add optional validation of socket options

this allows to catch invalid configurations early and provides more details than provided by the kernel (EINVAL). The setOptionUnsafe method allows to bypass the validation.

Author: pschichtel

core-test/src/test/java/tel/schich/javacan/test/RawCanSocketTest.java

@@ -26,6 +26,7 @@
 import tel.schich.javacan.CanChannels;
 import tel.schich.javacan.CanFilter;
 import tel.schich.javacan.CanFrame;
+import tel.schich.javacan.CanSocketOptions;
 import tel.schich.javacan.JavaCAN;
 import tel.schich.javacan.RawCanChannel;
 import tel.schich.javacan.platform.linux.LinuxNativeOperationException;
@@ -122,6 +123,21 @@ void testFilters() throws Exception {
         }
     }
 
+    void testMaxFilterValidation() throws Exception {
+        try (final RawCanChannel socket = CanChannels.newRawChannel()) {
+            socket.bind(CAN_INTERFACE);
+
+            CanFilter[] filters = new CanFilter[MAX_FILTERS + 1];
+            for (int i = 0; i < filters.length; i++) {
+                filters[i] = new CanFilter(0x1, 0x1);
+            }
+
+            assertThrows(IllegalArgumentException.class, () -> socket.setOption(FILTER, filters));
+
+            assertThrows(LinuxNativeOperationException.class, () -> socket.setOptionUnsafe(FILTER, filters));
+        }
+    }
+
     @Test
     void testNonBlockingRead() throws Exception {
         try (final RawCanChannel socket = CanChannels.newRawChannel()) {

core-test/src/test/java/tel/schich/javacan/test/isotp/IsotpCanSocketOptionsTest.java

@@ -26,12 +26,13 @@
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 import tel.schich.javacan.*;
+import tel.schich.javacan.platform.linux.LinuxNativeOperationException;
 
 import java.io.IOException;
 import java.nio.ByteBuffer;
 
-import static org.junit.jupiter.api.Assertions.assertArrayEquals;
-import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.*;
+import static tel.schich.javacan.CanFrame.FD_FLAG_BIT_RATE_SWITCH;
 import static tel.schich.javacan.IsotpCanSocketOptions.*;
 import static tel.schich.javacan.IsotpSocketAddress.isotpAddress;
 import static tel.schich.javacan.test.CanTestHelper.CAN_INTERFACE;
@@ -59,7 +60,7 @@ void testOptions() throws IOException {
             LOGGER.debug(String.valueOf(linkLayerOpts));
             IsotpLinkLayerOptions customizedLinkLayerOpts = IsotpLinkLayerOptions.DEFAULT
                     .withMaximumTransmissionUnit(RawCanChannel.FD_MTU)
-                    .withTransmissionFlags(CanFrame.FD_FLAG_BIT_RATE_SWITCH);
+                    .withTransmissionFlags(FD_FLAG_BIT_RATE_SWITCH);
             a.setOption(LL_OPTS, customizedLinkLayerOpts);
             assertEquals(customizedLinkLayerOpts, a.getOption(LL_OPTS), "What goes in should come out");
 
@@ -73,6 +74,27 @@ void testOptions() throws IOException {
         }
     }
 
+    @Test
+    void testLinkLayerOptionsValidations() throws Exception {
+        try (final IsotpCanChannel a = CanChannels.newIsotpChannel()) {
+            // unpadded data length
+            assertThrows(IllegalArgumentException.class, () -> a.setOption(LL_OPTS, IsotpLinkLayerOptions.DEFAULT.withTransmissionDataLength(11)));
+            assertThrows(LinuxNativeOperationException.class, () -> a.setOptionUnsafe(LL_OPTS, IsotpLinkLayerOptions.DEFAULT.withTransmissionFlags(11)));
+
+            // invalid MTU
+            assertThrows(IllegalArgumentException.class, () -> a.setOption(LL_OPTS, IsotpLinkLayerOptions.DEFAULT.withMaximumTransmissionUnit(30)));
+            assertThrows(LinuxNativeOperationException.class, () -> a.setOptionUnsafe(LL_OPTS, IsotpLinkLayerOptions.DEFAULT.withMaximumTransmissionUnit(30)));
+
+            // FD data length without FD MTU
+            assertThrows(IllegalArgumentException.class, () -> a.setOption(LL_OPTS, IsotpLinkLayerOptions.DEFAULT.withTransmissionDataLength(48)));
+            assertThrows(LinuxNativeOperationException.class, () -> a.setOptionUnsafe(LL_OPTS, IsotpLinkLayerOptions.DEFAULT.withTransmissionDataLength(48)));
+
+            // tx flags without FD MTU
+            assertThrows(IllegalArgumentException.class, () -> a.setOption(LL_OPTS, IsotpLinkLayerOptions.DEFAULT.withTransmissionFlags(FD_FLAG_BIT_RATE_SWITCH)));
+            assertThrows(LinuxNativeOperationException.class, () -> a.setOptionUnsafe(LL_OPTS, IsotpLinkLayerOptions.DEFAULT.withTransmissionFlags(FD_FLAG_BIT_RATE_SWITCH)));
+        }
+    }
+
     @Test
     void testWriteRead() throws Exception {
         IsotpSocketAddress src = isotpAddress(0x7DF);

core/src/main/java/tel/schich/javacan/AbstractCanChannel.java

@@ -142,9 +142,27 @@ public boolean isBlocking() throws IOException {
      * @throws IOException if the native call fails
      */
     public <T> void setOption(SocketOption<T> option, T value) throws IOException {
+        setOption(option, value, true);
+    }
+
+    /**
+     * Sets a socket option on this {@link java.nio.channels.Channel}'s socket.
+     *
+     * @see <a href="https://man7.org/linux/man-pages/man2/setsockopt.2.html">setsockopt man page</a>
+     * @see <a href="https://man7.org/linux/man-pages/man2/getsockopt.2.html">getsockopt man page</a>
+     * @param option The option to set
+     * @param value the value to set
+     * @param <T> The type of the option
+     * @throws IOException if the native call fails
+     */
+    public <T> void setOptionUnsafe(SocketOption<T> option, T value) throws IOException {
+        setOption(option, value, false);
+    }
+
+    private <T> void setOption(SocketOption<T> option, T value, boolean validate) throws IOException {
         if (option instanceof CanSocketOption) {
             try {
-                ((CanSocketOption<T>) option).getHandler().set(getHandle(), value);
+                ((CanSocketOption<T>) option).getHandler().set(getHandle(), value, validate);
             } catch (LinuxNativeOperationException e) {
                 throw checkForClosedChannel(e);
             }

core/src/main/java/tel/schich/javacan/CanSocketOptions.java

@@ -37,6 +37,7 @@
  * This class provides the standard socket options supported by CAN sockets.
  */
 public class CanSocketOptions {
+    public static final int MAX_FILTERS = 512;
 
     private CanSocketOptions() {}
 
@@ -45,7 +46,7 @@ private CanSocketOptions() {}
      */
     public static final SocketOption<Boolean> JOIN_FILTERS = new CanSocketOption<>("JOIN_FILTERS", Boolean.class, new LinuxSocketOptionHandler<Boolean>() {
         @Override
-        public void set(int sock, Boolean val) throws IOException {
+        public void set(int sock, Boolean val, boolean validate) throws IOException {
             SocketCAN.setJoinFilters(sock, val);
         }
 
@@ -61,7 +62,7 @@ public Boolean get(int sock) throws IOException {
      */
     public static final SocketOption<Boolean> LOOPBACK = new CanSocketOption<>("LOOPBACK", Boolean.class, new LinuxSocketOptionHandler<Boolean>() {
         @Override
-        public void set(int sock, Boolean val) throws IOException {
+        public void set(int sock, Boolean val, boolean validate) throws IOException {
             SocketCAN.setLoopback(sock, val);
         }
 
@@ -77,7 +78,7 @@ public Boolean get(int sock) throws IOException {
      */
     public static final SocketOption<Boolean> RECV_OWN_MSGS = new CanSocketOption<>("RECV_OWN_MSGS", Boolean.class, new LinuxSocketOptionHandler<Boolean>() {
         @Override
-        public void set(int sock, Boolean val) throws IOException {
+        public void set(int sock, Boolean val, boolean validate) throws IOException {
             SocketCAN.setReceiveOwnMessages(sock, val);
         }
 
@@ -93,7 +94,7 @@ public Boolean get(int sock) throws IOException {
      */
     public static final SocketOption<Boolean> FD_FRAMES = new CanSocketOption<>("FD_FRAMES", Boolean.class, new LinuxSocketOptionHandler<Boolean>() {
         @Override
-        public void set(int sock, Boolean val) throws IOException {
+        public void set(int sock, Boolean val, boolean validate) throws IOException {
             SocketCAN.setAllowFDFrames(sock, val);
         }
 
@@ -112,7 +113,7 @@ public Boolean get(int sock) throws IOException {
      */
     public static final SocketOption<Integer> ERR_FILTER = new CanSocketOption<>("ERR_FILTER", Integer.class, new LinuxSocketOptionHandler<Integer>() {
         @Override
-        public void set(int sock, Integer val) throws IOException {
+        public void set(int sock, Integer val, boolean validate) throws IOException {
             SocketCAN.setErrorFilter(sock, val);
         }
 
@@ -129,8 +130,14 @@ public Integer get(int sock) throws IOException {
      * @see <a href="https://man7.org/linux/man-pages/man2/getsockopt.2.html">getsockopt man page</a>
      */
     public static final SocketOption<CanFilter[]> FILTER = new CanSocketOption<>("FILTER", CanFilter[].class, new LinuxSocketOptionHandler<CanFilter[]>() {
+
         @Override
-        public void set(int sock, CanFilter[] val) throws IOException {
+        public void set(int sock, CanFilter[] val, boolean validate) throws IOException {
+            if (validate) {
+                if (val.length > MAX_FILTERS) {
+                    throw new IllegalArgumentException("A maximum of 512 filters are supported!");
+                }
+            }
             ByteBuffer filterData = JavaCAN.allocateOrdered(val.length * CanFilter.BYTES);
             for (CanFilter f : val) {
                 filterData.putInt(f.getId());
@@ -165,7 +172,7 @@ public CanFilter[] get(int sock) throws IOException {
      */
     public static final SocketOption<Duration> SO_SNDTIMEO = new CanSocketOption<>("SO_SNDTIMEO", Duration.class, new LinuxSocketOptionHandler<Duration>() {
         @Override
-        public void set(int sock, Duration val) throws IOException {
+        public void set(int sock, Duration val, boolean validate) throws IOException {
             SocketCAN.setWriteTimeout(sock, val.getSeconds(), val.getNano());
         }
 
@@ -184,7 +191,7 @@ public Duration get(int sock) throws IOException {
      */
     public static final SocketOption<Duration> SO_RCVTIMEO = new CanSocketOption<>("SO_RCVTIMEO", Duration.class, new LinuxSocketOptionHandler<Duration>() {
         @Override
-        public void set(int sock, Duration val) throws IOException {
+        public void set(int sock, Duration val, boolean validate) throws IOException {
             SocketCAN.setReadTimeout(sock, val.getSeconds(), val.getNano());
         }
 
@@ -203,7 +210,7 @@ public Duration get(int sock) throws IOException {
      */
     public static final SocketOption<Integer> SO_RCVBUF = new CanSocketOption<>("SO_RCVBUF", Integer.class, new LinuxSocketOptionHandler<Integer>() {
         @Override
-        public void set(int sock, Integer val) throws IOException {
+        public void set(int sock, Integer val, boolean validate) throws IOException {
             if (val <= 0) {
                 throw new IllegalArgumentException("Buffer size must be positive!");
             }

core/src/main/java/tel/schich/javacan/IsotpCanSocketOptions.java

@@ -27,6 +27,7 @@
 
 import tel.schich.javacan.platform.linux.LinuxSocketOptionHandler;
 import tel.schich.javacan.option.CanSocketOption;
+import tel.schich.javacan.util.CanUtils;
 
 /**
  * This class provides ISOTP specific socket options supported by CAN sockets. This class is similar to
@@ -44,7 +45,7 @@ private IsotpCanSocketOptions() {}
      */
     public static final SocketOption<IsotpOptions> OPTS = new CanSocketOption<>("OPTS", IsotpOptions.class, new LinuxSocketOptionHandler<IsotpOptions>() {
         @Override
-        public void set(int sock, IsotpOptions val) throws IOException {
+        public void set(int sock, IsotpOptions val, boolean validate) throws IOException {
             SocketCAN.setIsotpOpts(sock, val.getRawFlags(), val.getFrameTransmissionTime(), val.getExtendedTransmissionAddress(), val.getTransmissionPadding(), val.getReceivePadding(), val.getExtendedReceiveAddress());
         }
 
@@ -62,7 +63,7 @@ public IsotpOptions get(int sock) throws IOException {
      */
     public static final SocketOption<IsotpFlowControlOptions> RECV_FC = new CanSocketOption<>("RECV_FC", IsotpFlowControlOptions.class, new LinuxSocketOptionHandler<IsotpFlowControlOptions>() {
         @Override
-        public void set(int sock, IsotpFlowControlOptions val) throws IOException {
+        public void set(int sock, IsotpFlowControlOptions val, boolean validate) throws IOException {
             SocketCAN.setIsotpRecvFc(sock, val.getBlockSize(), val.getMinimumSeparationTime(), val.getMaximumWaitFrameTransmission());
         }
 
@@ -80,7 +81,7 @@ public IsotpFlowControlOptions get(int sock) throws IOException {
      */
     public static final SocketOption<Integer> TX_STMIN = new CanSocketOption<>("TX_STMIN", Integer.class, new LinuxSocketOptionHandler<Integer>() {
         @Override
-        public void set(int sock, Integer val) throws IOException {
+        public void set(int sock, Integer val, boolean validate) throws IOException {
             SocketCAN.setIsotpTxStmin(sock, val);
         }
 
@@ -98,7 +99,7 @@ public Integer get(int sock) throws IOException {
      */
     public static final SocketOption<Integer> RX_STMIN = new CanSocketOption<>("RX_STMIN", Integer.class, new LinuxSocketOptionHandler<Integer>() {
         @Override
-        public void set(int sock, Integer val) throws IOException {
+        public void set(int sock, Integer val, boolean validate) throws IOException {
             SocketCAN.setIsotpRxStmin(sock, val);
         }
 
@@ -116,7 +117,31 @@ public Integer get(int sock) throws IOException {
      */
     public static final SocketOption<IsotpLinkLayerOptions> LL_OPTS = new CanSocketOption<>("LL_OPTS", IsotpLinkLayerOptions.class, new LinuxSocketOptionHandler<IsotpLinkLayerOptions>() {
         @Override
-        public void set(int sock, IsotpLinkLayerOptions val) throws IOException {
+        public void set(int sock, IsotpLinkLayerOptions val, boolean validate) throws IOException {
+            if (validate) {
+                final int mtu = val.getMaximumTransmissionUnit();
+                final byte txDataLength = val.getTransmissionDataLength();
+
+                // See: https://github.com/torvalds/linux/blob/5f33a09e769a9da0482f20a6770a342842443776/net/can/isotp.c#L1261
+                if (txDataLength != CanUtils.padDataLength(txDataLength)) {
+                    throw new IllegalArgumentException("The transmission data length must be properly padded!");
+                }
+
+                // See: https://github.com/torvalds/linux/blob/5f33a09e769a9da0482f20a6770a342842443776/net/can/isotp.c#L1264
+                if (mtu != RawCanChannel.MTU && mtu != RawCanChannel.FD_MTU) {
+                    throw new IllegalArgumentException("MTU must be either " + RawCanChannel.MTU + " or " + RawCanChannel.FD_MTU + "!");
+                }
+
+                // See: https://github.com/torvalds/linux/blob/5f33a09e769a9da0482f20a6770a342842443776/net/can/isotp.c#L1267
+                if (mtu == RawCanChannel.MTU) {
+                    if (txDataLength > CanFrame.MAX_DATA_LENGTH) {
+                        throw new IllegalArgumentException("Only FD frames support a data length of " + txDataLength + "!");
+                    }
+                    if (val.getTransmissionFlags() != 0) {
+                        throw new IllegalArgumentException("Only FD frames support transmission flags!");
+                    }
+                }
+            }
             SocketCAN.setIsotpLlOpts(sock, val.getMaximumTransmissionUnit(), val.getTransmissionDataLength(), val.getTransmissionFlags());
         }
 

core/src/main/java/tel/schich/javacan/option/CanSocketOption.java

@@ -64,7 +64,7 @@ public Handler<T> getHandler() {
      * @param <T> the type of the option value
      */
     public interface Handler<T> {
-        void set(UnixFileDescriptor handle, T val) throws IOException;
+        void set(UnixFileDescriptor handle, T val, boolean validate) throws IOException;
         T get(UnixFileDescriptor handle) throws IOException;
     }
 }

core/src/main/java/tel/schich/javacan/platform/linux/LinuxSocketOptionHandler.java

@@ -35,16 +35,16 @@
  */
 public abstract class LinuxSocketOptionHandler<T> implements CanSocketOption.Handler<T> {
     @Override
-    public void set(UnixFileDescriptor handle, T val) throws IOException {
-        set(handle.getValue(), val);
+    public void set(UnixFileDescriptor handle, T val, boolean validate) throws IOException {
+        set(handle.getValue(), val, validate);
     }
 
     @Override
     public T get(UnixFileDescriptor handle) throws IOException {
         return get(handle.getValue());
     }
 
-    protected abstract void set(int sock, T val) throws IOException;
+    protected abstract void set(int sock, T val, boolean validate) throws IOException;
 
     protected abstract T get(int sock) throws IOException;
 }

core/src/main/java/tel/schich/javacan/util/CanUtils.java

@@ -43,4 +43,31 @@ public static String hexDump(ByteBuffer data, int offset, int length) {
         }
         return s.toString();
     }
+
+    // see: https://github.com/torvalds/linux/blob/5f33a09e769a9da0482f20a6770a342842443776/net/can/isotp.c#L260
+    private static final byte[] paddedDataLengthLookup = {
+            8, 8, 8, 8, 8, 8, 8, 8, 8,	    /* 0 - 8 */
+            12, 12, 12, 12,			        /* 9 - 12 */
+            16, 16, 16, 16,			        /* 13 - 16 */
+            20, 20, 20, 20,			        /* 17 - 20 */
+            24, 24, 24, 24,			        /* 21 - 24 */
+            32, 32, 32, 32, 32, 32, 32, 32,	/* 25 - 32 */
+            48, 48, 48, 48, 48, 48, 48, 48,	/* 33 - 40 */
+            48, 48, 48, 48, 48, 48, 48, 48	/* 41 - 48 */
+    };
+
+    /**
+     * Pads a DLC data length value as per ISO 11898-1.
+     *
+     * @param length the unpadded length
+     * @return the padded length
+     *
+     * @see <a href="https://github.com/torvalds/linux/blob/5f33a09e769a9da0482f20a6770a342842443776/net/can/isotp.c#L258">Implementation in Linux Kernel</a>
+     */
+    public static byte padDataLength(byte length) {
+        if (length > 48) {
+            return 64;
+        }
+        return paddedDataLengthLookup[length];
+    }
 }