Databases
StackOverflow2013
Postsdbo
POSSDP protocol - implementation
 

Note that there are some explanatory texts on larger screens.

plurals
  1. POSSDP protocol - implementation
    primarykey
    data
    text
    <p>I am trying to implement SSDP protocol, but I am not sure how exactly it works. SSDP sends data over udp, that is clear. If controller connects to network it can search for devices with MSEARCH message, which can be send to multicast address 239.255.255.250:1900. Every device has to listen to this address and respond. But I don't know how they responds. I see in wireshark that they responds with unicast but I don't know how to determine port which receives responds.</p> <p>EDIT---------------</p> <p>I am trying to write ssdp fuzzer with spike fuzzing framework. As I said, I am able to send correct data, but unable to receive responses. I ll try to paste some spike code with brief explanation. There is Spike struct, which represents data to be send (it stores actual data, sizes, protocol info...). I removed some variables to make it more clear.</p> <pre><code>struct spike { /*total size of all data*/ unsigned long datasize; unsigned char *databuf; unsigned char *endbuf; int fd; /*for holding socket or file information*/ int proto; /*1 for tcp, 2 for udp*/ struct sockaddr_in *destsockaddr; }; </code></pre> <p>Now i am sending data via udp and want to receive some responds with following functions</p> <pre><code>spike_connect_udp(target,port); spike_send(); s_read_packet(); </code></pre> <p>Function implementations:</p> <pre><code>int spike_connect_udp(char * host, int port) { int fd; /*ahh, having udpstuff.c makes this stuff easy*/ fd=udpconnect(host,port); if (fd==-1) { fprintf(stderr,"Couldn't udp connect to target\n"); return (0); } current_spike-&gt;fd=fd; current_spike-&gt;proto=2; /*UDP*/ return 1; } int udpconnect(const char * host, const unsigned short port ) { int sfd = -1; struct sockaddr_in addr; /* Translate hostname from DNS or IP-address form */ memset(&amp;addr, 0, sizeof(addr)); if (!getHostAddress(host, &amp;addr)) { hdebug("can't resolve host or address.\n"); return -1; } addr.sin_family = AF_INET; addr.sin_port = ntohs(port); if ((sfd = socket(AF_INET, SOCK_DGRAM, 0)) &lt; 0) { hdebug("Could not create socket!\n"); return -1; } /* Now connect! */ if (connect(sfd, (struct sockaddr *)&amp;addr, sizeof(addr)) &lt; 0) { close(sfd); return -1; } return sfd; } int spike_send() { int retval; switch (current_spike-&gt;proto) { case 1: /*TCP*/ //deleted, doesnt matter, i am sending via udp case 2: /*UDP*/ //udp_write_data is function from framework retval=udp_write_data(current_spike-&gt;fd, current_spike-&gt;destsockaddr, s_get_size(), s_get_databuf()); break; } fflush(0); return retval; } </code></pre> <p>This works fine and send data via udp. Now i would like to receive some responses via open socket current_spike->fd. Function s_read_packet void</p> <pre><code>s_read_packet() { unsigned char buffer[5000]; int i; int size; s_fd_wait(); printf("Reading packet\n"); memset(buffer,0x00,sizeof(buffer)); /what alarm and fcntl does? alarm(1); fcntl(current_spike-&gt;fd, F_SETFL, O_NONBLOCK); //this read return error -1 and sets errno to 11 service temporarily unavailable size=read(current_spike-&gt;fd,buffer,1500); fcntl(current_spike-&gt;fd, F_SETFL, 0); alarm(0); for (i=0; i&lt;size; i++) { if (isprint(buffer[i])) printf("%c",buffer[i]); else printf("[%2.2x]",buffer[i]); } printf("\nDone with read\n"); } int s_fd_wait() { /*this function does a select to wait for input on the fd, and if there is, returns 1, else 0 */ int fd; fd_set rfds; struct timeval tv; int retval; fd=current_spike-&gt;fd; /* Watch server_fd (fd 0) to see when it has input. */ FD_ZERO(&amp;rfds); FD_SET(fd, &amp;rfds); /* Wait up to zero seconds . will this wait forever? not on linux.*/ /* from man page: timeout is an upper bound on the amount of time elapsed before select returns. It may be zero, causing select to return immediately. If timeout is NULL (no timeout), select can block indefinitely. */ /*wait 2 seconds only*/ tv.tv_sec = TIMEINSECONDS; tv.tv_usec = TIMEINUSECONDS; //printf("Before select %d:%d\n",TIMEINSECONDS,TIMEINUSECONDS); retval = select(fd+1, &amp;rfds, NULL, NULL, &amp;tv); /* Don't rely on the value of tv now! */ //printf("After select retval=%d.\n",retval); switch (retval) { case 0: /*Timeout - no packet or keypress*/ return(0); break; case -1: /* ignore interrupted system calls */ if (errno != EINTR) { /*some kind of weird select error. Die. */ exit(-1); } /*otherwise we got interrupted, so just return false*/ return (0); break; default: { if (FD_ISSET(fd,&amp;rfds)) return (1); else return (0); } } } </code></pre> <p>But function s_read_packet produces no data...</p>
    singulars
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. PTQuestion
    1. USBenjamin
    1. USuser1453857
    plurals
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. PO
      singulars
      1. PTAnswer
    1. VO
      singulars
      1. POSSDP protocol - implementation
      1. This table or related slice is empty.
      1. VTUndeletion
    2. VO
      singulars
      1. POSSDP protocol - implementation
      1. USMoonlit
      1. VTFavorite
    1. This table or related slice is empty.
 

Querying!

 
Guidance
A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload