| /* |
| * Licensed to the Apache Software Foundation (ASF) under one or more |
| * contributor license agreements. See the NOTICE file distributed with |
| * this work for additional information regarding copyright ownership. |
| * The ASF licenses this file to You under the Apache License, Version 2.0 |
| * (the "License"); you may not use this file except in compliance with |
| * the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| package org.apache.coyote.http11; |
| |
| import java.io.IOException; |
| import java.net.InetAddress; |
| import java.nio.channels.SelectionKey; |
| |
| import javax.net.ssl.SSLEngine; |
| |
| import org.apache.coyote.ActionCode; |
| import org.apache.coyote.ErrorState; |
| import org.apache.coyote.http11.filters.BufferedInputFilter; |
| import org.apache.juli.logging.Log; |
| import org.apache.juli.logging.LogFactory; |
| import org.apache.tomcat.util.net.NioChannel; |
| import org.apache.tomcat.util.net.NioEndpoint; |
| import org.apache.tomcat.util.net.NioEndpoint.NioSocketWrapper; |
| import org.apache.tomcat.util.net.SSLSupport; |
| import org.apache.tomcat.util.net.SecureNioChannel; |
| import org.apache.tomcat.util.net.SocketWrapperBase; |
| |
| |
| /** |
| * Processes HTTP requests. |
| * |
| * @author Remy Maucherat |
| */ |
| public class Http11NioProcessor extends AbstractHttp11Processor<NioChannel> { |
| |
| private static final Log log = LogFactory.getLog(Http11NioProcessor.class); |
| @Override |
| protected Log getLog() { |
| return log; |
| } |
| |
| |
| /** |
| * SSL information. |
| */ |
| protected SSLSupport sslSupport; |
| |
| // ----------------------------------------------------------- Constructors |
| |
| |
| public Http11NioProcessor(int maxHttpHeaderSize, NioEndpoint endpoint, |
| int maxTrailerSize, int maxExtensionSize, int maxSwallowSize) { |
| |
| super(endpoint); |
| |
| inputBuffer = new InternalNioInputBuffer(request, maxHttpHeaderSize); |
| request.setInputBuffer(getInputBuffer()); |
| |
| outputBuffer = new InternalNioOutputBuffer(response, maxHttpHeaderSize); |
| response.setOutputBuffer(getOutputBuffer()); |
| |
| initializeFilters(maxTrailerSize, maxExtensionSize, maxSwallowSize); |
| } |
| |
| |
| // ----------------------------------------------------- Instance Variables |
| |
| /** |
| * Sendfile data. |
| */ |
| protected NioEndpoint.SendfileData sendfileData = null; |
| |
| |
| // --------------------------------------------------------- Public Methods |
| |
| @Override |
| protected void registerForEvent(boolean read, boolean write) { |
| final NioChannel socket = socketWrapper.getSocket(); |
| |
| int interestOps = 0; |
| if (read) { |
| interestOps = SelectionKey.OP_READ; |
| } |
| if (write) { |
| interestOps = interestOps | SelectionKey.OP_WRITE; |
| } |
| socket.getPoller().add(socket, interestOps); |
| } |
| |
| |
| @Override |
| protected void resetTimeouts() { |
| final NioEndpoint.NioSocketWrapper attach = (NioEndpoint.NioSocketWrapper)socketWrapper.getSocket().getAttachment(); |
| if (!getErrorState().isError() && attach != null && |
| asyncStateMachine.isAsyncDispatching()) { |
| long soTimeout = endpoint.getSoTimeout(); |
| |
| //reset the timeout |
| if (keepAlive) { |
| attach.setTimeout(keepAliveTimeout); |
| } else { |
| attach.setTimeout(soTimeout); |
| } |
| } |
| } |
| |
| |
| @Override |
| protected boolean handleIncompleteRequestLineRead() { |
| // Haven't finished reading the request so keep the socket |
| // open |
| openSocket = true; |
| // Check to see if we have read any of the request line yet |
| if (((InternalNioInputBuffer) |
| getInputBuffer()).getParsingRequestLinePhase() < 2) { |
| if (keptAlive) { |
| // Haven't read the request line and have previously processed a |
| // request. Must be keep-alive. Make sure poller uses keepAlive. |
| socketWrapper.setTimeout(endpoint.getKeepAliveTimeout()); |
| } |
| } else { |
| if (endpoint.isPaused()) { |
| // Partially processed the request so need to respond |
| response.setStatus(503); |
| setErrorState(ErrorState.CLOSE_CLEAN, null); |
| getAdapter().log(request, response, 0); |
| return false; |
| } else { |
| // Need to keep processor associated with socket |
| readComplete = false; |
| // Make sure poller uses soTimeout from here onwards |
| socketWrapper.setTimeout(endpoint.getSoTimeout()); |
| } |
| } |
| return true; |
| } |
| |
| |
| @Override |
| protected void setSocketTimeout(int timeout) throws IOException { |
| socketWrapper.getSocket().getIOChannel().socket().setSoTimeout(timeout); |
| } |
| |
| |
| @Override |
| protected boolean breakKeepAliveLoop(SocketWrapperBase<NioChannel> socketWrapper) { |
| openSocket = keepAlive; |
| // Do sendfile as needed: add socket to sendfile and end |
| if (sendfileData != null && !getErrorState().isError()) { |
| ((NioSocketWrapper) socketWrapper).setSendfileData(sendfileData); |
| sendfileData.keepAlive = keepAlive; |
| SelectionKey key = socketWrapper.getSocket().getIOChannel().keyFor( |
| socketWrapper.getSocket().getPoller().getSelector()); |
| //do the first write on this thread, might as well |
| if (socketWrapper.getSocket().getPoller().processSendfile(key, |
| (NioSocketWrapper) socketWrapper, true)) { |
| sendfileInProgress = true; |
| } else { |
| // Write failed |
| if (log.isDebugEnabled()) { |
| log.debug(sm.getString("http11processor.sendfile.error")); |
| } |
| setErrorState(ErrorState.CLOSE_NOW, null); |
| } |
| return true; |
| } |
| return false; |
| } |
| |
| |
| @Override |
| public void recycleInternal() { |
| sendfileData = null; |
| } |
| |
| |
| // ----------------------------------------------------- ActionHook Methods |
| |
| /** |
| * Send an action to the connector. |
| * |
| * @param actionCode Type of the action |
| * @param param Action parameter |
| */ |
| @Override |
| @SuppressWarnings("incomplete-switch") // Other cases are handled by action() |
| public void actionInternal(ActionCode actionCode, Object param) { |
| |
| switch (actionCode) { |
| case REQ_HOST_ADDR_ATTRIBUTE: { |
| if (socketWrapper == null) { |
| request.remoteAddr().recycle(); |
| } else { |
| if (socketWrapper.getRemoteAddr() == null) { |
| InetAddress inetAddr = socketWrapper.getSocket().getIOChannel().socket().getInetAddress(); |
| if (inetAddr != null) { |
| socketWrapper.setRemoteAddr(inetAddr.getHostAddress()); |
| } |
| } |
| request.remoteAddr().setString(socketWrapper.getRemoteAddr()); |
| } |
| break; |
| } |
| case REQ_LOCAL_NAME_ATTRIBUTE: { |
| if (socketWrapper == null) { |
| request.localName().recycle(); |
| } else { |
| if (socketWrapper.getLocalName() == null) { |
| InetAddress inetAddr = socketWrapper.getSocket().getIOChannel().socket().getLocalAddress(); |
| if (inetAddr != null) { |
| socketWrapper.setLocalName(inetAddr.getHostName()); |
| } |
| } |
| request.localName().setString(socketWrapper.getLocalName()); |
| } |
| break; |
| } |
| case REQ_HOST_ATTRIBUTE: { |
| if (socketWrapper == null) { |
| request.remoteHost().recycle(); |
| } else { |
| if (socketWrapper.getRemoteHost() == null) { |
| InetAddress inetAddr = socketWrapper.getSocket().getIOChannel().socket().getInetAddress(); |
| if (inetAddr != null) { |
| socketWrapper.setRemoteHost(inetAddr.getHostName()); |
| } |
| if (socketWrapper.getRemoteHost() == null) { |
| if (socketWrapper.getRemoteAddr() == null && |
| inetAddr != null) { |
| socketWrapper.setRemoteAddr(inetAddr.getHostAddress()); |
| } |
| if (socketWrapper.getRemoteAddr() != null) { |
| socketWrapper.setRemoteHost(socketWrapper.getRemoteAddr()); |
| } |
| } |
| } |
| request.remoteHost().setString(socketWrapper.getRemoteHost()); |
| } |
| break; |
| } |
| case REQ_LOCAL_ADDR_ATTRIBUTE: { |
| if (socketWrapper == null) { |
| request.localAddr().recycle(); |
| } else { |
| if (socketWrapper.getLocalAddr() == null) { |
| socketWrapper.setLocalAddr( |
| socketWrapper.getSocket().getIOChannel().socket().getLocalAddress().getHostAddress()); |
| } |
| request.localAddr().setString(socketWrapper.getLocalAddr()); |
| } |
| break; |
| } |
| case REQ_REMOTEPORT_ATTRIBUTE: { |
| if (socketWrapper == null) { |
| request.setRemotePort(0); |
| } else { |
| if (socketWrapper.getRemotePort() == -1) { |
| socketWrapper.setRemotePort(socketWrapper.getSocket().getIOChannel().socket().getPort()); |
| } |
| request.setRemotePort(socketWrapper.getRemotePort()); |
| } |
| break; |
| } |
| case REQ_LOCALPORT_ATTRIBUTE: { |
| if (socketWrapper == null) { |
| request.setLocalPort(0); |
| } else { |
| if (socketWrapper.getLocalPort() == -1) { |
| socketWrapper.setLocalPort(socketWrapper.getSocket().getIOChannel().socket().getLocalPort()); |
| } |
| request.setLocalPort(socketWrapper.getLocalPort()); |
| } |
| break; |
| } |
| case REQ_SSL_ATTRIBUTE: { |
| try { |
| if (sslSupport != null) { |
| Object sslO = sslSupport.getCipherSuite(); |
| if (sslO != null) { |
| request.setAttribute |
| (SSLSupport.CIPHER_SUITE_KEY, sslO); |
| } |
| sslO = sslSupport.getPeerCertificateChain(false); |
| if (sslO != null) { |
| request.setAttribute |
| (SSLSupport.CERTIFICATE_KEY, sslO); |
| } |
| sslO = sslSupport.getKeySize(); |
| if (sslO != null) { |
| request.setAttribute |
| (SSLSupport.KEY_SIZE_KEY, sslO); |
| } |
| sslO = sslSupport.getSessionId(); |
| if (sslO != null) { |
| request.setAttribute |
| (SSLSupport.SESSION_ID_KEY, sslO); |
| } |
| request.setAttribute(SSLSupport.SESSION_MGR, sslSupport); |
| } |
| } catch (Exception e) { |
| log.warn(sm.getString("http11processor.socket.ssl"), e); |
| } |
| break; |
| } |
| case REQ_SSL_CERTIFICATE: { |
| if (sslSupport != null) { |
| /* |
| * Consume and buffer the request body, so that it does not |
| * interfere with the client's handshake messages |
| */ |
| InputFilter[] inputFilters = getInputBuffer().getFilters(); |
| ((BufferedInputFilter) inputFilters[Constants.BUFFERED_FILTER]) |
| .setLimit(maxSavePostSize); |
| getInputBuffer().addActiveFilter |
| (inputFilters[Constants.BUFFERED_FILTER]); |
| SecureNioChannel sslChannel = (SecureNioChannel) socketWrapper.getSocket(); |
| SSLEngine engine = sslChannel.getSslEngine(); |
| if (!engine.getNeedClientAuth()) { |
| // Need to re-negotiate SSL connection |
| engine.setNeedClientAuth(true); |
| try { |
| sslChannel.rehandshake(endpoint.getSoTimeout()); |
| sslSupport = ((NioEndpoint)endpoint).getHandler() |
| .getSslImplementation().getSSLSupport( |
| engine.getSession()); |
| } catch (IOException ioe) { |
| log.warn(sm.getString("http11processor.socket.sslreneg",ioe)); |
| } |
| } |
| |
| try { |
| // use force=false since re-negotiation is handled above |
| // (and it is a NO-OP for NIO anyway) |
| Object sslO = sslSupport.getPeerCertificateChain(false); |
| if( sslO != null) { |
| request.setAttribute |
| (SSLSupport.CERTIFICATE_KEY, sslO); |
| } |
| } catch (Exception e) { |
| log.warn(sm.getString("http11processor.socket.ssl"), e); |
| } |
| } |
| break; |
| } |
| } |
| } |
| |
| |
| // ------------------------------------------------------ Protected Methods |
| |
| |
| @Override |
| protected void prepareRequestInternal() { |
| sendfileData = null; |
| } |
| |
| @Override |
| protected boolean prepareSendfile(OutputFilter[] outputFilters) { |
| String fileName = (String) request.getAttribute( |
| org.apache.coyote.Constants.SENDFILE_FILENAME_ATTR); |
| if (fileName != null) { |
| // No entity body sent here |
| getOutputBuffer().addActiveFilter(outputFilters[Constants.VOID_FILTER]); |
| contentDelimitation = true; |
| sendfileData = new NioEndpoint.SendfileData(); |
| sendfileData.fileName = fileName; |
| sendfileData.pos = ((Long) request.getAttribute( |
| org.apache.coyote.Constants.SENDFILE_FILE_START_ATTR)).longValue(); |
| sendfileData.length = ((Long) request.getAttribute( |
| org.apache.coyote.Constants.SENDFILE_FILE_END_ATTR)).longValue() - sendfileData.pos; |
| return true; |
| } |
| return false; |
| } |
| |
| /** |
| * Set the SSL information for this HTTP connection. |
| */ |
| @Override |
| public void setSslSupport(SSLSupport sslSupport) { |
| this.sslSupport = sslSupport; |
| } |
| |
| } |
