using System.Net.Security;
using System.Runtime.ExceptionServices;
using System.Runtime.InteropServices;
-using System.Security;
using System.Security.Authentication.ExtendedProtection;
using System.Security.Principal;
using System.Text;
using System.Threading;
-using System.Threading.Tasks;
namespace System.Net
{
(byte) 'e', (byte) 'n', (byte) 't', (byte) 'i', (byte) 'c', (byte) 'a', (byte) 't', (byte) 'e'
};
- private SafeHandle _requestQueueHandle;
- private ThreadPoolBoundHandle _requestQueueBoundHandle;
+ private HttpListenerSession _currentSession;
+
private bool _unsafeConnectionNtlmAuthentication;
private HttpServerSessionHandle _serverSessionHandle;
private bool _V2Initialized;
private Dictionary<ulong, DisconnectAsyncResult> _disconnectResults;
- internal SafeHandle RequestQueueHandle => _requestQueueHandle;
-
private void ValidateV2Property()
{
// Make sure that calling CheckDisposed and SetupV2Config is an atomic operation. This
}
}
- private IntPtr DangerousGetHandle()
- {
- return ((HttpRequestQueueV2Handle)_requestQueueHandle).DangerousGetHandle();
- }
-
- internal ThreadPoolBoundHandle RequestQueueBoundHandle
- {
- get
- {
- if (_requestQueueBoundHandle == null)
- {
- lock (_internalLock)
- {
- if (_requestQueueBoundHandle == null)
- {
- _requestQueueBoundHandle = ThreadPoolBoundHandle.BindHandle(_requestQueueHandle);
- if (NetEventSource.IsEnabled) NetEventSource.Info($"ThreadPoolBoundHandle.BindHandle({_requestQueueHandle}) -> {_requestQueueBoundHandle}");
- }
- }
- }
-
- return _requestQueueBoundHandle;
- }
- }
-
private void SetupV2Config()
{
uint statusCode = Interop.HttpApi.ERROR_SUCCESS;
return;
}
+ Debug.Assert(_currentSession is null);
+
// SetupV2Config() is not called in the ctor, because it may throw. This would
// be a regression since in v1 the ctor never threw. Besides, ctors should do
// minimal work according to the framework design guidelines.
private void AttachRequestQueueToUrlGroup()
{
- //
+ Debug.Assert(Monitor.IsEntered(_internalLock));
+
// Set the association between request queue and url group. After this, requests for registered urls will
// get delivered to this request queue.
- //
Interop.HttpApi.HTTP_BINDING_INFO info = default;
info.Flags = Interop.HttpApi.HTTP_FLAGS.HTTP_PROPERTY_FLAG_PRESENT;
- info.RequestQueueHandle = DangerousGetHandle();
+ info.RequestQueueHandle = _currentSession.RequestQueueHandle.DangerousGetHandle();
IntPtr infoptr = new IntPtr(&info);
private unsafe void CreateRequestQueueHandle()
{
- uint statusCode = Interop.HttpApi.ERROR_SUCCESS;
-
- HttpRequestQueueV2Handle requestQueueHandle = null;
- statusCode =
- Interop.HttpApi.HttpCreateRequestQueue(
- Interop.HttpApi.s_version, null, null, 0, out requestQueueHandle);
-
- if (statusCode != Interop.HttpApi.ERROR_SUCCESS)
- {
- throw new HttpListenerException((int)statusCode);
- }
-
- // Disabling callbacks when IO operation completes synchronously (returns ErrorCodes.ERROR_SUCCESS)
- if (SkipIOCPCallbackOnSuccess &&
- !Interop.Kernel32.SetFileCompletionNotificationModes(
- requestQueueHandle,
- Interop.Kernel32.FileCompletionNotificationModes.SkipCompletionPortOnSuccess |
- Interop.Kernel32.FileCompletionNotificationModes.SkipSetEventOnHandle))
- {
- throw new HttpListenerException(Marshal.GetLastWin32Error());
- }
+ Debug.Assert(Monitor.IsEntered(_internalLock));
+ Debug.Assert(_currentSession is null);
- _requestQueueHandle = requestQueueHandle;
+ _currentSession = new HttpListenerSession(this);
}
private unsafe void CloseRequestQueueHandle()
{
- if ((_requestQueueHandle != null) && (!_requestQueueHandle.IsInvalid))
- {
- if (NetEventSource.IsEnabled) NetEventSource.Info($"Dispose ThreadPoolBoundHandle: {_requestQueueBoundHandle}");
- _requestQueueBoundHandle?.Dispose();
- _requestQueueHandle.Dispose();
+ Debug.Assert(Monitor.IsEntered(_internalLock));
- // CancelIoEx is called after Dispose to prevent a race condition involving parallel GetContext and
- // HttpReceiveHttpRequest calls. Otherwise, calling CancelIoEx before Dispose might block the synchronous
- // GetContext call until the next request arrives.
- try
- {
- Interop.Kernel32.CancelIoEx(_requestQueueHandle, null); // This cancels the synchronous call to HttpReceiveHttpRequest
- }
- catch (ObjectDisposedException)
- {
- // Ignore the exception since it only means that the queue handle has been successfully disposed
- }
- }
+ _currentSession?.CloseRequestQueueHandle();
+ _currentSession = null;
}
public void Abort()
uint size = 4096;
ulong requestId = 0;
memoryBlob = new SyncRequestContext((int)size);
+ HttpListenerSession session = _currentSession;
+
while (true)
{
while (true)
uint bytesTransferred = 0;
statusCode =
Interop.HttpApi.HttpReceiveHttpRequest(
- _requestQueueHandle,
+ session.RequestQueueHandle,
requestId,
(uint)Interop.HttpApi.HTTP_FLAGS.HTTP_RECEIVE_REQUEST_FLAG_COPY_BODY,
memoryBlob.RequestBlob,
throw new HttpListenerException((int)statusCode);
}
- if (ValidateRequest(memoryBlob))
+ if (ValidateRequest(session, memoryBlob))
{
// We need to hook up our authentication handling code here.
- httpContext = HandleAuthentication(memoryBlob, out stoleBlob);
+ httpContext = HandleAuthentication(session, memoryBlob, out stoleBlob);
}
if (stoleBlob)
}
}
- internal unsafe bool ValidateRequest(RequestContextBase requestMemory)
+ internal static unsafe bool ValidateRequest(HttpListenerSession session, RequestContextBase requestMemory)
{
// Block potential DOS attacks
if (requestMemory.RequestBlob->Headers.UnknownHeaderCount > UnknownHeaderLimit)
{
- SendError(requestMemory.RequestBlob->RequestId, HttpStatusCode.BadRequest, null);
+ SendError(session, requestMemory.RequestBlob->RequestId, HttpStatusCode.BadRequest, null);
return false;
}
return true;
// prepare the ListenerAsyncResult object (this will have it's own
// event that the user can wait on for IO completion - which means we
// need to signal it when IO completes)
- asyncResult = new ListenerAsyncResult(this, state, callback);
+ asyncResult = new ListenerAsyncResult(_currentSession, state, callback);
uint statusCode = asyncResult.QueueBeginGetContext();
if (statusCode != Interop.HttpApi.ERROR_SUCCESS &&
statusCode != Interop.HttpApi.ERROR_IO_PENDING)
throw new ArgumentNullException(nameof(asyncResult));
}
if (NetEventSource.IsEnabled) NetEventSource.Info(this, $"asyncResult: {asyncResult}");
- ListenerAsyncResult castedAsyncResult = asyncResult as ListenerAsyncResult;
- if (castedAsyncResult == null || castedAsyncResult.AsyncObject != this)
+ if (!(asyncResult is ListenerAsyncResult castedAsyncResult) || !(castedAsyncResult.AsyncObject is HttpListenerSession session) || session.Listener != this)
{
throw new ArgumentException(SR.net_io_invalidasyncresult, nameof(asyncResult));
}
return httpContext;
}
- internal HttpListenerContext HandleAuthentication(RequestContextBase memoryBlob, out bool stoleBlob)
+ internal HttpListenerContext HandleAuthentication(HttpListenerSession session, RequestContextBase memoryBlob, out bool stoleBlob)
{
if (NetEventSource.IsEnabled) NetEventSource.Info(this, "HandleAuthentication() memoryBlob:0x" + ((IntPtr)memoryBlob.RequestBlob).ToString("x"));
{
if (NetEventSource.IsEnabled) NetEventSource.Info(this, $"Principal: {principal} principal.Identity.Name: {principal.Identity.Name} creating request");
stoleBlob = true;
- HttpListenerContext ntlmContext = new HttpListenerContext(this, memoryBlob);
+ HttpListenerContext ntlmContext = new HttpListenerContext(session, memoryBlob);
ntlmContext.SetIdentity(principal, null);
ntlmContext.Request.ReleasePins();
return ntlmContext;
oldContext = disconnectResult.Session;
}
- httpContext = new HttpListenerContext(this, memoryBlob);
+ httpContext = new HttpListenerContext(session, memoryBlob);
AuthenticationSchemeSelector authenticationSelector = _authenticationDelegate;
if (authenticationSelector != null)
NetEventSource.Error(this, SR.Format(SR.net_log_listener_delegate_exception, exception));
NetEventSource.Info(this, $"authenticationScheme: {authenticationScheme}");
}
- SendError(requestId, HttpStatusCode.InternalServerError, null);
+ SendError(session, requestId, HttpStatusCode.InternalServerError, null);
FreeContext(ref httpContext, memoryBlob);
return null;
}
}
else
{
- binding = GetChannelBinding(connectionId, isSecureConnection, extendedProtectionPolicy);
+ binding = GetChannelBinding(session, connectionId, isSecureConnection, extendedProtectionPolicy);
ContextFlagsPal contextFlags = GetContextFlags(extendedProtectionPolicy, isSecureConnection);
context = new NTAuthentication(true, package, CredentialCache.DefaultNetworkCredentials, null, contextFlags, binding);
}
// We may need to call WaitForDisconnect.
if (disconnectResult == null)
{
- RegisterForDisconnectNotification(connectionId, ref disconnectResult);
+ RegisterForDisconnectNotification(session, connectionId, ref disconnectResult);
}
if (disconnectResult != null)
{
if (httpError != HttpStatusCode.Unauthorized)
{
if (NetEventSource.IsEnabled) NetEventSource.Info(this, "ConnectionId:" + connectionId + " because of error:" + httpError.ToString());
- SendError(requestId, httpError, null);
+ SendError(session, requestId, httpError, null);
return null;
}
// Check if we need to call WaitForDisconnect, because if we do and it fails, we want to send a 500 instead.
if (disconnectResult == null && newContext != null)
{
- RegisterForDisconnectNotification(connectionId, ref disconnectResult);
+ RegisterForDisconnectNotification(session, connectionId, ref disconnectResult);
// Failed - send 500.
if (disconnectResult == null)
}
if (NetEventSource.IsEnabled) NetEventSource.Info(this, "connectionId:" + connectionId + " because of failed HttpWaitForDisconnect");
- SendError(requestId, HttpStatusCode.InternalServerError, null);
+ SendError(session, requestId, HttpStatusCode.InternalServerError, null);
FreeContext(ref httpContext, memoryBlob);
return null;
}
// Send the 401 here.
if (httpContext == null)
{
- SendError(requestId, challenges != null && challenges.Count > 0 ? HttpStatusCode.Unauthorized : HttpStatusCode.Forbidden, challenges);
+ SendError(session, requestId, challenges != null && challenges.Count > 0 ? HttpStatusCode.Unauthorized : HttpStatusCode.Forbidden, challenges);
if (NetEventSource.IsEnabled) NetEventSource.Info(this, "Scheme:" + authenticationScheme);
return null;
}
}
}
- private ChannelBinding GetChannelBinding(ulong connectionId, bool isSecureConnection, ExtendedProtectionPolicy policy)
+ private ChannelBinding GetChannelBinding(HttpListenerSession session, ulong connectionId, bool isSecureConnection, ExtendedProtectionPolicy policy)
{
if (policy.PolicyEnforcement == PolicyEnforcement.Never)
{
return null;
}
- ChannelBinding result = GetChannelBindingFromTls(connectionId);
+ ChannelBinding result = GetChannelBindingFromTls(session, connectionId);
if (NetEventSource.IsEnabled && result != null)
NetEventSource.Info(this, "GetChannelBindingFromTls returned null even though OS supposedly supports Extended Protection");
return challenges;
}
- private void RegisterForDisconnectNotification(ulong connectionId, ref DisconnectAsyncResult disconnectResult)
+ private static void RegisterForDisconnectNotification(HttpListenerSession session, ulong connectionId, ref DisconnectAsyncResult disconnectResult)
{
Debug.Assert(disconnectResult == null);
try
{
- if (NetEventSource.IsEnabled) NetEventSource.Info(this, "Calling Interop.HttpApi.HttpWaitForDisconnect");
+ if (NetEventSource.IsEnabled) NetEventSource.Info(session.Listener, "Calling Interop.HttpApi.HttpWaitForDisconnect");
- DisconnectAsyncResult result = new DisconnectAsyncResult(this, connectionId);
+ DisconnectAsyncResult result = new DisconnectAsyncResult(session, connectionId);
uint statusCode = Interop.HttpApi.HttpWaitForDisconnect(
- _requestQueueHandle,
+ session.RequestQueueHandle,
connectionId,
result.NativeOverlapped);
- if (NetEventSource.IsEnabled) NetEventSource.Info(this, "Call to Interop.HttpApi.HttpWaitForDisconnect returned:" + statusCode);
+ if (NetEventSource.IsEnabled) NetEventSource.Info(session.Listener, "Call to Interop.HttpApi.HttpWaitForDisconnect returned:" + statusCode);
if (statusCode == Interop.HttpApi.ERROR_SUCCESS ||
statusCode == Interop.HttpApi.ERROR_IO_PENDING)
// Need to make sure it's going to get returned before adding it to the hash. That way it'll be handled
// correctly in HandleAuthentication's finally.
disconnectResult = result;
- DisconnectResults[connectionId] = disconnectResult;
+ session.Listener.DisconnectResults[connectionId] = disconnectResult;
}
if (statusCode == Interop.HttpApi.ERROR_SUCCESS && HttpListener.SkipIOCPCallbackOnSuccess)
catch (Win32Exception exception)
{
uint statusCode = (uint)exception.NativeErrorCode;
- if (NetEventSource.IsEnabled) NetEventSource.Info(this, "Call to Interop.HttpApi.HttpWaitForDisconnect threw, statusCode:" + statusCode);
+ if (NetEventSource.IsEnabled) NetEventSource.Info(session.Listener, "Call to Interop.HttpApi.HttpWaitForDisconnect threw, statusCode:" + statusCode);
}
}
- private void SendError(ulong requestId, HttpStatusCode httpStatusCode, ArrayList challenges)
+ private static void SendError(HttpListenerSession session, ulong requestId, HttpStatusCode httpStatusCode, ArrayList challenges)
{
- if (NetEventSource.IsEnabled) NetEventSource.Info(this, $"RequestId: {requestId}");
+ if (NetEventSource.IsEnabled) NetEventSource.Info(session.Listener, $"RequestId: {requestId}");
Interop.HttpApi.HTTP_RESPONSE httpResponse = default;
httpResponse.Version = default;
httpResponse.Version.MajorVersion = (ushort)1;
}
}
- if (NetEventSource.IsEnabled) NetEventSource.Info(this, "Calling Interop.HttpApi.HttpSendHtthttpResponse");
+ if (NetEventSource.IsEnabled) NetEventSource.Info(session.Listener, "Calling Interop.HttpApi.HttpSendHtthttpResponse");
statusCode =
Interop.HttpApi.HttpSendHttpResponse(
- _requestQueueHandle,
+ session.RequestQueueHandle,
requestId,
0,
&httpResponse,
}
}
}
- if (NetEventSource.IsEnabled) NetEventSource.Info(this, "Call to Interop.HttpApi.HttpSendHttpResponse returned:" + statusCode);
+ if (NetEventSource.IsEnabled) NetEventSource.Info(session.Listener, "Call to Interop.HttpApi.HttpSendHttpResponse returned:" + statusCode);
if (statusCode != Interop.HttpApi.ERROR_SUCCESS)
{
// if we fail to send a 401 something's seriously wrong, abort the request
- if (NetEventSource.IsEnabled) NetEventSource.Info(this, "SendUnauthorized returned:" + statusCode);
- HttpListenerContext.CancelRequest(_requestQueueHandle, requestId);
+ if (NetEventSource.IsEnabled) NetEventSource.Info(session.Listener, "SendUnauthorized returned:" + statusCode);
+ HttpListenerContext.CancelRequest(session.RequestQueueHandle, requestId);
}
}
return (int)((Interop.HttpApi.HTTP_REQUEST_CHANNEL_BIND_STATUS*)blob)->ChannelTokenSize;
}
- internal ChannelBinding GetChannelBindingFromTls(ulong connectionId)
+ internal static ChannelBinding GetChannelBindingFromTls(HttpListenerSession session, ulong connectionId)
{
- if (NetEventSource.IsEnabled) NetEventSource.Enter(this, $"connectionId: {connectionId}");
+ if (NetEventSource.IsEnabled) NetEventSource.Enter(session.Listener, $"connectionId: {connectionId}");
// +128 since a CBT is usually <128 thus we need to call HRCC just once. If the CBT
// is >128 we will get ERROR_MORE_DATA and call again
// Http.sys team: ServiceName will always be null if
// HTTP_RECEIVE_SECURE_CHANNEL_TOKEN flag is set.
statusCode = Interop.HttpApi.HttpReceiveClientCertificate(
- RequestQueueHandle,
+ session.RequestQueueHandle,
connectionId,
(uint)Interop.HttpApi.HTTP_FLAGS.HTTP_RECEIVE_SECURE_CHANNEL_TOKEN,
blobPtr,
{
if (NetEventSource.IsEnabled)
{
- NetEventSource.Error(this, SR.net_ssp_dont_support_cbt);
+ NetEventSource.Error(session.Listener, SR.net_ssp_dont_support_cbt);
}
return null; // old schannel library which doesn't support CBT
}
private static readonly IOCompletionCallback s_IOCallback = new IOCompletionCallback(WaitCallback);
private readonly ulong _connectionId;
- private readonly HttpListener _httpListener;
+ private readonly HttpListenerSession _listenerSession;
private readonly NativeOverlapped* _nativeOverlapped;
private int _ownershipState; // 0 = normal, 1 = in HandleAuthentication(), 2 = disconnected, 3 = cleaned up
}
}
- internal unsafe DisconnectAsyncResult(HttpListener httpListener, ulong connectionId)
+ internal unsafe DisconnectAsyncResult(HttpListenerSession session, ulong connectionId)
{
- if (NetEventSource.IsEnabled) NetEventSource.Info(this, $"HttpListener: {httpListener}, ConnectionId: {connectionId}");
+ if (NetEventSource.IsEnabled) NetEventSource.Info(this, $"HttpListener: {session.Listener}, ConnectionId: {connectionId}");
_ownershipState = 1;
- _httpListener = httpListener;
+ _listenerSession = session;
_connectionId = connectionId;
// we can call the Unsafe API here, we won't ever call user code
- _nativeOverlapped = httpListener.RequestQueueBoundHandle.AllocateNativeOverlapped(s_IOCallback, state: this, pinData: null);
- if (NetEventSource.IsEnabled) NetEventSource.Info($"DisconnectAsyncResult: ThreadPoolBoundHandle.AllocateNativeOverlapped({httpListener._requestQueueBoundHandle}) -> {_nativeOverlapped->GetHashCode()}");
+ _nativeOverlapped = session.RequestQueueBoundHandle.AllocateNativeOverlapped(s_IOCallback, state: this, pinData: null);
+ if (NetEventSource.IsEnabled) NetEventSource.Info($"DisconnectAsyncResult: ThreadPoolBoundHandle.AllocateNativeOverlapped({session.RequestQueueBoundHandle}) -> {_nativeOverlapped->GetHashCode()}");
}
internal bool StartOwningDisconnectHandling()
{
if (NetEventSource.IsEnabled) NetEventSource.Info(null, "_connectionId:" + asyncResult._connectionId);
- asyncResult._httpListener._requestQueueBoundHandle.FreeNativeOverlapped(nativeOverlapped);
+ asyncResult._listenerSession.RequestQueueBoundHandle.FreeNativeOverlapped(nativeOverlapped);
if (Interlocked.Exchange(ref asyncResult._ownershipState, 2) == 0)
{
asyncResult.HandleDisconnect();
private void HandleDisconnect()
{
- if (NetEventSource.IsEnabled) NetEventSource.Info(this, $"DisconnectResults {_httpListener.DisconnectResults} removing for _connectionId: {_connectionId}");
- _httpListener.DisconnectResults.Remove(_connectionId);
+ HttpListener listener = _listenerSession.Listener;
+
+ if (NetEventSource.IsEnabled) NetEventSource.Info(this, $"DisconnectResults {listener.DisconnectResults} removing for _connectionId: {_connectionId}");
+ listener.DisconnectResults.Remove(_connectionId);
if (_session != null)
{
_session.CloseContext();
IDisposable identity = _authenticatedConnection == null ? null : _authenticatedConnection.Identity as IDisposable;
if ((identity != null) &&
(_authenticatedConnection.Identity.AuthenticationType == AuthenticationTypes.NTLM) &&
- (_httpListener.UnsafeConnectionNtlmAuthentication))
+ (listener.UnsafeConnectionNtlmAuthentication))
{
identity.Dispose();
}
projects / platform / upstream / dotnet / runtime.git / commitdiff