| blob | c24ad750f211401402106520ff115b4a6e24e880 |
1 // Copyright 2009 The Go Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style
3 // license that can be found in the LICENSE file.
5 // HTTP server. See RFC 7230 through 7235.
7 package http
10 "bufio"
11 "bytes"
12 "context"
13 "crypto/tls"
14 "errors"
15 "fmt"
16 "io"
17 "io/ioutil"
18 "log"
19 "net"
20 "net/textproto"
21 "net/url"
22 "os"
23 "path"
24 "runtime"
25 "strconv"
26 "strings"
27 "sync"
28 "sync/atomic"
29 "time"
31 "golang_org/x/net/http/httpguts"
32 )
34 // Errors used by the HTTP server.
36 // ErrBodyNotAllowed is returned by ResponseWriter.Write calls
37 // when the HTTP method or response code does not permit a
38 // body.
39 ErrBodyNotAllowed = errors.New("http: request method or response status code does not allow body")
41 // ErrHijacked is returned by ResponseWriter.Write calls when
42 // the underlying connection has been hijacked using the
43 // Hijacker interface. A zero-byte write on a hijacked
44 // connection will return ErrHijacked without any other side
45 // effects.
48 // ErrContentLength is returned by ResponseWriter.Write calls
49 // when a Handler set a Content-Length response header with a
50 // declared size and then attempted to write more bytes than
51 // declared.
54 // Deprecated: ErrWriteAfterFlush is no longer returned by
55 // anything in the net/http package. Callers should not
56 // compare errors against this variable.
58 )
60 // A Handler responds to an HTTP request.
61 //
62 // ServeHTTP should write reply headers and data to the ResponseWriter
63 // and then return. Returning signals that the request is finished; it
64 // is not valid to use the ResponseWriter or read from the
65 // Request.Body after or concurrently with the completion of the
66 // ServeHTTP call.
67 //
68 // Depending on the HTTP client software, HTTP protocol version, and
69 // any intermediaries between the client and the Go server, it may not
70 // be possible to read from the Request.Body after writing to the
71 // ResponseWriter. Cautious handlers should read the Request.Body
72 // first, and then reply.
73 //
74 // Except for reading the body, handlers should not modify the
75 // provided Request.
76 //
77 // If ServeHTTP panics, the server (the caller of ServeHTTP) assumes
78 // that the effect of the panic was isolated to the active request.
79 // It recovers the panic, logs a stack trace to the server error log,
80 // and either closes the network connection or sends an HTTP/2
81 // RST_STREAM, depending on the HTTP protocol. To abort a handler so
82 // the client sees an interrupted response but the server doesn't log
83 // an error, panic with the value ErrAbortHandler.
86 }
88 // A ResponseWriter interface is used by an HTTP handler to
89 // construct an HTTP response.
90 //
91 // A ResponseWriter may not be used after the Handler.ServeHTTP method
92 // has returned.
94 // Header returns the header map that will be sent by
95 // WriteHeader. The Header map also is the mechanism with which
96 // Handlers can set HTTP trailers.
97 //
98 // Changing the header map after a call to WriteHeader (or
99 // Write) has no effect unless the modified headers are
100 // trailers.
101 //
102 // There are two ways to set Trailers. The preferred way is to
103 // predeclare in the headers which trailers you will later
104 // send by setting the "Trailer" header to the names of the
105 // trailer keys which will come later. In this case, those
106 // keys of the Header map are treated as if they were
107 // trailers. See the example. The second way, for trailer
108 // keys not known to the Handler until after the first Write,
109 // is to prefix the Header map keys with the TrailerPrefix
110 // constant value. See TrailerPrefix.
111 //
112 // To suppress automatic response headers (such as "Date"), set
113 // their value to nil.
116 // Write writes the data to the connection as part of an HTTP reply.
117 //
118 // If WriteHeader has not yet been called, Write calls
119 // WriteHeader(http.StatusOK) before writing the data. If the Header
120 // does not contain a Content-Type line, Write adds a Content-Type set
121 // to the result of passing the initial 512 bytes of written data to
122 // DetectContentType. Additionally, if the total size of all written
123 // data is under a few KB and there are no Flush calls, the
124 // Content-Length header is added automatically.
125 //
126 // Depending on the HTTP protocol version and the client, calling
127 // Write or WriteHeader may prevent future reads on the
128 // Request.Body. For HTTP/1.x requests, handlers should read any
129 // needed request body data before writing the response. Once the
130 // headers have been flushed (due to either an explicit Flusher.Flush
131 // call or writing enough data to trigger a flush), the request body
132 // may be unavailable. For HTTP/2 requests, the Go HTTP server permits
133 // handlers to continue to read the request body while concurrently
134 // writing the response. However, such behavior may not be supported
135 // by all HTTP/2 clients. Handlers should read before writing if
136 // possible to maximize compatibility.
139 // WriteHeader sends an HTTP response header with the provided
140 // status code.
141 //
142 // If WriteHeader is not called explicitly, the first call to Write
143 // will trigger an implicit WriteHeader(http.StatusOK).
144 // Thus explicit calls to WriteHeader are mainly used to
145 // send error codes.
146 //
147 // The provided code must be a valid HTTP 1xx-5xx status code.
148 // Only one header may be written. Go does not currently
149 // support sending user-defined 1xx informational headers,
150 // with the exception of 100-continue response header that the
151 // Server sends automatically when the Request.Body is read.
153 }
155 // The Flusher interface is implemented by ResponseWriters that allow
156 // an HTTP handler to flush buffered data to the client.
157 //
158 // The default HTTP/1.x and HTTP/2 ResponseWriter implementations
159 // support Flusher, but ResponseWriter wrappers may not. Handlers
160 // should always test for this ability at runtime.
161 //
162 // Note that even for ResponseWriters that support Flush,
163 // if the client is connected through an HTTP proxy,
164 // the buffered data may not reach the client until the response
165 // completes.
167 // Flush sends any buffered data to the client.
169 }
171 // The Hijacker interface is implemented by ResponseWriters that allow
172 // an HTTP handler to take over the connection.
173 //
174 // The default ResponseWriter for HTTP/1.x connections supports
175 // Hijacker, but HTTP/2 connections intentionally do not.
176 // ResponseWriter wrappers may also not support Hijacker. Handlers
177 // should always test for this ability at runtime.
179 // Hijack lets the caller take over the connection.
180 // After a call to Hijack the HTTP server library
181 // will not do anything else with the connection.
182 //
183 // It becomes the caller's responsibility to manage
184 // and close the connection.
185 //
186 // The returned net.Conn may have read or write deadlines
187 // already set, depending on the configuration of the
188 // Server. It is the caller's responsibility to set
189 // or clear those deadlines as needed.
190 //
191 // The returned bufio.Reader may contain unprocessed buffered
192 // data from the client.
193 //
194 // After a call to Hijack, the original Request.Body must not
195 // be used. The original Request's Context remains valid and
196 // is not canceled until the Request's ServeHTTP method
197 // returns.
199 }
201 // The CloseNotifier interface is implemented by ResponseWriters which
202 // allow detecting when the underlying connection has gone away.
203 //
204 // This mechanism can be used to cancel long operations on the server
205 // if the client has disconnected before the response is ready.
206 //
207 // Deprecated: the CloseNotifier interface predates Go's context package.
208 // New code should use Request.Context instead.
210 // CloseNotify returns a channel that receives at most a
211 // single value (true) when the client connection has gone
212 // away.
213 //
214 // CloseNotify may wait to notify until Request.Body has been
215 // fully read.
216 //
217 // After the Handler has returned, there is no guarantee
218 // that the channel receives a value.
219 //
220 // If the protocol is HTTP/1.1 and CloseNotify is called while
221 // processing an idempotent request (such a GET) while
222 // HTTP/1.1 pipelining is in use, the arrival of a subsequent
223 // pipelined request may cause a value to be sent on the
224 // returned channel. In practice HTTP/1.1 pipelining is not
225 // enabled in browsers and not seen often in the wild. If this
226 // is a problem, use HTTP/2 or only use CloseNotify on methods
227 // such as POST.
229 }
232 // ServerContextKey is a context key. It can be used in HTTP
233 // handlers with context.WithValue to access the server that
234 // started the handler. The associated value will be of
235 // type *Server.
238 // LocalAddrContextKey is a context key. It can be used in
239 // HTTP handlers with context.WithValue to access the local
240 // address the connection arrived on.
241 // The associated value will be of type net.Addr.
243 )
245 // A conn represents the server side of an HTTP connection.
247 // server is the server on which the connection arrived.
248 // Immutable; never nil.
249 server *Server
251 // cancelCtx cancels the connection-level context.
252 cancelCtx context.CancelFunc
254 // rwc is the underlying network connection.
255 // This is never wrapped by other types and is the value given out
256 // to CloseNotifier callers. It is usually of type *net.TCPConn or
257 // *tls.Conn.
258 rwc net.Conn
260 // remoteAddr is rwc.RemoteAddr().String(). It is not populated synchronously
261 // inside the Listener's Accept goroutine, as some implementations block.
262 // It is populated immediately inside the (*conn).serve goroutine.
263 // This is the value of a Handler's (*Request).RemoteAddr.
264 remoteAddr string
266 // tlsState is the TLS connection state when using TLS.
267 // nil means not TLS.
270 // werr is set to the first write error to rwc.
271 // It is set via checkConnErrorWriter{w}, where bufw writes.
272 werr error
274 // r is bufr's read source. It's a wrapper around rwc that provides
275 // io.LimitedReader-style limiting (while reading request headers)
276 // and functionality to support CloseNotifier. See *connReader docs.
277 r *connReader
279 // bufr reads from r.
282 // bufw writes to checkConnErrorWriter{c}, which populates werr on error.
285 // lastMethod is the method of the most recent request
286 // on this connection, if any.
287 lastMethod string
293 // mu guards hijackedv
294 mu sync.Mutex
296 // hijackedv is whether this connection has been hijacked
297 // by a Handler with the Hijacker interface.
298 // It is guarded by mu.
299 hijackedv bool
300 }
306 }
308 // c.mu must be held.
312 }
323 }
324 }
326 return
327 }
329 // This should be >= 512 bytes for DetectContentType,
330 // but otherwise it's somewhat arbitrary.
333 // chunkWriter writes to a response's conn buffer, and is the writer
334 // wrapped by the response.bufw buffered writer.
335 //
336 // chunkWriter also is responsible for finalizing the Header, including
337 // conditionally setting the Content-Type and setting a Content-Length
338 // in cases where the handler's final output is smaller than the buffer
339 // size. It also conditionally adds chunk headers, when in chunking mode.
340 //
341 // See the comment above (*response).Write for the entire write flow.
343 res *response
345 // header is either nil or a deep clone of res.handlerHeader
346 // at the time of res.writeHeader, if res.writeHeader is
347 // called and extra buffering is being done to calculate
348 // Content-Type and/or Content-Length.
349 header Header
351 // wroteHeader tells whether the header's been written to "the
352 // wire" (or rather: w.conn.buf). this is unlike
353 // (*response).wroteHeader, which tells only whether it was
354 // logically written.
355 wroteHeader bool
357 // set by the writeHeader method:
359 }
364 )
369 }
371 // Eat writes.
373 }
378 return
379 }
380 }
384 }
387 }
388 return
389 }
394 }
396 }
401 }
404 // zero chunk to mark EOF
408 }
409 // final blank line after the trailers (whether
410 // present or not)
412 }
413 }
415 // A response represents the server side of an HTTP response.
417 conn *conn
419 reqBody io.ReadCloser
427 cw chunkWriter
429 // handlerHeader is the Header that Handlers get access to,
430 // which may be retained and mutated even after WriteHeader.
431 // handlerHeader is copied into cw.header at WriteHeader
432 // time, and privately mutated thereafter.
433 handlerHeader Header
440 // close connection after this reply. set on request and
441 // updated after response from handler if there's a
442 // "Connection: keep-alive" response header and a
443 // Content-Length.
444 closeAfterReply bool
446 // requestBodyLimitHit is set by requestTooLarge when
447 // maxBytesReader hits its max size. It is checked in
448 // WriteHeader, to make sure we don't consume the
449 // remaining request body to try to advance to the next HTTP
450 // request. Instead, when this is set, we stop reading
451 // subsequent requests on this connection and stop reading
452 // input from it.
453 requestBodyLimitHit bool
455 // trailers are the headers to be sent after the handler
456 // finishes writing the body. This field is initialized from
457 // the Trailer response header when the response header is
458 // written.
461 handlerDone atomicBool // set true when the handler exits
463 // Buffers for Date, Content-Length, and status code
468 // closeNotifyCh is the channel returned by CloseNotify.
469 // TODO(bradfitz): this is currently (for Go 1.8) always
470 // non-nil. Make this lazily-created again as it used to be?
473 }
475 // TrailerPrefix is a magic prefix for ResponseWriter.Header map keys
476 // that, if present, signals that the map entry is actually for
477 // the response trailers, and not the response headers. The prefix
478 // is stripped after the ServeHTTP call finishes and the values are
479 // sent in the trailers.
480 //
481 // This mechanism is intended only for trailers that are not known
482 // prior to the headers being written. If the set of trailers is fixed
483 // or known before the header is written, the normal Go trailers mechanism
484 // is preferred:
485 // https://golang.org/pkg/net/http/#ResponseWriter
486 // https://golang.org/pkg/net/http/#example_ResponseWriter_trailers
489 // finalTrailers is called after the Handler exits and returns a non-nil
490 // value if the Handler set any trailers.
492 var t Header
497 }
499 }
500 }
504 }
507 }
508 }
509 return t
510 }
517 // declareTrailer is called for each Trailer header when the
518 // response header is written. It notes that a header will need to be
519 // written in the trailers at the end of the response.
523 // Forbidden by RFC 7230, section 4.1.2
524 return
525 }
527 }
529 // requestTooLarge is called by maxBytesReader when too much input has
530 // been read from the client.
536 }
537 }
539 // needsSniff reports whether a Content-Type still needs to be sniffed.
543 }
545 // writerOnly hides an io.Writer value's optional ReadFrom method
546 // from io.Copy.
548 io.Writer
549 }
557 }
562 return
563 }
564 }
566 // ReadFrom is here to optimize copying from an *os.File regular file
567 // to a *net.TCPConn with sendfile.
569 // Our underlying w.conn.rwc is usually a *TCPConn (with its
570 // own ReadFrom method). If not, or if our src isn't a regular
571 // file, just fall back to the normal copy method.
576 }
581 }
583 // sendfile path:
587 }
591 n += n0
594 }
595 }
600 // Now that cw has been flushed, its chunking field is guaranteed initialized.
603 n += n0
606 }
609 n += n0
611 }
613 // debugServerConnections controls whether all server connections are wrapped
614 // with a verbose logging wrapper.
617 // Create new connection from rwc.
622 }
625 }
626 return c
627 }
630 n int
631 err error
633 }
635 // connReader is the io.Reader wrapper used by *conn. It combines a
636 // selectively-activated io.LimitedReader (to bound request header
637 // read sizes) with support for selectively keeping an io.Reader.Read
638 // call blocked in a background goroutine to wait for activity and
639 // trigger a CloseNotifier channel.
641 conn *conn
644 hasByte bool
647 inRead bool
650 }
656 }
657 }
666 }
668 return
669 }
673 }
680 // We were past the end of the previous request's body already
681 // (since we wouldn't be in a background read otherwise), so
682 // this is a pipelined HTTP request. Prior to Go 1.11 we used to
683 // send on the CloseNotify channel and cancel the context here,
684 // but the behavior was documented as only "may", and we only
685 // did that because that's how CloseNotify accidentally behaved
686 // in very early Go releases prior to context support. Once we
687 // added context support, people used a Handler's
688 // Request.Context() and passed it along. Having that context
689 // cancel on pipelined HTTP requests caused problems.
690 // Fortunately, almost nothing uses HTTP/1.x pipelining.
691 // Unfortunately, apt-get does, or sometimes does.
692 // New Go 1.11 behavior: don't fire CloseNotify or cancel
693 // contexts on pipelined requests. Shouldn't affect people, but
694 // fixes cases like Issue 23921. This does mean that a client
695 // closing their TCP connection after sending a pipelined
696 // request won't cancel the context, but we'll catch that on any
697 // write failure (in checkConnErrorWriter.Write).
698 // If the server never writes, yes, there are still contrived
699 // server & client behaviors where this fails to ever cancel the
700 // context, but that's kinda why HTTP/1.x pipelining died
701 // anyway.
702 }
704 // Ignore this error. It's the expected error from
705 // another goroutine calling abortPendingRead.
708 }
713 }
719 return
720 }
725 }
727 }
733 // handleReadError is called whenever a Read from the client returns a
734 // non-nil error.
735 //
736 // The provided non-nil err is almost always io.EOF or a "use of
737 // closed network connection". In any case, the error is not
738 // particularly interesting, except perhaps for debugging during
739 // development. Any error means the connection is dead and we should
740 // down its context.
741 //
742 // It may be called from multiple goroutines.
746 }
748 // may be called from multiple goroutines.
754 }
755 }
756 }
764 }
766 }
770 }
774 }
777 }
783 }
792 }
798 }
801 bufioReaderPool sync.Pool
802 bufioWriter2kPool sync.Pool
803 bufioWriter4kPool sync.Pool
804 )
810 },
811 }
819 }
821 }
827 return br
828 }
829 // Note: if this reader size is ever changed, update
830 // TestHandlerBodyClose's assumptions.
832 }
837 }
845 return bw
846 }
847 }
849 }
855 }
856 }
858 // DefaultMaxHeaderBytes is the maximum permitted size of the headers
859 // in an HTTP request.
860 // This can be overridden by setting Server.MaxHeaderBytes.
866 }
867 return DefaultMaxHeaderBytes
868 }
872 }
874 // wrapper around io.ReadCloser which on first read, sends an
875 // HTTP/1.1 100 Continue header
877 resp *response
878 readCloser io.ReadCloser
879 closed bool
880 sawEOF bool
881 }
886 }
891 }
895 }
896 return
897 }
902 }
904 // TimeFormat is the time format to use when generating times in HTTP
905 // headers. It is like time.RFC1123 but hard-codes GMT as the time
906 // zone. The time being formatted must be in UTC for Format to
907 // generate the correct format.
908 //
909 // For parsing this time format, see ParseTime.
912 // appendTime is a non-allocating version of []byte(t.UTC().Format(TimeFormat))
932 }
936 // Read next request from connection.
940 }
945 )
949 }
952 }
957 }()
958 }
962 // RFC 7230 section 3 tolerance for old buggy clients.
965 }
970 }
972 }
976 }
983 if req.ProtoAtLeast(1, 1) && (!haveHost || len(hosts) == 0) && !isH2Upgrade && req.Method != "CONNECT" {
985 }
988 }
991 }
995 }
999 }
1000 }
1001 }
1010 }
1012 // Adjust the read deadline if necessary.
1015 }
1026 // We populate these ahead of time so we're not
1027 // reading from req.Header after their Handler starts
1028 // and maybe mutates it (Issue 14940)
1031 }
1034 }
1038 }
1040 // http1ServerSupportsRequest reports whether Go's HTTP/1.x server
1041 // supports the given request.
1045 }
1046 // Accept "PRI * HTTP/2.0" upgrade requests, so Handlers can
1047 // wire up their own HTTP/2 upgrades.
1051 }
1052 // Reject HTTP/0.x, and all other HTTP/2+ requests (which
1053 // aren't encoded in ASCII anyway).
1055 }
1059 // Accessing the header between logically writing it
1060 // and physically writing it means we need to allocate
1061 // a clone to snapshot the logically written state.
1063 }
1066 }
1068 // maxPostHandlerReadBytes is the max number of Request.Body bytes not
1069 // consumed by a handler that the server will read from the client
1070 // in order to keep a connection alive. If there are more bytes than
1071 // this then the server to be paranoid instead sends a "Connection:
1072 // close" response.
1073 //
1074 // This number is approximately what a typical machine's TCP buffer
1075 // size is anyway. (if we have the bytes on the machine, we might as
1076 // well read them)
1080 // Issue 22880: require valid WriteHeader status codes.
1081 // For now we only enforce that it's three digits.
1082 // In the future we might block things over 599 (600 and above aren't defined
1083 // at https://httpwg.org/specs/rfc7231.html#status.codes)
1084 // and we might block under 200 (once we have more mature 1xx support).
1085 // But for now any three digits.
1086 //
1087 // We used to send "HTTP/1.1 000 0" on the wire in responses but there's
1088 // no equivalent bogus thing we can realistically send in HTTP/2,
1089 // so we'll consistently panic instead and help people find their bugs
1090 // early. (We can't return an error from WriteHeader even if we wanted to.)
1093 }
1094 }
1099 return
1100 }
1103 return
1104 }
1111 }
1120 }
1121 }
1122 }
1124 // extraHeader is the set of headers sometimes added by chunkWriter.writeHeader.
1125 // This type is used to avoid extra allocations from cloning and/or populating
1126 // the response Header map and all its 1-element slices.
1128 contentType string
1129 connection string
1130 transferEncoding string
1133 }
1135 // Sorted the same as extraHeader.Write's loop.
1140 }
1145 )
1147 // Write writes the headers described in h to w.
1148 //
1149 // This method has a value receiver, despite the somewhat large size
1150 // of h, because it prevents an allocation. The escape analysis isn't
1151 // smart enough to realize this function doesn't mutate h.
1157 }
1162 }
1169 }
1170 }
1171 }
1173 // writeHeader finalizes the header sent to the client and writes it
1174 // to cw.res.conn.bufw.
1175 //
1176 // p is not written by writeHeader, but is the first chunk of the body
1177 // that will be written. It is sniffed for a Content-Type if none is
1178 // set explicitly. It's also used to set the Content-Length, if the
1179 // total body size was small and the handler has already finished
1180 // running.
1183 return
1184 }
1191 // header is written out to w.conn.buf below. Depending on the
1192 // state of the handler, we either own the map or not. If we
1193 // don't own it, the exclude map is created lazily for
1194 // WriteSubset to remove headers. The setHeader struct holds
1195 // headers we need to add.
1200 }
1205 return
1206 }
1208 return
1209 }
1212 }
1214 }
1215 var setHeader extraHeader
1217 // Don't write out the fake "Trailer:foo" keys. See TrailerPrefix.
1223 }
1226 }
1227 }
1231 }
1236 // If the handler is done but never sent a Content-Length
1237 // response header and this is our first (and last) write, set
1238 // it, even to zero. This helps HTTP/1.0 clients keep their
1239 // "keep-alive" connections alive.
1240 // Exceptions: 304/204/1xx responses never get Content-Length, and if
1241 // it was a HEAD request, we don't know the difference between
1242 // 0 actual bytes and 0 bytes because the handler noticed it
1243 // was a HEAD request and chose not to write anything. So for
1244 // HEAD, the handler should either write the Content-Length or
1245 // write non-zero bytes. If it's actually 0 bytes and the
1246 // handler never looked at the Request.Method, we just don't
1247 // send a Content-Length header.
1248 // Further, we don't send an automatic Content-Length if they
1249 // set a Transfer-Encoding, because they're generally incompatible.
1250 if w.handlerDone.isSet() && !trailers && !hasTE && bodyAllowedForStatus(w.status) && header.get("Content-Length") == "" && (!isHEAD || len(p) > 0) {
1253 }
1255 // If this was an HTTP/1.0 request with keep-alive and we sent a
1256 // Content-Length back, we can make this a keep-alive response ...
1261 }
1262 }
1264 // Check for an explicit (and valid) Content-Length header.
1271 }
1274 }
1278 }
1280 // If the client wanted a 100-continue but we never sent it to
1281 // them (or, more strictly: we never finished reading their
1282 // request body), don't reuse this connection because it's now
1283 // in an unknown state: we might be sending this response at
1284 // the same time the client is now sending its request body
1285 // after a timeout. (Some HTTP clients send Expect:
1286 // 100-continue but knowing that some servers don't support
1287 // it, the clients set a timer and send the body later anyway)
1288 // If we haven't seen EOF, we can't skip over the unread body
1289 // because we don't know if the next bytes on the wire will be
1290 // the body-following-the-timer or the subsequent request.
1291 // See Issue 11549.
1294 }
1296 // Per RFC 2616, we should consume the request body before
1297 // replying, if the handler hasn't already done so. But we
1298 // don't want to do an unbounded amount of reading here for
1299 // DoS reasons, so we only try up to a threshold.
1300 // TODO(bradfitz): where does RFC 2616 say that? See Issue 15527
1301 // about HTTP/1.x Handlers concurrently reading and writing, like
1302 // HTTP/2 handlers can do. Maybe this code should be relaxed?
1310 }
1316 // Body was closed in handler with non-EOF error.
1318 }
1323 }
1327 }
1333 // There must be even more data left over.
1336 // Body was already consumed and closed.
1338 // The remaining body was just consumed, close it.
1342 }
1344 // Some other kind of error occurred, like a read timeout, or
1345 // corrupt chunked encoding. In any case, whatever remains
1346 // on the wire must not be parsed as another HTTP request.
1348 }
1349 }
1355 }
1356 }
1360 // If no content type, apply sniffing algorithm to body.
1364 }
1368 }
1369 }
1373 }
1376 // TODO: return an error if WriteHeader gets a return parameter
1377 // For now just ignore the Content-Length.
1378 w.conn.server.logf("http: WriteHeader called with both Transfer-Encoding of %q and a Content-Length of %d",
1382 }
1385 // do nothing
1391 // HTTP/1.1 or greater: Transfer-Encoding has been set to identity, and no
1392 // content-length has been provided. The connection must be closed after the
1393 // reply is written, and no chunking is to be done. This is the setup
1394 // recommended in the Server-Sent Events candidate recommendation 11,
1395 // section 8.
1400 // HTTP/1.1 or greater: use chunked transfer encoding
1401 // to avoid closing the connection at EOF.
1405 // We will send the chunked Transfer-Encoding header later.
1407 }
1408 }
1410 // HTTP version < 1.1: cannot do chunked transfer
1411 // encoding and we don't know the Content-Length so
1412 // signal EOF by closing connection.
1415 }
1417 // Cannot use Content-Length with non-identity Transfer-Encoding.
1420 }
1422 return
1423 }
1425 if w.closeAfterReply && (!keepAlivesEnabled || !hasToken(cw.header.get("Connection"), "close")) {
1429 }
1430 }
1436 }
1438 // foreachHeaderElement splits v according to the "#rule" construction
1439 // in RFC 7230 section 7 and calls fn for each non-empty element.
1443 return
1444 }
1447 return
1448 }
1452 }
1453 }
1454 }
1456 // writeStatusLine writes an HTTP/1.x Status-Line (RFC 7230 Section 3.1.2)
1457 // to bw. is11 is whether the HTTP request is HTTP/1.1. false means HTTP/1.0.
1458 // code is the response status code.
1459 // scratch is an optional scratch buffer. If it has at least capacity 3, it's used.
1465 }
1472 // don't worry about performance
1474 }
1475 }
1477 // bodyAllowed reports whether a Write is allowed for this response type.
1478 // It's illegal to call this before the header has been flushed.
1482 }
1484 }
1486 // The Life Of A Write is like this:
1487 //
1488 // Handler starts. No header has been sent. The handler can either
1489 // write a header, or just start writing. Writing before sending a header
1490 // sends an implicitly empty 200 OK header.
1491 //
1492 // If the handler didn't declare a Content-Length up front, we either
1493 // go into chunking mode or, if the handler finishes running before
1494 // the chunking buffer size, we compute a Content-Length and send that
1495 // in the header instead.
1496 //
1497 // Likewise, if the handler didn't set a Content-Type, we sniff that
1498 // from the initial chunk of output.
1499 //
1500 // The Writers are wired together like:
1501 //
1502 // 1. *response (the ResponseWriter) ->
1503 // 2. (*response).w, a *bufio.Writer of bufferBeforeChunkingSize bytes
1504 // 3. chunkWriter.Writer (whose writeHeader finalizes Content-Length/Type)
1505 // and which writes the chunk headers, if needed.
1506 // 4. conn.buf, a bufio.Writer of default (4kB) bytes, writing to ->
1507 // 5. checkConnErrorWriter{c}, which notes any non-nil error on Write
1508 // and populates c.werr with it if so. but otherwise writes to:
1509 // 6. the rwc, the net.Conn.
1510 //
1511 // TODO(bradfitz): short-circuit some of the buffering when the
1512 // initial header contains both a Content-Type and Content-Length.
1513 // Also short-circuit in (1) when the header's been sent and not in
1514 // chunking mode, writing directly to (4) instead, if (2) has no
1515 // buffered data. More generally, we could short-circuit from (1) to
1516 // (3) even in chunking mode if the write size from (1) is over some
1517 // threshold and nothing is in (2). The answer might be mostly making
1518 // bufferBeforeChunkingSize smaller and having bufio's fast-paths deal
1519 // with this instead.
1522 }
1526 }
1528 // either dataB or dataS is non-zero.
1533 }
1535 }
1538 }
1541 }
1544 }
1549 }
1554 }
1555 }
1562 }
1571 // Close the body (regardless of w.closeAfterReply) so we can
1572 // re-use its bufio.Reader later safely.
1577 }
1578 }
1580 // shouldReuseConnection reports whether the underlying TCP connection can be reused.
1581 // It must only be called after the handler is done executing.
1584 // The request or something set while executing the
1585 // handler indicated we shouldn't reuse this
1586 // connection.
1588 }
1590 if w.req.Method != "HEAD" && w.contentLength != -1 && w.bodyAllowed() && w.contentLength != w.written {
1591 // Did not write enough. Avoid getting out of sync.
1593 }
1595 // There was some error writing to the underlying connection
1596 // during the request, so don't re-use this conn.
1599 }
1603 }
1606 }
1611 }
1616 }
1619 }
1623 // Steal the bufio.Reader (~4KB worth of memory) and its associated
1624 // reader for a future connection.
1627 }
1631 // Steal the bufio.Writer (~4KB worth of memory) and its associated
1632 // writer for a future connection.
1635 }
1636 }
1638 // Close the connection.
1642 }
1644 // rstAvoidanceDelay is the amount of time we sleep after closing the
1645 // write side of a TCP connection before closing the entire socket.
1646 // By sleeping, we increase the chances that the client sees our FIN
1647 // and processes its final data before they process the subsequent RST
1648 // from closing a connection with known unread data.
1649 // This RST seems to occur mostly on BSD systems. (And Windows?)
1650 // This timeout is somewhat arbitrary (~latency around the planet).
1655 }
1659 // closeWrite flushes any outstanding data and sends a FIN packet (if
1660 // client is connected via TCP), signalling that we're done. We then
1661 // pause for a bit, hoping the client processes it before any
1662 // subsequent RST.
1663 //
1664 // See https://golang.org/issue/3595
1669 }
1671 }
1673 // validNPN reports whether the proto is not a blacklisted Next
1674 // Protocol Negotiation protocol. Empty and built-in protocol types
1675 // are blacklisted and can't be overridden with alternate
1676 // implementations.
1681 }
1683 }
1692 }
1695 }
1700 }
1701 }
1706 }
1708 // badRequestError is a literal string (used by in the server in HTML,
1709 // unescaped) to tell the user why their request was bad. It should
1710 // be plain text without user info or other embedded errors.
1715 // ErrAbortHandler is a sentinel panic value to abort a handler.
1716 // While any panic from ServeHTTP aborts the response to the client,
1717 // panicking with ErrAbortHandler also suppresses logging of a stack
1718 // trace to the server's error log.
1721 // isCommonNetReadError reports whether err is a common error
1722 // encountered during reading a request off the network when the
1723 // client has gone away or had its read fail somehow. This is used to
1724 // determine which logs are interesting enough to log about.
1728 }
1731 }
1734 }
1736 }
1738 // Serve a new connection.
1748 }
1752 }
1753 }()
1758 }
1761 }
1764 return
1765 }
1772 }
1773 return
1774 }
1775 }
1777 // HTTP/1.x from here on.
1790 // If we read any bytes off the wire, we're active.
1792 }
1794 const errorHeaders = "\r\nContent-Type: text/plain; charset=utf-8\r\nConnection: close\r\n\r\n"
1797 // Their HTTP client may or may not be
1798 // able to read this if we're
1799 // responding to them and hanging up
1800 // while they're still writing their
1801 // request. Undefined behavior.
1805 return
1806 }
1809 }
1814 }
1817 return
1818 }
1820 // Expect 100 Continue support
1824 // Wrap the Body reader with one that replies on the connection
1826 }
1829 return
1830 }
1838 }
1840 // HTTP cannot have multiple simultaneous active requests.[*]
1841 // Until the server replies to this request, it can't read another,
1842 // so we might as well run the handler in this goroutine.
1843 // [*] Not strictly true: HTTP pipelining. We could let them all process
1844 // in parallel even if their responses need to be serialized.
1845 // But we're not going to implement HTTP pipelining because it
1846 // was never deployed in the wild and the answer is HTTP/2.
1850 return
1851 }
1856 }
1857 return
1858 }
1863 // We're in shutdown mode. We might've replied
1864 // to the user without "Connection: close" and
1865 // they might think they can send another
1866 // request, but such is life with HTTP/1.1.
1867 return
1868 }
1873 return
1874 }
1875 }
1877 }
1878 }
1881 // TODO(bradfitz): let ServeHTTP handlers handle
1882 // requests with non-standard expectation[s]? Seems
1883 // theoretical at best, and doesn't fit into the
1884 // current ServeHTTP model anyway. We'd need to
1885 // make the ResponseWriter an optional
1886 // "ExpectReplier" interface or something.
1887 //
1888 // For now we'll just obey RFC 7231 5.1.1 which says
1889 // "A server that receives an Expect field-value other
1890 // than 100-continue MAY respond with a 417 (Expectation
1891 // Failed) status code to indicate that the unexpected
1892 // expectation cannot be met."
1896 }
1898 // Hijack implements the Hijacker.Hijack method. Our response is both a ResponseWriter
1899 // and a Hijacker.
1903 }
1906 }
1912 // Release the bufioWriter that writes to the chunk writer, it is not
1913 // used after a connection has been hijacked.
1918 }
1920 }
1925 }
1927 }
1937 }
1938 }
1940 // requestBodyRemains reports whether future calls to Read
1941 // on rc might yield more data.
1945 }
1953 }
1954 }
1956 // The HandlerFunc type is an adapter to allow the use of
1957 // ordinary functions as HTTP handlers. If f is a function
1958 // with the appropriate signature, HandlerFunc(f) is a
1959 // Handler that calls f.
1962 // ServeHTTP calls f(w, r).
1965 }
1967 // Helper handlers
1969 // Error replies to the request with the specified error message and HTTP code.
1970 // It does not otherwise end the request; the caller should ensure no further
1971 // writes are done to w.
1972 // The error message should be plain text.
1978 }
1980 // NotFound replies to the request with an HTTP 404 not found error.
1983 // NotFoundHandler returns a simple request handler
1984 // that replies to each request with a ``404 page not found'' reply.
1987 // StripPrefix returns a handler that serves HTTP requests
1988 // by removing the given prefix from the request URL's Path
1989 // and invoking the handler h. StripPrefix handles a
1990 // request for a path that doesn't begin with prefix by
1991 // replying with an HTTP 404 not found error.
1994 return h
1995 }
2006 }
2007 })
2008 }
2010 // Redirect replies to the request with a redirect to url,
2011 // which may be a path relative to the request path.
2012 //
2013 // The provided code should be in the 3xx range and is usually
2014 // StatusMovedPermanently, StatusFound or StatusSeeOther.
2015 //
2016 // If the Content-Type header has not been set, Redirect sets it
2017 // to "text/html; charset=utf-8" and writes a small HTML body.
2018 // Setting the Content-Type header to any value, including nil,
2019 // disables that behavior.
2021 // parseURL is just url.Parse (url is shadowed for godoc).
2023 // If url was relative, make its path absolute by
2024 // combining with request path.
2025 // The client would probably do this for us,
2026 // but doing it ourselves is more reliable.
2027 // See RFC 7231, section 7.1.2
2032 }
2034 // no leading http://server
2036 // make relative path absolute
2039 }
2044 }
2046 // clean up but preserve trailing slash
2051 }
2052 url += query
2053 }
2054 }
2058 // RFC 7231 notes that a short HTML body is usually included in
2059 // the response because older user agents may not understand 301/307.
2060 // Do it only if the request didn't already have a Content-Type header.
2066 }
2069 // Shouldn't send the body for POST or HEAD; that leaves GET.
2073 }
2074 }
2076 // parseURL is just url.Parse. It exists only so that url.Parse can be called
2077 // in places where url is shadowed for godoc. See https://golang.org/cl/49930.
2084 // """ is shorter than """.
2086 // "'" is shorter than "'" and apos was not in HTML until HTML5.
2088 )
2092 }
2094 // Redirect to a fixed URL
2096 url string
2097 code int
2098 }
2102 }
2104 // RedirectHandler returns a request handler that redirects
2105 // each request it receives to the given url using the given
2106 // status code.
2107 //
2108 // The provided code should be in the 3xx range and is usually
2109 // StatusMovedPermanently, StatusFound or StatusSeeOther.
2112 }
2114 // ServeMux is an HTTP request multiplexer.
2115 // It matches the URL of each incoming request against a list of registered
2116 // patterns and calls the handler for the pattern that
2117 // most closely matches the URL.
2118 //
2119 // Patterns name fixed, rooted paths, like "/favicon.ico",
2120 // or rooted subtrees, like "/images/" (note the trailing slash).
2121 // Longer patterns take precedence over shorter ones, so that
2122 // if there are handlers registered for both "/images/"
2123 // and "/images/thumbnails/", the latter handler will be
2124 // called for paths beginning "/images/thumbnails/" and the
2125 // former will receive requests for any other paths in the
2126 // "/images/" subtree.
2127 //
2128 // Note that since a pattern ending in a slash names a rooted subtree,
2129 // the pattern "/" matches all paths not matched by other registered
2130 // patterns, not just the URL with Path == "/".
2131 //
2132 // If a subtree has been registered and a request is received naming the
2133 // subtree root without its trailing slash, ServeMux redirects that
2134 // request to the subtree root (adding the trailing slash). This behavior can
2135 // be overridden with a separate registration for the path without
2136 // the trailing slash. For example, registering "/images/" causes ServeMux
2137 // to redirect a request for "/images" to "/images/", unless "/images" has
2138 // been registered separately.
2139 //
2140 // Patterns may optionally begin with a host name, restricting matches to
2141 // URLs on that host only. Host-specific patterns take precedence over
2142 // general patterns, so that a handler might register for the two patterns
2143 // "/codesearch" and "codesearch.google.com/" without also taking over
2144 // requests for "http://www.google.com/".
2145 //
2146 // ServeMux also takes care of sanitizing the URL request path and the Host
2147 // header, stripping the port number and redirecting any request containing . or
2148 // .. elements or repeated slashes to an equivalent, cleaner URL.
2150 mu sync.RWMutex
2153 }
2156 h Handler
2157 pattern string
2158 }
2160 // NewServeMux allocates and returns a new ServeMux.
2163 // DefaultServeMux is the default ServeMux used by Serve.
2166 var defaultServeMux ServeMux
2168 // Does path match pattern?
2171 // should not happen
2173 }
2177 }
2179 }
2181 // cleanPath returns the canonical path for p, eliminating . and .. elements.
2185 }
2188 }
2190 // path.Clean removes trailing slash except for root;
2191 // put the trailing slash back if necessary.
2193 // Fast path for common case of p being the string we want:
2195 np = p
2198 }
2199 }
2200 return np
2201 }
2203 // stripHostPort returns h without any trailing ":<port>".
2205 // If no port on host, return unchanged
2207 return h
2208 }
2212 }
2213 return host
2214 }
2216 // Find a handler on a handler map given a path string.
2217 // Most-specific (longest) pattern wins.
2219 // Check for exact match first.
2223 }
2225 // Check for longest valid match.
2229 continue
2230 }
2235 }
2236 }
2237 return
2238 }
2240 // redirectToPathSlash determines if the given path needs appending "/" to it.
2241 // This occurs when a handler for path + "/" was already registered, but
2242 // not for path itself. If the path needs appending to, it creates a new
2243 // URL, setting the path to u.Path + "/" and returning true to indicate so.
2250 }
2254 }
2256 // shouldRedirectRLocked reports whether the given path and host should be redirected to
2257 // path+"/". This should happen if a handler is registered for path+"/" but
2258 // not path -- see comments at ServeMux.
2265 }
2266 }
2271 }
2275 }
2276 }
2279 }
2281 // Handler returns the handler to use for the given request,
2282 // consulting r.Method, r.Host, and r.URL.Path. It always returns
2283 // a non-nil handler. If the path is not in its canonical form, the
2284 // handler will be an internally-generated handler that redirects
2285 // to the canonical path. If the host contains a port, it is ignored
2286 // when matching handlers.
2287 //
2288 // The path and host are used unchanged for CONNECT requests.
2289 //
2290 // Handler also returns the registered pattern that matches the
2291 // request or, in the case of internally-generated redirects,
2292 // the pattern that will match after following the redirect.
2293 //
2294 // If there is no registered handler that applies to the request,
2295 // Handler returns a ``page not found'' handler and an empty pattern.
2298 // CONNECT requests are not canonicalized.
2300 // If r.URL.Path is /tree and its handler is not registered,
2301 // the /tree -> /tree/ redirect applies to CONNECT requests
2302 // but the path canonicalization does not.
2305 }
2308 }
2310 // All other requests have any port stripped and path cleaned
2311 // before passing to mux.handler.
2315 // If the given path is /tree and its handler is not registered,
2316 // redirect for /tree/.
2319 }
2326 }
2329 }
2331 // handler is the main implementation of Handler.
2332 // The path is known to be in canonical form, except for CONNECT methods.
2337 // Host-specific pattern takes precedence over generic ones
2340 }
2343 }
2346 }
2347 return
2348 }
2350 // ServeHTTP dispatches the request to the handler whose
2351 // pattern most closely matches the request URL.
2356 }
2358 return
2359 }
2362 }
2364 // Handle registers the handler for the given pattern.
2365 // If a handler already exists for pattern, Handle panics.
2372 }
2375 }
2378 }
2382 }
2387 }
2388 }
2390 // HandleFunc registers the handler function for the given pattern.
2394 }
2396 }
2398 // Handle registers the handler for the given pattern
2399 // in the DefaultServeMux.
2400 // The documentation for ServeMux explains how patterns are matched.
2403 // HandleFunc registers the handler function for the given pattern
2404 // in the DefaultServeMux.
2405 // The documentation for ServeMux explains how patterns are matched.
2408 }
2410 // Serve accepts incoming HTTP connections on the listener l,
2411 // creating a new service goroutine for each. The service goroutines
2412 // read requests and then call handler to reply to them.
2413 //
2414 // The handler is typically nil, in which case the DefaultServeMux is used.
2415 //
2416 // HTTP/2 support is only enabled if the Listener returns *tls.Conn
2417 // connections and they were configured with "h2" in the TLS
2418 // Config.NextProtos.
2419 //
2420 // Serve always returns a non-nil error.
2424 }
2426 // ServeTLS accepts incoming HTTPS connections on the listener l,
2427 // creating a new service goroutine for each. The service goroutines
2428 // read requests and then call handler to reply to them.
2429 //
2430 // The handler is typically nil, in which case the DefaultServeMux is used.
2431 //
2432 // Additionally, files containing a certificate and matching private key
2433 // for the server must be provided. If the certificate is signed by a
2434 // certificate authority, the certFile should be the concatenation
2435 // of the server's certificate, any intermediates, and the CA's certificate.
2436 //
2437 // ServeTLS always returns a non-nil error.
2441 }
2443 // A Server defines parameters for running an HTTP server.
2444 // The zero value for Server is a valid configuration.
2447 Handler Handler // handler to invoke, http.DefaultServeMux if nil
2449 // TLSConfig optionally provides a TLS configuration for use
2450 // by ServeTLS and ListenAndServeTLS. Note that this value is
2451 // cloned by ServeTLS and ListenAndServeTLS, so it's not
2452 // possible to modify the configuration with methods like
2453 // tls.Config.SetSessionTicketKeys. To use
2454 // SetSessionTicketKeys, use Server.Serve with a TLS Listener
2455 // instead.
2458 // ReadTimeout is the maximum duration for reading the entire
2459 // request, including the body.
2460 //
2461 // Because ReadTimeout does not let Handlers make per-request
2462 // decisions on each request body's acceptable deadline or
2463 // upload rate, most users will prefer to use
2464 // ReadHeaderTimeout. It is valid to use them both.
2465 ReadTimeout time.Duration
2467 // ReadHeaderTimeout is the amount of time allowed to read
2468 // request headers. The connection's read deadline is reset
2469 // after reading the headers and the Handler can decide what
2470 // is considered too slow for the body.
2471 ReadHeaderTimeout time.Duration
2473 // WriteTimeout is the maximum duration before timing out
2474 // writes of the response. It is reset whenever a new
2475 // request's header is read. Like ReadTimeout, it does not
2476 // let Handlers make decisions on a per-request basis.
2477 WriteTimeout time.Duration
2479 // IdleTimeout is the maximum amount of time to wait for the
2480 // next request when keep-alives are enabled. If IdleTimeout
2481 // is zero, the value of ReadTimeout is used. If both are
2482 // zero, ReadHeaderTimeout is used.
2483 IdleTimeout time.Duration
2485 // MaxHeaderBytes controls the maximum number of bytes the
2486 // server will read parsing the request header's keys and
2487 // values, including the request line. It does not limit the
2488 // size of the request body.
2489 // If zero, DefaultMaxHeaderBytes is used.
2490 MaxHeaderBytes int
2492 // TLSNextProto optionally specifies a function to take over
2493 // ownership of the provided TLS connection when an NPN/ALPN
2494 // protocol upgrade has occurred. The map key is the protocol
2495 // name negotiated. The Handler argument should be used to
2496 // handle HTTP requests and will initialize the Request's TLS
2497 // and RemoteAddr if not already set. The connection is
2498 // automatically closed when the function returns.
2499 // If TLSNextProto is not nil, HTTP/2 support is not enabled
2500 // automatically.
2503 // ConnState specifies an optional callback function that is
2504 // called when a client connection changes state. See the
2505 // ConnState type and associated constants for details.
2508 // ErrorLog specifies an optional logger for errors accepting
2509 // connections, unexpected behavior from handlers, and
2510 // underlying FileSystem errors.
2511 // If nil, logging is done via the log package's standard logger.
2517 nextProtoErr error // result of http2.ConfigureServer if used
2519 mu sync.Mutex
2524 }
2530 }
2535 }
2537 }
2543 // Already closed. Don't close again.
2545 // Safe to close here. We're the only closer, guarded
2546 // by s.mu.
2548 }
2549 }
2551 // Close immediately closes all active net.Listeners and any
2552 // connections in state StateNew, StateActive, or StateIdle. For a
2553 // graceful shutdown, use Shutdown.
2554 //
2555 // Close does not attempt to close (and does not even know about)
2556 // any hijacked connections, such as WebSockets.
2557 //
2558 // Close returns any error returned from closing the Server's
2559 // underlying Listener(s).
2569 }
2570 return err
2571 }
2573 // shutdownPollInterval is how often we poll for quiescence
2574 // during Server.Shutdown. This is lower during tests, to
2575 // speed up tests.
2576 // Ideally we could find a solution that doesn't involve polling,
2577 // but which also doesn't have a high runtime cost (and doesn't
2578 // involve any contentious mutexes), but that is left as an
2579 // exercise for the reader.
2582 // Shutdown gracefully shuts down the server without interrupting any
2583 // active connections. Shutdown works by first closing all open
2584 // listeners, then closing all idle connections, and then waiting
2585 // indefinitely for connections to return to idle and then shut down.
2586 // If the provided context expires before the shutdown is complete,
2587 // Shutdown returns the context's error, otherwise it returns any
2588 // error returned from closing the Server's underlying Listener(s).
2589 //
2590 // When Shutdown is called, Serve, ListenAndServe, and
2591 // ListenAndServeTLS immediately return ErrServerClosed. Make sure the
2592 // program doesn't exit and waits instead for Shutdown to return.
2593 //
2594 // Shutdown does not attempt to close nor wait for hijacked
2595 // connections such as WebSockets. The caller of Shutdown should
2596 // separately notify such long-lived connections of shutdown and wait
2597 // for them to close, if desired. See RegisterOnShutdown for a way to
2598 // register shutdown notification functions.
2599 //
2600 // Once Shutdown has been called on a server, it may not be reused;
2601 // future calls to methods such as Serve will return ErrServerClosed.
2610 }
2617 return lnerr
2618 }
2623 }
2624 }
2625 }
2627 // RegisterOnShutdown registers a function to call on Shutdown.
2628 // This can be used to gracefully shutdown connections that have
2629 // undergone NPN/ALPN protocol upgrade or that have been hijacked.
2630 // This function should start protocol-specific graceful shutdown,
2631 // but should not wait for shutdown to complete.
2636 }
2638 // closeIdleConns closes all idle connections and reports whether the
2639 // server is quiescent.
2646 // Issue 22682: treat StateNew connections as if
2647 // they're idle if we haven't read the first request's
2648 // header in over 5 seconds.
2650 st = StateIdle
2651 }
2653 // Assume unixSec == 0 means it's a very new
2654 // connection, without state set yet.
2656 continue
2657 }
2660 }
2661 return quiescent
2662 }
2665 var err error
2668 err = cerr
2669 }
2671 }
2672 return err
2673 }
2675 // A ConnState represents the state of a client connection to a server.
2676 // It's used by the optional Server.ConnState hook.
2680 // StateNew represents a new connection that is expected to
2681 // send a request immediately. Connections begin at this
2682 // state and then transition to either StateActive or
2683 // StateClosed.
2686 // StateActive represents a connection that has read 1 or more
2687 // bytes of a request. The Server.ConnState hook for
2688 // StateActive fires before the request has entered a handler
2689 // and doesn't fire again until the request has been
2690 // handled. After the request is handled, the state
2691 // transitions to StateClosed, StateHijacked, or StateIdle.
2692 // For HTTP/2, StateActive fires on the transition from zero
2693 // to one active request, and only transitions away once all
2694 // active requests are complete. That means that ConnState
2695 // cannot be used to do per-request work; ConnState only notes
2696 // the overall state of the connection.
2697 StateActive
2699 // StateIdle represents a connection that has finished
2700 // handling a request and is in the keep-alive state, waiting
2701 // for a new request. Connections transition from StateIdle
2702 // to either StateActive or StateClosed.
2703 StateIdle
2705 // StateHijacked represents a hijacked connection.
2706 // This is a terminal state. It does not transition to StateClosed.
2707 StateHijacked
2709 // StateClosed represents a closed connection.
2710 // This is a terminal state. Hijacked connections do not
2711 // transition to StateClosed.
2712 StateClosed
2713 )
2721 }
2725 }
2727 // serverHandler delegates to either the server's Handler or
2728 // DefaultServeMux and also handles "OPTIONS *" requests.
2730 srv *Server
2731 }
2736 handler = DefaultServeMux
2737 }
2740 }
2742 }
2744 // ListenAndServe listens on the TCP network address srv.Addr and then
2745 // calls Serve to handle requests on incoming connections.
2746 // Accepted connections are configured to enable TCP keep-alives.
2747 //
2748 // If srv.Addr is blank, ":http" is used.
2749 //
2750 // ListenAndServe always returns a non-nil error. After Shutdown or Close,
2751 // the returned error is ErrServerClosed.
2754 return ErrServerClosed
2755 }
2759 }
2762 return err
2763 }
2765 }
2769 // shouldDoServeHTTP2 reports whether Server.Serve should configure
2770 // automatic HTTP/2. (which sets up the srv.TLSNextProto map)
2773 // Compatibility with Go 1.6:
2774 // If there's no TLSConfig, it's possible that the user just
2775 // didn't set it on the http.Server, but did pass it to
2776 // tls.NewListener and passed that listener to Serve.
2777 // So we should configure HTTP/2 (to set up srv.TLSNextProto)
2778 // in case the listener returns an "h2" *tls.Conn.
2780 }
2781 // The user specified a TLSConfig on their http.Server.
2782 // In this, case, only configure HTTP/2 if their tls.Config
2783 // explicitly mentions "h2". Otherwise http2.ConfigureServer
2784 // would modify the tls.Config to add it, but they probably already
2785 // passed this tls.Config to tls.NewListener. And if they did,
2786 // it's too late anyway to fix it. It would only be potentially racy.
2787 // See Issue 15908.
2789 }
2791 // ErrServerClosed is returned by the Server's Serve, ServeTLS, ListenAndServe,
2792 // and ListenAndServeTLS methods after a call to Shutdown or Close.
2795 // Serve accepts incoming connections on the Listener l, creating a
2796 // new service goroutine for each. The service goroutines read requests and
2797 // then call srv.Handler to reply to them.
2798 //
2799 // HTTP/2 support is only enabled if the Listener returns *tls.Conn
2800 // connections and they were configured with "h2" in the TLS
2801 // Config.NextProtos.
2802 //
2803 // Serve always returns a non-nil error and closes l.
2804 // After Shutdown or Close, the returned error is ErrServerClosed.
2808 }
2814 return err
2815 }
2818 return ErrServerClosed
2819 }
2830 return ErrServerClosed
2832 }
2838 }
2840 tempDelay = max
2841 }
2844 continue
2845 }
2846 return e
2847 }
2852 }
2853 }
2855 // ServeTLS accepts incoming connections on the Listener l, creating a
2856 // new service goroutine for each. The service goroutines perform TLS
2857 // setup and then read requests, calling srv.Handler to reply to them.
2858 //
2859 // Files containing a certificate and matching private key for the
2860 // server must be provided if neither the Server's
2861 // TLSConfig.Certificates nor TLSConfig.GetCertificate are populated.
2862 // If the certificate is signed by a certificate authority, the
2863 // certFile should be the concatenation of the server's certificate,
2864 // any intermediates, and the CA's certificate.
2865 //
2866 // ServeTLS always returns a non-nil error. After Shutdown or Close, the
2867 // returned error is ErrServerClosed.
2869 // Setup HTTP/2 before srv.Serve, to initialize srv.TLSConfig
2870 // before we clone it and create the TLS Listener.
2872 return err
2873 }
2878 }
2882 var err error
2886 return err
2887 }
2888 }
2892 }
2894 // trackListener adds or removes a net.Listener to the set of tracked
2895 // listeners.
2896 //
2897 // We store a pointer to interface in the map set, in case the
2898 // net.Listener is not comparable. This is safe because we only call
2899 // trackListener via Serve and can track+defer untrack the same
2900 // pointer to local variable there. We never need to compare a
2901 // Listener from another caller.
2902 //
2903 // It reports whether the server is still up (not Shutdown or Closed).
2909 }
2913 }
2917 }
2919 }
2926 }
2931 }
2932 }
2937 }
2939 }
2944 }
2946 }
2950 }
2953 // TODO: replace inShutdown with the existing atomicBool type;
2954 // see https://github.com/golang/go/issues/20239#issuecomment-381434582
2956 }
2958 // SetKeepAlivesEnabled controls whether HTTP keep-alives are enabled.
2959 // By default, keep-alives are always enabled. Only very
2960 // resource-constrained environments or servers in the process of
2961 // shutting down should disable them.
2965 return
2966 }
2969 // Close idle HTTP/1 conns:
2972 // TODO: Issue 26303: close HTTP/2 conns as soon as they become idle.
2973 }
2980 }
2981 }
2983 // logf prints to the ErrorLog of the *Server associated with request r
2984 // via ServerContextKey. If there's no associated server, or if ErrorLog
2985 // is nil, logging is done via the log package's standard logger.
2992 }
2993 }
2995 // ListenAndServe listens on the TCP network address addr and then calls
2996 // Serve with handler to handle requests on incoming connections.
2997 // Accepted connections are configured to enable TCP keep-alives.
2998 //
2999 // The handler is typically nil, in which case the DefaultServeMux is used.
3000 //
3001 // ListenAndServe always returns a non-nil error.
3005 }
3007 // ListenAndServeTLS acts identically to ListenAndServe, except that it
3008 // expects HTTPS connections. Additionally, files containing a certificate and
3009 // matching private key for the server must be provided. If the certificate
3010 // is signed by a certificate authority, the certFile should be the concatenation
3011 // of the server's certificate, any intermediates, and the CA's certificate.
3015 }
3017 // ListenAndServeTLS listens on the TCP network address srv.Addr and
3018 // then calls ServeTLS to handle requests on incoming TLS connections.
3019 // Accepted connections are configured to enable TCP keep-alives.
3020 //
3021 // Filenames containing a certificate and matching private key for the
3022 // server must be provided if neither the Server's TLSConfig.Certificates
3023 // nor TLSConfig.GetCertificate are populated. If the certificate is
3024 // signed by a certificate authority, the certFile should be the
3025 // concatenation of the server's certificate, any intermediates, and
3026 // the CA's certificate.
3027 //
3028 // If srv.Addr is blank, ":https" is used.
3029 //
3030 // ListenAndServeTLS always returns a non-nil error. After Shutdown or
3031 // Close, the returned error is ErrServerClosed.
3034 return ErrServerClosed
3035 }
3039 }
3043 return err
3044 }
3049 }
3051 // setupHTTP2_ServeTLS conditionally configures HTTP/2 on
3052 // srv and returns whether there was an error setting it up. If it is
3053 // not configured for policy reasons, nil is returned.
3057 }
3059 // setupHTTP2_Serve is called from (*Server).Serve and conditionally
3060 // configures HTTP/2 on srv using a more conservative policy than
3061 // setupHTTP2_ServeTLS because Serve is called after tls.Listen,
3062 // and may be called concurrently. See shouldConfigureHTTP2ForServe.
3063 //
3064 // The tests named TestTransportAutomaticHTTP2* and
3065 // TestConcurrentServerServe in server_test.go demonstrate some
3066 // of the supported use cases and motivations.
3070 }
3075 }
3076 }
3078 // onceSetNextProtoDefaults configures HTTP/2, if the user hasn't
3079 // configured otherwise. (by setting srv.TLSNextProto non-nil)
3080 // It must only be called via srv.nextProtoOnce (use srv.setupHTTP2_*).
3083 return
3084 }
3085 // Enable HTTP/2 by default if the user hasn't otherwise
3086 // configured their TLSNextProto map.
3090 }
3092 }
3093 }
3095 // TimeoutHandler returns a Handler that runs h with the given time limit.
3096 //
3097 // The new Handler calls h.ServeHTTP to handle each request, but if a
3098 // call runs for longer than its time limit, the handler responds with
3099 // a 503 Service Unavailable error and the given message in its body.
3100 // (If msg is empty, a suitable default message will be sent.)
3101 // After such a timeout, writes by h to its ResponseWriter will return
3102 // ErrHandlerTimeout.
3103 //
3104 // TimeoutHandler buffers all Handler writes to memory and does not
3105 // support the Hijacker or Flusher interfaces.
3111 }
3112 }
3114 // ErrHandlerTimeout is returned on ResponseWriter Write calls
3115 // in handlers which have timed out.
3119 handler Handler
3120 body string
3121 dt time.Duration
3123 // When set, no context will be created and this context will
3124 // be used instead.
3125 testContext context.Context
3126 }
3131 }
3133 }
3141 }
3147 }
3152 panicChan <- p
3153 }
3154 }()
3157 }()
3167 }
3170 }
3179 return
3180 }
3181 }
3184 w ResponseWriter
3185 h Header
3186 wbuf bytes.Buffer
3188 mu sync.Mutex
3189 timedOut bool
3190 wroteHeader bool
3191 code int
3192 }
3201 }
3204 }
3206 }
3213 return
3214 }
3216 }
3221 }
3223 // tcpKeepAliveListener sets TCP keep-alive timeouts on accepted
3224 // connections. It's used by ListenAndServe and ListenAndServeTLS so
3225 // dead TCP connections (e.g. closing laptop mid-download) eventually
3226 // go away.
3229 }
3235 }
3239 }
3241 // onceCloseListener wraps a net.Listener, protecting it from
3242 // multiple Close calls.
3244 net.Listener
3245 once sync.Once
3246 closeErr error
3247 }
3252 }
3256 // globalOptionsHandler responds to "OPTIONS *" requests.
3262 // Read up to 4KB of OPTIONS body (as mentioned in the
3263 // spec as being reserved for future use), but anything
3264 // over that is considered a waste of server resources
3265 // (or an attack) and we abort and close the connection,
3266 // courtesy of MaxBytesReader's EOF behavior.
3269 }
3270 }
3272 // initNPNRequest is an HTTP handler that initializes certain
3273 // uninitialized fields in its *Request. Such partially-initialized
3274 // Requests come from NPN protocol handlers.
3277 h serverHandler
3278 }
3284 }
3287 }
3290 }
3292 }
3294 // loggingConn is used for debugging.
3296 name string
3297 net.Conn
3298 }
3301 uniqNameMu sync.Mutex
3303 )
3312 }
3313 }
3319 return
3320 }
3326 return
3327 }
3333 return
3334 }
3336 // checkConnErrorWriter writes to c.rwc and records any write errors to c.werr.
3337 // It only contains one field (and a pointer field at that), so it
3338 // fits in an interface value without an extra allocation.
3340 c *conn
3341 }
3348 }
3349 return
3350 }
3355 n++
3356 continue
3357 }
3358 break
3359 }
3360 return
3362 }
3368 }
3369 }
3371 }