1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <sys/mount.h>
58 #include <linux/magic.h>
62 #include <sys/personality.h>
66 #ifdef HAVE_SYS_AUXV_H
78 #include "path-util.h"
79 #include "exit-status.h"
83 #include "device-nodes.h"
90 char **saved_argv = NULL;
92 static volatile unsigned cached_columns = 0;
93 static volatile unsigned cached_lines = 0;
95 size_t page_size(void) {
96 static thread_local size_t pgsz = 0;
99 if (_likely_(pgsz > 0))
102 r = sysconf(_SC_PAGESIZE);
109 bool streq_ptr(const char *a, const char *b) {
111 /* Like streq(), but tries to make sense of NULL pointers */
122 char* endswith(const char *s, const char *postfix) {
129 pl = strlen(postfix);
132 return (char*) s + sl;
137 if (memcmp(s + sl - pl, postfix, pl) != 0)
140 return (char*) s + sl - pl;
143 bool first_word(const char *s, const char *word) {
158 if (memcmp(s, word, wl) != 0)
162 strchr(WHITESPACE, s[wl]);
165 int close_nointr(int fd) {
172 else if (errno == EINTR)
174 * Just ignore EINTR; a retry loop is the wrong
175 * thing to do on Linux.
177 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
178 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
179 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
180 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
187 int safe_close(int fd) {
190 * Like close_nointr() but cannot fail. Guarantees errno is
191 * unchanged. Is a NOP with negative fds passed, and returns
192 * -1, so that it can be used in this syntax:
194 * fd = safe_close(fd);
200 /* The kernel might return pretty much any error code
201 * via close(), but the fd will be closed anyway. The
202 * only condition we want to check for here is whether
203 * the fd was invalid at all... */
205 assert_se(close_nointr(fd) != -EBADF);
211 void close_many(const int fds[], unsigned n_fd) {
214 assert(fds || n_fd <= 0);
216 for (i = 0; i < n_fd; i++)
220 int unlink_noerrno(const char *path) {
231 int parse_boolean(const char *v) {
234 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
236 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
242 int parse_pid(const char *s, pid_t* ret_pid) {
243 unsigned long ul = 0;
250 r = safe_atolu(s, &ul);
256 if ((unsigned long) pid != ul)
266 int parse_uid(const char *s, uid_t* ret_uid) {
267 unsigned long ul = 0;
274 r = safe_atolu(s, &ul);
280 if ((unsigned long) uid != ul)
287 int safe_atou(const char *s, unsigned *ret_u) {
295 l = strtoul(s, &x, 0);
297 if (!x || x == s || *x || errno)
298 return errno > 0 ? -errno : -EINVAL;
300 if ((unsigned long) (unsigned) l != l)
303 *ret_u = (unsigned) l;
307 int safe_atoi(const char *s, int *ret_i) {
315 l = strtol(s, &x, 0);
317 if (!x || x == s || *x || errno)
318 return errno > 0 ? -errno : -EINVAL;
320 if ((long) (int) l != l)
327 int safe_atollu(const char *s, long long unsigned *ret_llu) {
329 unsigned long long l;
335 l = strtoull(s, &x, 0);
337 if (!x || x == s || *x || errno)
338 return errno ? -errno : -EINVAL;
344 int safe_atolli(const char *s, long long int *ret_lli) {
352 l = strtoll(s, &x, 0);
354 if (!x || x == s || *x || errno)
355 return errno ? -errno : -EINVAL;
361 int safe_atod(const char *s, double *ret_d) {
368 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
373 if (!x || x == s || *x || errno)
374 return errno ? -errno : -EINVAL;
380 static size_t strcspn_escaped(const char *s, const char *reject) {
381 bool escaped = false;
384 for (n=0; s[n]; n++) {
387 else if (s[n] == '\\')
389 else if (strchr(reject, s[n]))
395 /* Split a string into words. */
396 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
399 current = *state ? *state : (char*) c;
401 if (!*current || *c == 0)
404 current += strspn(current, separator);
408 if (quoted && strchr("\'\"", *current)) {
409 char quotechar = *(current++);
410 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
411 *state = current+*l+1;
413 *l = strcspn_escaped(current, separator);
416 *l = strcspn(current, separator);
420 return (char*) current;
423 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
425 _cleanup_free_ char *line = NULL;
437 p = procfs_file_alloca(pid, "stat");
438 r = read_one_line_file(p, &line);
442 /* Let's skip the pid and comm fields. The latter is enclosed
443 * in () but does not escape any () in its value, so let's
444 * skip over it manually */
446 p = strrchr(line, ')');
458 if ((long unsigned) (pid_t) ppid != ppid)
461 *_ppid = (pid_t) ppid;
466 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
468 _cleanup_free_ char *line = NULL;
474 p = procfs_file_alloca(pid, "stat");
475 r = read_one_line_file(p, &line);
479 /* Let's skip the pid and comm fields. The latter is enclosed
480 * in () but does not escape any () in its value, so let's
481 * skip over it manually */
483 p = strrchr(line, ')');
505 "%*d " /* priority */
507 "%*d " /* num_threads */
508 "%*d " /* itrealvalue */
509 "%llu " /* starttime */,
516 int fchmod_umask(int fd, mode_t m) {
521 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
527 char *truncate_nl(char *s) {
530 s[strcspn(s, NEWLINE)] = 0;
534 int get_process_state(pid_t pid) {
538 _cleanup_free_ char *line = NULL;
542 p = procfs_file_alloca(pid, "stat");
543 r = read_one_line_file(p, &line);
547 p = strrchr(line, ')');
553 if (sscanf(p, " %c", &state) != 1)
556 return (unsigned char) state;
559 int get_process_comm(pid_t pid, char **name) {
566 p = procfs_file_alloca(pid, "comm");
568 r = read_one_line_file(p, name);
575 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
576 _cleanup_fclose_ FILE *f = NULL;
584 p = procfs_file_alloca(pid, "cmdline");
590 if (max_length == 0) {
591 size_t len = 0, allocated = 0;
593 while ((c = getc(f)) != EOF) {
595 if (!GREEDY_REALLOC(r, allocated, len+2)) {
600 r[len++] = isprint(c) ? c : ' ';
610 r = new(char, max_length);
616 while ((c = getc(f)) != EOF) {
638 size_t n = MIN(left-1, 3U);
645 /* Kernel threads have no argv[] */
646 if (r == NULL || r[0] == 0) {
647 _cleanup_free_ char *t = NULL;
655 h = get_process_comm(pid, &t);
659 r = strjoin("[", t, "]", NULL);
668 int is_kernel_thread(pid_t pid) {
680 p = procfs_file_alloca(pid, "cmdline");
685 count = fread(&c, 1, 1, f);
689 /* Kernel threads have an empty cmdline */
692 return eof ? 1 : -errno;
697 int get_process_capeff(pid_t pid, char **capeff) {
703 p = procfs_file_alloca(pid, "status");
705 return get_status_field(p, "\nCapEff:", capeff);
708 int get_process_exe(pid_t pid, char **name) {
716 p = procfs_file_alloca(pid, "exe");
718 r = readlink_malloc(p, name);
720 return r == -ENOENT ? -ESRCH : r;
722 d = endswith(*name, " (deleted)");
729 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
730 _cleanup_fclose_ FILE *f = NULL;
740 p = procfs_file_alloca(pid, "status");
745 FOREACH_LINE(line, f, return -errno) {
750 if (startswith(l, field)) {
752 l += strspn(l, WHITESPACE);
754 l[strcspn(l, WHITESPACE)] = 0;
756 return parse_uid(l, uid);
763 int get_process_uid(pid_t pid, uid_t *uid) {
764 return get_process_id(pid, "Uid:", uid);
767 int get_process_gid(pid_t pid, gid_t *gid) {
768 assert_cc(sizeof(uid_t) == sizeof(gid_t));
769 return get_process_id(pid, "Gid:", gid);
772 char *strnappend(const char *s, const char *suffix, size_t b) {
780 return strndup(suffix, b);
789 if (b > ((size_t) -1) - a)
792 r = new(char, a+b+1);
797 memcpy(r+a, suffix, b);
803 char *strappend(const char *s, const char *suffix) {
804 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
807 int readlinkat_malloc(int fd, const char *p, char **ret) {
822 n = readlinkat(fd, p, c, l-1);
829 if ((size_t) n < l-1) {
840 int readlink_malloc(const char *p, char **ret) {
841 return readlinkat_malloc(AT_FDCWD, p, ret);
844 int readlink_and_make_absolute(const char *p, char **r) {
845 _cleanup_free_ char *target = NULL;
852 j = readlink_malloc(p, &target);
856 k = file_in_same_dir(p, target);
864 int readlink_and_canonicalize(const char *p, char **r) {
871 j = readlink_and_make_absolute(p, &t);
875 s = canonicalize_file_name(t);
882 path_kill_slashes(*r);
887 int reset_all_signal_handlers(void) {
890 for (sig = 1; sig < _NSIG; sig++) {
891 struct sigaction sa = {
892 .sa_handler = SIG_DFL,
893 .sa_flags = SA_RESTART,
896 if (sig == SIGKILL || sig == SIGSTOP)
899 /* On Linux the first two RT signals are reserved by
900 * glibc, and sigaction() will return EINVAL for them. */
901 if ((sigaction(sig, &sa, NULL) < 0))
909 char *strstrip(char *s) {
912 /* Drops trailing whitespace. Modifies the string in
913 * place. Returns pointer to first non-space character */
915 s += strspn(s, WHITESPACE);
917 for (e = strchr(s, 0); e > s; e --)
918 if (!strchr(WHITESPACE, e[-1]))
926 char *delete_chars(char *s, const char *bad) {
929 /* Drops all whitespace, regardless where in the string */
931 for (f = s, t = s; *f; f++) {
943 char *file_in_same_dir(const char *path, const char *filename) {
950 /* This removes the last component of path and appends
951 * filename, unless the latter is absolute anyway or the
954 if (path_is_absolute(filename))
955 return strdup(filename);
957 if (!(e = strrchr(path, '/')))
958 return strdup(filename);
960 k = strlen(filename);
961 if (!(r = new(char, e-path+1+k+1)))
964 memcpy(r, path, e-path+1);
965 memcpy(r+(e-path)+1, filename, k+1);
970 int rmdir_parents(const char *path, const char *stop) {
979 /* Skip trailing slashes */
980 while (l > 0 && path[l-1] == '/')
986 /* Skip last component */
987 while (l > 0 && path[l-1] != '/')
990 /* Skip trailing slashes */
991 while (l > 0 && path[l-1] == '/')
997 if (!(t = strndup(path, l)))
1000 if (path_startswith(stop, t)) {
1009 if (errno != ENOENT)
1016 char hexchar(int x) {
1017 static const char table[16] = "0123456789abcdef";
1019 return table[x & 15];
1022 int unhexchar(char c) {
1024 if (c >= '0' && c <= '9')
1027 if (c >= 'a' && c <= 'f')
1028 return c - 'a' + 10;
1030 if (c >= 'A' && c <= 'F')
1031 return c - 'A' + 10;
1036 char *hexmem(const void *p, size_t l) {
1040 z = r = malloc(l * 2 + 1);
1044 for (x = p; x < (const uint8_t*) p + l; x++) {
1045 *(z++) = hexchar(*x >> 4);
1046 *(z++) = hexchar(*x & 15);
1053 void *unhexmem(const char *p, size_t l) {
1059 z = r = malloc((l + 1) / 2 + 1);
1063 for (x = p; x < p + l; x += 2) {
1066 a = unhexchar(x[0]);
1068 b = unhexchar(x[1]);
1072 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1079 char octchar(int x) {
1080 return '0' + (x & 7);
1083 int unoctchar(char c) {
1085 if (c >= '0' && c <= '7')
1091 char decchar(int x) {
1092 return '0' + (x % 10);
1095 int undecchar(char c) {
1097 if (c >= '0' && c <= '9')
1103 char *cescape(const char *s) {
1109 /* Does C style string escaping. */
1111 r = new(char, strlen(s)*4 + 1);
1115 for (f = s, t = r; *f; f++)
1161 /* For special chars we prefer octal over
1162 * hexadecimal encoding, simply because glib's
1163 * g_strescape() does the same */
1164 if ((*f < ' ') || (*f >= 127)) {
1166 *(t++) = octchar((unsigned char) *f >> 6);
1167 *(t++) = octchar((unsigned char) *f >> 3);
1168 *(t++) = octchar((unsigned char) *f);
1179 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1186 /* Undoes C style string escaping, and optionally prefixes it. */
1188 pl = prefix ? strlen(prefix) : 0;
1190 r = new(char, pl+length+1);
1195 memcpy(r, prefix, pl);
1197 for (f = s, t = r + pl; f < s + length; f++) {
1240 /* This is an extension of the XDG syntax files */
1245 /* hexadecimal encoding */
1248 a = unhexchar(f[1]);
1249 b = unhexchar(f[2]);
1251 if (a < 0 || b < 0) {
1252 /* Invalid escape code, let's take it literal then */
1256 *(t++) = (char) ((a << 4) | b);
1271 /* octal encoding */
1274 a = unoctchar(f[0]);
1275 b = unoctchar(f[1]);
1276 c = unoctchar(f[2]);
1278 if (a < 0 || b < 0 || c < 0) {
1279 /* Invalid escape code, let's take it literal then */
1283 *(t++) = (char) ((a << 6) | (b << 3) | c);
1291 /* premature end of string.*/
1296 /* Invalid escape code, let's take it literal then */
1308 char *cunescape_length(const char *s, size_t length) {
1309 return cunescape_length_with_prefix(s, length, NULL);
1312 char *cunescape(const char *s) {
1315 return cunescape_length(s, strlen(s));
1318 char *xescape(const char *s, const char *bad) {
1322 /* Escapes all chars in bad, in addition to \ and all special
1323 * chars, in \xFF style escaping. May be reversed with
1326 r = new(char, strlen(s) * 4 + 1);
1330 for (f = s, t = r; *f; f++) {
1332 if ((*f < ' ') || (*f >= 127) ||
1333 (*f == '\\') || strchr(bad, *f)) {
1336 *(t++) = hexchar(*f >> 4);
1337 *(t++) = hexchar(*f);
1347 char *ascii_strlower(char *t) {
1352 for (p = t; *p; p++)
1353 if (*p >= 'A' && *p <= 'Z')
1354 *p = *p - 'A' + 'a';
1359 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1363 filename[0] == '.' ||
1364 streq(filename, "lost+found") ||
1365 streq(filename, "aquota.user") ||
1366 streq(filename, "aquota.group") ||
1367 endswith(filename, ".rpmnew") ||
1368 endswith(filename, ".rpmsave") ||
1369 endswith(filename, ".rpmorig") ||
1370 endswith(filename, ".dpkg-old") ||
1371 endswith(filename, ".dpkg-new") ||
1372 endswith(filename, ".swp");
1375 bool ignore_file(const char *filename) {
1378 if (endswith(filename, "~"))
1381 return ignore_file_allow_backup(filename);
1384 int fd_nonblock(int fd, bool nonblock) {
1389 flags = fcntl(fd, F_GETFL, 0);
1394 nflags = flags | O_NONBLOCK;
1396 nflags = flags & ~O_NONBLOCK;
1398 if (nflags == flags)
1401 if (fcntl(fd, F_SETFL, nflags) < 0)
1407 int fd_cloexec(int fd, bool cloexec) {
1412 flags = fcntl(fd, F_GETFD, 0);
1417 nflags = flags | FD_CLOEXEC;
1419 nflags = flags & ~FD_CLOEXEC;
1421 if (nflags == flags)
1424 if (fcntl(fd, F_SETFD, nflags) < 0)
1430 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1433 assert(n_fdset == 0 || fdset);
1435 for (i = 0; i < n_fdset; i++)
1442 int close_all_fds(const int except[], unsigned n_except) {
1443 _cleanup_closedir_ DIR *d = NULL;
1447 assert(n_except == 0 || except);
1449 d = opendir("/proc/self/fd");
1454 /* When /proc isn't available (for example in chroots)
1455 * the fallback is brute forcing through the fd
1458 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1459 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1461 if (fd_in_set(fd, except, n_except))
1464 if (close_nointr(fd) < 0)
1465 if (errno != EBADF && r == 0)
1472 while ((de = readdir(d))) {
1475 if (ignore_file(de->d_name))
1478 if (safe_atoi(de->d_name, &fd) < 0)
1479 /* Let's better ignore this, just in case */
1488 if (fd_in_set(fd, except, n_except))
1491 if (close_nointr(fd) < 0) {
1492 /* Valgrind has its own FD and doesn't want to have it closed */
1493 if (errno != EBADF && r == 0)
1501 bool chars_intersect(const char *a, const char *b) {
1504 /* Returns true if any of the chars in a are in b. */
1505 for (p = a; *p; p++)
1512 bool fstype_is_network(const char *fstype) {
1513 static const char table[] =
1527 x = startswith(fstype, "fuse.");
1531 return nulstr_contains(table, fstype);
1535 _cleanup_close_ int fd;
1537 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1543 TIOCL_GETKMSGREDIRECT,
1547 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1550 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1553 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1559 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1560 struct termios old_termios, new_termios;
1562 char line[LINE_MAX];
1567 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1568 new_termios = old_termios;
1570 new_termios.c_lflag &= ~ICANON;
1571 new_termios.c_cc[VMIN] = 1;
1572 new_termios.c_cc[VTIME] = 0;
1574 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1577 if (t != (usec_t) -1) {
1578 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1579 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1584 k = fread(&c, 1, 1, f);
1586 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1592 *need_nl = c != '\n';
1599 if (t != (usec_t) -1)
1600 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1603 if (!fgets(line, sizeof(line), f))
1608 if (strlen(line) != 1)
1618 int ask(char *ret, const char *replies, const char *text, ...) {
1628 bool need_nl = true;
1631 fputs(ANSI_HIGHLIGHT_ON, stdout);
1638 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1642 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1645 if (r == -EBADMSG) {
1646 puts("Bad input, please try again.");
1657 if (strchr(replies, c)) {
1662 puts("Read unexpected character, please try again.");
1666 int reset_terminal_fd(int fd, bool switch_to_text) {
1667 struct termios termios;
1670 /* Set terminal to some sane defaults */
1674 /* We leave locked terminal attributes untouched, so that
1675 * Plymouth may set whatever it wants to set, and we don't
1676 * interfere with that. */
1678 /* Disable exclusive mode, just in case */
1679 ioctl(fd, TIOCNXCL);
1681 /* Switch to text mode */
1683 ioctl(fd, KDSETMODE, KD_TEXT);
1685 /* Enable console unicode mode */
1686 ioctl(fd, KDSKBMODE, K_UNICODE);
1688 if (tcgetattr(fd, &termios) < 0) {
1693 /* We only reset the stuff that matters to the software. How
1694 * hardware is set up we don't touch assuming that somebody
1695 * else will do that for us */
1697 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1698 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1699 termios.c_oflag |= ONLCR;
1700 termios.c_cflag |= CREAD;
1701 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1703 termios.c_cc[VINTR] = 03; /* ^C */
1704 termios.c_cc[VQUIT] = 034; /* ^\ */
1705 termios.c_cc[VERASE] = 0177;
1706 termios.c_cc[VKILL] = 025; /* ^X */
1707 termios.c_cc[VEOF] = 04; /* ^D */
1708 termios.c_cc[VSTART] = 021; /* ^Q */
1709 termios.c_cc[VSTOP] = 023; /* ^S */
1710 termios.c_cc[VSUSP] = 032; /* ^Z */
1711 termios.c_cc[VLNEXT] = 026; /* ^V */
1712 termios.c_cc[VWERASE] = 027; /* ^W */
1713 termios.c_cc[VREPRINT] = 022; /* ^R */
1714 termios.c_cc[VEOL] = 0;
1715 termios.c_cc[VEOL2] = 0;
1717 termios.c_cc[VTIME] = 0;
1718 termios.c_cc[VMIN] = 1;
1720 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1724 /* Just in case, flush all crap out */
1725 tcflush(fd, TCIOFLUSH);
1730 int reset_terminal(const char *name) {
1731 _cleanup_close_ int fd = -1;
1733 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1737 return reset_terminal_fd(fd, true);
1740 int open_terminal(const char *name, int mode) {
1745 * If a TTY is in the process of being closed opening it might
1746 * cause EIO. This is horribly awful, but unlikely to be
1747 * changed in the kernel. Hence we work around this problem by
1748 * retrying a couple of times.
1750 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1753 assert(!(mode & O_CREAT));
1756 fd = open(name, mode, 0);
1763 /* Max 1s in total */
1767 usleep(50 * USEC_PER_MSEC);
1788 int flush_fd(int fd) {
1789 struct pollfd pollfd = {
1799 r = poll(&pollfd, 1, 0);
1809 l = read(fd, buf, sizeof(buf));
1815 if (errno == EAGAIN)
1824 int acquire_terminal(
1828 bool ignore_tiocstty_eperm,
1831 int fd = -1, notify = -1, r = 0, wd = -1;
1836 /* We use inotify to be notified when the tty is closed. We
1837 * create the watch before checking if we can actually acquire
1838 * it, so that we don't lose any event.
1840 * Note: strictly speaking this actually watches for the
1841 * device being closed, it does *not* really watch whether a
1842 * tty loses its controlling process. However, unless some
1843 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1844 * its tty otherwise this will not become a problem. As long
1845 * as the administrator makes sure not configure any service
1846 * on the same tty as an untrusted user this should not be a
1847 * problem. (Which he probably should not do anyway.) */
1849 if (timeout != (usec_t) -1)
1850 ts = now(CLOCK_MONOTONIC);
1852 if (!fail && !force) {
1853 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1859 wd = inotify_add_watch(notify, name, IN_CLOSE);
1867 struct sigaction sa_old, sa_new = {
1868 .sa_handler = SIG_IGN,
1869 .sa_flags = SA_RESTART,
1873 r = flush_fd(notify);
1878 /* We pass here O_NOCTTY only so that we can check the return
1879 * value TIOCSCTTY and have a reliable way to figure out if we
1880 * successfully became the controlling process of the tty */
1881 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1885 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1886 * if we already own the tty. */
1887 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1889 /* First, try to get the tty */
1890 if (ioctl(fd, TIOCSCTTY, force) < 0)
1893 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1895 /* Sometimes it makes sense to ignore TIOCSCTTY
1896 * returning EPERM, i.e. when very likely we already
1897 * are have this controlling terminal. */
1898 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1901 if (r < 0 && (force || fail || r != -EPERM)) {
1910 assert(notify >= 0);
1913 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1915 struct inotify_event *e;
1917 if (timeout != (usec_t) -1) {
1920 n = now(CLOCK_MONOTONIC);
1921 if (ts + timeout < n) {
1926 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1936 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1939 if (errno == EINTR || errno == EAGAIN)
1946 e = (struct inotify_event*) inotify_buffer;
1951 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1956 step = sizeof(struct inotify_event) + e->len;
1957 assert(step <= (size_t) l);
1959 e = (struct inotify_event*) ((uint8_t*) e + step);
1966 /* We close the tty fd here since if the old session
1967 * ended our handle will be dead. It's important that
1968 * we do this after sleeping, so that we don't enter
1969 * an endless loop. */
1975 r = reset_terminal_fd(fd, true);
1977 log_warning("Failed to reset terminal: %s", strerror(-r));
1988 int release_terminal(void) {
1990 struct sigaction sa_old, sa_new = {
1991 .sa_handler = SIG_IGN,
1992 .sa_flags = SA_RESTART,
1994 _cleanup_close_ int fd;
1996 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
2000 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
2001 * by our own TIOCNOTTY */
2002 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
2004 if (ioctl(fd, TIOCNOTTY) < 0)
2007 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
2012 int sigaction_many(const struct sigaction *sa, ...) {
2017 while ((sig = va_arg(ap, int)) > 0)
2018 if (sigaction(sig, sa, NULL) < 0)
2025 int ignore_signals(int sig, ...) {
2026 struct sigaction sa = {
2027 .sa_handler = SIG_IGN,
2028 .sa_flags = SA_RESTART,
2033 if (sigaction(sig, &sa, NULL) < 0)
2037 while ((sig = va_arg(ap, int)) > 0)
2038 if (sigaction(sig, &sa, NULL) < 0)
2045 int default_signals(int sig, ...) {
2046 struct sigaction sa = {
2047 .sa_handler = SIG_DFL,
2048 .sa_flags = SA_RESTART,
2053 if (sigaction(sig, &sa, NULL) < 0)
2057 while ((sig = va_arg(ap, int)) > 0)
2058 if (sigaction(sig, &sa, NULL) < 0)
2065 void safe_close_pair(int p[]) {
2069 /* Special case pairs which use the same fd in both
2071 p[0] = p[1] = safe_close(p[0]);
2075 p[0] = safe_close(p[0]);
2076 p[1] = safe_close(p[1]);
2079 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2086 while (nbytes > 0) {
2089 k = read(fd, p, nbytes);
2090 if (k < 0 && errno == EINTR)
2093 if (k < 0 && errno == EAGAIN && do_poll) {
2095 /* We knowingly ignore any return value here,
2096 * and expect that any error/EOF is reported
2099 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2104 return n > 0 ? n : (k < 0 ? -errno : 0);
2114 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2115 const uint8_t *p = buf;
2121 while (nbytes > 0) {
2124 k = write(fd, p, nbytes);
2125 if (k < 0 && errno == EINTR)
2128 if (k < 0 && errno == EAGAIN && do_poll) {
2130 /* We knowingly ignore any return value here,
2131 * and expect that any error/EOF is reported
2134 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2139 return n > 0 ? n : (k < 0 ? -errno : 0);
2149 int parse_size(const char *t, off_t base, off_t *size) {
2151 /* Soo, sometimes we want to parse IEC binary suffxies, and
2152 * sometimes SI decimal suffixes. This function can parse
2153 * both. Which one is the right way depends on the
2154 * context. Wikipedia suggests that SI is customary for
2155 * hardrware metrics and network speeds, while IEC is
2156 * customary for most data sizes used by software and volatile
2157 * (RAM) memory. Hence be careful which one you pick!
2159 * In either case we use just K, M, G as suffix, and not Ki,
2160 * Mi, Gi or so (as IEC would suggest). That's because that's
2161 * frickin' ugly. But this means you really need to make sure
2162 * to document which base you are parsing when you use this
2167 unsigned long long factor;
2170 static const struct table iec[] = {
2171 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2172 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2173 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2174 { "G", 1024ULL*1024ULL*1024ULL },
2175 { "M", 1024ULL*1024ULL },
2181 static const struct table si[] = {
2182 { "E", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2183 { "P", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2184 { "T", 1000ULL*1000ULL*1000ULL*1000ULL },
2185 { "G", 1000ULL*1000ULL*1000ULL },
2186 { "M", 1000ULL*1000ULL },
2192 const struct table *table;
2194 unsigned long long r = 0;
2195 unsigned n_entries, start_pos = 0;
2198 assert(base == 1000 || base == 1024);
2203 n_entries = ELEMENTSOF(si);
2206 n_entries = ELEMENTSOF(iec);
2212 unsigned long long l2;
2218 l = strtoll(p, &e, 10);
2231 if (*e >= '0' && *e <= '9') {
2234 /* strotoull itself would accept space/+/- */
2235 l2 = strtoull(e, &e2, 10);
2237 if (errno == ERANGE)
2240 /* Ignore failure. E.g. 10.M is valid */
2247 e += strspn(e, WHITESPACE);
2249 for (i = start_pos; i < n_entries; i++)
2250 if (startswith(e, table[i].suffix)) {
2251 unsigned long long tmp;
2252 if ((unsigned long long) l + (frac > 0) > ULLONG_MAX / table[i].factor)
2254 tmp = l * table[i].factor + (unsigned long long) (frac * table[i].factor);
2255 if (tmp > ULLONG_MAX - r)
2259 if ((unsigned long long) (off_t) r != r)
2262 p = e + strlen(table[i].suffix);
2278 int make_stdio(int fd) {
2283 r = dup3(fd, STDIN_FILENO, 0);
2284 s = dup3(fd, STDOUT_FILENO, 0);
2285 t = dup3(fd, STDERR_FILENO, 0);
2290 if (r < 0 || s < 0 || t < 0)
2293 /* We rely here that the new fd has O_CLOEXEC not set */
2298 int make_null_stdio(void) {
2301 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2305 return make_stdio(null_fd);
2308 bool is_device_path(const char *path) {
2310 /* Returns true on paths that refer to a device, either in
2311 * sysfs or in /dev */
2314 path_startswith(path, "/dev/") ||
2315 path_startswith(path, "/sys/");
2318 int dir_is_empty(const char *path) {
2319 _cleanup_closedir_ DIR *d;
2330 if (!de && errno != 0)
2336 if (!ignore_file(de->d_name))
2341 char* dirname_malloc(const char *path) {
2342 char *d, *dir, *dir2;
2359 int dev_urandom(void *p, size_t n) {
2360 _cleanup_close_ int fd;
2363 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2365 return errno == ENOENT ? -ENOSYS : -errno;
2367 k = loop_read(fd, p, n, true);
2370 if ((size_t) k != n)
2376 void random_bytes(void *p, size_t n) {
2377 static bool srand_called = false;
2381 r = dev_urandom(p, n);
2385 /* If some idiot made /dev/urandom unavailable to us, he'll
2386 * get a PRNG instead. */
2388 if (!srand_called) {
2391 #ifdef HAVE_SYS_AUXV_H
2392 /* The kernel provides us with a bit of entropy in
2393 * auxv, so let's try to make use of that to seed the
2394 * pseudo-random generator. It's better than
2399 auxv = (void*) getauxval(AT_RANDOM);
2401 x ^= *(unsigned*) auxv;
2404 x ^= (unsigned) now(CLOCK_REALTIME);
2405 x ^= (unsigned) gettid();
2408 srand_called = true;
2411 for (q = p; q < (uint8_t*) p + n; q ++)
2415 void rename_process(const char name[8]) {
2418 /* This is a like a poor man's setproctitle(). It changes the
2419 * comm field, argv[0], and also the glibc's internally used
2420 * name of the process. For the first one a limit of 16 chars
2421 * applies, to the second one usually one of 10 (i.e. length
2422 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2423 * "systemd"). If you pass a longer string it will be
2426 prctl(PR_SET_NAME, name);
2428 if (program_invocation_name)
2429 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2431 if (saved_argc > 0) {
2435 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2437 for (i = 1; i < saved_argc; i++) {
2441 memzero(saved_argv[i], strlen(saved_argv[i]));
2446 void sigset_add_many(sigset_t *ss, ...) {
2453 while ((sig = va_arg(ap, int)) > 0)
2454 assert_se(sigaddset(ss, sig) == 0);
2458 int sigprocmask_many(int how, ...) {
2463 assert_se(sigemptyset(&ss) == 0);
2466 while ((sig = va_arg(ap, int)) > 0)
2467 assert_se(sigaddset(&ss, sig) == 0);
2470 if (sigprocmask(how, &ss, NULL) < 0)
2476 char* gethostname_malloc(void) {
2479 assert_se(uname(&u) >= 0);
2481 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2482 return strdup(u.nodename);
2484 return strdup(u.sysname);
2487 bool hostname_is_set(void) {
2490 assert_se(uname(&u) >= 0);
2492 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2495 static char *lookup_uid(uid_t uid) {
2498 _cleanup_free_ char *buf = NULL;
2499 struct passwd pwbuf, *pw = NULL;
2501 /* Shortcut things to avoid NSS lookups */
2503 return strdup("root");
2505 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2509 buf = malloc(bufsize);
2513 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2514 return strdup(pw->pw_name);
2516 if (asprintf(&name, UID_FMT, uid) < 0)
2522 char* getlogname_malloc(void) {
2526 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2531 return lookup_uid(uid);
2534 char *getusername_malloc(void) {
2541 return lookup_uid(getuid());
2544 int getttyname_malloc(int fd, char **r) {
2545 char path[PATH_MAX], *c;
2550 k = ttyname_r(fd, path, sizeof(path));
2556 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2564 int getttyname_harder(int fd, char **r) {
2568 k = getttyname_malloc(fd, &s);
2572 if (streq(s, "tty")) {
2574 return get_ctty(0, NULL, r);
2581 int get_ctty_devnr(pid_t pid, dev_t *d) {
2583 _cleanup_free_ char *line = NULL;
2585 unsigned long ttynr;
2589 p = procfs_file_alloca(pid, "stat");
2590 r = read_one_line_file(p, &line);
2594 p = strrchr(line, ')');
2604 "%*d " /* session */
2609 if (major(ttynr) == 0 && minor(ttynr) == 0)
2618 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2619 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *b = NULL;
2620 _cleanup_free_ char *s = NULL;
2627 k = get_ctty_devnr(pid, &devnr);
2631 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2633 k = readlink_malloc(fn, &s);
2639 /* This is an ugly hack */
2640 if (major(devnr) == 136) {
2641 asprintf(&b, "pts/%u", minor(devnr));
2645 /* Probably something like the ptys which have no
2646 * symlink in /dev/char. Let's return something
2647 * vaguely useful. */
2653 if (startswith(s, "/dev/"))
2655 else if (startswith(s, "../"))
2673 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2674 _cleanup_closedir_ DIR *d = NULL;
2679 /* This returns the first error we run into, but nevertheless
2680 * tries to go on. This closes the passed fd. */
2686 return errno == ENOENT ? 0 : -errno;
2691 bool is_dir, keep_around;
2698 if (errno != 0 && ret == 0)
2703 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2706 if (de->d_type == DT_UNKNOWN ||
2708 (de->d_type == DT_DIR && root_dev)) {
2709 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2710 if (ret == 0 && errno != ENOENT)
2715 is_dir = S_ISDIR(st.st_mode);
2718 (st.st_uid == 0 || st.st_uid == getuid()) &&
2719 (st.st_mode & S_ISVTX);
2721 is_dir = de->d_type == DT_DIR;
2722 keep_around = false;
2728 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2729 if (root_dev && st.st_dev != root_dev->st_dev)
2732 subdir_fd = openat(fd, de->d_name,
2733 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2734 if (subdir_fd < 0) {
2735 if (ret == 0 && errno != ENOENT)
2740 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2741 if (r < 0 && ret == 0)
2745 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2746 if (ret == 0 && errno != ENOENT)
2750 } else if (!only_dirs && !keep_around) {
2752 if (unlinkat(fd, de->d_name, 0) < 0) {
2753 if (ret == 0 && errno != ENOENT)
2760 _pure_ static int is_temporary_fs(struct statfs *s) {
2763 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2764 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2767 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2772 if (fstatfs(fd, &s) < 0) {
2777 /* We refuse to clean disk file systems with this call. This
2778 * is extra paranoia just to be sure we never ever remove
2780 if (!is_temporary_fs(&s)) {
2781 log_error("Attempted to remove disk file system, and we can't allow that.");
2786 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2789 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2795 /* We refuse to clean the root file system with this
2796 * call. This is extra paranoia to never cause a really
2797 * seriously broken system. */
2798 if (path_equal(path, "/")) {
2799 log_error("Attempted to remove entire root file system, and we can't allow that.");
2803 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2806 if (errno != ENOTDIR)
2810 if (statfs(path, &s) < 0)
2813 if (!is_temporary_fs(&s)) {
2814 log_error("Attempted to remove disk file system, and we can't allow that.");
2819 if (delete_root && !only_dirs)
2820 if (unlink(path) < 0 && errno != ENOENT)
2827 if (fstatfs(fd, &s) < 0) {
2832 if (!is_temporary_fs(&s)) {
2833 log_error("Attempted to remove disk file system, and we can't allow that.");
2839 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2842 if (honour_sticky && file_is_priv_sticky(path) > 0)
2845 if (rmdir(path) < 0 && errno != ENOENT) {
2854 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2855 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2858 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2859 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2862 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2865 /* Under the assumption that we are running privileged we
2866 * first change the access mode and only then hand out
2867 * ownership to avoid a window where access is too open. */
2869 if (mode != (mode_t) -1)
2870 if (chmod(path, mode) < 0)
2873 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2874 if (chown(path, uid, gid) < 0)
2880 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2883 /* Under the assumption that we are running privileged we
2884 * first change the access mode and only then hand out
2885 * ownership to avoid a window where access is too open. */
2887 if (mode != (mode_t) -1)
2888 if (fchmod(fd, mode) < 0)
2891 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2892 if (fchown(fd, uid, gid) < 0)
2898 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2902 /* Allocates the cpuset in the right size */
2905 if (!(r = CPU_ALLOC(n)))
2908 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2909 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2919 if (errno != EINVAL)
2926 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2927 static const char status_indent[] = " "; /* "[" STATUS "] " */
2928 _cleanup_free_ char *s = NULL;
2929 _cleanup_close_ int fd = -1;
2930 struct iovec iovec[6] = {};
2932 static bool prev_ephemeral;
2936 /* This is independent of logging, as status messages are
2937 * optional and go exclusively to the console. */
2939 if (vasprintf(&s, format, ap) < 0)
2942 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2955 sl = status ? sizeof(status_indent)-1 : 0;
2961 e = ellipsize(s, emax, 75);
2969 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2970 prev_ephemeral = ephemeral;
2973 if (!isempty(status)) {
2974 IOVEC_SET_STRING(iovec[n++], "[");
2975 IOVEC_SET_STRING(iovec[n++], status);
2976 IOVEC_SET_STRING(iovec[n++], "] ");
2978 IOVEC_SET_STRING(iovec[n++], status_indent);
2981 IOVEC_SET_STRING(iovec[n++], s);
2983 IOVEC_SET_STRING(iovec[n++], "\n");
2985 if (writev(fd, iovec, n) < 0)
2991 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
2997 va_start(ap, format);
2998 r = status_vprintf(status, ellipse, ephemeral, format, ap);
3004 char *replace_env(const char *format, char **env) {
3011 const char *e, *word = format;
3016 for (e = format; *e; e ++) {
3027 if (!(k = strnappend(r, word, e-word-1)))
3036 } else if (*e == '$') {
3037 if (!(k = strnappend(r, word, e-word)))
3053 t = strempty(strv_env_get_n(env, word+2, e-word-2));
3055 k = strappend(r, t);
3069 if (!(k = strnappend(r, word, e-word)))
3080 char **replace_env_argv(char **argv, char **env) {
3082 unsigned k = 0, l = 0;
3084 l = strv_length(argv);
3086 if (!(r = new(char*, l+1)))
3089 STRV_FOREACH(i, argv) {
3091 /* If $FOO appears as single word, replace it by the split up variable */
3092 if ((*i)[0] == '$' && (*i)[1] != '{') {
3097 e = strv_env_get(env, *i+1);
3100 if (!(m = strv_split_quoted(e))) {
3111 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3120 memcpy(r + k, m, q * sizeof(char*));
3128 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3129 if (!(r[k++] = replace_env(*i, env))) {
3139 int fd_columns(int fd) {
3140 struct winsize ws = {};
3142 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3151 unsigned columns(void) {
3155 if (_likely_(cached_columns > 0))
3156 return cached_columns;
3159 e = getenv("COLUMNS");
3164 c = fd_columns(STDOUT_FILENO);
3173 int fd_lines(int fd) {
3174 struct winsize ws = {};
3176 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3185 unsigned lines(void) {
3189 if (_likely_(cached_lines > 0))
3190 return cached_lines;
3193 e = getenv("LINES");
3198 l = fd_lines(STDOUT_FILENO);
3204 return cached_lines;
3207 /* intended to be used as a SIGWINCH sighandler */
3208 void columns_lines_cache_reset(int signum) {
3214 static int cached_on_tty = -1;
3216 if (_unlikely_(cached_on_tty < 0))
3217 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3219 return cached_on_tty;
3222 int files_same(const char *filea, const char *fileb) {
3225 if (stat(filea, &a) < 0)
3228 if (stat(fileb, &b) < 0)
3231 return a.st_dev == b.st_dev &&
3232 a.st_ino == b.st_ino;
3235 int running_in_chroot(void) {
3238 ret = files_same("/proc/1/root", "/");
3245 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3250 assert(percent <= 100);
3251 assert(new_length >= 3);
3253 if (old_length <= 3 || old_length <= new_length)
3254 return strndup(s, old_length);
3256 r = new0(char, new_length+1);
3260 x = (new_length * percent) / 100;
3262 if (x > new_length - 3)
3270 s + old_length - (new_length - x - 3),
3271 new_length - x - 3);
3276 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3280 unsigned k, len, len2;
3283 assert(percent <= 100);
3284 assert(new_length >= 3);
3286 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3287 if (ascii_is_valid(s))
3288 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3290 if (old_length <= 3 || old_length <= new_length)
3291 return strndup(s, old_length);
3293 x = (new_length * percent) / 100;
3295 if (x > new_length - 3)
3299 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3302 c = utf8_encoded_to_unichar(i);
3305 k += unichar_iswide(c) ? 2 : 1;
3308 if (k > x) /* last character was wide and went over quota */
3311 for (j = s + old_length; k < new_length && j > i; ) {
3314 j = utf8_prev_char(j);
3315 c = utf8_encoded_to_unichar(j);
3318 k += unichar_iswide(c) ? 2 : 1;
3322 /* we don't actually need to ellipsize */
3324 return memdup(s, old_length + 1);
3326 /* make space for ellipsis */
3327 j = utf8_next_char(j);
3330 len2 = s + old_length - j;
3331 e = new(char, len + 3 + len2 + 1);
3336 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3337 old_length, new_length, x, len, len2, k);
3341 e[len] = 0xe2; /* tri-dot ellipsis: … */
3345 memcpy(e + len + 3, j, len2 + 1);
3350 char *ellipsize(const char *s, size_t length, unsigned percent) {
3351 return ellipsize_mem(s, strlen(s), length, percent);
3354 int touch_file(const char *path, bool parents, usec_t stamp, uid_t uid, gid_t gid, mode_t mode) {
3355 _cleanup_close_ int fd;
3361 mkdir_parents(path, 0755);
3363 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, mode > 0 ? mode : 0644);
3368 r = fchmod(fd, mode);
3373 if (uid != (uid_t) -1 || gid != (gid_t) -1) {
3374 r = fchown(fd, uid, gid);
3379 if (stamp != (usec_t) -1) {
3380 struct timespec ts[2];
3382 timespec_store(&ts[0], stamp);
3384 r = futimens(fd, ts);
3386 r = futimens(fd, NULL);
3393 int touch(const char *path) {
3394 return touch_file(path, false, (usec_t) -1, (uid_t) -1, (gid_t) -1, 0);
3397 char *unquote(const char *s, const char* quotes) {
3401 /* This is rather stupid, simply removes the heading and
3402 * trailing quotes if there is one. Doesn't care about
3403 * escaping or anything. We should make this smarter one
3410 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3411 return strndup(s+1, l-2);
3416 char *normalize_env_assignment(const char *s) {
3417 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3420 eq = strchr(s, '=');
3432 memmove(r, t, strlen(t) + 1);
3436 name = strndup(s, eq - s);
3444 value = unquote(strstrip(p), QUOTES);
3448 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3454 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3465 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3477 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3484 r = wait_for_terminate(pid, &status);
3486 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3490 if (status.si_code == CLD_EXITED) {
3491 if (status.si_status != 0) {
3492 log_warning("%s failed with error code %i.", name, status.si_status);
3493 return status.si_status;
3496 log_debug("%s succeeded.", name);
3499 } else if (status.si_code == CLD_KILLED ||
3500 status.si_code == CLD_DUMPED) {
3502 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3506 log_warning("%s failed due to unknown reason.", name);
3510 noreturn void freeze(void) {
3512 /* Make sure nobody waits for us on a socket anymore */
3513 close_all_fds(NULL, 0);
3521 bool null_or_empty(struct stat *st) {
3524 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3527 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3533 int null_or_empty_path(const char *fn) {
3538 if (stat(fn, &st) < 0)
3541 return null_or_empty(&st);
3544 DIR *xopendirat(int fd, const char *name, int flags) {
3548 assert(!(flags & O_CREAT));
3550 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3563 int signal_from_string_try_harder(const char *s) {
3567 signo = signal_from_string(s);
3569 if (startswith(s, "SIG"))
3570 return signal_from_string(s+3);
3575 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3576 _cleanup_free_ char *t = NULL, *u = NULL;
3579 u = unquote(tagvalue, "\"\'");
3583 enc_len = strlen(u) * 4 + 1;
3584 t = new(char, enc_len);
3588 if (encode_devnode_name(u, t, enc_len) < 0)
3591 return strjoin("/dev/disk/by-", by, "/", t, NULL);
3594 char *fstab_node_to_udev_node(const char *p) {
3597 if (startswith(p, "LABEL="))
3598 return tag_to_udev_node(p+6, "label");
3600 if (startswith(p, "UUID="))
3601 return tag_to_udev_node(p+5, "uuid");
3603 if (startswith(p, "PARTUUID="))
3604 return tag_to_udev_node(p+9, "partuuid");
3606 if (startswith(p, "PARTLABEL="))
3607 return tag_to_udev_node(p+10, "partlabel");
3612 bool tty_is_vc(const char *tty) {
3615 return vtnr_from_tty(tty) >= 0;
3618 bool tty_is_console(const char *tty) {
3621 if (startswith(tty, "/dev/"))
3624 return streq(tty, "console");
3627 int vtnr_from_tty(const char *tty) {
3632 if (startswith(tty, "/dev/"))
3635 if (!startswith(tty, "tty") )
3638 if (tty[3] < '0' || tty[3] > '9')
3641 r = safe_atoi(tty+3, &i);
3645 if (i < 0 || i > 63)
3651 char *resolve_dev_console(char **active) {
3654 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3655 * (i.e. not read-only-mounted which is a sign for container setups) */
3657 if (path_is_read_only_fs("/sys") > 0)
3660 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3663 /* If multiple log outputs are configured the last one is what
3664 * /dev/console points to */
3665 tty = strrchr(*active, ' ');
3671 if (streq(tty, "tty0")) {
3674 /* Get the active VC (e.g. tty1) */
3675 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3677 tty = *active = tmp;
3684 bool tty_is_vc_resolve(const char *tty) {
3685 _cleanup_free_ char *active = NULL;
3689 if (startswith(tty, "/dev/"))
3692 if (streq(tty, "console")) {
3693 tty = resolve_dev_console(&active);
3698 return tty_is_vc(tty);
3701 const char *default_term_for_tty(const char *tty) {
3704 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3707 bool dirent_is_file(const struct dirent *de) {
3710 if (ignore_file(de->d_name))
3713 if (de->d_type != DT_REG &&
3714 de->d_type != DT_LNK &&
3715 de->d_type != DT_UNKNOWN)
3721 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3724 if (de->d_type != DT_REG &&
3725 de->d_type != DT_LNK &&
3726 de->d_type != DT_UNKNOWN)
3729 if (ignore_file_allow_backup(de->d_name))
3732 return endswith(de->d_name, suffix);
3735 void execute_directory(const char *directory, DIR *d, usec_t timeout, char *argv[]) {
3741 /* Executes all binaries in a directory in parallel and waits
3742 * for them to finish. Optionally a timeout is applied. */
3744 executor_pid = fork();
3745 if (executor_pid < 0) {
3746 log_error("Failed to fork: %m");
3749 } else if (executor_pid == 0) {
3750 _cleanup_hashmap_free_free_ Hashmap *pids = NULL;
3751 _cleanup_closedir_ DIR *_d = NULL;
3755 /* We fork this all off from a child process so that
3756 * we can somewhat cleanly make use of SIGALRM to set
3759 reset_all_signal_handlers();
3761 assert_se(sigemptyset(&ss) == 0);
3762 assert_se(sigprocmask(SIG_SETMASK, &ss, NULL) == 0);
3764 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3767 d = _d = opendir(directory);
3769 if (errno == ENOENT)
3770 _exit(EXIT_SUCCESS);
3772 log_error("Failed to enumerate directory %s: %m", directory);
3773 _exit(EXIT_FAILURE);
3777 pids = hashmap_new(NULL, NULL);
3780 _exit(EXIT_FAILURE);
3783 FOREACH_DIRENT(de, d, break) {
3784 _cleanup_free_ char *path = NULL;
3787 if (!dirent_is_file(de))
3790 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3792 _exit(EXIT_FAILURE);
3797 log_error("Failed to fork: %m");
3799 } else if (pid == 0) {
3802 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3812 log_error("Failed to execute %s: %m", path);
3813 _exit(EXIT_FAILURE);
3817 log_debug("Spawned %s as " PID_FMT ".", path, pid);
3819 r = hashmap_put(pids, UINT_TO_PTR(pid), path);
3822 _exit(EXIT_FAILURE);
3828 /* Abort execution of this process after the
3829 * timout. We simply rely on SIGALRM as default action
3830 * terminating the process, and turn on alarm(). */
3832 if (timeout != (usec_t) -1)
3833 alarm((timeout + USEC_PER_SEC - 1) / USEC_PER_SEC);
3835 while (!hashmap_isempty(pids)) {
3836 _cleanup_free_ char *path = NULL;
3839 pid = PTR_TO_UINT(hashmap_first_key(pids));
3842 path = hashmap_remove(pids, UINT_TO_PTR(pid));
3845 wait_for_terminate_and_warn(path, pid);
3848 _exit(EXIT_SUCCESS);
3851 wait_for_terminate_and_warn(directory, executor_pid);
3854 int kill_and_sigcont(pid_t pid, int sig) {
3857 r = kill(pid, sig) < 0 ? -errno : 0;
3865 bool nulstr_contains(const char*nulstr, const char *needle) {
3871 NULSTR_FOREACH(i, nulstr)
3872 if (streq(i, needle))
3878 bool plymouth_running(void) {
3879 return access("/run/plymouth/pid", F_OK) >= 0;
3882 char* strshorten(char *s, size_t l) {
3891 static bool hostname_valid_char(char c) {
3893 (c >= 'a' && c <= 'z') ||
3894 (c >= 'A' && c <= 'Z') ||
3895 (c >= '0' && c <= '9') ||
3901 bool hostname_is_valid(const char *s) {
3908 for (p = s, dot = true; *p; p++) {
3915 if (!hostname_valid_char(*p))
3925 if (p-s > HOST_NAME_MAX)
3931 char* hostname_cleanup(char *s, bool lowercase) {
3935 for (p = s, d = s, dot = true; *p; p++) {
3942 } else if (hostname_valid_char(*p)) {
3943 *(d++) = lowercase ? tolower(*p) : *p;
3954 strshorten(s, HOST_NAME_MAX);
3959 int pipe_eof(int fd) {
3960 struct pollfd pollfd = {
3962 .events = POLLIN|POLLHUP,
3967 r = poll(&pollfd, 1, 0);
3974 return pollfd.revents & POLLHUP;
3977 int fd_wait_for_event(int fd, int event, usec_t t) {
3979 struct pollfd pollfd = {
3987 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
3994 return pollfd.revents;
3997 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
4006 t = tempfn_xxxxxx(path);
4010 fd = mkostemp_safe(t, O_WRONLY|O_CLOEXEC);
4016 f = fdopen(fd, "we");
4029 int terminal_vhangup_fd(int fd) {
4032 if (ioctl(fd, TIOCVHANGUP) < 0)
4038 int terminal_vhangup(const char *name) {
4039 _cleanup_close_ int fd;
4041 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4045 return terminal_vhangup_fd(fd);
4048 int vt_disallocate(const char *name) {
4052 /* Deallocate the VT if possible. If not possible
4053 * (i.e. because it is the active one), at least clear it
4054 * entirely (including the scrollback buffer) */
4056 if (!startswith(name, "/dev/"))
4059 if (!tty_is_vc(name)) {
4060 /* So this is not a VT. I guess we cannot deallocate
4061 * it then. But let's at least clear the screen */
4063 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4068 "\033[r" /* clear scrolling region */
4069 "\033[H" /* move home */
4070 "\033[2J", /* clear screen */
4077 if (!startswith(name, "/dev/tty"))
4080 r = safe_atou(name+8, &u);
4087 /* Try to deallocate */
4088 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
4092 r = ioctl(fd, VT_DISALLOCATE, u);
4101 /* Couldn't deallocate, so let's clear it fully with
4103 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4108 "\033[r" /* clear scrolling region */
4109 "\033[H" /* move home */
4110 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4117 int symlink_atomic(const char *from, const char *to) {
4118 _cleanup_free_ char *t = NULL;
4123 t = tempfn_random(to);
4127 if (symlink(from, t) < 0)
4130 if (rename(t, to) < 0) {
4138 int mknod_atomic(const char *path, mode_t mode, dev_t dev) {
4139 _cleanup_free_ char *t = NULL;
4143 t = tempfn_random(path);
4147 if (mknod(t, mode, dev) < 0)
4150 if (rename(t, path) < 0) {
4158 int mkfifo_atomic(const char *path, mode_t mode) {
4159 _cleanup_free_ char *t = NULL;
4163 t = tempfn_random(path);
4167 if (mkfifo(t, mode) < 0)
4170 if (rename(t, path) < 0) {
4178 bool display_is_local(const char *display) {
4182 display[0] == ':' &&
4183 display[1] >= '0' &&
4187 int socket_from_display(const char *display, char **path) {
4194 if (!display_is_local(display))
4197 k = strspn(display+1, "0123456789");
4199 f = new(char, strlen("/tmp/.X11-unix/X") + k + 1);
4203 c = stpcpy(f, "/tmp/.X11-unix/X");
4204 memcpy(c, display+1, k);
4213 const char **username,
4214 uid_t *uid, gid_t *gid,
4216 const char **shell) {
4224 /* We enforce some special rules for uid=0: in order to avoid
4225 * NSS lookups for root we hardcode its data. */
4227 if (streq(*username, "root") || streq(*username, "0")) {
4245 if (parse_uid(*username, &u) >= 0) {
4249 /* If there are multiple users with the same id, make
4250 * sure to leave $USER to the configured value instead
4251 * of the first occurrence in the database. However if
4252 * the uid was configured by a numeric uid, then let's
4253 * pick the real username from /etc/passwd. */
4255 *username = p->pw_name;
4258 p = getpwnam(*username);
4262 return errno > 0 ? -errno : -ESRCH;
4274 *shell = p->pw_shell;
4279 char* uid_to_name(uid_t uid) {
4284 return strdup("root");
4288 return strdup(p->pw_name);
4290 if (asprintf(&r, UID_FMT, uid) < 0)
4296 char* gid_to_name(gid_t gid) {
4301 return strdup("root");
4305 return strdup(p->gr_name);
4307 if (asprintf(&r, GID_FMT, gid) < 0)
4313 int get_group_creds(const char **groupname, gid_t *gid) {
4319 /* We enforce some special rules for gid=0: in order to avoid
4320 * NSS lookups for root we hardcode its data. */
4322 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4323 *groupname = "root";
4331 if (parse_gid(*groupname, &id) >= 0) {
4336 *groupname = g->gr_name;
4339 g = getgrnam(*groupname);
4343 return errno > 0 ? -errno : -ESRCH;
4351 int in_gid(gid_t gid) {
4353 int ngroups_max, r, i;
4355 if (getgid() == gid)
4358 if (getegid() == gid)
4361 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4362 assert(ngroups_max > 0);
4364 gids = alloca(sizeof(gid_t) * ngroups_max);
4366 r = getgroups(ngroups_max, gids);
4370 for (i = 0; i < r; i++)
4377 int in_group(const char *name) {
4381 r = get_group_creds(&name, &gid);
4388 int glob_exists(const char *path) {
4389 _cleanup_globfree_ glob_t g = {};
4395 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4397 if (k == GLOB_NOMATCH)
4399 else if (k == GLOB_NOSPACE)
4402 return !strv_isempty(g.gl_pathv);
4404 return errno ? -errno : -EIO;
4407 int glob_extend(char ***strv, const char *path) {
4408 _cleanup_globfree_ glob_t g = {};
4413 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4415 if (k == GLOB_NOMATCH)
4417 else if (k == GLOB_NOSPACE)
4419 else if (k != 0 || strv_isempty(g.gl_pathv))
4420 return errno ? -errno : -EIO;
4422 STRV_FOREACH(p, g.gl_pathv) {
4423 k = strv_extend(strv, *p);
4431 int dirent_ensure_type(DIR *d, struct dirent *de) {
4437 if (de->d_type != DT_UNKNOWN)
4440 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4444 S_ISREG(st.st_mode) ? DT_REG :
4445 S_ISDIR(st.st_mode) ? DT_DIR :
4446 S_ISLNK(st.st_mode) ? DT_LNK :
4447 S_ISFIFO(st.st_mode) ? DT_FIFO :
4448 S_ISSOCK(st.st_mode) ? DT_SOCK :
4449 S_ISCHR(st.st_mode) ? DT_CHR :
4450 S_ISBLK(st.st_mode) ? DT_BLK :
4456 int get_files_in_directory(const char *path, char ***list) {
4457 _cleanup_closedir_ DIR *d = NULL;
4458 size_t bufsize = 0, n = 0;
4459 _cleanup_strv_free_ char **l = NULL;
4463 /* Returns all files in a directory in *list, and the number
4464 * of files as return value. If list is NULL returns only the
4476 if (!de && errno != 0)
4481 dirent_ensure_type(d, de);
4483 if (!dirent_is_file(de))
4487 /* one extra slot is needed for the terminating NULL */
4488 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4491 l[n] = strdup(de->d_name);
4502 l = NULL; /* avoid freeing */
4508 char *strjoin(const char *x, ...) {
4522 t = va_arg(ap, const char *);
4527 if (n > ((size_t) -1) - l) {
4551 t = va_arg(ap, const char *);
4565 bool is_main_thread(void) {
4566 static thread_local int cached = 0;
4568 if (_unlikely_(cached == 0))
4569 cached = getpid() == gettid() ? 1 : -1;
4574 int block_get_whole_disk(dev_t d, dev_t *ret) {
4581 /* If it has a queue this is good enough for us */
4582 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4585 r = access(p, F_OK);
4593 /* If it is a partition find the originating device */
4594 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4597 r = access(p, F_OK);
4603 /* Get parent dev_t */
4604 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4607 r = read_one_line_file(p, &s);
4613 r = sscanf(s, "%u:%u", &m, &n);
4619 /* Only return this if it is really good enough for us. */
4620 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4623 r = access(p, F_OK);
4627 *ret = makedev(m, n);
4634 int file_is_priv_sticky(const char *p) {
4639 if (lstat(p, &st) < 0)
4643 (st.st_uid == 0 || st.st_uid == getuid()) &&
4644 (st.st_mode & S_ISVTX);
4647 static const char *const ioprio_class_table[] = {
4648 [IOPRIO_CLASS_NONE] = "none",
4649 [IOPRIO_CLASS_RT] = "realtime",
4650 [IOPRIO_CLASS_BE] = "best-effort",
4651 [IOPRIO_CLASS_IDLE] = "idle"
4654 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4656 static const char *const sigchld_code_table[] = {
4657 [CLD_EXITED] = "exited",
4658 [CLD_KILLED] = "killed",
4659 [CLD_DUMPED] = "dumped",
4660 [CLD_TRAPPED] = "trapped",
4661 [CLD_STOPPED] = "stopped",
4662 [CLD_CONTINUED] = "continued",
4665 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4667 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4668 [LOG_FAC(LOG_KERN)] = "kern",
4669 [LOG_FAC(LOG_USER)] = "user",
4670 [LOG_FAC(LOG_MAIL)] = "mail",
4671 [LOG_FAC(LOG_DAEMON)] = "daemon",
4672 [LOG_FAC(LOG_AUTH)] = "auth",
4673 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4674 [LOG_FAC(LOG_LPR)] = "lpr",
4675 [LOG_FAC(LOG_NEWS)] = "news",
4676 [LOG_FAC(LOG_UUCP)] = "uucp",
4677 [LOG_FAC(LOG_CRON)] = "cron",
4678 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4679 [LOG_FAC(LOG_FTP)] = "ftp",
4680 [LOG_FAC(LOG_LOCAL0)] = "local0",
4681 [LOG_FAC(LOG_LOCAL1)] = "local1",
4682 [LOG_FAC(LOG_LOCAL2)] = "local2",
4683 [LOG_FAC(LOG_LOCAL3)] = "local3",
4684 [LOG_FAC(LOG_LOCAL4)] = "local4",
4685 [LOG_FAC(LOG_LOCAL5)] = "local5",
4686 [LOG_FAC(LOG_LOCAL6)] = "local6",
4687 [LOG_FAC(LOG_LOCAL7)] = "local7"
4690 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4692 static const char *const log_level_table[] = {
4693 [LOG_EMERG] = "emerg",
4694 [LOG_ALERT] = "alert",
4695 [LOG_CRIT] = "crit",
4697 [LOG_WARNING] = "warning",
4698 [LOG_NOTICE] = "notice",
4699 [LOG_INFO] = "info",
4700 [LOG_DEBUG] = "debug"
4703 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4705 static const char* const sched_policy_table[] = {
4706 [SCHED_OTHER] = "other",
4707 [SCHED_BATCH] = "batch",
4708 [SCHED_IDLE] = "idle",
4709 [SCHED_FIFO] = "fifo",
4713 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4715 static const char* const rlimit_table[_RLIMIT_MAX] = {
4716 [RLIMIT_CPU] = "LimitCPU",
4717 [RLIMIT_FSIZE] = "LimitFSIZE",
4718 [RLIMIT_DATA] = "LimitDATA",
4719 [RLIMIT_STACK] = "LimitSTACK",
4720 [RLIMIT_CORE] = "LimitCORE",
4721 [RLIMIT_RSS] = "LimitRSS",
4722 [RLIMIT_NOFILE] = "LimitNOFILE",
4723 [RLIMIT_AS] = "LimitAS",
4724 [RLIMIT_NPROC] = "LimitNPROC",
4725 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4726 [RLIMIT_LOCKS] = "LimitLOCKS",
4727 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4728 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4729 [RLIMIT_NICE] = "LimitNICE",
4730 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4731 [RLIMIT_RTTIME] = "LimitRTTIME"
4734 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4736 static const char* const ip_tos_table[] = {
4737 [IPTOS_LOWDELAY] = "low-delay",
4738 [IPTOS_THROUGHPUT] = "throughput",
4739 [IPTOS_RELIABILITY] = "reliability",
4740 [IPTOS_LOWCOST] = "low-cost",
4743 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4745 static const char *const __signal_table[] = {
4762 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4773 [SIGVTALRM] = "VTALRM",
4775 [SIGWINCH] = "WINCH",
4781 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4783 const char *signal_to_string(int signo) {
4784 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4787 name = __signal_to_string(signo);
4791 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4792 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4794 snprintf(buf, sizeof(buf), "%d", signo);
4799 int signal_from_string(const char *s) {
4804 signo = __signal_from_string(s);
4808 if (startswith(s, "RTMIN+")) {
4812 if (safe_atou(s, &u) >= 0) {
4813 signo = (int) u + offset;
4814 if (signo > 0 && signo < _NSIG)
4820 bool kexec_loaded(void) {
4821 bool loaded = false;
4824 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4832 int strdup_or_null(const char *a, char **b) {
4850 int prot_from_flags(int flags) {
4852 switch (flags & O_ACCMODE) {
4861 return PROT_READ|PROT_WRITE;
4868 char *format_bytes(char *buf, size_t l, off_t t) {
4871 static const struct {
4875 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4876 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4877 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4878 { "G", 1024ULL*1024ULL*1024ULL },
4879 { "M", 1024ULL*1024ULL },
4883 for (i = 0; i < ELEMENTSOF(table); i++) {
4885 if (t >= table[i].factor) {
4888 (unsigned long long) (t / table[i].factor),
4889 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4896 snprintf(buf, l, "%lluB", (unsigned long long) t);
4904 void* memdup(const void *p, size_t l) {
4917 int fd_inc_sndbuf(int fd, size_t n) {
4919 socklen_t l = sizeof(value);
4921 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4922 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4925 /* If we have the privileges we will ignore the kernel limit. */
4928 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4929 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
4935 int fd_inc_rcvbuf(int fd, size_t n) {
4937 socklen_t l = sizeof(value);
4939 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
4940 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4943 /* If we have the privileges we will ignore the kernel limit. */
4946 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
4947 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
4952 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
4953 pid_t parent_pid, agent_pid;
4955 bool stdout_is_tty, stderr_is_tty;
4963 parent_pid = getpid();
4965 /* Spawns a temporary TTY agent, making sure it goes away when
4972 if (agent_pid != 0) {
4979 * Make sure the agent goes away when the parent dies */
4980 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
4981 _exit(EXIT_FAILURE);
4983 /* Check whether our parent died before we were able
4984 * to set the death signal */
4985 if (getppid() != parent_pid)
4986 _exit(EXIT_SUCCESS);
4988 /* Don't leak fds to the agent */
4989 close_all_fds(except, n_except);
4991 stdout_is_tty = isatty(STDOUT_FILENO);
4992 stderr_is_tty = isatty(STDERR_FILENO);
4994 if (!stdout_is_tty || !stderr_is_tty) {
4995 /* Detach from stdout/stderr. and reopen
4996 * /dev/tty for them. This is important to
4997 * ensure that when systemctl is started via
4998 * popen() or a similar call that expects to
4999 * read EOF we actually do generate EOF and
5000 * not delay this indefinitely by because we
5001 * keep an unused copy of stdin around. */
5002 fd = open("/dev/tty", O_WRONLY);
5004 log_error("Failed to open /dev/tty: %m");
5005 _exit(EXIT_FAILURE);
5009 dup2(fd, STDOUT_FILENO);
5012 dup2(fd, STDERR_FILENO);
5018 /* Count arguments */
5020 for (n = 0; va_arg(ap, char*); n++)
5025 l = alloca(sizeof(char *) * (n + 1));
5027 /* Fill in arguments */
5029 for (i = 0; i <= n; i++)
5030 l[i] = va_arg(ap, char*);
5034 _exit(EXIT_FAILURE);
5037 int setrlimit_closest(int resource, const struct rlimit *rlim) {
5038 struct rlimit highest, fixed;
5042 if (setrlimit(resource, rlim) >= 0)
5048 /* So we failed to set the desired setrlimit, then let's try
5049 * to get as close as we can */
5050 assert_se(getrlimit(resource, &highest) == 0);
5052 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
5053 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
5055 if (setrlimit(resource, &fixed) < 0)
5061 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5062 _cleanup_fclose_ FILE *f = NULL;
5073 path = procfs_file_alloca(pid, "environ");
5075 f = fopen(path, "re");
5083 char line[LINE_MAX];
5086 for (i = 0; i < sizeof(line)-1; i++) {
5090 if (_unlikely_(c == EOF)) {
5100 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5101 value = strdup(line + l + 1);
5115 bool is_valid_documentation_url(const char *url) {
5118 if (startswith(url, "http://") && url[7])
5121 if (startswith(url, "https://") && url[8])
5124 if (startswith(url, "file:") && url[5])
5127 if (startswith(url, "info:") && url[5])
5130 if (startswith(url, "man:") && url[4])
5136 bool in_initrd(void) {
5137 static int saved = -1;
5143 /* We make two checks here:
5145 * 1. the flag file /etc/initrd-release must exist
5146 * 2. the root file system must be a memory file system
5148 * The second check is extra paranoia, since misdetecting an
5149 * initrd can have bad bad consequences due the initrd
5150 * emptying when transititioning to the main systemd.
5153 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5154 statfs("/", &s) >= 0 &&
5155 is_temporary_fs(&s);
5160 void warn_melody(void) {
5161 _cleanup_close_ int fd = -1;
5163 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5167 /* Yeah, this is synchronous. Kinda sucks. But well... */
5169 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5170 usleep(125*USEC_PER_MSEC);
5172 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5173 usleep(125*USEC_PER_MSEC);
5175 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5176 usleep(125*USEC_PER_MSEC);
5178 ioctl(fd, KIOCSOUND, 0);
5181 int make_console_stdio(void) {
5184 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5186 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5188 log_error("Failed to acquire terminal: %s", strerror(-fd));
5194 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5201 int get_home_dir(char **_h) {
5209 /* Take the user specified one */
5220 /* Hardcode home directory for root to avoid NSS */
5223 h = strdup("/root");
5231 /* Check the database... */
5235 return errno > 0 ? -errno : -ESRCH;
5237 if (!path_is_absolute(p->pw_dir))
5240 h = strdup(p->pw_dir);
5248 int get_shell(char **_s) {
5256 /* Take the user specified one */
5257 e = getenv("SHELL");
5267 /* Hardcode home directory for root to avoid NSS */
5270 s = strdup("/bin/sh");
5278 /* Check the database... */
5282 return errno > 0 ? -errno : -ESRCH;
5284 if (!path_is_absolute(p->pw_shell))
5287 s = strdup(p->pw_shell);
5295 bool filename_is_safe(const char *p) {
5309 if (strlen(p) > FILENAME_MAX)
5315 bool string_is_safe(const char *p) {
5320 for (t = p; *t; t++) {
5321 if (*t > 0 && *t < ' ')
5324 if (strchr("\\\"\'", *t))
5332 * Check if a string contains control characters.
5333 * Spaces and tabs are not considered control characters.
5335 bool string_has_cc(const char *p) {
5340 for (t = p; *t; t++)
5341 if (*t > 0 && *t < ' ' && *t != '\t')
5347 bool path_is_safe(const char *p) {
5352 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5355 if (strlen(p) > PATH_MAX)
5358 /* The following two checks are not really dangerous, but hey, they still are confusing */
5359 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5362 if (strstr(p, "//"))
5368 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5369 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5370 int (*compar) (const void *, const void *, void *), void *arg) {
5379 p = (void *)(((const char *) base) + (idx * size));
5380 comparison = compar(key, p, arg);
5383 else if (comparison > 0)
5391 bool is_locale_utf8(void) {
5393 static int cached_answer = -1;
5395 if (cached_answer >= 0)
5398 if (!setlocale(LC_ALL, "")) {
5399 cached_answer = true;
5403 set = nl_langinfo(CODESET);
5405 cached_answer = true;
5409 if (streq(set, "UTF-8")) {
5410 cached_answer = true;
5414 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5415 * unset and everything can do to UTF-8 nowadays. */
5416 set = setlocale(LC_CTYPE, NULL);
5418 cached_answer = true;
5422 /* Check result, but ignore the result if C was set
5426 !getenv("LC_ALL") &&
5427 !getenv("LC_CTYPE") &&
5431 return (bool) cached_answer;
5434 const char *draw_special_char(DrawSpecialChar ch) {
5435 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5438 [DRAW_TREE_VERTICAL] = "\342\224\202 ", /* │ */
5439 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5440 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5441 [DRAW_TREE_SPACE] = " ", /* */
5442 [DRAW_TRIANGULAR_BULLET] = "\342\200\243", /* ‣ */
5443 [DRAW_BLACK_CIRCLE] = "\342\227\217", /* ● */
5444 [DRAW_ARROW] = "\342\206\222", /* → */
5445 [DRAW_DASH] = "\342\200\223", /* – */
5448 /* ASCII fallback */ {
5449 [DRAW_TREE_VERTICAL] = "| ",
5450 [DRAW_TREE_BRANCH] = "|-",
5451 [DRAW_TREE_RIGHT] = "`-",
5452 [DRAW_TREE_SPACE] = " ",
5453 [DRAW_TRIANGULAR_BULLET] = ">",
5454 [DRAW_BLACK_CIRCLE] = "*",
5455 [DRAW_ARROW] = "->",
5460 return draw_table[!is_locale_utf8()][ch];
5463 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5466 size_t l, old_len, new_len;
5472 old_len = strlen(old_string);
5473 new_len = strlen(new_string);
5486 if (!startswith(f, old_string)) {
5492 nl = l - old_len + new_len;
5493 a = realloc(r, nl + 1);
5501 t = stpcpy(t, new_string);
5513 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5514 const char *i, *begin = NULL;
5519 } state = STATE_OTHER;
5521 size_t osz = 0, isz;
5527 /* Strips ANSI color and replaces TABs by 8 spaces */
5529 isz = _isz ? *_isz : strlen(*ibuf);
5531 f = open_memstream(&obuf, &osz);
5535 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5540 if (i >= *ibuf + isz) /* EOT */
5542 else if (*i == '\x1B')
5543 state = STATE_ESCAPE;
5544 else if (*i == '\t')
5551 if (i >= *ibuf + isz) { /* EOT */
5554 } else if (*i == '[') {
5555 state = STATE_BRACKET;
5560 state = STATE_OTHER;
5567 if (i >= *ibuf + isz || /* EOT */
5568 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5571 state = STATE_OTHER;
5573 } else if (*i == 'm')
5574 state = STATE_OTHER;
5596 int on_ac_power(void) {
5597 bool found_offline = false, found_online = false;
5598 _cleanup_closedir_ DIR *d = NULL;
5600 d = opendir("/sys/class/power_supply");
5606 _cleanup_close_ int fd = -1, device = -1;
5612 if (!de && errno != 0)
5618 if (ignore_file(de->d_name))
5621 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5623 if (errno == ENOENT || errno == ENOTDIR)
5629 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5631 if (errno == ENOENT)
5637 n = read(fd, contents, sizeof(contents));
5641 if (n != 6 || memcmp(contents, "Mains\n", 6))
5645 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5647 if (errno == ENOENT)
5653 n = read(fd, contents, sizeof(contents));
5657 if (n != 2 || contents[1] != '\n')
5660 if (contents[0] == '1') {
5661 found_online = true;
5663 } else if (contents[0] == '0')
5664 found_offline = true;
5669 return found_online || !found_offline;
5672 static int search_and_fopen_internal(const char *path, const char *mode, const char *root, char **search, FILE **_f) {
5679 if (!path_strv_resolve_uniq(search, root))
5682 STRV_FOREACH(i, search) {
5683 _cleanup_free_ char *p = NULL;
5687 p = strjoin(root, *i, "/", path, NULL);
5689 p = strjoin(*i, "/", path, NULL);
5699 if (errno != ENOENT)
5706 int search_and_fopen(const char *path, const char *mode, const char *root, const char **search, FILE **_f) {
5707 _cleanup_strv_free_ char **copy = NULL;
5713 if (path_is_absolute(path)) {
5716 f = fopen(path, mode);
5725 copy = strv_copy((char**) search);
5729 return search_and_fopen_internal(path, mode, root, copy, _f);
5732 int search_and_fopen_nulstr(const char *path, const char *mode, const char *root, const char *search, FILE **_f) {
5733 _cleanup_strv_free_ char **s = NULL;
5735 if (path_is_absolute(path)) {
5738 f = fopen(path, mode);
5747 s = strv_split_nulstr(search);
5751 return search_and_fopen_internal(path, mode, root, s, _f);
5754 char *strextend(char **x, ...) {
5761 l = f = *x ? strlen(*x) : 0;
5768 t = va_arg(ap, const char *);
5773 if (n > ((size_t) -1) - l) {
5782 r = realloc(*x, l+1);
5792 t = va_arg(ap, const char *);
5806 char *strrep(const char *s, unsigned n) {
5814 p = r = malloc(l * n + 1);
5818 for (i = 0; i < n; i++)
5825 void* greedy_realloc(void **p, size_t *allocated, size_t need, size_t size) {
5832 if (*allocated >= need)
5835 newalloc = MAX(need * 2, 64u / size);
5836 a = newalloc * size;
5838 /* check for overflows */
5839 if (a < size * need)
5847 *allocated = newalloc;
5851 void* greedy_realloc0(void **p, size_t *allocated, size_t need, size_t size) {
5860 q = greedy_realloc(p, allocated, need, size);
5864 if (*allocated > prev)
5865 memzero(q + prev * size, (*allocated - prev) * size);
5870 bool id128_is_valid(const char *s) {
5876 /* Simple formatted 128bit hex string */
5878 for (i = 0; i < l; i++) {
5881 if (!(c >= '0' && c <= '9') &&
5882 !(c >= 'a' && c <= 'z') &&
5883 !(c >= 'A' && c <= 'Z'))
5887 } else if (l == 36) {
5889 /* Formatted UUID */
5891 for (i = 0; i < l; i++) {
5894 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5898 if (!(c >= '0' && c <= '9') &&
5899 !(c >= 'a' && c <= 'z') &&
5900 !(c >= 'A' && c <= 'Z'))
5911 int split_pair(const char *s, const char *sep, char **l, char **r) {
5926 a = strndup(s, x - s);
5930 b = strdup(x + strlen(sep));
5942 int shall_restore_state(void) {
5943 _cleanup_free_ char *line = NULL;
5948 r = proc_cmdline(&line);
5951 if (r == 0) /* Container ... */
5956 FOREACH_WORD_QUOTED(w, l, line, state) {
5964 e = startswith(n, "systemd.restore_state=");
5968 k = parse_boolean(e);
5976 int proc_cmdline(char **ret) {
5979 if (detect_container(NULL) > 0) {
5980 char *buf = NULL, *p;
5983 r = read_full_file("/proc/1/cmdline", &buf, &sz);
5987 for (p = buf; p + 1 < buf + sz; p++)
5996 r = read_one_line_file("/proc/cmdline", ret);
6003 int parse_proc_cmdline(int (*parse_item)(const char *key, const char *value)) {
6004 _cleanup_free_ char *line = NULL;
6011 r = proc_cmdline(&line);
6013 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
6017 FOREACH_WORD_QUOTED(w, l, line, state) {
6018 char word[l+1], *value;
6023 /* Filter out arguments that are intended only for the
6025 if (!in_initrd() && startswith(word, "rd."))
6028 value = strchr(word, '=');
6032 r = parse_item(word, value);
6040 int container_get_leader(const char *machine, pid_t *pid) {
6041 _cleanup_free_ char *s = NULL, *class = NULL;
6049 p = strappenda("/run/systemd/machines/", machine);
6050 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
6058 if (!streq_ptr(class, "container"))
6061 r = parse_pid(s, &leader);
6071 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *netns_fd, int *root_fd) {
6072 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1, netnsfd = -1;
6080 mntns = procfs_file_alloca(pid, "ns/mnt");
6081 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6089 pidns = procfs_file_alloca(pid, "ns/pid");
6090 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6098 netns = procfs_file_alloca(pid, "ns/net");
6099 netnsfd = open(netns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6107 root = procfs_file_alloca(pid, "root");
6108 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
6114 *pidns_fd = pidnsfd;
6117 *mntns_fd = mntnsfd;
6120 *netns_fd = netnsfd;
6125 pidnsfd = mntnsfd = netnsfd = -1;
6130 int namespace_enter(int pidns_fd, int mntns_fd, int netns_fd, int root_fd) {
6133 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6137 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6141 if (setns(netns_fd, CLONE_NEWNET) < 0)
6145 if (fchdir(root_fd) < 0)
6148 if (chroot(".") < 0)
6152 if (setresgid(0, 0, 0) < 0)
6155 if (setgroups(0, NULL) < 0)
6158 if (setresuid(0, 0, 0) < 0)
6164 bool pid_is_unwaited(pid_t pid) {
6165 /* Checks whether a PID is still valid at all, including a zombie */
6170 if (kill(pid, 0) >= 0)
6173 return errno != ESRCH;
6176 bool pid_is_alive(pid_t pid) {
6179 /* Checks whether a PID is still valid and not a zombie */
6184 r = get_process_state(pid);
6185 if (r == -ENOENT || r == 'Z')
6191 int getpeercred(int fd, struct ucred *ucred) {
6192 socklen_t n = sizeof(struct ucred);
6199 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6203 if (n != sizeof(struct ucred))
6206 /* Check if the data is actually useful and not suppressed due
6207 * to namespacing issues */
6215 int getpeersec(int fd, char **ret) {
6227 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6231 if (errno != ERANGE)
6238 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6254 /* This is much like like mkostemp() but is subject to umask(). */
6255 int mkostemp_safe(char *pattern, int flags) {
6256 _cleanup_umask_ mode_t u;
6263 fd = mkostemp(pattern, flags);
6270 int open_tmpfile(const char *path, int flags) {
6277 /* Try O_TMPFILE first, if it is supported */
6278 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6283 /* Fall back to unguessable name + unlinking */
6284 p = strappenda(path, "/systemd-tmp-XXXXXX");
6286 fd = mkostemp_safe(p, flags);
6294 int fd_warn_permissions(const char *path, int fd) {
6297 if (fstat(fd, &st) < 0)
6300 if (st.st_mode & 0111)
6301 log_warning("Configuration file %s is marked executable. Please remove executable permission bits. Proceeding anyway.", path);
6303 if (st.st_mode & 0002)
6304 log_warning("Configuration file %s is marked world-writable. Please remove world writability permission bits. Proceeding anyway.", path);
6306 if (getpid() == 1 && (st.st_mode & 0044) != 0044)
6307 log_warning("Configuration file %s is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.", path);
6312 unsigned long personality_from_string(const char *p) {
6314 /* Parse a personality specifier. We introduce our own
6315 * identifiers that indicate specific ABIs, rather than just
6316 * hints regarding the register size, since we want to keep
6317 * things open for multiple locally supported ABIs for the
6318 * same register size. We try to reuse the ABI identifiers
6319 * used by libseccomp. */
6321 #if defined(__x86_64__)
6323 if (streq(p, "x86"))
6326 if (streq(p, "x86-64"))
6329 #elif defined(__i386__)
6331 if (streq(p, "x86"))
6335 /* personality(7) documents that 0xffffffffUL is used for
6336 * querying the current personality, hence let's use that here
6337 * as error indicator. */
6338 return 0xffffffffUL;
6341 const char* personality_to_string(unsigned long p) {
6343 #if defined(__x86_64__)
6345 if (p == PER_LINUX32)
6351 #elif defined(__i386__)
6360 uint64_t physical_memory(void) {
6363 /* We return this as uint64_t in case we are running as 32bit
6364 * process on a 64bit kernel with huge amounts of memory */
6366 mem = sysconf(_SC_PHYS_PAGES);
6369 return (uint64_t) mem * (uint64_t) page_size();
6372 char* mount_test_option(const char *haystack, const char *needle) {
6374 struct mntent me = {
6375 .mnt_opts = (char*) haystack
6380 /* Like glibc's hasmntopt(), but works on a string, not a
6386 return hasmntopt(&me, needle);
6389 void hexdump(FILE *f, const void *p, size_t s) {
6390 const uint8_t *b = p;
6393 assert(s == 0 || b);
6398 fprintf(f, "%04x ", n);
6400 for (i = 0; i < 16; i++) {
6405 fprintf(f, "%02x ", b[i]);
6413 for (i = 0; i < 16; i++) {
6418 fputc(isprint(b[i]) ? (char) b[i] : '.', f);
6432 int update_reboot_param_file(const char *param) {
6437 r = write_string_file(REBOOT_PARAM_FILE, param);
6439 log_error("Failed to write reboot param to "
6440 REBOOT_PARAM_FILE": %s", strerror(-r));
6442 unlink(REBOOT_PARAM_FILE);
6447 int umount_recursive(const char *prefix, int flags) {
6451 /* Try to umount everything recursively below a
6452 * directory. Also, take care of stacked mounts, and keep
6453 * unmounting them until they are gone. */
6456 _cleanup_fclose_ FILE *proc_self_mountinfo = NULL;
6461 proc_self_mountinfo = fopen("/proc/self/mountinfo", "re");
6462 if (!proc_self_mountinfo)
6466 _cleanup_free_ char *path = NULL, *p = NULL;
6469 k = fscanf(proc_self_mountinfo,
6470 "%*s " /* (1) mount id */
6471 "%*s " /* (2) parent id */
6472 "%*s " /* (3) major:minor */
6473 "%*s " /* (4) root */
6474 "%ms " /* (5) mount point */
6475 "%*s" /* (6) mount options */
6476 "%*[^-]" /* (7) optional fields */
6477 "- " /* (8) separator */
6478 "%*s " /* (9) file system type */
6479 "%*s" /* (10) mount source */
6480 "%*s" /* (11) mount options 2 */
6481 "%*[^\n]", /* some rubbish at the end */
6490 p = cunescape(path);
6494 if (!path_startswith(p, prefix))
6497 if (umount2(p, flags) < 0) {
6513 int bind_remount_recursive(const char *prefix, bool ro) {
6514 _cleanup_set_free_free_ Set *done = NULL;
6515 _cleanup_free_ char *cleaned = NULL;
6518 /* Recursively remount a directory (and all its submounts)
6519 * read-only or read-write. If the directory is already
6520 * mounted, we reuse the mount and simply mark it
6521 * MS_BIND|MS_RDONLY (or remove the MS_RDONLY for read-write
6522 * operation). If it isn't we first make it one. Afterwards we
6523 * apply MS_BIND|MS_RDONLY (or remove MS_RDONLY) to all
6524 * submounts we can access, too. When mounts are stacked on
6525 * the same mount point we only care for each individual
6526 * "top-level" mount on each point, as we cannot
6527 * influence/access the underlying mounts anyway. We do not
6528 * have any effect on future submounts that might get
6529 * propagated, they migt be writable. This includes future
6530 * submounts that have been triggered via autofs. */
6532 cleaned = strdup(prefix);
6536 path_kill_slashes(cleaned);
6538 done = set_new(string_hash_func, string_compare_func);
6543 _cleanup_fclose_ FILE *proc_self_mountinfo = NULL;
6544 _cleanup_set_free_free_ Set *todo = NULL;
6545 bool top_autofs = false;
6548 todo = set_new(string_hash_func, string_compare_func);
6552 proc_self_mountinfo = fopen("/proc/self/mountinfo", "re");
6553 if (!proc_self_mountinfo)
6557 _cleanup_free_ char *path = NULL, *p = NULL, *type = NULL;
6560 k = fscanf(proc_self_mountinfo,
6561 "%*s " /* (1) mount id */
6562 "%*s " /* (2) parent id */
6563 "%*s " /* (3) major:minor */
6564 "%*s " /* (4) root */
6565 "%ms " /* (5) mount point */
6566 "%*s" /* (6) mount options (superblock) */
6567 "%*[^-]" /* (7) optional fields */
6568 "- " /* (8) separator */
6569 "%ms " /* (9) file system type */
6570 "%*s" /* (10) mount source */
6571 "%*s" /* (11) mount options (bind mount) */
6572 "%*[^\n]", /* some rubbish at the end */
6582 p = cunescape(path);
6586 /* Let's ignore autofs mounts. If they aren't
6587 * triggered yet, we want to avoid triggering
6588 * them, as we don't make any guarantees for
6589 * future submounts anyway. If they are
6590 * already triggered, then we will find
6591 * another entry for this. */
6592 if (streq(type, "autofs")) {
6593 top_autofs = top_autofs || path_equal(cleaned, p);
6597 if (path_startswith(p, cleaned) &&
6598 !set_contains(done, p)) {
6600 r = set_consume(todo, p);
6610 /* If we have no submounts to process anymore and if
6611 * the root is either already done, or an autofs, we
6613 if (set_isempty(todo) &&
6614 (top_autofs || set_contains(done, cleaned)))
6617 if (!set_contains(done, cleaned) &&
6618 !set_contains(todo, cleaned)) {
6619 /* The prefix directory itself is not yet a
6620 * mount, make it one. */
6621 if (mount(cleaned, cleaned, NULL, MS_BIND|MS_REC, NULL) < 0)
6624 if (mount(NULL, prefix, NULL, MS_BIND|MS_REMOUNT|(ro ? MS_RDONLY : 0), NULL) < 0)
6627 x = strdup(cleaned);
6631 r = set_consume(done, x);
6636 while ((x = set_steal_first(todo))) {
6638 r = set_consume(done, x);
6644 if (mount(NULL, x, NULL, MS_BIND|MS_REMOUNT|(ro ? MS_RDONLY : 0), NULL) < 0) {
6646 /* Deal with mount points that are
6647 * obstructed by a later mount */
6649 if (errno != ENOENT)
6657 int fflush_and_check(FILE *f) {
6664 return errno ? -errno : -EIO;
6669 char *tempfn_xxxxxx(const char *p) {
6676 t = new(char, strlen(p) + 1 + 6 + 1);
6683 strcpy(stpcpy(stpcpy(mempcpy(t, p, k), "."), fn), "XXXXXX");
6688 char *tempfn_random(const char *p) {
6697 t = new(char, strlen(p) + 1 + 16 + 1);
6704 x = stpcpy(stpcpy(mempcpy(t, p, k), "."), fn);
6707 for (i = 0; i < 16; i++) {
6708 *(x++) = hexchar(u & 0xF);