1. /*

  2.  * @(#)URLClassLoader.java	1.74 01/04/21

  3.  *

  4.  * Copyright 1997-2001 Sun Microsystems, Inc. All Rights Reserved.

  5.  * 

  6.  * This software is the proprietary information of Sun Microsystems, Inc.  

  7.  * Use is subject to license terms.

  8.  * 

  9.  */

  10. 

  11. package java.net;

  12. 

  13. import java.lang.reflect.Method;

  14. import java.lang.reflect.Modifier;

  15. import java.io.File;

  16. import java.io.FilePermission;

  17. import java.io.InputStream;

  18. import java.io.IOException;

  19. import java.net.URL;

  20. import java.net.URLConnection;

  21. import java.net.URLStreamHandlerFactory;

  22. import java.util.Enumeration;

  23. import java.util.NoSuchElementException;

  24. import java.util.StringTokenizer;

  25. import java.util.jar.Manifest;

  26. import java.util.jar.Attributes;

  27. import java.util.jar.Attributes.Name;

  28. import java.security.PrivilegedAction;

  29. import java.security.PrivilegedExceptionAction;

  30. import java.security.AccessController;

  31. import java.security.AccessControlContext;

  32. import java.security.SecureClassLoader;

  33. import java.security.CodeSource;

  34. import java.security.Permission;

  35. import java.security.PermissionCollection;

  36. import sun.misc.Resource;

  37. import sun.misc.URLClassPath;

  38. 

  39. /**

  40.  * This class loader is used to load classes and resources from a search

  41.  * path of URLs referring to both JAR files and directories. Any URL that

  42.  * ends with a '/' is assumed to refer to a directory. Otherwise, the URL

  43.  * is assumed to refer to a JAR file which will be opened as needed.

  44.  * <p>

  45.  * The AccessControlContext of the thread that created the instance of

  46.  * URLClassLoader will be used when subsequently loading classes and

  47.  * resources.

  48.  * <p>

  49.  * The classes that are loaded are by default granted permission only to

  50.  * access the URLs specified when the URLClassLoader was created.

  51.  *

  52.  * @author  David Connelly

  53.  * @version 1.74, 04/21/01

  54.  * @since   1.2

  55.  */

  56. public class URLClassLoader extends SecureClassLoader {

  57.     /* The search path for classes and resources */

  58.     private URLClassPath ucp;

  59. 

  60.     /* The context to be used when loading classes and resources */

  61.     private AccessControlContext acc;

  62. 

  63.     /**

  64.      * Constructs a new URLClassLoader for the given URLs. The URLs will be

  65.      * searched in the order specified for classes and resources after first

  66.      * searching in the specified parent class loader. Any URL that ends with

  67.      * a '/' is assumed to refer to a directory. Otherwise, the URL is assumed

  68.      * to refer to a JAR file which will be downloaded and opened as needed.

  69.      *

  70.      * <p>If there is a security manager, this method first

  71.      * calls the security manager's <code>checkCreateClassLoader</code> method

  72.      * to ensure creation of a class loader is allowed.

  73.      * 

  74.      * @param urls the URLs from which to load classes and resources

  75.      * @param parent the parent class loader for delegation

  76.      * @exception  SecurityException  if a security manager exists and its  

  77.      *             <code>checkCreateClassLoader</code> method doesn't allow 

  78.      *             creation of a class loader.

  79.      * @see SecurityManager#checkCreateClassLoader

  80.      */

  81.     public URLClassLoader(URL[] urls, ClassLoader parent) {

  82. 	super(parent);

  83. 	// this is to make the stack depth consistent with 1.1

  84. 	SecurityManager security = System.getSecurityManager();

  85. 	if (security != null) {

  86. 	    security.checkCreateClassLoader();

  87. 	}

  88. 	ucp = new URLClassPath(urls);

  89. 	acc = AccessController.getContext();

  90.     }

  91. 

  92.     /**

  93.      * Constructs a new URLClassLoader for the specified URLs using the

  94.      * default delegation parent <code>ClassLoader</code>. The URLs will

  95.      * be searched in the order specified for classes and resources after

  96.      * first searching in the parent class loader. Any URL that ends with

  97.      * a '/' is assumed to refer to a directory. Otherwise, the URL is

  98.      * assumed to refer to a JAR file which will be downloaded and opened

  99.      * as needed.

  100.      *

  101.      * <p>If there is a security manager, this method first

  102.      * calls the security manager's <code>checkCreateClassLoader</code> method

  103.      * to ensure creation of a class loader is allowed.

  104.      * 

  105.      * @param urls the URLs from which to load classes and resources

  106.      *

  107.      * @exception  SecurityException  if a security manager exists and its  

  108.      *             <code>checkCreateClassLoader</code> method doesn't allow 

  109.      *             creation of a class loader.

  110.      * @see SecurityManager#checkCreateClassLoader

  111.      */

  112.     public URLClassLoader(URL[] urls) {

  113. 	super();

  114. 	// this is to make the stack depth consistent with 1.1

  115. 	SecurityManager security = System.getSecurityManager();

  116. 	if (security != null) {

  117. 	    security.checkCreateClassLoader();

  118. 	}

  119. 	ucp = new URLClassPath(urls);

  120. 	acc = AccessController.getContext();

  121.     }

  122. 

  123.     /**

  124.      * Constructs a new URLClassLoader for the specified URLs, parent

  125.      * class loader, and URLStreamHandlerFactory. The parent argument

  126.      * will be used as the parent class loader for delegation. The

  127.      * factory argument will be used as the stream handler factory to

  128.      * obtain protocol handlers when creating new URLs.

  129.      *

  130.      * <p>If there is a security manager, this method first

  131.      * calls the security manager's <code>checkCreateClassLoader</code> method

  132.      * to ensure creation of a class loader is allowed.

  133.      *

  134.      * @param urls the URLs from which to load classes and resources

  135.      * @param parent the parent class loader for delegation

  136.      * @param factory the URLStreamHandlerFactory to use when creating URLs

  137.      *

  138.      * @exception  SecurityException  if a security manager exists and its  

  139.      *             <code>checkCreateClassLoader</code> method doesn't allow 

  140.      *             creation of a class loader.

  141.      * @see SecurityManager#checkCreateClassLoader

  142.      */

  143.     public URLClassLoader(URL[] urls, ClassLoader parent,

  144. 			  URLStreamHandlerFactory factory) {

  145. 	super(parent);

  146. 	// this is to make the stack depth consistent with 1.1

  147. 	SecurityManager security = System.getSecurityManager();

  148. 	if (security != null) {

  149. 	    security.checkCreateClassLoader();

  150. 	}

  151. 	ucp = new URLClassPath(urls, factory);

  152. 	acc = AccessController.getContext();

  153.     }

  154. 

  155.     /**

  156.      * Appends the specified URL to the list of URLs to search for

  157.      * classes and resources.

  158.      *

  159.      * @param url the URL to be added to the search path of URLs

  160.      */

  161.     protected void addURL(URL url) {

  162. 	ucp.addURL(url);

  163.     }

  164. 

  165.     /**

  166.      * Returns the search path of URLs for loading classes and resources.

  167.      * This includes the original list of URLs specified to the constructor,

  168.      * along with any URLs subsequently appended by the addURL() method.

  169.      * @return the search path of URLs for loading classes and resources.

  170.      */

  171.     public URL[] getURLs() {

  172. 	return ucp.getURLs();

  173.     }

  174. 

  175.     /**

  176.      * Finds and loads the class with the specified name from the URL search

  177.      * path. Any URLs referring to JAR files are loaded and opened as needed

  178.      * until the class is found.

  179.      *

  180.      * @param name the name of the class

  181.      * @return the resulting class

  182.      * @exception ClassNotFoundException if the class could not be found

  183.      */

  184.     protected Class findClass(final String name)

  185. 	 throws ClassNotFoundException

  186.     {

  187. 	try {

  188. 	    return (Class)

  189. 		AccessController.doPrivileged(new PrivilegedExceptionAction() {

  190. 		    public Object run() throws ClassNotFoundException {

  191. 			String path = name.replace('.', '/').concat(".class");

  192. 			Resource res = ucp.getResource(path, false);

  193. 			if (res != null) {

  194. 			    try {

  195. 				return defineClass(name, res);

  196. 			    } catch (IOException e) {

  197. 				throw new ClassNotFoundException(name, e);

  198. 			    }

  199. 			} else {

  200. 			    throw new ClassNotFoundException(name);

  201. 			}

  202. 		    }

  203. 		}, acc);

  204. 	} catch (java.security.PrivilegedActionException pae) {

  205. 	    throw (ClassNotFoundException) pae.getException();

  206. 	}

  207.     }

  208. 

  209.     /*

  210.      * Defines a Class using the class bytes obtained from the specified

  211.      * Resource. The resulting Class must be resolved before it can be

  212.      * used.

  213.      */

  214.     private Class defineClass(String name, Resource res) throws IOException {

  215. 	int i = name.lastIndexOf('.');

  216. 	URL url = res.getCodeSourceURL();

  217. 	if (i != -1) {

  218. 	    String pkgname = name.substring(0, i);

  219. 	    // Check if package already loaded.

  220. 	    Package pkg = getPackage(pkgname);

  221. 	    Manifest man = res.getManifest();

  222. 	    if (pkg != null) {

  223. 		// Package found, so check package sealing.

  224. 		boolean ok;

  225. 		if (pkg.isSealed()) {

  226. 		    // Verify that code source URL is the same.

  227. 		    ok = pkg.isSealed(url);

  228. 		} else {

  229. 		    // Make sure we are not attempting to seal the package

  230. 		    // at this code source URL.

  231. 		    ok = (man == null) || !isSealed(pkgname, man);

  232. 		}

  233. 		if (!ok) {

  234. 		    throw new SecurityException("sealing violation");

  235. 		}

  236. 	    } else {

  237. 		if (man != null) {

  238. 		    definePackage(pkgname, man, url);

  239. 		} else {

  240.                     definePackage(pkgname, null, null, null, null, null, null, null);

  241.                 }

  242. 	    }

  243. 	}

  244. 	// Now read the class bytes and define the class

  245. 	byte[] b = res.getBytes();

  246. 	java.security.cert.Certificate[] certs = res.getCertificates();

  247. 	CodeSource cs = new CodeSource(url, certs);

  248. 	return defineClass(name, b, 0, b.length, cs);

  249.     }

  250. 

  251.     /**

  252.      * Defines a new package by name in this ClassLoader. The attributes

  253.      * contained in the specified Manifest will be used to obtain package

  254.      * version and sealing information. For sealed packages, the additional

  255.      * URL specifies the code source URL from which the package was loaded.

  256.      *

  257.      * @param name  the package name

  258.      * @param man   the Manifest containing package version and sealing

  259.      *              information

  260.      * @param url   the code source url for the package, or null if none

  261.      * @exception   IllegalArgumentException if the package name duplicates

  262.      *              an existing package either in this class loader or one

  263.      *              of its ancestors

  264.      * @return the newly defined Package object

  265.      */

  266.     protected Package definePackage(String name, Manifest man, URL url)

  267. 	throws IllegalArgumentException

  268.     {

  269. 	String path = name.replace('.', '/').concat("/");

  270. 	String specTitle = null, specVersion = null, specVendor = null;

  271. 	String implTitle = null, implVersion = null, implVendor = null;

  272. 	String sealed = null;

  273. 	URL sealBase = null;

  274. 

  275. 	Attributes attr = man.getAttributes(path);

  276. 	if (attr != null) {

  277. 	    specTitle   = attr.getValue(Name.SPECIFICATION_TITLE);

  278. 	    specVersion = attr.getValue(Name.SPECIFICATION_VERSION);

  279. 	    specVendor  = attr.getValue(Name.SPECIFICATION_VENDOR);

  280. 	    implTitle   = attr.getValue(Name.IMPLEMENTATION_TITLE);

  281. 	    implVersion = attr.getValue(Name.IMPLEMENTATION_VERSION);

  282. 	    implVendor  = attr.getValue(Name.IMPLEMENTATION_VENDOR);

  283. 	    sealed      = attr.getValue(Name.SEALED);

  284. 	}

  285. 	attr = man.getMainAttributes();

  286. 	if (attr != null) {

  287. 	    if (specTitle == null) {

  288. 		specTitle = attr.getValue(Name.SPECIFICATION_TITLE);

  289. 	    }

  290. 	    if (specVersion == null) {

  291. 		specVersion = attr.getValue(Name.SPECIFICATION_VERSION);

  292. 	    }

  293. 	    if (specVendor == null) {

  294. 		specVendor = attr.getValue(Name.SPECIFICATION_VENDOR);

  295. 	    }

  296. 	    if (implTitle == null) {

  297. 		implTitle = attr.getValue(Name.IMPLEMENTATION_TITLE);

  298. 	    }

  299. 	    if (implVersion == null) {

  300. 		implVersion = attr.getValue(Name.IMPLEMENTATION_VERSION);

  301. 	    }

  302. 	    if (implVendor == null) {

  303. 		implVendor = attr.getValue(Name.IMPLEMENTATION_VENDOR);

  304. 	    }

  305. 	    if (sealed == null) {

  306. 		sealed = attr.getValue(Name.SEALED);

  307. 	    }

  308. 	}

  309. 	if ("true".equalsIgnoreCase(sealed)) {

  310. 	    sealBase = url;

  311. 	}

  312. 	return definePackage(name, specTitle, specVersion, specVendor,

  313. 			     implTitle, implVersion, implVendor, sealBase);

  314.     }

  315. 

  316.     /*

  317.      * Returns true if the specified package name is sealed according to the

  318.      * given manifest.

  319.      */

  320.     private boolean isSealed(String name, Manifest man) {

  321. 	String path = name.replace('.', '/').concat("/");

  322. 	Attributes attr = man.getAttributes(path);

  323. 	String sealed = null;

  324. 	if (attr != null) {

  325. 	    sealed = attr.getValue(Name.SEALED);

  326. 	}

  327. 	if (sealed == null) {

  328. 	    if ((attr = man.getMainAttributes()) != null) {

  329. 		sealed = attr.getValue(Name.SEALED);

  330. 	    }

  331. 	}

  332. 	return "true".equalsIgnoreCase(sealed);

  333.     }

  334. 

  335.     /**

  336.      * Finds the resource with the specified name on the URL search path.

  337.      *

  338.      * @param name the name of the resource

  339.      * @return a <code>URL</code> for the resource, or <code>null</code> 

  340.      * if the resource could not be found.

  341.      */

  342.     public URL findResource(final String name) {

  343. 	/*

  344. 	 * The same restriction to finding classes applies to resources

  345. 	 */

  346. 	Resource res =

  347. 	    (Resource) AccessController.doPrivileged(new PrivilegedAction() {

  348. 		    public Object run() {

  349. 			return ucp.getResource(name, true);

  350. 		    }

  351. 		}, acc);

  352. 	

  353.         return res != null ? ucp.checkURL(res.getURL()) : null;

  354.     }

  355. 

  356.     /**

  357.      * Returns an Enumeration of URLs representing all of the resources

  358.      * on the URL search path having the specified name.

  359.      *

  360.      * @param name the resource name

  361.      * @exception if an I/O exception occurs

  362.      * @return an <code>Enumeration</code> of <code>URL</code>s

  363.      */

  364.     public Enumeration findResources(final String name) throws IOException {

  365.         final Enumeration e = ucp.getResources(name, true);

  366. 

  367. 	return new Enumeration() {

  368. 	    private URL res;

  369. 

  370. 	    public Object nextElement() {

  371. 		if (res == null)

  372. 		    throw new NoSuchElementException();

  373. 		URL url = res;

  374. 	        res = null;

  375. 		return url;

  376. 	    }

  377. 

  378. 	    public boolean hasMoreElements() {

  379. 		if (res != null)

  380. 		    return true;

  381. 		do {

  382. 		    Resource r = (Resource)

  383. 		        AccessController.doPrivileged(new PrivilegedAction() {

  384. 			public Object run() {

  385. 			    if (!e.hasMoreElements())

  386. 				return null;

  387. 			    return e.nextElement();

  388. 			}

  389. 		    }, acc);

  390. 		    if (r == null)

  391. 			break;

  392. 		    res = ucp.checkURL(r.getURL());

  393. 		} while (res == null);

  394. 		return res != null;

  395. 	    }

  396. 	};

  397.     }

  398. 

  399.     /**

  400.      * Returns the permissions for the given codesource object.

  401.      * The implementation of this method first calls super.getPermissions,

  402.      * to get the permissions

  403.      * granted by the policy, and then adds additional permissions

  404.      * based on the URL of the codesource.

  405.      * <p>

  406.      * If the protocol is "file"

  407.      * and the path specifies a file, then permission to read that

  408.      * file is granted. If protocol is "file" and the path is

  409.      * a directory, permission is granted to read all files

  410.      * and (recursively) all files and subdirectories contained in

  411.      * that directory.

  412.      * <p>

  413.      * If the protocol is not "file", then

  414.      * to connect to and accept connections from the URL's host is granted.

  415.      * @param codesource the codesource

  416.      * @return the permissions granted to the codesource

  417.      */

  418.     protected PermissionCollection getPermissions(CodeSource codesource)

  419.     {

  420. 	PermissionCollection perms = super.getPermissions(codesource);

  421. 

  422. 	URL url = codesource.getLocation();

  423. 

  424. 	Permission p;

  425. 

  426. 	try {

  427. 	    p = url.openConnection().getPermission();

  428. 	} catch (java.io.IOException ioe) {

  429. 

  430. 	    p = null;

  431. 	}

  432. 

  433. 	if (p instanceof FilePermission) {

  434. 	    // if the permission has a separator char on the end,

  435. 	    // it means the codebase is a directory, and we need

  436. 	    // to add an additional permission to read recursively

  437. 	    String path = p.getName();

  438. 	    if (path.endsWith(File.separator)) {

  439. 		path += "-";

  440. 		p = new FilePermission(path, "read");

  441. 	    }

  442. 	} else if ((p == null) && (url.getProtocol().equals("file"))) {

  443. 	    String path = url.getFile().replace('/', File.separatorChar);

  444. 	    if (path.endsWith(File.separator))

  445. 		path += "-";

  446. 	    p =  new FilePermission(path, "read");

  447. 	} else {

  448. 	    String host = url.getHost();

  449. 	    if (host == null)

  450. 		host = "localhost";

  451. 	    p = new SocketPermission(host,"connect, accept");

  452. 	}

  453. 

  454. 	// make sure the person that created this class loader

  455. 	// would have this permission

  456. 

  457. 	if (p != null) {

  458. 	    final SecurityManager sm = System.getSecurityManager();

  459. 	    if (sm != null) {

  460. 		final Permission fp = p;

  461. 		AccessController.doPrivileged(new PrivilegedAction() {

  462. 		    public Object run() throws SecurityException {

  463. 			sm.checkPermission(fp);

  464. 			return null;

  465. 		    }

  466. 		}, acc);

  467. 	    }

  468. 	    perms.add(p);

  469. 	}

  470. 	return perms;

  471.     }

  472. 

  473.     /**

  474.      * Creates a new instance of URLClassLoader for the specified

  475.      * URLs and parent class loader. If a security manager is

  476.      * installed, the <code>loadClass</code> method of the URLClassLoader

  477.      * returned by this method will invoke the

  478.      * <code>SecurityManager.checkPackageAccess</code> method before

  479.      * loading the class.

  480.      *

  481.      * @param urls the URLs to search for classes and resources

  482.      * @param parent the parent class loader for delegation

  483.      * @return the resulting class loader

  484.      */

  485.     public static URLClassLoader newInstance(final URL[] urls,

  486. 					     final ClassLoader parent) {

  487. 	// Save the caller's context

  488. 	AccessControlContext acc = AccessController.getContext();

  489. 	// Need a privileged block to create the class loader

  490. 	URLClassLoader ucl =

  491. 	    (URLClassLoader) AccessController.doPrivileged(new PrivilegedAction() {

  492. 		public Object run() {

  493. 		    return new FactoryURLClassLoader(urls, parent);

  494. 		}

  495. 	    });

  496. 	// Now set the context on the loader using the one we saved,

  497. 	// not the one inside the privileged block...

  498. 	ucl.acc = acc;

  499. 	return ucl;

  500.     }

  501. 

  502.     /**

  503.      * Creates a new instance of URLClassLoader for the specified

  504.      * URLs and default parent class loader. If a security manager is

  505.      * installed, the <code>loadClass</code> method of the URLClassLoader

  506.      * returned by this method will invoke the

  507.      * <code>SecurityManager.checkPackageAccess</code> before

  508.      * loading the class.

  509.      *

  510.      * @param urls the URLs to search for classes and resources

  511.      * @return the resulting class loader

  512.      */

  513.     public static URLClassLoader newInstance(final URL[] urls) {

  514. 	// Save the caller's context

  515. 	AccessControlContext acc = AccessController.getContext();

  516. 	// Need a privileged block to create the class loader

  517. 	URLClassLoader ucl = (URLClassLoader)

  518. 	    AccessController.doPrivileged(new PrivilegedAction() {

  519. 		public Object run() {

  520. 		    return new FactoryURLClassLoader(urls);

  521. 		}

  522. 	    });

  523. 

  524. 	// Now set the context on the loader using the one we saved,

  525. 	// not the one inside the privileged block...

  526. 	ucl.acc = acc;

  527. 	return ucl;

  528.     }

  529. }

  530. 

  531. final class FactoryURLClassLoader extends URLClassLoader {

  532. 

  533.     FactoryURLClassLoader(URL[] urls, ClassLoader parent) {

  534. 	super(urls, parent);

  535.     }

  536. 

  537.     FactoryURLClassLoader(URL[] urls) {

  538. 	super(urls);

  539.     }

  540. 

  541.     public final synchronized Class loadClass(String name, boolean resolve)

  542. 	throws ClassNotFoundException

  543.     {

  544. 	// First check if we have permission to access the package. This

  545. 	// should go away once we've added support for exported packages.

  546. 	SecurityManager sm = System.getSecurityManager();

  547. 	if (sm != null) {

  548. 	    int i = name.lastIndexOf('.');

  549. 	    if (i != -1) {

  550. 		sm.checkPackageAccess(name.substring(0, i));

  551. 	    }

  552. 	}

  553. 	return super.loadClass(name, resolve);

  554.     }

  555. }