1. /*

  2.  * @(#)URLClassLoader.java	1.68 01/11/29

  3.  *

  4.  * Copyright 2002 Sun Microsystems, Inc. All rights reserved.

  5.  * SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.

  6.  */

  7. 

  8. package java.net;

  9. 

  10. import java.lang.reflect.Method;

  11. import java.lang.reflect.Modifier;

  12. import java.io.File;

  13. import java.io.FilePermission;

  14. import java.io.InputStream;

  15. import java.io.IOException;

  16. import java.net.URL;

  17. import java.net.URLConnection;

  18. import java.net.URLStreamHandlerFactory;

  19. import java.util.Enumeration;

  20. import java.util.NoSuchElementException;

  21. import java.util.StringTokenizer;

  22. import java.util.jar.Manifest;

  23. import java.util.jar.Attributes;

  24. import java.util.jar.Attributes.Name;

  25. import java.security.PrivilegedAction;

  26. import java.security.PrivilegedExceptionAction;

  27. import java.security.AccessController;

  28. import java.security.AccessControlContext;

  29. import java.security.SecureClassLoader;

  30. import java.security.CodeSource;

  31. import java.security.Permission;

  32. import java.security.PermissionCollection;

  33. import sun.misc.Resource;

  34. import sun.misc.URLClassPath;

  35. 

  36. /**

  37.  * This class loader is used to load classes and resources from a search

  38.  * path of URLs referring to both JAR files and directories. Any URL that

  39.  * ends with a '/' is assumed to refer to a directory. Otherwise, the URL

  40.  * is assumed to refer to a JAR file which will be opened as needed.

  41.  * <p>

  42.  * The AccessControlContext of the thread that created the instance of

  43.  * URLClassLoader will be used when subsequently loading classes and

  44.  * resources.

  45.  * <p>

  46.  * The classes that are loaded are by default granted permission only to

  47.  * access the URLs specified when the URLClassLoader was created.

  48.  *

  49.  * @author  David Connelly

  50.  * @version 1.68, 11/29/01

  51.  * @since   JDK1.2

  52.  */

  53. public class URLClassLoader extends SecureClassLoader {

  54.     /* The search path for classes and resources */

  55.     private URLClassPath ucp;

  56. 

  57.     /* The context to be used when loading classes and resources */

  58.     private AccessControlContext acc;

  59. 

  60.     /**

  61.      * Constructs a new URLClassLoader for the given URLs. The URLs will be

  62.      * searched in the order specified for classes and resources after first

  63.      * searching in the specified parent class loader. Any URL that ends with

  64.      * a '/' is assumed to refer to a directory. Otherwise, the URL is assumed

  65.      * to refer to a JAR file which will be downloaded and opened as needed.

  66.      *

  67.      * <p>If there is a security manager, this method first

  68.      * calls the security manager's <code>checkCreateClassLoader</code> method

  69.      * to ensure creation of a class loader is allowed.

  70.      * 

  71.      * @param urls the URLs from which to load classes and resources

  72.      * @param parent the parent class loader for delegation

  73.      * @exception  SecurityException  if a security manager exists and its  

  74.      *             <code>checkCreateClassLoader</code> method doesn't allow 

  75.      *             creation of a class loader.

  76.      * @see SecurityManager#checkCreateClassLoader

  77.      */

  78.     public URLClassLoader(URL[] urls, ClassLoader parent) {

  79. 	super(parent);

  80. 	// this is to make the stack depth consistent with 1.1

  81. 	SecurityManager security = System.getSecurityManager();

  82. 	if (security != null) {

  83. 	    security.checkCreateClassLoader();

  84. 	}

  85. 	ucp = new URLClassPath(urls);

  86. 	acc = AccessController.getContext();

  87.     }

  88. 

  89.     /**

  90.      * Constructs a new URLClassLoader for the specified URLs using the

  91.      * default delegation parent <code>ClassLoader</code>. The URLs will

  92.      * be searched in the order specified for classes and resources after

  93.      * first searching in the parent class loader. Any URL that ends with

  94.      * a '/' is assumed to refer to a directory. Otherwise, the URL is

  95.      * assumed to refer to a JAR file which will be downloaded and opened

  96.      * as needed.

  97.      *

  98.      * <p>If there is a security manager, this method first

  99.      * calls the security manager's <code>checkCreateClassLoader</code> method

  100.      * to ensure creation of a class loader is allowed.

  101.      * 

  102.      * @param urls the URLs from which to load classes and resources

  103.      *

  104.      * @exception  SecurityException  if a security manager exists and its  

  105.      *             <code>checkCreateClassLoader</code> method doesn't allow 

  106.      *             creation of a class loader.

  107.      * @see SecurityManager#checkCreateClassLoader

  108.      */

  109.     public URLClassLoader(URL[] urls) {

  110. 	super();

  111. 	// this is to make the stack depth consistent with 1.1

  112. 	SecurityManager security = System.getSecurityManager();

  113. 	if (security != null) {

  114. 	    security.checkCreateClassLoader();

  115. 	}

  116. 	ucp = new URLClassPath(urls);

  117. 	acc = AccessController.getContext();

  118.     }

  119. 

  120.     /**

  121.      * Constructs a new URLClassLoader for the specified URLs, parent

  122.      * class loader, and URLStreamHandlerFactory. The parent argument

  123.      * will be used as the parent class loader for delegation. The

  124.      * factory argument will be used as the stream handler factory to

  125.      * obtain protocol handlers when creating new URLs.

  126.      *

  127.      * <p>If there is a security manager, this method first

  128.      * calls the security manager's <code>checkCreateClassLoader</code> method

  129.      * to ensure creation of a class loader is allowed.

  130.      *

  131.      * @param urls the URLs from which to load classes and resources

  132.      * @param parent the parent class loader for delegation

  133.      * @param factory the URLStreamHandlerFactory to use when creating URLs

  134.      *

  135.      * @exception  SecurityException  if a security manager exists and its  

  136.      *             <code>checkCreateClassLoader</code> method doesn't allow 

  137.      *             creation of a class loader.

  138.      * @see SecurityManager#checkCreateClassLoader

  139.      */

  140.     public URLClassLoader(URL[] urls, ClassLoader parent,

  141. 			  URLStreamHandlerFactory factory) {

  142. 	super(parent);

  143. 	// this is to make the stack depth consistent with 1.1

  144. 	SecurityManager security = System.getSecurityManager();

  145. 	if (security != null) {

  146. 	    security.checkCreateClassLoader();

  147. 	}

  148. 	ucp = new URLClassPath(urls, factory);

  149. 	acc = AccessController.getContext();

  150.     }

  151. 

  152.     /**

  153.      * Appends the specified URL to the list of URLs to search for

  154.      * classes and resources.

  155.      *

  156.      * @param url the URL to be added to the search path of URLs

  157.      */

  158.     protected void addURL(URL url) {

  159. 	ucp.addURL(url);

  160.     }

  161. 

  162.     /**

  163.      * Returns the search path of URLs for loading classes and resources.

  164.      * This includes the original list of URLs specified to the constructor,

  165.      * along with any URLs subsequently appended by the addURL() method.

  166.      */

  167.     public URL[] getURLs() {

  168. 	return ucp.getURLs();

  169.     }

  170. 

  171.     /**

  172.      * Finds and loads the class with the specified name from the URL search

  173.      * path. Any URLs referring to JAR files are loaded and opened as needed

  174.      * until the class is found.

  175.      *

  176.      * @param name the name of the class

  177.      * @return the resulting class

  178.      * @exception ClassNotFoundException if the class could not be found

  179.      */

  180.     protected Class findClass(final String name)

  181. 	 throws ClassNotFoundException

  182.     {

  183. 	try {

  184. 	    return (Class)

  185. 		AccessController.doPrivileged(new PrivilegedExceptionAction() {

  186. 		    public Object run() throws ClassNotFoundException {

  187. 			String path = name.replace('.', '/').concat(".class");

  188. 			Resource res = ucp.getResource(path, false);

  189. 			if (res != null) {

  190. 			    try {

  191. 				return defineClass(name, res);

  192. 			    } catch (IOException e) {

  193. 				throw new ClassNotFoundException(name, e);

  194. 			    }

  195. 			} else {

  196. 			    throw new ClassNotFoundException(name);

  197. 			}

  198. 		    }

  199. 		}, acc);

  200. 	} catch (java.security.PrivilegedActionException pae) {

  201. 	    throw (ClassNotFoundException) pae.getException();

  202. 	}

  203.     }

  204. 

  205.     /*

  206.      * Defines a Class using the class bytes obtained from the specified

  207.      * Resource. The resulting Class must be resolved before it can be

  208.      * used.

  209.      */

  210.     private Class defineClass(String name, Resource res) throws IOException {

  211. 	int i = name.lastIndexOf('.');

  212. 	URL url = res.getCodeSourceURL();

  213. 	if (i != -1) {

  214. 	    String pkgname = name.substring(0, i);

  215. 	    // Check if package already loaded.

  216. 	    Package pkg = getPackage(pkgname);

  217. 	    Manifest man = res.getManifest();

  218. 	    if (pkg != null) {

  219. 		// Package found, so check package sealing.

  220. 		boolean ok;

  221. 		if (pkg.isSealed()) {

  222. 		    // Verify that code source URL is the same.

  223. 		    ok = pkg.isSealed(url);

  224. 		} else {

  225. 		    // Make sure we are not attempting to seal the package

  226. 		    // at this code source URL.

  227. 		    ok = (man == null) || !isSealed(pkgname, man);

  228. 		}

  229. 		if (!ok) {

  230. 		    throw new SecurityException("sealing violation");

  231. 		}

  232. 	    } else {

  233. 		if (man != null) {

  234. 		    definePackage(pkgname, man, url);

  235. 		}

  236. 	    }

  237. 	}

  238. 	// Now read the class bytes and define the class

  239. 	byte[] b = res.getBytes();

  240. 	java.security.cert.Certificate[] certs = res.getCertificates();

  241. 	CodeSource cs = new CodeSource(url, certs);

  242. 	return defineClass(name, b, 0, b.length, cs);

  243.     }

  244. 

  245.     /**

  246.      * Defines a new package by name in this ClassLoader. The attributes

  247.      * contained in the specified Manifest will be used to obtain package

  248.      * version and sealing information. For sealed packages, the additional

  249.      * URL specifies the code source URL from which the package was loaded.

  250.      *

  251.      * @param name  the package name

  252.      * @param man   the Manifest containing package version and sealing

  253.      *              information

  254.      * @param url   the code source url for the package, or null if none

  255.      * @exception   IllegalArgumentException if the package name duplicates

  256.      *              an existing package either in this class loader or one

  257.      *              of its ancestors

  258.      */

  259.     protected Package definePackage(String name, Manifest man, URL url)

  260. 	throws IllegalArgumentException

  261.     {

  262. 	String path = name.replace('.', '/').concat("/");

  263. 	String specTitle = null, specVersion = null, specVendor = null;

  264. 	String implTitle = null, implVersion = null, implVendor = null;

  265. 	String sealed = null;

  266. 	URL sealBase = null;

  267. 

  268. 	Attributes attr = man.getAttributes(path);

  269. 	if (attr != null) {

  270. 	    specTitle   = attr.getValue(Name.SPECIFICATION_TITLE);

  271. 	    specVersion = attr.getValue(Name.SPECIFICATION_VERSION);

  272. 	    specVendor  = attr.getValue(Name.SPECIFICATION_VENDOR);

  273. 	    implTitle   = attr.getValue(Name.IMPLEMENTATION_TITLE);

  274. 	    implVersion = attr.getValue(Name.IMPLEMENTATION_VERSION);

  275. 	    implVendor  = attr.getValue(Name.IMPLEMENTATION_VENDOR);

  276. 	    sealed      = attr.getValue(Name.SEALED);

  277. 	}

  278. 	attr = man.getMainAttributes();

  279. 	if (attr != null) {

  280. 	    if (specTitle == null) {

  281. 		specTitle = attr.getValue(Name.SPECIFICATION_TITLE);

  282. 	    }

  283. 	    if (specVersion == null) {

  284. 		specVersion = attr.getValue(Name.SPECIFICATION_VERSION);

  285. 	    }

  286. 	    if (specVendor == null) {

  287. 		specVendor = attr.getValue(Name.SPECIFICATION_VENDOR);

  288. 	    }

  289. 	    if (implTitle == null) {

  290. 		implTitle = attr.getValue(Name.IMPLEMENTATION_TITLE);

  291. 	    }

  292. 	    if (implVersion == null) {

  293. 		implVersion = attr.getValue(Name.IMPLEMENTATION_VERSION);

  294. 	    }

  295. 	    if (implVendor == null) {

  296. 		implVendor = attr.getValue(Name.IMPLEMENTATION_VENDOR);

  297. 	    }

  298. 	    if (sealed == null) {

  299. 		sealed = attr.getValue(Name.SEALED);

  300. 	    }

  301. 	}

  302. 	if ("true".equalsIgnoreCase(sealed)) {

  303. 	    sealBase = url;

  304. 	}

  305. 	return definePackage(name, specTitle, specVersion, specVendor,

  306. 			     implTitle, implVersion, implVendor, sealBase);

  307.     }

  308. 

  309.     /*

  310.      * Returns true if the specified package name is sealed according to the

  311.      * given manifest.

  312.      */

  313.     private boolean isSealed(String name, Manifest man) {

  314. 	String path = name.replace('.', '/').concat("/");

  315. 	Attributes attr = man.getAttributes(path);

  316. 	String sealed = null;

  317. 	if (attr != null) {

  318. 	    sealed = attr.getValue(Name.SEALED);

  319. 	}

  320. 	if (sealed == null) {

  321. 	    if ((attr = man.getMainAttributes()) != null) {

  322. 		sealed = attr.getValue(Name.SEALED);

  323. 	    }

  324. 	}

  325. 	return "true".equalsIgnoreCase(sealed);

  326.     }

  327. 

  328.     /**

  329.      * Finds the resource with the specified name on the URL search path.

  330.      * Returns a URL for the resource, or null if the resource could not

  331.      * be found.

  332.      *

  333.      * @param name the name of the resource

  334.      */

  335.     public URL findResource(final String name) {

  336. 	/*

  337. 	 * The same restriction to finding classes applies to resources

  338. 	 */

  339. 	Resource res =

  340. 	    (Resource) AccessController.doPrivileged(new PrivilegedAction() {

  341. 		    public Object run() {

  342. 			return ucp.getResource(name, true);

  343. 		    }

  344. 		}, acc);

  345. 	

  346.         return res != null ? ucp.checkURL(res.getURL()) : null;

  347.     }

  348. 

  349.     /**

  350.      * Returns an Enumeration of URLs representing all of the resources

  351.      * on the URL search path having the specified name.

  352.      *

  353.      * @param name the resource name

  354.      * @exception if an I/O exception occurs

  355.      * @return an <code>Enumeration</code> of <code>URL</code>s

  356.      */

  357.     public Enumeration findResources(final String name) throws IOException {

  358.         final Enumeration e = ucp.getResources(name, true);

  359. 

  360.         return new Enumeration() {

  361.             private URL res;

  362. 

  363.             public Object nextElement() {

  364.                 if (res == null)

  365.                     throw new NoSuchElementException();

  366.                 URL url = res;

  367.                 res = null;

  368.                 return url;

  369.             }

  370.   

  371.             public boolean hasMoreElements() {

  372.                 if (res != null)

  373.                     return true;

  374.                 do {

  375.                     Resource r = (Resource)

  376.                         AccessController.doPrivileged(new PrivilegedAction() {

  377.                         public Object run() {

  378.                             if (!e.hasMoreElements())

  379.                                 return null;

  380.                             return e.nextElement();

  381.                         }

  382.                     }, acc);

  383.                     if (r == null)

  384.                         break;

  385.                     res = ucp.checkURL(r.getURL());

  386.                 } while (res == null);

  387.                 return res != null;

  388.             }

  389. 	};

  390.     }

  391. 

  392.     /**

  393.      * Returns the permissions for the given codesource object.

  394.      * The implementation of this method first calls super.getPermissions,

  395.      * to get the permissions

  396.      * granted by the policy, and then adds additional permissions

  397.      * based on the URL of the codesource.

  398.      * <p>

  399.      * If the protocol is "file"

  400.      * and the path specifies a file, then permission to read that

  401.      * file is granted. If protocol is "file" and the path is

  402.      * a directory, permission is granted to read all files

  403.      * and (recursively) all files and subdirectories contained in

  404.      * that directory.

  405.      * <p>

  406.      * If the protocol is not "file", then

  407.      * to connect to and accept connections from the URL's host is granted.

  408.      * @param codesource the codesource

  409.      * @return the permissions granted to the codesource

  410.      */

  411.     protected PermissionCollection getPermissions(CodeSource codesource)

  412.     {

  413. 	PermissionCollection perms = super.getPermissions(codesource);

  414. 

  415. 	URL url = codesource.getLocation();

  416. 

  417. 	Permission p;

  418. 

  419. 	try {

  420. 	    p = url.openConnection().getPermission();

  421. 	} catch (java.io.IOException ioe) {

  422. 

  423. 	    p = null;

  424. 	}

  425. 

  426. 	if (p instanceof FilePermission) {

  427. 	    // if the permission has a separator char on the end,

  428. 	    // it means the codebase is a directory, and we need

  429. 	    // to add an additional permission to read recursively

  430. 	    String path = p.getName();

  431. 	    if (path.endsWith(File.separator)) {

  432. 		path += "-";

  433. 		p = new FilePermission(path, "read");

  434. 	    }

  435. 	} else if ((p == null) && (url.getProtocol().equals("file"))) {

  436. 	    String path = url.getFile().replace('/', File.separatorChar);

  437. 	    if (path.endsWith(File.separator))

  438. 		path += "-";

  439. 	    p =  new FilePermission(path, "read");

  440. 	} else {

  441. 	    String host = url.getHost();

  442. 	    if (host == null)

  443. 		host = "localhost";

  444. 	    p = new SocketPermission(host,"connect, accept");

  445. 	}

  446. 

  447. 	// make sure the person that created this class loader

  448. 	// would have this permission

  449. 

  450. 	if (p != null) {

  451. 	    final SecurityManager sm = System.getSecurityManager();

  452. 	    if (sm != null) {

  453. 		final Permission fp = p;

  454. 		AccessController.doPrivileged(new PrivilegedAction() {

  455. 		    public Object run() throws SecurityException {

  456. 			sm.checkPermission(fp);

  457. 			return null;

  458. 		    }

  459. 		}, acc);

  460. 	    }

  461. 	    perms.add(p);

  462. 	}

  463. 	return perms;

  464.     }

  465. 

  466.     /**

  467.      * Creates a new instance of URLClassLoader for the specified

  468.      * URLs and parent class loader. If a security manager is

  469.      * installed, the <code>loadClass</code> method of the URLClassLoader

  470.      * returned by this method will invoke the

  471.      * <code>SecurityManager.checkPackageAccess</code> method before

  472.      * loading the class.

  473.      *

  474.      * @param urls the URLs to search for classes and resources

  475.      * @param parent the parent class loader for delegation

  476.      * @return the resulting class loader

  477.      */

  478.     public static URLClassLoader newInstance(final URL[] urls,

  479. 					     final ClassLoader parent) {

  480. 	// Save the caller's context

  481. 	AccessControlContext acc = AccessController.getContext();

  482. 	// Need a privileged block to create the class loader

  483. 	URLClassLoader ucl =

  484. 	    (URLClassLoader) AccessController.doPrivileged(new PrivilegedAction() {

  485. 		public Object run() {

  486. 		    return new FactoryURLClassLoader(urls, parent);

  487. 		}

  488. 	    });

  489. 	// Now set the context on the loader using the one we saved,

  490. 	// not the one inside the privileged block...

  491. 	ucl.acc = acc;

  492. 	return ucl;

  493.     }

  494. 

  495.     /**

  496.      * Creates a new instance of URLClassLoader for the specified

  497.      * URLs and default parent class loader. If a security manager is

  498.      * installed, the <code>loadClass</code> method of the URLClassLoader

  499.      * returned by this method will invoke the

  500.      * <code>SecurityManager.checkPackageAccess</code> before

  501.      * loading the class.

  502.      *

  503.      * @param urls the URLs to search for classes and resources

  504.      * @return the resulting class loader

  505.      */

  506.     public static URLClassLoader newInstance(final URL[] urls) {

  507. 	// Save the caller's context

  508. 	AccessControlContext acc = AccessController.getContext();

  509. 	// Need a privileged block to create the class loader

  510. 	URLClassLoader ucl = (URLClassLoader)

  511. 	    AccessController.doPrivileged(new PrivilegedAction() {

  512. 		public Object run() {

  513. 		    return new FactoryURLClassLoader(urls);

  514. 		}

  515. 	    });

  516. 

  517. 	// Now set the context on the loader using the one we saved,

  518. 	// not the one inside the privileged block...

  519. 	ucl.acc = acc;

  520. 	return ucl;

  521.     }

  522. }

  523. 

  524. final class FactoryURLClassLoader extends URLClassLoader {

  525. 

  526.     FactoryURLClassLoader(URL[] urls, ClassLoader parent) {

  527. 	super(urls, parent);

  528.     }

  529. 

  530.     FactoryURLClassLoader(URL[] urls) {

  531. 	super(urls);

  532.     }

  533. 

  534.     public final synchronized Class loadClass(String name, boolean resolve)

  535. 	throws ClassNotFoundException

  536.     {

  537. 	// First check if we have permission to access the package. This

  538. 	// should go away once we've added support for exported packages.

  539. 	SecurityManager sm = System.getSecurityManager();

  540. 	if (sm != null) {

  541. 	    int i = name.lastIndexOf('.');

  542. 	    if (i != -1) {

  543. 		sm.checkPackageAccess(name.substring(0, i));

  544. 	    }

  545. 	}

  546. 	return super.loadClass(name, resolve);

  547.     }

  548. }