| blob | 2fa8ab23d8a10ffa4153d61ef82651c07b492b55 |
1 // Copyright 2009 The Go Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style
3 // license that can be found in the LICENSE file.
5 // HTTP server. See RFC 2616.
7 package http
10 "bufio"
11 "bytes"
12 "context"
13 "crypto/tls"
14 "errors"
15 "fmt"
16 "io"
17 "io/ioutil"
18 "log"
19 "net"
20 "net/textproto"
21 "net/url"
22 "os"
23 "path"
24 "runtime"
25 "strconv"
26 "strings"
27 "sync"
28 "sync/atomic"
29 "time"
31 "golang_org/x/net/lex/httplex"
32 )
34 // Errors used by the HTTP server.
36 // ErrBodyNotAllowed is returned by ResponseWriter.Write calls
37 // when the HTTP method or response code does not permit a
38 // body.
39 ErrBodyNotAllowed = errors.New("http: request method or response status code does not allow body")
41 // ErrHijacked is returned by ResponseWriter.Write calls when
42 // the underlying connection has been hijacked using the
43 // Hijacker interface. A zero-byte write on a hijacked
44 // connection will return ErrHijacked without any other side
45 // effects.
48 // ErrContentLength is returned by ResponseWriter.Write calls
49 // when a Handler set a Content-Length response header with a
50 // declared size and then attempted to write more bytes than
51 // declared.
54 // Deprecated: ErrWriteAfterFlush is no longer used.
56 )
58 // A Handler responds to an HTTP request.
59 //
60 // ServeHTTP should write reply headers and data to the ResponseWriter
61 // and then return. Returning signals that the request is finished; it
62 // is not valid to use the ResponseWriter or read from the
63 // Request.Body after or concurrently with the completion of the
64 // ServeHTTP call.
65 //
66 // Depending on the HTTP client software, HTTP protocol version, and
67 // any intermediaries between the client and the Go server, it may not
68 // be possible to read from the Request.Body after writing to the
69 // ResponseWriter. Cautious handlers should read the Request.Body
70 // first, and then reply.
71 //
72 // Except for reading the body, handlers should not modify the
73 // provided Request.
74 //
75 // If ServeHTTP panics, the server (the caller of ServeHTTP) assumes
76 // that the effect of the panic was isolated to the active request.
77 // It recovers the panic, logs a stack trace to the server error log,
78 // and either closes the network connection or sends an HTTP/2
79 // RST_STREAM, depending on the HTTP protocol. To abort a handler so
80 // the client sees an interrupted response but the server doesn't log
81 // an error, panic with the value ErrAbortHandler.
84 }
86 // A ResponseWriter interface is used by an HTTP handler to
87 // construct an HTTP response.
88 //
89 // A ResponseWriter may not be used after the Handler.ServeHTTP method
90 // has returned.
92 // Header returns the header map that will be sent by
93 // WriteHeader. The Header map also is the mechanism with which
94 // Handlers can set HTTP trailers.
95 //
96 // Changing the header map after a call to WriteHeader (or
97 // Write) has no effect unless the modified headers are
98 // trailers.
99 //
100 // There are two ways to set Trailers. The preferred way is to
101 // predeclare in the headers which trailers you will later
102 // send by setting the "Trailer" header to the names of the
103 // trailer keys which will come later. In this case, those
104 // keys of the Header map are treated as if they were
105 // trailers. See the example. The second way, for trailer
106 // keys not known to the Handler until after the first Write,
107 // is to prefix the Header map keys with the TrailerPrefix
108 // constant value. See TrailerPrefix.
109 //
110 // To suppress implicit response headers (such as "Date"), set
111 // their value to nil.
114 // Write writes the data to the connection as part of an HTTP reply.
115 //
116 // If WriteHeader has not yet been called, Write calls
117 // WriteHeader(http.StatusOK) before writing the data. If the Header
118 // does not contain a Content-Type line, Write adds a Content-Type set
119 // to the result of passing the initial 512 bytes of written data to
120 // DetectContentType.
121 //
122 // Depending on the HTTP protocol version and the client, calling
123 // Write or WriteHeader may prevent future reads on the
124 // Request.Body. For HTTP/1.x requests, handlers should read any
125 // needed request body data before writing the response. Once the
126 // headers have been flushed (due to either an explicit Flusher.Flush
127 // call or writing enough data to trigger a flush), the request body
128 // may be unavailable. For HTTP/2 requests, the Go HTTP server permits
129 // handlers to continue to read the request body while concurrently
130 // writing the response. However, such behavior may not be supported
131 // by all HTTP/2 clients. Handlers should read before writing if
132 // possible to maximize compatibility.
135 // WriteHeader sends an HTTP response header with status code.
136 // If WriteHeader is not called explicitly, the first call to Write
137 // will trigger an implicit WriteHeader(http.StatusOK).
138 // Thus explicit calls to WriteHeader are mainly used to
139 // send error codes.
141 }
143 // The Flusher interface is implemented by ResponseWriters that allow
144 // an HTTP handler to flush buffered data to the client.
145 //
146 // The default HTTP/1.x and HTTP/2 ResponseWriter implementations
147 // support Flusher, but ResponseWriter wrappers may not. Handlers
148 // should always test for this ability at runtime.
149 //
150 // Note that even for ResponseWriters that support Flush,
151 // if the client is connected through an HTTP proxy,
152 // the buffered data may not reach the client until the response
153 // completes.
155 // Flush sends any buffered data to the client.
157 }
159 // The Hijacker interface is implemented by ResponseWriters that allow
160 // an HTTP handler to take over the connection.
161 //
162 // The default ResponseWriter for HTTP/1.x connections supports
163 // Hijacker, but HTTP/2 connections intentionally do not.
164 // ResponseWriter wrappers may also not support Hijacker. Handlers
165 // should always test for this ability at runtime.
167 // Hijack lets the caller take over the connection.
168 // After a call to Hijack the HTTP server library
169 // will not do anything else with the connection.
170 //
171 // It becomes the caller's responsibility to manage
172 // and close the connection.
173 //
174 // The returned net.Conn may have read or write deadlines
175 // already set, depending on the configuration of the
176 // Server. It is the caller's responsibility to set
177 // or clear those deadlines as needed.
178 //
179 // The returned bufio.Reader may contain unprocessed buffered
180 // data from the client.
181 //
182 // After a call to Hijack, the original Request.Body should
183 // not be used.
185 }
187 // The CloseNotifier interface is implemented by ResponseWriters which
188 // allow detecting when the underlying connection has gone away.
189 //
190 // This mechanism can be used to cancel long operations on the server
191 // if the client has disconnected before the response is ready.
193 // CloseNotify returns a channel that receives at most a
194 // single value (true) when the client connection has gone
195 // away.
196 //
197 // CloseNotify may wait to notify until Request.Body has been
198 // fully read.
199 //
200 // After the Handler has returned, there is no guarantee
201 // that the channel receives a value.
202 //
203 // If the protocol is HTTP/1.1 and CloseNotify is called while
204 // processing an idempotent request (such a GET) while
205 // HTTP/1.1 pipelining is in use, the arrival of a subsequent
206 // pipelined request may cause a value to be sent on the
207 // returned channel. In practice HTTP/1.1 pipelining is not
208 // enabled in browsers and not seen often in the wild. If this
209 // is a problem, use HTTP/2 or only use CloseNotify on methods
210 // such as POST.
212 }
215 // ServerContextKey is a context key. It can be used in HTTP
216 // handlers with context.WithValue to access the server that
217 // started the handler. The associated value will be of
218 // type *Server.
221 // LocalAddrContextKey is a context key. It can be used in
222 // HTTP handlers with context.WithValue to access the address
223 // the local address the connection arrived on.
224 // The associated value will be of type net.Addr.
226 )
228 // A conn represents the server side of an HTTP connection.
230 // server is the server on which the connection arrived.
231 // Immutable; never nil.
232 server *Server
234 // cancelCtx cancels the connection-level context.
235 cancelCtx context.CancelFunc
237 // rwc is the underlying network connection.
238 // This is never wrapped by other types and is the value given out
239 // to CloseNotifier callers. It is usually of type *net.TCPConn or
240 // *tls.Conn.
241 rwc net.Conn
243 // remoteAddr is rwc.RemoteAddr().String(). It is not populated synchronously
244 // inside the Listener's Accept goroutine, as some implementations block.
245 // It is populated immediately inside the (*conn).serve goroutine.
246 // This is the value of a Handler's (*Request).RemoteAddr.
247 remoteAddr string
249 // tlsState is the TLS connection state when using TLS.
250 // nil means not TLS.
253 // werr is set to the first write error to rwc.
254 // It is set via checkConnErrorWriter{w}, where bufw writes.
255 werr error
257 // r is bufr's read source. It's a wrapper around rwc that provides
258 // io.LimitedReader-style limiting (while reading request headers)
259 // and functionality to support CloseNotifier. See *connReader docs.
260 r *connReader
262 // bufr reads from r.
265 // bufw writes to checkConnErrorWriter{c}, which populates werr on error.
268 // lastMethod is the method of the most recent request
269 // on this connection, if any.
270 lastMethod string
276 // mu guards hijackedv
277 mu sync.Mutex
279 // hijackedv is whether this connection has been hijacked
280 // by a Handler with the Hijacker interface.
281 // It is guarded by mu.
282 hijackedv bool
283 }
289 }
291 // c.mu must be held.
295 }
306 }
307 }
309 return
310 }
312 // This should be >= 512 bytes for DetectContentType,
313 // but otherwise it's somewhat arbitrary.
316 // chunkWriter writes to a response's conn buffer, and is the writer
317 // wrapped by the response.bufw buffered writer.
318 //
319 // chunkWriter also is responsible for finalizing the Header, including
320 // conditionally setting the Content-Type and setting a Content-Length
321 // in cases where the handler's final output is smaller than the buffer
322 // size. It also conditionally adds chunk headers, when in chunking mode.
323 //
324 // See the comment above (*response).Write for the entire write flow.
326 res *response
328 // header is either nil or a deep clone of res.handlerHeader
329 // at the time of res.WriteHeader, if res.WriteHeader is
330 // called and extra buffering is being done to calculate
331 // Content-Type and/or Content-Length.
332 header Header
334 // wroteHeader tells whether the header's been written to "the
335 // wire" (or rather: w.conn.buf). this is unlike
336 // (*response).wroteHeader, which tells only whether it was
337 // logically written.
338 wroteHeader bool
340 // set by the writeHeader method:
342 }
347 )
352 }
354 // Eat writes.
356 }
361 return
362 }
363 }
367 }
370 }
371 return
372 }
377 }
379 }
384 }
387 // zero chunk to mark EOF
391 }
392 // final blank line after the trailers (whether
393 // present or not)
395 }
396 }
398 // A response represents the server side of an HTTP response.
400 conn *conn
402 reqBody io.ReadCloser
410 cw chunkWriter
412 // handlerHeader is the Header that Handlers get access to,
413 // which may be retained and mutated even after WriteHeader.
414 // handlerHeader is copied into cw.header at WriteHeader
415 // time, and privately mutated thereafter.
416 handlerHeader Header
423 // close connection after this reply. set on request and
424 // updated after response from handler if there's a
425 // "Connection: keep-alive" response header and a
426 // Content-Length.
427 closeAfterReply bool
429 // requestBodyLimitHit is set by requestTooLarge when
430 // maxBytesReader hits its max size. It is checked in
431 // WriteHeader, to make sure we don't consume the
432 // remaining request body to try to advance to the next HTTP
433 // request. Instead, when this is set, we stop reading
434 // subsequent requests on this connection and stop reading
435 // input from it.
436 requestBodyLimitHit bool
438 // trailers are the headers to be sent after the handler
439 // finishes writing the body. This field is initialized from
440 // the Trailer response header when the response header is
441 // written.
444 handlerDone atomicBool // set true when the handler exits
446 // Buffers for Date, Content-Length, and status code
451 // closeNotifyCh is the channel returned by CloseNotify.
452 // TODO(bradfitz): this is currently (for Go 1.8) always
453 // non-nil. Make this lazily-created again as it used to be?
456 }
458 // TrailerPrefix is a magic prefix for ResponseWriter.Header map keys
459 // that, if present, signals that the map entry is actually for
460 // the response trailers, and not the response headers. The prefix
461 // is stripped after the ServeHTTP call finishes and the values are
462 // sent in the trailers.
463 //
464 // This mechanism is intended only for trailers that are not known
465 // prior to the headers being written. If the set of trailers is fixed
466 // or known before the header is written, the normal Go trailers mechanism
467 // is preferred:
468 // https://golang.org/pkg/net/http/#ResponseWriter
469 // https://golang.org/pkg/net/http/#example_ResponseWriter_trailers
472 // finalTrailers is called after the Handler exits and returns a non-nil
473 // value if the Handler set any trailers.
475 var t Header
480 }
482 }
483 }
487 }
490 }
491 }
492 return t
493 }
500 // declareTrailer is called for each Trailer header when the
501 // response header is written. It notes that a header will need to be
502 // written in the trailers at the end of the response.
507 // Forbidden by RFC 2616 14.40.
508 return
509 }
511 }
513 // requestTooLarge is called by maxBytesReader when too much input has
514 // been read from the client.
520 }
521 }
523 // needsSniff reports whether a Content-Type still needs to be sniffed.
527 }
529 // writerOnly hides an io.Writer value's optional ReadFrom method
530 // from io.Copy.
532 io.Writer
533 }
541 }
546 return
547 }
548 }
550 // ReadFrom is here to optimize copying from an *os.File regular file
551 // to a *net.TCPConn with sendfile.
553 // Our underlying w.conn.rwc is usually a *TCPConn (with its
554 // own ReadFrom method). If not, or if our src isn't a regular
555 // file, just fall back to the normal copy method.
560 }
565 }
567 // sendfile path:
571 }
575 n += n0
578 }
579 }
584 // Now that cw has been flushed, its chunking field is guaranteed initialized.
587 n += n0
590 }
593 n += n0
595 }
597 // debugServerConnections controls whether all server connections are wrapped
598 // with a verbose logging wrapper.
601 // Create new connection from rwc.
606 }
609 }
610 return c
611 }
614 n int
615 err error
617 }
619 // connReader is the io.Reader wrapper used by *conn. It combines a
620 // selectively-activated io.LimitedReader (to bound request header
621 // read sizes) with support for selectively keeping an io.Reader.Read
622 // call blocked in a background goroutine to wait for activity and
623 // trigger a CloseNotifier channel.
625 conn *conn
628 hasByte bool
631 inRead bool
634 }
640 }
641 }
650 }
652 return
653 }
657 }
664 // We were at EOF already (since we wouldn't be in a
665 // background read otherwise), so this is a pipelined
666 // HTTP request.
668 }
670 // Ignore this error. It's the expected error from
671 // another goroutine calling abortPendingRead.
674 }
679 }
685 return
686 }
691 }
693 }
699 // may be called from multiple goroutines.
703 }
705 // closeNotifyFromPipelinedRequest simply calls closeNotify.
706 //
707 // This method wrapper is here for documentation. The callers are the
708 // cases where we send on the closenotify channel because of a
709 // pipelined HTTP request, per the previous Go behavior and
710 // documentation (that this "MAY" happen).
711 //
712 // TODO: consider changing this behavior and making context
713 // cancelation and closenotify work the same.
716 }
718 // may be called from multiple goroutines.
724 }
725 }
726 }
733 }
737 }
741 }
744 }
750 }
759 }
765 }
768 bufioReaderPool sync.Pool
769 bufioWriter2kPool sync.Pool
770 bufioWriter4kPool sync.Pool
771 )
777 },
778 }
786 }
788 }
794 return br
795 }
796 // Note: if this reader size is ever changed, update
797 // TestHandlerBodyClose's assumptions.
799 }
804 }
812 return bw
813 }
814 }
816 }
822 }
823 }
825 // DefaultMaxHeaderBytes is the maximum permitted size of the headers
826 // in an HTTP request.
827 // This can be overridden by setting Server.MaxHeaderBytes.
833 }
834 return DefaultMaxHeaderBytes
835 }
839 }
841 // wrapper around io.ReadCloser which on first read, sends an
842 // HTTP/1.1 100 Continue header
844 resp *response
845 readCloser io.ReadCloser
846 closed bool
847 sawEOF bool
848 }
853 }
858 }
862 }
863 return
864 }
869 }
871 // TimeFormat is the time format to use when generating times in HTTP
872 // headers. It is like time.RFC1123 but hard-codes GMT as the time
873 // zone. The time being formatted must be in UTC for Format to
874 // generate the correct format.
875 //
876 // For parsing this time format, see ParseTime.
879 // appendTime is a non-allocating version of []byte(t.UTC().Format(TimeFormat))
899 }
903 // Read next request from connection.
907 }
912 )
916 }
919 }
924 }()
925 }
929 // RFC 2616 section 4.1 tolerance for old buggy clients.
932 }
937 }
939 }
943 }
950 if req.ProtoAtLeast(1, 1) && (!haveHost || len(hosts) == 0) && !isH2Upgrade && req.Method != "CONNECT" {
952 }
955 }
958 }
962 }
966 }
967 }
968 }
977 }
979 // Adjust the read deadline if necessary.
982 }
993 // We populate these ahead of time so we're not
994 // reading from req.Header after their Handler starts
995 // and maybe mutates it (Issue 14940)
998 }
1001 }
1005 }
1007 // http1ServerSupportsRequest reports whether Go's HTTP/1.x server
1008 // supports the given request.
1012 }
1013 // Accept "PRI * HTTP/2.0" upgrade requests, so Handlers can
1014 // wire up their own HTTP/2 upgrades.
1018 }
1019 // Reject HTTP/0.x, and all other HTTP/2+ requests (which
1020 // aren't encoded in ASCII anyway).
1022 }
1026 // Accessing the header between logically writing it
1027 // and physically writing it means we need to allocate
1028 // a clone to snapshot the logically written state.
1030 }
1033 }
1035 // maxPostHandlerReadBytes is the max number of Request.Body bytes not
1036 // consumed by a handler that the server will read from the client
1037 // in order to keep a connection alive. If there are more bytes than
1038 // this then the server to be paranoid instead sends a "Connection:
1039 // close" response.
1040 //
1041 // This number is approximately what a typical machine's TCP buffer
1042 // size is anyway. (if we have the bytes on the machine, we might as
1043 // well read them)
1049 return
1050 }
1053 return
1054 }
1060 }
1069 }
1070 }
1071 }
1073 // extraHeader is the set of headers sometimes added by chunkWriter.writeHeader.
1074 // This type is used to avoid extra allocations from cloning and/or populating
1075 // the response Header map and all its 1-element slices.
1077 contentType string
1078 connection string
1079 transferEncoding string
1082 }
1084 // Sorted the same as extraHeader.Write's loop.
1089 }
1094 )
1096 // Write writes the headers described in h to w.
1097 //
1098 // This method has a value receiver, despite the somewhat large size
1099 // of h, because it prevents an allocation. The escape analysis isn't
1100 // smart enough to realize this function doesn't mutate h.
1106 }
1111 }
1118 }
1119 }
1120 }
1122 // writeHeader finalizes the header sent to the client and writes it
1123 // to cw.res.conn.bufw.
1124 //
1125 // p is not written by writeHeader, but is the first chunk of the body
1126 // that will be written. It is sniffed for a Content-Type if none is
1127 // set explicitly. It's also used to set the Content-Length, if the
1128 // total body size was small and the handler has already finished
1129 // running.
1132 return
1133 }
1140 // header is written out to w.conn.buf below. Depending on the
1141 // state of the handler, we either own the map or not. If we
1142 // don't own it, the exclude map is created lazily for
1143 // WriteSubset to remove headers. The setHeader struct holds
1144 // headers we need to add.
1149 }
1154 return
1155 }
1157 return
1158 }
1161 }
1163 }
1164 var setHeader extraHeader
1166 // Don't write out the fake "Trailer:foo" keys. See TrailerPrefix.
1172 }
1175 }
1176 }
1180 }
1185 // If the handler is done but never sent a Content-Length
1186 // response header and this is our first (and last) write, set
1187 // it, even to zero. This helps HTTP/1.0 clients keep their
1188 // "keep-alive" connections alive.
1189 // Exceptions: 304/204/1xx responses never get Content-Length, and if
1190 // it was a HEAD request, we don't know the difference between
1191 // 0 actual bytes and 0 bytes because the handler noticed it
1192 // was a HEAD request and chose not to write anything. So for
1193 // HEAD, the handler should either write the Content-Length or
1194 // write non-zero bytes. If it's actually 0 bytes and the
1195 // handler never looked at the Request.Method, we just don't
1196 // send a Content-Length header.
1197 // Further, we don't send an automatic Content-Length if they
1198 // set a Transfer-Encoding, because they're generally incompatible.
1199 if w.handlerDone.isSet() && !trailers && !hasTE && bodyAllowedForStatus(w.status) && header.get("Content-Length") == "" && (!isHEAD || len(p) > 0) {
1202 }
1204 // If this was an HTTP/1.0 request with keep-alive and we sent a
1205 // Content-Length back, we can make this a keep-alive response ...
1210 }
1211 }
1213 // Check for a explicit (and valid) Content-Length header.
1220 }
1223 }
1227 }
1229 // If the client wanted a 100-continue but we never sent it to
1230 // them (or, more strictly: we never finished reading their
1231 // request body), don't reuse this connection because it's now
1232 // in an unknown state: we might be sending this response at
1233 // the same time the client is now sending its request body
1234 // after a timeout. (Some HTTP clients send Expect:
1235 // 100-continue but knowing that some servers don't support
1236 // it, the clients set a timer and send the body later anyway)
1237 // If we haven't seen EOF, we can't skip over the unread body
1238 // because we don't know if the next bytes on the wire will be
1239 // the body-following-the-timer or the subsequent request.
1240 // See Issue 11549.
1243 }
1245 // Per RFC 2616, we should consume the request body before
1246 // replying, if the handler hasn't already done so. But we
1247 // don't want to do an unbounded amount of reading here for
1248 // DoS reasons, so we only try up to a threshold.
1249 // TODO(bradfitz): where does RFC 2616 say that? See Issue 15527
1250 // about HTTP/1.x Handlers concurrently reading and writing, like
1251 // HTTP/2 handlers can do. Maybe this code should be relaxed?
1259 }
1265 // Body was closed in handler with non-EOF error.
1267 }
1272 }
1276 }
1282 // There must be even more data left over.
1285 // Body was already consumed and closed.
1287 // The remaining body was just consumed, close it.
1291 }
1293 // Some other kind of error occurred, like a read timeout, or
1294 // corrupt chunked encoding. In any case, whatever remains
1295 // on the wire must not be parsed as another HTTP request.
1297 }
1298 }
1304 }
1305 }
1309 // If no content type, apply sniffing algorithm to body.
1313 }
1317 }
1318 }
1322 }
1325 // TODO: return an error if WriteHeader gets a return parameter
1326 // For now just ignore the Content-Length.
1327 w.conn.server.logf("http: WriteHeader called with both Transfer-Encoding of %q and a Content-Length of %d",
1331 }
1334 // do nothing
1340 // HTTP/1.1 or greater: Transfer-Encoding has been set to identity, and no
1341 // content-length has been provided. The connection must be closed after the
1342 // reply is written, and no chunking is to be done. This is the setup
1343 // recommended in the Server-Sent Events candidate recommendation 11,
1344 // section 8.
1349 // HTTP/1.1 or greater: use chunked transfer encoding
1350 // to avoid closing the connection at EOF.
1354 // We will send the chunked Transfer-Encoding header later.
1356 }
1357 }
1359 // HTTP version < 1.1: cannot do chunked transfer
1360 // encoding and we don't know the Content-Length so
1361 // signal EOF by closing connection.
1364 }
1366 // Cannot use Content-Length with non-identity Transfer-Encoding.
1369 }
1371 return
1372 }
1374 if w.closeAfterReply && (!keepAlivesEnabled || !hasToken(cw.header.get("Connection"), "close")) {
1378 }
1379 }
1385 }
1387 // foreachHeaderElement splits v according to the "#rule" construction
1388 // in RFC 2616 section 2.1 and calls fn for each non-empty element.
1392 return
1393 }
1396 return
1397 }
1401 }
1402 }
1403 }
1405 // writeStatusLine writes an HTTP/1.x Status-Line (RFC 2616 Section 6.1)
1406 // to bw. is11 is whether the HTTP request is HTTP/1.1. false means HTTP/1.0.
1407 // code is the response status code.
1408 // scratch is an optional scratch buffer. If it has at least capacity 3, it's used.
1414 }
1421 // don't worry about performance
1423 }
1424 }
1426 // bodyAllowed reports whether a Write is allowed for this response type.
1427 // It's illegal to call this before the header has been flushed.
1431 }
1433 }
1435 // The Life Of A Write is like this:
1436 //
1437 // Handler starts. No header has been sent. The handler can either
1438 // write a header, or just start writing. Writing before sending a header
1439 // sends an implicitly empty 200 OK header.
1440 //
1441 // If the handler didn't declare a Content-Length up front, we either
1442 // go into chunking mode or, if the handler finishes running before
1443 // the chunking buffer size, we compute a Content-Length and send that
1444 // in the header instead.
1445 //
1446 // Likewise, if the handler didn't set a Content-Type, we sniff that
1447 // from the initial chunk of output.
1448 //
1449 // The Writers are wired together like:
1450 //
1451 // 1. *response (the ResponseWriter) ->
1452 // 2. (*response).w, a *bufio.Writer of bufferBeforeChunkingSize bytes
1453 // 3. chunkWriter.Writer (whose writeHeader finalizes Content-Length/Type)
1454 // and which writes the chunk headers, if needed.
1455 // 4. conn.buf, a bufio.Writer of default (4kB) bytes, writing to ->
1456 // 5. checkConnErrorWriter{c}, which notes any non-nil error on Write
1457 // and populates c.werr with it if so. but otherwise writes to:
1458 // 6. the rwc, the net.Conn.
1459 //
1460 // TODO(bradfitz): short-circuit some of the buffering when the
1461 // initial header contains both a Content-Type and Content-Length.
1462 // Also short-circuit in (1) when the header's been sent and not in
1463 // chunking mode, writing directly to (4) instead, if (2) has no
1464 // buffered data. More generally, we could short-circuit from (1) to
1465 // (3) even in chunking mode if the write size from (1) is over some
1466 // threshold and nothing is in (2). The answer might be mostly making
1467 // bufferBeforeChunkingSize smaller and having bufio's fast-paths deal
1468 // with this instead.
1471 }
1475 }
1477 // either dataB or dataS is non-zero.
1482 }
1484 }
1487 }
1490 }
1493 }
1498 }
1503 }
1504 }
1511 }
1520 // Close the body (regardless of w.closeAfterReply) so we can
1521 // re-use its bufio.Reader later safely.
1526 }
1527 }
1529 // shouldReuseConnection reports whether the underlying TCP connection can be reused.
1530 // It must only be called after the handler is done executing.
1533 // The request or something set while executing the
1534 // handler indicated we shouldn't reuse this
1535 // connection.
1537 }
1539 if w.req.Method != "HEAD" && w.contentLength != -1 && w.bodyAllowed() && w.contentLength != w.written {
1540 // Did not write enough. Avoid getting out of sync.
1542 }
1544 // There was some error writing to the underlying connection
1545 // during the request, so don't re-use this conn.
1548 }
1552 }
1555 }
1560 }
1565 }
1568 }
1572 // Steal the bufio.Reader (~4KB worth of memory) and its associated
1573 // reader for a future connection.
1576 }
1580 // Steal the bufio.Writer (~4KB worth of memory) and its associated
1581 // writer for a future connection.
1584 }
1585 }
1587 // Close the connection.
1591 }
1593 // rstAvoidanceDelay is the amount of time we sleep after closing the
1594 // write side of a TCP connection before closing the entire socket.
1595 // By sleeping, we increase the chances that the client sees our FIN
1596 // and processes its final data before they process the subsequent RST
1597 // from closing a connection with known unread data.
1598 // This RST seems to occur mostly on BSD systems. (And Windows?)
1599 // This timeout is somewhat arbitrary (~latency around the planet).
1604 }
1608 // closeWrite flushes any outstanding data and sends a FIN packet (if
1609 // client is connected via TCP), signalling that we're done. We then
1610 // pause for a bit, hoping the client processes it before any
1611 // subsequent RST.
1612 //
1613 // See https://golang.org/issue/3595
1618 }
1620 }
1622 // validNPN reports whether the proto is not a blacklisted Next
1623 // Protocol Negotiation protocol. Empty and built-in protocol types
1624 // are blacklisted and can't be overridden with alternate
1625 // implementations.
1630 }
1632 }
1641 }
1645 }
1646 }
1648 // connStateInterface is an array of the interface{} versions of
1649 // ConnState values, so we can use them in atomic.Values later without
1650 // paying the cost of shoving their integers in an interface{}.
1657 }
1659 // badRequestError is a literal string (used by in the server in HTML,
1660 // unescaped) to tell the user why their request was bad. It should
1661 // be plain text without user info or other embedded errors.
1666 // ErrAbortHandler is a sentinel panic value to abort a handler.
1667 // While any panic from ServeHTTP aborts the response to the client,
1668 // panicking with ErrAbortHandler also suppresses logging of a stack
1669 // trace to the server's error log.
1672 // isCommonNetReadError reports whether err is a common error
1673 // encountered during reading a request off the network when the
1674 // client has gone away or had its read fail somehow. This is used to
1675 // determine which logs are interesting enough to log about.
1679 }
1682 }
1685 }
1687 }
1689 // Serve a new connection.
1699 }
1703 }
1704 }()
1709 }
1712 }
1715 return
1716 }
1723 }
1724 return
1725 }
1726 }
1728 // HTTP/1.x from here on.
1741 // If we read any bytes off the wire, we're active.
1743 }
1745 const errorHeaders = "\r\nContent-Type: text/plain; charset=utf-8\r\nConnection: close\r\n\r\n"
1748 // Their HTTP client may or may not be
1749 // able to read this if we're
1750 // responding to them and hanging up
1751 // while they're still writing their
1752 // request. Undefined behavior.
1756 return
1757 }
1760 }
1765 }
1768 return
1769 }
1771 // Expect 100 Continue support
1775 // Wrap the Body reader with one that replies on the connection
1777 }
1780 return
1781 }
1790 }
1792 }
1794 // HTTP cannot have multiple simultaneous active requests.[*]
1795 // Until the server replies to this request, it can't read another,
1796 // so we might as well run the handler in this goroutine.
1797 // [*] Not strictly true: HTTP pipelining. We could let them all process
1798 // in parallel even if their responses need to be serialized.
1799 // But we're not going to implement HTTP pipelining because it
1800 // was never deployed in the wild and the answer is HTTP/2.
1804 return
1805 }
1810 }
1811 return
1812 }
1817 // We're in shutdown mode. We might've replied
1818 // to the user without "Connection: close" and
1819 // they might think they can send another
1820 // request, but such is life with HTTP/1.1.
1821 return
1822 }
1827 return
1828 }
1829 }
1831 }
1832 }
1835 // TODO(bradfitz): let ServeHTTP handlers handle
1836 // requests with non-standard expectation[s]? Seems
1837 // theoretical at best, and doesn't fit into the
1838 // current ServeHTTP model anyway. We'd need to
1839 // make the ResponseWriter an optional
1840 // "ExpectReplier" interface or something.
1841 //
1842 // For now we'll just obey RFC 2616 14.20 which says
1843 // "If a server receives a request containing an
1844 // Expect field that includes an expectation-
1845 // extension that it does not support, it MUST
1846 // respond with a 417 (Expectation Failed) status."
1850 }
1852 // Hijack implements the Hijacker.Hijack method. Our response is both a ResponseWriter
1853 // and a Hijacker.
1857 }
1860 }
1866 // Release the bufioWriter that writes to the chunk writer, it is not
1867 // used after a connection has been hijacked.
1872 }
1874 }
1879 }
1881 }
1891 }
1892 }
1894 // requestBodyRemains reports whether future calls to Read
1895 // on rc might yield more data.
1899 }
1907 }
1908 }
1910 // The HandlerFunc type is an adapter to allow the use of
1911 // ordinary functions as HTTP handlers. If f is a function
1912 // with the appropriate signature, HandlerFunc(f) is a
1913 // Handler that calls f.
1916 // ServeHTTP calls f(w, r).
1919 }
1921 // Helper handlers
1923 // Error replies to the request with the specified error message and HTTP code.
1924 // It does not otherwise end the request; the caller should ensure no further
1925 // writes are done to w.
1926 // The error message should be plain text.
1932 }
1934 // NotFound replies to the request with an HTTP 404 not found error.
1937 // NotFoundHandler returns a simple request handler
1938 // that replies to each request with a ``404 page not found'' reply.
1941 // StripPrefix returns a handler that serves HTTP requests
1942 // by removing the given prefix from the request URL's Path
1943 // and invoking the handler h. StripPrefix handles a
1944 // request for a path that doesn't begin with prefix by
1945 // replying with an HTTP 404 not found error.
1948 return h
1949 }
1960 }
1961 })
1962 }
1964 // Redirect replies to the request with a redirect to url,
1965 // which may be a path relative to the request path.
1966 //
1967 // The provided code should be in the 3xx range and is usually
1968 // StatusMovedPermanently, StatusFound or StatusSeeOther.
1970 // parseURL is just url.Parse (url is shadowed for godoc).
1972 // If url was relative, make absolute by
1973 // combining with request path.
1974 // The browser would probably do this for us,
1975 // but doing it ourselves is more reliable.
1977 // NOTE(rsc): RFC 2616 says that the Location
1978 // line must be an absolute URI, like
1979 // "http://www.google.com/redirect/",
1980 // not a path like "/redirect/".
1981 // Unfortunately, we don't know what to
1982 // put in the host name section to get the
1983 // client to connect to us again, so we can't
1984 // know the right absolute URI to send back.
1985 // Because of this problem, no one pays attention
1986 // to the RFC; they all send back just a new path.
1987 // So do we.
1992 }
1994 // no leading http://server
1996 // make relative path absolute
1999 }
2004 }
2006 // clean up but preserve trailing slash
2011 }
2012 url += query
2013 }
2014 }
2019 // RFC 2616 recommends that a short note "SHOULD" be included in the
2020 // response because older user agents may not understand 301/307.
2021 // Shouldn't send the response for POST or HEAD; that leaves GET.
2025 }
2026 }
2028 // parseURL is just url.Parse. It exists only so that url.Parse can be called
2029 // in places where url is shadowed for godoc. See https://golang.org/cl/49930.
2036 // """ is shorter than """.
2038 // "'" is shorter than "'" and apos was not in HTML until HTML5.
2040 )
2044 }
2046 // Redirect to a fixed URL
2048 url string
2049 code int
2050 }
2054 }
2056 // RedirectHandler returns a request handler that redirects
2057 // each request it receives to the given url using the given
2058 // status code.
2059 //
2060 // The provided code should be in the 3xx range and is usually
2061 // StatusMovedPermanently, StatusFound or StatusSeeOther.
2064 }
2066 // ServeMux is an HTTP request multiplexer.
2067 // It matches the URL of each incoming request against a list of registered
2068 // patterns and calls the handler for the pattern that
2069 // most closely matches the URL.
2070 //
2071 // Patterns name fixed, rooted paths, like "/favicon.ico",
2072 // or rooted subtrees, like "/images/" (note the trailing slash).
2073 // Longer patterns take precedence over shorter ones, so that
2074 // if there are handlers registered for both "/images/"
2075 // and "/images/thumbnails/", the latter handler will be
2076 // called for paths beginning "/images/thumbnails/" and the
2077 // former will receive requests for any other paths in the
2078 // "/images/" subtree.
2079 //
2080 // Note that since a pattern ending in a slash names a rooted subtree,
2081 // the pattern "/" matches all paths not matched by other registered
2082 // patterns, not just the URL with Path == "/".
2083 //
2084 // If a subtree has been registered and a request is received naming the
2085 // subtree root without its trailing slash, ServeMux redirects that
2086 // request to the subtree root (adding the trailing slash). This behavior can
2087 // be overridden with a separate registration for the path without
2088 // the trailing slash. For example, registering "/images/" causes ServeMux
2089 // to redirect a request for "/images" to "/images/", unless "/images" has
2090 // been registered separately.
2091 //
2092 // Patterns may optionally begin with a host name, restricting matches to
2093 // URLs on that host only. Host-specific patterns take precedence over
2094 // general patterns, so that a handler might register for the two patterns
2095 // "/codesearch" and "codesearch.google.com/" without also taking over
2096 // requests for "http://www.google.com/".
2097 //
2098 // ServeMux also takes care of sanitizing the URL request path,
2099 // redirecting any request containing . or .. elements or repeated slashes
2100 // to an equivalent, cleaner URL.
2102 mu sync.RWMutex
2105 }
2108 explicit bool
2109 h Handler
2110 pattern string
2111 }
2113 // NewServeMux allocates and returns a new ServeMux.
2116 // DefaultServeMux is the default ServeMux used by Serve.
2119 var defaultServeMux ServeMux
2121 // Does path match pattern?
2124 // should not happen
2126 }
2130 }
2132 }
2134 // Return the canonical path for p, eliminating . and .. elements.
2138 }
2141 }
2143 // path.Clean removes trailing slash except for root;
2144 // put the trailing slash back if necessary.
2147 }
2148 return np
2149 }
2151 // stripHostPort returns h without any trailing ":<port>".
2153 // If no port on host, return unchanged
2155 return h
2156 }
2160 }
2161 return host
2162 }
2164 // Find a handler on a handler map given a path string.
2165 // Most-specific (longest) pattern wins.
2167 // Check for exact match first.
2171 }
2173 // Check for longest valid match.
2177 continue
2178 }
2183 }
2184 }
2185 return
2186 }
2188 // Handler returns the handler to use for the given request,
2189 // consulting r.Method, r.Host, and r.URL.Path. It always returns
2190 // a non-nil handler. If the path is not in its canonical form, the
2191 // handler will be an internally-generated handler that redirects
2192 // to the canonical path. If the host contains a port, it is ignored
2193 // when matching handlers.
2194 //
2195 // The path and host are used unchanged for CONNECT requests.
2196 //
2197 // Handler also returns the registered pattern that matches the
2198 // request or, in the case of internally-generated redirects,
2199 // the pattern that will match after following the redirect.
2200 //
2201 // If there is no registered handler that applies to the request,
2202 // Handler returns a ``page not found'' handler and an empty pattern.
2205 // CONNECT requests are not canonicalized.
2208 }
2210 // All other requests have any port stripped and path cleaned
2211 // before passing to mux.handler.
2219 }
2222 }
2224 // handler is the main implementation of Handler.
2225 // The path is known to be in canonical form, except for CONNECT methods.
2230 // Host-specific pattern takes precedence over generic ones
2233 }
2236 }
2239 }
2240 return
2241 }
2243 // ServeHTTP dispatches the request to the handler whose
2244 // pattern most closely matches the request URL.
2249 }
2251 return
2252 }
2255 }
2257 // Handle registers the handler for the given pattern.
2258 // If a handler already exists for pattern, Handle panics.
2265 }
2268 }
2271 }
2275 }
2280 }
2282 // Helpful behavior:
2283 // If pattern is /tree/, insert an implicit permanent redirect for /tree.
2284 // It can be overridden by an explicit registration.
2287 // If pattern contains a host name, strip it and use remaining
2288 // path for redirect.
2289 path := pattern
2291 // In pattern, at least the last character is a '/', so
2292 // strings.Index can't be -1.
2294 }
2296 mux.m[pattern[0:n-1]] = muxEntry{h: RedirectHandler(url.String(), StatusMovedPermanently), pattern: pattern}
2297 }
2298 }
2300 // HandleFunc registers the handler function for the given pattern.
2303 }
2305 // Handle registers the handler for the given pattern
2306 // in the DefaultServeMux.
2307 // The documentation for ServeMux explains how patterns are matched.
2310 // HandleFunc registers the handler function for the given pattern
2311 // in the DefaultServeMux.
2312 // The documentation for ServeMux explains how patterns are matched.
2315 }
2317 // Serve accepts incoming HTTP connections on the listener l,
2318 // creating a new service goroutine for each. The service goroutines
2319 // read requests and then call handler to reply to them.
2320 // Handler is typically nil, in which case the DefaultServeMux is used.
2324 }
2326 // Serve accepts incoming HTTPS connections on the listener l,
2327 // creating a new service goroutine for each. The service goroutines
2328 // read requests and then call handler to reply to them.
2329 //
2330 // Handler is typically nil, in which case the DefaultServeMux is used.
2331 //
2332 // Additionally, files containing a certificate and matching private key
2333 // for the server must be provided. If the certificate is signed by a
2334 // certificate authority, the certFile should be the concatenation
2335 // of the server's certificate, any intermediates, and the CA's certificate.
2339 }
2341 // A Server defines parameters for running an HTTP server.
2342 // The zero value for Server is a valid configuration.
2345 Handler Handler // handler to invoke, http.DefaultServeMux if nil
2348 // ReadTimeout is the maximum duration for reading the entire
2349 // request, including the body.
2350 //
2351 // Because ReadTimeout does not let Handlers make per-request
2352 // decisions on each request body's acceptable deadline or
2353 // upload rate, most users will prefer to use
2354 // ReadHeaderTimeout. It is valid to use them both.
2355 ReadTimeout time.Duration
2357 // ReadHeaderTimeout is the amount of time allowed to read
2358 // request headers. The connection's read deadline is reset
2359 // after reading the headers and the Handler can decide what
2360 // is considered too slow for the body.
2361 ReadHeaderTimeout time.Duration
2363 // WriteTimeout is the maximum duration before timing out
2364 // writes of the response. It is reset whenever a new
2365 // request's header is read. Like ReadTimeout, it does not
2366 // let Handlers make decisions on a per-request basis.
2367 WriteTimeout time.Duration
2369 // IdleTimeout is the maximum amount of time to wait for the
2370 // next request when keep-alives are enabled. If IdleTimeout
2371 // is zero, the value of ReadTimeout is used. If both are
2372 // zero, ReadHeaderTimeout is used.
2373 IdleTimeout time.Duration
2375 // MaxHeaderBytes controls the maximum number of bytes the
2376 // server will read parsing the request header's keys and
2377 // values, including the request line. It does not limit the
2378 // size of the request body.
2379 // If zero, DefaultMaxHeaderBytes is used.
2380 MaxHeaderBytes int
2382 // TLSNextProto optionally specifies a function to take over
2383 // ownership of the provided TLS connection when an NPN/ALPN
2384 // protocol upgrade has occurred. The map key is the protocol
2385 // name negotiated. The Handler argument should be used to
2386 // handle HTTP requests and will initialize the Request's TLS
2387 // and RemoteAddr if not already set. The connection is
2388 // automatically closed when the function returns.
2389 // If TLSNextProto is not nil, HTTP/2 support is not enabled
2390 // automatically.
2393 // ConnState specifies an optional callback function that is
2394 // called when a client connection changes state. See the
2395 // ConnState type and associated constants for details.
2398 // ErrorLog specifies an optional logger for errors accepting
2399 // connections and unexpected behavior from handlers.
2400 // If nil, logging goes to os.Stderr via the log package's
2401 // standard logger.
2407 nextProtoErr error // result of http2.ConfigureServer if used
2409 mu sync.Mutex
2414 }
2420 }
2425 }
2427 }
2433 // Already closed. Don't close again.
2435 // Safe to close here. We're the only closer, guarded
2436 // by s.mu.
2438 }
2439 }
2441 // Close immediately closes all active net.Listeners and any
2442 // connections in state StateNew, StateActive, or StateIdle. For a
2443 // graceful shutdown, use Shutdown.
2444 //
2445 // Close does not attempt to close (and does not even know about)
2446 // any hijacked connections, such as WebSockets.
2447 //
2448 // Close returns any error returned from closing the Server's
2449 // underlying Listener(s).
2458 }
2459 return err
2460 }
2462 // shutdownPollInterval is how often we poll for quiescence
2463 // during Server.Shutdown. This is lower during tests, to
2464 // speed up tests.
2465 // Ideally we could find a solution that doesn't involve polling,
2466 // but which also doesn't have a high runtime cost (and doesn't
2467 // involve any contentious mutexes), but that is left as an
2468 // exercise for the reader.
2471 // Shutdown gracefully shuts down the server without interrupting any
2472 // active connections. Shutdown works by first closing all open
2473 // listeners, then closing all idle connections, and then waiting
2474 // indefinitely for connections to return to idle and then shut down.
2475 // If the provided context expires before the shutdown is complete,
2476 // Shutdown returns the context's error, otherwise it returns any
2477 // error returned from closing the Server's underlying Listener(s).
2478 //
2479 // When Shutdown is called, Serve, ListenAndServe, and
2480 // ListenAndServeTLS immediately return ErrServerClosed. Make sure the
2481 // program doesn't exit and waits instead for Shutdown to return.
2482 //
2483 // Shutdown does not attempt to close nor wait for hijacked
2484 // connections such as WebSockets. The caller of Shutdown should
2485 // separately notify such long-lived connections of shutdown and wait
2486 // for them to close, if desired.
2496 }
2503 return lnerr
2504 }
2509 }
2510 }
2511 }
2513 // RegisterOnShutdown registers a function to call on Shutdown.
2514 // This can be used to gracefully shutdown connections that have
2515 // undergone NPN/ALPN protocol upgrade or that have been hijacked.
2516 // This function should start protocol-specific graceful shutdown,
2517 // but should not wait for shutdown to complete.
2522 }
2524 // closeIdleConns closes all idle connections and reports whether the
2525 // server is quiescent.
2534 continue
2535 }
2538 }
2539 return quiescent
2540 }
2543 var err error
2546 err = cerr
2547 }
2549 }
2550 return err
2551 }
2553 // A ConnState represents the state of a client connection to a server.
2554 // It's used by the optional Server.ConnState hook.
2558 // StateNew represents a new connection that is expected to
2559 // send a request immediately. Connections begin at this
2560 // state and then transition to either StateActive or
2561 // StateClosed.
2564 // StateActive represents a connection that has read 1 or more
2565 // bytes of a request. The Server.ConnState hook for
2566 // StateActive fires before the request has entered a handler
2567 // and doesn't fire again until the request has been
2568 // handled. After the request is handled, the state
2569 // transitions to StateClosed, StateHijacked, or StateIdle.
2570 // For HTTP/2, StateActive fires on the transition from zero
2571 // to one active request, and only transitions away once all
2572 // active requests are complete. That means that ConnState
2573 // cannot be used to do per-request work; ConnState only notes
2574 // the overall state of the connection.
2575 StateActive
2577 // StateIdle represents a connection that has finished
2578 // handling a request and is in the keep-alive state, waiting
2579 // for a new request. Connections transition from StateIdle
2580 // to either StateActive or StateClosed.
2581 StateIdle
2583 // StateHijacked represents a hijacked connection.
2584 // This is a terminal state. It does not transition to StateClosed.
2585 StateHijacked
2587 // StateClosed represents a closed connection.
2588 // This is a terminal state. Hijacked connections do not
2589 // transition to StateClosed.
2590 StateClosed
2591 )
2599 }
2603 }
2605 // serverHandler delegates to either the server's Handler or
2606 // DefaultServeMux and also handles "OPTIONS *" requests.
2608 srv *Server
2609 }
2614 handler = DefaultServeMux
2615 }
2618 }
2620 }
2622 // ListenAndServe listens on the TCP network address srv.Addr and then
2623 // calls Serve to handle requests on incoming connections.
2624 // Accepted connections are configured to enable TCP keep-alives.
2625 // If srv.Addr is blank, ":http" is used.
2626 // ListenAndServe always returns a non-nil error.
2631 }
2634 return err
2635 }
2637 }
2641 // shouldDoServeHTTP2 reports whether Server.Serve should configure
2642 // automatic HTTP/2. (which sets up the srv.TLSNextProto map)
2645 // Compatibility with Go 1.6:
2646 // If there's no TLSConfig, it's possible that the user just
2647 // didn't set it on the http.Server, but did pass it to
2648 // tls.NewListener and passed that listener to Serve.
2649 // So we should configure HTTP/2 (to set up srv.TLSNextProto)
2650 // in case the listener returns an "h2" *tls.Conn.
2652 }
2653 // The user specified a TLSConfig on their http.Server.
2654 // In this, case, only configure HTTP/2 if their tls.Config
2655 // explicitly mentions "h2". Otherwise http2.ConfigureServer
2656 // would modify the tls.Config to add it, but they probably already
2657 // passed this tls.Config to tls.NewListener. And if they did,
2658 // it's too late anyway to fix it. It would only be potentially racy.
2659 // See Issue 15908.
2661 }
2663 // ErrServerClosed is returned by the Server's Serve, ServeTLS, ListenAndServe,
2664 // and ListenAndServeTLS methods after a call to Shutdown or Close.
2667 // Serve accepts incoming connections on the Listener l, creating a
2668 // new service goroutine for each. The service goroutines read requests and
2669 // then call srv.Handler to reply to them.
2670 //
2671 // For HTTP/2 support, srv.TLSConfig should be initialized to the
2672 // provided listener's TLS Config before calling Serve. If
2673 // srv.TLSConfig is non-nil and doesn't include the string "h2" in
2674 // Config.NextProtos, HTTP/2 support is not enabled.
2675 //
2676 // Serve always returns a non-nil error. After Shutdown or Close, the
2677 // returned error is ErrServerClosed.
2682 }
2686 return err
2687 }
2699 return ErrServerClosed
2701 }
2707 }
2709 tempDelay = max
2710 }
2713 continue
2714 }
2715 return e
2716 }
2721 }
2722 }
2724 // ServeTLS accepts incoming connections on the Listener l, creating a
2725 // new service goroutine for each. The service goroutines read requests and
2726 // then call srv.Handler to reply to them.
2727 //
2728 // Additionally, files containing a certificate and matching private key for
2729 // the server must be provided if neither the Server's TLSConfig.Certificates
2730 // nor TLSConfig.GetCertificate are populated.. If the certificate is signed by
2731 // a certificate authority, the certFile should be the concatenation of the
2732 // server's certificate, any intermediates, and the CA's certificate.
2733 //
2734 // For HTTP/2 support, srv.TLSConfig should be initialized to the
2735 // provided listener's TLS Config before calling Serve. If
2736 // srv.TLSConfig is non-nil and doesn't include the string "h2" in
2737 // Config.NextProtos, HTTP/2 support is not enabled.
2738 //
2739 // ServeTLS always returns a non-nil error. After Shutdown or Close, the
2740 // returned error is ErrServerClosed.
2742 // Setup HTTP/2 before srv.Serve, to initialize srv.TLSConfig
2743 // before we clone it and create the TLS Listener.
2745 return err
2746 }
2751 }
2755 var err error
2759 return err
2760 }
2761 }
2765 }
2772 }
2774 // If the *Server is being reused after a previous
2775 // Close or Shutdown, reset its doneChan:
2778 }
2782 }
2783 }
2790 }
2795 }
2796 }
2801 }
2803 }
2808 }
2810 }
2814 }
2818 }
2820 // SetKeepAlivesEnabled controls whether HTTP keep-alives are enabled.
2821 // By default, keep-alives are always enabled. Only very
2822 // resource-constrained environments or servers in the process of
2823 // shutting down should disable them.
2827 return
2828 }
2831 // Close idle HTTP/1 conns:
2834 // Close HTTP/2 conns, as soon as they become idle, but reset
2835 // the chan so future conns (if the listener is still active)
2836 // still work and don't get a GOAWAY immediately, before their
2837 // first request:
2842 }
2849 }
2850 }
2852 // ListenAndServe listens on the TCP network address addr
2853 // and then calls Serve with handler to handle requests
2854 // on incoming connections.
2855 // Accepted connections are configured to enable TCP keep-alives.
2856 // Handler is typically nil, in which case the DefaultServeMux is
2857 // used.
2858 //
2859 // A trivial example server is:
2860 //
2861 // package main
2862 //
2863 // import (
2864 // "io"
2865 // "net/http"
2866 // "log"
2867 // )
2868 //
2869 // // hello world, the web server
2870 // func HelloServer(w http.ResponseWriter, req *http.Request) {
2871 // io.WriteString(w, "hello, world!\n")
2872 // }
2873 //
2874 // func main() {
2875 // http.HandleFunc("/hello", HelloServer)
2876 // log.Fatal(http.ListenAndServe(":12345", nil))
2877 // }
2878 //
2879 // ListenAndServe always returns a non-nil error.
2883 }
2885 // ListenAndServeTLS acts identically to ListenAndServe, except that it
2886 // expects HTTPS connections. Additionally, files containing a certificate and
2887 // matching private key for the server must be provided. If the certificate
2888 // is signed by a certificate authority, the certFile should be the concatenation
2889 // of the server's certificate, any intermediates, and the CA's certificate.
2890 //
2891 // A trivial example server is:
2892 //
2893 // import (
2894 // "log"
2895 // "net/http"
2896 // )
2897 //
2898 // func handler(w http.ResponseWriter, req *http.Request) {
2899 // w.Header().Set("Content-Type", "text/plain")
2900 // w.Write([]byte("This is an example server.\n"))
2901 // }
2902 //
2903 // func main() {
2904 // http.HandleFunc("/", handler)
2905 // log.Printf("About to listen on 10443. Go to https://127.0.0.1:10443/")
2906 // err := http.ListenAndServeTLS(":10443", "cert.pem", "key.pem", nil)
2907 // log.Fatal(err)
2908 // }
2909 //
2910 // One can use generate_cert.go in crypto/tls to generate cert.pem and key.pem.
2911 //
2912 // ListenAndServeTLS always returns a non-nil error.
2916 }
2918 // ListenAndServeTLS listens on the TCP network address srv.Addr and
2919 // then calls Serve to handle requests on incoming TLS connections.
2920 // Accepted connections are configured to enable TCP keep-alives.
2921 //
2922 // Filenames containing a certificate and matching private key for the
2923 // server must be provided if neither the Server's TLSConfig.Certificates
2924 // nor TLSConfig.GetCertificate are populated. If the certificate is
2925 // signed by a certificate authority, the certFile should be the
2926 // concatenation of the server's certificate, any intermediates, and
2927 // the CA's certificate.
2928 //
2929 // If srv.Addr is blank, ":https" is used.
2930 //
2931 // ListenAndServeTLS always returns a non-nil error.
2936 }
2940 return err
2941 }
2944 }
2946 // setupHTTP2_ServeTLS conditionally configures HTTP/2 on
2947 // srv and returns whether there was an error setting it up. If it is
2948 // not configured for policy reasons, nil is returned.
2952 }
2954 // setupHTTP2_Serve is called from (*Server).Serve and conditionally
2955 // configures HTTP/2 on srv using a more conservative policy than
2956 // setupHTTP2_ServeTLS because Serve may be called
2957 // concurrently.
2958 //
2959 // The tests named TestTransportAutomaticHTTP2* and
2960 // TestConcurrentServerServe in server_test.go demonstrate some
2961 // of the supported use cases and motivations.
2965 }
2970 }
2971 }
2973 // onceSetNextProtoDefaults configures HTTP/2, if the user hasn't
2974 // configured otherwise. (by setting srv.TLSNextProto non-nil)
2975 // It must only be called via srv.nextProtoOnce (use srv.setupHTTP2_*).
2978 return
2979 }
2980 // Enable HTTP/2 by default if the user hasn't otherwise
2981 // configured their TLSNextProto map.
2985 }
2987 }
2988 }
2990 // TimeoutHandler returns a Handler that runs h with the given time limit.
2991 //
2992 // The new Handler calls h.ServeHTTP to handle each request, but if a
2993 // call runs for longer than its time limit, the handler responds with
2994 // a 503 Service Unavailable error and the given message in its body.
2995 // (If msg is empty, a suitable default message will be sent.)
2996 // After such a timeout, writes by h to its ResponseWriter will return
2997 // ErrHandlerTimeout.
2998 //
2999 // TimeoutHandler buffers all Handler writes to memory and does not
3000 // support the Hijacker or Flusher interfaces.
3006 }
3007 }
3009 // ErrHandlerTimeout is returned on ResponseWriter Write calls
3010 // in handlers which have timed out.
3014 handler Handler
3015 body string
3016 dt time.Duration
3018 // When set, no timer will be created and this channel will
3019 // be used instead.
3021 }
3026 }
3028 }
3036 }
3041 }
3045 }()
3053 }
3056 }
3061 }
3068 return
3069 }
3070 }
3073 w ResponseWriter
3074 h Header
3075 wbuf bytes.Buffer
3077 mu sync.Mutex
3078 timedOut bool
3079 wroteHeader bool
3080 code int
3081 }
3090 }
3093 }
3095 }
3101 return
3102 }
3104 }
3109 }
3111 // tcpKeepAliveListener sets TCP keep-alive timeouts on accepted
3112 // connections. It's used by ListenAndServe and ListenAndServeTLS so
3113 // dead TCP connections (e.g. closing laptop mid-download) eventually
3114 // go away.
3117 }
3122 return
3123 }
3127 }
3129 // globalOptionsHandler responds to "OPTIONS *" requests.
3135 // Read up to 4KB of OPTIONS body (as mentioned in the
3136 // spec as being reserved for future use), but anything
3137 // over that is considered a waste of server resources
3138 // (or an attack) and we abort and close the connection,
3139 // courtesy of MaxBytesReader's EOF behavior.
3142 }
3143 }
3145 // initNPNRequest is an HTTP handler that initializes certain
3146 // uninitialized fields in its *Request. Such partially-initialized
3147 // Requests come from NPN protocol handlers.
3150 h serverHandler
3151 }
3157 }
3160 }
3163 }
3165 }
3167 // loggingConn is used for debugging.
3169 name string
3170 net.Conn
3171 }
3174 uniqNameMu sync.Mutex
3176 )
3185 }
3186 }
3192 return
3193 }
3199 return
3200 }
3206 return
3207 }
3209 // checkConnErrorWriter writes to c.rwc and records any write errors to c.werr.
3210 // It only contains one field (and a pointer field at that), so it
3211 // fits in an interface value without an extra allocation.
3213 c *conn
3214 }
3221 }
3222 return
3223 }
3228 n++
3229 continue
3230 }
3231 break
3232 }
3233 return
3235 }
3241 }
3242 }
3244 }