Improve SO_REUSE{ADDR,PORT} xplat behavior for TCP

[tmds]

Fixes #24562

The test cases added would fail on Unix and pass on Windows.

The ProtocolType is passed to Bind, GetSockOpt and SetSockOpt to change the behavior for TCP in pal_networking.cpp.

CC @wfurt @geoffkizer @Priya91 @halter73 @stephentoub

[halter73]

Should this test also verify that the ex.SocketErrorCode == SocketError.AddressAlreadyInUse?

[stephentoub]

What if setsockopt fails?

[tmds]

Currently it's silently ignored. I don't expect it to fail, but I wouldn't want to cause it to fail the bind either.

[stephentoub]

Can you add a comment to highlight that we're ignoring any error on purpose, and why?

[stephentoub]

Also, is doing this during bind the right place? i.e. why here rather than after the socket is created? What's the expected behavior if, for example, after accept is used to get a connected socket on a particular port, that socket is then closed, and code then tries to listen on the same port that accepted socket was on?

[stephentoub]

You deleted why we do this from the comment. How come?

[stephentoub]

Have you validated these behaviors on macOS?

[stephentoub]

Re: "This is different from Windows". The docs for SO_REUSEADDR state: "Once the second socket has successfully bound, the behavior for all sockets bound to that port is indeterminate. For example, if all of the sockets on the same port provide TCP service, any incoming TCP connection requests over the port cannot be guaranteed to be handled by the correct socket"... so it seems like the Windows behavior is undefined and load-balancing would be an appropriate result.

[tmds]

Have you validated these behaviors on macOS?

Only by the CI tests.

Re: "This is different from Windows". The docs for SO_REUSEADDR state: "Once the second socket has successfully bound, the behavior for all sockets bound to that port is indeterminate. For example, if all of the sockets on the same port provide TCP service, any incoming TCP connection requests over the port cannot be guaranteed to be handled by the correct socket"... so it seems like the Windows behavior is undefined and load-balancing would be an appropriate result.

On Unix, ReuseAddress controls both TCP_WAIT binding AND socket address sharing.
On Windows, ReuseAddress only controls socket address sharing. TCP_WAIT binding is always allowed.
It's not possible to express on Unix, allow bind during TCP_WAIT without allowing socket address sharing.
On Windows (and BSD Unix) I believe the socket address sharing is used to hand over a socket address from one process to another. So you either get the old one, or the new one.
On Linux, by allowing the socket address sharing, a newly bound process jumps in immediately and starts handing part of the requests, so you get a mix.

So, to align the behavior regarding TCP_WAIT, this PR is setting SO_REUSEADDR on Bind.
To avoid unintentional socket address sharing, it no longer sets SO_REUSEPORT for ReuseAddress.
To have some backwards compatibility it uses SO_REUSEADDR as a 'fake' toggle for ReuseAddress (but it gets forced to 1 on Bind).

I think if we want to add SO_REUSEPORT behavior to Unix, we should do it only when ExclusiveAddressUse=false. This will give explicit control if sharing is desired.

[stephentoub]

So if I do:

using System;
using System.Net.Sockets;

class Program
{
    static void Main()
    {
        var s = new Socket(AddressFamily.InterNetwork, SocketType.Stream, ProtocolType.Tcp);
        Console.WriteLine(s.GetSocketOption(SocketOptionLevel.Socket, SocketOptionName.ReuseAddress));
        s.SetSocketOption(SocketOptionLevel.Socket, SocketOptionName.ReuseAddress, 0);
        Console.WriteLine(s.GetSocketOption(SocketOptionLevel.Socket, SocketOptionName.ReuseAddress));
    }
}

I'll get back 1 1 on Linux (as opposed to 0 0 on Windows), since on Linux with this change we're just ignoring it?

[tmds]

On Linux we are using SO_REUSEADDR as a 'fake' toggle for TCP.
So this should return 0 0.
After a Bind, GetSocketOption(ReuseAddress) will return 1 always.

[stephentoub]

a.Accept().Dispose();

[stephentoub]

Should we be explicitly setting a linger time rather than relying on whatever the OS' default is?

[tmds]

👍 Yes, some OSes will block close during the linger time.

[stephentoub]

BindDuringTcpWait_Succeeds?

[stephentoub]

What is this test doing differently from

corefx/src/System.Net.Sockets/tests/FunctionalTests/SocketOptionNameTest.cs

Line 239 in 2ad41da

public void ReuseAddress(bool? exclusiveAddressUse, bool? firstSocketReuseAddress, bool? secondSocketReuseAddress, bool expectFailure)

?

[tmds]

This one is using TCP.

[stephentoub]

I see. Ok.

[tmds]

@stephentoub I'm considering to extend this PR as follows:

• Set SO_REUSEADDR also for UDP in Bind, except for multicast addresses.

This matches the behavior of Windows for non-multicast addresses. Windows doesn't allow binding to a multicast address. On Unix, for multicast addresses, setting SO_REUSEADDR for UDP implies SO_REUSEPORT. I think such sharing should be explicit.

• Control only SO_REUSEPORT from ReuseAddress. For both TCP and UDP.

If people had added the ReuseAddress = true to deal with TCP_WAIT on Unix, but do not want to share their address. They will need to remove that line again.

• Make ExclusiveAddressUse control SO_REUSEPORT too. This means SocketOption.ReuseAddress == !ExclusiveAddressUse .

WDYT?

[tmds]

Set SO_REUSEADDR also for UDP in Bind, except for multicast addresses.

That didn't work. Setting SO_REUSEADDR makes it possible to bind to the same address for UDP.
(For TCP, the second Bind fails because the first socket is listening).

Control only SO_REUSEPORT from ReuseAddress. For both TCP and UDP.
Make ExclusiveAddressUse control SO_REUSEPORT too. This means SocketOption.ReuseAddress == !ExclusiveAddressUse .

I've added these changes to the PR.

[tmds]

@wfurt @geoffkizer @Priya91 @halter73 @stephentoub PTAL

[stephentoub]

If we're now allowing ExclusiveAddressUse to be set, should we also update the multi-connect support to track it? e.g.

corefx/src/System.Net.Sockets/src/System/Net/Sockets/Socket.Unix.cs

Line 35 in 969d868

internal void ReplaceHandleIfNecessaryAfterFailedConnect()

[tmds]

Yes we should. I'll add that.

[tmds]

Thinking about this a bit more. Connects don't fail for UDP. And for TCP, the ExclusiveAddress/ReuseAddress is an option for listen sockets (which don't connect). So there is no compelling use-case to add this to the tracked socket options.

[stephentoub]

Ok.

[stephentoub]

So this now defaults to true on Unix and false on Windows? I guess it did before this change, too?

[tmds]

Right. This hasn't changed. This test is verifying the defaults on Unix.

[stephentoub]

Do we run any risk here that another test running concurrently might end up getting assigned this port in the short window between the above and here? Seems like it could result in random CI failures now and then?

[tmds]

That's possible. I don't think there's a way to deal with that. Perhaps the allocation strategy in the dynamic port range makes it very unlikely this will happen. We can see if it causes issues in CI?

[halter73]

We do this for some of our Kestrel tests. We run this regularly on various versions of Windows, Linux and macOS without that being a source of flakiness.

[stephentoub]

We run this regularly on various versions of Windows, Linux and macOS without that being a source of flakiness.

Do you run lots of tests in parallel? I seem to remember this actually being an issue for us in the past, but I could be misremembering.

[halter73]

That's a good point. All the tests that use the GetNextPort() method I linked to are in the same test class, so xunit does not parallelize them. We're only just now looking into running multiple test projects in parallel.

[stephentoub]

How does ReuseAddress behave when passing in a value other than 0 or 1? Does it fail, or does it treat anything non-zero as being true? I'm wondering if we want/need this if block at all.

[tmds]

While doing this PR I learned mac returns 512 for getsockopt SO_REUSEPORT when doing setsockopt to 1 (cdac9c6).
So behavior for getsockopt and setsockopt is platform dependent. Perhaps we should iron out some of those differences for other options too. I don't think we are limiting what the user can do by restricting to 0 and 1.

[stephentoub]

Ok.

[stephentoub]

@geoffkizer, any thoughts on this one?

[geoffkizer]

I think that adding SO_REUSEADDR by default for TCP on Unix probably makes sense. My understanding is that libuv does this by default. Would be interesting to see what other frameworks/languages do here as well, but my expectation is that they probably use SO_REUSEADDR as well.

I'll look at the code and see if I have any comments.

[geoffkizer]

FYI, looks like Go sets SO_REUSEADDR for listen sockets: https://golang.org/src/net/sockopt_bsd.go

[geoffkizer]

I do wonder whether it makes more sense to do this as part of listen rather than bind. I believe the case we care about here is reusing a specific listen port, right? If so, seems like we should limit this behavior to listen sockets unless there's some other problem we're trying to solve.

[tmds]

I do wonder whether it makes more sense to do this as part of listen rather than bind. I believe the case we care about here is reusing a specific listen port, right? If so, seems like we should limit this behavior to listen sockets unless there's some other problem we're trying to solve.

SO_REUSEADDR needs to be set before Bind, which needs to be called before Listen. This is also the order in the Go implementation https://github.com/golang/go/blob/bf0f69220255941196c684f235727fd6dc747b5c/src/net/sock_posix.go#L169-L180.
The Go API has a single operation for Bind&Listen (net.Listen("tcp", ":8080")), these are two operations in .NET (Bind and Listen).

[geoffkizer]

Yeah, that makes sense. Thanks.

[stephentoub]

@dotnet-bot test Outerloop Linux x64 Debug Build please
@dotnet-bot test Outerloop OSX x64 Debug Build please

[stephentoub]

@tmds, the TcpClientTest.ExclusiveAddressUse_Set_False_NotSupported test is failing across distros:

Unhandled Exception of Type Xunit.Sdk.ThrowsException
Message :
Assert.Throws() Failure
Expected: typeof(System.Net.Sockets.SocketException)
Actual:   (No exception was thrown)
Stack Trace :
   at System.Net.Sockets.Tests.TcpClientTest.ExclusiveAddressUse_Set_False_NotSupported() in /mnt/j/workspace/dotnet_corefx/master/linux-TGroup_netcoreapp+CGroup_Debug+AGroup_x64+TestOuter_true_prtest/src/System.Net.Sockets/tests/FunctionalTests/TcpClientTest.cs:line 292

Looks like it just needs to be fixed now that ExclusiveAddressUse can be set to false.

[tmds]

@dotnet-bot test Outerloop Linux x64 Debug Build please
@dotnet-bot test Outerloop OSX x64 Debug Build please

[stephentoub]

@dotnet-bot test Windows x86 Release Build please (https://github.com/dotnet/corefx/issues/24874)

[stephentoub]

@tmds, is 953d7e6#diff-0f682f473db4a003b3babf4e061c3987R275 still Windows-specific?

[tmds]

@dotnet-bot test Outerloop Linux x64 Debug Build please
@dotnet-bot test Outerloop OSX x64 Debug Build please

[stephentoub]

Sorry, I just noticed this. Should this be in an else for the if block below?

[stephentoub]

(Can be addressed in a subsequent cleanup PR if you agree, along with my other nit.)

[stephentoub]

Maybe:
if (value == 0) { value = 1; }
else if (value == 1) { value = 0; }
else { return PAL_EINVAL; }
?

[stephentoub]

Looks good. Thanks for pushing this through.

[tmds]

@stephentoub thank you for reviewing and follow-up! I'm going to add a test that checks how 'boolean' (0/1) socket options behave on different platforms and see if we can iron out some of the platform differences. I'll include your suggestions in that PR.