From 2c1dbe63de3d370d0b0f20fea474326e88b9ca23 Mon Sep 17 00:00:00 2001
From: lawrencehj <1934378145@qq.com>
Date: 星期三, 10 三月 2021 14:39:40 +0800
Subject: [PATCH] 增加接收Bye请求后停止向上级推流功能
---
src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java | 159 ++++++++++++++++++----------------------------------
1 files changed, 55 insertions(+), 104 deletions(-)
diff --git a/src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java b/src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java
index 54e0334..4605ede 100644
--- a/src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java
+++ b/src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java
@@ -1,28 +1,28 @@
/*
-* Conditions Of Use
-*
-* This software was developed by employees of the National Institute of
-* Standards and Technology (NIST), an agency of the Federal Government.
-* Pursuant to title 15 Untied States Code Section 105, works of NIST
-* employees are not subject to copyright protection in the United States
-* and are considered to be in the public domain. As a result, a formal
-* license is not needed to use the software.
-*
-* This software is provided by NIST as a service and is expressly
-* provided "AS IS." NIST MAKES NO WARRANTY OF ANY KIND, EXPRESS, IMPLIED
-* OR STATUTORY, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTY OF
-* MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT
-* AND DATA ACCURACY. NIST does not warrant or make any representations
-* regarding the use of the software or the results thereof, including but
-* not limited to the correctness, accuracy, reliability or usefulness of
-* the software.
-*
-* Permission to use this software is contingent upon your acceptance
-* of the terms of this agreement
-*
-* .
-*
-*/
+ * Conditions Of Use
+ *
+ * This software was developed by employees of the National Institute of
+ * Standards and Technology (NIST), an agency of the Federal Government.
+ * Pursuant to title 15 Untied States Code Section 105, works of NIST
+ * employees are not subject to copyright protection in the United States
+ * and are considered to be in the public domain. As a result, a formal
+ * license is not needed to use the software.
+ *
+ * This software is provided by NIST as a service and is expressly
+ * provided "AS IS." NIST MAKES NO WARRANTY OF ANY KIND, EXPRESS, IMPLIED
+ * OR STATUTORY, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTY OF
+ * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT
+ * AND DATA ACCURACY. NIST does not warrant or make any representations
+ * regarding the use of the software or the results thereof, including but
+ * not limited to the correctness, accuracy, reliability or usefulness of
+ * the software.
+ *
+ * Permission to use this software is contingent upon your acceptance
+ * of the terms of this agreement
+ *
+ * .
+ *
+ */
package com.genersoft.iot.vmp.gb28181.auth;
import java.security.MessageDigest;
@@ -42,18 +42,18 @@
/**
* Implements the HTTP digest authentication method server side functionality.
- *
+ *
* @author M. Ranganathan
* @author Marc Bednarek
*/
public class DigestServerAuthenticationHelper {
-
+
private MessageDigest messageDigest;
-
+
public static final String DEFAULT_ALGORITHM = "MD5";
public static final String DEFAULT_SCHEME = "Digest";
-
+
@@ -63,11 +63,11 @@
/**
* Default constructor.
- * @throws NoSuchAlgorithmException
+ * @throws NoSuchAlgorithmException
*/
- public DigestServerAuthenticationHelper()
- throws NoSuchAlgorithmException {
- messageDigest = MessageDigest.getInstance(DEFAULT_ALGORITHM);
+ public DigestServerAuthenticationHelper()
+ throws NoSuchAlgorithmException {
+ messageDigest = MessageDigest.getInstance(DEFAULT_ALGORITHM);
}
public static String toHexString(byte b[]) {
@@ -79,7 +79,7 @@
}
return new String(c);
}
-
+
/**
* Generate the challenge string.
*
@@ -91,8 +91,10 @@
long time = date.getTime();
Random rand = new Random();
long pad = rand.nextLong();
- String nonceString = (new Long(time)).toString()
- + (new Long(pad)).toString();
+ // String nonceString = (new Long(time)).toString()
+ // + (new Long(pad)).toString();
+ String nonceString = Long.valueOf(time).toString()
+ + Long.valueOf(pad).toString();
byte mdbytes[] = messageDigest.digest(nonceString.getBytes());
// Convert the mdbytes array into a hex string.
return toHexString(mdbytes);
@@ -105,11 +107,11 @@
proxyAuthenticate.setParameter("realm", realm);
proxyAuthenticate.setParameter("nonce", generateNonce());
-// proxyAuthenticate.setParameter("opaque", "");
-// proxyAuthenticate.setParameter("stale", "FALSE");
-// proxyAuthenticate.setParameter("algorithm", DEFAULT_ALGORITHM);
+ proxyAuthenticate.setParameter("opaque", "");
+ proxyAuthenticate.setParameter("stale", "FALSE");
+ proxyAuthenticate.setParameter("algorithm", DEFAULT_ALGORITHM);
- proxyAuthenticate.setParameter("qop", "auth");
+// proxyAuthenticate.setParameter("qop", "auth");
response.setHeader(proxyAuthenticate);
} catch (Exception ex) {
InternalErrorHandler.handleException(ex);
@@ -121,34 +123,34 @@
*
* @param request - the request to authenticate.
* @param hashedPassword -- the MD5 hashed string of username:realm:plaintext password.
- *
+ *
* @return true if authentication succeded and false otherwise.
*/
public boolean doAuthenticateHashedPassword(Request request, String hashedPassword) {
- AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
+ AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
if ( authHeader == null ) return false;
String realm = authHeader.getRealm();
String username = authHeader.getUsername();
-
+
if ( username == null || realm == null ) {
return false;
}
-
+
String nonce = authHeader.getNonce();
URI uri = authHeader.getURI();
if (uri == null) {
return false;
}
-
-
+
+
String A2 = request.getMethod().toUpperCase() + ":" + uri.toString();
String HA1 = hashedPassword;
-
+
byte[] mdbytes = messageDigest.digest(A2.getBytes());
String HA2 = toHexString(mdbytes);
-
+
String cnonce = authHeader.getCNonce();
String KD = HA1 + ":" + nonce;
if (cnonce != null) {
@@ -158,7 +160,7 @@
mdbytes = messageDigest.digest(KD.getBytes());
String mdString = toHexString(mdbytes);
String response = authHeader.getResponse();
-
+
return mdString.equals(response);
}
@@ -168,11 +170,11 @@
*
* @param request - the request to authenticate.
* @param pass -- the plain text password.
- *
+ *
* @return true if authentication succeded and false otherwise.
*/
public boolean doAuthenticatePlainTextPassword(Request request, String pass) {
- AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
+ AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
if ( authHeader == null ) return false;
String realm = authHeader.getRealm().trim();
String username = authHeader.getUsername().trim();
@@ -184,14 +186,14 @@
String nonce = authHeader.getNonce();
URI uri = authHeader.getURI();
if (uri == null) {
- return false;
+ return false;
}
// qop 淇濇姢璐ㄩ噺 鍖呭惈auth锛堥粯璁ょ殑锛夊拰auth-int锛堝鍔犱簡鎶ユ枃瀹屾暣鎬ф娴嬶級涓ょ绛栫暐
- String qop = authHeader.getQop().trim();
+ String qop = authHeader.getQop();
// 瀹㈡埛绔殢鏈烘暟锛岃繖鏄竴涓笉閫忔槑鐨勫瓧绗︿覆鍊硷紝鐢卞鎴风鎻愪緵锛屽苟涓斿鎴风鍜屾湇鍔″櫒閮戒細浣跨敤锛屼互閬垮厤鐢ㄦ槑鏂囨枃鏈��
// 杩欎娇寰楀弻鏂归兘鍙互鏌ラ獙瀵规柟鐨勮韩浠斤紝骞跺娑堟伅鐨勫畬鏁存�ф彁渚涗竴浜涗繚鎶�
- String cNonce = authHeader.getCNonce().trim();
+ //String cNonce = authHeader.getCNonce();
// nonce璁℃暟鍣紝鏄竴涓�16杩涘埗鐨勬暟鍊硷紝琛ㄧず鍚屼竴nonce涓嬪鎴风鍙戦�佸嚭璇锋眰鐨勬暟閲�
int nc = authHeader.getNonceCount();
@@ -233,57 +235,6 @@
String response = authHeader.getResponse();
System.out.println("response: " + response);
return mdString.equals(response);
-
- }
-
- public static void main(String[] args) throws NoSuchAlgorithmException {
- MessageDigest messageDigest2 = MessageDigest.getInstance(DEFAULT_ALGORITHM);
- String realm = "DS-2CD2520F";
- String username = "admin";
- String passwd = "12345";
-
- String nonce = "4d6a553452444d30525441364e6d4d304e6a68684e47553d";
-
- String uri = "/ISAPI/Streaming/channels/101/picture";
- // qop 淇濇姢璐ㄩ噺 鍖呭惈auth锛堥粯璁ょ殑锛夊拰auth-int锛堝鍔犱簡鎶ユ枃瀹屾暣鎬ф娴嬶級涓ょ绛栫暐
- String qop = "auth";
-
- // 瀹㈡埛绔殢鏈烘暟锛岃繖鏄竴涓笉閫忔槑鐨勫瓧绗︿覆鍊硷紝鐢卞鎴风鎻愪緵锛屽苟涓斿鎴风鍜屾湇鍔″櫒閮戒細浣跨敤锛屼互閬垮厤鐢ㄦ槑鏂囨枃鏈��
- // 杩欎娇寰楀弻鏂归兘鍙互鏌ラ獙瀵规柟鐨勮韩浠斤紝骞跺娑堟伅鐨勫畬鏁存�ф彁渚涗竴浜涗繚鎶�
- String cNonce = "C1A5298F939E87E8F962A5EDFC206918";
-
- // nonce璁℃暟鍣紝鏄竴涓�16杩涘埗鐨勬暟鍊硷紝琛ㄧず鍚屼竴nonce涓嬪鎴风鍙戦�佸嚭璇锋眰鐨勬暟閲�
- int nc = 1;
-
- String A1 = username + ":" + realm + ":" + passwd;
- System.out.println("A1: " + A1);
- String A2 = "GET" + ":" + uri.toString();
- System.out.println("A2: " + A2);
- byte mdbytes[] = messageDigest2.digest(A1.getBytes());
- String HA1 = toHexString(mdbytes);
- System.out.println("HA1: " + HA1);
-
- mdbytes = messageDigest2.digest(A2.getBytes());
- String HA2 = toHexString(mdbytes);
- System.out.println("HA2: " + HA2);
- String cnonce = "93d4d37df32e1a85";
- String KD = HA1 + ":" + nonce;
-
- if (nc != -1) {
- KD += ":" + "00000001";
- }
- if (cnonce != null) {
- KD += ":" + cnonce;
- }
- if (qop != null) {
- KD += ":" + qop;
- }
- KD += ":" + HA2;
- System.out.println("KD: " + KD);
- mdbytes = messageDigest2.digest(KD.getBytes());
- String mdString = toHexString(mdbytes);
- String response = "3993a815e5cdaf4470e9b4f9bd41cf4a";
- System.out.println(mdString);
}
}
--
Gitblit v1.8.0