2019-01-02 01:55:51 +01:00
|
|
|
/* SPDX-License-Identifier: MIT
|
2018-05-03 15:04:00 +02:00
|
|
|
*
|
2019-01-02 01:55:51 +01:00
|
|
|
* Copyright (C) 2017-2019 WireGuard LLC. All Rights Reserved.
|
2018-05-03 15:04:00 +02:00
|
|
|
*/
|
|
|
|
|
2019-03-03 04:04:41 +01:00
|
|
|
package ipc
|
2017-07-15 13:41:02 +02:00
|
|
|
|
|
|
|
import (
|
2017-08-01 12:45:11 +02:00
|
|
|
"errors"
|
2017-07-15 13:41:02 +02:00
|
|
|
"fmt"
|
|
|
|
"net"
|
|
|
|
"os"
|
2017-08-02 15:30:57 +02:00
|
|
|
"path"
|
2019-05-14 09:09:52 +02:00
|
|
|
|
|
|
|
"golang.org/x/sys/unix"
|
2020-05-02 07:39:43 +02:00
|
|
|
|
2019-05-14 09:09:52 +02:00
|
|
|
"golang.zx2c4.com/wireguard/rwcancel"
|
2017-07-15 13:41:02 +02:00
|
|
|
)
|
|
|
|
|
2018-07-24 14:32:02 +02:00
|
|
|
var socketDirectory = "/var/run/wireguard"
|
|
|
|
|
2017-07-20 15:06:24 +02:00
|
|
|
const (
|
2019-03-03 04:04:41 +01:00
|
|
|
IpcErrorIO = -int64(unix.EIO)
|
|
|
|
IpcErrorProtocol = -int64(unix.EPROTO)
|
|
|
|
IpcErrorInvalid = -int64(unix.EINVAL)
|
|
|
|
IpcErrorPortInUse = -int64(unix.EADDRINUSE)
|
2020-05-02 07:39:43 +02:00
|
|
|
socketNameFmt = "%s.sock"
|
|
|
|
netnsFmt = "netns-%d"
|
2017-07-20 15:06:24 +02:00
|
|
|
)
|
|
|
|
|
2017-07-15 13:41:02 +02:00
|
|
|
type UAPIListener struct {
|
2018-05-14 00:28:30 +02:00
|
|
|
listener net.Listener // unix socket listener
|
|
|
|
connNew chan net.Conn
|
|
|
|
connErr chan error
|
|
|
|
inotifyFd int
|
|
|
|
inotifyRWCancel *rwcancel.RWCancel
|
2017-07-15 13:41:02 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
func (l *UAPIListener) Accept() (net.Conn, error) {
|
|
|
|
for {
|
|
|
|
select {
|
|
|
|
case conn := <-l.connNew:
|
|
|
|
return conn, nil
|
|
|
|
|
|
|
|
case err := <-l.connErr:
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func (l *UAPIListener) Close() error {
|
2017-08-11 16:18:20 +02:00
|
|
|
err1 := unix.Close(l.inotifyFd)
|
2018-05-14 12:46:06 +02:00
|
|
|
err2 := l.inotifyRWCancel.Cancel()
|
|
|
|
err3 := l.listener.Close()
|
2017-08-11 16:18:20 +02:00
|
|
|
if err1 != nil {
|
|
|
|
return err1
|
|
|
|
}
|
2018-05-14 00:28:30 +02:00
|
|
|
if err2 != nil {
|
|
|
|
return err2
|
|
|
|
}
|
|
|
|
return err3
|
2017-07-15 13:41:02 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
func (l *UAPIListener) Addr() net.Addr {
|
2018-05-14 12:46:06 +02:00
|
|
|
return l.listener.Addr()
|
2017-07-15 13:41:02 +02:00
|
|
|
}
|
|
|
|
|
2020-05-02 07:39:43 +02:00
|
|
|
func currentNetns() (netns uint32, err error) {
|
|
|
|
link, err := os.Readlink("/proc/self/ns/net")
|
|
|
|
if err != nil {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
_, err = fmt.Sscanf(link, "net:[%d]", &netns)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
func ifaceSocketPath(iface string) string {
|
|
|
|
if netns, err := currentNetns(); err == nil {
|
|
|
|
return path.Join(
|
|
|
|
socketDirectory,
|
|
|
|
fmt.Sprintf(netnsFmt, netns),
|
|
|
|
fmt.Sprintf(socketNameFmt, iface),
|
|
|
|
)
|
|
|
|
}
|
|
|
|
return path.Join(
|
|
|
|
socketDirectory,
|
|
|
|
fmt.Sprintf(socketNameFmt, iface),
|
|
|
|
)
|
|
|
|
}
|
|
|
|
|
2017-11-17 14:36:08 +01:00
|
|
|
func UAPIListen(name string, file *os.File) (net.Listener, error) {
|
2017-08-01 12:45:11 +02:00
|
|
|
|
2017-11-17 14:36:08 +01:00
|
|
|
// wrap file in listener
|
2017-08-01 12:45:11 +02:00
|
|
|
|
2017-11-17 14:36:08 +01:00
|
|
|
listener, err := net.FileListener(file)
|
2017-07-15 13:41:02 +02:00
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
2018-05-14 12:46:06 +02:00
|
|
|
if unixListener, ok := listener.(*net.UnixListener); ok {
|
|
|
|
unixListener.SetUnlinkOnClose(true)
|
|
|
|
}
|
|
|
|
|
2017-07-15 13:41:02 +02:00
|
|
|
uapi := &UAPIListener{
|
|
|
|
listener: listener,
|
|
|
|
connNew: make(chan net.Conn, 1),
|
|
|
|
connErr: make(chan error, 1),
|
|
|
|
}
|
|
|
|
|
2020-05-02 07:39:43 +02:00
|
|
|
socketPath := ifaceSocketPath(name)
|
2017-07-15 13:41:02 +02:00
|
|
|
|
2020-05-02 07:39:43 +02:00
|
|
|
// watch for deletion of socket
|
2017-11-17 14:36:08 +01:00
|
|
|
|
2017-08-07 15:25:04 +02:00
|
|
|
uapi.inotifyFd, err = unix.InotifyInit()
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
_, err = unix.InotifyAddWatch(
|
|
|
|
uapi.inotifyFd,
|
|
|
|
socketPath,
|
|
|
|
unix.IN_ATTRIB|
|
|
|
|
unix.IN_DELETE|
|
|
|
|
unix.IN_DELETE_SELF,
|
|
|
|
)
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
2018-05-14 00:28:30 +02:00
|
|
|
uapi.inotifyRWCancel, err = rwcancel.NewRWCancel(uapi.inotifyFd)
|
|
|
|
if err != nil {
|
|
|
|
unix.Close(uapi.inotifyFd)
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
2017-07-15 13:41:02 +02:00
|
|
|
go func(l *UAPIListener) {
|
2018-05-14 00:28:30 +02:00
|
|
|
var buff [0]byte
|
2017-08-07 15:25:04 +02:00
|
|
|
for {
|
2017-11-17 14:36:08 +01:00
|
|
|
// start with lstat to avoid race condition
|
2017-08-07 15:25:04 +02:00
|
|
|
if _, err := os.Lstat(socketPath); os.IsNotExist(err) {
|
2017-07-15 13:41:02 +02:00
|
|
|
l.connErr <- err
|
|
|
|
return
|
|
|
|
}
|
2018-05-14 00:28:30 +02:00
|
|
|
_, err := uapi.inotifyRWCancel.Read(buff[:])
|
|
|
|
if err != nil {
|
|
|
|
l.connErr <- err
|
|
|
|
return
|
|
|
|
}
|
2017-07-15 13:41:02 +02:00
|
|
|
}
|
|
|
|
}(uapi)
|
|
|
|
|
|
|
|
// watch for new connections
|
|
|
|
|
|
|
|
go func(l *UAPIListener) {
|
|
|
|
for {
|
|
|
|
conn, err := l.listener.Accept()
|
|
|
|
if err != nil {
|
|
|
|
l.connErr <- err
|
|
|
|
break
|
|
|
|
}
|
|
|
|
l.connNew <- conn
|
|
|
|
}
|
|
|
|
}(uapi)
|
|
|
|
|
|
|
|
return uapi, nil
|
|
|
|
}
|
2017-11-17 14:36:08 +01:00
|
|
|
|
|
|
|
func UAPIOpen(name string) (*os.File, error) {
|
2020-05-02 07:39:43 +02:00
|
|
|
socketPath := ifaceSocketPath(name)
|
2017-11-17 14:36:08 +01:00
|
|
|
|
|
|
|
// check if path exist
|
|
|
|
|
2020-05-02 07:39:43 +02:00
|
|
|
err := os.MkdirAll(path.Dir(socketPath), 0755)
|
2017-11-17 14:36:08 +01:00
|
|
|
if err != nil && !os.IsExist(err) {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
// open UNIX socket
|
|
|
|
|
|
|
|
addr, err := net.ResolveUnixAddr("unix", socketPath)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
2018-05-23 15:38:24 +02:00
|
|
|
oldUmask := unix.Umask(0077)
|
2017-11-17 14:36:08 +01:00
|
|
|
listener, err := func() (*net.UnixListener, error) {
|
|
|
|
|
|
|
|
// initial connection attempt
|
|
|
|
|
|
|
|
listener, err := net.ListenUnix("unix", addr)
|
|
|
|
if err == nil {
|
|
|
|
return listener, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// check if socket already active
|
|
|
|
|
|
|
|
_, err = net.Dial("unix", socketPath)
|
|
|
|
if err == nil {
|
|
|
|
return nil, errors.New("unix socket in use")
|
|
|
|
}
|
|
|
|
|
|
|
|
// cleanup & attempt again
|
|
|
|
|
|
|
|
err = os.Remove(socketPath)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
return net.ListenUnix("unix", addr)
|
|
|
|
}()
|
2018-05-23 15:38:24 +02:00
|
|
|
unix.Umask(oldUmask)
|
2017-11-17 14:36:08 +01:00
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
return listener.File()
|
|
|
|
}
|