len); memcpy(cur_encrypted_pos + fu_header_len, p_frame->rtp_payload_pos, p_frame->rtp_payload_len); if (0 != SRTPEncrypt(&pSession->cryptoCtx, cur_encrypted_pos, cur_encrypted_pos, p_frame->rtp_payload_len + fu_header_len, p_frame->iSN)) { RTSP_ERROR(“SRTP encrypt failed, go to next frame”); return 0; } } else { if (0 != SRTPEncrypt(&pSession->cryptoCtx, cur_encrypted_pos, p_frame->rtp_payload_pos, p_frame->rtp_payload_len, p_frame->iSN)) { RTSP_ERROR(“SRTP encrypt failed, go to next frame”); return 0; } } pSession->rtp_send_data[rtp_cur_index].rtp_encrypted_payload_pos = cur_encrypted_pos; pSession->rtp_send_data[rtp_cur_index].rtp_playload_pos = iov[i].iov_base; pSession->rtp_send_data[rtp_cur_index].rtp_playload_size = iov[i].iov_len; pSession->rtp_send_data[rtp_cur_index].rtp_encryped_payload_size = iov[i].iov_len + fu_header_len; //生成auth tag unsigned int total_len = pSession->rtp_send_data[rtp_cur_index].rtp_head_size + pSession->rtp_send_data[rtp_cur_index].rtp_encryped_payload_size; memset(pSession->auth_mem, 0, (RTP_MAX_PACKET_SIZE2)); memcpy(pSession->auth_mem, pSession->rtp_send_data[rtp_cur_index].rtp_header_data, pSession->rtp_send_data[rtp_cur_index].rtp_head_size); memcpy(pSession->auth_mem + pSession->rtp_send_data[rtp_cur_index].rtp_head_size, pSession->rtp_send_data[rtp_cur_index].rtp_encrypted_payload_pos, pSession->rtp_send_data[rtp_cur_index].rtp_encryped_payload_size); if (0 != SRTPAuthenticate(&pSession->cryptoCtx, p_frame->rtp_auth_tag, pSession->auth_mem, total_len, p_frame->iSN)) { RTSP_ERROR(“SRTP authenticate failed, go to next frame”); return 0; } memcpy(pSession->rtp_send_data[rtp_cur_index].rtp_auth_tag, p_frame->rtp_auth_tag, SRTP_TAG_SIZE); pSession->rtp_send_data[rtp_cur_index].rtp_tag_size = SRTP_TAG_SIZE; } } else { pSession->rtp_send_data[rtp_cur_index].rtp_playload_pos = iov[i].iov_base; pSession->rtp_send_data[rtp_cur_index].rtp_playload_size = iov[i].iov_len; } pSession->rtp_send_data_index++; /还原设置的拓展标记,避免对其他会话的影响/ if((p_frame->rtp_head_pos) & RTP_HEADER_EXTENTION_BIT) { *(p_frame->rtp_head_pos) &= ~RTP_HEADER_EXTENTION_BIT; } RtspPutUintToBufBE((unsigned char )p_frame->rtp_head_pos + 4, cur_time); if (pSession->rtp_send_data_index >= RTP_MAX_SEND_NUM || desc->frame_end #ifdef SUPPORT_WEBSOCK_EX_HEADER || pSession->wsp_status != NOT_WSP_PROTO #endif ) { / 如果是重传,则他有一个起始pos,不是packet index,而是一个发送的数据量 */ int send_pos = p_retry_info->send_pos; int iov_index = 0; int left_size = 0; int send_len = 0; int rtp_index = 0; expectlen = 0; if (send_pos > 0) { while (send_pos >= send_len) { if (rtp_index >= RTP_MAX_SEND_NUM) { RTSP_ERROR(“invalid rtp_index, array out of bounds”); return TP_TCP_EC_FAILURE; } if (pSession->rtp_send_data[rtp_index].rtp_tag_size == SRTP_TAG_SIZE) // encrypted packet { send_len += (pSession->rtp_send_data[rtp_index].rtp_head_size + pSession->rtp_send_data[rtp_index].rtp_encryped_payload_size + pSession->rtp_send_data[rtp_index].rtp_tag_size); rtp_index++; } else { send_len += (pSession->rtp_send_data[rtp_index].rtp_head_size + pSession->rtp_send_data[rtp_index].rtp_playload_size); rtp_index++; } } rtp_index–; left_size = send_len - send_pos; int encrypted = pSession->rtp_send_data[rtp_index].rtp_tag_size == SRTP_TAG_SIZE; // 根据tag size判断rtp是否加密 if (encrypted == 1) { if (left_size > pSession->rtp_send_data[rtp_index].rtp_encryped_payload_size + pSession->rtp_send_data[rtp_index].rtp_tag_size) { iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_header_data + (pSession->rtp_send_data[rtp_index].rtp_encryped_payload_size + pSession->rtp_send_data[rtp_index].rtp_head_size + pSession->rtp_send_data[rtp_index].rtp_tag_size - left_size); iov[iov_index++].iov_len = left_size - pSession->rtp_send_data[rtp_index].rtp_encryped_payload_size - pSession->rtp_send_data[rtp_index].rtp_tag_size; expectlen += (left_size - pSession->rtp_send_data[rtp_index].rtp_encryped_payload_size - pSession->rtp_send_data[rtp_index].rtp_tag_size); iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_encrypted_payload_pos; iov[iov_index++].iov_len = pSession->rtp_send_data[rtp_index].rtp_encryped_payload_size; expectlen += pSession->rtp_send_data[rtp_index].rtp_encryped_payload_size; iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_auth_tag; iov[iov_index++].iov_len = pSession->rtp_send_data[rtp_index].rtp_tag_size; expectlen += pSession->rtp_send_data[rtp_index].rtp_tag_size; } else if (left_size > pSession->rtp_send_data[rtp_index].rtp_tag_size) { iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_encrypted_payload_pos + (pSession->rtp_send_data[rtp_index].rtp_encryped_payload_size + pSession->rtp_send_data[rtp_index].rtp_tag_size - left_size); iov[iov_index++].iov_len = left_size - pSession->rtp_send_data[rtp_index].rtp_tag_size; expectlen += (left_size - pSession->rtp_send_data[rtp_index].rtp_tag_size); iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_auth_tag; iov[iov_index++].iov_len = pSession->rtp_send_data[rtp_index].rtp_tag_size; expectlen += pSession->rtp_send_data[rtp_index].rtp_tag_size; } else { iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_auth_tag + pSession->rtp_send_data[rtp_index].rtp_tag_size - left_size; iov[iov_index++].iov_len = left_size; expectlen += left_size; } rtp_index++; } else { if (left_size > pSession->rtp_send_data[rtp_index].rtp_playload_size) { iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_header_data + (pSession->rtp_send_data[rtp_index].rtp_playload_size + pSession->rtp_send_data[rtp_index].rtp_head_size - left_size); iov[iov_index++].iov_len = left_size - pSession->rtp_send_data[rtp_index].rtp_playload_size; expectlen += left_size - pSession->rtp_send_data[rtp_index].rtp_playload_size; left_size = pSession->rtp_send_data[rtp_index].rtp_playload_size; } iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_playload_pos + pSession->rtp_send_data[rtp_index].rtp_playload_size - left_size; iov[iov_index++].iov_len = left_size; expectlen += left_size; rtp_index++; } } for (; rtp_index < pSession->rtp_send_data_index; rtp_index++) { int encrypted = pSession->rtp_send_data[rtp_index].rtp_tag_size == SRTP_TAG_SIZE; if (encrypted == 1) { iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_header_data; iov[iov_index++].iov_len = pSession->rtp_send_data[rtp_index].rtp_head_size; iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_encrypted_payload_pos; iov[iov_index++].iov_len = pSession->rtp_send_data[rtp_index].rtp_encryped_payload_size; iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_auth_tag; iov[iov_index++].iov_len = pSession->rtp_send_data[rtp_index].rtp_tag_size; expectlen += (pSession->rtp_send_data[rtp_index].rtp_head_size + pSession->rtp_send_data[rtp_index].rtp_encryped_payload_size + pSession->rtp_send_data[rtp_index].rtp_tag_size); } else { iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_header_data; iov[iov_index++].iov_len = pSession->rtp_send_data[rtp_index].rtp_head_size; iov[iov_index].iov_base = pSession->rtp_send_data[rtp_index].rtp_playload_pos; iov[iov_index++].iov_len = pSession->rtp_send_data[rtp_index].rtp_playload_size; expectlen += (pSession->rtp_send_data[rtp_index].rtp_head_size + pSession->rtp_send_data[rtp_index].rtp_playload_size); } } if(iSessionID == RTP_SESSION_SMART_DATA) { RTSP_DEBUG(“start send smart data”); } ret = RTSPSessionSendV(pSession, iov, iov_index); if (ret == TP_TCP_EC_FAILURE && iSessionID != RTP_SESSION_SMART_DATA) { pSession->pRTPServer->iRTPStatus = RTP_STATUS_SEND_FAILURE; set_retry_info(p_retry_info, ptr_rtp_package, p_frame->rtp_payload_len); p_retry_info->send_pos = 0; p_retry_info->sn = p_frame->iSN; pSession->rtp_send_data_index–; return TP_TCP_EC_FAILURE; } else if(ret != expectlen && iSessionID != RTP_SESSION_SMART_DATA) // 接收方缓冲区满了,发不出去了 { set_retry_info(p_retry_info, ptr_rtp_package, p_frame->rtp_payload_len); // 会把sn记录成暂时不用的payloadCTX中的sn,下面手动更新成p_frame中的sn p_retry_info->send_pos += ret > 0 ? ret : 0; p_retry_info->sn = p_frame->iSN; pSession->rtp_send_data_index–; ullCurrentTime = tpgetboottime(); pSession->send_retry_times++; g_tel_rtsp_retry_cnt++; if (pSession->ullTimeForSendRetry == 0 || pSession->ullTimeForSendRetry + SEND_RETRY_PRINT_TIMEOUT < ullCurrentTime) { RTSP_ERROR(“cannot send all data send retry, client ip:%s, dump socket:%d, send_retry_times:%d, already send:%d, expect send:%d”, pSession->pcClientIP, pSession->iSock, pSession->send_retry_times, ret, expectlen); tcp_dump_info(pSession->iSock); pSession->ullTimeForSendRetry = ullCurrentTime; pSession->send_retry_times = 0; #ifdef TELEMETRY_SUPPORT TELEMETRY_RTSP telemetry_rtsp; memset(&telemetry_rtsp, 0, sizeof(telemetry_rtsp)); ds_read(TELEMETRY_RTSP_PATH, &telemetry_rtsp, sizeof(TELEMETRY_RTSP)); telemetry_rtsp.rtsp_retry_count = g_tel_rtsp_retry_cnt; ds_write(TELEMETRY_RTSP_PATH, &telemetry_rtsp, sizeof(TELEMETRY_RTSP)); #endif } return RTSP_SEND_RETRY; } if(iSessionID == RTP_SESSION_SMART_DATA) { if(ret < 0) { RTSP_DEBUG(“send smart data return error %d”,ret); } else if(ret != expectlen) { RTSP_DEBUG(“send part of smart data”); } else { RTSP_DEBUG(“send smart data successfully”); } } if (desc->frame_end) { #ifdef TAPO_USE_RTSP_MULTITRANS if (pSession->start_time != -1 && pSession->stream_seq % 25 == 0) //回放需要有流控 { RTSPSendMultitransSeq(pSession); } pSession->stream_seq ++; #endif } if(iSessionID == RTP_SESSION_SMART_DATA) { if(desc->frame_end) { g_smart_data_is_first_rtp_set = 1; } else { g_smart_data_is_first_rtp_set = 0; } } desc->frame_end = 0; memset(pSession->rtp_send_data, 0, sizeof(RTPSENDDATA) * RTP_MAX_SEND_NUM); pSession->rtp_send_data_index = 0; smart_data_rtp_index = 0; p_retry_info->send_pos = 0; if (pSession->send_retry_times > 0) { ullCurrentTime = tpgetboottime(); if (pSession->ullTimeForSendRetry + SEND_RETRY_PRINT_TIMEOUT < ullCurrentTime) { RTSP_ERROR(“send retry %d times, client ip:%s,”, pSession->send_retry_times, pSession->pcClientIP); pSession->ullTimeForSendRetry = 0; pSession->send_retry_times = 0; } } } } else { MBUFFERByteArray mBuffer; unsigned char TXBufferMemSpace[TPRTSPSERVER_BUFFER_SIZE] = {0}; MBUFFERByteArrayInit(TXBufferMemSpace, 0, 0, TPRTSPSERVER_BUFFER_SIZE - 4, &mBuffer); MBUFFERByteArrayReset(&mBuffer); int fu_header_len = p_frame->rtp_head_len - RTP_HEADER_SIZE; if (pSession->bIsCrypto) { MBUFFERByteArrayPutMultiUCharBE((unsigned char )p_frame->rtp_head_pos, RTP_HEADER_SIZE, &mBuffer); if(externtionlen > 0) { MBUFFERByteArrayPutMultiUCharBE(RTPextern, externtionlen, &mBuffer); } if (fu_header_len > 0) { memcpy(pSession->encrypted_pos, p_frame->rtp_head_pos + RTP_HEADER_SIZE, fu_header_len); memcpy(pSession->encrypted_pos + fu_header_len, p_frame->rtp_payload_pos, p_frame->rtp_payload_len); } else { memcpy(pSession->encrypted_pos, p_frame->rtp_payload_pos, p_frame->rtp_payload_len); } if (0 != SRTPEncrypt(&pSession->cryptoCtx, pSession->encrypted_pos, pSession->encrypted_pos, p_frame->rtp_payload_len + fu_header_len, p_frame->iSN)) { RTSP_ERROR(“SRTP encrypt failed, go to next frame”); return 0; } // fu 已经考虑在内 unsigned int total_len = p_frame->rtp_head_len + externtionlen + p_frame->rtp_payload_len; memset(pSession->auth_mem, 0, (RTP_MAX_PACKET_SIZE2)); memcpy(pSession->auth_mem, p_frame->rtp_head_pos, p_frame->rtp_head_len); if(externtionlen > 0) { memcpy(pSession->auth_mem + p_frame->rtp_head_len, RTPextern, externtionlen); } // put encrypted payload and auth tag in buffer memcpy(pSession->auth_mem + p_frame->rtp_head_len + externtionlen, pSession->encrypted_pos, p_frame->rtp_payload_len); if (0 != SRTPAuthenticate(&pSession->cryptoCtx, p_frame->rtp_auth_tag, pSession->auth_mem, total_len, p_frame->iSN)) { RTSP_ERROR(“SRTP authenticate failed, go to next frame”); return 0; } MBUFFERByteArrayPutMultiUCharBE(sendmute ? mutebuf : pSession->encrypted_pos, p_frame->rtp_payload_len + fu_header_len, &mBuffer); MBUFFERByteArrayPutMultiUCharBE(p_frame->rtp_auth_tag, SRTP_TAG_SIZE, &mBuffer); } else { if(externtionlen > 0) { MBUFFERByteArrayPutMultiUCharBE((unsigned char *)p_frame->rtp_head_pos, RTP_HEADER_SIZE, &mBuffer); MBUFFERByteArrayPutMultiUCharBE(RTPextern, externtionlen, &mBuffer); if (fu_header_len > 0) { MBUFFERByteArrayPutMultiUCharBE((unsigned char *)p_frame->rtp_head_pos + RTP_HEADER_SIZE, fu_header_len, &mBuffer); } } else { MBUFFERByteArrayPutMultiUCharBE((unsigned char )p_frame->rtp_head_pos, p_frame->rtp_head_len, &mBuffer); } MBUFFERByteArrayPutMultiUCharBE(sendmute ? mutebuf : p_frame->rtp_payload_pos, p_frame->rtp_payload_len, &mBuffer); } MBUFFERByteConvert2ReadBuff(&mBuffer); TPUdpSendByBuffer(pSession->pRTPServer->pSessions[iSessionID]->DataServer, &mBuffer); /还原设置的拓展标记,避免对其他会话的影响/ if((p_frame->rtp_head_pos) & RTP_HEADER_EXTENTION_BIT) { *(p_frame->rtp_head_pos) &= ~RTP_HEADER_EXTENTION_BIT; } RtspPutUintToBufBE((unsigned char *)p_frame->rtp_head_pos + 4, cur_time); } reset_retry_info(p_retry_info, ptr_rtp_package); p_retry_info->sn = p_frame->iSN; return 0; }
最新发布
09-23
我们分析函数`TPSendRtpQueueCb`的流程,并找出实际发送数据包的位置。 函数主要流程: 1. 参数检查:检查desc、desc->send_data、desc->priv、stream->package等是否有效,并获取RTPDATAFRAME、...
评论
成就一亿技术人!
拼手气红包6.0元
还能输入1000个字符
 
红包 添加红包
表情包 插入表情
表情包 代码片
 条评论被折叠 查看
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值