From abd569d79a346d9066c4b239dbc452861b26a6cb Mon Sep 17 00:00:00 2001
From: 64850858 <648540858@qq.com>
Date: 星期二, 08 六月 2021 14:43:03 +0800
Subject: [PATCH] 添加注册失败时回复403避免陷入401循环
---
src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java | 67 +++++++++++++++++++++++++++++++--
1 files changed, 63 insertions(+), 4 deletions(-)
diff --git a/src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java b/src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java
index 4605ede..f61b019 100644
--- a/src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java
+++ b/src/main/java/com/genersoft/iot/vmp/gb28181/auth/DigestServerAuthenticationHelper.java
@@ -39,6 +39,8 @@
import javax.sip.message.Response;
import gov.nist.core.InternalErrorHandler;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
/**
* Implements the HTTP digest authentication method server side functionality.
@@ -48,6 +50,8 @@
*/
public class DigestServerAuthenticationHelper {
+
+ private Logger logger = LoggerFactory.getLogger(DigestServerAuthenticationHelper.class);
private MessageDigest messageDigest;
@@ -204,6 +208,63 @@
String A2 = request.getMethod().toUpperCase() + ":" + uri.toString();
byte mdbytes[] = messageDigest.digest(A1.getBytes());
String HA1 = toHexString(mdbytes);
+ logger.debug("A1: " + A1);
+ logger.debug("A2: " + A2);
+
+ mdbytes = messageDigest.digest(A2.getBytes());
+ String HA2 = toHexString(mdbytes);
+ logger.debug("HA1: " + HA1);
+ logger.debug("HA2: " + HA2);
+ String cnonce = authHeader.getCNonce();
+ logger.debug("nonce: " + nonce);
+ logger.debug("nc: " + ncStr);
+ logger.debug("cnonce: " + cnonce);
+ logger.debug("qop: " + qop);
+ String KD = HA1 + ":" + nonce;
+
+ if (qop != null && qop.equals("auth") ) {
+ if (nc != -1) {
+ KD += ":" + ncStr;
+ }
+ if (cnonce != null) {
+ KD += ":" + cnonce;
+ }
+ KD += ":" + qop;
+ }
+ KD += ":" + HA2;
+ logger.debug("KD: " + KD);
+ mdbytes = messageDigest.digest(KD.getBytes());
+ String mdString = toHexString(mdbytes);
+ logger.debug("mdString: " + mdString);
+ String response = authHeader.getResponse();
+ logger.debug("response: " + response);
+ return mdString.equals(response);
+
+ }
+
+ public static void main(String[] args) throws NoSuchAlgorithmException {
+ String realm = "4401000000";
+ String username = "44010000001110008008";
+
+
+ String nonce = "0074b397f86fc263b1b7f9eb72553267";
+ String uri = "sip:44010000002000000001@4401000000";
+ // qop 淇濇姢璐ㄩ噺 鍖呭惈auth锛堥粯璁ょ殑锛夊拰auth-int锛堝鍔犱簡鎶ユ枃瀹屾暣鎬ф娴嬶級涓ょ绛栫暐
+ String qop = null;
+
+ // 瀹㈡埛绔殢鏈烘暟锛岃繖鏄竴涓笉閫忔槑鐨勫瓧绗︿覆鍊硷紝鐢卞鎴风鎻愪緵锛屽苟涓斿鎴风鍜屾湇鍔″櫒閮戒細浣跨敤锛屼互閬垮厤鐢ㄦ槑鏂囨枃鏈��
+ // 杩欎娇寰楀弻鏂归兘鍙互鏌ラ獙瀵规柟鐨勮韩浠斤紝骞跺娑堟伅鐨勫畬鏁存�ф彁渚涗竴浜涗繚鎶�
+ //String cNonce = authHeader.getCNonce();
+
+ // nonce璁℃暟鍣紝鏄竴涓�16杩涘埗鐨勬暟鍊硷紝琛ㄧず鍚屼竴nonce涓嬪鎴风鍙戦�佸嚭璇锋眰鐨勬暟閲�
+ int nc = -1;
+ String ncStr = new DecimalFormat("00000000").format(nc);
+// String ncStr = new DecimalFormat("00000000").format(Integer.parseInt(nc + "", 16));
+ MessageDigest messageDigest = MessageDigest.getInstance(DEFAULT_ALGORITHM);
+ String A1 = username + ":" + realm + ":" + "crservice@123";
+ String A2 = "REGISTER" + ":" + uri.toString();
+ byte mdbytes[] = messageDigest.digest(A1.getBytes());
+ String HA1 = toHexString(mdbytes);
System.out.println("A1: " + A1);
System.out.println("A2: " + A2);
@@ -211,7 +272,7 @@
String HA2 = toHexString(mdbytes);
System.out.println("HA1: " + HA1);
System.out.println("HA2: " + HA2);
- String cnonce = authHeader.getCNonce();
+ String cnonce = null;
System.out.println("nonce: " + nonce);
System.out.println("nc: " + ncStr);
System.out.println("cnonce: " + cnonce);
@@ -232,9 +293,7 @@
mdbytes = messageDigest.digest(KD.getBytes());
String mdString = toHexString(mdbytes);
System.out.println("mdString: " + mdString);
- String response = authHeader.getResponse();
+ String response = "fdb1608a7a3b96f0598f40b8ba78d6a9";
System.out.println("response: " + response);
- return mdString.equals(response);
-
}
}
--
Gitblit v1.8.0