Blame - src/proto_uxst.c - haproxy

blob: 69253732b20e79a5a80d227ef38a01803d489ca2 [file] [log] [blame]

Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	1	/*
				2	* UNIX SOCK_STREAM protocol layer (uxst)
				3	*
Willy Tarreau	eb47268	2010-05-28 18:46:57 +0200	[diff] [blame]	4	* Copyright 2000-2010 Willy Tarreau <w@1wt.eu>
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	5	*
				6	* This program is free software; you can redistribute it and/or
				7	* modify it under the terms of the GNU General Public License
				8	* as published by the Free Software Foundation; either version
				9	* 2 of the License, or (at your option) any later version.
				10	*
				11	*/
				12
				13	#include <ctype.h>
				14	#include <errno.h>
				15	#include <fcntl.h>
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	16	#include <pwd.h>
				17	#include <grp.h>
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	18	#include <stdio.h>
				19	#include <stdlib.h>
				20	#include <string.h>
				21	#include <syslog.h>
				22	#include <time.h>
				23
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	24	#include <sys/socket.h>
				25	#include <sys/stat.h>
				26	#include <sys/types.h>
				27	#include <sys/un.h>
				28
Willy Tarreau	4c7e4b7	2020-05-27 12:58:42 +0200	[diff] [blame]	29	#include <haproxy/api.h>
Willy Tarreau	8d36697	2020-05-27 16:10:29 +0200	[diff] [blame]	30	#include <haproxy/errors.h>
Willy Tarreau	f268ee8	2020-06-04 17:05:57 +0200	[diff] [blame^]	31	#include <haproxy/global.h>
Willy Tarreau	853b297	2020-05-27 18:01:47 +0200	[diff] [blame]	32	#include <haproxy/list.h>
Willy Tarreau	213e990	2020-06-04 14:58:24 +0200	[diff] [blame]	33	#include <haproxy/listener.h>
Willy Tarreau	48fbcae	2020-06-03 18:09:46 +0200	[diff] [blame]	34	#include <haproxy/tools.h>
Willy Tarreau	92b4f13	2020-06-01 11:05:15 +0200	[diff] [blame]	35	#include <haproxy/time.h>
Willy Tarreau	d678805	2020-05-27 15:59:00 +0200	[diff] [blame]	36	#include <haproxy/version.h>
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	37
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	38	#include <proto/connection.h>
Willy Tarreau	0f6ffd6	2020-06-03 19:33:00 +0200	[diff] [blame]	39	#include <haproxy/fd.h>
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	40	#include <proto/log.h>
Willy Tarreau	2dd7c35	2020-06-03 15:26:55 +0200	[diff] [blame]	41	#include <haproxy/protocol.h>
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	42	#include <proto/task.h>
				43
Emeric Brun	cf20bf1	2010-10-22 16:06:11 +0200	[diff] [blame]	44	static int uxst_bind_listener(struct listener listener, char errmsg, int errlen);
				45	static int uxst_bind_listeners(struct protocol proto, char errmsg, int errlen);
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	46	static int uxst_unbind_listeners(struct protocol *proto);
Olivier Houchard	fdcb007	2019-05-06 18:32:29 +0200	[diff] [blame]	47	static int uxst_connect_server(struct connection *conn, int flags);
Willy Tarreau	9d5be5c	2017-09-15 07:55:51 +0200	[diff] [blame]	48	static void uxst_add_listener(struct listener *listener, int port);
Willy Tarreau	3179489	2017-09-15 07:59:31 +0200	[diff] [blame]	49	static int uxst_pause_listener(struct listener *l);
				50	static int uxst_get_src(int fd, struct sockaddr *sa, socklen_t salen, int dir);
				51	static int uxst_get_dst(int fd, struct sockaddr *sa, socklen_t salen, int dir);
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	52
				53	/* Note: must not be declared <const> as its list will be overwritten */
				54	static struct protocol proto_unix = {
				55	.name = "unix_stream",
				56	.sock_domain = PF_UNIX,
				57	.sock_type = SOCK_STREAM,
				58	.sock_prot = 0,
				59	.sock_family = AF_UNIX,
				60	.sock_addrlen = sizeof(struct sockaddr_un),
				61	.l3_addrlen = sizeof(((struct sockaddr_un)0)->sun_path),/ path len */
Willy Tarreau	bbebbbf	2012-05-07 21:22:09 +0200	[diff] [blame]	62	.accept = &listener_accept,
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	63	.connect = &uxst_connect_server,
Emeric Brun	cf20bf1	2010-10-22 16:06:11 +0200	[diff] [blame]	64	.bind = uxst_bind_listener,
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	65	.bind_all = uxst_bind_listeners,
				66	.unbind_all = uxst_unbind_listeners,
				67	.enable_all = enable_all_listeners,
				68	.disable_all = disable_all_listeners,
Willy Tarreau	59b9479	2012-05-11 16:16:40 +0200	[diff] [blame]	69	.get_src = uxst_get_src,
				70	.get_dst = uxst_get_dst,
Willy Tarreau	fd0e008	2014-07-07 21:07:51 +0200	[diff] [blame]	71	.pause = uxst_pause_listener,
Willy Tarreau	9d5be5c	2017-09-15 07:55:51 +0200	[diff] [blame]	72	.add = uxst_add_listener,
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	73	.listeners = LIST_HEAD_INIT(proto_unix.listeners),
				74	.nb_listeners = 0,
				75	};
				76
Willy Tarreau	0108d90	2018-11-25 19:14:37 +0100	[diff] [blame]	77	INITCALL1(STG_REGISTER, protocol_register, &proto_unix);
				78
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	79	/********************************
				80	* 1) low-level socket functions
				81	********************************/
				82
Willy Tarreau	59b9479	2012-05-11 16:16:40 +0200	[diff] [blame]	83	/*
				84	* Retrieves the source address for the socket <fd>, with <dir> indicating
				85	* if we're a listener (=0) or an initiator (!=0). It returns 0 in case of
				86	* success, -1 in case of error. The socket's source address is stored in
				87	* <sa> for <salen> bytes.
				88	*/
Willy Tarreau	3179489	2017-09-15 07:59:31 +0200	[diff] [blame]	89	static int uxst_get_src(int fd, struct sockaddr *sa, socklen_t salen, int dir)
Willy Tarreau	59b9479	2012-05-11 16:16:40 +0200	[diff] [blame]	90	{
				91	if (dir)
				92	return getsockname(fd, sa, &salen);
				93	else
				94	return getpeername(fd, sa, &salen);
				95	}
				96
				97
				98	/*
				99	* Retrieves the original destination address for the socket <fd>, with <dir>
				100	* indicating if we're a listener (=0) or an initiator (!=0). It returns 0 in
				101	* case of success, -1 in case of error. The socket's source address is stored
				102	* in <sa> for <salen> bytes.
				103	*/
Willy Tarreau	3179489	2017-09-15 07:59:31 +0200	[diff] [blame]	104	static int uxst_get_dst(int fd, struct sockaddr *sa, socklen_t salen, int dir)
Willy Tarreau	59b9479	2012-05-11 16:16:40 +0200	[diff] [blame]	105	{
				106	if (dir)
				107	return getpeername(fd, sa, &salen);
				108	else
				109	return getsockname(fd, sa, &salen);
				110	}
				111
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	112
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	113	/********************************
				114	* 2) listener-oriented functions
				115	********************************/
				116
				117
Olivier Houchard	f886e34	2017-04-05 22:24:59 +0200	[diff] [blame]	118	static int uxst_find_compatible_fd(struct listener *l)
				119	{
				120	struct xfer_sock_list *xfer_sock = xfer_sock_list;
				121	int ret = -1;
				122
				123	while (xfer_sock) {
				124	struct sockaddr_un un1 = (void )&l->addr;
				125	struct sockaddr_un un2 = (void )&xfer_sock->addr;
				126
				127	/*
				128	* The bound socket's path as returned by getsockaddr
				129	* will be the temporary name <sockname>.XXXXX.tmp,
				130	* so we can't just compare the two names
				131	*/
				132	if (xfer_sock->addr.ss_family == AF_UNIX &&
				133	strncmp(un1->sun_path, un2->sun_path,
				134	strlen(un1->sun_path)) == 0) {
				135	char *after_sockname = un2->sun_path +
				136	strlen(un1->sun_path);
				137	/* Make a reasonnable effort to check that
				138	* it is indeed a haproxy-generated temporary
				139	* name, it's not perfect, but probably good enough.
				140	*/
				141	if (after_sockname[0] == '.') {
				142	after_sockname++;
				143	while (after_sockname[0] >= '0' &&
				144	after_sockname[0] <= '9')
				145	after_sockname++;
				146	if (!strcmp(after_sockname, ".tmp"))
				147	break;
Olivier Houchard	b4dd15b	2018-06-06 18:34:34 +0200	[diff] [blame]	148	/* abns sockets sun_path starts with a \0 */
				149	} else if (un1->sun_path[0] == 0
				150	&& un2->sun_path[0] == 0
				151	&& !memcmp(&un1->sun_path[1], &un2->sun_path[1],
				152	sizeof(un1->sun_path) - 1))
				153	break;
Olivier Houchard	f886e34	2017-04-05 22:24:59 +0200	[diff] [blame]	154	}
				155	xfer_sock = xfer_sock->next;
				156	}
				157	if (xfer_sock != NULL) {
				158	ret = xfer_sock->fd;
				159	if (xfer_sock == xfer_sock_list)
				160	xfer_sock_list = xfer_sock->next;
				161	if (xfer_sock->prev)
				162	xfer_sock->prev->next = xfer_sock->next;
				163	if (xfer_sock->next)
Olivier Houchard	ec9516a	2018-03-08 18:25:49 +0100	[diff] [blame]	164	xfer_sock->next->prev = xfer_sock->prev;
Olivier Houchard	f886e34	2017-04-05 22:24:59 +0200	[diff] [blame]	165	free(xfer_sock);
				166	}
				167	return ret;
				168
				169	}
				170
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	171	/* This function creates a UNIX socket associated to the listener. It changes
				172	* the state from ASSIGNED to LISTEN. The socket is NOT enabled for polling.
Willy Tarreau	8ab505b	2013-01-24 01:41:38 +0100	[diff] [blame]	173	* The return value is composed from ERR_NONE, ERR_RETRYABLE and ERR_FATAL. It
				174	* may return a warning or an error message in <errmsg> if the message is at
				175	* most <errlen> bytes long (including '\0'). Note that <errmsg> may be NULL if
				176	* <errlen> is also zero.
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	177	*/
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	178	static int uxst_bind_listener(struct listener listener, char errmsg, int errlen)
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	179	{
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	180	int fd;
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	181	char tempname[MAXPATHLEN];
				182	char backname[MAXPATHLEN];
				183	struct sockaddr_un addr;
Willy Tarreau	b40dc94	2010-11-07 12:10:51 +0100	[diff] [blame]	184	const char *msg = NULL;
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	185	const char *path;
Willy Tarreau	327ea5a	2020-02-11 06:43:37 +0100	[diff] [blame]	186	int maxpathlen;
Willy Tarreau	40aa070	2013-03-10 23:51:38 +0100	[diff] [blame]	187	int ext, ready;
				188	socklen_t ready_len;
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	189	int err;
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	190	int ret;
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	191
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	192	err = ERR_NONE;
				193
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	194	/* ensure we never return garbage */
Willy Tarreau	8ab505b	2013-01-24 01:41:38 +0100	[diff] [blame]	195	if (errlen)
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	196	*errmsg = 0;
				197
				198	if (listener->state != LI_ASSIGNED)
				199	return ERR_NONE; /* already bound */
				200
Olivier Houchard	f886e34	2017-04-05 22:24:59 +0200	[diff] [blame]	201	if (listener->fd == -1)
				202	listener->fd = uxst_find_compatible_fd(listener);
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	203	path = ((struct sockaddr_un *)&listener->addr)->sun_path;
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	204
Willy Tarreau	327ea5a	2020-02-11 06:43:37 +0100	[diff] [blame]	205	maxpathlen = MIN(MAXPATHLEN, sizeof(addr.sun_path));
				206
Willy Tarreau	40aa070	2013-03-10 23:51:38 +0100	[diff] [blame]	207	/* if the listener already has an fd assigned, then we were offered the
				208	* fd by an external process (most likely the parent), and we don't want
				209	* to create a new socket. However we still want to set a few flags on
				210	* the socket.
				211	*/
				212	fd = listener->fd;
				213	ext = (fd >= 0);
				214	if (ext)
				215	goto fd_ready;
				216
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	217	if (path[0]) {
Willy Tarreau	327ea5a	2020-02-11 06:43:37 +0100	[diff] [blame]	218	ret = snprintf(tempname, maxpathlen, "%s.%d.tmp", path, pid);
				219	if (ret < 0 \|\| ret >= maxpathlen) {
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	220	err \|= ERR_FATAL \| ERR_ALERT;
Willy Tarreau	327ea5a	2020-02-11 06:43:37 +0100	[diff] [blame]	221	msg = "name too long for UNIX socket (limit usually 97)";
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	222	goto err_return;
				223	}
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	224
Willy Tarreau	327ea5a	2020-02-11 06:43:37 +0100	[diff] [blame]	225	ret = snprintf(backname, maxpathlen, "%s.%d.bak", path, pid);
				226	if (ret < 0 \|\| ret >= maxpathlen) {
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	227	err \|= ERR_FATAL \| ERR_ALERT;
Willy Tarreau	327ea5a	2020-02-11 06:43:37 +0100	[diff] [blame]	228	msg = "name too long for UNIX socket (limit usually 97)";
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	229	goto err_return;
				230	}
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	231
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	232	/* 2. clean existing orphaned entries */
				233	if (unlink(tempname) < 0 && errno != ENOENT) {
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	234	err \|= ERR_FATAL \| ERR_ALERT;
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	235	msg = "error when trying to unlink previous UNIX socket";
				236	goto err_return;
				237	}
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	238
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	239	if (unlink(backname) < 0 && errno != ENOENT) {
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	240	err \|= ERR_FATAL \| ERR_ALERT;
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	241	msg = "error when trying to unlink previous UNIX socket";
				242	goto err_return;
				243	}
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	244
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	245	/* 3. backup existing socket */
				246	if (link(path, backname) < 0 && errno != ENOENT) {
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	247	err \|= ERR_FATAL \| ERR_ALERT;
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	248	msg = "error when trying to preserve previous UNIX socket";
				249	goto err_return;
				250	}
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	251
Willy Tarreau	719e07c	2019-12-11 16:29:10 +0100	[diff] [blame]	252	strncpy(addr.sun_path, tempname, sizeof(addr.sun_path) - 1);
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	253	addr.sun_path[sizeof(addr.sun_path) - 1] = 0;
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	254	}
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	255	else {
				256	/* first char is zero, it's an abstract socket whose address
				257	* is defined by all the bytes past this zero.
				258	*/
				259	memcpy(addr.sun_path, path, sizeof(addr.sun_path));
				260	}
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	261	addr.sun_family = AF_UNIX;
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	262
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	263	fd = socket(PF_UNIX, SOCK_STREAM, 0);
				264	if (fd < 0) {
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	265	err \|= ERR_FATAL \| ERR_ALERT;
Willy Tarreau	b40dc94	2010-11-07 12:10:51 +0100	[diff] [blame]	266	msg = "cannot create UNIX socket";
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	267	goto err_unlink_back;
				268	}
				269
Willy Tarreau	40aa070	2013-03-10 23:51:38 +0100	[diff] [blame]	270	fd_ready:
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	271	if (fd >= global.maxsock) {
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	272	err \|= ERR_FATAL \| ERR_ALERT;
Willy Tarreau	b40dc94	2010-11-07 12:10:51 +0100	[diff] [blame]	273	msg = "socket(): not enough free sockets, raise -n argument";
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	274	goto err_unlink_temp;
				275	}
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	276
				277	if (fcntl(fd, F_SETFL, O_NONBLOCK) == -1) {
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	278	err \|= ERR_FATAL \| ERR_ALERT;
Willy Tarreau	b40dc94	2010-11-07 12:10:51 +0100	[diff] [blame]	279	msg = "cannot make UNIX socket non-blocking";
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	280	goto err_unlink_temp;
				281	}
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	282
Willy Tarreau	40aa070	2013-03-10 23:51:38 +0100	[diff] [blame]	283	if (!ext && bind(fd, (struct sockaddr *)&addr, sizeof(addr)) < 0) {
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	284	/* note that bind() creates the socket <tempname> on the file system */
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	285	if (errno == EADDRINUSE) {
				286	/* the old process might still own it, let's retry */
				287	err \|= ERR_RETRYABLE \| ERR_ALERT;
				288	msg = "cannot listen to socket";
				289	}
				290	else {
				291	err \|= ERR_FATAL \| ERR_ALERT;
				292	msg = "cannot bind UNIX socket";
				293	}
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	294	goto err_unlink_temp;
				295	}
				296
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	297	/* <uid> and <gid> different of -1 will be used to change the socket owner.
				298	* If <mode> is not 0, it will be used to restrict access to the socket.
				299	* While it is known not to be portable on every OS, it's still useful
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	300	* where it works. We also don't change permissions on abstract sockets.
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	301	*/
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	302	if (!ext && path[0] &&
Willy Tarreau	40aa070	2013-03-10 23:51:38 +0100	[diff] [blame]	303	(((listener->bind_conf->ux.uid != -1 \|\| listener->bind_conf->ux.gid != -1) &&
				304	(chown(tempname, listener->bind_conf->ux.uid, listener->bind_conf->ux.gid) == -1)) \|\|
				305	(listener->bind_conf->ux.mode != 0 && chmod(tempname, listener->bind_conf->ux.mode) == -1))) {
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	306	err \|= ERR_FATAL \| ERR_ALERT;
Willy Tarreau	b40dc94	2010-11-07 12:10:51 +0100	[diff] [blame]	307	msg = "cannot change UNIX socket ownership";
Willy Tarreau	e6ad2b1	2007-10-18 12:45:54 +0200	[diff] [blame]	308	goto err_unlink_temp;
				309	}
				310
Willy Tarreau	40aa070	2013-03-10 23:51:38 +0100	[diff] [blame]	311	ready = 0;
				312	ready_len = sizeof(ready);
				313	if (getsockopt(fd, SOL_SOCKET, SO_ACCEPTCONN, &ready, &ready_len) == -1)
				314	ready = 0;
				315
				316	if (!(ext && ready) && /* only listen if not already done by external process */
Willy Tarreau	e2711c7	2019-02-27 15:39:41 +0100	[diff] [blame]	317	listen(fd, listener_backlog(listener)) < 0) {
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	318	err \|= ERR_FATAL \| ERR_ALERT;
Willy Tarreau	b40dc94	2010-11-07 12:10:51 +0100	[diff] [blame]	319	msg = "cannot listen to UNIX socket";
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	320	goto err_unlink_temp;
				321	}
				322
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	323	/* Point of no return: we are ready, we'll switch the sockets. We don't
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	324	* fear loosing the socket <path> because we have a copy of it in
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	325	* backname. Abstract sockets are not renamed.
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	326	*/
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	327	if (!ext && path[0] && rename(tempname, path) < 0) {
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	328	err \|= ERR_FATAL \| ERR_ALERT;
Willy Tarreau	b40dc94	2010-11-07 12:10:51 +0100	[diff] [blame]	329	msg = "cannot switch final and temporary UNIX sockets";
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	330	goto err_rename;
				331	}
				332
Willy Tarreau	68986ab	2017-06-16 10:34:20 +0200	[diff] [blame]	333	/* Cleanup: only unlink if we didn't inherit the fd from the parent */
Willy Tarreau	ccfccef	2014-05-10 01:49:15 +0200	[diff] [blame]	334	if (!ext && path[0])
Willy Tarreau	40aa070	2013-03-10 23:51:38 +0100	[diff] [blame]	335	unlink(backname);
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	336
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	337	/* the socket is now listening */
				338	listener->fd = fd;
				339	listener->state = LI_LISTEN;
				340
Willy Tarreau	a9786b6	2018-01-25 07:22:13 +0100	[diff] [blame]	341	fd_insert(fd, listener, listener->proto->accept,
Willy Tarreau	0948a78	2020-02-12 10:15:34 +0100	[diff] [blame]	342	thread_mask(listener->bind_conf->bind_thread) & all_threads_mask);
Willy Tarreau	a9786b6	2018-01-25 07:22:13 +0100	[diff] [blame]	343
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	344	return err;
				345
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	346	err_rename:
				347	ret = rename(backname, path);
				348	if (ret < 0 && errno == ENOENT)
				349	unlink(path);
				350	err_unlink_temp:
Jan Seda	7319b64	2014-06-26 20:44:05 +0200	[diff] [blame]	351	if (!ext && path[0])
Willy Tarreau	40aa070	2013-03-10 23:51:38 +0100	[diff] [blame]	352	unlink(tempname);
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	353	close(fd);
				354	err_unlink_back:
Jan Seda	7319b64	2014-06-26 20:44:05 +0200	[diff] [blame]	355	if (!ext && path[0])
Willy Tarreau	40aa070	2013-03-10 23:51:38 +0100	[diff] [blame]	356	unlink(backname);
Cyril Bonté	1f5848a	2010-11-14 17:03:19 +0100	[diff] [blame]	357	err_return:
Willy Tarreau	40aa070	2013-03-10 23:51:38 +0100	[diff] [blame]	358	if (msg && errlen) {
				359	if (!ext)
				360	snprintf(errmsg, errlen, "%s [%s]", msg, path);
				361	else
				362	snprintf(errmsg, errlen, "%s [fd %d]", msg, fd);
				363	}
Willy Tarreau	3c5efa2	2014-07-07 18:36:45 +0200	[diff] [blame]	364	return err;
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	365	}
				366
				367	/* This function closes the UNIX sockets for the specified listener.
				368	* The listener enters the LI_ASSIGNED state. It always returns ERR_NONE.
				369	*/
				370	static int uxst_unbind_listener(struct listener *listener)
				371	{
Willy Tarreau	be58c38	2011-07-24 18:28:10 +0200	[diff] [blame]	372	if (listener->state > LI_ASSIGNED) {
				373	unbind_listener(listener);
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	374	}
				375	return ERR_NONE;
				376	}
				377
Willy Tarreau	3228238	2017-09-15 07:44:44 +0200	[diff] [blame]	378	/* Add <listener> to the list of unix stream listeners (port is ignored). The
				379	* listener's state is automatically updated from LI_INIT to LI_ASSIGNED.
				380	* The number of listeners for the protocol is updated.
Willy Tarreau	daacf36	2019-07-24 16:45:02 +0200	[diff] [blame]	381	*
				382	* Must be called with proto_lock held.
				383	*
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	384	*/
Willy Tarreau	9d5be5c	2017-09-15 07:55:51 +0200	[diff] [blame]	385	static void uxst_add_listener(struct listener *listener, int port)
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	386	{
				387	if (listener->state != LI_INIT)
				388	return;
				389	listener->state = LI_ASSIGNED;
				390	listener->proto = &proto_unix;
				391	LIST_ADDQ(&proto_unix.listeners, &listener->proto_list);
				392	proto_unix.nb_listeners++;
				393	}
				394
Willy Tarreau	fd0e008	2014-07-07 21:07:51 +0200	[diff] [blame]	395	/* Pause a listener. Returns < 0 in case of failure, 0 if the listener
				396	* was totally stopped, or > 0 if correctly paused. Nothing is done for
				397	* plain unix sockets since currently it's the new process which handles
				398	* the renaming. Abstract sockets are completely unbound.
				399	*/
Willy Tarreau	3179489	2017-09-15 07:59:31 +0200	[diff] [blame]	400	static int uxst_pause_listener(struct listener *l)
Willy Tarreau	fd0e008	2014-07-07 21:07:51 +0200	[diff] [blame]	401	{
				402	if (((struct sockaddr_un *)&l->addr)->sun_path[0])
				403	return 1;
				404
Christopher Faulet	510c0d6	2018-03-16 10:04:47 +0100	[diff] [blame]	405	/* Listener's lock already held. Call lockless version of
				406	* unbind_listener. */
				407	do_unbind_listener(l, 1);
Willy Tarreau	fd0e008	2014-07-07 21:07:51 +0200	[diff] [blame]	408	return 0;
				409	}
				410
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	411
				412	/*
				413	* This function initiates a UNIX connection establishment to the target assigned
Willy Tarreau	ca9f5a9	2019-07-17 16:40:37 +0200	[diff] [blame]	414	* to connection <conn> using (si->{target,dst}). The source address is ignored
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	415	* and will be selected by the system. conn->target may point either to a valid
				416	* server or to a backend, depending on conn->target. Only OBJ_TYPE_PROXY and
				417	* OBJ_TYPE_SERVER are supported. The <data> parameter is a boolean indicating
				418	* whether there are data waiting for being sent or not, in order to adjust data
				419	* write polling and on some platforms. The <delack> argument is ignored.
				420	*
				421	* Note that a pending send_proxy message accounts for data.
				422	*
				423	* It can return one of :
Willy Tarreau	e7dff02	2015-04-03 01:14:29 +0200	[diff] [blame]	424	* - SF_ERR_NONE if everything's OK
				425	* - SF_ERR_SRVTO if there are no more servers
				426	* - SF_ERR_SRVCL if the connection was refused by the server
				427	* - SF_ERR_PRXCOND if the connection has been limited by the proxy (maxconn)
				428	* - SF_ERR_RESOURCE if a system resource is lacking (eg: fd limits, ports, ...)
				429	* - SF_ERR_INTERNAL for any other purely internal errors
Tim Düsterhus	4896c44	2016-11-29 02:15:19 +0100	[diff] [blame]	430	* Additionally, in the case of SF_ERR_RESOURCE, an emergency log will be emitted.
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	431	*
Willy Tarreau	e7dff02	2015-04-03 01:14:29 +0200	[diff] [blame]	432	* The connection's fd is inserted only when SF_ERR_NONE is returned, otherwise
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	433	* it's invalid and the caller has nothing to do.
				434	*/
Olivier Houchard	fdcb007	2019-05-06 18:32:29 +0200	[diff] [blame]	435	static int uxst_connect_server(struct connection *conn, int flags)
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	436	{
				437	int fd;
				438	struct server *srv;
				439	struct proxy *be;
				440
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	441	switch (obj_type(conn->target)) {
				442	case OBJ_TYPE_PROXY:
				443	be = objt_proxy(conn->target);
				444	srv = NULL;
				445	break;
				446	case OBJ_TYPE_SERVER:
				447	srv = objt_server(conn->target);
				448	be = srv->proxy;
				449	break;
				450	default:
				451	conn->flags \|= CO_FL_ERROR;
Willy Tarreau	e7dff02	2015-04-03 01:14:29 +0200	[diff] [blame]	452	return SF_ERR_INTERNAL;
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	453	}
				454
Willy Tarreau	585744b	2017-08-24 14:31:19 +0200	[diff] [blame]	455	if ((fd = conn->handle.fd = socket(PF_UNIX, SOCK_STREAM, 0)) == -1) {
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	456	qfprintf(stderr, "Cannot get a server socket.\n");
				457
				458	if (errno == ENFILE) {
				459	conn->err_code = CO_ER_SYS_FDLIM;
				460	send_log(be, LOG_EMERG,
Willy Tarreau	c5532ac	2018-01-29 15:06:04 +0100	[diff] [blame]	461	"Proxy %s reached system FD limit (maxsock=%d). Please check system tunables.\n",
				462	be->id, global.maxsock);
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	463	}
				464	else if (errno == EMFILE) {
				465	conn->err_code = CO_ER_PROC_FDLIM;
				466	send_log(be, LOG_EMERG,
Willy Tarreau	c5532ac	2018-01-29 15:06:04 +0100	[diff] [blame]	467	"Proxy %s reached process FD limit (maxsock=%d). Please check 'ulimit-n' and restart.\n",
				468	be->id, global.maxsock);
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	469	}
				470	else if (errno == ENOBUFS \|\| errno == ENOMEM) {
				471	conn->err_code = CO_ER_SYS_MEMLIM;
				472	send_log(be, LOG_EMERG,
Willy Tarreau	c5532ac	2018-01-29 15:06:04 +0100	[diff] [blame]	473	"Proxy %s reached system memory limit (maxsock=%d). Please check system tunables.\n",
				474	be->id, global.maxsock);
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	475	}
				476	else if (errno == EAFNOSUPPORT \|\| errno == EPROTONOSUPPORT) {
				477	conn->err_code = CO_ER_NOPROTO;
				478	}
				479	else
				480	conn->err_code = CO_ER_SOCK_ERR;
				481
				482	/* this is a resource error */
				483	conn->flags \|= CO_FL_ERROR;
Willy Tarreau	e7dff02	2015-04-03 01:14:29 +0200	[diff] [blame]	484	return SF_ERR_RESOURCE;
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	485	}
				486
				487	if (fd >= global.maxsock) {
				488	/* do not log anything there, it's a normal condition when this option
				489	* is used to serialize connections to a server !
				490	*/
Christopher Faulet	767a84b	2017-11-24 16:50:31 +0100	[diff] [blame]	491	ha_alert("socket(): not enough free sockets. Raise -n argument. Giving up.\n");
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	492	close(fd);
				493	conn->err_code = CO_ER_CONF_FDLIM;
				494	conn->flags \|= CO_FL_ERROR;
Willy Tarreau	e7dff02	2015-04-03 01:14:29 +0200	[diff] [blame]	495	return SF_ERR_PRXCOND; /* it is a configuration limit */
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	496	}
				497
				498	if (fcntl(fd, F_SETFL, O_NONBLOCK) == -1) {
				499	qfprintf(stderr,"Cannot set client socket to non blocking mode.\n");
				500	close(fd);
				501	conn->err_code = CO_ER_SOCK_ERR;
				502	conn->flags \|= CO_FL_ERROR;
Willy Tarreau	e7dff02	2015-04-03 01:14:29 +0200	[diff] [blame]	503	return SF_ERR_INTERNAL;
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	504	}
				505
William Lallemand	c03eb01	2018-11-27 12:02:37 +0100	[diff] [blame]	506	if (master == 1 && (fcntl(fd, F_SETFD, FD_CLOEXEC) == -1)) {
				507	ha_alert("Cannot set CLOEXEC on client socket.\n");
				508	close(fd);
				509	conn->err_code = CO_ER_SOCK_ERR;
				510	conn->flags \|= CO_FL_ERROR;
				511	return SF_ERR_INTERNAL;
				512	}
				513
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	514	/* if a send_proxy is there, there are data */
Olivier Houchard	fdcb007	2019-05-06 18:32:29 +0200	[diff] [blame]	515	if (conn->send_proxy_ofs)
				516	flags \|= CONNECT_HAS_DATA;
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	517
				518	if (global.tune.server_sndbuf)
				519	setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &global.tune.server_sndbuf, sizeof(global.tune.server_sndbuf));
				520
				521	if (global.tune.server_rcvbuf)
				522	setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &global.tune.server_rcvbuf, sizeof(global.tune.server_rcvbuf));
				523
Willy Tarreau	ca9f5a9	2019-07-17 16:40:37 +0200	[diff] [blame]	524	if (connect(fd, (struct sockaddr *)conn->dst, get_addr_len(conn->dst)) == -1) {
Willy Tarreau	9484179	2017-01-25 14:27:38 +0100	[diff] [blame]	525	if (errno == EINPROGRESS \|\| errno == EALREADY) {
Willy Tarreau	7bb2153	2014-05-10 09:48:28 +0200	[diff] [blame]	526	conn->flags \|= CO_FL_WAIT_L4_CONN;
				527	}
Willy Tarreau	9484179	2017-01-25 14:27:38 +0100	[diff] [blame]	528	else if (errno == EISCONN) {
				529	conn->flags &= ~CO_FL_WAIT_L4_CONN;
				530	}
Willy Tarreau	7bb2153	2014-05-10 09:48:28 +0200	[diff] [blame]	531	else if (errno == EAGAIN \|\| errno == EADDRINUSE \|\| errno == EADDRNOTAVAIL) {
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	532	char *msg;
				533	if (errno == EAGAIN \|\| errno == EADDRNOTAVAIL) {
Lukas Tribus	9f256d4	2016-01-26 20:33:14 +0100	[diff] [blame]	534	msg = "can't connect to destination unix socket, check backlog size on the server";
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	535	conn->err_code = CO_ER_FREE_PORTS;
				536	}
				537	else {
				538	msg = "local address already in use";
				539	conn->err_code = CO_ER_ADDR_INUSE;
				540	}
				541
				542	qfprintf(stderr,"Connect() failed for backend %s: %s.\n", be->id, msg);
				543	close(fd);
				544	send_log(be, LOG_ERR, "Connect() failed for backend %s: %s.\n", be->id, msg);
				545	conn->flags \|= CO_FL_ERROR;
Willy Tarreau	e7dff02	2015-04-03 01:14:29 +0200	[diff] [blame]	546	return SF_ERR_RESOURCE;
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	547	}
				548	else if (errno == ETIMEDOUT) {
				549	close(fd);
				550	conn->err_code = CO_ER_SOCK_ERR;
				551	conn->flags \|= CO_FL_ERROR;
Willy Tarreau	e7dff02	2015-04-03 01:14:29 +0200	[diff] [blame]	552	return SF_ERR_SRVTO;
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	553	}
				554	else { // (errno == ECONNREFUSED \|\| errno == ENETUNREACH \|\| errno == EACCES \|\| errno == EPERM)
				555	close(fd);
				556	conn->err_code = CO_ER_SOCK_ERR;
				557	conn->flags \|= CO_FL_ERROR;
Willy Tarreau	e7dff02	2015-04-03 01:14:29 +0200	[diff] [blame]	558	return SF_ERR_SRVCL;
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	559	}
				560	}
Willy Tarreau	7bb2153	2014-05-10 09:48:28 +0200	[diff] [blame]	561	else {
				562	/* connect() already succeeded, which is quite usual for unix
Willy Tarreau	9484179	2017-01-25 14:27:38 +0100	[diff] [blame]	563	* sockets. Let's avoid a second connect() probe to complete it.
Willy Tarreau	7bb2153	2014-05-10 09:48:28 +0200	[diff] [blame]	564	*/
				565	conn->flags &= ~CO_FL_WAIT_L4_CONN;
Willy Tarreau	7bb2153	2014-05-10 09:48:28 +0200	[diff] [blame]	566	}
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	567
				568	conn->flags \|= CO_FL_ADDR_TO_SET;
				569
				570	/* Prepare to send a few handshakes related to the on-wire protocol. */
				571	if (conn->send_proxy_ofs)
				572	conn->flags \|= CO_FL_SEND_PROXY;
				573
				574	conn_ctrl_init(conn); /* registers the FD */
Willy Tarreau	7bb2153	2014-05-10 09:48:28 +0200	[diff] [blame]	575	fdtab[fd].linger_risk = 0; /* no need to disable lingering */
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	576
Willy Tarreau	4c69cff	2020-03-04 16:38:00 +0100	[diff] [blame]	577	if (conn->flags & CO_FL_WAIT_L4_CONN) {
				578	fd_want_send(fd);
				579	fd_cant_send(fd);
				580	}
Willy Tarreau	ccf3f6d	2019-09-05 17:05:05 +0200	[diff] [blame]	581
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	582	if (conn_xprt_init(conn) < 0) {
Willy Tarreau	8c82901	2017-10-05 18:02:11 +0200	[diff] [blame]	583	conn_full_close(conn);
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	584	conn->flags \|= CO_FL_ERROR;
Willy Tarreau	e7dff02	2015-04-03 01:14:29 +0200	[diff] [blame]	585	return SF_ERR_RESOURCE;
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	586	}
				587
Willy Tarreau	e7dff02	2015-04-03 01:14:29 +0200	[diff] [blame]	588	return SF_ERR_NONE; /* connection is OK */
Willy Tarreau	47f48c4	2014-05-09 22:57:47 +0200	[diff] [blame]	589	}
				590
				591
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	592	/********************************
				593	* 3) protocol-oriented functions
				594	********************************/
				595
				596
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	597	/* This function creates all UNIX sockets bound to the protocol entry <proto>.
				598	* It is intended to be used as the protocol's bind_all() function.
				599	* The sockets will be registered but not added to any fd_set, in order not to
				600	* loose them across the fork(). A call to uxst_enable_listeners() is needed
				601	* to complete initialization.
				602	*
Willy Tarreau	daacf36	2019-07-24 16:45:02 +0200	[diff] [blame]	603	* Must be called with proto_lock held.
				604	*
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	605	* The return value is composed from ERR_NONE, ERR_RETRYABLE and ERR_FATAL.
				606	*/
Emeric Brun	cf20bf1	2010-10-22 16:06:11 +0200	[diff] [blame]	607	static int uxst_bind_listeners(struct protocol proto, char errmsg, int errlen)
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	608	{
				609	struct listener *listener;
				610	int err = ERR_NONE;
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	611
				612	list_for_each_entry(listener, &proto->listeners, proto_list) {
Emeric Brun	cf20bf1	2010-10-22 16:06:11 +0200	[diff] [blame]	613	err \|= uxst_bind_listener(listener, errmsg, errlen);
				614	if (err & ERR_ABORT)
				615	break;
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	616	}
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	617	return err;
				618	}
				619
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	620
				621	/* This function stops all listening UNIX sockets bound to the protocol
				622	* <proto>. It does not detaches them from the protocol.
				623	* It always returns ERR_NONE.
Willy Tarreau	daacf36	2019-07-24 16:45:02 +0200	[diff] [blame]	624	*
				625	* Must be called with proto_lock held.
				626	*
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	627	*/
				628	static int uxst_unbind_listeners(struct protocol *proto)
				629	{
				630	struct listener *listener;
				631
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	632	list_for_each_entry(listener, &proto->listeners, proto_list)
				633	uxst_unbind_listener(listener);
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	634	return ERR_NONE;
				635	}
				636
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	637	/* parse the "mode" bind keyword */
Willy Tarreau	4348fad	2012-09-20 16:48:07 +0200	[diff] [blame]	638	static int bind_parse_mode(char *args, int cur_arg, struct proxy px, struct bind_conf conf, char *err)
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	639	{
Willy Tarreau	a1a247b	2017-10-04 14:43:44 +0200	[diff] [blame]	640	char *endptr;
				641
				642	conf->ux.mode = strtol(args[cur_arg + 1], &endptr, 8);
				643
				644	if (!args[cur_arg + 1] \|\| endptr) {
				645	memprintf(err, "'%s' : missing or invalid mode '%s' (octal integer expected)", args[cur_arg], args[cur_arg + 1]);
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	646	return ERR_ALERT \| ERR_FATAL;
				647	}
				648
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	649	return 0;
				650	}
				651
				652	/* parse the "gid" bind keyword */
Willy Tarreau	4348fad	2012-09-20 16:48:07 +0200	[diff] [blame]	653	static int bind_parse_gid(char *args, int cur_arg, struct proxy px, struct bind_conf conf, char *err)
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	654	{
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	655	if (!*args[cur_arg + 1]) {
Willy Tarreau	eb6cead	2012-09-20 19:43:14 +0200	[diff] [blame]	656	memprintf(err, "'%s' : missing value", args[cur_arg]);
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	657	return ERR_ALERT \| ERR_FATAL;
				658	}
				659
Willy Tarreau	290e63a	2012-09-20 18:07:14 +0200	[diff] [blame]	660	conf->ux.gid = atol(args[cur_arg + 1]);
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	661	return 0;
				662	}
				663
				664	/* parse the "group" bind keyword */
Willy Tarreau	4348fad	2012-09-20 16:48:07 +0200	[diff] [blame]	665	static int bind_parse_group(char *args, int cur_arg, struct proxy px, struct bind_conf conf, char *err)
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	666	{
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	667	struct group *group;
				668
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	669	if (!*args[cur_arg + 1]) {
Willy Tarreau	eb6cead	2012-09-20 19:43:14 +0200	[diff] [blame]	670	memprintf(err, "'%s' : missing group name", args[cur_arg]);
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	671	return ERR_ALERT \| ERR_FATAL;
				672	}
				673
				674	group = getgrnam(args[cur_arg + 1]);
				675	if (!group) {
Willy Tarreau	eb6cead	2012-09-20 19:43:14 +0200	[diff] [blame]	676	memprintf(err, "'%s' : unknown group name '%s'", args[cur_arg], args[cur_arg + 1]);
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	677	return ERR_ALERT \| ERR_FATAL;
				678	}
				679
Willy Tarreau	290e63a	2012-09-20 18:07:14 +0200	[diff] [blame]	680	conf->ux.gid = group->gr_gid;
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	681	return 0;
				682	}
				683
				684	/* parse the "uid" bind keyword */
Willy Tarreau	4348fad	2012-09-20 16:48:07 +0200	[diff] [blame]	685	static int bind_parse_uid(char *args, int cur_arg, struct proxy px, struct bind_conf conf, char *err)
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	686	{
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	687	if (!*args[cur_arg + 1]) {
Willy Tarreau	eb6cead	2012-09-20 19:43:14 +0200	[diff] [blame]	688	memprintf(err, "'%s' : missing value", args[cur_arg]);
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	689	return ERR_ALERT \| ERR_FATAL;
				690	}
				691
Willy Tarreau	290e63a	2012-09-20 18:07:14 +0200	[diff] [blame]	692	conf->ux.uid = atol(args[cur_arg + 1]);
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	693	return 0;
				694	}
				695
				696	/* parse the "user" bind keyword */
Willy Tarreau	4348fad	2012-09-20 16:48:07 +0200	[diff] [blame]	697	static int bind_parse_user(char *args, int cur_arg, struct proxy px, struct bind_conf conf, char *err)
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	698	{
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	699	struct passwd *user;
				700
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	701	if (!*args[cur_arg + 1]) {
Willy Tarreau	eb6cead	2012-09-20 19:43:14 +0200	[diff] [blame]	702	memprintf(err, "'%s' : missing user name", args[cur_arg]);
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	703	return ERR_ALERT \| ERR_FATAL;
				704	}
				705
				706	user = getpwnam(args[cur_arg + 1]);
				707	if (!user) {
Willy Tarreau	eb6cead	2012-09-20 19:43:14 +0200	[diff] [blame]	708	memprintf(err, "'%s' : unknown user name '%s'", args[cur_arg], args[cur_arg + 1]);
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	709	return ERR_ALERT \| ERR_FATAL;
				710	}
				711
Willy Tarreau	290e63a	2012-09-20 18:07:14 +0200	[diff] [blame]	712	conf->ux.uid = user->pw_uid;
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	713	return 0;
				714	}
				715
				716	/* Note: must not be declared <const> as its list will be overwritten.
				717	* Please take care of keeping this list alphabetically sorted, doing so helps
				718	* all code contributors.
				719	* Optional keywords are also declared with a NULL ->parse() function so that
				720	* the config parser can report an appropriate error when a known keyword was
				721	* not enabled.
				722	*/
Willy Tarreau	51fb765	2012-09-18 18:24:39 +0200	[diff] [blame]	723	static struct bind_kw_list bind_kws = { "UNIX", { }, {
Willy Tarreau	d0a895d	2012-09-18 17:40:35 +0200	[diff] [blame]	724	{ "gid", bind_parse_gid, 1 }, /* set the socket's gid */
				725	{ "group", bind_parse_group, 1 }, /* set the socket's gid from the group name */
				726	{ "mode", bind_parse_mode, 1 }, /* set the socket's mode (eg: 0644)*/
				727	{ "uid", bind_parse_uid, 1 }, /* set the socket's uid */
				728	{ "user", bind_parse_user, 1 }, /* set the socket's uid from the user name */
				729	{ NULL, NULL, 0 },
				730	}};
Willy Tarreau	dabf2e2	2007-10-28 21:59:24 +0100	[diff] [blame]	731
Willy Tarreau	0108d90	2018-11-25 19:14:37 +0100	[diff] [blame]	732	INITCALL1(STG_REGISTER, bind_register_keywords, &bind_kws);
Willy Tarreau	92fb983	2007-10-16 17:34:28 +0200	[diff] [blame]	733
				734	/*
				735	* Local variables:
				736	* c-indent-level: 8
				737	* c-basic-offset: 8
				738	* End:
				739	*/