Home Explore Help
Register Sign In
Apq
/
ZeroTierOne
mirror of https://github.com/zerotier/ZeroTierOne.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: e5fad005a9
Branches Tags
ZeroTierOne
/
netcon
/
Intercept.c

Intercept.c 31 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033 
  1. /*
    2. 

  2.  * ZeroTier One - Network Virtualization Everywhere
    3. 

  3.  * Copyright (C) 2011-2015  ZeroTier, Inc.
    4. 

  4.  *
    5. 

  5.  * This program is free software: you can redistribute it and/or modify
    6. 

  6.  * it under the terms of the GNU General Public License as published by
    7. 

  7.  * the Free Software Foundation, either version 3 of the License, or
    8. 

  8.  * (at your option) any later version.
    9. 

  9.  *
    10. 

  10.  * This program is distributed in the hope that it will be useful,
    11. 

  11.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    12. 

  12.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    13. 

  13.  * GNU General Public License for more details.
    14. 

  14.  *
    15. 

  15.  * You should have received a copy of the GNU General Public License
    16. 

  16.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
    17. 

  17.  *
    18. 

  18.  * --
    19. 

  19.  *
    20. 

  20.  * ZeroTier may be used and distributed under the terms of the GPLv3, which
    21. 

  21.  * are available at: http://www.gnu.org/licenses/gpl-3.0.html
    22. 

  22.  *
    23. 

  23.  * If you would like to embed ZeroTier into a commercial application or
    24. 

  24.  * redistribute it in a modified binary form, please contact ZeroTier Networks
    25. 

  25.  * LLC. Start here: http://www.zerotier.com/
    26. 

  26.  */
    27. 

  27. 

  28. 

  29. #ifdef USE_GNU_SOURCE
    30. 

  30. #define _GNU_SOURCE
    31. 

  31. #endif
    32. 

  32. 

  33. /* Name used in err msgs    */
    34. 

  34. char *progname = "";
    35. 

  35. 

  36. #include <unistd.h>
    37. 

  37. #include <stdint.h>
    38. 

  38. #include <pthread.h>
    39. 

  39. #include <stdio.h>
    40. 

  40. #include <dlfcn.h>
    41. 

  41. #include <strings.h>
    42. 

  42. #include <netinet/in.h>
    43. 

  43. #include <sys/time.h>
    44. 

  44. #include <pwd.h>
    45. 

  45. #include <errno.h>
    46. 

  46. #include <linux/errno.h>
    47. 

  47. #include <stdarg.h>
    48. 

  48. #include <netdb.h>
    49. 

  49. #include <string.h>
    50. 

  50. #include <stdlib.h>
    51. 

  51. #include <sys/syscall.h>
    52. 

  52. #include <sys/types.h>
    53. 

  53. #include <sys/socket.h>
    54. 

  54. #include <sys/poll.h>
    55. 

  55. #include <sys/un.h>
    56. 

  56. #include <arpa/inet.h>
    57. 

  57. 

  58. #include "Intercept.h"
    59. 

  59. #include "Common.h"
    60. 

  60. 

  61. #ifdef CHECKS
    62. 

  62.   #include <sys/resource.h>
    63. 

  63.   #include <linux/net.h> /* for NPROTO */
    64. 

  64.   #define SOCK_MAX (SOCK_PACKET + 1)
    65. 

  65.   #define SOCK_TYPE_MASK 0xf
    66. 

  66. #endif
    67. 

  67. 

  68. /* Global Declarations */
    69. 

  69. #ifdef USE_SOCKS_DNS
    70. 

  70. static int (*realresinit)(void);
    71. 

  71. #endif
    72. 

  72. static int (*realconnect)(CONNECT_SIG);
    73. 

  73. static int (*realselect)(SELECT_SIG);
    74. 

  74. static int (*realbind)(BIND_SIG);
    75. 

  75. static int (*realaccept)(ACCEPT_SIG);
    76. 

  76. static int (*reallisten)(LISTEN_SIG);
    77. 

  77. static int (*realsocket)(SOCKET_SIG);
    78. 

  78. static int (*realsetsockopt)(SETSOCKOPT_SIG);
    79. 

  79. static int (*realgetsockopt)(GETSOCKOPT_SIG);
    80. 

  80. static int (*realaccept4)(ACCEPT4_SIG);
    81. 

  81. static long (*realsyscall)(SYSCALL_SIG);
    82. 

  82. static int (*realclose)(CLOSE_SIG);
    83. 

  83. //static int (*realclone)(CLONE_SIG);
    84. 

  84. //static int (*realpoll)(POLL_SIG);
    85. 

  85. static int (*realdup2)(DUP2_SIG);
    86. 

  86. static int (*realdup3)(DUP3_SIG);
    87. 

  87. 

  88. /* Exported Function Prototypes */
    89. 

  89. void my_init(void);
    90. 

  90. int connect(CONNECT_SIG);
    91. 

  91. int select(SELECT_SIG);
    92. 

  92. int bind(BIND_SIG);
    93. 

  93. int accept(ACCEPT_SIG);
    94. 

  94. int listen(LISTEN_SIG);
    95. 

  95. int socket(SOCKET_SIG);
    96. 

  96. int setsockopt(SETSOCKOPT_SIG);
    97. 

  97. int getsockopt(GETSOCKOPT_SIG);
    98. 

  98. int accept4(ACCEPT4_SIG);
    99. 

  99. long syscall(SYSCALL_SIG);
    100. 

  100. int close(CLOSE_SIG);
    101. 

  101. //int clone(CLONE_SIG);
    102. 

  102. //int poll(POLL_SIG);
    103. 

  103. int dup2(DUP2_SIG);
    104. 

  104. int dup3(DUP3_SIG);
    105. 

  105. 

  106. 

  107. #ifdef USE_SOCKS_DNS
    108. 

  108.   int res_init(void);
    109. 

  109. #endif
    110. 

  110. 

  111. int connect_to_service(void);
    112. 

  112. int init_service_connection();
    113. 

  113. void dwr(const char *fmt, ...);
    114. 

  114. void load_symbols(void);
    115. 

  115. void set_up_intercept();
    116. 

  116. int checkpid();
    117. 

  117. 

  118. #define SERVICE_CONNECT_ATTEMPTS  30
    119. 

  119. #define RPC_FD                    1023
    120. 

  120. 

  121. ssize_t sock_fd_read(int sock, void *buf, ssize_t bufsize, int *fd);
    122. 

  122. 

  123. /* threading */
    124. 

  124. pthread_mutex_t lock;
    125. 

  125. pthread_mutex_t loglock;
    126. 

  126. 

  127. void handle_error(char *name, char *info, int err)
    128. 

  128. {
    129. 

  129. #ifdef ERRORS_ARE_FATAL
    130. 

  130.   if(err < 0) {
    131. 

  131.     dwr("handle_error(%s)=%d: FATAL: %s\n", name, err, info);
    132. 

  132.     //exit(-1);
    133. 

  133.   }
    134. 

  134. #endif
    135. 

  135. #ifdef VERBOSE
    136. 

  136.   dwr("%s()=%d\n", name, err);
    137. 

  137. #endif
    138. 

  138. }
    139. 

  139. 

  140. static unsigned long rpc_count = 0;
    141. 

  141. 

  142. /*------------------------------------------------------------------------------
    143. 

  143. ------------------- Intercept<--->Service Comm mechanisms-----------------------
    144. 

  144. ------------------------------------------------------------------------------*/
    145. 

  145. 

  146. static int is_initialized = 0;
    147. 

  147. static int fdret_sock; // used for fd-transfers
    148. 

  148. static int newfd; // used for "this_end" socket
    149. 

  149. static int thispid;
    150. 

  150. static char* af_sock_name  = "/tmp/.ztnc_e5cd7a9e1c5311ab";
    151. 

  151. 

  152. /*
    153. 

  153.  * Check for forking
    154. 

  154.  */
    155. 

  155. int checkpid() {
    156. 

  156.   if(thispid != getpid()) {
    157. 

  157.     printf("clone/fork detected. re-initializing this instance.\n");
    158. 

  158.     set_up_intercept();
    159. 

  159.     fdret_sock = init_service_connection();
    160. 

  160.     thispid = getpid();
    161. 

  161.   }
    162. 

  162.   return 0;
    163. 

  163. }
    164. 

  164. 

  165. /*
    166. 

  166.  * Sends an RPC command to the service
    167. 

  167.  */
    168. 

  168. int send_command(int rpc_fd, char *cmd)
    169. 

  169. {
    170. 

  170. #ifdef DEBUG
    171. 

  171. /*
    172. 

  172.   dwr(" - IDX_PID = %d\n", IDX_PID);  
    173. 

  173.   dwr(" - IDX_TID = %d\n", IDX_TID);      
    174. 

  174.   dwr(" - IDX_COUNT = %d\n", IDX_COUNT);   
    175. 

  175.   dwr(" - IDX_TIME = %d\n", IDX_TIME);    
    176. 

  176.   dwr(" - IDX_PAYLOAD = %d\n", IDX_PAYLOAD);    
    177. 

  177. */
    178. 

  178. /*
    179. 

  179.   #define IDX_PID       0
    180. 

  180.   #define IDX_TID       sizeof(pid_t)
    181. 

  181.   #define IDX_COUNT     IDX_TID + sizeof(pid_t)
    182. 

  182.   #define IDX_TIME      IDX_COUNT + sizeof(int)
    183. 

  183.   #define IDX_CMD       IDX_TIME + 20 // 20 being the length of the timestamp string
    184. 

  184.   #define IDX_PAYLOAD   IDX_TIME + sizeof(char) 
    185. 

  185. */
    186. 

  186. 

  187.   // [pid_t] [pid_t] [rpc_count] [int] [...]
    188. 

  188.   char metabuf[BUF_SZ]; // portion of buffer which contains RPC meta-data for debugging
    189. 

  189.   memset(metabuf, '\0', BUF_SZ);
    190. 

  190.   pid_t pid = syscall(SYS_getpid);
    191. 

  191.   pid_t tid = syscall(SYS_gettid);
    192. 

  192.   int payload_idx = sizeof(pid_t)*2 + sizeof(rpc_count);
    193. 

  193.   rpc_count++;
    194. 

  194.   char timestring[20];
    195. 

  195.   time_t timestamp;
    196. 

  196.   timestamp = time(NULL);
    197. 

  197.   strftime(timestring, sizeof(timestring), "%H:%M:%S", localtime(&timestamp));
    198. 

  198. 

  199.   memcpy(&metabuf[IDX_PID],     &pid,         sizeof(pid_t)      ); // pid
    200. 

  200.   memcpy(&metabuf[IDX_TID],     &tid,         sizeof(pid_t)      ); // tid
    201. 

  201.   memcpy(&metabuf[IDX_COUNT],   &rpc_count,   sizeof(rpc_count)  ); // rpc_count
    202. 

  202.   memcpy(&metabuf[IDX_TIME],    &timestring,   20                ); // timestamp
    203. 

  203. #endif
    204. 

  204.   // copy payload into final command buffer
    205. 

  205.   int copied = BUF_SZ-IDX_PAYLOAD;
    206. 

  206.   memcpy(&metabuf[IDX_PAYLOAD], cmd, 200);
    207. 

  207.   //dwr(" RX: (pid=%d, tid=%d, rpc_count=%d, timestamp=%s, cmd=%d\n", pid, tid, rpc_count, timestring, cmd[0]);
    208. 

  208.   int n_write = write(rpc_fd, &metabuf, BUF_SZ);
    209. 

  209.   if(n_write < 0){
    210. 

  210.     dwr("Error writing command to service (CMD = %d)\n", cmd[0]);
    211. 

  211.     errno = 0;
    212. 

  212.     return -1;
    213. 

  213.   }
    214. 

  214.   return 0;
    215. 

  215. }
    216. 

  216. 

  217. /*
    218. 

  218.  * Reads a return value from the service and sets errno (if applicable)
    219. 

  219.  */
    220. 

  220. int get_retval()
    221. 

  221. {
    222. 

  222.   dwr("get_retval()\n");
    223. 

  223.   if(fdret_sock >= 0) {
    224. 

  224.     int retval;
    225. 

  225.     int sz = sizeof(char) + sizeof(retval) + sizeof(errno);
    226. 

  226.     char retbuf[BUF_SZ];
    227. 

  227.     memset(&retbuf, '\0', sz);
    228. 

  228.     int n_read = read(fdret_sock, &retbuf, sz);
    229. 

  229.     if(n_read > 0) {
    230. 

  230.       memcpy(&retval, &retbuf[1], sizeof(retval));
    231. 

  231.       memcpy(&errno, &retbuf[1+sizeof(retval)], sizeof(errno));
    232. 

  232.       return retval;
    233. 

  233.     }
    234. 

  234.   }
    235. 

  235.   dwr("unable to read return value\n");
    236. 

  236.   return -1;
    237. 

  237. }
    238. 

  238. 

  239. /* Check whether the socket is mapped to the service or not. We
    240. 

  240. need to know if this is a regular AF_LOCAL socket or an end of a socketpair
    241. 

  241. that the service uses. We don't want to keep state in the intercept, so
    242. 

  242. we simply ask the service via an RPC */
    243. 

  243. int is_mapped_to_service(int sockfd)
    244. 

  244. {
    245. 

  245.   dwr("is_mapped_to_service()\n");
    246. 

  246.   char cmd[BUF_SZ];
    247. 

  247.   memset(cmd, '\0', BUF_SZ);
    248. 

  248.   cmd[0] = RPC_MAP_REQ;
    249. 

  249.   memcpy(&cmd[1], &sockfd, sizeof(sockfd));
    250. 

  250.   pthread_mutex_lock(&lock);
    251. 

  251.   if(send_command(fdret_sock, cmd) < 0)
    252. 

  252.     return -1;
    253. 

  253.   int err = get_retval();
    254. 

  254.   pthread_mutex_unlock(&lock);
    255. 

  255.   return err;
    256. 

  256. }
    257. 

  257. 

  258. /*------------------------------------------------------------------------------
    259. 

  259. ----------  Unix-domain socket lazy initializer (for fd-transfers)--------------
    260. 

  260. ------------------------------------------------------------------------------*/
    261. 

  261. 

  262. /* Sets up the connection pipes and sockets to the service */
    263. 

  263. int init_service_connection()
    264. 

  264. {
    265. 

  265.   dwr("init_service_connection()\n");
    266. 

  266.   if(!is_initialized) {
    267. 

  267.     struct sockaddr_un addr;
    268. 

  268.     int tfd = -1, attempts = 0, conn_err = -1;
    269. 

  269.     memset(&addr, 0, sizeof(addr));
    270. 

  270.     addr.sun_family = AF_UNIX;
    271. 

  271.     strncpy(addr.sun_path, af_sock_name, sizeof(addr.sun_path)-1);
    272. 

  272. 

  273.     if ( (tfd = realsocket(AF_UNIX, SOCK_STREAM, 0)) == -1) {
    274. 

  274.       perror("socket error");
    275. 

  275.       exit(-1);
    276. 

  276.     }
    277. 

  277.     while(conn_err < 0 && attempts < SERVICE_CONNECT_ATTEMPTS) {
    278. 

  278.       conn_err = realconnect(tfd, (struct sockaddr*)&addr, sizeof(addr));
    279. 

  279.       if(conn_err < 0) {
    280. 

  280.         dwr("re-attempting connection in %ds\n", 1+attempts);
    281. 

  281.         sleep(1);
    282. 

  282.       }
    283. 

  283.       else {
    284. 

  284.         dwr("AF_UNIX connection established: %d\n", tfd);
    285. 

  285.         is_initialized = 1;
    286. 

  286.         int newtfd = realdup2(tfd, 1023);
    287. 

  287.         dwr("dup'd to rpc_fd = %d\n", newtfd);
    288. 

  288.         close(tfd);
    289. 

  289.         return newtfd;
    290. 

  290.       }
    291. 

  291.       attempts++;
    292. 

  292.     }
    293. 

  293.   }
    294. 

  294.   return -1;
    295. 

  295. }
    296. 

  296. 

  297. /*------------------------------------------------------------------------------
    298. 

  298. ------------------------  ctors and dtors (and friends)-------------------------
    299. 

  299. ------------------------------------------------------------------------------*/
    300. 

  300. 

  301. void my_dest(void) __attribute__ ((destructor));
    302. 

  302. void my_dest(void) {
    303. 

  303.   //dwr("closing connections to service...\n");
    304. 

  304.   close(fdret_sock);
    305. 

  305.   pthread_mutex_destroy(&lock);
    306. 

  306. }
    307. 

  307. 

  308. void load_symbols(void)
    309. 

  309. {
    310. 

  310. #ifdef USE_OLD_DLSYM
    311. 

  311.   void *lib;
    312. 

  312. #endif
    313. 

  313.  /* possibly add check to beginning of each method to avoid needing to cll the constructor */
    314. 

  314.   if(thispid == getpid()) {
    315. 

  315.     dwr("detected duplicate call to global ctor (pid=%d).\n", thispid);
    316. 

  316.   }
    317. 

  317.   //dwr(" -- pid = %d\n", getpid());
    318. 

  318. 	//dwr(" -- uid = %d\n", getuid());
    319. 

  319.   thispid = getpid();
    320. 

  320. 

  321. #ifndef USE_OLD_DLSYM
    322. 

  322.   realconnect = dlsym(RTLD_NEXT, "connect");
    323. 

  323.   realbind = dlsym(RTLD_NEXT, "bind");
    324. 

  324.   realaccept = dlsym(RTLD_NEXT, "accept");
    325. 

  325.   reallisten = dlsym(RTLD_NEXT, "listen");
    326. 

  326.   realsocket = dlsym(RTLD_NEXT, "socket");
    327. 

  327.   realbind = dlsym(RTLD_NEXT, "bind");
    328. 

  328.   realselect = dlsym(RTLD_NEXT, "select");
    329. 

  329. 	realsetsockopt = dlsym(RTLD_NEXT, "setsockopt");
    330. 

  330.   realgetsockopt = dlsym(RTLD_NEXT, "getsockopt");
    331. 

  331.   realaccept4 = dlsym(RTLD_NEXT, "accept4");
    332. 

  332.   //realclone = dlsym(RTLD_NEXT, "clone");
    333. 

  333.   realclose = dlsym(RTLD_NEXT, "close");
    334. 

  334.   realsyscall = dlsym(RTLD_NEXT, "syscall");
    335. 

  335.   //realsyscall = dlsym(RTLD_NEXT, "poll");
    336. 

  336.   realdup2 = dlsym(RTLD_NEXT, "dup2");
    337. 

  337.   realdup3 = dlsym(RTLD_NEXT, "dup3");
    338. 

  338. #ifdef USE_SOCKS_DNS
    339. 

  339.   realresinit = dlsym(RTLD_NEXT, "res_init");
    340. 

  340. #endif
    341. 

  341. 

  342. #else
    343. 

  343.   lib = dlopen(LIBCONNECT, RTLD_LAZY);
    344. 

  344.   realconnect = dlsym(lib, "connect");
    345. 

  345.   realbind = dlsym(lib, "bind");
    346. 

  346.   realaccept = dlsym(lib, "accept");
    347. 

  347.   reallisten = dlsym(lib, "listen");
    348. 

  348.   realsocket = dlsym(lib, "socket");
    349. 

  349.   realselect = dlsym(lib, "select");
    350. 

  350. 	realsetsockopt = dlsym(lib, "setsockopt");
    351. 

  351.   realgetsockopt = dlsym(lib, "getsockopt");
    352. 

  352.   realaccept4 = dlsym(lib), "accept4");
    353. 

  353.   //realclone = dlsym(lib, "clone");
    354. 

  354.   realclose = dlsym(lib, "close");
    355. 

  355.   realsyscall = dlsym(lib, "syscall");
    356. 

  356.   //realsyscall = dlsym(lib, "poll");
    357. 

  357.   realdup2 = dlsym(RTLD_NEXT, "dup2");
    358. 

  358.   realdup3 = dlsym(RTLD_NEXT, "dup3");
    359. 

  359. #ifdef USE_SOCKS_DNS
    360. 

  360.   realresinit = dlsym(lib, "res_init");
    361. 

  361. #endif
    362. 

  362.   dlclose(lib);
    363. 

  363.   lib = dlopen(LIBC, RTLD_LAZY);
    364. 

  364.   dlclose(lib);
    365. 

  365. #endif
    366. 

  366. }
    367. 

  367. 

  368. /* Private Function Prototypes */
    369. 

  369. void _init(void) __attribute__ ((constructor));
    370. 

  370. void _init(void) {
    371. 

  371.   set_up_intercept();
    372. 

  372. }
    373. 

  373. 

  374. /* get symbols and initialize mutexes */
    375. 

  375. void set_up_intercept()
    376. 

  376. {
    377. 

  377.   load_symbols();
    378. 

  378.   if(pthread_mutex_init(&lock, NULL) != 0) {
    379. 

  379.     printf("error while initializing service call mutex\n");
    380. 

  380.   }
    381. 

  381.   if(pthread_mutex_init(&loglock, NULL) != 0) {
    382. 

  382.     printf("error while initializing log mutex mutex\n");
    383. 

  383.   }
    384. 

  384. }
    385. 

  385. 

  386. 

  387. /*------------------------------------------------------------------------------
    388. 

  388. --------------------------------- setsockopt() ---------------------------------
    389. 

  389. ------------------------------------------------------------------------------*/
    390. 

  390. 

  391. /* int socket, int level, int option_name, const void *option_value, socklen_t option_len */
    392. 

  392. int setsockopt(SETSOCKOPT_SIG)
    393. 

  393. {
    394. 

  394.   dwr("\n\nsetsockopt(%d)\n", socket);
    395. 

  395.   /*
    396. 

  396.   if(is_mapped_to_service(socket) < 0) { // First, check if the service manages this
    397. 

  397.     return realsetsockopt(socket, level, option_name, option_value, option_len);
    398. 

  398.   }
    399. 

  399.   */
    400. 

  400.   //return(realsetsockopt(socket, level, option_name, option_value, option_len));
    401. 

  401.   if(level == SOL_IPV6 && option_name == IPV6_V6ONLY)
    402. 

  402.     return 0;
    403. 

  403.   if(level == SOL_IP && option_name == IP_TTL)
    404. 

  404.     return 0;
    405. 

  405.   if(level == IPPROTO_TCP || (level == SOL_SOCKET && option_name == SO_KEEPALIVE))
    406. 

  406.     return 0;
    407. 

  407.   /* make sure we don't touch any standard outputs */
    408. 

  408.   if(socket == STDIN_FILENO || socket == STDOUT_FILENO || socket == STDERR_FILENO)
    409. 

  409.     return(realsetsockopt(socket, level, option_name, option_value, option_len));
    410. 

  410.   int err = realsetsockopt(socket, level, option_name, option_value, option_len);
    411. 

  411.   if(err < 0){
    412. 

  412.     //perror("setsockopt():\n");
    413. 

  413.   }
    414. 

  414.   return 0;
    415. 

  415. }
    416. 

  416. 

  417. 

  418. /*------------------------------------------------------------------------------
    419. 

  419. --------------------------------- getsockopt() ---------------------------------
    420. 

  420. ------------------------------------------------------------------------------*/
    421. 

  421. 

  422. /* int sockfd, int level, int optname, void *optval, socklen_t *optlen */
    423. 

  423. int getsockopt(GETSOCKOPT_SIG)
    424. 

  424. {
    425. 

  425.   dwr("\n\ngetsockopt(%d)\n", sockfd);
    426. 

  426.   /*
    427. 

  427.   if(is_mapped_to_service(sockfd) < 0) { // First, check if the service manages this
    428. 

  428.     return realgetsockopt(sockfd, level, optname, optval, optlen);
    429. 

  429.   }
    430. 

  430.   */
    431. 

  431.   int err = realgetsockopt(sockfd, level, optname, optval, optlen);
    432. 

  432.   // FIXME: this condition will need a little more intelligence later on
    433. 

  433.   // -- we will need to know if this fd is a local we are spoofing, or a true local
    434. 

  434.   if(optname == SO_TYPE)
    435. 

  435.   {
    436. 

  436.     int* val = (int*)optval;
    437. 

  437.     *val = 2;
    438. 

  438.     optval = (void*)val;
    439. 

  439.   }
    440. 

  440.   if(err < 0){
    441. 

  441.     //perror("setsockopt():\n");
    442. 

  442.   }
    443. 

  443.   return 0;
    444. 

  444. }
    445. 

  445. 

  446. 

  447. /*------------------------------------------------------------------------------
    448. 

  448. ----------------------------------- socket() -----------------------------------
    449. 

  449. ------------------------------------------------------------------------------*/
    450. 

  450. 

  451. /* int socket_family, int socket_type, int protocol
    452. 

  452.    socket() intercept function */
    453. 

  453. int socket(SOCKET_SIG)
    454. 

  454. {
    455. 

  455.   dwr("\n\nsocket()*:\n");
    456. 

  456.   int err;
    457. 

  457. #ifdef CHECKS
    458. 

  458.   /* Check that type makes sense */
    459. 

  459.   int flags = socket_type & ~SOCK_TYPE_MASK;
    460. 

  460.   if (flags & ~(SOCK_CLOEXEC | SOCK_NONBLOCK)) {
    461. 

  461.       errno = EINVAL;
    462. 

  462.       handle_error("socket1", "", -1);
    463. 

  463.       return -1;
    464. 

  464.   }
    465. 

  465.   socket_type &= SOCK_TYPE_MASK;
    466. 

  466.   /* Check protocol is in range */
    467. 

  467.   if (socket_family < 0 || socket_family >= NPROTO){
    468. 

  468.     errno = EAFNOSUPPORT;
    469. 

  469.     handle_error("socket2", "", -1);
    470. 

  470.     return -1;
    471. 

  471.   }
    472. 

  472.   if (socket_type < 0 || socket_type >= SOCK_MAX) {
    473. 

  473.     errno = EINVAL;
    474. 

  474.     handle_error("socket3", "", -1);
    475. 

  475.     return -1;
    476. 

  476.   }
    477. 

  477.   /* Check that we haven't hit the soft-limit file descriptors allowed */
    478. 

  478.   /* FIXME: Find number of open fds
    479. 

  479.   struct rlimit rl;
    480. 

  480.   getrlimit(RLIMIT_NOFILE, &rl);
    481. 

  481.   if(sockfd >= rl.rlim_cur){
    482. 

  482.     errno = EMFILE;
    483. 

  483.     return -1;
    484. 

  484.   }
    485. 

  485.   */
    486. 

  486.   /* FIXME: detect ENFILE condition */
    487. 

  487. #endif
    488. 

  488.   char cmd[BUF_SZ];
    489. 

  489.   fdret_sock = !is_initialized ? init_service_connection() : fdret_sock;
    490. 

  490.   if(fdret_sock < 0) {
    491. 

  491.     dwr("BAD service connection. exiting.\n");
    492. 

  492.     handle_error("socket4", "", -1);
    493. 

  493.     exit(-1);
    494. 

  494.   }
    495. 

  495.   if(socket_family == AF_LOCAL
    496. 

  496.     || socket_family == AF_NETLINK
    497. 

  497.     || socket_family == AF_UNIX) {
    498. 

  498.       int err = realsocket(socket_family, socket_type, protocol);
    499. 

  499.       dwr("realsocket, err = %d\n", err);
    500. 

  500.       handle_error("socket5", "", err);
    501. 

  501.       return err;
    502. 

  502.   }
    503. 

  503.   /* Assemble and send RPC */
    504. 

  504.   struct socket_st rpc_st;
    505. 

  505.   rpc_st.socket_family = socket_family;
    506. 

  506.   rpc_st.socket_type = socket_type;
    507. 

  507.   rpc_st.protocol = protocol;
    508. 

  508.   rpc_st.__tid = syscall(SYS_gettid);
    509. 

  509.   memset(cmd, '\0', BUF_SZ);
    510. 

  510.   cmd[0] = RPC_SOCKET;
    511. 

  511.   dwr("pid = %d\n", thispid);
    512. 

  512.   memcpy(&cmd[1]+sizeof(pid_t), &rpc_st, sizeof(struct socket_st));
    513. 

  513.   pthread_mutex_lock(&lock);
    514. 

  514.   send_command(fdret_sock, cmd);
    515. 

  515. 

  516.   /* get new fd */
    517. 

  517.   char rbuf[16];
    518. 

  518.   ssize_t sz = sock_fd_read(fdret_sock, rbuf, sizeof(rbuf), &newfd);
    519. 

  519.   int tmp = newfd;
    520. 

  520.   dwr("read %d bytes (%s)\n", sz, &rbuf);
    521. 

  521.   if(sz > 0)
    522. 

  522.   {
    523. 

  523.     dwr("sending fd = %d to Service over (%d)\n", newfd, fdret_sock);
    524. 

  524.     /* send our local-fd number back to service so
    525. 

  525.      it can complete its mapping table entry */
    526. 

  526.     memset(cmd, '\0', BUF_SZ);
    527. 

  527.     cmd[0] = RPC_MAP;
    528. 

  528.     memcpy(&cmd[1], &newfd, sizeof(newfd));
    529. 

  529. 

  530.     if(newfd > -1) { // FIXME: check logic
    531. 

  531.       send_command(fdret_sock, cmd);
    532. 

  532.       pthread_mutex_unlock(&lock);
    533. 

  533.       errno = ERR_OK; // OK
    534. 

  534.       handle_error("socket6", "", newfd);
    535. 

  535.       return newfd;
    536. 

  536.     }
    537. 

  537.     else { // Try to read retval+errno since we RXed a bad fd
    538. 

  538.       dwr("Error, service sent bad fd.\n");
    539. 

  539.       err = get_retval();
    540. 

  540.       pthread_mutex_unlock(&lock);
    541. 

  541.       handle_error("socket7", "", -1);
    542. 

  542.       return err;
    543. 

  543.     }
    544. 

  544. 

  545.   }
    546. 

  546.   else {
    547. 

  547.     dwr("Error while receiving new FD.\n");
    548. 

  548.     err = get_retval();
    549. 

  549.     pthread_mutex_unlock(&lock);
    550. 

  550.     handle_error("socket8", "", -1);
    551. 

  551.     return err;
    552. 

  552.   }
    553. 

  553. }
    554. 

  554. 

  555. /*------------------------------------------------------------------------------
    556. 

  556. ---------------------------------- connect() -----------------------------------
    557. 

  557. ------------------------------------------------------------------------------*/
    558. 

  558. 

  559. /* int __fd, const struct sockaddr * __addr, socklen_t __len
    560. 

  560.    connect() intercept function */
    561. 

  561. int connect(CONNECT_SIG)
    562. 

  562. {
    563. 

  563.   dwr("\n\nconnect(%d):\n", __fd);
    564. 

  564.   print_addr(__addr);
    565. 

  565.   struct sockaddr_in *connaddr;
    566. 

  566.   connaddr = (struct sockaddr_in *) __addr;
    567. 

  567. 

  568. #ifdef CHECKS
    569. 

  569.   /* Check that this is a valid fd */
    570. 

  570.   if(fcntl(__fd, F_GETFD) < 0) {
    571. 

  571.     errno = EBADF;
    572. 

  572.     handle_error("connect", "EBADF", -1);
    573. 

  573.     return -1;
    574. 

  574.   }
    575. 

  575.   /* Check that it is a socket */
    576. 

  576.   int sock_type;
    577. 

  577.   socklen_t sock_type_len = sizeof(sock_type);
    578. 

  578.   if(getsockopt(__fd, SOL_SOCKET, SO_TYPE, (void *) &sock_type, &sock_type_len) < 0) {
    579. 

  579.     errno = ENOTSOCK;
    580. 

  580.     handle_error("connect", "ENOTSOCK", -1);
    581. 

  581.     return -1;
    582. 

  582.   }
    583. 

  583.   /* Check family */
    584. 

  584.   if (connaddr->sin_family < 0 || connaddr->sin_family >= NPROTO){
    585. 

  585.     errno = EAFNOSUPPORT;
    586. 

  586.     handle_error("connect", "EAFNOSUPPORT", -1);
    587. 

  587.     return -1;
    588. 

  588.   }
    589. 

  589.   /* FIXME: Check that address is in user space, return EFAULT ? */
    590. 

  590. #endif
    591. 

  591. 

  592.   /* make sure we don't touch any standard outputs */
    593. 

  593.   if(__fd == STDIN_FILENO || __fd == STDOUT_FILENO || __fd == STDERR_FILENO){
    594. 

  594.     if (realconnect == NULL) {
    595. 

  595.       handle_error("connect", "Unresolved symbol [connect]", -1);
    596. 

  596.       exit(-1);
    597. 

  597.     }
    598. 

  598.     return(realconnect(__fd, __addr, __len));
    599. 

  599.   }
    600. 

  600. 

  601.   if(__addr != NULL && (connaddr->sin_family == AF_LOCAL
    602. 

  602.     || connaddr->sin_family == PF_NETLINK
    603. 

  603.     || connaddr->sin_family == AF_NETLINK
    604. 

  604.     || connaddr->sin_family == AF_UNIX)) {
    605. 

  605.     int err = realconnect(__fd, __addr, __len);
    606. 

  606.     perror("connect():");
    607. 

  607.     //handle_error("connect", "Cannot connect to local socket", err);
    608. 

  608.     return err;
    609. 

  609.   }
    610. 

  610. 

  611.   /* Assemble and send RPC */
    612. 

  612.   int err;
    613. 

  613.   char cmd[BUF_SZ];
    614. 

  614.   memset(cmd, '\0', BUF_SZ);
    615. 

  615.   struct connect_st rpc_st;
    616. 

  616.   rpc_st.__tid = syscall(SYS_gettid);
    617. 

  617.   rpc_st.__fd = __fd;
    618. 

  618.   memcpy(&rpc_st.__addr, __addr, sizeof(struct sockaddr));
    619. 

  619.   memcpy(&rpc_st.__len, &__len, sizeof(socklen_t));
    620. 

  620.   cmd[0] = RPC_CONNECT;
    621. 

  621.   memcpy(&cmd[1], &rpc_st, sizeof(struct connect_st));
    622. 

  622.   pthread_mutex_lock(&lock);
    623. 

  623.   send_command(fdret_sock, cmd);
    624. 

  624.   /*
    625. 

  625.   if(sock_type && O_NONBLOCK) {
    626. 

  626.     //pthread_mutex_unlock(&lock);
    627. 

  627.     //return EINPROGRESS;
    628. 

  628.   }
    629. 

  629.   */
    630. 

  630.   err = get_retval();
    631. 

  631.   pthread_mutex_unlock(&lock);
    632. 

  632.   //handle_error("connect", "", err);
    633. 

  633.   return err;
    634. 

  634. }
    635. 

  635. 

  636. /*------------------------------------------------------------------------------
    637. 

  637. ---------------------------------- select() ------------------------------------
    638. 

  638. ------------------------------------------------------------------------------*/
    639. 

  639. 

  640. /* int n, fd_set *readfds, fd_set *writefds,
    641. 

  641. fd_set *exceptfds, struct timeval *timeout */
    642. 

  642. int select(SELECT_SIG)
    643. 

  643. {
    644. 

  644.   //dwr("select():\n");
    645. 

  645.   return realselect(n, readfds, writefds, exceptfds, timeout);
    646. 

  646. }
    647. 

  647. 

  648. /*------------------------------------------------------------------------------
    649. 

  649. ------------------------------------ bind() ------------------------------------
    650. 

  650. ------------------------------------------------------------------------------*/
    651. 

  651. 

  652. /* int sockfd, const struct sockaddr *addr, socklen_t addrlen
    653. 

  653.    bind() intercept function */
    654. 

  654. int bind(BIND_SIG)
    655. 

  655. {
    656. 

  656.   dwr("\n\nbind(%d):\n", sockfd);
    657. 

  657.   print_addr(addr);
    658. 

  658. #ifdef CHECKS
    659. 

  659.   /* Check that this is a valid fd */
    660. 

  660.   if(fcntl(sockfd, F_GETFD) < 0) {
    661. 

  661.     errno = EBADF;
    662. 

  662.     handle_error("bind", "EBADF", -1);
    663. 

  663.     return -1;
    664. 

  664.   }
    665. 

  665.   /* Check that it is a socket */
    666. 

  666.   int opt = -1;
    667. 

  667.   socklen_t opt_len;
    668. 

  668.   if(getsockopt(sockfd, SOL_SOCKET, SO_TYPE, (void *) &opt, &opt_len) < 0) {
    669. 

  669.     errno = ENOTSOCK;
    670. 

  670.     handle_error("bind", "ENOTSOCK", -1);
    671. 

  671.     return -1;
    672. 

  672.   }
    673. 

  673. #endif
    674. 

  674. 

  675.   int err;
    676. 

  676.   /* make sure we don't touch any standard outputs */
    677. 

  677.   if(sockfd == STDIN_FILENO || sockfd == STDOUT_FILENO || sockfd == STDERR_FILENO)
    678. 

  678.     return(realbind(sockfd, addr, addrlen));
    679. 

  679. 

  680.   /* If local, just use normal syscall */
    681. 

  681.   struct sockaddr_in *connaddr;
    682. 

  682.   connaddr = (struct sockaddr_in *)addr;
    683. 

  683. 

  684.   if(connaddr->sin_family == AF_LOCAL
    685. 

  685.     || connaddr->sin_family == AF_NETLINK
    686. 

  686.     || connaddr->sin_family == AF_UNIX) {
    687. 

  687.       int err = realbind(sockfd, addr, addrlen);
    688. 

  688.       dwr("realbind, err = %d\n", err);
    689. 

  689.       return err;
    690. 

  690.   }
    691. 

  691. 

  692.   /* Assemble and send RPC */
    693. 

  693.   char cmd[BUF_SZ];
    694. 

  694.   struct bind_st rpc_st;
    695. 

  695.   rpc_st.sockfd = sockfd;
    696. 

  696.   rpc_st.__tid = syscall(SYS_gettid);
    697. 

  697.   memcpy(&rpc_st.addr, addr, sizeof(struct sockaddr));
    698. 

  698.   memcpy(&rpc_st.addrlen, &addrlen, sizeof(socklen_t));
    699. 

  699.   cmd[0]=RPC_BIND;
    700. 

  700.   memcpy(&cmd[1], &rpc_st, sizeof(struct bind_st));
    701. 

  701.   pthread_mutex_lock(&lock);
    702. 

  702.   send_command(fdret_sock, cmd);
    703. 

  703.   err = get_retval();
    704. 

  704.   pthread_mutex_unlock(&lock);
    705. 

  705.   errno = ERR_OK;
    706. 

  706.   handle_error("bind", "", err);
    707. 

  707.   return err;
    708. 

  708. }
    709. 

  709. 

  710. 

  711. /*------------------------------------------------------------------------------
    712. 

  712. ----------------------------------- accept4() ----------------------------------
    713. 

  713. ------------------------------------------------------------------------------*/
    714. 

  714. 

  715. 

  716. /* int sockfd, struct sockaddr *addr, socklen_t *addrlen, int flags */
    717. 

  717. int accept4(ACCEPT4_SIG)
    718. 

  718. {
    719. 

  719.   dwr("\n\naccept4(%d):\n", sockfd);
    720. 

  720. #ifdef CHECKS
    721. 

  721.   if (flags & ~(SOCK_CLOEXEC | SOCK_NONBLOCK)) {
    722. 

  722.     errno = EINVAL;
    723. 

  723.     return -1;
    724. 

  724.   }
    725. 

  725. #endif
    726. 

  726.   int newfd = accept(sockfd, addr, addrlen);
    727. 

  727.   if(newfd > 0) {
    728. 

  728.     if(flags & SOCK_CLOEXEC)
    729. 

  729.       fcntl(newfd, F_SETFL, FD_CLOEXEC);
    730. 

  730.     if(flags & SOCK_NONBLOCK)
    731. 

  731.       fcntl(newfd, F_SETFL, O_NONBLOCK);
    732. 

  732.   }
    733. 

  733.   handle_error("accept4", "", newfd);
    734. 

  734.   return newfd;
    735. 

  735. }
    736. 

  736. 

  737. 

  738. /*------------------------------------------------------------------------------
    739. 

  739. ----------------------------------- accept() -----------------------------------
    740. 

  740. ------------------------------------------------------------------------------*/
    741. 

  741. 

  742. /* int sockfd struct sockaddr *addr, socklen_t *addrlen
    743. 

  743.    accept() intercept function */
    744. 

  744. int accept(ACCEPT_SIG)
    745. 

  745. {
    746. 

  746.   dwr("\n\naccept(%d):\n", sockfd);
    747. 

  747. #ifdef CHECKS
    748. 

  748.   /* Check that this is a valid fd */
    749. 

  749.   if(fcntl(sockfd, F_GETFD) < 0) {
    750. 

  750.     return -1;
    751. 

  751.     errno = EBADF;
    752. 

  752.     dwr("EBADF\n");
    753. 

  753.     handle_error("accept", "EBADF", -1);
    754. 

  754.     return -1;
    755. 

  755.   }
    756. 

  756.   /* Check that it is a socket */
    757. 

  757.   int opt;
    758. 

  758.   socklen_t opt_len;
    759. 

  759.   if(getsockopt(sockfd, SOL_SOCKET, SO_TYPE, (void *) &opt, &opt_len) < 0) {
    760. 

  760.     errno = ENOTSOCK;
    761. 

  761.     dwr("ENOTSOCK\n");
    762. 

  762.     handle_error("accept", "ENOTSOCK", -1);
    763. 

  763.     return -1;
    764. 

  764.   }
    765. 

  765.   /* Check that this socket supports accept() */
    766. 

  766.   if(!(opt && (SOCK_STREAM | SOCK_SEQPACKET))) {
    767. 

  767.     errno = EOPNOTSUPP;
    768. 

  768.     dwr("EOPNOTSUPP\n");
    769. 

  769.     handle_error("accept", "EOPNOTSUPP", -1);
    770. 

  770.     return -1;
    771. 

  771.   }
    772. 

  772.   /* Check that we haven't hit the soft-limit file descriptors allowed */
    773. 

  773.   struct rlimit rl;
    774. 

  774.   getrlimit(RLIMIT_NOFILE, &rl);
    775. 

  775.   if(sockfd >= rl.rlim_cur){
    776. 

  776.     errno = EMFILE;
    777. 

  777.     dwr("EMFILE\n");
    778. 

  778.     handle_error("accept", "EMFILE", -1);
    779. 

  779.     return -1;
    780. 

  780.   }
    781. 

  781.   /* Check address length */
    782. 

  782.   if(addrlen < 0) {
    783. 

  783.     errno = EINVAL;
    784. 

  784.     dwr("EINVAL\n");
    785. 

  785.     handle_error("accept", "EINVAL", -1);
    786. 

  786.     return -1;
    787. 

  787.   }
    788. 

  788. #endif
    789. 

  789. 

  790.   /* redirect calls for standard I/O descriptors to kernel */
    791. 

  791.   if(sockfd == STDIN_FILENO || sockfd == STDOUT_FILENO || sockfd == STDERR_FILENO){
    792. 

  792.     dwr("realaccept():\n");
    793. 

  793.     return(realaccept(sockfd, addr, addrlen));
    794. 

  794.   }
    795. 

  795. 

  796.   if(addr)
    797. 

  797.     addr->sa_family = AF_INET;
    798. 

  798.     /* TODO: also get address info */
    799. 

  799. 

  800.   char cmd[BUF_SZ];
    801. 

  801.   if(realaccept == NULL) {
    802. 

  802.     handle_error("accept", "Unresolved symbol [accept]", -1);
    803. 

  803.     return -1;
    804. 

  804.   }
    805. 

  805.   //if(opt & O_NONBLOCK)
    806. 

  806.     //fcntl(sockfd, F_SETFL, O_NONBLOCK);
    807. 

  807. 

  808.   char rbuf[16], c[1];
    809. 

  809.   int new_conn_socket;
    810. 

  810. 

  811.   int n = read(sockfd, c, sizeof(c)); // Read signal byte
    812. 

  812.   if(n > 0)
    813. 

  813.   {
    814. 

  814.     ssize_t size = sock_fd_read(fdret_sock, rbuf, sizeof(rbuf), &new_conn_socket);
    815. 

  815.     if(size > 0) {
    816. 

  816.       /* Send our local-fd number back to service so it can complete its mapping table */
    817. 

  817.       memset(cmd, '\0', BUF_SZ);
    818. 

  818.       cmd[0] = RPC_MAP;
    819. 

  819.       memcpy(&cmd[1], &new_conn_socket, sizeof(new_conn_socket));
    820. 

  820.       pthread_mutex_lock(&lock);
    821. 

  821.       int n_write = write(fdret_sock, cmd, BUF_SZ);
    822. 

  822.       if(n_write < 0) {
    823. 

  823.         errno = ECONNABORTED; // FIXME: Closest match, service unreachable
    824. 

  824.         handle_error("accept", "ECONNABORTED - Error sending perceived FD to service", -1);
    825. 

  825.         return -1;
    826. 

  826.       }
    827. 

  827.       pthread_mutex_unlock(&lock);
    828. 

  828.       errno = ERR_OK;
    829. 

  829.       dwr("*accept()=%d\n", new_conn_socket);
    830. 

  830.       handle_error("accept", "", new_conn_socket);
    831. 

  831.       return new_conn_socket; // OK
    832. 

  832.     }
    833. 

  833.     else {
    834. 

  834.       errno = ECONNABORTED; // FIXME: Closest match, service unreachable
    835. 

  835.       handle_error("accept", "ECONNABORTED - Error receiving new FD from service", -1);
    836. 

  836.       return -1;
    837. 

  837.     }
    838. 

  838.   }
    839. 

  839.   errno = EBADF;
    840. 

  840.   handle_error("accept", "EBADF - Error reading signal byte from service", -1);
    841. 

  841.   return -1;
    842. 

  842. }
    843. 

  843. 

  844. 

  845. /*------------------------------------------------------------------------------
    846. 

  846. ------------------------------------- listen()----------------------------------
    847. 

  847. ------------------------------------------------------------------------------*/
    848. 

  848. 

  849. /* int sockfd, int backlog
    850. 

  850.    listen() intercept function */
    851. 

  851. int listen(LISTEN_SIG)
    852. 

  852. {
    853. 

  853.   dwr("\n\nlisten(%d):\n", sockfd);
    854. 

  854.   int sock_type;
    855. 

  855.   socklen_t sock_type_len = sizeof(sock_type);
    856. 

  856. 

  857.   #ifdef CHECKS
    858. 

  858.   /* Check that this is a valid fd */
    859. 

  859.   if(fcntl(sockfd, F_GETFD) < 0) {
    860. 

  860.     errno = EBADF;
    861. 

  861.     handle_error("listen", "EBADF", -1);
    862. 

  862.     return -1;
    863. 

  863.   }
    864. 

  864.   /* Check that it is a socket */
    865. 

  865.   if(getsockopt(sockfd, SOL_SOCKET, SO_TYPE, (void *) &sock_type, &sock_type_len) < 0) {
    866. 

  866.     errno = ENOTSOCK;
    867. 

  867.     handle_error("listen", "ENOTSOCK", -1);
    868. 

  868.     return -1;
    869. 

  869.   }
    870. 

  870.   /* Check that this socket supports accept() */
    871. 

  871.   if(!(sock_type && (SOCK_STREAM | SOCK_SEQPACKET))) {
    872. 

  872.     errno = EOPNOTSUPP;
    873. 

  873.     handle_error("listen", "EOPNOTSUPP", -1);
    874. 

  874.     return -1;
    875. 

  875.   }
    876. 

  876.   #endif
    877. 

  877. 

  878.   /* make sure we don't touch any standard outputs */
    879. 

  879.   if(sockfd == STDIN_FILENO || sockfd == STDOUT_FILENO || sockfd == STDERR_FILENO)
    880. 

  880.     return(reallisten(sockfd, backlog));
    881. 

  881. 

  882.   if(is_mapped_to_service(sockfd) < 0) {
    883. 

  883.     // We now know this socket is not one of our socketpairs
    884. 

  884.     int err = reallisten(sockfd, backlog);
    885. 

  885.     dwr("reallisten()=%d\n", err);
    886. 

  886.     return err;
    887. 

  887.   }
    888. 

  888. 

  889.   /* Assemble and send RPC */
    890. 

  890.   char cmd[BUF_SZ];
    891. 

  891.   memset(cmd, '\0', BUF_SZ);
    892. 

  892.   struct listen_st rpc_st;
    893. 

  893.   rpc_st.sockfd = sockfd;
    894. 

  894.   rpc_st.backlog = backlog;
    895. 

  895.   rpc_st.__tid = syscall(SYS_gettid);
    896. 

  896.   cmd[0] = RPC_LISTEN;
    897. 

  897.   memcpy(&cmd[1], &rpc_st, sizeof(struct listen_st));
    898. 

  898.   pthread_mutex_lock(&lock);
    899. 

  899.   send_command(fdret_sock, cmd);
    900. 

  900.   int err = get_retval();
    901. 

  901.   pthread_mutex_unlock(&lock);
    902. 

  902.   handle_error("listen", "", ERR_OK);
    903. 

  903.   return ERR_OK;
    904. 

  904. }
    905. 

  905. 

  906. /*------------------------------------------------------------------------------
    907. 

  907. -------------------------------------- clone()----------------------------------
    908. 

  908. ------------------------------------------------------------------------------*/
    909. 

  909. 

  910. // int (*fn)(void *), void *child_stack, int flags, void *arg, ...
    911. 

  911. /*
    912. 

  912. int clone(CLONE_SIG)
    913. 

  913. {
    914. 

  914.   dwr("clone()\n");
    915. 

  915.   return realclone(fn, child_stack, flags, arg);
    916. 

  916. }
    917. 

  917. */
    918. 

  918. 

  919. 

  920. /*------------------------------------------------------------------------------
    921. 

  921. -------------------------------------- poll()-----------------------------------
    922. 

  922. ------------------------------------------------------------------------------*/
    923. 

  923. 

  924. // struct pollfd *fds, nfds_t nfds, int timeout
    925. 

  925. /*
    926. 

  926. int poll(POLL_SIG)
    927. 

  927. {
    928. 

  928.   dwr("poll()\n");
    929. 

  929.   return realpoll(fds, nfds, timeout);
    930. 

  930.   //return ERESTART_RESTARTBLOCK;
    931. 

  931. }
    932. 

  932. */
    933. 

  933. 

  934. /*------------------------------------------------------------------------------
    935. 

  935. -------------------------------------- close()-----------------------------------
    936. 

  936. ------------------------------------------------------------------------------*/
    937. 

  937. 

  938. // int fd
    939. 

  939. int close(CLOSE_SIG)
    940. 

  940. {
    941. 

  941.   dwr("close(%d)\n", fd);
    942. 

  942.   if(fd == fdret_sock)
    943. 

  943.     return 0; // FIXME: Ignore request to shut down our rpc fd, this is *almost always* safe
    944. 

  944.   if(fd != STDIN_FILENO && fd != STDOUT_FILENO && fd != STDERR_FILENO){
    945. 

  945.     return realclose(fd);
    946. 

  946.   }
    947. 

  947. }
    948. 

  948. 

  949. /*------------------------------------------------------------------------------
    950. 

  950. -------------------------------------- dup2()-----------------------------------
    951. 

  951. ------------------------------------------------------------------------------*/
    952. 

  952. 

  953. // int oldfd, int newfd
    954. 

  954. int dup2(DUP2_SIG)
    955. 

  955. {
    956. 

  956.   dwr("dup2(%d, %d)\n", oldfd, newfd);
    957. 

  957.     if(oldfd == fdret_sock) {
    958. 

  958.     dwr("client application attempted to dup2 RPC socket (%d). This is not allowed.\n", oldfd);
    959. 

  959.     errno = EBADF;
    960. 

  960.     return -1;
    961. 

  961.   }
    962. 

  962.   if(oldfd != STDIN_FILENO && oldfd != STDOUT_FILENO && oldfd != STDERR_FILENO) {
    963. 

  963.     return realdup2(oldfd, newfd);
    964. 

  964.   }
    965. 

  965. }
    966. 

  966. 

  967. /*------------------------------------------------------------------------------
    968. 

  968. -------------------------------------- dup3()-----------------------------------
    969. 

  969. ------------------------------------------------------------------------------*/
    970. 

  970. 

  971. // int oldfd, int newfd, int flags
    972. 

  972. int dup3(DUP3_SIG)
    973. 

  973. {
    974. 

  974.   dwr("dup3(%d, %d, %d)\n", oldfd, newfd, flags);
    975. 

  975. #ifdef DEBUG
    976. 

  976.   // Only do this check if we want to debug the intercept, otherwise, dont mess with 
    977. 

  977.   // the client application's logging methods
    978. 

  978.   if(newfd == STDIN_FILENO || newfd == STDOUT_FILENO || newfd == STDERR_FILENO)
    979. 

  979.     return newfd; // FIXME: This is to prevent httpd from dup'ing over our stderr 
    980. 

  980.                   //and preventing us from debugging
    981. 

  981.   else
    982. 

  982. #endif
    983. 

  983.     return realdup3(oldfd, newfd, flags);
    984. 

  984. }
    985. 

  985. 

  986. 

  987. /*------------------------------------------------------------------------------
    988. 

  988. ------------------------------------ syscall()----------------------------------
    989. 

  989. ------------------------------------------------------------------------------*/
    990. 

  990. 

  991. long syscall(SYSCALL_SIG)
    992. 

  992. {
    993. 

  993.   dwr("syscall(%u, ...):\n", number);
    994. 

  994. 

  995.   va_list ap;
    996. 

  996.   uintptr_t a,b,c,d,e,f;
    997. 

  997.   va_start(ap, number);
    998. 

  998.   a=va_arg(ap, uintptr_t);
    999. 

  999.   b=va_arg(ap, uintptr_t);
    1000. 

  1000.   c=va_arg(ap, uintptr_t);
    1001. 

  1001.   d=va_arg(ap, uintptr_t);
    1002. 

  1002.   e=va_arg(ap, uintptr_t);
    1003. 

  1003.   f=va_arg(ap, uintptr_t);
    1004. 

  1004.   va_end(ap);
    1005. 

  1005. 

  1006. #if defined(__i386__)
    1007. 

  1007.   /* TODO: Implement for 32-bit systems: syscall(__NR_socketcall, 18, args);
    1008. 

  1008.   args[0] = (unsigned long) fd;
    1009. 

  1009.   args[1] = (unsigned long) addr;
    1010. 

  1010.   args[2] = (unsigned long) addrlen;
    1011. 

  1011.   args[3] = (unsigned long) flags;
    1012. 

  1012.   */
    1013. 

  1013. #else
    1014. 

  1014.   if(number == __NR_accept4) {
    1015. 

  1015.     int sockfd = a;
    1016. 

  1016.     struct sockaddr * addr = (struct sockaddr*)b;
    1017. 

  1017.     socklen_t * addrlen = (socklen_t*)c;
    1018. 

  1018.     int flags = d;
    1019. 

  1019.     int old_errno = errno;
    1020. 

  1020.     int err = accept4(sockfd, addr, addrlen, flags);
    1021. 

  1021.     errno = old_errno;
    1022. 

  1022. 

  1023.     if(err == -EBADF) {
    1024. 

  1024.       //errno = EAGAIN;
    1025. 

  1025.       err = -EAGAIN;
    1026. 

  1026.       //exit(0);
    1027. 

  1027.     }
    1028. 

  1028. 

  1029.     return err;
    1030. 

  1030.   }
    1031. 

  1031. #endif
    1032. 

  1032.   return realsyscall(number,a,b,c,d,e,f);
    1033. 

  1033. }
    1034.