demikernel 1.5.13

Kernel-Bypass LibOS Architecture
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390

// Copyright (c) Microsoft Corporation.
// Licensed under the MIT license.

//======================================================================================================================
// Imports
//======================================================================================================================

use std::{
    net::{
        Ipv4Addr,
        SocketAddrV4,
    },
    collections::HashMap,
    mem,
    mem::MaybeUninit,
    rc::{
        Rc,
        Weak,
    },
};

use crate::{
    catnap::transport::{
        error::expect_last_wsa_error,
        overlapped::IoCompletionPort,
        socket::{
            Socket,
            SocketOpState,
        },
    },
    runtime::{
        fail::Fail,
        network::socket::option::TcpSocketOptions,
    },
};
use windows::{
    core::{
        GUID,
        PSTR,
    },
    Win32::Networking::WinSock::{
        closesocket,
        getsockopt,
        setsockopt,
        getpeername,
        WSACleanup,
        WSAIoctl,
        WSASocketW,
        WSAStartup,
        INVALID_SOCKET,
        LPFN_ACCEPTEX,
        LPFN_CONNECTEX,
        LPFN_DISCONNECTEX,
        LPFN_GETACCEPTEXSOCKADDRS,
        RIO_EXTENSION_FUNCTION_TABLE,
        SIO_GET_EXTENSION_FUNCTION_POINTER,
        SIO_GET_MULTIPLE_EXTENSION_FUNCTION_POINTER,
        SOCKET,
        SOCKADDR,
        SOCKADDR_IN,
        IN_ADDR_0_0,
        SOL_SOCKET,
        SO_PROTOCOL_INFOW,
        WSADATA,
        WSAID_ACCEPTEX,
        WSAID_CONNECTEX,
        WSAID_DISCONNECTEX,
        WSAID_GETACCEPTEXSOCKADDRS,
        WSAPROTOCOL_INFOW,
        WSA_FLAG_OVERLAPPED,
    },
};

//======================================================================================================================
// Constants
//======================================================================================================================

// TODO: update to use value from windows crate once exposed.
const WSAID_MULTIPLE_RIO: ::windows::core::GUID =
    ::windows::core::GUID::from_u128(0x8509e081_96dd_4005_b165_9e2ee8c79e3f);

//======================================================================================================================
// Structures
//======================================================================================================================

/// This structure stores Winsock extension functions.
#[derive(Default, Clone, Copy)]
pub(super) struct SocketExtensions {
    /// AcceptEx function pointer.
    pub acceptex: LPFN_ACCEPTEX,

    /// GetAcceptExSockaddrs function pointer.
    pub get_acceptex_sockaddrs: LPFN_GETACCEPTEXSOCKADDRS,

    /// ConnectEx function pointer.
    pub connectex: LPFN_CONNECTEX,

    /// DisconnectEx function pointer.
    pub disconnectex: LPFN_DISCONNECTEX,

    /// Registered I/O function table.
    // Note: RIO extensions are preserved for future use.
    #[allow(unused)]
    pub rio_fns: RIO_EXTENSION_FUNCTION_TABLE,
}

/// This structure manages the state of the Winsock runtime. Winsock state is managed internally by the Winsock runtime.
/// While this struct holds limited Winsock runtime data, a valid instance of this struct predicates initialization of
/// the Winsock runtime.
pub struct WinsockRuntime {
    /// A map of `SocketExtensions` keyed by Winsock provider GUID. Providers will be shared by multiple sockets;
    /// generally we expect a socket with the same creation parameters to be served by the same provider, although this
    /// is not required. System configuration changes can trigger new providers for new sockets.
    extensions_by_provider: HashMap<GUID, Weak<SocketExtensions>>,
}

//======================================================================================================================
// Associated Functions
//======================================================================================================================

impl SocketExtensions {
    /// Create an instance of SocketExtensions, with all extensions resolved for the socket provider.
    pub fn new(s: SOCKET) -> Result<Rc<SocketExtensions>, Fail> {
        Ok(Rc::new(SocketExtensions {
            acceptex: Self::lookup_single_fn(s, &WSAID_ACCEPTEX)?,
            get_acceptex_sockaddrs: Self::lookup_single_fn(s, &WSAID_GETACCEPTEXSOCKADDRS)?,
            connectex: Self::lookup_single_fn(s, &WSAID_CONNECTEX)?,
            disconnectex: Self::lookup_single_fn(s, &WSAID_DISCONNECTEX)?,
            rio_fns: Self::resolve_rio_fn_table(s)?,
        }))
    }

    /// Resolve the RIO function table, which uses a different I/O control code than individual functions.
    fn resolve_rio_fn_table(s: SOCKET) -> Result<RIO_EXTENSION_FUNCTION_TABLE, Fail> {
        let mut result: RIO_EXTENSION_FUNCTION_TABLE = RIO_EXTENSION_FUNCTION_TABLE::default();
        result.cbSize = std::mem::size_of::<RIO_EXTENSION_FUNCTION_TABLE>() as u32;

        // Safety: SIO_GET_MULTIPLE_EXTENSION_FUNCTION_POINTER expects input of type GUID and output of type
        // RIO_EXTENSION_FUNCTION_TABLE.
        unsafe {
            WinsockRuntime::do_ioctl(
                s,
                SIO_GET_MULTIPLE_EXTENSION_FUNCTION_POINTER,
                Some(&WSAID_MULTIPLE_RIO),
                Some(&mut result),
            )
        }?;

        if result.cbSize != std::mem::size_of::<RIO_EXTENSION_FUNCTION_TABLE>() as u32 {
            Err(Fail::new(
                libc::EFAULT,
                "Winsock did not return enough data for RIO_EXTENSION_FUNCTION_TABLE",
            ))
        } else {
            Ok(result)
        }
    }

    /// Lookup a single function pointer using SIO_GET_EXTENSION_FUNCTION_POINTER ioctl. To be sound, T must be a `fn`
    /// type.
    fn lookup_single_fn<T>(s: SOCKET, guid: &GUID) -> Result<Option<T>, Fail> {
        let mut fn_ptr: Option<T> = None;

        // Safety: SIO_GET_EXTENSION_FUNCTION_POINTER expects type GUID for input. Option<fn()> is compatible with C
        // output type for this ioctl.
        unsafe {
            WinsockRuntime::do_ioctl(s, SIO_GET_EXTENSION_FUNCTION_POINTER, Some(guid), Some(&mut fn_ptr)).map_err(
                |err| {
                    let msg: String = format!("{} for function lookup {:?}", err.cause, guid);
                    Fail::new(err.errno, msg.as_str())
                },
            )?;
        }

        if fn_ptr.is_some() {
            Ok(fn_ptr)
        } else {
            Err(Fail::new(libc::ENOTSUP, "Winsock extension not supported"))
        }
    }
}

impl WinsockRuntime {
    /// Start up the Winsock runtime, creating a new instance of WinsockRuntime. While it is not functionally useful,
    /// it is valid to instantiate multiple instances of this struct.
    pub fn new() -> Result<Self, Fail> {
        let mut data: WSADATA = WSADATA::default();
        if unsafe { WSAStartup(0x202u16, &mut data as *mut WSADATA) } != 0 {
            return Err(expect_last_wsa_error());
        }

        Ok(WinsockRuntime {
            extensions_by_provider: HashMap::new(),
        })
    }

    /// Implementation of `ioctl`
    pub(super) unsafe fn do_ioctl<T, U>(
        s: SOCKET,
        control_code: u32,
        input: Option<&T>,
        output: Option<&mut U>,
    ) -> Result<(), Fail> {
        let input: Option<*const libc::c_void> = input.map(|t: &T| -> *const libc::c_void { (t as *const T).cast() });
        let input_size: usize = input.map(|_| std::mem::size_of::<T>()).unwrap_or(0);

        let output: Option<*mut libc::c_void> = output.map(|u: &mut U| -> *mut libc::c_void { (u as *mut U).cast() });
        let output_size: usize = output.map(|_| std::mem::size_of::<U>()).unwrap_or(0);

        if input_size > u32::MAX as usize {
            return Err(Fail::new(
                libc::E2BIG,
                "\"input_size\" parameter to WSAIoctl parameter is too big",
            ));
        }
        if output_size > u32::MAX as usize {
            return Err(Fail::new(
                libc::E2BIG,
                "\"output_size\" parameter to WSAIoctl parameter is too big",
            ));
        }

        let mut bytes_returned: u32 = 0;
        let ret: i32 = unsafe {
            WSAIoctl(
                s,
                control_code,
                input,
                input_size as u32,
                output,
                output_size as u32,
                &mut bytes_returned,
                None,
                None,
            )
        };

        if ret == 0 {
            if bytes_returned == output_size as u32 {
                Ok(())
            } else {
                let s: String = format!("WSAIoctl returned {} bytes; expected {}", bytes_returned, output_size);
                Err(Fail::new(libc::EFAULT, s.as_str()))
            }
        } else {
            Err(expect_last_wsa_error())
        }
    }

    /// Execute an I/O control syscall on the socket.
    /// Safety: the I/O control code must match the expected input/output parameter types. If `output` is provided, the
    /// I/O control operation must write a valid value of type U on success, or nothing on failure.
    #[allow(unused)]
    pub unsafe fn ioctl<T, U>(
        &self,
        s: SOCKET,
        control_code: u32,
        input: Option<&T>,
        output: Option<&mut U>,
    ) -> Result<(), Fail> {
        Self::do_ioctl(s, control_code, input, output)
    }

    /// Implementation of setsockopt.
    pub(super) unsafe fn do_setsockopt<'a, T>(s: SOCKET, level: i32, opt: i32, val: Option<&'a T>) -> Result<(), Fail> {
        let val: Option<&'a [u8]> = match val {
            Some(val) => {
                Some(unsafe { std::slice::from_raw_parts((val as *const T).cast(), std::mem::size_of::<T>()) })
            },
            None => None,
        };

        if unsafe { setsockopt(s, level, opt, val) } == 0 {
            Ok(())
        } else {
            Err(expect_last_wsa_error())
        }
    }

    /// Set a socket option (via setsockopt) from a structured value `val`.
    /// Safety: the requested socket option must agree with the ABI of T.
    #[allow(unused)]
    pub unsafe fn setsockopt<'a, T>(&self, s: SOCKET, level: i32, opt: i32, val: Option<&'a T>) -> Result<(), Fail> {
        Self::do_setsockopt(s, level, opt, val)
    }

    /// Implementation of getsockopt.
    pub(super) unsafe fn do_getsockopt<T>(s: SOCKET, level: i32, optname: i32) -> Result<T, Fail> {
        let mut out: MaybeUninit<T> = MaybeUninit::zeroed();
        let optval: PSTR = PSTR::from_raw(out.as_mut_ptr().cast());
        let mut optlen: i32 =
            i32::try_from(std::mem::size_of::<T>()).map_err(|_| Fail::new(libc::E2BIG, "option type too large"))?;
        if unsafe { getsockopt(s, level, optname, optval, &mut optlen) } == 0 {
            Ok(unsafe { out.assume_init() })
        } else {
            Err(expect_last_wsa_error())
        }
    }

    /// Get a socket option (via getsockopt) and return the option as a structure type.
    /// Safety: the requested socket option must initialize a value of type T.
    pub unsafe fn getsockopt<T>(&self, s: SOCKET, level: i32, optname: i32) -> Result<T, Fail> {
        Self::do_getsockopt(s, level, optname)
    }

    /// Gets ip and port from SOCKADDR_IN and converts to SocketAddrV4
    pub fn getpeername(s: SOCKET) -> Result<SocketAddrV4, Fail> {
        let mut sockaddr_in: SOCKADDR_IN = SOCKADDR_IN::default();
        let sockaddr_ptr: &mut SOCKADDR =  &mut unsafe { mem::transmute::<SOCKADDR_IN, SOCKADDR>(sockaddr_in) };
        let mut namelen: i32 = std::mem::size_of::<SOCKADDR>() as i32;

        if unsafe { getpeername(s, sockaddr_ptr, &mut namelen) } == 0 {
            sockaddr_in = unsafe { mem::transmute::<SOCKADDR, SOCKADDR_IN>(*sockaddr_ptr) };
            let port: u16 = sockaddr_in.sin_port;
            let addr: IN_ADDR_0_0 = unsafe { sockaddr_in.sin_addr.S_un.S_un_b };
            let addrv4: SocketAddrV4 = SocketAddrV4::new(
                    Ipv4Addr::new(addr.s_b1, addr.s_b2, addr.s_b3, addr.s_b4),
                    port);
            Ok(addrv4)
        } else {
            Err(expect_last_wsa_error())
        }
    }

    /// Get or initialize a new `SocketExtensions` instance for a  socket. Extensions are stored by socket provider,
    /// which may be shared by multiple sockets.
    fn get_or_init_extensions(&mut self, s: SOCKET) -> Result<Rc<SocketExtensions>, Fail> {
        let protocol: WSAPROTOCOL_INFOW = unsafe { self.getsockopt(s, SOL_SOCKET, SO_PROTOCOL_INFOW) }?;

        let extensions: &mut Weak<SocketExtensions> = self
            .extensions_by_provider
            .entry(protocol.ProviderId)
            .or_insert(Weak::default());
        if let Some(extensions) = extensions.upgrade() {
            return Ok(extensions);
        }

        let new_extensions: Rc<SocketExtensions> = SocketExtensions::new(s)?;
        *extensions = Rc::downgrade(&new_extensions);

        Ok(new_extensions)
    }

    /// Create a raw Winsock socket.
    pub(super) unsafe fn raw_socket(
        domain: libc::c_int,
        typ: libc::c_int,
        protocol: libc::c_int,
        protocol_info: Option<&WSAPROTOCOL_INFOW>,
        flags: u32,
    ) -> Result<SOCKET, Fail> {
        let protocol_info: Option<*const WSAPROTOCOL_INFOW> = protocol_info.map(|i| i as *const WSAPROTOCOL_INFOW);
        match unsafe { WSASocketW(domain, typ, protocol, protocol_info, 0, flags) } {
            INVALID_SOCKET => Err(expect_last_wsa_error()),
            socket => Ok(socket),
        }
    }

    /// Create a new socket.
    pub fn socket(
        &mut self,
        domain: libc::c_int,
        typ: libc::c_int,
        protocol: libc::c_int,
        options: &TcpSocketOptions,
        iocp: &IoCompletionPort<SocketOpState>,
    ) -> Result<Socket, Fail> {
        // Safety: SOCKET is a loose handle; it must be closed with `closesocket` to clean up resources. Socket struct
        // will take ownership by end of method; failures after this call need to be cause a `closesocket` call.
        let s: SOCKET = unsafe { Self::raw_socket(domain, typ, protocol, None, WSA_FLAG_OVERLAPPED) }?;

        self.get_or_init_extensions(s)
            .and_then(|extensions: Rc<SocketExtensions>| Socket::new(s, protocol, options, extensions, iocp))
            .or_else(|err: Fail| {
                unsafe { closesocket(s) };
                Err(err)
            })
    }
}

//======================================================================================================================
// Traits
//======================================================================================================================

impl Drop for WinsockRuntime {
    fn drop(&mut self) {
        self.extensions_by_provider.clear();
        unsafe { WSACleanup() };
    }
}