[thirdparty/systemd.git] / src / socket-util.c

/*-*- Mode: C; c-basic-offset: 8 -*-*/

/***
  This file is part of systemd.

  Copyright 2010 Lennart Poettering

  systemd is free software; you can redistribute it and/or modify it
  under the terms of the GNU General Public License as published by
  the Free Software Foundation; either version 2 of the License, or
  (at your option) any later version.

  systemd is distributed in the hope that it will be useful, but
  WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
  General Public License for more details.

  You should have received a copy of the GNU General Public License
  along with systemd; If not, see <http://www.gnu.org/licenses/>.
***/

#include <assert.h>
#include <string.h>
#include <unistd.h>
#include <errno.h>
#include <stdlib.h>
#include <arpa/inet.h>
#include <stdio.h>
#include <net/if.h>
#include <sys/types.h>
#include <sys/stat.h>

#include "macro.h"
#include "util.h"
#include "socket-util.h"
#include "missing.h"

int socket_address_parse(SocketAddress *a, const char *s) {
        int r;
        char *e, *n;
        unsigned u;

        assert(a);
        assert(s);

        zero(*a);
        a->type = SOCK_STREAM;

        if (*s == '[') {
                /* IPv6 in [x:.....:z]:p notation */

                if (!(e = strchr(s+1, ']')))
                        return -EINVAL;

                if (!(n = strndup(s+1, e-s-1)))
                        return -ENOMEM;

                errno = 0;
                if (inet_pton(AF_INET6, n, &a->sockaddr.in6.sin6_addr) <= 0) {
                        free(n);
                        return errno != 0 ? -errno : -EINVAL;
                }

                free(n);

                e++;
                if (*e != ':')
                        return -EINVAL;

                e++;
                if ((r = safe_atou(e, &u)) < 0)
                        return r;

                if (u <= 0 || u > 0xFFFF)
                        return -EINVAL;

                a->sockaddr.in6.sin6_family = AF_INET6;
                a->sockaddr.in6.sin6_port = htons((uint16_t) u);
                a->size = sizeof(struct sockaddr_in6);

        } else if (*s == '/') {
                /* AF_UNIX socket */

                size_t l;

                l = strlen(s);
                if (l >= sizeof(a->sockaddr.un.sun_path))
                        return -EINVAL;

                a->sockaddr.un.sun_family = AF_UNIX;
                memcpy(a->sockaddr.un.sun_path, s, l);
                a->size = sizeof(sa_family_t) + l + 1;

        } else if (*s == '@') {
                /* Abstract AF_UNIX socket */
                size_t l;

                l = strlen(s+1);
                if (l >= sizeof(a->sockaddr.un.sun_path) - 1)
                        return -EINVAL;

                a->sockaddr.un.sun_family = AF_UNIX;
                memcpy(a->sockaddr.un.sun_path+1, s+1, l);
                a->size = sizeof(struct sockaddr_un);

        } else {

                if ((e = strchr(s, ':'))) {

                        if ((r = safe_atou(e+1, &u)) < 0)
                                return r;

                        if (u <= 0 || u > 0xFFFF)
                                return -EINVAL;

                        if (!(n = strndup(s, e-s)))
                                return -ENOMEM;

                        /* IPv4 in w.x.y.z:p notation? */
                        if ((r = inet_pton(AF_INET, n, &a->sockaddr.in4.sin_addr)) < 0) {
                                free(n);
                                return -errno;
                        }

                        if (r > 0) {
                                /* Gotcha, it's a traditional IPv4 address */
                                free(n);

                                a->sockaddr.in4.sin_family = AF_INET;
                                a->sockaddr.in4.sin_port = htons((uint16_t) u);
                                a->size = sizeof(struct sockaddr_in);
                        } else {
                                unsigned idx;

                                if (strlen(n) > IF_NAMESIZE-1) {
                                        free(n);
                                        return -EINVAL;
                                }

                                /* Uh, our last resort, an interface name */
                                idx = if_nametoindex(n);
                                free(n);

                                if (idx == 0)
                                        return -EINVAL;

                                a->sockaddr.in6.sin6_family = AF_INET6;
                                a->sockaddr.in6.sin6_port = htons((uint16_t) u);
                                a->sockaddr.in6.sin6_scope_id = idx;
                                a->sockaddr.in6.sin6_addr = in6addr_any;
                                a->size = sizeof(struct sockaddr_in6);

                        }
                } else {

                        /* Just a port */
                        if ((r = safe_atou(s, &u)) < 0)
                                return r;

                        if (u <= 0 || u > 0xFFFF)
                                return -EINVAL;

                        a->sockaddr.in6.sin6_family = AF_INET6;
                        a->sockaddr.in6.sin6_port = htons((uint16_t) u);
                        a->sockaddr.in6.sin6_addr = in6addr_any;
                        a->size = sizeof(struct sockaddr_in6);
                }
        }

        return 0;
}

int socket_address_verify(const SocketAddress *a) {
        assert(a);

        switch (socket_address_family(a)) {
                case AF_INET:
                        if (a->size != sizeof(struct sockaddr_in))
                                return -EINVAL;

                        if (a->sockaddr.in4.sin_port == 0)
                                return -EINVAL;

                        return 0;

                case AF_INET6:
                        if (a->size != sizeof(struct sockaddr_in6))
                                return -EINVAL;

                        if (a->sockaddr.in6.sin6_port == 0)
                                return -EINVAL;

                        return 0;

                case AF_UNIX:
                        if (a->size < sizeof(sa_family_t))
                                return -EINVAL;

                        if (a->size > sizeof(sa_family_t)) {

                                if (a->sockaddr.un.sun_path[0] == 0) {
                                        /* abstract */
                                        if (a->size != sizeof(struct sockaddr_un))
                                                return -EINVAL;
                                } else {
                                        char *e;

                                        /* path */
                                        if (!(e = memchr(a->sockaddr.un.sun_path, 0, sizeof(a->sockaddr.un.sun_path))))
                                                return -EINVAL;

                                        if (a->size != sizeof(sa_family_t) + (e - a->sockaddr.un.sun_path) + 1)
                                                return -EINVAL;
                                }
                        }

                        return 0;

                default:
                        return -EAFNOSUPPORT;
        }
}

int socket_address_print(const SocketAddress *a, char **p) {
        int r;
        assert(a);
        assert(p);

        if ((r = socket_address_verify(a)) < 0)
                return r;

        switch (socket_address_family(a)) {
                case AF_INET: {
                        char *ret;

                        if (!(ret = new(char, INET_ADDRSTRLEN+1+5+1)))
                                return -ENOMEM;

                        if (!inet_ntop(AF_INET, &a->sockaddr.in4.sin_addr, ret, INET_ADDRSTRLEN)) {
                                free(ret);
                                return -errno;
                        }

                        sprintf(strchr(ret, 0), ":%u", ntohs(a->sockaddr.in4.sin_port));
                        *p = ret;
                        return 0;
                }

                case AF_INET6: {
                        char *ret;

                        if (!(ret = new(char, 1+INET6_ADDRSTRLEN+2+5+1)))
                                return -ENOMEM;

                        ret[0] = '[';
                        if (!inet_ntop(AF_INET6, &a->sockaddr.in6.sin6_addr, ret+1, INET6_ADDRSTRLEN)) {
                                free(ret);
                                return -errno;
                        }

                        sprintf(strchr(ret, 0), "]:%u", ntohs(a->sockaddr.in6.sin6_port));
                        *p = ret;
                        return 0;
                }

                case AF_UNIX: {
                        char *ret;

                        if (a->size <= sizeof(sa_family_t)) {

                                if (!(ret = strdup("<unamed>")))
                                        return -ENOMEM;

                        } else if (a->sockaddr.un.sun_path[0] == 0) {
                                /* abstract */

                                /* FIXME: We assume we can print the
                                 * socket path here and that it hasn't
                                 * more than one NUL byte. That is
                                 * actually an invalid assumption */

                                if (!(ret = new(char, sizeof(a->sockaddr.un.sun_path)+1)))
                                        return -ENOMEM;

                                ret[0] = '@';
                                memcpy(ret+1, a->sockaddr.un.sun_path+1, sizeof(a->sockaddr.un.sun_path)-1);
                                ret[sizeof(a->sockaddr.un.sun_path)] = 0;

                        } else {

                                if (!(ret = strdup(a->sockaddr.un.sun_path)))
                                        return -ENOMEM;
                        }

                        *p = ret;
                        return 0;
                }

                default:
                        return -EINVAL;
        }
}

int socket_address_listen(
                const SocketAddress *a,
                int backlog,
                SocketAddressBindIPv6Only only,
                const char *bind_to_device,
                bool free_bind,
                mode_t directory_mode,
                mode_t socket_mode,
                int *ret) {

        int r, fd, one;
        assert(a);
        assert(ret);

        if ((r = socket_address_verify(a)) < 0)
                return r;

        if ((fd = socket(socket_address_family(a), a->type | SOCK_NONBLOCK | SOCK_CLOEXEC, 0)) < 0)
                return -errno;

        if (socket_address_family(a) == AF_INET6 && only != SOCKET_ADDRESS_DEFAULT) {
                int flag = only == SOCKET_ADDRESS_IPV6_ONLY;

                if (setsockopt(fd, IPPROTO_IPV6, IPV6_V6ONLY, &flag, sizeof(flag)) < 0)
                        goto fail;
        }

        if (bind_to_device)
                if (setsockopt(fd, SOL_SOCKET, SO_BINDTODEVICE, bind_to_device, strlen(bind_to_device)+1) < 0)
                        goto fail;

        if (free_bind) {
                one = 1;
                if (setsockopt(fd, IPPROTO_IP, IP_FREEBIND, &one, sizeof(one)) < 0)
                        log_warning("IP_FREEBIND failed: %m");
        }

        one = 1;
        if (setsockopt(fd, SOL_SOCKET, SO_REUSEADDR, &one, sizeof(one)) < 0)
                goto fail;

        if (socket_address_family(a) == AF_UNIX && a->sockaddr.un.sun_path[0] != 0) {
                mode_t old_mask;

                /* Create parents */
                mkdir_parents(a->sockaddr.un.sun_path, directory_mode);

                /* Enforce the right access mode for the socket*/
                old_mask = umask(~ socket_mode);

                /* Include the original umask in our mask */
                umask(~socket_mode | old_mask);

                r = bind(fd, &a->sockaddr.sa, a->size);

                if (r < 0 && errno == EADDRINUSE) {
                        /* Unlink and try again */
                        unlink(a->sockaddr.un.sun_path);
                        r = bind(fd, &a->sockaddr.sa, a->size);
                }

                umask(old_mask);
        } else
                r = bind(fd, &a->sockaddr.sa, a->size);

        if (r < 0)
                goto fail;

        if (a->type == SOCK_STREAM)
                if (listen(fd, backlog) < 0)
                        goto fail;

        *ret = fd;
        return 0;

fail:
        r = -errno;
        close_nointr_nofail(fd);
        return r;
}

bool socket_address_can_accept(const SocketAddress *a) {
        assert(a);

        return
                a->type == SOCK_STREAM ||
                a->type == SOCK_SEQPACKET;
}

bool socket_address_equal(const SocketAddress *a, const SocketAddress *b) {
        assert(a);
        assert(b);

        /* Invalid addresses are unequal to all */
        if (socket_address_verify(a) < 0 ||
            socket_address_verify(b) < 0)
                return false;

        if (a->type != b->type)
                return false;

        if (a->size != b->size)
                return false;

        if (socket_address_family(a) != socket_address_family(b))
                return false;

        switch (socket_address_family(a)) {

        case AF_INET:
                if (a->sockaddr.in4.sin_addr.s_addr != b->sockaddr.in4.sin_addr.s_addr)
                        return false;

                if (a->sockaddr.in4.sin_port != b->sockaddr.in4.sin_port)
                        return false;

                break;

        case AF_INET6:
                if (memcmp(&a->sockaddr.in6.sin6_addr, &b->sockaddr.in6.sin6_addr, sizeof(a->sockaddr.in6.sin6_addr)) != 0)
                        return false;

                if (a->sockaddr.in6.sin6_port != b->sockaddr.in6.sin6_port)
                        return false;

                break;

        case AF_UNIX:

                if ((a->sockaddr.un.sun_path[0] == 0) != (b->sockaddr.un.sun_path[0] == 0))
                        return false;

                if (a->sockaddr.un.sun_path[0]) {
                        if (strncmp(a->sockaddr.un.sun_path, b->sockaddr.un.sun_path, sizeof(a->sockaddr.un.sun_path)) != 0)
                                return false;
                } else {
                        if (memcmp(a->sockaddr.un.sun_path, b->sockaddr.un.sun_path, sizeof(a->sockaddr.un.sun_path)) != 0)
                                return false;
                }

                break;

        default:
                /* Cannot compare, so we assume the addresses are different */
                return false;
        }

        return true;
}

bool socket_address_is(const SocketAddress *a, const char *s, int type) {
        struct SocketAddress b;

        assert(a);
        assert(s);

        if (socket_address_parse(&b, s) < 0)
                return false;

        b.type = type;

        return socket_address_equal(a, &b);
}

bool socket_address_needs_mount(const SocketAddress *a, const char *prefix) {
        assert(a);

        if (socket_address_family(a) != AF_UNIX)
                return false;

        if (a->sockaddr.un.sun_path[0] == 0)
                return false;

        return path_startswith(a->sockaddr.un.sun_path, prefix);
}

static const char* const socket_address_bind_ipv6_only_table[_SOCKET_ADDRESS_BIND_IPV6_ONLY_MAX] = {
        [SOCKET_ADDRESS_DEFAULT] = "default",
        [SOCKET_ADDRESS_BOTH] = "both",
        [SOCKET_ADDRESS_IPV6_ONLY] = "ipv6-only"
};

DEFINE_STRING_TABLE_LOOKUP(socket_address_bind_ipv6_only, SocketAddressBindIPv6Only);
Commit	Line	Data
42f4e3c4 LP	1	/-- Mode: C; c-basic-offset: 8 --/
42f4e3c4 LP	2
a7334b09 LP	3	/***
	4	This file is part of systemd.
	5
	6	Copyright 2010 Lennart Poettering
	7
	8	systemd is free software; you can redistribute it and/or modify it
	9	under the terms of the GNU General Public License as published by
	10	the Free Software Foundation; either version 2 of the License, or
	11	(at your option) any later version.
	12
	13	systemd is distributed in the hope that it will be useful, but
	14	WITHOUT ANY WARRANTY; without even the implied warranty of
	15	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	16	General Public License for more details.
	17
	18	You should have received a copy of the GNU General Public License
	19	along with systemd; If not, see <http://www.gnu.org/licenses/>.
	20	***/
	21
42f4e3c4 LP	22	#include <assert.h>
	23	#include <string.h>
	24	#include <unistd.h>
	25	#include <errno.h>
	26	#include <stdlib.h>
	27	#include <arpa/inet.h>
	28	#include <stdio.h>
542563ba	29	#include <net/if.h>
b5a0699f LP	30	#include <sys/types.h>
b5a0699f LP	31	#include <sys/stat.h>
42f4e3c4 LP	32
	33	#include "macro.h"
	34	#include "util.h"
	35	#include "socket-util.h"
16c42ce1	36	#include "missing.h"
42f4e3c4	37
542563ba	38	int socket_address_parse(SocketAddress a, const char s) {
42f4e3c4 LP	39	int r;
	40	char e, n;
	41	unsigned u;
	42
	43	assert(a);
	44	assert(s);
	45
9152c765	46	zero(*a);
542563ba	47	a->type = SOCK_STREAM;
42f4e3c4 LP	48
	49	if (*s == '[') {
	50	/* IPv6 in [x:.....:z]:p notation */
	51
	52	if (!(e = strchr(s+1, ']')))
	53	return -EINVAL;
	54
	55	if (!(n = strndup(s+1, e-s-1)))
	56	return -ENOMEM;
	57
	58	errno = 0;
	59	if (inet_pton(AF_INET6, n, &a->sockaddr.in6.sin6_addr) <= 0) {
	60	free(n);
	61	return errno != 0 ? -errno : -EINVAL;
	62	}
	63
	64	free(n);
	65
	66	e++;
	67	if (*e != ':')
	68	return -EINVAL;
	69
	70	e++;
	71	if ((r = safe_atou(e, &u)) < 0)
	72	return r;
	73
	74	if (u <= 0 \|\| u > 0xFFFF)
	75	return -EINVAL;
	76
	77	a->sockaddr.in6.sin6_family = AF_INET6;
	78	a->sockaddr.in6.sin6_port = htons((uint16_t) u);
	79	a->size = sizeof(struct sockaddr_in6);
42f4e3c4 LP	80
	81	} else if (*s == '/') {
	82	/* AF_UNIX socket */
	83
	84	size_t l;
	85
	86	l = strlen(s);
	87	if (l >= sizeof(a->sockaddr.un.sun_path))
	88	return -EINVAL;
	89
	90	a->sockaddr.un.sun_family = AF_UNIX;
	91	memcpy(a->sockaddr.un.sun_path, s, l);
	92	a->size = sizeof(sa_family_t) + l + 1;
	93
1c24e7bd	94	} else if (*s == '@') {
42f4e3c4 LP	95	/* Abstract AF_UNIX socket */
	96	size_t l;
	97
	98	l = strlen(s+1);
	99	if (l >= sizeof(a->sockaddr.un.sun_path) - 1)
	100	return -EINVAL;
	101
	102	a->sockaddr.un.sun_family = AF_UNIX;
	103	memcpy(a->sockaddr.un.sun_path+1, s+1, l);
	104	a->size = sizeof(struct sockaddr_un);
	105
	106	} else {
	107
	108	if ((e = strchr(s, ':'))) {
542563ba LP	109
	110	if ((r = safe_atou(e+1, &u)) < 0)
	111	return r;
	112
	113	if (u <= 0 \|\| u > 0xFFFF)
	114	return -EINVAL;
42f4e3c4	115
42f4e3c4 LP	116	if (!(n = strndup(s, e-s)))
	117	return -ENOMEM;
	118
542563ba LP	119	/* IPv4 in w.x.y.z:p notation? */
542563ba LP	120	if ((r = inet_pton(AF_INET, n, &a->sockaddr.in4.sin_addr)) < 0) {
42f4e3c4	121	free(n);
542563ba	122	return -errno;
42f4e3c4 LP	123	}
42f4e3c4 LP	124
542563ba LP	125	if (r > 0) {
	126	/* Gotcha, it's a traditional IPv4 address */
	127	free(n);
42f4e3c4	128
542563ba LP	129	a->sockaddr.in4.sin_family = AF_INET;
	130	a->sockaddr.in4.sin_port = htons((uint16_t) u);
	131	a->size = sizeof(struct sockaddr_in);
	132	} else {
	133	unsigned idx;
42f4e3c4	134
acbb0225 LP	135	if (strlen(n) > IF_NAMESIZE-1) {
	136	free(n);
	137	return -EINVAL;
	138	}
	139
542563ba LP	140	/* Uh, our last resort, an interface name */
	141	idx = if_nametoindex(n);
	142	free(n);
	143
83c60c9f	144	if (idx == 0)
542563ba	145	return -EINVAL;
42f4e3c4	146
542563ba LP	147	a->sockaddr.in6.sin6_family = AF_INET6;
	148	a->sockaddr.in6.sin6_port = htons((uint16_t) u);
	149	a->sockaddr.in6.sin6_scope_id = idx;
83c60c9f	150	a->sockaddr.in6.sin6_addr = in6addr_any;
542563ba	151	a->size = sizeof(struct sockaddr_in6);
acbb0225	152
542563ba	153	}
42f4e3c4 LP	154	} else {
	155
	156	/* Just a port */
	157	if ((r = safe_atou(s, &u)) < 0)
	158	return r;
	159
	160	if (u <= 0 \|\| u > 0xFFFF)
	161	return -EINVAL;
	162
	163	a->sockaddr.in6.sin6_family = AF_INET6;
42f4e3c4	164	a->sockaddr.in6.sin6_port = htons((uint16_t) u);
83c60c9f	165	a->sockaddr.in6.sin6_addr = in6addr_any;
42f4e3c4 LP	166	a->size = sizeof(struct sockaddr_in6);
	167	}
	168	}
	169
	170	return 0;
	171	}
	172
542563ba	173	int socket_address_verify(const SocketAddress *a) {
42f4e3c4 LP	174	assert(a);
42f4e3c4 LP	175
542563ba	176	switch (socket_address_family(a)) {
42f4e3c4 LP	177	case AF_INET:
	178	if (a->size != sizeof(struct sockaddr_in))
	179	return -EINVAL;
	180
	181	if (a->sockaddr.in4.sin_port == 0)
	182	return -EINVAL;
	183
	184	return 0;
	185
	186	case AF_INET6:
	187	if (a->size != sizeof(struct sockaddr_in6))
	188	return -EINVAL;
	189
	190	if (a->sockaddr.in6.sin6_port == 0)
	191	return -EINVAL;
	192
	193	return 0;
	194
	195	case AF_UNIX:
	196	if (a->size < sizeof(sa_family_t))
	197	return -EINVAL;
	198
	199	if (a->size > sizeof(sa_family_t)) {
	200
	201	if (a->sockaddr.un.sun_path[0] == 0) {
	202	/* abstract */
	203	if (a->size != sizeof(struct sockaddr_un))
	204	return -EINVAL;
	205	} else {
	206	char *e;
	207
	208	/* path */
	209	if (!(e = memchr(a->sockaddr.un.sun_path, 0, sizeof(a->sockaddr.un.sun_path))))
	210	return -EINVAL;
	211
	212	if (a->size != sizeof(sa_family_t) + (e - a->sockaddr.un.sun_path) + 1)
	213	return -EINVAL;
	214	}
	215	}
	216
	217	return 0;
	218
	219	default:
	220	return -EAFNOSUPPORT;
	221	}
	222	}
	223
542563ba	224	int socket_address_print(const SocketAddress a, char *p) {
42f4e3c4 LP	225	int r;
	226	assert(a);
	227	assert(p);
	228
542563ba	229	if ((r = socket_address_verify(a)) < 0)
42f4e3c4 LP	230	return r;
42f4e3c4 LP	231
542563ba	232	switch (socket_address_family(a)) {
42f4e3c4 LP	233	case AF_INET: {
	234	char *ret;
	235
	236	if (!(ret = new(char, INET_ADDRSTRLEN+1+5+1)))
	237	return -ENOMEM;
	238
	239	if (!inet_ntop(AF_INET, &a->sockaddr.in4.sin_addr, ret, INET_ADDRSTRLEN)) {
	240	free(ret);
	241	return -errno;
	242	}
	243
	244	sprintf(strchr(ret, 0), ":%u", ntohs(a->sockaddr.in4.sin_port));
	245	*p = ret;
	246	return 0;
	247	}
	248
	249	case AF_INET6: {
	250	char *ret;
	251
	252	if (!(ret = new(char, 1+INET6_ADDRSTRLEN+2+5+1)))
	253	return -ENOMEM;
	254
	255	ret[0] = '[';
	256	if (!inet_ntop(AF_INET6, &a->sockaddr.in6.sin6_addr, ret+1, INET6_ADDRSTRLEN)) {
	257	free(ret);
	258	return -errno;
	259	}
	260
	261	sprintf(strchr(ret, 0), "]:%u", ntohs(a->sockaddr.in6.sin6_port));
	262	*p = ret;
	263	return 0;
	264	}
	265
	266	case AF_UNIX: {
	267	char *ret;
	268
	269	if (a->size <= sizeof(sa_family_t)) {
	270
	271	if (!(ret = strdup("<unamed>")))
	272	return -ENOMEM;
	273
	274	} else if (a->sockaddr.un.sun_path[0] == 0) {
	275	/* abstract */
	276
	277	/* FIXME: We assume we can print the
	278	* socket path here and that it hasn't
	279	* more than one NUL byte. That is
	280	* actually an invalid assumption */
	281
	282	if (!(ret = new(char, sizeof(a->sockaddr.un.sun_path)+1)))
	283	return -ENOMEM;
	284
1c24e7bd	285	ret[0] = '@';
42f4e3c4 LP	286	memcpy(ret+1, a->sockaddr.un.sun_path+1, sizeof(a->sockaddr.un.sun_path)-1);
	287	ret[sizeof(a->sockaddr.un.sun_path)] = 0;
	288
	289	} else {
	290
	291	if (!(ret = strdup(a->sockaddr.un.sun_path)))
	292	return -ENOMEM;
	293	}
	294
	295	*p = ret;
	296	return 0;
	297	}
	298
	299	default:
	300	return -EINVAL;
	301	}
	302	}
	303
b5a0699f LP	304	int socket_address_listen(
	305	const SocketAddress *a,
	306	int backlog,
	307	SocketAddressBindIPv6Only only,
	308	const char *bind_to_device,
4fd5948e	309	bool free_bind,
b5a0699f LP	310	mode_t directory_mode,
	311	mode_t socket_mode,
	312	int *ret) {
	313
acbb0225	314	int r, fd, one;
42f4e3c4	315	assert(a);
83c60c9f	316	assert(ret);
42f4e3c4	317
542563ba	318	if ((r = socket_address_verify(a)) < 0)
42f4e3c4 LP	319	return r;
42f4e3c4 LP	320
a16e1123	321	if ((fd = socket(socket_address_family(a), a->type \| SOCK_NONBLOCK \| SOCK_CLOEXEC, 0)) < 0)
42f4e3c4 LP	322	return -errno;
42f4e3c4 LP	323
542563ba LP	324	if (socket_address_family(a) == AF_INET6 && only != SOCKET_ADDRESS_DEFAULT) {
	325	int flag = only == SOCKET_ADDRESS_IPV6_ONLY;
	326
acbb0225 LP	327	if (setsockopt(fd, IPPROTO_IPV6, IPV6_V6ONLY, &flag, sizeof(flag)) < 0)
acbb0225 LP	328	goto fail;
542563ba LP	329	}
542563ba LP	330
acbb0225 LP	331	if (bind_to_device)
	332	if (setsockopt(fd, SOL_SOCKET, SO_BINDTODEVICE, bind_to_device, strlen(bind_to_device)+1) < 0)
	333	goto fail;
	334
4fd5948e LP	335	if (free_bind) {
	336	one = 1;
	337	if (setsockopt(fd, IPPROTO_IP, IP_FREEBIND, &one, sizeof(one)) < 0)
	338	log_warning("IP_FREEBIND failed: %m");
	339	}
	340
acbb0225 LP	341	one = 1;
	342	if (setsockopt(fd, SOL_SOCKET, SO_REUSEADDR, &one, sizeof(one)) < 0)
	343	goto fail;
	344
b5a0699f LP	345	if (socket_address_family(a) == AF_UNIX && a->sockaddr.un.sun_path[0] != 0) {
	346	mode_t old_mask;
	347
	348	/* Create parents */
	349	mkdir_parents(a->sockaddr.un.sun_path, directory_mode);
	350
	351	/* Enforce the right access mode for the socket*/
	352	old_mask = umask(~ socket_mode);
	353
	354	/* Include the original umask in our mask */
	355	umask(~socket_mode \| old_mask);
	356
	357	r = bind(fd, &a->sockaddr.sa, a->size);
	358
	359	if (r < 0 && errno == EADDRINUSE) {
	360	/* Unlink and try again */
	361	unlink(a->sockaddr.un.sun_path);
	362	r = bind(fd, &a->sockaddr.sa, a->size);
	363	}
	364
	365	umask(old_mask);
	366	} else
	367	r = bind(fd, &a->sockaddr.sa, a->size);
	368
	369	if (r < 0)
acbb0225	370	goto fail;
42f4e3c4 LP	371
42f4e3c4 LP	372	if (a->type == SOCK_STREAM)
acbb0225 LP	373	if (listen(fd, backlog) < 0)
acbb0225 LP	374	goto fail;
42f4e3c4	375
83c60c9f	376	*ret = fd;
42f4e3c4	377	return 0;
acbb0225 LP	378
	379	fail:
	380	r = -errno;
a16e1123	381	close_nointr_nofail(fd);
acbb0225	382	return r;
42f4e3c4	383	}
4f2d528d LP	384
	385	bool socket_address_can_accept(const SocketAddress *a) {
	386	assert(a);
	387
	388	return
	389	a->type == SOCK_STREAM \|\|
	390	a->type == SOCK_SEQPACKET;
	391	}
a16e1123 LP	392
	393	bool socket_address_equal(const SocketAddress a, const SocketAddress b) {
	394	assert(a);
	395	assert(b);
	396
	397	/* Invalid addresses are unequal to all */
	398	if (socket_address_verify(a) < 0 \|\|
	399	socket_address_verify(b) < 0)
	400	return false;
	401
	402	if (a->type != b->type)
	403	return false;
	404
	405	if (a->size != b->size)
	406	return false;
	407
	408	if (socket_address_family(a) != socket_address_family(b))
	409	return false;
	410
	411	switch (socket_address_family(a)) {
	412
	413	case AF_INET:
	414	if (a->sockaddr.in4.sin_addr.s_addr != b->sockaddr.in4.sin_addr.s_addr)
	415	return false;
	416
	417	if (a->sockaddr.in4.sin_port != b->sockaddr.in4.sin_port)
	418	return false;
	419
	420	break;
	421
	422	case AF_INET6:
	423	if (memcmp(&a->sockaddr.in6.sin6_addr, &b->sockaddr.in6.sin6_addr, sizeof(a->sockaddr.in6.sin6_addr)) != 0)
	424	return false;
	425
	426	if (a->sockaddr.in6.sin6_port != b->sockaddr.in6.sin6_port)
	427	return false;
	428
	429	break;
	430
	431	case AF_UNIX:
	432
	433	if ((a->sockaddr.un.sun_path[0] == 0) != (b->sockaddr.un.sun_path[0] == 0))
	434	return false;
	435
	436	if (a->sockaddr.un.sun_path[0]) {
	437	if (strncmp(a->sockaddr.un.sun_path, b->sockaddr.un.sun_path, sizeof(a->sockaddr.un.sun_path)) != 0)
	438	return false;
	439	} else {
	440	if (memcmp(a->sockaddr.un.sun_path, b->sockaddr.un.sun_path, sizeof(a->sockaddr.un.sun_path)) != 0)
	441	return false;
	442	}
	443
	444	break;
	445
	446	default:
	447	/* Cannot compare, so we assume the addresses are different */
	448	return false;
	449	}
	450
	451	return true;
	452	}
	453
27ca8d7a	454	bool socket_address_is(const SocketAddress a, const char s, int type) {
a16e1123 LP	455	struct SocketAddress b;
	456
	457	assert(a);
	458	assert(s);
	459
	460	if (socket_address_parse(&b, s) < 0)
	461	return false;
	462
27ca8d7a LP	463	b.type = type;
27ca8d7a LP	464
a16e1123	465	return socket_address_equal(a, &b);
6e2ef85b LP	466	}
	467
	468	bool socket_address_needs_mount(const SocketAddress a, const char prefix) {
	469	assert(a);
	470
	471	if (socket_address_family(a) != AF_UNIX)
	472	return false;
	473
	474	if (a->sockaddr.un.sun_path[0] == 0)
	475	return false;
a16e1123	476
6e2ef85b	477	return path_startswith(a->sockaddr.un.sun_path, prefix);
a16e1123	478	}
c0120d99 LP	479
	480	static const char* const socket_address_bind_ipv6_only_table[_SOCKET_ADDRESS_BIND_IPV6_ONLY_MAX] = {
	481	[SOCKET_ADDRESS_DEFAULT] = "default",
	482	[SOCKET_ADDRESS_BOTH] = "both",
	483	[SOCKET_ADDRESS_IPV6_ONLY] = "ipv6-only"
	484	};
	485
	486	DEFINE_STRING_TABLE_LOOKUP(socket_address_bind_ipv6_only, SocketAddressBindIPv6Only);