static void ngx_tcp_ssl_handshake_handler(ngx_connection_t *c) { ngx_tcp_session_t *s; ngx_tcp_core_srv_conf_t *cscf; if (c->ssl->handshaked) { s = c->data; if (s->starttls) { cscf = ngx_tcp_get_module_srv_conf(s, ngx_tcp_core_module); c->read->handler = cscf->protocol->init_protocol; c->write->handler = ngx_tcp_send; cscf->protocol->init_protocol(c->read); return; } c->read->ready = 0; ngx_tcp_init_session(c); return; } ngx_tcp_close_connection(c); }
void ngx_tcp_init_connection(ngx_connection_t *c) { ngx_event_t *rev; ngx_tcp_log_ctx_t *ctx; ctx = ngx_palloc(c->pool, sizeof(ngx_tcp_log_ctx_t)); if (ctx == NULL) { ngx_tcp_close_connection(c); return; } ctx->client = NULL; ctx->session = NULL; c->log->connection = c->number; c->log->handler = ngx_tcp_log_error; c->log->data = ctx; c->log->action = "client init tcp connection"; c->log_error = NGX_ERROR_INFO; rev = c->read; rev->handler = ngx_tcp_init_session; c->write->handler = ngx_tcp_empty_handler; /* #if (NGX_STAT_STUB) (void) ngx_atomic_fetch_add(ngx_stat_reading, 1); #endif */ if (rev->ready) { /* the deferred accept(), rtsig, aio, iocp */ if (ngx_use_accept_mutex) { ngx_post_event(rev, &ngx_posted_events); return; } ngx_tcp_init_session(rev); return; } ngx_add_timer(rev, c->listening->post_accept_timeout); if (ngx_handle_read_event(rev, 0) != NGX_OK) { /* #if (NGX_STAT_STUB) (void) ngx_atomic_fetch_add(ngx_stat_reading, -1); #endif */ ngx_tcp_close_connection(c); return; } }
static void ngx_tcp_ssl_handshake_handler(ngx_connection_t *c) { if (c->ssl->handshaked) { c->read->ready = 0; ngx_tcp_init_session(c); return; } ngx_tcp_close_connection(c); }
void ngx_tcp_init_connection(ngx_connection_t *c) { ngx_uint_t i; ngx_tcp_port_t *port; struct sockaddr *sa; struct sockaddr_in *sin; ngx_tcp_log_ctx_t *ctx; ngx_tcp_in_addr_t *addr; ngx_tcp_session_t *s; ngx_tcp_addr_conf_t *addr_conf; ngx_tcp_core_srv_conf_t *cscf; #if (NGX_HAVE_INET6) struct sockaddr_in6 *sin6; ngx_tcp_in6_addr_t *addr6; #endif /* find the server configuration for the address:port */ port = c->listening->servers; if (port && port->naddrs > 1) { /* * There are several addresses on this port and one of them * is the "*:port" wildcard so getsockname() is needed to determine * the server address. * * AcceptEx() already gave this address. */ if (ngx_connection_local_sockaddr(c, NULL, 0) != NGX_OK) { ngx_tcp_close_connection(c); return; } sa = c->local_sockaddr; switch (sa->sa_family) { #if (NGX_HAVE_INET6) case AF_INET6: sin6 = (struct sockaddr_in6 *) sa; addr6 = port->addrs; /* the last address is "*" */ for (i = 0; i < port->naddrs - 1; i++) { if (ngx_memcmp(&addr6[i].addr6, &sin6->sin6_addr, 16) == 0) { break; } } addr_conf = &addr6[i].conf; break; #endif default: /* AF_INET */ sin = (struct sockaddr_in *) sa; addr = port->addrs; /* the last address is "*" */ for (i = 0; i < port->naddrs - 1; i++) { if (addr[i].addr == sin->sin_addr.s_addr) { break; } } addr_conf = &addr[i].conf; break; } } else { switch (c->local_sockaddr->sa_family) { #if (NGX_HAVE_INET6) case AF_INET6: addr6 = port->addrs; addr_conf = &addr6[0].conf; break; #endif case AF_INET: addr = port->addrs; addr_conf = &addr[0].conf; break; default: /* AF_UNIX */ addr = port->addrs; addr_conf = &addr[0].conf; break; } } cscf = ngx_tcp_get_module_srv_conf(addr_conf->ctx, ngx_tcp_core_module); s = cscf->protocol->create_session(c); if (s == NULL) { ngx_tcp_close_connection(c); return; } s->main_conf = addr_conf->ctx->main_conf; s->srv_conf = addr_conf->ctx->srv_conf; s->addr_text = &addr_conf->addr_text; c->data = s; s->connection = c; ngx_log_error(NGX_LOG_INFO, c->log, 0, "*%ui client %V connected to %V", c->number, &c->addr_text, s->addr_text); ctx = ngx_palloc(c->pool, sizeof(ngx_tcp_log_ctx_t)); if (ctx == NULL) { ngx_tcp_close_connection(c); return; } ctx->client = &c->addr_text; ctx->session = s; c->log->connection = c->number; c->log->handler = ngx_tcp_log_error_msg; c->log->data = ctx; c->log->action = "sending client greeting line"; c->log_error = NGX_ERROR_INFO; #if (NGX_TCP_SSL) { ngx_tcp_ssl_conf_t *sslcf; sslcf = ngx_tcp_get_module_srv_conf(s, ngx_tcp_ssl_module); if (sslcf->enable) { c->log->action = "SSL handshaking"; ngx_tcp_ssl_init_connection(&sslcf->ssl, c); return; } if (addr_conf->ssl) { c->log->action = "SSL handshaking"; if (sslcf->ssl.ctx == NULL) { ngx_log_error(NGX_LOG_ERR, c->log, 0, "no \"ssl_certificate\" is defined " "in server listening on SSL port"); ngx_tcp_close_connection(c); return; } ngx_tcp_ssl_init_connection(&sslcf->ssl, c); return; } } #endif ngx_tcp_init_session(c); }