2 * SPDX-License-Identifier: BSD-3-Clause
4 * Copyright (c) 1982, 1986, 1989, 1990, 1993
5 * The Regents of the University of California. All rights reserved.
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 * 3. Neither the name of the University nor the names of its contributors
16 * may be used to endorse or promote products derived from this software
17 * without specific prior written permission.
19 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
20 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
21 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
22 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
23 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
24 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
25 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
26 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
27 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
28 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * @(#)uipc_syscalls.c 8.4 (Berkeley) 2/21/94
34 #include <sys/cdefs.h>
35 __FBSDID("$FreeBSD$");
37 #include "opt_capsicum.h"
39 #include "opt_inet6.h"
40 #include "opt_ktrace.h"
42 #include <sys/param.h>
43 #include <sys/systm.h>
44 #include <sys/capsicum.h>
45 #include <sys/kernel.h>
47 #include <sys/mutex.h>
48 #include <sys/sysproto.h>
49 #include <sys/malloc.h>
50 #include <sys/filedesc.h>
52 #include <sys/filio.h>
55 #include <sys/protosw.h>
56 #include <sys/rwlock.h>
57 #include <sys/socket.h>
58 #include <sys/socketvar.h>
59 #include <sys/syscallsubr.h>
62 #include <sys/ktrace.h>
64 #ifdef COMPAT_FREEBSD32
65 #include <compat/freebsd32/freebsd32_util.h>
70 #include <security/audit/audit.h>
71 #include <security/mac/mac_framework.h>
73 static int sendit(struct thread *td, int s, struct msghdr *mp, int flags);
74 static int recvit(struct thread *td, int s, struct msghdr *mp, void *namelenp);
76 static int accept1(struct thread *td, int s, struct sockaddr *uname,
77 socklen_t *anamelen, int flags);
78 static int getsockname1(struct thread *td, struct getsockname_args *uap,
80 static int getpeername1(struct thread *td, struct getpeername_args *uap,
82 static int sockargs(struct mbuf **, char *, socklen_t, int);
85 * Convert a user file descriptor to a kernel file entry and check if required
86 * capability rights are present.
87 * If required copy of current set of capability rights is returned.
88 * A reference on the file entry is held upon returning.
91 getsock_cap(struct thread *td, int fd, cap_rights_t *rightsp,
92 struct file **fpp, u_int *fflagp, struct filecaps *havecapsp)
97 error = fget_cap(td, fd, rightsp, &fp, havecapsp);
100 if (fp->f_type != DTYPE_SOCKET) {
102 if (havecapsp != NULL)
103 filecaps_free(havecapsp);
107 *fflagp = fp->f_flag;
113 * System call interface to the socket abstraction.
115 #if defined(COMPAT_43)
116 #define COMPAT_OLDSOCK
120 sys_socket(struct thread *td, struct socket_args *uap)
123 return (kern_socket(td, uap->domain, uap->type, uap->protocol));
127 kern_socket(struct thread *td, int domain, int type, int protocol)
131 int fd, error, oflag, fflag;
133 AUDIT_ARG_SOCKET(domain, type, protocol);
137 if ((type & SOCK_CLOEXEC) != 0) {
138 type &= ~SOCK_CLOEXEC;
141 if ((type & SOCK_NONBLOCK) != 0) {
142 type &= ~SOCK_NONBLOCK;
147 error = mac_socket_check_create(td->td_ucred, domain, type, protocol);
151 error = falloc(td, &fp, &fd, oflag);
154 /* An extra reference on `fp' has been held for us by falloc(). */
155 error = socreate(domain, &so, type, protocol, td->td_ucred, td);
159 finit(fp, FREAD | FWRITE | fflag, DTYPE_SOCKET, so, &socketops);
160 if ((fflag & FNONBLOCK) != 0)
161 (void) fo_ioctl(fp, FIONBIO, &fflag, td->td_ucred, td);
162 td->td_retval[0] = fd;
169 sys_bind(struct thread *td, struct bind_args *uap)
174 error = getsockaddr(&sa, uap->name, uap->namelen);
176 error = kern_bindat(td, AT_FDCWD, uap->s, sa);
183 kern_bindat(struct thread *td, int dirfd, int fd, struct sockaddr *sa)
190 #ifdef CAPABILITY_MODE
191 if (IN_CAPABILITY_MODE(td) && (dirfd == AT_FDCWD))
196 AUDIT_ARG_SOCKADDR(td, dirfd, sa);
197 error = getsock_cap(td, fd, cap_rights_init(&rights, CAP_BIND),
203 if (KTRPOINT(td, KTR_STRUCT))
207 error = mac_socket_check_bind(td->td_ucred, so, sa);
210 if (dirfd == AT_FDCWD)
211 error = sobind(so, sa, td);
213 error = sobindat(dirfd, so, sa, td);
222 sys_bindat(struct thread *td, struct bindat_args *uap)
227 error = getsockaddr(&sa, uap->name, uap->namelen);
229 error = kern_bindat(td, uap->fd, uap->s, sa);
236 sys_listen(struct thread *td, struct listen_args *uap)
239 return (kern_listen(td, uap->s, uap->backlog));
243 kern_listen(struct thread *td, int s, int backlog)
251 error = getsock_cap(td, s, cap_rights_init(&rights, CAP_LISTEN),
256 error = mac_socket_check_listen(td->td_ucred, so);
259 error = solisten(so, backlog, td);
269 accept1(td, s, uname, anamelen, flags)
272 struct sockaddr *uname;
276 struct sockaddr *name;
282 return (kern_accept4(td, s, NULL, NULL, flags, NULL));
284 error = copyin(anamelen, &namelen, sizeof (namelen));
288 error = kern_accept4(td, s, &name, &namelen, flags, &fp);
293 if (error == 0 && uname != NULL) {
294 #ifdef COMPAT_OLDSOCK
295 if (flags & ACCEPT4_COMPAT)
296 ((struct osockaddr *)name)->sa_family =
299 error = copyout(name, uname, namelen);
302 error = copyout(&namelen, anamelen,
305 fdclose(td, fp, td->td_retval[0]);
307 free(name, M_SONAME);
312 kern_accept(struct thread *td, int s, struct sockaddr **name,
313 socklen_t *namelen, struct file **fp)
315 return (kern_accept4(td, s, name, namelen, ACCEPT4_INHERIT, fp));
319 kern_accept4(struct thread *td, int s, struct sockaddr **name,
320 socklen_t *namelen, int flags, struct file **fp)
322 struct file *headfp, *nfp = NULL;
323 struct sockaddr *sa = NULL;
324 struct socket *head, *so;
325 struct filecaps fcaps;
335 error = getsock_cap(td, s, cap_rights_init(&rights, CAP_ACCEPT),
336 &headfp, &fflag, &fcaps);
339 head = headfp->f_data;
340 if ((head->so_options & SO_ACCEPTCONN) == 0) {
345 error = mac_socket_check_accept(td->td_ucred, head);
349 error = falloc_caps(td, &nfp, &fd,
350 (flags & SOCK_CLOEXEC) ? O_CLOEXEC : 0, &fcaps);
354 if (!SOLISTENING(head)) {
360 error = solisten_dequeue(head, &so, flags);
364 /* An extra reference on `nfp' has been held for us by falloc(). */
365 td->td_retval[0] = fd;
367 /* Connection has been removed from the listen queue. */
368 KNOTE_UNLOCKED(&head->so_rdsel.si_note, 0);
370 if (flags & ACCEPT4_INHERIT) {
371 pgid = fgetown(&head->so_sigio);
373 fsetown(pgid, &so->so_sigio);
375 fflag &= ~(FNONBLOCK | FASYNC);
376 if (flags & SOCK_NONBLOCK)
380 finit(nfp, fflag, DTYPE_SOCKET, so, &socketops);
381 /* Sync socket nonblocking/async state with file flags */
382 tmp = fflag & FNONBLOCK;
383 (void) fo_ioctl(nfp, FIONBIO, &tmp, td->td_ucred, td);
384 tmp = fflag & FASYNC;
385 (void) fo_ioctl(nfp, FIOASYNC, &tmp, td->td_ucred, td);
386 error = soaccept(so, &sa);
394 AUDIT_ARG_SOCKADDR(td, AT_FDCWD, sa);
396 /* check sa_len before it is destroyed */
397 if (*namelen > sa->sa_len)
398 *namelen = sa->sa_len;
400 if (KTRPOINT(td, KTR_STRUCT))
410 * close the new descriptor, assuming someone hasn't ripped it
414 fdclose(td, nfp, fd);
417 * Release explicitly held references before returning. We return
418 * a reference on nfp to the caller on success if they request it.
422 filecaps_free(&fcaps);
439 struct accept_args *uap;
442 return (accept1(td, uap->s, uap->name, uap->anamelen, ACCEPT4_INHERIT));
448 struct accept4_args *uap;
451 if (uap->flags & ~(SOCK_CLOEXEC | SOCK_NONBLOCK))
454 return (accept1(td, uap->s, uap->name, uap->anamelen, uap->flags));
457 #ifdef COMPAT_OLDSOCK
461 struct accept_args *uap;
464 return (accept1(td, uap->s, uap->name, uap->anamelen,
465 ACCEPT4_INHERIT | ACCEPT4_COMPAT));
467 #endif /* COMPAT_OLDSOCK */
470 sys_connect(struct thread *td, struct connect_args *uap)
475 error = getsockaddr(&sa, uap->name, uap->namelen);
477 error = kern_connectat(td, AT_FDCWD, uap->s, sa);
484 kern_connectat(struct thread *td, int dirfd, int fd, struct sockaddr *sa)
489 int error, interrupted = 0;
491 #ifdef CAPABILITY_MODE
492 if (IN_CAPABILITY_MODE(td) && (dirfd == AT_FDCWD))
497 AUDIT_ARG_SOCKADDR(td, dirfd, sa);
498 error = getsock_cap(td, fd, cap_rights_init(&rights, CAP_CONNECT),
503 if (so->so_state & SS_ISCONNECTING) {
508 if (KTRPOINT(td, KTR_STRUCT))
512 error = mac_socket_check_connect(td->td_ucred, so, sa);
516 if (dirfd == AT_FDCWD)
517 error = soconnect(so, sa, td);
519 error = soconnectat(dirfd, so, sa, td);
522 if ((so->so_state & SS_NBIO) && (so->so_state & SS_ISCONNECTING)) {
527 while ((so->so_state & SS_ISCONNECTING) && so->so_error == 0) {
528 error = msleep(&so->so_timeo, &so->so_lock, PSOCK | PCATCH,
531 if (error == EINTR || error == ERESTART)
537 error = so->so_error;
543 so->so_state &= ~SS_ISCONNECTING;
544 if (error == ERESTART)
552 sys_connectat(struct thread *td, struct connectat_args *uap)
557 error = getsockaddr(&sa, uap->name, uap->namelen);
559 error = kern_connectat(td, uap->fd, uap->s, sa);
566 kern_socketpair(struct thread *td, int domain, int type, int protocol,
569 struct file *fp1, *fp2;
570 struct socket *so1, *so2;
571 int fd, error, oflag, fflag;
573 AUDIT_ARG_SOCKET(domain, type, protocol);
577 if ((type & SOCK_CLOEXEC) != 0) {
578 type &= ~SOCK_CLOEXEC;
581 if ((type & SOCK_NONBLOCK) != 0) {
582 type &= ~SOCK_NONBLOCK;
586 /* We might want to have a separate check for socket pairs. */
587 error = mac_socket_check_create(td->td_ucred, domain, type,
592 error = socreate(domain, &so1, type, protocol, td->td_ucred, td);
595 error = socreate(domain, &so2, type, protocol, td->td_ucred, td);
598 /* On success extra reference to `fp1' and 'fp2' is set by falloc. */
599 error = falloc(td, &fp1, &fd, oflag);
603 fp1->f_data = so1; /* so1 already has ref count */
604 error = falloc(td, &fp2, &fd, oflag);
607 fp2->f_data = so2; /* so2 already has ref count */
609 error = soconnect2(so1, so2);
612 if (type == SOCK_DGRAM) {
614 * Datagram socket connection is asymmetric.
616 error = soconnect2(so2, so1);
620 finit(fp1, FREAD | FWRITE | fflag, DTYPE_SOCKET, fp1->f_data,
622 finit(fp2, FREAD | FWRITE | fflag, DTYPE_SOCKET, fp2->f_data,
624 if ((fflag & FNONBLOCK) != 0) {
625 (void) fo_ioctl(fp1, FIONBIO, &fflag, td->td_ucred, td);
626 (void) fo_ioctl(fp2, FIONBIO, &fflag, td->td_ucred, td);
632 fdclose(td, fp2, rsv[1]);
635 fdclose(td, fp1, rsv[0]);
647 sys_socketpair(struct thread *td, struct socketpair_args *uap)
651 error = kern_socketpair(td, uap->domain, uap->type,
655 error = copyout(sv, uap->rsv, 2 * sizeof(int));
657 (void)kern_close(td, sv[0]);
658 (void)kern_close(td, sv[1]);
664 sendit(struct thread *td, int s, struct msghdr *mp, int flags)
666 struct mbuf *control;
670 #ifdef CAPABILITY_MODE
671 if (IN_CAPABILITY_MODE(td) && (mp->msg_name != NULL))
675 if (mp->msg_name != NULL) {
676 error = getsockaddr(&to, mp->msg_name, mp->msg_namelen);
686 if (mp->msg_control) {
687 if (mp->msg_controllen < sizeof(struct cmsghdr)
688 #ifdef COMPAT_OLDSOCK
689 && mp->msg_flags != MSG_COMPAT
695 error = sockargs(&control, mp->msg_control,
696 mp->msg_controllen, MT_CONTROL);
699 #ifdef COMPAT_OLDSOCK
700 if (mp->msg_flags == MSG_COMPAT) {
703 M_PREPEND(control, sizeof(*cm), M_WAITOK);
704 cm = mtod(control, struct cmsghdr *);
705 cm->cmsg_len = control->m_len;
706 cm->cmsg_level = SOL_SOCKET;
707 cm->cmsg_type = SCM_RIGHTS;
714 error = kern_sendit(td, s, mp, flags, control, UIO_USERSPACE);
722 kern_sendit(struct thread *td, int s, struct msghdr *mp, int flags,
723 struct mbuf *control, enum uio_seg segflg)
731 struct uio *ktruio = NULL;
737 cap_rights_init(&rights, CAP_SEND);
738 if (mp->msg_name != NULL) {
739 AUDIT_ARG_SOCKADDR(td, AT_FDCWD, mp->msg_name);
740 cap_rights_set(&rights, CAP_CONNECT);
742 error = getsock_cap(td, s, &rights, &fp, NULL, NULL);
747 so = (struct socket *)fp->f_data;
750 if (mp->msg_name != NULL && KTRPOINT(td, KTR_STRUCT))
751 ktrsockaddr(mp->msg_name);
754 if (mp->msg_name != NULL) {
755 error = mac_socket_check_connect(td->td_ucred, so,
762 error = mac_socket_check_send(td->td_ucred, so);
769 auio.uio_iov = mp->msg_iov;
770 auio.uio_iovcnt = mp->msg_iovlen;
771 auio.uio_segflg = segflg;
772 auio.uio_rw = UIO_WRITE;
774 auio.uio_offset = 0; /* XXX */
777 for (i = 0; i < mp->msg_iovlen; i++, iov++) {
778 if ((auio.uio_resid += iov->iov_len) < 0) {
785 if (KTRPOINT(td, KTR_GENIO))
786 ktruio = cloneuio(&auio);
788 len = auio.uio_resid;
789 error = sosend(so, mp->msg_name, &auio, 0, control, flags, td);
791 if (auio.uio_resid != len && (error == ERESTART ||
792 error == EINTR || error == EWOULDBLOCK))
794 /* Generation of SIGPIPE can be controlled per socket */
795 if (error == EPIPE && !(so->so_options & SO_NOSIGPIPE) &&
796 !(flags & MSG_NOSIGNAL)) {
797 PROC_LOCK(td->td_proc);
798 tdsignal(td, SIGPIPE);
799 PROC_UNLOCK(td->td_proc);
803 td->td_retval[0] = len - auio.uio_resid;
805 if (ktruio != NULL) {
806 ktruio->uio_resid = td->td_retval[0];
807 ktrgenio(s, UIO_WRITE, ktruio, error);
816 sys_sendto(struct thread *td, struct sendto_args *uap)
821 msg.msg_name = uap->to;
822 msg.msg_namelen = uap->tolen;
826 #ifdef COMPAT_OLDSOCK
829 aiov.iov_base = uap->buf;
830 aiov.iov_len = uap->len;
831 return (sendit(td, uap->s, &msg, uap->flags));
834 #ifdef COMPAT_OLDSOCK
836 osend(struct thread *td, struct osend_args *uap)
845 aiov.iov_base = uap->buf;
846 aiov.iov_len = uap->len;
849 return (sendit(td, uap->s, &msg, uap->flags));
853 osendmsg(struct thread *td, struct osendmsg_args *uap)
859 error = copyin(uap->msg, &msg, sizeof (struct omsghdr));
862 error = copyiniov(msg.msg_iov, msg.msg_iovlen, &iov, EMSGSIZE);
866 msg.msg_flags = MSG_COMPAT;
867 error = sendit(td, uap->s, &msg, uap->flags);
874 sys_sendmsg(struct thread *td, struct sendmsg_args *uap)
880 error = copyin(uap->msg, &msg, sizeof (msg));
883 error = copyiniov(msg.msg_iov, msg.msg_iovlen, &iov, EMSGSIZE);
887 #ifdef COMPAT_OLDSOCK
890 error = sendit(td, uap->s, &msg, uap->flags);
896 kern_recvit(struct thread *td, int s, struct msghdr *mp, enum uio_seg fromseg,
897 struct mbuf **controlp)
901 struct mbuf *m, *control = NULL;
905 struct sockaddr *fromsa = NULL;
908 struct uio *ktruio = NULL;
913 if (controlp != NULL)
917 error = getsock_cap(td, s, cap_rights_init(&rights, CAP_RECV),
924 error = mac_socket_check_receive(td->td_ucred, so);
931 auio.uio_iov = mp->msg_iov;
932 auio.uio_iovcnt = mp->msg_iovlen;
933 auio.uio_segflg = UIO_USERSPACE;
934 auio.uio_rw = UIO_READ;
936 auio.uio_offset = 0; /* XXX */
939 for (i = 0; i < mp->msg_iovlen; i++, iov++) {
940 if ((auio.uio_resid += iov->iov_len) < 0) {
946 if (KTRPOINT(td, KTR_GENIO))
947 ktruio = cloneuio(&auio);
949 len = auio.uio_resid;
950 error = soreceive(so, &fromsa, &auio, NULL,
951 (mp->msg_control || controlp) ? &control : NULL,
954 if (auio.uio_resid != len && (error == ERESTART ||
955 error == EINTR || error == EWOULDBLOCK))
959 AUDIT_ARG_SOCKADDR(td, AT_FDCWD, fromsa);
961 if (ktruio != NULL) {
962 ktruio->uio_resid = len - auio.uio_resid;
963 ktrgenio(s, UIO_READ, ktruio, error);
968 td->td_retval[0] = len - auio.uio_resid;
970 len = mp->msg_namelen;
971 if (len <= 0 || fromsa == NULL)
974 /* save sa_len before it is destroyed by MSG_COMPAT */
975 len = MIN(len, fromsa->sa_len);
976 #ifdef COMPAT_OLDSOCK
977 if (mp->msg_flags & MSG_COMPAT)
978 ((struct osockaddr *)fromsa)->sa_family =
981 if (fromseg == UIO_USERSPACE) {
982 error = copyout(fromsa, mp->msg_name,
987 bcopy(fromsa, mp->msg_name, len);
989 mp->msg_namelen = len;
991 if (mp->msg_control && controlp == NULL) {
992 #ifdef COMPAT_OLDSOCK
994 * We assume that old recvmsg calls won't receive access
995 * rights and other control info, esp. as control info
996 * is always optional and those options didn't exist in 4.3.
997 * If we receive rights, trim the cmsghdr; anything else
1000 if (control && mp->msg_flags & MSG_COMPAT) {
1001 if (mtod(control, struct cmsghdr *)->cmsg_level !=
1003 mtod(control, struct cmsghdr *)->cmsg_type !=
1005 mp->msg_controllen = 0;
1008 control->m_len -= sizeof (struct cmsghdr);
1009 control->m_data += sizeof (struct cmsghdr);
1012 len = mp->msg_controllen;
1014 mp->msg_controllen = 0;
1015 ctlbuf = mp->msg_control;
1017 while (m && len > 0) {
1018 unsigned int tocopy;
1020 if (len >= m->m_len)
1023 mp->msg_flags |= MSG_CTRUNC;
1027 if ((error = copyout(mtod(m, caddr_t),
1028 ctlbuf, tocopy)) != 0)
1035 mp->msg_controllen = ctlbuf - (caddr_t)mp->msg_control;
1040 if (fromsa && KTRPOINT(td, KTR_STRUCT))
1041 ktrsockaddr(fromsa);
1043 free(fromsa, M_SONAME);
1045 if (error == 0 && controlp != NULL)
1046 *controlp = control;
1054 recvit(struct thread *td, int s, struct msghdr *mp, void *namelenp)
1058 error = kern_recvit(td, s, mp, UIO_USERSPACE, NULL);
1061 if (namelenp != NULL) {
1062 error = copyout(&mp->msg_namelen, namelenp, sizeof (socklen_t));
1063 #ifdef COMPAT_OLDSOCK
1064 if (mp->msg_flags & MSG_COMPAT)
1065 error = 0; /* old recvfrom didn't check */
1072 sys_recvfrom(struct thread *td, struct recvfrom_args *uap)
1078 if (uap->fromlenaddr) {
1079 error = copyin(uap->fromlenaddr,
1080 &msg.msg_namelen, sizeof (msg.msg_namelen));
1084 msg.msg_namelen = 0;
1086 msg.msg_name = uap->from;
1087 msg.msg_iov = &aiov;
1089 aiov.iov_base = uap->buf;
1090 aiov.iov_len = uap->len;
1091 msg.msg_control = 0;
1092 msg.msg_flags = uap->flags;
1093 error = recvit(td, uap->s, &msg, uap->fromlenaddr);
1098 #ifdef COMPAT_OLDSOCK
1100 orecvfrom(struct thread *td, struct recvfrom_args *uap)
1103 uap->flags |= MSG_COMPAT;
1104 return (sys_recvfrom(td, uap));
1108 #ifdef COMPAT_OLDSOCK
1110 orecv(struct thread *td, struct orecv_args *uap)
1116 msg.msg_namelen = 0;
1117 msg.msg_iov = &aiov;
1119 aiov.iov_base = uap->buf;
1120 aiov.iov_len = uap->len;
1121 msg.msg_control = 0;
1122 msg.msg_flags = uap->flags;
1123 return (recvit(td, uap->s, &msg, NULL));
1127 * Old recvmsg. This code takes advantage of the fact that the old msghdr
1128 * overlays the new one, missing only the flags, and with the (old) access
1129 * rights where the control fields are now.
1132 orecvmsg(struct thread *td, struct orecvmsg_args *uap)
1138 error = copyin(uap->msg, &msg, sizeof (struct omsghdr));
1141 error = copyiniov(msg.msg_iov, msg.msg_iovlen, &iov, EMSGSIZE);
1144 msg.msg_flags = uap->flags | MSG_COMPAT;
1146 error = recvit(td, uap->s, &msg, &uap->msg->msg_namelen);
1147 if (msg.msg_controllen && error == 0)
1148 error = copyout(&msg.msg_controllen,
1149 &uap->msg->msg_accrightslen, sizeof (int));
1156 sys_recvmsg(struct thread *td, struct recvmsg_args *uap)
1159 struct iovec *uiov, *iov;
1162 error = copyin(uap->msg, &msg, sizeof (msg));
1165 error = copyiniov(msg.msg_iov, msg.msg_iovlen, &iov, EMSGSIZE);
1168 msg.msg_flags = uap->flags;
1169 #ifdef COMPAT_OLDSOCK
1170 msg.msg_flags &= ~MSG_COMPAT;
1174 error = recvit(td, uap->s, &msg, NULL);
1177 error = copyout(&msg, uap->msg, sizeof(msg));
1184 sys_shutdown(struct thread *td, struct shutdown_args *uap)
1187 return (kern_shutdown(td, uap->s, uap->how));
1191 kern_shutdown(struct thread *td, int s, int how)
1195 cap_rights_t rights;
1199 error = getsock_cap(td, s, cap_rights_init(&rights, CAP_SHUTDOWN),
1203 error = soshutdown(so, how);
1205 * Previous versions did not return ENOTCONN, but 0 in
1206 * case the socket was not connected. Some important
1207 * programs like syslogd up to r279016, 2015-02-19,
1208 * still depend on this behavior.
1210 if (error == ENOTCONN &&
1211 td->td_proc->p_osrel < P_OSREL_SHUTDOWN_ENOTCONN)
1219 sys_setsockopt(struct thread *td, struct setsockopt_args *uap)
1222 return (kern_setsockopt(td, uap->s, uap->level, uap->name,
1223 uap->val, UIO_USERSPACE, uap->valsize));
1227 kern_setsockopt(struct thread *td, int s, int level, int name, void *val,
1228 enum uio_seg valseg, socklen_t valsize)
1232 struct sockopt sopt;
1233 cap_rights_t rights;
1236 if (val == NULL && valsize != 0)
1238 if ((int)valsize < 0)
1241 sopt.sopt_dir = SOPT_SET;
1242 sopt.sopt_level = level;
1243 sopt.sopt_name = name;
1244 sopt.sopt_val = val;
1245 sopt.sopt_valsize = valsize;
1251 sopt.sopt_td = NULL;
1254 panic("kern_setsockopt called with bad valseg");
1258 error = getsock_cap(td, s, cap_rights_init(&rights, CAP_SETSOCKOPT),
1262 error = sosetopt(so, &sopt);
1269 sys_getsockopt(struct thread *td, struct getsockopt_args *uap)
1275 error = copyin(uap->avalsize, &valsize, sizeof (valsize));
1280 error = kern_getsockopt(td, uap->s, uap->level, uap->name,
1281 uap->val, UIO_USERSPACE, &valsize);
1284 error = copyout(&valsize, uap->avalsize, sizeof (valsize));
1289 * Kernel version of getsockopt.
1290 * optval can be a userland or userspace. optlen is always a kernel pointer.
1293 kern_getsockopt(struct thread *td, int s, int level, int name, void *val,
1294 enum uio_seg valseg, socklen_t *valsize)
1298 struct sockopt sopt;
1299 cap_rights_t rights;
1304 if ((int)*valsize < 0)
1307 sopt.sopt_dir = SOPT_GET;
1308 sopt.sopt_level = level;
1309 sopt.sopt_name = name;
1310 sopt.sopt_val = val;
1311 sopt.sopt_valsize = (size_t)*valsize; /* checked non-negative above */
1317 sopt.sopt_td = NULL;
1320 panic("kern_getsockopt called with bad valseg");
1324 error = getsock_cap(td, s, cap_rights_init(&rights, CAP_GETSOCKOPT),
1328 error = sogetopt(so, &sopt);
1329 *valsize = sopt.sopt_valsize;
1336 * getsockname1() - Get socket name.
1339 getsockname1(struct thread *td, struct getsockname_args *uap, int compat)
1341 struct sockaddr *sa;
1345 error = copyin(uap->alen, &len, sizeof(len));
1349 error = kern_getsockname(td, uap->fdes, &sa, &len);
1354 #ifdef COMPAT_OLDSOCK
1356 ((struct osockaddr *)sa)->sa_family = sa->sa_family;
1358 error = copyout(sa, uap->asa, (u_int)len);
1362 error = copyout(&len, uap->alen, sizeof(len));
1367 kern_getsockname(struct thread *td, int fd, struct sockaddr **sa,
1372 cap_rights_t rights;
1377 error = getsock_cap(td, fd, cap_rights_init(&rights, CAP_GETSOCKNAME),
1383 CURVNET_SET(so->so_vnet);
1384 error = (*so->so_proto->pr_usrreqs->pru_sockaddr)(so, sa);
1391 len = MIN(*alen, (*sa)->sa_len);
1394 if (KTRPOINT(td, KTR_STRUCT))
1399 if (error != 0 && *sa != NULL) {
1400 free(*sa, M_SONAME);
1407 sys_getsockname(struct thread *td, struct getsockname_args *uap)
1410 return (getsockname1(td, uap, 0));
1413 #ifdef COMPAT_OLDSOCK
1415 ogetsockname(struct thread *td, struct getsockname_args *uap)
1418 return (getsockname1(td, uap, 1));
1420 #endif /* COMPAT_OLDSOCK */
1423 * getpeername1() - Get name of peer for connected socket.
1426 getpeername1(struct thread *td, struct getpeername_args *uap, int compat)
1428 struct sockaddr *sa;
1432 error = copyin(uap->alen, &len, sizeof (len));
1436 error = kern_getpeername(td, uap->fdes, &sa, &len);
1441 #ifdef COMPAT_OLDSOCK
1443 ((struct osockaddr *)sa)->sa_family = sa->sa_family;
1445 error = copyout(sa, uap->asa, (u_int)len);
1449 error = copyout(&len, uap->alen, sizeof(len));
1454 kern_getpeername(struct thread *td, int fd, struct sockaddr **sa,
1459 cap_rights_t rights;
1464 error = getsock_cap(td, fd, cap_rights_init(&rights, CAP_GETPEERNAME),
1469 if ((so->so_state & (SS_ISCONNECTED|SS_ISCONFIRMING)) == 0) {
1474 CURVNET_SET(so->so_vnet);
1475 error = (*so->so_proto->pr_usrreqs->pru_peeraddr)(so, sa);
1482 len = MIN(*alen, (*sa)->sa_len);
1485 if (KTRPOINT(td, KTR_STRUCT))
1489 if (error != 0 && *sa != NULL) {
1490 free(*sa, M_SONAME);
1499 sys_getpeername(struct thread *td, struct getpeername_args *uap)
1502 return (getpeername1(td, uap, 0));
1505 #ifdef COMPAT_OLDSOCK
1507 ogetpeername(struct thread *td, struct ogetpeername_args *uap)
1510 /* XXX uap should have type `getpeername_args *' to begin with. */
1511 return (getpeername1(td, (struct getpeername_args *)uap, 1));
1513 #endif /* COMPAT_OLDSOCK */
1516 sockargs(struct mbuf **mp, char *buf, socklen_t buflen, int type)
1518 struct sockaddr *sa;
1522 if (buflen > MLEN) {
1523 #ifdef COMPAT_OLDSOCK
1524 if (type == MT_SONAME && buflen <= 112)
1525 buflen = MLEN; /* unix domain compat. hack */
1528 if (buflen > MCLBYTES)
1531 m = m_get2(buflen, M_WAITOK, type, 0);
1533 error = copyin(buf, mtod(m, void *), buflen);
1538 if (type == MT_SONAME) {
1539 sa = mtod(m, struct sockaddr *);
1541 #if defined(COMPAT_OLDSOCK) && BYTE_ORDER != BIG_ENDIAN
1542 if (sa->sa_family == 0 && sa->sa_len < AF_MAX)
1543 sa->sa_family = sa->sa_len;
1545 sa->sa_len = buflen;
1552 getsockaddr(struct sockaddr **namp, caddr_t uaddr, size_t len)
1554 struct sockaddr *sa;
1557 if (len > SOCK_MAXADDRLEN)
1558 return (ENAMETOOLONG);
1559 if (len < offsetof(struct sockaddr, sa_data[0]))
1561 sa = malloc(len, M_SONAME, M_WAITOK);
1562 error = copyin(uaddr, sa, len);
1566 #if defined(COMPAT_OLDSOCK) && BYTE_ORDER != BIG_ENDIAN
1567 if (sa->sa_family == 0 && sa->sa_len < AF_MAX)
1568 sa->sa_family = sa->sa_len;