org.apache.sshd.common.session

Class AbstractSession

java.lang.Object

org.apache.sshd.common.util.CloseableUtils.AbstractCloseable

org.apache.sshd.common.util.CloseableUtils.AbstractInnerCloseable

org.apache.sshd.common.session.AbstractSession

All Implemented Interfaces:

Closeable, Session

Direct Known Subclasses:

ClientSessionImpl, ServerSession

public abstract class AbstractSession
extends CloseableUtils.AbstractInnerCloseable
implements Session

The AbstractSession handles all the basic SSH protocol such as key exchange, authentication, encoding and decoding. Both server side and client side sessions should inherit from this abstract class. Some basic packet processing methods are defined but the actual call to these methods should be done from the handleMessage(org.apache.sshd.common.util.Buffer) method, which is dependant on the state and side of this session. TODO: if there is any very big packet, decoderBuffer and uncompressBuffer will get quite big and they won't be resized down at any time. Though the packet size is really limited by the channel max packet size

Author:

Apache MINA SSHD Project

Nested Class Summary

Nested Classes

Modifier and Type	Class and Description
protected static class	AbstractSession.PendingWriteFuture Future holding a packet pending key exchange termination.

Nested classes/interfaces inherited from class org.apache.sshd.common.util.CloseableUtils.AbstractCloseable

CloseableUtils.AbstractCloseable.State

Nested classes/interfaces inherited from interface org.apache.sshd.common.Session

Session.AttributeKey<T>, Session.TimeoutStatus

Field Summary

Fields

Modifier and Type	Field and Description
protected Map<Session.AttributeKey<?>,Object>	attributes
protected boolean	authed Boolean indicating if this session has been authenticated or not
protected long	authTimeoutMs
protected long	authTimeoutTimestamp
protected String[]	clientProposal
protected String	clientVersion
protected Service	currentService
protected Object	decodeLock
protected Buffer	decoderBuffer
protected int	decoderLength
protected int	decoderState
protected long	disconnectTimeoutMs
protected Object	encodeLock
protected FactoryManager	factoryManager The factory manager used to retrieve factories of Ciphers, Macs and other objects
protected byte[]	I_C
protected byte[]	I_S
protected long	idleTimeoutMs
protected long	idleTimeoutTimestamp
protected long	inBytes
protected Cipher	inCipher
protected int	inCipherSize
protected Compression	inCompression
protected Mac	inMac
protected byte[]	inMacResult
protected long	inPackets
protected IoSession	ioSession The underlying MINA session
protected boolean	isServer Client or server side
protected KeyExchange	kex
protected static int	KEX_STATE_DONE
protected static int	KEX_STATE_INIT
protected static int	KEX_STATE_KEYS
protected static int	KEX_STATE_RUN
protected AtomicInteger	kexState
protected long	lastKeyTime
protected List<SessionListener>	listeners Session listeners container
protected String[]	negotiated
protected long	outBytes
protected Cipher	outCipher
protected int	outCipherSize
protected Compression	outCompression
protected Mac	outMac
protected long	outPackets
protected Queue<AbstractSession.PendingWriteFuture>	pendingPackets
protected Random	random The pseudo random generator
protected DefaultSshFuture	reexchangeFuture
protected Object	requestLock
protected AtomicReference<Buffer>	requestResult
protected long	seqi
protected long	seqo
protected String[]	serverProposal
protected String	serverVersion
static String	SESSION Name of the property where this session is stored in the attributes of the underlying MINA session.
protected byte[]	sessionId
protected SessionListener	sessionListenerProxy
protected AtomicReference<Session.TimeoutStatus>	timeoutStatus
protected Buffer	uncompressBuffer
protected String	username The name of the authenticated user

Fields inherited from class org.apache.sshd.common.util.CloseableUtils.AbstractCloseable

closeFuture, lock, log, state

Constructor Summary

Constructors

Constructor and Description
AbstractSession(boolean isServer, FactoryManager factoryManager, IoSession ioSession) Create a new session.

Method Summary

Methods

Modifier and Type	Method and Description
void	addListener(SessionListener listener) Add a session |listener|.
static void	attachSession(IoSession ioSession, AbstractSession session) Attach a session to the MINA session
protected void	checkForTimeouts() Checks whether the session has timed out (both auth and idle timeouts are checked).
protected abstract void	checkKeys()
protected void	checkRekey()
Buffer	createBuffer(byte cmd) Create a new buffer for the specified SSH packet and reserve the needed space (5 bytes) for the packet header.
Buffer	createBuffer(byte cmd, int len) Create a new buffer for the specified SSH packet and reserve the needed space (5 bytes) for the packet header.
protected String[]	createProposal(String hostKeyTypes) Create our proposal for SSH negotiation
protected void	decode() Decode the incoming buffer and handle packets as needed.
void	disconnect(int reason, String msg) Send a disconnect packet with the given reason and message.
protected void	doCloseImmediately() doCloseImmediately is called once and only once with state == Immediate Overriding methods should always call the base implementation.
protected void	doHandleMessage(Buffer buffer)
protected String	doReadIdentification(Buffer buffer, boolean server) Read the remote identification from this buffer.
protected IoWriteFuture	doWritePacket(Buffer buffer)
void	exceptionCaught(Throwable t) Handle any exceptions that occured on this session.
<T> T	getAttribute(Session.AttributeKey<T> key) Returns the value of the user-defined attribute of this session.
long	getAuthTimeout() What is timeout value in milliseconds for authentication stage
String	getClientVersion() Retrieve the client version for this session.
FactoryManager	getFactoryManager() Retrieve the factory manager
long	getIdleTimeout() What is timeout value in milliseconds for communication
protected Closeable	getInnerCloseable()
int	getIntProperty(String name, int defaultValue) Retrieve a configuration property as an integer
IoSession	getIoSession() Retrieve the mina session
KeyExchange	getKex()
Object	getLock()
long	getLongProperty(String name, long defaultValue)
String	getNegotiatedKexParameter(int paramType) Retrieve one of the negotiated values during the KEX stage
String	getServerVersion() Retrieve the server version for this session.
<T extends Service> T	getService(Class<T> clazz) Get the service of the specified type.
protected Service[]	getServices()
static AbstractSession	getSession(IoSession ioSession) Retrieve the session from the MINA session.
static AbstractSession	getSession(IoSession ioSession, boolean allowNull) Retrieve the session from the MINA session.
byte[]	getSessionId()
Session.TimeoutStatus	getTimeoutStatus() Check if timeout has occurred.
String	getUsername() Retrieve the name of the user authenticated on this session or null if the session has not been authenticated yet.
protected void	handleMessage(Buffer buffer) Abstract method for processing incoming decoded packets.
boolean	isAuthenticated()
void	messageReceived(Readable buffer) Main input point for the MINA framework.
protected void	negotiate() Compute the negotiated proposals by merging the client and server proposal.
protected void	notImplemented() Send an unimplemented packet.
protected abstract boolean	readIdentification(Buffer buffer) Read the other side identification.
protected abstract void	receiveKexInit(Buffer buffer)
protected byte[]	receiveKexInit(Buffer buffer, String[] proposal) Receive the remote key exchange init message.
protected void	receiveNewKeys() Put new keys into use.
SshFuture	reExchangeKeys() Initiate a new key exchange.
void	removeListener(SessionListener listener) Remove a session |listener|.
Buffer	request(Buffer buffer) Send a global request and wait for the response.
protected void	requestFailure(Buffer buffer)
protected void	requestSuccess(Buffer buffer)
void	resetIdleTimeout()
protected void	sendEvent(SessionListener.Event event)
protected void	sendIdentification(String ident) Send our identification.
protected abstract void	sendKexInit()
protected byte[]	sendKexInit(String[] proposal) Send the key exchange initialization packet.
protected void	sendNewKeys() Send a message to put new keys into use.
protected void	serviceAccept()
<T,E extends T> T	setAttribute(Session.AttributeKey<T> key, E value) Sets a user-defined attribute.
void	setAuthenticated()
void	setUsername(String username)
abstract void	startService(String name)
String	toString()
IoWriteFuture	writePacket(Buffer buffer) Encode and send the given buffer.
IoWriteFuture	writePacket(Buffer buffer, long timeout, TimeUnit unit) Encode and send the given buffer with the specified timeout.

Methods inherited from class org.apache.sshd.common.util.CloseableUtils.AbstractInnerCloseable

doCloseGracefully

Methods inherited from class org.apache.sshd.common.util.CloseableUtils.AbstractCloseable

builder, close, isClosed, isClosing, preClose

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Methods inherited from interface org.apache.sshd.common.Closeable

close, isClosed, isClosing

Field Detail

SESSION

public static final String SESSION

Name of the property where this session is stored in the attributes of the underlying MINA session. See getSession(IoSession, boolean) and attachSession(IoSession, AbstractSession).

See Also:

Constant Field Values

KEX_STATE_INIT

protected static final int KEX_STATE_INIT

See Also:

Constant Field Values

KEX_STATE_RUN

protected static final int KEX_STATE_RUN

See Also:

Constant Field Values

KEX_STATE_KEYS

protected static final int KEX_STATE_KEYS

See Also:

Constant Field Values

KEX_STATE_DONE

protected static final int KEX_STATE_DONE

See Also:

Constant Field Values

isServer

protected final boolean isServer

Client or server side

factoryManager

protected final FactoryManager factoryManager

The factory manager used to retrieve factories of Ciphers, Macs and other objects

ioSession

protected final IoSession ioSession

The underlying MINA session

random

protected final Random random

The pseudo random generator

authed

protected boolean authed

Boolean indicating if this session has been authenticated or not

username

protected String username

The name of the authenticated user

listeners

protected final List<SessionListener> listeners

Session listeners container

sessionListenerProxy

protected final SessionListener sessionListenerProxy

sessionId

protected byte[] sessionId

serverVersion

protected String serverVersion

clientVersion

protected String clientVersion

serverProposal

protected String[] serverProposal

clientProposal

protected String[] clientProposal

negotiated

protected String[] negotiated

I_C

protected byte[] I_C

I_S

protected byte[] I_S

kex

protected KeyExchange kex

kexState

protected final AtomicInteger kexState

reexchangeFuture

protected DefaultSshFuture reexchangeFuture

outCipher

protected Cipher outCipher

inCipher

protected Cipher inCipher

outCipherSize

protected int outCipherSize

inCipherSize

protected int inCipherSize

outMac

protected Mac outMac

inMac

protected Mac inMac

inMacResult

protected byte[] inMacResult

outCompression

protected Compression outCompression

inCompression

protected Compression inCompression

seqi

protected long seqi

seqo

protected long seqo

decoderBuffer

protected Buffer decoderBuffer

uncompressBuffer

protected Buffer uncompressBuffer

decoderState

protected int decoderState

decoderLength

protected int decoderLength

encodeLock

protected final Object encodeLock

decodeLock

protected final Object decodeLock

requestLock

protected final Object requestLock

requestResult

protected final AtomicReference<Buffer> requestResult

attributes

protected final Map<Session.AttributeKey<?>,Object> attributes

authTimeoutTimestamp

protected long authTimeoutTimestamp

idleTimeoutTimestamp

protected long idleTimeoutTimestamp

authTimeoutMs

protected long authTimeoutMs

idleTimeoutMs

protected long idleTimeoutMs

disconnectTimeoutMs

protected long disconnectTimeoutMs

timeoutStatus

protected final AtomicReference<Session.TimeoutStatus> timeoutStatus

inPackets

protected volatile long inPackets

outPackets

protected volatile long outPackets

inBytes

protected volatile long inBytes

outBytes

protected volatile long outBytes

lastKeyTime

protected volatile long lastKeyTime

pendingPackets

protected final Queue<AbstractSession.PendingWriteFuture> pendingPackets

currentService

protected Service currentService

Constructor Detail

AbstractSession

public AbstractSession(boolean isServer,
               FactoryManager factoryManager,
               IoSession ioSession)

Create a new session.

Parameters:

factoryManager - the factory manager

ioSession - the underlying MINA session

Method Detail

getSession

public static AbstractSession getSession(IoSession ioSession)

Retrieve the session from the MINA session. If the session has not been attached, an IllegalStateException will be thrown

Parameters:

ioSession - the MINA session

Returns:

the session attached to the MINA session

getSession

public static AbstractSession getSession(IoSession ioSession,
                         boolean allowNull)

Retrieve the session from the MINA session. If the session has not been attached and allowNull is false, an IllegalStateException will be thrown, else a null will be returned

Parameters:

ioSession - the MINA session

allowNull - if true, a null value may be returned if no session is attached

Returns:

the session attached to the MINA session or null

attachSession

public static void attachSession(IoSession ioSession,
                 AbstractSession session)

Attach a session to the MINA session

Parameters:

ioSession - the MINA session

session - the session to attach

getServerVersion

public String getServerVersion()

Description copied from interface: Session

Retrieve the server version for this session.

Specified by:

getServerVersion in interface Session

Returns:

the server version.

getClientVersion

public String getClientVersion()

Description copied from interface: Session

Retrieve the client version for this session.

Specified by:

getClientVersion in interface Session

Returns:

the client version.

getKex

public KeyExchange getKex()

getSessionId

public byte[] getSessionId()

getIoSession

public IoSession getIoSession()

Retrieve the mina session

Specified by:

getIoSession in interface Session

Returns:

the mina session

getFactoryManager

public FactoryManager getFactoryManager()

Retrieve the factory manager

Specified by:

getFactoryManager in interface Session

Returns:

the factory manager for this session

getNegotiatedKexParameter

public String getNegotiatedKexParameter(int paramType)

Description copied from interface: Session

Retrieve one of the negotiated values during the KEX stage

Specified by:

getNegotiatedKexParameter in interface Session

Parameters:

paramType - The parameter type index - one of the SSHConstants PROPOSAL_XXX values

Returns:

The negotiated parameter value - null if invalid parameter index or no negotiated value

isAuthenticated

public boolean isAuthenticated()

setUsername

public void setUsername(String username)

setAuthenticated

public void setAuthenticated()
                      throws IOException

Throws:

IOException

messageReceived

public void messageReceived(Readable buffer)
                     throws Exception

Main input point for the MINA framework. This method will be called each time new data is received on the socket and will append it to the input buffer before calling the decode() method.

Parameters:

buffer - the new buffer received

Throws:

Exception - if an error occurs while decoding or handling the data

handleMessage

protected void handleMessage(Buffer buffer)
                      throws Exception

Abstract method for processing incoming decoded packets. The given buffer will hold the decoded packet, starting from the command byte at the read position. Packets must be processed within this call or be copied because the given buffer is meant to be changed and updated when this method returns.

Parameters:

buffer - the buffer containing the packet

Throws:

Exception - if an exeption occurs while handling this packet.

doHandleMessage

protected void doHandleMessage(Buffer buffer)
                        throws Exception

Throws:

Exception

exceptionCaught

public void exceptionCaught(Throwable t)

Handle any exceptions that occured on this session. The session will be closed and a disconnect packet will be sent before if the given exception is an SshException.

Specified by:

exceptionCaught in interface Session

Parameters:

t - the exception to process

getInnerCloseable

protected Closeable getInnerCloseable()

Specified by:

getInnerCloseable in class CloseableUtils.AbstractInnerCloseable

doCloseImmediately

protected void doCloseImmediately()

Description copied from class: CloseableUtils.AbstractCloseable

doCloseImmediately is called once and only once with state == Immediate Overriding methods should always call the base implementation. It may be called concurrently while preClose() or doCloseGracefully is executing

Overrides:

doCloseImmediately in class CloseableUtils.AbstractInnerCloseable

getServices

protected Service[] getServices()

getService

public <T extends Service> T getService(Class<T> clazz)

Description copied from interface: Session

Get the service of the specified type. If the service is not of the specified class, an IllegalStateException will be thrown.

Specified by:

getService in interface Session

writePacket

public IoWriteFuture writePacket(Buffer buffer)
                          throws IOException

Encode and send the given buffer. The buffer has to have 5 bytes free at the beginning to allow the encoding to take place. Also, the write position of the buffer has to be set to the position of the last byte to write.

Specified by:

writePacket in interface Session

Parameters:

buffer - the buffer to encode and send

Returns:

a future that can be used to check when the packet has actually been sent

Throws:

IOException - if an error occured when encoding sending the packet

writePacket

public IoWriteFuture writePacket(Buffer buffer,
                        long timeout,
                        TimeUnit unit)
                          throws IOException

Description copied from interface: Session

Encode and send the given buffer with the specified timeout. If the buffer could not be written before the timeout elapses, the returned IoWriteFuture will be set with a TimeoutException exception to indicate a timeout.

Specified by:

writePacket in interface Session

Parameters:

buffer - the buffer to encode and spend

timeout - the timeout

unit - the time unit of the timeout parameter

Returns:

a future that can be used to check when the packet has actually been sent

Throws:

IOException - if an error occurred when encoding sending the packet

doWritePacket

protected IoWriteFuture doWritePacket(Buffer buffer)
                               throws IOException

Throws:

IOException

request

public Buffer request(Buffer buffer)
               throws IOException

Send a global request and wait for the response. This must only be used when sending a SSH_MSG_GLOBAL_REQUEST with a result expected, else it will wait forever.

Specified by:

request in interface Session

Parameters:

buffer - the buffer containing the global request

Returns:

true if the request was successful, false otherwise.

Throws:

IOException - if an error occured when encoding sending the packet

createBuffer

public Buffer createBuffer(byte cmd)

Description copied from interface: Session

Create a new buffer for the specified SSH packet and reserve the needed space (5 bytes) for the packet header.

Specified by:

createBuffer in interface Session

Parameters:

cmd - the SSH command

Returns:

a new buffer ready for write

createBuffer

public Buffer createBuffer(byte cmd,
                  int len)

Create a new buffer for the specified SSH packet and reserve the needed space (5 bytes) for the packet header.

Specified by:

createBuffer in interface Session

Parameters:

cmd - the SSH command

len - estimated number of bytes the buffer will hold, 0 if unknown.

Returns:

a new buffer ready for write

decode

protected void decode()
               throws Exception

Decode the incoming buffer and handle packets as needed.

Throws:

Exception

sendIdentification

protected void sendIdentification(String ident)

Send our identification.

Parameters:

ident - our identification to send

readIdentification

protected abstract boolean readIdentification(Buffer buffer)
                                       throws IOException

Read the other side identification. This method is specific to the client or server side, but both should call doReadIdentification(org.apache.sshd.common.util.Buffer,boolean) and store the result in the needed property.

Parameters:

buffer - the buffer containing the remote identification

Returns:

true if the identification has been fully read or false if more data is needed

Throws:

IOException - if an error occurs such as a bad protocol version

doReadIdentification

protected String doReadIdentification(Buffer buffer,
                          boolean server)

Read the remote identification from this buffer. If more data is needed, the buffer will be reset to its original state and a null value will be returned. Else the identification string will be returned and the data read will be consumed from the buffer.

Parameters:

buffer - the buffer containing the identification string

Returns:

the remote identification or null if more data is needed

createProposal

protected String[] createProposal(String hostKeyTypes)

Create our proposal for SSH negotiation

Parameters:

hostKeyTypes - the list of supported host key types

Returns:

an array of 10 strings holding this proposal

sendKexInit

protected byte[] sendKexInit(String[] proposal)
                      throws IOException

Send the key exchange initialization packet. This packet contains random data along with our proposal.

Parameters:

proposal - our proposal for key exchange negotiation

Returns:

the sent packet which must be kept for later use

Throws:

IOException - if an error occurred sending the packet

receiveKexInit

protected byte[] receiveKexInit(Buffer buffer,
                    String[] proposal)

Receive the remote key exchange init message. The packet data is returned for later use.

Parameters:

buffer - the buffer containing the key exchange init packet

proposal - the remote proposal to fill

Returns:

the packet data

sendNewKeys

protected void sendNewKeys()
                    throws IOException

Send a message to put new keys into use.

Throws:

IOException - if an error occurs sending the message

receiveNewKeys

protected void receiveNewKeys()
                       throws Exception

Put new keys into use. This method will initialize the ciphers, digests, macs and compression according to the negotiated server and client proposals.

Throws:

Exception - if an error occurs

disconnect

public void disconnect(int reason,
              String msg)
                throws IOException

Send a disconnect packet with the given reason and message. Once the packet has been sent, the session will be closed asynchronously.

Parameters:

reason - the reason code for this disconnect

msg - the text message

Throws:

IOException - if an error occured sending the packet

notImplemented

protected void notImplemented()
                       throws IOException

Send an unimplemented packet. This packet should contain the sequence id of the unsupported packet: this number is assumed to be the last packet received.

Throws:

IOException - if an error occurred sending the packet

negotiate

protected void negotiate()

Compute the negotiated proposals by merging the client and server proposal. The negotiated proposal will be stored in the negotiated property.

requestSuccess

protected void requestSuccess(Buffer buffer)
                       throws Exception

Throws:

Exception

requestFailure

protected void requestFailure(Buffer buffer)
                       throws Exception

Throws:

Exception

getIntProperty

public int getIntProperty(String name,
                 int defaultValue)

Retrieve a configuration property as an integer

Specified by:

getIntProperty in interface Session

Parameters:

name - the name of the property

defaultValue - the default value

Returns:

the value of the configuration property or the default value if not found

getLongProperty

public long getLongProperty(String name,
                   long defaultValue)

getAttribute

public <T> T getAttribute(Session.AttributeKey<T> key)

Returns the value of the user-defined attribute of this session.

Specified by:

getAttribute in interface Session

Parameters:

key - the key of the attribute; must not be null.

Returns:

null if there is no attribute with the specified key

setAttribute

public <T,E extends T> T setAttribute(Session.AttributeKey<T> key,
                             E value)

Sets a user-defined attribute.

Specified by:

setAttribute in interface Session

Parameters:

key - the key of the attribute; must not be null.

value - the value of the attribute; must not be null.

Returns:

The old value of the attribute. null if it is new.

getUsername

public String getUsername()

Description copied from interface: Session

Retrieve the name of the user authenticated on this session or null if the session has not been authenticated yet.

Specified by:

getUsername in interface Session

Returns:

the user name.

getLock

public Object getLock()

addListener

public void addListener(SessionListener listener)

Add a session |listener|.

Specified by:

addListener in interface Session

Parameters:

listener - the session listener to add

removeListener

public void removeListener(SessionListener listener)

Remove a session |listener|.

Specified by:

removeListener in interface Session

Parameters:

listener - the session listener to remove

sendEvent

protected void sendEvent(SessionListener.Event event)
                  throws IOException

Throws:

IOException

reExchangeKeys

public SshFuture reExchangeKeys()
                         throws IOException

Initiate a new key exchange.

Specified by:

reExchangeKeys in interface Session

Throws:

IOException

checkRekey

protected void checkRekey()
                   throws IOException

Throws:

IOException

sendKexInit

protected abstract void sendKexInit()
                             throws IOException

Throws:

IOException

checkKeys

protected abstract void checkKeys()
                           throws IOException

Throws:

IOException

receiveKexInit

protected abstract void receiveKexInit(Buffer buffer)
                                throws IOException

Throws:

IOException

serviceAccept

protected void serviceAccept()
                      throws IOException

Throws:

IOException

startService

public abstract void startService(String name)
                           throws Exception

Throws:

Exception

checkForTimeouts

protected void checkForTimeouts()
                         throws IOException

Checks whether the session has timed out (both auth and idle timeouts are checked). If the session has timed out, a DISCONNECT message will be sent.

Throws:

IOException

resetIdleTimeout

public void resetIdleTimeout()

Specified by:

resetIdleTimeout in interface Session

getTimeoutStatus

public Session.TimeoutStatus getTimeoutStatus()

Check if timeout has occurred.

Specified by:

getTimeoutStatus in interface Session

Returns:

getAuthTimeout

public long getAuthTimeout()

What is timeout value in milliseconds for authentication stage

Specified by:

getAuthTimeout in interface Session

Returns:

getIdleTimeout

public long getIdleTimeout()

What is timeout value in milliseconds for communication

Specified by:

getIdleTimeout in interface Session

Returns:

toString

public String toString()

Overrides:

toString in class Object