| blob | 31dbf2574f214e5e8bfd0f76b8b92e0d40d8ca9a |
1 /* Socket event dispatching library - by D.C. van Moolenbroek */
3 #include <minix/drivers.h>
4 #include <minix/sockdriver.h>
5 #include <minix/sockevent.h>
6 #include <sys/ioctl.h>
32 /*
33 * Initialize the hash table of sock objects.
34 */
35 static void
37 {
42 }
44 /*
45 * Given a socket identifier, return a hash table slot number.
46 */
47 static unsigned int
49 {
51 /*
52 * The idea of the shift is that a socket driver may offer multiple
53 * classes of sockets, and put the class in the higher bits. The shift
54 * aims to prevent that all classes' first sockets end up in the same
55 * hash slot.
56 */
58 }
60 /*
61 * Obtain a sock object from the hash table using its unique identifier.
62 * Return a pointer to the object if found, or NULL otherwise.
63 */
66 {
75 }
78 }
80 /*
81 * Add a sock object to the hash table. The sock object must have a valid ID
82 * in its 'sock_id' field, and must not be in the hash table already.
83 */
84 static void
86 {
92 }
94 /*
95 * Remove a sock object from the hash table. The sock object must be in the
96 * hash table.
97 */
98 static void
100 {
105 /* This macro is O(n). */
107 }
109 /*
110 * Reset a socket object to a proper initial state, with a particular socket
111 * identifier, a SOCK_ type, and a socket operations table. The socket is
112 * added to the ID-to-object hash table. This function always succeeds.
113 */
114 static void
117 {
135 }
137 /*
138 * Initialize a new socket that will serve as an accepted socket on the given
139 * listening socket 'sock'. The new socket is given as 'newsock', and its new
140 * socket identifier is given as 'newid'. This function always succeeds.
141 */
142 void
144 {
149 /* These are the settings that are currently inherited. */
158 }
160 /*
161 * A new socket has just been accepted. The corresponding listening socket is
162 * given as 'sock'. The new socket has ID 'newid', and if it had not already
163 * been added to the hash table through sockevent_clone() before, 'newsock' is
164 * a non-NULL pointer which identifies the socket object to clone into.
165 */
166 static void
168 {
179 }
181 /*
182 * Allocate a sock object, by asking the socket driver for one. On success,
183 * return OK, with a pointer to the new object stored in 'sockp'. This new
184 * object has all its fields set to initial values, in part based on the given
185 * parameters. On failure, return an error code. Failure has two typical
186 * cause: either the given domain, type, protocol combination is not supported,
187 * or the socket driver is out of sockets (globally or for this combination).
188 */
189 static int
192 {
195 sockid_t r;
197 /*
198 * Verify that the given domain is sane. Unlike the type and protocol,
199 * the domain is already verified by VFS, so we do not limit ourselves
200 * here. The result is that we can store the domain in just a byte.
201 */
205 /* Make sure that the library has actually been initialized. */
212 /*
213 * Ask the socket driver to create a socket for the given combination
214 * of domain, type, and protocol. If so, let it return a new sock
215 * object, a unique socket identifier for that object, and an
216 * operations table for it.
217 */
229 }
231 /*
232 * Free a previously allocated sock object.
233 */
234 static void
236 {
245 /*
246 * Invalidate the operations table on the socket, before freeing the
247 * socket. This allows us to detect cases where sockevent functions
248 * are called on sockets that have already been freed.
249 */
257 }
259 /*
260 * Create a new socket.
261 */
262 static sockid_t
264 {
273 }
275 /*
276 * Create a pair of connected sockets.
277 */
278 static int
281 {
289 /* Creating socket pairs is not always supported. */
294 }
301 }
312 }
317 }
319 /*
320 * A send request returned EPIPE. If desired, send a SIGPIPE signal to the
321 * user process that issued the request.
322 */
323 static void
325 {
327 /*
328 * POSIX says that pipe signals should be generated for SOCK_STREAM
329 * sockets. Linux does just this, NetBSD raises signals for all socket
330 * types.
331 */
335 /*
336 * Why would there be fewer than four ways to do the same thing?
337 * O_NOSIGPIPE, MSG_NOSIGNAL, SO_NOSIGPIPE, and of course blocking
338 * SIGPIPE. VFS already sets MSG_NOSIGNAL for calls on sockets with
339 * O_NOSIGPIPE. The fact that SO_NOSIGPIPE is a thing, is also the
340 * reason why we cannot let VFS handle signal generation altogether.
341 */
347 /*
348 * Send a SIGPIPE signal to the user process. Unfortunately we cannot
349 * guarantee that the SIGPIPE reaches the user process before the send
350 * call returns. Usually, the scheduling priorities of system services
351 * are such that the signal is likely to arrive first anyway, but if
352 * timely arrival of the signal is required, a more fundamental change
353 * to the system would be needed.
354 */
356 }
358 /*
359 * Suspend a request without data, that is, a bind, connect, accept, or close
360 * request.
361 */
362 static void
365 {
368 /* There is one slot for each process, so this should never fail. */
378 /*
379 * Add the request to the tail of the queue. This operation is O(n),
380 * but the number of suspended requests per socket is expected to be
381 * low at all times.
382 */
386 }
388 /*
389 * Suspend a request with data, that is, a send or receive request.
390 */
391 static void
397 {
400 /* There is one slot for each process, so this should never fail. */
419 /*
420 * Add the request to the tail of the queue. This operation is O(n),
421 * but the number of suspended requests per socket is expected to be
422 * low at all times.
423 */
427 }
429 /*
430 * Return TRUE if there are any suspended requests on the given socket's queue
431 * that match any of the events in the given event mask, or FALSE otherwise.
432 */
433 static int
435 {
443 }
445 /*
446 * Check whether the given call is on the given socket's queue of suspended
447 * requests. If so, remove it from the queue and return a pointer to the
448 * suspension data structure. The caller is then responsible for freeing that
449 * data structure using sockevent_proc_free(). If the call was not found, the
450 * function returns NULL.
451 */
454 {
457 /* Find the suspended request being canceled. */
462 /* Found; remove and return it. */
466 }
467 }
470 }
472 /*
473 * Attempt to resume the given suspended request for the given socket object.
474 * Return TRUE if the suspended request has been fully resumed and can be
475 * removed from the queue of suspended requests, or FALSE if it has not been
476 * fully resumed and should stay on the queue. In the latter case, no
477 * resumption will be attempted for other suspended requests of the same type.
478 */
479 static int
481 {
485 socklen_t addr_len;
487 sockid_t r;
491 /*
492 * If the connect call was suspended for the purpose of
493 * intercepting resumption, simply remove it from the queue.
494 */
498 /* FALLTHROUGH */
508 /*
509 * A previous accept call may not have blocked on a socket that
510 * was not in listening mode.
511 */
517 /*
518 * This call is suspended, which implies that the call table
519 * pointer has already tested to be non-NULL.
520 */
530 }
543 else
557 /*
558 * As mentioned elsewhere, we do not save the address
559 * upon suspension so we cannot supply it anymore here.
560 */
572 /*
573 * If an error occurred but some data were already
574 * sent, return the progress rather than the error.
575 * Note that if the socket driver detects an
576 * asynchronous error during the send, it itself must
577 * perform this check and call sockevent_set_error() as
578 * needed, to make sure the error does not get lost.
579 */
582 }
619 /*
620 * If the call remains suspended but a socket error is
621 * pending, return the pending socket error instead.
622 */
628 }
631 }
633 /*
634 * If the receive call reported success, or if some data were
635 * already received, return the (partial) result. Otherwise,
636 * return a pending error if any, or otherwise a regular error
637 * or 0 for EOF.
638 */
661 }
662 }
664 /*
665 * Return TRUE if the given socket is ready for reading for a select call, or
666 * FALSE otherwise.
667 */
668 static int
670 {
673 /*
674 * The meaning of "ready-to-read" depends on whether the socket is a
675 * listening socket or not. For the former, it is a test on whether
676 * there are any new sockets to accept. However, shutdown flags take
677 * precedence in both cases.
678 */
685 /*
686 * Depending on whether this is a listening-mode socket, test whether
687 * either accepts or receives would block.
688 */
699 NULL);
700 }
703 }
705 /*
706 * Return TRUE if the given socket is ready for writing for a select call, or
707 * FALSE otherwise.
708 */
709 static int
711 {
723 /*
724 * Test whether sends would block. The low send watermark is relevant
725 * for stream-type sockets only.
726 */
730 }
732 /*
733 * Test whether any of the given select operations are ready on the given
734 * socket. Return the subset of ready operations; zero if none.
735 */
736 static unsigned int
738 {
743 /*
744 * We do not support the "bind in progress" case here. If a blocking
745 * bind call is in progress, the file descriptor should not be ready
746 * for either reading or writing. Currently, socket drivers will have
747 * to cover this case themselves. Otherwise we would have to check the
748 * queue of suspended calls, or create a custom flag for this.
749 */
759 /* TODO: OOB receive support. */
762 }
764 /*
765 * Fire the given mask of events on the given socket object now.
766 */
767 static void
769 {
773 /*
774 * A completed connection attempt (successful or not) also always
775 * implies that the socket becomes writable. For convenience we
776 * enforce this rule here, because it is easy to forget. Note that in
777 * any case, a suspended connect request should be the first in the
778 * list, so we do not risk returning 0 from a connect call as a result
779 * of sock_err getting eaten by another resumed call.
780 */
784 /*
785 * First try resuming regular system calls.
786 */
798 }
799 }
801 /*
802 * Then see if we can satisfy pending select queries.
803 */
808 /*
809 * Only retest select operations that, based on the given event
810 * mask, could possibly be satisfied now.
811 */
820 /* Are there any operations to test? */
822 /* Test those operations. */
825 /* Were any satisfied? */
827 /* Let the caller know. */
833 /* Are there any saved operations left now? */
836 }
837 }
838 }
840 /*
841 * Finally, a SEV_CLOSE event unconditionally frees the sock object.
842 * This event should be fired only for sockets that are either not yet,
843 * or not anymore, in use by userland.
844 */
849 }
850 }
852 /*
853 * Process all pending events. Events must still be blocked, so that if
854 * handling one event generates a new event, that event is handled from here
855 * rather than immediately.
856 */
857 static void
859 {
874 /*
875 * At this point, the sock object may already have been readded
876 * to the event list, or even be deallocated altogether.
877 */
878 }
879 }
881 /*
882 * Return TRUE if any events are pending on any sockets, or FALSE otherwise.
883 */
884 static int
886 {
889 }
891 /*
892 * Raise the given bitwise-OR'ed set of events on the given socket object.
893 * Depending on the context of the call, they events may or may not be
894 * processed immediately.
895 */
896 void
898 {
902 /*
903 * Handle SEV_CLOSE first. This event must not be deferred, so as to
904 * let socket drivers recycle sock objects as they are needed. For
905 * example, a user-closed TCP socket may stay open to transmit the
906 * remainder of its send buffer, until the TCP driver runs out of
907 * sockets, in which case the connection is aborted. The driver would
908 * then raise SEV_CLOSE on the sock object so as to clean it up, and
909 * immediately reuse it afterward. If the close event were to be
910 * deferred, this immediate reuse would not be possible.
911 *
912 * The sop_free() callback routine may not raise new events, and thus,
913 * the state of 'sockevent_working' need not be checked or set here.
914 */
921 }
923 /*
924 * If we are currently processing a socket message, store the event for
925 * later. If not, this call is not coming from inside libsockevent,
926 * and we must handle the event immediately.
927 */
934 sock_next);
946 }
947 }
949 /*
950 * Set a pending error on the socket object, and wake up any suspended
951 * operations that are affected by this.
952 */
953 void
955 {
960 /* If an error was set already, it will be overridden. */
964 }
966 /*
967 * Initialize timer-related data structures.
968 */
969 static void
971 {
976 }
978 /*
979 * Check whether the given socket object has any suspended requests that have
980 * now expired. If so, cancel them. Also, if the socket object has any
981 * suspended requests with a timeout that has not yet expired, return the
982 * earliest (relative) timeout of all of them, or TMR_NEVER if no such requests
983 * are present.
984 */
985 static clock_t
987 {
992 /*
993 * First handle the case that the socket is closed. In this case,
994 * there may be a linger timer, although the socket may also simply
995 * still be on the timer list because of a request that did not time
996 * out right before the socket was closed.
997 */
999 /* Was there a linger timer and has it expired? */
1004 /*
1005 * Whatever happens next, we must now resume the
1006 * pending close operation, if it was not canceled
1007 * earlier. As before, we return OK rather than the
1008 * standardized EWOULDBLOCK, to ensure that the user
1009 * process knows the file descriptor has been closed.
1010 */
1020 }
1022 /*
1023 * Tell the socket driver that closing the socket is
1024 * now a bit more desired than the last time we asked.
1025 */
1030 /*
1031 * The linger timer fires once. After that, the socket
1032 * driver is free to decide that it still will not
1033 * close the socket. If it does, do not fire the
1034 * linger timer again.
1035 */
1038 else
1040 }
1043 }
1045 /*
1046 * Then see if any send and/or receive requests have expired. Also see
1047 * if there are any send and/or receive requests left that have not yet
1048 * expired but do have a timeout, so that we can return the lowest of
1049 * those timeouts.
1050 */
1054 /* Skip requests without a timeout. */
1059 }
1064 /*
1065 * If the request has expired, cancel it and remove it from the
1066 * list. Otherwise, see if the request has the lowest number
1067 * of ticks until its timeout so far.
1068 */
1074 else
1085 }
1086 }
1089 }
1091 /*
1092 * The socket event alarm went off. Go through the set of socket objects with
1093 * timers, and see if any of their requests have now expired. Set a new alarm
1094 * as necessary.
1095 */
1096 static void
1098 {
1104 /*
1105 * This function may or may not be called from a context where we are
1106 * already deferring events, so we have to cover both cases here.
1107 */
1111 /* Start a new list. */
1118 /*
1119 * Go through all sockets that have or had a request with a timeout,
1120 * canceling any expired requests and building a new list of sockets
1121 * that still have requests with timeouts as we go.
1122 */
1128 /*
1129 * The sock object may already have been deallocated now.
1130 * If 'next' is TMR_NEVER, do not touch 'sock' anymore.
1131 */
1140 }
1141 }
1143 /* If there is a new lowest timeout at all, set a new timer. */
1148 /* If any new events were raised, process them now. */
1153 }
1154 }
1156 /*
1157 * Set a timer for the given (relative) number of clock ticks, adding the
1158 * associated socket object to the set of socket objects with timers, if it was
1159 * not already in that set. Set a new alarm if necessary, and return the
1160 * absolute timeout for the timer. Since the timers list is maintained lazily,
1161 * the caller need not take the object off the set if the call was canceled
1162 * later; see also socktimer_del().
1163 */
1164 static clock_t
1166 {
1169 /*
1170 * Relative time comparisons require that any two times are no more
1171 * than half the comparison space (clock_t, unsigned long) apart.
1172 */
1175 /* If the socket was not already on the timers list, put it on. */
1180 }
1182 /*
1183 * (Re)set the timer if either it was not running at all or this new
1184 * timeout will occur sooner than the currently scheduled alarm. Note
1185 * that setting a timer that was already set is allowed.
1186 */
1193 /* Return the absolute timeout. */
1195 }
1197 /*
1198 * Remove a socket object from the set of socket objects with timers. Since
1199 * the timer list is maintained lazily, this needs to be done only right before
1200 * the socket object is freed.
1201 */
1202 static void
1204 {
1207 /* This macro is O(n). */
1211 }
1212 }
1214 /*
1215 * Bind a socket to a local address.
1216 */
1217 static int
1221 {
1231 /* Binding a socket in listening mode is never supported. */
1242 }
1245 }
1247 /*
1248 * Connect a socket to a remote address.
1249 */
1250 static int
1254 {
1266 /* Connecting a socket in listening mode is never supported. */
1270 /*
1271 * The upcoming connect call may fire an accept event for which the
1272 * handler may in turn fire a connect event on this socket. Since we
1273 * delay event processing until after processing calls, this would
1274 * create the problem that even if the connection is accepted right
1275 * away, non-blocking connect requests would return EINPROGRESS. For
1276 * UDS, this is undesirable behavior. To remedy this, we use a hack:
1277 * we temporarily suspend the connect even if non-blocking, then
1278 * process events, and then cancel the connect request again. If the
1279 * connection was accepted immediately, the cancellation will have no
1280 * effect, since the request has already been replied to. In order not
1281 * to violate libsockdriver rules with this hack, we fabricate a fake
1282 * 'conn' object.
1283 */
1292 }
1300 /* Process any pending events first now. */
1303 /*
1304 * If the connect request has not been resumed
1305 * yet now, we must remove it from the queue
1306 * again, and return EINPROGRESS ourselves.
1307 * Otherwise, return OK or a pending error.
1308 */
1316 }
1319 }
1322 /*
1323 * A completed connection attempt also always implies that the
1324 * socket becomes writable. For convenience we enforce this
1325 * rule here, because it is easy to forget.
1326 */
1328 }
1331 }
1333 /*
1334 * Put a socket in listening mode.
1335 */
1336 static int
1338 {
1348 /*
1349 * Perform a general adjustment on the backlog value, applying the
1350 * customary BSD "fudge factor" of 1.5x. Keep the value within bounds
1351 * though. POSIX imposes that a negative backlog value is equal to a
1352 * backlog value of zero. A backlog value of zero, in turn, may mean
1353 * anything; we take it to be one. POSIX also imposes that all socket
1354 * drivers accept up to at least SOMAXCONN connections on the queue.
1355 */
1365 /*
1366 * On success, the socket is now in listening mode. As part of that,
1367 * a select(2) ready-to-read condition now indicates that a connection
1368 * may be accepted on the socket, rather than that data may be read.
1369 * Since libsockevent is responsible for this distinction, we keep
1370 * track of the listening mode at this level. Conveniently, there is a
1371 * socket option for this, which we support out of the box as a result.
1372 */
1376 /*
1377 * For the extremely unlikely case that right after the socket
1378 * is put into listening mode, it has a connection ready to
1379 * accept, we retest blocked ready-to-read select queries now.
1380 */
1382 }
1385 }
1387 /*
1388 * Accept a connection on a listening socket, creating a new socket.
1389 */
1390 static sockid_t
1394 {
1396 sockid_t r;
1404 /*
1405 * Attempt to accept a connection. The socket driver is responsible
1406 * for allocating a sock object (and identifier) on success. It may
1407 * already have done so before, in which case it should leave newsock
1408 * filled with NULL; otherwise, the returned sock object is cloned from
1409 * the listening socket. The socket driver is also responsible for
1410 * failing the call if the socket is not in listening mode, because it
1411 * must specify the error to return: EOPNOTSUPP or EINVAL.
1412 */
1425 }
1431 }
1433 /*
1434 * Send regular and/or control data.
1435 */
1436 static int
1442 {
1446 socklen_t ctl_off;
1452 /*
1453 * The order of the following checks is not necessarily fixed, and may
1454 * be changed later. As far as applicable, they should match the order
1455 * of the checks during call resumption, though.
1456 */
1461 }
1467 }
1469 /*
1470 * Translate the sticky SO_DONTROUTE option to a per-request
1471 * MSG_DONTROUTE flag. This achieves two purposes: socket drivers have
1472 * to check only one flag, and socket drivers that do not support the
1473 * flag will fail send requests in a consistent way.
1474 */
1478 /*
1479 * Check if this is a valid send request as far as the socket driver is
1480 * concerned. We do this separately from sop_send for the reason that
1481 * this send request may immediately be queued behind other pending
1482 * send requests (without a call to sop_send), which means even invalid
1483 * requests would be queued and not return failure until much later.
1484 */
1497 /*
1498 * Sending out-of-band data is treated differently from regular data:
1499 *
1500 * - sop_send is called immediately, even if a partial non-OOB send
1501 * operation is currently suspended (TODO: it may have to be aborted
1502 * in order to maintain atomicity guarantees - that should be easy);
1503 * - sop_send must not return SUSPEND; instead, if it cannot process
1504 * the OOB data immediately, it must return an appropriate error;
1505 * - the send low watermark is ignored.
1506 *
1507 * Given that none of the current socket drivers support OOB data at
1508 * all, more sophisticated approaches would have no added value now.
1509 */
1519 }
1521 /*
1522 * Only call the actual sop_send function now if no other send calls
1523 * are suspended already.
1524 *
1525 * Call sop_send with 'min' set to the minimum of the request size and
1526 * the socket's send low water mark, but only if the call is non-
1527 * blocking. For stream-oriented sockets, this should have the effect
1528 * that non-blocking calls fail with EWOULDBLOCK if not at least that
1529 * much can be sent immediately. For consistency, we choose to apply
1530 * the same threshold to blocking calls. For datagram-oriented
1531 * sockets, the minimum is not a factor to be considered.
1532 */
1544 /*
1545 * We do not store the target's address on suspension, because
1546 * that would add significantly to the per-process suspension
1547 * state. As a result, we disallow socket drivers from
1548 * suspending send calls with addresses, because we would no
1549 * longer have the address for proper call resumption.
1550 * However, we do not know here whether the socket is in
1551 * connection-oriented mode; if it is, the address is to be
1552 * ignored altogether. Therefore, there is no test on 'addr'
1553 * here. Resumed calls will get a NULL address pointer, and
1554 * the socket driver is expected to do the right thing.
1555 */
1557 /*
1558 * For non-blocking socket calls, return an error only if we
1559 * were not able to send anything at all. If only control data
1560 * were sent, the return value is therefore zero.
1561 */
1569 }
1580 }
1582 /*
1583 * The inner part of the receive request handler. An error returned from here
1584 * may be overridden by an error pending on the socket, although data returned
1585 * from here trumps such pending errors.
1586 */
1587 static int
1596 {
1601 /*
1602 * Check if this is a valid receive request as far as the socket driver
1603 * is concerned. We do this separately from sop_recv for the reason
1604 * that this receive request may immediately be queued behind other
1605 * pending receive requests (without a call to sop_recv), which means
1606 * even invalid requests would be queued and not return failure until
1607 * much later.
1608 */
1617 /*
1618 * The order of the following checks is not necessarily fixed, and may
1619 * be changed later. As far as applicable, they should match the order
1620 * of the checks during call resumption, though.
1621 */
1628 /*
1629 * Receiving out-of-band data is treated differently from regular data:
1630 *
1631 * - sop_recv is called immediately, even if a partial non-OOB receive
1632 * operation is currently suspended (TODO: it may have to be aborted
1633 * in order to maintain atomicity guarantees - that should be easy);
1634 * - sop_recv must not return SUSPEND; instead, if it cannot return any
1635 * the OOB data immediately, it must return an appropriate error;
1636 * - the receive low watermark is ignored.
1637 *
1638 * Given that none of the current socket drivers support OOB data at
1639 * all, more sophisticated approaches would have no added value now.
1640 */
1646 /*
1647 * Only call the actual sop_recv function now if no other receive
1648 * calls are suspended already.
1649 *
1650 * Call sop_recv with 'min' set to the minimum of the request size and
1651 * the socket's socket's low water mark, unless there is a pending
1652 * error. As a result, blocking calls will block, and non-blocking
1653 * calls will yield EWOULDBLOCK, if at least that much can be received,
1654 * unless another condition (EOF or that pending error) prevents more
1655 * from being received anyway. For datagram-oriented sockets, the
1656 * minimum is not a factor to be considered.
1657 */
1668 flags);
1679 /*
1680 * For non-blocking socket calls, return EWOULDBLOCK only if we
1681 * did not receive anything at all. If only control data were
1682 * received, the return value is therefore zero. Suspension
1683 * implies that there is nothing to read. For the purpose of
1684 * the calling wrapper function, never suspend a call when
1685 * there is a pending error.
1686 */
1694 }
1701 }
1704 }
1706 /*
1707 * Receive regular and/or control data.
1708 */
1709 static int
1715 {
1718 socklen_t ctl_inlen;
1724 /*
1725 * This function is a wrapper around the actual receive functionality.
1726 * The reason for this is that receiving data should take precedence
1727 * over a pending socket error, while a pending socket error should
1728 * take precedence over both regular errors as well as EOF. In other
1729 * words: if there is a pending error, we must try to receive anything
1730 * at all; if receiving does not work, we must fail the call with the
1731 * pending error. However, until we call the receive callback, we have
1732 * no way of telling whether any data can be received. So we must try
1733 * that before we can decide whether to return a pending error.
1734 */
1739 /*
1740 * Attempt to perform the actual receive call.
1741 */
1745 /*
1746 * If the receive request succeeded, or it failed but yielded a partial
1747 * result, then return the (partal) result. Otherwise, if an error is
1748 * pending, return that error. Otherwise, return either a regular
1749 * error or 0 for EOF.
1750 */
1763 }
1765 /*
1766 * Process an I/O control call.
1767 */
1768 static int
1772 {
1780 /* We handle a very small subset of generic IOCTLs here. */
1791 }
1798 /*
1799 * Suspending IOCTL requests is not currently supported by this
1800 * library, even though the VFS protocol and libsockdriver do support
1801 * it. The reason is that IOCTLs do not match our proces suspension
1802 * model: they could be neither queued nor repeated. For now, it seems
1803 * that this feature is not needed by the socket drivers either. Thus,
1804 * even though there are possible solutions, we defer implementing them
1805 * until we know what exactly is needed.
1806 */
1809 request);
1812 }
1814 /*
1815 * Set socket options.
1816 */
1817 static int
1820 {
1831 /*
1832 * Handle a subset of the socket-level options here. For most
1833 * of them, this means that the socket driver itself need not
1834 * handle changing or returning the options, but still needs to
1835 * implement the correct behavior based on them where needed.
1836 * A few of them are handled exclusively in this library:
1837 * SO_ACCEPTCONN, SO_NOSIGPIPE, SO_ERROR, SO_TYPE, SO_LINGER,
1838 * SO_SNDLOWAT, SO_RCVLOWAT, SO_SNDTIMEO, and SO_RCVTIMEO.
1839 * The SO_USELOOPBACK option is explicitly absent, as it is
1840 * valid for routing sockets only and is set by default there.
1841 */
1852 /*
1853 * Simple on-off options. Changing them does not
1854 * involve the socket driver.
1855 */
1862 else
1865 /*
1866 * In priciple these on-off options are maintained in
1867 * this library, but some socket drivers may need to
1868 * apply the options elsewhere, so we notify them that
1869 * something has changed. Using the sop_setsockopt
1870 * callback would be inconvenient for this for two
1871 * reasons: multiple value copy-ins and default errors.
1872 */
1877 /*
1878 * The inlining of OOB data may make new data available
1879 * through regular receive calls. Thus, see if we can
1880 * wake up any suspended receive calls now.
1881 */
1888 /* The only on-off option with an associated value. */
1896 /* EDOM is the closest applicable error.. */
1906 }
1919 /*
1920 * Setting these values may allow suspended operations
1921 * (send, recv, select) to be resumed, so recheck.
1922 */
1931 }
1952 else
1955 /*
1956 * The timeouts for any calls already in progress for
1957 * this socket are left as is.
1958 */
1964 /* These options may be retrieved but not set. */
1968 /*
1969 * The remaining options either cannot be handled in a
1970 * generic way, or are not recognized altogether. Pass
1971 * them to the socket driver, which should handle what
1972 * it knows and reject the rest.
1973 */
1975 }
1976 }
1981 /*
1982 * The socket driver must return ENOPROTOOPT for all options it does
1983 * not recognize.
1984 */
1986 }
1988 /*
1989 * Retrieve socket options.
1990 */
1991 static int
1995 {
2006 /*
2007 * As with setting, handle a subset of the socket-level options
2008 * here. The rest is to be taken care of by the socket driver.
2009 */
2024 len);
2038 len);
2044 len);
2050 len);
2056 len);
2062 else
2069 len);
2073 }
2074 }
2079 /*
2080 * The socket driver must return ENOPROTOOPT for all options it does
2081 * not recognize.
2082 */
2084 }
2086 /*
2087 * Retrieve a socket's local address.
2088 */
2089 static int
2092 {
2102 }
2104 /*
2105 * Retrieve a socket's remote address.
2106 */
2107 static int
2110 {
2116 /* Listening-mode sockets cannot possibly have a peer address. */
2124 }
2126 /*
2127 * Mark the socket object as shut down for sending and/or receiving. The flags
2128 * parameter may be a bitwise-OR'ed combination of SFL_SHUT_RD and SFL_SHUT_WR.
2129 * This function will wake up any suspended requests affected by this change,
2130 * but it will not invoke the sop_shutdown() callback function on the socket.
2131 * The function may in fact be called from sop_shutdown() before completion to
2132 * mark the socket as shut down as reflected by sockevent_is_shutdown().
2133 */
2134 void
2136 {
2142 /* Look at the newly set flags only. */
2148 /*
2149 * Wake up any blocked calls that are affected by the shutdown.
2150 * Shutting down listening sockets causes ongoing accept calls
2151 * to be rechecked.
2152 */
2163 }
2164 }
2166 /*
2167 * Shut down socket send and receive operations.
2168 */
2169 static int
2171 {
2179 /* Convert the request to a set of flags. */
2188 else
2191 /* On success, update our internal state as well. */
2196 }
2198 /*
2199 * Close a socket.
2200 */
2201 static int
2203 {
2213 /*
2214 * There are several scenarios when it comes to closing sockets. First
2215 * of all, we never actually force the socket driver to close a socket.
2216 * The driver may always suspend the close call and take as long as it
2217 * wants. After a suspension, it signals its completion of the close
2218 * through the SEV_CLOSE socket event.
2219 *
2220 * With that said, we offer two levels of urgency regarding the close
2221 * request: regular and forced. The former allows for a graceful
2222 * close; the latter urges the socket driver to close the socket as
2223 * soon as possible. A socket that has been requested to be closed
2224 * gracefully can, as long as it is still open (i.e., no SEV_CLOSE was
2225 * fired yet), later be requested to be closed forcefully. This is how
2226 * SO_LINGER with a nonzero timeout is implemented. If SO_LINGER is
2227 * set with a zero timeout, the socket is force-closed immediately.
2228 * Finally, if SO_LINGER is not set, the socket will be closed normally
2229 * and never be forced--akin to SO_LINGER with an infinite timeout.
2230 *
2231 * The return value of the caller's close(2) may only ever be either
2232 * OK or EINPROGRESS, to ensure that the caller knows that the file
2233 * descriptor is freed up, as per Austin Group Defect #529. In fact,
2234 * EINPROGRESS is to be returned only on signal interruption (i.e.,
2235 * cancel). For that reason, this function only ever returns OK.
2236 */
2241 else
2249 /*
2250 * If we were requested to force-close the socket immediately,
2251 * but the socket driver needs more time anyway, then tell the
2252 * caller that the socket was closed right away.
2253 */
2257 /*
2258 * If we are to force-close the socket only after a specific
2259 * linger timeout, set the timer for that now, even if the call
2260 * is non-blocking. This also means that we cannot associate
2261 * the linger timeout with the close call. Instead, we convert
2262 * the sock_linger value from a (relative) duration to an
2263 * (absolute) timeout time, and use the SFL_CLOSING flag (along
2264 * with SFL_TIMER) to tell the difference. Since the socket is
2265 * otherwise unreachable from userland at this point, the
2266 * conversion is never visible in any way.
2267 *
2268 * The socket may already be in the timers list, so we must
2269 * always check the SO_LINGER flag before checking sock_linger.
2270 *
2271 * If SO_LINGER is not set, we must never suspend the call.
2272 */
2279 /*
2280 * A non-blocking close is completed asynchronously. The
2281 * caller is not told about this with EWOULDBLOCK as usual, for
2282 * the reasons mentioned above.
2283 */
2286 else
2292 }
2294 /*
2295 * Cancel a suspended send request.
2296 */
2297 static void
2299 {
2302 /*
2303 * If any regular or control data were sent, return the number of data
2304 * bytes sent--possibly zero. Otherwise return the given error code.
2305 */
2308 else
2313 /*
2314 * In extremely rare circumstances, one send may be queued behind
2315 * another send even though the former can actually be sent on the
2316 * socket right away. For this reason, we retry sending when canceling
2317 * a send. We need to do this only when the first send in the queue
2318 * was canceled, but multiple blocked sends on a single socket should
2319 * be rare anyway.
2320 */
2322 }
2324 /*
2325 * Cancel a suspended receive request.
2326 */
2327 static void
2329 {
2332 /*
2333 * If any regular or control data were received, return the number of
2334 * data bytes received--possibly zero. Otherwise return the given
2335 * error code.
2336 */
2339 else
2342 /*
2343 * Also return any flags set for the data received so far, e.g.
2344 * MSG_CTRUNC. Do not return an address: receive calls on unconnected
2345 * sockets must never block after receiving some data--instead, they
2346 * are supposed to return MSG_TRUNC if not all data were copied out.
2347 */
2351 /*
2352 * The same story as for sends (see above) applies to receives,
2353 * although this case should be even more rare in practice.
2354 */
2356 }
2358 /*
2359 * Cancel a previous request that may currently be suspended. The cancel
2360 * operation itself does not have a reply. Instead, if the given request was
2361 * found to be suspended, that request must be aborted and an appropriate reply
2362 * must be sent for the request. If no matching request was found, no reply
2363 * must be sent at all.
2364 */
2365 static void
2367 {
2371 /*
2372 * Due to asynchronous close(2) operations, not even the sock object
2373 * may be found. If this (entirely legitimate) case, do not send any
2374 * reply.
2375 */
2379 /*
2380 * The request may already have completed by the time we receive the
2381 * cancel request, in which case we can not find it. In this (entirely
2382 * legitimate) case, do not send any reply.
2383 */
2387 /*
2388 * We found the operation. Cancel it according to its call type.
2389 * Then, once fully done with it, free the suspension data structure.
2390 *
2391 * Note that we have to use the call structure from the suspension data
2392 * structure rather than the given 'call' pointer: only the former
2393 * includes all the information necessary to resume the request!
2394 */
2420 /*
2421 * Return EINPROGRESS rather than EINTR, so that the user
2422 * process can tell from the close(2) result that the file
2423 * descriptor has in fact been closed.
2424 */
2427 /*
2428 * Do not free the sock object here: the socket driver will
2429 * complete the close in the background, and fire SEV_CLOSE
2430 * once it is done. Only then is the sock object freed.
2431 */
2437 }
2440 }
2442 /*
2443 * Process a select request.
2444 */
2445 static int
2448 {
2458 /*
2459 * See if any of the requested select operations can be satisfied
2460 * immediately.
2461 */
2464 /*
2465 * If select operations were pending, the new results must not indicate
2466 * that any of those were satisfied, as that would indicate an internal
2467 * logic error: the socket driver is supposed to update its state
2468 * proactively, and thus, discovering that things have changed here is
2469 * not something that should ever happen.
2470 */
2473 /*
2474 * If any select operations are not satisfied immediately, and we are
2475 * asked to notify the caller when they are satisfied later, save them
2476 * for later retesting.
2477 */
2481 /*
2482 * For now, we support only one caller when it comes to select
2483 * queries: VFS. If we want to support a networked file system
2484 * (or so) directly calling select as well, this library will
2485 * have to be extended accordingly (should not be too hard).
2486 */
2493 }
2495 /*
2496 * If a select query was already pending for this
2497 * caller, we must simply merge in the new operations.
2498 */
2505 }
2506 }
2509 }
2511 /*
2512 * An alarm has triggered. Expire any timers. Socket drivers that do not pass
2513 * clock notification messages to libsockevent must call expire_timers(3)
2514 * themselves instead.
2515 */
2516 static void
2518 {
2521 }
2542 };
2544 /*
2545 * Initialize the socket event library.
2546 */
2547 void
2549 {
2562 /* Announce we are up. */
2566 }
2568 /*
2569 * Process a socket driver request message.
2570 */
2571 void
2573 {
2575 /* Block events until after we have processed the request. */
2579 /* Actually process the request. */
2582 /*
2583 * If any events were fired while processing the request, they will
2584 * have been queued for later. Go through them now.
2585 */
2590 }