Systemd/src/shared/socket-util.h

/*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/

#pragma once

/***
  This file is part of systemd.

  Copyright 2010 Lennart Poettering

  systemd is free software; you can redistribute it and/or modify it
  under the terms of the GNU Lesser General Public License as published by
  the Free Software Foundation; either version 2.1 of the License, or
  (at your option) any later version.

  systemd is distributed in the hope that it will be useful, but
  WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
  Lesser General Public License for more details.

  You should have received a copy of the GNU Lesser General Public License
  along with systemd; If not, see <http://www.gnu.org/licenses/>.
***/

#include <sys/socket.h>
#include <netinet/in.h>
#include <sys/un.h>
#include <net/if.h>
#include <asm/types.h>
#include <linux/netlink.h>

#include "macro.h"
#include "util.h"

union sockaddr_union {
        struct sockaddr sa;
        struct sockaddr_in in4;
        struct sockaddr_in6 in6;
        struct sockaddr_un un;
        struct sockaddr_nl nl;
        struct sockaddr_storage storage;
};

typedef struct SocketAddress {
        union sockaddr_union sockaddr;

        /* We store the size here explicitly due to the weird
         * sockaddr_un semantics for abstract sockets */
        socklen_t size;

        /* Socket type, i.e. SOCK_STREAM, SOCK_DGRAM, ... */
        int type;

        /* Socket protocol, IPPROTO_xxx, usually 0, except for netlink */
        int protocol;
} SocketAddress;

typedef enum SocketAddressBindIPv6Only {
        SOCKET_ADDRESS_DEFAULT,
        SOCKET_ADDRESS_BOTH,
        SOCKET_ADDRESS_IPV6_ONLY,
        _SOCKET_ADDRESS_BIND_IPV6_ONLY_MAX,
        _SOCKET_ADDRESS_BIND_IPV6_ONLY_INVALID = -1
} SocketAddressBindIPv6Only;

#define socket_address_family(a) ((a)->sockaddr.sa.sa_family)

int socket_address_parse(SocketAddress *a, const char *s);
int socket_address_parse_netlink(SocketAddress *a, const char *s);
int socket_address_print(const SocketAddress *a, char **p);
int socket_address_verify(const SocketAddress *a);

bool socket_address_can_accept(const SocketAddress *a);

int socket_address_listen(
                const SocketAddress *a,
                int backlog,
                SocketAddressBindIPv6Only only,
                const char *bind_to_device,
                bool free_bind,
                bool transparent,
                mode_t directory_mode,
                mode_t socket_mode,
                const char *label,
                int *ret);

bool socket_address_is(const SocketAddress *a, const char *s, int type);
bool socket_address_is_netlink(const SocketAddress *a, const char *s);

bool socket_address_equal(const SocketAddress *a, const SocketAddress *b);

bool socket_address_needs_mount(const SocketAddress *a, const char *prefix);

const char* socket_address_bind_ipv6_only_to_string(SocketAddressBindIPv6Only b);
SocketAddressBindIPv6Only socket_address_bind_ipv6_only_from_string(const char *s);

int netlink_family_to_string_alloc(int b, char **s);
int netlink_family_from_string(const char *s);

bool socket_ipv6_is_supported(void);
emacs: disable tabs in .h files, too 2010-08-17 03:33:07 +02:00			`/-- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil --/`
parse socket files properly 2010-01-19 02:56:37 +01:00
use #pragma once instead of foo*foo #define guards #pragma once has been "un-deprecated" in gcc since 3.3, and is widely supported in other compilers. I've been using and maintaining (rebasing) this patch for a while now, as it annoyed me to see #ifndef fooblahfoo, etc all over the place, almost arrogant about the annoyance of having to define all these names to perform a commen but neccicary functionality, when a completely superior alternative exists. I havn't sent it till now, cause its kindof a style change, and it is bad voodoo to mess with style that has been established by more established editors. So feel free to lambast me as a crazy bafoon. v2 - preserve externally used headers 2012-07-18 19:07:51 +02:00			`#pragma once`
parse socket files properly 2010-01-19 02:56:37 +01:00
license: add GPLv2+ license blurbs everwhere 2010-02-03 13:03:47 +01:00			`/***`
			`This file is part of systemd.`

			`Copyright 2010 Lennart Poettering`

			`systemd is free software; you can redistribute it and/or modify it`
relicense to LGPLv2.1 (with exceptions) We finally got the OK from all contributors with non-trivial commits to relicense systemd from GPL2+ to LGPL2.1+. Some udev bits continue to be GPL2+ for now, but we are looking into relicensing them too, to allow free copy/paste of all code within systemd. The bits that used to be MIT continue to be MIT. The big benefit of the relicensing is that closed source code may now link against libsystemd-login.so and friends. 2012-04-12 00:20:58 +02:00			`under the terms of the GNU Lesser General Public License as published by`
			`the Free Software Foundation; either version 2.1 of the License, or`
license: add GPLv2+ license blurbs everwhere 2010-02-03 13:03:47 +01:00			`(at your option) any later version.`

			`systemd is distributed in the hope that it will be useful, but`
			`WITHOUT ANY WARRANTY; without even the implied warranty of`
			`MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU`
relicense to LGPLv2.1 (with exceptions) We finally got the OK from all contributors with non-trivial commits to relicense systemd from GPL2+ to LGPL2.1+. Some udev bits continue to be GPL2+ for now, but we are looking into relicensing them too, to allow free copy/paste of all code within systemd. The bits that used to be MIT continue to be MIT. The big benefit of the relicensing is that closed source code may now link against libsystemd-login.so and friends. 2012-04-12 00:20:58 +02:00			`Lesser General Public License for more details.`
license: add GPLv2+ license blurbs everwhere 2010-02-03 13:03:47 +01:00
relicense to LGPLv2.1 (with exceptions) We finally got the OK from all contributors with non-trivial commits to relicense systemd from GPL2+ to LGPL2.1+. Some udev bits continue to be GPL2+ for now, but we are looking into relicensing them too, to allow free copy/paste of all code within systemd. The bits that used to be MIT continue to be MIT. The big benefit of the relicensing is that closed source code may now link against libsystemd-login.so and friends. 2012-04-12 00:20:58 +02:00			`You should have received a copy of the GNU Lesser General Public License`
license: add GPLv2+ license blurbs everwhere 2010-02-03 13:03:47 +01:00			`along with systemd; If not, see <http://www.gnu.org/licenses/>.`
			`***/`

parse socket files properly 2010-01-19 02:56:37 +01:00			`#include <sys/socket.h>`
			`#include <netinet/in.h>`
			`#include <sys/un.h>`
yay, we can start socket units 2010-01-27 04:31:52 +01:00			`#include <net/if.h>`
socket: support netlink sockets 2011-04-10 03:27:00 +02:00			`#include <asm/types.h>`
			`#include <linux/netlink.h>`
parse socket files properly 2010-01-19 02:56:37 +01:00
			`#include "macro.h"`
			`#include "util.h"`

systemctl: add support for delayed shutdown, similar to sysv in style 2010-08-16 15:37:52 +02:00			`union sockaddr_union {`
			`struct sockaddr sa;`
			`struct sockaddr_in in4;`
			`struct sockaddr_in6 in6;`
			`struct sockaddr_un un;`
socket: support netlink sockets 2011-04-10 03:27:00 +02:00			`struct sockaddr_nl nl;`
systemctl: add support for delayed shutdown, similar to sysv in style 2010-08-16 15:37:52 +02:00			`struct sockaddr_storage storage;`
			`};`

rework socket handling 2010-01-23 03:35:54 +01:00			`typedef struct SocketAddress {`
systemctl: add support for delayed shutdown, similar to sysv in style 2010-08-16 15:37:52 +02:00			`union sockaddr_union sockaddr;`
parse socket files properly 2010-01-19 02:56:37 +01:00
			`/* We store the size here explicitly due to the weird`
			`* sockaddr_un semantics for abstract sockets */`
			`socklen_t size;`

			`/* Socket type, i.e. SOCK_STREAM, SOCK_DGRAM, ... */`
			`int type;`
socket: support netlink sockets 2011-04-10 03:27:00 +02:00
			`/* Socket protocol, IPPROTO_xxx, usually 0, except for netlink */`
			`int protocol;`
rework socket handling 2010-01-23 03:35:54 +01:00			`} SocketAddress;`
parse socket files properly 2010-01-19 02:56:37 +01:00
rework socket handling 2010-01-23 03:35:54 +01:00			`typedef enum SocketAddressBindIPv6Only {`
			`SOCKET_ADDRESS_DEFAULT,`
			`SOCKET_ADDRESS_BOTH,`
socket: fix parsing of bind_ipv6_only 2010-05-21 23:41:25 +02:00			`SOCKET_ADDRESS_IPV6_ONLY,`
			`_SOCKET_ADDRESS_BIND_IPV6_ONLY_MAX,`
			`_SOCKET_ADDRESS_BIND_IPV6_ONLY_INVALID = -1`
rework socket handling 2010-01-23 03:35:54 +01:00			`} SocketAddressBindIPv6Only;`
parse socket files properly 2010-01-19 02:56:37 +01:00
rework socket handling 2010-01-23 03:35:54 +01:00			`#define socket_address_family(a) ((a)->sockaddr.sa.sa_family)`
parse socket files properly 2010-01-19 02:56:37 +01:00
rework socket handling 2010-01-23 03:35:54 +01:00			`int socket_address_parse(SocketAddress a, const char s);`
socket: support netlink sockets 2011-04-10 03:27:00 +02:00			`int socket_address_parse_netlink(SocketAddress a, const char s);`
rework socket handling 2010-01-23 03:35:54 +01:00			`int socket_address_print(const SocketAddress a, char *p);`
			`int socket_address_verify(const SocketAddress *a);`
socket: allow configuration of socket/directory mode 2010-02-12 02:02:14 +01:00
socket: optionally call accept() for incoming connections and spawn one service instance per connection 2010-04-15 06:19:54 +02:00			`bool socket_address_can_accept(const SocketAddress *a);`

socket: allow configuration of socket/directory mode 2010-02-12 02:02:14 +01:00			`int socket_address_listen(`
			`const SocketAddress *a,`
			`int backlog,`
			`SocketAddressBindIPv6Only only,`
			`const char *bind_to_device,`
socket: make various socket/pipe options configurable 2010-07-01 00:29:17 +02:00			`bool free_bind,`
socket: expose IP_TRANSPARENT 2011-05-19 13:22:31 +02:00			`bool transparent,`
socket: allow configuration of socket/directory mode 2010-02-12 02:02:14 +01:00			`mode_t directory_mode,`
			`mode_t socket_mode,`
Systemd is causing mislabeled devices to be created and then attempting to read them. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 07/28/2010 05:57 AM, Kay Sievers wrote: > On Wed, Jul 28, 2010 at 11:43, Lennart Poettering > <lennart@poettering.net> wrote: >> On Mon, 26.07.10 16:42, Daniel J Walsh (dwalsh@redhat.com) wrote: >>> tcontext=system_u:object_r:device_t:s0 tclass=chr_file >>> type=1400 audit(1280174589.476:7): avc: denied { read } for pid=1 >>> comm="systemd" name="autofs" dev=devtmpfs ino=9482 >>> scontext=system_u:system_r:init_t:s0 >>> tcontext=system_u:object_r:device_t:s0 tclass=chr_file >>> type=1400 audit(1280174589.476:8): avc: denied { read } for pid=1 >>> comm="systemd" name="autofs" dev=devtmpfs ino=9482 >>> scontext=system_u:system_r:init_t:s0 >>> tcontext=system_u:object_r:device_t:s0 tclass=chr_file >>> >>> Lennart, we talked about this earlier. I think this is caused by the >>> modprobe calls to create /dev/autofs. Since udev is not created at the >>> point that init loads the kernel modules, the devices get created with >>> the wrong label. Once udev starts the labels get fixed. >>> >>> I can allow init_t to read device_t chr_files. >> >> Hmm, I think a cleaner fix would be to make systemd relabel this device >> properly before accessing it? Given that this is only one device this >> should not be a problem for us to maintain, I think? How would the >> fixing of the label work? Would we have to spawn restorecon for this, or >> can we actually do this in C without too much work? > > I guess we can just do what udev is doing, and call setfilecon(), with > a context of an earlier matchpathcon(). > > Kay > _______________________________________________ > systemd-devel mailing list > systemd-devel@lists.freedesktop.org > http://lists.freedesktop.org/mailman/listinfo/systemd-devel Here is the updated patch with a fix for the labeling of /dev/autofs -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iEYEARECAAYFAkxQMyoACgkQrlYvE4MpobNviACfWgxsjW2xzz1qznFex8RVAQHf gIEAmwRmRcLvGqYtwQaZ3WKIg8wmrwNk =pC2e 2010-07-28 15:39:54 +02:00			`const char *label,`
socket: allow configuration of socket/directory mode 2010-02-12 02:02:14 +01:00			`int *ret);`
parse socket files properly 2010-01-19 02:56:37 +01:00
socket: verify socket type properly when desrializing 2010-06-05 00:52:30 +02:00			`bool socket_address_is(const SocketAddress a, const char s, int type);`
socket: support netlink sockets 2011-04-10 03:27:00 +02:00			`bool socket_address_is_netlink(const SocketAddress a, const char s);`
reload: implement reload/reexec logic 2010-04-21 03:27:44 +02:00
			`bool socket_address_equal(const SocketAddress a, const SocketAddress b);`

units: rework automatic dependency logic between automounts, mounts, sockets, swaps 2010-05-13 03:07:16 +02:00			`bool socket_address_needs_mount(const SocketAddress a, const char prefix);`

socket: fix parsing of bind_ipv6_only 2010-05-21 23:41:25 +02:00			`const char* socket_address_bind_ipv6_only_to_string(SocketAddressBindIPv6Only b);`
			`SocketAddressBindIPv6Only socket_address_bind_ipv6_only_from_string(const char *s);`

shared, core: do not always accept numbers in string lookups The behaviour of the common name##_from_string conversion is surprising. It accepts not only the strings from name##_table but also any number that falls within the range of the table. The order of items in most of our tables is an internal affair. It should not be visible to the user. I know of a case where the surprising numeric conversion leads to a crash. We will allow the direct numeric conversion only for the tables where the mapping of strings to numeric values has an external meaning. This holds for the following lookup tables: - netlink_family, ioprio_class, ip_tos, sched_policy - their numeric values are stable as they are defined by the Linux kernel interface. - log_level, log_facility_unshifted - the well-known syslog interface. We allow the user to use numeric values whose string names systemd does not know. For instance, the user may want to test a new kernel featuring a scheduling policy that did not exist when his systemd version was released. A slightly unpleasant effect of this is that the name##_to_string conversion cannot return pointers to constant strings anymore. The strings have to be allocated on demand and freed by the caller. 2012-10-30 14:29:38 +01:00			`int netlink_family_to_string_alloc(int b, char **s);`
socket: support netlink sockets 2011-04-10 03:27:00 +02:00			`int netlink_family_from_string(const char *s);`

socket: Support IPv6-less systems with runtime check. This patch introduces socket_ipv6_is_supported() call that checks for IPv6 availability. Code then check for it before using specific calls. In order to be less intrusive, this patch avoids IPv6 entries being parsed at all, this way we don't get such entries in the system and all other code paths are automatically ignored. However an extra check is done at socket_address_listen() to make sure of that. As the number of Netlink messages is not know upfront anymore, loopback-setup.c was refactored to dynamically calculate the sequence number and count. Lennart's suggestions were fixed and squashed with the original patch, that was sent by Gustavo Sverzut Barbieri (barbieri@profusion.mobi). 2010-09-20 21:33:14 +02:00			`bool socket_ipv6_is_supported(void);`