File: passopenfile.h

package info (click to toggle)
cfengine3 3.24.2-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 37,552 kB
  • sloc: ansic: 163,161; sh: 10,296; python: 2,950; makefile: 1,744; lex: 784; yacc: 633; perl: 211; pascal: 157; xml: 21; sed: 13
file content (95 lines) | stat: -rw-r--r-- 4,350 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
 
/*
  Copyright 2024 Northern.tech AS

  This file is part of CFEngine 3 - written and maintained by Northern.tech AS.

  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
  You may obtain a copy of the License at

      http://www.apache.org/licenses/LICENSE-2.0

  Unless required by applicable law or agreed to in writing, software
  distributed under the License is distributed on an "AS IS" BASIS,
  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  See the License for the specific language governing permissions and
  limitations under the License.

  To the extent this program is licensed as part of the Enterprise
  versions of CFEngine, the applicable Commercial Open Source License
  (COSL) may apply to this file if you as a licensee so wish it. See
  included file COSL.txt.
*/
#ifndef CFENGINE_PASSOPENFILE_H
#define CFENGINE_PASSOPENFILE_H

/* Sharing file descriptors between processes.
 *
 * This presumes a local communication socket (archetypically a Unix
 * Domain Socket, opened with domain AF_UNIX - also known as AF_LOCAL)
 * between two processes on a single machine.  One process has an open
 * file descriptor (and possibly some accompanying data), to be passed
 * to the other process.  The former Put()s, the latter Get()s to
 * implement this.  See ../tests/unit/passopenfile_test.c for a test
 * that illustrates usage.
 *
 * The accompanying text is optional: if NULL is passed to Put(),
 * Get() shall receive NULL; in contrast, any non-NULL pointer (even
 * to an empty string) shall result in Get() allocating memory in
 * which to receive a copy (even if it's just allocating one byte in
 * which to store a '\0').  Texts over 1023 bytes shall be truncated.
 *
 * Details of how the local socket is established are left to the
 * callers; one end shall need to bind() a listen()ing socket so that
 * the other can connect() one end and the first can accept() the
 * other end.  Callers are responsible for ensuring the local sockets
 * are ready for use, e.g. by calling select().
 *
 * This allows a process that has accept()ed a connection to hand off
 * its socket (and the information accept() gave it about the other
 * end) to another process for handling; or allows one process to
 * initiate a connection and then hand it off to another to work with
 * it.  We use this where there is one process that naturally should
 * do certain jobs but some other process to which initiating the
 * connection, or accept()ing it, is more practical.
 *
 * Passing local file descriptors can also be used for privilege
 * separation, with a privileged process sending open descriptors to a
 * worker process that lacks privileges to open the files but handles
 * untrusted data so can't be trusted to perform access control
 * reliably.  However (see following) this only works on Unix.
 *
 * On MinGW (i.e. MS-Win), the present implementation can only pass
 * sockets, not local file descriptors.  It also may block, calling
 * select(), in its improvised protocol for exchanging needed
 * information over the local sockets.
 *
 * The essential activity here is the same as GNUlib's passfd, albeit
 * with a slightly different API (most notably, providing for
 * transmission of a text message accompanying the descriptor).
 */

/* Send a file descriptor to another process.
 *
 * @param uds The local communications socket.
 * @param descriptor Descriptor for the open file to transfer.
 * @param text NULL or a '\0'-terminated string to transmit.
 * @return True on successful transmission.
 */
extern bool PassOpenFile_Put(int uds, int descriptor, const char *text);

/* Receive a file descriptor from another process.
 *
 * On success, the caller is responsible for close()ing the descriptor
 * and free()ing the text (if any).  If text == NULL is passed, any
 * text transmitted with the descriptor is (read, if necessary, and)
 * discarded; otherwise, on failure, *text should be treated as
 * uninitialised (even if it was initialised before).
 *
 * @param uds The local communications socket.
 * @param text Pointer to where to record the returned string.
 * @return The received descriptor or, on failure, -1.
 */
extern int PassOpenFile_Get(int uds, char **text);

#endif /* CFENGINE_PASSOPENFILE_H */