1 /*-------------------------------------------------------------------------
4 * Communication functions between the Frontend and the Backend
6 * These routines handle the low-level details of communication between
7 * frontend and backend. They just shove data across the communication
8 * channel, and are ignorant of the semantics of the data --- or would be,
9 * except for major brain damage in the design of the old COPY OUT protocol.
10 * Unfortunately, COPY OUT was designed to commandeer the communication
11 * channel (it just transfers data without wrapping it into messages).
12 * No other messages can be sent while COPY OUT is in progress; and if the
13 * copy is aborted by an elog(ERROR), we need to close out the copy so that
14 * the frontend gets back into sync. Therefore, these routines have to be
15 * aware of COPY OUT state. (New COPY-OUT is message-based and does *not*
16 * set the DoingCopyOut flag.)
18 * NOTE: generally, it's a bad idea to emit outgoing messages directly with
19 * pq_putbytes(), especially if the message would require multiple calls
20 * to send. Instead, use the routines in pqformat.c to construct the message
21 * in a buffer and then emit it in one call to pq_putmessage. This ensures
22 * that the channel will not be clogged by an incomplete message if execution
23 * is aborted by elog(ERROR) partway through the message. The only non-libpq
24 * code that should call pq_putbytes directly is old-style COPY OUT.
26 * At one time, libpq was shared between frontend and backend, but now
27 * the backend's "backend/libpq" is quite separate from "interfaces/libpq".
28 * All that remains is similarities of names to trap the unwary...
30 * Portions Copyright (c) 1996-2002, PostgreSQL Global Development Group
31 * Portions Copyright (c) 1994, Regents of the University of California
33 * $Header: /cvsroot/pgsql/src/backend/libpq/pqcomm.c,v 1.156 2003/06/09 17:59:19 tgl Exp $
35 *-------------------------------------------------------------------------
38 /*------------------------
42 * StreamServerPort - Open postmaster's server port
43 * StreamConnection - Create new connection with client
44 * StreamClose - Close a client/backend connection
45 * TouchSocketFile - Protect socket file against /tmp cleaners
46 * pq_init - initialize libpq at backend startup
47 * pq_close - shutdown libpq at backend exit
50 * pq_getbytes - get a known number of bytes from connection
51 * pq_getstring - get a null terminated string from connection
52 * pq_getmessage - get a message with length word from connection
53 * pq_getbyte - get next byte from connection
54 * pq_peekbyte - peek at next byte from connection
55 * pq_putbytes - send bytes to connection (not flushed until pq_flush)
56 * pq_flush - flush pending output
58 * message-level I/O (and old-style-COPY-OUT cruft):
59 * pq_putmessage - send a normal message (suppressed in COPY OUT mode)
60 * pq_startcopyout - inform libpq that a COPY OUT transfer is beginning
61 * pq_endcopyout - end a COPY OUT transfer
63 *------------------------
73 #include <sys/socket.h>
77 #include <netinet/in.h>
78 #ifdef HAVE_NETINET_TCP_H
79 #include <netinet/tcp.h>
81 #include <arpa/inet.h>
86 #include "libpq/libpq.h"
87 #include "miscadmin.h"
88 #include "storage/ipc.h"
91 static void pq_close(void);
93 #ifdef HAVE_UNIX_SOCKETS
94 static int Lock_AF_UNIX(unsigned short portNumber, char *unixSocketName);
95 static int Setup_AF_UNIX(void);
96 #endif /* HAVE_UNIX_SOCKETS */
100 * Configuration options
102 int Unix_socket_permissions;
103 char *Unix_socket_group;
107 * Buffers for low-level I/O
110 #define PQ_BUFFER_SIZE 8192
112 static unsigned char PqSendBuffer[PQ_BUFFER_SIZE];
113 static int PqSendPointer; /* Next index to store a byte in
116 static unsigned char PqRecvBuffer[PQ_BUFFER_SIZE];
117 static int PqRecvPointer; /* Next index to read a byte from
119 static int PqRecvLength; /* End of data available in PqRecvBuffer */
124 static bool DoingCopyOut;
127 /* --------------------------------
128 * pq_init - initialize libpq at backend startup
129 * --------------------------------
134 PqSendPointer = PqRecvPointer = PqRecvLength = 0;
135 DoingCopyOut = false;
136 on_proc_exit(pq_close, 0);
140 /* --------------------------------
141 * pq_close - shutdown libpq at backend exit
143 * Note: in a standalone backend MyProcPort will be null,
144 * don't crash during exit...
145 * --------------------------------
150 if (MyProcPort != NULL)
152 /* Cleanly shut down SSL layer */
153 secure_close(MyProcPort);
155 * Formerly we did an explicit close() here, but it seems better
156 * to leave the socket open until the process dies. This allows
157 * clients to perform a "synchronous close" if they care --- wait
158 * till the transport layer reports connection closure, and you
159 * can be sure the backend has exited.
161 * We do set sock to -1 to prevent any further I/O, though.
163 MyProcPort->sock = -1;
170 * Streams -- wrapper around Unix socket system calls
173 * Stream functions are used for vanilla TCP connection protocol.
176 static char sock_path[MAXPGPATH];
180 * Shutdown routine for backend connection
181 * If a Unix socket is used for communication, explicitly close it.
183 #ifdef HAVE_UNIX_SOCKETS
187 Assert(sock_path[0]);
190 #endif /* HAVE_UNIX_SOCKETS */
193 * StreamServerPort -- open a sock stream "listening" port.
195 * This initializes the Postmaster's connection-accepting port *fdP.
197 * RETURNS: STATUS_OK or STATUS_ERROR
201 StreamServerPort(int family, char *hostName, unsigned short portNumber,
202 char *unixSocketName, int *fdP)
209 char portNumberStr[64];
211 struct addrinfo *addrs = NULL;
212 struct addrinfo hint;
214 #ifdef HAVE_UNIX_SOCKETS
215 Assert(family == AF_UNIX || isAF_INETx(family));
217 Assert(isAF_INETx(family));
220 /* Initialize hint structure */
221 MemSet(&hint, 0, sizeof(hint));
222 hint.ai_family = family;
223 hint.ai_flags = AI_PASSIVE;
224 hint.ai_socktype = SOCK_STREAM;
226 #ifdef HAVE_UNIX_SOCKETS
227 if (family == AF_UNIX)
229 if (Lock_AF_UNIX(portNumber, unixSocketName) != STATUS_OK)
234 #endif /* HAVE_UNIX_SOCKETS */
236 snprintf(portNumberStr, sizeof(portNumberStr), "%d", portNumber);
237 service = portNumberStr;
240 ret = getaddrinfo2(hostName, service, &hint, &addrs);
241 if (ret || addrs == NULL)
243 elog(LOG, "server socket failure: getaddrinfo2(): %s",
245 freeaddrinfo2(hint.ai_family, addrs);
249 if ((fd = socket(family, SOCK_STREAM, 0)) < 0)
251 elog(LOG, "server socket failure: socket(): %s",
253 freeaddrinfo2(hint.ai_family, addrs);
257 if (isAF_INETx(family))
259 if ((setsockopt(fd, SOL_SOCKET, SO_REUSEADDR, (char *) &one,
262 elog(LOG, "server socket failure: setsockopt(SO_REUSEADDR): %s",
264 freeaddrinfo2(hint.ai_family, addrs);
269 Assert(addrs->ai_next == NULL && addrs->ai_family == family);
270 err = bind(fd, addrs->ai_addr, addrs->ai_addrlen);
273 elog(LOG, "server socket failure: bind(): %s\n"
274 "\tIs another postmaster already running on port %d?",
275 strerror(errno), (int) portNumber);
276 if (family == AF_UNIX)
277 elog(LOG, "\tIf not, remove socket node (%s) and retry.",
280 elog(LOG, "\tIf not, wait a few seconds and retry.");
281 freeaddrinfo2(hint.ai_family, addrs);
285 #ifdef HAVE_UNIX_SOCKETS
286 if (family == AF_UNIX)
288 if (Setup_AF_UNIX() != STATUS_OK)
290 freeaddrinfo2(hint.ai_family, addrs);
297 * Select appropriate accept-queue length limit. PG_SOMAXCONN is only
298 * intended to provide a clamp on the request on platforms where an
299 * overly large request provokes a kernel error (are there any?).
301 maxconn = MaxBackends * 2;
302 if (maxconn > PG_SOMAXCONN)
303 maxconn = PG_SOMAXCONN;
305 err = listen(fd, maxconn);
308 elog(LOG, "server socket failure: listen(): %s",
310 freeaddrinfo2(hint.ai_family, addrs);
315 freeaddrinfo2(hint.ai_family, addrs);
320 #ifdef HAVE_UNIX_SOCKETS
323 * Lock_AF_UNIX -- configure unix socket file path
326 Lock_AF_UNIX(unsigned short portNumber, char *unixSocketName)
328 SockAddr saddr; /* just used to get socket path */
330 UNIXSOCK_PATH(saddr.un, portNumber, unixSocketName);
331 strcpy(sock_path, saddr.un.sun_path);
334 * Grab an interlock file associated with the socket file.
336 if (!CreateSocketLockFile(sock_path, true))
340 * Once we have the interlock, we can safely delete any pre-existing
341 * socket file to avoid failure at bind() time.
350 * Setup_AF_UNIX -- configure unix socket permissions
355 /* Arrange to unlink the socket file at exit */
356 on_proc_exit(StreamDoUnlink, 0);
359 * Fix socket ownership/permission if requested. Note we must do this
360 * before we listen() to avoid a window where unwanted connections
361 * could get accepted.
363 Assert(Unix_socket_group);
364 if (Unix_socket_group[0] != '\0')
367 elog(FATAL, "Config value 'unix_socket_group' not supported on this platform");
370 unsigned long int val;
373 val = strtoul(Unix_socket_group, &endptr, 10);
375 { /* numeric group id */
379 { /* convert group name to id */
382 gr = getgrnam(Unix_socket_group);
385 elog(LOG, "server socket failure: no such group '%s'",
391 if (chown(sock_path, -1, gid) == -1)
393 elog(LOG, "server socket failure: could not set group of %s: %s",
394 sock_path, strerror(errno));
400 if (chmod(sock_path, Unix_socket_permissions) == -1)
402 elog(LOG, "server socket failure: could not set permissions on %s: %s",
403 sock_path, strerror(errno));
409 #endif /* HAVE_UNIX_SOCKETS */
413 * StreamConnection -- create a new connection with client using
416 * ASSUME: that this doesn't need to be non-blocking because
417 * the Postmaster uses select() to tell when the server master
418 * socket is ready for accept().
420 * RETURNS: STATUS_OK or STATUS_ERROR
423 StreamConnection(int server_fd, Port *port)
425 ACCEPT_TYPE_ARG3 addrlen;
427 /* accept connection (and fill in the client (remote) address) */
428 addrlen = sizeof(port->raddr);
429 if ((port->sock = accept(server_fd,
430 (struct sockaddr *) &port->raddr,
433 elog(LOG, "StreamConnection: accept() failed: %m");
437 #ifdef SCO_ACCEPT_BUG
439 * UnixWare 7+ and OpenServer 5.0.4 are known to have this bug, but it
440 * shouldn't hurt to catch it for all versions of those platforms.
442 if (port->raddr.sa.sa_family == 0)
443 port->raddr.sa.sa_family = AF_UNIX;
446 /* fill in the server (local) address */
447 addrlen = sizeof(port->laddr);
448 if (getsockname(port->sock, (struct sockaddr *) & port->laddr,
451 elog(LOG, "StreamConnection: getsockname() failed: %m");
455 /* select NODELAY and KEEPALIVE options if it's a TCP connection */
456 if (isAF_INETx(port->laddr.sa.sa_family))
460 if (setsockopt(port->sock, IPPROTO_TCP, TCP_NODELAY,
461 (char *) &on, sizeof(on)) < 0)
463 elog(LOG, "StreamConnection: setsockopt(TCP_NODELAY) failed: %m");
466 if (setsockopt(port->sock, SOL_SOCKET, SO_KEEPALIVE,
467 (char *) &on, sizeof(on)) < 0)
469 elog(LOG, "StreamConnection: setsockopt(SO_KEEPALIVE) failed: %m");
478 * StreamClose -- close a client/backend connection
480 * NOTE: this is NOT used to terminate a session; it is just used to release
481 * the file descriptor in a process that should no longer have the socket
482 * open. (For example, the postmaster calls this after passing ownership
483 * of the connection to a child process.) It is expected that someone else
484 * still has the socket open. So, we only want to close the descriptor,
485 * we do NOT want to send anything to the far end.
488 StreamClose(int sock)
494 * TouchSocketFile -- mark socket file as recently accessed
496 * This routine should be called every so often to ensure that the socket
497 * file has a recent mod date (ordinary operations on sockets usually won't
498 * change the mod date). That saves it from being removed by
499 * overenthusiastic /tmp-directory-cleaner daemons. (Another reason we should
500 * never have put the socket file in /tmp...)
503 TouchSocketFile(void)
505 /* Do nothing if we did not create a socket... */
506 if (sock_path[0] != '\0')
509 * utime() is POSIX standard, utimes() is a common alternative.
510 * If we have neither, there's no way to affect the mod or access
511 * time of the socket :-(
513 * In either path, we ignore errors; there's no point in complaining.
516 utime(sock_path, NULL);
517 #else /* !HAVE_UTIME */
519 utimes(sock_path, NULL);
520 #endif /* HAVE_UTIMES */
521 #endif /* HAVE_UTIME */
526 /* --------------------------------
527 * Low-level I/O routines begin here.
529 * These routines communicate with a frontend client across a connection
530 * already established by the preceding routines.
531 * --------------------------------
535 /* --------------------------------
536 * pq_recvbuf - load some bytes into the input buffer
538 * returns 0 if OK, EOF if trouble
539 * --------------------------------
544 if (PqRecvPointer > 0)
546 if (PqRecvLength > PqRecvPointer)
548 /* still some unread data, left-justify it in the buffer */
549 memmove(PqRecvBuffer, PqRecvBuffer + PqRecvPointer,
550 PqRecvLength - PqRecvPointer);
551 PqRecvLength -= PqRecvPointer;
555 PqRecvLength = PqRecvPointer = 0;
558 /* Can fill buffer from PqRecvLength and upwards */
563 r = secure_read(MyProcPort, PqRecvBuffer + PqRecvLength,
564 PQ_BUFFER_SIZE - PqRecvLength);
569 continue; /* Ok if interrupted */
572 * Careful: an elog() that tries to write to the client would
573 * cause recursion to here, leading to stack overflow and core
574 * dump! This message must go *only* to the postmaster log.
576 elog(COMMERROR, "pq_recvbuf: recv() failed: %m");
582 * EOF detected. We used to write a log message here, but it's
583 * better to expect the ultimate caller to do that.
587 /* r contains number of bytes read, so just incr length */
593 /* --------------------------------
594 * pq_getbyte - get a single byte from connection, or return EOF
595 * --------------------------------
600 while (PqRecvPointer >= PqRecvLength)
602 if (pq_recvbuf()) /* If nothing in buffer, then recv some */
603 return EOF; /* Failed to recv data */
605 return PqRecvBuffer[PqRecvPointer++];
608 /* --------------------------------
609 * pq_peekbyte - peek at next byte from connection
611 * Same as pq_getbyte() except we don't advance the pointer.
612 * --------------------------------
617 while (PqRecvPointer >= PqRecvLength)
619 if (pq_recvbuf()) /* If nothing in buffer, then recv some */
620 return EOF; /* Failed to recv data */
622 return PqRecvBuffer[PqRecvPointer];
625 /* --------------------------------
626 * pq_getbytes - get a known number of bytes from connection
628 * returns 0 if OK, EOF if trouble
629 * --------------------------------
632 pq_getbytes(char *s, size_t len)
638 while (PqRecvPointer >= PqRecvLength)
640 if (pq_recvbuf()) /* If nothing in buffer, then recv some */
641 return EOF; /* Failed to recv data */
643 amount = PqRecvLength - PqRecvPointer;
646 memcpy(s, PqRecvBuffer + PqRecvPointer, amount);
647 PqRecvPointer += amount;
654 /* --------------------------------
655 * pq_getstring - get a null terminated string from connection
657 * The return value is placed in an expansible StringInfo, which has
658 * already been initialized by the caller.
660 * This is used only for dealing with old-protocol clients. The idea
661 * is to produce a StringInfo that looks the same as we would get from
662 * pq_getmessage() with a newer client; we will then process it with
663 * pq_getmsgstring. Therefore, no character set conversion is done here,
664 * even though this is presumably useful only for text.
666 * returns 0 if OK, EOF if trouble
667 * --------------------------------
670 pq_getstring(StringInfo s)
674 /* Reset string to empty */
679 /* Read until we get the terminating '\0' */
682 while (PqRecvPointer >= PqRecvLength)
684 if (pq_recvbuf()) /* If nothing in buffer, then recv some */
685 return EOF; /* Failed to recv data */
688 for (i = PqRecvPointer; i < PqRecvLength; i++)
690 if (PqRecvBuffer[i] == '\0')
692 /* include the '\0' in the copy */
693 appendBinaryStringInfo(s, PqRecvBuffer + PqRecvPointer,
694 i - PqRecvPointer + 1);
695 PqRecvPointer = i + 1; /* advance past \0 */
700 /* If we're here we haven't got the \0 in the buffer yet. */
701 appendBinaryStringInfo(s, PqRecvBuffer + PqRecvPointer,
702 PqRecvLength - PqRecvPointer);
703 PqRecvPointer = PqRecvLength;
708 /* --------------------------------
709 * pq_getmessage - get a message with length word from connection
711 * The return value is placed in an expansible StringInfo, which has
712 * already been initialized by the caller.
713 * Only the message body is placed in the StringInfo; the length word
714 * is removed. Also, s->cursor is initialized to zero for convenience
715 * in scanning the message contents.
717 * If maxlen is not zero, it is an upper limit on the length of the
718 * message we are willing to accept. We abort the connection (by
719 * returning EOF) if client tries to send more than that.
721 * returns 0 if OK, EOF if trouble
722 * --------------------------------
725 pq_getmessage(StringInfo s, int maxlen)
729 /* Reset message buffer to empty */
734 /* Read message length word */
735 if (pq_getbytes((char *) &len, 4) == EOF)
737 elog(COMMERROR, "unexpected EOF within message length word");
742 len -= 4; /* discount length itself */
745 (maxlen > 0 && len > maxlen))
747 elog(COMMERROR, "invalid message length");
753 /* Allocate space for message */
754 enlargeStringInfo(s, len);
756 /* And grab the message */
757 if (pq_getbytes(s->data, len) == EOF)
759 elog(COMMERROR, "incomplete client message");
763 /* Place a trailing null per StringInfo convention */
771 /* --------------------------------
772 * pq_putbytes - send bytes to connection (not flushed until pq_flush)
774 * returns 0 if OK, EOF if trouble
775 * --------------------------------
778 pq_putbytes(const char *s, size_t len)
784 if (PqSendPointer >= PQ_BUFFER_SIZE)
785 if (pq_flush()) /* If buffer is full, then flush it out */
787 amount = PQ_BUFFER_SIZE - PqSendPointer;
790 memcpy(PqSendBuffer + PqSendPointer, s, amount);
791 PqSendPointer += amount;
798 /* --------------------------------
799 * pq_flush - flush pending output
801 * returns 0 if OK, EOF if trouble
802 * --------------------------------
807 static int last_reported_send_errno = 0;
809 unsigned char *bufptr = PqSendBuffer;
810 unsigned char *bufend = PqSendBuffer + PqSendPointer;
812 while (bufptr < bufend)
816 r = secure_write(MyProcPort, bufptr, bufend - bufptr);
821 continue; /* Ok if we were interrupted */
824 * Careful: an elog() that tries to write to the client would
825 * cause recursion to here, leading to stack overflow and core
826 * dump! This message must go *only* to the postmaster log.
828 * If a client disconnects while we're in the midst of output, we
829 * might write quite a bit of data before we get to a safe
830 * query abort point. So, suppress duplicate log messages.
832 if (errno != last_reported_send_errno)
834 last_reported_send_errno = errno;
835 elog(COMMERROR, "pq_flush: send() failed: %m");
839 * We drop the buffered data anyway so that processing can
840 * continue, even though we'll probably quit soon.
846 last_reported_send_errno = 0; /* reset after any successful send */
855 /* --------------------------------
856 * Message-level I/O routines begin here.
858 * These routines understand about the old-style COPY OUT protocol.
859 * --------------------------------
863 /* --------------------------------
864 * pq_putmessage - send a normal message (suppressed in COPY OUT mode)
866 * If msgtype is not '\0', it is a message type code to place before
867 * the message body. If msgtype is '\0', then the message has no type
868 * code (this is only valid in pre-3.0 protocols).
870 * len is the length of the message body data at *s. In protocol 3.0
871 * and later, a message length word (equal to len+4 because it counts
872 * itself too) is inserted by this routine.
874 * All normal messages are suppressed while old-style COPY OUT is in
875 * progress. (In practice only a few notice messages might get emitted
876 * then; dropping them is annoying, but at least they will still appear
877 * in the postmaster log.)
879 * returns 0 if OK, EOF if trouble
880 * --------------------------------
883 pq_putmessage(char msgtype, const char *s, size_t len)
888 if (pq_putbytes(&msgtype, 1))
890 if (PG_PROTOCOL_MAJOR(FrontendProtocol) >= 3)
894 n32 = htonl((uint32) (len + 4));
895 if (pq_putbytes((char *) &n32, 4))
898 return pq_putbytes(s, len);
901 /* --------------------------------
902 * pq_startcopyout - inform libpq that an old-style COPY OUT transfer
904 * --------------------------------
907 pq_startcopyout(void)
912 /* --------------------------------
913 * pq_endcopyout - end an old-style COPY OUT transfer
915 * If errorAbort is indicated, we are aborting a COPY OUT due to an error,
916 * and must send a terminator line. Since a partial data line might have
917 * been emitted, send a couple of newlines first (the first one could
918 * get absorbed by a backslash...) Note that old-style COPY OUT does
919 * not allow binary transfers, so a textual terminator is always correct.
920 * --------------------------------
923 pq_endcopyout(bool errorAbort)
927 DoingCopyOut = false;
929 pq_putbytes("\n\n\\.\n", 5);
930 /* in non-error case, copy.c will have emitted the terminator line */
projects / postgresql / blob