2 * libwebsockets - small server side websockets and web server implementation
4 * Copyright (C) 2010-2013 Andy Green <andy@warmcat.com>
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation:
9 * version 2.1 of the License.
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
22 #include "private-libwebsockets.h"
28 #ifdef LWS_BUILTIN_GETIFADDRS
29 #include <getifaddrs.h>
34 #include <sys/socket.h>
38 #ifdef LWS_OPENSSL_SUPPORT
39 extern int openssl_websocket_private_data_index;
42 int lws_client_socket_service(struct libwebsocket_context *context, struct libwebsocket *wsi, struct pollfd *pollfd)
49 #ifdef LWS_OPENSSL_SUPPORT
50 char ssl_err_buf[512];
55 case LWS_CONNMODE_WS_CLIENT_WAITING_PROXY_REPLY:
57 /* handle proxy hung up on us */
59 if (pollfd->revents & (POLLERR | POLLHUP)) {
61 lwsl_warn("Proxy connection %p (fd=%d) dead\n",
62 (void *)wsi, pollfd->fd);
64 libwebsocket_close_and_free_session(context, wsi,
65 LWS_CLOSE_STATUS_NOSTATUS);
69 n = recv(wsi->sock, pkt, sizeof pkt, 0);
71 libwebsocket_close_and_free_session(context, wsi,
72 LWS_CLOSE_STATUS_NOSTATUS);
73 lwsl_err("ERROR reading from proxy socket\n");
78 if (strcmp(pkt, "HTTP/1.0 200 ") != 0) {
79 libwebsocket_close_and_free_session(context, wsi,
80 LWS_CLOSE_STATUS_NOSTATUS);
81 lwsl_err("ERROR from proxy: %s\n", pkt);
85 /* clear his proxy connection timeout */
87 libwebsocket_set_timeout(wsi, NO_PENDING_TIMEOUT, 0);
91 case LWS_CONNMODE_WS_CLIENT_ISSUE_HANDSHAKE:
94 * we are under PENDING_TIMEOUT_SENT_CLIENT_HANDSHAKE
95 * timeout protection set in client-handshake.c
98 #ifdef LWS_OPENSSL_SUPPORT
101 * take care of our libwebsocket_callback_on_writable
102 * happening at a time when there's no real connection yet
105 pollfd->events &= ~POLLOUT;
107 /* external POLL support via protocol 0 */
108 context->protocols[0].callback(context, wsi,
109 LWS_CALLBACK_CLEAR_MODE_POLL_FD,
110 (void *)(long)wsi->sock, NULL, POLLOUT);
112 /* we can retry this... so just cook the SSL BIO the first time */
114 if (wsi->use_ssl && !wsi->ssl) {
116 wsi->ssl = SSL_new(context->ssl_client_ctx);
117 wsi->client_bio = BIO_new_socket(wsi->sock,
119 SSL_set_bio(wsi->ssl, wsi->client_bio, wsi->client_bio);
121 SSL_set_ex_data(wsi->ssl,
122 openssl_websocket_private_data_index,
127 n = SSL_connect(wsi->ssl);
130 n = SSL_get_error(wsi->ssl, n);
132 if (n == SSL_ERROR_WANT_READ ||
133 n == SSL_ERROR_WANT_WRITE) {
135 * wants us to retry connect due to state of the
136 * underlying ssl layer... but since it may be
137 * stalled on blocked write, no incoming data may
138 * arrive to trigger the retry. Force (possibly
139 * many if the SSL state persists in returning the
140 * condition code, but other sockets are getting
141 * serviced inbetweentimes) us to get called back
145 lwsl_info("SSL_connect -> SSL_ERROR_WANT_... retrying\n");
146 libwebsocket_callback_on_writable(context, wsi);
148 return 0; /* no error */
155 * retry if new data comes until we
156 * run into the connection timeout or win
159 lwsl_err("SSL connect error %s\n",
160 ERR_error_string(ERR_get_error(),
165 n = SSL_get_verify_result(wsi->ssl);
166 if ((n != X509_V_OK) && (
167 n != X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT ||
168 wsi->use_ssl != 2)) {
170 lwsl_err("server's cert didn't "
171 "look good %d\n", n);
172 libwebsocket_close_and_free_session(context,
173 wsi, LWS_CLOSE_STATUS_NOSTATUS);
180 p = libwebsockets_generate_client_handshake(context, wsi, p);
184 /* send our request to the server */
186 #ifdef LWS_OPENSSL_SUPPORT
188 n = SSL_write(wsi->ssl, pkt, p - pkt);
191 n = send(wsi->sock, pkt, p - pkt, 0);
194 lwsl_debug("ERROR writing to client socket\n");
195 libwebsocket_close_and_free_session(context, wsi,
196 LWS_CLOSE_STATUS_NOSTATUS);
200 wsi->parser_state = WSI_TOKEN_NAME_PART;
201 wsi->mode = LWS_CONNMODE_WS_CLIENT_WAITING_SERVER_REPLY;
202 libwebsocket_set_timeout(wsi,
203 PENDING_TIMEOUT_AWAITING_SERVER_RESPONSE, AWAITING_TIMEOUT);
207 case LWS_CONNMODE_WS_CLIENT_WAITING_SERVER_REPLY:
209 /* handle server hung up on us */
211 if (pollfd->revents & (POLLERR | POLLHUP)) {
213 lwsl_debug("Server connection %p (fd=%d) dead\n",
214 (void *)wsi, pollfd->fd);
220 /* interpret the server response */
223 * HTTP/1.1 101 Switching Protocols
225 * Connection: Upgrade
226 * Sec-WebSocket-Accept: me89jWimTRKTWwrS3aRrL53YZSo=
227 * Sec-WebSocket-Nonce: AQIDBAUGBwgJCgsMDQ4PEC==
228 * Sec-WebSocket-Protocol: chat
232 * we have to take some care here to only take from the
233 * socket bytewise. The browser may (and has been seen to
234 * in the case that onopen() performs websocket traffic)
235 * coalesce both handshake response and websocket traffic
236 * in one packet, since at that point the connection is
237 * definitively ready from browser pov.
241 while (wsi->parser_state != WSI_PARSING_COMPLETE && len > 0) {
242 #ifdef LWS_OPENSSL_SUPPORT
244 len = SSL_read(wsi->ssl, &c, 1);
247 len = recv(wsi->sock, &c, 1, 0);
249 libwebsocket_parse(wsi, c);
253 * hs may also be coming in multiple packets, there is a 5-sec
254 * libwebsocket timeout still active here too, so if parsing did
255 * not complete just wait for next packet coming in this state
258 if (wsi->parser_state != WSI_PARSING_COMPLETE)
262 * otherwise deal with the handshake. If there's any
263 * packet traffic already arrived we'll trigger poll() again
264 * right away and deal with it that way
267 return lws_client_interpret_server_handshake(context, wsi);
271 free(wsi->c_protocol);
272 libwebsocket_close_and_free_session(context, wsi,
273 LWS_CLOSE_STATUS_NOSTATUS);
276 case LWS_CONNMODE_WS_CLIENT_WAITING_EXTENSION_CONNECT:
277 lwsl_ext("LWS_CONNMODE_WS_CLIENT_WAITING_EXTENSION_CONNECT\n");
280 case LWS_CONNMODE_WS_CLIENT_PENDING_CANDIDATE_CHILD:
281 lwsl_ext("LWS_CONNMODE_WS_CLIENT_PENDING_CANDIDATE_CHILD\n");
292 * In-place str to lower case
305 lws_client_interpret_server_handshake(struct libwebsocket_context *context,
306 struct libwebsocket *wsi)
308 unsigned char buf[LWS_SEND_BUFFER_PRE_PADDING + 1 +
309 MAX_BROADCAST_PAYLOAD + LWS_SEND_BUFFER_POST_PADDING];
317 struct libwebsocket_extension *ext;
321 static const char magic_websocket_04_masking_guid[] =
322 "61AC5F19-FBBA-4540-B96F-6561F1AB40A8";
327 * HTTP/1.1 101 WebSocket Protocol Handshake
329 * Connection: Upgrade
330 * Sec-WebSocket-Origin: http://127.0.0.1
331 * Sec-WebSocket-Location: ws://127.0.0.1:9999/socket.io/websocket
336 if (wsi->ietf_spec_revision == 0) {
337 if (!wsi->utf8_token[WSI_TOKEN_HTTP].token_len ||
338 !wsi->utf8_token[WSI_TOKEN_UPGRADE].token_len ||
339 !wsi->utf8_token[WSI_TOKEN_CHALLENGE].token_len ||
340 !wsi->utf8_token[WSI_TOKEN_CONNECTION].token_len ||
341 (!wsi->utf8_token[WSI_TOKEN_PROTOCOL].token_len &&
342 wsi->c_protocol != NULL)) {
343 lwsl_parser("libwebsocket_client_handshake "
344 "missing required header(s)\n");
346 lwsl_parser("%s", pkt);
350 strtolower(wsi->utf8_token[WSI_TOKEN_HTTP].token);
351 if (strncmp(wsi->utf8_token[WSI_TOKEN_HTTP].token, "101", 3)) {
352 lwsl_warn("libwebsocket_client_handshake "
353 "server sent bad HTTP response '%s'\n",
354 wsi->utf8_token[WSI_TOKEN_HTTP].token);
358 if (wsi->utf8_token[WSI_TOKEN_CHALLENGE].token_len < 16) {
359 lwsl_parser("libwebsocket_client_handshake "
360 "challenge reply too short %d\n",
362 WSI_TOKEN_CHALLENGE].token_len);
364 lwsl_parser("%s", pkt);
369 goto select_protocol;
373 * well, what the server sent looked reasonable for syntax.
374 * Now let's confirm it sent all the necessary headers
377 lwsl_parser("WSI_TOKEN_HTTP: %d\n",
378 wsi->utf8_token[WSI_TOKEN_HTTP].token_len);
379 lwsl_parser("WSI_TOKEN_UPGRADE: %d\n",
380 wsi->utf8_token[WSI_TOKEN_UPGRADE].token_len);
381 lwsl_parser("WSI_TOKEN_CONNECTION: %d\n",
382 wsi->utf8_token[WSI_TOKEN_CONNECTION].token_len);
383 lwsl_parser("WSI_TOKEN_ACCEPT: %d\n",
384 wsi->utf8_token[WSI_TOKEN_ACCEPT].token_len);
385 lwsl_parser("WSI_TOKEN_NONCE: %d\n",
386 wsi->utf8_token[WSI_TOKEN_NONCE].token_len);
387 lwsl_parser("WSI_TOKEN_PROTOCOL: %d\n",
388 wsi->utf8_token[WSI_TOKEN_PROTOCOL].token_len);
390 if (!wsi->utf8_token[WSI_TOKEN_HTTP].token_len ||
391 !wsi->utf8_token[WSI_TOKEN_UPGRADE].token_len ||
392 !wsi->utf8_token[WSI_TOKEN_CONNECTION].token_len ||
393 !wsi->utf8_token[WSI_TOKEN_ACCEPT].token_len ||
394 (!wsi->utf8_token[WSI_TOKEN_NONCE].token_len &&
395 wsi->ietf_spec_revision == 4) ||
396 (!wsi->utf8_token[WSI_TOKEN_PROTOCOL].token_len &&
397 wsi->c_protocol != NULL)) {
398 lwsl_parser("libwebsocket_client_handshake "
399 "missing required header(s)\n");
401 lwsl_parser("%s", pkt);
406 * Everything seems to be there, now take a closer look at what
410 strtolower(wsi->utf8_token[WSI_TOKEN_HTTP].token);
411 if (strncmp(wsi->utf8_token[WSI_TOKEN_HTTP].token, "101", 3)) {
412 lwsl_warn("libwebsocket_client_handshake "
413 "server sent bad HTTP response '%s'\n",
414 wsi->utf8_token[WSI_TOKEN_HTTP].token);
418 strtolower(wsi->utf8_token[WSI_TOKEN_UPGRADE].token);
419 if (strcmp(wsi->utf8_token[WSI_TOKEN_UPGRADE].token,
421 lwsl_warn("libwebsocket_client_handshake server "
422 "sent bad Upgrade header '%s'\n",
423 wsi->utf8_token[WSI_TOKEN_UPGRADE].token);
427 strtolower(wsi->utf8_token[WSI_TOKEN_CONNECTION].token);
428 if (strcmp(wsi->utf8_token[WSI_TOKEN_CONNECTION].token,
430 lwsl_warn("libwebsocket_client_handshake server "
431 "sent bad Connection hdr '%s'\n",
432 wsi->utf8_token[WSI_TOKEN_CONNECTION].token);
437 pc = wsi->c_protocol;
439 lwsl_parser("lws_client_interpret_server_handshake: "
440 "NULL c_protocol\n");
442 lwsl_parser("lws_client_interpret_server_handshake: "
443 "cPprotocol='%s'\n", pc);
446 * confirm the protocol the server wants to talk was in the list
447 * of protocols we offered
450 if (!wsi->utf8_token[WSI_TOKEN_PROTOCOL].token_len) {
452 lwsl_warn("lws_client_interpret_server_handshake "
453 "WSI_TOKEN_PROTOCOL is null\n");
455 * no protocol name to work from,
456 * default to first protocol
458 wsi->protocol = &context->protocols[0];
459 wsi->c_callback = wsi->protocol->callback;
460 free(wsi->c_protocol);
462 goto check_extensions;
465 while (*pc && !okay) {
466 if ((!strncmp(pc, wsi->utf8_token[WSI_TOKEN_PROTOCOL].token,
467 wsi->utf8_token[WSI_TOKEN_PROTOCOL].token_len)) &&
468 (pc[wsi->utf8_token[WSI_TOKEN_PROTOCOL].token_len] == ',' ||
469 pc[wsi->utf8_token[WSI_TOKEN_PROTOCOL].token_len] == '\0')) {
473 while (*pc && *pc != ',')
475 while (*pc && *pc != ' ')
479 /* done with him now */
482 free(wsi->c_protocol);
485 lwsl_err("libwebsocket_client_handshake server "
486 "sent bad protocol '%s'\n",
487 wsi->utf8_token[WSI_TOKEN_PROTOCOL].token);
492 * identify the selected protocol struct and set it
495 wsi->protocol = NULL;
496 while (context->protocols[n].callback && !wsi->protocol) { /* Stop after finding first one?? */
497 if (strcmp(wsi->utf8_token[WSI_TOKEN_PROTOCOL].token,
498 context->protocols[n].name) == 0) {
499 wsi->protocol = &context->protocols[n];
500 wsi->c_callback = wsi->protocol->callback;
505 if (wsi->protocol == NULL) {
506 lwsl_err("libwebsocket_client_handshake server "
507 "requested protocol '%s', which we "
508 "said we supported but we don't!\n",
509 wsi->utf8_token[WSI_TOKEN_PROTOCOL].token);
516 /* instantiate the accepted extensions */
518 if (!wsi->utf8_token[WSI_TOKEN_EXTENSIONS].token_len) {
519 lwsl_ext("no client extenstions allowed by server\n");
524 * break down the list of server accepted extensions
525 * and go through matching them or identifying bogons
528 c = wsi->utf8_token[WSI_TOKEN_EXTENSIONS].token;
532 if (*c && (*c != ',' && *c != ' ' && *c != '\t')) {
534 if (n < sizeof(ext_name) - 1)
547 /* check we actually support it */
549 lwsl_ext("checking client ext %s\n", ext_name);
552 ext = wsi->protocol->owning_server->extensions;
553 while (ext && ext->callback) {
555 if (strcmp(ext_name, ext->name)) {
562 lwsl_ext("instantiating client ext %s\n", ext_name);
564 /* instantiate the extension on this conn */
566 wsi->active_extensions_user[
567 wsi->count_active_extensions] =
568 malloc(ext->per_session_data_size);
569 if (wsi->active_extensions_user[
570 wsi->count_active_extensions] == NULL) {
571 lwsl_err("Out of mem\n");
574 memset(wsi->active_extensions_user[
575 wsi->count_active_extensions], 0,
576 ext->per_session_data_size);
577 wsi->active_extensions[
578 wsi->count_active_extensions] = ext;
580 /* allow him to construct his context */
582 ext->callback(wsi->protocol->owning_server,
584 LWS_EXT_CALLBACK_CLIENT_CONSTRUCT,
585 wsi->active_extensions_user[
586 wsi->count_active_extensions],
589 wsi->count_active_extensions++;
595 lwsl_warn("Server said we should use"
596 "an unknown extension '%s'!\n", ext_name);
606 if (wsi->ietf_spec_revision == 0) {
608 if (memcmp(wsi->initial_handshake_hash_base64,
609 wsi->utf8_token[WSI_TOKEN_CHALLENGE].token, 16)) {
610 lwsl_warn("libwebsocket_client_handshake "
611 "failed 00 challenge compare\n");
613 lwsl_warn("%s", pkt);
621 * Confirm his accept token is the one we precomputed
624 if (strcmp(wsi->utf8_token[WSI_TOKEN_ACCEPT].token,
625 wsi->initial_handshake_hash_base64)) {
626 lwsl_warn("libwebsocket_client_handshake server "
627 "sent bad ACCEPT '%s' vs computed '%s'\n",
628 wsi->utf8_token[WSI_TOKEN_ACCEPT].token,
629 wsi->initial_handshake_hash_base64);
633 if (wsi->ietf_spec_revision == 4) {
635 * Calculate the 04 masking key to use when
636 * sending data to server
639 strcpy((char *)buf, wsi->key_b64);
640 p = (char *)buf + strlen(wsi->key_b64);
641 strcpy(p, wsi->utf8_token[WSI_TOKEN_NONCE].token);
642 p += wsi->utf8_token[WSI_TOKEN_NONCE].token_len;
643 strcpy(p, magic_websocket_04_masking_guid);
644 SHA1(buf, strlen((char *)buf), wsi->masking_key_04);
648 /* allocate the per-connection user memory (if any) */
649 if (wsi->protocol->per_session_data_size &&
650 !libwebsocket_ensure_user_space(wsi))
653 /* clear his proxy connection timeout */
655 libwebsocket_set_timeout(wsi, NO_PENDING_TIMEOUT, 0);
657 /* mark him as being alive */
659 wsi->state = WSI_STATE_ESTABLISHED;
660 wsi->mode = LWS_CONNMODE_WS_CLIENT;
662 lwsl_debug("handshake OK for protocol %s\n", wsi->protocol->name);
664 /* call him back to inform him he is up */
666 wsi->protocol->callback(context, wsi,
667 LWS_CALLBACK_CLIENT_ESTABLISHED,
668 wsi->user_space, NULL, 0);
671 * inform all extensions, not just active ones since they
675 ext = context->extensions;
677 while (ext && ext->callback) {
679 for (n = 0; n < wsi->count_active_extensions; n++)
680 if (wsi->active_extensions[n] == ext)
681 v = wsi->active_extensions_user[n];
683 ext->callback(context, ext, wsi,
684 LWS_EXT_CALLBACK_ANY_WSI_ESTABLISHED, v, NULL, 0);
692 free(wsi->c_protocol);
695 if (wsi->c_callback) wsi->c_callback(context, wsi,
696 LWS_CALLBACK_CLIENT_CONNECTION_ERROR,
699 libwebsocket_close_and_free_session(context, wsi,
700 LWS_CLOSE_STATUS_NOSTATUS); // But this should be LWS_CLOSE_STATUS_PROTOCOL_ERR
705 void libwebsockets_00_spaceout(char *key, int spaces, int seed)
711 if (*key && (seed & 1))
715 p = key + strlen(key);
724 void libwebsockets_00_spam(char *key, int count, int seed)
731 if (*key && (seed & 1))
735 p = key + strlen(key);
740 *key++ = 0x21 + ((seed & 0xffff) % 15);
741 /* 4 would use it up too fast.. not like it matters */
747 libwebsockets_generate_client_handshake(struct libwebsocket_context *context,
748 struct libwebsocket *wsi, char *pkt)
753 struct libwebsocket_extension *ext;
754 struct libwebsocket_extension *ext1;
756 unsigned char buf[LWS_SEND_BUFFER_PRE_PADDING + 1 +
757 MAX_BROADCAST_PAYLOAD + LWS_SEND_BUFFER_POST_PADDING];
758 static const char magic_websocket_guid[] =
759 "258EAFA5-E914-47DA-95CA-C5AB0DC85B11";
762 * create the random key
765 n = libwebsockets_get_random(context, hash, 16);
767 lwsl_err("Unable to read from random dev %s\n",
768 SYSTEM_RANDOM_FILEPATH);
774 free(wsi->c_protocol);
775 libwebsocket_close_and_free_session(context, wsi,
776 LWS_CLOSE_STATUS_NOSTATUS);
780 lws_b64_encode_string(hash, 16, wsi->key_b64,
781 sizeof wsi->key_b64);
784 * 00 example client handshake
786 * GET /socket.io/websocket HTTP/1.1
788 * Connection: Upgrade
789 * Host: 127.0.0.1:9999
790 * Origin: http://127.0.0.1
791 * Sec-WebSocket-Key1: 1 0 2#0W 9 89 7 92 ^
792 * Sec-WebSocket-Key2: 7 7Y 4328 B2v[8(z1
793 * Cookie: socketio=websocket
797 * 04 example client handshake
800 * Host: server.example.com
802 * Connection: Upgrade
803 * Sec-WebSocket-Key: dGhlIHNhbXBsZSBub25jZQ==
804 * Sec-WebSocket-Origin: http://example.com
805 * Sec-WebSocket-Protocol: chat, superchat
806 * Sec-WebSocket-Version: 4
809 p += sprintf(p, "GET %s HTTP/1.1\x0d\x0a", wsi->c_path);
811 p += sprintf(p, "Pragma: no-cache\x0d\x0a"
812 "Cache-Control: no-cache\x0d\x0a");
814 if (wsi->ietf_spec_revision == 0) {
815 unsigned char spaces_1, spaces_2;
816 unsigned int max_1, max_2;
817 unsigned int num_1, num_2;
818 unsigned long product_1, product_2;
825 libwebsockets_get_random(context, &spaces_1, sizeof(char));
826 libwebsockets_get_random(context, &spaces_2, sizeof(char));
828 spaces_1 = (spaces_1 % 12) + 1;
829 spaces_2 = (spaces_2 % 12) + 1;
831 max_1 = 4294967295 / spaces_1;
832 max_2 = 4294967295 / spaces_2;
834 libwebsockets_get_random(context, &num_1, sizeof(int));
835 libwebsockets_get_random(context, &num_2, sizeof(int));
837 num_1 = (num_1 % max_1);
838 num_2 = (num_2 % max_2);
840 challenge[0] = num_1 >> 24;
841 challenge[1] = num_1 >> 16;
842 challenge[2] = num_1 >> 8;
843 challenge[3] = num_1;
844 challenge[4] = num_2 >> 24;
845 challenge[5] = num_2 >> 16;
846 challenge[6] = num_2 >> 8;
847 challenge[7] = num_2;
849 product_1 = num_1 * spaces_1;
850 product_2 = num_2 * spaces_2;
852 sprintf(key_1, "%lu", product_1);
853 sprintf(key_2, "%lu", product_2);
855 libwebsockets_get_random(context, &seed, sizeof(int));
856 libwebsockets_get_random(context, &count, sizeof(int));
858 libwebsockets_00_spam(key_1, (count % 12) + 1, seed);
860 libwebsockets_get_random(context, &seed, sizeof(int));
861 libwebsockets_get_random(context, &count, sizeof(int));
863 libwebsockets_00_spam(key_2, (count % 12) + 1, seed);
865 libwebsockets_get_random(context, &seed, sizeof(int));
867 libwebsockets_00_spaceout(key_1, spaces_1, seed);
868 libwebsockets_00_spaceout(key_2, spaces_2, seed >> 16);
870 p += sprintf(p, "Upgrade: WebSocket\x0d\x0a"
871 "Connection: Upgrade\x0d\x0aHost: %s\x0d\x0a",
874 p += sprintf(p, "Origin: %s\x0d\x0a", wsi->c_origin);
877 p += sprintf(p, "Sec-WebSocket-Protocol: %s"
878 "\x0d\x0a", wsi->c_protocol);
880 p += sprintf(p, "Sec-WebSocket-Key1: %s\x0d\x0a", key_1);
881 p += sprintf(p, "Sec-WebSocket-Key2: %s\x0d\x0a", key_2);
883 /* give userland a chance to append, eg, cookies */
885 context->protocols[0].callback(context, wsi,
886 LWS_CALLBACK_CLIENT_APPEND_HANDSHAKE_HEADER,
887 NULL, &p, (pkt + sizeof(pkt)) - p - 12);
889 p += sprintf(p, "\x0d\x0a");
891 if (libwebsockets_get_random(context, p, 8) != 8)
893 memcpy(&challenge[8], p, 8);
896 /* precompute what we want to see from the server */
898 MD5((unsigned char *)challenge, 16,
899 (unsigned char *)wsi->initial_handshake_hash_base64);
904 p += sprintf(p, "Host: %s\x0d\x0a", wsi->c_host);
905 p += sprintf(p, "Upgrade: websocket\x0d\x0a"
906 "Connection: Upgrade\x0d\x0a"
907 "Sec-WebSocket-Key: ");
908 strcpy(p, wsi->key_b64);
909 p += strlen(wsi->key_b64);
910 p += sprintf(p, "\x0d\x0a");
912 if (wsi->ietf_spec_revision == 13) {
913 p += sprintf(p, "Origin: %s\x0d\x0a",
917 p += sprintf(p, "Sec-WebSocket-Origin: %s\x0d\x0a",
922 p += sprintf(p, "Sec-WebSocket-Protocol: %s\x0d\x0a",
925 /* tell the server what extensions we could support */
927 p += sprintf(p, "Sec-WebSocket-Extensions: ");
929 ext = context->extensions;
930 while (ext && ext->callback) {
933 ext1 = context->extensions;
935 while (ext1 && ext1->callback) {
936 n |= ext1->callback(context, ext1, wsi,
937 LWS_EXT_CALLBACK_CHECK_OK_TO_PROPOSE_EXTENSION,
938 NULL, (char *)ext->name, 0);
943 if (n) { /* an extension vetos us */
944 lwsl_ext("ext %s vetoed\n", (char *)ext->name);
949 n = context->protocols[0].callback(context, wsi,
950 LWS_CALLBACK_CLIENT_CONFIRM_EXTENSION_SUPPORTED,
951 wsi->user_space, (char *)ext->name, 0);
954 * zero return from callback means
955 * go ahead and allow the extension,
956 * it's what we get if the callback is
969 p += sprintf(p, "%s", ext->name);
975 p += sprintf(p, "\x0d\x0a");
977 if (wsi->ietf_spec_revision)
978 p += sprintf(p, "Sec-WebSocket-Version: %d\x0d\x0a",
979 wsi->ietf_spec_revision);
981 /* give userland a chance to append, eg, cookies */
983 context->protocols[0].callback(context, wsi,
984 LWS_CALLBACK_CLIENT_APPEND_HANDSHAKE_HEADER,
985 NULL, &p, (pkt + sizeof(pkt)) - p - 12);
987 p += sprintf(p, "\x0d\x0a");
989 /* prepare the expected server accept response */
991 strcpy((char *)buf, wsi->key_b64);
992 strcpy((char *)&buf[strlen((char *)buf)], magic_websocket_guid);
994 SHA1(buf, strlen((char *)buf), (unsigned char *)hash);
996 lws_b64_encode_string(hash, 20,
997 wsi->initial_handshake_hash_base64,
998 sizeof wsi->initial_handshake_hash_base64);
1006 /* done with these now */
1011 free(wsi->c_origin);