#include "nvhttp.h" #include #include #include #include #include #include #include #include #include #include #include #define REQUEST_TIMEOUT_MS 5000 #define LAUNCH_TIMEOUT_MS 120000 #define RESUME_TIMEOUT_MS 30000 #define QUIT_TIMEOUT_MS 30000 NvHTTP::NvHTTP(QString address, QSslCertificate serverCert) : m_Address(address), m_ServerCert(serverCert) { Q_ASSERT(!address.isEmpty()); m_BaseUrlHttp.setScheme("http"); m_BaseUrlHttps.setScheme("https"); m_BaseUrlHttp.setHost(address); m_BaseUrlHttps.setHost(address); m_BaseUrlHttp.setPort(47989); m_BaseUrlHttps.setPort(47984); // Never use a proxy server QNetworkProxy noProxy(QNetworkProxy::NoProxy); m_Nam.setProxy(noProxy); } void NvHTTP::setServerCert(QSslCertificate serverCert) { m_ServerCert = serverCert; } QVector NvHTTP::parseQuad(QString quad) { QVector ret; // Return an empty vector for old GFE versions // that were missing GfeVersion. if (quad.isEmpty()) { return ret; } QStringList parts = quad.split("."); for (int i = 0; i < 4; i++) { ret.append(parts.at(i).toInt()); } return ret; } int NvHTTP::getCurrentGame(QString serverInfo) { // GFE 2.8 started keeping currentgame set to the last game played. As a result, it no longer // has the semantics that its name would indicate. To contain the effects of this change as much // as possible, we'll force the current game to zero if the server isn't in a streaming session. QString serverState = getXmlString(serverInfo, "state"); if (serverState != nullptr && serverState.endsWith("_SERVER_BUSY")) { return getXmlString(serverInfo, "currentgame").toInt(); } else { return 0; } } QString NvHTTP::getServerInfo(NvLogLevel logLevel) { QString serverInfo; // Check if we have a pinned cert for this host yet if (!m_ServerCert.isNull()) { try { // Always try HTTPS first, since it properly reports // pairing status (and a few other attributes). serverInfo = openConnectionToString(m_BaseUrlHttps, "serverinfo", nullptr, REQUEST_TIMEOUT_MS, logLevel); // Throws if the request failed verifyResponseStatus(serverInfo); } catch (const GfeHttpResponseException& e) { if (e.getStatusCode() == 401) { // Certificate validation error, fallback to HTTP serverInfo = openConnectionToString(m_BaseUrlHttp, "serverinfo", nullptr, REQUEST_TIMEOUT_MS, logLevel); verifyResponseStatus(serverInfo); } else { // Rethrow real errors throw e; } } } else { // Only use HTTP prior to pairing serverInfo = openConnectionToString(m_BaseUrlHttp, "serverinfo", nullptr, REQUEST_TIMEOUT_MS, logLevel); verifyResponseStatus(serverInfo); } return serverInfo; } static QString getSurroundAudioInfoString(int audioConfig) { int channelMask; int channelCount; switch (audioConfig) { case AUDIO_CONFIGURATION_STEREO: channelCount = 2; channelMask = 0x3; break; case AUDIO_CONFIGURATION_51_SURROUND: channelCount = 6; channelMask = 0xFC; break; default: Q_ASSERT(false); return 0; } return QString::number(channelMask << 16 | channelCount); } void NvHTTP::launchApp(int appId, PSTREAM_CONFIGURATION streamConfig, bool sops, bool localAudio, int gamepadMask) { int riKeyId; memcpy(&riKeyId, streamConfig->remoteInputAesIv, sizeof(riKeyId)); riKeyId = qFromBigEndian(riKeyId); QString response = openConnectionToString(m_BaseUrlHttps, "launch", "appid="+QString::number(appId)+ "&mode="+QString::number(streamConfig->width)+"x"+ QString::number(streamConfig->height)+"x"+ // Using an FPS value over 60 causes SOPS to default to 720p60, // so force it to 60 when starting. This won't impact our ability // to get > 60 FPS while actually streaming though. QString::number(streamConfig->fps > 60 ? 60 : streamConfig->fps)+ "&additionalStates=1&sops="+QString::number(sops ? 1 : 0)+ "&rikey="+QByteArray(streamConfig->remoteInputAesKey, sizeof(streamConfig->remoteInputAesKey)).toHex()+ "&rikeyid="+QString::number(riKeyId)+ (streamConfig->enableHdr ? "&hdrMode=1&clientHdrCapVersion=0&clientHdrCapSupportedFlagsInUint32=0&clientHdrCapMetaDataId=NV_STATIC_METADATA_TYPE_1&clientHdrCapDisplayData=0x0x0x0x0x0x0x0x0x0x0" : "")+ "&localAudioPlayMode="+QString::number(localAudio ? 1 : 0)+ "&surroundAudioInfo="+getSurroundAudioInfoString(streamConfig->audioConfiguration)+ "&remoteControllersBitmap="+QString::number(gamepadMask)+ "&gcmap="+QString::number(gamepadMask), LAUNCH_TIMEOUT_MS); // Throws if the request failed verifyResponseStatus(response); } void NvHTTP::resumeApp(PSTREAM_CONFIGURATION streamConfig) { int riKeyId; memcpy(&riKeyId, streamConfig->remoteInputAesIv, sizeof(riKeyId)); riKeyId = qFromBigEndian(riKeyId); QString response = openConnectionToString(m_BaseUrlHttps, "resume", "rikey="+QString(QByteArray(streamConfig->remoteInputAesKey, sizeof(streamConfig->remoteInputAesKey)).toHex())+ "&rikeyid="+QString::number(riKeyId)+ "&surroundAudioInfo="+getSurroundAudioInfoString(streamConfig->audioConfiguration), RESUME_TIMEOUT_MS); // Throws if the request failed verifyResponseStatus(response); } void NvHTTP::quitApp() { QString response = openConnectionToString(m_BaseUrlHttps, "cancel", nullptr, QUIT_TIMEOUT_MS); // Throws if the request failed verifyResponseStatus(response); // Newer GFE versions will just return success even if quitting fails // if we're not the original requestor. if (getCurrentGame(getServerInfo(NvHTTP::NVLL_ERROR)) != 0) { // Generate a synthetic GfeResponseException letting the caller know // that they can't kill someone else's stream. throw GfeHttpResponseException(599, ""); } } QVector NvHTTP::getDisplayModeList(QString serverInfo) { QXmlStreamReader xmlReader(serverInfo); QVector modes; while (!xmlReader.atEnd()) { while (xmlReader.readNextStartElement()) { QStringRef name = xmlReader.name(); if (xmlReader.name() == "DisplayMode") { modes.append(NvDisplayMode()); } else if (xmlReader.name() == "Width") { modes.last().width = xmlReader.readElementText().toInt(); } else if (xmlReader.name() == "Height") { modes.last().height = xmlReader.readElementText().toInt(); } else if (xmlReader.name() == "RefreshRate") { modes.last().refreshRate = xmlReader.readElementText().toInt(); } } } return modes; } QVector NvHTTP::getAppList() { QString appxml = openConnectionToString(m_BaseUrlHttps, "applist", nullptr, REQUEST_TIMEOUT_MS, NvLogLevel::NVLL_ERROR); verifyResponseStatus(appxml); QXmlStreamReader xmlReader(appxml); QVector apps; while (!xmlReader.atEnd()) { while (xmlReader.readNextStartElement()) { QStringRef name = xmlReader.name(); if (xmlReader.name() == "App") { // We must have a valid app before advancing to the next one if (!apps.isEmpty() && !apps.last().isInitialized()) { qWarning() << "Invalid applist XML"; Q_ASSERT(false); return QVector(); } apps.append(NvApp()); } else if (xmlReader.name() == "AppTitle") { apps.last().name = xmlReader.readElementText(); } else if (xmlReader.name() == "ID") { apps.last().id = xmlReader.readElementText().toInt(); } else if (xmlReader.name() == "IsHdrSupported") { apps.last().hdrSupported = xmlReader.readElementText() == "1"; } } } return apps; } void NvHTTP::verifyResponseStatus(QString xml) { QXmlStreamReader xmlReader(xml); while (xmlReader.readNextStartElement()) { if (xmlReader.name() == "root") { int statusCode = xmlReader.attributes().value("status_code").toInt(); if (statusCode == 200) { // Successful return; } else { QString statusMessage = xmlReader.attributes().value("status_message").toString(); if (statusCode != 401) { // 401 is expected for unpaired PCs when we fetch serverinfo over HTTPS qWarning() << "Request failed:" << statusCode << statusMessage; } throw GfeHttpResponseException(statusCode, statusMessage); } } } } QImage NvHTTP::getBoxArt(int appId) { QNetworkReply* reply = openConnection(m_BaseUrlHttps, "appasset", "appid="+QString::number(appId)+ "&AssetType=2&AssetIdx=0", REQUEST_TIMEOUT_MS, NvLogLevel::NVLL_VERBOSE); QImage image = QImageReader(reply).read(); delete reply; return image; } QByteArray NvHTTP::getXmlStringFromHex(QString xml, QString tagName) { QString str = getXmlString(xml, tagName); if (str == nullptr) { return nullptr; } return QByteArray::fromHex(str.toLatin1()); } QString NvHTTP::getXmlString(QString xml, QString tagName) { QXmlStreamReader xmlReader(xml); while (!xmlReader.atEnd()) { if (xmlReader.readNext() != QXmlStreamReader::StartElement) { continue; } if (xmlReader.name() == tagName) { return xmlReader.readElementText(); } } return nullptr; } QString NvHTTP::openConnectionToString(QUrl baseUrl, QString command, QString arguments, int timeoutMs, NvLogLevel logLevel) { QNetworkReply* reply = openConnection(baseUrl, command, arguments, timeoutMs, logLevel); QString ret; QTextStream stream(reply); stream.setCodec("UTF-8"); ret = stream.readAll(); delete reply; return ret; } QNetworkReply* NvHTTP::openConnection(QUrl baseUrl, QString command, QString arguments, int timeoutMs, NvLogLevel logLevel) { // Build a URL for the request QUrl url(baseUrl); url.setPath("/" + command); // Use a common UID for Moonlight clients to allow them to quit // games for each other (otherwise GFE gets screwed up and it requires // manual intervention to solve). url.setQuery("uniqueid=0123456789ABCDEF&uuid=" + QUuid::createUuid().toRfc4122().toHex() + ((arguments != nullptr) ? ("&" + arguments) : "")); QNetworkRequest request = QNetworkRequest(url); // Add our client certificate request.setSslConfiguration(IdentityManager::get()->getSslConfig()); QNetworkReply* reply = m_Nam.get(request); // Assert that we always have a server cert for HTTPS, since // the request will fail anyway if we do not. Q_ASSERT(!m_ServerCert.isNull() || baseUrl == m_BaseUrlHttp); if (!m_ServerCert.isNull()) { // Pin the server certificate received during pairing QList expectedSslErrors; expectedSslErrors.append(QSslError(QSslError::HostNameMismatch, m_ServerCert)); expectedSslErrors.append(QSslError(QSslError::SelfSignedCertificate, m_ServerCert)); // The SecureTransport backend for Qt TLS on macOS throws CertificateUntrusted // instead of SelfSignedCertificate, so we will need to allow that error too. expectedSslErrors.append(QSslError(QSslError::CertificateUntrusted, m_ServerCert)); reply->ignoreSslErrors(expectedSslErrors); } // Run the request with a timeout if requested QEventLoop loop; QObject::connect(reply, SIGNAL(finished()), &loop, SLOT(quit())); if (timeoutMs) { QTimer::singleShot(timeoutMs, &loop, SLOT(quit())); } if (logLevel >= NvLogLevel::NVLL_VERBOSE) { qInfo() << "Executing request:" << url.toString(); } loop.exec(QEventLoop::ExcludeUserInputEvents); // Abort the request if it timed out if (!reply->isFinished()) { if (logLevel >= NvLogLevel::NVLL_ERROR) { qWarning() << "Aborting timed out request for" << url.toString(); } reply->abort(); } // We must clear out cached authentication and connections or // GFE will puke next time m_Nam.clearAccessCache(); // Handle error if (reply->error() != QNetworkReply::NoError) { if (logLevel >= NvLogLevel::NVLL_ERROR) { qWarning() << command << " request failed with error " << reply->error(); } if (reply->error() == QNetworkReply::SslHandshakeFailedError) { // This will trigger falling back to HTTP for the serverinfo query // then pairing again to get the updated certificate. GfeHttpResponseException exception(401, "Server certificate mismatch"); delete reply; throw exception; } else if (reply->error() == QNetworkReply::OperationCanceledError) { QtNetworkReplyException exception(QNetworkReply::TimeoutError, "Request timed out"); delete reply; throw exception; } else { QtNetworkReplyException exception(reply->error(), reply->errorString()); delete reply; throw exception; } } return reply; }