package com.limelight.nvstream.http; import java.io.FileNotFoundException; import java.io.IOException; import java.io.InputStream; import java.io.InputStreamReader; import java.io.Reader; import java.io.StringReader; import java.net.MalformedURLException; import java.net.Socket; import java.net.URI; import java.net.URISyntaxException; import java.security.Principal; import java.security.PrivateKey; import java.security.SecureRandom; import java.security.cert.CertificateException; import java.security.cert.X509Certificate; import java.util.LinkedList; import java.util.ListIterator; import java.util.Stack; import java.util.UUID; import java.util.concurrent.TimeUnit; import javax.net.ssl.HostnameVerifier; import javax.net.ssl.KeyManager; import javax.net.ssl.SSLContext; import javax.net.ssl.SSLHandshakeException; import javax.net.ssl.SSLSession; import javax.net.ssl.TrustManager; import javax.net.ssl.X509KeyManager; import javax.net.ssl.X509TrustManager; import org.xmlpull.v1.XmlPullParser; import org.xmlpull.v1.XmlPullParserException; import org.xmlpull.v1.XmlPullParserFactory; import com.limelight.LimeLog; import com.limelight.nvstream.ConnectionContext; import com.limelight.nvstream.http.PairingManager.PairState; import com.moonlight_stream.moonlight_common.BuildConfig; import com.squareup.okhttp.ConnectionPool; import com.squareup.okhttp.OkHttpClient; import com.squareup.okhttp.Request; import com.squareup.okhttp.Response; import com.squareup.okhttp.ResponseBody; public class NvHTTP { private String uniqueId; private PairingManager pm; public static final int HTTPS_PORT = 47984; public static final int HTTP_PORT = 47989; public static final int CONNECTION_TIMEOUT = 3000; public static final int READ_TIMEOUT = 5000; // Print URL and content to logcat on debug builds private static boolean verbose = BuildConfig.DEBUG; public String baseUrlHttps; public String baseUrlHttp; private OkHttpClient httpClient = new OkHttpClient(); private OkHttpClient httpClientWithReadTimeout; private TrustManager[] trustManager; private KeyManager[] keyManager; private X509Certificate serverCert; void setServerCert(final X509Certificate serverCert) { this.serverCert = serverCert; trustManager = new TrustManager[] { new X509TrustManager() { public X509Certificate[] getAcceptedIssuers() { return new X509Certificate[0]; } public void checkClientTrusted(X509Certificate[] certs, String authType) { throw new IllegalStateException("Should never be called"); } public void checkServerTrusted(X509Certificate[] certs, String authType) throws CertificateException { if (certs.length != 1) { throw new CertificateException("Invalid certificate chain length: "+certs.length); } // Check the server certificate if we've paired to this host if (!certs[0].equals(serverCert)) { throw new CertificateException("Certificate mismatch"); } } } }; } private void initializeHttpState(final X509Certificate serverCert, final LimelightCryptoProvider cryptoProvider) { // Set up TrustManager setServerCert(serverCert); keyManager = new KeyManager[] { new X509KeyManager() { public String chooseClientAlias(String[] keyTypes, Principal[] issuers, Socket socket) { return "Limelight-RSA"; } public String chooseServerAlias(String keyType, Principal[] issuers, Socket socket) { return null; } public X509Certificate[] getCertificateChain(String alias) { return new X509Certificate[] {cryptoProvider.getClientCertificate()}; } public String[] getClientAliases(String keyType, Principal[] issuers) { return null; } public PrivateKey getPrivateKey(String alias) { return cryptoProvider.getClientPrivateKey(); } public String[] getServerAliases(String keyType, Principal[] issuers) { return null; } } }; // Ignore differences between given hostname and certificate hostname HostnameVerifier hv = new HostnameVerifier() { public boolean verify(String hostname, SSLSession session) { return true; } }; httpClient.setConnectionPool(new ConnectionPool(0, 1)); httpClient.setHostnameVerifier(hv); httpClient.setReadTimeout(0, TimeUnit.MILLISECONDS); httpClient.setConnectTimeout(CONNECTION_TIMEOUT, TimeUnit.MILLISECONDS); httpClientWithReadTimeout = httpClient.clone(); httpClientWithReadTimeout.setReadTimeout(READ_TIMEOUT, TimeUnit.MILLISECONDS); } public NvHTTP(String address, String uniqueId, X509Certificate serverCert, LimelightCryptoProvider cryptoProvider) throws IOException { // Use the same UID for all Moonlight clients so we can quit games // started by other Moonlight clients. this.uniqueId = "0123456789ABCDEF"; initializeHttpState(serverCert, cryptoProvider); try { // The URI constructor takes care of escaping IPv6 literals this.baseUrlHttps = new URI("https", null, address, HTTPS_PORT, null, null, null).toString(); this.baseUrlHttp = new URI("http", null, address, HTTP_PORT, null, null, null).toString(); } catch (URISyntaxException e) { // Encapsulate URISyntaxException into IOException for callers to handle more easily throw new IOException(e); } this.pm = new PairingManager(this, cryptoProvider); } String buildUniqueIdUuidString() { return "uniqueid="+uniqueId+"&uuid="+UUID.randomUUID(); } static String getXmlString(Reader r, String tagname) throws XmlPullParserException, IOException { XmlPullParserFactory factory = XmlPullParserFactory.newInstance(); factory.setNamespaceAware(true); XmlPullParser xpp = factory.newPullParser(); xpp.setInput(r); int eventType = xpp.getEventType(); Stack currentTag = new Stack(); while (eventType != XmlPullParser.END_DOCUMENT) { switch (eventType) { case (XmlPullParser.START_TAG): if (xpp.getName().equals("root")) { verifyResponseStatus(xpp); } currentTag.push(xpp.getName()); break; case (XmlPullParser.END_TAG): currentTag.pop(); break; case (XmlPullParser.TEXT): if (currentTag.peek().equals(tagname)) { return xpp.getText().trim(); } break; } eventType = xpp.next(); } return null; } static String getXmlString(String str, String tagname) throws XmlPullParserException, IOException { return getXmlString(new StringReader(str), tagname); } private static void verifyResponseStatus(XmlPullParser xpp) throws GfeHttpResponseException { int statusCode = Integer.parseInt(xpp.getAttributeValue(XmlPullParser.NO_NAMESPACE, "status_code")); if (statusCode != 200) { throw new GfeHttpResponseException(statusCode, xpp.getAttributeValue(XmlPullParser.NO_NAMESPACE, "status_message")); } } public String getServerInfo() throws IOException, XmlPullParserException { String resp; // // TODO: Shield Hub uses HTTP for this and is able to get an accurate PairStatus with HTTP. // For some reason, we always see PairStatus is 0 over HTTP and only 1 over HTTPS. It looks // like there are extra request headers required to make this stuff work over HTTP. // // When we have a pinned cert, use HTTPS to fetch serverinfo and fall back on cert mismatch if (serverCert != null) { try { try { resp = openHttpConnectionToString(baseUrlHttps + "/serverinfo?"+buildUniqueIdUuidString(), true); } catch (SSLHandshakeException e) { // Detect if we failed due to a server cert mismatch if (e.getCause() instanceof CertificateException) { // Jump to the GfeHttpResponseException exception handler to retry // over HTTP which will allow us to pair again to update the cert throw new GfeHttpResponseException(401, "Server certificate mismatch"); } else { throw e; } } // This will throw an exception if the request came back with a failure status. // We want this because it will throw us into the HTTP case if the client is unpaired. getServerVersion(resp); } catch (GfeHttpResponseException e) { if (e.getErrorCode() == 401) { // Cert validation error - fall back to HTTP return openHttpConnectionToString(baseUrlHttp + "/serverinfo", true); } // If it's not a cert validation error, throw it throw e; } return resp; } else { // No pinned cert, so use HTTP return openHttpConnectionToString(baseUrlHttp + "/serverinfo", true); } } public ComputerDetails getComputerDetails() throws IOException, XmlPullParserException { ComputerDetails details = new ComputerDetails(); String serverInfo = getServerInfo(); details.name = getXmlString(serverInfo, "hostname"); if (details.name == null || details.name.isEmpty()) { details.name = "UNKNOWN"; } details.uuid = getXmlString(serverInfo, "uniqueid"); details.macAddress = getXmlString(serverInfo, "mac"); details.localAddress = getXmlString(serverInfo, "LocalIP"); // This may be null, but that's okay details.remoteAddress = getXmlString(serverInfo, "ExternalIP"); // This has some extra logic to always report unpaired if the pinned cert isn't there details.pairState = getPairState(serverInfo); try { details.runningGameId = getCurrentGame(serverInfo); } catch (NumberFormatException e) { details.runningGameId = 0; } // We could reach it so it's online details.state = ComputerDetails.State.ONLINE; return details; } // This hack is Android-specific but we do it on all platforms // because it doesn't really matter private void performAndroidTlsHack(OkHttpClient client) { // Doing this each time we create a socket is required // to avoid the SSLv3 fallback that causes connection failures try { SSLContext sc = SSLContext.getInstance("TLS"); sc.init(keyManager, trustManager, new SecureRandom()); client.setSslSocketFactory(sc.getSocketFactory()); } catch (Exception e) { e.printStackTrace(); throw new RuntimeException(e); } } // Read timeout should be enabled for any HTTP query that requires no outside action // on the GFE server. Examples of queries that DO require outside action are launch, resume, and quit. // The initial pair query does require outside action (user entering a PIN) but subsequent pairing // queries do not. private ResponseBody openHttpConnection(String url, boolean enableReadTimeout) throws IOException { Request request = new Request.Builder().url(url).get().build(); Response response; if (serverCert == null && !url.startsWith(baseUrlHttp)) { throw new IllegalStateException("Attempted HTTPS fetch without pinned cert"); } if (enableReadTimeout) { performAndroidTlsHack(httpClientWithReadTimeout); response = httpClientWithReadTimeout.newCall(request).execute(); } else { performAndroidTlsHack(httpClient); response = httpClient.newCall(request).execute(); } ResponseBody body = response.body(); if (response.isSuccessful()) { return body; } // Unsuccessful, so close the response body try { if (body != null) { body.close(); } } catch (IOException e) {} if (response.code() == 404) { throw new FileNotFoundException(url); } else { throw new IOException("HTTP request failed: "+response.code()); } } String openHttpConnectionToString(String url, boolean enableReadTimeout) throws IOException { try { if (verbose) { LimeLog.info("Requesting URL: "+url); } ResponseBody resp = openHttpConnection(url, enableReadTimeout); String respString = resp.string(); if (verbose) { LimeLog.info(url+" -> "+respString); } return respString; } catch (IOException e) { if (verbose) { e.printStackTrace(); } throw e; } } public String getServerVersion(String serverInfo) throws XmlPullParserException, IOException { return getXmlString(serverInfo, "appversion"); } public PairingManager.PairState getPairState() throws IOException, XmlPullParserException { return getPairState(getServerInfo()); } public PairingManager.PairState getPairState(String serverInfo) throws IOException, XmlPullParserException { // If we don't have a server cert, we can't be paired even if the host thinks we are if (serverCert == null) { return PairState.NOT_PAIRED; } if (!NvHTTP.getXmlString(serverInfo, "PairStatus").equals("1")) { return PairState.NOT_PAIRED; } return PairState.PAIRED; } public long getMaxLumaPixelsH264(String serverInfo) throws XmlPullParserException, IOException { String str = getXmlString(serverInfo, "MaxLumaPixelsH264"); if (str != null) { try { return Long.parseLong(str); } catch (NumberFormatException e) { return 0; } } else { return 0; } } public long getMaxLumaPixelsHEVC(String serverInfo) throws XmlPullParserException, IOException { String str = getXmlString(serverInfo, "MaxLumaPixelsHEVC"); if (str != null) { try { return Long.parseLong(str); } catch (NumberFormatException e) { return 0; } } else { return 0; } } // Possible meaning of bits // Bit 0: H.264 Baseline // Bit 1: H.264 High // ---- // Bit 8: HEVC Main // Bit 9: HEVC Main10 // Bit 10: HEVC Main10 4:4:4 // Bit 11: ??? public long getServerCodecModeSupport(String serverInfo) throws XmlPullParserException, IOException { String str = getXmlString(serverInfo, "ServerCodecModeSupport"); if (str != null) { try { return Long.parseLong(str); } catch (NumberFormatException e) { return 0; } } else { return 0; } } public String getGpuType(String serverInfo) throws XmlPullParserException, IOException { return getXmlString(serverInfo, "gputype"); } public String getGfeVersion(String serverInfo) throws XmlPullParserException, IOException { return getXmlString(serverInfo, "GfeVersion"); } public boolean supports4K(String serverInfo) throws XmlPullParserException, IOException { // Only allow 4K on GFE 3.x String gfeVersionStr = getXmlString(serverInfo, "GfeVersion"); if (gfeVersionStr == null || gfeVersionStr.startsWith("2.")) { return false; } return true; } public int getCurrentGame(String serverInfo) throws IOException, XmlPullParserException { // GFE 2.8 started keeping currentgame set to the last game played. As a result, it no longer // has the semantics that its name would indicate. To contain the effects of this change as much // as possible, we'll force the current game to zero if the server isn't in a streaming session. String serverState = getXmlString(serverInfo, "state"); if (serverState != null && serverState.endsWith("_SERVER_BUSY")) { String game = getXmlString(serverInfo, "currentgame"); return Integer.parseInt(game); } else { return 0; } } public NvApp getAppById(int appId) throws IOException, XmlPullParserException { LinkedList appList = getAppList(); for (NvApp appFromList : appList) { if (appFromList.getAppId() == appId) { return appFromList; } } return null; } /* NOTE: Only use this function if you know what you're doing. * It's totally valid to have two apps named the same thing, * or even nothing at all! Look apps up by ID if at all possible * using the above function */ public NvApp getAppByName(String appName) throws IOException, XmlPullParserException { LinkedList appList = getAppList(); for (NvApp appFromList : appList) { if (appFromList.getAppName().equalsIgnoreCase(appName)) { return appFromList; } } return null; } public PairingManager getPairingManager() { return pm; } public static LinkedList getAppListByReader(Reader r) throws XmlPullParserException, IOException { XmlPullParserFactory factory = XmlPullParserFactory.newInstance(); factory.setNamespaceAware(true); XmlPullParser xpp = factory.newPullParser(); xpp.setInput(r); int eventType = xpp.getEventType(); LinkedList appList = new LinkedList(); Stack currentTag = new Stack(); boolean rootTerminated = false; while (eventType != XmlPullParser.END_DOCUMENT) { switch (eventType) { case (XmlPullParser.START_TAG): if (xpp.getName().equals("root")) { verifyResponseStatus(xpp); } currentTag.push(xpp.getName()); if (xpp.getName().equals("App")) { appList.addLast(new NvApp()); } break; case (XmlPullParser.END_TAG): currentTag.pop(); if (xpp.getName().equals("root")) { rootTerminated = true; } break; case (XmlPullParser.TEXT): NvApp app = appList.getLast(); if (currentTag.peek().equals("AppTitle")) { app.setAppName(xpp.getText().trim()); } else if (currentTag.peek().equals("ID")) { app.setAppId(xpp.getText().trim()); } else if (currentTag.peek().equals("IsHdrSupported")) { app.setHdrSupported(xpp.getText().trim().equals("1")); } break; } eventType = xpp.next(); } // Throw a malformed XML exception if we've not seen the root tag ended if (!rootTerminated) { throw new XmlPullParserException("Malformed XML: Root tag was not terminated"); } // Ensure that all apps in the list are initialized ListIterator i = appList.listIterator(); while (i.hasNext()) { NvApp app = i.next(); // Remove uninitialized apps if (!app.isInitialized()) { LimeLog.warning("GFE returned incomplete app: "+app.getAppId()+" "+app.getAppName()); i.remove(); } } return appList; } public String getAppListRaw() throws MalformedURLException, IOException { return openHttpConnectionToString(baseUrlHttps + "/applist?"+buildUniqueIdUuidString(), true); } public LinkedList getAppList() throws GfeHttpResponseException, IOException, XmlPullParserException { if (verbose) { // Use the raw function so the app list is printed return getAppListByReader(new StringReader(getAppListRaw())); } else { ResponseBody resp = openHttpConnection(baseUrlHttps + "/applist?" + buildUniqueIdUuidString(), true); LinkedList appList = getAppListByReader(new InputStreamReader(resp.byteStream())); resp.close(); return appList; } } public void unpair() throws IOException { openHttpConnectionToString(baseUrlHttp + "/unpair?"+buildUniqueIdUuidString(), true); } public InputStream getBoxArt(NvApp app) throws IOException { ResponseBody resp = openHttpConnection(baseUrlHttps + "/appasset?"+ buildUniqueIdUuidString() + "&appid=" + app.getAppId() + "&AssetType=2&AssetIdx=0", true); return resp.byteStream(); } public int getServerMajorVersion(String serverInfo) throws XmlPullParserException, IOException { int[] appVersionQuad = getServerAppVersionQuad(serverInfo); if (appVersionQuad != null) { return appVersionQuad[0]; } else { return 0; } } public int[] getServerAppVersionQuad(String serverInfo) throws XmlPullParserException, IOException { try { String serverVersion = getServerVersion(serverInfo); if (serverVersion == null) { LimeLog.warning("Missing server version field"); return null; } String[] serverVersionSplit = serverVersion.split("\\."); if (serverVersionSplit.length != 4) { LimeLog.warning("Malformed server version field"); return null; } int[] ret = new int[serverVersionSplit.length]; for (int i = 0; i < ret.length; i++) { ret[i] = Integer.parseInt(serverVersionSplit[i]); } return ret; } catch (NumberFormatException e) { e.printStackTrace(); return null; } } final private static char[] hexArray = "0123456789ABCDEF".toCharArray(); private static String bytesToHex(byte[] bytes) { char[] hexChars = new char[bytes.length * 2]; for ( int j = 0; j < bytes.length; j++ ) { int v = bytes[j] & 0xFF; hexChars[j * 2] = hexArray[v >>> 4]; hexChars[j * 2 + 1] = hexArray[v & 0x0F]; } return new String(hexChars); } public boolean launchApp(ConnectionContext context, int appId, boolean enableHdr) throws IOException, XmlPullParserException { // Using an FPS value over 60 causes SOPS to default to 720p60, // so force it to 60 when starting. This won't impact our ability // to get > 60 FPS while actually streaming though. int fps = context.negotiatedFps > 60 ? 60 : context.negotiatedFps; // Using an unsupported resolution (not 720p, 1080p, or 4K) causes // GFE to force SOPS to 720p60. This is fine for < 720p resolutions like // 360p or 480p, but it is not ideal for 1440p and other resolutions. // When we detect an unsupported resolution, disable SOPS unless it's under 720p. // FIXME: Detect support resolutions using the serverinfo response, not a hardcoded list boolean enableSops = context.streamConfig.getSops(); if (context.negotiatedWidth * context.negotiatedHeight > 1280 * 720 && context.negotiatedWidth * context.negotiatedHeight != 1920 * 1080 && context.negotiatedWidth * context.negotiatedHeight != 3840 * 2160) { LimeLog.info("Disabling SOPS due to non-standard resolution: "+context.negotiatedWidth+"x"+context.negotiatedHeight); enableSops = false; } String xmlStr = openHttpConnectionToString(baseUrlHttps + "/launch?" + buildUniqueIdUuidString() + "&appid=" + appId + "&mode=" + context.negotiatedWidth + "x" + context.negotiatedHeight + "x" + fps + "&additionalStates=1&sops=" + (enableSops ? 1 : 0) + "&rikey="+bytesToHex(context.riKey.getEncoded()) + "&rikeyid="+context.riKeyId + (!enableHdr ? "" : "&hdrMode=1&clientHdrCapVersion=0&clientHdrCapSupportedFlagsInUint32=0&clientHdrCapMetaDataId=NV_STATIC_METADATA_TYPE_1&clientHdrCapDisplayData=0x0x0x0x0x0x0x0x0x0x0") + "&localAudioPlayMode=" + (context.streamConfig.getPlayLocalAudio() ? 1 : 0) + "&surroundAudioInfo=" + ((context.streamConfig.getAudioChannelMask() << 16) + context.streamConfig.getAudioChannelCount()) + (context.streamConfig.getAttachedGamepadMask() != 0 ? "&remoteControllersBitmap=" + context.streamConfig.getAttachedGamepadMask() : "") + (context.streamConfig.getAttachedGamepadMask() != 0 ? "&gcmap=" + context.streamConfig.getAttachedGamepadMask() : ""), false); String gameSession = getXmlString(xmlStr, "gamesession"); return gameSession != null && !gameSession.equals("0"); } public boolean resumeApp(ConnectionContext context) throws IOException, XmlPullParserException { String xmlStr = openHttpConnectionToString(baseUrlHttps + "/resume?" + buildUniqueIdUuidString() + "&rikey="+bytesToHex(context.riKey.getEncoded()) + "&rikeyid="+context.riKeyId + "&surroundAudioInfo=" + ((context.streamConfig.getAudioChannelMask() << 16) + context.streamConfig.getAudioChannelCount()), false); String resume = getXmlString(xmlStr, "resume"); return Integer.parseInt(resume) != 0; } public boolean quitApp() throws IOException, XmlPullParserException { String xmlStr = openHttpConnectionToString(baseUrlHttps + "/cancel?" + buildUniqueIdUuidString(), false); String cancel = getXmlString(xmlStr, "cancel"); if (Integer.parseInt(cancel) == 0) { return false; } // Newer GFE versions will just return success even if quitting fails // if we're not the original requestor. if (getCurrentGame(getServerInfo()) != 0) { // Generate a synthetic GfeResponseException letting the caller know // that they can't kill someone else's stream. throw new GfeHttpResponseException(599, ""); } return true; } }