Package org.apache.tomcat.util.net
Class SecureNio2Channel
java.lang.Object
org.apache.tomcat.util.net.Nio2Channel
org.apache.tomcat.util.net.SecureNio2Channel
- All Implemented Interfaces:
Closeable
,AutoCloseable
,AsynchronousByteChannel
,AsynchronousChannel
,Channel
Implementation of a secure socket channel for NIO2.
-
Field Summary
Modifier and TypeFieldDescriptionprotected boolean
protected boolean
protected final Nio2Endpoint
protected ByteBuffer
protected ByteBuffer
protected boolean
protected SSLEngine
Fields inherited from class org.apache.tomcat.util.net.Nio2Channel
bufHandler, emptyBuf, sc, socketWrapper
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionvoid
close()
Sends an SSL close message, will not physically close the connection here.
To close the connection, you could do something likevoid
close
(boolean force) Close the connection.protected void
createSSLEngine
(String hostName, List<Cipher> clientRequestedCiphers, List<String> clientRequestedApplicationProtocols) flush()
Flush the channel.void
free()
Free the channel memoryint
Performs SSL handshake, non blocking, but performs NEED_TASK on the same thread.protected int
handshakeInternal
(boolean async) protected SSLEngineResult
Perform handshake unwrapprotected SSLEngineResult
Performs the WRAP functionboolean
boolean
protected int
read
(ByteBuffer dst) Reads a sequence of bytes from this channel into the given buffer.<A> void
read
(ByteBuffer[] dsts, int offset, int length, long timeout, TimeUnit unit, A attachment, CompletionHandler<Long, ? super A> handler) <A> void
read
(ByteBuffer dst, long timeout, TimeUnit unit, A attachment, CompletionHandler<Integer, ? super A> handler) void
Force a blocking handshake to take place for this key.void
reset
(AsynchronousSocketChannel channel, SocketWrapperBase<Nio2Channel> socket) Reset the channel.protected SSLEngineResult.HandshakeStatus
tasks()
Executes all the tasks needed on the same thread.write
(ByteBuffer src) Writes a sequence of bytes to this channel from the given buffer.<A> void
write
(ByteBuffer[] srcs, int offset, int length, long timeout, TimeUnit unit, A attachment, CompletionHandler<Long, ? super A> handler) <A> void
write
(ByteBuffer src, long timeout, TimeUnit unit, A attachment, CompletionHandler<Integer, ? super A> handler) Methods inherited from class org.apache.tomcat.util.net.Nio2Channel
getAppReadBufHandler, getBufHandler, getIOChannel, isOpen, read, setAppReadBufHandler, toString, write
-
Field Details
-
endpoint
-
netInBuffer
-
netOutBuffer
-
sslEngine
-
sniComplete
protected volatile boolean sniComplete -
closed
protected boolean closed -
closing
protected boolean closing
-
-
Constructor Details
-
SecureNio2Channel
-
-
Method Details
-
createSSLEngine
-
reset
public void reset(AsynchronousSocketChannel channel, SocketWrapperBase<Nio2Channel> socket) throws IOException Description copied from class:Nio2Channel
Reset the channel.- Overrides:
reset
in classNio2Channel
- Parameters:
channel
- The new async channel to associate with this NIO2 channelsocket
- The new socket to associate with this NIO2 channel- Throws:
IOException
- If a problem was encountered resetting the channel
-
free
public void free()Description copied from class:Nio2Channel
Free the channel memory- Overrides:
free
in classNio2Channel
-
flush
Flush the channel.- Overrides:
flush
in classNio2Channel
- Returns:
true
if the network buffer has been flushed out and is empty elsefalse
(as a future)
-
handshake
Performs SSL handshake, non blocking, but performs NEED_TASK on the same thread. Hence, you should never call this method using your Acceptor thread, as you would slow down your system significantly.The return for this operation is 0 if the handshake is complete and a positive value if it is not complete. In the event of a positive value coming back, the appropriate read/write will already have been called with an appropriate CompletionHandler.
- Overrides:
handshake
in classNio2Channel
- Returns:
- 0 if hand shake is complete, negative if the socket needs to close and positive if the handshake is incomplete
- Throws:
IOException
- if an error occurs during the handshake
-
handshakeInternal
- Throws:
IOException
-
processSNI
- Throws:
IOException
-
rehandshake
Force a blocking handshake to take place for this key. This requires that both network and application buffers have been emptied out prior to this call taking place, or a IOException will be thrown.- Throws:
IOException
- - if an IO exception occurs or if application or network buffers contain dataSocketTimeoutException
- - if a socket operation timed out
-
tasks
Executes all the tasks needed on the same thread.- Returns:
- the status
-
handshakeWrap
Performs the WRAP function- Returns:
- the result
- Throws:
IOException
- An IO error occurred
-
handshakeUnwrap
Perform handshake unwrap- Returns:
- the result
- Throws:
IOException
- An IO error occurred
-
getSSLSupport
-
close
Sends an SSL close message, will not physically close the connection here.
To close the connection, you could do something likeclose(); while (isOpen() && !myTimeoutFunction()) Thread.sleep(25); if ( isOpen() ) close(true); //forces a close if you timed out
- Specified by:
close
in interfaceAsynchronousChannel
- Specified by:
close
in interfaceAutoCloseable
- Specified by:
close
in interfaceChannel
- Specified by:
close
in interfaceCloseable
- Overrides:
close
in classNio2Channel
- Throws:
IOException
- if an I/O error occursIOException
- if there is data on the outgoing network buffer and we are unable to flush it
-
close
Description copied from class:Nio2Channel
Close the connection.- Overrides:
close
in classNio2Channel
- Parameters:
force
- Should the underlying socket be forcibly closed?- Throws:
IOException
- If closing the secure channel fails.
-
read
Reads a sequence of bytes from this channel into the given buffer.- Specified by:
read
in interfaceAsynchronousByteChannel
- Overrides:
read
in classNio2Channel
- Parameters:
dst
- The buffer into which bytes are to be transferred- Returns:
- The number of bytes read, possibly zero, or
-1
if the channel has reached end-of-stream - Throws:
IllegalStateException
- if the handshake was not completed
-
write
Writes a sequence of bytes to this channel from the given buffer.- Specified by:
write
in interfaceAsynchronousByteChannel
- Overrides:
write
in classNio2Channel
- Parameters:
src
- The buffer from which bytes are to be retrieved- Returns:
- The number of bytes written, possibly zero
-
read
public <A> void read(ByteBuffer dst, long timeout, TimeUnit unit, A attachment, CompletionHandler<Integer, ? super A> handler) - Overrides:
read
in classNio2Channel
-
read
public <A> void read(ByteBuffer[] dsts, int offset, int length, long timeout, TimeUnit unit, A attachment, CompletionHandler<Long, ? super A> handler) - Overrides:
read
in classNio2Channel
-
write
public <A> void write(ByteBuffer src, long timeout, TimeUnit unit, A attachment, CompletionHandler<Integer, ? super A> handler) - Overrides:
write
in classNio2Channel
-
write
public <A> void write(ByteBuffer[] srcs, int offset, int length, long timeout, TimeUnit unit, A attachment, CompletionHandler<Long, ? super A> handler) - Overrides:
write
in classNio2Channel
-
isHandshakeComplete
public boolean isHandshakeComplete()- Overrides:
isHandshakeComplete
in classNio2Channel
-
isClosing
public boolean isClosing()- Overrides:
isClosing
in classNio2Channel
-
getSslEngine
-
getEmptyBuf
-