safesyssocket.h

Go to the documentation of this file.

/* Copyright (C) 2012,2013,2014,2018,2019 Olly Betts
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License as
 * published by the Free Software Foundation; either version 2 of the
 * License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301 USA
 */

#ifndef XAPIAN_INCLUDED_SAFESYSSOCKET_H
#define XAPIAN_INCLUDED_SAFESYSSOCKET_H

#ifndef __WIN32__
// Some older BSDs require sys/types.h to be included first.
# include <sys/types.h>
# include <sys/socket.h>
#else
# include "safewinsock2.h"
#endif

#ifdef __WIN32__
# include <type_traits>
# include "xapian/error.h"
# if defined SOCK_CLOEXEC
static_assert(!SOCK_CLOEXEC, "__WIN32__ doesn't support SOCK_CLOEXEC");
# endif
# define SOCK_CLOEXEC 0

static_assert(std::is_unsigned<SOCKET>::value, "SOCKET is unsigned");

inline int socket_(int domain, int type, int protocol) {
    // Winsock2's socket() returns the unsigned type SOCKET, which is a 32-bit
    // type for WIN32 and a 64-bit type for WIN64.
    //
    // It seems we can always safely assign SOCKET to an int: failure is indicated
    // by INVALID_SOCKET which will cast to -1 as an int, and it seems in
    // practice that valid values all fit in 31-bits (and that we're not the
    // only code to assume this since it makes it much easier to write code
    // that deals with BSD sockets and winsock2's bastardised version of them)
    // so Microsoft are unlikely to arbitrarily change that).
    //
    // But we should check and throw an exception rather than quietly mangling
    // the value.
    SOCKET sock = socket(domain, type, protocol);
    if (rare(sock > SOCKET(0x7fffffff) && sock != INVALID_SOCKET)) {
        throw Xapian::NetworkError("socket() returned value > INT_MAX");
    }
    return int(sock);
}

# ifdef socket
#  undef socket
# endif
# define socket(D,T,P) socket_(D,T,P)

#elif !defined SOCK_CLOEXEC
# define SOCK_CLOEXEC 0
#else
// On Linux at least, sometimes SOCK_CLOEXEC is defined but the kernel doesn't
// handle it in socket() or socketpair():

# include <cerrno>

inline int socket_(int domain, int type, int protocol) {
    // Usually type is passed a constant, so we'll collapse to one branch or
    // the other here.  The case where SOCK_CLOEXEC == 0 is handled suitably.
    if (type & SOCK_CLOEXEC) {
        int save_errno = errno;
        int r = socket(domain, type, protocol);
        if (r < 0 && errno == EINVAL) {
            errno = save_errno;
            r = socket(domain, type &~ SOCK_CLOEXEC, protocol);
        }
        return r;
    } else {
        return socket(domain, type, protocol);
    }
}

inline int socketpair_(int domain, int type, int protocol, int *sv) {
    // Usually type is passed a constant, so we'll collapse to one branch or
    // the other here.  The case where SOCK_CLOEXEC == 0 is handled suitably.
    if (type & SOCK_CLOEXEC) {
        int save_errno = errno;
        int r = socketpair(domain, type, protocol, sv);
        if (r != 0 && errno == EINVAL) {
            errno = save_errno;
            r = socketpair(domain, type &~ SOCK_CLOEXEC, protocol, sv);
        }
        return r;
    } else {
        return socketpair(domain, type, protocol, sv);
    }
}

# ifdef socket
#  undef socket
# endif
# define socket(D,T,P) socket_(D,T,P)
# ifdef socketpair
#  undef socketpair
# endif
# define socketpair(D,T,P,S) socketpair_(D,T,P,S)
#endif

#endif // XAPIAN_INCLUDED_SAFESYSSOCKET_H