rtmpproto.c
Go to the documentation of this file.
1 /*
2  * RTMP network protocol
3  * Copyright (c) 2009 Kostya Shishkov
4  *
5  * This file is part of Libav.
6  *
7  * Libav is free software; you can redistribute it and/or
8  * modify it under the terms of the GNU Lesser General Public
9  * License as published by the Free Software Foundation; either
10  * version 2.1 of the License, or (at your option) any later version.
11  *
12  * Libav is distributed in the hope that it will be useful,
13  * but WITHOUT ANY WARRANTY; without even the implied warranty of
14  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15  * Lesser General Public License for more details.
16  *
17  * You should have received a copy of the GNU Lesser General Public
18  * License along with Libav; if not, write to the Free Software
19  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
20  */
21 
27 #include "libavcodec/bytestream.h"
28 #include "libavutil/avstring.h"
29 #include "libavutil/intfloat.h"
30 #include "libavutil/lfg.h"
31 #include "libavutil/sha.h"
32 #include "avformat.h"
33 #include "internal.h"
34 
35 #include "network.h"
36 
37 #include "flv.h"
38 #include "rtmp.h"
39 #include "rtmppkt.h"
40 #include "url.h"
41 
42 //#define DEBUG
43 
45 typedef enum {
55 } ClientState;
56 
58 typedef struct RTMPContext {
61  int chunk_size;
62  int is_input;
63  char playpath[256];
64  char app[128];
67  uint8_t* flv_data;
68  int flv_size;
69  int flv_off;
71  uint32_t client_report_size;
72  uint32_t bytes_read;
73  uint32_t last_bytes_read;
74  int skip_bytes;
75  uint8_t flv_header[11];
77  int nb_invokes;
79 } RTMPContext;
80 
81 #define PLAYER_KEY_OPEN_PART_LEN 30
82 
83 static const uint8_t rtmp_player_key[] = {
84  'G', 'e', 'n', 'u', 'i', 'n', 'e', ' ', 'A', 'd', 'o', 'b', 'e', ' ',
85  'F', 'l', 'a', 's', 'h', ' ', 'P', 'l', 'a', 'y', 'e', 'r', ' ', '0', '0', '1',
86 
87  0xF0, 0xEE, 0xC2, 0x4A, 0x80, 0x68, 0xBE, 0xE8, 0x2E, 0x00, 0xD0, 0xD1, 0x02,
88  0x9E, 0x7E, 0x57, 0x6E, 0xEC, 0x5D, 0x2D, 0x29, 0x80, 0x6F, 0xAB, 0x93, 0xB8,
89  0xE6, 0x36, 0xCF, 0xEB, 0x31, 0xAE
90 };
91 
92 #define SERVER_KEY_OPEN_PART_LEN 36
93 
94 static const uint8_t rtmp_server_key[] = {
95  'G', 'e', 'n', 'u', 'i', 'n', 'e', ' ', 'A', 'd', 'o', 'b', 'e', ' ',
96  'F', 'l', 'a', 's', 'h', ' ', 'M', 'e', 'd', 'i', 'a', ' ',
97  'S', 'e', 'r', 'v', 'e', 'r', ' ', '0', '0', '1',
98 
99  0xF0, 0xEE, 0xC2, 0x4A, 0x80, 0x68, 0xBE, 0xE8, 0x2E, 0x00, 0xD0, 0xD1, 0x02,
100  0x9E, 0x7E, 0x57, 0x6E, 0xEC, 0x5D, 0x2D, 0x29, 0x80, 0x6F, 0xAB, 0x93, 0xB8,
101  0xE6, 0x36, 0xCF, 0xEB, 0x31, 0xAE
102 };
103 
107 static void gen_connect(URLContext *s, RTMPContext *rt, const char *proto,
108  const char *host, int port)
109 {
110  RTMPPacket pkt;
111  uint8_t ver[64], *p;
112  char tcurl[512];
113 
115  p = pkt.data;
116 
117  ff_url_join(tcurl, sizeof(tcurl), proto, NULL, host, port, "/%s", rt->app);
118  ff_amf_write_string(&p, "connect");
119  ff_amf_write_number(&p, ++rt->nb_invokes);
121  ff_amf_write_field_name(&p, "app");
122  ff_amf_write_string(&p, rt->app);
123 
124  if (rt->is_input) {
125  snprintf(ver, sizeof(ver), "%s %d,%d,%d,%d", RTMP_CLIENT_PLATFORM, RTMP_CLIENT_VER1,
127  } else {
128  snprintf(ver, sizeof(ver), "FMLE/3.0 (compatible; %s)", LIBAVFORMAT_IDENT);
129  ff_amf_write_field_name(&p, "type");
130  ff_amf_write_string(&p, "nonprivate");
131  }
132  ff_amf_write_field_name(&p, "flashVer");
133  ff_amf_write_string(&p, ver);
134  ff_amf_write_field_name(&p, "tcUrl");
135  ff_amf_write_string(&p, tcurl);
136  if (rt->is_input) {
137  ff_amf_write_field_name(&p, "fpad");
138  ff_amf_write_bool(&p, 0);
139  ff_amf_write_field_name(&p, "capabilities");
140  ff_amf_write_number(&p, 15.0);
141  ff_amf_write_field_name(&p, "audioCodecs");
142  ff_amf_write_number(&p, 1639.0);
143  ff_amf_write_field_name(&p, "videoCodecs");
144  ff_amf_write_number(&p, 252.0);
145  ff_amf_write_field_name(&p, "videoFunction");
146  ff_amf_write_number(&p, 1.0);
147  }
149 
150  pkt.size = p - pkt.data;
151 
152  ff_rtmp_packet_write(rt->stream, &pkt, rt->chunk_size, rt->prev_pkt[1]);
154 }
155 
161 {
162  RTMPPacket pkt;
163  uint8_t *p;
164 
166  29 + strlen(rt->playpath));
167 
168  av_log(s, AV_LOG_DEBUG, "Releasing stream...\n");
169  p = pkt.data;
170  ff_amf_write_string(&p, "releaseStream");
171  ff_amf_write_number(&p, ++rt->nb_invokes);
172  ff_amf_write_null(&p);
173  ff_amf_write_string(&p, rt->playpath);
174 
175  ff_rtmp_packet_write(rt->stream, &pkt, rt->chunk_size, rt->prev_pkt[1]);
177 }
178 
184 {
185  RTMPPacket pkt;
186  uint8_t *p;
187 
189  25 + strlen(rt->playpath));
190 
191  av_log(s, AV_LOG_DEBUG, "FCPublish stream...\n");
192  p = pkt.data;
193  ff_amf_write_string(&p, "FCPublish");
194  ff_amf_write_number(&p, ++rt->nb_invokes);
195  ff_amf_write_null(&p);
196  ff_amf_write_string(&p, rt->playpath);
197 
198  ff_rtmp_packet_write(rt->stream, &pkt, rt->chunk_size, rt->prev_pkt[1]);
200 }
201 
207 {
208  RTMPPacket pkt;
209  uint8_t *p;
210 
212  27 + strlen(rt->playpath));
213 
214  av_log(s, AV_LOG_DEBUG, "UnPublishing stream...\n");
215  p = pkt.data;
216  ff_amf_write_string(&p, "FCUnpublish");
217  ff_amf_write_number(&p, ++rt->nb_invokes);
218  ff_amf_write_null(&p);
219  ff_amf_write_string(&p, rt->playpath);
220 
221  ff_rtmp_packet_write(rt->stream, &pkt, rt->chunk_size, rt->prev_pkt[1]);
223 }
224 
230 {
231  RTMPPacket pkt;
232  uint8_t *p;
233 
234  av_log(s, AV_LOG_DEBUG, "Creating stream...\n");
236 
237  p = pkt.data;
238  ff_amf_write_string(&p, "createStream");
239  ff_amf_write_number(&p, ++rt->nb_invokes);
240  ff_amf_write_null(&p);
242 
243  ff_rtmp_packet_write(rt->stream, &pkt, rt->chunk_size, rt->prev_pkt[1]);
245 }
246 
247 
253 {
254  RTMPPacket pkt;
255  uint8_t *p;
256 
257  av_log(s, AV_LOG_DEBUG, "Deleting stream...\n");
259 
260  p = pkt.data;
261  ff_amf_write_string(&p, "deleteStream");
262  ff_amf_write_number(&p, ++rt->nb_invokes);
263  ff_amf_write_null(&p);
265 
266  ff_rtmp_packet_write(rt->stream, &pkt, rt->chunk_size, rt->prev_pkt[1]);
268 }
269 
274 static void gen_play(URLContext *s, RTMPContext *rt)
275 {
276  RTMPPacket pkt;
277  uint8_t *p;
278 
279  av_log(s, AV_LOG_DEBUG, "Sending play command for '%s'\n", rt->playpath);
281  20 + strlen(rt->playpath));
282  pkt.extra = rt->main_channel_id;
283 
284  p = pkt.data;
285  ff_amf_write_string(&p, "play");
286  ff_amf_write_number(&p, ++rt->nb_invokes);
287  ff_amf_write_null(&p);
288  ff_amf_write_string(&p, rt->playpath);
289 
290  ff_rtmp_packet_write(rt->stream, &pkt, rt->chunk_size, rt->prev_pkt[1]);
292 
293  // set client buffer time disguised in ping packet
295 
296  p = pkt.data;
297  bytestream_put_be16(&p, 3);
298  bytestream_put_be32(&p, 1);
299  bytestream_put_be32(&p, 256); //TODO: what is a good value here?
300 
301  ff_rtmp_packet_write(rt->stream, &pkt, rt->chunk_size, rt->prev_pkt[1]);
303 }
304 
308 static void gen_publish(URLContext *s, RTMPContext *rt)
309 {
310  RTMPPacket pkt;
311  uint8_t *p;
312 
313  av_log(s, AV_LOG_DEBUG, "Sending publish command for '%s'\n", rt->playpath);
315  30 + strlen(rt->playpath));
316  pkt.extra = rt->main_channel_id;
317 
318  p = pkt.data;
319  ff_amf_write_string(&p, "publish");
320  ff_amf_write_number(&p, ++rt->nb_invokes);
321  ff_amf_write_null(&p);
322  ff_amf_write_string(&p, rt->playpath);
323  ff_amf_write_string(&p, "live");
324 
325  ff_rtmp_packet_write(rt->stream, &pkt, rt->chunk_size, rt->prev_pkt[1]);
327 }
328 
332 static void gen_pong(URLContext *s, RTMPContext *rt, RTMPPacket *ppkt)
333 {
334  RTMPPacket pkt;
335  uint8_t *p;
336 
338  p = pkt.data;
339  bytestream_put_be16(&p, 7);
340  bytestream_put_be32(&p, AV_RB32(ppkt->data+2));
341  ff_rtmp_packet_write(rt->stream, &pkt, rt->chunk_size, rt->prev_pkt[1]);
343 }
344 
348 static void gen_bytes_read(URLContext *s, RTMPContext *rt, uint32_t ts)
349 {
350  RTMPPacket pkt;
351  uint8_t *p;
352 
354  p = pkt.data;
355  bytestream_put_be32(&p, rt->bytes_read);
356  ff_rtmp_packet_write(rt->stream, &pkt, rt->chunk_size, rt->prev_pkt[1]);
358 }
359 
360 //TODO: Move HMAC code somewhere. Eventually.
361 #define HMAC_IPAD_VAL 0x36
362 #define HMAC_OPAD_VAL 0x5C
363 
375 static void rtmp_calc_digest(const uint8_t *src, int len, int gap,
376  const uint8_t *key, int keylen, uint8_t *dst)
377 {
378  struct AVSHA *sha;
379  uint8_t hmac_buf[64+32] = {0};
380  int i;
381 
382  sha = av_mallocz(av_sha_size);
383 
384  if (keylen < 64) {
385  memcpy(hmac_buf, key, keylen);
386  } else {
387  av_sha_init(sha, 256);
388  av_sha_update(sha,key, keylen);
389  av_sha_final(sha, hmac_buf);
390  }
391  for (i = 0; i < 64; i++)
392  hmac_buf[i] ^= HMAC_IPAD_VAL;
393 
394  av_sha_init(sha, 256);
395  av_sha_update(sha, hmac_buf, 64);
396  if (gap <= 0) {
397  av_sha_update(sha, src, len);
398  } else { //skip 32 bytes used for storing digest
399  av_sha_update(sha, src, gap);
400  av_sha_update(sha, src + gap + 32, len - gap - 32);
401  }
402  av_sha_final(sha, hmac_buf + 64);
403 
404  for (i = 0; i < 64; i++)
405  hmac_buf[i] ^= HMAC_IPAD_VAL ^ HMAC_OPAD_VAL; //reuse XORed key for opad
406  av_sha_init(sha, 256);
407  av_sha_update(sha, hmac_buf, 64+32);
408  av_sha_final(sha, dst);
409 
410  av_free(sha);
411 }
412 
420 static int rtmp_handshake_imprint_with_digest(uint8_t *buf)
421 {
422  int i, digest_pos = 0;
423 
424  for (i = 8; i < 12; i++)
425  digest_pos += buf[i];
426  digest_pos = (digest_pos % 728) + 12;
427 
430  buf + digest_pos);
431  return digest_pos;
432 }
433 
441 static int rtmp_validate_digest(uint8_t *buf, int off)
442 {
443  int i, digest_pos = 0;
444  uint8_t digest[32];
445 
446  for (i = 0; i < 4; i++)
447  digest_pos += buf[i + off];
448  digest_pos = (digest_pos % 728) + off + 4;
449 
452  digest);
453  if (!memcmp(digest, buf + digest_pos, 32))
454  return digest_pos;
455  return 0;
456 }
457 
465 {
466  AVLFG rnd;
467  uint8_t tosend [RTMP_HANDSHAKE_PACKET_SIZE+1] = {
468  3, // unencrypted data
469  0, 0, 0, 0, // client uptime
474  };
475  uint8_t clientdata[RTMP_HANDSHAKE_PACKET_SIZE];
476  uint8_t serverdata[RTMP_HANDSHAKE_PACKET_SIZE+1];
477  int i;
478  int server_pos, client_pos;
479  uint8_t digest[32];
480 
481  av_log(s, AV_LOG_DEBUG, "Handshaking...\n");
482 
483  av_lfg_init(&rnd, 0xDEADC0DE);
484  // generate handshake packet - 1536 bytes of pseudorandom data
485  for (i = 9; i <= RTMP_HANDSHAKE_PACKET_SIZE; i++)
486  tosend[i] = av_lfg_get(&rnd) >> 24;
487  client_pos = rtmp_handshake_imprint_with_digest(tosend + 1);
488 
490  i = ffurl_read_complete(rt->stream, serverdata, RTMP_HANDSHAKE_PACKET_SIZE + 1);
491  if (i != RTMP_HANDSHAKE_PACKET_SIZE + 1) {
492  av_log(s, AV_LOG_ERROR, "Cannot read RTMP handshake response\n");
493  return -1;
494  }
496  if (i != RTMP_HANDSHAKE_PACKET_SIZE) {
497  av_log(s, AV_LOG_ERROR, "Cannot read RTMP handshake response\n");
498  return -1;
499  }
500 
501  av_log(s, AV_LOG_DEBUG, "Server version %d.%d.%d.%d\n",
502  serverdata[5], serverdata[6], serverdata[7], serverdata[8]);
503 
504  if (rt->is_input && serverdata[5] >= 3) {
505  server_pos = rtmp_validate_digest(serverdata + 1, 772);
506  if (!server_pos) {
507  server_pos = rtmp_validate_digest(serverdata + 1, 8);
508  if (!server_pos) {
509  av_log(s, AV_LOG_ERROR, "Server response validating failed\n");
510  return -1;
511  }
512  }
513 
514  rtmp_calc_digest(tosend + 1 + client_pos, 32, 0,
516  digest);
518  digest, 32,
519  digest);
520  if (memcmp(digest, clientdata + RTMP_HANDSHAKE_PACKET_SIZE - 32, 32)) {
521  av_log(s, AV_LOG_ERROR, "Signature mismatch\n");
522  return -1;
523  }
524 
525  for (i = 0; i < RTMP_HANDSHAKE_PACKET_SIZE; i++)
526  tosend[i] = av_lfg_get(&rnd) >> 24;
527  rtmp_calc_digest(serverdata + 1 + server_pos, 32, 0,
529  digest);
530  rtmp_calc_digest(tosend, RTMP_HANDSHAKE_PACKET_SIZE - 32, 0,
531  digest, 32,
532  tosend + RTMP_HANDSHAKE_PACKET_SIZE - 32);
533 
534  // write reply back to the server
535  ffurl_write(rt->stream, tosend, RTMP_HANDSHAKE_PACKET_SIZE);
536  } else {
537  ffurl_write(rt->stream, serverdata+1, RTMP_HANDSHAKE_PACKET_SIZE);
538  }
539 
540  return 0;
541 }
542 
550 {
551  int i, t;
552  const uint8_t *data_end = pkt->data + pkt->size;
553 
554 #ifdef DEBUG
555  ff_rtmp_packet_dump(s, pkt);
556 #endif
557 
558  switch (pkt->type) {
559  case RTMP_PT_CHUNK_SIZE:
560  if (pkt->size != 4) {
561  av_log(s, AV_LOG_ERROR,
562  "Chunk size change packet is not 4 bytes long (%d)\n", pkt->size);
563  return -1;
564  }
565  if (!rt->is_input)
566  ff_rtmp_packet_write(rt->stream, pkt, rt->chunk_size, rt->prev_pkt[1]);
567  rt->chunk_size = AV_RB32(pkt->data);
568  if (rt->chunk_size <= 0) {
569  av_log(s, AV_LOG_ERROR, "Incorrect chunk size %d\n", rt->chunk_size);
570  return -1;
571  }
572  av_log(s, AV_LOG_DEBUG, "New chunk size = %d\n", rt->chunk_size);
573  break;
574  case RTMP_PT_PING:
575  t = AV_RB16(pkt->data);
576  if (t == 6)
577  gen_pong(s, rt, pkt);
578  break;
579  case RTMP_PT_CLIENT_BW:
580  if (pkt->size < 4) {
581  av_log(s, AV_LOG_ERROR,
582  "Client bandwidth report packet is less than 4 bytes long (%d)\n",
583  pkt->size);
584  return -1;
585  }
586  av_log(s, AV_LOG_DEBUG, "Client bandwidth = %d\n", AV_RB32(pkt->data));
587  rt->client_report_size = AV_RB32(pkt->data) >> 1;
588  break;
589  case RTMP_PT_INVOKE:
590  //TODO: check for the messages sent for wrong state?
591  if (ff_amf_match_string(pkt->data, pkt->size, "_error")) {
592  uint8_t tmpstr[256];
593 
594  if (!ff_amf_get_field_value(pkt->data + 9, data_end,
595  "description", tmpstr, sizeof(tmpstr)))
596  av_log(s, AV_LOG_ERROR, "Server error: %s\n",tmpstr);
597  return -1;
598  } else if (ff_amf_match_string(pkt->data, pkt->size, "_result")) {
599  switch (rt->state) {
600  case STATE_HANDSHAKED:
601  if (!rt->is_input) {
602  gen_release_stream(s, rt);
603  gen_fcpublish_stream(s, rt);
604  rt->state = STATE_RELEASING;
605  } else {
606  rt->state = STATE_CONNECTING;
607  }
608  gen_create_stream(s, rt);
609  break;
610  case STATE_FCPUBLISH:
611  rt->state = STATE_CONNECTING;
612  break;
613  case STATE_RELEASING:
614  rt->state = STATE_FCPUBLISH;
615  /* hack for Wowza Media Server, it does not send result for
616  * releaseStream and FCPublish calls */
617  if (!pkt->data[10]) {
618  int pkt_id = av_int2double(AV_RB64(pkt->data + 11));
619  if (pkt_id == rt->create_stream_invoke)
620  rt->state = STATE_CONNECTING;
621  }
622  if (rt->state != STATE_CONNECTING)
623  break;
624  case STATE_CONNECTING:
625  //extract a number from the result
626  if (pkt->data[10] || pkt->data[19] != 5 || pkt->data[20]) {
627  av_log(s, AV_LOG_WARNING, "Unexpected reply on connect()\n");
628  } else {
629  rt->main_channel_id = av_int2double(AV_RB64(pkt->data + 21));
630  }
631  if (rt->is_input) {
632  gen_play(s, rt);
633  } else {
634  gen_publish(s, rt);
635  }
636  rt->state = STATE_READY;
637  break;
638  }
639  } else if (ff_amf_match_string(pkt->data, pkt->size, "onStatus")) {
640  const uint8_t* ptr = pkt->data + 11;
641  uint8_t tmpstr[256];
642 
643  for (i = 0; i < 2; i++) {
644  t = ff_amf_tag_size(ptr, data_end);
645  if (t < 0)
646  return 1;
647  ptr += t;
648  }
649  t = ff_amf_get_field_value(ptr, data_end,
650  "level", tmpstr, sizeof(tmpstr));
651  if (!t && !strcmp(tmpstr, "error")) {
652  if (!ff_amf_get_field_value(ptr, data_end,
653  "description", tmpstr, sizeof(tmpstr)))
654  av_log(s, AV_LOG_ERROR, "Server error: %s\n",tmpstr);
655  return -1;
656  }
657  t = ff_amf_get_field_value(ptr, data_end,
658  "code", tmpstr, sizeof(tmpstr));
659  if (!t && !strcmp(tmpstr, "NetStream.Play.Start")) rt->state = STATE_PLAYING;
660  if (!t && !strcmp(tmpstr, "NetStream.Play.Stop")) rt->state = STATE_STOPPED;
661  if (!t && !strcmp(tmpstr, "NetStream.Play.UnpublishNotify")) rt->state = STATE_STOPPED;
662  if (!t && !strcmp(tmpstr, "NetStream.Publish.Start")) rt->state = STATE_PUBLISHING;
663  }
664  break;
665  }
666  return 0;
667 }
668 
680 static int get_packet(URLContext *s, int for_header)
681 {
682  RTMPContext *rt = s->priv_data;
683  int ret;
684  uint8_t *p;
685  const uint8_t *next;
686  uint32_t size;
687  uint32_t ts, cts, pts=0;
688 
689  if (rt->state == STATE_STOPPED)
690  return AVERROR_EOF;
691 
692  for (;;) {
693  RTMPPacket rpkt = { 0 };
694  if ((ret = ff_rtmp_packet_read(rt->stream, &rpkt,
695  rt->chunk_size, rt->prev_pkt[0])) <= 0) {
696  if (ret == 0) {
697  return AVERROR(EAGAIN);
698  } else {
699  return AVERROR(EIO);
700  }
701  }
702  rt->bytes_read += ret;
703  if (rt->bytes_read > rt->last_bytes_read + rt->client_report_size) {
704  av_log(s, AV_LOG_DEBUG, "Sending bytes read report\n");
705  gen_bytes_read(s, rt, rpkt.timestamp + 1);
706  rt->last_bytes_read = rt->bytes_read;
707  }
708 
709  ret = rtmp_parse_result(s, rt, &rpkt);
710  if (ret < 0) {//serious error in current packet
711  ff_rtmp_packet_destroy(&rpkt);
712  return -1;
713  }
714  if (rt->state == STATE_STOPPED) {
715  ff_rtmp_packet_destroy(&rpkt);
716  return AVERROR_EOF;
717  }
718  if (for_header && (rt->state == STATE_PLAYING || rt->state == STATE_PUBLISHING)) {
719  ff_rtmp_packet_destroy(&rpkt);
720  return 0;
721  }
722  if (!rpkt.size || !rt->is_input) {
723  ff_rtmp_packet_destroy(&rpkt);
724  continue;
725  }
726  if (rpkt.type == RTMP_PT_VIDEO || rpkt.type == RTMP_PT_AUDIO ||
727  (rpkt.type == RTMP_PT_NOTIFY &&
728  ff_amf_match_string(rpkt.data, rpkt.size, "onMetaData"))) {
729  ts = rpkt.timestamp;
730 
731  // generate packet header and put data into buffer for FLV demuxer
732  rt->flv_off = 0;
733  rt->flv_size = rpkt.size + 15;
734  rt->flv_data = p = av_realloc(rt->flv_data, rt->flv_size);
735  bytestream_put_byte(&p, rpkt.type);
736  bytestream_put_be24(&p, rpkt.size);
737  bytestream_put_be24(&p, ts);
738  bytestream_put_byte(&p, ts >> 24);
739  bytestream_put_be24(&p, 0);
740  bytestream_put_buffer(&p, rpkt.data, rpkt.size);
741  bytestream_put_be32(&p, 0);
742  ff_rtmp_packet_destroy(&rpkt);
743  return 0;
744  } else if (rpkt.type == RTMP_PT_METADATA) {
745  // we got raw FLV data, make it available for FLV demuxer
746  rt->flv_off = 0;
747  rt->flv_size = rpkt.size;
748  rt->flv_data = av_realloc(rt->flv_data, rt->flv_size);
749  /* rewrite timestamps */
750  next = rpkt.data;
751  ts = rpkt.timestamp;
752  while (next - rpkt.data < rpkt.size - 11) {
753  next++;
754  size = bytestream_get_be24(&next);
755  p=next;
756  cts = bytestream_get_be24(&next);
757  cts |= bytestream_get_byte(&next) << 24;
758  if (pts==0)
759  pts=cts;
760  ts += cts - pts;
761  pts = cts;
762  bytestream_put_be24(&p, ts);
763  bytestream_put_byte(&p, ts >> 24);
764  next += size + 3 + 4;
765  }
766  memcpy(rt->flv_data, rpkt.data, rpkt.size);
767  ff_rtmp_packet_destroy(&rpkt);
768  return 0;
769  }
770  ff_rtmp_packet_destroy(&rpkt);
771  }
772 }
773 
774 static int rtmp_close(URLContext *h)
775 {
776  RTMPContext *rt = h->priv_data;
777 
778  if (!rt->is_input) {
779  rt->flv_data = NULL;
780  if (rt->out_pkt.size)
782  if (rt->state > STATE_FCPUBLISH)
783  gen_fcunpublish_stream(h, rt);
784  }
785  if (rt->state > STATE_HANDSHAKED)
786  gen_delete_stream(h, rt);
787 
788  av_freep(&rt->flv_data);
789  ffurl_close(rt->stream);
790  return 0;
791 }
792 
802 static int rtmp_open(URLContext *s, const char *uri, int flags)
803 {
804  RTMPContext *rt = s->priv_data;
805  char proto[8], hostname[256], path[1024], *fname;
806  uint8_t buf[2048];
807  int port;
808  int ret;
809 
810  rt->is_input = !(flags & AVIO_FLAG_WRITE);
811 
812  av_url_split(proto, sizeof(proto), NULL, 0, hostname, sizeof(hostname), &port,
813  path, sizeof(path), s->filename);
814 
815  if (port < 0)
816  port = RTMP_DEFAULT_PORT;
817  ff_url_join(buf, sizeof(buf), "tcp", NULL, hostname, port, NULL);
818 
819  if (ffurl_open(&rt->stream, buf, AVIO_FLAG_READ_WRITE,
820  &s->interrupt_callback, NULL) < 0) {
821  av_log(s , AV_LOG_ERROR, "Cannot open connection %s\n", buf);
822  goto fail;
823  }
824 
825  rt->state = STATE_START;
826  if (rtmp_handshake(s, rt))
827  goto fail;
828 
829  rt->chunk_size = 128;
830  rt->state = STATE_HANDSHAKED;
831  //extract "app" part from path
832  if (!strncmp(path, "/ondemand/", 10)) {
833  fname = path + 10;
834  memcpy(rt->app, "ondemand", 9);
835  } else {
836  char *p = strchr(path + 1, '/');
837  if (!p) {
838  fname = path + 1;
839  rt->app[0] = '\0';
840  } else {
841  char *c = strchr(p + 1, ':');
842  fname = strchr(p + 1, '/');
843  if (!fname || c < fname) {
844  fname = p + 1;
845  av_strlcpy(rt->app, path + 1, p - path);
846  } else {
847  fname++;
848  av_strlcpy(rt->app, path + 1, fname - path - 1);
849  }
850  }
851  }
852  if (!strchr(fname, ':') &&
853  (!strcmp(fname + strlen(fname) - 4, ".f4v") ||
854  !strcmp(fname + strlen(fname) - 4, ".mp4"))) {
855  memcpy(rt->playpath, "mp4:", 5);
856  } else {
857  rt->playpath[0] = 0;
858  }
859  strncat(rt->playpath, fname, sizeof(rt->playpath) - 5);
860 
861  rt->client_report_size = 1048576;
862  rt->bytes_read = 0;
863  rt->last_bytes_read = 0;
864 
865  av_log(s, AV_LOG_DEBUG, "Proto = %s, path = %s, app = %s, fname = %s\n",
866  proto, path, rt->app, rt->playpath);
867  gen_connect(s, rt, proto, hostname, port);
868 
869  do {
870  ret = get_packet(s, 1);
871  } while (ret == EAGAIN);
872  if (ret < 0)
873  goto fail;
874 
875  if (rt->is_input) {
876  // generate FLV header for demuxer
877  rt->flv_size = 13;
878  rt->flv_data = av_realloc(rt->flv_data, rt->flv_size);
879  rt->flv_off = 0;
880  memcpy(rt->flv_data, "FLV\1\5\0\0\0\011\0\0\0\0", rt->flv_size);
881  } else {
882  rt->flv_size = 0;
883  rt->flv_data = NULL;
884  rt->flv_off = 0;
885  rt->skip_bytes = 13;
886  }
887 
889  s->is_streamed = 1;
890  return 0;
891 
892 fail:
893  rtmp_close(s);
894  return AVERROR(EIO);
895 }
896 
897 static int rtmp_read(URLContext *s, uint8_t *buf, int size)
898 {
899  RTMPContext *rt = s->priv_data;
900  int orig_size = size;
901  int ret;
902 
903  while (size > 0) {
904  int data_left = rt->flv_size - rt->flv_off;
905 
906  if (data_left >= size) {
907  memcpy(buf, rt->flv_data + rt->flv_off, size);
908  rt->flv_off += size;
909  return orig_size;
910  }
911  if (data_left > 0) {
912  memcpy(buf, rt->flv_data + rt->flv_off, data_left);
913  buf += data_left;
914  size -= data_left;
915  rt->flv_off = rt->flv_size;
916  return data_left;
917  }
918  if ((ret = get_packet(s, 0)) < 0)
919  return ret;
920  }
921  return orig_size;
922 }
923 
924 static int rtmp_write(URLContext *s, const uint8_t *buf, int size)
925 {
926  RTMPContext *rt = s->priv_data;
927  int size_temp = size;
928  int pktsize, pkttype;
929  uint32_t ts;
930  const uint8_t *buf_temp = buf;
931 
932  do {
933  if (rt->skip_bytes) {
934  int skip = FFMIN(rt->skip_bytes, size_temp);
935  buf_temp += skip;
936  size_temp -= skip;
937  rt->skip_bytes -= skip;
938  continue;
939  }
940 
941  if (rt->flv_header_bytes < 11) {
942  const uint8_t *header = rt->flv_header;
943  int copy = FFMIN(11 - rt->flv_header_bytes, size_temp);
944  bytestream_get_buffer(&buf_temp, rt->flv_header + rt->flv_header_bytes, copy);
945  rt->flv_header_bytes += copy;
946  size_temp -= copy;
947  if (rt->flv_header_bytes < 11)
948  break;
949 
950  pkttype = bytestream_get_byte(&header);
951  pktsize = bytestream_get_be24(&header);
952  ts = bytestream_get_be24(&header);
953  ts |= bytestream_get_byte(&header) << 24;
954  bytestream_get_be24(&header);
955  rt->flv_size = pktsize;
956 
957  //force 12bytes header
958  if (((pkttype == RTMP_PT_VIDEO || pkttype == RTMP_PT_AUDIO) && ts == 0) ||
959  pkttype == RTMP_PT_NOTIFY) {
960  if (pkttype == RTMP_PT_NOTIFY)
961  pktsize += 16;
963  }
964 
965  //this can be a big packet, it's better to send it right here
966  ff_rtmp_packet_create(&rt->out_pkt, RTMP_SOURCE_CHANNEL, pkttype, ts, pktsize);
967  rt->out_pkt.extra = rt->main_channel_id;
968  rt->flv_data = rt->out_pkt.data;
969 
970  if (pkttype == RTMP_PT_NOTIFY)
971  ff_amf_write_string(&rt->flv_data, "@setDataFrame");
972  }
973 
974  if (rt->flv_size - rt->flv_off > size_temp) {
975  bytestream_get_buffer(&buf_temp, rt->flv_data + rt->flv_off, size_temp);
976  rt->flv_off += size_temp;
977  size_temp = 0;
978  } else {
979  bytestream_get_buffer(&buf_temp, rt->flv_data + rt->flv_off, rt->flv_size - rt->flv_off);
980  size_temp -= rt->flv_size - rt->flv_off;
981  rt->flv_off += rt->flv_size - rt->flv_off;
982  }
983 
984  if (rt->flv_off == rt->flv_size) {
985  rt->skip_bytes = 4;
986 
987  ff_rtmp_packet_write(rt->stream, &rt->out_pkt, rt->chunk_size, rt->prev_pkt[1]);
989  rt->flv_size = 0;
990  rt->flv_off = 0;
991  rt->flv_header_bytes = 0;
992  }
993  } while (buf_temp - buf < size);
994  return size;
995 }
996 
998  .name = "rtmp",
999  .url_open = rtmp_open,
1000  .url_read = rtmp_read,
1001  .url_write = rtmp_write,
1002  .url_close = rtmp_close,
1003  .priv_data_size = sizeof(RTMPContext),
1005 };