19454b2d8SWarner Losh /*- 2df8bae1dSRodney W. Grimes * Copyright (c) 1982, 1986, 1989, 1991, 1993 3e1ac28e2SRobert Watson * The Regents of the University of California. 43dab55bcSRobert Watson * Copyright (c) 2004-2009 Robert N. M. Watson 5e1ac28e2SRobert Watson * All rights reserved. 6df8bae1dSRodney W. Grimes * 7df8bae1dSRodney W. Grimes * Redistribution and use in source and binary forms, with or without 8df8bae1dSRodney W. Grimes * modification, are permitted provided that the following conditions 9df8bae1dSRodney W. Grimes * are met: 10df8bae1dSRodney W. Grimes * 1. Redistributions of source code must retain the above copyright 11df8bae1dSRodney W. Grimes * notice, this list of conditions and the following disclaimer. 12df8bae1dSRodney W. Grimes * 2. Redistributions in binary form must reproduce the above copyright 13df8bae1dSRodney W. Grimes * notice, this list of conditions and the following disclaimer in the 14df8bae1dSRodney W. Grimes * documentation and/or other materials provided with the distribution. 15df8bae1dSRodney W. Grimes * 4. Neither the name of the University nor the names of its contributors 16df8bae1dSRodney W. Grimes * may be used to endorse or promote products derived from this software 17df8bae1dSRodney W. Grimes * without specific prior written permission. 18df8bae1dSRodney W. Grimes * 19df8bae1dSRodney W. Grimes * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 20df8bae1dSRodney W. Grimes * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 21df8bae1dSRodney W. Grimes * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 22df8bae1dSRodney W. Grimes * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 23df8bae1dSRodney W. Grimes * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 24df8bae1dSRodney W. Grimes * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 25df8bae1dSRodney W. Grimes * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 26df8bae1dSRodney W. Grimes * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 27df8bae1dSRodney W. Grimes * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 28df8bae1dSRodney W. Grimes * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 29df8bae1dSRodney W. Grimes * SUCH DAMAGE. 30df8bae1dSRodney W. Grimes * 31748e0b0aSGarrett Wollman * From: @(#)uipc_usrreq.c 8.3 (Berkeley) 1/4/94 32df8bae1dSRodney W. Grimes */ 33df8bae1dSRodney W. Grimes 34f23929fbSRobert Watson /* 35f23929fbSRobert Watson * UNIX Domain (Local) Sockets 36f23929fbSRobert Watson * 37f23929fbSRobert Watson * This is an implementation of UNIX (local) domain sockets. Each socket has 38f23929fbSRobert Watson * an associated struct unpcb (UNIX protocol control block). Stream sockets 39f23929fbSRobert Watson * may be connected to 0 or 1 other socket. Datagram sockets may be 40f23929fbSRobert Watson * connected to 0, 1, or many other sockets. Sockets may be created and 41f23929fbSRobert Watson * connected in pairs (socketpair(2)), or bound/connected to using the file 42f23929fbSRobert Watson * system name space. For most purposes, only the receive socket buffer is 43f23929fbSRobert Watson * used, as sending on one socket delivers directly to the receive socket 445b950deaSRobert Watson * buffer of a second socket. 455b950deaSRobert Watson * 465b950deaSRobert Watson * The implementation is substantially complicated by the fact that 475b950deaSRobert Watson * "ancillary data", such as file descriptors or credentials, may be passed 485b950deaSRobert Watson * across UNIX domain sockets. The potential for passing UNIX domain sockets 495b950deaSRobert Watson * over other UNIX domain sockets requires the implementation of a simple 505b950deaSRobert Watson * garbage collector to find and tear down cycles of disconnected sockets. 51aea52f1bSRobert Watson * 52aea52f1bSRobert Watson * TODO: 5384d61770SRobert Watson * RDM 5484d61770SRobert Watson * distinguish datagram size limits from flow control limits in SEQPACKET 55aea52f1bSRobert Watson * rethink name space problems 56aea52f1bSRobert Watson * need a proper out-of-band 57f23929fbSRobert Watson */ 58f23929fbSRobert Watson 59677b542eSDavid E. O'Brien #include <sys/cdefs.h> 60677b542eSDavid E. O'Brien __FBSDID("$FreeBSD$"); 61677b542eSDavid E. O'Brien 6203c96c31SRobert Watson #include "opt_ddb.h" 63335654d7SRobert Watson 64df8bae1dSRodney W. Grimes #include <sys/param.h> 65fb919e4dSMark Murray #include <sys/domain.h> 66960ed29cSSeigo Tanimura #include <sys/fcntl.h> 67d826c479SBruce Evans #include <sys/malloc.h> /* XXX must be before <sys/file.h> */ 684f590175SPaul Saab #include <sys/eventhandler.h> 69639acc13SGarrett Wollman #include <sys/file.h> 70960ed29cSSeigo Tanimura #include <sys/filedesc.h> 71960ed29cSSeigo Tanimura #include <sys/kernel.h> 72960ed29cSSeigo Tanimura #include <sys/lock.h> 73639acc13SGarrett Wollman #include <sys/mbuf.h> 74033eb86eSJeff Roberson #include <sys/mount.h> 75960ed29cSSeigo Tanimura #include <sys/mutex.h> 76639acc13SGarrett Wollman #include <sys/namei.h> 77639acc13SGarrett Wollman #include <sys/proc.h> 78df8bae1dSRodney W. Grimes #include <sys/protosw.h> 790cb64678SKonstantin Belousov #include <sys/queue.h> 80960ed29cSSeigo Tanimura #include <sys/resourcevar.h> 81e7c33e29SRobert Watson #include <sys/rwlock.h> 82df8bae1dSRodney W. Grimes #include <sys/socket.h> 83df8bae1dSRodney W. Grimes #include <sys/socketvar.h> 84960ed29cSSeigo Tanimura #include <sys/signalvar.h> 85df8bae1dSRodney W. Grimes #include <sys/stat.h> 86960ed29cSSeigo Tanimura #include <sys/sx.h> 87639acc13SGarrett Wollman #include <sys/sysctl.h> 88960ed29cSSeigo Tanimura #include <sys/systm.h> 89a0ec558aSRobert Watson #include <sys/taskqueue.h> 90639acc13SGarrett Wollman #include <sys/un.h> 9198271db4SGarrett Wollman #include <sys/unpcb.h> 92639acc13SGarrett Wollman #include <sys/vnode.h> 93530c0060SRobert Watson 94530c0060SRobert Watson #include <net/vnet.h> 95df8bae1dSRodney W. Grimes 9603c96c31SRobert Watson #ifdef DDB 9703c96c31SRobert Watson #include <ddb/ddb.h> 9803c96c31SRobert Watson #endif 9903c96c31SRobert Watson 100aed55708SRobert Watson #include <security/mac/mac_framework.h> 101aed55708SRobert Watson 1029e9d298aSJeff Roberson #include <vm/uma.h> 10398271db4SGarrett Wollman 1043dab55bcSRobert Watson /* 1053dab55bcSRobert Watson * Locking key: 1063dab55bcSRobert Watson * (l) Locked using list lock 1073dab55bcSRobert Watson * (g) Locked using linkage lock 1083dab55bcSRobert Watson */ 1093dab55bcSRobert Watson 1109e9d298aSJeff Roberson static uma_zone_t unp_zone; 1113dab55bcSRobert Watson static unp_gen_t unp_gencnt; /* (l) */ 1123dab55bcSRobert Watson static u_int unp_count; /* (l) Count of local sockets. */ 113aea52f1bSRobert Watson static ino_t unp_ino; /* Prototype for fake inode numbers. */ 1143dab55bcSRobert Watson static int unp_rights; /* (g) File descriptors in flight. */ 1153dab55bcSRobert Watson static struct unp_head unp_shead; /* (l) List of stream sockets. */ 1163dab55bcSRobert Watson static struct unp_head unp_dhead; /* (l) List of datagram sockets. */ 11784d61770SRobert Watson static struct unp_head unp_sphead; /* (l) List of seqpacket sockets. */ 11898271db4SGarrett Wollman 1190cb64678SKonstantin Belousov struct unp_defer { 1200cb64678SKonstantin Belousov SLIST_ENTRY(unp_defer) ud_link; 1210cb64678SKonstantin Belousov struct file *ud_fp; 1220cb64678SKonstantin Belousov }; 1230cb64678SKonstantin Belousov static SLIST_HEAD(, unp_defer) unp_defers; 1240cb64678SKonstantin Belousov static int unp_defers_count; 1250cb64678SKonstantin Belousov 126aea52f1bSRobert Watson static const struct sockaddr sun_noname = { sizeof(sun_noname), AF_LOCAL }; 12798271db4SGarrett Wollman 128df8bae1dSRodney W. Grimes /* 129aea52f1bSRobert Watson * Garbage collection of cyclic file descriptor/socket references occurs 130aea52f1bSRobert Watson * asynchronously in a taskqueue context in order to avoid recursion and 131aea52f1bSRobert Watson * reentrance in the UNIX domain socket, file descriptor, and socket layer 132aea52f1bSRobert Watson * code. See unp_gc() for a full description. 133df8bae1dSRodney W. Grimes */ 134aea52f1bSRobert Watson static struct task unp_gc_task; 135f708ef1bSPoul-Henning Kamp 136ce5f32deSRobert Watson /* 1370cb64678SKonstantin Belousov * The close of unix domain sockets attached as SCM_RIGHTS is 1380cb64678SKonstantin Belousov * postponed to the taskqueue, to avoid arbitrary recursion depth. 1390cb64678SKonstantin Belousov * The attached sockets might have another sockets attached. 1400cb64678SKonstantin Belousov */ 1410cb64678SKonstantin Belousov static struct task unp_defer_task; 1420cb64678SKonstantin Belousov 1430cb64678SKonstantin Belousov /* 1447e711c3aSRobert Watson * Both send and receive buffers are allocated PIPSIZ bytes of buffering for 1457e711c3aSRobert Watson * stream sockets, although the total for sender and receiver is actually 1467e711c3aSRobert Watson * only PIPSIZ. 1477e711c3aSRobert Watson * 1487e711c3aSRobert Watson * Datagram sockets really use the sendspace as the maximum datagram size, 1497e711c3aSRobert Watson * and don't really want to reserve the sendspace. Their recvspace should be 1507e711c3aSRobert Watson * large enough for at least one max-size datagram plus address. 1517e711c3aSRobert Watson */ 1527e711c3aSRobert Watson #ifndef PIPSIZ 1537e711c3aSRobert Watson #define PIPSIZ 8192 1547e711c3aSRobert Watson #endif 1557e711c3aSRobert Watson static u_long unpst_sendspace = PIPSIZ; 1567e711c3aSRobert Watson static u_long unpst_recvspace = PIPSIZ; 1577e711c3aSRobert Watson static u_long unpdg_sendspace = 2*1024; /* really max datagram size */ 1587e711c3aSRobert Watson static u_long unpdg_recvspace = 4*1024; 15984d61770SRobert Watson static u_long unpsp_sendspace = PIPSIZ; /* really max datagram size */ 16084d61770SRobert Watson static u_long unpsp_recvspace = PIPSIZ; 1617e711c3aSRobert Watson 1626472ac3dSEd Schouten static SYSCTL_NODE(_net, PF_LOCAL, local, CTLFLAG_RW, 0, "Local domain"); 1636472ac3dSEd Schouten static SYSCTL_NODE(_net_local, SOCK_STREAM, stream, CTLFLAG_RW, 0, 1646472ac3dSEd Schouten "SOCK_STREAM"); 1656472ac3dSEd Schouten static SYSCTL_NODE(_net_local, SOCK_DGRAM, dgram, CTLFLAG_RW, 0, "SOCK_DGRAM"); 1666472ac3dSEd Schouten static SYSCTL_NODE(_net_local, SOCK_SEQPACKET, seqpacket, CTLFLAG_RW, 0, 16784d61770SRobert Watson "SOCK_SEQPACKET"); 168e4445a03SRobert Watson 1697e711c3aSRobert Watson SYSCTL_ULONG(_net_local_stream, OID_AUTO, sendspace, CTLFLAG_RW, 170be6b1304STom Rhodes &unpst_sendspace, 0, "Default stream send space."); 1717e711c3aSRobert Watson SYSCTL_ULONG(_net_local_stream, OID_AUTO, recvspace, CTLFLAG_RW, 172be6b1304STom Rhodes &unpst_recvspace, 0, "Default stream receive space."); 1737e711c3aSRobert Watson SYSCTL_ULONG(_net_local_dgram, OID_AUTO, maxdgram, CTLFLAG_RW, 174be6b1304STom Rhodes &unpdg_sendspace, 0, "Default datagram send space."); 1757e711c3aSRobert Watson SYSCTL_ULONG(_net_local_dgram, OID_AUTO, recvspace, CTLFLAG_RW, 176be6b1304STom Rhodes &unpdg_recvspace, 0, "Default datagram receive space."); 17784d61770SRobert Watson SYSCTL_ULONG(_net_local_seqpacket, OID_AUTO, maxseqpacket, CTLFLAG_RW, 17884d61770SRobert Watson &unpsp_sendspace, 0, "Default seqpacket send space."); 17984d61770SRobert Watson SYSCTL_ULONG(_net_local_seqpacket, OID_AUTO, recvspace, CTLFLAG_RW, 18084d61770SRobert Watson &unpsp_recvspace, 0, "Default seqpacket receive space."); 181be6b1304STom Rhodes SYSCTL_INT(_net_local, OID_AUTO, inflight, CTLFLAG_RD, &unp_rights, 0, 182be6b1304STom Rhodes "File descriptors in flight."); 1830cb64678SKonstantin Belousov SYSCTL_INT(_net_local, OID_AUTO, deferred, CTLFLAG_RD, 1840cb64678SKonstantin Belousov &unp_defers_count, 0, 1850cb64678SKonstantin Belousov "File descriptors deferred to taskqueue for close."); 1867e711c3aSRobert Watson 187175389cfSEdward Tomasz Napierala /* 188e7c33e29SRobert Watson * Locking and synchronization: 189ce5f32deSRobert Watson * 1903dab55bcSRobert Watson * Three types of locks exit in the local domain socket implementation: a 1913dab55bcSRobert Watson * global list mutex, a global linkage rwlock, and per-unpcb mutexes. Of the 1923dab55bcSRobert Watson * global locks, the list lock protects the socket count, global generation 1933dab55bcSRobert Watson * number, and stream/datagram global lists. The linkage lock protects the 1943dab55bcSRobert Watson * interconnection of unpcbs, the v_socket and unp_vnode pointers, and can be 1953dab55bcSRobert Watson * held exclusively over the acquisition of multiple unpcb locks to prevent 1963dab55bcSRobert Watson * deadlock. 197ce5f32deSRobert Watson * 198e7c33e29SRobert Watson * UNIX domain sockets each have an unpcb hung off of their so_pcb pointer, 199e7c33e29SRobert Watson * allocated in pru_attach() and freed in pru_detach(). The validity of that 200e7c33e29SRobert Watson * pointer is an invariant, so no lock is required to dereference the so_pcb 201e7c33e29SRobert Watson * pointer if a valid socket reference is held by the caller. In practice, 202e7c33e29SRobert Watson * this is always true during operations performed on a socket. Each unpcb 203e7c33e29SRobert Watson * has a back-pointer to its socket, unp_socket, which will be stable under 204e7c33e29SRobert Watson * the same circumstances. 205e7c33e29SRobert Watson * 206e7c33e29SRobert Watson * This pointer may only be safely dereferenced as long as a valid reference 207e7c33e29SRobert Watson * to the unpcb is held. Typically, this reference will be from the socket, 208e7c33e29SRobert Watson * or from another unpcb when the referring unpcb's lock is held (in order 209e7c33e29SRobert Watson * that the reference not be invalidated during use). For example, to follow 210e7c33e29SRobert Watson * unp->unp_conn->unp_socket, you need unlock the lock on unp, not unp_conn, 211e7c33e29SRobert Watson * as unp_socket remains valid as long as the reference to unp_conn is valid. 212e7c33e29SRobert Watson * 213e7c33e29SRobert Watson * Fields of unpcbss are locked using a per-unpcb lock, unp_mtx. Individual 214e7c33e29SRobert Watson * atomic reads without the lock may be performed "lockless", but more 215e7c33e29SRobert Watson * complex reads and read-modify-writes require the mutex to be held. No 216e7c33e29SRobert Watson * lock order is defined between unpcb locks -- multiple unpcb locks may be 2173dab55bcSRobert Watson * acquired at the same time only when holding the linkage rwlock 2183dab55bcSRobert Watson * exclusively, which prevents deadlocks. 219e7c33e29SRobert Watson * 220e7c33e29SRobert Watson * Blocking with UNIX domain sockets is a tricky issue: unlike most network 221e7c33e29SRobert Watson * protocols, bind() is a non-atomic operation, and connect() requires 222e7c33e29SRobert Watson * potential sleeping in the protocol, due to potentially waiting on local or 223e7c33e29SRobert Watson * distributed file systems. We try to separate "lookup" operations, which 224e7c33e29SRobert Watson * may sleep, and the IPC operations themselves, which typically can occur 225e7c33e29SRobert Watson * with relative atomicity as locks can be held over the entire operation. 226e7c33e29SRobert Watson * 227e7c33e29SRobert Watson * Another tricky issue is simultaneous multi-threaded or multi-process 228e7c33e29SRobert Watson * access to a single UNIX domain socket. These are handled by the flags 229e7c33e29SRobert Watson * UNP_CONNECTING and UNP_BINDING, which prevent concurrent connecting or 230e7c33e29SRobert Watson * binding, both of which involve dropping UNIX domain socket locks in order 231e7c33e29SRobert Watson * to perform namei() and other file system operations. 232ce5f32deSRobert Watson */ 2333dab55bcSRobert Watson static struct rwlock unp_link_rwlock; 2343dab55bcSRobert Watson static struct mtx unp_list_lock; 2350cb64678SKonstantin Belousov static struct mtx unp_defers_lock; 236e7c33e29SRobert Watson 2373dab55bcSRobert Watson #define UNP_LINK_LOCK_INIT() rw_init(&unp_link_rwlock, \ 2383dab55bcSRobert Watson "unp_link_rwlock") 239e7c33e29SRobert Watson 2403dab55bcSRobert Watson #define UNP_LINK_LOCK_ASSERT() rw_assert(&unp_link_rwlock, \ 241e7c33e29SRobert Watson RA_LOCKED) 2423dab55bcSRobert Watson #define UNP_LINK_UNLOCK_ASSERT() rw_assert(&unp_link_rwlock, \ 243e7c33e29SRobert Watson RA_UNLOCKED) 244e7c33e29SRobert Watson 2453dab55bcSRobert Watson #define UNP_LINK_RLOCK() rw_rlock(&unp_link_rwlock) 2463dab55bcSRobert Watson #define UNP_LINK_RUNLOCK() rw_runlock(&unp_link_rwlock) 2473dab55bcSRobert Watson #define UNP_LINK_WLOCK() rw_wlock(&unp_link_rwlock) 2483dab55bcSRobert Watson #define UNP_LINK_WUNLOCK() rw_wunlock(&unp_link_rwlock) 2493dab55bcSRobert Watson #define UNP_LINK_WLOCK_ASSERT() rw_assert(&unp_link_rwlock, \ 250e7c33e29SRobert Watson RA_WLOCKED) 251e7c33e29SRobert Watson 2523dab55bcSRobert Watson #define UNP_LIST_LOCK_INIT() mtx_init(&unp_list_lock, \ 2533dab55bcSRobert Watson "unp_list_lock", NULL, MTX_DEF) 2543dab55bcSRobert Watson #define UNP_LIST_LOCK() mtx_lock(&unp_list_lock) 2553dab55bcSRobert Watson #define UNP_LIST_UNLOCK() mtx_unlock(&unp_list_lock) 256e7c33e29SRobert Watson 2570cb64678SKonstantin Belousov #define UNP_DEFERRED_LOCK_INIT() mtx_init(&unp_defers_lock, \ 2580cb64678SKonstantin Belousov "unp_defer", NULL, MTX_DEF) 2590cb64678SKonstantin Belousov #define UNP_DEFERRED_LOCK() mtx_lock(&unp_defers_lock) 2600cb64678SKonstantin Belousov #define UNP_DEFERRED_UNLOCK() mtx_unlock(&unp_defers_lock) 2610cb64678SKonstantin Belousov 262e7c33e29SRobert Watson #define UNP_PCB_LOCK_INIT(unp) mtx_init(&(unp)->unp_mtx, \ 263e7c33e29SRobert Watson "unp_mtx", "unp_mtx", \ 264e7c33e29SRobert Watson MTX_DUPOK|MTX_DEF|MTX_RECURSE) 265e7c33e29SRobert Watson #define UNP_PCB_LOCK_DESTROY(unp) mtx_destroy(&(unp)->unp_mtx) 266e7c33e29SRobert Watson #define UNP_PCB_LOCK(unp) mtx_lock(&(unp)->unp_mtx) 267e7c33e29SRobert Watson #define UNP_PCB_UNLOCK(unp) mtx_unlock(&(unp)->unp_mtx) 268e7c33e29SRobert Watson #define UNP_PCB_LOCK_ASSERT(unp) mtx_assert(&(unp)->unp_mtx, MA_OWNED) 2690d9ce3a1SRobert Watson 2702c899584SRobert Watson static int uipc_connect2(struct socket *, struct socket *); 2710b36cd25SRobert Watson static int uipc_ctloutput(struct socket *, struct sockopt *); 272aea52f1bSRobert Watson static int unp_connect(struct socket *, struct sockaddr *, 273aea52f1bSRobert Watson struct thread *); 2746a2989fdSMatthew N. Dodd static int unp_connect2(struct socket *so, struct socket *so2, int); 275e7c33e29SRobert Watson static void unp_disconnect(struct unpcb *unp, struct unpcb *unp2); 2760b36cd25SRobert Watson static void unp_dispose(struct mbuf *); 2774d77a549SAlfred Perlstein static void unp_shutdown(struct unpcb *); 2784d77a549SAlfred Perlstein static void unp_drop(struct unpcb *, int); 279a0ec558aSRobert Watson static void unp_gc(__unused void *, int); 2804d77a549SAlfred Perlstein static void unp_scan(struct mbuf *, void (*)(struct file *)); 2814d77a549SAlfred Perlstein static void unp_discard(struct file *); 2824d77a549SAlfred Perlstein static void unp_freerights(struct file **, int); 2830b36cd25SRobert Watson static void unp_init(void); 2844d77a549SAlfred Perlstein static int unp_internalize(struct mbuf **, struct thread *); 285397c19d1SJeff Roberson static void unp_internalize_fp(struct file *); 2860b36cd25SRobert Watson static int unp_externalize(struct mbuf *, struct mbuf **); 2870cb64678SKonstantin Belousov static int unp_externalize_fp(struct file *); 2885b950deaSRobert Watson static struct mbuf *unp_addsockcred(struct thread *, struct mbuf *); 2890cb64678SKonstantin Belousov static void unp_process_defers(void * __unused, int); 290f708ef1bSPoul-Henning Kamp 291e4445a03SRobert Watson /* 292e4445a03SRobert Watson * Definitions of protocols supported in the LOCAL domain. 293e4445a03SRobert Watson */ 294e4445a03SRobert Watson static struct domain localdomain; 295fa9402f2SRobert Watson static struct pr_usrreqs uipc_usrreqs_dgram, uipc_usrreqs_stream; 29684d61770SRobert Watson static struct pr_usrreqs uipc_usrreqs_seqpacket; 297e4445a03SRobert Watson static struct protosw localsw[] = { 298e4445a03SRobert Watson { 299e4445a03SRobert Watson .pr_type = SOCK_STREAM, 300e4445a03SRobert Watson .pr_domain = &localdomain, 301e4445a03SRobert Watson .pr_flags = PR_CONNREQUIRED|PR_WANTRCVD|PR_RIGHTS, 302e4445a03SRobert Watson .pr_ctloutput = &uipc_ctloutput, 303fa9402f2SRobert Watson .pr_usrreqs = &uipc_usrreqs_stream 304e4445a03SRobert Watson }, 305e4445a03SRobert Watson { 306e4445a03SRobert Watson .pr_type = SOCK_DGRAM, 307e4445a03SRobert Watson .pr_domain = &localdomain, 308e4445a03SRobert Watson .pr_flags = PR_ATOMIC|PR_ADDR|PR_RIGHTS, 309fa9402f2SRobert Watson .pr_usrreqs = &uipc_usrreqs_dgram 310e4445a03SRobert Watson }, 31184d61770SRobert Watson { 31284d61770SRobert Watson .pr_type = SOCK_SEQPACKET, 31384d61770SRobert Watson .pr_domain = &localdomain, 31484d61770SRobert Watson 31584d61770SRobert Watson /* 31684d61770SRobert Watson * XXXRW: For now, PR_ADDR because soreceive will bump into them 31784d61770SRobert Watson * due to our use of sbappendaddr. A new sbappend variants is needed 31884d61770SRobert Watson * that supports both atomic record writes and control data. 31984d61770SRobert Watson */ 32084d61770SRobert Watson .pr_flags = PR_ADDR|PR_ATOMIC|PR_CONNREQUIRED|PR_WANTRCVD| 32184d61770SRobert Watson PR_RIGHTS, 32284d61770SRobert Watson .pr_usrreqs = &uipc_usrreqs_seqpacket, 32384d61770SRobert Watson }, 324e4445a03SRobert Watson }; 325e4445a03SRobert Watson 326e4445a03SRobert Watson static struct domain localdomain = { 327e4445a03SRobert Watson .dom_family = AF_LOCAL, 328e4445a03SRobert Watson .dom_name = "local", 329e4445a03SRobert Watson .dom_init = unp_init, 330e4445a03SRobert Watson .dom_externalize = unp_externalize, 331e4445a03SRobert Watson .dom_dispose = unp_dispose, 332e4445a03SRobert Watson .dom_protosw = localsw, 333e4445a03SRobert Watson .dom_protoswNPROTOSW = &localsw[sizeof(localsw)/sizeof(localsw[0])] 334e4445a03SRobert Watson }; 335e4445a03SRobert Watson DOMAIN_SET(local); 336e4445a03SRobert Watson 337ac45e92fSRobert Watson static void 338a29f300eSGarrett Wollman uipc_abort(struct socket *so) 339df8bae1dSRodney W. Grimes { 340e7c33e29SRobert Watson struct unpcb *unp, *unp2; 341df8bae1dSRodney W. Grimes 34240f2ac28SRobert Watson unp = sotounpcb(so); 3434d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_abort: unp == NULL")); 344e7c33e29SRobert Watson 3453dab55bcSRobert Watson UNP_LINK_WLOCK(); 346e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 347e7c33e29SRobert Watson unp2 = unp->unp_conn; 348e7c33e29SRobert Watson if (unp2 != NULL) { 349e7c33e29SRobert Watson UNP_PCB_LOCK(unp2); 350e7c33e29SRobert Watson unp_drop(unp2, ECONNABORTED); 351e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 352e7c33e29SRobert Watson } 353e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 3543dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 355df8bae1dSRodney W. Grimes } 356df8bae1dSRodney W. Grimes 357a29f300eSGarrett Wollman static int 35857bf258eSGarrett Wollman uipc_accept(struct socket *so, struct sockaddr **nam) 359a29f300eSGarrett Wollman { 360e7c33e29SRobert Watson struct unpcb *unp, *unp2; 3610d9ce3a1SRobert Watson const struct sockaddr *sa; 362df8bae1dSRodney W. Grimes 363df8bae1dSRodney W. Grimes /* 3641c381b19SRobert Watson * Pass back name of connected socket, if it was bound and we are 3651c381b19SRobert Watson * still connected (our peer may have closed already!). 366df8bae1dSRodney W. Grimes */ 3674d4b555eSRobert Watson unp = sotounpcb(so); 3684d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_accept: unp == NULL")); 369e7c33e29SRobert Watson 3700d9ce3a1SRobert Watson *nam = malloc(sizeof(struct sockaddr_un), M_SONAME, M_WAITOK); 3713dab55bcSRobert Watson UNP_LINK_RLOCK(); 372e7c33e29SRobert Watson unp2 = unp->unp_conn; 373e7c33e29SRobert Watson if (unp2 != NULL && unp2->unp_addr != NULL) { 374e7c33e29SRobert Watson UNP_PCB_LOCK(unp2); 375e7c33e29SRobert Watson sa = (struct sockaddr *) unp2->unp_addr; 376e7c33e29SRobert Watson bcopy(sa, *nam, sa->sa_len); 377e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 378e7c33e29SRobert Watson } else { 3790d9ce3a1SRobert Watson sa = &sun_noname; 3800d9ce3a1SRobert Watson bcopy(sa, *nam, sa->sa_len); 381e7c33e29SRobert Watson } 3823dab55bcSRobert Watson UNP_LINK_RUNLOCK(); 383e5aeaa0cSDag-Erling Smørgrav return (0); 384a29f300eSGarrett Wollman } 385df8bae1dSRodney W. Grimes 386a29f300eSGarrett Wollman static int 387b40ce416SJulian Elischer uipc_attach(struct socket *so, int proto, struct thread *td) 388a29f300eSGarrett Wollman { 389e7c33e29SRobert Watson u_long sendspace, recvspace; 3906d32873cSRobert Watson struct unpcb *unp; 3913dab55bcSRobert Watson int error; 392df8bae1dSRodney W. Grimes 3936d32873cSRobert Watson KASSERT(so->so_pcb == NULL, ("uipc_attach: so_pcb != NULL")); 3946d32873cSRobert Watson if (so->so_snd.sb_hiwat == 0 || so->so_rcv.sb_hiwat == 0) { 3956d32873cSRobert Watson switch (so->so_type) { 3966d32873cSRobert Watson case SOCK_STREAM: 397e7c33e29SRobert Watson sendspace = unpst_sendspace; 398e7c33e29SRobert Watson recvspace = unpst_recvspace; 3996d32873cSRobert Watson break; 4006d32873cSRobert Watson 4016d32873cSRobert Watson case SOCK_DGRAM: 402e7c33e29SRobert Watson sendspace = unpdg_sendspace; 403e7c33e29SRobert Watson recvspace = unpdg_recvspace; 4046d32873cSRobert Watson break; 4056d32873cSRobert Watson 40684d61770SRobert Watson case SOCK_SEQPACKET: 40784d61770SRobert Watson sendspace = unpsp_sendspace; 40884d61770SRobert Watson recvspace = unpsp_recvspace; 40984d61770SRobert Watson break; 41084d61770SRobert Watson 4116d32873cSRobert Watson default: 412e7c33e29SRobert Watson panic("uipc_attach"); 4136d32873cSRobert Watson } 414e7c33e29SRobert Watson error = soreserve(so, sendspace, recvspace); 4156d32873cSRobert Watson if (error) 4166d32873cSRobert Watson return (error); 4176d32873cSRobert Watson } 41846a1d9bfSRobert Watson unp = uma_zalloc(unp_zone, M_NOWAIT | M_ZERO); 4196d32873cSRobert Watson if (unp == NULL) 4206d32873cSRobert Watson return (ENOBUFS); 4216d32873cSRobert Watson LIST_INIT(&unp->unp_refs); 422e7c33e29SRobert Watson UNP_PCB_LOCK_INIT(unp); 4236d32873cSRobert Watson unp->unp_socket = so; 4246d32873cSRobert Watson so->so_pcb = unp; 4259ae328fcSJohn Baldwin unp->unp_refcount = 1; 426e7c33e29SRobert Watson 4273dab55bcSRobert Watson UNP_LIST_LOCK(); 4286d32873cSRobert Watson unp->unp_gencnt = ++unp_gencnt; 4296d32873cSRobert Watson unp_count++; 43084d61770SRobert Watson switch (so->so_type) { 43184d61770SRobert Watson case SOCK_STREAM: 43284d61770SRobert Watson LIST_INSERT_HEAD(&unp_shead, unp, unp_link); 43384d61770SRobert Watson break; 43484d61770SRobert Watson 43584d61770SRobert Watson case SOCK_DGRAM: 43684d61770SRobert Watson LIST_INSERT_HEAD(&unp_dhead, unp, unp_link); 43784d61770SRobert Watson break; 43884d61770SRobert Watson 43984d61770SRobert Watson case SOCK_SEQPACKET: 44084d61770SRobert Watson LIST_INSERT_HEAD(&unp_sphead, unp, unp_link); 44184d61770SRobert Watson break; 44284d61770SRobert Watson 44384d61770SRobert Watson default: 44484d61770SRobert Watson panic("uipc_attach"); 44584d61770SRobert Watson } 4463dab55bcSRobert Watson UNP_LIST_UNLOCK(); 4476d32873cSRobert Watson 4486d32873cSRobert Watson return (0); 449a29f300eSGarrett Wollman } 450a29f300eSGarrett Wollman 451a29f300eSGarrett Wollman static int 452b40ce416SJulian Elischer uipc_bind(struct socket *so, struct sockaddr *nam, struct thread *td) 453a29f300eSGarrett Wollman { 454dd47f5caSRobert Watson struct sockaddr_un *soun = (struct sockaddr_un *)nam; 455dd47f5caSRobert Watson struct vattr vattr; 4569e289446SWojciech A. Koszek int error, namelen, vfslocked; 457dd47f5caSRobert Watson struct nameidata nd; 45840f2ac28SRobert Watson struct unpcb *unp; 459dd47f5caSRobert Watson struct vnode *vp; 460dd47f5caSRobert Watson struct mount *mp; 461dd47f5caSRobert Watson char *buf; 462a29f300eSGarrett Wollman 46340f2ac28SRobert Watson unp = sotounpcb(so); 4644d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_bind: unp == NULL")); 4654f1f0ef5SRobert Watson 466a06534c3SBjoern A. Zeeb if (soun->sun_len > sizeof(struct sockaddr_un)) 467a06534c3SBjoern A. Zeeb return (EINVAL); 4684f1f0ef5SRobert Watson namelen = soun->sun_len - offsetof(struct sockaddr_un, sun_path); 4694f1f0ef5SRobert Watson if (namelen <= 0) 4704f1f0ef5SRobert Watson return (EINVAL); 471dd47f5caSRobert Watson 472dd47f5caSRobert Watson /* 4734f1f0ef5SRobert Watson * We don't allow simultaneous bind() calls on a single UNIX domain 4744f1f0ef5SRobert Watson * socket, so flag in-progress operations, and return an error if an 4754f1f0ef5SRobert Watson * operation is already in progress. 4764f1f0ef5SRobert Watson * 4774f1f0ef5SRobert Watson * Historically, we have not allowed a socket to be rebound, so this 478d7924b70SRobert Watson * also returns an error. Not allowing re-binding simplifies the 479d7924b70SRobert Watson * implementation and avoids a great many possible failure modes. 480dd47f5caSRobert Watson */ 481e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 482dd47f5caSRobert Watson if (unp->unp_vnode != NULL) { 483e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 484dd47f5caSRobert Watson return (EINVAL); 485dd47f5caSRobert Watson } 4864f1f0ef5SRobert Watson if (unp->unp_flags & UNP_BINDING) { 487e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 4884f1f0ef5SRobert Watson return (EALREADY); 489dd47f5caSRobert Watson } 4904f1f0ef5SRobert Watson unp->unp_flags |= UNP_BINDING; 491e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 492dd47f5caSRobert Watson 493dd47f5caSRobert Watson buf = malloc(namelen + 1, M_TEMP, M_WAITOK); 4947928893dSEd Maste bcopy(soun->sun_path, buf, namelen); 4957928893dSEd Maste buf[namelen] = 0; 496dd47f5caSRobert Watson 497dd47f5caSRobert Watson restart: 4989e289446SWojciech A. Koszek vfslocked = 0; 4999e289446SWojciech A. Koszek NDINIT(&nd, CREATE, MPSAFE | NOFOLLOW | LOCKPARENT | SAVENAME, 5009e289446SWojciech A. Koszek UIO_SYSSPACE, buf, td); 501dd47f5caSRobert Watson /* SHOULD BE ABLE TO ADOPT EXISTING AND wakeup() ALA FIFO's */ 502dd47f5caSRobert Watson error = namei(&nd); 503dd47f5caSRobert Watson if (error) 5044f1f0ef5SRobert Watson goto error; 505dd47f5caSRobert Watson vp = nd.ni_vp; 5069e289446SWojciech A. Koszek vfslocked = NDHASGIANT(&nd); 507dd47f5caSRobert Watson if (vp != NULL || vn_start_write(nd.ni_dvp, &mp, V_NOWAIT) != 0) { 508dd47f5caSRobert Watson NDFREE(&nd, NDF_ONLY_PNBUF); 509dd47f5caSRobert Watson if (nd.ni_dvp == vp) 510dd47f5caSRobert Watson vrele(nd.ni_dvp); 511dd47f5caSRobert Watson else 512dd47f5caSRobert Watson vput(nd.ni_dvp); 513dd47f5caSRobert Watson if (vp != NULL) { 514dd47f5caSRobert Watson vrele(vp); 515dd47f5caSRobert Watson error = EADDRINUSE; 5164f1f0ef5SRobert Watson goto error; 517dd47f5caSRobert Watson } 518dd47f5caSRobert Watson error = vn_start_write(NULL, &mp, V_XSLEEP | PCATCH); 519dd47f5caSRobert Watson if (error) 5204f1f0ef5SRobert Watson goto error; 5219e289446SWojciech A. Koszek VFS_UNLOCK_GIANT(vfslocked); 522dd47f5caSRobert Watson goto restart; 523dd47f5caSRobert Watson } 524dd47f5caSRobert Watson VATTR_NULL(&vattr); 525dd47f5caSRobert Watson vattr.va_type = VSOCK; 526dd47f5caSRobert Watson vattr.va_mode = (ACCESSPERMS & ~td->td_proc->p_fd->fd_cmask); 527dd47f5caSRobert Watson #ifdef MAC 52830d239bcSRobert Watson error = mac_vnode_check_create(td->td_ucred, nd.ni_dvp, &nd.ni_cnd, 529dd47f5caSRobert Watson &vattr); 530dd47f5caSRobert Watson #endif 531885868cdSRobert Watson if (error == 0) 532dd47f5caSRobert Watson error = VOP_CREATE(nd.ni_dvp, &nd.ni_vp, &nd.ni_cnd, &vattr); 533dd47f5caSRobert Watson NDFREE(&nd, NDF_ONLY_PNBUF); 534dd47f5caSRobert Watson vput(nd.ni_dvp); 535dd47f5caSRobert Watson if (error) { 536dd47f5caSRobert Watson vn_finished_write(mp); 5374f1f0ef5SRobert Watson goto error; 538dd47f5caSRobert Watson } 539dd47f5caSRobert Watson vp = nd.ni_vp; 54057fd3d55SPawel Jakub Dawidek ASSERT_VOP_ELOCKED(vp, "uipc_bind"); 541dd47f5caSRobert Watson soun = (struct sockaddr_un *)sodupsockaddr(nam, M_WAITOK); 542e7c33e29SRobert Watson 5433dab55bcSRobert Watson UNP_LINK_WLOCK(); 544e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 545dd47f5caSRobert Watson vp->v_socket = unp->unp_socket; 546dd47f5caSRobert Watson unp->unp_vnode = vp; 547dd47f5caSRobert Watson unp->unp_addr = soun; 5484f1f0ef5SRobert Watson unp->unp_flags &= ~UNP_BINDING; 549e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 5503dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 55122db15c0SAttilio Rao VOP_UNLOCK(vp, 0); 552dd47f5caSRobert Watson vn_finished_write(mp); 5539e289446SWojciech A. Koszek VFS_UNLOCK_GIANT(vfslocked); 5544f1f0ef5SRobert Watson free(buf, M_TEMP); 5554f1f0ef5SRobert Watson return (0); 556e7c33e29SRobert Watson 5574f1f0ef5SRobert Watson error: 5589e289446SWojciech A. Koszek VFS_UNLOCK_GIANT(vfslocked); 559e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 5604f1f0ef5SRobert Watson unp->unp_flags &= ~UNP_BINDING; 561e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 562dd47f5caSRobert Watson free(buf, M_TEMP); 56340f2ac28SRobert Watson return (error); 564a29f300eSGarrett Wollman } 565a29f300eSGarrett Wollman 566a29f300eSGarrett Wollman static int 567b40ce416SJulian Elischer uipc_connect(struct socket *so, struct sockaddr *nam, struct thread *td) 568a29f300eSGarrett Wollman { 5690d9ce3a1SRobert Watson int error; 570a29f300eSGarrett Wollman 571fd179ee9SRobert Watson KASSERT(td == curthread, ("uipc_connect: td != curthread")); 5723dab55bcSRobert Watson UNP_LINK_WLOCK(); 573fd179ee9SRobert Watson error = unp_connect(so, nam, td); 5743dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 5750d9ce3a1SRobert Watson return (error); 576a29f300eSGarrett Wollman } 577a29f300eSGarrett Wollman 578a152f8a3SRobert Watson static void 579a152f8a3SRobert Watson uipc_close(struct socket *so) 580a152f8a3SRobert Watson { 581e7c33e29SRobert Watson struct unpcb *unp, *unp2; 582a152f8a3SRobert Watson 583a152f8a3SRobert Watson unp = sotounpcb(so); 584a152f8a3SRobert Watson KASSERT(unp != NULL, ("uipc_close: unp == NULL")); 585e7c33e29SRobert Watson 5863dab55bcSRobert Watson UNP_LINK_WLOCK(); 587e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 588e7c33e29SRobert Watson unp2 = unp->unp_conn; 589e7c33e29SRobert Watson if (unp2 != NULL) { 590e7c33e29SRobert Watson UNP_PCB_LOCK(unp2); 591e7c33e29SRobert Watson unp_disconnect(unp, unp2); 592e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 593e7c33e29SRobert Watson } 594e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 5953dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 596a152f8a3SRobert Watson } 597a152f8a3SRobert Watson 5982c899584SRobert Watson static int 599a29f300eSGarrett Wollman uipc_connect2(struct socket *so1, struct socket *so2) 600a29f300eSGarrett Wollman { 601e7c33e29SRobert Watson struct unpcb *unp, *unp2; 6020d9ce3a1SRobert Watson int error; 603a29f300eSGarrett Wollman 6043dab55bcSRobert Watson UNP_LINK_WLOCK(); 605e7c33e29SRobert Watson unp = so1->so_pcb; 6064d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_connect2: unp == NULL")); 607e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 608e7c33e29SRobert Watson unp2 = so2->so_pcb; 609e7c33e29SRobert Watson KASSERT(unp2 != NULL, ("uipc_connect2: unp2 == NULL")); 610e7c33e29SRobert Watson UNP_PCB_LOCK(unp2); 6116a2989fdSMatthew N. Dodd error = unp_connect2(so1, so2, PRU_CONNECT2); 612e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 613e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 6143dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 6150d9ce3a1SRobert Watson return (error); 616a29f300eSGarrett Wollman } 617a29f300eSGarrett Wollman 618bc725eafSRobert Watson static void 619a29f300eSGarrett Wollman uipc_detach(struct socket *so) 620a29f300eSGarrett Wollman { 621e7c33e29SRobert Watson struct unpcb *unp, *unp2; 6229ae328fcSJohn Baldwin struct sockaddr_un *saved_unp_addr; 6236d32873cSRobert Watson struct vnode *vp; 6249ae328fcSJohn Baldwin int freeunp, local_unp_rights; 625a29f300eSGarrett Wollman 62640f2ac28SRobert Watson unp = sotounpcb(so); 6274d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_detach: unp == NULL")); 628e7c33e29SRobert Watson 6293dab55bcSRobert Watson UNP_LINK_WLOCK(); 6303dab55bcSRobert Watson UNP_LIST_LOCK(); 631e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 6326d32873cSRobert Watson LIST_REMOVE(unp, unp_link); 6336d32873cSRobert Watson unp->unp_gencnt = ++unp_gencnt; 6346d32873cSRobert Watson --unp_count; 6353dab55bcSRobert Watson UNP_LIST_UNLOCK(); 636e7c33e29SRobert Watson 637e7c33e29SRobert Watson /* 638e7c33e29SRobert Watson * XXXRW: Should assert vp->v_socket == so. 639e7c33e29SRobert Watson */ 6406d32873cSRobert Watson if ((vp = unp->unp_vnode) != NULL) { 6416d32873cSRobert Watson unp->unp_vnode->v_socket = NULL; 6426d32873cSRobert Watson unp->unp_vnode = NULL; 6436d32873cSRobert Watson } 644e7c33e29SRobert Watson unp2 = unp->unp_conn; 645e7c33e29SRobert Watson if (unp2 != NULL) { 646e7c33e29SRobert Watson UNP_PCB_LOCK(unp2); 647e7c33e29SRobert Watson unp_disconnect(unp, unp2); 648e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 649e7c33e29SRobert Watson } 650e7c33e29SRobert Watson 651e7c33e29SRobert Watson /* 6523dab55bcSRobert Watson * We hold the linkage lock exclusively, so it's OK to acquire 65360a5ef26SRobert Watson * multiple pcb locks at a time. 654e7c33e29SRobert Watson */ 6556d32873cSRobert Watson while (!LIST_EMPTY(&unp->unp_refs)) { 6566d32873cSRobert Watson struct unpcb *ref = LIST_FIRST(&unp->unp_refs); 657e7c33e29SRobert Watson 658e7c33e29SRobert Watson UNP_PCB_LOCK(ref); 6596d32873cSRobert Watson unp_drop(ref, ECONNRESET); 660e7c33e29SRobert Watson UNP_PCB_UNLOCK(ref); 6616d32873cSRobert Watson } 662397c19d1SJeff Roberson local_unp_rights = unp_rights; 6633dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 6646d32873cSRobert Watson unp->unp_socket->so_pcb = NULL; 6659ae328fcSJohn Baldwin saved_unp_addr = unp->unp_addr; 6669ae328fcSJohn Baldwin unp->unp_addr = NULL; 6679ae328fcSJohn Baldwin unp->unp_refcount--; 6689ae328fcSJohn Baldwin freeunp = (unp->unp_refcount == 0); 6699ae328fcSJohn Baldwin if (saved_unp_addr != NULL) 6701ede983cSDag-Erling Smørgrav free(saved_unp_addr, M_SONAME); 671e7c33e29SRobert Watson if (freeunp) { 672e7c33e29SRobert Watson UNP_PCB_LOCK_DESTROY(unp); 6736d32873cSRobert Watson uma_zfree(unp_zone, unp); 6746e2faa24SRobert Watson } else 6756e2faa24SRobert Watson UNP_PCB_UNLOCK(unp); 6766d32873cSRobert Watson if (vp) { 6776d32873cSRobert Watson int vfslocked; 6786d32873cSRobert Watson 6796d32873cSRobert Watson vfslocked = VFS_LOCK_GIANT(vp->v_mount); 6806d32873cSRobert Watson vrele(vp); 6816d32873cSRobert Watson VFS_UNLOCK_GIANT(vfslocked); 6826d32873cSRobert Watson } 6836d32873cSRobert Watson if (local_unp_rights) 6846d32873cSRobert Watson taskqueue_enqueue(taskqueue_thread, &unp_gc_task); 685a29f300eSGarrett Wollman } 686a29f300eSGarrett Wollman 687a29f300eSGarrett Wollman static int 688a29f300eSGarrett Wollman uipc_disconnect(struct socket *so) 689a29f300eSGarrett Wollman { 690e7c33e29SRobert Watson struct unpcb *unp, *unp2; 691a29f300eSGarrett Wollman 69240f2ac28SRobert Watson unp = sotounpcb(so); 6934d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_disconnect: unp == NULL")); 694e7c33e29SRobert Watson 6953dab55bcSRobert Watson UNP_LINK_WLOCK(); 696e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 697e7c33e29SRobert Watson unp2 = unp->unp_conn; 698e7c33e29SRobert Watson if (unp2 != NULL) { 699e7c33e29SRobert Watson UNP_PCB_LOCK(unp2); 700e7c33e29SRobert Watson unp_disconnect(unp, unp2); 701e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 702e7c33e29SRobert Watson } 703e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 7043dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 705e5aeaa0cSDag-Erling Smørgrav return (0); 706a29f300eSGarrett Wollman } 707a29f300eSGarrett Wollman 708a29f300eSGarrett Wollman static int 709d374e81eSRobert Watson uipc_listen(struct socket *so, int backlog, struct thread *td) 710a29f300eSGarrett Wollman { 71140f2ac28SRobert Watson struct unpcb *unp; 7120d9ce3a1SRobert Watson int error; 713a29f300eSGarrett Wollman 71440f2ac28SRobert Watson unp = sotounpcb(so); 7154d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_listen: unp == NULL")); 716e7c33e29SRobert Watson 717e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 7184d4b555eSRobert Watson if (unp->unp_vnode == NULL) { 719e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 72040f2ac28SRobert Watson return (EINVAL); 72140f2ac28SRobert Watson } 722e7c33e29SRobert Watson 723e7c33e29SRobert Watson SOCK_LOCK(so); 724e7c33e29SRobert Watson error = solisten_proto_check(so); 725e7c33e29SRobert Watson if (error == 0) { 726e7c33e29SRobert Watson cru2x(td->td_ucred, &unp->unp_peercred); 727e7c33e29SRobert Watson unp->unp_flags |= UNP_HAVEPCCACHED; 728e7c33e29SRobert Watson solisten_proto(so, backlog); 729e7c33e29SRobert Watson } 730e7c33e29SRobert Watson SOCK_UNLOCK(so); 731e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 7320d9ce3a1SRobert Watson return (error); 733a29f300eSGarrett Wollman } 734a29f300eSGarrett Wollman 735a29f300eSGarrett Wollman static int 73657bf258eSGarrett Wollman uipc_peeraddr(struct socket *so, struct sockaddr **nam) 737a29f300eSGarrett Wollman { 738e7c33e29SRobert Watson struct unpcb *unp, *unp2; 7390d9ce3a1SRobert Watson const struct sockaddr *sa; 740a29f300eSGarrett Wollman 7414d4b555eSRobert Watson unp = sotounpcb(so); 7424d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_peeraddr: unp == NULL")); 743e7c33e29SRobert Watson 7440d9ce3a1SRobert Watson *nam = malloc(sizeof(struct sockaddr_un), M_SONAME, M_WAITOK); 745afd9f91cSJohn Baldwin UNP_LINK_RLOCK(); 746bdc5f6a3SHajimu UMEMOTO /* 747e7c33e29SRobert Watson * XXX: It seems that this test always fails even when connection is 748e7c33e29SRobert Watson * established. So, this else clause is added as workaround to 749e7c33e29SRobert Watson * return PF_LOCAL sockaddr. 750bdc5f6a3SHajimu UMEMOTO */ 751e7c33e29SRobert Watson unp2 = unp->unp_conn; 752e7c33e29SRobert Watson if (unp2 != NULL) { 753e7c33e29SRobert Watson UNP_PCB_LOCK(unp2); 754e7c33e29SRobert Watson if (unp2->unp_addr != NULL) 755afd9f91cSJohn Baldwin sa = (struct sockaddr *) unp2->unp_addr; 756e7c33e29SRobert Watson else 7570d9ce3a1SRobert Watson sa = &sun_noname; 7580d9ce3a1SRobert Watson bcopy(sa, *nam, sa->sa_len); 759e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 760e7c33e29SRobert Watson } else { 761e7c33e29SRobert Watson sa = &sun_noname; 762e7c33e29SRobert Watson bcopy(sa, *nam, sa->sa_len); 763e7c33e29SRobert Watson } 764afd9f91cSJohn Baldwin UNP_LINK_RUNLOCK(); 765e5aeaa0cSDag-Erling Smørgrav return (0); 766a29f300eSGarrett Wollman } 767a29f300eSGarrett Wollman 768a29f300eSGarrett Wollman static int 769a29f300eSGarrett Wollman uipc_rcvd(struct socket *so, int flags) 770a29f300eSGarrett Wollman { 771e7c33e29SRobert Watson struct unpcb *unp, *unp2; 772a29f300eSGarrett Wollman struct socket *so2; 773337cc6b6SRobert Watson u_int mbcnt, sbcc; 7746aef685fSBrian Feldman u_long newhiwat; 775a29f300eSGarrett Wollman 77640f2ac28SRobert Watson unp = sotounpcb(so); 7774d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_rcvd: unp == NULL")); 778df8bae1dSRodney W. Grimes 77984d61770SRobert Watson if (so->so_type != SOCK_STREAM && so->so_type != SOCK_SEQPACKET) 78084d61770SRobert Watson panic("uipc_rcvd socktype %d", so->so_type); 781e7c33e29SRobert Watson 782df8bae1dSRodney W. Grimes /* 783e7c33e29SRobert Watson * Adjust backpressure on sender and wakeup any waiting to write. 784e7c33e29SRobert Watson * 785d7924b70SRobert Watson * The unp lock is acquired to maintain the validity of the unp_conn 786d7924b70SRobert Watson * pointer; no lock on unp2 is required as unp2->unp_socket will be 787d7924b70SRobert Watson * static as long as we don't permit unp2 to disconnect from unp, 788d7924b70SRobert Watson * which is prevented by the lock on unp. We cache values from 789d7924b70SRobert Watson * so_rcv to avoid holding the so_rcv lock over the entire 790d7924b70SRobert Watson * transaction on the remote so_snd. 791df8bae1dSRodney W. Grimes */ 792337cc6b6SRobert Watson SOCKBUF_LOCK(&so->so_rcv); 793337cc6b6SRobert Watson mbcnt = so->so_rcv.sb_mbcnt; 794337cc6b6SRobert Watson sbcc = so->so_rcv.sb_cc; 795337cc6b6SRobert Watson SOCKBUF_UNLOCK(&so->so_rcv); 796e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 797e7c33e29SRobert Watson unp2 = unp->unp_conn; 798e7c33e29SRobert Watson if (unp2 == NULL) { 799e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 800e7c33e29SRobert Watson return (0); 801337cc6b6SRobert Watson } 802e7c33e29SRobert Watson so2 = unp2->unp_socket; 803337cc6b6SRobert Watson SOCKBUF_LOCK(&so2->so_snd); 804337cc6b6SRobert Watson so2->so_snd.sb_mbmax += unp->unp_mbcnt - mbcnt; 805337cc6b6SRobert Watson newhiwat = so2->so_snd.sb_hiwat + unp->unp_cc - sbcc; 806f535380cSDon Lewis (void)chgsbsize(so2->so_cred->cr_uidinfo, &so2->so_snd.sb_hiwat, 8076aef685fSBrian Feldman newhiwat, RLIM_INFINITY); 8081e4d7da7SRobert Watson sowwakeup_locked(so2); 809337cc6b6SRobert Watson unp->unp_mbcnt = mbcnt; 810337cc6b6SRobert Watson unp->unp_cc = sbcc; 811e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 812e5aeaa0cSDag-Erling Smørgrav return (0); 813a29f300eSGarrett Wollman } 814df8bae1dSRodney W. Grimes 815a29f300eSGarrett Wollman static int 81657bf258eSGarrett Wollman uipc_send(struct socket *so, int flags, struct mbuf *m, struct sockaddr *nam, 817b40ce416SJulian Elischer struct mbuf *control, struct thread *td) 818a29f300eSGarrett Wollman { 819f3f49bbbSRobert Watson struct unpcb *unp, *unp2; 820a29f300eSGarrett Wollman struct socket *so2; 821a9f3c7d2SRobert Watson u_int mbcnt_delta, sbcc; 822aab4f501SKonstantin Belousov u_int newhiwat; 823f3f49bbbSRobert Watson int error = 0; 824a29f300eSGarrett Wollman 82540f2ac28SRobert Watson unp = sotounpcb(so); 8264d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_send: unp == NULL")); 827e7c33e29SRobert Watson 828a29f300eSGarrett Wollman if (flags & PRUS_OOB) { 829a29f300eSGarrett Wollman error = EOPNOTSUPP; 830a29f300eSGarrett Wollman goto release; 831a29f300eSGarrett Wollman } 832fc3fcacfSRobert Watson if (control != NULL && (error = unp_internalize(&control, td))) 833a29f300eSGarrett Wollman goto release; 834e7c33e29SRobert Watson if ((nam != NULL) || (flags & PRUS_EOF)) 8353dab55bcSRobert Watson UNP_LINK_WLOCK(); 836e7c33e29SRobert Watson else 8373dab55bcSRobert Watson UNP_LINK_RLOCK(); 838a29f300eSGarrett Wollman switch (so->so_type) { 839a29f300eSGarrett Wollman case SOCK_DGRAM: 840a29f300eSGarrett Wollman { 841e7dd9a10SRobert Watson const struct sockaddr *from; 842df8bae1dSRodney W. Grimes 843e7c33e29SRobert Watson unp2 = unp->unp_conn; 844fc3fcacfSRobert Watson if (nam != NULL) { 8453dab55bcSRobert Watson UNP_LINK_WLOCK_ASSERT(); 846e7c33e29SRobert Watson if (unp2 != NULL) { 847df8bae1dSRodney W. Grimes error = EISCONN; 848df8bae1dSRodney W. Grimes break; 849df8bae1dSRodney W. Grimes } 850b40ce416SJulian Elischer error = unp_connect(so, nam, td); 851df8bae1dSRodney W. Grimes if (error) 852df8bae1dSRodney W. Grimes break; 853e7c33e29SRobert Watson unp2 = unp->unp_conn; 854df8bae1dSRodney W. Grimes } 85560a5ef26SRobert Watson 856b5ff0914SRobert Watson /* 857b5ff0914SRobert Watson * Because connect() and send() are non-atomic in a sendto() 858b5ff0914SRobert Watson * with a target address, it's possible that the socket will 859b5ff0914SRobert Watson * have disconnected before the send() can run. In that case 860b5ff0914SRobert Watson * return the slightly counter-intuitive but otherwise 861b5ff0914SRobert Watson * correct error that the socket is not connected. 862b5ff0914SRobert Watson */ 863b5ff0914SRobert Watson if (unp2 == NULL) { 864b5ff0914SRobert Watson error = ENOTCONN; 865b5ff0914SRobert Watson break; 866b5ff0914SRobert Watson } 867ede6e136SRobert Watson /* Lockless read. */ 868ede6e136SRobert Watson if (unp2->unp_flags & UNP_WANTCRED) 869ede6e136SRobert Watson control = unp_addsockcred(td, control); 870ede6e136SRobert Watson UNP_PCB_LOCK(unp); 871fc3fcacfSRobert Watson if (unp->unp_addr != NULL) 87257bf258eSGarrett Wollman from = (struct sockaddr *)unp->unp_addr; 873df8bae1dSRodney W. Grimes else 874df8bae1dSRodney W. Grimes from = &sun_noname; 875ede6e136SRobert Watson so2 = unp2->unp_socket; 876a34b7046SRobert Watson SOCKBUF_LOCK(&so2->so_rcv); 877a34b7046SRobert Watson if (sbappendaddr_locked(&so2->so_rcv, from, m, control)) { 8781e4d7da7SRobert Watson sorwakeup_locked(so2); 879fc3fcacfSRobert Watson m = NULL; 880fc3fcacfSRobert Watson control = NULL; 881e5aeaa0cSDag-Erling Smørgrav } else { 882a34b7046SRobert Watson SOCKBUF_UNLOCK(&so2->so_rcv); 883df8bae1dSRodney W. Grimes error = ENOBUFS; 884e5aeaa0cSDag-Erling Smørgrav } 885ede6e136SRobert Watson if (nam != NULL) { 8863dab55bcSRobert Watson UNP_LINK_WLOCK_ASSERT(); 887ede6e136SRobert Watson UNP_PCB_LOCK(unp2); 888e7c33e29SRobert Watson unp_disconnect(unp, unp2); 889e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 890ede6e136SRobert Watson } 891ede6e136SRobert Watson UNP_PCB_UNLOCK(unp); 892df8bae1dSRodney W. Grimes break; 893df8bae1dSRodney W. Grimes } 894df8bae1dSRodney W. Grimes 89584d61770SRobert Watson case SOCK_SEQPACKET: 896df8bae1dSRodney W. Grimes case SOCK_STREAM: 897402cc72dSDavid Greenman if ((so->so_state & SS_ISCONNECTED) == 0) { 898fc3fcacfSRobert Watson if (nam != NULL) { 8993dab55bcSRobert Watson UNP_LINK_WLOCK_ASSERT(); 900b40ce416SJulian Elischer error = unp_connect(so, nam, td); 901402cc72dSDavid Greenman if (error) 9026b8fda4dSGarrett Wollman break; /* XXX */ 903402cc72dSDavid Greenman } else { 904402cc72dSDavid Greenman error = ENOTCONN; 905402cc72dSDavid Greenman break; 906402cc72dSDavid Greenman } 907ede6e136SRobert Watson } 908402cc72dSDavid Greenman 909337cc6b6SRobert Watson /* Lockless read. */ 910c0b99ffaSRobert Watson if (so->so_snd.sb_state & SBS_CANTSENDMORE) { 911df8bae1dSRodney W. Grimes error = EPIPE; 912df8bae1dSRodney W. Grimes break; 913df8bae1dSRodney W. Grimes } 91460a5ef26SRobert Watson 915b5ff0914SRobert Watson /* 916b5ff0914SRobert Watson * Because connect() and send() are non-atomic in a sendto() 917b5ff0914SRobert Watson * with a target address, it's possible that the socket will 918b5ff0914SRobert Watson * have disconnected before the send() can run. In that case 919b5ff0914SRobert Watson * return the slightly counter-intuitive but otherwise 920b5ff0914SRobert Watson * correct error that the socket is not connected. 921e7c33e29SRobert Watson * 922afd9f91cSJohn Baldwin * Locking here must be done carefully: the linkage lock 923d7924b70SRobert Watson * prevents interconnections between unpcbs from changing, so 924d7924b70SRobert Watson * we can traverse from unp to unp2 without acquiring unp's 925d7924b70SRobert Watson * lock. Socket buffer locks follow unpcb locks, so we can 926d7924b70SRobert Watson * acquire both remote and lock socket buffer locks. 927b5ff0914SRobert Watson */ 928f3f49bbbSRobert Watson unp2 = unp->unp_conn; 929b5ff0914SRobert Watson if (unp2 == NULL) { 930b5ff0914SRobert Watson error = ENOTCONN; 931b5ff0914SRobert Watson break; 932b5ff0914SRobert Watson } 933f3f49bbbSRobert Watson so2 = unp2->unp_socket; 934ede6e136SRobert Watson UNP_PCB_LOCK(unp2); 935a34b7046SRobert Watson SOCKBUF_LOCK(&so2->so_rcv); 936f3f49bbbSRobert Watson if (unp2->unp_flags & UNP_WANTCRED) { 9376a2989fdSMatthew N. Dodd /* 938ede6e136SRobert Watson * Credentials are passed only once on SOCK_STREAM. 9396a2989fdSMatthew N. Dodd */ 940f3f49bbbSRobert Watson unp2->unp_flags &= ~UNP_WANTCRED; 9416a2989fdSMatthew N. Dodd control = unp_addsockcred(td, control); 9426a2989fdSMatthew N. Dodd } 943df8bae1dSRodney W. Grimes /* 9441c381b19SRobert Watson * Send to paired receive port, and then reduce send buffer 9451c381b19SRobert Watson * hiwater marks to maintain backpressure. Wake up readers. 946df8bae1dSRodney W. Grimes */ 94784d61770SRobert Watson switch (so->so_type) { 94884d61770SRobert Watson case SOCK_STREAM: 949fc3fcacfSRobert Watson if (control != NULL) { 95084d61770SRobert Watson if (sbappendcontrol_locked(&so2->so_rcv, m, 95184d61770SRobert Watson control)) 952fc3fcacfSRobert Watson control = NULL; 953e7c33e29SRobert Watson } else 954a34b7046SRobert Watson sbappend_locked(&so2->so_rcv, m); 95584d61770SRobert Watson break; 95684d61770SRobert Watson 95784d61770SRobert Watson case SOCK_SEQPACKET: { 95884d61770SRobert Watson const struct sockaddr *from; 95984d61770SRobert Watson 96084d61770SRobert Watson from = &sun_noname; 96184d61770SRobert Watson if (sbappendaddr_locked(&so2->so_rcv, from, m, 96284d61770SRobert Watson control)) 96384d61770SRobert Watson control = NULL; 96484d61770SRobert Watson break; 96584d61770SRobert Watson } 96684d61770SRobert Watson } 96784d61770SRobert Watson 96884d61770SRobert Watson /* 96984d61770SRobert Watson * XXXRW: While fine for SOCK_STREAM, this conflates maximum 97084d61770SRobert Watson * datagram size and back-pressure for SOCK_SEQPACKET, which 97184d61770SRobert Watson * can lead to undesired return of EMSGSIZE on send instead 97284d61770SRobert Watson * of more desirable blocking. 97384d61770SRobert Watson */ 974a9f3c7d2SRobert Watson mbcnt_delta = so2->so_rcv.sb_mbcnt - unp2->unp_mbcnt; 975f3f49bbbSRobert Watson unp2->unp_mbcnt = so2->so_rcv.sb_mbcnt; 976337cc6b6SRobert Watson sbcc = so2->so_rcv.sb_cc; 977337cc6b6SRobert Watson sorwakeup_locked(so2); 978337cc6b6SRobert Watson 979337cc6b6SRobert Watson SOCKBUF_LOCK(&so->so_snd); 980aab4f501SKonstantin Belousov if ((int)so->so_snd.sb_hiwat >= (int)(sbcc - unp2->unp_cc)) 981f3f49bbbSRobert Watson newhiwat = so->so_snd.sb_hiwat - (sbcc - unp2->unp_cc); 982aab4f501SKonstantin Belousov else 983aab4f501SKonstantin Belousov newhiwat = 0; 984f535380cSDon Lewis (void)chgsbsize(so->so_cred->cr_uidinfo, &so->so_snd.sb_hiwat, 9856aef685fSBrian Feldman newhiwat, RLIM_INFINITY); 986a9f3c7d2SRobert Watson so->so_snd.sb_mbmax -= mbcnt_delta; 9877abe2ac2SAlan Cox SOCKBUF_UNLOCK(&so->so_snd); 988f3f49bbbSRobert Watson unp2->unp_cc = sbcc; 989e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 990fc3fcacfSRobert Watson m = NULL; 991df8bae1dSRodney W. Grimes break; 992df8bae1dSRodney W. Grimes 993df8bae1dSRodney W. Grimes default: 994a29f300eSGarrett Wollman panic("uipc_send unknown socktype"); 995df8bae1dSRodney W. Grimes } 996a29f300eSGarrett Wollman 9976b8fda4dSGarrett Wollman /* 99860a5ef26SRobert Watson * PRUS_EOF is equivalent to pru_send followed by pru_shutdown. 9996b8fda4dSGarrett Wollman */ 1000a29f300eSGarrett Wollman if (flags & PRUS_EOF) { 1001ede6e136SRobert Watson UNP_PCB_LOCK(unp); 10026b8fda4dSGarrett Wollman socantsendmore(so); 10036b8fda4dSGarrett Wollman unp_shutdown(unp); 1004e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 1005ede6e136SRobert Watson } 1006e7c33e29SRobert Watson 1007e7c33e29SRobert Watson if ((nam != NULL) || (flags & PRUS_EOF)) 10083dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 1009e7c33e29SRobert Watson else 10103dab55bcSRobert Watson UNP_LINK_RUNLOCK(); 1011df8bae1dSRodney W. Grimes 1012fc3fcacfSRobert Watson if (control != NULL && error != 0) 1013bd508d39SDon Lewis unp_dispose(control); 1014bd508d39SDon Lewis 1015a29f300eSGarrett Wollman release: 1016fc3fcacfSRobert Watson if (control != NULL) 1017a29f300eSGarrett Wollman m_freem(control); 1018fc3fcacfSRobert Watson if (m != NULL) 1019a29f300eSGarrett Wollman m_freem(m); 1020e5aeaa0cSDag-Erling Smørgrav return (error); 1021a29f300eSGarrett Wollman } 1022df8bae1dSRodney W. Grimes 1023a29f300eSGarrett Wollman static int 1024a29f300eSGarrett Wollman uipc_sense(struct socket *so, struct stat *sb) 1025a29f300eSGarrett Wollman { 1026e7c33e29SRobert Watson struct unpcb *unp, *unp2; 1027a29f300eSGarrett Wollman struct socket *so2; 1028a29f300eSGarrett Wollman 102940f2ac28SRobert Watson unp = sotounpcb(so); 10304d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_sense: unp == NULL")); 1031e7c33e29SRobert Watson 1032a29f300eSGarrett Wollman sb->st_blksize = so->so_snd.sb_hiwat; 10333dab55bcSRobert Watson UNP_LINK_RLOCK(); 1034e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 1035e7c33e29SRobert Watson unp2 = unp->unp_conn; 103684d61770SRobert Watson if ((so->so_type == SOCK_STREAM || so->so_type == SOCK_SEQPACKET) && 103784d61770SRobert Watson unp2 != NULL) { 1038e7c33e29SRobert Watson so2 = unp2->unp_socket; 1039a29f300eSGarrett Wollman sb->st_blksize += so2->so_rcv.sb_cc; 1040df8bae1dSRodney W. Grimes } 1041f3732fd1SPoul-Henning Kamp sb->st_dev = NODEV; 1042df8bae1dSRodney W. Grimes if (unp->unp_ino == 0) 10436f782c46SJeffrey Hsu unp->unp_ino = (++unp_ino == 0) ? ++unp_ino : unp_ino; 1044a29f300eSGarrett Wollman sb->st_ino = unp->unp_ino; 1045e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 10463dab55bcSRobert Watson UNP_LINK_RUNLOCK(); 1047df8bae1dSRodney W. Grimes return (0); 1048a29f300eSGarrett Wollman } 1049df8bae1dSRodney W. Grimes 1050a29f300eSGarrett Wollman static int 1051a29f300eSGarrett Wollman uipc_shutdown(struct socket *so) 1052a29f300eSGarrett Wollman { 105340f2ac28SRobert Watson struct unpcb *unp; 1054df8bae1dSRodney W. Grimes 105540f2ac28SRobert Watson unp = sotounpcb(so); 10564d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_shutdown: unp == NULL")); 1057e7c33e29SRobert Watson 10583dab55bcSRobert Watson UNP_LINK_WLOCK(); 1059e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 1060a29f300eSGarrett Wollman socantsendmore(so); 1061a29f300eSGarrett Wollman unp_shutdown(unp); 1062e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 10633dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 1064e5aeaa0cSDag-Erling Smørgrav return (0); 1065a29f300eSGarrett Wollman } 1066df8bae1dSRodney W. Grimes 1067a29f300eSGarrett Wollman static int 106857bf258eSGarrett Wollman uipc_sockaddr(struct socket *so, struct sockaddr **nam) 1069a29f300eSGarrett Wollman { 107040f2ac28SRobert Watson struct unpcb *unp; 10710d9ce3a1SRobert Watson const struct sockaddr *sa; 1072a29f300eSGarrett Wollman 10734d4b555eSRobert Watson unp = sotounpcb(so); 10744d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_sockaddr: unp == NULL")); 1075e7c33e29SRobert Watson 10760d9ce3a1SRobert Watson *nam = malloc(sizeof(struct sockaddr_un), M_SONAME, M_WAITOK); 1077e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 1078fc3fcacfSRobert Watson if (unp->unp_addr != NULL) 10790d9ce3a1SRobert Watson sa = (struct sockaddr *) unp->unp_addr; 108083f3198bSThomas Moestl else 10810d9ce3a1SRobert Watson sa = &sun_noname; 10820d9ce3a1SRobert Watson bcopy(sa, *nam, sa->sa_len); 1083e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 1084e5aeaa0cSDag-Erling Smørgrav return (0); 1085df8bae1dSRodney W. Grimes } 1086a29f300eSGarrett Wollman 1087fa9402f2SRobert Watson static struct pr_usrreqs uipc_usrreqs_dgram = { 1088756d52a1SPoul-Henning Kamp .pru_abort = uipc_abort, 1089756d52a1SPoul-Henning Kamp .pru_accept = uipc_accept, 1090756d52a1SPoul-Henning Kamp .pru_attach = uipc_attach, 1091756d52a1SPoul-Henning Kamp .pru_bind = uipc_bind, 1092756d52a1SPoul-Henning Kamp .pru_connect = uipc_connect, 1093756d52a1SPoul-Henning Kamp .pru_connect2 = uipc_connect2, 1094756d52a1SPoul-Henning Kamp .pru_detach = uipc_detach, 1095756d52a1SPoul-Henning Kamp .pru_disconnect = uipc_disconnect, 1096756d52a1SPoul-Henning Kamp .pru_listen = uipc_listen, 1097756d52a1SPoul-Henning Kamp .pru_peeraddr = uipc_peeraddr, 1098756d52a1SPoul-Henning Kamp .pru_rcvd = uipc_rcvd, 1099756d52a1SPoul-Henning Kamp .pru_send = uipc_send, 1100756d52a1SPoul-Henning Kamp .pru_sense = uipc_sense, 1101756d52a1SPoul-Henning Kamp .pru_shutdown = uipc_shutdown, 1102756d52a1SPoul-Henning Kamp .pru_sockaddr = uipc_sockaddr, 1103fa9402f2SRobert Watson .pru_soreceive = soreceive_dgram, 1104fa9402f2SRobert Watson .pru_close = uipc_close, 1105fa9402f2SRobert Watson }; 1106fa9402f2SRobert Watson 110784d61770SRobert Watson static struct pr_usrreqs uipc_usrreqs_seqpacket = { 110884d61770SRobert Watson .pru_abort = uipc_abort, 110984d61770SRobert Watson .pru_accept = uipc_accept, 111084d61770SRobert Watson .pru_attach = uipc_attach, 111184d61770SRobert Watson .pru_bind = uipc_bind, 111284d61770SRobert Watson .pru_connect = uipc_connect, 111384d61770SRobert Watson .pru_connect2 = uipc_connect2, 111484d61770SRobert Watson .pru_detach = uipc_detach, 111584d61770SRobert Watson .pru_disconnect = uipc_disconnect, 111684d61770SRobert Watson .pru_listen = uipc_listen, 111784d61770SRobert Watson .pru_peeraddr = uipc_peeraddr, 111884d61770SRobert Watson .pru_rcvd = uipc_rcvd, 111984d61770SRobert Watson .pru_send = uipc_send, 112084d61770SRobert Watson .pru_sense = uipc_sense, 112184d61770SRobert Watson .pru_shutdown = uipc_shutdown, 112284d61770SRobert Watson .pru_sockaddr = uipc_sockaddr, 112384d61770SRobert Watson .pru_soreceive = soreceive_generic, /* XXX: or...? */ 112484d61770SRobert Watson .pru_close = uipc_close, 112584d61770SRobert Watson }; 112684d61770SRobert Watson 1127fa9402f2SRobert Watson static struct pr_usrreqs uipc_usrreqs_stream = { 1128fa9402f2SRobert Watson .pru_abort = uipc_abort, 1129fa9402f2SRobert Watson .pru_accept = uipc_accept, 1130fa9402f2SRobert Watson .pru_attach = uipc_attach, 1131fa9402f2SRobert Watson .pru_bind = uipc_bind, 1132fa9402f2SRobert Watson .pru_connect = uipc_connect, 1133fa9402f2SRobert Watson .pru_connect2 = uipc_connect2, 1134fa9402f2SRobert Watson .pru_detach = uipc_detach, 1135fa9402f2SRobert Watson .pru_disconnect = uipc_disconnect, 1136fa9402f2SRobert Watson .pru_listen = uipc_listen, 1137fa9402f2SRobert Watson .pru_peeraddr = uipc_peeraddr, 1138fa9402f2SRobert Watson .pru_rcvd = uipc_rcvd, 1139fa9402f2SRobert Watson .pru_send = uipc_send, 1140fa9402f2SRobert Watson .pru_sense = uipc_sense, 1141fa9402f2SRobert Watson .pru_shutdown = uipc_shutdown, 1142fa9402f2SRobert Watson .pru_sockaddr = uipc_sockaddr, 1143fa9402f2SRobert Watson .pru_soreceive = soreceive_generic, 1144a152f8a3SRobert Watson .pru_close = uipc_close, 1145a29f300eSGarrett Wollman }; 1146df8bae1dSRodney W. Grimes 11470b36cd25SRobert Watson static int 1148892af6b9SRobert Watson uipc_ctloutput(struct socket *so, struct sockopt *sopt) 11490c1bb4fbSDima Dorfman { 115040f2ac28SRobert Watson struct unpcb *unp; 11510d9ce3a1SRobert Watson struct xucred xu; 11526a2989fdSMatthew N. Dodd int error, optval; 11536a2989fdSMatthew N. Dodd 115496a041b5SMatthew N. Dodd if (sopt->sopt_level != 0) 115596a041b5SMatthew N. Dodd return (EINVAL); 115696a041b5SMatthew N. Dodd 11576a2989fdSMatthew N. Dodd unp = sotounpcb(so); 11584d4b555eSRobert Watson KASSERT(unp != NULL, ("uipc_ctloutput: unp == NULL")); 11596a2989fdSMatthew N. Dodd error = 0; 11600c1bb4fbSDima Dorfman switch (sopt->sopt_dir) { 11610c1bb4fbSDima Dorfman case SOPT_GET: 11620c1bb4fbSDima Dorfman switch (sopt->sopt_name) { 11630c1bb4fbSDima Dorfman case LOCAL_PEERCRED: 1164e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 11650c1bb4fbSDima Dorfman if (unp->unp_flags & UNP_HAVEPC) 11660d9ce3a1SRobert Watson xu = unp->unp_peercred; 11670c1bb4fbSDima Dorfman else { 11680c1bb4fbSDima Dorfman if (so->so_type == SOCK_STREAM) 11690c1bb4fbSDima Dorfman error = ENOTCONN; 11700c1bb4fbSDima Dorfman else 11710c1bb4fbSDima Dorfman error = EINVAL; 11720c1bb4fbSDima Dorfman } 1173e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 11740d9ce3a1SRobert Watson if (error == 0) 11750d9ce3a1SRobert Watson error = sooptcopyout(sopt, &xu, sizeof(xu)); 11760c1bb4fbSDima Dorfman break; 1177e7c33e29SRobert Watson 11786a2989fdSMatthew N. Dodd case LOCAL_CREDS: 1179a6357845SRobert Watson /* Unlocked read. */ 11806a2989fdSMatthew N. Dodd optval = unp->unp_flags & UNP_WANTCRED ? 1 : 0; 11816a2989fdSMatthew N. Dodd error = sooptcopyout(sopt, &optval, sizeof(optval)); 11826a2989fdSMatthew N. Dodd break; 1183e7c33e29SRobert Watson 11846a2989fdSMatthew N. Dodd case LOCAL_CONNWAIT: 1185a6357845SRobert Watson /* Unlocked read. */ 11866a2989fdSMatthew N. Dodd optval = unp->unp_flags & UNP_CONNWAIT ? 1 : 0; 11876a2989fdSMatthew N. Dodd error = sooptcopyout(sopt, &optval, sizeof(optval)); 11886a2989fdSMatthew N. Dodd break; 1189e7c33e29SRobert Watson 11900c1bb4fbSDima Dorfman default: 11910c1bb4fbSDima Dorfman error = EOPNOTSUPP; 11920c1bb4fbSDima Dorfman break; 11930c1bb4fbSDima Dorfman } 11940c1bb4fbSDima Dorfman break; 1195e7c33e29SRobert Watson 11960c1bb4fbSDima Dorfman case SOPT_SET: 11976a2989fdSMatthew N. Dodd switch (sopt->sopt_name) { 11986a2989fdSMatthew N. Dodd case LOCAL_CREDS: 11996a2989fdSMatthew N. Dodd case LOCAL_CONNWAIT: 12006a2989fdSMatthew N. Dodd error = sooptcopyin(sopt, &optval, sizeof(optval), 12016a2989fdSMatthew N. Dodd sizeof(optval)); 12026a2989fdSMatthew N. Dodd if (error) 12036a2989fdSMatthew N. Dodd break; 12046a2989fdSMatthew N. Dodd 1205e7c33e29SRobert Watson #define OPTSET(bit) do { \ 1206e7c33e29SRobert Watson UNP_PCB_LOCK(unp); \ 12076a2989fdSMatthew N. Dodd if (optval) \ 12086a2989fdSMatthew N. Dodd unp->unp_flags |= bit; \ 12096a2989fdSMatthew N. Dodd else \ 1210e7c33e29SRobert Watson unp->unp_flags &= ~bit; \ 1211e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); \ 1212e7c33e29SRobert Watson } while (0) 12136a2989fdSMatthew N. Dodd 12146a2989fdSMatthew N. Dodd switch (sopt->sopt_name) { 12156a2989fdSMatthew N. Dodd case LOCAL_CREDS: 12166a2989fdSMatthew N. Dodd OPTSET(UNP_WANTCRED); 12176a2989fdSMatthew N. Dodd break; 1218e7c33e29SRobert Watson 12196a2989fdSMatthew N. Dodd case LOCAL_CONNWAIT: 12206a2989fdSMatthew N. Dodd OPTSET(UNP_CONNWAIT); 12216a2989fdSMatthew N. Dodd break; 1222e7c33e29SRobert Watson 12236a2989fdSMatthew N. Dodd default: 12246a2989fdSMatthew N. Dodd break; 12256a2989fdSMatthew N. Dodd } 12266a2989fdSMatthew N. Dodd break; 12276a2989fdSMatthew N. Dodd #undef OPTSET 12286a2989fdSMatthew N. Dodd default: 12296a2989fdSMatthew N. Dodd error = ENOPROTOOPT; 12306a2989fdSMatthew N. Dodd break; 12316a2989fdSMatthew N. Dodd } 1232abb886faSMatthew N. Dodd break; 1233e7c33e29SRobert Watson 12340c1bb4fbSDima Dorfman default: 12350c1bb4fbSDima Dorfman error = EOPNOTSUPP; 12360c1bb4fbSDima Dorfman break; 12370c1bb4fbSDima Dorfman } 12380c1bb4fbSDima Dorfman return (error); 12390c1bb4fbSDima Dorfman } 12400c1bb4fbSDima Dorfman 1241f708ef1bSPoul-Henning Kamp static int 1242892af6b9SRobert Watson unp_connect(struct socket *so, struct sockaddr *nam, struct thread *td) 1243df8bae1dSRodney W. Grimes { 1244892af6b9SRobert Watson struct sockaddr_un *soun = (struct sockaddr_un *)nam; 1245892af6b9SRobert Watson struct vnode *vp; 1246892af6b9SRobert Watson struct socket *so2, *so3; 1247b295bdcdSRobert Watson struct unpcb *unp, *unp2, *unp3; 12489e289446SWojciech A. Koszek int error, len, vfslocked; 1249df8bae1dSRodney W. Grimes struct nameidata nd; 125057bf258eSGarrett Wollman char buf[SOCK_MAXADDRLEN]; 12510d9ce3a1SRobert Watson struct sockaddr *sa; 12520d9ce3a1SRobert Watson 12533dab55bcSRobert Watson UNP_LINK_WLOCK_ASSERT(); 1254df8bae1dSRodney W. Grimes 12554d4b555eSRobert Watson unp = sotounpcb(so); 12564d4b555eSRobert Watson KASSERT(unp != NULL, ("unp_connect: unp == NULL")); 1257e7c33e29SRobert Watson 1258a06534c3SBjoern A. Zeeb if (nam->sa_len > sizeof(struct sockaddr_un)) 1259a06534c3SBjoern A. Zeeb return (EINVAL); 126057bf258eSGarrett Wollman len = nam->sa_len - offsetof(struct sockaddr_un, sun_path); 126157bf258eSGarrett Wollman if (len <= 0) 1262e5aeaa0cSDag-Erling Smørgrav return (EINVAL); 12637928893dSEd Maste bcopy(soun->sun_path, buf, len); 12647928893dSEd Maste buf[len] = 0; 1265e7c33e29SRobert Watson 1266e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 12674f1f0ef5SRobert Watson if (unp->unp_flags & UNP_CONNECTING) { 1268e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 12694f1f0ef5SRobert Watson return (EALREADY); 12704f1f0ef5SRobert Watson } 12713dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 127205102f04SRobert Watson unp->unp_flags |= UNP_CONNECTING; 1273e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 1274e7c33e29SRobert Watson 12750d9ce3a1SRobert Watson sa = malloc(sizeof(struct sockaddr_un), M_SONAME, M_WAITOK); 1276a95852edSMikolaj Golub NDINIT(&nd, LOOKUP, MPSAFE | FOLLOW | LOCKSHARED | LOCKLEAF, 1277a95852edSMikolaj Golub UIO_SYSSPACE, buf, td); 1278797f2d22SPoul-Henning Kamp error = namei(&nd); 1279797f2d22SPoul-Henning Kamp if (error) 12800d9ce3a1SRobert Watson vp = NULL; 12810d9ce3a1SRobert Watson else 1282df8bae1dSRodney W. Grimes vp = nd.ni_vp; 12830d9ce3a1SRobert Watson ASSERT_VOP_LOCKED(vp, "unp_connect"); 12849e289446SWojciech A. Koszek vfslocked = NDHASGIANT(&nd); 1285762e6b85SEivind Eklund NDFREE(&nd, NDF_ONLY_PNBUF); 12860d9ce3a1SRobert Watson if (error) 12870d9ce3a1SRobert Watson goto bad; 12880d9ce3a1SRobert Watson 1289df8bae1dSRodney W. Grimes if (vp->v_type != VSOCK) { 1290df8bae1dSRodney W. Grimes error = ENOTSOCK; 1291df8bae1dSRodney W. Grimes goto bad; 1292df8bae1dSRodney W. Grimes } 12936fac927cSRobert Watson #ifdef MAC 129430d239bcSRobert Watson error = mac_vnode_check_open(td->td_ucred, vp, VWRITE | VREAD); 12956fac927cSRobert Watson if (error) 12966fac927cSRobert Watson goto bad; 12976fac927cSRobert Watson #endif 1298a854ed98SJohn Baldwin error = VOP_ACCESS(vp, VWRITE, td->td_ucred, td); 1299797f2d22SPoul-Henning Kamp if (error) 1300df8bae1dSRodney W. Grimes goto bad; 13019e289446SWojciech A. Koszek VFS_UNLOCK_GIANT(vfslocked); 1302e7c33e29SRobert Watson 1303b295bdcdSRobert Watson unp = sotounpcb(so); 13044d4b555eSRobert Watson KASSERT(unp != NULL, ("unp_connect: unp == NULL")); 1305e7c33e29SRobert Watson 1306e7c33e29SRobert Watson /* 13073dab55bcSRobert Watson * Lock linkage lock for two reasons: make sure v_socket is stable, 1308e7c33e29SRobert Watson * and to protect simultaneous locking of multiple pcbs. 1309e7c33e29SRobert Watson */ 13103dab55bcSRobert Watson UNP_LINK_WLOCK(); 1311df8bae1dSRodney W. Grimes so2 = vp->v_socket; 1312fc3fcacfSRobert Watson if (so2 == NULL) { 1313df8bae1dSRodney W. Grimes error = ECONNREFUSED; 13142260c03dSRobert Watson goto bad2; 1315df8bae1dSRodney W. Grimes } 1316df8bae1dSRodney W. Grimes if (so->so_type != so2->so_type) { 1317df8bae1dSRodney W. Grimes error = EPROTOTYPE; 13182260c03dSRobert Watson goto bad2; 1319df8bae1dSRodney W. Grimes } 1320df8bae1dSRodney W. Grimes if (so->so_proto->pr_flags & PR_CONNREQUIRED) { 1321e7c33e29SRobert Watson if (so2->so_options & SO_ACCEPTCONN) { 13221fb51a12SBjoern A. Zeeb CURVNET_SET(so2->so_vnet); 13230d9ce3a1SRobert Watson so3 = sonewconn(so2, 0); 13241fb51a12SBjoern A. Zeeb CURVNET_RESTORE(); 1325e7c33e29SRobert Watson } else 13260d9ce3a1SRobert Watson so3 = NULL; 13270d9ce3a1SRobert Watson if (so3 == NULL) { 1328df8bae1dSRodney W. Grimes error = ECONNREFUSED; 13290d9ce3a1SRobert Watson goto bad2; 1330df8bae1dSRodney W. Grimes } 13310c1bb4fbSDima Dorfman unp = sotounpcb(so); 1332df8bae1dSRodney W. Grimes unp2 = sotounpcb(so2); 1333df8bae1dSRodney W. Grimes unp3 = sotounpcb(so3); 1334e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 1335e7c33e29SRobert Watson UNP_PCB_LOCK(unp2); 1336e7c33e29SRobert Watson UNP_PCB_LOCK(unp3); 13370d9ce3a1SRobert Watson if (unp2->unp_addr != NULL) { 13380d9ce3a1SRobert Watson bcopy(unp2->unp_addr, sa, unp2->unp_addr->sun_len); 13390d9ce3a1SRobert Watson unp3->unp_addr = (struct sockaddr_un *) sa; 13400d9ce3a1SRobert Watson sa = NULL; 13410d9ce3a1SRobert Watson } 1342b523ec24SRobert Watson 13430c1bb4fbSDima Dorfman /* 13441c381b19SRobert Watson * The connecter's (client's) credentials are copied from its 13451c381b19SRobert Watson * process structure at the time of connect() (which is now). 13460c1bb4fbSDima Dorfman */ 1347a854ed98SJohn Baldwin cru2x(td->td_ucred, &unp3->unp_peercred); 13480c1bb4fbSDima Dorfman unp3->unp_flags |= UNP_HAVEPC; 1349b523ec24SRobert Watson 13500c1bb4fbSDima Dorfman /* 13511c381b19SRobert Watson * The receiver's (server's) credentials are copied from the 13521c381b19SRobert Watson * unp_peercred member of socket on which the former called 1353e7c33e29SRobert Watson * listen(); uipc_listen() cached that process's credentials 13541c381b19SRobert Watson * at that time so we can use them now. 13550c1bb4fbSDima Dorfman */ 13560c1bb4fbSDima Dorfman KASSERT(unp2->unp_flags & UNP_HAVEPCCACHED, 13570c1bb4fbSDima Dorfman ("unp_connect: listener without cached peercred")); 13580c1bb4fbSDima Dorfman memcpy(&unp->unp_peercred, &unp2->unp_peercred, 13590c1bb4fbSDima Dorfman sizeof(unp->unp_peercred)); 13600c1bb4fbSDima Dorfman unp->unp_flags |= UNP_HAVEPC; 1361481f8fe8SMaxim Konovalov if (unp2->unp_flags & UNP_WANTCRED) 1362481f8fe8SMaxim Konovalov unp3->unp_flags |= UNP_WANTCRED; 1363e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp3); 1364e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 1365e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 1366335654d7SRobert Watson #ifdef MAC 136730d239bcSRobert Watson mac_socketpeer_set_from_socket(so, so3); 136830d239bcSRobert Watson mac_socketpeer_set_from_socket(so3, so); 1369335654d7SRobert Watson #endif 13700c1bb4fbSDima Dorfman 1371df8bae1dSRodney W. Grimes so2 = so3; 1372df8bae1dSRodney W. Grimes } 1373e7c33e29SRobert Watson unp = sotounpcb(so); 1374e7c33e29SRobert Watson KASSERT(unp != NULL, ("unp_connect: unp == NULL")); 1375e7c33e29SRobert Watson unp2 = sotounpcb(so2); 1376e7c33e29SRobert Watson KASSERT(unp2 != NULL, ("unp_connect: unp2 == NULL")); 1377e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 1378e7c33e29SRobert Watson UNP_PCB_LOCK(unp2); 13796a2989fdSMatthew N. Dodd error = unp_connect2(so, so2, PRU_CONNECT); 1380e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 1381e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 13820d9ce3a1SRobert Watson bad2: 13833dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 13849e289446SWojciech A. Koszek if (vfslocked) 13859e289446SWojciech A. Koszek /* 13869e289446SWojciech A. Koszek * Giant has been previously acquired. This means filesystem 13879e289446SWojciech A. Koszek * isn't MPSAFE. Do it once again. 13889e289446SWojciech A. Koszek */ 13890d9ce3a1SRobert Watson mtx_lock(&Giant); 1390df8bae1dSRodney W. Grimes bad: 13910d9ce3a1SRobert Watson if (vp != NULL) 1392df8bae1dSRodney W. Grimes vput(vp); 13939e289446SWojciech A. Koszek VFS_UNLOCK_GIANT(vfslocked); 13940d9ce3a1SRobert Watson free(sa, M_SONAME); 13953dab55bcSRobert Watson UNP_LINK_WLOCK(); 1396e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 13974f1f0ef5SRobert Watson unp->unp_flags &= ~UNP_CONNECTING; 1398e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 1399df8bae1dSRodney W. Grimes return (error); 1400df8bae1dSRodney W. Grimes } 1401df8bae1dSRodney W. Grimes 1402db48c0d2SRobert Watson static int 14036a2989fdSMatthew N. Dodd unp_connect2(struct socket *so, struct socket *so2, int req) 1404df8bae1dSRodney W. Grimes { 1405e7c33e29SRobert Watson struct unpcb *unp; 1406892af6b9SRobert Watson struct unpcb *unp2; 1407df8bae1dSRodney W. Grimes 1408e7c33e29SRobert Watson unp = sotounpcb(so); 1409e7c33e29SRobert Watson KASSERT(unp != NULL, ("unp_connect2: unp == NULL")); 1410e7c33e29SRobert Watson unp2 = sotounpcb(so2); 1411e7c33e29SRobert Watson KASSERT(unp2 != NULL, ("unp_connect2: unp2 == NULL")); 1412e7c33e29SRobert Watson 14133dab55bcSRobert Watson UNP_LINK_WLOCK_ASSERT(); 1414e7c33e29SRobert Watson UNP_PCB_LOCK_ASSERT(unp); 1415e7c33e29SRobert Watson UNP_PCB_LOCK_ASSERT(unp2); 14160d9ce3a1SRobert Watson 1417df8bae1dSRodney W. Grimes if (so2->so_type != so->so_type) 1418df8bae1dSRodney W. Grimes return (EPROTOTYPE); 1419df8bae1dSRodney W. Grimes unp->unp_conn = unp2; 1420e7c33e29SRobert Watson 1421df8bae1dSRodney W. Grimes switch (so->so_type) { 1422df8bae1dSRodney W. Grimes case SOCK_DGRAM: 142398271db4SGarrett Wollman LIST_INSERT_HEAD(&unp2->unp_refs, unp, unp_reflink); 1424df8bae1dSRodney W. Grimes soisconnected(so); 1425df8bae1dSRodney W. Grimes break; 1426df8bae1dSRodney W. Grimes 1427df8bae1dSRodney W. Grimes case SOCK_STREAM: 142884d61770SRobert Watson case SOCK_SEQPACKET: 1429df8bae1dSRodney W. Grimes unp2->unp_conn = unp; 14306a2989fdSMatthew N. Dodd if (req == PRU_CONNECT && 14316a2989fdSMatthew N. Dodd ((unp->unp_flags | unp2->unp_flags) & UNP_CONNWAIT)) 14326a2989fdSMatthew N. Dodd soisconnecting(so); 14336a2989fdSMatthew N. Dodd else 1434df8bae1dSRodney W. Grimes soisconnected(so); 1435df8bae1dSRodney W. Grimes soisconnected(so2); 1436df8bae1dSRodney W. Grimes break; 1437df8bae1dSRodney W. Grimes 1438df8bae1dSRodney W. Grimes default: 1439df8bae1dSRodney W. Grimes panic("unp_connect2"); 1440df8bae1dSRodney W. Grimes } 1441df8bae1dSRodney W. Grimes return (0); 1442df8bae1dSRodney W. Grimes } 1443df8bae1dSRodney W. Grimes 1444f708ef1bSPoul-Henning Kamp static void 1445e7c33e29SRobert Watson unp_disconnect(struct unpcb *unp, struct unpcb *unp2) 1446df8bae1dSRodney W. Grimes { 14471b2e3b4bSRobert Watson struct socket *so; 1448df8bae1dSRodney W. Grimes 1449e7c33e29SRobert Watson KASSERT(unp2 != NULL, ("unp_disconnect: unp2 == NULL")); 14500d9ce3a1SRobert Watson 14513dab55bcSRobert Watson UNP_LINK_WLOCK_ASSERT(); 1452e7c33e29SRobert Watson UNP_PCB_LOCK_ASSERT(unp); 1453e7c33e29SRobert Watson UNP_PCB_LOCK_ASSERT(unp2); 1454e7c33e29SRobert Watson 1455fc3fcacfSRobert Watson unp->unp_conn = NULL; 1456df8bae1dSRodney W. Grimes switch (unp->unp_socket->so_type) { 1457df8bae1dSRodney W. Grimes case SOCK_DGRAM: 145898271db4SGarrett Wollman LIST_REMOVE(unp, unp_reflink); 14591b2e3b4bSRobert Watson so = unp->unp_socket; 14601b2e3b4bSRobert Watson SOCK_LOCK(so); 14611b2e3b4bSRobert Watson so->so_state &= ~SS_ISCONNECTED; 14621b2e3b4bSRobert Watson SOCK_UNLOCK(so); 1463df8bae1dSRodney W. Grimes break; 1464df8bae1dSRodney W. Grimes 1465df8bae1dSRodney W. Grimes case SOCK_STREAM: 146684d61770SRobert Watson case SOCK_SEQPACKET: 1467df8bae1dSRodney W. Grimes soisdisconnected(unp->unp_socket); 1468fc3fcacfSRobert Watson unp2->unp_conn = NULL; 1469df8bae1dSRodney W. Grimes soisdisconnected(unp2->unp_socket); 1470df8bae1dSRodney W. Grimes break; 1471df8bae1dSRodney W. Grimes } 1472df8bae1dSRodney W. Grimes } 1473df8bae1dSRodney W. Grimes 14740d9ce3a1SRobert Watson /* 1475d7924b70SRobert Watson * unp_pcblist() walks the global list of struct unpcb's to generate a 1476d7924b70SRobert Watson * pointer list, bumping the refcount on each unpcb. It then copies them out 1477d7924b70SRobert Watson * sequentially, validating the generation number on each to see if it has 1478d7924b70SRobert Watson * been detached. All of this is necessary because copyout() may sleep on 1479d7924b70SRobert Watson * disk I/O. 14800d9ce3a1SRobert Watson */ 148198271db4SGarrett Wollman static int 148282d9ae4eSPoul-Henning Kamp unp_pcblist(SYSCTL_HANDLER_ARGS) 148398271db4SGarrett Wollman { 1484f5ef029eSPoul-Henning Kamp int error, i, n; 14859ae328fcSJohn Baldwin int freeunp; 148698271db4SGarrett Wollman struct unpcb *unp, **unp_list; 148798271db4SGarrett Wollman unp_gen_t gencnt; 14888f364875SJulian Elischer struct xunpgen *xug; 148998271db4SGarrett Wollman struct unp_head *head; 14908f364875SJulian Elischer struct xunpcb *xu; 149198271db4SGarrett Wollman 149284d61770SRobert Watson switch ((intptr_t)arg1) { 149384d61770SRobert Watson case SOCK_STREAM: 149484d61770SRobert Watson head = &unp_shead; 149584d61770SRobert Watson break; 149684d61770SRobert Watson 149784d61770SRobert Watson case SOCK_DGRAM: 149884d61770SRobert Watson head = &unp_dhead; 149984d61770SRobert Watson break; 150084d61770SRobert Watson 150184d61770SRobert Watson case SOCK_SEQPACKET: 150284d61770SRobert Watson head = &unp_sphead; 150384d61770SRobert Watson break; 150484d61770SRobert Watson 150584d61770SRobert Watson default: 1506604f19c9SRobert Watson panic("unp_pcblist: arg1 %d", (int)(intptr_t)arg1); 150784d61770SRobert Watson } 150898271db4SGarrett Wollman 150998271db4SGarrett Wollman /* 151098271db4SGarrett Wollman * The process of preparing the PCB list is too time-consuming and 151198271db4SGarrett Wollman * resource-intensive to repeat twice on every request. 151298271db4SGarrett Wollman */ 1513fc3fcacfSRobert Watson if (req->oldptr == NULL) { 151498271db4SGarrett Wollman n = unp_count; 15158f364875SJulian Elischer req->oldidx = 2 * (sizeof *xug) 151698271db4SGarrett Wollman + (n + n/8) * sizeof(struct xunpcb); 1517e5aeaa0cSDag-Erling Smørgrav return (0); 151898271db4SGarrett Wollman } 151998271db4SGarrett Wollman 1520fc3fcacfSRobert Watson if (req->newptr != NULL) 1521e5aeaa0cSDag-Erling Smørgrav return (EPERM); 152298271db4SGarrett Wollman 152398271db4SGarrett Wollman /* 152498271db4SGarrett Wollman * OK, now we're committed to doing something. 152598271db4SGarrett Wollman */ 1526a163d034SWarner Losh xug = malloc(sizeof(*xug), M_TEMP, M_WAITOK); 15273dab55bcSRobert Watson UNP_LIST_LOCK(); 152898271db4SGarrett Wollman gencnt = unp_gencnt; 152998271db4SGarrett Wollman n = unp_count; 15303dab55bcSRobert Watson UNP_LIST_UNLOCK(); 153198271db4SGarrett Wollman 15328f364875SJulian Elischer xug->xug_len = sizeof *xug; 15338f364875SJulian Elischer xug->xug_count = n; 15348f364875SJulian Elischer xug->xug_gen = gencnt; 15358f364875SJulian Elischer xug->xug_sogen = so_gencnt; 15368f364875SJulian Elischer error = SYSCTL_OUT(req, xug, sizeof *xug); 15378f364875SJulian Elischer if (error) { 15388f364875SJulian Elischer free(xug, M_TEMP); 1539e5aeaa0cSDag-Erling Smørgrav return (error); 15408f364875SJulian Elischer } 154198271db4SGarrett Wollman 1542a163d034SWarner Losh unp_list = malloc(n * sizeof *unp_list, M_TEMP, M_WAITOK); 154398271db4SGarrett Wollman 15443dab55bcSRobert Watson UNP_LIST_LOCK(); 15452e3c8fcbSPoul-Henning Kamp for (unp = LIST_FIRST(head), i = 0; unp && i < n; 15462e3c8fcbSPoul-Henning Kamp unp = LIST_NEXT(unp, unp_link)) { 1547e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 15488a7d8cc6SRobert Watson if (unp->unp_gencnt <= gencnt) { 1549a854ed98SJohn Baldwin if (cr_cansee(req->td->td_ucred, 1550e7c33e29SRobert Watson unp->unp_socket->so_cred)) { 1551e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 15524787fd37SPaul Saab continue; 1553e7c33e29SRobert Watson } 155498271db4SGarrett Wollman unp_list[i++] = unp; 15559ae328fcSJohn Baldwin unp->unp_refcount++; 155698271db4SGarrett Wollman } 1557e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 15584787fd37SPaul Saab } 15593dab55bcSRobert Watson UNP_LIST_UNLOCK(); 15601c381b19SRobert Watson n = i; /* In case we lost some during malloc. */ 156198271db4SGarrett Wollman 156298271db4SGarrett Wollman error = 0; 1563fe2eee82SColin Percival xu = malloc(sizeof(*xu), M_TEMP, M_WAITOK | M_ZERO); 156498271db4SGarrett Wollman for (i = 0; i < n; i++) { 156598271db4SGarrett Wollman unp = unp_list[i]; 1566e7c33e29SRobert Watson UNP_PCB_LOCK(unp); 15679ae328fcSJohn Baldwin unp->unp_refcount--; 15689ae328fcSJohn Baldwin if (unp->unp_refcount != 0 && unp->unp_gencnt <= gencnt) { 15698f364875SJulian Elischer xu->xu_len = sizeof *xu; 15708f364875SJulian Elischer xu->xu_unpp = unp; 157198271db4SGarrett Wollman /* 157298271db4SGarrett Wollman * XXX - need more locking here to protect against 157398271db4SGarrett Wollman * connect/disconnect races for SMP. 157498271db4SGarrett Wollman */ 1575fc3fcacfSRobert Watson if (unp->unp_addr != NULL) 15768f364875SJulian Elischer bcopy(unp->unp_addr, &xu->xu_addr, 157798271db4SGarrett Wollman unp->unp_addr->sun_len); 1578fc3fcacfSRobert Watson if (unp->unp_conn != NULL && 1579fc3fcacfSRobert Watson unp->unp_conn->unp_addr != NULL) 158098271db4SGarrett Wollman bcopy(unp->unp_conn->unp_addr, 15818f364875SJulian Elischer &xu->xu_caddr, 158298271db4SGarrett Wollman unp->unp_conn->unp_addr->sun_len); 15838f364875SJulian Elischer bcopy(unp, &xu->xu_unp, sizeof *unp); 15848f364875SJulian Elischer sotoxsocket(unp->unp_socket, &xu->xu_socket); 1585e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 15868f364875SJulian Elischer error = SYSCTL_OUT(req, xu, sizeof *xu); 15879ae328fcSJohn Baldwin } else { 15889ae328fcSJohn Baldwin freeunp = (unp->unp_refcount == 0); 1589e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp); 1590e7c33e29SRobert Watson if (freeunp) { 1591e7c33e29SRobert Watson UNP_PCB_LOCK_DESTROY(unp); 15929ae328fcSJohn Baldwin uma_zfree(unp_zone, unp); 159398271db4SGarrett Wollman } 159498271db4SGarrett Wollman } 1595e7c33e29SRobert Watson } 15968f364875SJulian Elischer free(xu, M_TEMP); 159798271db4SGarrett Wollman if (!error) { 159898271db4SGarrett Wollman /* 15991c381b19SRobert Watson * Give the user an updated idea of our state. If the 16001c381b19SRobert Watson * generation differs from what we told her before, she knows 16011c381b19SRobert Watson * that something happened while we were processing this 16021c381b19SRobert Watson * request, and it might be necessary to retry. 160398271db4SGarrett Wollman */ 16048f364875SJulian Elischer xug->xug_gen = unp_gencnt; 16058f364875SJulian Elischer xug->xug_sogen = so_gencnt; 16068f364875SJulian Elischer xug->xug_count = unp_count; 16078f364875SJulian Elischer error = SYSCTL_OUT(req, xug, sizeof *xug); 160898271db4SGarrett Wollman } 160998271db4SGarrett Wollman free(unp_list, M_TEMP); 16108f364875SJulian Elischer free(xug, M_TEMP); 1611e5aeaa0cSDag-Erling Smørgrav return (error); 161298271db4SGarrett Wollman } 161398271db4SGarrett Wollman 16142fee06f0SMatthew D Fleming SYSCTL_PROC(_net_local_dgram, OID_AUTO, pcblist, CTLTYPE_OPAQUE | CTLFLAG_RD, 16152fee06f0SMatthew D Fleming (void *)(intptr_t)SOCK_DGRAM, 0, unp_pcblist, "S,xunpcb", 161698271db4SGarrett Wollman "List of active local datagram sockets"); 16172fee06f0SMatthew D Fleming SYSCTL_PROC(_net_local_stream, OID_AUTO, pcblist, CTLTYPE_OPAQUE | CTLFLAG_RD, 16182fee06f0SMatthew D Fleming (void *)(intptr_t)SOCK_STREAM, 0, unp_pcblist, "S,xunpcb", 161998271db4SGarrett Wollman "List of active local stream sockets"); 16202fee06f0SMatthew D Fleming SYSCTL_PROC(_net_local_seqpacket, OID_AUTO, pcblist, 16212fee06f0SMatthew D Fleming CTLTYPE_OPAQUE | CTLFLAG_RD, 16222fee06f0SMatthew D Fleming (void *)(intptr_t)SOCK_SEQPACKET, 0, unp_pcblist, "S,xunpcb", 162384d61770SRobert Watson "List of active local seqpacket sockets"); 162498271db4SGarrett Wollman 1625f708ef1bSPoul-Henning Kamp static void 1626892af6b9SRobert Watson unp_shutdown(struct unpcb *unp) 1627df8bae1dSRodney W. Grimes { 1628e7c33e29SRobert Watson struct unpcb *unp2; 1629df8bae1dSRodney W. Grimes struct socket *so; 1630df8bae1dSRodney W. Grimes 16313dab55bcSRobert Watson UNP_LINK_WLOCK_ASSERT(); 1632e7c33e29SRobert Watson UNP_PCB_LOCK_ASSERT(unp); 16330d9ce3a1SRobert Watson 1634e7c33e29SRobert Watson unp2 = unp->unp_conn; 163584d61770SRobert Watson if ((unp->unp_socket->so_type == SOCK_STREAM || 163684d61770SRobert Watson (unp->unp_socket->so_type == SOCK_SEQPACKET)) && unp2 != NULL) { 1637e7c33e29SRobert Watson so = unp2->unp_socket; 1638e7c33e29SRobert Watson if (so != NULL) 1639df8bae1dSRodney W. Grimes socantrcvmore(so); 1640df8bae1dSRodney W. Grimes } 1641e7c33e29SRobert Watson } 1642df8bae1dSRodney W. Grimes 1643f708ef1bSPoul-Henning Kamp static void 1644892af6b9SRobert Watson unp_drop(struct unpcb *unp, int errno) 1645df8bae1dSRodney W. Grimes { 1646df8bae1dSRodney W. Grimes struct socket *so = unp->unp_socket; 1647e7c33e29SRobert Watson struct unpcb *unp2; 1648df8bae1dSRodney W. Grimes 16493dab55bcSRobert Watson UNP_LINK_WLOCK_ASSERT(); 1650e7c33e29SRobert Watson UNP_PCB_LOCK_ASSERT(unp); 16510d9ce3a1SRobert Watson 1652df8bae1dSRodney W. Grimes so->so_error = errno; 1653e7c33e29SRobert Watson unp2 = unp->unp_conn; 1654e7c33e29SRobert Watson if (unp2 == NULL) 1655e7c33e29SRobert Watson return; 1656e7c33e29SRobert Watson UNP_PCB_LOCK(unp2); 1657e7c33e29SRobert Watson unp_disconnect(unp, unp2); 1658e7c33e29SRobert Watson UNP_PCB_UNLOCK(unp2); 1659df8bae1dSRodney W. Grimes } 1660df8bae1dSRodney W. Grimes 16612bc21ed9SDavid Malone static void 1662892af6b9SRobert Watson unp_freerights(struct file **rp, int fdcount) 1663df8bae1dSRodney W. Grimes { 16642bc21ed9SDavid Malone int i; 16652bc21ed9SDavid Malone struct file *fp; 1666df8bae1dSRodney W. Grimes 16672bc21ed9SDavid Malone for (i = 0; i < fdcount; i++) { 1668e7c33e29SRobert Watson fp = *rp; 1669e7c33e29SRobert Watson *rp++ = NULL; 16708692c025SYoshinobu Inoue unp_discard(fp); 1671df8bae1dSRodney W. Grimes } 16722bc21ed9SDavid Malone } 16732bc21ed9SDavid Malone 16740b36cd25SRobert Watson static int 1675892af6b9SRobert Watson unp_externalize(struct mbuf *control, struct mbuf **controlp) 16762bc21ed9SDavid Malone { 16772bc21ed9SDavid Malone struct thread *td = curthread; /* XXX */ 16782bc21ed9SDavid Malone struct cmsghdr *cm = mtod(control, struct cmsghdr *); 16792bc21ed9SDavid Malone int i; 16802bc21ed9SDavid Malone int *fdp; 16812bc21ed9SDavid Malone struct file **rp; 16822bc21ed9SDavid Malone struct file *fp; 16832bc21ed9SDavid Malone void *data; 16842bc21ed9SDavid Malone socklen_t clen = control->m_len, datalen; 16852bc21ed9SDavid Malone int error, newfds; 16862bc21ed9SDavid Malone int f; 16872bc21ed9SDavid Malone u_int newlen; 16882bc21ed9SDavid Malone 16893dab55bcSRobert Watson UNP_LINK_UNLOCK_ASSERT(); 16904c5bc1caSRobert Watson 16912bc21ed9SDavid Malone error = 0; 16922bc21ed9SDavid Malone if (controlp != NULL) /* controlp == NULL => free control messages */ 16932bc21ed9SDavid Malone *controlp = NULL; 16942bc21ed9SDavid Malone while (cm != NULL) { 16952bc21ed9SDavid Malone if (sizeof(*cm) > clen || cm->cmsg_len > clen) { 16962bc21ed9SDavid Malone error = EINVAL; 16972bc21ed9SDavid Malone break; 16982bc21ed9SDavid Malone } 16992bc21ed9SDavid Malone data = CMSG_DATA(cm); 17002bc21ed9SDavid Malone datalen = (caddr_t)cm + cm->cmsg_len - (caddr_t)data; 17012bc21ed9SDavid Malone if (cm->cmsg_level == SOL_SOCKET 17022bc21ed9SDavid Malone && cm->cmsg_type == SCM_RIGHTS) { 17032bc21ed9SDavid Malone newfds = datalen / sizeof(struct file *); 17042bc21ed9SDavid Malone rp = data; 17052bc21ed9SDavid Malone 1706e2f9a08bSOlivier Houchard /* If we're not outputting the descriptors free them. */ 17072bc21ed9SDavid Malone if (error || controlp == NULL) { 17082bc21ed9SDavid Malone unp_freerights(rp, newfds); 17092bc21ed9SDavid Malone goto next; 17102bc21ed9SDavid Malone } 17115e3f7694SRobert Watson FILEDESC_XLOCK(td->td_proc->p_fd); 17122bc21ed9SDavid Malone /* if the new FD's will not fit free them. */ 17132bc21ed9SDavid Malone if (!fdavail(td, newfds)) { 17145e3f7694SRobert Watson FILEDESC_XUNLOCK(td->td_proc->p_fd); 17152bc21ed9SDavid Malone error = EMSGSIZE; 17162bc21ed9SDavid Malone unp_freerights(rp, newfds); 17172bc21ed9SDavid Malone goto next; 1718df8bae1dSRodney W. Grimes } 171960a5ef26SRobert Watson 1720ed5b7817SJulian Elischer /* 17211c381b19SRobert Watson * Now change each pointer to an fd in the global 17221c381b19SRobert Watson * table to an integer that is the index to the local 17231c381b19SRobert Watson * fd table entry that we set up to point to the 17241c381b19SRobert Watson * global one we are transferring. 1725ed5b7817SJulian Elischer */ 17262bc21ed9SDavid Malone newlen = newfds * sizeof(int); 17272bc21ed9SDavid Malone *controlp = sbcreatecontrol(NULL, newlen, 17282bc21ed9SDavid Malone SCM_RIGHTS, SOL_SOCKET); 17292bc21ed9SDavid Malone if (*controlp == NULL) { 17305e3f7694SRobert Watson FILEDESC_XUNLOCK(td->td_proc->p_fd); 17312bc21ed9SDavid Malone error = E2BIG; 17322bc21ed9SDavid Malone unp_freerights(rp, newfds); 17332bc21ed9SDavid Malone goto next; 17342bc21ed9SDavid Malone } 17352bc21ed9SDavid Malone 17362bc21ed9SDavid Malone fdp = (int *) 17372bc21ed9SDavid Malone CMSG_DATA(mtod(*controlp, struct cmsghdr *)); 1738df8bae1dSRodney W. Grimes for (i = 0; i < newfds; i++) { 1739a6d4491cSDag-Erling Smørgrav if (fdalloc(td, 0, &f)) 17402bc21ed9SDavid Malone panic("unp_externalize fdalloc failed"); 17418692c025SYoshinobu Inoue fp = *rp++; 1742b40ce416SJulian Elischer td->td_proc->p_fd->fd_ofiles[f] = fp; 1743397c19d1SJeff Roberson unp_externalize_fp(fp); 17448692c025SYoshinobu Inoue *fdp++ = f; 1745df8bae1dSRodney W. Grimes } 17465e3f7694SRobert Watson FILEDESC_XUNLOCK(td->td_proc->p_fd); 17471c381b19SRobert Watson } else { 17481c381b19SRobert Watson /* We can just copy anything else across. */ 17492bc21ed9SDavid Malone if (error || controlp == NULL) 17502bc21ed9SDavid Malone goto next; 17512bc21ed9SDavid Malone *controlp = sbcreatecontrol(NULL, datalen, 17522bc21ed9SDavid Malone cm->cmsg_type, cm->cmsg_level); 17532bc21ed9SDavid Malone if (*controlp == NULL) { 17542bc21ed9SDavid Malone error = ENOBUFS; 17552bc21ed9SDavid Malone goto next; 17562bc21ed9SDavid Malone } 17572bc21ed9SDavid Malone bcopy(data, 17582bc21ed9SDavid Malone CMSG_DATA(mtod(*controlp, struct cmsghdr *)), 17592bc21ed9SDavid Malone datalen); 17602bc21ed9SDavid Malone } 17612bc21ed9SDavid Malone controlp = &(*controlp)->m_next; 17622bc21ed9SDavid Malone 17632bc21ed9SDavid Malone next: 17642bc21ed9SDavid Malone if (CMSG_SPACE(datalen) < clen) { 17652bc21ed9SDavid Malone clen -= CMSG_SPACE(datalen); 17662bc21ed9SDavid Malone cm = (struct cmsghdr *) 17672bc21ed9SDavid Malone ((caddr_t)cm + CMSG_SPACE(datalen)); 17688692c025SYoshinobu Inoue } else { 17692bc21ed9SDavid Malone clen = 0; 17702bc21ed9SDavid Malone cm = NULL; 17718692c025SYoshinobu Inoue } 17728692c025SYoshinobu Inoue } 17738692c025SYoshinobu Inoue 17742bc21ed9SDavid Malone m_freem(control); 17752bc21ed9SDavid Malone return (error); 1776df8bae1dSRodney W. Grimes } 1777df8bae1dSRodney W. Grimes 17784f590175SPaul Saab static void 17794f590175SPaul Saab unp_zone_change(void *tag) 17804f590175SPaul Saab { 17814f590175SPaul Saab 17824f590175SPaul Saab uma_zone_set_max(unp_zone, maxsockets); 17834f590175SPaul Saab } 17844f590175SPaul Saab 17850b36cd25SRobert Watson static void 178698271db4SGarrett Wollman unp_init(void) 178798271db4SGarrett Wollman { 17881c381b19SRobert Watson 178921ca7b57SMarko Zec #ifdef VIMAGE 179021ca7b57SMarko Zec if (!IS_DEFAULT_VNET(curvnet)) 179121ca7b57SMarko Zec return; 179221ca7b57SMarko Zec #endif 17939e9d298aSJeff Roberson unp_zone = uma_zcreate("unpcb", sizeof(struct unpcb), NULL, NULL, 17949ae328fcSJohn Baldwin NULL, NULL, UMA_ALIGN_PTR, 0); 1795fc3fcacfSRobert Watson if (unp_zone == NULL) 179698271db4SGarrett Wollman panic("unp_init"); 17974f590175SPaul Saab uma_zone_set_max(unp_zone, maxsockets); 17984f590175SPaul Saab EVENTHANDLER_REGISTER(maxsockets_change, unp_zone_change, 17994f590175SPaul Saab NULL, EVENTHANDLER_PRI_ANY); 180098271db4SGarrett Wollman LIST_INIT(&unp_dhead); 180198271db4SGarrett Wollman LIST_INIT(&unp_shead); 180284d61770SRobert Watson LIST_INIT(&unp_sphead); 18030cb64678SKonstantin Belousov SLIST_INIT(&unp_defers); 1804a0ec558aSRobert Watson TASK_INIT(&unp_gc_task, 0, unp_gc, NULL); 18050cb64678SKonstantin Belousov TASK_INIT(&unp_defer_task, 0, unp_process_defers, NULL); 18063dab55bcSRobert Watson UNP_LINK_LOCK_INIT(); 18073dab55bcSRobert Watson UNP_LIST_LOCK_INIT(); 18080cb64678SKonstantin Belousov UNP_DEFERRED_LOCK_INIT(); 180998271db4SGarrett Wollman } 181098271db4SGarrett Wollman 1811f708ef1bSPoul-Henning Kamp static int 1812892af6b9SRobert Watson unp_internalize(struct mbuf **controlp, struct thread *td) 1813df8bae1dSRodney W. Grimes { 18142bc21ed9SDavid Malone struct mbuf *control = *controlp; 1815b40ce416SJulian Elischer struct proc *p = td->td_proc; 18168692c025SYoshinobu Inoue struct filedesc *fdescp = p->p_fd; 18172bc21ed9SDavid Malone struct cmsghdr *cm = mtod(control, struct cmsghdr *); 18182bc21ed9SDavid Malone struct cmsgcred *cmcred; 18192bc21ed9SDavid Malone struct file **rp; 18202bc21ed9SDavid Malone struct file *fp; 18212bc21ed9SDavid Malone struct timeval *tv; 18222bc21ed9SDavid Malone int i, fd, *fdp; 18232bc21ed9SDavid Malone void *data; 18242bc21ed9SDavid Malone socklen_t clen = control->m_len, datalen; 18252bc21ed9SDavid Malone int error, oldfds; 18268692c025SYoshinobu Inoue u_int newlen; 1827df8bae1dSRodney W. Grimes 18283dab55bcSRobert Watson UNP_LINK_UNLOCK_ASSERT(); 18294c5bc1caSRobert Watson 18302bc21ed9SDavid Malone error = 0; 18312bc21ed9SDavid Malone *controlp = NULL; 18322bc21ed9SDavid Malone while (cm != NULL) { 18332bc21ed9SDavid Malone if (sizeof(*cm) > clen || cm->cmsg_level != SOL_SOCKET 18342bc21ed9SDavid Malone || cm->cmsg_len > clen) { 18352bc21ed9SDavid Malone error = EINVAL; 18362bc21ed9SDavid Malone goto out; 18372bc21ed9SDavid Malone } 18382bc21ed9SDavid Malone data = CMSG_DATA(cm); 18392bc21ed9SDavid Malone datalen = (caddr_t)cm + cm->cmsg_len - (caddr_t)data; 18402bc21ed9SDavid Malone 18412bc21ed9SDavid Malone switch (cm->cmsg_type) { 18420b788fa1SBill Paul /* 18430b788fa1SBill Paul * Fill in credential information. 18440b788fa1SBill Paul */ 18452bc21ed9SDavid Malone case SCM_CREDS: 18462bc21ed9SDavid Malone *controlp = sbcreatecontrol(NULL, sizeof(*cmcred), 18472bc21ed9SDavid Malone SCM_CREDS, SOL_SOCKET); 18482bc21ed9SDavid Malone if (*controlp == NULL) { 18492bc21ed9SDavid Malone error = ENOBUFS; 18502bc21ed9SDavid Malone goto out; 18512bc21ed9SDavid Malone } 18522bc21ed9SDavid Malone cmcred = (struct cmsgcred *) 18532bc21ed9SDavid Malone CMSG_DATA(mtod(*controlp, struct cmsghdr *)); 18540b788fa1SBill Paul cmcred->cmcred_pid = p->p_pid; 1855a854ed98SJohn Baldwin cmcred->cmcred_uid = td->td_ucred->cr_ruid; 1856a854ed98SJohn Baldwin cmcred->cmcred_gid = td->td_ucred->cr_rgid; 1857a854ed98SJohn Baldwin cmcred->cmcred_euid = td->td_ucred->cr_uid; 1858a854ed98SJohn Baldwin cmcred->cmcred_ngroups = MIN(td->td_ucred->cr_ngroups, 18590b788fa1SBill Paul CMGROUP_MAX); 18600b788fa1SBill Paul for (i = 0; i < cmcred->cmcred_ngroups; i++) 18612bc21ed9SDavid Malone cmcred->cmcred_groups[i] = 1862a854ed98SJohn Baldwin td->td_ucred->cr_groups[i]; 18632bc21ed9SDavid Malone break; 18640b788fa1SBill Paul 18652bc21ed9SDavid Malone case SCM_RIGHTS: 18662bc21ed9SDavid Malone oldfds = datalen / sizeof (int); 1867ed5b7817SJulian Elischer /* 18681c381b19SRobert Watson * Check that all the FDs passed in refer to legal 18691c381b19SRobert Watson * files. If not, reject the entire operation. 1870ed5b7817SJulian Elischer */ 18712bc21ed9SDavid Malone fdp = data; 18725e3f7694SRobert Watson FILEDESC_SLOCK(fdescp); 1873df8bae1dSRodney W. Grimes for (i = 0; i < oldfds; i++) { 18748692c025SYoshinobu Inoue fd = *fdp++; 18758692c025SYoshinobu Inoue if ((unsigned)fd >= fdescp->fd_nfiles || 18762bc21ed9SDavid Malone fdescp->fd_ofiles[fd] == NULL) { 18775e3f7694SRobert Watson FILEDESC_SUNLOCK(fdescp); 18782bc21ed9SDavid Malone error = EBADF; 18792bc21ed9SDavid Malone goto out; 18802bc21ed9SDavid Malone } 1881e7d6662fSAlfred Perlstein fp = fdescp->fd_ofiles[fd]; 1882e7d6662fSAlfred Perlstein if (!(fp->f_ops->fo_flags & DFLAG_PASSABLE)) { 18835e3f7694SRobert Watson FILEDESC_SUNLOCK(fdescp); 1884e7d6662fSAlfred Perlstein error = EOPNOTSUPP; 1885e7d6662fSAlfred Perlstein goto out; 1886e7d6662fSAlfred Perlstein } 1887e7d6662fSAlfred Perlstein 1888df8bae1dSRodney W. Grimes } 18895e3f7694SRobert Watson 1890ed5b7817SJulian Elischer /* 18910b36cd25SRobert Watson * Now replace the integer FDs with pointers to the 18920b36cd25SRobert Watson * associated global file table entry.. 1893ed5b7817SJulian Elischer */ 18942bc21ed9SDavid Malone newlen = oldfds * sizeof(struct file *); 18952bc21ed9SDavid Malone *controlp = sbcreatecontrol(NULL, newlen, 18962bc21ed9SDavid Malone SCM_RIGHTS, SOL_SOCKET); 18972bc21ed9SDavid Malone if (*controlp == NULL) { 18985e3f7694SRobert Watson FILEDESC_SUNLOCK(fdescp); 18992bc21ed9SDavid Malone error = E2BIG; 19002bc21ed9SDavid Malone goto out; 19018692c025SYoshinobu Inoue } 19022bc21ed9SDavid Malone fdp = data; 19032bc21ed9SDavid Malone rp = (struct file **) 19042bc21ed9SDavid Malone CMSG_DATA(mtod(*controlp, struct cmsghdr *)); 19058692c025SYoshinobu Inoue for (i = 0; i < oldfds; i++) { 19068692c025SYoshinobu Inoue fp = fdescp->fd_ofiles[*fdp++]; 1907df8bae1dSRodney W. Grimes *rp++ = fp; 1908397c19d1SJeff Roberson unp_internalize_fp(fp); 1909df8bae1dSRodney W. Grimes } 19105e3f7694SRobert Watson FILEDESC_SUNLOCK(fdescp); 19112bc21ed9SDavid Malone break; 19122bc21ed9SDavid Malone 19132bc21ed9SDavid Malone case SCM_TIMESTAMP: 19142bc21ed9SDavid Malone *controlp = sbcreatecontrol(NULL, sizeof(*tv), 19152bc21ed9SDavid Malone SCM_TIMESTAMP, SOL_SOCKET); 19162bc21ed9SDavid Malone if (*controlp == NULL) { 19172bc21ed9SDavid Malone error = ENOBUFS; 19182bc21ed9SDavid Malone goto out; 19198692c025SYoshinobu Inoue } 19202bc21ed9SDavid Malone tv = (struct timeval *) 19212bc21ed9SDavid Malone CMSG_DATA(mtod(*controlp, struct cmsghdr *)); 19222bc21ed9SDavid Malone microtime(tv); 19232bc21ed9SDavid Malone break; 19242bc21ed9SDavid Malone 19252bc21ed9SDavid Malone default: 19262bc21ed9SDavid Malone error = EINVAL; 19272bc21ed9SDavid Malone goto out; 19282bc21ed9SDavid Malone } 19292bc21ed9SDavid Malone 19302bc21ed9SDavid Malone controlp = &(*controlp)->m_next; 19312bc21ed9SDavid Malone if (CMSG_SPACE(datalen) < clen) { 19322bc21ed9SDavid Malone clen -= CMSG_SPACE(datalen); 19332bc21ed9SDavid Malone cm = (struct cmsghdr *) 19342bc21ed9SDavid Malone ((caddr_t)cm + CMSG_SPACE(datalen)); 19352bc21ed9SDavid Malone } else { 19362bc21ed9SDavid Malone clen = 0; 19372bc21ed9SDavid Malone cm = NULL; 19382bc21ed9SDavid Malone } 19392bc21ed9SDavid Malone } 19402bc21ed9SDavid Malone 19412bc21ed9SDavid Malone out: 19422bc21ed9SDavid Malone m_freem(control); 19432bc21ed9SDavid Malone return (error); 1944df8bae1dSRodney W. Grimes } 1945df8bae1dSRodney W. Grimes 19465b950deaSRobert Watson static struct mbuf * 19476a2989fdSMatthew N. Dodd unp_addsockcred(struct thread *td, struct mbuf *control) 19486a2989fdSMatthew N. Dodd { 194970df31f4SMaxim Konovalov struct mbuf *m, *n, *n_prev; 19506a2989fdSMatthew N. Dodd struct sockcred *sc; 195170df31f4SMaxim Konovalov const struct cmsghdr *cm; 19526a2989fdSMatthew N. Dodd int ngroups; 19536a2989fdSMatthew N. Dodd int i; 19546a2989fdSMatthew N. Dodd 19556a2989fdSMatthew N. Dodd ngroups = MIN(td->td_ucred->cr_ngroups, CMGROUP_MAX); 19566a2989fdSMatthew N. Dodd m = sbcreatecontrol(NULL, SOCKCREDSIZE(ngroups), SCM_CREDS, SOL_SOCKET); 19576a2989fdSMatthew N. Dodd if (m == NULL) 19586a2989fdSMatthew N. Dodd return (control); 19596a2989fdSMatthew N. Dodd 19606a2989fdSMatthew N. Dodd sc = (struct sockcred *) CMSG_DATA(mtod(m, struct cmsghdr *)); 19616a2989fdSMatthew N. Dodd sc->sc_uid = td->td_ucred->cr_ruid; 19626a2989fdSMatthew N. Dodd sc->sc_euid = td->td_ucred->cr_uid; 19636a2989fdSMatthew N. Dodd sc->sc_gid = td->td_ucred->cr_rgid; 19646a2989fdSMatthew N. Dodd sc->sc_egid = td->td_ucred->cr_gid; 19656a2989fdSMatthew N. Dodd sc->sc_ngroups = ngroups; 19666a2989fdSMatthew N. Dodd for (i = 0; i < sc->sc_ngroups; i++) 19676a2989fdSMatthew N. Dodd sc->sc_groups[i] = td->td_ucred->cr_groups[i]; 19686a2989fdSMatthew N. Dodd 19696a2989fdSMatthew N. Dodd /* 19701c381b19SRobert Watson * Unlink SCM_CREDS control messages (struct cmsgcred), since just 19711c381b19SRobert Watson * created SCM_CREDS control message (struct sockcred) has another 19721c381b19SRobert Watson * format. 19736a2989fdSMatthew N. Dodd */ 197470df31f4SMaxim Konovalov if (control != NULL) 197570df31f4SMaxim Konovalov for (n = control, n_prev = NULL; n != NULL;) { 197670df31f4SMaxim Konovalov cm = mtod(n, struct cmsghdr *); 197770df31f4SMaxim Konovalov if (cm->cmsg_level == SOL_SOCKET && 197870df31f4SMaxim Konovalov cm->cmsg_type == SCM_CREDS) { 197970df31f4SMaxim Konovalov if (n_prev == NULL) 198070df31f4SMaxim Konovalov control = n->m_next; 198170df31f4SMaxim Konovalov else 198270df31f4SMaxim Konovalov n_prev->m_next = n->m_next; 198370df31f4SMaxim Konovalov n = m_free(n); 198470df31f4SMaxim Konovalov } else { 198570df31f4SMaxim Konovalov n_prev = n; 198670df31f4SMaxim Konovalov n = n->m_next; 198770df31f4SMaxim Konovalov } 198870df31f4SMaxim Konovalov } 19896a2989fdSMatthew N. Dodd 199070df31f4SMaxim Konovalov /* Prepend it to the head. */ 199170df31f4SMaxim Konovalov m->m_next = control; 199270df31f4SMaxim Konovalov return (m); 19936a2989fdSMatthew N. Dodd } 19946a2989fdSMatthew N. Dodd 1995397c19d1SJeff Roberson static struct unpcb * 1996397c19d1SJeff Roberson fptounp(struct file *fp) 1997397c19d1SJeff Roberson { 1998397c19d1SJeff Roberson struct socket *so; 1999397c19d1SJeff Roberson 2000397c19d1SJeff Roberson if (fp->f_type != DTYPE_SOCKET) 2001397c19d1SJeff Roberson return (NULL); 2002397c19d1SJeff Roberson if ((so = fp->f_data) == NULL) 2003397c19d1SJeff Roberson return (NULL); 2004397c19d1SJeff Roberson if (so->so_proto->pr_domain != &localdomain) 2005397c19d1SJeff Roberson return (NULL); 2006397c19d1SJeff Roberson return sotounpcb(so); 2007397c19d1SJeff Roberson } 2008397c19d1SJeff Roberson 2009397c19d1SJeff Roberson static void 2010397c19d1SJeff Roberson unp_discard(struct file *fp) 2011397c19d1SJeff Roberson { 20120cb64678SKonstantin Belousov struct unp_defer *dr; 2013397c19d1SJeff Roberson 20140cb64678SKonstantin Belousov if (unp_externalize_fp(fp)) { 20150cb64678SKonstantin Belousov dr = malloc(sizeof(*dr), M_TEMP, M_WAITOK); 20160cb64678SKonstantin Belousov dr->ud_fp = fp; 20170cb64678SKonstantin Belousov UNP_DEFERRED_LOCK(); 20180cb64678SKonstantin Belousov SLIST_INSERT_HEAD(&unp_defers, dr, ud_link); 20190cb64678SKonstantin Belousov UNP_DEFERRED_UNLOCK(); 20200cb64678SKonstantin Belousov atomic_add_int(&unp_defers_count, 1); 20210cb64678SKonstantin Belousov taskqueue_enqueue(taskqueue_thread, &unp_defer_task); 20220cb64678SKonstantin Belousov } else 2023397c19d1SJeff Roberson (void) closef(fp, (struct thread *)NULL); 2024397c19d1SJeff Roberson } 2025397c19d1SJeff Roberson 2026397c19d1SJeff Roberson static void 20270cb64678SKonstantin Belousov unp_process_defers(void *arg __unused, int pending) 20280cb64678SKonstantin Belousov { 20290cb64678SKonstantin Belousov struct unp_defer *dr; 20300cb64678SKonstantin Belousov SLIST_HEAD(, unp_defer) drl; 20310cb64678SKonstantin Belousov int count; 20320cb64678SKonstantin Belousov 20330cb64678SKonstantin Belousov SLIST_INIT(&drl); 20340cb64678SKonstantin Belousov for (;;) { 20350cb64678SKonstantin Belousov UNP_DEFERRED_LOCK(); 20360cb64678SKonstantin Belousov if (SLIST_FIRST(&unp_defers) == NULL) { 20370cb64678SKonstantin Belousov UNP_DEFERRED_UNLOCK(); 20380cb64678SKonstantin Belousov break; 20390cb64678SKonstantin Belousov } 20400cb64678SKonstantin Belousov SLIST_SWAP(&unp_defers, &drl, unp_defer); 20410cb64678SKonstantin Belousov UNP_DEFERRED_UNLOCK(); 20420cb64678SKonstantin Belousov count = 0; 20430cb64678SKonstantin Belousov while ((dr = SLIST_FIRST(&drl)) != NULL) { 20440cb64678SKonstantin Belousov SLIST_REMOVE_HEAD(&drl, ud_link); 20450cb64678SKonstantin Belousov closef(dr->ud_fp, NULL); 20460cb64678SKonstantin Belousov free(dr, M_TEMP); 20470cb64678SKonstantin Belousov count++; 20480cb64678SKonstantin Belousov } 20490cb64678SKonstantin Belousov atomic_add_int(&unp_defers_count, -count); 20500cb64678SKonstantin Belousov } 20510cb64678SKonstantin Belousov } 20520cb64678SKonstantin Belousov 20530cb64678SKonstantin Belousov static void 2054397c19d1SJeff Roberson unp_internalize_fp(struct file *fp) 2055397c19d1SJeff Roberson { 2056397c19d1SJeff Roberson struct unpcb *unp; 2057397c19d1SJeff Roberson 20583dab55bcSRobert Watson UNP_LINK_WLOCK(); 2059397c19d1SJeff Roberson if ((unp = fptounp(fp)) != NULL) { 2060397c19d1SJeff Roberson unp->unp_file = fp; 2061397c19d1SJeff Roberson unp->unp_msgcount++; 2062397c19d1SJeff Roberson } 206341e0f66dSJeff Roberson fhold(fp); 2064397c19d1SJeff Roberson unp_rights++; 20653dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 2066397c19d1SJeff Roberson } 2067397c19d1SJeff Roberson 20680cb64678SKonstantin Belousov static int 2069397c19d1SJeff Roberson unp_externalize_fp(struct file *fp) 2070397c19d1SJeff Roberson { 2071397c19d1SJeff Roberson struct unpcb *unp; 20720cb64678SKonstantin Belousov int ret; 2073397c19d1SJeff Roberson 20743dab55bcSRobert Watson UNP_LINK_WLOCK(); 20750cb64678SKonstantin Belousov if ((unp = fptounp(fp)) != NULL) { 2076397c19d1SJeff Roberson unp->unp_msgcount--; 20770cb64678SKonstantin Belousov ret = 1; 20780cb64678SKonstantin Belousov } else 20790cb64678SKonstantin Belousov ret = 0; 2080397c19d1SJeff Roberson unp_rights--; 20813dab55bcSRobert Watson UNP_LINK_WUNLOCK(); 20820cb64678SKonstantin Belousov return (ret); 2083397c19d1SJeff Roberson } 2084397c19d1SJeff Roberson 2085161a0c7cSRobert Watson /* 2086a0ec558aSRobert Watson * unp_defer indicates whether additional work has been defered for a future 2087a0ec558aSRobert Watson * pass through unp_gc(). It is thread local and does not require explicit 2088a0ec558aSRobert Watson * synchronization. 2089161a0c7cSRobert Watson */ 2090397c19d1SJeff Roberson static int unp_marked; 2091397c19d1SJeff Roberson static int unp_unreachable; 2092a0ec558aSRobert Watson 2093397c19d1SJeff Roberson static void 2094397c19d1SJeff Roberson unp_accessable(struct file *fp) 2095397c19d1SJeff Roberson { 2096397c19d1SJeff Roberson struct unpcb *unp; 2097397c19d1SJeff Roberson 20986f552cb0SJeff Roberson if ((unp = fptounp(fp)) == NULL) 2099397c19d1SJeff Roberson return; 2100397c19d1SJeff Roberson if (unp->unp_gcflag & UNPGC_REF) 2101397c19d1SJeff Roberson return; 2102397c19d1SJeff Roberson unp->unp_gcflag &= ~UNPGC_DEAD; 2103397c19d1SJeff Roberson unp->unp_gcflag |= UNPGC_REF; 2104397c19d1SJeff Roberson unp_marked++; 2105397c19d1SJeff Roberson } 2106397c19d1SJeff Roberson 2107397c19d1SJeff Roberson static void 2108397c19d1SJeff Roberson unp_gc_process(struct unpcb *unp) 2109397c19d1SJeff Roberson { 2110397c19d1SJeff Roberson struct socket *soa; 2111397c19d1SJeff Roberson struct socket *so; 2112397c19d1SJeff Roberson struct file *fp; 2113397c19d1SJeff Roberson 2114397c19d1SJeff Roberson /* Already processed. */ 2115397c19d1SJeff Roberson if (unp->unp_gcflag & UNPGC_SCANNED) 2116397c19d1SJeff Roberson return; 2117397c19d1SJeff Roberson fp = unp->unp_file; 211860a5ef26SRobert Watson 2119397c19d1SJeff Roberson /* 2120397c19d1SJeff Roberson * Check for a socket potentially in a cycle. It must be in a 2121397c19d1SJeff Roberson * queue as indicated by msgcount, and this must equal the file 2122397c19d1SJeff Roberson * reference count. Note that when msgcount is 0 the file is NULL. 2123397c19d1SJeff Roberson */ 212441e0f66dSJeff Roberson if ((unp->unp_gcflag & UNPGC_REF) == 0 && fp && 212541e0f66dSJeff Roberson unp->unp_msgcount != 0 && fp->f_count == unp->unp_msgcount) { 2126397c19d1SJeff Roberson unp->unp_gcflag |= UNPGC_DEAD; 2127397c19d1SJeff Roberson unp_unreachable++; 2128397c19d1SJeff Roberson return; 2129397c19d1SJeff Roberson } 213060a5ef26SRobert Watson 2131397c19d1SJeff Roberson /* 2132397c19d1SJeff Roberson * Mark all sockets we reference with RIGHTS. 2133397c19d1SJeff Roberson */ 2134397c19d1SJeff Roberson so = unp->unp_socket; 2135397c19d1SJeff Roberson SOCKBUF_LOCK(&so->so_rcv); 2136397c19d1SJeff Roberson unp_scan(so->so_rcv.sb_mb, unp_accessable); 2137397c19d1SJeff Roberson SOCKBUF_UNLOCK(&so->so_rcv); 213860a5ef26SRobert Watson 2139397c19d1SJeff Roberson /* 2140397c19d1SJeff Roberson * Mark all sockets in our accept queue. 2141397c19d1SJeff Roberson */ 2142397c19d1SJeff Roberson ACCEPT_LOCK(); 2143397c19d1SJeff Roberson TAILQ_FOREACH(soa, &so->so_comp, so_list) { 2144397c19d1SJeff Roberson SOCKBUF_LOCK(&soa->so_rcv); 2145397c19d1SJeff Roberson unp_scan(soa->so_rcv.sb_mb, unp_accessable); 2146397c19d1SJeff Roberson SOCKBUF_UNLOCK(&soa->so_rcv); 2147397c19d1SJeff Roberson } 2148397c19d1SJeff Roberson ACCEPT_UNLOCK(); 2149397c19d1SJeff Roberson unp->unp_gcflag |= UNPGC_SCANNED; 2150397c19d1SJeff Roberson } 2151a0ec558aSRobert Watson 2152a0ec558aSRobert Watson static int unp_recycled; 2153be6b1304STom Rhodes SYSCTL_INT(_net_local, OID_AUTO, recycled, CTLFLAG_RD, &unp_recycled, 0, 2154be6b1304STom Rhodes "Number of unreachable sockets claimed by the garbage collector."); 2155df8bae1dSRodney W. Grimes 2156397c19d1SJeff Roberson static int unp_taskcount; 2157be6b1304STom Rhodes SYSCTL_INT(_net_local, OID_AUTO, taskcount, CTLFLAG_RD, &unp_taskcount, 0, 2158be6b1304STom Rhodes "Number of times the garbage collector has run."); 2159397c19d1SJeff Roberson 2160f708ef1bSPoul-Henning Kamp static void 2161a0ec558aSRobert Watson unp_gc(__unused void *arg, int pending) 2162df8bae1dSRodney W. Grimes { 216384d61770SRobert Watson struct unp_head *heads[] = { &unp_dhead, &unp_shead, &unp_sphead, 216484d61770SRobert Watson NULL }; 2165397c19d1SJeff Roberson struct unp_head **head; 2166f7780c61SKonstantin Belousov struct file *f, **unref; 2167397c19d1SJeff Roberson struct unpcb *unp; 2168f7780c61SKonstantin Belousov int i, total; 2169df8bae1dSRodney W. Grimes 2170a0ec558aSRobert Watson unp_taskcount++; 21713dab55bcSRobert Watson UNP_LIST_LOCK(); 2172ed5b7817SJulian Elischer /* 2173397c19d1SJeff Roberson * First clear all gc flags from previous runs. 2174ed5b7817SJulian Elischer */ 2175397c19d1SJeff Roberson for (head = heads; *head != NULL; head++) 2176397c19d1SJeff Roberson LIST_FOREACH(unp, *head, unp_link) 217741e0f66dSJeff Roberson unp->unp_gcflag = 0; 217860a5ef26SRobert Watson 2179397c19d1SJeff Roberson /* 2180397c19d1SJeff Roberson * Scan marking all reachable sockets with UNPGC_REF. Once a socket 2181397c19d1SJeff Roberson * is reachable all of the sockets it references are reachable. 2182397c19d1SJeff Roberson * Stop the scan once we do a complete loop without discovering 2183397c19d1SJeff Roberson * a new reachable socket. 2184397c19d1SJeff Roberson */ 2185df8bae1dSRodney W. Grimes do { 2186397c19d1SJeff Roberson unp_unreachable = 0; 2187397c19d1SJeff Roberson unp_marked = 0; 2188397c19d1SJeff Roberson for (head = heads; *head != NULL; head++) 2189397c19d1SJeff Roberson LIST_FOREACH(unp, *head, unp_link) 2190397c19d1SJeff Roberson unp_gc_process(unp); 2191397c19d1SJeff Roberson } while (unp_marked); 21923dab55bcSRobert Watson UNP_LIST_UNLOCK(); 2193397c19d1SJeff Roberson if (unp_unreachable == 0) 2194397c19d1SJeff Roberson return; 219560a5ef26SRobert Watson 2196ed5b7817SJulian Elischer /* 2197397c19d1SJeff Roberson * Allocate space for a local list of dead unpcbs. 2198ed5b7817SJulian Elischer */ 2199397c19d1SJeff Roberson unref = malloc(unp_unreachable * sizeof(struct file *), 2200397c19d1SJeff Roberson M_TEMP, M_WAITOK); 220160a5ef26SRobert Watson 2202ed5b7817SJulian Elischer /* 2203397c19d1SJeff Roberson * Iterate looking for sockets which have been specifically marked 2204397c19d1SJeff Roberson * as as unreachable and store them locally. 2205ed5b7817SJulian Elischer */ 2206f7780c61SKonstantin Belousov UNP_LINK_RLOCK(); 22073dab55bcSRobert Watson UNP_LIST_LOCK(); 2208f7780c61SKonstantin Belousov for (total = 0, head = heads; *head != NULL; head++) 2209397c19d1SJeff Roberson LIST_FOREACH(unp, *head, unp_link) 2210f7780c61SKonstantin Belousov if ((unp->unp_gcflag & UNPGC_DEAD) != 0) { 2211f7780c61SKonstantin Belousov f = unp->unp_file; 2212f7780c61SKonstantin Belousov if (unp->unp_msgcount == 0 || f == NULL || 2213f7780c61SKonstantin Belousov f->f_count != unp->unp_msgcount) 2214f7780c61SKonstantin Belousov continue; 2215f7780c61SKonstantin Belousov unref[total++] = f; 2216f7780c61SKonstantin Belousov fhold(f); 2217f7780c61SKonstantin Belousov KASSERT(total <= unp_unreachable, 2218397c19d1SJeff Roberson ("unp_gc: incorrect unreachable count.")); 2219397c19d1SJeff Roberson } 22203dab55bcSRobert Watson UNP_LIST_UNLOCK(); 2221f7780c61SKonstantin Belousov UNP_LINK_RUNLOCK(); 222260a5ef26SRobert Watson 2223ed5b7817SJulian Elischer /* 2224397c19d1SJeff Roberson * Now flush all sockets, free'ing rights. This will free the 2225397c19d1SJeff Roberson * struct files associated with these sockets but leave each socket 2226397c19d1SJeff Roberson * with one remaining ref. 2227ed5b7817SJulian Elischer */ 22281fb51a12SBjoern A. Zeeb for (i = 0; i < total; i++) { 22291fb51a12SBjoern A. Zeeb struct socket *so; 22301fb51a12SBjoern A. Zeeb 22311fb51a12SBjoern A. Zeeb so = unref[i]->f_data; 22321fb51a12SBjoern A. Zeeb CURVNET_SET(so->so_vnet); 22331fb51a12SBjoern A. Zeeb sorflush(so); 22341fb51a12SBjoern A. Zeeb CURVNET_RESTORE(); 22351fb51a12SBjoern A. Zeeb } 223660a5ef26SRobert Watson 2237ed5b7817SJulian Elischer /* 2238397c19d1SJeff Roberson * And finally release the sockets so they can be reclaimed. 2239ed5b7817SJulian Elischer */ 2240f7780c61SKonstantin Belousov for (i = 0; i < total; i++) 2241397c19d1SJeff Roberson fdrop(unref[i], NULL); 2242f7780c61SKonstantin Belousov unp_recycled += total; 2243397c19d1SJeff Roberson free(unref, M_TEMP); 2244df8bae1dSRodney W. Grimes } 2245df8bae1dSRodney W. Grimes 22460b36cd25SRobert Watson static void 2247892af6b9SRobert Watson unp_dispose(struct mbuf *m) 2248df8bae1dSRodney W. Grimes { 2249996c772fSJohn Dyson 2250df8bae1dSRodney W. Grimes if (m) 2251df8bae1dSRodney W. Grimes unp_scan(m, unp_discard); 2252df8bae1dSRodney W. Grimes } 2253df8bae1dSRodney W. Grimes 2254f708ef1bSPoul-Henning Kamp static void 2255892af6b9SRobert Watson unp_scan(struct mbuf *m0, void (*op)(struct file *)) 2256df8bae1dSRodney W. Grimes { 22572bc21ed9SDavid Malone struct mbuf *m; 22582bc21ed9SDavid Malone struct file **rp; 22592bc21ed9SDavid Malone struct cmsghdr *cm; 22602bc21ed9SDavid Malone void *data; 22612bc21ed9SDavid Malone int i; 22622bc21ed9SDavid Malone socklen_t clen, datalen; 2263df8bae1dSRodney W. Grimes int qfds; 2264df8bae1dSRodney W. Grimes 2265fc3fcacfSRobert Watson while (m0 != NULL) { 22662bc21ed9SDavid Malone for (m = m0; m; m = m->m_next) { 226712396bdcSDavid Malone if (m->m_type != MT_CONTROL) 2268df8bae1dSRodney W. Grimes continue; 22692bc21ed9SDavid Malone 22702bc21ed9SDavid Malone cm = mtod(m, struct cmsghdr *); 22712bc21ed9SDavid Malone clen = m->m_len; 22722bc21ed9SDavid Malone 22732bc21ed9SDavid Malone while (cm != NULL) { 22742bc21ed9SDavid Malone if (sizeof(*cm) > clen || cm->cmsg_len > clen) 22752bc21ed9SDavid Malone break; 22762bc21ed9SDavid Malone 22772bc21ed9SDavid Malone data = CMSG_DATA(cm); 22782bc21ed9SDavid Malone datalen = (caddr_t)cm + cm->cmsg_len 22792bc21ed9SDavid Malone - (caddr_t)data; 22802bc21ed9SDavid Malone 22812bc21ed9SDavid Malone if (cm->cmsg_level == SOL_SOCKET && 22822bc21ed9SDavid Malone cm->cmsg_type == SCM_RIGHTS) { 22832bc21ed9SDavid Malone qfds = datalen / sizeof (struct file *); 22842bc21ed9SDavid Malone rp = data; 2285df8bae1dSRodney W. Grimes for (i = 0; i < qfds; i++) 2286df8bae1dSRodney W. Grimes (*op)(*rp++); 22872bc21ed9SDavid Malone } 22882bc21ed9SDavid Malone 22892bc21ed9SDavid Malone if (CMSG_SPACE(datalen) < clen) { 22902bc21ed9SDavid Malone clen -= CMSG_SPACE(datalen); 22912bc21ed9SDavid Malone cm = (struct cmsghdr *) 22922bc21ed9SDavid Malone ((caddr_t)cm + CMSG_SPACE(datalen)); 22932bc21ed9SDavid Malone } else { 22942bc21ed9SDavid Malone clen = 0; 22952bc21ed9SDavid Malone cm = NULL; 22962bc21ed9SDavid Malone } 22972bc21ed9SDavid Malone } 2298df8bae1dSRodney W. Grimes } 2299df8bae1dSRodney W. Grimes m0 = m0->m_act; 2300df8bae1dSRodney W. Grimes } 2301df8bae1dSRodney W. Grimes } 2302df8bae1dSRodney W. Grimes 2303*662c901cSMikolaj Golub /* 2304*662c901cSMikolaj Golub * A helper function called by VFS before socket-type vnode reclamation. 2305*662c901cSMikolaj Golub * For an active vnode it clears unp_vnode pointer and decrements unp_vnode 2306*662c901cSMikolaj Golub * use count. 2307*662c901cSMikolaj Golub */ 2308*662c901cSMikolaj Golub void 2309*662c901cSMikolaj Golub vfs_unp_reclaim(struct vnode *vp) 2310*662c901cSMikolaj Golub { 2311*662c901cSMikolaj Golub struct socket *so; 2312*662c901cSMikolaj Golub struct unpcb *unp; 2313*662c901cSMikolaj Golub int active; 2314*662c901cSMikolaj Golub 2315*662c901cSMikolaj Golub ASSERT_VOP_ELOCKED(vp, "vfs_unp_reclaim"); 2316*662c901cSMikolaj Golub KASSERT(vp->v_type == VSOCK, 2317*662c901cSMikolaj Golub ("vfs_unp_reclaim: vp->v_type != VSOCK")); 2318*662c901cSMikolaj Golub 2319*662c901cSMikolaj Golub active = 0; 2320*662c901cSMikolaj Golub UNP_LINK_WLOCK(); 2321*662c901cSMikolaj Golub so = vp->v_socket; 2322*662c901cSMikolaj Golub if (so == NULL) 2323*662c901cSMikolaj Golub goto done; 2324*662c901cSMikolaj Golub unp = sotounpcb(so); 2325*662c901cSMikolaj Golub if (unp == NULL) 2326*662c901cSMikolaj Golub goto done; 2327*662c901cSMikolaj Golub UNP_PCB_LOCK(unp); 2328*662c901cSMikolaj Golub if (unp->unp_vnode != NULL) { 2329*662c901cSMikolaj Golub KASSERT(unp->unp_vnode == vp, 2330*662c901cSMikolaj Golub ("vfs_unp_reclaim: vp != unp->unp_vnode")); 2331*662c901cSMikolaj Golub vp->v_socket = NULL; 2332*662c901cSMikolaj Golub unp->unp_vnode = NULL; 2333*662c901cSMikolaj Golub active = 1; 2334*662c901cSMikolaj Golub } 2335*662c901cSMikolaj Golub UNP_PCB_UNLOCK(unp); 2336*662c901cSMikolaj Golub done: 2337*662c901cSMikolaj Golub UNP_LINK_WUNLOCK(); 2338*662c901cSMikolaj Golub if (active) 2339*662c901cSMikolaj Golub vunref(vp); 2340*662c901cSMikolaj Golub } 2341*662c901cSMikolaj Golub 234203c96c31SRobert Watson #ifdef DDB 234303c96c31SRobert Watson static void 234403c96c31SRobert Watson db_print_indent(int indent) 234503c96c31SRobert Watson { 234603c96c31SRobert Watson int i; 234703c96c31SRobert Watson 234803c96c31SRobert Watson for (i = 0; i < indent; i++) 234903c96c31SRobert Watson db_printf(" "); 235003c96c31SRobert Watson } 235103c96c31SRobert Watson 235203c96c31SRobert Watson static void 235303c96c31SRobert Watson db_print_unpflags(int unp_flags) 235403c96c31SRobert Watson { 235503c96c31SRobert Watson int comma; 235603c96c31SRobert Watson 235703c96c31SRobert Watson comma = 0; 235803c96c31SRobert Watson if (unp_flags & UNP_HAVEPC) { 235903c96c31SRobert Watson db_printf("%sUNP_HAVEPC", comma ? ", " : ""); 236003c96c31SRobert Watson comma = 1; 236103c96c31SRobert Watson } 236203c96c31SRobert Watson if (unp_flags & UNP_HAVEPCCACHED) { 236303c96c31SRobert Watson db_printf("%sUNP_HAVEPCCACHED", comma ? ", " : ""); 236403c96c31SRobert Watson comma = 1; 236503c96c31SRobert Watson } 236603c96c31SRobert Watson if (unp_flags & UNP_WANTCRED) { 236703c96c31SRobert Watson db_printf("%sUNP_WANTCRED", comma ? ", " : ""); 236803c96c31SRobert Watson comma = 1; 236903c96c31SRobert Watson } 237003c96c31SRobert Watson if (unp_flags & UNP_CONNWAIT) { 237103c96c31SRobert Watson db_printf("%sUNP_CONNWAIT", comma ? ", " : ""); 237203c96c31SRobert Watson comma = 1; 237303c96c31SRobert Watson } 237403c96c31SRobert Watson if (unp_flags & UNP_CONNECTING) { 237503c96c31SRobert Watson db_printf("%sUNP_CONNECTING", comma ? ", " : ""); 237603c96c31SRobert Watson comma = 1; 237703c96c31SRobert Watson } 237803c96c31SRobert Watson if (unp_flags & UNP_BINDING) { 237903c96c31SRobert Watson db_printf("%sUNP_BINDING", comma ? ", " : ""); 238003c96c31SRobert Watson comma = 1; 238103c96c31SRobert Watson } 238203c96c31SRobert Watson } 238303c96c31SRobert Watson 238403c96c31SRobert Watson static void 238503c96c31SRobert Watson db_print_xucred(int indent, struct xucred *xu) 238603c96c31SRobert Watson { 238703c96c31SRobert Watson int comma, i; 238803c96c31SRobert Watson 238903c96c31SRobert Watson db_print_indent(indent); 239003c96c31SRobert Watson db_printf("cr_version: %u cr_uid: %u cr_ngroups: %d\n", 239103c96c31SRobert Watson xu->cr_version, xu->cr_uid, xu->cr_ngroups); 239203c96c31SRobert Watson db_print_indent(indent); 239303c96c31SRobert Watson db_printf("cr_groups: "); 239403c96c31SRobert Watson comma = 0; 239503c96c31SRobert Watson for (i = 0; i < xu->cr_ngroups; i++) { 239603c96c31SRobert Watson db_printf("%s%u", comma ? ", " : "", xu->cr_groups[i]); 239703c96c31SRobert Watson comma = 1; 239803c96c31SRobert Watson } 239903c96c31SRobert Watson db_printf("\n"); 240003c96c31SRobert Watson } 240103c96c31SRobert Watson 240203c96c31SRobert Watson static void 240303c96c31SRobert Watson db_print_unprefs(int indent, struct unp_head *uh) 240403c96c31SRobert Watson { 240503c96c31SRobert Watson struct unpcb *unp; 240603c96c31SRobert Watson int counter; 240703c96c31SRobert Watson 240803c96c31SRobert Watson counter = 0; 240903c96c31SRobert Watson LIST_FOREACH(unp, uh, unp_reflink) { 241003c96c31SRobert Watson if (counter % 4 == 0) 241103c96c31SRobert Watson db_print_indent(indent); 241203c96c31SRobert Watson db_printf("%p ", unp); 241303c96c31SRobert Watson if (counter % 4 == 3) 241403c96c31SRobert Watson db_printf("\n"); 241503c96c31SRobert Watson counter++; 241603c96c31SRobert Watson } 241703c96c31SRobert Watson if (counter != 0 && counter % 4 != 0) 241803c96c31SRobert Watson db_printf("\n"); 241903c96c31SRobert Watson } 242003c96c31SRobert Watson 242103c96c31SRobert Watson DB_SHOW_COMMAND(unpcb, db_show_unpcb) 242203c96c31SRobert Watson { 242303c96c31SRobert Watson struct unpcb *unp; 242403c96c31SRobert Watson 242503c96c31SRobert Watson if (!have_addr) { 242603c96c31SRobert Watson db_printf("usage: show unpcb <addr>\n"); 242703c96c31SRobert Watson return; 242803c96c31SRobert Watson } 242903c96c31SRobert Watson unp = (struct unpcb *)addr; 243003c96c31SRobert Watson 243103c96c31SRobert Watson db_printf("unp_socket: %p unp_vnode: %p\n", unp->unp_socket, 243203c96c31SRobert Watson unp->unp_vnode); 243303c96c31SRobert Watson 243403c96c31SRobert Watson db_printf("unp_ino: %d unp_conn: %p\n", unp->unp_ino, 243503c96c31SRobert Watson unp->unp_conn); 243603c96c31SRobert Watson 243703c96c31SRobert Watson db_printf("unp_refs:\n"); 243803c96c31SRobert Watson db_print_unprefs(2, &unp->unp_refs); 243903c96c31SRobert Watson 244003c96c31SRobert Watson /* XXXRW: Would be nice to print the full address, if any. */ 244103c96c31SRobert Watson db_printf("unp_addr: %p\n", unp->unp_addr); 244203c96c31SRobert Watson 244303c96c31SRobert Watson db_printf("unp_cc: %d unp_mbcnt: %d unp_gencnt: %llu\n", 244403c96c31SRobert Watson unp->unp_cc, unp->unp_mbcnt, 244503c96c31SRobert Watson (unsigned long long)unp->unp_gencnt); 244603c96c31SRobert Watson 244703c96c31SRobert Watson db_printf("unp_flags: %x (", unp->unp_flags); 244803c96c31SRobert Watson db_print_unpflags(unp->unp_flags); 244903c96c31SRobert Watson db_printf(")\n"); 245003c96c31SRobert Watson 245103c96c31SRobert Watson db_printf("unp_peercred:\n"); 245203c96c31SRobert Watson db_print_xucred(2, &unp->unp_peercred); 245303c96c31SRobert Watson 245403c96c31SRobert Watson db_printf("unp_refcount: %u\n", unp->unp_refcount); 245503c96c31SRobert Watson } 245603c96c31SRobert Watson #endif 2457