2018-03-18 07:35:47 +00:00
|
|
|
'use strict';
|
|
|
|
|
|
2019-11-23 09:09:05 +00:00
|
|
|
const {
|
|
|
|
|
Array,
|
2019-11-30 15:55:29 +00:00
|
|
|
Symbol,
|
2019-11-23 09:09:05 +00:00
|
|
|
} = primordials;
|
|
|
|
|
|
2018-03-18 07:35:47 +00:00
|
|
|
const { Buffer } = require('buffer');
|
2018-10-21 06:34:00 +00:00
|
|
|
const { FastBuffer } = require('internal/buffer');
|
|
|
|
|
const {
|
|
|
|
|
WriteWrap,
|
|
|
|
|
kReadBytesOrError,
|
|
|
|
|
kArrayBufferOffset,
|
2018-10-23 06:23:02 +00:00
|
|
|
kBytesWritten,
|
|
|
|
|
kLastWriteWasAsync,
|
2023-02-26 10:34:02 +00:00
|
|
|
streamBaseState,
|
2018-10-21 06:34:00 +00:00
|
|
|
} = internalBinding('stream_wrap');
|
2018-05-05 09:46:50 +00:00
|
|
|
const { UV_EOF } = internalBinding('uv');
|
2019-01-04 02:40:22 +00:00
|
|
|
const {
|
2023-02-26 10:34:02 +00:00
|
|
|
errnoException,
|
2019-01-04 02:40:22 +00:00
|
|
|
} = require('internal/errors');
|
2018-05-05 09:46:50 +00:00
|
|
|
const { owner_symbol } = require('internal/async_hooks').symbols;
|
2019-01-04 02:40:22 +00:00
|
|
|
const {
|
|
|
|
|
kTimeout,
|
|
|
|
|
setUnrefTimeout,
|
2023-02-26 10:34:02 +00:00
|
|
|
getTimerDuration,
|
2019-01-04 02:40:22 +00:00
|
|
|
} = require('internal/timers');
|
2019-01-10 20:52:27 +00:00
|
|
|
const { isUint8Array } = require('internal/util/types');
|
2019-04-05 21:56:00 +00:00
|
|
|
const { clearTimeout } = require('timers');
|
2022-01-24 16:09:16 +00:00
|
|
|
const { validateFunction } = require('internal/validators');
|
2018-03-18 07:35:47 +00:00
|
|
|
|
2018-05-05 09:46:50 +00:00
|
|
|
const kMaybeDestroy = Symbol('kMaybeDestroy');
|
|
|
|
|
const kUpdateTimer = Symbol('kUpdateTimer');
|
2018-11-03 18:00:41 +00:00
|
|
|
const kAfterAsyncWrite = Symbol('kAfterAsyncWrite');
|
2019-03-07 11:22:36 +00:00
|
|
|
const kHandle = Symbol('kHandle');
|
|
|
|
|
const kSession = Symbol('kSession');
|
2018-03-18 07:35:47 +00:00
|
|
|
|
2020-03-14 11:55:44 +00:00
|
|
|
let debug = require('internal/util/debuglog').debuglog('stream', (fn) => {
|
|
|
|
|
debug = fn;
|
|
|
|
|
});
|
2019-01-10 20:52:27 +00:00
|
|
|
const kBuffer = Symbol('kBuffer');
|
|
|
|
|
const kBufferGen = Symbol('kBufferGen');
|
|
|
|
|
const kBufferCb = Symbol('kBufferCb');
|
tls: support TLSv1.3
This introduces TLS1.3 support and makes it the default max protocol,
but also supports CLI/NODE_OPTIONS switches to disable it if necessary.
TLS1.3 is a major update to the TLS protocol, with many security
enhancements. It should be preferred over TLS1.2 whenever possible.
TLS1.3 is different enough that even though the OpenSSL APIs are
technically API/ABI compatible, that when TLS1.3 is negotiated, the
timing of protocol records and of callbacks broke assumptions hard-coded
into the 'tls' module.
This change introduces no API incompatibilities when TLS1.2 is
negotiated. It is the intention that it be backported to current and LTS
release lines with the default maximum TLS protocol reset to 'TLSv1.2'.
This will allow users of those lines to explicitly enable TLS1.3 if they
want.
API incompatibilities between TLS1.2 and TLS1.3 are:
- Renegotiation is not supported by TLS1.3 protocol, attempts to call
`.renegotiate()` will always fail.
- Compiling against a system OpenSSL lower than 1.1.1 is no longer
supported (OpenSSL-1.1.0 used to be supported with configure flags).
- Variations of `conn.write('data'); conn.destroy()` have undefined
behaviour according to the streams API. They may or may not send the
'data', and may or may not cause a ERR_STREAM_DESTROYED error to be
emitted. This has always been true, but conditions under which the write
suceeds is slightly but observably different when TLS1.3 is negotiated
vs when TLS1.2 or below is negotiated.
- If TLS1.3 is negotiated, and a server calls `conn.end()` in its
'secureConnection' listener without any data being written, the client
will not receive session tickets (no 'session' events will be emitted,
and `conn.getSession()` will never return a resumable session).
- The return value of `conn.getSession()` API may not return a resumable
session if called right after the handshake. The effect will be that
clients using the legacy `getSession()` API will resume sessions if
TLS1.2 is negotiated, but will do full handshakes if TLS1.3 is
negotiated. See https://github.com/nodejs/node/pull/25831 for more
information.
PR-URL: https://github.com/nodejs/node/pull/26209
Reviewed-By: Anna Henningsen <anna@addaleax.net>
Reviewed-By: James M Snell <jasnell@gmail.com>
Reviewed-By: Rod Vagg <rod@vagg.org>
2018-11-29 01:58:08 +00:00
|
|
|
|
2018-03-18 07:35:47 +00:00
|
|
|
function handleWriteReq(req, data, encoding) {
|
|
|
|
|
const { handle } = req;
|
|
|
|
|
|
|
|
|
|
switch (encoding) {
|
|
|
|
|
case 'buffer':
|
2018-10-23 06:23:02 +00:00
|
|
|
{
|
|
|
|
|
const ret = handle.writeBuffer(req, data);
|
|
|
|
|
if (streamBaseState[kLastWriteWasAsync])
|
|
|
|
|
req.buffer = data;
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
2018-03-18 07:35:47 +00:00
|
|
|
case 'latin1':
|
|
|
|
|
case 'binary':
|
|
|
|
|
return handle.writeLatin1String(req, data);
|
|
|
|
|
case 'utf8':
|
|
|
|
|
case 'utf-8':
|
|
|
|
|
return handle.writeUtf8String(req, data);
|
|
|
|
|
case 'ascii':
|
|
|
|
|
return handle.writeAsciiString(req, data);
|
|
|
|
|
case 'ucs2':
|
|
|
|
|
case 'ucs-2':
|
|
|
|
|
case 'utf16le':
|
|
|
|
|
case 'utf-16le':
|
|
|
|
|
return handle.writeUcs2String(req, data);
|
|
|
|
|
default:
|
2018-10-23 06:23:02 +00:00
|
|
|
{
|
|
|
|
|
const buffer = Buffer.from(data, encoding);
|
|
|
|
|
const ret = handle.writeBuffer(req, buffer);
|
|
|
|
|
if (streamBaseState[kLastWriteWasAsync])
|
|
|
|
|
req.buffer = buffer;
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
2018-03-18 07:35:47 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-03 18:00:41 +00:00
|
|
|
function onWriteComplete(status) {
|
tls: support TLSv1.3
This introduces TLS1.3 support and makes it the default max protocol,
but also supports CLI/NODE_OPTIONS switches to disable it if necessary.
TLS1.3 is a major update to the TLS protocol, with many security
enhancements. It should be preferred over TLS1.2 whenever possible.
TLS1.3 is different enough that even though the OpenSSL APIs are
technically API/ABI compatible, that when TLS1.3 is negotiated, the
timing of protocol records and of callbacks broke assumptions hard-coded
into the 'tls' module.
This change introduces no API incompatibilities when TLS1.2 is
negotiated. It is the intention that it be backported to current and LTS
release lines with the default maximum TLS protocol reset to 'TLSv1.2'.
This will allow users of those lines to explicitly enable TLS1.3 if they
want.
API incompatibilities between TLS1.2 and TLS1.3 are:
- Renegotiation is not supported by TLS1.3 protocol, attempts to call
`.renegotiate()` will always fail.
- Compiling against a system OpenSSL lower than 1.1.1 is no longer
supported (OpenSSL-1.1.0 used to be supported with configure flags).
- Variations of `conn.write('data'); conn.destroy()` have undefined
behaviour according to the streams API. They may or may not send the
'data', and may or may not cause a ERR_STREAM_DESTROYED error to be
emitted. This has always been true, but conditions under which the write
suceeds is slightly but observably different when TLS1.3 is negotiated
vs when TLS1.2 or below is negotiated.
- If TLS1.3 is negotiated, and a server calls `conn.end()` in its
'secureConnection' listener without any data being written, the client
will not receive session tickets (no 'session' events will be emitted,
and `conn.getSession()` will never return a resumable session).
- The return value of `conn.getSession()` API may not return a resumable
session if called right after the handshake. The effect will be that
clients using the legacy `getSession()` API will resume sessions if
TLS1.2 is negotiated, but will do full handshakes if TLS1.3 is
negotiated. See https://github.com/nodejs/node/pull/25831 for more
information.
PR-URL: https://github.com/nodejs/node/pull/26209
Reviewed-By: Anna Henningsen <anna@addaleax.net>
Reviewed-By: James M Snell <jasnell@gmail.com>
Reviewed-By: Rod Vagg <rod@vagg.org>
2018-11-29 01:58:08 +00:00
|
|
|
debug('onWriteComplete', status, this.error);
|
|
|
|
|
|
2021-11-13 07:21:42 +00:00
|
|
|
const stream = this.handle[owner_symbol];
|
2018-11-03 18:00:41 +00:00
|
|
|
|
|
|
|
|
if (stream.destroyed) {
|
|
|
|
|
if (typeof this.callback === 'function')
|
|
|
|
|
this.callback(null);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2019-08-17 11:11:37 +00:00
|
|
|
// TODO (ronag): This should be moved before if(stream.destroyed)
|
|
|
|
|
// in order to avoid swallowing error.
|
2018-11-03 18:00:41 +00:00
|
|
|
if (status < 0) {
|
|
|
|
|
const ex = errnoException(status, 'write', this.error);
|
2019-08-17 11:11:37 +00:00
|
|
|
if (typeof this.callback === 'function')
|
|
|
|
|
this.callback(ex);
|
|
|
|
|
else
|
|
|
|
|
stream.destroy(ex);
|
2018-11-03 18:00:41 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
stream[kUpdateTimer]();
|
|
|
|
|
stream[kAfterAsyncWrite](this);
|
|
|
|
|
|
|
|
|
|
if (typeof this.callback === 'function')
|
|
|
|
|
this.callback(null);
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-07 22:49:14 +00:00
|
|
|
function createWriteWrap(handle, callback) {
|
2019-03-26 04:21:27 +00:00
|
|
|
const req = new WriteWrap();
|
2018-03-18 07:35:47 +00:00
|
|
|
|
|
|
|
|
req.handle = handle;
|
2018-11-03 18:00:41 +00:00
|
|
|
req.oncomplete = onWriteComplete;
|
2018-03-18 07:35:47 +00:00
|
|
|
req.async = false;
|
2018-10-23 06:23:02 +00:00
|
|
|
req.bytes = 0;
|
|
|
|
|
req.buffer = null;
|
2020-05-07 22:49:14 +00:00
|
|
|
req.callback = callback;
|
2018-03-18 07:35:47 +00:00
|
|
|
|
|
|
|
|
return req;
|
|
|
|
|
}
|
|
|
|
|
|
2019-03-07 11:22:36 +00:00
|
|
|
function writevGeneric(self, data, cb) {
|
2020-05-07 22:49:14 +00:00
|
|
|
const req = createWriteWrap(self[kHandle], cb);
|
2019-03-26 04:21:27 +00:00
|
|
|
const allBuffers = data.allBuffers;
|
2019-11-12 15:52:43 +00:00
|
|
|
let chunks;
|
2018-03-18 07:35:47 +00:00
|
|
|
if (allBuffers) {
|
|
|
|
|
chunks = data;
|
2019-11-12 15:52:43 +00:00
|
|
|
for (let i = 0; i < data.length; i++)
|
2018-03-18 07:35:47 +00:00
|
|
|
data[i] = data[i].chunk;
|
|
|
|
|
} else {
|
|
|
|
|
chunks = new Array(data.length << 1);
|
2019-11-12 15:52:43 +00:00
|
|
|
for (let i = 0; i < data.length; i++) {
|
|
|
|
|
const entry = data[i];
|
2018-03-18 07:35:47 +00:00
|
|
|
chunks[i * 2] = entry.chunk;
|
|
|
|
|
chunks[i * 2 + 1] = entry.encoding;
|
|
|
|
|
}
|
|
|
|
|
}
|
2019-03-26 04:21:27 +00:00
|
|
|
const err = req.handle.writev(req, chunks, allBuffers);
|
2018-03-18 07:35:47 +00:00
|
|
|
|
|
|
|
|
// Retain chunks
|
|
|
|
|
if (err === 0) req._chunks = chunks;
|
|
|
|
|
|
2019-08-17 11:11:37 +00:00
|
|
|
afterWriteDispatched(req, err, cb);
|
2019-03-07 11:22:36 +00:00
|
|
|
return req;
|
2018-03-18 07:35:47 +00:00
|
|
|
}
|
|
|
|
|
|
2019-03-07 11:22:36 +00:00
|
|
|
function writeGeneric(self, data, encoding, cb) {
|
2020-05-07 22:49:14 +00:00
|
|
|
const req = createWriteWrap(self[kHandle], cb);
|
2019-03-26 04:21:27 +00:00
|
|
|
const err = handleWriteReq(req, data, encoding);
|
2018-03-18 07:35:47 +00:00
|
|
|
|
2019-08-17 11:11:37 +00:00
|
|
|
afterWriteDispatched(req, err, cb);
|
2019-03-07 11:22:36 +00:00
|
|
|
return req;
|
2018-04-01 18:56:11 +00:00
|
|
|
}
|
|
|
|
|
|
2019-08-17 11:11:37 +00:00
|
|
|
function afterWriteDispatched(req, err, cb) {
|
2018-10-23 06:23:02 +00:00
|
|
|
req.bytes = streamBaseState[kBytesWritten];
|
|
|
|
|
req.async = !!streamBaseState[kLastWriteWasAsync];
|
|
|
|
|
|
2018-04-01 18:56:11 +00:00
|
|
|
if (err !== 0)
|
2019-08-17 11:11:37 +00:00
|
|
|
return cb(errnoException(err, 'write', req.error));
|
2018-04-01 18:56:11 +00:00
|
|
|
|
2020-05-07 22:49:14 +00:00
|
|
|
if (!req.async && typeof req.callback === 'function') {
|
|
|
|
|
req.callback();
|
2018-04-01 18:56:11 +00:00
|
|
|
}
|
2018-03-18 07:35:47 +00:00
|
|
|
}
|
|
|
|
|
|
2018-10-21 06:34:00 +00:00
|
|
|
function onStreamRead(arrayBuffer) {
|
|
|
|
|
const nread = streamBaseState[kReadBytesOrError];
|
|
|
|
|
|
2018-05-05 09:46:50 +00:00
|
|
|
const handle = this;
|
2021-11-13 07:21:42 +00:00
|
|
|
const stream = this[owner_symbol];
|
2018-05-05 09:46:50 +00:00
|
|
|
|
|
|
|
|
stream[kUpdateTimer]();
|
|
|
|
|
|
|
|
|
|
if (nread > 0 && !stream.destroyed) {
|
2019-01-10 20:52:27 +00:00
|
|
|
let ret;
|
|
|
|
|
let result;
|
|
|
|
|
const userBuf = stream[kBuffer];
|
|
|
|
|
if (userBuf) {
|
|
|
|
|
result = (stream[kBufferCb](nread, userBuf) !== false);
|
|
|
|
|
const bufGen = stream[kBufferGen];
|
|
|
|
|
if (bufGen !== null) {
|
|
|
|
|
const nextBuf = bufGen();
|
|
|
|
|
if (isUint8Array(nextBuf))
|
|
|
|
|
stream[kBuffer] = ret = nextBuf;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
const offset = streamBaseState[kArrayBufferOffset];
|
|
|
|
|
const buf = new FastBuffer(arrayBuffer, offset, nread);
|
|
|
|
|
result = stream.push(buf);
|
|
|
|
|
}
|
|
|
|
|
if (!result) {
|
2018-05-05 09:46:50 +00:00
|
|
|
handle.reading = false;
|
|
|
|
|
if (!stream.destroyed) {
|
|
|
|
|
const err = handle.readStop();
|
|
|
|
|
if (err)
|
|
|
|
|
stream.destroy(errnoException(err, 'read'));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-01-10 20:52:27 +00:00
|
|
|
return ret;
|
2018-05-05 09:46:50 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (nread === 0) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
tls: improve handling of shutdown
RFC 5246 section-7.2.1 requires that the implementation must immediately
stop reading from the stream, as it is no longer TLS-encrypted. The
underlying stream is permitted to still pump events (and errors) to
other users, but those are now unencrypted, so we should not process
them here. But therefore, we do not want to stop the underlying stream,
as there could be another user of it, but we do need to remove ourselves
as a listener.
Per TLS v1.2, we should have also destroy the TLS state entirely here
(including the writing side), but this was revised in TLS v1.3 to permit
the stream to continue to flush output.
There appears to be some inconsistencies in the way nodejs handles
ownership of the underlying stream, with `TLS.close()` on the write side
also calling shutdown on the underlying stream (thus assuming other
users of the underlying stream are not permitted), while receiving EOF
on the read side leaves the underlying channel open. These
inconsistencies are left for a later person to resolve, if the extra
functionality is needed (as described in #35904). The current goal here
is to the fix the occasional CI exceptions depending on the timing of
these kernel messages through the TCP stack.
PR-URL: https://github.com/nodejs/node/pull/36111
Fixes: https://github.com/nodejs/node/pull/35946
Refs: https://github.com/libuv/libuv/pull/3036
Refs: https://github.com/nodejs/node/issues/35904
Co-authored-by: Momtchil Momtchev <momtchil@momtchev.com>
Reviewed-By: Robert Nagy <ronagy@icloud.com>
Reviewed-By: Matteo Collina <matteo.collina@gmail.com>
Reviewed-By: Luigi Pinca <luigipinca@gmail.com>
2020-11-13 20:40:04 +00:00
|
|
|
// After seeing EOF, most streams will be closed permanently,
|
|
|
|
|
// and will not deliver any more read events after this point.
|
|
|
|
|
// (equivalently, it should have called readStop on itself already).
|
|
|
|
|
// Some streams may be reset and explicitly started again with a call
|
|
|
|
|
// to readStart, such as TTY.
|
|
|
|
|
|
2018-05-05 09:46:50 +00:00
|
|
|
if (nread !== UV_EOF) {
|
2020-08-08 23:39:05 +00:00
|
|
|
// CallJSOnreadMethod expects the return value to be a buffer.
|
|
|
|
|
// Ref: https://github.com/nodejs/node/pull/34375
|
2020-07-15 03:41:11 +00:00
|
|
|
stream.destroy(errnoException(nread, 'read'));
|
|
|
|
|
return;
|
2018-05-05 09:46:50 +00:00
|
|
|
}
|
|
|
|
|
|
2019-03-07 00:03:53 +00:00
|
|
|
// Defer this until we actually emit end
|
2018-05-05 09:46:50 +00:00
|
|
|
if (stream._readableState.endEmitted) {
|
|
|
|
|
if (stream[kMaybeDestroy])
|
|
|
|
|
stream[kMaybeDestroy]();
|
|
|
|
|
} else {
|
|
|
|
|
if (stream[kMaybeDestroy])
|
|
|
|
|
stream.on('end', stream[kMaybeDestroy]);
|
|
|
|
|
|
2019-03-07 00:03:53 +00:00
|
|
|
// Push a null to signal the end of data.
|
2018-05-05 09:46:50 +00:00
|
|
|
// Do it before `maybeDestroy` for correct order of events:
|
|
|
|
|
// `end` -> `close`
|
|
|
|
|
stream.push(null);
|
|
|
|
|
stream.read(0);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-01-04 02:40:22 +00:00
|
|
|
function setStreamTimeout(msecs, callback) {
|
|
|
|
|
if (this.destroyed)
|
2020-04-08 15:43:30 +00:00
|
|
|
return this;
|
2019-01-04 02:40:22 +00:00
|
|
|
|
|
|
|
|
this.timeout = msecs;
|
|
|
|
|
|
|
|
|
|
// Type checking identical to timers.enroll()
|
2019-03-20 11:12:48 +00:00
|
|
|
msecs = getTimerDuration(msecs, 'msecs');
|
2019-01-04 02:40:22 +00:00
|
|
|
|
|
|
|
|
// Attempt to clear an existing timer in both cases -
|
|
|
|
|
// even if it will be rescheduled we don't want to leak an existing timer.
|
|
|
|
|
clearTimeout(this[kTimeout]);
|
|
|
|
|
|
|
|
|
|
if (msecs === 0) {
|
|
|
|
|
if (callback !== undefined) {
|
2022-01-24 16:09:16 +00:00
|
|
|
validateFunction(callback, 'callback');
|
2019-01-04 02:40:22 +00:00
|
|
|
this.removeListener('timeout', callback);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
this[kTimeout] = setUnrefTimeout(this._onTimeout.bind(this), msecs);
|
|
|
|
|
if (this[kSession]) this[kSession][kUpdateTimer]();
|
|
|
|
|
|
|
|
|
|
if (callback !== undefined) {
|
2022-01-24 16:09:16 +00:00
|
|
|
validateFunction(callback, 'callback');
|
2019-01-04 02:40:22 +00:00
|
|
|
this.once('timeout', callback);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
2018-03-18 07:35:47 +00:00
|
|
|
module.exports = {
|
|
|
|
|
writevGeneric,
|
2018-05-05 09:46:50 +00:00
|
|
|
writeGeneric,
|
|
|
|
|
onStreamRead,
|
2018-11-03 18:00:41 +00:00
|
|
|
kAfterAsyncWrite,
|
2018-05-05 09:46:50 +00:00
|
|
|
kMaybeDestroy,
|
|
|
|
|
kUpdateTimer,
|
2019-03-07 11:22:36 +00:00
|
|
|
kHandle,
|
2019-01-04 02:40:22 +00:00
|
|
|
kSession,
|
2019-01-10 20:52:27 +00:00
|
|
|
setStreamTimeout,
|
|
|
|
|
kBuffer,
|
|
|
|
|
kBufferCb,
|
2023-02-26 10:34:02 +00:00
|
|
|
kBufferGen,
|
2018-03-18 07:35:47 +00:00
|
|
|
};
|