OpenNebula

    - http://tools.ietf.org/html/draft-ietf-hybi-thewebsocketprotocol-07

    - http://tools.ietf.org/html/rfc6455

import os, sys, time, errno, signal, socket, select, logging

try:    from hashlib import sha1

except: from sha import sha as sha1

for mod, msg in [('numpy', 'HyBi protocol will be slower'),

                 ('ssl', 'TLS/SSL/wss is disabled'),

                 ('multiprocessing', 'Multi-Processing is disabled'),

                 ('resource', 'daemonizing is disabled')]:

        print("WARNING: no '%s' module, %s" % (mod, msg))

# HTTP handler with WebSocket upgrade support

class WebSocketRequestHandler(SimpleHTTPRequestHandler):

    WebSocket Request Handler Class, derived from SimpleHTTPRequestHandler.

    Must be sub-classed with new_websocket_client method definition.

    The request handler can be configured by setting optional

    attributes on the server object:

    * only_upgrade: If true, SimpleHTTPRequestHandler will not be enabled,

      only websocket is allowed.

    * verbose: If true, verbose logging is activated.

    * daemon: Running as daemon, do not write to console etc

    * record: Record raw frame data as JavaScript array into specified filename

    * run_once: Handle a single request

    * handler_id: A sequence number for this connection, appended to record filename

    server_version = "WebSockify"

    protocol_version = "HTTP/1.1"

    def __init__(self, req, addr, server):

        # Retrieve a few configuration variables from the server

        self.only_upgrade = getattr(server, "only_upgrade", False)

        self.verbose = getattr(server, "verbose", False)

        self.daemon = getattr(server, "daemon", False)

        self.record = getattr(server, "record", False)

        self.run_once = getattr(server, "run_once", False)

        self.rec        = None

        self.handler_id = getattr(server, "handler_id", False)

        self.file_only = getattr(server, "file_only", False)

        self.traffic = getattr(server, "traffic", False)

        self.logger = getattr(server, "logger", None)

        if self.logger is None:

            self.logger = WebSocketServer.get_logger()

        SimpleHTTPRequestHandler.__init__(self, req, addr, server)

                #self.msg("Partial unmask")

        #self.msg("Encoded: %s", repr(header + buf))

    def decode_hybi(buf, base64=False, logger=None):

        if logger is None:

            logger = WebSocketServer.get_logger()

            f['payload'] = WebSocketRequestHandler.unmask(buf, f['hlen'],

            logger.debug("Unmasked frame: %s" % repr(buf))

                logger.exception("Exception while b64decoding buffer: %s" %

                                 (repr(buf)))

    # WebSocketRequestHandler logging/output functions

    def print_traffic(self, token="."):

        """ Show traffic flow mode. """

        if self.traffic:

    def msg(self, msg, *args, **kwargs):

        prefix = "% 3d: " % self.handler_id

        self.logger.log(logging.INFO, "%s%s" % (prefix, msg), *args, **kwargs)

    def vmsg(self, msg, *args, **kwargs):

        """ Same as msg() but as debug. """

        prefix = "% 3d: " % self.handler_id

        self.logger.log(logging.DEBUG, "%s%s" % (prefix, msg), *args, **kwargs)

    def warn(self, msg, *args, **kwargs):

        """ Same as msg() but as warning. """

        prefix = "% 3d: " % self.handler_id

        self.logger.log(logging.WARN, "%s%s" % (prefix, msg), *args, **kwargs)

    # Main WebSocketRequestHandler methods

                if self.base64:

                    encbuf, lenhead, lentail = self.encode_hybi(buf, opcode=1, base64=True)

                    encbuf, lenhead, lentail = self.encode_hybi(buf, opcode=2, base64=False)

            sent = self.request.send(buf)

                self.print_traffic("<")

                self.print_traffic("<.")

        buf = self.request.recv(self.buffer_size)

            frame = self.decode_hybi(buf, base64=self.base64,

                                     logger=self.logger)

            #self.msg("Received buf: %s, frame: %s", repr(buf), frame)

            if frame['payload'] == None:

                # Incomplete/partial frame

                self.print_traffic("}.")

                if frame['left'] > 0:

                    self.recv_part = buf[-frame['left']:]

                break

                if frame['opcode'] == 0x8: # connection close

                    closed = {'code': frame['close_code'],

                              'reason': frame['close_reason']}

            self.print_traffic("}")

                    recbuf = WebSocketRequestHandler.unmask(buf, frame['hlen'],

        msg = pack(">H%ds" % len(reason), code, reason)

        buf, h, t = self.encode_hybi(msg, opcode=0x08, base64=False)

        self.request.send(buf)

    def do_websocket_handshake(self):

        h = self.headers

                self.send_error(400, "Unsupported protocol version %s" % ver)

                return False

                self.send_error(400, "Client must support 'binary' or 'base64' protocol")

                return False

            self.send_response(101, "Switching Protocols")

            self.send_header("Upgrade", "websocket")

            self.send_header("Connection", "Upgrade")

            self.send_header("Sec-WebSocket-Accept", b2s(accept))

                self.send_header("Sec-WebSocket-Protocol", "base64")

            else:

                self.send_header("Sec-WebSocket-Protocol", "binary")

            self.end_headers()

            return True

        else:

            self.send_error(400, "Missing Sec-WebSocket-Version header. Hixie protocols not supported.")

        return False

    def handle_websocket(self):

        """Upgrade a connection to Websocket, if requested. If this succeeds,

        new_websocket_client() will be called. Otherwise, False is returned.

        """

        if (self.headers.get('upgrade') and

            self.headers.get('upgrade').lower() == 'websocket'):

            if not self.do_websocket_handshake():

                return False

            # Indicate to server that a Websocket upgrade was done

            self.server.ws_connection = True

            # Initialize per client settings

            self.send_parts = []

            self.recv_part  = None

            self.start_time = int(time.time()*1000)

            # client_address is empty with, say, UNIX domain sockets

            client_addr = ""

            is_ssl = False

            try:

                client_addr = self.client_address[0]

                is_ssl = self.client_address[2]

            except IndexError:

                pass

            if is_ssl:

                self.stype = "SSL/TLS (wss://)"

                self.stype = "Plain non-SSL (ws://)"

            self.log_message("%s: %s WebSocket connection", client_addr,

                             self.stype)

            self.log_message("%s: Version %s, base64: '%s'", client_addr,

                             self.version, self.base64)

            if self.path != '/':

                self.log_message("%s: Path: '%s'", client_addr, self.path)

            if self.record:

                # Record raw frame data as JavaScript array

                fname = "%s.%s" % (self.record,

                                   self.handler_id)

                self.log_message("opening record file: %s", fname)

                self.rec = open(fname, 'w+')

                encoding = "binary"

                if self.base64: encoding = "base64"

                self.rec.write("var VNC_frame_encoding = '%s';\n"

                               % encoding)

                self.rec.write("var VNC_frame_data = [\n")

            try:

                self.new_websocket_client()

            except self.CClose:

                # Close the client

                _, exc, _ = sys.exc_info()

                self.send_close(exc.args[0], exc.args[1])

            return True

            return False

    def do_GET(self):

        """Handle GET request. Calls handle_websocket(). If unsuccessful,

        and web server is enabled, SimpleHTTPRequestHandler.do_GET will be called."""

        if not self.handle_websocket():

            if self.only_upgrade:

                self.send_error(405, "Method Not Allowed")

            else:

                SimpleHTTPRequestHandler.do_GET(self)

    def list_directory(self, path):

        if self.file_only:

            self.send_error(404, "No such file")

        else:

            return SimpleHTTPRequestHandler.list_directory(self, path)

    def new_websocket_client(self):

        """ Do something with a WebSockets client connection. """

        raise Exception("WebSocketRequestHandler.new_websocket_client() must be overloaded")

    def do_HEAD(self):

        if self.only_upgrade:

            self.send_error(405, "Method Not Allowed")

        else:

            SimpleHTTPRequestHandler.do_HEAD(self)

    def finish(self):

        if self.rec:

            self.rec.write("'EOF'];\n")

            self.rec.close()

    def handle(self):

        # When using run_once, we have a single process, so

        # we cannot loop in BaseHTTPRequestHandler.handle; we

        # must return and handle new connections

        if self.run_once:

            self.handle_one_request()

        else:

            SimpleHTTPRequestHandler.handle(self)

    def log_request(self, code='-', size='-'):

        if self.verbose:

            SimpleHTTPRequestHandler.log_request(self, code, size)

class WebSocketServer(object):

    """

    WebSockets server class.

    As an alternative, the standard library SocketServer can be used

    """

    policy_response = """<cross-domain-policy><allow-access-from domain="*" to-ports="*" /></cross-domain-policy>\n"""

    log_prefix = "websocket"

    # An exception before the WebSocket connection was established

    class EClose(Exception):

        pass

    class Terminate(Exception):

        pass

    def __init__(self, RequestHandlerClass, listen_host='',

                 listen_port=None, source_is_ipv6=False,

            verbose=False, cert='', key='', ssl_only=None,

            daemon=False, record='', web='',

            file_only=False,

            run_once=False, timeout=0, idle_timeout=0, traffic=False,

            tcp_keepalive=True, tcp_keepcnt=None, tcp_keepidle=None,

            tcp_keepintvl=None):

        # settings

        self.RequestHandlerClass = RequestHandlerClass

        self.verbose        = verbose

        self.listen_host    = listen_host

        self.listen_port    = listen_port

        self.prefer_ipv6    = source_is_ipv6

        self.ssl_only       = ssl_only

        self.daemon         = daemon

        self.run_once       = run_once

        self.timeout        = timeout

        self.idle_timeout   = idle_timeout

        self.traffic        = traffic

        self.launch_time    = time.time()

        self.ws_connection  = False

        self.handler_id     = 1

        self.logger         = self.get_logger()

        self.tcp_keepalive  = tcp_keepalive

        self.tcp_keepcnt    = tcp_keepcnt

        self.tcp_keepidle   = tcp_keepidle

        self.tcp_keepintvl  = tcp_keepintvl

        # Make paths settings absolute

        self.cert = os.path.abspath(cert)

        self.key = self.web = self.record = ''

        if key:

            self.key = os.path.abspath(key)

        if web:

            self.web = os.path.abspath(web)

        if record:

            self.record = os.path.abspath(record)

        if self.web:

            os.chdir(self.web)

        self.only_upgrade = not self.web

        # Sanity checks

        if not ssl and self.ssl_only:

            raise Exception("No 'ssl' module and SSL-only specified")

        if self.daemon and not resource:

            raise Exception("Module 'resource' required to daemonize")

        # Show configuration

        self.msg("WebSocket server settings:")

        self.msg("  - Listen on %s:%s",

                self.listen_host, self.listen_port)

        self.msg("  - Flash security policy server")

        if self.web:

            self.msg("  - Web server. Web root: %s", self.web)

        if ssl:

            if os.path.exists(self.cert):

                self.msg("  - SSL/TLS support")

                if self.ssl_only:

                    self.msg("  - Deny non-SSL/TLS connections")

                self.msg("  - No SSL/TLS support (no cert file)")

        else:

            self.msg("  - No SSL/TLS support (no 'ssl' module)")

        if self.daemon:

            self.msg("  - Backgrounding (daemon)")

        if self.record:

            self.msg("  - Recording to '%s.*'", self.record)

    #

    # WebSocketServer static methods

    #

    @staticmethod

    def get_logger():

        return logging.getLogger("%s.%s" % (

            WebSocketServer.log_prefix,

            WebSocketServer.__class__.__name__))

    @staticmethod

    def socket(host, port=None, connect=False, prefer_ipv6=False,

               unix_socket=None, use_ssl=False, tcp_keepalive=True,

               tcp_keepcnt=None, tcp_keepidle=None, tcp_keepintvl=None):

        """ Resolve a host (and optional port) to an IPv4 or IPv6

        address. Create a socket. Bind to it if listen is set,

        otherwise connect to it. Return the socket.

        """

        flags = 0

        if host == '':

            host = None

        if connect and not (port or unix_socket):

            raise Exception("Connect mode requires a port")

        if use_ssl and not ssl:

            raise Exception("SSL socket requested but Python SSL module not loaded.");

        if not connect and use_ssl:

            raise Exception("SSL only supported in connect mode (for now)")

        if not connect:

            flags = flags | socket.AI_PASSIVE

        if not unix_socket:

            addrs = socket.getaddrinfo(host, port, 0, socket.SOCK_STREAM,

                    socket.IPPROTO_TCP, flags)

            if not addrs:

                raise Exception("Could not resolve host '%s'" % host)

            addrs.sort(key=lambda x: x[0])

            if prefer_ipv6:

                addrs.reverse()

            sock = socket.socket(addrs[0][0], addrs[0][1])

            if  tcp_keepalive:

                sock.setsockopt(socket.SOL_SOCKET, socket.SO_KEEPALIVE, 1)

                if tcp_keepcnt:

                    sock.setsockopt(socket.SOL_TCP, socket.TCP_KEEPCNT,

                                    tcp_keepcnt)

                if tcp_keepidle:

                    sock.setsockopt(socket.SOL_TCP, socket.TCP_KEEPIDLE,

                                    tcp_keepidle)

                if tcp_keepintvl:

                    sock.setsockopt(socket.SOL_TCP, socket.TCP_KEEPINTVL,

                                    tcp_keepintvl)

            if connect:

                sock.connect(addrs[0][4])

                if use_ssl:

                    sock = ssl.wrap_socket(sock)

                sock.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)

                sock.bind(addrs[0][4])

                sock.listen(100)

        else:

            sock = socket.socket(socket.AF_UNIX, socket.SOCK_STREAM)

            sock.connect(unix_socket)

        return sock

    @staticmethod

    def daemonize(keepfd=None, chdir='/'):

        os.umask(0)

        if chdir:

            os.chdir(chdir)

        else:

            os.chdir('/')

        os.setgid(os.getgid())  # relinquish elevations

        os.setuid(os.getuid())  # relinquish elevations

        # Double fork to daemonize

        if os.fork() > 0: os._exit(0)  # Parent exits

        os.setsid()                    # Obtain new process group

        if os.fork() > 0: os._exit(0)  # Parent exits

        # Signal handling

        signal.signal(signal.SIGTERM, signal.SIG_IGN)

        signal.signal(signal.SIGINT, signal.SIG_IGN)

        # Close open files

        maxfd = resource.getrlimit(resource.RLIMIT_NOFILE)[1]

        if maxfd == resource.RLIM_INFINITY: maxfd = 256

        for fd in reversed(range(maxfd)):

            try:

                if fd != keepfd:

                    os.close(fd)

            except OSError:

                _, exc, _ = sys.exc_info()

                if exc.errno != errno.EBADF: raise

        # Redirect I/O to /dev/null

        os.dup2(os.open(os.devnull, os.O_RDWR), sys.stdin.fileno())

        os.dup2(os.open(os.devnull, os.O_RDWR), sys.stdout.fileno())

        os.dup2(os.open(os.devnull, os.O_RDWR), sys.stderr.fileno())

        # If the address is like (host, port), we are extending it

        # with a flag indicating SSL. Not many other options

        # available...

        if len(address) == 2:

            address = (address[0], address[1], (retsock != sock))

        self.RequestHandlerClass(retsock, address, self)

        # Return the WebSockets socket which may be SSL wrapped

        return retsock

    #

    # WebSocketServer logging/output functions

    #

    def msg(self, *args, **kwargs):

        """ Output message as info """

        self.logger.log(logging.INFO, *args, **kwargs)

    def vmsg(self, *args, **kwargs):

        """ Same as msg() but as debug. """

        self.logger.log(logging.DEBUG, *args, **kwargs)

    def warn(self, *args, **kwargs):

        """ Same as msg() but as warning. """

        self.logger.log(logging.WARN, *args, **kwargs)

    def terminate(self):

        raise self.Terminate()

    def multiprocessing_SIGCHLD(self, sig, stack):

        self.vmsg('Reaping zombies, active child count is %s', len(multiprocessing.active_children()))

        self.terminate()

    def do_SIGTERM(self, sig, stack):

        self.msg("Got SIGTERM, exiting")

        self.terminate()

        client = None

                client = self.do_handshake(startsock, address)

            except WebSocketServer.Terminate:

                raise

                self.vmsg("exception", exc_info=True)

            if client and client != startsock:

                client.close()

        is a WebSockets client then call new_websocket_client() method (which must

        lsock = self.socket(self.listen_host, self.listen_port, False,

                            self.prefer_ipv6,

                            tcp_keepalive=self.tcp_keepalive,

                            tcp_keepcnt=self.tcp_keepcnt,

                            tcp_keepidle=self.tcp_keepidle,

                            tcp_keepintvl=self.tcp_keepintvl)

        # Allow override of signals

        original_signals = {

            signal.SIGINT: signal.getsignal(signal.SIGINT),

            signal.SIGTERM: signal.getsignal(signal.SIGTERM),

            signal.SIGCHLD: signal.getsignal(signal.SIGCHLD),

        }

        signal.signal(signal.SIGTERM, self.do_SIGTERM)

        else:

            # make sure that _cleanup is called when children die

            # by calling active_children on SIGCHLD

            signal.signal(signal.SIGCHLD, self.multiprocessing_SIGCHLD)

        try:

            while True:

                        startsock = None

                        pid = err = 0

                        child_count = 0

                        if multiprocessing:

                            # Collect zombie child processes

                            child_count = len(multiprocessing.active_children())

                        time_elapsed = time.time() - self.launch_time

                        if self.timeout and time_elapsed > self.timeout:

                            self.msg('listener exit due to --timeout %s'

                                    % self.timeout)

                            break

                        if self.idle_timeout:

                            idle_time = 0

                            if child_count == 0:

                                idle_time = time.time() - last_active_time

                            else:

                                idle_time = 0

                                last_active_time = time.time()

                            if idle_time > self.idle_timeout and child_count == 0:

                                self.msg('listener exit due to --idle-timeout %s'

                                            % self.idle_timeout)

                                break

                        try:

                            self.poll()

                            ready = select.select([lsock], [], [], 1)[0]

                            if lsock in ready:

                                startsock, address = lsock.accept()

                            else:

                                continue

                        except self.Terminate:

                        except Exception:

                            _, exc, _ = sys.exc_info()

                            if hasattr(exc, 'errno'):

                                err = exc.errno

                            elif hasattr(exc, 'args'):

                                err = exc.args[0]

                            else:

                                err = exc[0]

                            if err == errno.EINTR:

                                self.vmsg("Ignoring interrupted syscall")

                                continue

                            else:

                                raise

                        if self.run_once:

                            # Run in same process if run_once

                            if self.ws_connection :

                                self.msg('%s: exiting due to --run-once'

                                        % address[0])

                                break

                        elif multiprocessing:

                            self.vmsg('%s: new handler Process' % address[0])

                            p = multiprocessing.Process(

                                    target=self.top_new_client,

                                    args=(startsock, address))

                            p.start()

                            # child will not return

                        else:

                            # python 2.4

                            self.vmsg('%s: forking handler' % address[0])

                            pid = os.fork()

                            if pid == 0:

                                # child handler process

                                self.top_new_client(startsock, address)

                                break  # child process exits

                        # parent process

                        self.handler_id += 1

                    except (self.Terminate, SystemExit, KeyboardInterrupt):

                        self.msg("In exit")

                        break

                    except Exception:

                        self.msg("handler exception: %s", str(exc))

                        self.vmsg("exception", exc_info=True)

                finally:

                    if startsock:

                        startsock.close()

        finally:

            # Close listen port

            self.vmsg("Closing socket listening at %s:%s",

                      self.listen_host, self.listen_port)

            lsock.close()

            # Restore signals

            for sig, func in original_signals.items():

                signal.signal(sig, func)