]> git.proxmox.com Git - mirror_qemu.git/blob - slirp/socket.c
projects / mirror_qemu.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
fixed invalid received length
[mirror_qemu.git] / slirp / socket.c
1 /*
2 * Copyright (c) 1995 Danny Gasparovski.
3 *
4 * Please read the file COPYRIGHT for the
5 * terms and conditions of the copyright.
6 */
7
8 #define WANT_SYS_IOCTL_H
9 #include <slirp.h>
10 #include "ip_icmp.h"
11 #include "main.h"
12
13 void
14 so_init()
15 {
16 /* Nothing yet */
17 }
18
19
20 struct socket *
21 solookup(head, laddr, lport, faddr, fport)
22 struct socket *head;
23 struct in_addr laddr;
24 u_int lport;
25 struct in_addr faddr;
26 u_int fport;
27 {
28 struct socket *so;
29
30 for (so = head->so_next; so != head; so = so->so_next) {
31 if (so->so_lport == lport &&
32 so->so_laddr.s_addr == laddr.s_addr &&
33 so->so_faddr.s_addr == faddr.s_addr &&
34 so->so_fport == fport)
35 break;
36 }
37
38 if (so == head)
39 return (struct socket *)NULL;
40 return so;
41
42 }
43
44 /*
45 * Create a new socket, initialise the fields
46 * It is the responsibility of the caller to
47 * insque() it into the correct linked-list
48 */
49 struct socket *
50 socreate()
51 {
52 struct socket *so;
53
54 so = (struct socket *)malloc(sizeof(struct socket));
55 if(so) {
56 memset(so, 0, sizeof(struct socket));
57 so->so_state = SS_NOFDREF;
58 so->s = -1;
59 }
60 return(so);
61 }
62
63 /*
64 * remque and free a socket, clobber cache
65 */
66 void
67 sofree(so)
68 struct socket *so;
69 {
70 if (so->so_emu==EMU_RSH && so->extra) {
71 sofree(so->extra);
72 so->extra=NULL;
73 }
74 if (so == tcp_last_so)
75 tcp_last_so = &tcb;
76 else if (so == udp_last_so)
77 udp_last_so = &udb;
78
79 m_free(so->so_m);
80
81 if(so->so_next && so->so_prev)
82 remque(so); /* crashes if so is not in a queue */
83
84 free(so);
85 }
86
87 /*
88 * Read from so's socket into sb_snd, updating all relevant sbuf fields
89 * NOTE: This will only be called if it is select()ed for reading, so
90 * a read() of 0 (or less) means it's disconnected
91 */
92 int
93 soread(so)
94 struct socket *so;
95 {
96 int n, nn, lss, total;
97 struct sbuf *sb = &so->so_snd;
98 int len = sb->sb_datalen - sb->sb_cc;
99 struct iovec iov[2];
100 int mss = so->so_tcpcb->t_maxseg;
101
102 DEBUG_CALL("soread");
103 DEBUG_ARG("so = %lx", (long )so);
104
105 /*
106 * No need to check if there's enough room to read.
107 * soread wouldn't have been called if there weren't
108 */
109
110 len = sb->sb_datalen - sb->sb_cc;
111
112 iov[0].iov_base = sb->sb_wptr;
113 if (sb->sb_wptr < sb->sb_rptr) {
114 iov[0].iov_len = sb->sb_rptr - sb->sb_wptr;
115 /* Should never succeed, but... */
116 if (iov[0].iov_len > len)
117 iov[0].iov_len = len;
118 if (iov[0].iov_len > mss)
119 iov[0].iov_len -= iov[0].iov_len%mss;
120 n = 1;
121 } else {
122 iov[0].iov_len = (sb->sb_data + sb->sb_datalen) - sb->sb_wptr;
123 /* Should never succeed, but... */
124 if (iov[0].iov_len > len) iov[0].iov_len = len;
125 len -= iov[0].iov_len;
126 if (len) {
127 iov[1].iov_base = sb->sb_data;
128 iov[1].iov_len = sb->sb_rptr - sb->sb_data;
129 if(iov[1].iov_len > len)
130 iov[1].iov_len = len;
131 total = iov[0].iov_len + iov[1].iov_len;
132 if (total > mss) {
133 lss = total%mss;
134 if (iov[1].iov_len > lss) {
135 iov[1].iov_len -= lss;
136 n = 2;
137 } else {
138 lss -= iov[1].iov_len;
139 iov[0].iov_len -= lss;
140 n = 1;
141 }
142 } else
143 n = 2;
144 } else {
145 if (iov[0].iov_len > mss)
146 iov[0].iov_len -= iov[0].iov_len%mss;
147 n = 1;
148 }
149 }
150
151 #ifdef HAVE_READV
152 nn = readv(so->s, (struct iovec *)iov, n);
153 DEBUG_MISC((dfd, " ... read nn = %d bytes\n", nn));
154 #else
155 nn = recv(so->s, iov[0].iov_base, iov[0].iov_len,0);
156 #endif
157 if (nn <= 0) {
158 if (nn < 0 && (errno == EINTR || errno == EAGAIN))
159 return 0;
160 else {
161 DEBUG_MISC((dfd, " --- soread() disconnected, nn = %d, errno = %d-%s\n", nn, errno,strerror(errno)));
162 sofcantrcvmore(so);
163 tcp_sockclosed(sototcpcb(so));
164 return -1;
165 }
166 }
167
168 #ifndef HAVE_READV
169 /*
170 * If there was no error, try and read the second time round
171 * We read again if n = 2 (ie, there's another part of the buffer)
172 * and we read as much as we could in the first read
173 * We don't test for <= 0 this time, because there legitimately
174 * might not be any more data (since the socket is non-blocking),
175 * a close will be detected on next iteration.
176 * A return of -1 wont (shouldn't) happen, since it didn't happen above
177 */
178 if (n == 2 && nn == iov[0].iov_len) {
179 int ret;
180 ret = recv(so->s, iov[1].iov_base, iov[1].iov_len,0);
181 if (ret > 0)
182 nn += ret;
183 }
184
185 DEBUG_MISC((dfd, " ... read nn = %d bytes\n", nn));
186 #endif
187
188 /* Update fields */
189 sb->sb_cc += nn;
190 sb->sb_wptr += nn;
191 if (sb->sb_wptr >= (sb->sb_data + sb->sb_datalen))
192 sb->sb_wptr -= sb->sb_datalen;
193 return nn;
194 }
195
196 /*
197 * Get urgent data
198 *
199 * When the socket is created, we set it SO_OOBINLINE,
200 * so when OOB data arrives, we soread() it and everything
201 * in the send buffer is sent as urgent data
202 */
203 void
204 sorecvoob(so)
205 struct socket *so;
206 {
207 struct tcpcb *tp = sototcpcb(so);
208
209 DEBUG_CALL("sorecvoob");
210 DEBUG_ARG("so = %lx", (long)so);
211
212 /*
213 * We take a guess at how much urgent data has arrived.
214 * In most situations, when urgent data arrives, the next
215 * read() should get all the urgent data. This guess will
216 * be wrong however if more data arrives just after the
217 * urgent data, or the read() doesn't return all the
218 * urgent data.
219 */
220 soread(so);
221 tp->snd_up = tp->snd_una + so->so_snd.sb_cc;
222 tp->t_force = 1;
223 tcp_output(tp);
224 tp->t_force = 0;
225 }
226
227 /*
228 * Send urgent data
229 * There's a lot duplicated code here, but...
230 */
231 int
232 sosendoob(so)
233 struct socket *so;
234 {
235 struct sbuf *sb = &so->so_rcv;
236 char buff[2048]; /* XXX Shouldn't be sending more oob data than this */
237
238 int n, len;
239
240 DEBUG_CALL("sosendoob");
241 DEBUG_ARG("so = %lx", (long)so);
242 DEBUG_ARG("sb->sb_cc = %d", sb->sb_cc);
243
244 if (so->so_urgc > 2048)
245 so->so_urgc = 2048; /* XXXX */
246
247 if (sb->sb_rptr < sb->sb_wptr) {
248 /* We can send it directly */
249 n = send(so->s, sb->sb_rptr, so->so_urgc, (MSG_OOB)); /* |MSG_DONTWAIT)); */
250 so->so_urgc -= n;
251
252 DEBUG_MISC((dfd, " --- sent %d bytes urgent data, %d urgent bytes left\n", n, so->so_urgc));
253 } else {
254 /*
255 * Since there's no sendv or sendtov like writev,
256 * we must copy all data to a linear buffer then
257 * send it all
258 */
259 len = (sb->sb_data + sb->sb_datalen) - sb->sb_rptr;
260 if (len > so->so_urgc) len = so->so_urgc;
261 memcpy(buff, sb->sb_rptr, len);
262 so->so_urgc -= len;
263 if (so->so_urgc) {
264 n = sb->sb_wptr - sb->sb_data;
265 if (n > so->so_urgc) n = so->so_urgc;
266 memcpy((buff + len), sb->sb_data, n);
267 so->so_urgc -= n;
268 len += n;
269 }
270 n = send(so->s, buff, len, (MSG_OOB)); /* |MSG_DONTWAIT)); */
271 #ifdef DEBUG
272 if (n != len)
273 DEBUG_ERROR((dfd, "Didn't send all data urgently XXXXX\n"));
274 #endif
275 DEBUG_MISC((dfd, " ---2 sent %d bytes urgent data, %d urgent bytes left\n", n, so->so_urgc));
276 }
277
278 sb->sb_cc -= n;
279 sb->sb_rptr += n;
280 if (sb->sb_rptr >= (sb->sb_data + sb->sb_datalen))
281 sb->sb_rptr -= sb->sb_datalen;
282
283 return n;
284 }
285
286 /*
287 * Write data from so_rcv to so's socket,
288 * updating all sbuf field as necessary
289 */
290 int
291 sowrite(so)
292 struct socket *so;
293 {
294 int n,nn;
295 struct sbuf *sb = &so->so_rcv;
296 int len = sb->sb_cc;
297 struct iovec iov[2];
298
299 DEBUG_CALL("sowrite");
300 DEBUG_ARG("so = %lx", (long)so);
301
302 if (so->so_urgc) {
303 sosendoob(so);
304 if (sb->sb_cc == 0)
305 return 0;
306 }
307
308 /*
309 * No need to check if there's something to write,
310 * sowrite wouldn't have been called otherwise
311 */
312
313 len = sb->sb_cc;
314
315 iov[0].iov_base = sb->sb_rptr;
316 if (sb->sb_rptr < sb->sb_wptr) {
317 iov[0].iov_len = sb->sb_wptr - sb->sb_rptr;
318 /* Should never succeed, but... */
319 if (iov[0].iov_len > len) iov[0].iov_len = len;
320 n = 1;
321 } else {
322 iov[0].iov_len = (sb->sb_data + sb->sb_datalen) - sb->sb_rptr;
323 if (iov[0].iov_len > len) iov[0].iov_len = len;
324 len -= iov[0].iov_len;
325 if (len) {
326 iov[1].iov_base = sb->sb_data;
327 iov[1].iov_len = sb->sb_wptr - sb->sb_data;
328 if (iov[1].iov_len > len) iov[1].iov_len = len;
329 n = 2;
330 } else
331 n = 1;
332 }
333 /* Check if there's urgent data to send, and if so, send it */
334
335 #ifdef HAVE_READV
336 nn = writev(so->s, (const struct iovec *)iov, n);
337
338 DEBUG_MISC((dfd, " ... wrote nn = %d bytes\n", nn));
339 #else
340 nn = send(so->s, iov[0].iov_base, iov[0].iov_len,0);
341 #endif
342 /* This should never happen, but people tell me it does *shrug* */
343 if (nn < 0 && (errno == EAGAIN || errno == EINTR))
344 return 0;
345
346 if (nn <= 0) {
347 DEBUG_MISC((dfd, " --- sowrite disconnected, so->so_state = %x, errno = %d\n",
348 so->so_state, errno));
349 sofcantsendmore(so);
350 tcp_sockclosed(sototcpcb(so));
351 return -1;
352 }
353
354 #ifndef HAVE_READV
355 if (n == 2 && nn == iov[0].iov_len)
356 nn += send(so->s, iov[1].iov_base, iov[1].iov_len,0);
357 DEBUG_MISC((dfd, " ... wrote nn = %d bytes\n", nn));
358 #endif
359
360 /* Update sbuf */
361 sb->sb_cc -= nn;
362 sb->sb_rptr += nn;
363 if (sb->sb_rptr >= (sb->sb_data + sb->sb_datalen))
364 sb->sb_rptr -= sb->sb_datalen;
365
366 /*
367 * If in DRAIN mode, and there's no more data, set
368 * it CANTSENDMORE
369 */
370 if ((so->so_state & SS_FWDRAIN) && sb->sb_cc == 0)
371 sofcantsendmore(so);
372
373 return nn;
374 }
375
376 /*
377 * recvfrom() a UDP socket
378 */
379 void
380 sorecvfrom(so)
381 struct socket *so;
382 {
383 struct sockaddr_in addr;
384 int addrlen = sizeof(struct sockaddr_in);
385
386 DEBUG_CALL("sorecvfrom");
387 DEBUG_ARG("so = %lx", (long)so);
388
389 if (so->so_type == IPPROTO_ICMP) { /* This is a "ping" reply */
390 char buff[256];
391 int len;
392
393 len = recvfrom(so->s, buff, 256, 0,
394 (struct sockaddr *)&addr, &addrlen);
395 /* XXX Check if reply is "correct"? */
396
397 if(len == -1 || len == 0) {
398 u_char code=ICMP_UNREACH_PORT;
399
400 if(errno == EHOSTUNREACH) code=ICMP_UNREACH_HOST;
401 else if(errno == ENETUNREACH) code=ICMP_UNREACH_NET;
402
403 DEBUG_MISC((dfd," udp icmp rx errno = %d-%s\n",
404 errno,strerror(errno)));
405 icmp_error(so->so_m, ICMP_UNREACH,code, 0,strerror(errno));
406 } else {
407 icmp_reflect(so->so_m);
408 so->so_m = 0; /* Don't m_free() it again! */
409 }
410 /* No need for this socket anymore, udp_detach it */
411 udp_detach(so);
412 } else { /* A "normal" UDP packet */
413 struct mbuf *m;
414 int len, n;
415
416 if (!(m = m_get())) return;
417 m->m_data += if_maxlinkhdr;
418
419 /*
420 * XXX Shouldn't FIONREAD packets destined for port 53,
421 * but I don't know the max packet size for DNS lookups
422 */
423 len = M_FREEROOM(m);
424 /* if (so->so_fport != htons(53)) { */
425 ioctlsocket(so->s, FIONREAD, &n);
426
427 if (n > len) {
428 n = (m->m_data - m->m_dat) + m->m_len + n + 1;
429 m_inc(m, n);
430 len = M_FREEROOM(m);
431 }
432 /* } */
433
434 m->m_len = recvfrom(so->s, m->m_data, len, 0,
435 (struct sockaddr *)&addr, &addrlen);
436 DEBUG_MISC((dfd, " did recvfrom %d, errno = %d-%s\n",
437 m->m_len, errno,strerror(errno)));
438 if(m->m_len<0) {
439 u_char code=ICMP_UNREACH_PORT;
440
441 if(errno == EHOSTUNREACH) code=ICMP_UNREACH_HOST;
442 else if(errno == ENETUNREACH) code=ICMP_UNREACH_NET;
443
444 DEBUG_MISC((dfd," rx error, tx icmp ICMP_UNREACH:%i\n", code));
445 icmp_error(so->so_m, ICMP_UNREACH,code, 0,strerror(errno));
446 m_free(m);
447 } else {
448 /*
449 * Hack: domain name lookup will be used the most for UDP,
450 * and since they'll only be used once there's no need
451 * for the 4 minute (or whatever) timeout... So we time them
452 * out much quicker (10 seconds for now...)
453 */
454 if (so->so_expire) {
455 if (so->so_fport == htons(53))
456 so->so_expire = curtime + SO_EXPIREFAST;
457 else
458 so->so_expire = curtime + SO_EXPIRE;
459 }
460
461 /* if (m->m_len == len) {
462 * m_inc(m, MINCSIZE);
463 * m->m_len = 0;
464 * }
465 */
466
467 /*
468 * If this packet was destined for CTL_ADDR,
469 * make it look like that's where it came from, done by udp_output
470 */
471 udp_output(so, m, &addr);
472 } /* rx error */
473 } /* if ping packet */
474 }
475
476 /*
477 * sendto() a socket
478 */
479 int
480 sosendto(so, m)
481 struct socket *so;
482 struct mbuf *m;
483 {
484 int ret;
485 struct sockaddr_in addr;
486
487 DEBUG_CALL("sosendto");
488 DEBUG_ARG("so = %lx", (long)so);
489 DEBUG_ARG("m = %lx", (long)m);
490
491 addr.sin_family = AF_INET;
492 if ((so->so_faddr.s_addr & htonl(0xffffff00)) == special_addr.s_addr) {
493 /* It's an alias */
494 switch(ntohl(so->so_faddr.s_addr) & 0xff) {
495 case CTL_DNS:
496 addr.sin_addr = dns_addr;
497 break;
498 case CTL_ALIAS:
499 default:
500 addr.sin_addr = loopback_addr;
501 break;
502 }
503 } else
504 addr.sin_addr = so->so_faddr;
505 addr.sin_port = so->so_fport;
506
507 DEBUG_MISC((dfd, " sendto()ing, addr.sin_port=%d, addr.sin_addr.s_addr=%.16s\n", ntohs(addr.sin_port), inet_ntoa(addr.sin_addr)));
508
509 /* Don't care what port we get */
510 ret = sendto(so->s, m->m_data, m->m_len, 0,
511 (struct sockaddr *)&addr, sizeof (struct sockaddr));
512 if (ret < 0)
513 return -1;
514
515 /*
516 * Kill the socket if there's no reply in 4 minutes,
517 * but only if it's an expirable socket
518 */
519 if (so->so_expire)
520 so->so_expire = curtime + SO_EXPIRE;
521 so->so_state = SS_ISFCONNECTED; /* So that it gets select()ed */
522 return 0;
523 }
524
525 /*
526 * XXX This should really be tcp_listen
527 */
528 struct socket *
529 solisten(port, laddr, lport, flags)
530 u_int port;
531 u_int32_t laddr;
532 u_int lport;
533 int flags;
534 {
535 struct sockaddr_in addr;
536 struct socket *so;
537 int s, addrlen = sizeof(addr), opt = 1;
538
539 DEBUG_CALL("solisten");
540 DEBUG_ARG("port = %d", port);
541 DEBUG_ARG("laddr = %x", laddr);
542 DEBUG_ARG("lport = %d", lport);
543 DEBUG_ARG("flags = %x", flags);
544
545 if ((so = socreate()) == NULL) {
546 /* free(so); Not sofree() ??? free(NULL) == NOP */
547 return NULL;
548 }
549
550 /* Don't tcp_attach... we don't need so_snd nor so_rcv */
551 if ((so->so_tcpcb = tcp_newtcpcb(so)) == NULL) {
552 free(so);
553 return NULL;
554 }
555 insque(so,&tcb);
556
557 /*
558 * SS_FACCEPTONCE sockets must time out.
559 */
560 if (flags & SS_FACCEPTONCE)
561 so->so_tcpcb->t_timer[TCPT_KEEP] = TCPTV_KEEP_INIT*2;
562
563 so->so_state = (SS_FACCEPTCONN|flags);
564 so->so_lport = lport; /* Kept in network format */
565 so->so_laddr.s_addr = laddr; /* Ditto */
566
567 addr.sin_family = AF_INET;
568 addr.sin_addr.s_addr = INADDR_ANY;
569 addr.sin_port = port;
570
571 if (((s = socket(AF_INET,SOCK_STREAM,0)) < 0) ||
572 (bind(s,(struct sockaddr *)&addr, sizeof(addr)) < 0) ||
573 (listen(s,1) < 0)) {
574 int tmperrno = errno; /* Don't clobber the real reason we failed */
575
576 close(s);
577 sofree(so);
578 /* Restore the real errno */
579 #ifdef _WIN32
580 WSASetLastError(tmperrno);
581 #else
582 errno = tmperrno;
583 #endif
584 return NULL;
585 }
586 setsockopt(s,SOL_SOCKET,SO_REUSEADDR,(char *)&opt,sizeof(int));
587 setsockopt(s,SOL_SOCKET,SO_OOBINLINE,(char *)&opt,sizeof(int));
588
589 getsockname(s,(struct sockaddr *)&addr,&addrlen);
590 so->so_fport = addr.sin_port;
591 if (addr.sin_addr.s_addr == 0 || addr.sin_addr.s_addr == loopback_addr.s_addr)
592 so->so_faddr = our_addr;
593 else
594 so->so_faddr = addr.sin_addr;
595
596 so->s = s;
597 return so;
598 }
599
600 /*
601 * Data is available in so_rcv
602 * Just write() the data to the socket
603 * XXX not yet...
604 */
605 void
606 sorwakeup(so)
607 struct socket *so;
608 {
609 /* sowrite(so); */
610 /* FD_CLR(so->s,&writefds); */
611 }
612
613 /*
614 * Data has been freed in so_snd
615 * We have room for a read() if we want to
616 * For now, don't read, it'll be done in the main loop
617 */
618 void
619 sowwakeup(so)
620 struct socket *so;
621 {
622 /* Nothing, yet */
623 }
624
625 /*
626 * Various session state calls
627 * XXX Should be #define's
628 * The socket state stuff needs work, these often get call 2 or 3
629 * times each when only 1 was needed
630 */
631 void
632 soisfconnecting(so)
633 register struct socket *so;
634 {
635 so->so_state &= ~(SS_NOFDREF|SS_ISFCONNECTED|SS_FCANTRCVMORE|
636 SS_FCANTSENDMORE|SS_FWDRAIN);
637 so->so_state |= SS_ISFCONNECTING; /* Clobber other states */
638 }
639
640 void
641 soisfconnected(so)
642 register struct socket *so;
643 {
644 so->so_state &= ~(SS_ISFCONNECTING|SS_FWDRAIN|SS_NOFDREF);
645 so->so_state |= SS_ISFCONNECTED; /* Clobber other states */
646 }
647
648 void
649 sofcantrcvmore(so)
650 struct socket *so;
651 {
652 if ((so->so_state & SS_NOFDREF) == 0) {
653 shutdown(so->s,0);
654 if(global_writefds) {
655 FD_CLR(so->s,global_writefds);
656 }
657 }
658 so->so_state &= ~(SS_ISFCONNECTING);
659 if (so->so_state & SS_FCANTSENDMORE)
660 so->so_state = SS_NOFDREF; /* Don't select it */ /* XXX close() here as well? */
661 else
662 so->so_state |= SS_FCANTRCVMORE;
663 }
664
665 void
666 sofcantsendmore(so)
667 struct socket *so;
668 {
669 if ((so->so_state & SS_NOFDREF) == 0) {
670 shutdown(so->s,1); /* send FIN to fhost */
671 if (global_readfds) {
672 FD_CLR(so->s,global_readfds);
673 }
674 if (global_xfds) {
675 FD_CLR(so->s,global_xfds);
676 }
677 }
678 so->so_state &= ~(SS_ISFCONNECTING);
679 if (so->so_state & SS_FCANTRCVMORE)
680 so->so_state = SS_NOFDREF; /* as above */
681 else
682 so->so_state |= SS_FCANTSENDMORE;
683 }
684
685 void
686 soisfdisconnected(so)
687 struct socket *so;
688 {
689 /* so->so_state &= ~(SS_ISFCONNECTING|SS_ISFCONNECTED); */
690 /* close(so->s); */
691 /* so->so_state = SS_ISFDISCONNECTED; */
692 /*
693 * XXX Do nothing ... ?
694 */
695 }
696
697 /*
698 * Set write drain mode
699 * Set CANTSENDMORE once all data has been write()n
700 */
701 void
702 sofwdrain(so)
703 struct socket *so;
704 {
705 if (so->so_rcv.sb_cc)
706 so->so_state |= SS_FWDRAIN;
707 else
708 sofcantsendmore(so);
709 }
710
QEMU mirror