shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2024-11-06 16:59:03 +03:00
Code
11ab173d40
systemd/src/basic/socket-util.c

939 lines
28 KiB
C
Raw Normal View History

license: add GPLv2+ license blurbs everwhere
2010-02-03 15:03:47 +03:00
/***
This file is part of systemd.
Copyright 2010 Lennart Poettering
systemd is free software; you can redistribute it and/or modify it
relicense to LGPLv2.1 (with exceptions) We finally got the OK from all contributors with non-trivial commits to relicense systemd from GPL2+ to LGPL2.1+. Some udev bits continue to be GPL2+ for now, but we are looking into relicensing them too, to allow free copy/paste of all code within systemd. The bits that used to be MIT continue to be MIT. The big benefit of the relicensing is that closed source code may now link against libsystemd-login.so and friends.
2012-04-12 02:20:58 +04:00
under the terms of the GNU Lesser General Public License as published by
the Free Software Foundation; either version 2.1 of the License, or
license: add GPLv2+ license blurbs everwhere
2010-02-03 15:03:47 +03:00
(at your option) any later version.
systemd is distributed in the hope that it will be useful, but
WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
relicense to LGPLv2.1 (with exceptions) We finally got the OK from all contributors with non-trivial commits to relicense systemd from GPL2+ to LGPL2.1+. Some udev bits continue to be GPL2+ for now, but we are looking into relicensing them too, to allow free copy/paste of all code within systemd. The bits that used to be MIT continue to be MIT. The big benefit of the relicensing is that closed source code may now link against libsystemd-login.so and friends.
2012-04-12 02:20:58 +04:00
Lesser General Public License for more details.
license: add GPLv2+ license blurbs everwhere
2010-02-03 15:03:47 +03:00
relicense to LGPLv2.1 (with exceptions) We finally got the OK from all contributors with non-trivial commits to relicense systemd from GPL2+ to LGPL2.1+. Some udev bits continue to be GPL2+ for now, but we are looking into relicensing them too, to allow free copy/paste of all code within systemd. The bits that used to be MIT continue to be MIT. The big benefit of the relicensing is that closed source code may now link against libsystemd-login.so and friends.
2012-04-12 02:20:58 +04:00
You should have received a copy of the GNU Lesser General Public License
license: add GPLv2+ license blurbs everwhere
2010-02-03 15:03:47 +03:00
along with systemd; If not, see <http://www.gnu.org/licenses/>.
***/
parse socket files properly
2010-01-19 04:56:37 +03:00
#include <arpa/inet.h>
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 23:58:24 +03:00
#include <errno.h>
basic: include only what we use This is a cleaned up result of running iwyu but without forward declarations on src/basic.
2015-11-30 23:43:37 +03:00
#include <limits.h>
rework socket handling
2010-01-23 05:35:54 +03:00
#include <net/if.h>
shared/socket-util: add function to query remote address
2014-06-30 03:24:56 +04:00
#include <netdb.h>
socket-util: move remaining socket-related calls from util.[ch] to socket-util.[ch]
2015-10-26 03:09:02 +03:00
#include <netinet/ip.h>
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 23:58:24 +03:00
#include <stddef.h>
basic: include only what we use This is a cleaned up result of running iwyu but without forward declarations on src/basic.
2015-11-30 23:43:37 +03:00
#include <stdint.h>
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 23:58:24 +03:00
#include <stdio.h>
basic: include only what we use This is a cleaned up result of running iwyu but without forward declarations on src/basic.
2015-11-30 23:43:37 +03:00
#include <stdlib.h>
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 23:58:24 +03:00
#include <string.h>
#include <unistd.h>
parse socket files properly
2010-01-19 04:56:37 +03:00
util-lib: split out allocation calls into alloc-util.[ch]
2015-10-27 05:01:06 +03:00
#include "alloc-util.h"
socket-util: move remaining socket-related calls from util.[ch] to socket-util.[ch]
2015-10-26 03:09:02 +03:00
#include "fd-util.h"
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 23:58:24 +03:00
#include "fileio.h"
#include "formats-util.h"
basic: re-sort includes My previous patch to only include what we use accidentially placed the added inlcudes in non-sorted order.
2015-12-02 01:22:03 +03:00
#include "log.h"
parse socket files properly
2010-01-19 04:56:37 +03:00
#include "macro.h"
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 23:58:24 +03:00
#include "missing.h"
util-lib: split string parsing related calls from util.[ch] into parse-util.[ch]
2015-10-26 18:18:16 +03:00
#include "parse-util.h"
util: split-out path-util.[ch]
2012-05-07 23:36:12 +04:00
#include "path-util.h"
socket-util: move remaining socket-related calls from util.[ch] to socket-util.[ch]
2015-10-26 03:09:02 +03:00
#include "socket-util.h"
util-lib: move string table stuff into its own string-table.[ch]
2015-10-27 00:31:05 +03:00
#include "string-table.h"
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 23:58:24 +03:00
#include "string-util.h"
user-util: move UID/GID related macros from macro.h to user-util.h
2015-10-27 02:42:07 +03:00
#include "user-util.h"
remove unused includes This patch removes includes that are not used. The removals were found with include-what-you-use which checks if any of the symbols from a header is in use.
2015-02-14 11:44:31 +03:00
#include "util.h"
parse socket files properly
2010-01-19 04:56:37 +03:00
rework socket handling
2010-01-23 05:35:54 +03:00
int socket_address_parse(SocketAddress *a, const char *s) {
parse socket files properly
2010-01-19 04:56:37 +03:00
char *e, *n;
unsigned u;
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
int r;
parse socket files properly
2010-01-19 04:56:37 +03:00
assert(a);
assert(s);
add simple event loop
2010-01-24 02:39:29 +03:00
zero(*a);
rework socket handling
2010-01-23 05:35:54 +03:00
a->type = SOCK_STREAM;
parse socket files properly
2010-01-19 04:56:37 +03:00
if (*s == '[') {
/* IPv6 in [x:.....:z]:p notation */
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
e = strchr(s+1, ']');
if (!e)
parse socket files properly
2010-01-19 04:56:37 +03:00
return -EINVAL;
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
n = strndupa(s+1, e-s-1);
parse socket files properly
2010-01-19 04:56:37 +03:00
errno = 0;
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
if (inet_pton(AF_INET6, n, &a->sockaddr.in6.sin6_addr) <= 0)
Always use errno > 0 to help gcc gcc thinks that errno might be negative, and functions could return something positive on error (-errno). Should not matter in practice, but makes an -O4 build much quieter.
2013-03-28 17:24:15 +04:00
return errno > 0 ? -errno : -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
e++;
if (*e != ':')
return -EINVAL;
e++;
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
r = safe_atou(e, &u);
if (r < 0)
parse socket files properly
2010-01-19 04:56:37 +03:00
return r;
if (u <= 0 || u > 0xFFFF)
return -EINVAL;
a->sockaddr.in6.sin6_family = AF_INET6;
a->sockaddr.in6.sin6_port = htons((uint16_t) u);
a->size = sizeof(struct sockaddr_in6);
} else if (*s == '/') {
/* AF_UNIX socket */
size_t l;
l = strlen(s);
if (l >= sizeof(a->sockaddr.un.sun_path))
return -EINVAL;
a->sockaddr.un.sun_family = AF_UNIX;
memcpy(a->sockaddr.un.sun_path, s, l);
util: never use sizeof(sa_family_t) when calculating sockaddr sizes
2010-10-07 04:34:17 +04:00
a->size = offsetof(struct sockaddr_un, sun_path) + l + 1;
parse socket files properly
2010-01-19 04:56:37 +03:00
Use @ instead = as abstract namespace socket prefix @ makes more sense since the NUL addr contained in the sockaddr's sun_path field can also be written as ^@. Also, in the .socket files writing "ListenStream==foo" is kinda ugly. Finally, tools like strace decode it with an @ too.
2010-01-28 06:50:28 +03:00
} else if (*s == '@') {
parse socket files properly
2010-01-19 04:56:37 +03:00
/* Abstract AF_UNIX socket */
size_t l;
l = strlen(s+1);
if (l >= sizeof(a->sockaddr.un.sun_path) - 1)
return -EINVAL;
a->sockaddr.un.sun_family = AF_UNIX;
memcpy(a->sockaddr.un.sun_path+1, s+1, l);
util: never use sizeof(sa_family_t) when calculating sockaddr sizes
2010-10-07 04:34:17 +04:00
a->size = offsetof(struct sockaddr_un, sun_path) + 1 + l;
parse socket files properly
2010-01-19 04:56:37 +03:00
} else {
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
e = strchr(s, ':');
if (e) {
r = safe_atou(e+1, &u);
if (r < 0)
rework socket handling
2010-01-23 05:35:54 +03:00
return r;
if (u <= 0 || u > 0xFFFF)
return -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
n = strndupa(s, e-s);
parse socket files properly
2010-01-19 04:56:37 +03:00
rework socket handling
2010-01-23 05:35:54 +03:00
/* IPv4 in w.x.y.z:p notation? */
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
r = inet_pton(AF_INET, n, &a->sockaddr.in.sin_addr);
if (r < 0)
rework socket handling
2010-01-23 05:35:54 +03:00
return -errno;
parse socket files properly
2010-01-19 04:56:37 +03:00
rework socket handling
2010-01-23 05:35:54 +03:00
if (r > 0) {
/* Gotcha, it's a traditional IPv4 address */
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
a->sockaddr.in.sin_family = AF_INET;
a->sockaddr.in.sin_port = htons((uint16_t) u);
rework socket handling
2010-01-23 05:35:54 +03:00
a->size = sizeof(struct sockaddr_in);
} else {
unsigned idx;
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
if (strlen(n) > IF_NAMESIZE-1)
yay, we can start socket units
2010-01-27 06:31:52 +03:00
return -EINVAL;
rework socket handling
2010-01-23 05:35:54 +03:00
/* Uh, our last resort, an interface name */
idx = if_nametoindex(n);
implement proper binding on ports
2010-01-24 00:56:47 +03:00
if (idx == 0)
rework socket handling
2010-01-23 05:35:54 +03:00
return -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
rework socket handling
2010-01-23 05:35:54 +03:00
a->sockaddr.in6.sin6_family = AF_INET6;
a->sockaddr.in6.sin6_port = htons((uint16_t) u);
a->sockaddr.in6.sin6_scope_id = idx;
implement proper binding on ports
2010-01-24 00:56:47 +03:00
a->sockaddr.in6.sin6_addr = in6addr_any;
rework socket handling
2010-01-23 05:35:54 +03:00
a->size = sizeof(struct sockaddr_in6);
}
parse socket files properly
2010-01-19 04:56:37 +03:00
} else {
/* Just a port */
man: document behaviour of ListenStream= with only a port number in regards to IPv4/IPv6
2012-10-03 22:18:55 +04:00
r = safe_atou(s, &u);
if (r < 0)
parse socket files properly
2010-01-19 04:56:37 +03:00
return r;
if (u <= 0 || u > 0xFFFF)
return -EINVAL;
socket: Support IPv6-less systems with runtime check. This patch introduces socket_ipv6_is_supported() call that checks for IPv6 availability. Code then check for it before using specific calls. In order to be less intrusive, this patch avoids IPv6 entries being parsed at all, this way we don't get such entries in the system and all other code paths are automatically ignored. However an extra check is done at socket_address_listen() to make sure of that. As the number of Netlink messages is not know upfront anymore, loopback-setup.c was refactored to dynamically calculate the sequence number and count. Lennart's suggestions were fixed and squashed with the original patch, that was sent by Gustavo Sverzut Barbieri (barbieri@profusion.mobi).
2010-09-20 23:33:14 +04:00
if (socket_ipv6_is_supported()) {
a->sockaddr.in6.sin6_family = AF_INET6;
a->sockaddr.in6.sin6_port = htons((uint16_t) u);
a->sockaddr.in6.sin6_addr = in6addr_any;
a->size = sizeof(struct sockaddr_in6);
} else {
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
a->sockaddr.in.sin_family = AF_INET;
a->sockaddr.in.sin_port = htons((uint16_t) u);
a->sockaddr.in.sin_addr.s_addr = INADDR_ANY;
socket: Support IPv6-less systems with runtime check. This patch introduces socket_ipv6_is_supported() call that checks for IPv6 availability. Code then check for it before using specific calls. In order to be less intrusive, this patch avoids IPv6 entries being parsed at all, this way we don't get such entries in the system and all other code paths are automatically ignored. However an extra check is done at socket_address_listen() to make sure of that. As the number of Netlink messages is not know upfront anymore, loopback-setup.c was refactored to dynamically calculate the sequence number and count. Lennart's suggestions were fixed and squashed with the original patch, that was sent by Gustavo Sverzut Barbieri (barbieri@profusion.mobi).
2010-09-20 23:33:14 +04:00
a->size = sizeof(struct sockaddr_in);
}
parse socket files properly
2010-01-19 04:56:37 +03:00
}
}
return 0;
}
socket-util: socket_address_parse() should not log errors on its own Given that socket_address_parse() is mostly a "library" call it shouldn't log on its own, but leave that to its caller. This patch removes logging from the call in case IPv6 is not available but and IPv6 address shall be parsed. Instead a new call socket_address_parse_and_warn() is introduced which first invokes socket_address_parse() and then logs if necessary. This should fix "make check" on ipv6-less kernels: http://lists.freedesktop.org/archives/systemd-devel/2015-April/031385.html
2015-05-15 21:15:59 +03:00
int socket_address_parse_and_warn(SocketAddress *a, const char *s) {
SocketAddress b;
int r;
/* Similar to socket_address_parse() but warns for IPv6 sockets when we don't support them. */
r = socket_address_parse(&b, s);
if (r < 0)
return r;
if (!socket_ipv6_is_supported() && b.sockaddr.sa.sa_family == AF_INET6) {
log_warning("Binding to IPv6 address not available since kernel does not support IPv6.");
return -EAFNOSUPPORT;
}
*a = b;
return 0;
}
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
int socket_address_parse_netlink(SocketAddress *a, const char *s) {
int family;
unsigned group = 0;
shared, core: do not always accept numbers in string lookups The behaviour of the common name##_from_string conversion is surprising. It accepts not only the strings from name##_table but also any number that falls within the range of the table. The order of items in most of our tables is an internal affair. It should not be visible to the user. I know of a case where the surprising numeric conversion leads to a crash. We will allow the direct numeric conversion only for the tables where the mapping of strings to numeric values has an external meaning. This holds for the following lookup tables: - netlink_family, ioprio_class, ip_tos, sched_policy - their numeric values are stable as they are defined by the Linux kernel interface. - log_level, log_facility_unshifted - the well-known syslog interface. We allow the user to use numeric values whose string names systemd does not know. For instance, the user may want to test a new kernel featuring a scheduling policy that did not exist when his systemd version was released. A slightly unpleasant effect of this is that the name##_to_string conversion cannot return pointers to constant strings anymore. The strings have to be allocated on demand and freed by the caller.
2012-10-30 17:29:38 +04:00
_cleanup_free_ char *sfamily = NULL;
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
assert(a);
assert(s);
zero(*a);
a->type = SOCK_RAW;
errno = 0;
if (sscanf(s, "%ms %u", &sfamily, &group) < 1)
errno is positive Make sure we compare errno against positive error codes. The ones in hwclock.c and install.c can have an impact, the rest are unlikely to be hit or in code that isn't widely used. Also check that errno > 0, to help gcc know that we are returning a negative error code.
2013-04-12 02:57:42 +04:00
return errno > 0 ? -errno : -EINVAL;
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
shared, core: do not always accept numbers in string lookups The behaviour of the common name##_from_string conversion is surprising. It accepts not only the strings from name##_table but also any number that falls within the range of the table. The order of items in most of our tables is an internal affair. It should not be visible to the user. I know of a case where the surprising numeric conversion leads to a crash. We will allow the direct numeric conversion only for the tables where the mapping of strings to numeric values has an external meaning. This holds for the following lookup tables: - netlink_family, ioprio_class, ip_tos, sched_policy - their numeric values are stable as they are defined by the Linux kernel interface. - log_level, log_facility_unshifted - the well-known syslog interface. We allow the user to use numeric values whose string names systemd does not know. For instance, the user may want to test a new kernel featuring a scheduling policy that did not exist when his systemd version was released. A slightly unpleasant effect of this is that the name##_to_string conversion cannot return pointers to constant strings anymore. The strings have to be allocated on demand and freed by the caller.
2012-10-30 17:29:38 +04:00
family = netlink_family_from_string(sfamily);
if (family < 0)
return -EINVAL;
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
a->sockaddr.nl.nl_family = AF_NETLINK;
a->sockaddr.nl.nl_groups = group;
a->type = SOCK_RAW;
a->size = sizeof(struct sockaddr_nl);
a->protocol = family;
return 0;
}
rework socket handling
2010-01-23 05:35:54 +03:00
int socket_address_verify(const SocketAddress *a) {
parse socket files properly
2010-01-19 04:56:37 +03:00
assert(a);
rework socket handling
2010-01-23 05:35:54 +03:00
switch (socket_address_family(a)) {
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
case AF_INET:
if (a->size != sizeof(struct sockaddr_in))
return -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
if (a->sockaddr.in.sin_port == 0)
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
return -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
if (a->type != SOCK_STREAM && a->type != SOCK_DGRAM)
return -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
return 0;
case AF_INET6:
if (a->size != sizeof(struct sockaddr_in6))
return -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
if (a->sockaddr.in6.sin6_port == 0)
return -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
if (a->type != SOCK_STREAM && a->type != SOCK_DGRAM)
return -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
return 0;
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
case AF_UNIX:
if (a->size < offsetof(struct sockaddr_un, sun_path))
return -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
if (a->size > offsetof(struct sockaddr_un, sun_path)) {
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
if (a->sockaddr.un.sun_path[0] != 0) {
char *e;
/* path */
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
e = memchr(a->sockaddr.un.sun_path, 0, sizeof(a->sockaddr.un.sun_path));
if (!e)
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
return -EINVAL;
if (a->size != offsetof(struct sockaddr_un, sun_path) + (e - a->sockaddr.un.sun_path) + 1)
return -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
}
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
}
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: fix check for SEQPACKET
2011-04-12 22:26:33 +04:00
if (a->type != SOCK_STREAM && a->type != SOCK_DGRAM && a->type != SOCK_SEQPACKET)
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
return -EINVAL;
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
return 0;
case AF_NETLINK:
if (a->size != sizeof(struct sockaddr_nl))
return -EINVAL;
if (a->type != SOCK_RAW && a->type != SOCK_DGRAM)
return -EINVAL;
return 0;
default:
return -EAFNOSUPPORT;
parse socket files properly
2010-01-19 04:56:37 +03:00
}
}
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
int socket_address_print(const SocketAddress *a, char **ret) {
parse socket files properly
2010-01-19 04:56:37 +03:00
int r;
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
parse socket files properly
2010-01-19 04:56:37 +03:00
assert(a);
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
assert(ret);
parse socket files properly
2010-01-19 04:56:37 +03:00
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
r = socket_address_verify(a);
if (r < 0)
parse socket files properly
2010-01-19 04:56:37 +03:00
return r;
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
if (socket_address_family(a) == AF_NETLINK) {
move _cleanup_ attribute in front of the type http://lists.freedesktop.org/archives/systemd-devel/2013-April/010510.html
2013-04-18 11:11:22 +04:00
_cleanup_free_ char *sfamily = NULL;
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
shared, core: do not always accept numbers in string lookups The behaviour of the common name##_from_string conversion is surprising. It accepts not only the strings from name##_table but also any number that falls within the range of the table. The order of items in most of our tables is an internal affair. It should not be visible to the user. I know of a case where the surprising numeric conversion leads to a crash. We will allow the direct numeric conversion only for the tables where the mapping of strings to numeric values has an external meaning. This holds for the following lookup tables: - netlink_family, ioprio_class, ip_tos, sched_policy - their numeric values are stable as they are defined by the Linux kernel interface. - log_level, log_facility_unshifted - the well-known syslog interface. We allow the user to use numeric values whose string names systemd does not know. For instance, the user may want to test a new kernel featuring a scheduling policy that did not exist when his systemd version was released. A slightly unpleasant effect of this is that the name##_to_string conversion cannot return pointers to constant strings anymore. The strings have to be allocated on demand and freed by the caller.
2012-10-30 17:29:38 +04:00
r = netlink_family_to_string_alloc(a->protocol, &sfamily);
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
if (r < 0)
shared, core: do not always accept numbers in string lookups The behaviour of the common name##_from_string conversion is surprising. It accepts not only the strings from name##_table but also any number that falls within the range of the table. The order of items in most of our tables is an internal affair. It should not be visible to the user. I know of a case where the surprising numeric conversion leads to a crash. We will allow the direct numeric conversion only for the tables where the mapping of strings to numeric values has an external meaning. This holds for the following lookup tables: - netlink_family, ioprio_class, ip_tos, sched_policy - their numeric values are stable as they are defined by the Linux kernel interface. - log_level, log_facility_unshifted - the well-known syslog interface. We allow the user to use numeric values whose string names systemd does not know. For instance, the user may want to test a new kernel featuring a scheduling policy that did not exist when his systemd version was released. A slightly unpleasant effect of this is that the name##_to_string conversion cannot return pointers to constant strings anymore. The strings have to be allocated on demand and freed by the caller.
2012-10-30 17:29:38 +04:00
return r;
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
r = asprintf(ret, "%s %u", sfamily, a->sockaddr.nl.nl_groups);
socket-util: added check of return value
2012-12-13 17:59:40 +04:00
if (r < 0)
return -ENOMEM;
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
return 0;
}
add REMOTE_ADDR and REMOTE_PORT for Accept=yes
2015-03-10 14:41:59 +03:00
return sockaddr_pretty(&a->sockaddr.sa, a->size, false, true, ret);
parse socket files properly
2010-01-19 04:56:37 +03:00
}
socket: optionally call accept() for incoming connections and spawn one service instance per connection
2010-04-15 08:19:54 +04:00
bool socket_address_can_accept(const SocketAddress *a) {
assert(a);
return
a->type == SOCK_STREAM ||
a->type == SOCK_SEQPACKET;
}
reload: implement reload/reexec logic
2010-04-21 05:27:44 +04:00
bool socket_address_equal(const SocketAddress *a, const SocketAddress *b) {
assert(a);
assert(b);
/* Invalid addresses are unequal to all */
if (socket_address_verify(a) < 0 ||
socket_address_verify(b) < 0)
return false;
if (a->type != b->type)
return false;
if (socket_address_family(a) != socket_address_family(b))
return false;
switch (socket_address_family(a)) {
case AF_INET:
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
if (a->sockaddr.in.sin_addr.s_addr != b->sockaddr.in.sin_addr.s_addr)
reload: implement reload/reexec logic
2010-04-21 05:27:44 +04:00
return false;
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
if (a->sockaddr.in.sin_port != b->sockaddr.in.sin_port)
reload: implement reload/reexec logic
2010-04-21 05:27:44 +04:00
return false;
break;
case AF_INET6:
if (memcmp(&a->sockaddr.in6.sin6_addr, &b->sockaddr.in6.sin6_addr, sizeof(a->sockaddr.in6.sin6_addr)) != 0)
return false;
if (a->sockaddr.in6.sin6_port != b->sockaddr.in6.sin6_port)
return false;
break;
case AF_UNIX:
shared: handle unnamed sockets in socket_address_equal() Make sure we don't inspect sun_path of unnamed sockets. Since we cannot know if two unnamed sockets' adresses refer to the same socket, just return false.
2015-02-20 04:25:16 +03:00
if (a->size <= offsetof(struct sockaddr_un, sun_path) ||
b->size <= offsetof(struct sockaddr_un, sun_path))
return false;
reload: implement reload/reexec logic
2010-04-21 05:27:44 +04:00
if ((a->sockaddr.un.sun_path[0] == 0) != (b->sockaddr.un.sun_path[0] == 0))
return false;
if (a->sockaddr.un.sun_path[0]) {
core, shared: in deserializing, match same files reached via different paths When dbus.socket is updated like this: -ListenStream=/var/run/dbus/system_bus_socket +ListenStream=/run/dbus/system_bus_socket ... and daemon-reload is performed, bad things happen. During deserialization systemd does not recognize that the two paths refer to the same named socket and replaces the socket file with a new one. As a result, applications hang when they try talking to dbus. Fix this by finding a match not only when the path names are equal, but also when they point to the same inode. In socket_address_equal() it is necessary to move the address size comparison into the abstract sockets branch. For path name sockets the comparison must not be done and for other families it is redundant (their sizes are constant and checked by socket_address_verify()). FIFOs and special files can also have multiple pathnames, so compare the inodes for them as well. Note that previously the pathname checks used streq_ptr(), but the paths cannot be NULL. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1186018
2015-02-20 01:12:38 +03:00
if (!path_equal_or_files_same(a->sockaddr.un.sun_path, b->sockaddr.un.sun_path))
reload: implement reload/reexec logic
2010-04-21 05:27:44 +04:00
return false;
} else {
core, shared: in deserializing, match same files reached via different paths When dbus.socket is updated like this: -ListenStream=/var/run/dbus/system_bus_socket +ListenStream=/run/dbus/system_bus_socket ... and daemon-reload is performed, bad things happen. During deserialization systemd does not recognize that the two paths refer to the same named socket and replaces the socket file with a new one. As a result, applications hang when they try talking to dbus. Fix this by finding a match not only when the path names are equal, but also when they point to the same inode. In socket_address_equal() it is necessary to move the address size comparison into the abstract sockets branch. For path name sockets the comparison must not be done and for other families it is redundant (their sizes are constant and checked by socket_address_verify()). FIFOs and special files can also have multiple pathnames, so compare the inodes for them as well. Note that previously the pathname checks used streq_ptr(), but the paths cannot be NULL. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1186018
2015-02-20 01:12:38 +03:00
if (a->size != b->size)
return false;
socket: pass minimal abstract socket names
2010-07-11 04:23:11 +04:00
if (memcmp(a->sockaddr.un.sun_path, b->sockaddr.un.sun_path, a->size) != 0)
reload: implement reload/reexec logic
2010-04-21 05:27:44 +04:00
return false;
}
break;
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
case AF_NETLINK:
if (a->protocol != b->protocol)
return false;
if (a->sockaddr.nl.nl_groups != b->sockaddr.nl.nl_groups)
return false;
break;
reload: implement reload/reexec logic
2010-04-21 05:27:44 +04:00
default:
/* Cannot compare, so we assume the addresses are different */
return false;
}
return true;
}
socket: verify socket type properly when desrializing
2010-06-05 02:52:30 +04:00
bool socket_address_is(const SocketAddress *a, const char *s, int type) {
reload: implement reload/reexec logic
2010-04-21 05:27:44 +04:00
struct SocketAddress b;
assert(a);
assert(s);
if (socket_address_parse(&b, s) < 0)
return false;
socket: verify socket type properly when desrializing
2010-06-05 02:52:30 +04:00
b.type = type;
reload: implement reload/reexec logic
2010-04-21 05:27:44 +04:00
return socket_address_equal(a, &b);
units: rework automatic dependency logic between automounts, mounts, sockets, swaps
2010-05-13 05:07:16 +04:00
}
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
bool socket_address_is_netlink(const SocketAddress *a, const char *s) {
struct SocketAddress b;
assert(a);
assert(s);
if (socket_address_parse_netlink(&b, s) < 0)
return false;
return socket_address_equal(a, &b);
}
core: rework how we match mount units against each other Previously to automatically create dependencies between mount units we matched every mount unit agains all others resulting in O(n^2) complexity. On setups with large amounts of mount units this might make things slow. This change replaces the matching code to use a hashtable that is keyed by a path prefix, and points to a set of units that require that path to be around. When a new mount unit is installed it is hence sufficient to simply look up this set of units via its own file system paths to know which units to order after itself. This patch also changes all unit types to only create automatic mount dependencies via the RequiresMountsFor= logic, and this is exposed to the outside to make things more transparent. With this change we still have some O(n) complexities in place when handling mounts, but that's currently unavoidable due to kernel APIs, and still substantially better than O(n^2) as before. https://bugs.freedesktop.org/show_bug.cgi?id=69740
2013-09-26 22:14:24 +04:00
const char* socket_address_get_path(const SocketAddress *a) {
units: rework automatic dependency logic between automounts, mounts, sockets, swaps
2010-05-13 05:07:16 +04:00
assert(a);
if (socket_address_family(a) != AF_UNIX)
core: rework how we match mount units against each other Previously to automatically create dependencies between mount units we matched every mount unit agains all others resulting in O(n^2) complexity. On setups with large amounts of mount units this might make things slow. This change replaces the matching code to use a hashtable that is keyed by a path prefix, and points to a set of units that require that path to be around. When a new mount unit is installed it is hence sufficient to simply look up this set of units via its own file system paths to know which units to order after itself. This patch also changes all unit types to only create automatic mount dependencies via the RequiresMountsFor= logic, and this is exposed to the outside to make things more transparent. With this change we still have some O(n) complexities in place when handling mounts, but that's currently unavoidable due to kernel APIs, and still substantially better than O(n^2) as before. https://bugs.freedesktop.org/show_bug.cgi?id=69740
2013-09-26 22:14:24 +04:00
return NULL;
units: rework automatic dependency logic between automounts, mounts, sockets, swaps
2010-05-13 05:07:16 +04:00
if (a->sockaddr.un.sun_path[0] == 0)
core: rework how we match mount units against each other Previously to automatically create dependencies between mount units we matched every mount unit agains all others resulting in O(n^2) complexity. On setups with large amounts of mount units this might make things slow. This change replaces the matching code to use a hashtable that is keyed by a path prefix, and points to a set of units that require that path to be around. When a new mount unit is installed it is hence sufficient to simply look up this set of units via its own file system paths to know which units to order after itself. This patch also changes all unit types to only create automatic mount dependencies via the RequiresMountsFor= logic, and this is exposed to the outside to make things more transparent. With this change we still have some O(n) complexities in place when handling mounts, but that's currently unavoidable due to kernel APIs, and still substantially better than O(n^2) as before. https://bugs.freedesktop.org/show_bug.cgi?id=69740
2013-09-26 22:14:24 +04:00
return NULL;
reload: implement reload/reexec logic
2010-04-21 05:27:44 +04:00
core: rework how we match mount units against each other Previously to automatically create dependencies between mount units we matched every mount unit agains all others resulting in O(n^2) complexity. On setups with large amounts of mount units this might make things slow. This change replaces the matching code to use a hashtable that is keyed by a path prefix, and points to a set of units that require that path to be around. When a new mount unit is installed it is hence sufficient to simply look up this set of units via its own file system paths to know which units to order after itself. This patch also changes all unit types to only create automatic mount dependencies via the RequiresMountsFor= logic, and this is exposed to the outside to make things more transparent. With this change we still have some O(n) complexities in place when handling mounts, but that's currently unavoidable due to kernel APIs, and still substantially better than O(n^2) as before. https://bugs.freedesktop.org/show_bug.cgi?id=69740
2013-09-26 22:14:24 +04:00
return a->sockaddr.un.sun_path;
reload: implement reload/reexec logic
2010-04-21 05:27:44 +04:00
}
socket: fix parsing of bind_ipv6_only
2010-05-22 01:41:25 +04:00
socket: Support IPv6-less systems with runtime check. This patch introduces socket_ipv6_is_supported() call that checks for IPv6 availability. Code then check for it before using specific calls. In order to be less intrusive, this patch avoids IPv6 entries being parsed at all, this way we don't get such entries in the system and all other code paths are automatically ignored. However an extra check is done at socket_address_listen() to make sure of that. As the number of Netlink messages is not know upfront anymore, loopback-setup.c was refactored to dynamically calculate the sequence number and count. Lennart's suggestions were fixed and squashed with the original patch, that was sent by Gustavo Sverzut Barbieri (barbieri@profusion.mobi).
2010-09-20 23:33:14 +04:00
bool socket_ipv6_is_supported(void) {
Use /proc/net/sockstat6 to detect IPv6 support The file /sys/module/ipv6 does not exist in all container implementations (e.g. Virtuozzo). Using /proc/net/sockstat6 detects IPv6 support reliably in these environments, too. This file does not exist when the kernel is not compiled with IPv6 support, or if IPv6 support is disabled, so simply checking for existence should be a suitable check. Fixes #2059
2015-12-10 15:24:45 +03:00
if (access("/proc/net/sockstat6", F_OK) != 0)
resolved: skip IPv6 LLMNR if IPv6 is not available
2014-08-13 17:00:12 +04:00
return false;
socket: fix IPv6 availability detection If IPv6 is loaded with disable=1, any IPv6 functionality is completely disabled until the ipv6 module is reloaded. Do not assume IPv6 is available just because the module is present. Fixes startup error: Oct 27 20:58:02 cooker kernel: IPv6: Loaded, but administratively disabled, reboot required to enable Oct 27 20:58:02 cooker kernel: systemd[1]: Set hostname to <cooker>. Oct 27 20:58:02 cooker kernel: systemd[1]: Netlink failure for request 2: Operation not supported Oct 27 20:58:02 cooker kernel: systemd[1]: Failed to configure loopback device: Operation not supported
2010-10-27 21:40:31 +04:00
Use /proc/net/sockstat6 to detect IPv6 support The file /sys/module/ipv6 does not exist in all container implementations (e.g. Virtuozzo). Using /proc/net/sockstat6 detects IPv6 support reliably in these environments, too. This file does not exist when the kernel is not compiled with IPv6 support, or if IPv6 support is disabled, so simply checking for existence should be a suitable check. Fixes #2059
2015-12-10 15:24:45 +03:00
return true;
socket: Support IPv6-less systems with runtime check. This patch introduces socket_ipv6_is_supported() call that checks for IPv6 availability. Code then check for it before using specific calls. In order to be less intrusive, this patch avoids IPv6 entries being parsed at all, this way we don't get such entries in the system and all other code paths are automatically ignored. However an extra check is done at socket_address_listen() to make sure of that. As the number of Netlink messages is not know upfront anymore, loopback-setup.c was refactored to dynamically calculate the sequence number and count. Lennart's suggestions were fixed and squashed with the original patch, that was sent by Gustavo Sverzut Barbieri (barbieri@profusion.mobi).
2010-09-20 23:33:14 +04:00
}
socket: support socket activation of containers
2012-12-22 22:30:07 +04:00
bool socket_address_matches_fd(const SocketAddress *a, int fd) {
shared: use SocketAddress in socket_address_matches_fd() Cleanup. No behavior change.
2015-02-20 04:04:05 +03:00
SocketAddress b;
socklen_t solen;
socket: support socket activation of containers
2012-12-22 22:30:07 +04:00
assert(a);
assert(fd >= 0);
shared: use SocketAddress in socket_address_matches_fd() Cleanup. No behavior change.
2015-02-20 04:04:05 +03:00
b.size = sizeof(b.sockaddr);
if (getsockname(fd, &b.sockaddr.sa, &b.size) < 0)
socket: support socket activation of containers
2012-12-22 22:30:07 +04:00
return false;
shared: use SocketAddress in socket_address_matches_fd() Cleanup. No behavior change.
2015-02-20 04:04:05 +03:00
if (b.sockaddr.sa.sa_family != a->sockaddr.sa.sa_family)
socket: support socket activation of containers
2012-12-22 22:30:07 +04:00
return false;
shared: use SocketAddress in socket_address_matches_fd() Cleanup. No behavior change.
2015-02-20 04:04:05 +03:00
solen = sizeof(b.type);
if (getsockopt(fd, SOL_SOCKET, SO_TYPE, &b.type, &solen) < 0)
socket: support socket activation of containers
2012-12-22 22:30:07 +04:00
return false;
shared: use SocketAddress in socket_address_matches_fd() Cleanup. No behavior change.
2015-02-20 04:04:05 +03:00
if (b.type != a->type)
socket: support socket activation of containers
2012-12-22 22:30:07 +04:00
return false;
if (a->protocol != 0) {
shared: use SocketAddress in socket_address_matches_fd() Cleanup. No behavior change.
2015-02-20 04:04:05 +03:00
solen = sizeof(b.protocol);
if (getsockopt(fd, SOL_SOCKET, SO_PROTOCOL, &b.protocol, &solen) < 0)
socket: support socket activation of containers
2012-12-22 22:30:07 +04:00
return false;
shared: use SocketAddress in socket_address_matches_fd() Cleanup. No behavior change.
2015-02-20 04:04:05 +03:00
if (b.protocol != a->protocol)
socket: support socket activation of containers
2012-12-22 22:30:07 +04:00
return false;
}
shared: avoid semi-duplicating socket_address_equal() Just call socket_address_equal() from socket_address_matches_fd() instead of implementing similar comparing of addresses.
2015-02-20 04:13:03 +03:00
return socket_address_equal(a, &b);
socket: support socket activation of containers
2012-12-22 22:30:07 +04:00
}
add REMOTE_ADDR and REMOTE_PORT for Accept=yes
2015-03-10 14:41:59 +03:00
int sockaddr_port(const struct sockaddr *_sa) {
union sockaddr_union *sa = (union sockaddr_union*) _sa;
assert(sa);
if (!IN_SET(sa->sa.sa_family, AF_INET, AF_INET6))
return -EAFNOSUPPORT;
return ntohs(sa->sa.sa_family == AF_INET6 ?
sa->in6.sin6_port :
sa->in.sin_port);
}
int sockaddr_pretty(const struct sockaddr *_sa, socklen_t salen, bool translate_ipv6, bool include_port, char **ret) {
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
union sockaddr_union *sa = (union sockaddr_union*) _sa;
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
char *p;
socket-util: refactor error handling in sockaddr_pretty
2015-03-10 19:30:12 +03:00
int r;
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
assert(sa);
assert(salen >= sizeof(sa->sa.sa_family));
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
switch (sa->sa.sa_family) {
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
case AF_INET: {
uint32_t a;
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
a = ntohl(sa->in.sin_addr.s_addr);
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
socket-util: refactor error handling in sockaddr_pretty
2015-03-10 19:30:12 +03:00
if (include_port)
r = asprintf(&p,
add REMOTE_ADDR and REMOTE_PORT for Accept=yes
2015-03-10 14:41:59 +03:00
"%u.%u.%u.%u:%u",
a >> 24, (a >> 16) & 0xFF, (a >> 8) & 0xFF, a & 0xFF,
socket-util: refactor error handling in sockaddr_pretty
2015-03-10 19:30:12 +03:00
ntohs(sa->in.sin_port));
else
r = asprintf(&p,
add REMOTE_ADDR and REMOTE_PORT for Accept=yes
2015-03-10 14:41:59 +03:00
"%u.%u.%u.%u",
socket-util: refactor error handling in sockaddr_pretty
2015-03-10 19:30:12 +03:00
a >> 24, (a >> 16) & 0xFF, (a >> 8) & 0xFF, a & 0xFF);
if (r < 0)
return -ENOMEM;
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
break;
}
case AF_INET6: {
static const unsigned char ipv4_prefix[] = {
0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0xFF, 0xFF
};
socket-util: refactor error handling in sockaddr_pretty
2015-03-10 19:30:12 +03:00
if (translate_ipv6 &&
memcmp(&sa->in6.sin6_addr, ipv4_prefix, sizeof(ipv4_prefix)) == 0) {
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
const uint8_t *a = sa->in6.sin6_addr.s6_addr+12;
socket-util: refactor error handling in sockaddr_pretty
2015-03-10 19:30:12 +03:00
if (include_port)
r = asprintf(&p,
add REMOTE_ADDR and REMOTE_PORT for Accept=yes
2015-03-10 14:41:59 +03:00
"%u.%u.%u.%u:%u",
a[0], a[1], a[2], a[3],
socket-util: refactor error handling in sockaddr_pretty
2015-03-10 19:30:12 +03:00
ntohs(sa->in6.sin6_port));
else
r = asprintf(&p,
add REMOTE_ADDR and REMOTE_PORT for Accept=yes
2015-03-10 14:41:59 +03:00
"%u.%u.%u.%u",
socket-util: refactor error handling in sockaddr_pretty
2015-03-10 19:30:12 +03:00
a[0], a[1], a[2], a[3]);
if (r < 0)
return -ENOMEM;
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
} else {
char a[INET6_ADDRSTRLEN];
add REMOTE_ADDR and REMOTE_PORT for Accept=yes
2015-03-10 14:41:59 +03:00
inet_ntop(AF_INET6, &sa->in6.sin6_addr, a, sizeof(a));
if (include_port) {
socket-util: refactor error handling in sockaddr_pretty
2015-03-10 19:30:12 +03:00
r = asprintf(&p,
add REMOTE_ADDR and REMOTE_PORT for Accept=yes
2015-03-10 14:41:59 +03:00
"[%s]:%u",
a,
socket-util: refactor error handling in sockaddr_pretty
2015-03-10 19:30:12 +03:00
ntohs(sa->in6.sin6_port));
if (r < 0)
add REMOTE_ADDR and REMOTE_PORT for Accept=yes
2015-03-10 14:41:59 +03:00
return -ENOMEM;
} else {
p = strdup(a);
if (!p)
return -ENOMEM;
}
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
}
break;
}
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
case AF_UNIX:
if (salen <= offsetof(struct sockaddr_un, sun_path)) {
p = strdup("<unnamed>");
if (!p)
return -ENOMEM;
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
} else if (sa->un.sun_path[0] == 0) {
/* abstract */
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
/* FIXME: We assume we can print the
* socket path here and that it hasn't
* more than one NUL byte. That is
* actually an invalid assumption */
p = new(char, sizeof(sa->un.sun_path)+1);
if (!p)
return -ENOMEM;
p[0] = '@';
memcpy(p+1, sa->un.sun_path+1, sizeof(sa->un.sun_path)-1);
p[sizeof(sa->un.sun_path)] = 0;
} else {
p = strndup(sa->un.sun_path, sizeof(sa->un.sun_path));
basic: fix error/memleak in socket-util Probably a typo, checking 'ret' instead of the return value 'p'. This might cause the function to return failure, even though it succeeded. Furthermore, it might leak resources.
2015-07-31 12:51:33 +03:00
if (!p)
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
return -ENOMEM;
}
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
break;
default:
tree-wide: there is no ENOTSUP on linux Replace ENOTSUP by EOPNOTSUPP as this is what linux actually uses.
2015-03-13 16:08:00 +03:00
return -EOPNOTSUPP;
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
}
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
socket-proxyd: rework to support multiple sockets and splice()-based zero-copy network IO This also drops --ignore-env, which can't really work anymore if we allow multiple fds. Also adds support for pretty printing of peer identities for debug purposes, and abstract namespace UNIX sockets. Also ensures that we never take more connections than a certain limit.
2013-11-07 01:40:54 +04:00
*ret = p;
return 0;
}
journal-remote: split-mode=host, remove port from journal filename When constructing the journal filename to store logs from a remote host, remove the port of the tcp connection, as the port will change with every reboot/connection loss between sender/reveiver machines. Having the port in the filename will cause a new journal file to be created for every reboot or connection loss. For the implementation, a new argument "bool include_port" is added to the getpeername_pretty() function. This is passed to the sockaddr_pretty() function. The value of the include_port argument is set to true in all calls of getpeername_pretty(), except for 2 calls in journal-remote.c, where it is set to false.
2015-12-01 20:29:59 +03:00
int getpeername_pretty(int fd, bool include_port, char **ret) {
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
union sockaddr_union sa;
shared/socket-util: add function to query remote address
2014-06-30 03:24:56 +04:00
socklen_t salen = sizeof(sa);
util: unify SO_PEERCRED/SO_PEERSEC invocations Introduce new call getpeercred() which internally just uses SO_PEERCRED but checks if the returned data is actually useful due to namespace quirks.
2013-12-24 18:53:04 +04:00
int r;
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
assert(fd >= 0);
assert(ret);
if (getpeername(fd, &sa.sa, &salen) < 0)
return -errno;
if (sa.sa.sa_family == AF_UNIX) {
make gcc shut up If -flto is used then gcc will generate a lot more warnings than before, among them a number of use-without-initialization warnings. Most of them without are false positives, but let's make them go away, because it doesn't really matter.
2014-02-19 20:47:11 +04:00
struct ucred ucred = {};
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
/* UNIX connection sockets are anonymous, so let's use
* PID/UID as pretty credentials instead */
util: unify SO_PEERCRED/SO_PEERSEC invocations Introduce new call getpeercred() which internally just uses SO_PEERCRED but checks if the returned data is actually useful due to namespace quirks.
2013-12-24 18:53:04 +04:00
r = getpeercred(fd, &ucred);
if (r < 0)
return r;
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
Remove unnecessary casts in printfs No functional change expected :)
2014-04-25 15:45:15 +04:00
if (asprintf(ret, "PID "PID_FMT"/UID "UID_FMT, ucred.pid, ucred.uid) < 0)
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
return -ENOMEM;
return 0;
}
/* For remote sockets we translate IPv6 addresses back to IPv4
* if applicable, since that's nicer. */
journal-remote: split-mode=host, remove port from journal filename When constructing the journal filename to store logs from a remote host, remove the port of the tcp connection, as the port will change with every reboot/connection loss between sender/reveiver machines. Having the port in the filename will cause a new journal file to be created for every reboot or connection loss. For the implementation, a new argument "bool include_port" is added to the getpeername_pretty() function. This is passed to the sockaddr_pretty() function. The value of the include_port argument is set to true in all calls of getpeername_pretty(), except for 2 calls in journal-remote.c, where it is set to false.
2015-12-01 20:29:59 +03:00
return sockaddr_pretty(&sa.sa, salen, true, include_port, ret);
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
}
int getsockname_pretty(int fd, char **ret) {
union sockaddr_union sa;
shared/socket-util: add function to query remote address
2014-06-30 03:24:56 +04:00
socklen_t salen = sizeof(sa);
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
assert(fd >= 0);
assert(ret);
if (getsockname(fd, &sa.sa, &salen) < 0)
return -errno;
/* For local sockets we do not translate IPv6 addresses back
* to IPv6 if applicable, since this is usually used for
* listening sockets where the difference between IPv4 and
* IPv6 matters. */
add REMOTE_ADDR and REMOTE_PORT for Accept=yes
2015-03-10 14:41:59 +03:00
return sockaddr_pretty(&sa.sa, salen, false, true, ret);
socket: rework things to have only one sockaddr formatter
2013-11-07 03:03:54 +04:00
}
shared/socket-util: add function to query remote address
2014-06-30 03:24:56 +04:00
int socknameinfo_pretty(union sockaddr_union *sa, socklen_t salen, char **_ret) {
int r;
char host[NI_MAXHOST], *ret;
assert(_ret);
r = getnameinfo(&sa->sa, salen, host, sizeof(host), NULL, 0,
NI_IDN|NI_IDN_USE_STD3_ASCII_RULES);
if (r != 0) {
int saved_errno = errno;
add REMOTE_ADDR and REMOTE_PORT for Accept=yes
2015-03-10 14:41:59 +03:00
r = sockaddr_pretty(&sa->sa, salen, true, true, &ret);
treewide: yet more log_*_errno + return simplifications Using: find . -name '*.[ch]' | while read f; do perl -i.mmm -e \ 'local $/; local $_=<>; s/(if\s*\([^\n]+\))\s*{\n(\s*)(log_[a-z_]*_errno\(\s*([->a-zA-Z_]+)\s*,[^;]+);\s*return\s+\g4;\s+}/\1\n\2return \3;/msg; print;' $f done And a couple of manual whitespace fixups.
2014-11-28 20:50:43 +03:00
if (r < 0)
socket-util: library calls shouldn't log on their own Instead, make sure that all callers log properly.
2015-07-29 13:33:44 +03:00
return r;
shared/socket-util: add function to query remote address
2014-06-30 03:24:56 +04:00
treewide: more log_*_errno() conversions
2014-11-28 16:45:55 +03:00
log_debug_errno(saved_errno, "getnameinfo(%s) failed: %m", ret);
socket-util: use IP address when hostname is not found socknameinfo_pretty() would fail for addresses without reverse DNS, but we do not want that to happen.
2014-10-22 07:20:59 +04:00
} else {
ret = strdup(host);
if (!ret)
socket-util: library calls shouldn't log on their own Instead, make sure that all callers log properly.
2015-07-29 13:33:44 +03:00
return -ENOMEM;
socket-util: use IP address when hostname is not found socknameinfo_pretty() would fail for addresses without reverse DNS, but we do not want that to happen.
2014-10-22 07:20:59 +04:00
}
shared/socket-util: add function to query remote address
2014-06-30 03:24:56 +04:00
*_ret = ret;
return 0;
}
int getnameinfo_pretty(int fd, char **ret) {
union sockaddr_union sa;
socklen_t salen = sizeof(sa);
assert(fd >= 0);
assert(ret);
treewide: another round of simplifications Using the same scripts as in f647962d64e "treewide: yet more log_*_errno + return simplifications".
2014-11-28 21:57:32 +03:00
if (getsockname(fd, &sa.sa, &salen) < 0)
socket-util: library calls shouldn't log on their own Instead, make sure that all callers log properly.
2015-07-29 13:33:44 +03:00
return -errno;
shared/socket-util: add function to query remote address
2014-06-30 03:24:56 +04:00
return socknameinfo_pretty(&sa, salen, ret);
}
socket: optionally remove sockets/FIFOs in the file system after use
2014-06-04 15:10:43 +04:00
int socket_address_unlink(SocketAddress *a) {
assert(a);
if (socket_address_family(a) != AF_UNIX)
return 0;
if (a->sockaddr.un.sun_path[0] == 0)
return 0;
if (unlink(a->sockaddr.un.sun_path) < 0)
return -errno;
return 1;
}
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
static const char* const netlink_family_table[] = {
[NETLINK_ROUTE] = "route",
[NETLINK_FIREWALL] = "firewall",
[NETLINK_INET_DIAG] = "inet-diag",
[NETLINK_NFLOG] = "nflog",
[NETLINK_XFRM] = "xfrm",
[NETLINK_SELINUX] = "selinux",
[NETLINK_ISCSI] = "iscsi",
[NETLINK_AUDIT] = "audit",
[NETLINK_FIB_LOOKUP] = "fib-lookup",
[NETLINK_CONNECTOR] = "connector",
[NETLINK_NETFILTER] = "netfilter",
[NETLINK_IP6_FW] = "ip6-fw",
[NETLINK_DNRTMSG] = "dnrtmsg",
[NETLINK_KOBJECT_UEVENT] = "kobject-uevent",
[NETLINK_GENERIC] = "generic",
[NETLINK_SCSITRANSPORT] = "scsitransport",
[NETLINK_ECRYPTFS] = "ecryptfs"
};
shared, core: do not always accept numbers in string lookups The behaviour of the common name##_from_string conversion is surprising. It accepts not only the strings from name##_table but also any number that falls within the range of the table. The order of items in most of our tables is an internal affair. It should not be visible to the user. I know of a case where the surprising numeric conversion leads to a crash. We will allow the direct numeric conversion only for the tables where the mapping of strings to numeric values has an external meaning. This holds for the following lookup tables: - netlink_family, ioprio_class, ip_tos, sched_policy - their numeric values are stable as they are defined by the Linux kernel interface. - log_level, log_facility_unshifted - the well-known syslog interface. We allow the user to use numeric values whose string names systemd does not know. For instance, the user may want to test a new kernel featuring a scheduling policy that did not exist when his systemd version was released. A slightly unpleasant effect of this is that the name##_to_string conversion cannot return pointers to constant strings anymore. The strings have to be allocated on demand and freed by the caller.
2012-10-30 17:29:38 +04:00
DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(netlink_family, int, INT_MAX);
socket: support netlink sockets
2011-04-10 05:27:00 +04:00
socket: fix parsing of bind_ipv6_only
2010-05-22 01:41:25 +04:00
static const char* const socket_address_bind_ipv6_only_table[_SOCKET_ADDRESS_BIND_IPV6_ONLY_MAX] = {
[SOCKET_ADDRESS_DEFAULT] = "default",
[SOCKET_ADDRESS_BOTH] = "both",
[SOCKET_ADDRESS_IPV6_ONLY] = "ipv6-only"
};
DEFINE_STRING_TABLE_LOOKUP(socket_address_bind_ipv6_only, SocketAddressBindIPv6Only);
timesyncd: move the generic sockaddr_equal() call to socket-util.h
2014-08-12 16:54:32 +04:00
bool sockaddr_equal(const union sockaddr_union *a, const union sockaddr_union *b) {
assert(a);
assert(b);
if (a->sa.sa_family != b->sa.sa_family)
return false;
if (a->sa.sa_family == AF_INET)
return a->in.sin_addr.s_addr == b->in.sin_addr.s_addr;
if (a->sa.sa_family == AF_INET6)
return memcmp(&a->in6.sin6_addr, &b->in6.sin6_addr, sizeof(a->in6.sin6_addr)) == 0;
return false;
}
socket-util: move remaining socket-related calls from util.[ch] to socket-util.[ch]
2015-10-26 03:09:02 +03:00
int fd_inc_sndbuf(int fd, size_t n) {
int r, value;
socklen_t l = sizeof(value);
r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
return 0;
/* If we have the privileges we will ignore the kernel limit. */
value = (int) n;
if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
return -errno;
return 1;
}
int fd_inc_rcvbuf(int fd, size_t n) {
int r, value;
socklen_t l = sizeof(value);
r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
return 0;
/* If we have the privileges we will ignore the kernel limit. */
value = (int) n;
if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
return -errno;
return 1;
}
static const char* const ip_tos_table[] = {
[IPTOS_LOWDELAY] = "low-delay",
[IPTOS_THROUGHPUT] = "throughput",
[IPTOS_RELIABILITY] = "reliability",
[IPTOS_LOWCOST] = "low-cost",
};
DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
int getpeercred(int fd, struct ucred *ucred) {
socklen_t n = sizeof(struct ucred);
struct ucred u;
int r;
assert(fd >= 0);
assert(ucred);
r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
if (r < 0)
return -errno;
if (n != sizeof(struct ucred))
return -EIO;
/* Check if the data is actually useful and not suppressed due
* to namespacing issues */
if (u.pid <= 0)
return -ENODATA;
if (u.uid == UID_INVALID)
return -ENODATA;
if (u.gid == GID_INVALID)
return -ENODATA;
*ucred = u;
return 0;
}
int getpeersec(int fd, char **ret) {
socklen_t n = 64;
char *s;
int r;
assert(fd >= 0);
assert(ret);
s = new0(char, n);
if (!s)
return -ENOMEM;
r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
if (r < 0) {
free(s);
if (errno != ERANGE)
return -errno;
s = new0(char, n);
if (!s)
return -ENOMEM;
r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
if (r < 0) {
free(s);
return -errno;
}
}
if (isempty(s)) {
free(s);
return -EOPNOTSUPP;
}
*ret = s;
return 0;
}
journal: unbreak sd_journal_sendv Borked since commit 3ee897d6c2401effbc82f5eef35fce405781d6c8 Author: Lennart Poettering <lennart@poettering.net> Date: Wed Sep 23 01:00:04 2015 +0200 tree-wide: port more code to use send_one_fd() and receive_one_fd() because here our fd is not connected and we need to specify the address.
2015-12-03 10:20:39 +03:00
int send_one_fd_sa(
int transport_fd,
int fd,
const struct sockaddr *sa, socklen_t len,
int flags) {
socket-util: move remaining socket-related calls from util.[ch] to socket-util.[ch]
2015-10-26 03:09:02 +03:00
union {
struct cmsghdr cmsghdr;
uint8_t buf[CMSG_SPACE(sizeof(int))];
} control = {};
struct msghdr mh = {
journal: unbreak sd_journal_sendv Borked since commit 3ee897d6c2401effbc82f5eef35fce405781d6c8 Author: Lennart Poettering <lennart@poettering.net> Date: Wed Sep 23 01:00:04 2015 +0200 tree-wide: port more code to use send_one_fd() and receive_one_fd() because here our fd is not connected and we need to specify the address.
2015-12-03 10:20:39 +03:00
.msg_name = (struct sockaddr*) sa,
.msg_namelen = len,
socket-util: move remaining socket-related calls from util.[ch] to socket-util.[ch]
2015-10-26 03:09:02 +03:00
.msg_control = &control,
.msg_controllen = sizeof(control),
};
coredump: rework coredumping logic This reworks the coredumping logic so that the coredump handler invoked from the kernel only collects runtime data about the crashed process, and then submits it for processing to a socket-activate coredump service, which extracts a stacktrace and writes the coredump to disk. This has a number of benefits: the disk IO and stack trace generation may take a substantial amount of resources, and hence should better be managed by PID 1, so that resource management applies. This patch uses RuntimeMaxSec=, Nice=, OOMScoreAdjust= and various sandboxing settings to ensure that the coredump handler doesn't take away unbounded resources from normally priorized processes. This logic is also nice since this makes sure the coredump processing and storage is delayed correctly until /var/systemd/coredump is mounted and writable. Fixes: #2286
2016-02-08 23:16:08 +03:00
struct cmsghdr *cmsg;
socket-util: move remaining socket-related calls from util.[ch] to socket-util.[ch]
2015-10-26 03:09:02 +03:00
assert(transport_fd >= 0);
assert(fd >= 0);
cmsg = CMSG_FIRSTHDR(&mh);
cmsg->cmsg_level = SOL_SOCKET;
cmsg->cmsg_type = SCM_RIGHTS;
cmsg->cmsg_len = CMSG_LEN(sizeof(int));
memcpy(CMSG_DATA(cmsg), &fd, sizeof(int));
mh.msg_controllen = CMSG_SPACE(sizeof(int));
if (sendmsg(transport_fd, &mh, MSG_NOSIGNAL | flags) < 0)
return -errno;
return 0;
}
int receive_one_fd(int transport_fd, int flags) {
union {
struct cmsghdr cmsghdr;
uint8_t buf[CMSG_SPACE(sizeof(int))];
} control = {};
struct msghdr mh = {
.msg_control = &control,
.msg_controllen = sizeof(control),
};
struct cmsghdr *cmsg, *found = NULL;
assert(transport_fd >= 0);
/*
* Receive a single FD via @transport_fd. We don't care for
* the transport-type. We retrieve a single FD at most, so for
* packet-based transports, the caller must ensure to send
* only a single FD per packet. This is best used in
* combination with send_one_fd().
*/
if (recvmsg(transport_fd, &mh, MSG_NOSIGNAL | MSG_CMSG_CLOEXEC | flags) < 0)
return -errno;
CMSG_FOREACH(cmsg, &mh) {
if (cmsg->cmsg_level == SOL_SOCKET &&
cmsg->cmsg_type == SCM_RIGHTS &&
cmsg->cmsg_len == CMSG_LEN(sizeof(int))) {
assert(!found);
found = cmsg;
break;
}
}
if (!found) {
cmsg_close_all(&mh);
return -EIO;
}
return *(int*) CMSG_DATA(found);
}
Copy Permalink