1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
32 #include "selinux-util.h"
33 #include "socket-util.h"
36 int socket_address_listen(
37 const SocketAddress
*a
,
40 SocketAddressBindIPv6Only only
,
41 const char *bind_to_device
,
45 mode_t directory_mode
,
49 _cleanup_close_
int fd
= -1;
54 r
= socket_address_verify(a
);
58 if (socket_address_family(a
) == AF_INET6
&& !socket_ipv6_is_supported())
62 r
= mac_selinux_create_socket_prepare(label
);
67 fd
= socket(socket_address_family(a
), a
->type
| flags
, a
->protocol
);
68 r
= fd
< 0 ? -errno
: 0;
71 mac_selinux_create_socket_clear();
76 if (socket_address_family(a
) == AF_INET6
&& only
!= SOCKET_ADDRESS_DEFAULT
) {
77 int flag
= only
== SOCKET_ADDRESS_IPV6_ONLY
;
79 if (setsockopt(fd
, IPPROTO_IPV6
, IPV6_V6ONLY
, &flag
, sizeof(flag
)) < 0)
83 if (socket_address_family(a
) == AF_INET
|| socket_address_family(a
) == AF_INET6
) {
85 if (setsockopt(fd
, SOL_SOCKET
, SO_BINDTODEVICE
, bind_to_device
, strlen(bind_to_device
)+1) < 0)
90 if (setsockopt(fd
, SOL_SOCKET
, SO_REUSEPORT
, &one
, sizeof(one
)) < 0)
91 log_warning_errno(errno
, "SO_REUSEPORT failed: %m");
96 if (setsockopt(fd
, IPPROTO_IP
, IP_FREEBIND
, &one
, sizeof(one
)) < 0)
97 log_warning_errno(errno
, "IP_FREEBIND failed: %m");
102 if (setsockopt(fd
, IPPROTO_IP
, IP_TRANSPARENT
, &one
, sizeof(one
)) < 0)
103 log_warning_errno(errno
, "IP_TRANSPARENT failed: %m");
108 if (setsockopt(fd
, SOL_SOCKET
, SO_REUSEADDR
, &one
, sizeof(one
)) < 0)
111 if (socket_address_family(a
) == AF_UNIX
&& a
->sockaddr
.un
.sun_path
[0] != 0) {
115 mkdir_parents_label(a
->sockaddr
.un
.sun_path
, directory_mode
);
117 /* Enforce the right access mode for the socket */
118 old_mask
= umask(~ socket_mode
);
120 r
= mac_selinux_bind(fd
, &a
->sockaddr
.sa
, a
->size
);
122 if (r
< 0 && errno
== EADDRINUSE
) {
123 /* Unlink and try again */
124 unlink(a
->sockaddr
.un
.sun_path
);
125 r
= bind(fd
, &a
->sockaddr
.sa
, a
->size
);
130 r
= bind(fd
, &a
->sockaddr
.sa
, a
->size
);
135 if (socket_address_can_accept(a
))
136 if (listen(fd
, backlog
) < 0)
145 int make_socket_fd(int log_level
, const char* address
, int flags
) {
149 r
= socket_address_parse(&a
, address
);
151 return log_error_errno(r
, "Failed to parse socket address \"%s\": %m", address
);
153 fd
= socket_address_listen(&a
, flags
, SOMAXCONN
, SOCKET_ADDRESS_DEFAULT
,
154 NULL
, false, false, false, 0755, 0644, NULL
);
155 if (fd
< 0 || log_get_max_level() >= log_level
) {
156 _cleanup_free_
char *p
= NULL
;
158 r
= socket_address_print(&a
, &p
);
160 return log_error_errno(r
, "socket_address_print(): %m");
163 log_error_errno(fd
, "Failed to listen on %s: %m", p
);
165 log_full(log_level
, "Listening on %s", p
);