1775 lines
56 KiB
Objective-C
1775 lines
56 KiB
Objective-C
//
|
|
// Copyright 2012 Square Inc.
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
//
|
|
|
|
|
|
#import "SRWebSocket.h"
|
|
|
|
#import <Availability.h>
|
|
|
|
#if TARGET_OS_IPHONE
|
|
#define HAS_ICU
|
|
#endif
|
|
|
|
#ifdef HAS_ICU
|
|
#import <unicode/utf8.h>
|
|
#endif
|
|
|
|
#if TARGET_OS_IPHONE
|
|
#import <Endian.h>
|
|
#else
|
|
#import <CoreServices/CoreServices.h>
|
|
#endif
|
|
|
|
#import <CommonCrypto/CommonDigest.h>
|
|
#import <Security/SecRandom.h>
|
|
|
|
#if OS_OBJECT_USE_OBJC_RETAIN_RELEASE
|
|
#define sr_dispatch_retain(x)
|
|
#define sr_dispatch_release(x)
|
|
#define maybe_bridge(x) ((__bridge void *) x)
|
|
#else
|
|
#define sr_dispatch_retain(x) dispatch_retain(x)
|
|
#define sr_dispatch_release(x) dispatch_release(x)
|
|
#define maybe_bridge(x) (x)
|
|
#endif
|
|
|
|
#if !__has_feature(objc_arc)
|
|
#error SocketRocket must be compiled with ARC enabled
|
|
#endif
|
|
|
|
|
|
typedef enum {
|
|
SROpCodeTextFrame = 0x1,
|
|
SROpCodeBinaryFrame = 0x2,
|
|
// 3-7 reserved.
|
|
SROpCodeConnectionClose = 0x8,
|
|
SROpCodePing = 0x9,
|
|
SROpCodePong = 0xA,
|
|
// B-F reserved.
|
|
} SROpCode;
|
|
|
|
typedef struct {
|
|
BOOL fin;
|
|
// BOOL rsv1;
|
|
// BOOL rsv2;
|
|
// BOOL rsv3;
|
|
uint8_t opcode;
|
|
BOOL masked;
|
|
uint64_t payload_length;
|
|
} frame_header;
|
|
|
|
static NSString *const SRWebSocketAppendToSecKeyString = @"258EAFA5-E914-47DA-95CA-C5AB0DC85B11";
|
|
|
|
static inline int32_t validate_dispatch_data_partial_string(NSData *data);
|
|
static inline void SRFastLog(NSString *format, ...);
|
|
|
|
@interface NSData (SRWebSocket)
|
|
|
|
- (NSString *)stringBySHA1ThenBase64Encoding;
|
|
|
|
@end
|
|
|
|
|
|
@interface NSString (SRWebSocket)
|
|
|
|
- (NSString *)stringBySHA1ThenBase64Encoding;
|
|
|
|
@end
|
|
|
|
|
|
@interface NSURL (SRWebSocket)
|
|
|
|
// The origin isn't really applicable for a native application.
|
|
// So instead, just map ws -> http and wss -> https.
|
|
- (NSString *)SR_origin;
|
|
|
|
@end
|
|
|
|
|
|
@interface _SRRunLoopThread : NSThread
|
|
|
|
@property (nonatomic, readonly) NSRunLoop *runLoop;
|
|
|
|
@end
|
|
|
|
|
|
static NSString *newSHA1String(const char *bytes, size_t length) {
|
|
uint8_t md[CC_SHA1_DIGEST_LENGTH];
|
|
|
|
assert(length >= 0);
|
|
assert(length <= UINT32_MAX);
|
|
CC_SHA1(bytes, (CC_LONG)length, md);
|
|
|
|
NSData *data = [NSData dataWithBytes:md length:CC_SHA1_DIGEST_LENGTH];
|
|
|
|
#if (__IPHONE_OS_VERSION_MIN_REQUIRED && __IPHONE_OS_VERSION_MIN_REQUIRED < __IPHONE_7_0) \
|
|
|| (__MAC_OS_X_VERSION_MIN_REQUIRED && __MAC_OS_X_VERSION_MIN_REQUIRED < __MAC_10_9)
|
|
|
|
if (![NSData instancesRespondToSelector:@selector(base64EncodedStringWithOptions:)]) {
|
|
return [data base64Encoding];
|
|
}
|
|
|
|
#endif
|
|
|
|
return [data base64EncodedStringWithOptions:0];
|
|
}
|
|
|
|
@implementation NSData (SRWebSocket)
|
|
|
|
- (NSString *)stringBySHA1ThenBase64Encoding;
|
|
{
|
|
return newSHA1String(self.bytes, self.length);
|
|
}
|
|
|
|
@end
|
|
|
|
|
|
@implementation NSString (SRWebSocket)
|
|
|
|
- (NSString *)stringBySHA1ThenBase64Encoding;
|
|
{
|
|
return newSHA1String(self.UTF8String, self.length);
|
|
}
|
|
|
|
@end
|
|
|
|
NSString *const SRWebSocketErrorDomain = @"SRWebSocketErrorDomain";
|
|
NSString *const SRHTTPResponseErrorKey = @"HTTPResponseStatusCode";
|
|
|
|
// Returns number of bytes consumed. Returning 0 means you didn't match.
|
|
// Sends bytes to callback handler;
|
|
typedef size_t (^stream_scanner)(NSData *collected_data);
|
|
|
|
typedef void (^data_callback)(SRWebSocket *webSocket, NSData *data);
|
|
|
|
@interface SRIOConsumer : NSObject {
|
|
stream_scanner _scanner;
|
|
data_callback _handler;
|
|
size_t _bytesNeeded;
|
|
BOOL _readToCurrentFrame;
|
|
BOOL _unmaskBytes;
|
|
}
|
|
@property (nonatomic, copy, readonly) stream_scanner consumer;
|
|
@property (nonatomic, copy, readonly) data_callback handler;
|
|
@property (nonatomic, assign) size_t bytesNeeded;
|
|
@property (nonatomic, assign, readonly) BOOL readToCurrentFrame;
|
|
@property (nonatomic, assign, readonly) BOOL unmaskBytes;
|
|
|
|
@end
|
|
|
|
// This class is not thread-safe, and is expected to always be run on the same queue.
|
|
@interface SRIOConsumerPool : NSObject
|
|
|
|
- (id)initWithBufferCapacity:(NSUInteger)poolSize;
|
|
|
|
- (SRIOConsumer *)consumerWithScanner:(stream_scanner)scanner handler:(data_callback)handler bytesNeeded:(size_t)bytesNeeded readToCurrentFrame:(BOOL)readToCurrentFrame unmaskBytes:(BOOL)unmaskBytes;
|
|
- (void)returnConsumer:(SRIOConsumer *)consumer;
|
|
|
|
@end
|
|
|
|
@interface SRWebSocket () <NSStreamDelegate>
|
|
|
|
- (void)_writeData:(NSData *)data;
|
|
- (void)_closeWithProtocolError:(NSString *)message;
|
|
- (void)_failWithError:(NSError *)error;
|
|
|
|
- (void)_disconnect;
|
|
|
|
- (void)_readFrameNew;
|
|
- (void)_readFrameContinue;
|
|
|
|
- (void)_pumpScanner;
|
|
|
|
- (void)_pumpWriting;
|
|
|
|
- (void)_addConsumerWithScanner:(stream_scanner)consumer callback:(data_callback)callback;
|
|
- (void)_addConsumerWithDataLength:(size_t)dataLength callback:(data_callback)callback readToCurrentFrame:(BOOL)readToCurrentFrame unmaskBytes:(BOOL)unmaskBytes;
|
|
- (void)_addConsumerWithScanner:(stream_scanner)consumer callback:(data_callback)callback dataLength:(size_t)dataLength;
|
|
- (void)_readUntilBytes:(const void *)bytes length:(size_t)length callback:(data_callback)dataHandler;
|
|
- (void)_readUntilHeaderCompleteWithCallback:(data_callback)dataHandler;
|
|
|
|
- (void)_sendFrameWithOpcode:(SROpCode)opcode data:(id)data;
|
|
|
|
- (BOOL)_checkHandshake:(CFHTTPMessageRef)httpMessage;
|
|
- (void)_SR_commonInit;
|
|
|
|
- (void)_initializeStreams;
|
|
- (void)_connect;
|
|
|
|
@property (nonatomic) SRReadyState readyState;
|
|
|
|
@property (nonatomic) NSOperationQueue *delegateOperationQueue;
|
|
@property (nonatomic) dispatch_queue_t delegateDispatchQueue;
|
|
|
|
@end
|
|
|
|
|
|
@implementation SRWebSocket {
|
|
NSInteger _webSocketVersion;
|
|
|
|
NSOperationQueue *_delegateOperationQueue;
|
|
dispatch_queue_t _delegateDispatchQueue;
|
|
|
|
dispatch_queue_t _workQueue;
|
|
NSMutableArray *_consumers;
|
|
|
|
NSInputStream *_inputStream;
|
|
NSOutputStream *_outputStream;
|
|
|
|
NSMutableData *_readBuffer;
|
|
NSUInteger _readBufferOffset;
|
|
|
|
NSMutableData *_outputBuffer;
|
|
NSUInteger _outputBufferOffset;
|
|
|
|
uint8_t _currentFrameOpcode;
|
|
size_t _currentFrameCount;
|
|
size_t _readOpCount;
|
|
uint32_t _currentStringScanPosition;
|
|
NSMutableData *_currentFrameData;
|
|
|
|
NSString *_closeReason;
|
|
|
|
NSString *_secKey;
|
|
|
|
BOOL _pinnedCertFound;
|
|
|
|
uint8_t _currentReadMaskKey[4];
|
|
size_t _currentReadMaskOffset;
|
|
|
|
BOOL _consumerStopped;
|
|
|
|
BOOL _closeWhenFinishedWriting;
|
|
BOOL _failed;
|
|
|
|
BOOL _secure;
|
|
NSURLRequest *_urlRequest;
|
|
|
|
CFHTTPMessageRef _receivedHTTPHeaders;
|
|
|
|
BOOL _sentClose;
|
|
BOOL _didFail;
|
|
int _closeCode;
|
|
|
|
BOOL _isPumping;
|
|
|
|
NSMutableSet *_scheduledRunloops;
|
|
|
|
// We use this to retain ourselves.
|
|
__strong SRWebSocket *_selfRetain;
|
|
|
|
NSArray *_requestedProtocols;
|
|
SRIOConsumerPool *_consumerPool;
|
|
}
|
|
|
|
@synthesize delegate = _delegate;
|
|
@synthesize url = _url;
|
|
@synthesize readyState = _readyState;
|
|
@synthesize protocol = _protocol;
|
|
|
|
static __strong NSData *CRLFCRLF;
|
|
|
|
+ (void)initialize;
|
|
{
|
|
CRLFCRLF = [[NSData alloc] initWithBytes:"\r\n\r\n" length:4];
|
|
}
|
|
|
|
- (id)initWithURLRequest:(NSURLRequest *)request protocols:(NSArray *)protocols;
|
|
{
|
|
self = [super init];
|
|
if (self) {
|
|
assert(request.URL);
|
|
_url = request.URL;
|
|
_urlRequest = request;
|
|
|
|
_requestedProtocols = [protocols copy];
|
|
|
|
[self _SR_commonInit];
|
|
}
|
|
|
|
return self;
|
|
}
|
|
|
|
- (id)initWithURLRequest:(NSURLRequest *)request;
|
|
{
|
|
return [self initWithURLRequest:request protocols:nil];
|
|
}
|
|
|
|
- (id)initWithURL:(NSURL *)url;
|
|
{
|
|
return [self initWithURL:url protocols:nil];
|
|
}
|
|
|
|
- (id)initWithURL:(NSURL *)url protocols:(NSArray *)protocols;
|
|
{
|
|
NSMutableURLRequest *request = [[NSMutableURLRequest alloc] initWithURL:url];
|
|
return [self initWithURLRequest:request protocols:protocols];
|
|
}
|
|
|
|
- (void)_SR_commonInit;
|
|
{
|
|
NSString *scheme = _url.scheme.lowercaseString;
|
|
assert([scheme isEqualToString:@"ws"] || [scheme isEqualToString:@"http"] || [scheme isEqualToString:@"wss"] || [scheme isEqualToString:@"https"]);
|
|
|
|
if ([scheme isEqualToString:@"wss"] || [scheme isEqualToString:@"https"]) {
|
|
_secure = YES;
|
|
}
|
|
|
|
_readyState = SR_CONNECTING;
|
|
_consumerStopped = YES;
|
|
_webSocketVersion = 13;
|
|
|
|
_workQueue = dispatch_queue_create(NULL, DISPATCH_QUEUE_SERIAL);
|
|
|
|
// Going to set a specific on the queue so we can validate we're on the work queue
|
|
dispatch_queue_set_specific(_workQueue, (__bridge void *)self, maybe_bridge(_workQueue), NULL);
|
|
|
|
_delegateDispatchQueue = dispatch_get_main_queue();
|
|
sr_dispatch_retain(_delegateDispatchQueue);
|
|
|
|
_readBuffer = [[NSMutableData alloc] init];
|
|
_outputBuffer = [[NSMutableData alloc] init];
|
|
|
|
_currentFrameData = [[NSMutableData alloc] init];
|
|
|
|
_consumers = [[NSMutableArray alloc] init];
|
|
|
|
_consumerPool = [[SRIOConsumerPool alloc] init];
|
|
|
|
_scheduledRunloops = [[NSMutableSet alloc] init];
|
|
|
|
[self _initializeStreams];
|
|
|
|
// default handlers
|
|
}
|
|
|
|
- (void)assertOnWorkQueue;
|
|
{
|
|
assert(dispatch_get_specific((__bridge void *)self) == maybe_bridge(_workQueue));
|
|
}
|
|
|
|
- (void)dealloc
|
|
{
|
|
_inputStream.delegate = nil;
|
|
_outputStream.delegate = nil;
|
|
|
|
[_inputStream close];
|
|
[_outputStream close];
|
|
|
|
sr_dispatch_release(_workQueue);
|
|
_workQueue = NULL;
|
|
|
|
if (_receivedHTTPHeaders) {
|
|
CFRelease(_receivedHTTPHeaders);
|
|
_receivedHTTPHeaders = NULL;
|
|
}
|
|
|
|
if (_delegateDispatchQueue) {
|
|
sr_dispatch_release(_delegateDispatchQueue);
|
|
_delegateDispatchQueue = NULL;
|
|
}
|
|
}
|
|
|
|
#ifndef NDEBUG
|
|
|
|
- (void)setReadyState:(SRReadyState)aReadyState;
|
|
{
|
|
[self willChangeValueForKey:@"readyState"];
|
|
assert(aReadyState > _readyState);
|
|
_readyState = aReadyState;
|
|
[self didChangeValueForKey:@"readyState"];
|
|
}
|
|
|
|
#endif
|
|
|
|
- (void)open;
|
|
{
|
|
assert(_url);
|
|
NSAssert(_readyState == SR_CONNECTING, @"Cannot call -(void)open on SRWebSocket more than once");
|
|
|
|
_selfRetain = self;
|
|
|
|
[self _connect];
|
|
}
|
|
|
|
// Calls block on delegate queue
|
|
- (void)_performDelegateBlock:(dispatch_block_t)block;
|
|
{
|
|
if (_delegateOperationQueue) {
|
|
[_delegateOperationQueue addOperationWithBlock:block];
|
|
} else {
|
|
assert(_delegateDispatchQueue);
|
|
dispatch_async(_delegateDispatchQueue, block);
|
|
}
|
|
}
|
|
|
|
- (void)setDelegateDispatchQueue:(dispatch_queue_t)queue;
|
|
{
|
|
if (queue) {
|
|
sr_dispatch_retain(queue);
|
|
}
|
|
|
|
if (_delegateDispatchQueue) {
|
|
sr_dispatch_release(_delegateDispatchQueue);
|
|
}
|
|
|
|
_delegateDispatchQueue = queue;
|
|
}
|
|
|
|
- (BOOL)_checkHandshake:(CFHTTPMessageRef)httpMessage;
|
|
{
|
|
NSString *acceptHeader = CFBridgingRelease(CFHTTPMessageCopyHeaderFieldValue(httpMessage, CFSTR("Sec-WebSocket-Accept")));
|
|
|
|
if (acceptHeader == nil) {
|
|
return NO;
|
|
}
|
|
|
|
NSString *concattedString = [_secKey stringByAppendingString:SRWebSocketAppendToSecKeyString];
|
|
NSString *expectedAccept = [concattedString stringBySHA1ThenBase64Encoding];
|
|
|
|
return [acceptHeader isEqualToString:expectedAccept];
|
|
}
|
|
|
|
- (void)_HTTPHeadersDidFinish;
|
|
{
|
|
NSInteger responseCode = CFHTTPMessageGetResponseStatusCode(_receivedHTTPHeaders);
|
|
|
|
if (responseCode >= 400) {
|
|
SRFastLog(@"Request failed with response code %d", responseCode);
|
|
[self _failWithError:[NSError errorWithDomain:SRWebSocketErrorDomain code:2132 userInfo:@{NSLocalizedDescriptionKey:[NSString stringWithFormat:@"received bad response code from server %ld", (long)responseCode], SRHTTPResponseErrorKey:@(responseCode)}]];
|
|
return;
|
|
}
|
|
|
|
if(![self _checkHandshake:_receivedHTTPHeaders]) {
|
|
[self _failWithError:[NSError errorWithDomain:SRWebSocketErrorDomain code:2133 userInfo:[NSDictionary dictionaryWithObject:[NSString stringWithFormat:@"Invalid Sec-WebSocket-Accept response"] forKey:NSLocalizedDescriptionKey]]];
|
|
return;
|
|
}
|
|
|
|
NSString *negotiatedProtocol = CFBridgingRelease(CFHTTPMessageCopyHeaderFieldValue(_receivedHTTPHeaders, CFSTR("Sec-WebSocket-Protocol")));
|
|
if (negotiatedProtocol) {
|
|
// Make sure we requested the protocol
|
|
if ([_requestedProtocols indexOfObject:negotiatedProtocol] == NSNotFound) {
|
|
[self _failWithError:[NSError errorWithDomain:SRWebSocketErrorDomain code:2133 userInfo:[NSDictionary dictionaryWithObject:[NSString stringWithFormat:@"Server specified Sec-WebSocket-Protocol that wasn't requested"] forKey:NSLocalizedDescriptionKey]]];
|
|
return;
|
|
}
|
|
|
|
_protocol = negotiatedProtocol;
|
|
}
|
|
|
|
self.readyState = SR_OPEN;
|
|
|
|
if (!_didFail) {
|
|
[self _readFrameNew];
|
|
}
|
|
|
|
[self _performDelegateBlock:^{
|
|
if ([self.delegate respondsToSelector:@selector(webSocketDidOpen:)]) {
|
|
[self.delegate webSocketDidOpen:self];
|
|
};
|
|
}];
|
|
}
|
|
|
|
|
|
- (void)_readHTTPHeader;
|
|
{
|
|
if (_receivedHTTPHeaders == NULL) {
|
|
_receivedHTTPHeaders = CFHTTPMessageCreateEmpty(NULL, NO);
|
|
}
|
|
|
|
[self _readUntilHeaderCompleteWithCallback:^(SRWebSocket *self, NSData *data) {
|
|
CFHTTPMessageAppendBytes(_receivedHTTPHeaders, (const UInt8 *)data.bytes, data.length);
|
|
|
|
if (CFHTTPMessageIsHeaderComplete(_receivedHTTPHeaders)) {
|
|
SRFastLog(@"Finished reading headers %@", CFBridgingRelease(CFHTTPMessageCopyAllHeaderFields(_receivedHTTPHeaders)));
|
|
[self _HTTPHeadersDidFinish];
|
|
} else {
|
|
[self _readHTTPHeader];
|
|
}
|
|
}];
|
|
}
|
|
|
|
- (void)didConnect
|
|
{
|
|
SRFastLog(@"Connected");
|
|
CFHTTPMessageRef request = CFHTTPMessageCreateRequest(NULL, CFSTR("GET"), (__bridge CFURLRef)_url, kCFHTTPVersion1_1);
|
|
|
|
// Set host first so it defaults
|
|
CFHTTPMessageSetHeaderFieldValue(request, CFSTR("Host"), (__bridge CFStringRef)(_url.port ? [NSString stringWithFormat:@"%@:%@", _url.host, _url.port] : _url.host));
|
|
|
|
NSMutableData *keyBytes = [[NSMutableData alloc] initWithLength:16];
|
|
SecRandomCopyBytes(kSecRandomDefault, keyBytes.length, keyBytes.mutableBytes);
|
|
|
|
#if (__IPHONE_OS_VERSION_MIN_REQUIRED && __IPHONE_OS_VERSION_MIN_REQUIRED < __IPHONE_7_0) \
|
|
|| (__MAC_OS_X_VERSION_MIN_REQUIRED && __MAC_OS_X_VERSION_MIN_REQUIRED < __MAC_10_9)
|
|
|
|
if (![NSData instancesRespondToSelector:@selector(base64EncodedStringWithOptions:)]) {
|
|
_secKey = [keyBytes base64Encoding];
|
|
} else
|
|
|
|
#endif
|
|
|
|
{
|
|
_secKey = [keyBytes base64EncodedStringWithOptions:0];
|
|
}
|
|
|
|
assert([_secKey length] == 24);
|
|
|
|
CFHTTPMessageSetHeaderFieldValue(request, CFSTR("Upgrade"), CFSTR("websocket"));
|
|
CFHTTPMessageSetHeaderFieldValue(request, CFSTR("Connection"), CFSTR("Upgrade"));
|
|
CFHTTPMessageSetHeaderFieldValue(request, CFSTR("Sec-WebSocket-Key"), (__bridge CFStringRef)_secKey);
|
|
CFHTTPMessageSetHeaderFieldValue(request, CFSTR("Sec-WebSocket-Version"), (__bridge CFStringRef)[NSString stringWithFormat:@"%ld", (long)_webSocketVersion]);
|
|
|
|
CFHTTPMessageSetHeaderFieldValue(request, CFSTR("Origin"), (__bridge CFStringRef)_url.SR_origin);
|
|
|
|
if (_requestedProtocols) {
|
|
CFHTTPMessageSetHeaderFieldValue(request, CFSTR("Sec-WebSocket-Protocol"), (__bridge CFStringRef)[_requestedProtocols componentsJoinedByString:@", "]);
|
|
}
|
|
|
|
[_urlRequest.allHTTPHeaderFields enumerateKeysAndObjectsUsingBlock:^(id key, id obj, BOOL *stop) {
|
|
CFHTTPMessageSetHeaderFieldValue(request, (__bridge CFStringRef)key, (__bridge CFStringRef)obj);
|
|
}];
|
|
|
|
NSData *message = CFBridgingRelease(CFHTTPMessageCopySerializedMessage(request));
|
|
|
|
CFRelease(request);
|
|
|
|
[self _writeData:message];
|
|
[self _readHTTPHeader];
|
|
}
|
|
|
|
- (void)_initializeStreams;
|
|
{
|
|
assert(_url.port.unsignedIntValue <= UINT32_MAX);
|
|
uint32_t port = _url.port.unsignedIntValue;
|
|
if (port == 0) {
|
|
if (!_secure) {
|
|
port = 80;
|
|
} else {
|
|
port = 443;
|
|
}
|
|
}
|
|
NSString *host = _url.host;
|
|
|
|
CFReadStreamRef readStream = NULL;
|
|
CFWriteStreamRef writeStream = NULL;
|
|
|
|
CFStreamCreatePairWithSocketToHost(NULL, (__bridge CFStringRef)host, port, &readStream, &writeStream);
|
|
|
|
_outputStream = CFBridgingRelease(writeStream);
|
|
_inputStream = CFBridgingRelease(readStream);
|
|
|
|
|
|
if (_secure) {
|
|
NSMutableDictionary *SSLOptions = [[NSMutableDictionary alloc] init];
|
|
|
|
[_outputStream setProperty:(__bridge id)kCFStreamSocketSecurityLevelNegotiatedSSL forKey:(__bridge id)kCFStreamPropertySocketSecurityLevel];
|
|
|
|
// If we're using pinned certs, don't validate the certificate chain
|
|
if ([_urlRequest SR_SSLPinnedCertificates].count) {
|
|
[SSLOptions setValue:[NSNumber numberWithBool:NO] forKey:(__bridge id)kCFStreamSSLValidatesCertificateChain];
|
|
}
|
|
|
|
#if DEBUG
|
|
[SSLOptions setValue:[NSNumber numberWithBool:NO] forKey:(__bridge id)kCFStreamSSLValidatesCertificateChain];
|
|
NSLog(@"SocketRocket: In debug mode. Allowing connection to any root cert");
|
|
#endif
|
|
|
|
[_outputStream setProperty:SSLOptions
|
|
forKey:(__bridge id)kCFStreamPropertySSLSettings];
|
|
}
|
|
|
|
_inputStream.delegate = self;
|
|
_outputStream.delegate = self;
|
|
}
|
|
|
|
- (void)_connect;
|
|
{
|
|
if (!_scheduledRunloops.count) {
|
|
[self scheduleInRunLoop:[NSRunLoop SR_networkRunLoop] forMode:NSDefaultRunLoopMode];
|
|
}
|
|
|
|
|
|
[_outputStream open];
|
|
[_inputStream open];
|
|
}
|
|
|
|
- (void)scheduleInRunLoop:(NSRunLoop *)aRunLoop forMode:(NSString *)mode;
|
|
{
|
|
[_outputStream scheduleInRunLoop:aRunLoop forMode:mode];
|
|
[_inputStream scheduleInRunLoop:aRunLoop forMode:mode];
|
|
|
|
[_scheduledRunloops addObject:@[aRunLoop, mode]];
|
|
}
|
|
|
|
- (void)unscheduleFromRunLoop:(NSRunLoop *)aRunLoop forMode:(NSString *)mode;
|
|
{
|
|
[_outputStream removeFromRunLoop:aRunLoop forMode:mode];
|
|
[_inputStream removeFromRunLoop:aRunLoop forMode:mode];
|
|
|
|
[_scheduledRunloops removeObject:@[aRunLoop, mode]];
|
|
}
|
|
|
|
- (void)close;
|
|
{
|
|
[self closeWithCode:SRStatusCodeNormal reason:nil];
|
|
}
|
|
|
|
- (void)closeWithCode:(NSInteger)code reason:(NSString *)reason;
|
|
{
|
|
assert(code);
|
|
dispatch_async(_workQueue, ^{
|
|
if (self.readyState == SR_CLOSING || self.readyState == SR_CLOSED) {
|
|
return;
|
|
}
|
|
|
|
BOOL wasConnecting = self.readyState == SR_CONNECTING;
|
|
|
|
self.readyState = SR_CLOSING;
|
|
|
|
SRFastLog(@"Closing with code %d reason %@", code, reason);
|
|
|
|
if (wasConnecting) {
|
|
[self _disconnect];
|
|
return;
|
|
}
|
|
|
|
size_t maxMsgSize = [reason maximumLengthOfBytesUsingEncoding:NSUTF8StringEncoding];
|
|
NSMutableData *mutablePayload = [[NSMutableData alloc] initWithLength:sizeof(uint16_t) + maxMsgSize];
|
|
NSData *payload = mutablePayload;
|
|
|
|
((uint16_t *)mutablePayload.mutableBytes)[0] = EndianU16_BtoN(code);
|
|
|
|
if (reason) {
|
|
NSRange remainingRange = {0};
|
|
|
|
NSUInteger usedLength = 0;
|
|
|
|
BOOL success = [reason getBytes:(char *)mutablePayload.mutableBytes + sizeof(uint16_t) maxLength:payload.length - sizeof(uint16_t) usedLength:&usedLength encoding:NSUTF8StringEncoding options:NSStringEncodingConversionExternalRepresentation range:NSMakeRange(0, reason.length) remainingRange:&remainingRange];
|
|
|
|
assert(success);
|
|
assert(remainingRange.length == 0);
|
|
|
|
if (usedLength != maxMsgSize) {
|
|
payload = [payload subdataWithRange:NSMakeRange(0, usedLength + sizeof(uint16_t))];
|
|
}
|
|
}
|
|
|
|
|
|
[self _sendFrameWithOpcode:SROpCodeConnectionClose data:payload];
|
|
});
|
|
}
|
|
|
|
- (void)_closeWithProtocolError:(NSString *)message;
|
|
{
|
|
// Need to shunt this on the _callbackQueue first to see if they received any messages
|
|
[self _performDelegateBlock:^{
|
|
[self closeWithCode:SRStatusCodeProtocolError reason:message];
|
|
dispatch_async(_workQueue, ^{
|
|
[self _disconnect];
|
|
});
|
|
}];
|
|
}
|
|
|
|
- (void)_failWithError:(NSError *)error;
|
|
{
|
|
dispatch_async(_workQueue, ^{
|
|
if (self.readyState != SR_CLOSED) {
|
|
_failed = YES;
|
|
[self _performDelegateBlock:^{
|
|
if ([self.delegate respondsToSelector:@selector(webSocket:didFailWithError:)]) {
|
|
[self.delegate webSocket:self didFailWithError:error];
|
|
}
|
|
}];
|
|
|
|
self.readyState = SR_CLOSED;
|
|
_selfRetain = nil;
|
|
|
|
SRFastLog(@"Failing with error %@", error.localizedDescription);
|
|
|
|
[self _disconnect];
|
|
}
|
|
});
|
|
}
|
|
|
|
- (void)_writeData:(NSData *)data;
|
|
{
|
|
[self assertOnWorkQueue];
|
|
|
|
if (_closeWhenFinishedWriting) {
|
|
return;
|
|
}
|
|
[_outputBuffer appendData:data];
|
|
[self _pumpWriting];
|
|
}
|
|
|
|
- (void)send:(id)data;
|
|
{
|
|
NSAssert(self.readyState != SR_CONNECTING, @"Invalid State: Cannot call send: until connection is open");
|
|
// TODO: maybe not copy this for performance
|
|
data = [data copy];
|
|
dispatch_async(_workQueue, ^{
|
|
if ([data isKindOfClass:[NSString class]]) {
|
|
[self _sendFrameWithOpcode:SROpCodeTextFrame data:[(NSString *)data dataUsingEncoding:NSUTF8StringEncoding]];
|
|
} else if ([data isKindOfClass:[NSData class]]) {
|
|
[self _sendFrameWithOpcode:SROpCodeBinaryFrame data:data];
|
|
} else if (data == nil) {
|
|
[self _sendFrameWithOpcode:SROpCodeTextFrame data:data];
|
|
} else {
|
|
assert(NO);
|
|
}
|
|
});
|
|
}
|
|
|
|
- (void)sendPing:(NSData *)data;
|
|
{
|
|
NSAssert(self.readyState == SR_OPEN, @"Invalid State: Cannot call send: until connection is open");
|
|
// TODO: maybe not copy this for performance
|
|
data = [data copy] ?: [NSData data]; // It's okay for a ping to be empty
|
|
dispatch_async(_workQueue, ^{
|
|
[self _sendFrameWithOpcode:SROpCodePing data:data];
|
|
});
|
|
}
|
|
|
|
- (void)handlePing:(NSData *)pingData;
|
|
{
|
|
// Need to pingpong this off _callbackQueue first to make sure messages happen in order
|
|
[self _performDelegateBlock:^{
|
|
dispatch_async(_workQueue, ^{
|
|
[self _sendFrameWithOpcode:SROpCodePong data:pingData];
|
|
});
|
|
}];
|
|
}
|
|
|
|
- (void)handlePong:(NSData *)pongData;
|
|
{
|
|
SRFastLog(@"Received pong");
|
|
[self _performDelegateBlock:^{
|
|
if ([self.delegate respondsToSelector:@selector(webSocket:didReceivePong:)]) {
|
|
[self.delegate webSocket:self didReceivePong:pongData];
|
|
}
|
|
}];
|
|
}
|
|
|
|
- (void)_handleMessage:(id)message
|
|
{
|
|
SRFastLog(@"Received message");
|
|
[self _performDelegateBlock:^{
|
|
[self.delegate webSocket:self didReceiveMessage:message];
|
|
}];
|
|
}
|
|
|
|
|
|
static inline BOOL closeCodeIsValid(int closeCode) {
|
|
if (closeCode < 1000) {
|
|
return NO;
|
|
}
|
|
|
|
if (closeCode >= 1000 && closeCode <= 1011) {
|
|
if (closeCode == 1004 ||
|
|
closeCode == 1005 ||
|
|
closeCode == 1006) {
|
|
return NO;
|
|
}
|
|
return YES;
|
|
}
|
|
|
|
if (closeCode >= 3000 && closeCode <= 3999) {
|
|
return YES;
|
|
}
|
|
|
|
if (closeCode >= 4000 && closeCode <= 4999) {
|
|
return YES;
|
|
}
|
|
|
|
return NO;
|
|
}
|
|
|
|
// Note from RFC:
|
|
//
|
|
// If there is a body, the first two
|
|
// bytes of the body MUST be a 2-byte unsigned integer (in network byte
|
|
// order) representing a status code with value /code/ defined in
|
|
// Section 7.4. Following the 2-byte integer the body MAY contain UTF-8
|
|
// encoded data with value /reason/, the interpretation of which is not
|
|
// defined by this specification.
|
|
|
|
- (void)handleCloseWithData:(NSData *)data;
|
|
{
|
|
size_t dataSize = data.length;
|
|
__block uint16_t closeCode = 0;
|
|
|
|
SRFastLog(@"Received close frame");
|
|
|
|
if (dataSize == 1) {
|
|
// TODO handle error
|
|
[self _closeWithProtocolError:@"Payload for close must be larger than 2 bytes"];
|
|
return;
|
|
} else if (dataSize >= 2) {
|
|
[data getBytes:&closeCode length:sizeof(closeCode)];
|
|
_closeCode = EndianU16_BtoN(closeCode);
|
|
if (!closeCodeIsValid(_closeCode)) {
|
|
[self _closeWithProtocolError:[NSString stringWithFormat:@"Cannot have close code of %d", _closeCode]];
|
|
return;
|
|
}
|
|
if (dataSize > 2) {
|
|
_closeReason = [[NSString alloc] initWithData:[data subdataWithRange:NSMakeRange(2, dataSize - 2)] encoding:NSUTF8StringEncoding];
|
|
if (!_closeReason) {
|
|
[self _closeWithProtocolError:@"Close reason MUST be valid UTF-8"];
|
|
return;
|
|
}
|
|
}
|
|
} else {
|
|
_closeCode = SRStatusNoStatusReceived;
|
|
}
|
|
|
|
[self assertOnWorkQueue];
|
|
|
|
if (self.readyState == SR_OPEN) {
|
|
[self closeWithCode:1000 reason:nil];
|
|
}
|
|
dispatch_async(_workQueue, ^{
|
|
[self _disconnect];
|
|
});
|
|
}
|
|
|
|
- (void)_disconnect;
|
|
{
|
|
[self assertOnWorkQueue];
|
|
SRFastLog(@"Trying to disconnect");
|
|
_closeWhenFinishedWriting = YES;
|
|
[self _pumpWriting];
|
|
}
|
|
|
|
- (void)_handleFrameWithData:(NSData *)frameData opCode:(NSInteger)opcode;
|
|
{
|
|
// Check that the current data is valid UTF8
|
|
|
|
BOOL isControlFrame = (opcode == SROpCodePing || opcode == SROpCodePong || opcode == SROpCodeConnectionClose);
|
|
if (!isControlFrame) {
|
|
[self _readFrameNew];
|
|
} else {
|
|
dispatch_async(_workQueue, ^{
|
|
[self _readFrameContinue];
|
|
});
|
|
}
|
|
|
|
switch (opcode) {
|
|
case SROpCodeTextFrame: {
|
|
NSString *str = [[NSString alloc] initWithData:frameData encoding:NSUTF8StringEncoding];
|
|
if (str == nil && frameData) {
|
|
[self closeWithCode:SRStatusCodeInvalidUTF8 reason:@"Text frames must be valid UTF-8"];
|
|
dispatch_async(_workQueue, ^{
|
|
[self _disconnect];
|
|
});
|
|
|
|
return;
|
|
}
|
|
[self _handleMessage:str];
|
|
break;
|
|
}
|
|
case SROpCodeBinaryFrame:
|
|
[self _handleMessage:[frameData copy]];
|
|
break;
|
|
case SROpCodeConnectionClose:
|
|
[self handleCloseWithData:frameData];
|
|
break;
|
|
case SROpCodePing:
|
|
[self handlePing:frameData];
|
|
break;
|
|
case SROpCodePong:
|
|
[self handlePong:frameData];
|
|
break;
|
|
default:
|
|
[self _closeWithProtocolError:[NSString stringWithFormat:@"Unknown opcode %ld", (long)opcode]];
|
|
// TODO: Handle invalid opcode
|
|
break;
|
|
}
|
|
}
|
|
|
|
- (void)_handleFrameHeader:(frame_header)frame_header curData:(NSData *)curData;
|
|
{
|
|
assert(frame_header.opcode != 0);
|
|
|
|
if (self.readyState != SR_OPEN) {
|
|
return;
|
|
}
|
|
|
|
|
|
BOOL isControlFrame = (frame_header.opcode == SROpCodePing || frame_header.opcode == SROpCodePong || frame_header.opcode == SROpCodeConnectionClose);
|
|
|
|
if (isControlFrame && !frame_header.fin) {
|
|
[self _closeWithProtocolError:@"Fragmented control frames not allowed"];
|
|
return;
|
|
}
|
|
|
|
if (isControlFrame && frame_header.payload_length >= 126) {
|
|
[self _closeWithProtocolError:@"Control frames cannot have payloads larger than 126 bytes"];
|
|
return;
|
|
}
|
|
|
|
if (!isControlFrame) {
|
|
_currentFrameOpcode = frame_header.opcode;
|
|
_currentFrameCount += 1;
|
|
}
|
|
|
|
if (frame_header.payload_length == 0) {
|
|
if (isControlFrame) {
|
|
[self _handleFrameWithData:curData opCode:frame_header.opcode];
|
|
} else {
|
|
if (frame_header.fin) {
|
|
[self _handleFrameWithData:_currentFrameData opCode:frame_header.opcode];
|
|
} else {
|
|
// TODO add assert that opcode is not a control;
|
|
[self _readFrameContinue];
|
|
}
|
|
}
|
|
} else {
|
|
assert(frame_header.payload_length <= SIZE_T_MAX);
|
|
[self _addConsumerWithDataLength:(size_t)frame_header.payload_length callback:^(SRWebSocket *self, NSData *newData) {
|
|
if (isControlFrame) {
|
|
[self _handleFrameWithData:newData opCode:frame_header.opcode];
|
|
} else {
|
|
if (frame_header.fin) {
|
|
[self _handleFrameWithData:self->_currentFrameData opCode:frame_header.opcode];
|
|
} else {
|
|
// TODO add assert that opcode is not a control;
|
|
[self _readFrameContinue];
|
|
}
|
|
|
|
}
|
|
} readToCurrentFrame:!isControlFrame unmaskBytes:frame_header.masked];
|
|
}
|
|
}
|
|
|
|
/* From RFC:
|
|
|
|
0 1 2 3
|
|
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
|
|
+-+-+-+-+-------+-+-------------+-------------------------------+
|
|
|F|R|R|R| opcode|M| Payload len | Extended payload length |
|
|
|I|S|S|S| (4) |A| (7) | (16/64) |
|
|
|N|V|V|V| |S| | (if payload len==126/127) |
|
|
| |1|2|3| |K| | |
|
|
+-+-+-+-+-------+-+-------------+ - - - - - - - - - - - - - - - +
|
|
| Extended payload length continued, if payload len == 127 |
|
|
+ - - - - - - - - - - - - - - - +-------------------------------+
|
|
| |Masking-key, if MASK set to 1 |
|
|
+-------------------------------+-------------------------------+
|
|
| Masking-key (continued) | Payload Data |
|
|
+-------------------------------- - - - - - - - - - - - - - - - +
|
|
: Payload Data continued ... :
|
|
+ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - +
|
|
| Payload Data continued ... |
|
|
+---------------------------------------------------------------+
|
|
*/
|
|
|
|
static const uint8_t SRFinMask = 0x80;
|
|
static const uint8_t SROpCodeMask = 0x0F;
|
|
static const uint8_t SRRsvMask = 0x70;
|
|
static const uint8_t SRMaskMask = 0x80;
|
|
static const uint8_t SRPayloadLenMask = 0x7F;
|
|
|
|
|
|
- (void)_readFrameContinue;
|
|
{
|
|
assert((_currentFrameCount == 0 && _currentFrameOpcode == 0) || (_currentFrameCount > 0 && _currentFrameOpcode > 0));
|
|
|
|
[self _addConsumerWithDataLength:2 callback:^(SRWebSocket *self, NSData *data) {
|
|
__block frame_header header = {0};
|
|
|
|
const uint8_t *headerBuffer = data.bytes;
|
|
assert(data.length >= 2);
|
|
|
|
if (headerBuffer[0] & SRRsvMask) {
|
|
[self _closeWithProtocolError:@"Server used RSV bits"];
|
|
return;
|
|
}
|
|
|
|
uint8_t receivedOpcode = (SROpCodeMask & headerBuffer[0]);
|
|
|
|
BOOL isControlFrame = (receivedOpcode == SROpCodePing || receivedOpcode == SROpCodePong || receivedOpcode == SROpCodeConnectionClose);
|
|
|
|
if (!isControlFrame && receivedOpcode != 0 && self->_currentFrameCount > 0) {
|
|
[self _closeWithProtocolError:@"all data frames after the initial data frame must have opcode 0"];
|
|
return;
|
|
}
|
|
|
|
if (receivedOpcode == 0 && self->_currentFrameCount == 0) {
|
|
[self _closeWithProtocolError:@"cannot continue a message"];
|
|
return;
|
|
}
|
|
|
|
header.opcode = receivedOpcode == 0 ? self->_currentFrameOpcode : receivedOpcode;
|
|
|
|
header.fin = !!(SRFinMask & headerBuffer[0]);
|
|
|
|
|
|
header.masked = !!(SRMaskMask & headerBuffer[1]);
|
|
header.payload_length = SRPayloadLenMask & headerBuffer[1];
|
|
|
|
headerBuffer = NULL;
|
|
|
|
if (header.masked) {
|
|
[self _closeWithProtocolError:@"Client must receive unmasked data"];
|
|
}
|
|
|
|
size_t extra_bytes_needed = header.masked ? sizeof(_currentReadMaskKey) : 0;
|
|
|
|
if (header.payload_length == 126) {
|
|
extra_bytes_needed += sizeof(uint16_t);
|
|
} else if (header.payload_length == 127) {
|
|
extra_bytes_needed += sizeof(uint64_t);
|
|
}
|
|
|
|
if (extra_bytes_needed == 0) {
|
|
[self _handleFrameHeader:header curData:self->_currentFrameData];
|
|
} else {
|
|
[self _addConsumerWithDataLength:extra_bytes_needed callback:^(SRWebSocket *self, NSData *data) {
|
|
size_t mapped_size = data.length;
|
|
const void *mapped_buffer = data.bytes;
|
|
size_t offset = 0;
|
|
|
|
if (header.payload_length == 126) {
|
|
assert(mapped_size >= sizeof(uint16_t));
|
|
uint16_t newLen = EndianU16_BtoN(*(uint16_t *)(mapped_buffer));
|
|
header.payload_length = newLen;
|
|
offset += sizeof(uint16_t);
|
|
} else if (header.payload_length == 127) {
|
|
assert(mapped_size >= sizeof(uint64_t));
|
|
header.payload_length = EndianU64_BtoN(*(uint64_t *)(mapped_buffer));
|
|
offset += sizeof(uint64_t);
|
|
} else {
|
|
assert(header.payload_length < 126 && header.payload_length >= 0);
|
|
}
|
|
|
|
|
|
if (header.masked) {
|
|
assert(mapped_size >= sizeof(_currentReadMaskOffset) + offset);
|
|
memcpy(self->_currentReadMaskKey, ((uint8_t *)mapped_buffer) + offset, sizeof(self->_currentReadMaskKey));
|
|
}
|
|
|
|
[self _handleFrameHeader:header curData:self->_currentFrameData];
|
|
} readToCurrentFrame:NO unmaskBytes:NO];
|
|
}
|
|
} readToCurrentFrame:NO unmaskBytes:NO];
|
|
}
|
|
|
|
- (void)_readFrameNew;
|
|
{
|
|
dispatch_async(_workQueue, ^{
|
|
[_currentFrameData setLength:0];
|
|
|
|
_currentFrameOpcode = 0;
|
|
_currentFrameCount = 0;
|
|
_readOpCount = 0;
|
|
_currentStringScanPosition = 0;
|
|
|
|
[self _readFrameContinue];
|
|
});
|
|
}
|
|
|
|
- (void)_pumpWriting;
|
|
{
|
|
[self assertOnWorkQueue];
|
|
|
|
NSUInteger dataLength = _outputBuffer.length;
|
|
if (dataLength - _outputBufferOffset > 0 && _outputStream.hasSpaceAvailable) {
|
|
NSInteger bytesWritten = [_outputStream write:_outputBuffer.bytes + _outputBufferOffset maxLength:dataLength - _outputBufferOffset];
|
|
if (bytesWritten == -1) {
|
|
[self _failWithError:[NSError errorWithDomain:SRWebSocketErrorDomain code:2145 userInfo:[NSDictionary dictionaryWithObject:@"Error writing to stream" forKey:NSLocalizedDescriptionKey]]];
|
|
return;
|
|
}
|
|
|
|
_outputBufferOffset += bytesWritten;
|
|
|
|
if (_outputBufferOffset > 4096 && _outputBufferOffset > (_outputBuffer.length >> 1)) {
|
|
_outputBuffer = [[NSMutableData alloc] initWithBytes:(char *)_outputBuffer.bytes + _outputBufferOffset length:_outputBuffer.length - _outputBufferOffset];
|
|
_outputBufferOffset = 0;
|
|
}
|
|
}
|
|
|
|
if (_closeWhenFinishedWriting &&
|
|
_outputBuffer.length - _outputBufferOffset == 0 &&
|
|
(_inputStream.streamStatus != NSStreamStatusNotOpen &&
|
|
_inputStream.streamStatus != NSStreamStatusClosed) &&
|
|
!_sentClose) {
|
|
_sentClose = YES;
|
|
|
|
[_outputStream close];
|
|
[_inputStream close];
|
|
|
|
|
|
for (NSArray *runLoop in [_scheduledRunloops copy]) {
|
|
[self unscheduleFromRunLoop:[runLoop objectAtIndex:0] forMode:[runLoop objectAtIndex:1]];
|
|
}
|
|
|
|
if (!_failed) {
|
|
[self _performDelegateBlock:^{
|
|
if ([self.delegate respondsToSelector:@selector(webSocket:didCloseWithCode:reason:wasClean:)]) {
|
|
[self.delegate webSocket:self didCloseWithCode:_closeCode reason:_closeReason wasClean:YES];
|
|
}
|
|
}];
|
|
}
|
|
|
|
_selfRetain = nil;
|
|
}
|
|
}
|
|
|
|
- (void)_addConsumerWithScanner:(stream_scanner)consumer callback:(data_callback)callback;
|
|
{
|
|
[self assertOnWorkQueue];
|
|
[self _addConsumerWithScanner:consumer callback:callback dataLength:0];
|
|
}
|
|
|
|
- (void)_addConsumerWithDataLength:(size_t)dataLength callback:(data_callback)callback readToCurrentFrame:(BOOL)readToCurrentFrame unmaskBytes:(BOOL)unmaskBytes;
|
|
{
|
|
[self assertOnWorkQueue];
|
|
assert(dataLength);
|
|
|
|
[_consumers addObject:[_consumerPool consumerWithScanner:nil handler:callback bytesNeeded:dataLength readToCurrentFrame:readToCurrentFrame unmaskBytes:unmaskBytes]];
|
|
[self _pumpScanner];
|
|
}
|
|
|
|
- (void)_addConsumerWithScanner:(stream_scanner)consumer callback:(data_callback)callback dataLength:(size_t)dataLength;
|
|
{
|
|
[self assertOnWorkQueue];
|
|
[_consumers addObject:[_consumerPool consumerWithScanner:consumer handler:callback bytesNeeded:dataLength readToCurrentFrame:NO unmaskBytes:NO]];
|
|
[self _pumpScanner];
|
|
}
|
|
|
|
|
|
static const char CRLFCRLFBytes[] = {'\r', '\n', '\r', '\n'};
|
|
|
|
- (void)_readUntilHeaderCompleteWithCallback:(data_callback)dataHandler;
|
|
{
|
|
[self _readUntilBytes:CRLFCRLFBytes length:sizeof(CRLFCRLFBytes) callback:dataHandler];
|
|
}
|
|
|
|
- (void)_readUntilBytes:(const void *)bytes length:(size_t)length callback:(data_callback)dataHandler;
|
|
{
|
|
// TODO optimize so this can continue from where we last searched
|
|
stream_scanner consumer = ^size_t(NSData *data) {
|
|
__block size_t found_size = 0;
|
|
__block size_t match_count = 0;
|
|
|
|
size_t size = data.length;
|
|
const unsigned char *buffer = data.bytes;
|
|
for (size_t i = 0; i < size; i++ ) {
|
|
if (((const unsigned char *)buffer)[i] == ((const unsigned char *)bytes)[match_count]) {
|
|
match_count += 1;
|
|
if (match_count == length) {
|
|
found_size = i + 1;
|
|
break;
|
|
}
|
|
} else {
|
|
match_count = 0;
|
|
}
|
|
}
|
|
return found_size;
|
|
};
|
|
[self _addConsumerWithScanner:consumer callback:dataHandler];
|
|
}
|
|
|
|
|
|
// Returns true if did work
|
|
- (BOOL)_innerPumpScanner {
|
|
|
|
BOOL didWork = NO;
|
|
|
|
if (self.readyState >= SR_CLOSING) {
|
|
return didWork;
|
|
}
|
|
|
|
if (!_consumers.count) {
|
|
return didWork;
|
|
}
|
|
|
|
size_t curSize = _readBuffer.length - _readBufferOffset;
|
|
if (!curSize) {
|
|
return didWork;
|
|
}
|
|
|
|
SRIOConsumer *consumer = [_consumers objectAtIndex:0];
|
|
|
|
size_t bytesNeeded = consumer.bytesNeeded;
|
|
|
|
size_t foundSize = 0;
|
|
if (consumer.consumer) {
|
|
NSData *tempView = [NSData dataWithBytesNoCopy:(char *)_readBuffer.bytes + _readBufferOffset length:_readBuffer.length - _readBufferOffset freeWhenDone:NO];
|
|
foundSize = consumer.consumer(tempView);
|
|
} else {
|
|
assert(consumer.bytesNeeded);
|
|
if (curSize >= bytesNeeded) {
|
|
foundSize = bytesNeeded;
|
|
} else if (consumer.readToCurrentFrame) {
|
|
foundSize = curSize;
|
|
}
|
|
}
|
|
|
|
NSData *slice = nil;
|
|
if (consumer.readToCurrentFrame || foundSize) {
|
|
NSRange sliceRange = NSMakeRange(_readBufferOffset, foundSize);
|
|
slice = [_readBuffer subdataWithRange:sliceRange];
|
|
|
|
_readBufferOffset += foundSize;
|
|
|
|
if (_readBufferOffset > 4096 && _readBufferOffset > (_readBuffer.length >> 1)) {
|
|
_readBuffer = [[NSMutableData alloc] initWithBytes:(char *)_readBuffer.bytes + _readBufferOffset length:_readBuffer.length - _readBufferOffset]; _readBufferOffset = 0;
|
|
}
|
|
|
|
if (consumer.unmaskBytes) {
|
|
NSMutableData *mutableSlice = [slice mutableCopy];
|
|
|
|
NSUInteger len = mutableSlice.length;
|
|
uint8_t *bytes = mutableSlice.mutableBytes;
|
|
|
|
for (NSUInteger i = 0; i < len; i++) {
|
|
bytes[i] = bytes[i] ^ _currentReadMaskKey[_currentReadMaskOffset % sizeof(_currentReadMaskKey)];
|
|
_currentReadMaskOffset += 1;
|
|
}
|
|
|
|
slice = mutableSlice;
|
|
}
|
|
|
|
if (consumer.readToCurrentFrame) {
|
|
[_currentFrameData appendData:slice];
|
|
|
|
_readOpCount += 1;
|
|
|
|
if (_currentFrameOpcode == SROpCodeTextFrame) {
|
|
// Validate UTF8 stuff.
|
|
size_t currentDataSize = _currentFrameData.length;
|
|
if (_currentFrameOpcode == SROpCodeTextFrame && currentDataSize > 0) {
|
|
// TODO: Optimize the crap out of this. Don't really have to copy all the data each time
|
|
|
|
size_t scanSize = currentDataSize - _currentStringScanPosition;
|
|
|
|
NSData *scan_data = [_currentFrameData subdataWithRange:NSMakeRange(_currentStringScanPosition, scanSize)];
|
|
int32_t valid_utf8_size = validate_dispatch_data_partial_string(scan_data);
|
|
|
|
if (valid_utf8_size == -1) {
|
|
[self closeWithCode:SRStatusCodeInvalidUTF8 reason:@"Text frames must be valid UTF-8"];
|
|
dispatch_async(_workQueue, ^{
|
|
[self _disconnect];
|
|
});
|
|
return didWork;
|
|
} else {
|
|
_currentStringScanPosition += valid_utf8_size;
|
|
}
|
|
}
|
|
|
|
}
|
|
|
|
consumer.bytesNeeded -= foundSize;
|
|
|
|
if (consumer.bytesNeeded == 0) {
|
|
[_consumers removeObjectAtIndex:0];
|
|
consumer.handler(self, nil);
|
|
[_consumerPool returnConsumer:consumer];
|
|
didWork = YES;
|
|
}
|
|
} else if (foundSize) {
|
|
[_consumers removeObjectAtIndex:0];
|
|
consumer.handler(self, slice);
|
|
[_consumerPool returnConsumer:consumer];
|
|
didWork = YES;
|
|
}
|
|
}
|
|
return didWork;
|
|
}
|
|
|
|
-(void)_pumpScanner;
|
|
{
|
|
[self assertOnWorkQueue];
|
|
|
|
if (!_isPumping) {
|
|
_isPumping = YES;
|
|
} else {
|
|
return;
|
|
}
|
|
|
|
while ([self _innerPumpScanner]) {
|
|
|
|
}
|
|
|
|
_isPumping = NO;
|
|
}
|
|
|
|
//#define NOMASK
|
|
|
|
static const size_t SRFrameHeaderOverhead = 32;
|
|
|
|
- (void)_sendFrameWithOpcode:(SROpCode)opcode data:(id)data;
|
|
{
|
|
[self assertOnWorkQueue];
|
|
|
|
if (nil == data) {
|
|
return;
|
|
}
|
|
|
|
NSAssert([data isKindOfClass:[NSData class]] || [data isKindOfClass:[NSString class]], @"NSString or NSData");
|
|
|
|
size_t payloadLength = [data isKindOfClass:[NSString class]] ? [(NSString *)data lengthOfBytesUsingEncoding:NSUTF8StringEncoding] : [data length];
|
|
|
|
NSMutableData *frame = [[NSMutableData alloc] initWithLength:payloadLength + SRFrameHeaderOverhead];
|
|
if (!frame) {
|
|
[self closeWithCode:SRStatusCodeMessageTooBig reason:@"Message too big"];
|
|
return;
|
|
}
|
|
uint8_t *frame_buffer = (uint8_t *)[frame mutableBytes];
|
|
|
|
// set fin
|
|
frame_buffer[0] = SRFinMask | opcode;
|
|
|
|
BOOL useMask = YES;
|
|
#ifdef NOMASK
|
|
useMask = NO;
|
|
#endif
|
|
|
|
if (useMask) {
|
|
// set the mask and header
|
|
frame_buffer[1] |= SRMaskMask;
|
|
}
|
|
|
|
size_t frame_buffer_size = 2;
|
|
|
|
const uint8_t *unmasked_payload = NULL;
|
|
if ([data isKindOfClass:[NSData class]]) {
|
|
unmasked_payload = (uint8_t *)[data bytes];
|
|
} else if ([data isKindOfClass:[NSString class]]) {
|
|
unmasked_payload = (const uint8_t *)[data UTF8String];
|
|
} else {
|
|
return;
|
|
}
|
|
|
|
if (payloadLength < 126) {
|
|
frame_buffer[1] |= payloadLength;
|
|
} else if (payloadLength <= UINT16_MAX) {
|
|
frame_buffer[1] |= 126;
|
|
*((uint16_t *)(frame_buffer + frame_buffer_size)) = EndianU16_BtoN((uint16_t)payloadLength);
|
|
frame_buffer_size += sizeof(uint16_t);
|
|
} else {
|
|
frame_buffer[1] |= 127;
|
|
*((uint64_t *)(frame_buffer + frame_buffer_size)) = EndianU64_BtoN((uint64_t)payloadLength);
|
|
frame_buffer_size += sizeof(uint64_t);
|
|
}
|
|
|
|
if (!useMask) {
|
|
for (size_t i = 0; i < payloadLength; i++) {
|
|
frame_buffer[frame_buffer_size] = unmasked_payload[i];
|
|
frame_buffer_size += 1;
|
|
}
|
|
} else {
|
|
uint8_t *mask_key = frame_buffer + frame_buffer_size;
|
|
SecRandomCopyBytes(kSecRandomDefault, sizeof(uint32_t), (uint8_t *)mask_key);
|
|
frame_buffer_size += sizeof(uint32_t);
|
|
|
|
// TODO: could probably optimize this with SIMD
|
|
for (size_t i = 0; i < payloadLength; i++) {
|
|
frame_buffer[frame_buffer_size] = unmasked_payload[i] ^ mask_key[i % sizeof(uint32_t)];
|
|
frame_buffer_size += 1;
|
|
}
|
|
}
|
|
|
|
assert(frame_buffer_size <= [frame length]);
|
|
frame.length = frame_buffer_size;
|
|
|
|
[self _writeData:frame];
|
|
}
|
|
|
|
- (void)stream:(NSStream *)aStream handleEvent:(NSStreamEvent)eventCode;
|
|
{
|
|
if (_secure && !_pinnedCertFound && (eventCode == NSStreamEventHasBytesAvailable || eventCode == NSStreamEventHasSpaceAvailable)) {
|
|
|
|
NSArray *sslCerts = [_urlRequest SR_SSLPinnedCertificates];
|
|
if (sslCerts) {
|
|
SecTrustRef secTrust = (__bridge SecTrustRef)[aStream propertyForKey:(__bridge id)kCFStreamPropertySSLPeerTrust];
|
|
if (secTrust) {
|
|
NSInteger numCerts = SecTrustGetCertificateCount(secTrust);
|
|
for (NSInteger i = 0; i < numCerts && !_pinnedCertFound; i++) {
|
|
SecCertificateRef cert = SecTrustGetCertificateAtIndex(secTrust, i);
|
|
NSData *certData = CFBridgingRelease(SecCertificateCopyData(cert));
|
|
|
|
for (id ref in sslCerts) {
|
|
SecCertificateRef trustedCert = (__bridge SecCertificateRef)ref;
|
|
NSData *trustedCertData = CFBridgingRelease(SecCertificateCopyData(trustedCert));
|
|
|
|
if ([trustedCertData isEqualToData:certData]) {
|
|
_pinnedCertFound = YES;
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
if (!_pinnedCertFound) {
|
|
dispatch_async(_workQueue, ^{
|
|
[self _failWithError:[NSError errorWithDomain:SRWebSocketErrorDomain code:23556 userInfo:[NSDictionary dictionaryWithObject:[NSString stringWithFormat:@"Invalid server cert"] forKey:NSLocalizedDescriptionKey]]];
|
|
});
|
|
return;
|
|
}
|
|
}
|
|
}
|
|
|
|
dispatch_async(_workQueue, ^{
|
|
switch (eventCode) {
|
|
case NSStreamEventOpenCompleted: {
|
|
SRFastLog(@"NSStreamEventOpenCompleted %@", aStream);
|
|
if (self.readyState >= SR_CLOSING) {
|
|
return;
|
|
}
|
|
assert(_readBuffer);
|
|
|
|
if (self.readyState == SR_CONNECTING && aStream == _inputStream) {
|
|
[self didConnect];
|
|
}
|
|
[self _pumpWriting];
|
|
[self _pumpScanner];
|
|
break;
|
|
}
|
|
|
|
case NSStreamEventErrorOccurred: {
|
|
SRFastLog(@"NSStreamEventErrorOccurred %@ %@", aStream, [[aStream streamError] copy]);
|
|
/// TODO specify error better!
|
|
[self _failWithError:aStream.streamError];
|
|
_readBufferOffset = 0;
|
|
[_readBuffer setLength:0];
|
|
break;
|
|
|
|
}
|
|
|
|
case NSStreamEventEndEncountered: {
|
|
[self _pumpScanner];
|
|
SRFastLog(@"NSStreamEventEndEncountered %@", aStream);
|
|
if (aStream.streamError) {
|
|
[self _failWithError:aStream.streamError];
|
|
} else {
|
|
if (self.readyState != SR_CLOSED) {
|
|
self.readyState = SR_CLOSED;
|
|
_selfRetain = nil;
|
|
}
|
|
|
|
if (!_sentClose && !_failed) {
|
|
_sentClose = YES;
|
|
// If we get closed in this state it's probably not clean because we should be sending this when we send messages
|
|
[self _performDelegateBlock:^{
|
|
if ([self.delegate respondsToSelector:@selector(webSocket:didCloseWithCode:reason:wasClean:)]) {
|
|
[self.delegate webSocket:self didCloseWithCode:SRStatusCodeGoingAway reason:@"Stream end encountered" wasClean:NO];
|
|
}
|
|
}];
|
|
}
|
|
}
|
|
|
|
break;
|
|
}
|
|
|
|
case NSStreamEventHasBytesAvailable: {
|
|
SRFastLog(@"NSStreamEventHasBytesAvailable %@", aStream);
|
|
const int bufferSize = 2048;
|
|
uint8_t buffer[bufferSize];
|
|
|
|
while (_inputStream.hasBytesAvailable) {
|
|
NSInteger bytes_read = [_inputStream read:buffer maxLength:bufferSize];
|
|
|
|
if (bytes_read > 0) {
|
|
[_readBuffer appendBytes:buffer length:bytes_read];
|
|
} else if (bytes_read < 0) {
|
|
[self _failWithError:_inputStream.streamError];
|
|
}
|
|
|
|
if (bytes_read != bufferSize) {
|
|
break;
|
|
}
|
|
};
|
|
[self _pumpScanner];
|
|
break;
|
|
}
|
|
|
|
case NSStreamEventHasSpaceAvailable: {
|
|
SRFastLog(@"NSStreamEventHasSpaceAvailable %@", aStream);
|
|
[self _pumpWriting];
|
|
break;
|
|
}
|
|
|
|
default:
|
|
SRFastLog(@"(default) %@", aStream);
|
|
break;
|
|
}
|
|
});
|
|
}
|
|
|
|
@end
|
|
|
|
|
|
@implementation SRIOConsumer
|
|
|
|
@synthesize bytesNeeded = _bytesNeeded;
|
|
@synthesize consumer = _scanner;
|
|
@synthesize handler = _handler;
|
|
@synthesize readToCurrentFrame = _readToCurrentFrame;
|
|
@synthesize unmaskBytes = _unmaskBytes;
|
|
|
|
- (void)setupWithScanner:(stream_scanner)scanner handler:(data_callback)handler bytesNeeded:(size_t)bytesNeeded readToCurrentFrame:(BOOL)readToCurrentFrame unmaskBytes:(BOOL)unmaskBytes;
|
|
{
|
|
_scanner = [scanner copy];
|
|
_handler = [handler copy];
|
|
_bytesNeeded = bytesNeeded;
|
|
_readToCurrentFrame = readToCurrentFrame;
|
|
_unmaskBytes = unmaskBytes;
|
|
assert(_scanner || _bytesNeeded);
|
|
}
|
|
|
|
|
|
@end
|
|
|
|
|
|
@implementation SRIOConsumerPool {
|
|
NSUInteger _poolSize;
|
|
NSMutableArray *_bufferedConsumers;
|
|
}
|
|
|
|
- (id)initWithBufferCapacity:(NSUInteger)poolSize;
|
|
{
|
|
self = [super init];
|
|
if (self) {
|
|
_poolSize = poolSize;
|
|
_bufferedConsumers = [[NSMutableArray alloc] initWithCapacity:poolSize];
|
|
}
|
|
return self;
|
|
}
|
|
|
|
- (id)init
|
|
{
|
|
return [self initWithBufferCapacity:8];
|
|
}
|
|
|
|
- (SRIOConsumer *)consumerWithScanner:(stream_scanner)scanner handler:(data_callback)handler bytesNeeded:(size_t)bytesNeeded readToCurrentFrame:(BOOL)readToCurrentFrame unmaskBytes:(BOOL)unmaskBytes;
|
|
{
|
|
SRIOConsumer *consumer = nil;
|
|
if (_bufferedConsumers.count) {
|
|
consumer = [_bufferedConsumers lastObject];
|
|
[_bufferedConsumers removeLastObject];
|
|
} else {
|
|
consumer = [[SRIOConsumer alloc] init];
|
|
}
|
|
|
|
[consumer setupWithScanner:scanner handler:handler bytesNeeded:bytesNeeded readToCurrentFrame:readToCurrentFrame unmaskBytes:unmaskBytes];
|
|
|
|
return consumer;
|
|
}
|
|
|
|
- (void)returnConsumer:(SRIOConsumer *)consumer;
|
|
{
|
|
if (_bufferedConsumers.count < _poolSize) {
|
|
[_bufferedConsumers addObject:consumer];
|
|
}
|
|
}
|
|
|
|
@end
|
|
|
|
|
|
@implementation NSURLRequest (CertificateAdditions)
|
|
|
|
- (NSArray *)SR_SSLPinnedCertificates;
|
|
{
|
|
return [NSURLProtocol propertyForKey:@"SR_SSLPinnedCertificates" inRequest:self];
|
|
}
|
|
|
|
@end
|
|
|
|
@implementation NSMutableURLRequest (CertificateAdditions)
|
|
|
|
- (NSArray *)SR_SSLPinnedCertificates;
|
|
{
|
|
return [NSURLProtocol propertyForKey:@"SR_SSLPinnedCertificates" inRequest:self];
|
|
}
|
|
|
|
- (void)setSR_SSLPinnedCertificates:(NSArray *)SR_SSLPinnedCertificates;
|
|
{
|
|
[NSURLProtocol setProperty:SR_SSLPinnedCertificates forKey:@"SR_SSLPinnedCertificates" inRequest:self];
|
|
}
|
|
|
|
@end
|
|
|
|
@implementation NSURL (SRWebSocket)
|
|
|
|
- (NSString *)SR_origin;
|
|
{
|
|
NSString *scheme = [self.scheme lowercaseString];
|
|
|
|
if ([scheme isEqualToString:@"wss"]) {
|
|
scheme = @"https";
|
|
} else if ([scheme isEqualToString:@"ws"]) {
|
|
scheme = @"http";
|
|
}
|
|
|
|
if (self.port) {
|
|
return [NSString stringWithFormat:@"%@://%@:%@/", scheme, self.host, self.port];
|
|
} else {
|
|
return [NSString stringWithFormat:@"%@://%@/", scheme, self.host];
|
|
}
|
|
}
|
|
|
|
@end
|
|
|
|
//#define SR_ENABLE_LOG
|
|
|
|
static inline void SRFastLog(NSString *format, ...) {
|
|
#ifdef SR_ENABLE_LOG
|
|
__block va_list arg_list;
|
|
va_start (arg_list, format);
|
|
|
|
NSString *formattedString = [[NSString alloc] initWithFormat:format arguments:arg_list];
|
|
|
|
va_end(arg_list);
|
|
|
|
NSLog(@"[SR] %@", formattedString);
|
|
#endif
|
|
}
|
|
|
|
|
|
#ifdef HAS_ICU
|
|
|
|
static inline int32_t validate_dispatch_data_partial_string(NSData *data) {
|
|
if ([data length] > INT32_MAX) {
|
|
// INT32_MAX is the limit so long as this Framework is using 32 bit ints everywhere.
|
|
return -1;
|
|
}
|
|
|
|
int32_t size = (int32_t)[data length];
|
|
|
|
const void * contents = [data bytes];
|
|
const uint8_t *str = (const uint8_t *)contents;
|
|
|
|
UChar32 codepoint = 1;
|
|
int32_t offset = 0;
|
|
int32_t lastOffset = 0;
|
|
while(offset < size && codepoint > 0) {
|
|
lastOffset = offset;
|
|
U8_NEXT(str, offset, size, codepoint);
|
|
}
|
|
|
|
if (codepoint == -1) {
|
|
// Check to see if the last byte is valid or whether it was just continuing
|
|
if (!U8_IS_LEAD(str[lastOffset]) || U8_COUNT_TRAIL_BYTES(str[lastOffset]) + lastOffset < (int32_t)size) {
|
|
|
|
size = -1;
|
|
} else {
|
|
uint8_t leadByte = str[lastOffset];
|
|
U8_MASK_LEAD_BYTE(leadByte, U8_COUNT_TRAIL_BYTES(leadByte));
|
|
|
|
for (int i = lastOffset + 1; i < offset; i++) {
|
|
if (U8_IS_SINGLE(str[i]) || U8_IS_LEAD(str[i]) || !U8_IS_TRAIL(str[i])) {
|
|
size = -1;
|
|
}
|
|
}
|
|
|
|
if (size != -1) {
|
|
size = lastOffset;
|
|
}
|
|
}
|
|
}
|
|
|
|
if (size != -1 && ![[NSString alloc] initWithBytesNoCopy:(char *)[data bytes] length:size encoding:NSUTF8StringEncoding freeWhenDone:NO]) {
|
|
size = -1;
|
|
}
|
|
|
|
return size;
|
|
}
|
|
|
|
#else
|
|
|
|
// This is a hack, and probably not optimal
|
|
static inline int32_t validate_dispatch_data_partial_string(NSData *data) {
|
|
static const int maxCodepointSize = 3;
|
|
|
|
for (int i = 0; i < maxCodepointSize; i++) {
|
|
NSString *str = [[NSString alloc] initWithBytesNoCopy:(char *)data.bytes length:data.length - i encoding:NSUTF8StringEncoding freeWhenDone:NO];
|
|
if (str) {
|
|
return data.length - i;
|
|
}
|
|
}
|
|
|
|
return -1;
|
|
}
|
|
|
|
#endif
|
|
|
|
static _SRRunLoopThread *networkThread = nil;
|
|
static NSRunLoop *networkRunLoop = nil;
|
|
|
|
@implementation NSRunLoop (SRWebSocket)
|
|
|
|
+ (NSRunLoop *)SR_networkRunLoop {
|
|
static dispatch_once_t onceToken;
|
|
dispatch_once(&onceToken, ^{
|
|
networkThread = [[_SRRunLoopThread alloc] init];
|
|
networkThread.name = @"com.squareup.SocketRocket.NetworkThread";
|
|
[networkThread start];
|
|
networkRunLoop = networkThread.runLoop;
|
|
});
|
|
|
|
return networkRunLoop;
|
|
}
|
|
|
|
@end
|
|
|
|
|
|
@implementation _SRRunLoopThread {
|
|
dispatch_group_t _waitGroup;
|
|
}
|
|
|
|
@synthesize runLoop = _runLoop;
|
|
|
|
- (void)dealloc
|
|
{
|
|
sr_dispatch_release(_waitGroup);
|
|
}
|
|
|
|
- (id)init
|
|
{
|
|
self = [super init];
|
|
if (self) {
|
|
_waitGroup = dispatch_group_create();
|
|
dispatch_group_enter(_waitGroup);
|
|
}
|
|
return self;
|
|
}
|
|
|
|
- (void)main;
|
|
{
|
|
@autoreleasepool {
|
|
_runLoop = [NSRunLoop currentRunLoop];
|
|
dispatch_group_leave(_waitGroup);
|
|
|
|
NSTimer *timer = [[NSTimer alloc] initWithFireDate:[NSDate distantFuture] interval:0.0 target:nil selector:nil userInfo:nil repeats:NO];
|
|
[_runLoop addTimer:timer forMode:NSDefaultRunLoopMode];
|
|
|
|
while ([_runLoop runMode:NSDefaultRunLoopMode beforeDate:[NSDate distantFuture]]) {
|
|
|
|
}
|
|
assert(NO);
|
|
}
|
|
}
|
|
|
|
- (NSRunLoop *)runLoop;
|
|
{
|
|
dispatch_group_wait(_waitGroup, DISPATCH_TIME_FOREVER);
|
|
return _runLoop;
|
|
}
|
|
|
|
@end
|