class Puppet::Network::HTTP::WEBrick

Constants

CIPHERS

Public Instance Methods

create_server(address, port) click to toggle source

@api private

# File lib/puppet/network/http/webrick.rb, line 56
def create_server(address, port)
  arguments = {:BindAddress => address, :Port => port, :DoNotReverseLookup => true}
  arguments.merge!(setup_logger)
  arguments.merge!(setup_ssl)

  BasicSocket.do_not_reverse_lookup = true

  server = WEBrick::HTTPServer.new(arguments)
  server.ssl_context.ciphers = CIPHERS
  server
end
listen(address, port) click to toggle source 
# File lib/puppet/network/http/webrick.rb, line 17
def listen(address, port)
  @server = create_server(address, port)

  @server.listeners.each { |l| l.start_immediately = false }

  @server.mount('/', Puppet::Network::HTTP::WEBrickREST)

  raise "WEBrick server is already listening" if @listening
  @listening = true
  @thread = Thread.new do
    @server.start do |sock|
      timeout = 10.0
      if ! IO.select([sock],nil,nil,timeout)
        raise "Client did not send data within %.1f seconds of connecting" % timeout
      end
      sock.accept
      @server.run(sock)
    end
  end
  sleep 0.1 until @server.status == :Running
end
listening?() click to toggle source 
# File lib/puppet/network/http/webrick.rb, line 47
def listening?
  @listening
end
setup_logger() click to toggle source

Configure our http log file.

# File lib/puppet/network/http/webrick.rb, line 69
def setup_logger
  # Make sure the settings are all ready for us.
  Puppet.settings.use(:main, :ssl, :application)

  if Puppet.run_mode.master?
    file = Puppet[:masterhttplog]
  else
    file = Puppet[:httplog]
  end

  # open the log manually to prevent file descriptor leak
  file_io = ::File.open(file, "a+")
  file_io.sync = true
  if defined?(Fcntl::FD_CLOEXEC)
    file_io.fcntl(Fcntl::F_SETFD, Fcntl::FD_CLOEXEC)
  end

  args = [file_io]
  args << WEBrick::Log::DEBUG if Puppet::Util::Log.level == :debug

  logger = WEBrick::Log.new(*args)
  return :Logger => logger, :AccessLog => [
    [logger, WEBrick::AccessLog::COMMON_LOG_FORMAT ],
    [logger, WEBrick::AccessLog::REFERER_LOG_FORMAT ]
  ]
end
setup_ssl() click to toggle source

Add all of the ssl cert information.

# File lib/puppet/network/http/webrick.rb, line 97
def setup_ssl
  results = {}

  # Get the cached copy.  We know it's been generated, too.
  host = Puppet::SSL::Host.localhost

  raise Puppet::Error, "Could not retrieve certificate for #{host.name} and not running on a valid certificate authority" unless host.certificate

  results[:SSLPrivateKey] = host.key.content
  results[:SSLCertificate] = host.certificate.content
  results[:SSLStartImmediately] = true
  results[:SSLEnable] = true
  results[:SSLOptions] = OpenSSL::SSL::OP_NO_SSLv2 | OpenSSL::SSL::OP_NO_SSLv3

  raise Puppet::Error, "Could not find CA certificate" unless Puppet::SSL::Certificate.indirection.find(Puppet::SSL::CA_NAME)

  results[:SSLCACertificateFile] = ssl_configuration.ca_auth_file
  results[:SSLVerifyClient] = OpenSSL::SSL::VERIFY_PEER

  results[:SSLCertificateStore] = host.ssl_store

  results
end
unlisten() click to toggle source 
# File lib/puppet/network/http/webrick.rb, line 39
def unlisten
  raise "WEBrick server is not listening" unless @listening
  @server.shutdown
  wait_for_shutdown
  @server = nil
  @listening = false
end
wait_for_shutdown() click to toggle source 
# File lib/puppet/network/http/webrick.rb, line 51
def wait_for_shutdown
  @thread.join
end

Public Class Methods

new() click to toggle source 
# File lib/puppet/network/http/webrick.rb, line 13
def initialize
  @listening = false
end