]> git.ipfire.org Git - thirdparty/systemd.git/blame - src/socket.c
projects / thirdparty / systemd.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
socket: if SO_RCVBUFFORCE fails, fall back to SO_RCVBUF, to have at least a little...
[thirdparty/systemd.git] / src / socket.c
CommitLineData
d6c9574f 1/*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
5cb5a6ff 2
a7334b09
LP		 3/***
4 This file is part of systemd.
5
6 Copyright 2010 Lennart Poettering
7
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 2 of the License, or
11 (at your option) any later version.
12
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
20***/
21
83c60c9f
LP		 22#include <sys/types.h>
23#include <sys/stat.h>
24#include <unistd.h>
25#include <errno.h>
26#include <fcntl.h>
f94ea366 27#include <sys/epoll.h>
034c6ed7 28#include <signal.h>
4f2d528d 29#include <arpa/inet.h>
916abb21 30#include <mqueue.h>
83c60c9f 31
87f0e418 32#include "unit.h"
5cb5a6ff 33#include "socket.h"
cebf8b20 34#include "netinet/tcp.h"
83c60c9f 35#include "log.h"
23a177ef
LP		 36#include "load-dropin.h"
37#include "load-fragment.h"
9e2f7c11 38#include "strv.h"
4f2d528d 39#include "unit-name.h"
4139c1b2 40#include "dbus-socket.h"
4fd5948e 41#include "missing.h"
a40eb732 42#include "special.h"
398ef8ba 43#include "bus-errors.h"
e51bc1a2 44#include "label.h"
9a57c629 45#include "exit-status.h"
f6a6225e 46#include "def.h"
83c60c9f 47
acbb0225 48static const UnitActiveState state_translation_table[_SOCKET_STATE_MAX] = {
87f0e418
LP		 49 [SOCKET_DEAD] = UNIT_INACTIVE,
50 [SOCKET_START_PRE] = UNIT_ACTIVATING,
51 [SOCKET_START_POST] = UNIT_ACTIVATING,
52 [SOCKET_LISTENING] = UNIT_ACTIVE,
53 [SOCKET_RUNNING] = UNIT_ACTIVE,
54 [SOCKET_STOP_PRE] = UNIT_DEACTIVATING,
55 [SOCKET_STOP_PRE_SIGTERM] = UNIT_DEACTIVATING,
56 [SOCKET_STOP_PRE_SIGKILL] = UNIT_DEACTIVATING,
57 [SOCKET_STOP_POST] = UNIT_DEACTIVATING,
80876c20
LP		 58 [SOCKET_FINAL_SIGTERM] = UNIT_DEACTIVATING,
59 [SOCKET_FINAL_SIGKILL] = UNIT_DEACTIVATING,
fdf20a31 60 [SOCKET_FAILED] = UNIT_FAILED
83c60c9f 61};
5cb5a6ff 62
a16e1123
LP		 63static void socket_init(Unit *u) {
64 Socket *s = SOCKET(u);
65
66 assert(u);
ac155bb8 67 assert(u->load_state == UNIT_STUB);
a16e1123 68
a16e1123
LP		 69 s->backlog = SOMAXCONN;
70 s->timeout_usec = DEFAULT_TIMEOUT_USEC;
71 s->directory_mode = 0755;
9131f660 72 s->socket_mode = 0666;
a16e1123 73
6cf6bbc2
LP		 74 s->max_connections = 64;
75
4fd5948e 76 s->priority = -1;
4fd5948e
LP		 77 s->ip_tos = -1;
78 s->ip_ttl = -1;
4fd5948e 79 s->mark = -1;
4fd5948e 80
a16e1123 81 exec_context_init(&s->exec_context);
ac155bb8
MS		 82 s->exec_context.std_output = u->manager->default_std_output;
83 s->exec_context.std_error = u->manager->default_std_error;
a16e1123
LP		 84
85 s->control_command_id = _SOCKET_EXEC_COMMAND_INVALID;
86}
acbb0225 87
5e94833f
LP		 88static void socket_unwatch_control_pid(Socket *s) {
89 assert(s);
90
91 if (s->control_pid <= 0)
92 return;
93
94 unit_unwatch_pid(UNIT(s), s->control_pid);
95 s->control_pid = 0;
96}
97
87f0e418
LP		 98static void socket_done(Unit *u) {
99 Socket *s = SOCKET(u);
034c6ed7
LP		 100 SocketPort *p;
101
102 assert(s);
103
104 while ((p = s->ports)) {
105 LIST_REMOVE(SocketPort, port, s->ports, p);
106
a16e1123
LP		 107 if (p->fd >= 0) {
108 unit_unwatch_fd(UNIT(s), &p->fd_watch);
109 close_nointr_nofail(p->fd);
110 }
111
034c6ed7
LP		 112 free(p->path);
113 free(p);
114 }
115
116 exec_context_done(&s->exec_context);
e537352b 117 exec_command_free_array(s->exec_command, _SOCKET_EXEC_COMMAND_MAX);
034c6ed7
LP		 118 s->control_command = NULL;
119
5e94833f 120 socket_unwatch_control_pid(s);
034c6ed7 121
57020a3a 122 unit_ref_unset(&s->service);
034c6ed7 123
cebf8b20
TT		 124 free(s->tcp_congestion);
125 s->tcp_congestion = NULL;
126
acbb0225 127 free(s->bind_to_device);
e537352b 128 s->bind_to_device = NULL;
acbb0225
LP		 129
130 unit_unwatch_timer(u, &s->timer_watch);
5cb5a6ff
LP		 131}
132
b15bdda8
LP		 133static int socket_instantiate_service(Socket *s) {
134 char *prefix, *name;
135 int r;
136 Unit *u;
137
138 assert(s);
139
140 /* This fills in s->service if it isn't filled in yet. For
141 * Accept=yes sockets we create the next connection service
142 * here. For Accept=no this is mostly a NOP since the service
143 * is figured out at load time anyway. */
144
57020a3a 145 if (UNIT_DEREF(s->service))
b15bdda8
LP		 146 return 0;
147
148 assert(s->accept);
149
1124fe6f 150 if (!(prefix = unit_name_to_prefix(UNIT(s)->id)))
b15bdda8
LP		 151 return -ENOMEM;
152
153 r = asprintf(&name, "%s@%u.service", prefix, s->n_accepted);
154 free(prefix);
155
156 if (r < 0)
157 return -ENOMEM;
158
1124fe6f 159 r = manager_load_unit(UNIT(s)->manager, name, NULL, NULL, &u);
b15bdda8
LP		 160 free(name);
161
162 if (r < 0)
163 return r;
164
7b4bf06b
LP		 165#ifdef HAVE_SYSV_COMPAT
166 if (SERVICE(u)->sysv_path) {
167 log_error("Using SysV services for socket activation is not supported. Refusing.");
168 return -ENOENT;
169 }
170#endif
171
ac155bb8 172 u->no_gc = true;
57020a3a
LP		 173 unit_ref_set(&s->service, u);
174
175 return unit_add_two_dependencies(UNIT(s), UNIT_BEFORE, UNIT_TRIGGERS, u, false);
b15bdda8
LP		 176}
177
4f2d528d
LP		 178static bool have_non_accept_socket(Socket *s) {
179 SocketPort *p;
180
181 assert(s);
182
183 if (!s->accept)
184 return true;
185
dd5ad9d4
LP		 186 LIST_FOREACH(port, p, s->ports) {
187
188 if (p->type != SOCKET_SOCKET)
189 return true;
190
4f2d528d
LP		 191 if (!socket_address_can_accept(&p->address))
192 return true;
dd5ad9d4 193 }
4f2d528d
LP		 194
195 return false;
196}
197
198static int socket_verify(Socket *s) {
199 assert(s);
200
1124fe6f 201 if (UNIT(s)->load_state != UNIT_LOADED)
4f2d528d
LP		 202 return 0;
203
204 if (!s->ports) {
1124fe6f 205 log_error("%s lacks Listen setting. Refusing.", UNIT(s)->id);
4f2d528d
LP		 206 return -EINVAL;
207 }
208
0009d2a6 209 if (s->accept && have_non_accept_socket(s)) {
1124fe6f 210 log_error("%s configured for accepting sockets, but sockets are non-accepting. Refusing.", UNIT(s)->id);
0009d2a6
LP		 211 return -EINVAL;
212 }
213
6cf6bbc2 214 if (s->accept && s->max_connections <= 0) {
1124fe6f 215 log_error("%s's MaxConnection setting too small. Refusing.", UNIT(s)->id);
4d0e5dbd
LP		 216 return -EINVAL;
217 }
218
57020a3a 219 if (s->accept && UNIT_DEREF(s->service)) {
1124fe6f 220 log_error("Explicit service configuration for accepting sockets not supported on %s. Refusing.", UNIT(s)->id);
d9ff321a
LP		 221 return -EINVAL;
222 }
223
2e22afe9 224 if (s->exec_context.pam_name && s->exec_context.kill_mode != KILL_CONTROL_GROUP) {
1124fe6f 225 log_error("%s has PAM enabled. Kill mode must be set to 'control-group'. Refusing.", UNIT(s)->id);
6cf6bbc2
LP		 226 return -EINVAL;
227 }
228
4f2d528d
LP		 229 return 0;
230}
231
6e2ef85b
LP		 232static bool socket_needs_mount(Socket *s, const char *prefix) {
233 SocketPort *p;
234
235 assert(s);
236
237 LIST_FOREACH(port, p, s->ports) {
238
239 if (p->type == SOCKET_SOCKET) {
240 if (socket_address_needs_mount(&p->address, prefix))
241 return true;
916abb21 242 } else if (p->type == SOCKET_FIFO || p->type == SOCKET_SPECIAL) {
6e2ef85b
LP		 243 if (path_startswith(p->path, prefix))
244 return true;
245 }
246 }
247
248 return false;
249}
250
251int socket_add_one_mount_link(Socket *s, Mount *m) {
252 int r;
253
254 assert(s);
255 assert(m);
256
1124fe6f
MS		 257 if (UNIT(s)->load_state != UNIT_LOADED ||
258 UNIT(m)->load_state != UNIT_LOADED)
6e2ef85b
LP		 259 return 0;
260
261 if (!socket_needs_mount(s, m->where))
262 return 0;
263
2c966c03 264 if ((r = unit_add_two_dependencies(UNIT(s), UNIT_AFTER, UNIT_REQUIRES, UNIT(m), true)) < 0)
6e2ef85b
LP		 265 return r;
266
267 return 0;
268}
269
270static int socket_add_mount_links(Socket *s) {
ac155bb8 271 Unit *other;
6e2ef85b
LP		 272 int r;
273
274 assert(s);
275
1124fe6f 276 LIST_FOREACH(units_by_type, other, UNIT(s)->manager->units_by_type[UNIT_MOUNT])
595ed347 277 if ((r = socket_add_one_mount_link(s, MOUNT(other))) < 0)
6e2ef85b
LP		 278 return r;
279
280 return 0;
281}
282
283static int socket_add_device_link(Socket *s) {
284 char *t;
285 int r;
286
287 assert(s);
288
289 if (!s->bind_to_device)
290 return 0;
291
292 if (asprintf(&t, "/sys/subsystem/net/devices/%s", s->bind_to_device) < 0)
293 return -ENOMEM;
294
295 r = unit_add_node_link(UNIT(s), t, false);
296 free(t);
297
298 return r;
299}
300
a40eb732
LP		 301static int socket_add_default_dependencies(Socket *s) {
302 int r;
303 assert(s);
304
1124fe6f 305 if (UNIT(s)->manager->running_as == MANAGER_SYSTEM) {
2a77d31d
LP		 306 if ((r = unit_add_dependency_by_name(UNIT(s), UNIT_BEFORE, SPECIAL_SOCKETS_TARGET, NULL, true)) < 0)
307 return r;
308
a40eb732
LP		 309 if ((r = unit_add_two_dependencies_by_name(UNIT(s), UNIT_AFTER, UNIT_REQUIRES, SPECIAL_SYSINIT_TARGET, NULL, true)) < 0)
310 return r;
2a77d31d 311 }
a40eb732 312
ead8e478 313 return unit_add_two_dependencies_by_name(UNIT(s), UNIT_BEFORE, UNIT_CONFLICTS, SPECIAL_SHUTDOWN_TARGET, NULL, true);
a40eb732
LP		 314}
315
4cfc6dbe
LP		 316static bool socket_has_exec(Socket *s) {
317 unsigned i;
318 assert(s);
319
320 for (i = 0; i < _SOCKET_EXEC_COMMAND_MAX; i++)
321 if (s->exec_command[i])
322 return true;
323
324 return false;
325}
326
e537352b
LP		 327static int socket_load(Unit *u) {
328 Socket *s = SOCKET(u);
329 int r;
44d8db9e 330
e537352b 331 assert(u);
ac155bb8 332 assert(u->load_state == UNIT_STUB);
44d8db9e 333
e537352b 334 if ((r = unit_load_fragment_and_dropin(u)) < 0)
23a177ef 335 return r;
44d8db9e 336
23a177ef 337 /* This is a new unit? Then let's add in some extras */
ac155bb8 338 if (u->load_state == UNIT_LOADED) {
44d8db9e 339
4f2d528d 340 if (have_non_accept_socket(s)) {
d9ff321a 341
57020a3a
LP		 342 if (!UNIT_DEREF(s->service)) {
343 Unit *x;
344
345 r = unit_load_related_unit(u, ".service", &x);
346 if (r < 0)
d9ff321a 347 return r;
23a177ef 348
57020a3a
LP		 349 unit_ref_set(&s->service, x);
350 }
351
352 r = unit_add_two_dependencies(u, UNIT_BEFORE, UNIT_TRIGGERS, UNIT_DEREF(s->service), true);
353 if (r < 0)
4f2d528d
LP		 354 return r;
355 }
44d8db9e 356
6e2ef85b
LP		 357 if ((r = socket_add_mount_links(s)) < 0)
358 return r;
359
360 if ((r = socket_add_device_link(s)) < 0)
361 return r;
362
4cfc6dbe
LP		 363 if (socket_has_exec(s))
364 if ((r = unit_add_exec_dependencies(u, &s->exec_context)) < 0)
365 return r;
23a177ef 366
d686d8a9 367 if ((r = unit_add_default_cgroups(u)) < 0)
23a177ef 368 return r;
a40eb732 369
1124fe6f 370 if (UNIT(s)->default_dependencies)
a40eb732
LP		 371 if ((r = socket_add_default_dependencies(s)) < 0)
372 return r;
23a177ef
LP		 373 }
374
4f2d528d 375 return socket_verify(s);
44d8db9e
LP		 376}
377
7a22745a
LP		 378static const char* listen_lookup(int family, int type) {
379
380 if (family == AF_NETLINK)
381 return "ListenNetlink";
542563ba
LP		 382
383 if (type == SOCK_STREAM)
384 return "ListenStream";
385 else if (type == SOCK_DGRAM)
386 return "ListenDatagram";
387 else if (type == SOCK_SEQPACKET)
388 return "ListenSequentialPacket";
389
034c6ed7 390 assert_not_reached("Unknown socket type");
542563ba
LP		 391 return NULL;
392}
393
87f0e418 394static void socket_dump(Unit *u, FILE *f, const char *prefix) {
5cb5a6ff 395
5cb5a6ff 396 SocketExecCommand c;
87f0e418 397 Socket *s = SOCKET(u);
542563ba 398 SocketPort *p;
82ba9f08
LP		 399 const char *prefix2;
400 char *p2;
5cb5a6ff
LP		 401
402 assert(s);
fa068367 403 assert(f);
5cb5a6ff 404
82ba9f08
LP		 405 p2 = strappend(prefix, "\t");
406 prefix2 = p2 ? p2 : prefix;
c43d20a0 407
5cb5a6ff
LP		 408 fprintf(f,
409 "%sSocket State: %s\n"
542563ba 410 "%sBindIPv6Only: %s\n"
b5a0699f
LP		 411 "%sBacklog: %u\n"
412 "%sSocketMode: %04o\n"
4fd5948e
LP		 413 "%sDirectoryMode: %04o\n"
414 "%sKeepAlive: %s\n"
cebf8b20 415 "%sFreeBind: %s\n"
6b6d2dee 416 "%sTransparent: %s\n"
ec6370a2 417 "%sBroadcast: %s\n"
271b032a 418 "%sPassCrededentials: %s\n"
cebf8b20 419 "%sTCPCongestion: %s\n",
a16e1123 420 prefix, socket_state_to_string(s->state),
c0120d99 421 prefix, socket_address_bind_ipv6_only_to_string(s->bind_ipv6_only),
b5a0699f
LP		 422 prefix, s->backlog,
423 prefix, s->socket_mode,
4fd5948e
LP		 424 prefix, s->directory_mode,
425 prefix, yes_no(s->keep_alive),
cebf8b20 426 prefix, yes_no(s->free_bind),
6b6d2dee 427 prefix, yes_no(s->transparent),
ec6370a2 428 prefix, yes_no(s->broadcast),
d68af586 429 prefix, yes_no(s->pass_cred),
83a95334 430 prefix, strna(s->tcp_congestion));
542563ba 431
70123e68
LP		 432 if (s->control_pid > 0)
433 fprintf(f,
bb00e604
LP		 434 "%sControl PID: %lu\n",
435 prefix, (unsigned long) s->control_pid);
70123e68 436
acbb0225
LP		 437 if (s->bind_to_device)
438 fprintf(f,
439 "%sBindToDevice: %s\n",
440 prefix, s->bind_to_device);
441
4f2d528d
LP		 442 if (s->accept)
443 fprintf(f,
6cf6bbc2
LP		 444 "%sAccepted: %u\n"
445 "%sNConnections: %u\n"
446 "%sMaxConnections: %u\n",
447 prefix, s->n_accepted,
448 prefix, s->n_connections,
449 prefix, s->max_connections);
4f2d528d 450
4fd5948e
LP		 451 if (s->priority >= 0)
452 fprintf(f,
453 "%sPriority: %i\n",
454 prefix, s->priority);
455
456 if (s->receive_buffer > 0)
457 fprintf(f,
458 "%sReceiveBuffer: %zu\n",
459 prefix, s->receive_buffer);
460
461 if (s->send_buffer > 0)
462 fprintf(f,
463 "%sSendBuffer: %zu\n",
464 prefix, s->send_buffer);
465
466 if (s->ip_tos >= 0)
467 fprintf(f,
468 "%sIPTOS: %i\n",
469 prefix, s->ip_tos);
470
471 if (s->ip_ttl >= 0)
472 fprintf(f,
473 "%sIPTTL: %i\n",
474 prefix, s->ip_ttl);
475
476 if (s->pipe_size > 0)
477 fprintf(f,
478 "%sPipeSize: %zu\n",
479 prefix, s->pipe_size);
480
481 if (s->mark >= 0)
482 fprintf(f,
483 "%sMark: %i\n",
484 prefix, s->mark);
485
916abb21
LP		 486 if (s->mq_maxmsg > 0)
487 fprintf(f,
488 "%sMessageQueueMaxMessages: %li\n",
489 prefix, s->mq_maxmsg);
490
491 if (s->mq_msgsize > 0)
492 fprintf(f,
493 "%sMessageQueueMessageSize: %li\n",
494 prefix, s->mq_msgsize);
495
034c6ed7 496 LIST_FOREACH(port, p, s->ports) {
5cb5a6ff 497
542563ba
LP		 498 if (p->type == SOCKET_SOCKET) {
499 const char *t;
500 int r;
e364ad06 501 char *k = NULL;
542563ba
LP		 502
503 if ((r = socket_address_print(&p->address, &k)) < 0)
504 t = strerror(-r);
505 else
506 t = k;
507
7a22745a 508 fprintf(f, "%s%s: %s\n", prefix, listen_lookup(socket_address_family(&p->address), p->address.type), t);
542563ba 509 free(k);
b0a3f2bc
LP		 510 } else if (p->type == SOCKET_SPECIAL)
511 fprintf(f, "%sListenSpecial: %s\n", prefix, p->path);
916abb21
LP		 512 else if (p->type == SOCKET_MQUEUE)
513 fprintf(f, "%sListenMessageQueue: %s\n", prefix, p->path);
b0a3f2bc 514 else
542563ba
LP		 515 fprintf(f, "%sListenFIFO: %s\n", prefix, p->path);
516 }
5cb5a6ff
LP		 517
518 exec_context_dump(&s->exec_context, f, prefix);
519
e537352b 520 for (c = 0; c < _SOCKET_EXEC_COMMAND_MAX; c++) {
c43d20a0
LP		 521 if (!s->exec_command[c])
522 continue;
5cb5a6ff 523
40d50879 524 fprintf(f, "%s-> %s:\n",
a16e1123 525 prefix, socket_exec_command_to_string(c));
c43d20a0
LP		 526
527 exec_command_dump_list(s->exec_command[c], f, prefix2);
5cb5a6ff 528 }
c43d20a0 529
82ba9f08 530 free(p2);
5cb5a6ff
LP		 531}
532
4f2d528d
LP		 533static int instance_from_socket(int fd, unsigned nr, char **instance) {
534 socklen_t l;
535 char *r;
536 union {
537 struct sockaddr sa;
538 struct sockaddr_un un;
539 struct sockaddr_in in;
540 struct sockaddr_in6 in6;
541 struct sockaddr_storage storage;
542 } local, remote;
543
544 assert(fd >= 0);
545 assert(instance);
546
547 l = sizeof(local);
548 if (getsockname(fd, &local.sa, &l) < 0)
549 return -errno;
550
551 l = sizeof(remote);
552 if (getpeername(fd, &remote.sa, &l) < 0)
553 return -errno;
554
555 switch (local.sa.sa_family) {
556
557 case AF_INET: {
558 uint32_t
559 a = ntohl(local.in.sin_addr.s_addr),
560 b = ntohl(remote.in.sin_addr.s_addr);
561
562 if (asprintf(&r,
b15bdda8 563 "%u.%u.%u.%u:%u-%u.%u.%u.%u:%u",
4f2d528d
LP		 564 a >> 24, (a >> 16) & 0xFF, (a >> 8) & 0xFF, a & 0xFF,
565 ntohs(local.in.sin_port),
566 b >> 24, (b >> 16) & 0xFF, (b >> 8) & 0xFF, b & 0xFF,
567 ntohs(remote.in.sin_port)) < 0)
568 return -ENOMEM;
569
570 break;
571 }
572
573 case AF_INET6: {
2b061f5a
LP		 574 static const char ipv4_prefix[] = {
575 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0xFF, 0xFF
576 };
577
578 if (memcmp(&local.in6.sin6_addr, ipv4_prefix, sizeof(ipv4_prefix)) == 0 &&
579 memcmp(&remote.in6.sin6_addr, ipv4_prefix, sizeof(ipv4_prefix)) == 0) {
580 const uint8_t
581 *a = local.in6.sin6_addr.s6_addr+12,
582 *b = remote.in6.sin6_addr.s6_addr+12;
583
584 if (asprintf(&r,
b15bdda8 585 "%u.%u.%u.%u:%u-%u.%u.%u.%u:%u",
2b061f5a
LP		 586 a[0], a[1], a[2], a[3],
587 ntohs(local.in6.sin6_port),
588 b[0], b[1], b[2], b[3],
589 ntohs(remote.in6.sin6_port)) < 0)
590 return -ENOMEM;
591 } else {
592 char a[INET6_ADDRSTRLEN], b[INET6_ADDRSTRLEN];
593
594 if (asprintf(&r,
b15bdda8 595 "%s:%u-%s:%u",
2b061f5a
LP		 596 inet_ntop(AF_INET6, &local.in6.sin6_addr, a, sizeof(a)),
597 ntohs(local.in6.sin6_port),
598 inet_ntop(AF_INET6, &remote.in6.sin6_addr, b, sizeof(b)),
599 ntohs(remote.in6.sin6_port)) < 0)
600 return -ENOMEM;
601 }
4f2d528d
LP		 602
603 break;
604 }
605
606 case AF_UNIX: {
607 struct ucred ucred;
608
609 l = sizeof(ucred);
610 if (getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &ucred, &l) < 0)
611 return -errno;
612
613 if (asprintf(&r,
bb00e604 614 "%u-%lu-%lu",
4f2d528d 615 nr,
bb00e604
LP		 616 (unsigned long) ucred.pid,
617 (unsigned long) ucred.uid) < 0)
4f2d528d
LP		 618 return -ENOMEM;
619
620 break;
621 }
622
623 default:
624 assert_not_reached("Unhandled socket type.");
625 }
626
627 *instance = r;
628 return 0;
629}
630
034c6ed7 631static void socket_close_fds(Socket *s) {
83c60c9f
LP		 632 SocketPort *p;
633
634 assert(s);
635
034c6ed7 636 LIST_FOREACH(port, p, s->ports) {
83c60c9f
LP		 637 if (p->fd < 0)
638 continue;
639
acbb0225 640 unit_unwatch_fd(UNIT(s), &p->fd_watch);
a16e1123
LP		 641 close_nointr_nofail(p->fd);
642
643 /* One little note: we should never delete any sockets
644 * in the file system here! After all some other
645 * process we spawned might still have a reference of
646 * this fd and wants to continue to use it. Therefore
647 * we delete sockets in the file system before we
648 * create a new one, not after we stopped using
649 * one! */
9152c765 650
83c60c9f
LP		 651 p->fd = -1;
652 }
653}
654
4fd5948e
LP		 655static void socket_apply_socket_options(Socket *s, int fd) {
656 assert(s);
657 assert(fd >= 0);
658
659 if (s->keep_alive) {
660 int b = s->keep_alive;
661 if (setsockopt(fd, SOL_SOCKET, SO_KEEPALIVE, &b, sizeof(b)) < 0)
662 log_warning("SO_KEEPALIVE failed: %m");
663 }
664
ec6370a2
LP		 665 if (s->broadcast) {
666 int one = 1;
667 if (setsockopt(fd, SOL_SOCKET, SO_BROADCAST, &one, sizeof(one)) < 0)
668 log_warning("SO_BROADCAST failed: %m");
669 }
670
d68af586
MS		 671 if (s->pass_cred) {
672 int one = 1;
673 if (setsockopt(fd, SOL_SOCKET, SO_PASSCRED, &one, sizeof(one)) < 0)
674 log_warning("SO_PASSCRED failed: %m");
675 }
676
4fd5948e
LP		 677 if (s->priority >= 0)
678 if (setsockopt(fd, SOL_SOCKET, SO_PRIORITY, &s->priority, sizeof(s->priority)) < 0)
679 log_warning("SO_PRIORITY failed: %m");
680
681 if (s->receive_buffer > 0) {
682 int value = (int) s->receive_buffer;
7d9eaa84
LP		 683
684 /* We first try with SO_RCVBUFFORCE, in case we have the perms for that */
685
b8cef44e 686 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
7d9eaa84
LP		 687 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
688 log_warning("SO_RCVBUF failed: %m");
4fd5948e
LP		 689 }
690
691 if (s->send_buffer > 0) {
692 int value = (int) s->send_buffer;
b8cef44e 693 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
7d9eaa84
LP		 694 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
695 log_warning("SO_SNDBUF failed: %m");
4fd5948e
LP		 696 }
697
698 if (s->mark >= 0)
699 if (setsockopt(fd, SOL_SOCKET, SO_MARK, &s->mark, sizeof(s->mark)) < 0)
700 log_warning("SO_MARK failed: %m");
701
702 if (s->ip_tos >= 0)
703 if (setsockopt(fd, IPPROTO_IP, IP_TOS, &s->ip_tos, sizeof(s->ip_tos)) < 0)
704 log_warning("IP_TOS failed: %m");
705
46925ac5
LP		 706 if (s->ip_ttl >= 0) {
707 int r, x;
708
709 r = setsockopt(fd, IPPROTO_IP, IP_TTL, &s->ip_ttl, sizeof(s->ip_ttl));
5bfcc1c6
FF		 710
711 if (socket_ipv6_is_supported())
712 x = setsockopt(fd, IPPROTO_IPV6, IPV6_UNICAST_HOPS, &s->ip_ttl, sizeof(s->ip_ttl));
713 else {
714 x = -1;
715 errno = EAFNOSUPPORT;
716 }
46925ac5
LP		 717
718 if (r < 0 && x < 0)
719 log_warning("IP_TTL/IPV6_UNICAST_HOPS failed: %m");
720 }
cebf8b20
TT		 721
722 if (s->tcp_congestion)
723 if (setsockopt(fd, SOL_TCP, TCP_CONGESTION, s->tcp_congestion, strlen(s->tcp_congestion)+1) < 0)
724 log_warning("TCP_CONGESTION failed: %m");
4fd5948e
LP		 725}
726
b15bdda8 727static void socket_apply_fifo_options(Socket *s, int fd) {
4fd5948e
LP		 728 assert(s);
729 assert(fd >= 0);
730
731 if (s->pipe_size > 0)
732 if (fcntl(fd, F_SETPIPE_SZ, s->pipe_size) < 0)
733 log_warning("F_SETPIPE_SZ: %m");
734}
735
b15bdda8
LP		 736static int fifo_address_create(
737 const char *path,
738 mode_t directory_mode,
739 mode_t socket_mode,
b15bdda8
LP		 740 int *_fd) {
741
7a58bfa4 742 int fd = -1, r = 0;
b15bdda8
LP		 743 struct stat st;
744 mode_t old_mask;
745
746 assert(path);
747 assert(_fd);
748
749 mkdir_parents(path, directory_mode);
750
c4e2ceae 751 if ((r = label_fifofile_set(path)) < 0)
56cf987f 752 goto fail;
b15bdda8
LP		 753
754 /* Enforce the right access mode for the fifo */
755 old_mask = umask(~ socket_mode);
756
757 /* Include the original umask in our mask */
758 umask(~socket_mode | old_mask);
759
760 r = mkfifo(path, socket_mode);
761 umask(old_mask);
762
94bc2731 763 if (r < 0 && errno != EEXIST) {
b15bdda8
LP		 764 r = -errno;
765 goto fail;
766 }
767
768 if ((fd = open(path, O_RDWR|O_CLOEXEC|O_NOCTTY|O_NONBLOCK|O_NOFOLLOW)) < 0) {
769 r = -errno;
770 goto fail;
771 }
772
56cf987f 773 label_file_clear();
7a58bfa4 774
b15bdda8
LP		 775 if (fstat(fd, &st) < 0) {
776 r = -errno;
777 goto fail;
778 }
779
780 if (!S_ISFIFO(st.st_mode) ||
de0200fc 781 (st.st_mode & 0777) != (socket_mode & ~old_mask) ||
b15bdda8
LP		 782 st.st_uid != getuid() ||
783 st.st_gid != getgid()) {
784
785 r = -EEXIST;
786 goto fail;
787 }
788
789 *_fd = fd;
790 return 0;
791
792fail:
56cf987f
DW		 793 label_file_clear();
794
b15bdda8
LP		 795 if (fd >= 0)
796 close_nointr_nofail(fd);
797
798 return r;
799}
800
b0a3f2bc
LP		 801static int special_address_create(
802 const char *path,
803 int *_fd) {
804
805 int fd = -1, r = 0;
806 struct stat st;
807
808 assert(path);
809 assert(_fd);
810
811 if ((fd = open(path, O_RDONLY|O_CLOEXEC|O_NOCTTY|O_NONBLOCK|O_NOFOLLOW)) < 0) {
812 r = -errno;
813 goto fail;
814 }
815
816 if (fstat(fd, &st) < 0) {
817 r = -errno;
818 goto fail;
819 }
820
821 /* Check whether this is a /proc, /sys or /dev file or char device */
822 if (!S_ISREG(st.st_mode) && !S_ISCHR(st.st_mode)) {
823 r = -EEXIST;
824 goto fail;
825 }
826
827 *_fd = fd;
828 return 0;
829
830fail:
831 if (fd >= 0)
832 close_nointr_nofail(fd);
833
834 return r;
835}
836
916abb21
LP		 837static int mq_address_create(
838 const char *path,
839 mode_t mq_mode,
840 long maxmsg,
841 long msgsize,
842 int *_fd) {
843
844 int fd = -1, r = 0;
845 struct stat st;
846 mode_t old_mask;
847 struct mq_attr _attr, *attr = NULL;
848
849 assert(path);
850 assert(_fd);
851
852 if (maxmsg > 0 && msgsize > 0) {
853 zero(_attr);
854 _attr.mq_flags = O_NONBLOCK;
855 _attr.mq_maxmsg = maxmsg;
856 _attr.mq_msgsize = msgsize;
857 attr = &_attr;
858 }
859
860 /* Enforce the right access mode for the mq */
861 old_mask = umask(~ mq_mode);
862
863 /* Include the original umask in our mask */
864 umask(~mq_mode | old_mask);
865
866 fd = mq_open(path, O_RDONLY|O_CLOEXEC|O_NONBLOCK|O_CREAT, mq_mode, attr);
867 umask(old_mask);
868
8ea913b2 869 if (fd < 0) {
916abb21
LP		 870 r = -errno;
871 goto fail;
872 }
873
874 if (fstat(fd, &st) < 0) {
875 r = -errno;
876 goto fail;
877 }
878
879 if ((st.st_mode & 0777) != (mq_mode & ~old_mask) ||
880 st.st_uid != getuid() ||
881 st.st_gid != getgid()) {
882
883 r = -EEXIST;
884 goto fail;
885 }
886
887 *_fd = fd;
888 return 0;
889
890fail:
891 if (fd >= 0)
892 close_nointr_nofail(fd);
893
894 return r;
895}
896
034c6ed7 897static int socket_open_fds(Socket *s) {
83c60c9f
LP		 898 SocketPort *p;
899 int r;
56cf987f 900 char *label = NULL;
049f8642 901 bool know_label = false;
83c60c9f
LP		 902
903 assert(s);
904
034c6ed7 905 LIST_FOREACH(port, p, s->ports) {
83c60c9f 906
034c6ed7
LP		 907 if (p->fd >= 0)
908 continue;
83c60c9f
LP		 909
910 if (p->type == SOCKET_SOCKET) {
911
049f8642
LP		 912 if (!know_label) {
913
914 if ((r = socket_instantiate_service(s)) < 0)
915 return r;
916
57020a3a
LP		 917 if (UNIT_DEREF(s->service) &&
918 SERVICE(UNIT_DEREF(s->service))->exec_command[SERVICE_EXEC_START]) {
919 r = label_get_create_label_from_exe(SERVICE(UNIT_DEREF(s->service))->exec_command[SERVICE_EXEC_START]->path, &label);
189583d7
LP		 920
921 if (r < 0) {
a7444eda
LP		 922 if (r != -EPERM)
923 return r;
924 }
189583d7 925 }
049f8642
LP		 926
927 know_label = true;
928 }
929
b5a0699f
LP		 930 if ((r = socket_address_listen(
931 &p->address,
932 s->backlog,
933 s->bind_ipv6_only,
934 s->bind_to_device,
4fd5948e 935 s->free_bind,
6b6d2dee 936 s->transparent,
b5a0699f
LP		 937 s->directory_mode,
938 s->socket_mode,
56cf987f 939 label,
b5a0699f 940 &p->fd)) < 0)
83c60c9f
LP		 941 goto rollback;
942
4fd5948e
LP		 943 socket_apply_socket_options(s, p->fd);
944
b0a3f2bc
LP		 945 } else if (p->type == SOCKET_SPECIAL) {
946
947 if ((r = special_address_create(
948 p->path,
949 &p->fd)) < 0)
950 goto rollback;
951
b15bdda8 952 } else if (p->type == SOCKET_FIFO) {
83c60c9f 953
b15bdda8
LP		 954 if ((r = fifo_address_create(
955 p->path,
956 s->directory_mode,
957 s->socket_mode,
b15bdda8 958 &p->fd)) < 0)
83c60c9f 959 goto rollback;
83c60c9f 960
b15bdda8 961 socket_apply_fifo_options(s, p->fd);
916abb21 962 } else if (p->type == SOCKET_MQUEUE) {
83c60c9f 963
916abb21
LP		 964 if ((r = mq_address_create(
965 p->path,
966 s->socket_mode,
967 s->mq_maxmsg,
968 s->mq_msgsize,
969 &p->fd)) < 0)
970 goto rollback;
b15bdda8
LP		 971 } else
972 assert_not_reached("Unknown port type");
034c6ed7
LP		 973 }
974
56cf987f 975 label_free(label);
034c6ed7
LP		 976 return 0;
977
978rollback:
979 socket_close_fds(s);
56cf987f 980 label_free(label);
034c6ed7
LP		 981 return r;
982}
983
984static void socket_unwatch_fds(Socket *s) {
985 SocketPort *p;
9152c765 986
034c6ed7
LP		 987 assert(s);
988
989 LIST_FOREACH(port, p, s->ports) {
990 if (p->fd < 0)
991 continue;
992
acbb0225 993 unit_unwatch_fd(UNIT(s), &p->fd_watch);
83c60c9f 994 }
034c6ed7
LP		 995}
996
997static int socket_watch_fds(Socket *s) {
998 SocketPort *p;
999 int r;
1000
1001 assert(s);
83c60c9f 1002
034c6ed7
LP		 1003 LIST_FOREACH(port, p, s->ports) {
1004 if (p->fd < 0)
1005 continue;
1006
cabab516 1007 p->fd_watch.socket_accept =
4f2d528d 1008 s->accept &&
dd5ad9d4 1009 p->type == SOCKET_SOCKET &&
4f2d528d
LP		 1010 socket_address_can_accept(&p->address);
1011
f94ea366 1012 if ((r = unit_watch_fd(UNIT(s), p->fd, EPOLLIN, &p->fd_watch)) < 0)
034c6ed7
LP		 1013 goto fail;
1014 }
83c60c9f 1015
542563ba 1016 return 0;
83c60c9f 1017
034c6ed7
LP		 1018fail:
1019 socket_unwatch_fds(s);
1020 return r;
1021}
1022
1023static void socket_set_state(Socket *s, SocketState state) {
1024 SocketState old_state;
1025 assert(s);
1026
1027 old_state = s->state;
1028 s->state = state;
1029
1030 if (state != SOCKET_START_PRE &&
1031 state != SOCKET_START_POST &&
1032 state != SOCKET_STOP_PRE &&
1033 state != SOCKET_STOP_PRE_SIGTERM &&
1034 state != SOCKET_STOP_PRE_SIGKILL &&
1035 state != SOCKET_STOP_POST &&
80876c20
LP		 1036 state != SOCKET_FINAL_SIGTERM &&
1037 state != SOCKET_FINAL_SIGKILL) {
acbb0225 1038 unit_unwatch_timer(UNIT(s), &s->timer_watch);
5e94833f 1039 socket_unwatch_control_pid(s);
034c6ed7 1040 s->control_command = NULL;
a16e1123 1041 s->control_command_id = _SOCKET_EXEC_COMMAND_INVALID;
e537352b 1042 }
034c6ed7 1043
a16e1123
LP		 1044 if (state != SOCKET_LISTENING)
1045 socket_unwatch_fds(s);
1046
034c6ed7
LP		 1047 if (state != SOCKET_START_POST &&
1048 state != SOCKET_LISTENING &&
1049 state != SOCKET_RUNNING &&
1050 state != SOCKET_STOP_PRE &&
1051 state != SOCKET_STOP_PRE_SIGTERM &&
1052 state != SOCKET_STOP_PRE_SIGKILL)
1053 socket_close_fds(s);
1054
e537352b 1055 if (state != old_state)
40d50879 1056 log_debug("%s changed %s -> %s",
1124fe6f 1057 UNIT(s)->id,
a16e1123
LP		 1058 socket_state_to_string(old_state),
1059 socket_state_to_string(state));
acbb0225 1060
e2f3b44c 1061 unit_notify(UNIT(s), state_translation_table[old_state], state_translation_table[state], true);
034c6ed7
LP		 1062}
1063
a16e1123
LP		 1064static int socket_coldplug(Unit *u) {
1065 Socket *s = SOCKET(u);
1066 int r;
1067
1068 assert(s);
1069 assert(s->state == SOCKET_DEAD);
1070
1071 if (s->deserialized_state != s->state) {
1072
1073 if (s->deserialized_state == SOCKET_START_PRE ||
1074 s->deserialized_state == SOCKET_START_POST ||
1075 s->deserialized_state == SOCKET_STOP_PRE ||
1076 s->deserialized_state == SOCKET_STOP_PRE_SIGTERM ||
1077 s->deserialized_state == SOCKET_STOP_PRE_SIGKILL ||
1078 s->deserialized_state == SOCKET_STOP_POST ||
1079 s->deserialized_state == SOCKET_FINAL_SIGTERM ||
1080 s->deserialized_state == SOCKET_FINAL_SIGKILL) {
1081
1082 if (s->control_pid <= 0)
1083 return -EBADMSG;
1084
1085 if ((r = unit_watch_pid(UNIT(s), s->control_pid)) < 0)
1086 return r;
1087
1088 if ((r = unit_watch_timer(UNIT(s), s->timeout_usec, &s->timer_watch)) < 0)
1089 return r;
1090 }
1091
1092 if (s->deserialized_state == SOCKET_START_POST ||
1093 s->deserialized_state == SOCKET_LISTENING ||
1094 s->deserialized_state == SOCKET_RUNNING ||
1095 s->deserialized_state == SOCKET_STOP_PRE ||
1096 s->deserialized_state == SOCKET_STOP_PRE_SIGTERM ||
1097 s->deserialized_state == SOCKET_STOP_PRE_SIGKILL)
1098 if ((r = socket_open_fds(s)) < 0)
1099 return r;
1100
1101 if (s->deserialized_state == SOCKET_LISTENING)
1102 if ((r = socket_watch_fds(s)) < 0)
1103 return r;
1104
1105 socket_set_state(s, s->deserialized_state);
1106 }
1107
1108 return 0;
1109}
1110
e537352b 1111static int socket_spawn(Socket *s, ExecCommand *c, pid_t *_pid) {
034c6ed7
LP		 1112 pid_t pid;
1113 int r;
9e2f7c11 1114 char **argv;
034c6ed7
LP		 1115
1116 assert(s);
1117 assert(c);
1118 assert(_pid);
1119
e537352b
LP		 1120 if ((r = unit_watch_timer(UNIT(s), s->timeout_usec, &s->timer_watch)) < 0)
1121 goto fail;
034c6ed7 1122
9e2f7c11
LP		 1123 if (!(argv = unit_full_printf_strv(UNIT(s), c->argv))) {
1124 r = -ENOMEM;
1125 goto fail;
1126 }
1127
1128 r = exec_spawn(c,
1129 argv,
1130 &s->exec_context,
1131 NULL, 0,
1124fe6f 1132 UNIT(s)->manager->environment,
9e2f7c11
LP		 1133 true,
1134 true,
1e3ad081 1135 true,
1124fe6f
MS		 1136 UNIT(s)->manager->confirm_spawn,
1137 UNIT(s)->cgroup_bondings,
1138 UNIT(s)->cgroup_attributes,
9e2f7c11
LP		 1139 &pid);
1140
1141 strv_free(argv);
1142 if (r < 0)
034c6ed7
LP		 1143 goto fail;
1144
87f0e418 1145 if ((r = unit_watch_pid(UNIT(s), pid)) < 0)
034c6ed7
LP		 1146 /* FIXME: we need to do something here */
1147 goto fail;
83c60c9f 1148
034c6ed7
LP		 1149 *_pid = pid;
1150
1151 return 0;
1152
1153fail:
e537352b 1154 unit_unwatch_timer(UNIT(s), &s->timer_watch);
83c60c9f
LP		 1155
1156 return r;
542563ba
LP		 1157}
1158
034c6ed7
LP		 1159static void socket_enter_dead(Socket *s, bool success) {
1160 assert(s);
1161
1162 if (!success)
1163 s->failure = true;
1164
fdf20a31 1165 socket_set_state(s, s->failure ? SOCKET_FAILED : SOCKET_DEAD);
034c6ed7
LP		 1166}
1167
80876c20
LP		 1168static void socket_enter_signal(Socket *s, SocketState state, bool success);
1169
034c6ed7
LP		 1170static void socket_enter_stop_post(Socket *s, bool success) {
1171 int r;
1172 assert(s);
1173
1174 if (!success)
1175 s->failure = true;
1176
5e94833f
LP		 1177 socket_unwatch_control_pid(s);
1178
a16e1123
LP		 1179 s->control_command_id = SOCKET_EXEC_STOP_POST;
1180
80876c20 1181 if ((s->control_command = s->exec_command[SOCKET_EXEC_STOP_POST])) {
e537352b 1182 if ((r = socket_spawn(s, s->control_command, &s->control_pid)) < 0)
034c6ed7
LP		 1183 goto fail;
1184
80876c20
LP		 1185 socket_set_state(s, SOCKET_STOP_POST);
1186 } else
1187 socket_enter_signal(s, SOCKET_FINAL_SIGTERM, true);
034c6ed7
LP		 1188
1189 return;
1190
1191fail:
1124fe6f 1192 log_warning("%s failed to run 'stop-post' task: %s", UNIT(s)->id, strerror(-r));
80876c20 1193 socket_enter_signal(s, SOCKET_FINAL_SIGTERM, false);
034c6ed7
LP		 1194}
1195
1196static void socket_enter_signal(Socket *s, SocketState state, bool success) {
1197 int r;
ca949c9d
LP		 1198 Set *pid_set = NULL;
1199 bool wait_for_exit = false;
034c6ed7
LP		 1200
1201 assert(s);
1202
1203 if (!success)
1204 s->failure = true;
1205
2e22afe9
LP		 1206 if (s->exec_context.kill_mode != KILL_NONE) {
1207 int sig = (state == SOCKET_STOP_PRE_SIGTERM || state == SOCKET_FINAL_SIGTERM) ? s->exec_context.kill_signal : SIGKILL;
034c6ed7 1208
ca949c9d 1209 if (s->control_pid > 0) {
cd25cce9 1210 if (kill_and_sigcont(s->control_pid, sig) < 0 && errno != ESRCH)
50159e6a 1211
ca949c9d
LP		 1212 log_warning("Failed to kill control process %li: %m", (long) s->control_pid);
1213 else
1214 wait_for_exit = true;
034c6ed7 1215 }
50159e6a 1216
ca949c9d
LP		 1217 if (s->exec_context.kill_mode == KILL_CONTROL_GROUP) {
1218
1219 if (!(pid_set = set_new(trivial_hash_func, trivial_compare_func))) {
1220 r = -ENOMEM;
50159e6a
LP		 1221 goto fail;
1222 }
ca949c9d
LP		 1223
1224 /* Exclude the control pid from being killed via the cgroup */
1225 if (s->control_pid > 0)
1226 if ((r = set_put(pid_set, LONG_TO_PTR(s->control_pid))) < 0)
1227 goto fail;
1228
1124fe6f 1229 if ((r = cgroup_bonding_kill_list(UNIT(s)->cgroup_bondings, sig, true, pid_set)) < 0) {
ca949c9d
LP		 1230 if (r != -EAGAIN && r != -ESRCH && r != -ENOENT)
1231 log_warning("Failed to kill control group: %s", strerror(-r));
1232 } else if (r > 0)
1233 wait_for_exit = true;
1234
1235 set_free(pid_set);
da19d5c1 1236 pid_set = NULL;
ca949c9d 1237 }
d6ea93e3 1238 }
034c6ed7 1239
ca949c9d 1240 if (wait_for_exit) {
80876c20
LP		 1241 if ((r = unit_watch_timer(UNIT(s), s->timeout_usec, &s->timer_watch)) < 0)
1242 goto fail;
d6ea93e3 1243
80876c20
LP		 1244 socket_set_state(s, state);
1245 } else if (state == SOCKET_STOP_PRE_SIGTERM || state == SOCKET_STOP_PRE_SIGKILL)
1246 socket_enter_stop_post(s, true);
1247 else
034c6ed7
LP		 1248 socket_enter_dead(s, true);
1249
1250 return;
1251
1252fail:
1124fe6f 1253 log_warning("%s failed to kill processes: %s", UNIT(s)->id, strerror(-r));
034c6ed7
LP		 1254
1255 if (state == SOCKET_STOP_PRE_SIGTERM || state == SOCKET_STOP_PRE_SIGKILL)
1256 socket_enter_stop_post(s, false);
1257 else
1258 socket_enter_dead(s, false);
ca949c9d
LP		 1259
1260 if (pid_set)
1261 set_free(pid_set);
034c6ed7
LP		 1262}
1263
1264static void socket_enter_stop_pre(Socket *s, bool success) {
1265 int r;
1266 assert(s);
1267
1268 if (!success)
1269 s->failure = true;
1270
5e94833f
LP		 1271 socket_unwatch_control_pid(s);
1272
a16e1123
LP		 1273 s->control_command_id = SOCKET_EXEC_STOP_PRE;
1274
80876c20 1275 if ((s->control_command = s->exec_command[SOCKET_EXEC_STOP_PRE])) {
e537352b 1276 if ((r = socket_spawn(s, s->control_command, &s->control_pid)) < 0)
034c6ed7
LP		 1277 goto fail;
1278
80876c20
LP		 1279 socket_set_state(s, SOCKET_STOP_PRE);
1280 } else
034c6ed7
LP		 1281 socket_enter_stop_post(s, true);
1282
1283 return;
1284
1285fail:
1124fe6f 1286 log_warning("%s failed to run 'stop-pre' task: %s", UNIT(s)->id, strerror(-r));
034c6ed7
LP		 1287 socket_enter_stop_post(s, false);
1288}
1289
e9af15c3
LP		 1290static void socket_enter_listening(Socket *s) {
1291 int r;
1292 assert(s);
1293
1294 if ((r = socket_watch_fds(s)) < 0) {
1124fe6f 1295 log_warning("%s failed to watch sockets: %s", UNIT(s)->id, strerror(-r));
e9af15c3
LP		 1296 goto fail;
1297 }
1298
1299 socket_set_state(s, SOCKET_LISTENING);
1300 return;
1301
1302fail:
1303 socket_enter_stop_pre(s, false);
1304}
1305
034c6ed7
LP		 1306static void socket_enter_start_post(Socket *s) {
1307 int r;
1308 assert(s);
1309
e9af15c3 1310 if ((r = socket_open_fds(s)) < 0) {
1124fe6f 1311 log_warning("%s failed to listen on sockets: %s", UNIT(s)->id, strerror(-r));
034c6ed7
LP		 1312 goto fail;
1313 }
1314
5e94833f
LP		 1315 socket_unwatch_control_pid(s);
1316
a16e1123
LP		 1317 s->control_command_id = SOCKET_EXEC_START_POST;
1318
80876c20 1319 if ((s->control_command = s->exec_command[SOCKET_EXEC_START_POST])) {
e537352b 1320 if ((r = socket_spawn(s, s->control_command, &s->control_pid)) < 0) {
1124fe6f 1321 log_warning("%s failed to run 'start-post' task: %s", UNIT(s)->id, strerror(-r));
034c6ed7
LP		 1322 goto fail;
1323 }
1324
80876c20
LP		 1325 socket_set_state(s, SOCKET_START_POST);
1326 } else
e9af15c3 1327 socket_enter_listening(s);
034c6ed7
LP		 1328
1329 return;
1330
1331fail:
1332 socket_enter_stop_pre(s, false);
1333}
1334
1335static void socket_enter_start_pre(Socket *s) {
1336 int r;
1337 assert(s);
1338
5e94833f
LP		 1339 socket_unwatch_control_pid(s);
1340
a16e1123
LP		 1341 s->control_command_id = SOCKET_EXEC_START_PRE;
1342
80876c20 1343 if ((s->control_command = s->exec_command[SOCKET_EXEC_START_PRE])) {
e537352b 1344 if ((r = socket_spawn(s, s->control_command, &s->control_pid)) < 0)
034c6ed7
LP		 1345 goto fail;
1346
80876c20
LP		 1347 socket_set_state(s, SOCKET_START_PRE);
1348 } else
034c6ed7
LP		 1349 socket_enter_start_post(s);
1350
1351 return;
1352
1353fail:
1124fe6f 1354 log_warning("%s failed to run 'start-pre' task: %s", UNIT(s)->id, strerror(-r));
034c6ed7
LP		 1355 socket_enter_dead(s, false);
1356}
1357
4f2d528d 1358static void socket_enter_running(Socket *s, int cfd) {
034c6ed7 1359 int r;
398ef8ba 1360 DBusError error;
034c6ed7
LP		 1361
1362 assert(s);
398ef8ba 1363 dbus_error_init(&error);
034c6ed7 1364
ba3e67a7
LP		 1365 /* We don't take connections anymore if we are supposed to
1366 * shut down anyway */
18ffdfda 1367 if (unit_pending_inactive(UNIT(s))) {
1124fe6f 1368 log_debug("Suppressing connection request on %s since unit stop is scheduled.", UNIT(s)->id);
5d909e3e 1369
7c610628
LP		 1370 if (cfd >= 0)
1371 close_nointr_nofail(cfd);
1372 else {
1373 /* Flush all sockets by closing and reopening them */
1374 socket_close_fds(s);
1375
1a710b43
MS		 1376 r = socket_watch_fds(s);
1377 if (r < 0) {
1124fe6f 1378 log_warning("%s failed to watch sockets: %s", UNIT(s)->id, strerror(-r));
7c610628
LP		 1379 socket_enter_stop_pre(s, false);
1380 }
1381 }
1382
ba3e67a7
LP		 1383 return;
1384 }
1385
4f2d528d 1386 if (cfd < 0) {
57020a3a
LP		 1387 Iterator i;
1388 Unit *u;
f976f3f6 1389 bool pending = false;
f976f3f6
LP		 1390
1391 /* If there's already a start pending don't bother to
1392 * do anything */
1124fe6f 1393 SET_FOREACH(u, UNIT(s)->dependencies[UNIT_TRIGGERS], i)
57020a3a
LP		 1394 if (unit_pending_active(u)) {
1395 pending = true;
1396 break;
1397 }
f976f3f6 1398
1a710b43
MS		 1399 if (!pending) {
1400 r = manager_add_job(UNIT(s)->manager, JOB_START, UNIT_DEREF(s->service), JOB_REPLACE, true, &error, NULL);
1401 if (r < 0)
f976f3f6 1402 goto fail;
1a710b43 1403 }
4f2d528d
LP		 1404
1405 socket_set_state(s, SOCKET_RUNNING);
1406 } else {
b4f10a5e 1407 char *prefix, *instance = NULL, *name;
b15bdda8 1408 Service *service;
4f2d528d 1409
6cf6bbc2
LP		 1410 if (s->n_connections >= s->max_connections) {
1411 log_warning("Too many incoming connections (%u)", s->n_connections);
1412 close_nointr_nofail(cfd);
1413 return;
1414 }
1415
1a710b43
MS		 1416 r = socket_instantiate_service(s);
1417 if (r < 0)
b15bdda8
LP		 1418 goto fail;
1419
1a710b43
MS		 1420 r = instance_from_socket(cfd, s->n_accepted, &instance);
1421 if (r < 0) {
1422 if (r != -ENOTCONN)
1423 goto fail;
1424
1425 /* ENOTCONN is legitimate if TCP RST was received.
1426 * This connection is over, but the socket unit lives on. */
1427 close_nointr_nofail(cfd);
1428 return;
1429 }
4f2d528d 1430
1a710b43
MS		 1431 prefix = unit_name_to_prefix(UNIT(s)->id);
1432 if (!prefix) {
4f2d528d
LP		 1433 free(instance);
1434 r = -ENOMEM;
1435 goto fail;
1436 }
1437
1438 name = unit_name_build(prefix, instance, ".service");
1439 free(prefix);
1440 free(instance);
1441
b6dbbe1c 1442 if (!name) {
4f2d528d 1443 r = -ENOMEM;
b6dbbe1c
LP		 1444 goto fail;
1445 }
4f2d528d 1446
1a710b43
MS		 1447 r = unit_add_name(UNIT_DEREF(s->service), name);
1448 if (r < 0) {
b15bdda8 1449 free(name);
4f2d528d 1450 goto fail;
b15bdda8
LP		 1451 }
1452
57020a3a
LP		 1453 service = SERVICE(UNIT_DEREF(s->service));
1454 unit_ref_unset(&s->service);
b15bdda8 1455 s->n_accepted ++;
4f2d528d 1456
1124fe6f 1457 UNIT(service)->no_gc = false;
6c073082 1458
b15bdda8
LP		 1459 unit_choose_id(UNIT(service), name);
1460 free(name);
1461
1a710b43
MS		 1462 r = service_set_socket_fd(service, cfd, s);
1463 if (r < 0)
4f2d528d
LP		 1464 goto fail;
1465
1466 cfd = -1;
6cf6bbc2
LP		 1467 s->n_connections ++;
1468
1a710b43
MS		 1469 r = manager_add_job(UNIT(s)->manager, JOB_START, UNIT(service), JOB_REPLACE, true, &error, NULL);
1470 if (r < 0)
4f2d528d 1471 goto fail;
c4e2ceae
LP		 1472
1473 /* Notify clients about changed counters */
1474 unit_add_to_dbus_queue(UNIT(s));
4f2d528d 1475 }
034c6ed7 1476
034c6ed7
LP		 1477 return;
1478
1479fail:
1124fe6f 1480 log_warning("%s failed to queue socket startup job: %s", UNIT(s)->id, bus_error(&error, r));
80876c20 1481 socket_enter_stop_pre(s, false);
4f2d528d
LP		 1482
1483 if (cfd >= 0)
1484 close_nointr_nofail(cfd);
398ef8ba
LP		 1485
1486 dbus_error_free(&error);
034c6ed7
LP		 1487}
1488
1489static void socket_run_next(Socket *s, bool success) {
1490 int r;
1491
1492 assert(s);
1493 assert(s->control_command);
1494 assert(s->control_command->command_next);
1495
1496 if (!success)
1497 s->failure = true;
1498
5e94833f
LP		 1499 socket_unwatch_control_pid(s);
1500
034c6ed7
LP		 1501 s->control_command = s->control_command->command_next;
1502
e537352b 1503 if ((r = socket_spawn(s, s->control_command, &s->control_pid)) < 0)
034c6ed7
LP		 1504 goto fail;
1505
1506 return;
1507
1508fail:
1124fe6f 1509 log_warning("%s failed to run next task: %s", UNIT(s)->id, strerror(-r));
80876c20
LP		 1510
1511 if (s->state == SOCKET_START_POST)
1512 socket_enter_stop_pre(s, false);
034c6ed7
LP		 1513 else if (s->state == SOCKET_STOP_POST)
1514 socket_enter_dead(s, false);
1515 else
80876c20 1516 socket_enter_signal(s, SOCKET_FINAL_SIGTERM, false);
034c6ed7
LP		 1517}
1518
87f0e418
LP		 1519static int socket_start(Unit *u) {
1520 Socket *s = SOCKET(u);
83c60c9f
LP		 1521
1522 assert(s);
1523
034c6ed7
LP		 1524 /* We cannot fulfill this request right now, try again later
1525 * please! */
1526 if (s->state == SOCKET_STOP_PRE ||
1527 s->state == SOCKET_STOP_PRE_SIGKILL ||
1528 s->state == SOCKET_STOP_PRE_SIGTERM ||
1529 s->state == SOCKET_STOP_POST ||
80876c20
LP		 1530 s->state == SOCKET_FINAL_SIGTERM ||
1531 s->state == SOCKET_FINAL_SIGKILL)
034c6ed7
LP		 1532 return -EAGAIN;
1533
83c60c9f
LP		 1534 if (s->state == SOCKET_START_PRE ||
1535 s->state == SOCKET_START_POST)
034c6ed7 1536 return 0;
83c60c9f 1537
034c6ed7 1538 /* Cannot run this without the service being around */
57020a3a
LP		 1539 if (UNIT_DEREF(s->service)) {
1540 Service *service;
1541
1542 service = SERVICE(UNIT_DEREF(s->service));
1543
1124fe6f
MS		 1544 if (UNIT(service)->load_state != UNIT_LOADED) {
1545 log_error("Socket service %s not loaded, refusing.", UNIT(service)->id);
4f2d528d 1546 return -ENOENT;
4ac9236f 1547 }
4f2d528d 1548
35b8ca3a 1549 /* If the service is already active we cannot start the
4f2d528d 1550 * socket */
57020a3a
LP		 1551 if (service->state != SERVICE_DEAD &&
1552 service->state != SERVICE_FAILED &&
1553 service->state != SERVICE_AUTO_RESTART) {
1124fe6f 1554 log_error("Socket service %s already active, refusing.", UNIT(service)->id);
4f2d528d 1555 return -EBUSY;
4ac9236f 1556 }
7b4bf06b
LP		 1557
1558#ifdef HAVE_SYSV_COMPAT
57020a3a 1559 if (service->sysv_path) {
7b4bf06b
LP		 1560 log_error("Using SysV services for socket activation is not supported. Refusing.");
1561 return -ENOENT;
1562 }
1563#endif
4f2d528d 1564 }
e537352b 1565
fdf20a31 1566 assert(s->state == SOCKET_DEAD || s->state == SOCKET_FAILED);
83c60c9f 1567
034c6ed7
LP		 1568 s->failure = false;
1569 socket_enter_start_pre(s);
1570 return 0;
1571}
83c60c9f 1572
87f0e418
LP		 1573static int socket_stop(Unit *u) {
1574 Socket *s = SOCKET(u);
034c6ed7
LP		 1575
1576 assert(s);
1577
e537352b
LP		 1578 /* Already on it */
1579 if (s->state == SOCKET_STOP_PRE ||
1580 s->state == SOCKET_STOP_PRE_SIGTERM ||
1581 s->state == SOCKET_STOP_PRE_SIGKILL ||
1582 s->state == SOCKET_STOP_POST ||
80876c20 1583 s->state == SOCKET_FINAL_SIGTERM ||
3f6c78dc 1584 s->state == SOCKET_FINAL_SIGKILL)
e537352b
LP		 1585 return 0;
1586
3f6c78dc
LP		 1587 /* If there's already something running we go directly into
1588 * kill mode. */
1589 if (s->state == SOCKET_START_PRE ||
1590 s->state == SOCKET_START_POST) {
1591 socket_enter_signal(s, SOCKET_STOP_PRE_SIGTERM, true);
1592 return -EAGAIN;
1593 }
1594
034c6ed7 1595 assert(s->state == SOCKET_LISTENING || s->state == SOCKET_RUNNING);
83c60c9f 1596
034c6ed7 1597 socket_enter_stop_pre(s, true);
542563ba
LP		 1598 return 0;
1599}
1600
a16e1123
LP		 1601static int socket_serialize(Unit *u, FILE *f, FDSet *fds) {
1602 Socket *s = SOCKET(u);
1603 SocketPort *p;
1604 int r;
1605
1606 assert(u);
1607 assert(f);
1608 assert(fds);
1609
1610 unit_serialize_item(u, f, "state", socket_state_to_string(s->state));
1611 unit_serialize_item(u, f, "failure", yes_no(s->failure));
1612 unit_serialize_item_format(u, f, "n-accepted", "%u", s->n_accepted);
1613
1614 if (s->control_pid > 0)
5925dd3c 1615 unit_serialize_item_format(u, f, "control-pid", "%lu", (unsigned long) s->control_pid);
a16e1123
LP		 1616
1617 if (s->control_command_id >= 0)
1618 unit_serialize_item(u, f, "control-command", socket_exec_command_to_string(s->control_command_id));
1619
1620 LIST_FOREACH(port, p, s->ports) {
1621 int copy;
1622
1623 if (p->fd < 0)
1624 continue;
1625
1626 if ((copy = fdset_put_dup(fds, p->fd)) < 0)
1627 return copy;
1628
1629 if (p->type == SOCKET_SOCKET) {
1630 char *t;
1631
1632 if ((r = socket_address_print(&p->address, &t)) < 0)
1633 return r;
1634
7a22745a
LP		 1635 if (socket_address_family(&p->address) == AF_NETLINK)
1636 unit_serialize_item_format(u, f, "netlink", "%i %s", copy, t);
1637 else
1638 unit_serialize_item_format(u, f, "socket", "%i %i %s", copy, p->address.type, t);
a16e1123 1639 free(t);
b0a3f2bc
LP		 1640 } else if (p->type == SOCKET_SPECIAL)
1641 unit_serialize_item_format(u, f, "special", "%i %s", copy, p->path);
1642 else {
a16e1123
LP		 1643 assert(p->type == SOCKET_FIFO);
1644 unit_serialize_item_format(u, f, "fifo", "%i %s", copy, p->path);
1645 }
1646 }
1647
1648 return 0;
1649}
1650
1651static int socket_deserialize_item(Unit *u, const char *key, const char *value, FDSet *fds) {
1652 Socket *s = SOCKET(u);
a16e1123
LP		 1653
1654 assert(u);
1655 assert(key);
1656 assert(value);
1657 assert(fds);
1658
1659 if (streq(key, "state")) {
1660 SocketState state;
1661
1662 if ((state = socket_state_from_string(value)) < 0)
1663 log_debug("Failed to parse state value %s", value);
1664 else
1665 s->deserialized_state = state;
1666 } else if (streq(key, "failure")) {
1667 int b;
1668
1669 if ((b = parse_boolean(value)) < 0)
1670 log_debug("Failed to parse failure value %s", value);
1671 else
1672 s->failure = b || s->failure;
1673
1674 } else if (streq(key, "n-accepted")) {
1675 unsigned k;
1676
e364ad06 1677 if (safe_atou(value, &k) < 0)
a16e1123
LP		 1678 log_debug("Failed to parse n-accepted value %s", value);
1679 else
1680 s->n_accepted += k;
1681 } else if (streq(key, "control-pid")) {
5925dd3c 1682 pid_t pid;
a16e1123 1683
e364ad06 1684 if (parse_pid(value, &pid) < 0)
a16e1123
LP		 1685 log_debug("Failed to parse control-pid value %s", value);
1686 else
5925dd3c 1687 s->control_pid = pid;
a16e1123
LP		 1688 } else if (streq(key, "control-command")) {
1689 SocketExecCommand id;
1690
1691 if ((id = socket_exec_command_from_string(value)) < 0)
1692 log_debug("Failed to parse exec-command value %s", value);
1693 else {
1694 s->control_command_id = id;
1695 s->control_command = s->exec_command[id];
1696 }
1697 } else if (streq(key, "fifo")) {
1698 int fd, skip = 0;
1699 SocketPort *p;
1700
1701 if (sscanf(value, "%i %n", &fd, &skip) < 1 || fd < 0 || !fdset_contains(fds, fd))
1702 log_debug("Failed to parse fifo value %s", value);
1703 else {
1704
1705 LIST_FOREACH(port, p, s->ports)
b0a3f2bc
LP		 1706 if (p->type == SOCKET_FIFO &&
1707 streq_ptr(p->path, value+skip))
1708 break;
1709
1710 if (p) {
1711 if (p->fd >= 0)
1712 close_nointr_nofail(p->fd);
1713 p->fd = fdset_remove(fds, fd);
1714 }
1715 }
1716
1717 } else if (streq(key, "special")) {
1718 int fd, skip = 0;
1719 SocketPort *p;
1720
1721 if (sscanf(value, "%i %n", &fd, &skip) < 1 || fd < 0 || !fdset_contains(fds, fd))
1722 log_debug("Failed to parse special value %s", value);
1723 else {
1724
1725 LIST_FOREACH(port, p, s->ports)
1726 if (p->type == SOCKET_SPECIAL &&
1727 streq_ptr(p->path, value+skip))
a16e1123
LP		 1728 break;
1729
1730 if (p) {
1731 if (p->fd >= 0)
1732 close_nointr_nofail(p->fd);
1733 p->fd = fdset_remove(fds, fd);
1734 }
1735 }
1736
1737 } else if (streq(key, "socket")) {
27ca8d7a 1738 int fd, type, skip = 0;
a16e1123
LP		 1739 SocketPort *p;
1740
27ca8d7a 1741 if (sscanf(value, "%i %i %n", &fd, &type, &skip) < 2 || fd < 0 || type < 0 || !fdset_contains(fds, fd))
a16e1123
LP		 1742 log_debug("Failed to parse socket value %s", value);
1743 else {
1744
1745 LIST_FOREACH(port, p, s->ports)
27ca8d7a 1746 if (socket_address_is(&p->address, value+skip, type))
a16e1123
LP		 1747 break;
1748
1749 if (p) {
1750 if (p->fd >= 0)
1751 close_nointr_nofail(p->fd);
1752 p->fd = fdset_remove(fds, fd);
1753 }
1754 }
1755
7a22745a
LP		 1756 } else if (streq(key, "netlink")) {
1757 int fd, skip = 0;
1758 SocketPort *p;
1759
1760 if (sscanf(value, "%i %n", &fd, &skip) < 1 || fd < 0 || !fdset_contains(fds, fd))
1761 log_debug("Failed to parse socket value %s", value);
1762 else {
1763
1764 LIST_FOREACH(port, p, s->ports)
1765 if (socket_address_is_netlink(&p->address, value+skip))
1766 break;
1767
1768 if (p) {
1769 if (p->fd >= 0)
1770 close_nointr_nofail(p->fd);
1771 p->fd = fdset_remove(fds, fd);
1772 }
1773 }
1774
a16e1123
LP		 1775 } else
1776 log_debug("Unknown serialization key '%s'", key);
1777
1778 return 0;
1779}
1780
87f0e418
LP		 1781static UnitActiveState socket_active_state(Unit *u) {
1782 assert(u);
5cb5a6ff 1783
acbb0225 1784 return state_translation_table[SOCKET(u)->state];
5cb5a6ff
LP		 1785}
1786
10a94420
LP		 1787static const char *socket_sub_state_to_string(Unit *u) {
1788 assert(u);
1789
a16e1123 1790 return socket_state_to_string(SOCKET(u)->state);
10a94420
LP		 1791}
1792
6cf6bbc2
LP		 1793static bool socket_check_gc(Unit *u) {
1794 Socket *s = SOCKET(u);
1795
1796 assert(u);
1797
1798 return s->n_connections > 0;
1799}
1800
acbb0225 1801static void socket_fd_event(Unit *u, int fd, uint32_t events, Watch *w) {
87f0e418 1802 Socket *s = SOCKET(u);
4f2d528d 1803 int cfd = -1;
9152c765 1804
034c6ed7 1805 assert(s);
8d567588 1806 assert(fd >= 0);
9152c765 1807
871d7de4
LP		 1808 if (s->state != SOCKET_LISTENING)
1809 return;
1810
ac155bb8 1811 log_debug("Incoming traffic on %s", u->id);
9152c765 1812
4f2d528d 1813 if (events != EPOLLIN) {
641e01dc
LP		 1814
1815 if (events & EPOLLHUP)
ac155bb8 1816 log_error("%s: Got POLLHUP on a listening socket. The service probably invoked shutdown() on it, and should better not do that.", u->id);
641e01dc 1817 else
ac155bb8 1818 log_error("%s: Got unexpected poll event (0x%x) on socket.", u->id, events);
641e01dc 1819
8d567588 1820 goto fail;
4f2d528d
LP		 1821 }
1822
cabab516 1823 if (w->socket_accept) {
4f2d528d
LP		 1824 for (;;) {
1825
1826 if ((cfd = accept4(fd, NULL, NULL, SOCK_NONBLOCK)) < 0) {
1827
1828 if (errno == EINTR)
1829 continue;
1830
1831 log_error("Failed to accept socket: %m");
8d567588 1832 goto fail;
4f2d528d
LP		 1833 }
1834
1835 break;
1836 }
4fd5948e
LP		 1837
1838 socket_apply_socket_options(s, cfd);
4f2d528d 1839 }
9152c765 1840
4f2d528d 1841 socket_enter_running(s, cfd);
8d567588
LP		 1842 return;
1843
1844fail:
1845 socket_enter_stop_pre(s, false);
9152c765
LP		 1846}
1847
87f0e418
LP		 1848static void socket_sigchld_event(Unit *u, pid_t pid, int code, int status) {
1849 Socket *s = SOCKET(u);
034c6ed7 1850 bool success;
5cb5a6ff
LP		 1851
1852 assert(s);
034c6ed7 1853 assert(pid >= 0);
5cb5a6ff 1854
8c47c732
LP		 1855 if (pid != s->control_pid)
1856 return;
542563ba 1857
034c6ed7
LP		 1858 s->control_pid = 0;
1859
8c47c732 1860 success = is_clean_exit(code, status);
8c47c732 1861
b708e7ce 1862 if (s->control_command) {
6ea832a2 1863 exec_status_exit(&s->control_command->exec_status, &s->exec_context, pid, code, status);
a16e1123 1864
b708e7ce
LP		 1865 if (s->control_command->ignore)
1866 success = true;
1867 }
1868
92abbefb 1869 log_full(success ? LOG_DEBUG : LOG_NOTICE,
ac155bb8 1870 "%s control process exited, code=%s status=%i", u->id, sigchld_code_to_string(code), status);
b708e7ce 1871 s->failure = s->failure || !success;
034c6ed7 1872
a16e1123 1873 if (s->control_command && s->control_command->command_next && success) {
ac155bb8 1874 log_debug("%s running next command for state %s", u->id, socket_state_to_string(s->state));
034c6ed7 1875 socket_run_next(s, success);
acbb0225 1876 } else {
a16e1123
LP		 1877 s->control_command = NULL;
1878 s->control_command_id = _SOCKET_EXEC_COMMAND_INVALID;
1879
034c6ed7
LP		 1880 /* No further commands for this step, so let's figure
1881 * out what to do next */
5cb5a6ff 1882
ac155bb8 1883 log_debug("%s got final SIGCHLD for state %s", u->id, socket_state_to_string(s->state));
acbb0225 1884
034c6ed7
LP		 1885 switch (s->state) {
1886
1887 case SOCKET_START_PRE:
1888 if (success)
acbb0225 1889 socket_enter_start_post(s);
034c6ed7 1890 else
80876c20 1891 socket_enter_signal(s, SOCKET_FINAL_SIGTERM, false);
034c6ed7
LP		 1892 break;
1893
1894 case SOCKET_START_POST:
1895 if (success)
e9af15c3 1896 socket_enter_listening(s);
034c6ed7
LP		 1897 else
1898 socket_enter_stop_pre(s, false);
1899 break;
1900
1901 case SOCKET_STOP_PRE:
1902 case SOCKET_STOP_PRE_SIGTERM:
1903 case SOCKET_STOP_PRE_SIGKILL:
1904 socket_enter_stop_post(s, success);
1905 break;
1906
1907 case SOCKET_STOP_POST:
80876c20
LP		 1908 case SOCKET_FINAL_SIGTERM:
1909 case SOCKET_FINAL_SIGKILL:
034c6ed7
LP		 1910 socket_enter_dead(s, success);
1911 break;
1912
1913 default:
1914 assert_not_reached("Uh, control process died at wrong time.");
1915 }
1916 }
c4e2ceae
LP		 1917
1918 /* Notify clients about changed exit status */
1919 unit_add_to_dbus_queue(u);
034c6ed7 1920}
5cb5a6ff 1921
acbb0225 1922static void socket_timer_event(Unit *u, uint64_t elapsed, Watch *w) {
87f0e418 1923 Socket *s = SOCKET(u);
5cb5a6ff 1924
034c6ed7
LP		 1925 assert(s);
1926 assert(elapsed == 1);
acbb0225 1927 assert(w == &s->timer_watch);
034c6ed7
LP		 1928
1929 switch (s->state) {
1930
1931 case SOCKET_START_PRE:
ac155bb8 1932 log_warning("%s starting timed out. Terminating.", u->id);
80876c20 1933 socket_enter_signal(s, SOCKET_FINAL_SIGTERM, false);
da19d5c1 1934 break;
80876c20 1935
034c6ed7 1936 case SOCKET_START_POST:
ac155bb8 1937 log_warning("%s starting timed out. Stopping.", u->id);
034c6ed7
LP		 1938 socket_enter_stop_pre(s, false);
1939 break;
1940
1941 case SOCKET_STOP_PRE:
ac155bb8 1942 log_warning("%s stopping timed out. Terminating.", u->id);
034c6ed7
LP		 1943 socket_enter_signal(s, SOCKET_STOP_PRE_SIGTERM, false);
1944 break;
1945
1946 case SOCKET_STOP_PRE_SIGTERM:
ba035df2 1947 if (s->exec_context.send_sigkill) {
ac155bb8 1948 log_warning("%s stopping timed out. Killing.", u->id);
ba035df2
LP		 1949 socket_enter_signal(s, SOCKET_STOP_PRE_SIGKILL, false);
1950 } else {
ac155bb8 1951 log_warning("%s stopping timed out. Skipping SIGKILL. Ignoring.", u->id);
ba035df2
LP		 1952 socket_enter_stop_post(s, false);
1953 }
034c6ed7
LP		 1954 break;
1955
1956 case SOCKET_STOP_PRE_SIGKILL:
ac155bb8 1957 log_warning("%s still around after SIGKILL. Ignoring.", u->id);
034c6ed7
LP		 1958 socket_enter_stop_post(s, false);
1959 break;
1960
1961 case SOCKET_STOP_POST:
ac155bb8 1962 log_warning("%s stopping timed out (2). Terminating.", u->id);
80876c20 1963 socket_enter_signal(s, SOCKET_FINAL_SIGTERM, false);
034c6ed7
LP		 1964 break;
1965
80876c20 1966 case SOCKET_FINAL_SIGTERM:
ba035df2 1967 if (s->exec_context.send_sigkill) {
ac155bb8 1968 log_warning("%s stopping timed out (2). Killing.", u->id);
ba035df2
LP		 1969 socket_enter_signal(s, SOCKET_FINAL_SIGKILL, false);
1970 } else {
ac155bb8 1971 log_warning("%s stopping timed out (2). Skipping SIGKILL. Ignoring.", u->id);
ba035df2
LP		 1972 socket_enter_dead(s, false);
1973 }
034c6ed7
LP		 1974 break;
1975
80876c20 1976 case SOCKET_FINAL_SIGKILL:
ac155bb8 1977 log_warning("%s still around after SIGKILL (2). Entering failed mode.", u->id);
034c6ed7
LP		 1978 socket_enter_dead(s, false);
1979 break;
1980
1981 default:
1982 assert_not_reached("Timeout at wrong time.");
1983 }
5cb5a6ff
LP		 1984}
1985
44d8db9e
LP		 1986int socket_collect_fds(Socket *s, int **fds, unsigned *n_fds) {
1987 int *rfds;
1988 unsigned rn_fds, k;
1989 SocketPort *p;
1990
1991 assert(s);
1992 assert(fds);
1993 assert(n_fds);
1994
1995 /* Called from the service code for requesting our fds */
1996
1997 rn_fds = 0;
1998 LIST_FOREACH(port, p, s->ports)
1999 if (p->fd >= 0)
2000 rn_fds++;
2001
de3756ab
LP		 2002 if (rn_fds <= 0) {
2003 *fds = NULL;
2004 *n_fds = 0;
2005 return 0;
2006 }
2007
e364ad06 2008 if (!(rfds = new(int, rn_fds)))
44d8db9e
LP		 2009 return -ENOMEM;
2010
2011 k = 0;
2012 LIST_FOREACH(port, p, s->ports)
2013 if (p->fd >= 0)
2014 rfds[k++] = p->fd;
2015
2016 assert(k == rn_fds);
2017
2018 *fds = rfds;
2019 *n_fds = rn_fds;
2020
2021 return 0;
2022}
2023
ceee3d82
LP		 2024void socket_notify_service_dead(Socket *s) {
2025 assert(s);
2026
6cf6bbc2
LP		 2027 /* The service is dead. Dang!
2028 *
2029 * This is strictly for one-instance-for-all-connections
2030 * services. */
ceee3d82
LP		 2031
2032 if (s->state == SOCKET_RUNNING) {
1124fe6f 2033 log_debug("%s got notified about service death.", UNIT(s)->id);
ceee3d82
LP		 2034 socket_enter_listening(s);
2035 }
2036}
2037
6cf6bbc2
LP		 2038void socket_connection_unref(Socket *s) {
2039 assert(s);
2040
2041 /* The service is dead. Yay!
2042 *
35b8ca3a 2043 * This is strictly for one-instance-per-connection
6cf6bbc2
LP		 2044 * services. */
2045
2046 assert(s->n_connections > 0);
2047 s->n_connections--;
2048
1124fe6f 2049 log_debug("%s: One connection closed, %u left.", UNIT(s)->id, s->n_connections);
6cf6bbc2
LP		 2050}
2051
fdf20a31 2052static void socket_reset_failed(Unit *u) {
5632e374
LP		 2053 Socket *s = SOCKET(u);
2054
2055 assert(s);
2056
fdf20a31 2057 if (s->state == SOCKET_FAILED)
5632e374
LP		 2058 socket_set_state(s, SOCKET_DEAD);
2059
2060 s->failure = false;
2061}
2062
8a0867d6
LP		 2063static int socket_kill(Unit *u, KillWho who, KillMode mode, int signo, DBusError *error) {
2064 Socket *s = SOCKET(u);
2065 int r = 0;
2066 Set *pid_set = NULL;
2067
2068 assert(s);
2069
2070 if (who == KILL_MAIN) {
2071 dbus_set_error(error, BUS_ERROR_NO_SUCH_PROCESS, "Socket units have no main processes");
a17204af 2072 return -ESRCH;
8a0867d6
LP		 2073 }
2074
2075 if (s->control_pid <= 0 && who == KILL_CONTROL) {
2076 dbus_set_error(error, BUS_ERROR_NO_SUCH_PROCESS, "No control process to kill");
a17204af 2077 return -ESRCH;
8a0867d6
LP		 2078 }
2079
3611581e
LP		 2080 if (who == KILL_CONTROL || who == KILL_ALL)
2081 if (s->control_pid > 0)
2082 if (kill(s->control_pid, signo) < 0)
2083 r = -errno;
8a0867d6 2084
3611581e 2085 if (who == KILL_ALL && mode == KILL_CONTROL_GROUP) {
8a0867d6
LP		 2086 int q;
2087
2088 if (!(pid_set = set_new(trivial_hash_func, trivial_compare_func)))
2089 return -ENOMEM;
2090
2091 /* Exclude the control pid from being killed via the cgroup */
2092 if (s->control_pid > 0)
2093 if ((q = set_put(pid_set, LONG_TO_PTR(s->control_pid))) < 0) {
2094 r = q;
2095 goto finish;
2096 }
2097
1124fe6f 2098 if ((q = cgroup_bonding_kill_list(UNIT(s)->cgroup_bondings, signo, false, pid_set)) < 0)
3611581e 2099 if (q != -EAGAIN && q != -ESRCH && q != -ENOENT)
8a0867d6
LP		 2100 r = q;
2101 }
2102
2103finish:
2104 if (pid_set)
2105 set_free(pid_set);
2106
2107 return r;
2108}
2109
a16e1123
LP		 2110static const char* const socket_state_table[_SOCKET_STATE_MAX] = {
2111 [SOCKET_DEAD] = "dead",
2112 [SOCKET_START_PRE] = "start-pre",
2113 [SOCKET_START_POST] = "start-post",
2114 [SOCKET_LISTENING] = "listening",
2115 [SOCKET_RUNNING] = "running",
2116 [SOCKET_STOP_PRE] = "stop-pre",
2117 [SOCKET_STOP_PRE_SIGTERM] = "stop-pre-sigterm",
2118 [SOCKET_STOP_PRE_SIGKILL] = "stop-pre-sigkill",
2119 [SOCKET_STOP_POST] = "stop-post",
2120 [SOCKET_FINAL_SIGTERM] = "final-sigterm",
2121 [SOCKET_FINAL_SIGKILL] = "final-sigkill",
fdf20a31 2122 [SOCKET_FAILED] = "failed"
a16e1123
LP		 2123};
2124
2125DEFINE_STRING_TABLE_LOOKUP(socket_state, SocketState);
2126
2127static const char* const socket_exec_command_table[_SOCKET_EXEC_COMMAND_MAX] = {
2128 [SOCKET_EXEC_START_PRE] = "StartPre",
2129 [SOCKET_EXEC_START_POST] = "StartPost",
2130 [SOCKET_EXEC_STOP_PRE] = "StopPre",
2131 [SOCKET_EXEC_STOP_POST] = "StopPost"
2132};
2133
2134DEFINE_STRING_TABLE_LOOKUP(socket_exec_command, SocketExecCommand);
2135
87f0e418 2136const UnitVTable socket_vtable = {
5cb5a6ff 2137 .suffix = ".socket",
7d17cfbc 2138 .object_size = sizeof(Socket),
f975e971
LP		 2139 .sections =
2140 "Unit\0"
2141 "Socket\0"
2142 "Install\0",
5cb5a6ff 2143
034c6ed7
LP		 2144 .init = socket_init,
2145 .done = socket_done,
a16e1123
LP		 2146 .load = socket_load,
2147
8a0867d6
LP		 2148 .kill = socket_kill,
2149
a16e1123 2150 .coldplug = socket_coldplug,
034c6ed7 2151
5cb5a6ff
LP		 2152 .dump = socket_dump,
2153
542563ba
LP		 2154 .start = socket_start,
2155 .stop = socket_stop,
5cb5a6ff 2156
a16e1123
LP		 2157 .serialize = socket_serialize,
2158 .deserialize_item = socket_deserialize_item,
2159
5cb5a6ff 2160 .active_state = socket_active_state,
10a94420 2161 .sub_state_to_string = socket_sub_state_to_string,
5cb5a6ff 2162
6cf6bbc2
LP		 2163 .check_gc = socket_check_gc,
2164
9152c765 2165 .fd_event = socket_fd_event,
034c6ed7 2166 .sigchld_event = socket_sigchld_event,
4139c1b2
LP		 2167 .timer_event = socket_timer_event,
2168
fdf20a31 2169 .reset_failed = socket_reset_failed,
5632e374 2170
c4e2ceae
LP		 2171 .bus_interface = "org.freedesktop.systemd1.Socket",
2172 .bus_message_handler = bus_socket_message_handler,
2173 .bus_invalidating_properties = bus_socket_invalidating_properties
5cb5a6ff 2174};
Unnamed repository; edit this file 'description' to name the repository.