xref: /titanic_51/usr/src/uts/common/fs/sockfs/sockcommon_sops.c (revision c2765d203a42aaeda144370182c6cda62904d860)
1 /*
2  * CDDL HEADER START
3  *
4  * The contents of this file are subject to the terms of the
5  * Common Development and Distribution License (the "License").
6  * You may not use this file except in compliance with the License.
7  *
8  * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9  * or http://www.opensolaris.org/os/licensing.
10  * See the License for the specific language governing permissions
11  * and limitations under the License.
12  *
13  * When distributing Covered Code, include this CDDL HEADER in each
14  * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15  * If applicable, add the following below this CDDL HEADER, with the
16  * fields enclosed by brackets "[]" replaced with your own identifying
17  * information: Portions Copyright [yyyy] [name of copyright owner]
18  *
19  * CDDL HEADER END
20  */
21 
22 /*
23  * Copyright 2009 Sun Microsystems, Inc.  All rights reserved.
24  * Use is subject to license terms.
25  */
26 
27 #pragma ident	"@(#)sockcommon_sops.c	1.1	07/06/14 SMI"
28 
29 #include <sys/types.h>
30 #include <sys/param.h>
31 #include <sys/systm.h>
32 #include <sys/sysmacros.h>
33 #include <sys/debug.h>
34 #include <sys/cmn_err.h>
35 
36 #include <sys/stropts.h>
37 #include <sys/socket.h>
38 #include <sys/socketvar.h>
39 
40 #define	_SUN_TPI_VERSION	2
41 #include <sys/tihdr.h>
42 #include <sys/sockio.h>
43 #include <sys/sodirect.h>
44 #include <sys/kmem_impl.h>
45 
46 #include <sys/strsubr.h>
47 #include <sys/strsun.h>
48 #include <sys/ddi.h>
49 #include <netinet/in.h>
50 #include <inet/ip.h>
51 
52 #include <fs/sockfs/sockcommon.h>
53 
54 #include <sys/socket_proto.h>
55 
56 #include <fs/sockfs/socktpi_impl.h>
57 #include <sys/tihdr.h>
58 #include <fs/sockfs/nl7c.h>
59 #include <inet/kssl/ksslapi.h>
60 
61 
62 extern int xnet_skip_checks;
63 extern int xnet_check_print;
64 
65 static void so_queue_oob(sock_upper_handle_t, mblk_t *, size_t);
66 
67 
68 /*ARGSUSED*/
69 int
70 so_accept_notsupp(struct sonode *lso, int fflag,
71     struct cred *cr, struct sonode **nsop)
72 {
73 	return (EOPNOTSUPP);
74 }
75 
76 /*ARGSUSED*/
77 int
78 so_listen_notsupp(struct sonode *so, int backlog, struct cred *cr)
79 {
80 	return (EOPNOTSUPP);
81 }
82 
83 /*ARGSUSED*/
84 int
85 so_getsockname_notsupp(struct sonode *so, struct sockaddr *sa,
86     socklen_t *len, struct cred *cr)
87 {
88 	return (EOPNOTSUPP);
89 }
90 
91 /*ARGSUSED*/
92 int
93 so_getpeername_notsupp(struct sonode *so, struct sockaddr *addr,
94     socklen_t *addrlen, boolean_t accept, struct cred *cr)
95 {
96 	return (EOPNOTSUPP);
97 }
98 
99 /*ARGSUSED*/
100 int
101 so_shutdown_notsupp(struct sonode *so, int how, struct cred *cr)
102 {
103 	return (EOPNOTSUPP);
104 }
105 
106 /*ARGSUSED*/
107 int
108 so_sendmblk_notsupp(struct sonode *so, struct msghdr *msg, int fflag,
109     struct cred *cr, mblk_t **mpp)
110 {
111 	return (EOPNOTSUPP);
112 }
113 
114 /*
115  * Generic Socket Ops
116  */
117 
118 /* ARGSUSED */
119 int
120 so_init(struct sonode *so, struct sonode *pso, struct cred *cr, int flags)
121 {
122 	return (socket_init_common(so, pso, flags, cr));
123 }
124 
125 int
126 so_bind(struct sonode *so, struct sockaddr *name, socklen_t namelen,
127     int flags, struct cred *cr)
128 {
129 	int error;
130 
131 	SO_BLOCK_FALLBACK(so, SOP_BIND(so, name, namelen, flags, cr));
132 
133 	ASSERT(flags == _SOBIND_XPG4_2 || flags == _SOBIND_SOCKBSD);
134 
135 	/* X/Open requires this check */
136 	if ((so->so_state & SS_CANTSENDMORE) && !xnet_skip_checks) {
137 		if (xnet_check_print) {
138 			printf("sockfs: X/Open bind state check "
139 			    "caused EINVAL\n");
140 		}
141 		error = EINVAL;
142 		goto done;
143 	}
144 
145 	/*
146 	 * a bind to a NULL address is interpreted as unbind. So just
147 	 * do the downcall.
148 	 */
149 	if (name == NULL)
150 		goto dobind;
151 
152 	switch (so->so_family) {
153 	case AF_INET:
154 		if ((size_t)namelen != sizeof (sin_t)) {
155 			error = name->sa_family != so->so_family ?
156 			    EAFNOSUPPORT : EINVAL;
157 			eprintsoline(so, error);
158 			goto done;
159 		}
160 
161 		if ((flags & _SOBIND_XPG4_2) &&
162 		    (name->sa_family != so->so_family)) {
163 			/*
164 			 * This check has to be made for X/Open
165 			 * sockets however application failures have
166 			 * been observed when it is applied to
167 			 * all sockets.
168 			 */
169 			error = EAFNOSUPPORT;
170 			eprintsoline(so, error);
171 			goto done;
172 		}
173 		/*
174 		 * Force a zero sa_family to match so_family.
175 		 *
176 		 * Some programs like inetd(1M) don't set the
177 		 * family field. Other programs leave
178 		 * sin_family set to garbage - SunOS 4.X does
179 		 * not check the family field on a bind.
180 		 * We use the family field that
181 		 * was passed in to the socket() call.
182 		 */
183 		name->sa_family = so->so_family;
184 		break;
185 
186 	case AF_INET6: {
187 #ifdef DEBUG
188 		sin6_t *sin6 = (sin6_t *)name;
189 #endif
190 		if ((size_t)namelen != sizeof (sin6_t)) {
191 			error = name->sa_family != so->so_family ?
192 			    EAFNOSUPPORT : EINVAL;
193 			eprintsoline(so, error);
194 			goto done;
195 		}
196 
197 		if (name->sa_family != so->so_family) {
198 			/*
199 			 * With IPv6 we require the family to match
200 			 * unlike in IPv4.
201 			 */
202 			error = EAFNOSUPPORT;
203 			eprintsoline(so, error);
204 			goto done;
205 		}
206 #ifdef DEBUG
207 		/*
208 		 * Verify that apps don't forget to clear
209 		 * sin6_scope_id etc
210 		 */
211 		if (sin6->sin6_scope_id != 0 &&
212 		    !IN6_IS_ADDR_LINKSCOPE(&sin6->sin6_addr)) {
213 			zcmn_err(getzoneid(), CE_WARN,
214 			    "bind with uninitialized sin6_scope_id "
215 			    "(%d) on socket. Pid = %d\n",
216 			    (int)sin6->sin6_scope_id,
217 			    (int)curproc->p_pid);
218 		}
219 		if (sin6->__sin6_src_id != 0) {
220 			zcmn_err(getzoneid(), CE_WARN,
221 			    "bind with uninitialized __sin6_src_id "
222 			    "(%d) on socket. Pid = %d\n",
223 			    (int)sin6->__sin6_src_id,
224 			    (int)curproc->p_pid);
225 		}
226 #endif /* DEBUG */
227 
228 		break;
229 	}
230 	default:
231 		/* Just pass the request to the protocol */
232 		goto dobind;
233 	}
234 
235 	/*
236 	 * First we check if either NCA or KSSL has been enabled for
237 	 * the requested address, and if so, we fall back to TPI.
238 	 * If neither of those two services are enabled, then we just
239 	 * pass the request to the protocol.
240 	 *
241 	 * Note that KSSL can only be enabled on a socket if NCA is NOT
242 	 * enabled for that socket, hence the else-statement below.
243 	 */
244 	if (nl7c_enabled && ((so->so_family == AF_INET ||
245 	    so->so_family == AF_INET6) &&
246 	    nl7c_lookup_addr(name, namelen) != NULL)) {
247 		/*
248 		 * NL7C is not supported in non-global zones,
249 		 * we enforce this restriction here.
250 		 */
251 		if (so->so_zoneid == GLOBAL_ZONEID) {
252 			/* NCA should be used, so fall back to TPI */
253 			error = so_tpi_fallback(so, cr);
254 			SO_UNBLOCK_FALLBACK(so);
255 			if (error)
256 				return (error);
257 			else
258 				return (SOP_BIND(so, name, namelen, flags, cr));
259 		}
260 	} else if (so->so_type == SOCK_STREAM) {
261 		/* Check if KSSL has been configured for this address */
262 		kssl_ent_t ent;
263 		kssl_endpt_type_t type;
264 		struct T_bind_req bind_req;
265 		mblk_t *mp;
266 
267 		/*
268 		 * TODO: Check with KSSL team if we could add a function call
269 		 * that only queries whether KSSL is enabled for the given
270 		 * address.
271 		 */
272 		bind_req.PRIM_type = T_BIND_REQ;
273 		bind_req.ADDR_length = namelen;
274 		bind_req.ADDR_offset = (t_scalar_t)sizeof (bind_req);
275 		mp = soallocproto2(&bind_req, sizeof (bind_req),
276 		    name, namelen, 0, _ALLOC_SLEEP);
277 
278 		type = kssl_check_proxy(mp, so, &ent);
279 		freemsg(mp);
280 
281 		if (type != KSSL_NO_PROXY) {
282 			/*
283 			 * KSSL has been configured for this address, so
284 			 * we must fall back to TPI.
285 			 */
286 			kssl_release_ent(ent, so, type);
287 			error = so_tpi_fallback(so, cr);
288 			SO_UNBLOCK_FALLBACK(so);
289 			if (error)
290 				return (error);
291 			else
292 				return (SOP_BIND(so, name, namelen, flags, cr));
293 		}
294 	}
295 
296 dobind:
297 	error = (*so->so_downcalls->sd_bind)
298 	    (so->so_proto_handle, name, namelen, cr);
299 done:
300 	SO_UNBLOCK_FALLBACK(so);
301 
302 	return (error);
303 }
304 
305 int
306 so_listen(struct sonode *so, int backlog, struct cred *cr)
307 {
308 	int	error = 0;
309 
310 	ASSERT(MUTEX_NOT_HELD(&so->so_lock));
311 	SO_BLOCK_FALLBACK(so, SOP_LISTEN(so, backlog, cr));
312 
313 	error = (*so->so_downcalls->sd_listen)(so->so_proto_handle, backlog,
314 	    cr);
315 
316 	SO_UNBLOCK_FALLBACK(so);
317 
318 	return (error);
319 }
320 
321 
322 int
323 so_connect(struct sonode *so, const struct sockaddr *name,
324     socklen_t namelen, int fflag, int flags, struct cred *cr)
325 {
326 	int error = 0;
327 	sock_connid_t id;
328 
329 	ASSERT(MUTEX_NOT_HELD(&so->so_lock));
330 	SO_BLOCK_FALLBACK(so, SOP_CONNECT(so, name, namelen, fflag, flags, cr));
331 
332 	/*
333 	 * If there is a pending error, return error
334 	 * This can happen if a non blocking operation caused an error.
335 	 */
336 
337 	if (so->so_error != 0) {
338 		mutex_enter(&so->so_lock);
339 		error = sogeterr(so, B_TRUE);
340 		mutex_exit(&so->so_lock);
341 		if (error != 0)
342 			goto done;
343 	}
344 
345 	error = (*so->so_downcalls->sd_connect)(so->so_proto_handle,
346 	    name, namelen, &id, cr);
347 
348 	if (error == EINPROGRESS)
349 		error = so_wait_connected(so, fflag & (FNONBLOCK|FNDELAY), id);
350 
351 done:
352 	SO_UNBLOCK_FALLBACK(so);
353 	return (error);
354 }
355 
356 /*ARGSUSED*/
357 int
358 so_accept(struct sonode *so, int fflag, struct cred *cr, struct sonode **nsop)
359 {
360 	int error = 0;
361 	struct sonode *nso;
362 
363 	*nsop = NULL;
364 
365 	SO_BLOCK_FALLBACK(so, SOP_ACCEPT(so, fflag, cr, nsop));
366 	if ((so->so_state & SS_ACCEPTCONN) == 0) {
367 		SO_UNBLOCK_FALLBACK(so);
368 		return ((so->so_type == SOCK_DGRAM || so->so_type == SOCK_RAW) ?
369 		    EOPNOTSUPP : EINVAL);
370 	}
371 
372 	if ((error = so_acceptq_dequeue(so, (fflag & (FNONBLOCK|FNDELAY)),
373 	    &nso)) == 0) {
374 		ASSERT(nso != NULL);
375 
376 		/* finish the accept */
377 		error = (*so->so_downcalls->sd_accept)(so->so_proto_handle,
378 		    nso->so_proto_handle, (sock_upper_handle_t)nso, cr);
379 		if (error != 0) {
380 			(void) socket_close(nso, 0, cr);
381 			socket_destroy(nso);
382 		} else {
383 			*nsop = nso;
384 		}
385 	}
386 
387 	SO_UNBLOCK_FALLBACK(so);
388 	return (error);
389 }
390 
391 int
392 so_sendmsg(struct sonode *so, struct nmsghdr *msg, struct uio *uiop,
393     struct cred *cr)
394 {
395 	int error, flags;
396 	boolean_t dontblock;
397 	ssize_t orig_resid;
398 	mblk_t  *mp;
399 
400 	SO_BLOCK_FALLBACK(so, SOP_SENDMSG(so, msg, uiop, cr));
401 
402 	flags = msg->msg_flags;
403 	error = 0;
404 	dontblock = (flags & MSG_DONTWAIT) ||
405 	    (uiop->uio_fmode & (FNONBLOCK|FNDELAY));
406 
407 	if (!(flags & MSG_XPG4_2) && msg->msg_controllen != 0) {
408 		/*
409 		 * Old way of passing fd's is not supported
410 		 */
411 		SO_UNBLOCK_FALLBACK(so);
412 		return (EOPNOTSUPP);
413 	}
414 
415 	if ((so->so_mode & SM_ATOMIC) &&
416 	    uiop->uio_resid > so->so_proto_props.sopp_maxpsz &&
417 	    so->so_proto_props.sopp_maxpsz != -1) {
418 		SO_UNBLOCK_FALLBACK(so);
419 		return (EMSGSIZE);
420 	}
421 
422 	/*
423 	 * For atomic sends we will only do one iteration.
424 	 */
425 	do {
426 		if (so->so_state & SS_CANTSENDMORE) {
427 			error = EPIPE;
428 			break;
429 		}
430 
431 		if (so->so_error != 0) {
432 			mutex_enter(&so->so_lock);
433 			error = sogeterr(so, B_TRUE);
434 			mutex_exit(&so->so_lock);
435 			if (error != 0)
436 				break;
437 		}
438 
439 		/*
440 		 * Send down OOB messages even if the send path is being
441 		 * flow controlled (assuming the protocol supports OOB data).
442 		 */
443 		if (flags & MSG_OOB) {
444 			if ((so->so_mode & SM_EXDATA) == 0) {
445 				error = EOPNOTSUPP;
446 				break;
447 			}
448 		} else if (so->so_snd_qfull) {
449 			/*
450 			 * Need to wait until the protocol is ready to receive
451 			 * more data for transmission.
452 			 */
453 			if ((error = so_snd_wait_qnotfull(so, dontblock)) != 0)
454 				break;
455 		}
456 
457 		/*
458 		 * Time to send data to the protocol. We either copy the
459 		 * data into mblks or pass the uio directly to the protocol.
460 		 * We decide what to do based on the available down calls.
461 		 */
462 		if (so->so_downcalls->sd_send_uio != NULL) {
463 			error = (*so->so_downcalls->sd_send_uio)
464 			    (so->so_proto_handle, uiop, msg, cr);
465 			if (error != 0)
466 				break;
467 		} else {
468 			/* save the resid in case of failure */
469 			orig_resid = uiop->uio_resid;
470 
471 			if ((mp = socopyinuio(uiop,
472 			    so->so_proto_props.sopp_maxpsz,
473 			    so->so_proto_props.sopp_wroff,
474 			    so->so_proto_props.sopp_maxblk,
475 			    so->so_proto_props.sopp_tail, &error)) == NULL) {
476 				break;
477 			}
478 			ASSERT(uiop->uio_resid >= 0);
479 
480 			error = (*so->so_downcalls->sd_send)
481 			    (so->so_proto_handle, mp, msg, cr);
482 			if (error != 0) {
483 				/*
484 				 * The send failed. We do not have to free the
485 				 * mblks, because that is the protocol's
486 				 * responsibility. However, uio_resid must
487 				 * remain accurate, so adjust that here.
488 				 */
489 				uiop->uio_resid = orig_resid;
490 					break;
491 			}
492 		}
493 	} while (uiop->uio_resid > 0);
494 
495 	SO_UNBLOCK_FALLBACK(so);
496 
497 	return (error);
498 }
499 
500 int
501 so_sendmblk(struct sonode *so, struct nmsghdr *msg, int fflag,
502     struct cred *cr, mblk_t **mpp)
503 {
504 	int error;
505 	boolean_t dontblock;
506 	size_t size;
507 	mblk_t *mp = *mpp;
508 
509 	SO_BLOCK_FALLBACK(so, SOP_SENDMBLK(so, msg, fflag, cr, mpp));
510 
511 	error = 0;
512 	dontblock = (msg->msg_flags & MSG_DONTWAIT) ||
513 	    (fflag & (FNONBLOCK|FNDELAY));
514 	size = msgdsize(mp);
515 
516 	if ((so->so_mode & SM_SENDFILESUPP) == 0 ||
517 	    so->so_downcalls->sd_send == NULL) {
518 		SO_UNBLOCK_FALLBACK(so);
519 		return (EOPNOTSUPP);
520 	}
521 
522 	if ((so->so_mode & SM_ATOMIC) &&
523 	    size > so->so_proto_props.sopp_maxpsz &&
524 	    so->so_proto_props.sopp_maxpsz != -1) {
525 		SO_UNBLOCK_FALLBACK(so);
526 		return (EMSGSIZE);
527 	}
528 
529 	while (mp != NULL) {
530 		mblk_t *nmp, *last_mblk;
531 		size_t mlen;
532 
533 		if (so->so_state & SS_CANTSENDMORE) {
534 			error = EPIPE;
535 			break;
536 		}
537 		if (so->so_error != 0) {
538 			mutex_enter(&so->so_lock);
539 			error = sogeterr(so, B_TRUE);
540 			mutex_exit(&so->so_lock);
541 			if (error != 0)
542 				break;
543 		}
544 		if (so->so_snd_qfull) {
545 			/*
546 			 * Need to wait until the protocol is ready to receive
547 			 * more data for transmission.
548 			 */
549 			if ((error = so_snd_wait_qnotfull(so, dontblock)) != 0)
550 				break;
551 		}
552 
553 		/*
554 		 * We only allow so_maxpsz of data to be sent down to
555 		 * the protocol at time.
556 		 */
557 		mlen = MBLKL(mp);
558 		nmp = mp->b_cont;
559 		last_mblk = mp;
560 		while (nmp != NULL) {
561 			mlen += MBLKL(nmp);
562 			if (mlen > so->so_proto_props.sopp_maxpsz) {
563 				last_mblk->b_cont = NULL;
564 				break;
565 			}
566 			last_mblk = nmp;
567 			nmp = nmp->b_cont;
568 		}
569 
570 		error = (*so->so_downcalls->sd_send)
571 		    (so->so_proto_handle, mp, msg, cr);
572 		if (error != 0) {
573 			/*
574 			 * The send failed. The protocol will free the mblks
575 			 * that were sent down. Let the caller deal with the
576 			 * rest.
577 			 */
578 			*mpp = nmp;
579 			break;
580 		}
581 
582 		*mpp = mp = nmp;
583 	}
584 
585 	SO_UNBLOCK_FALLBACK(so);
586 
587 	return (error);
588 }
589 
590 int
591 so_shutdown(struct sonode *so, int how, struct cred *cr)
592 {
593 	int error;
594 
595 	SO_BLOCK_FALLBACK(so, SOP_SHUTDOWN(so, how, cr));
596 
597 	/*
598 	 * SunOS 4.X has no check for datagram sockets.
599 	 * 5.X checks that it is connected (ENOTCONN)
600 	 * X/Open requires that we check the connected state.
601 	 */
602 	if (!(so->so_state & SS_ISCONNECTED)) {
603 		if (!xnet_skip_checks) {
604 			error = ENOTCONN;
605 			if (xnet_check_print) {
606 				printf("sockfs: X/Open shutdown check "
607 				    "caused ENOTCONN\n");
608 			}
609 		}
610 		goto done;
611 	}
612 
613 	error = ((*so->so_downcalls->sd_shutdown)(so->so_proto_handle,
614 	    how, cr));
615 
616 	/*
617 	 * Protocol agreed to shutdown. We need to flush the
618 	 * receive buffer if the receive side is being shutdown.
619 	 */
620 	if (error == 0 && how != SHUT_WR) {
621 		mutex_enter(&so->so_lock);
622 		/* wait for active reader to finish */
623 		(void) so_lock_read(so, 0);
624 
625 		so_rcv_flush(so);
626 
627 		so_unlock_read(so);
628 		mutex_exit(&so->so_lock);
629 	}
630 
631 done:
632 	SO_UNBLOCK_FALLBACK(so);
633 	return (error);
634 }
635 
636 int
637 so_getsockname(struct sonode *so, struct sockaddr *addr,
638     socklen_t *addrlen, struct cred *cr)
639 {
640 	int error;
641 
642 	SO_BLOCK_FALLBACK(so, SOP_GETSOCKNAME(so, addr, addrlen, cr));
643 
644 	error = (*so->so_downcalls->sd_getsockname)
645 	    (so->so_proto_handle, addr, addrlen, cr);
646 
647 	SO_UNBLOCK_FALLBACK(so);
648 	return (error);
649 }
650 
651 int
652 so_getpeername(struct sonode *so, struct sockaddr *addr,
653     socklen_t *addrlen, boolean_t accept, struct cred *cr)
654 {
655 	int error;
656 
657 	SO_BLOCK_FALLBACK(so, SOP_GETPEERNAME(so, addr, addrlen, accept, cr));
658 
659 	if (accept) {
660 		error = (*so->so_downcalls->sd_getpeername)
661 		    (so->so_proto_handle, addr, addrlen, cr);
662 	} else if (!(so->so_state & SS_ISCONNECTED)) {
663 		error = ENOTCONN;
664 	} else if ((so->so_state & SS_CANTSENDMORE) && !xnet_skip_checks) {
665 		/* Added this check for X/Open */
666 		error = EINVAL;
667 		if (xnet_check_print) {
668 			printf("sockfs: X/Open getpeername check => EINVAL\n");
669 		}
670 	} else {
671 		error = (*so->so_downcalls->sd_getpeername)
672 		    (so->so_proto_handle, addr, addrlen, cr);
673 	}
674 
675 	SO_UNBLOCK_FALLBACK(so);
676 	return (error);
677 }
678 
679 int
680 so_getsockopt(struct sonode *so, int level, int option_name,
681     void *optval, socklen_t *optlenp, int flags, struct cred *cr)
682 {
683 	int error = 0;
684 
685 	ASSERT(MUTEX_NOT_HELD(&so->so_lock));
686 	SO_BLOCK_FALLBACK(so,
687 	    SOP_GETSOCKOPT(so, level, option_name, optval, optlenp, flags, cr));
688 
689 	error = socket_getopt_common(so, level, option_name, optval, optlenp,
690 	    flags);
691 	if (error < 0) {
692 		error = (*so->so_downcalls->sd_getsockopt)
693 		    (so->so_proto_handle, level, option_name, optval, optlenp,
694 		    cr);
695 		if (error ==  ENOPROTOOPT) {
696 			if (level == SOL_SOCKET) {
697 				/*
698 				 * If a protocol does not support a particular
699 				 * socket option, set can fail (not allowed)
700 				 * but get can not fail. This is the previous
701 				 * sockfs bahvior.
702 				 */
703 				switch (option_name) {
704 				case SO_LINGER:
705 					if (*optlenp < (t_uscalar_t)
706 					    sizeof (struct linger)) {
707 						error = EINVAL;
708 						break;
709 					}
710 					error = 0;
711 					bzero(optval, sizeof (struct linger));
712 					*optlenp = sizeof (struct linger);
713 					break;
714 				case SO_RCVTIMEO:
715 				case SO_SNDTIMEO:
716 					if (*optlenp < (t_uscalar_t)
717 					    sizeof (struct timeval)) {
718 						error = EINVAL;
719 						break;
720 					}
721 					error = 0;
722 					bzero(optval, sizeof (struct timeval));
723 					*optlenp = sizeof (struct timeval);
724 					break;
725 				case SO_SND_BUFINFO:
726 					if (*optlenp < (t_uscalar_t)
727 					    sizeof (struct so_snd_bufinfo)) {
728 						error = EINVAL;
729 						break;
730 					}
731 					error = 0;
732 					bzero(optval,
733 					    sizeof (struct so_snd_bufinfo));
734 					*optlenp =
735 					    sizeof (struct so_snd_bufinfo);
736 					break;
737 				case SO_DEBUG:
738 				case SO_REUSEADDR:
739 				case SO_KEEPALIVE:
740 				case SO_DONTROUTE:
741 				case SO_BROADCAST:
742 				case SO_USELOOPBACK:
743 				case SO_OOBINLINE:
744 				case SO_DGRAM_ERRIND:
745 				case SO_SNDBUF:
746 				case SO_RCVBUF:
747 					error = 0;
748 					*((int32_t *)optval) = 0;
749 					*optlenp = sizeof (int32_t);
750 					break;
751 				default:
752 					break;
753 				}
754 			}
755 		}
756 	}
757 
758 	SO_UNBLOCK_FALLBACK(so);
759 	return (error);
760 }
761 
762 int
763 so_setsockopt(struct sonode *so, int level, int option_name,
764     const void *optval, socklen_t optlen, struct cred *cr)
765 {
766 	int error = 0;
767 
768 	SO_BLOCK_FALLBACK(so,
769 	    SOP_SETSOCKOPT(so, level, option_name, optval, optlen, cr));
770 
771 	/* X/Open requires this check */
772 	if (so->so_state & SS_CANTSENDMORE && !xnet_skip_checks) {
773 		SO_UNBLOCK_FALLBACK(so);
774 		if (xnet_check_print)
775 			printf("sockfs: X/Open setsockopt check => EINVAL\n");
776 		return (EINVAL);
777 	}
778 
779 	if (level == SOL_SOCKET) {
780 		switch (option_name) {
781 		case SO_RCVTIMEO:
782 		case SO_SNDTIMEO: {
783 			/*
784 			 * We pass down these two options to protocol in order
785 			 * to support some third part protocols which need to
786 			 * know them. For those protocols which don't care
787 			 * these two options, simply return 0.
788 			 */
789 			struct timeval tl;
790 			clock_t t_usec;
791 
792 			if (get_udatamodel() == DATAMODEL_NONE ||
793 			    get_udatamodel() == DATAMODEL_NATIVE) {
794 				if (optlen != sizeof (struct timeval)) {
795 					error = EINVAL;
796 					goto done;
797 				}
798 				bcopy((struct timeval *)optval, &tl,
799 				    sizeof (struct timeval));
800 			} else {
801 				if (optlen != sizeof (struct timeval32)) {
802 					error = EINVAL;
803 					goto done;
804 				}
805 				TIMEVAL32_TO_TIMEVAL(&tl,
806 				    (struct timeval32 *)optval);
807 			}
808 			t_usec = tl.tv_sec * 1000 * 1000 + tl.tv_usec;
809 			mutex_enter(&so->so_lock);
810 			if (option_name == SO_RCVTIMEO)
811 				so->so_rcvtimeo = drv_usectohz(t_usec);
812 			else
813 				so->so_sndtimeo = drv_usectohz(t_usec);
814 			mutex_exit(&so->so_lock);
815 			break;
816 		}
817 		case SO_RCVBUF:
818 			/*
819 			 * XXX XPG 4.2 applications retrieve SO_RCVBUF from
820 			 * sockfs since the transport might adjust the value
821 			 * and not return exactly what was set by the
822 			 * application.
823 			 */
824 			so->so_xpg_rcvbuf = *(int32_t *)optval;
825 			break;
826 		}
827 	}
828 	error = (*so->so_downcalls->sd_setsockopt)
829 	    (so->so_proto_handle, level, option_name, optval, optlen, cr);
830 done:
831 	SO_UNBLOCK_FALLBACK(so);
832 	return (error);
833 }
834 
835 int
836 so_ioctl(struct sonode *so, int cmd, intptr_t arg, int mode,
837     struct cred *cr, int32_t *rvalp)
838 {
839 	int error = 0;
840 
841 	SO_BLOCK_FALLBACK(so, SOP_IOCTL(so, cmd, arg, mode, cr, rvalp));
842 
843 	/*
844 	 * If there is a pending error, return error
845 	 * This can happen if a non blocking operation caused an error.
846 	 */
847 	if (so->so_error != 0) {
848 		mutex_enter(&so->so_lock);
849 		error = sogeterr(so, B_TRUE);
850 		mutex_exit(&so->so_lock);
851 		if (error != 0)
852 			goto done;
853 	}
854 
855 	/*
856 	 * calling strioc can result in the socket falling back to TPI,
857 	 * if that is supported.
858 	 */
859 	if ((error = socket_ioctl_common(so, cmd, arg, mode, cr, rvalp)) < 0 &&
860 	    (error = socket_strioc_common(so, cmd, arg, mode, cr, rvalp)) < 0) {
861 		error = (*so->so_downcalls->sd_ioctl)(so->so_proto_handle,
862 		    cmd, arg, mode, rvalp, cr);
863 	}
864 
865 done:
866 	SO_UNBLOCK_FALLBACK(so);
867 
868 	return (error);
869 }
870 
871 int
872 so_poll(struct sonode *so, short events, int anyyet, short *reventsp,
873     struct pollhead **phpp)
874 {
875 	int state = so->so_state;
876 	*reventsp = 0;
877 
878 	if (so->so_error != 0 &&
879 	    ((POLLIN|POLLRDNORM|POLLOUT) & events)  != 0) {
880 		*reventsp = (POLLIN|POLLRDNORM|POLLOUT) & events;
881 		return (0);
882 	}
883 
884 	/*
885 	 * As long as there is buffer to send data, and the socket is
886 	 * in a state where it can send data (i.e., connected for
887 	 * connection oriented protocols), then turn on POLLOUT events
888 	 */
889 	if (!so->so_snd_qfull && ((so->so_mode & SM_CONNREQUIRED) == 0 ||
890 	    state & SS_ISCONNECTED)) {
891 		*reventsp |= POLLOUT & events;
892 	}
893 
894 	/*
895 	 * Turn on POLLIN whenever there is data on the receive queue,
896 	 * or the socket is in a state where no more data will be received.
897 	 * Also, if the socket is accepting connections, flip the bit if
898 	 * there is something on the queue.
899 	 *
900 	 * We do an initial check for events without holding locks. However,
901 	 * if there are no event available, then we redo the check for POLLIN
902 	 * events under the lock.
903 	 */
904 
905 	/* Pending connections */
906 	if (so->so_acceptq_len > 0)
907 		*reventsp |= (POLLIN|POLLRDNORM) & events;
908 
909 	/* Data */
910 	/* so_downcalls is null for sctp */
911 	if (so->so_downcalls != NULL && so->so_downcalls->sd_poll != NULL) {
912 		*reventsp |= (*so->so_downcalls->sd_poll)
913 		    (so->so_proto_handle, events & SO_PROTO_POLLEV, anyyet,
914 		    CRED()) & events;
915 		ASSERT((*reventsp & ~events) == 0);
916 		/* do not recheck events */
917 		events &= ~SO_PROTO_POLLEV;
918 	} else {
919 		if (SO_HAVE_DATA(so))
920 			*reventsp |= (POLLIN|POLLRDNORM) & events;
921 
922 		/* Urgent data */
923 		if ((state & SS_OOBPEND) != 0)
924 			*reventsp |= (POLLRDBAND) & events;
925 	}
926 
927 	if (!*reventsp && !anyyet) {
928 		/* Check for read events again, but this time under lock */
929 		if (events & (POLLIN|POLLRDNORM)) {
930 			mutex_enter(&so->so_lock);
931 			if (SO_HAVE_DATA(so) || so->so_acceptq_len > 0) {
932 				mutex_exit(&so->so_lock);
933 				*reventsp |= (POLLIN|POLLRDNORM) & events;
934 				return (0);
935 			} else {
936 				so->so_pollev |= SO_POLLEV_IN;
937 				mutex_exit(&so->so_lock);
938 			}
939 		}
940 		*phpp = &so->so_poll_list;
941 	}
942 	return (0);
943 }
944 
945 /*
946  * Generic Upcalls
947  */
948 void
949 so_connected(sock_upper_handle_t sock_handle, sock_connid_t id,
950     cred_t *peer_cred, pid_t peer_cpid)
951 {
952 	struct sonode *so = (struct sonode *)sock_handle;
953 
954 	mutex_enter(&so->so_lock);
955 	ASSERT(so->so_proto_handle != NULL);
956 
957 	if (peer_cred != NULL) {
958 		if (so->so_peercred != NULL)
959 			crfree(so->so_peercred);
960 		crhold(peer_cred);
961 		so->so_peercred = peer_cred;
962 		so->so_cpid = peer_cpid;
963 	}
964 
965 	so->so_proto_connid = id;
966 	soisconnected(so);
967 	/*
968 	 * Wake ones who're waiting for conn to become established.
969 	 */
970 	so_notify_connected(so);
971 }
972 
973 int
974 so_disconnected(sock_upper_handle_t sock_handle, sock_connid_t id, int error)
975 {
976 	struct sonode *so = (struct sonode *)sock_handle;
977 
978 	mutex_enter(&so->so_lock);
979 
980 	so->so_proto_connid = id;
981 	soisdisconnected(so, error);
982 	so_notify_disconnected(so, error);
983 
984 	return (0);
985 }
986 
987 void
988 so_opctl(sock_upper_handle_t sock_handle, sock_opctl_action_t action,
989     uintptr_t arg)
990 {
991 	struct sonode *so = (struct sonode *)sock_handle;
992 
993 	switch (action) {
994 	case SOCK_OPCTL_SHUT_SEND:
995 		mutex_enter(&so->so_lock);
996 		socantsendmore(so);
997 		so_notify_disconnecting(so);
998 		break;
999 	case SOCK_OPCTL_SHUT_RECV: {
1000 		mutex_enter(&so->so_lock);
1001 		socantrcvmore(so);
1002 		so_notify_eof(so);
1003 		break;
1004 	}
1005 	case SOCK_OPCTL_ENAB_ACCEPT:
1006 		mutex_enter(&so->so_lock);
1007 		so->so_state |= SS_ACCEPTCONN;
1008 		so->so_backlog = (unsigned int)arg;
1009 		mutex_exit(&so->so_lock);
1010 		break;
1011 	default:
1012 		ASSERT(0);
1013 		break;
1014 	}
1015 }
1016 
1017 void
1018 so_txq_full(sock_upper_handle_t sock_handle, boolean_t qfull)
1019 {
1020 	struct sonode *so = (struct sonode *)sock_handle;
1021 
1022 	if (qfull) {
1023 		so_snd_qfull(so);
1024 	} else {
1025 		so_snd_qnotfull(so);
1026 		mutex_enter(&so->so_lock);
1027 		so_notify_writable(so);
1028 	}
1029 }
1030 
1031 sock_upper_handle_t
1032 so_newconn(sock_upper_handle_t parenthandle,
1033     sock_lower_handle_t proto_handle, sock_downcalls_t *sock_downcalls,
1034     struct cred *peer_cred, pid_t peer_cpid, sock_upcalls_t **sock_upcallsp)
1035 {
1036 	struct sonode	*so = (struct sonode *)parenthandle;
1037 	struct sonode	*nso;
1038 	int error;
1039 
1040 	ASSERT(proto_handle != NULL);
1041 
1042 	if ((so->so_state & SS_ACCEPTCONN) == 0 ||
1043 	    so->so_acceptq_len >= so->so_backlog)
1044 		return (NULL);
1045 
1046 	nso = socket_newconn(so, proto_handle, sock_downcalls, SOCKET_NOSLEEP,
1047 	    &error);
1048 	if (nso == NULL)
1049 		return (NULL);
1050 
1051 	if (peer_cred != NULL) {
1052 		crhold(peer_cred);
1053 		nso->so_peercred = peer_cred;
1054 		nso->so_cpid = peer_cpid;
1055 	}
1056 
1057 	(void) so_acceptq_enqueue(so, nso);
1058 	mutex_enter(&so->so_lock);
1059 	so_notify_newconn(so);
1060 
1061 	*sock_upcallsp = &so_upcalls;
1062 
1063 	return ((sock_upper_handle_t)nso);
1064 }
1065 
1066 void
1067 so_set_prop(sock_upper_handle_t sock_handle, struct sock_proto_props *soppp)
1068 {
1069 	struct sonode *so;
1070 
1071 	so = (struct sonode *)sock_handle;
1072 
1073 	mutex_enter(&so->so_lock);
1074 
1075 	if (soppp->sopp_flags & SOCKOPT_MAXBLK)
1076 		so->so_proto_props.sopp_maxblk = soppp->sopp_maxblk;
1077 	if (soppp->sopp_flags & SOCKOPT_WROFF)
1078 		so->so_proto_props.sopp_wroff = soppp->sopp_wroff;
1079 	if (soppp->sopp_flags & SOCKOPT_TAIL)
1080 		so->so_proto_props.sopp_tail = soppp->sopp_tail;
1081 	if (soppp->sopp_flags & SOCKOPT_RCVHIWAT)
1082 		so->so_proto_props.sopp_rxhiwat = soppp->sopp_rxhiwat;
1083 	if (soppp->sopp_flags & SOCKOPT_RCVLOWAT)
1084 		so->so_proto_props.sopp_rxlowat = soppp->sopp_rxlowat;
1085 	if (soppp->sopp_flags & SOCKOPT_MAXPSZ)
1086 		so->so_proto_props.sopp_maxpsz = soppp->sopp_maxpsz;
1087 	if (soppp->sopp_flags & SOCKOPT_MINPSZ)
1088 		so->so_proto_props.sopp_minpsz = soppp->sopp_minpsz;
1089 	if (soppp->sopp_flags & SOCKOPT_ZCOPY) {
1090 		if (soppp->sopp_zcopyflag & ZCVMSAFE) {
1091 			so->so_proto_props.sopp_zcopyflag |= STZCVMSAFE;
1092 			so->so_proto_props.sopp_zcopyflag &= ~STZCVMUNSAFE;
1093 		} else if (soppp->sopp_zcopyflag & ZCVMUNSAFE) {
1094 			so->so_proto_props.sopp_zcopyflag |= STZCVMUNSAFE;
1095 			so->so_proto_props.sopp_zcopyflag &= ~STZCVMSAFE;
1096 		}
1097 
1098 		if (soppp->sopp_zcopyflag & COPYCACHED) {
1099 			so->so_proto_props.sopp_zcopyflag |= STRCOPYCACHED;
1100 		}
1101 	}
1102 	if (soppp->sopp_flags & SOCKOPT_OOBINLINE)
1103 		so->so_proto_props.sopp_oobinline = soppp->sopp_oobinline;
1104 	if (soppp->sopp_flags & SOCKOPT_RCVTIMER)
1105 		so->so_proto_props.sopp_rcvtimer = soppp->sopp_rcvtimer;
1106 	if (soppp->sopp_flags & SOCKOPT_RCVTHRESH)
1107 		so->so_proto_props.sopp_rcvthresh = soppp->sopp_rcvthresh;
1108 	if (soppp->sopp_flags & SOCKOPT_MAXADDRLEN)
1109 		so->so_proto_props.sopp_maxaddrlen = soppp->sopp_maxaddrlen;
1110 
1111 	mutex_exit(&so->so_lock);
1112 
1113 #ifdef DEBUG
1114 	soppp->sopp_flags &= ~(SOCKOPT_MAXBLK | SOCKOPT_WROFF | SOCKOPT_TAIL |
1115 	    SOCKOPT_RCVHIWAT | SOCKOPT_RCVLOWAT | SOCKOPT_MAXPSZ |
1116 	    SOCKOPT_ZCOPY | SOCKOPT_OOBINLINE | SOCKOPT_RCVTIMER |
1117 	    SOCKOPT_RCVTHRESH | SOCKOPT_MAXADDRLEN | SOCKOPT_MINPSZ);
1118 	ASSERT(soppp->sopp_flags == 0);
1119 #endif
1120 }
1121 
1122 /* ARGSUSED */
1123 ssize_t
1124 so_queue_msg(sock_upper_handle_t sock_handle, mblk_t *mp,
1125     size_t msg_size, int flags, int *errorp,  boolean_t *force_pushp)
1126 {
1127 	struct sonode *so = (struct sonode *)sock_handle;
1128 	boolean_t force_push = B_TRUE;
1129 	int space_left;
1130 	sodirect_t *sodp = so->so_direct;
1131 
1132 	ASSERT(errorp != NULL);
1133 	*errorp = 0;
1134 	if (mp == NULL) {
1135 		if (msg_size > 0) {
1136 			ASSERT(so->so_downcalls->sd_recv_uio != NULL);
1137 			mutex_enter(&so->so_lock);
1138 			/* the notify functions will drop the lock */
1139 			if (flags & MSG_OOB)
1140 				so_notify_oobdata(so, IS_SO_OOB_INLINE(so));
1141 			else
1142 				so_notify_data(so, msg_size);
1143 			return (0);
1144 		}
1145 		/*
1146 		 * recv space check
1147 		 */
1148 		mutex_enter(&so->so_lock);
1149 		space_left = so->so_rcvbuf - so->so_rcv_queued;
1150 		if (space_left <= 0) {
1151 			so->so_flowctrld = B_TRUE;
1152 			*errorp = ENOSPC;
1153 			space_left = -1;
1154 		}
1155 		goto done_unlock;
1156 	}
1157 
1158 	ASSERT(mp->b_next == NULL);
1159 	ASSERT(DB_TYPE(mp) == M_DATA || DB_TYPE(mp) == M_PROTO);
1160 	ASSERT(msg_size == msgdsize(mp));
1161 
1162 	if (flags & MSG_OOB) {
1163 		so_queue_oob(sock_handle, mp, msg_size);
1164 		return (0);
1165 	}
1166 
1167 	if (force_pushp != NULL)
1168 		force_push = *force_pushp;
1169 
1170 	if (DB_TYPE(mp) == M_PROTO && !__TPI_PRIM_ISALIGNED(mp->b_rptr)) {
1171 		/* The read pointer is not aligned correctly for TPI */
1172 		zcmn_err(getzoneid(), CE_WARN,
1173 		    "sockfs: Unaligned TPI message received. rptr = %p\n",
1174 		    (void *)mp->b_rptr);
1175 		freemsg(mp);
1176 		mutex_enter(sodp->sod_lockp);
1177 		SOD_UIOAFINI(sodp);
1178 		mutex_exit(sodp->sod_lockp);
1179 
1180 		return (so->so_rcvbuf - so->so_rcv_queued);
1181 	}
1182 
1183 	mutex_enter(&so->so_lock);
1184 	if (so->so_state & (SS_FALLBACK_PENDING | SS_FALLBACK_COMP)) {
1185 		SOD_DISABLE(sodp);
1186 		mutex_exit(&so->so_lock);
1187 		*errorp = EOPNOTSUPP;
1188 		return (-1);
1189 	}
1190 	if (so->so_state & SS_CANTRCVMORE) {
1191 		freemsg(mp);
1192 		SOD_DISABLE(sodp);
1193 		mutex_exit(&so->so_lock);
1194 		return (0);
1195 	}
1196 
1197 	/* process the mblk via I/OAT if capable */
1198 	if (sodp != NULL && (sodp->sod_state & SOD_ENABLED)) {
1199 		if (DB_TYPE(mp) == M_DATA) {
1200 			(void) sod_uioa_mblk_init(sodp, mp, msg_size);
1201 		} else {
1202 			SOD_UIOAFINI(sodp);
1203 		}
1204 	}
1205 
1206 	if (mp->b_next == NULL) {
1207 		so_enqueue_msg(so, mp, msg_size);
1208 	} else {
1209 		do {
1210 			mblk_t *nmp;
1211 
1212 			if ((nmp = mp->b_next) != NULL) {
1213 				mp->b_next = NULL;
1214 			}
1215 			so_enqueue_msg(so, mp, msgdsize(mp));
1216 			mp = nmp;
1217 		} while (mp != NULL);
1218 	}
1219 
1220 	space_left = so->so_rcvbuf - so->so_rcv_queued;
1221 	if (space_left <= 0) {
1222 		so->so_flowctrld = B_TRUE;
1223 		*errorp = ENOSPC;
1224 		space_left = -1;
1225 	}
1226 
1227 	if (force_push || so->so_rcv_queued >= so->so_rcv_thresh ||
1228 	    so->so_rcv_queued >= so->so_rcv_wanted ||
1229 	    (sodp != NULL && so->so_rcv_queued >= sodp->sod_want)) {
1230 		SOCKET_TIMER_CANCEL(so);
1231 		/*
1232 		 * so_notify_data will release the lock
1233 		 */
1234 		so_notify_data(so, so->so_rcv_queued);
1235 
1236 		if (force_pushp != NULL)
1237 			*force_pushp = B_TRUE;
1238 		goto done;
1239 	} else if (so->so_rcv_timer_tid == 0) {
1240 		/* Make sure the recv push timer is running */
1241 		SOCKET_TIMER_START(so);
1242 	}
1243 
1244 done_unlock:
1245 	mutex_exit(&so->so_lock);
1246 done:
1247 	return (space_left);
1248 }
1249 
1250 /*
1251  * Set the offset of where the oob data is relative to the bytes in
1252  * queued. Also generate SIGURG
1253  */
1254 void
1255 so_signal_oob(sock_upper_handle_t sock_handle, ssize_t offset)
1256 {
1257 	struct sonode *so;
1258 
1259 	ASSERT(offset >= 0);
1260 	so = (struct sonode *)sock_handle;
1261 	mutex_enter(&so->so_lock);
1262 	SOD_UIOAFINI(so->so_direct);
1263 
1264 	/*
1265 	 * New urgent data on the way so forget about any old
1266 	 * urgent data.
1267 	 */
1268 	so->so_state &= ~(SS_HAVEOOBDATA|SS_HADOOBDATA);
1269 
1270 	/*
1271 	 * Record that urgent data is pending.
1272 	 */
1273 	so->so_state |= SS_OOBPEND;
1274 
1275 	if (so->so_oobmsg != NULL) {
1276 		dprintso(so, 1, ("sock: discarding old oob\n"));
1277 		freemsg(so->so_oobmsg);
1278 		so->so_oobmsg = NULL;
1279 	}
1280 
1281 	/*
1282 	 * set the offset where the urgent byte is
1283 	 */
1284 	so->so_oobmark = so->so_rcv_queued + offset;
1285 	if (so->so_oobmark == 0)
1286 		so->so_state |= SS_RCVATMARK;
1287 	else
1288 		so->so_state &= ~SS_RCVATMARK;
1289 
1290 	so_notify_oobsig(so);
1291 }
1292 
1293 /*
1294  * Queue the OOB byte
1295  */
1296 static void
1297 so_queue_oob(sock_upper_handle_t sock_handle, mblk_t *mp, size_t len)
1298 {
1299 	struct sonode *so;
1300 
1301 	so = (struct sonode *)sock_handle;
1302 	mutex_enter(&so->so_lock);
1303 	SOD_UIOAFINI(so->so_direct);
1304 
1305 	ASSERT(mp != NULL);
1306 	if (!IS_SO_OOB_INLINE(so)) {
1307 		so->so_oobmsg = mp;
1308 		so->so_state |= SS_HAVEOOBDATA;
1309 	} else {
1310 		so_enqueue_msg(so, mp, len);
1311 	}
1312 
1313 	so_notify_oobdata(so, IS_SO_OOB_INLINE(so));
1314 }
1315 
1316 int
1317 so_close(struct sonode *so, int flag, struct cred *cr)
1318 {
1319 	int error;
1320 
1321 	error = (*so->so_downcalls->sd_close)(so->so_proto_handle, flag, cr);
1322 
1323 	/*
1324 	 * At this point there will be no more upcalls from the protocol
1325 	 */
1326 	mutex_enter(&so->so_lock);
1327 
1328 	ASSERT(so_verify_oobstate(so));
1329 
1330 	so_rcv_flush(so);
1331 	mutex_exit(&so->so_lock);
1332 
1333 	return (error);
1334 }
1335 
1336 void
1337 so_zcopy_notify(sock_upper_handle_t sock_handle)
1338 {
1339 	struct sonode *so = (struct sonode *)sock_handle;
1340 
1341 	mutex_enter(&so->so_lock);
1342 	so->so_copyflag |= STZCNOTIFY;
1343 	cv_broadcast(&so->so_copy_cv);
1344 	mutex_exit(&so->so_lock);
1345 }
1346 
1347 void
1348 so_set_error(sock_upper_handle_t sock_handle, int error)
1349 {
1350 	struct sonode *so = (struct sonode *)sock_handle;
1351 
1352 	mutex_enter(&so->so_lock);
1353 
1354 	soseterror(so, error);
1355 
1356 	so_notify_error(so);
1357 }
1358 
1359 /*
1360  * so_recvmsg - read data from the socket
1361  *
1362  * There are two ways of obtaining data; either we ask the protocol to
1363  * copy directly into the supplied buffer, or we copy data from the
1364  * sonode's receive queue. The decision which one to use depends on
1365  * whether the protocol has a sd_recv_uio down call.
1366  */
1367 int
1368 so_recvmsg(struct sonode *so, struct nmsghdr *msg, struct uio *uiop,
1369     struct cred *cr)
1370 {
1371 	rval_t 		rval;
1372 	int 		flags = 0;
1373 	t_uscalar_t	controllen, namelen;
1374 	int 		error = 0;
1375 	int ret;
1376 	mblk_t		*mctlp = NULL;
1377 	union T_primitives *tpr;
1378 	void		*control;
1379 	ssize_t		saved_resid;
1380 	struct uio	*suiop;
1381 
1382 	SO_BLOCK_FALLBACK(so, SOP_RECVMSG(so, msg, uiop, cr));
1383 
1384 	if ((so->so_state & (SS_ISCONNECTED|SS_CANTRCVMORE)) == 0 &&
1385 	    (so->so_mode & SM_CONNREQUIRED)) {
1386 		SO_UNBLOCK_FALLBACK(so);
1387 		return (ENOTCONN);
1388 	}
1389 
1390 	if (msg->msg_flags & MSG_PEEK)
1391 		msg->msg_flags &= ~MSG_WAITALL;
1392 
1393 	if (so->so_mode & SM_ATOMIC)
1394 		msg->msg_flags |= MSG_TRUNC;
1395 
1396 	if (msg->msg_flags & MSG_OOB) {
1397 		if ((so->so_mode & SM_EXDATA) == 0) {
1398 			error = EOPNOTSUPP;
1399 		} else if (so->so_downcalls->sd_recv_uio != NULL) {
1400 			error = (*so->so_downcalls->sd_recv_uio)
1401 			    (so->so_proto_handle, uiop, msg, cr);
1402 		} else {
1403 			error = sorecvoob(so, msg, uiop, msg->msg_flags,
1404 			    IS_SO_OOB_INLINE(so));
1405 		}
1406 		SO_UNBLOCK_FALLBACK(so);
1407 		return (error);
1408 	}
1409 
1410 	/*
1411 	 * If the protocol has the recv down call, then pass the request
1412 	 * down.
1413 	 */
1414 	if (so->so_downcalls->sd_recv_uio != NULL) {
1415 		error = (*so->so_downcalls->sd_recv_uio)
1416 		    (so->so_proto_handle, uiop, msg, cr);
1417 		SO_UNBLOCK_FALLBACK(so);
1418 		return (error);
1419 	}
1420 
1421 	/*
1422 	 * Reading data from the socket buffer
1423 	 */
1424 	flags = msg->msg_flags;
1425 	msg->msg_flags = 0;
1426 
1427 	/*
1428 	 * Set msg_controllen and msg_namelen to zero here to make it
1429 	 * simpler in the cases that no control or name is returned.
1430 	 */
1431 	controllen = msg->msg_controllen;
1432 	namelen = msg->msg_namelen;
1433 	msg->msg_controllen = 0;
1434 	msg->msg_namelen = 0;
1435 
1436 	mutex_enter(&so->so_lock);
1437 	/* Set SOREADLOCKED */
1438 	error = so_lock_read_intr(so,
1439 	    uiop->uio_fmode | ((flags & MSG_DONTWAIT) ? FNONBLOCK : 0));
1440 	mutex_exit(&so->so_lock);
1441 	if (error) {
1442 		SO_UNBLOCK_FALLBACK(so);
1443 		return (error);
1444 	}
1445 
1446 	suiop = sod_rcv_init(so, flags, &uiop);
1447 retry:
1448 	saved_resid = uiop->uio_resid;
1449 	error = so_dequeue_msg(so, &mctlp, uiop, &rval, flags);
1450 	if (error != 0) {
1451 		goto out;
1452 	}
1453 	/*
1454 	 * For datagrams the MOREDATA flag is used to set MSG_TRUNC.
1455 	 * For non-datagrams MOREDATA is used to set MSG_EOR.
1456 	 */
1457 	ASSERT(!(rval.r_val1 & MORECTL));
1458 	if ((rval.r_val1 & MOREDATA) && (so->so_mode & SM_ATOMIC))
1459 		msg->msg_flags |= MSG_TRUNC;
1460 	if (mctlp == NULL) {
1461 		dprintso(so, 1, ("so_recvmsg: got M_DATA\n"));
1462 
1463 		mutex_enter(&so->so_lock);
1464 		/* Set MSG_EOR based on MOREDATA */
1465 		if (!(rval.r_val1 & MOREDATA)) {
1466 			if (so->so_state & SS_SAVEDEOR) {
1467 				msg->msg_flags |= MSG_EOR;
1468 				so->so_state &= ~SS_SAVEDEOR;
1469 			}
1470 		}
1471 		/*
1472 		 * If some data was received (i.e. not EOF) and the
1473 		 * read/recv* has not been satisfied wait for some more.
1474 		 */
1475 		if ((flags & MSG_WAITALL) && !(msg->msg_flags & MSG_EOR) &&
1476 		    uiop->uio_resid != saved_resid && uiop->uio_resid > 0) {
1477 			mutex_exit(&so->so_lock);
1478 			goto retry;
1479 		}
1480 
1481 		goto out_locked;
1482 	}
1483 	/* strsock_proto has already verified length and alignment */
1484 	tpr = (union T_primitives *)mctlp->b_rptr;
1485 	dprintso(so, 1, ("so_recvmsg: type %d\n", tpr->type));
1486 	switch (tpr->type) {
1487 	case T_DATA_IND: {
1488 		/*
1489 		 * Set msg_flags to MSG_EOR based on
1490 		 * MORE_flag and MOREDATA.
1491 		 */
1492 		mutex_enter(&so->so_lock);
1493 		so->so_state &= ~SS_SAVEDEOR;
1494 		if (!(tpr->data_ind.MORE_flag & 1)) {
1495 			if (!(rval.r_val1 & MOREDATA))
1496 				msg->msg_flags |= MSG_EOR;
1497 			else
1498 				so->so_state |= SS_SAVEDEOR;
1499 		}
1500 		freemsg(mctlp);
1501 		/*
1502 		 * If some data was received (i.e. not EOF) and the
1503 		 * read/recv* has not been satisfied wait for some more.
1504 		 */
1505 		if ((flags & MSG_WAITALL) && !(msg->msg_flags & MSG_EOR) &&
1506 		    uiop->uio_resid != saved_resid && uiop->uio_resid > 0) {
1507 			mutex_exit(&so->so_lock);
1508 			goto retry;
1509 		}
1510 		goto out_locked;
1511 	}
1512 	case T_UNITDATA_IND: {
1513 		void *addr;
1514 		t_uscalar_t addrlen;
1515 		void *abuf;
1516 		t_uscalar_t optlen;
1517 		void *opt;
1518 
1519 		if (namelen != 0) {
1520 			/* Caller wants source address */
1521 			addrlen = tpr->unitdata_ind.SRC_length;
1522 			addr = sogetoff(mctlp, tpr->unitdata_ind.SRC_offset,
1523 			    addrlen, 1);
1524 			if (addr == NULL) {
1525 				freemsg(mctlp);
1526 				error = EPROTO;
1527 				eprintsoline(so, error);
1528 				goto out;
1529 			}
1530 			ASSERT(so->so_family != AF_UNIX);
1531 		}
1532 		optlen = tpr->unitdata_ind.OPT_length;
1533 		if (optlen != 0) {
1534 			t_uscalar_t ncontrollen;
1535 
1536 			/*
1537 			 * Extract any source address option.
1538 			 * Determine how large cmsg buffer is needed.
1539 			 */
1540 			opt = sogetoff(mctlp, tpr->unitdata_ind.OPT_offset,
1541 			    optlen, __TPI_ALIGN_SIZE);
1542 
1543 			if (opt == NULL) {
1544 				freemsg(mctlp);
1545 				error = EPROTO;
1546 				eprintsoline(so, error);
1547 				goto out;
1548 			}
1549 			if (so->so_family == AF_UNIX)
1550 				so_getopt_srcaddr(opt, optlen, &addr, &addrlen);
1551 			ncontrollen = so_cmsglen(mctlp, opt, optlen,
1552 			    !(flags & MSG_XPG4_2));
1553 			if (controllen != 0)
1554 				controllen = ncontrollen;
1555 			else if (ncontrollen != 0)
1556 				msg->msg_flags |= MSG_CTRUNC;
1557 		} else {
1558 			controllen = 0;
1559 		}
1560 
1561 		if (namelen != 0) {
1562 			/*
1563 			 * Return address to caller.
1564 			 * Caller handles truncation if length
1565 			 * exceeds msg_namelen.
1566 			 * NOTE: AF_UNIX NUL termination is ensured by
1567 			 * the sender's copyin_name().
1568 			 */
1569 			abuf = kmem_alloc(addrlen, KM_SLEEP);
1570 
1571 			bcopy(addr, abuf, addrlen);
1572 			msg->msg_name = abuf;
1573 			msg->msg_namelen = addrlen;
1574 		}
1575 
1576 		if (controllen != 0) {
1577 			/*
1578 			 * Return control msg to caller.
1579 			 * Caller handles truncation if length
1580 			 * exceeds msg_controllen.
1581 			 */
1582 			control = kmem_zalloc(controllen, KM_SLEEP);
1583 
1584 			error = so_opt2cmsg(mctlp, opt, optlen,
1585 			    !(flags & MSG_XPG4_2), control, controllen);
1586 			if (error) {
1587 				freemsg(mctlp);
1588 				if (msg->msg_namelen != 0)
1589 					kmem_free(msg->msg_name,
1590 					    msg->msg_namelen);
1591 				kmem_free(control, controllen);
1592 				eprintsoline(so, error);
1593 				goto out;
1594 			}
1595 			msg->msg_control = control;
1596 			msg->msg_controllen = controllen;
1597 		}
1598 
1599 		freemsg(mctlp);
1600 		goto out;
1601 	}
1602 	case T_OPTDATA_IND: {
1603 		struct T_optdata_req *tdr;
1604 		void *opt;
1605 		t_uscalar_t optlen;
1606 
1607 		tdr = (struct T_optdata_req *)mctlp->b_rptr;
1608 		optlen = tdr->OPT_length;
1609 		if (optlen != 0) {
1610 			t_uscalar_t ncontrollen;
1611 			/*
1612 			 * Determine how large cmsg buffer is needed.
1613 			 */
1614 			opt = sogetoff(mctlp,
1615 			    tpr->optdata_ind.OPT_offset, optlen,
1616 			    __TPI_ALIGN_SIZE);
1617 
1618 			if (opt == NULL) {
1619 				freemsg(mctlp);
1620 				error = EPROTO;
1621 				eprintsoline(so, error);
1622 				goto out;
1623 			}
1624 
1625 			ncontrollen = so_cmsglen(mctlp, opt, optlen,
1626 			    !(flags & MSG_XPG4_2));
1627 			if (controllen != 0)
1628 				controllen = ncontrollen;
1629 			else if (ncontrollen != 0)
1630 				msg->msg_flags |= MSG_CTRUNC;
1631 		} else {
1632 			controllen = 0;
1633 		}
1634 
1635 		if (controllen != 0) {
1636 			/*
1637 			 * Return control msg to caller.
1638 			 * Caller handles truncation if length
1639 			 * exceeds msg_controllen.
1640 			 */
1641 			control = kmem_zalloc(controllen, KM_SLEEP);
1642 
1643 			error = so_opt2cmsg(mctlp, opt, optlen,
1644 			    !(flags & MSG_XPG4_2), control, controllen);
1645 			if (error) {
1646 				freemsg(mctlp);
1647 				kmem_free(control, controllen);
1648 				eprintsoline(so, error);
1649 				goto out;
1650 			}
1651 			msg->msg_control = control;
1652 			msg->msg_controllen = controllen;
1653 		}
1654 
1655 		/*
1656 		 * Set msg_flags to MSG_EOR based on
1657 		 * DATA_flag and MOREDATA.
1658 		 */
1659 		mutex_enter(&so->so_lock);
1660 		so->so_state &= ~SS_SAVEDEOR;
1661 		if (!(tpr->data_ind.MORE_flag & 1)) {
1662 			if (!(rval.r_val1 & MOREDATA))
1663 				msg->msg_flags |= MSG_EOR;
1664 			else
1665 				so->so_state |= SS_SAVEDEOR;
1666 		}
1667 		freemsg(mctlp);
1668 		/*
1669 		 * If some data was received (i.e. not EOF) and the
1670 		 * read/recv* has not been satisfied wait for some more.
1671 		 * Not possible to wait if control info was received.
1672 		 */
1673 		if ((flags & MSG_WAITALL) && !(msg->msg_flags & MSG_EOR) &&
1674 		    controllen == 0 &&
1675 		    uiop->uio_resid != saved_resid && uiop->uio_resid > 0) {
1676 			mutex_exit(&so->so_lock);
1677 			goto retry;
1678 		}
1679 		goto out_locked;
1680 	}
1681 	default:
1682 		cmn_err(CE_CONT, "so_recvmsg bad type %x \n",
1683 		    tpr->type);
1684 		freemsg(mctlp);
1685 		error = EPROTO;
1686 		ASSERT(0);
1687 	}
1688 out:
1689 	mutex_enter(&so->so_lock);
1690 out_locked:
1691 	/* The sod_lockp pointers to the sonode so_lock */
1692 	ret = sod_rcv_done(so, suiop, uiop);
1693 	if (ret != 0 && error == 0)
1694 		error = ret;
1695 
1696 	so_unlock_read(so);	/* Clear SOREADLOCKED */
1697 	mutex_exit(&so->so_lock);
1698 
1699 	SO_UNBLOCK_FALLBACK(so);
1700 
1701 	return (error);
1702 }
1703 
1704 sonodeops_t so_sonodeops = {
1705 	so_init,		/* sop_init	*/
1706 	so_accept,		/* sop_accept   */
1707 	so_bind,		/* sop_bind	*/
1708 	so_listen,		/* sop_listen   */
1709 	so_connect,		/* sop_connect  */
1710 	so_recvmsg,		/* sop_recvmsg  */
1711 	so_sendmsg,		/* sop_sendmsg  */
1712 	so_sendmblk,		/* sop_sendmblk */
1713 	so_getpeername,		/* sop_getpeername */
1714 	so_getsockname,		/* sop_getsockname */
1715 	so_shutdown,		/* sop_shutdown */
1716 	so_getsockopt,		/* sop_getsockopt */
1717 	so_setsockopt,		/* sop_setsockopt */
1718 	so_ioctl,		/* sop_ioctl    */
1719 	so_poll,		/* sop_poll	*/
1720 	so_close,		/* sop_close */
1721 };
1722 
1723 sock_upcalls_t so_upcalls = {
1724 	so_newconn,
1725 	so_connected,
1726 	so_disconnected,
1727 	so_opctl,
1728 	so_queue_msg,
1729 	so_set_prop,
1730 	so_txq_full,
1731 	so_signal_oob,
1732 	so_zcopy_notify,
1733 	so_set_error
1734 };
1735