reuseaddr_ports_exhausted.c 4.0 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162
  1. // SPDX-License-Identifier: GPL-2.0-only
  2. /*
  3. * Check if we can fully utilize 4-tuples for connect().
  4. *
  5. * Rules to bind sockets to the same port when all ephemeral ports are
  6. * exhausted.
  7. *
  8. * 1. if there are TCP_LISTEN sockets on the port, fail to bind.
  9. * 2. if there are sockets without SO_REUSEADDR, fail to bind.
  10. * 3. if SO_REUSEADDR is disabled, fail to bind.
  11. * 4. if SO_REUSEADDR is enabled and SO_REUSEPORT is disabled,
  12. * succeed to bind.
  13. * 5. if SO_REUSEADDR and SO_REUSEPORT are enabled and
  14. * there is no socket having the both options and the same EUID,
  15. * succeed to bind.
  16. * 6. fail to bind.
  17. *
  18. * Author: Kuniyuki Iwashima <kuniyu@amazon.co.jp>
  19. */
  20. #include <arpa/inet.h>
  21. #include <netinet/in.h>
  22. #include <sys/socket.h>
  23. #include <sys/types.h>
  24. #include <unistd.h>
  25. #include "kselftest_harness.h"
  26. struct reuse_opts {
  27. int reuseaddr[2];
  28. int reuseport[2];
  29. };
  30. struct reuse_opts unreusable_opts[12] = {
  31. {{0, 0}, {0, 0}},
  32. {{0, 0}, {0, 1}},
  33. {{0, 0}, {1, 0}},
  34. {{0, 0}, {1, 1}},
  35. {{0, 1}, {0, 0}},
  36. {{0, 1}, {0, 1}},
  37. {{0, 1}, {1, 0}},
  38. {{0, 1}, {1, 1}},
  39. {{1, 0}, {0, 0}},
  40. {{1, 0}, {0, 1}},
  41. {{1, 0}, {1, 0}},
  42. {{1, 0}, {1, 1}},
  43. };
  44. struct reuse_opts reusable_opts[4] = {
  45. {{1, 1}, {0, 0}},
  46. {{1, 1}, {0, 1}},
  47. {{1, 1}, {1, 0}},
  48. {{1, 1}, {1, 1}},
  49. };
  50. int bind_port(struct __test_metadata *_metadata, int reuseaddr, int reuseport)
  51. {
  52. struct sockaddr_in local_addr;
  53. int len = sizeof(local_addr);
  54. int fd, ret;
  55. fd = socket(AF_INET, SOCK_STREAM, 0);
  56. ASSERT_NE(-1, fd) TH_LOG("failed to open socket.");
  57. ret = setsockopt(fd, SOL_SOCKET, SO_REUSEADDR, &reuseaddr, sizeof(int));
  58. ASSERT_EQ(0, ret) TH_LOG("failed to setsockopt: SO_REUSEADDR.");
  59. ret = setsockopt(fd, SOL_SOCKET, SO_REUSEPORT, &reuseport, sizeof(int));
  60. ASSERT_EQ(0, ret) TH_LOG("failed to setsockopt: SO_REUSEPORT.");
  61. local_addr.sin_family = AF_INET;
  62. local_addr.sin_addr.s_addr = inet_addr("127.0.0.1");
  63. local_addr.sin_port = 0;
  64. if (bind(fd, (struct sockaddr *)&local_addr, len) == -1) {
  65. close(fd);
  66. return -1;
  67. }
  68. return fd;
  69. }
  70. TEST(reuseaddr_ports_exhausted_unreusable)
  71. {
  72. struct reuse_opts *opts;
  73. int i, j, fd[2];
  74. for (i = 0; i < 12; i++) {
  75. opts = &unreusable_opts[i];
  76. for (j = 0; j < 2; j++)
  77. fd[j] = bind_port(_metadata, opts->reuseaddr[j], opts->reuseport[j]);
  78. ASSERT_NE(-1, fd[0]) TH_LOG("failed to bind.");
  79. EXPECT_EQ(-1, fd[1]) TH_LOG("should fail to bind.");
  80. for (j = 0; j < 2; j++)
  81. if (fd[j] != -1)
  82. close(fd[j]);
  83. }
  84. }
  85. TEST(reuseaddr_ports_exhausted_reusable_same_euid)
  86. {
  87. struct reuse_opts *opts;
  88. int i, j, fd[2];
  89. for (i = 0; i < 4; i++) {
  90. opts = &reusable_opts[i];
  91. for (j = 0; j < 2; j++)
  92. fd[j] = bind_port(_metadata, opts->reuseaddr[j], opts->reuseport[j]);
  93. ASSERT_NE(-1, fd[0]) TH_LOG("failed to bind.");
  94. if (opts->reuseport[0] && opts->reuseport[1]) {
  95. EXPECT_EQ(-1, fd[1]) TH_LOG("should fail to bind because both sockets successfully listened.");
  96. } else {
  97. EXPECT_NE(-1, fd[1]) TH_LOG("should succeed to bind to connect to different destinations.");
  98. }
  99. for (j = 0; j < 2; j++)
  100. if (fd[j] != -1)
  101. close(fd[j]);
  102. }
  103. }
  104. TEST(reuseaddr_ports_exhausted_reusable_different_euid)
  105. {
  106. struct reuse_opts *opts;
  107. int i, j, ret, fd[2];
  108. uid_t euid[2] = {10, 20};
  109. for (i = 0; i < 4; i++) {
  110. opts = &reusable_opts[i];
  111. for (j = 0; j < 2; j++) {
  112. ret = seteuid(euid[j]);
  113. ASSERT_EQ(0, ret) TH_LOG("failed to seteuid: %d.", euid[j]);
  114. fd[j] = bind_port(_metadata, opts->reuseaddr[j], opts->reuseport[j]);
  115. ret = seteuid(0);
  116. ASSERT_EQ(0, ret) TH_LOG("failed to seteuid: 0.");
  117. }
  118. ASSERT_NE(-1, fd[0]) TH_LOG("failed to bind.");
  119. EXPECT_NE(-1, fd[1]) TH_LOG("should succeed to bind because one socket can be bound in each euid.");
  120. if (fd[1] != -1) {
  121. ret = listen(fd[0], 5);
  122. ASSERT_EQ(0, ret) TH_LOG("failed to listen.");
  123. ret = listen(fd[1], 5);
  124. EXPECT_EQ(-1, ret) TH_LOG("should fail to listen because only one uid reserves the port in TCP_LISTEN.");
  125. }
  126. for (j = 0; j < 2; j++)
  127. if (fd[j] != -1)
  128. close(fd[j]);
  129. }
  130. }
  131. TEST_HARNESS_MAIN