falkTX
/
FFmpeg
mirror of https://github.com/falkTX/FFmpeg.git
1
0
Fork 0
Code Issues 0 Releases 338 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
25602 Commits
32 Branches
310MB
Tree: edce93536a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'edce93536a'
${ noResults }
FFmpeg/libavformat/mmst.c

742 lines
27KB
Raw Blame History 

  1. /*

  2.  * MMS protocol over TCP

  3.  * Copyright (c) 2006,2007 Ryan Martell

  4.  * Copyright (c) 2007 Björn Axelsson

  5.  * Copyright (c) 2010 Zhentan Feng <spyfeng at gmail dot com>

  6.  *

  7.  * This file is part of FFmpeg.

  8.  *

  9.  * FFmpeg is free software; you can redistribute it and/or

  10.  * modify it under the terms of the GNU Lesser General Public

  11.  * License as published by the Free Software Foundation; either

  12.  * version 2.1 of the License, or (at your option) any later version.

  13.  *

  14.  * FFmpeg is distributed in the hope that it will be useful,

  15.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  16.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  17.  * Lesser General Public License for more details.

  18.  *

  19.  * You should have received a copy of the GNU Lesser General Public

  20.  * License along with FFmpeg; if not, write to the Free Software

  21.  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA

  22.  */

  23. 

  24. /* References

  25.  * MMS protocol specification:

  26.  *  [1]http://msdn.microsoft.com/en-us/library/cc234711(PROT.10).aspx

  27.  * ASF specification. Revision 01.20.03.

  28.  *  [2]http://msdn.microsoft.com/en-us/library/bb643323.aspx

  29.  */

  30. 

  31. #include "avformat.h"

  32. #include "internal.h"

  33. #include "libavutil/intreadwrite.h"

  34. #include "libavcodec/bytestream.h"

  35. #include "network.h"

  36. #include "asf.h"

  37. 

  38. #define LOCAL_ADDRESS 0xc0a80081    // FIXME get and use correct local ip address.

  39. #define LOCAL_PORT    1037          // as above.

  40. /** Client to server packet types. */

  41. typedef enum {

  42.     CS_PKT_INITIAL                  = 0x01,

  43.     CS_PKT_PROTOCOL_SELECT          = 0x02,

  44.     CS_PKT_MEDIA_FILE_REQUEST       = 0x05,

  45.     CS_PKT_START_FROM_PKT_ID        = 0x07,

  46.     CS_PKT_STREAM_PAUSE             = 0x09,

  47.     CS_PKT_STREAM_CLOSE             = 0x0d,

  48.     CS_PKT_MEDIA_HEADER_REQUEST     = 0x15,

  49.     CS_PKT_TIMING_DATA_REQUEST      = 0x18,

  50.     CS_PKT_USER_PASSWORD            = 0x1a,

  51.     CS_PKT_KEEPALIVE                = 0x1b,

  52.     CS_PKT_STREAM_ID_REQUEST        = 0x33,

  53. } MMSCSPacketType;

  54. 

  55. /** Server to client packet types. */

  56. typedef enum {

  57.     /** Control packets. */

  58.     /*@{*/

  59.     SC_PKT_CLIENT_ACCEPTED          = 0x01,

  60.     SC_PKT_PROTOCOL_ACCEPTED        = 0x02,

  61.     SC_PKT_PROTOCOL_FAILED          = 0x03,

  62.     SC_PKT_MEDIA_PKT_FOLLOWS        = 0x05,

  63.     SC_PKT_MEDIA_FILE_DETAILS       = 0x06,

  64.     SC_PKT_HEADER_REQUEST_ACCEPTED  = 0x11,

  65.     SC_PKT_TIMING_TEST_REPLY        = 0x15,

  66.     SC_PKT_PASSWORD_REQUIRED        = 0x1a,

  67.     SC_PKT_KEEPALIVE                = 0x1b,

  68.     SC_PKT_STREAM_STOPPED           = 0x1e,

  69.     SC_PKT_STREAM_CHANGING          = 0x20,

  70.     SC_PKT_STREAM_ID_ACCEPTED       = 0x21,

  71.     /*@}*/

  72. 

  73.     /** Pseudo packets. */

  74.     /*@{*/

  75.     SC_PKT_CANCEL                   = -1,

  76.     SC_PKT_NO_DATA                  = -2,

  77.     /*@}*/

  78. 

  79.     /** Data packets. */

  80.     /*@{*/

  81.     SC_PKT_ASF_HEADER               = 0x010000,// make it bigger than 0xFF in case of

  82.     SC_PKT_ASF_MEDIA                = 0x010001,// receiving false data packets.

  83.     /*@}*/

  84. } MMSSCPacketType;

  85. 

  86. typedef struct {

  87.     int id;

  88. }MMSStream;

  89. 

  90. typedef struct {

  91.     URLContext *mms_hd;                  ///< TCP connection handle

  92.     MMSStream streams[MAX_STREAMS];

  93. 

  94.     /** Buffer for outgoing packets. */

  95.     /*@{*/

  96.     uint8_t *write_out_ptr;              ///< Pointer for writting the buffer.

  97.     uint8_t out_buffer[512];             ///< Buffer for outgoing packet.

  98.     /*@}*/

  99. 

  100.     /** Buffer for incoming packets. */

  101.     /*@{*/

  102.     uint8_t in_buffer[8192];             ///< Buffer for incoming packets.

  103.     uint8_t *read_in_ptr;                ///< Pointer for reading from incoming buffer.

  104.     int remaining_in_len;                ///< Reading length from incoming buffer.

  105.     /*@}*/

  106. 

  107. 

  108.     /** Internal handling of the ASF header */

  109.     /*@{*/

  110.     uint8_t *asf_header;                 ///< Stored ASF header.

  111.     int asf_header_size;                 ///< Size of stored ASF header.

  112.     int header_parsed;                   ///< The header has been received and parsed.

  113.     int asf_packet_len;

  114.     int asf_header_read_size;

  115.     /*@}*/

  116. 

  117.     int stream_num;                      ///< stream numbers.

  118. } MMSContext;

  119. 

  120. typedef struct {

  121.     MMSContext  mms;

  122.     int outgoing_packet_seq;             ///< Outgoing packet sequence number.

  123.     char path[256];                      ///< Path of the resource being asked for.

  124.     char host[128];                      ///< Host of the resources.

  125.     int incoming_packet_seq;             ///< Incoming packet sequence number.

  126.     int incoming_flags;                  ///< Incoming packet flags.

  127.     int packet_id;                       ///< Identifier for packets in the current stream.

  128.     unsigned int header_packet_id;       ///< default is 2.

  129. } MMSTContext;

  130. 

  131. /** Create MMST command packet header */

  132. static void start_command_packet(MMSTContext *mmst, MMSCSPacketType packet_type)

  133. {

  134.     MMSContext *mms    = &mmst->mms;

  135.     mms->write_out_ptr = mms->out_buffer;

  136. 

  137.     bytestream_put_le32(&mms->write_out_ptr, 1); // start sequence

  138.     bytestream_put_le32(&mms->write_out_ptr, 0xb00bface);

  139.     bytestream_put_le32(&mms->write_out_ptr, 0); // Length starts from after the protocol type bytes

  140.     bytestream_put_le32(&mms->write_out_ptr, MKTAG('M','M','S',' '));

  141.     bytestream_put_le32(&mms->write_out_ptr, 0);

  142.     bytestream_put_le32(&mms->write_out_ptr, mmst->outgoing_packet_seq++);

  143.     bytestream_put_le64(&mms->write_out_ptr, 0); // timestamp

  144.     bytestream_put_le32(&mms->write_out_ptr, 0);

  145.     bytestream_put_le16(&mms->write_out_ptr, packet_type);

  146.     bytestream_put_le16(&mms->write_out_ptr, 3); // direction to server

  147. }

  148. 

  149. /** Add prefixes to MMST command packet. */

  150. static void insert_command_prefixes(MMSContext *mms,

  151.         uint32_t prefix1, uint32_t prefix2)

  152. {

  153.     bytestream_put_le32(&mms->write_out_ptr, prefix1); // first prefix

  154.     bytestream_put_le32(&mms->write_out_ptr, prefix2); // second prefix

  155. }

  156. 

  157. /** Send a prepared MMST command packet. */

  158. static int send_command_packet(MMSTContext *mmst)

  159. {

  160.     MMSContext *mms  = &mmst->mms;

  161.     int len= mms->write_out_ptr - mms->out_buffer;

  162.     int exact_length = FFALIGN(len, 8);

  163.     int first_length= exact_length - 16;

  164.     int len8= first_length/8;

  165.     int write_result;

  166. 

  167.     // update packet length fields.

  168.     AV_WL32(mms->out_buffer + 8, first_length);

  169.     AV_WL32(mms->out_buffer + 16, len8);

  170.     AV_WL32(mms->out_buffer + 32, len8-2);

  171.     memset(mms->write_out_ptr, 0, exact_length - len);

  172. 

  173.     // write it out.

  174.     write_result= url_write(mms->mms_hd, mms->out_buffer, exact_length);

  175.     if(write_result != exact_length) {

  176.         av_log(NULL, AV_LOG_ERROR,

  177.                "Failed to write data of length %d: %d (%s)\n",

  178.                exact_length, write_result,

  179.                write_result < 0 ? strerror(write_result) :

  180.                    "The server closed the connection");

  181.         return AVERROR_IO;

  182.     }

  183. 

  184.     return 0;

  185. }

  186. 

  187. static void mms_put_utf16(MMSContext *mms, uint8_t *src)

  188. {

  189.     ByteIOContext bic;

  190.     int size = mms->write_out_ptr - mms->out_buffer;

  191.     int len;

  192.     init_put_byte(&bic, mms->write_out_ptr,

  193.             sizeof(mms->out_buffer) - size, 1, NULL, NULL, NULL, NULL);

  194. 

  195.     len = ff_put_str16_nolen(&bic, src);

  196.     mms->write_out_ptr += len;

  197. }

  198. 

  199. static int send_time_test_data(MMSTContext *mmst)

  200. {

  201.     start_command_packet(mmst, CS_PKT_TIMING_DATA_REQUEST);

  202.     insert_command_prefixes(&mmst->mms, 0xf0f0f0f1, 0x0004000b);

  203.     return send_command_packet(mmst);

  204. }

  205. 

  206. static int send_protocol_select(MMSTContext *mmst)

  207. {

  208.     char data_string[256];

  209.     MMSContext *mms = &mmst->mms;

  210. 

  211.     start_command_packet(mmst, CS_PKT_PROTOCOL_SELECT);

  212.     insert_command_prefixes(mms, 0, 0xffffffff);

  213.     bytestream_put_le32(&mms->write_out_ptr, 0);          // maxFunnelBytes

  214.     bytestream_put_le32(&mms->write_out_ptr, 0x00989680); // maxbitRate

  215.     bytestream_put_le32(&mms->write_out_ptr, 2);          // funnelMode

  216.     snprintf(data_string, sizeof(data_string), "\\\\%d.%d.%d.%d\\%s\\%d",

  217.             (LOCAL_ADDRESS>>24)&0xff,

  218.             (LOCAL_ADDRESS>>16)&0xff,

  219.             (LOCAL_ADDRESS>>8)&0xff,

  220.             LOCAL_ADDRESS&0xff,

  221.             "TCP",                                        // or UDP

  222.             LOCAL_PORT);

  223. 

  224.     mms_put_utf16(mms, data_string);

  225.     return send_command_packet(mmst);

  226. }

  227. 

  228. static int send_media_file_request(MMSTContext *mmst)

  229. {

  230.     MMSContext *mms = &mmst->mms;

  231.     start_command_packet(mmst, CS_PKT_MEDIA_FILE_REQUEST);

  232.     insert_command_prefixes(mms, 1, 0xffffffff);

  233.     bytestream_put_le32(&mms->write_out_ptr, 0);

  234.     bytestream_put_le32(&mms->write_out_ptr, 0);

  235.     mms_put_utf16(mms, mmst->path + 1); // +1 for skip "/"

  236. 

  237.     return send_command_packet(mmst);

  238. }

  239. 

  240. static void handle_packet_stream_changing_type(MMSTContext *mmst)

  241. {

  242.     MMSContext *mms = &mmst->mms;

  243.     dprintf(NULL, "Stream changing!\n");

  244. 

  245.     // 40 is the packet header size, 7 is the prefix size.

  246.     mmst->header_packet_id= AV_RL32(mms->in_buffer + 40 + 7);

  247.     dprintf(NULL, "Changed header prefix to 0x%x", mmst->header_packet_id);

  248. }

  249. 

  250. static int send_keepalive_packet(MMSTContext *mmst)

  251. {

  252.     // respond to a keepalive with a keepalive...

  253.     start_command_packet(mmst, CS_PKT_KEEPALIVE);

  254.     insert_command_prefixes(&mmst->mms, 1, 0x100FFFF);

  255.     return send_command_packet(mmst);

  256. }

  257. 

  258. /** Pad media packets smaller than max_packet_size and/or adjust read position

  259.   * after a seek. */

  260. static void pad_media_packet(MMSContext *mms)

  261. {

  262.     if(mms->remaining_in_len<mms->asf_packet_len) {

  263.         int padding_size = mms->asf_packet_len - mms->remaining_in_len;

  264.         memset(mms->in_buffer + mms->remaining_in_len, 0, padding_size);

  265.         mms->remaining_in_len += padding_size;

  266.     }

  267. }

  268. 

  269. /** Read incoming MMST media, header or command packet. */

  270. static MMSSCPacketType get_tcp_server_response(MMSTContext *mmst)

  271. {

  272.     int read_result;

  273.     MMSSCPacketType packet_type= -1;

  274.     MMSContext *mms = &mmst->mms;

  275.     for(;;) {

  276.         read_result = url_read_complete(mms->mms_hd, mms->in_buffer, 8);

  277.         if (read_result != 8) {

  278.             if(read_result < 0) {

  279.                 av_log(NULL, AV_LOG_ERROR,

  280.                        "Error reading packet header: %d (%s)\n",

  281.                        read_result, strerror(read_result));

  282.                 packet_type = SC_PKT_CANCEL;

  283.             } else {

  284.                 av_log(NULL, AV_LOG_ERROR,

  285.                        "The server closed the connection\n");

  286.                 packet_type = SC_PKT_NO_DATA;

  287.             }

  288.             return packet_type;

  289.         }

  290. 

  291.         // handle command packet.

  292.         if(AV_RL32(mms->in_buffer + 4)==0xb00bface) {

  293.             int length_remaining, hr;

  294. 

  295.             mmst->incoming_flags= mms->in_buffer[3];

  296.             read_result= url_read_complete(mms->mms_hd, mms->in_buffer+8, 4);

  297.             if(read_result != 4) {

  298.                 av_log(NULL, AV_LOG_ERROR,

  299.                        "Reading command packet length failed: %d (%s)\n",

  300.                        read_result,

  301.                        read_result < 0 ? strerror(read_result) :

  302.                            "The server closed the connection");

  303.                 return read_result < 0 ? read_result : AVERROR_IO;

  304.             }

  305. 

  306.             length_remaining= AV_RL32(mms->in_buffer+8) + 4;

  307.             dprintf(NULL, "Length remaining is %d\n", length_remaining);

  308.             // read the rest of the packet.

  309.             if (length_remaining < 0

  310.                 || length_remaining > sizeof(mms->in_buffer) - 12) {

  311.                 av_log(NULL, AV_LOG_ERROR,

  312.                        "Incoming packet length %d exceeds bufsize %zu\n",

  313.                        length_remaining, sizeof(mms->in_buffer) - 12);

  314.                 return AVERROR_INVALIDDATA;

  315.             }

  316.             read_result = url_read_complete(mms->mms_hd, mms->in_buffer + 12,

  317.                                             length_remaining) ;

  318.             if (read_result != length_remaining) {

  319.                 av_log(NULL, AV_LOG_ERROR,

  320.                        "Reading pkt data (length=%d) failed: %d (%s)\n",

  321.                        length_remaining, read_result,

  322.                        read_result < 0 ? strerror(read_result) :

  323.                            "The server closed the connection");

  324.                 return read_result < 0 ? read_result : AVERROR_IO;

  325.             }

  326.             packet_type= AV_RL16(mms->in_buffer+36);

  327.             hr = AV_RL32(mms->in_buffer + 40);

  328.             if (hr) {

  329.                 av_log(NULL, AV_LOG_ERROR,

  330.                        "Server sent an error status code: 0x%08x\n", hr);

  331.                 return AVERROR_UNKNOWN;

  332.             }

  333.         } else {

  334.             int length_remaining;

  335.             int packet_id_type;

  336.             int tmp;

  337. 

  338.             // note we cache the first 8 bytes,

  339.             // then fill up the buffer with the others

  340.             tmp                       = AV_RL16(mms->in_buffer + 6);

  341.             length_remaining          = (tmp - 8) & 0xffff;

  342.             mmst->incoming_packet_seq = AV_RL32(mms->in_buffer);

  343.             packet_id_type            = mms->in_buffer[4];

  344.             mmst->incoming_flags      = mms->in_buffer[5];

  345. 

  346.             if (length_remaining < 0

  347.                 || length_remaining > sizeof(mms->in_buffer) - 8) {

  348.                 av_log(NULL, AV_LOG_ERROR,

  349.                        "Data length %d is invalid or too large (max=%zu)\n",

  350.                        length_remaining, sizeof(mms->in_buffer));

  351.                 return AVERROR_INVALIDDATA;

  352.             }

  353.             mms->remaining_in_len    = length_remaining;

  354.             mms->read_in_ptr         = mms->in_buffer;

  355.             read_result= url_read_complete(mms->mms_hd, mms->in_buffer, length_remaining);

  356.             if(read_result != length_remaining) {

  357.                 av_log(NULL, AV_LOG_ERROR,

  358.                        "Failed to read packet data of size %d: %d (%s)\n",

  359.                        length_remaining, read_result,

  360.                        read_result < 0 ? strerror(read_result) :

  361.                            "The server closed the connection");

  362.                 return read_result < 0 ? read_result : AVERROR_IO;

  363.             }

  364. 

  365.             // if we successfully read everything.

  366.             if(packet_id_type == mmst->header_packet_id) {

  367.                 packet_type = SC_PKT_ASF_HEADER;

  368.                 // Store the asf header

  369.                 if(!mms->header_parsed) {

  370.                     void *p = av_realloc(mms->asf_header,

  371.                                   mms->asf_header_size + mms->remaining_in_len);

  372.                     if (!p) {

  373.                         av_freep(&mms->asf_header);

  374.                         return AVERROR(ENOMEM);

  375.                     }

  376.                     mms->asf_header = p;

  377.                     memcpy(mms->asf_header + mms->asf_header_size,

  378.                            mms->read_in_ptr, mms->remaining_in_len);

  379.                     mms->asf_header_size += mms->remaining_in_len;

  380.                 }

  381.                 // 0x04 means asf header is sent in multiple packets.

  382.                 if (mmst->incoming_flags == 0x04)

  383.                     continue;

  384.             } else if(packet_id_type == mmst->packet_id) {

  385.                 packet_type = SC_PKT_ASF_MEDIA;

  386.             } else {

  387.                 dprintf(NULL, "packet id type %d is old.", packet_id_type);

  388.                 continue;

  389.             }

  390.         }

  391. 

  392.         // preprocess some packet type

  393.         if(packet_type == SC_PKT_KEEPALIVE) {

  394.             send_keepalive_packet(mmst);

  395.             continue;

  396.         } else if(packet_type == SC_PKT_STREAM_CHANGING) {

  397.             handle_packet_stream_changing_type(mmst);

  398.         } else if(packet_type == SC_PKT_ASF_MEDIA) {

  399.             pad_media_packet(mms);

  400.         }

  401.         return packet_type;

  402.     }

  403. }

  404. 

  405. static int mms_safe_send_recv(MMSTContext *mmst,

  406.                               int (*send_fun)(MMSTContext *mmst),

  407.                               const MMSSCPacketType expect_type)

  408. {

  409.     MMSSCPacketType type;

  410.     if(send_fun) {

  411.         int ret = send_fun(mmst);

  412.         if (ret < 0) {

  413.             dprintf(NULL, "Send Packet error before expecting recv packet %d\n", expect_type);

  414.             return ret;

  415.         }

  416.     }

  417. 

  418.     if ((type = get_tcp_server_response(mmst)) != expect_type) {

  419.         av_log(NULL, AV_LOG_ERROR,

  420.                "Corrupt stream (unexpected packet type 0x%x, expected 0x%x)\n",

  421.                type, expect_type);

  422.         return AVERROR_INVALIDDATA;

  423.     } else {

  424.         return 0;

  425.     }

  426. }

  427. 

  428. static int send_media_header_request(MMSTContext *mmst)

  429. {

  430.     MMSContext *mms = &mmst->mms;

  431.     start_command_packet(mmst, CS_PKT_MEDIA_HEADER_REQUEST);

  432.     insert_command_prefixes(mms, 1, 0);

  433.     bytestream_put_le32(&mms->write_out_ptr, 0);

  434.     bytestream_put_le32(&mms->write_out_ptr, 0x00800000);

  435.     bytestream_put_le32(&mms->write_out_ptr, 0xffffffff);

  436.     bytestream_put_le32(&mms->write_out_ptr, 0);

  437.     bytestream_put_le32(&mms->write_out_ptr, 0);

  438.     bytestream_put_le32(&mms->write_out_ptr, 0);

  439. 

  440.     // the media preroll value in milliseconds?

  441.     bytestream_put_le32(&mms->write_out_ptr, 0);

  442.     bytestream_put_le32(&mms->write_out_ptr, 0x40AC2000);

  443.     bytestream_put_le32(&mms->write_out_ptr, 2);

  444.     bytestream_put_le32(&mms->write_out_ptr, 0);

  445. 

  446.     return send_command_packet(mmst);

  447. }

  448. 

  449. /** Send the initial handshake. */

  450. static int send_startup_packet(MMSTContext *mmst)

  451. {

  452.     char data_string[256];

  453.     MMSContext *mms = &mmst->mms;

  454.     // SubscriberName is defined in MS specification linked below.

  455.     // The guid value can be any valid value.

  456.     // http://download.microsoft.com/

  457.     // download/9/5/E/95EF66AF-9026-4BB0-A41D-A4F81802D92C/%5BMS-WMSP%5D.pdf

  458.     snprintf(data_string, sizeof(data_string),

  459.             "NSPlayer/7.0.0.1956; {%s}; Host: %s",

  460.             "7E667F5D-A661-495E-A512-F55686DDA178", mmst->host);

  461. 

  462.     start_command_packet(mmst, CS_PKT_INITIAL);

  463.     insert_command_prefixes(mms, 0, 0x0004000b);

  464.     bytestream_put_le32(&mms->write_out_ptr, 0x0003001c);

  465.     mms_put_utf16(mms, data_string);

  466.     return send_command_packet(mmst);

  467. }

  468. 

  469. static int asf_header_parser(MMSContext *mms)

  470. {

  471.     uint8_t *p = mms->asf_header;

  472.     uint8_t *end;

  473.     int flags, stream_id;

  474.     mms->stream_num = 0;

  475. 

  476.     if (mms->asf_header_size < sizeof(ff_asf_guid) * 2 + 22 ||

  477.         memcmp(p, ff_asf_header, sizeof(ff_asf_guid))) {

  478.         av_log(NULL, AV_LOG_ERROR,

  479.                "Corrupt stream (invalid ASF header, size=%d)\n",

  480.                mms->asf_header_size);

  481.         return AVERROR_INVALIDDATA;

  482.     }

  483. 

  484.     end = mms->asf_header + mms->asf_header_size;

  485. 

  486.     p += sizeof(ff_asf_guid) + 14;

  487.     while(end - p >= sizeof(ff_asf_guid) + 8) {

  488.         uint64_t chunksize = AV_RL64(p + sizeof(ff_asf_guid));

  489.         if (!chunksize || chunksize > end - p) {

  490.             av_log(NULL, AV_LOG_ERROR,

  491.                    "Corrupt stream (header chunksize %"PRId64" is invalid)\n",

  492.                    chunksize);

  493.             return AVERROR_INVALIDDATA;

  494.         }

  495.         if (!memcmp(p, ff_asf_file_header, sizeof(ff_asf_guid))) {

  496.             /* read packet size */

  497.             if (end - p > sizeof(ff_asf_guid) * 2 + 68) {

  498.                 mms->asf_packet_len = AV_RL32(p + sizeof(ff_asf_guid) * 2 + 64);

  499.                 if (mms->asf_packet_len <= 0 || mms->asf_packet_len > sizeof(mms->in_buffer)) {

  500.                     av_log(NULL, AV_LOG_ERROR,

  501.                            "Corrupt stream (too large pkt_len %d)\n",

  502.                            mms->asf_packet_len);

  503.                     return AVERROR_INVALIDDATA;

  504.                 }

  505.             }

  506.         } else if (!memcmp(p, ff_asf_stream_header, sizeof(ff_asf_guid))) {

  507.             flags     = AV_RL16(p + sizeof(ff_asf_guid)*3 + 24);

  508.             stream_id = flags & 0x7F;

  509.             //The second condition is for checking CS_PKT_STREAM_ID_REQUEST packet size,

  510.             //we can calcuate the packet size by stream_num.

  511.             //Please see function send_stream_selection_request().

  512.             if (mms->stream_num < MAX_STREAMS &&

  513.                     46 + mms->stream_num * 6 < sizeof(mms->out_buffer)) {

  514.                 mms->streams[mms->stream_num].id = stream_id;

  515.                 mms->stream_num++;

  516.             } else {

  517.                 av_log(NULL, AV_LOG_ERROR,

  518.                        "Corrupt stream (too many A/V streams)\n");

  519.                 return AVERROR_INVALIDDATA;

  520.             }

  521.         } else if (!memcmp(p, ff_asf_head1_guid, sizeof(ff_asf_guid))) {

  522.             chunksize = 46; // see references [2] section 3.4. This should be set 46.

  523.         }

  524.         p += chunksize;

  525.     }

  526. 

  527.     return 0;

  528. }

  529. 

  530. /** Send MMST stream selection command based on the AVStream->discard values. */

  531. static int send_stream_selection_request(MMSTContext *mmst)

  532. {

  533.     int i;

  534.     MMSContext *mms = &mmst->mms;

  535.     //  send the streams we want back...

  536.     start_command_packet(mmst, CS_PKT_STREAM_ID_REQUEST);

  537.     bytestream_put_le32(&mms->write_out_ptr, mms->stream_num);         // stream nums

  538.     for(i= 0; i<mms->stream_num; i++) {

  539.         bytestream_put_le16(&mms->write_out_ptr, 0xffff);              // flags

  540.         bytestream_put_le16(&mms->write_out_ptr, mms->streams[i].id);  // stream id

  541.         bytestream_put_le16(&mms->write_out_ptr, 0);                   // selection

  542.     }

  543.     return send_command_packet(mmst);

  544. }

  545. 

  546. static int read_data(MMSContext *mms, uint8_t *buf, const int buf_size)

  547. {

  548.     int read_size;

  549.     read_size = FFMIN(buf_size, mms->remaining_in_len);

  550.     memcpy(buf, mms->read_in_ptr, read_size);

  551.     mms->remaining_in_len -= read_size;

  552.     mms->read_in_ptr      += read_size;

  553.     return read_size;

  554. }

  555. 

  556. static int send_close_packet(MMSTContext *mmst)

  557. {

  558.     start_command_packet(mmst, CS_PKT_STREAM_CLOSE);

  559.     insert_command_prefixes(&mmst->mms, 1, 1);

  560. 

  561.     return send_command_packet(mmst);

  562. }

  563. 

  564. /** Close the MMSH/MMST connection */

  565. static int mms_close(URLContext *h)

  566. {

  567.     MMSTContext *mmst = (MMSTContext *)h->priv_data;

  568.     MMSContext *mms   = &mmst->mms;

  569.     if(mms->mms_hd) {

  570.         send_close_packet(mmst);

  571.         url_close(mms->mms_hd);

  572.     }

  573. 

  574.     /* free all separately allocated pointers in mms */

  575.     av_free(mms->asf_header);

  576.     av_freep(&h->priv_data);

  577. 

  578.     return 0;

  579. }

  580. 

  581. static int send_media_packet_request(MMSTContext *mmst)

  582. {

  583.     MMSContext *mms = &mmst->mms;

  584.     start_command_packet(mmst, CS_PKT_START_FROM_PKT_ID);

  585.     insert_command_prefixes(mms, 1, 0x0001FFFF);

  586.     bytestream_put_le64(&mms->write_out_ptr, 0);          // seek timestamp

  587.     bytestream_put_le32(&mms->write_out_ptr, 0xffffffff); // unknown

  588.     bytestream_put_le32(&mms->write_out_ptr, 0xffffffff); // packet offset

  589.     bytestream_put_byte(&mms->write_out_ptr, 0xff);       // max stream time limit

  590.     bytestream_put_byte(&mms->write_out_ptr, 0xff);       // max stream time limit

  591.     bytestream_put_byte(&mms->write_out_ptr, 0xff);       // max stream time limit

  592.     bytestream_put_byte(&mms->write_out_ptr, 0x00);       // stream time limit flag

  593. 

  594.     mmst->packet_id++;                                     // new packet_id

  595.     bytestream_put_le32(&mms->write_out_ptr, mmst->packet_id);

  596.     return send_command_packet(mmst);

  597. }

  598. 

  599. 

  600. static void clear_stream_buffers(MMSContext *mms)

  601. {

  602.     mms->remaining_in_len = 0;

  603.     mms->read_in_ptr      = mms->in_buffer;

  604. }

  605. 

  606. static int mms_open(URLContext *h, const char *uri, int flags)

  607. {

  608.     MMSTContext *mmst;

  609.     MMSContext *mms;

  610.     int port, err;

  611.     char tcpname[256];

  612. 

  613.     h->is_streamed = 1;

  614.     mmst = h->priv_data = av_mallocz(sizeof(MMSTContext));

  615.     if (!h->priv_data)

  616.         return AVERROR(ENOMEM);

  617.     mms = &mmst->mms;

  618. 

  619.     // only for MMS over TCP, so set proto = NULL

  620.     av_url_split(NULL, 0, NULL, 0,

  621.             mmst->host, sizeof(mmst->host), &port, mmst->path,

  622.             sizeof(mmst->path), uri);

  623. 

  624.     if(port<0)

  625.         port = 1755; // defaut mms protocol port

  626. 

  627.     // establish tcp connection.

  628.     ff_url_join(tcpname, sizeof(tcpname), "tcp", NULL, mmst->host, port, NULL);

  629.     err = url_open(&mms->mms_hd, tcpname, URL_RDWR);

  630.     if (err)

  631.         goto fail;

  632. 

  633.     mmst->packet_id        = 3;          // default, initial value.

  634.     mmst->header_packet_id = 2;          // default, initial value.

  635.     err = mms_safe_send_recv(mmst, send_startup_packet, SC_PKT_CLIENT_ACCEPTED);

  636.     if (err)

  637.         goto fail;

  638.     err = mms_safe_send_recv(mmst, send_time_test_data, SC_PKT_TIMING_TEST_REPLY);

  639.     if (err)

  640.         goto fail;

  641.     err = mms_safe_send_recv(mmst, send_protocol_select, SC_PKT_PROTOCOL_ACCEPTED);

  642.     if (err)

  643.         goto fail;

  644.     err = mms_safe_send_recv(mmst, send_media_file_request, SC_PKT_MEDIA_FILE_DETAILS);

  645.     if (err)

  646.         goto fail;

  647.     err = mms_safe_send_recv(mmst, send_media_header_request, SC_PKT_HEADER_REQUEST_ACCEPTED);

  648.     if (err)

  649.         goto fail;

  650.     err = mms_safe_send_recv(mmst, NULL, SC_PKT_ASF_HEADER);

  651.     if (err)

  652.         goto fail;

  653.     if((mmst->incoming_flags != 0X08) && (mmst->incoming_flags != 0X0C))

  654.         goto fail;

  655.     err = asf_header_parser(mms);

  656.     if (err) {

  657.         dprintf(NULL, "asf header parsed failed!\n");

  658.         goto fail;

  659.     }

  660.     mms->header_parsed = 1;

  661. 

  662.     if (!mms->asf_packet_len || !mms->stream_num)

  663.         goto fail;

  664. 

  665.     clear_stream_buffers(mms);

  666.     err = mms_safe_send_recv(mmst, send_stream_selection_request, SC_PKT_STREAM_ID_ACCEPTED);

  667.     if (err)

  668.         goto fail;

  669.     // send media packet request

  670.     err = mms_safe_send_recv(mmst, send_media_packet_request, SC_PKT_MEDIA_PKT_FOLLOWS);

  671.     if (err) {

  672.         goto fail;

  673.     }

  674.     dprintf(NULL, "Leaving open (success)\n");

  675.     return 0;

  676. fail:

  677.     mms_close(h);

  678.     dprintf(NULL, "Leaving open (failure: %d)\n", err);

  679.     return err;

  680. }

  681. 

  682. /** Read ASF data through the protocol. */

  683. static int mms_read(URLContext *h, uint8_t *buf, int size)

  684. {

  685.     /* TODO: see tcp.c:tcp_read() about a possible timeout scheme */

  686.     MMSTContext *mmst = h->priv_data;

  687.     MMSContext *mms   = &mmst->mms;

  688.     int result = 0;

  689.     int size_to_copy;

  690. 

  691.     do {

  692.         if(mms->asf_header_read_size < mms->asf_header_size) {

  693.             /* Read from ASF header buffer */

  694.             size_to_copy= FFMIN(size,

  695.                                 mms->asf_header_size - mms->asf_header_read_size);

  696.             memcpy(buf, mms->asf_header + mms->asf_header_read_size, size_to_copy);

  697.             mms->asf_header_read_size += size_to_copy;

  698.             result += size_to_copy;

  699.             dprintf(NULL, "Copied %d bytes from stored header. left: %d\n",

  700.                    size_to_copy, mms->asf_header_size - mms->asf_header_read_size);

  701.             if (mms->asf_header_size == mms->asf_header_read_size) {

  702.                 av_freep(&mms->asf_header);

  703.             }

  704.         } else if(mms->remaining_in_len) {

  705.             /* Read remaining packet data to buffer.

  706.              * the result can not be zero because remaining_in_len is positive.*/

  707.             result = read_data(mms, buf, size);

  708.         } else {

  709.             /* Read from network */

  710.             int err = mms_safe_send_recv(mmst, NULL, SC_PKT_ASF_MEDIA);

  711.             if (err == 0) {

  712.                 if(mms->remaining_in_len>mms->asf_packet_len) {

  713.                     av_log(NULL, AV_LOG_ERROR,

  714.                            "Incoming pktlen %d is larger than ASF pktsize %d\n",

  715.                            mms->remaining_in_len, mms->asf_packet_len);

  716.                     result= AVERROR_IO;

  717.                 } else {

  718.                     // copy the data to the packet buffer.

  719.                     result = read_data(mms, buf, size);

  720.                     if (result == 0) {

  721.                         dprintf(NULL, "read asf media paket size is zero!\n");

  722.                         break;

  723.                     }

  724.                 }

  725.             } else {

  726.                 dprintf(NULL, "read packet error!\n");

  727.                 break;

  728.             }

  729.         }

  730.     } while(!result); // only return one packet.

  731.     return result;

  732. }

  733. 

  734. URLProtocol mmst_protocol = {

  735.     "mmst",

  736.     mms_open,

  737.     mms_read,

  738.     NULL, // write

  739.     NULL, // seek

  740.     mms_close,

  741. };