Improved a sentence.
[rsync.git] / socket.c
blob279b24e2ff9cea0066e173a8deba9cbb4d7ab118
1 /* -*- c-file-style: "linux" -*-
3 rsync -- fast file replication program
5 Copyright (C) 1992-2001 by Andrew Tridgell <tridge@samba.org>
6 Copyright (C) 2001, 2002 by Martin Pool <mbp@samba.org>
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 2 of the License, or
11 (at your option) any later version.
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
18 You should have received a copy of the GNU General Public License
19 along with this program; if not, write to the Free Software
20 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
23 /**
24 * @file socket.c
26 * Socket functions used in rsync.
28 * This file is now converted to use the new-style getaddrinfo()
29 * interface, which supports IPv6 but is also supported on recent
30 * IPv4-only machines. On systems that don't have that interface, we
31 * emulate it using the KAME implementation.
32 **/
34 #include "rsync.h"
36 extern char *bind_address;
37 extern int default_af_hint;
39 /**
40 * Establish a proxy connection on an open socket to a web proxy by
41 * using the CONNECT method. If proxy_user and proxy_pass are not NULL,
42 * they are used to authenticate to the proxy using the "Basic"
43 * proxy-authorization protocol
44 **/
45 static int establish_proxy_connection(int fd, char *host, int port,
46 char *proxy_user, char *proxy_pass)
48 char *cp, buffer[1024];
49 char *authhdr, authbuf[1024];
50 int len;
52 if (proxy_user && proxy_pass) {
53 stringjoin(buffer, sizeof buffer,
54 proxy_user, ":", proxy_pass, NULL);
55 len = strlen(buffer);
57 if ((len*8 + 5) / 6 >= (int)sizeof authbuf) {
58 rprintf(FERROR,
59 "authentication information is too long\n");
60 return -1;
63 base64_encode(buffer, len, authbuf);
64 authhdr = "\r\nProxy-Authorization: Basic ";
65 } else {
66 *authbuf = '\0';
67 authhdr = "";
70 snprintf(buffer, sizeof buffer, "CONNECT %s:%d HTTP/1.0%s%s\r\n\r\n",
71 host, port, authhdr, authbuf);
72 len = strlen(buffer);
73 if (write(fd, buffer, len) != len) {
74 rsyserr(FERROR, errno, "failed to write to proxy");
75 return -1;
78 for (cp = buffer; cp < &buffer[sizeof buffer - 1]; cp++) {
79 if (read(fd, cp, 1) != 1) {
80 rsyserr(FERROR, errno, "failed to read from proxy");
81 return -1;
83 if (*cp == '\n')
84 break;
87 if (*cp != '\n')
88 cp++;
89 *cp-- = '\0';
90 if (*cp == '\r')
91 *cp = '\0';
92 if (strncmp(buffer, "HTTP/", 5) != 0) {
93 rprintf(FERROR, "bad response from proxy -- %s\n",
94 buffer);
95 return -1;
97 for (cp = &buffer[5]; isdigit(*(uchar*)cp) || *cp == '.'; cp++) {}
98 while (*cp == ' ')
99 cp++;
100 if (*cp != '2') {
101 rprintf(FERROR, "bad response from proxy -- %s\n",
102 buffer);
103 return -1;
105 /* throw away the rest of the HTTP header */
106 while (1) {
107 for (cp = buffer; cp < &buffer[sizeof buffer - 1]; cp++) {
108 if (read(fd, cp, 1) != 1) {
109 rsyserr(FERROR, errno,
110 "failed to read from proxy");
111 return -1;
113 if (*cp == '\n')
114 break;
116 if (cp > buffer && *cp == '\n')
117 cp--;
118 if (cp == buffer && (*cp == '\n' || *cp == '\r'))
119 break;
121 return 0;
126 * Try to set the local address for a newly-created socket. Return -1
127 * if this fails.
129 int try_bind_local(int s, int ai_family, int ai_socktype,
130 const char *bind_addr)
132 int error;
133 struct addrinfo bhints, *bres_all, *r;
135 memset(&bhints, 0, sizeof bhints);
136 bhints.ai_family = ai_family;
137 bhints.ai_socktype = ai_socktype;
138 bhints.ai_flags = AI_PASSIVE;
139 if ((error = getaddrinfo(bind_addr, NULL, &bhints, &bres_all))) {
140 rprintf(FERROR, RSYNC_NAME ": getaddrinfo %s: %s\n",
141 bind_addr, gai_strerror(error));
142 return -1;
145 for (r = bres_all; r; r = r->ai_next) {
146 if (bind(s, r->ai_addr, r->ai_addrlen) == -1)
147 continue;
148 freeaddrinfo(bres_all);
149 return s;
152 /* no error message; there might be some problem that allows
153 * creation of the socket but not binding, perhaps if the
154 * machine has no ipv6 address of this name. */
155 freeaddrinfo(bres_all);
156 return -1;
161 * Open a socket to a tcp remote host with the specified port .
163 * Based on code from Warren. Proxy support by Stephen Rothwell.
164 * getaddrinfo() rewrite contributed by KAME.net.
166 * Now that we support IPv6 we need to look up the remote machine's
167 * address first, using @p af_hint to set a preference for the type
168 * of address. Then depending on whether it has v4 or v6 addresses we
169 * try to open a connection.
171 * The loop allows for machines with some addresses which may not be
172 * reachable, perhaps because we can't e.g. route ipv6 to that network
173 * but we can get ip4 packets through.
175 * @param bind_addr Local address to use. Normally NULL to bind
176 * the wildcard address.
178 * @param af_hint Address family, e.g. AF_INET or AF_INET6.
180 int open_socket_out(char *host, int port, const char *bind_addr,
181 int af_hint)
183 int type = SOCK_STREAM;
184 int error, s;
185 struct addrinfo hints, *res0, *res;
186 char portbuf[10];
187 char *h, *cp;
188 int proxied = 0;
189 char buffer[1024];
190 char *proxy_user = NULL, *proxy_pass = NULL;
192 /* if we have a RSYNC_PROXY env variable then redirect our
193 * connetcion via a web proxy at the given address. */
194 h = getenv("RSYNC_PROXY");
195 proxied = h != NULL && *h != '\0';
197 if (proxied) {
198 strlcpy(buffer, h, sizeof buffer);
200 /* Is the USER:PASS@ prefix present? */
201 if ((cp = strrchr(buffer, '@')) != NULL) {
202 *cp++ = '\0';
203 /* The remainder is the HOST:PORT part. */
204 h = cp;
206 if ((cp = strchr(buffer, ':')) == NULL) {
207 rprintf(FERROR,
208 "invalid proxy specification: should be USER:PASS@HOST:PORT\n");
209 return -1;
211 *cp++ = '\0';
213 proxy_user = buffer;
214 proxy_pass = cp;
215 } else {
216 /* The whole buffer is the HOST:PORT part. */
217 h = buffer;
220 if ((cp = strchr(h, ':')) == NULL) {
221 rprintf(FERROR,
222 "invalid proxy specification: should be HOST:PORT\n");
223 return -1;
225 *cp++ = '\0';
226 strlcpy(portbuf, cp, sizeof portbuf);
227 if (verbose >= 2) {
228 rprintf(FINFO, "connection via http proxy %s port %s\n",
229 h, portbuf);
231 } else {
232 snprintf(portbuf, sizeof portbuf, "%d", port);
233 h = host;
236 memset(&hints, 0, sizeof hints);
237 hints.ai_family = af_hint;
238 hints.ai_socktype = type;
239 error = getaddrinfo(h, portbuf, &hints, &res0);
240 if (error) {
241 rprintf(FERROR, RSYNC_NAME ": getaddrinfo: %s %s: %s\n",
242 h, portbuf, gai_strerror(error));
243 return -1;
246 s = -1;
247 /* Try to connect to all addresses for this machine until we get
248 * through. It might e.g. be multi-homed, or have both IPv4 and IPv6
249 * addresses. We need to create a socket for each record, since the
250 * address record tells us what protocol to use to try to connect. */
251 for (res = res0; res; res = res->ai_next) {
252 s = socket(res->ai_family, res->ai_socktype, res->ai_protocol);
253 if (s < 0)
254 continue;
256 if (bind_addr
257 && try_bind_local(s, res->ai_family, type,
258 bind_addr) == -1) {
259 close(s);
260 s = -1;
261 continue;
263 if (connect(s, res->ai_addr, res->ai_addrlen) < 0) {
264 close(s);
265 s = -1;
266 continue;
268 if (proxied
269 && establish_proxy_connection(s, host, port,
270 proxy_user, proxy_pass) != 0) {
271 close(s);
272 s = -1;
273 continue;
275 break;
277 freeaddrinfo(res0);
278 if (s < 0) {
279 rsyserr(FERROR, errno, "failed to connect to %s", h);
280 return -1;
282 return s;
287 * Open an outgoing socket, but allow for it to be intercepted by
288 * $RSYNC_CONNECT_PROG, which will execute a program across a TCP
289 * socketpair rather than really opening a socket.
291 * We use this primarily in testing to detect TCP flow bugs, but not
292 * cause security problems by really opening remote connections.
294 * This is based on the Samba LIBSMB_PROG feature.
296 * @param bind_addr Local address to use. Normally NULL to get the stack default.
298 int open_socket_out_wrapped(char *host, int port, const char *bind_addr,
299 int af_hint)
301 char *prog = getenv("RSYNC_CONNECT_PROG");
303 if (verbose >= 2) {
304 rprintf(FINFO, "%sopening tcp connection to %s port %d\n",
305 prog ? "Using RSYNC_CONNECT_PROG instead of " : "",
306 host, port);
308 if (prog)
309 return sock_exec(prog);
310 return open_socket_out(host, port, bind_addr, af_hint);
316 * Open one or more sockets for incoming data using the specified type,
317 * port, and address.
319 * The getaddrinfo() call may return several address results, e.g. for
320 * the machine's IPv4 and IPv6 name.
322 * We return an array of file-descriptors to the sockets, with a trailing
323 * -1 value to indicate the end of the list.
325 * @param bind_addr Local address to bind, or NULL to allow it to
326 * default.
328 static int *open_socket_in(int type, int port, const char *bind_addr,
329 int af_hint)
331 int one = 1;
332 int s, *socks, maxs, i;
333 struct addrinfo hints, *all_ai, *resp;
334 char portbuf[10];
335 int error;
337 memset(&hints, 0, sizeof hints);
338 hints.ai_family = af_hint;
339 hints.ai_socktype = type;
340 hints.ai_flags = AI_PASSIVE;
341 snprintf(portbuf, sizeof portbuf, "%d", port);
342 error = getaddrinfo(bind_addr, portbuf, &hints, &all_ai);
343 if (error) {
344 rprintf(FERROR, RSYNC_NAME ": getaddrinfo: bind address %s: %s\n",
345 bind_addr, gai_strerror(error));
346 return NULL;
349 /* Count max number of sockets we might open. */
350 for (maxs = 0, resp = all_ai; resp; resp = resp->ai_next, maxs++) {}
352 if (!(socks = new_array(int, maxs + 1)))
353 out_of_memory("open_socket_in");
355 /* We may not be able to create the socket, if for example the
356 * machine knows about IPv6 in the C library, but not in the
357 * kernel. */
358 for (resp = all_ai, i = 0; resp; resp = resp->ai_next) {
359 s = socket(resp->ai_family, resp->ai_socktype,
360 resp->ai_protocol);
362 if (s == -1) {
363 /* See if there's another address that will work... */
364 continue;
367 setsockopt(s, SOL_SOCKET, SO_REUSEADDR,
368 (char *)&one, sizeof one);
370 #ifdef IPV6_V6ONLY
371 if (resp->ai_family == AF_INET6) {
372 if (setsockopt(s, IPPROTO_IPV6, IPV6_V6ONLY,
373 (char *)&one, sizeof one) < 0
374 && default_af_hint != AF_INET6) {
375 close(s);
376 continue;
379 #endif
381 /* Now we've got a socket - we need to bind it. */
382 if (bind(s, resp->ai_addr, resp->ai_addrlen) < 0) {
383 /* Nope, try another */
384 close(s);
385 continue;
388 socks[i++] = s;
390 socks[i] = -1;
392 if (all_ai)
393 freeaddrinfo(all_ai);
395 if (!i) {
396 rprintf(FERROR,
397 "unable to bind any inbound sockets on port %d\n",
398 port);
399 free(socks);
400 return NULL;
402 return socks;
407 * Determine if a file descriptor is in fact a socket
409 int is_a_socket(int fd)
411 int v;
412 socklen_t l = sizeof (int);
414 /* Parameters to getsockopt, setsockopt etc are very
415 * unstandardized across platforms, so don't be surprised if
416 * there are compiler warnings on e.g. SCO OpenSwerver or AIX.
417 * It seems they all eventually get the right idea.
419 * Debian says: ``The fifth argument of getsockopt and
420 * setsockopt is in reality an int [*] (and this is what BSD
421 * 4.* and libc4 and libc5 have). Some POSIX confusion
422 * resulted in the present socklen_t. The draft standard has
423 * not been adopted yet, but glibc2 already follows it and
424 * also has socklen_t [*]. See also accept(2).''
426 * We now return to your regularly scheduled programming. */
427 return getsockopt(fd, SOL_SOCKET, SO_TYPE, (char *)&v, &l) == 0;
431 static RETSIGTYPE sigchld_handler(UNUSED(int val))
433 #ifdef WNOHANG
434 while (waitpid(-1, NULL, WNOHANG) > 0) {}
435 #endif
436 signal(SIGCHLD, sigchld_handler);
440 void start_accept_loop(int port, int (*fn)(int, int))
442 fd_set deffds;
443 int *sp, maxfd, i;
445 /* open an incoming socket */
446 sp = open_socket_in(SOCK_STREAM, port, bind_address, default_af_hint);
447 if (sp == NULL)
448 exit_cleanup(RERR_SOCKETIO);
450 /* ready to listen */
451 FD_ZERO(&deffds);
452 for (i = 0, maxfd = -1; sp[i] >= 0; i++) {
453 if (listen(sp[i], 5) < 0) {
454 rsyserr(FERROR, errno, "listen() on socket failed");
455 #ifdef INET6
456 if (errno == EADDRINUSE && i > 0) {
457 rprintf(FINFO,
458 "Try using --ipv4 or --ipv6 to avoid this listen() error.\n");
460 #endif
461 exit_cleanup(RERR_SOCKETIO);
463 FD_SET(sp[i], &deffds);
464 if (maxfd < sp[i])
465 maxfd = sp[i];
469 /* now accept incoming connections - forking a new process
470 * for each incoming connection */
471 while (1) {
472 fd_set fds;
473 pid_t pid;
474 int fd;
475 struct sockaddr_storage addr;
476 socklen_t addrlen = sizeof addr;
478 /* close log file before the potentially very long select so
479 * file can be trimmed by another process instead of growing
480 * forever */
481 logfile_close();
483 #ifdef FD_COPY
484 FD_COPY(&deffds, &fds);
485 #else
486 fds = deffds;
487 #endif
489 if (select(maxfd + 1, &fds, NULL, NULL, NULL) != 1)
490 continue;
492 for (i = 0, fd = -1; sp[i] >= 0; i++) {
493 if (FD_ISSET(sp[i], &fds)) {
494 fd = accept(sp[i], (struct sockaddr *)&addr,
495 &addrlen);
496 break;
500 if (fd < 0)
501 continue;
503 signal(SIGCHLD, sigchld_handler);
505 if ((pid = fork()) == 0) {
506 int ret;
507 for (i = 0; sp[i] >= 0; i++)
508 close(sp[i]);
509 /* Re-open log file in child before possibly giving
510 * up privileges (see logfile_close() above). */
511 logfile_reopen();
512 ret = fn(fd, fd);
513 close_all();
514 _exit(ret);
515 } else if (pid < 0) {
516 rsyserr(FERROR, errno,
517 "could not create child server process");
518 close(fd);
519 /* This might have happened because we're
520 * overloaded. Sleep briefly before trying to
521 * accept again. */
522 sleep(2);
523 } else {
524 /* Parent doesn't need this fd anymore. */
525 close(fd);
531 enum SOCK_OPT_TYPES {OPT_BOOL,OPT_INT,OPT_ON};
533 struct
535 char *name;
536 int level;
537 int option;
538 int value;
539 int opttype;
540 } socket_options[] = {
541 {"SO_KEEPALIVE", SOL_SOCKET, SO_KEEPALIVE, 0, OPT_BOOL},
542 {"SO_REUSEADDR", SOL_SOCKET, SO_REUSEADDR, 0, OPT_BOOL},
543 {"SO_BROADCAST", SOL_SOCKET, SO_BROADCAST, 0, OPT_BOOL},
544 #ifdef TCP_NODELAY
545 {"TCP_NODELAY", IPPROTO_TCP, TCP_NODELAY, 0, OPT_BOOL},
546 #endif
547 #ifdef IPTOS_LOWDELAY
548 {"IPTOS_LOWDELAY", IPPROTO_IP, IP_TOS, IPTOS_LOWDELAY, OPT_ON},
549 #endif
550 #ifdef IPTOS_THROUGHPUT
551 {"IPTOS_THROUGHPUT", IPPROTO_IP, IP_TOS, IPTOS_THROUGHPUT, OPT_ON},
552 #endif
553 #ifdef SO_SNDBUF
554 {"SO_SNDBUF", SOL_SOCKET, SO_SNDBUF, 0, OPT_INT},
555 #endif
556 #ifdef SO_RCVBUF
557 {"SO_RCVBUF", SOL_SOCKET, SO_RCVBUF, 0, OPT_INT},
558 #endif
559 #ifdef SO_SNDLOWAT
560 {"SO_SNDLOWAT", SOL_SOCKET, SO_SNDLOWAT, 0, OPT_INT},
561 #endif
562 #ifdef SO_RCVLOWAT
563 {"SO_RCVLOWAT", SOL_SOCKET, SO_RCVLOWAT, 0, OPT_INT},
564 #endif
565 #ifdef SO_SNDTIMEO
566 {"SO_SNDTIMEO", SOL_SOCKET, SO_SNDTIMEO, 0, OPT_INT},
567 #endif
568 #ifdef SO_RCVTIMEO
569 {"SO_RCVTIMEO", SOL_SOCKET, SO_RCVTIMEO, 0, OPT_INT},
570 #endif
571 {NULL,0,0,0,0}};
576 * Set user socket options
578 void set_socket_options(int fd, char *options)
580 char *tok;
582 if (!options || !*options)
583 return;
585 options = strdup(options);
587 if (!options)
588 out_of_memory("set_socket_options");
590 for (tok = strtok(options, " \t,"); tok; tok = strtok(NULL," \t,")) {
591 int ret=0,i;
592 int value = 1;
593 char *p;
594 int got_value = 0;
596 if ((p = strchr(tok,'='))) {
597 *p = 0;
598 value = atoi(p+1);
599 got_value = 1;
602 for (i = 0; socket_options[i].name; i++) {
603 if (strcmp(socket_options[i].name,tok)==0)
604 break;
607 if (!socket_options[i].name) {
608 rprintf(FERROR,"Unknown socket option %s\n",tok);
609 continue;
612 switch (socket_options[i].opttype) {
613 case OPT_BOOL:
614 case OPT_INT:
615 ret = setsockopt(fd,socket_options[i].level,
616 socket_options[i].option,
617 (char *)&value, sizeof (int));
618 break;
620 case OPT_ON:
621 if (got_value)
622 rprintf(FERROR,"syntax error -- %s does not take a value\n",tok);
625 int on = socket_options[i].value;
626 ret = setsockopt(fd,socket_options[i].level,
627 socket_options[i].option,
628 (char *)&on, sizeof (int));
630 break;
633 if (ret != 0) {
634 rsyserr(FERROR, errno,
635 "failed to set socket option %s", tok);
639 free(options);
643 * Become a daemon, discarding the controlling terminal
645 void become_daemon(void)
647 int i;
649 if (fork()) {
650 _exit(0);
653 /* detach from the terminal */
654 #ifdef HAVE_SETSID
655 setsid();
656 #elif defined TIOCNOTTY
657 i = open("/dev/tty", O_RDWR);
658 if (i >= 0) {
659 ioctl(i, (int)TIOCNOTTY, (char *)0);
660 close(i);
662 #endif
663 /* make sure that stdin, stdout an stderr don't stuff things
664 * up (library functions, for example) */
665 for (i = 0; i < 3; i++) {
666 close(i);
667 open("/dev/null", O_RDWR);
673 * This is like socketpair but uses tcp. It is used by the Samba
674 * regression test code.
676 * The function guarantees that nobody else can attach to the socket,
677 * or if they do that this function fails and the socket gets closed
678 * returns 0 on success, -1 on failure the resulting file descriptors
679 * are symmetrical.
681 static int socketpair_tcp(int fd[2])
683 int listener;
684 struct sockaddr_in sock;
685 struct sockaddr_in sock2;
686 socklen_t socklen = sizeof sock;
687 int connect_done = 0;
689 fd[0] = fd[1] = listener = -1;
691 memset(&sock, 0, sizeof sock);
693 if ((listener = socket(PF_INET, SOCK_STREAM, 0)) == -1)
694 goto failed;
696 memset(&sock2, 0, sizeof sock2);
697 #ifdef HAVE_SOCKADDR_IN_LEN
698 sock2.sin_len = sizeof sock2;
699 #endif
700 sock2.sin_family = PF_INET;
702 bind(listener, (struct sockaddr *)&sock2, sizeof sock2);
704 if (listen(listener, 1) != 0)
705 goto failed;
707 if (getsockname(listener, (struct sockaddr *)&sock, &socklen) != 0)
708 goto failed;
710 if ((fd[1] = socket(PF_INET, SOCK_STREAM, 0)) == -1)
711 goto failed;
713 set_nonblocking(fd[1]);
715 sock.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
717 if (connect(fd[1], (struct sockaddr *)&sock, sizeof sock) == -1) {
718 if (errno != EINPROGRESS)
719 goto failed;
720 } else
721 connect_done = 1;
723 if ((fd[0] = accept(listener, (struct sockaddr *)&sock, &socklen)) == -1)
724 goto failed;
726 close(listener);
727 listener = -1;
729 set_blocking(fd[1]);
731 if (connect_done == 0) {
732 if (connect(fd[1], (struct sockaddr *)&sock, sizeof sock) != 0
733 && errno != EISCONN)
734 goto failed;
737 /* all OK! */
738 return 0;
740 failed:
741 if (fd[0] != -1)
742 close(fd[0]);
743 if (fd[1] != -1)
744 close(fd[1]);
745 if (listener != -1)
746 close(listener);
747 return -1;
753 * Run a program on a local tcp socket, so that we can talk to it's
754 * stdin and stdout. This is used to fake a connection to a daemon
755 * for testing -- not for the normal case of running SSH.
757 * @return a socket which is attached to a subprocess running
758 * "prog". stdin and stdout are attached. stderr is left attached to
759 * the original stderr
761 int sock_exec(const char *prog)
763 int fd[2];
765 if (socketpair_tcp(fd) != 0) {
766 rsyserr(FERROR, errno, "socketpair_tcp failed");
767 return -1;
769 if (verbose >= 2)
770 rprintf(FINFO, "Running socket program: \"%s\"\n", prog);
771 if (fork() == 0) {
772 close(fd[0]);
773 close(0);
774 close(1);
775 dup(fd[1]);
776 dup(fd[1]);
777 exit(system(prog));
779 close(fd[1]);
780 return fd[0];