X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=blobdiff_plain;f=src%2Futil.c;h=dfc1dc6b85a94a7dec0bf01cc2b74dfc08938c9f;hb=19c5f19d69bb5f520fa7213239490c55de06d99d;hp=2279efac493f1d9c7ebda2f6f60eb3217cc77a5b;hpb=56cf987fe74270bde4e16c7ec9e0414a9030723b;p=elogind.git diff --git a/src/util.c b/src/util.c index 2279efac4..dfc1dc6b8 100644 --- a/src/util.c +++ b/src/util.c @@ -1,4 +1,4 @@ -/*-*- Mode: C; c-basic-offset: 8 -*-*/ +/*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/ /*** This file is part of systemd. @@ -48,6 +48,14 @@ #include #include #include +#include +#include +#include +#include +#include +#include +#include +#include #include "macro.h" #include "util.h" @@ -55,243 +63,25 @@ #include "missing.h" #include "log.h" #include "strv.h" +#include "label.h" +#include "exit-status.h" +#include "hashmap.h" -#if HAVE_SELINUX -#include -#include +int saved_argc = 0; +char **saved_argv = NULL; -static struct selabel_handle *label_hnd = NULL; +size_t page_size(void) { + static __thread size_t pgsz = 0; + long r; -static inline int use_selinux(void) { - static int use_selinux_ind = -1; + if (_likely_(pgsz > 0)) + return pgsz; - if (use_selinux_ind == -1) - use_selinux_ind = (is_selinux_enabled() == 1); + assert_se((r = sysconf(_SC_PAGESIZE)) > 0); - return use_selinux_ind; -} - -static int label_get_file_label_from_path( - const char *label, - const char *path, - const char *class, - security_context_t *fcon) { - - security_context_t dir_con = NULL; - security_class_t sclass; - int r = 0; - - r = getfilecon(path, &dir_con); - if (r >= 0) { - r = -1; - if ((sclass = string_to_security_class(class)) != 0) - r = security_compute_create((security_context_t) label, dir_con, sclass, fcon); - } - if (r < 0) - r = -errno; - - freecon(dir_con); - return r; -} - -#endif - -int label_init(void) { - int r = 0; - -#if HAVE_SELINUX - if (use_selinux()) { - label_hnd = selabel_open(SELABEL_CTX_FILE, NULL, 0); - if (!label_hnd) { - log_full(security_getenforce() == 1 ? LOG_ERR : LOG_DEBUG, "Failed to initialize SELinux context: %m"); - r = (security_getenforce() == 1) ? -errno : 0; - } - } -#endif - - return r; -} - -int label_fix(const char *path) { - int r = 0; -#if HAVE_SELINUX - struct stat st; - security_context_t fcon; - if (use_selinux()) { - r = lstat(path, &st); - - if (r == 0) { - r = selabel_lookup_raw(label_hnd, &fcon, path, st.st_mode); - - if (r == 0) { - r = setfilecon(path, fcon); - freecon(fcon); - } - } - if (r < 0) { - log_error("Unable to fix label of %s: %m", path); - r = (security_getenforce() == 1) ? -errno : 0; - } - } -#endif - return r; -} - -void label_finish(void) { - -#if HAVE_SELINUX - if (use_selinux()) - selabel_close(label_hnd); -#endif - -} - -int label_get_socket_label_from_exe( - const char *exe, - char **label) { - int r = 0; - -#if HAVE_SELINUX - security_context_t mycon = NULL, fcon = NULL; - security_class_t sclass; - - r = getcon(&mycon); - if (r < 0) - goto fail; - - r = getfilecon(exe, &fcon); - if (r < 0) - goto fail; - - sclass = string_to_security_class("process"); - r = security_compute_create(mycon, fcon, sclass, (security_context_t *) label); - if (r == 0) - log_debug("SELinux Socket context for %s will be set to %s", exe, *label); - -fail: - if (r< 0 && security_getenforce() == 1) - r = -errno; - - freecon(mycon); - freecon(fcon); -#endif - - return r; -} - -int label_fifofile_set(const char *label, const char *path) { - int r = 0; - -#if HAVE_SELINUX - security_context_t filecon = NULL; - if (use_selinux() && label) { - if (((r = label_get_file_label_from_path(label, path, "fifo_file", &filecon)) == 0)) { - if ((r = setfscreatecon(filecon)) < 0) { - log_error("Failed to set SELinux file context (%s) on %s: %m", label, path); - r = -errno; - } - - freecon(filecon); - } - - if (r < 0 && security_getenforce() == 0) - r = 0; - } -#endif - - return r; -} - -int label_socket_set(const char *label) { - -#if HAVE_SELINUX - if (use_selinux() && setsockcreatecon((security_context_t) label) < 0) { - log_error("Failed to set SELinux context (%s) on socket: %m", label); - if (security_getenforce() == 1) - return -errno; - } -#endif - - return 0; -} - -void label_file_clear(void) { - -#if HAVE_SELINUX - if (use_selinux()) - setfscreatecon(NULL); -#endif - - return; -} - -void label_free(const char *label) { - -#if HAVE_SELINUX - if (use_selinux()) - freecon((security_context_t) label); -#endif - - return; -} - -void label_socket_clear(void) { - -#if HAVE_SELINUX - if (use_selinux()) - setsockcreatecon(NULL); -#endif - - return; -} - -static int label_mkdir( - const char *path, - mode_t mode) { - -#if HAVE_SELINUX - int r; - security_context_t fcon = NULL; - - if (use_selinux()) { - if (path[0] == '/') { - r = selabel_lookup_raw(label_hnd, &fcon, path, mode); - } - else { - char *cwd = NULL; - char *newpath = NULL; - cwd = getcwd(NULL,0); - if ((! cwd) || (asprintf(&newpath, "%s/%s",cwd,path) < 0)) { - free(cwd); - return -errno; - } - r = selabel_lookup_raw(label_hnd, &fcon, newpath, mode); - free(cwd); - free(newpath); - } - - if (r == 0) - r = setfscreatecon(fcon); - - if ((r < 0) && (errno != ENOENT)) { - log_error("Failed to set security context %s for %s", fcon, path); - - if (security_getenforce() == 1) - goto finish; - } - } - r = mkdir(path, mode); - -finish: - if (use_selinux()) { - setfscreatecon(NULL); - freecon(fcon); - } + pgsz = (size_t) r; - return r; -#else - return mkdir(path, mode); -#endif + return pgsz; } bool streq_ptr(const char *a, const char *b) { @@ -324,6 +114,28 @@ dual_timestamp* dual_timestamp_get(dual_timestamp *ts) { return ts; } +dual_timestamp* dual_timestamp_from_realtime(dual_timestamp *ts, usec_t u) { + int64_t delta; + assert(ts); + + ts->realtime = u; + + if (u == 0) + ts->monotonic = 0; + else { + delta = (int64_t) now(CLOCK_REALTIME) - (int64_t) u; + + ts->monotonic = now(CLOCK_MONOTONIC); + + if ((int64_t) ts->monotonic > delta) + ts->monotonic -= delta; + else + ts->monotonic = 0; + } + + return ts; +} + usec_t timespec_load(const struct timespec *ts) { assert(ts); @@ -446,11 +258,12 @@ int close_nointr(int fd) { for (;;) { int r; - if ((r = close(fd)) >= 0) + r = close(fd); + if (r >= 0) return r; if (errno != EINTR) - return r; + return -errno; } } @@ -484,7 +297,7 @@ int parse_boolean(const char *v) { } int parse_pid(const char *s, pid_t* ret_pid) { - unsigned long ul; + unsigned long ul = 0; pid_t pid; int r; @@ -506,6 +319,26 @@ int parse_pid(const char *s, pid_t* ret_pid) { return 0; } +int parse_uid(const char *s, uid_t* ret_uid) { + unsigned long ul = 0; + uid_t uid; + int r; + + assert(s); + assert(ret_uid); + + if ((r = safe_atolu(s, &ul)) < 0) + return r; + + uid = (uid_t) ul; + + if ((unsigned long) uid != ul) + return -ERANGE; + + *ret_uid = uid; + return 0; +} + int safe_atou(const char *s, unsigned *ret_u) { char *x = NULL; unsigned long l; @@ -671,20 +504,20 @@ char **split_path_and_make_absolute(const char *p) { int get_parent_of_pid(pid_t pid, pid_t *_ppid) { int r; FILE *f; - char fn[132], line[256], *p; + char fn[PATH_MAX], line[LINE_MAX], *p; long unsigned ppid; - assert(pid >= 0); + assert(pid > 0); assert(_ppid); assert_se(snprintf(fn, sizeof(fn)-1, "/proc/%lu/stat", (unsigned long) pid) < (int) (sizeof(fn)-1)); - fn[sizeof(fn)-1] = 0; + char_array_0(fn); - if (!(f = fopen(fn, "r"))) + if (!(f = fopen(fn, "re"))) return -errno; if (!(fgets(line, sizeof(line), f))) { - r = -errno; + r = feof(f) ? -EIO : -errno; fclose(f); return r; } @@ -714,2509 +547,5373 @@ int get_parent_of_pid(pid_t pid, pid_t *_ppid) { return 0; } -int write_one_line_file(const char *fn, const char *line) { - FILE *f; +int get_starttime_of_pid(pid_t pid, unsigned long long *st) { int r; + FILE *f; + char fn[PATH_MAX], line[LINE_MAX], *p; - assert(fn); - assert(line); + assert(pid > 0); + assert(st); - if (!(f = fopen(fn, "we"))) + assert_se(snprintf(fn, sizeof(fn)-1, "/proc/%lu/stat", (unsigned long) pid) < (int) (sizeof(fn)-1)); + char_array_0(fn); + + if (!(f = fopen(fn, "re"))) return -errno; - if (fputs(line, f) < 0) { - r = -errno; - goto finish; + if (!(fgets(line, sizeof(line), f))) { + r = feof(f) ? -EIO : -errno; + fclose(f); + return r; } - r = 0; -finish: fclose(f); - return r; + + /* Let's skip the pid and comm fields. The latter is enclosed + * in () but does not escape any () in its value, so let's + * skip over it manually */ + + if (!(p = strrchr(line, ')'))) + return -EIO; + + p++; + + if (sscanf(p, " " + "%*c " /* state */ + "%*d " /* ppid */ + "%*d " /* pgrp */ + "%*d " /* session */ + "%*d " /* tty_nr */ + "%*d " /* tpgid */ + "%*u " /* flags */ + "%*u " /* minflt */ + "%*u " /* cminflt */ + "%*u " /* majflt */ + "%*u " /* cmajflt */ + "%*u " /* utime */ + "%*u " /* stime */ + "%*d " /* cutime */ + "%*d " /* cstime */ + "%*d " /* priority */ + "%*d " /* nice */ + "%*d " /* num_threads */ + "%*d " /* itrealvalue */ + "%llu " /* starttime */, + st) != 1) + return -EIO; + + return 0; } -int read_one_line_file(const char *fn, char **line) { +int write_one_line_file(const char *fn, const char *line) { FILE *f; int r; - char t[2048], *c; assert(fn); assert(line); - if (!(f = fopen(fn, "re"))) + if (!(f = fopen(fn, "we"))) return -errno; - if (!(fgets(t, sizeof(t), f))) { + errno = 0; + if (fputs(line, f) < 0) { r = -errno; goto finish; } - if (!(c = strdup(t))) { - r = -ENOMEM; - goto finish; - } + if (!endswith(line, "\n")) + fputc('\n', f); - *line = c; - r = 0; + fflush(f); + + if (ferror(f)) { + if (errno != 0) + r = -errno; + else + r = -EIO; + } else + r = 0; finish: fclose(f); return r; } -char *truncate_nl(char *s) { - assert(s); +int fchmod_umask(int fd, mode_t m) { + mode_t u; + int r; - s[strcspn(s, NEWLINE)] = 0; - return s; + u = umask(0777); + r = fchmod(fd, m & (~u)) < 0 ? -errno : 0; + umask(u); + + return r; } -int get_process_name(pid_t pid, char **name) { - char *p; +int write_one_line_file_atomic(const char *fn, const char *line) { + FILE *f; int r; + char *p; - assert(pid >= 1); - assert(name); + assert(fn); + assert(line); - if (asprintf(&p, "/proc/%lu/comm", (unsigned long) pid) < 0) - return -ENOMEM; + r = fopen_temporary(fn, &f, &p); + if (r < 0) + return r; - r = read_one_line_file(p, name); - free(p); + fchmod_umask(fileno(f), 0644); + + errno = 0; + if (fputs(line, f) < 0) { + r = -errno; + goto finish; + } + + if (!endswith(line, "\n")) + fputc('\n', f); + + fflush(f); + + if (ferror(f)) { + if (errno != 0) + r = -errno; + else + r = -EIO; + } else { + if (rename(p, fn) < 0) + r = -errno; + else + r = 0; + } +finish: if (r < 0) - return r; + unlink(p); - truncate_nl(*name); - return 0; + fclose(f); + free(p); + + return r; } -int get_process_cmdline(pid_t pid, size_t max_length, char **line) { - char *p, *r, *k; - int c; - bool space = false; - size_t left; +int read_one_line_file(const char *fn, char **line) { FILE *f; + int r; + char t[LINE_MAX], *c; - assert(pid >= 1); - assert(max_length > 0); + assert(fn); assert(line); - if (asprintf(&p, "/proc/%lu/cmdline", (unsigned long) pid) < 0) - return -ENOMEM; - - f = fopen(p, "r"); - free(p); - + f = fopen(fn, "re"); if (!f) return -errno; - if (!(r = new(char, max_length))) { - fclose(f); - return -ENOMEM; - } + if (!fgets(t, sizeof(t), f)) { - k = r; - left = max_length; - while ((c = getc(f)) != EOF) { + if (ferror(f)) { + r = -errno; + goto finish; + } - if (isprint(c)) { - if (space) { - if (left <= 4) - break; - - *(k++) = ' '; - left--; - space = false; - } - - if (left <= 4) - break; + t[0] = 0; + } - *(k++) = (char) c; - left--; - } else - space = true; + c = strdup(t); + if (!c) { + r = -ENOMEM; + goto finish; } - if (left <= 4) { - size_t n = MIN(left-1, 3U); - memcpy(k, "...", n); - k[n] = 0; - } else - *k = 0; + truncate_nl(c); - fclose(f); + *line = c; + r = 0; - /* Kernel threads have no argv[] */ - if (r[0] == 0) { - char *t; - int h; +finish: + fclose(f); + return r; +} - free(r); +int read_full_file(const char *fn, char **contents, size_t *size) { + FILE *f; + int r; + size_t n, l; + char *buf = NULL; + struct stat st; - if ((h = get_process_name(pid, &t)) < 0) - return h; + if (!(f = fopen(fn, "re"))) + return -errno; - h = asprintf(&r, "[%s]", t); - free(t); + if (fstat(fileno(f), &st) < 0) { + r = -errno; + goto finish; + } - if (h < 0) - return -ENOMEM; + /* Safety check */ + if (st.st_size > 4*1024*1024) { + r = -E2BIG; + goto finish; } - *line = r; - return 0; -} + n = st.st_size > 0 ? st.st_size : LINE_MAX; + l = 0; -char *strnappend(const char *s, const char *suffix, size_t b) { - size_t a; - char *r; + for (;;) { + char *t; + size_t k; - if (!s && !suffix) - return strdup(""); + if (!(t = realloc(buf, n+1))) { + r = -ENOMEM; + goto finish; + } - if (!s) - return strndup(suffix, b); + buf = t; + k = fread(buf + l, 1, n - l, f); - if (!suffix) - return strdup(s); + if (k <= 0) { + if (ferror(f)) { + r = -errno; + goto finish; + } - assert(s); - assert(suffix); + break; + } - a = strlen(s); + l += k; + n *= 2; - if (!(r = new(char, a+b+1))) - return NULL; + /* Safety check */ + if (n > 4*1024*1024) { + r = -E2BIG; + goto finish; + } + } - memcpy(r, s, a); - memcpy(r+a, suffix, b); - r[a+b] = 0; + buf[l] = 0; + *contents = buf; + buf = NULL; + + if (size) + *size = l; + + r = 0; + +finish: + fclose(f); + free(buf); return r; } -char *strappend(const char *s, const char *suffix) { - return strnappend(s, suffix, suffix ? strlen(suffix) : 0); -} +int parse_env_file( + const char *fname, + const char *separator, ...) { -int readlink_malloc(const char *p, char **r) { - size_t l = 100; + int r = 0; + char *contents = NULL, *p; - assert(p); - assert(r); + assert(fname); + assert(separator); - for (;;) { - char *c; - ssize_t n; + if ((r = read_full_file(fname, &contents, NULL)) < 0) + return r; - if (!(c = new(char, l))) - return -ENOMEM; + p = contents; + for (;;) { + const char *key = NULL; - if ((n = readlink(p, c, l-1)) < 0) { - int ret = -errno; - free(c); - return ret; - } + p += strspn(p, separator); + p += strspn(p, WHITESPACE); - if ((size_t) n < l-1) { - c[n] = 0; - *r = c; - return 0; - } + if (!*p) + break; - free(c); - l *= 2; - } -} + if (!strchr(COMMENTS, *p)) { + va_list ap; + char **value; -int readlink_and_make_absolute(const char *p, char **r) { - char *target, *k; - int j; + va_start(ap, separator); + while ((key = va_arg(ap, char *))) { + size_t n; + char *v; - assert(p); - assert(r); + value = va_arg(ap, char **); - if ((j = readlink_malloc(p, &target)) < 0) - return j; + n = strlen(key); + if (strncmp(p, key, n) != 0 || + p[n] != '=') + continue; - k = file_in_same_dir(p, target); - free(target); + p += n + 1; + n = strcspn(p, separator); - if (!k) - return -ENOMEM; + if (n >= 2 && + strchr(QUOTES, p[0]) && + p[n-1] == p[0]) + v = strndup(p+1, n-2); + else + v = strndup(p, n); - *r = k; - return 0; -} + if (!v) { + r = -ENOMEM; + va_end(ap); + goto fail; + } -int parent_of_path(const char *path, char **_r) { - const char *e, *a = NULL, *b = NULL, *p; - char *r; - bool slash = false; + if (v[0] == '\0') { + /* return empty value strings as NULL */ + free(v); + v = NULL; + } - assert(path); - assert(_r); + free(*value); + *value = v; - if (!*path) - return -EINVAL; + p += n; - for (e = path; *e; e++) { + r ++; + break; + } + va_end(ap); + } - if (!slash && *e == '/') { - a = b; - b = e; - slash = true; - } else if (slash && *e != '/') - slash = false; + if (!key) + p += strcspn(p, separator); } - if (*(e-1) == '/') - p = a; - else - p = b; +fail: + free(contents); + return r; +} - if (!p) - return -EINVAL; +int load_env_file( + const char *fname, + char ***rl) { - if (p == path) - r = strdup("/"); - else - r = strndup(path, p-path); + FILE *f; + char **m = NULL; + int r; - if (!r) - return -ENOMEM; + assert(fname); + assert(rl); - *_r = r; - return 0; -} + if (!(f = fopen(fname, "re"))) + return -errno; + while (!feof(f)) { + char l[LINE_MAX], *p, *u; + char **t; -char *file_name_from_path(const char *p) { - char *r; + if (!fgets(l, sizeof(l), f)) { + if (feof(f)) + break; - assert(p); + r = -errno; + goto finish; + } - if ((r = strrchr(p, '/'))) - return r + 1; + p = strstrip(l); - return (char*) p; -} + if (!*p) + continue; -bool path_is_absolute(const char *p) { - assert(p); + if (strchr(COMMENTS, *p)) + continue; - return p[0] == '/'; -} + if (!(u = normalize_env_assignment(p))) { + log_error("Out of memory"); + r = -ENOMEM; + goto finish; + } -bool is_path(const char *p) { + t = strv_append(m, u); + free(u); - return !!strchr(p, '/'); -} + if (!t) { + log_error("Out of memory"); + r = -ENOMEM; + goto finish; + } -char *path_make_absolute(const char *p, const char *prefix) { - char *r; + strv_free(m); + m = t; + } - assert(p); + r = 0; - /* Makes every item in the list an absolute path by prepending - * the prefix, if specified and necessary */ + *rl = m; + m = NULL; - if (path_is_absolute(p) || !prefix) - return strdup(p); +finish: + if (f) + fclose(f); - if (asprintf(&r, "%s/%s", prefix, p) < 0) - return NULL; + strv_free(m); return r; } -char *path_make_absolute_cwd(const char *p) { - char *cwd, *r; +int write_env_file(const char *fname, char **l) { + char **i, *p; + FILE *f; + int r; - assert(p); + r = fopen_temporary(fname, &f, &p); + if (r < 0) + return r; - /* Similar to path_make_absolute(), but prefixes with the - * current working directory. */ + fchmod_umask(fileno(f), 0644); - if (path_is_absolute(p)) - return strdup(p); + errno = 0; + STRV_FOREACH(i, l) { + fputs(*i, f); + fputc('\n', f); + } - if (!(cwd = get_current_dir_name())) - return NULL; + fflush(f); - r = path_make_absolute(p, cwd); - free(cwd); + if (ferror(f)) { + if (errno != 0) + r = -errno; + else + r = -EIO; + } else { + if (rename(p, fname) < 0) + r = -errno; + else + r = 0; + } + + if (r < 0) + unlink(p); + + fclose(f); + free(p); return r; } -char **strv_path_make_absolute_cwd(char **l) { - char **s; +char *truncate_nl(char *s) { + assert(s); - /* Goes through every item in the string list and makes it - * absolute. This works in place and won't rollback any - * changes on failure. */ + s[strcspn(s, NEWLINE)] = 0; + return s; +} - STRV_FOREACH(s, l) { - char *t; +int get_process_comm(pid_t pid, char **name) { + int r; - if (!(t = path_make_absolute_cwd(*s))) - return NULL; + assert(name); - free(*s); - *s = t; + if (pid == 0) + r = read_one_line_file("/proc/self/comm", name); + else { + char *p; + if (asprintf(&p, "/proc/%lu/comm", (unsigned long) pid) < 0) + return -ENOMEM; + + r = read_one_line_file(p, name); + free(p); } - return l; + return r; } -char **strv_path_canonicalize(char **l) { - char **s; - unsigned k = 0; - bool enomem = false; +int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) { + char *r, *k; + int c; + bool space = false; + size_t left; + FILE *f; - if (strv_isempty(l)) - return l; + assert(max_length > 0); + assert(line); - /* Goes through every item in the string list and canonicalize - * the path. This works in place and won't rollback any - * changes on failure. */ + if (pid == 0) + f = fopen("/proc/self/cmdline", "re"); + else { + char *p; + if (asprintf(&p, "/proc/%lu/cmdline", (unsigned long) pid) < 0) + return -ENOMEM; - STRV_FOREACH(s, l) { - char *t, *u; + f = fopen(p, "re"); + free(p); + } - t = path_make_absolute_cwd(*s); - free(*s); + if (!f) + return -errno; - if (!t) { - enomem = true; - continue; - } + r = new(char, max_length); + if (!r) { + fclose(f); + return -ENOMEM; + } - errno = 0; - u = canonicalize_file_name(t); - free(t); + k = r; + left = max_length; + while ((c = getc(f)) != EOF) { - if (!u) { - if (errno == ENOMEM || !errno) - enomem = true; + if (isprint(c)) { + if (space) { + if (left <= 4) + break; - continue; - } + *(k++) = ' '; + left--; + space = false; + } - l[k++] = u; + if (left <= 4) + break; + + *(k++) = (char) c; + left--; + } else + space = true; } - l[k] = NULL; + if (left <= 4) { + size_t n = MIN(left-1, 3U); + memcpy(k, "...", n); + k[n] = 0; + } else + *k = 0; - if (enomem) - return NULL; + fclose(f); - return l; -} + /* Kernel threads have no argv[] */ + if (r[0] == 0) { + char *t; + int h; -int reset_all_signal_handlers(void) { - int sig; + free(r); - for (sig = 1; sig < _NSIG; sig++) { - struct sigaction sa; + if (!comm_fallback) + return -ENOENT; - if (sig == SIGKILL || sig == SIGSTOP) - continue; + h = get_process_comm(pid, &t); + if (h < 0) + return h; - zero(sa); - sa.sa_handler = SIG_DFL; - sa.sa_flags = SA_RESTART; + r = join("[", t, "]", NULL); + free(t); - /* On Linux the first two RT signals are reserved by - * glibc, and sigaction() will return EINVAL for them. */ - if ((sigaction(sig, &sa, NULL) < 0)) - if (errno != EINVAL) - return -errno; + if (!r) + return -ENOMEM; } + *line = r; return 0; } -char *strstrip(char *s) { - char *e, *l = NULL; +int is_kernel_thread(pid_t pid) { + char *p; + size_t count; + char c; + bool eof; + FILE *f; - /* Drops trailing whitespace. Modifies the string in - * place. Returns pointer to first non-space character */ + if (pid == 0) + return 0; - s += strspn(s, WHITESPACE); + if (asprintf(&p, "/proc/%lu/cmdline", (unsigned long) pid) < 0) + return -ENOMEM; - for (e = s; *e; e++) - if (!strchr(WHITESPACE, *e)) - l = e; + f = fopen(p, "re"); + free(p); - if (l) - *(l+1) = 0; - else - *s = 0; + if (!f) + return -errno; - return s; + count = fread(&c, 1, 1, f); + eof = feof(f); + fclose(f); + + /* Kernel threads have an empty cmdline */ + + if (count <= 0) + return eof ? 1 : -errno; + + return 0; } -char *delete_chars(char *s, const char *bad) { - char *f, *t; +int get_process_exe(pid_t pid, char **name) { + int r; - /* Drops all whitespace, regardless where in the string */ + assert(name); - for (f = s, t = s; *f; f++) { - if (strchr(bad, *f)) - continue; + if (pid == 0) + r = readlink_malloc("/proc/self/exe", name); + else { + char *p; + if (asprintf(&p, "/proc/%lu/exe", (unsigned long) pid) < 0) + return -ENOMEM; - *(t++) = *f; + r = readlink_malloc(p, name); + free(p); } - *t = 0; - - return s; + return r; } -char *file_in_same_dir(const char *path, const char *filename) { - char *e, *r; - size_t k; +int get_process_uid(pid_t pid, uid_t *uid) { + char *p; + FILE *f; + int r; - assert(path); - assert(filename); + assert(uid); - /* This removes the last component of path and appends - * filename, unless the latter is absolute anyway or the - * former isn't */ + if (pid == 0) + return getuid(); - if (path_is_absolute(filename)) - return strdup(filename); + if (asprintf(&p, "/proc/%lu/status", (unsigned long) pid) < 0) + return -ENOMEM; - if (!(e = strrchr(path, '/'))) - return strdup(filename); + f = fopen(p, "re"); + free(p); - k = strlen(filename); - if (!(r = new(char, e-path+1+k+1))) - return NULL; + if (!f) + return -errno; - memcpy(r, path, e-path+1); - memcpy(r+(e-path)+1, filename, k+1); + while (!feof(f)) { + char line[LINE_MAX], *l; - return r; -} + if (!fgets(line, sizeof(line), f)) { + if (feof(f)) + break; -int safe_mkdir(const char *path, mode_t mode, uid_t uid, gid_t gid) { - struct stat st; + r = -errno; + goto finish; + } - if (label_mkdir(path, mode) >= 0) - if (chmod_and_chown(path, mode, uid, gid) < 0) - return -errno; + l = strstrip(line); - if (lstat(path, &st) < 0) - return -errno; + if (startswith(l, "Uid:")) { + l += 4; + l += strspn(l, WHITESPACE); - if ((st.st_mode & 0777) != mode || - st.st_uid != uid || - st.st_gid != gid || - !S_ISDIR(st.st_mode)) { - errno = EEXIST; - return -errno; + l[strcspn(l, WHITESPACE)] = 0; + + r = parse_uid(l, uid); + goto finish; + } } - return 0; -} + r = -EIO; +finish: + fclose(f); -int mkdir_parents(const char *path, mode_t mode) { - const char *p, *e; + return r; +} - assert(path); +char *strnappend(const char *s, const char *suffix, size_t b) { + size_t a; + char *r; - /* Creates every parent directory in the path except the last - * component. */ + if (!s && !suffix) + return strdup(""); - p = path + strspn(path, "/"); - for (;;) { - int r; - char *t; + if (!s) + return strndup(suffix, b); - e = p + strcspn(p, "/"); - p = e + strspn(e, "/"); + if (!suffix) + return strdup(s); - /* Is this the last component? If so, then we're - * done */ - if (*p == 0) - return 0; + assert(s); + assert(suffix); - if (!(t = strndup(path, e - path))) - return -ENOMEM; + a = strlen(s); - r = label_mkdir(t, mode); - free(t); + if (!(r = new(char, a+b+1))) + return NULL; - if (r < 0 && errno != EEXIST) - return -errno; - } + memcpy(r, s, a); + memcpy(r+a, suffix, b); + r[a+b] = 0; + + return r; } -int mkdir_p(const char *path, mode_t mode) { - int r; +char *strappend(const char *s, const char *suffix) { + return strnappend(s, suffix, suffix ? strlen(suffix) : 0); +} - /* Like mkdir -p */ +int readlink_malloc(const char *p, char **r) { + size_t l = 100; - if ((r = mkdir_parents(path, mode)) < 0) - return r; + assert(p); + assert(r); - if (label_mkdir(path, mode) < 0 && errno != EEXIST) - return -errno; + for (;;) { + char *c; + ssize_t n; - return 0; -} + if (!(c = new(char, l))) + return -ENOMEM; -int rmdir_parents(const char *path, const char *stop) { - size_t l; - int r = 0; + if ((n = readlink(p, c, l-1)) < 0) { + int ret = -errno; + free(c); + return ret; + } - assert(path); - assert(stop); + if ((size_t) n < l-1) { + c[n] = 0; + *r = c; + return 0; + } - l = strlen(path); + free(c); + l *= 2; + } +} - /* Skip trailing slashes */ - while (l > 0 && path[l-1] == '/') - l--; +int readlink_and_make_absolute(const char *p, char **r) { + char *target, *k; + int j; - while (l > 0) { - char *t; + assert(p); + assert(r); - /* Skip last component */ - while (l > 0 && path[l-1] != '/') - l--; + if ((j = readlink_malloc(p, &target)) < 0) + return j; - /* Skip trailing slashes */ - while (l > 0 && path[l-1] == '/') - l--; + k = file_in_same_dir(p, target); + free(target); - if (l <= 0) - break; + if (!k) + return -ENOMEM; - if (!(t = strndup(path, l))) - return -ENOMEM; + *r = k; + return 0; +} - if (path_startswith(stop, t)) { - free(t); - return 0; - } +int readlink_and_canonicalize(const char *p, char **r) { + char *t, *s; + int j; - r = rmdir(t); + assert(p); + assert(r); + + j = readlink_and_make_absolute(p, &t); + if (j < 0) + return j; + + s = canonicalize_file_name(t); + if (s) { free(t); + *r = s; + } else + *r = t; - if (r < 0) - if (errno != ENOENT) - return -errno; - } + path_kill_slashes(*r); return 0; } +int parent_of_path(const char *path, char **_r) { + const char *e, *a = NULL, *b = NULL, *p; + char *r; + bool slash = false; -char hexchar(int x) { - static const char table[16] = "0123456789abcdef"; + assert(path); + assert(_r); - return table[x & 15]; -} + if (!*path) + return -EINVAL; -int unhexchar(char c) { + for (e = path; *e; e++) { - if (c >= '0' && c <= '9') - return c - '0'; + if (!slash && *e == '/') { + a = b; + b = e; + slash = true; + } else if (slash && *e != '/') + slash = false; + } - if (c >= 'a' && c <= 'f') - return c - 'a' + 10; + if (*(e-1) == '/') + p = a; + else + p = b; - if (c >= 'A' && c <= 'F') - return c - 'A' + 10; + if (!p) + return -EINVAL; - return -1; -} + if (p == path) + r = strdup("/"); + else + r = strndup(path, p-path); -char octchar(int x) { - return '0' + (x & 7); + if (!r) + return -ENOMEM; + + *_r = r; + return 0; } -int unoctchar(char c) { - if (c >= '0' && c <= '7') - return c - '0'; +char *file_name_from_path(const char *p) { + char *r; - return -1; + assert(p); + + if ((r = strrchr(p, '/'))) + return r + 1; + + return (char*) p; } -char decchar(int x) { - return '0' + (x % 10); +bool path_is_absolute(const char *p) { + assert(p); + + return p[0] == '/'; } -int undecchar(char c) { +bool is_path(const char *p) { - if (c >= '0' && c <= '9') - return c - '0'; + return !!strchr(p, '/'); +} - return -1; +char *path_make_absolute(const char *p, const char *prefix) { + assert(p); + + /* Makes every item in the list an absolute path by prepending + * the prefix, if specified and necessary */ + + if (path_is_absolute(p) || !prefix) + return strdup(p); + + return join(prefix, "/", p, NULL); } -char *cescape(const char *s) { - char *r, *t; - const char *f; +char *path_make_absolute_cwd(const char *p) { + char *cwd, *r; - assert(s); + assert(p); - /* Does C style string escaping. */ + /* Similar to path_make_absolute(), but prefixes with the + * current working directory. */ - if (!(r = new(char, strlen(s)*4 + 1))) + if (path_is_absolute(p)) + return strdup(p); + + if (!(cwd = get_current_dir_name())) return NULL; - for (f = s, t = r; *f; f++) + r = path_make_absolute(p, cwd); + free(cwd); - switch (*f) { + return r; +} - case '\a': - *(t++) = '\\'; - *(t++) = 'a'; - break; - case '\b': - *(t++) = '\\'; - *(t++) = 'b'; - break; - case '\f': - *(t++) = '\\'; - *(t++) = 'f'; - break; - case '\n': - *(t++) = '\\'; - *(t++) = 'n'; - break; - case '\r': - *(t++) = '\\'; - *(t++) = 'r'; - break; - case '\t': - *(t++) = '\\'; - *(t++) = 't'; - break; - case '\v': - *(t++) = '\\'; - *(t++) = 'v'; - break; - case '\\': - *(t++) = '\\'; - *(t++) = '\\'; - break; - case '"': - *(t++) = '\\'; - *(t++) = '"'; - break; - case '\'': - *(t++) = '\\'; - *(t++) = '\''; - break; +char **strv_path_make_absolute_cwd(char **l) { + char **s; - default: - /* For special chars we prefer octal over - * hexadecimal encoding, simply because glib's - * g_strescape() does the same */ - if ((*f < ' ') || (*f >= 127)) { - *(t++) = '\\'; - *(t++) = octchar((unsigned char) *f >> 6); - *(t++) = octchar((unsigned char) *f >> 3); - *(t++) = octchar((unsigned char) *f); - } else - *(t++) = *f; - break; - } + /* Goes through every item in the string list and makes it + * absolute. This works in place and won't rollback any + * changes on failure. */ - *t = 0; + STRV_FOREACH(s, l) { + char *t; - return r; + if (!(t = path_make_absolute_cwd(*s))) + return NULL; + + free(*s); + *s = t; + } + + return l; } -char *cunescape_length(const char *s, size_t length) { - char *r, *t; - const char *f; +char **strv_path_canonicalize(char **l) { + char **s; + unsigned k = 0; + bool enomem = false; - assert(s); + if (strv_isempty(l)) + return l; - /* Undoes C style string escaping */ + /* Goes through every item in the string list and canonicalize + * the path. This works in place and won't rollback any + * changes on failure. */ - if (!(r = new(char, length+1))) - return r; + STRV_FOREACH(s, l) { + char *t, *u; - for (f = s, t = r; f < s + length; f++) { + t = path_make_absolute_cwd(*s); + free(*s); - if (*f != '\\') { - *(t++) = *f; + if (!t) { + enomem = true; continue; } - f++; + errno = 0; + u = canonicalize_file_name(t); + free(t); - switch (*f) { + if (!u) { + if (errno == ENOMEM || !errno) + enomem = true; + + continue; + } + + l[k++] = u; + } + + l[k] = NULL; + + if (enomem) + return NULL; + + return l; +} + +char **strv_path_remove_empty(char **l) { + char **f, **t; + + if (!l) + return NULL; + + for (f = t = l; *f; f++) { + + if (dir_is_empty(*f) > 0) { + free(*f); + continue; + } + + *(t++) = *f; + } + + *t = NULL; + return l; +} + +int reset_all_signal_handlers(void) { + int sig; + + for (sig = 1; sig < _NSIG; sig++) { + struct sigaction sa; + + if (sig == SIGKILL || sig == SIGSTOP) + continue; + + zero(sa); + sa.sa_handler = SIG_DFL; + sa.sa_flags = SA_RESTART; + + /* On Linux the first two RT signals are reserved by + * glibc, and sigaction() will return EINVAL for them. */ + if ((sigaction(sig, &sa, NULL) < 0)) + if (errno != EINVAL) + return -errno; + } + + return 0; +} + +char *strstrip(char *s) { + char *e; + + /* Drops trailing whitespace. Modifies the string in + * place. Returns pointer to first non-space character */ + + s += strspn(s, WHITESPACE); + + for (e = strchr(s, 0); e > s; e --) + if (!strchr(WHITESPACE, e[-1])) + break; + + *e = 0; + + return s; +} + +char *delete_chars(char *s, const char *bad) { + char *f, *t; + + /* Drops all whitespace, regardless where in the string */ + + for (f = s, t = s; *f; f++) { + if (strchr(bad, *f)) + continue; + + *(t++) = *f; + } + + *t = 0; + + return s; +} + +bool in_charset(const char *s, const char* charset) { + const char *i; + + assert(s); + assert(charset); + + for (i = s; *i; i++) + if (!strchr(charset, *i)) + return false; + + return true; +} + +char *file_in_same_dir(const char *path, const char *filename) { + char *e, *r; + size_t k; + + assert(path); + assert(filename); + + /* This removes the last component of path and appends + * filename, unless the latter is absolute anyway or the + * former isn't */ + + if (path_is_absolute(filename)) + return strdup(filename); + + if (!(e = strrchr(path, '/'))) + return strdup(filename); + + k = strlen(filename); + if (!(r = new(char, e-path+1+k+1))) + return NULL; + + memcpy(r, path, e-path+1); + memcpy(r+(e-path)+1, filename, k+1); + + return r; +} + +int safe_mkdir(const char *path, mode_t mode, uid_t uid, gid_t gid) { + struct stat st; + + if (label_mkdir(path, mode) >= 0) + if (chmod_and_chown(path, mode, uid, gid) < 0) + return -errno; + + if (lstat(path, &st) < 0) + return -errno; + + if ((st.st_mode & 0777) != mode || + st.st_uid != uid || + st.st_gid != gid || + !S_ISDIR(st.st_mode)) { + errno = EEXIST; + return -errno; + } + + return 0; +} + + +int mkdir_parents(const char *path, mode_t mode) { + const char *p, *e; + + assert(path); + + /* Creates every parent directory in the path except the last + * component. */ + + p = path + strspn(path, "/"); + for (;;) { + int r; + char *t; + + e = p + strcspn(p, "/"); + p = e + strspn(e, "/"); + + /* Is this the last component? If so, then we're + * done */ + if (*p == 0) + return 0; + + if (!(t = strndup(path, e - path))) + return -ENOMEM; + + r = label_mkdir(t, mode); + free(t); + + if (r < 0 && errno != EEXIST) + return -errno; + } +} + +int mkdir_p(const char *path, mode_t mode) { + int r; + + /* Like mkdir -p */ + + if ((r = mkdir_parents(path, mode)) < 0) + return r; + + if (label_mkdir(path, mode) < 0 && errno != EEXIST) + return -errno; + + return 0; +} + +int rmdir_parents(const char *path, const char *stop) { + size_t l; + int r = 0; + + assert(path); + assert(stop); + + l = strlen(path); + + /* Skip trailing slashes */ + while (l > 0 && path[l-1] == '/') + l--; + + while (l > 0) { + char *t; + + /* Skip last component */ + while (l > 0 && path[l-1] != '/') + l--; + + /* Skip trailing slashes */ + while (l > 0 && path[l-1] == '/') + l--; + + if (l <= 0) + break; + + if (!(t = strndup(path, l))) + return -ENOMEM; + + if (path_startswith(stop, t)) { + free(t); + return 0; + } + + r = rmdir(t); + free(t); + + if (r < 0) + if (errno != ENOENT) + return -errno; + } + + return 0; +} + + +char hexchar(int x) { + static const char table[16] = "0123456789abcdef"; + + return table[x & 15]; +} + +int unhexchar(char c) { + + if (c >= '0' && c <= '9') + return c - '0'; + + if (c >= 'a' && c <= 'f') + return c - 'a' + 10; + + if (c >= 'A' && c <= 'F') + return c - 'A' + 10; + + return -1; +} + +char octchar(int x) { + return '0' + (x & 7); +} + +int unoctchar(char c) { + + if (c >= '0' && c <= '7') + return c - '0'; + + return -1; +} + +char decchar(int x) { + return '0' + (x % 10); +} + +int undecchar(char c) { + + if (c >= '0' && c <= '9') + return c - '0'; + + return -1; +} + +char *cescape(const char *s) { + char *r, *t; + const char *f; + + assert(s); + + /* Does C style string escaping. */ + + if (!(r = new(char, strlen(s)*4 + 1))) + return NULL; + + for (f = s, t = r; *f; f++) + + switch (*f) { + + case '\a': + *(t++) = '\\'; + *(t++) = 'a'; + break; + case '\b': + *(t++) = '\\'; + *(t++) = 'b'; + break; + case '\f': + *(t++) = '\\'; + *(t++) = 'f'; + break; + case '\n': + *(t++) = '\\'; + *(t++) = 'n'; + break; + case '\r': + *(t++) = '\\'; + *(t++) = 'r'; + break; + case '\t': + *(t++) = '\\'; + *(t++) = 't'; + break; + case '\v': + *(t++) = '\\'; + *(t++) = 'v'; + break; + case '\\': + *(t++) = '\\'; + *(t++) = '\\'; + break; + case '"': + *(t++) = '\\'; + *(t++) = '"'; + break; + case '\'': + *(t++) = '\\'; + *(t++) = '\''; + break; + + default: + /* For special chars we prefer octal over + * hexadecimal encoding, simply because glib's + * g_strescape() does the same */ + if ((*f < ' ') || (*f >= 127)) { + *(t++) = '\\'; + *(t++) = octchar((unsigned char) *f >> 6); + *(t++) = octchar((unsigned char) *f >> 3); + *(t++) = octchar((unsigned char) *f); + } else + *(t++) = *f; + break; + } + + *t = 0; + + return r; +} + +char *cunescape_length(const char *s, size_t length) { + char *r, *t; + const char *f; + + assert(s); + + /* Undoes C style string escaping */ + + r = new(char, length+1); + if (!r) + return r; + + for (f = s, t = r; f < s + length; f++) { + + if (*f != '\\') { + *(t++) = *f; + continue; + } + + f++; + + switch (*f) { + + case 'a': + *(t++) = '\a'; + break; + case 'b': + *(t++) = '\b'; + break; + case 'f': + *(t++) = '\f'; + break; + case 'n': + *(t++) = '\n'; + break; + case 'r': + *(t++) = '\r'; + break; + case 't': + *(t++) = '\t'; + break; + case 'v': + *(t++) = '\v'; + break; + case '\\': + *(t++) = '\\'; + break; + case '"': + *(t++) = '"'; + break; + case '\'': + *(t++) = '\''; + break; + + case 's': + /* This is an extension of the XDG syntax files */ + *(t++) = ' '; + break; + + case 'x': { + /* hexadecimal encoding */ + int a, b; + + a = unhexchar(f[1]); + b = unhexchar(f[2]); + + if (a < 0 || b < 0) { + /* Invalid escape code, let's take it literal then */ + *(t++) = '\\'; + *(t++) = 'x'; + } else { + *(t++) = (char) ((a << 4) | b); + f += 2; + } + + break; + } + + case '0': + case '1': + case '2': + case '3': + case '4': + case '5': + case '6': + case '7': { + /* octal encoding */ + int a, b, c; + + a = unoctchar(f[0]); + b = unoctchar(f[1]); + c = unoctchar(f[2]); + + if (a < 0 || b < 0 || c < 0) { + /* Invalid escape code, let's take it literal then */ + *(t++) = '\\'; + *(t++) = f[0]; + } else { + *(t++) = (char) ((a << 6) | (b << 3) | c); + f += 2; + } + + break; + } + + case 0: + /* premature end of string.*/ + *(t++) = '\\'; + goto finish; + + default: + /* Invalid escape code, let's take it literal then */ + *(t++) = '\\'; + *(t++) = *f; + break; + } + } + +finish: + *t = 0; + return r; +} + +char *cunescape(const char *s) { + return cunescape_length(s, strlen(s)); +} + +char *xescape(const char *s, const char *bad) { + char *r, *t; + const char *f; + + /* Escapes all chars in bad, in addition to \ and all special + * chars, in \xFF style escaping. May be reversed with + * cunescape. */ + + if (!(r = new(char, strlen(s)*4+1))) + return NULL; + + for (f = s, t = r; *f; f++) { + + if ((*f < ' ') || (*f >= 127) || + (*f == '\\') || strchr(bad, *f)) { + *(t++) = '\\'; + *(t++) = 'x'; + *(t++) = hexchar(*f >> 4); + *(t++) = hexchar(*f); + } else + *(t++) = *f; + } + + *t = 0; + + return r; +} + +char *bus_path_escape(const char *s) { + char *r, *t; + const char *f; + + assert(s); + + /* Escapes all chars that D-Bus' object path cannot deal + * with. Can be reverse with bus_path_unescape() */ + + if (!(r = new(char, strlen(s)*3+1))) + return NULL; + + for (f = s, t = r; *f; f++) { + + if (!(*f >= 'A' && *f <= 'Z') && + !(*f >= 'a' && *f <= 'z') && + !(*f >= '0' && *f <= '9')) { + *(t++) = '_'; + *(t++) = hexchar(*f >> 4); + *(t++) = hexchar(*f); + } else + *(t++) = *f; + } + + *t = 0; + + return r; +} + +char *bus_path_unescape(const char *f) { + char *r, *t; + + assert(f); + + if (!(r = strdup(f))) + return NULL; + + for (t = r; *f; f++) { + + if (*f == '_') { + int a, b; + + if ((a = unhexchar(f[1])) < 0 || + (b = unhexchar(f[2])) < 0) { + /* Invalid escape code, let's take it literal then */ + *(t++) = '_'; + } else { + *(t++) = (char) ((a << 4) | b); + f += 2; + } + } else + *(t++) = *f; + } + + *t = 0; + + return r; +} + +char *path_kill_slashes(char *path) { + char *f, *t; + bool slash = false; + + /* Removes redundant inner and trailing slashes. Modifies the + * passed string in-place. + * + * ///foo///bar/ becomes /foo/bar + */ + + for (f = path, t = path; *f; f++) { + + if (*f == '/') { + slash = true; + continue; + } + + if (slash) { + slash = false; + *(t++) = '/'; + } + + *(t++) = *f; + } + + /* Special rule, if we are talking of the root directory, a + trailing slash is good */ + + if (t == path && slash) + *(t++) = '/'; + + *t = 0; + return path; +} + +bool path_startswith(const char *path, const char *prefix) { + assert(path); + assert(prefix); + + if ((path[0] == '/') != (prefix[0] == '/')) + return false; + + for (;;) { + size_t a, b; + + path += strspn(path, "/"); + prefix += strspn(prefix, "/"); + + if (*prefix == 0) + return true; + + if (*path == 0) + return false; + + a = strcspn(path, "/"); + b = strcspn(prefix, "/"); + + if (a != b) + return false; + + if (memcmp(path, prefix, a) != 0) + return false; + + path += a; + prefix += b; + } +} + +bool path_equal(const char *a, const char *b) { + assert(a); + assert(b); + + if ((a[0] == '/') != (b[0] == '/')) + return false; + + for (;;) { + size_t j, k; + + a += strspn(a, "/"); + b += strspn(b, "/"); + + if (*a == 0 && *b == 0) + return true; + + if (*a == 0 || *b == 0) + return false; + + j = strcspn(a, "/"); + k = strcspn(b, "/"); + + if (j != k) + return false; + + if (memcmp(a, b, j) != 0) + return false; + + a += j; + b += k; + } +} + +char *ascii_strlower(char *t) { + char *p; + + assert(t); + + for (p = t; *p; p++) + if (*p >= 'A' && *p <= 'Z') + *p = *p - 'A' + 'a'; + + return t; +} + +bool ignore_file(const char *filename) { + assert(filename); + + return + filename[0] == '.' || + streq(filename, "lost+found") || + streq(filename, "aquota.user") || + streq(filename, "aquota.group") || + endswith(filename, "~") || + endswith(filename, ".rpmnew") || + endswith(filename, ".rpmsave") || + endswith(filename, ".rpmorig") || + endswith(filename, ".dpkg-old") || + endswith(filename, ".dpkg-new") || + endswith(filename, ".swp"); +} + +int fd_nonblock(int fd, bool nonblock) { + int flags; + + assert(fd >= 0); + + if ((flags = fcntl(fd, F_GETFL, 0)) < 0) + return -errno; + + if (nonblock) + flags |= O_NONBLOCK; + else + flags &= ~O_NONBLOCK; + + if (fcntl(fd, F_SETFL, flags) < 0) + return -errno; + + return 0; +} + +int fd_cloexec(int fd, bool cloexec) { + int flags; + + assert(fd >= 0); + + if ((flags = fcntl(fd, F_GETFD, 0)) < 0) + return -errno; + + if (cloexec) + flags |= FD_CLOEXEC; + else + flags &= ~FD_CLOEXEC; + + if (fcntl(fd, F_SETFD, flags) < 0) + return -errno; + + return 0; +} + +static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) { + unsigned i; + + assert(n_fdset == 0 || fdset); + + for (i = 0; i < n_fdset; i++) + if (fdset[i] == fd) + return true; + + return false; +} + +int close_all_fds(const int except[], unsigned n_except) { + DIR *d; + struct dirent *de; + int r = 0; + + assert(n_except == 0 || except); + + d = opendir("/proc/self/fd"); + if (!d) { + int fd; + struct rlimit rl; + + /* When /proc isn't available (for example in chroots) + * the fallback is brute forcing through the fd + * table */ + + assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0); + for (fd = 3; fd < (int) rl.rlim_max; fd ++) { + + if (fd_in_set(fd, except, n_except)) + continue; + + if (close_nointr(fd) < 0) + if (errno != EBADF && r == 0) + r = -errno; + } + + return r; + } + + while ((de = readdir(d))) { + int fd = -1; + + if (ignore_file(de->d_name)) + continue; + + if (safe_atoi(de->d_name, &fd) < 0) + /* Let's better ignore this, just in case */ + continue; + + if (fd < 3) + continue; + + if (fd == dirfd(d)) + continue; + + if (fd_in_set(fd, except, n_except)) + continue; + + if (close_nointr(fd) < 0) { + /* Valgrind has its own FD and doesn't want to have it closed */ + if (errno != EBADF && r == 0) + r = -errno; + } + } + + closedir(d); + return r; +} + +bool chars_intersect(const char *a, const char *b) { + const char *p; + + /* Returns true if any of the chars in a are in b. */ + for (p = a; *p; p++) + if (strchr(b, *p)) + return true; + + return false; +} + +char *format_timestamp(char *buf, size_t l, usec_t t) { + struct tm tm; + time_t sec; + + assert(buf); + assert(l > 0); + + if (t <= 0) + return NULL; + + sec = (time_t) (t / USEC_PER_SEC); + + if (strftime(buf, l, "%a, %d %b %Y %H:%M:%S %z", localtime_r(&sec, &tm)) <= 0) + return NULL; + + return buf; +} + +char *format_timestamp_pretty(char *buf, size_t l, usec_t t) { + usec_t n, d; + + n = now(CLOCK_REALTIME); + + if (t <= 0 || t > n || t + USEC_PER_DAY*7 <= t) + return NULL; + + d = n - t; + + if (d >= USEC_PER_YEAR) + snprintf(buf, l, "%llu years and %llu months ago", + (unsigned long long) (d / USEC_PER_YEAR), + (unsigned long long) ((d % USEC_PER_YEAR) / USEC_PER_MONTH)); + else if (d >= USEC_PER_MONTH) + snprintf(buf, l, "%llu months and %llu days ago", + (unsigned long long) (d / USEC_PER_MONTH), + (unsigned long long) ((d % USEC_PER_MONTH) / USEC_PER_DAY)); + else if (d >= USEC_PER_WEEK) + snprintf(buf, l, "%llu weeks and %llu days ago", + (unsigned long long) (d / USEC_PER_WEEK), + (unsigned long long) ((d % USEC_PER_WEEK) / USEC_PER_DAY)); + else if (d >= 2*USEC_PER_DAY) + snprintf(buf, l, "%llu days ago", (unsigned long long) (d / USEC_PER_DAY)); + else if (d >= 25*USEC_PER_HOUR) + snprintf(buf, l, "1 day and %lluh ago", + (unsigned long long) ((d - USEC_PER_DAY) / USEC_PER_HOUR)); + else if (d >= 6*USEC_PER_HOUR) + snprintf(buf, l, "%lluh ago", + (unsigned long long) (d / USEC_PER_HOUR)); + else if (d >= USEC_PER_HOUR) + snprintf(buf, l, "%lluh %llumin ago", + (unsigned long long) (d / USEC_PER_HOUR), + (unsigned long long) ((d % USEC_PER_HOUR) / USEC_PER_MINUTE)); + else if (d >= 5*USEC_PER_MINUTE) + snprintf(buf, l, "%llumin ago", + (unsigned long long) (d / USEC_PER_MINUTE)); + else if (d >= USEC_PER_MINUTE) + snprintf(buf, l, "%llumin %llus ago", + (unsigned long long) (d / USEC_PER_MINUTE), + (unsigned long long) ((d % USEC_PER_MINUTE) / USEC_PER_SEC)); + else if (d >= USEC_PER_SEC) + snprintf(buf, l, "%llus ago", + (unsigned long long) (d / USEC_PER_SEC)); + else if (d >= USEC_PER_MSEC) + snprintf(buf, l, "%llums ago", + (unsigned long long) (d / USEC_PER_MSEC)); + else if (d > 0) + snprintf(buf, l, "%lluus ago", + (unsigned long long) d); + else + snprintf(buf, l, "now"); + + buf[l-1] = 0; + return buf; +} + +char *format_timespan(char *buf, size_t l, usec_t t) { + static const struct { + const char *suffix; + usec_t usec; + } table[] = { + { "w", USEC_PER_WEEK }, + { "d", USEC_PER_DAY }, + { "h", USEC_PER_HOUR }, + { "min", USEC_PER_MINUTE }, + { "s", USEC_PER_SEC }, + { "ms", USEC_PER_MSEC }, + { "us", 1 }, + }; + + unsigned i; + char *p = buf; + + assert(buf); + assert(l > 0); + + if (t == (usec_t) -1) + return NULL; + + if (t == 0) { + snprintf(p, l, "0"); + p[l-1] = 0; + return p; + } + + /* The result of this function can be parsed with parse_usec */ + + for (i = 0; i < ELEMENTSOF(table); i++) { + int k; + size_t n; + + if (t < table[i].usec) + continue; + + if (l <= 1) + break; + + k = snprintf(p, l, "%s%llu%s", p > buf ? " " : "", (unsigned long long) (t / table[i].usec), table[i].suffix); + n = MIN((size_t) k, l); + + l -= n; + p += n; + + t %= table[i].usec; + } + + *p = 0; + + return buf; +} + +bool fstype_is_network(const char *fstype) { + static const char * const table[] = { + "cifs", + "smbfs", + "ncpfs", + "nfs", + "nfs4", + "gfs", + "gfs2" + }; + + unsigned i; + + for (i = 0; i < ELEMENTSOF(table); i++) + if (streq(table[i], fstype)) + return true; + + return false; +} + +int chvt(int vt) { + int fd, r = 0; + + if ((fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC)) < 0) + return -errno; + + if (vt < 0) { + int tiocl[2] = { + TIOCL_GETKMSGREDIRECT, + 0 + }; + + if (ioctl(fd, TIOCLINUX, tiocl) < 0) { + r = -errno; + goto fail; + } + + vt = tiocl[0] <= 0 ? 1 : tiocl[0]; + } + + if (ioctl(fd, VT_ACTIVATE, vt) < 0) + r = -errno; + +fail: + close_nointr_nofail(fd); + return r; +} + +int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) { + struct termios old_termios, new_termios; + char c; + char line[LINE_MAX]; + + assert(f); + assert(ret); + + if (tcgetattr(fileno(f), &old_termios) >= 0) { + new_termios = old_termios; + + new_termios.c_lflag &= ~ICANON; + new_termios.c_cc[VMIN] = 1; + new_termios.c_cc[VTIME] = 0; + + if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) { + size_t k; + + if (t != (usec_t) -1) { + if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) { + tcsetattr(fileno(f), TCSADRAIN, &old_termios); + return -ETIMEDOUT; + } + } + + k = fread(&c, 1, 1, f); + + tcsetattr(fileno(f), TCSADRAIN, &old_termios); + + if (k <= 0) + return -EIO; + + if (need_nl) + *need_nl = c != '\n'; + + *ret = c; + return 0; + } + } + + if (t != (usec_t) -1) + if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) + return -ETIMEDOUT; + + if (!fgets(line, sizeof(line), f)) + return -EIO; + + truncate_nl(line); + + if (strlen(line) != 1) + return -EBADMSG; + + if (need_nl) + *need_nl = false; + + *ret = line[0]; + return 0; +} + +int ask(char *ret, const char *replies, const char *text, ...) { + bool on_tty; + + assert(ret); + assert(replies); + assert(text); + + on_tty = isatty(STDOUT_FILENO); + + for (;;) { + va_list ap; + char c; + int r; + bool need_nl = true; + + if (on_tty) + fputs(ANSI_HIGHLIGHT_ON, stdout); + + va_start(ap, text); + vprintf(text, ap); + va_end(ap); + + if (on_tty) + fputs(ANSI_HIGHLIGHT_OFF, stdout); + + fflush(stdout); + + r = read_one_char(stdin, &c, (usec_t) -1, &need_nl); + if (r < 0) { + + if (r == -EBADMSG) { + puts("Bad input, please try again."); + continue; + } + + putchar('\n'); + return r; + } + + if (need_nl) + putchar('\n'); + + if (strchr(replies, c)) { + *ret = c; + return 0; + } + + puts("Read unexpected character, please try again."); + } +} + +int reset_terminal_fd(int fd, bool switch_to_text) { + struct termios termios; + int r = 0; + + /* Set terminal to some sane defaults */ + + assert(fd >= 0); + + /* We leave locked terminal attributes untouched, so that + * Plymouth may set whatever it wants to set, and we don't + * interfere with that. */ + + /* Disable exclusive mode, just in case */ + ioctl(fd, TIOCNXCL); + + /* Switch to text mode */ + if (switch_to_text) + ioctl(fd, KDSETMODE, KD_TEXT); + + /* Enable console unicode mode */ + ioctl(fd, KDSKBMODE, K_UNICODE); + + if (tcgetattr(fd, &termios) < 0) { + r = -errno; + goto finish; + } + + /* We only reset the stuff that matters to the software. How + * hardware is set up we don't touch assuming that somebody + * else will do that for us */ + + termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC); + termios.c_iflag |= ICRNL | IMAXBEL | IUTF8; + termios.c_oflag |= ONLCR; + termios.c_cflag |= CREAD; + termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE; + + termios.c_cc[VINTR] = 03; /* ^C */ + termios.c_cc[VQUIT] = 034; /* ^\ */ + termios.c_cc[VERASE] = 0177; + termios.c_cc[VKILL] = 025; /* ^X */ + termios.c_cc[VEOF] = 04; /* ^D */ + termios.c_cc[VSTART] = 021; /* ^Q */ + termios.c_cc[VSTOP] = 023; /* ^S */ + termios.c_cc[VSUSP] = 032; /* ^Z */ + termios.c_cc[VLNEXT] = 026; /* ^V */ + termios.c_cc[VWERASE] = 027; /* ^W */ + termios.c_cc[VREPRINT] = 022; /* ^R */ + termios.c_cc[VEOL] = 0; + termios.c_cc[VEOL2] = 0; + + termios.c_cc[VTIME] = 0; + termios.c_cc[VMIN] = 1; + + if (tcsetattr(fd, TCSANOW, &termios) < 0) + r = -errno; + +finish: + /* Just in case, flush all crap out */ + tcflush(fd, TCIOFLUSH); + + return r; +} + +int reset_terminal(const char *name) { + int fd, r; + + fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC); + if (fd < 0) + return fd; + + r = reset_terminal_fd(fd, true); + close_nointr_nofail(fd); + + return r; +} + +int open_terminal(const char *name, int mode) { + int fd, r; + unsigned c = 0; + + /* + * If a TTY is in the process of being closed opening it might + * cause EIO. This is horribly awful, but unlikely to be + * changed in the kernel. Hence we work around this problem by + * retrying a couple of times. + * + * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245 + */ + + for (;;) { + if ((fd = open(name, mode)) >= 0) + break; + + if (errno != EIO) + return -errno; + + if (c >= 20) + return -errno; + + usleep(50 * USEC_PER_MSEC); + c++; + } + + if (fd < 0) + return -errno; + + if ((r = isatty(fd)) < 0) { + close_nointr_nofail(fd); + return -errno; + } + + if (!r) { + close_nointr_nofail(fd); + return -ENOTTY; + } + + return fd; +} + +int flush_fd(int fd) { + struct pollfd pollfd; + + zero(pollfd); + pollfd.fd = fd; + pollfd.events = POLLIN; + + for (;;) { + char buf[LINE_MAX]; + ssize_t l; + int r; + + if ((r = poll(&pollfd, 1, 0)) < 0) { + + if (errno == EINTR) + continue; + + return -errno; + } + + if (r == 0) + return 0; + + if ((l = read(fd, buf, sizeof(buf))) < 0) { + + if (errno == EINTR) + continue; + + if (errno == EAGAIN) + return 0; + + return -errno; + } + + if (l <= 0) + return 0; + } +} + +int acquire_terminal(const char *name, bool fail, bool force, bool ignore_tiocstty_eperm) { + int fd = -1, notify = -1, r, wd = -1; + + assert(name); + + /* We use inotify to be notified when the tty is closed. We + * create the watch before checking if we can actually acquire + * it, so that we don't lose any event. + * + * Note: strictly speaking this actually watches for the + * device being closed, it does *not* really watch whether a + * tty loses its controlling process. However, unless some + * rogue process uses TIOCNOTTY on /dev/tty *after* closing + * its tty otherwise this will not become a problem. As long + * as the administrator makes sure not configure any service + * on the same tty as an untrusted user this should not be a + * problem. (Which he probably should not do anyway.) */ + + if (!fail && !force) { + if ((notify = inotify_init1(IN_CLOEXEC)) < 0) { + r = -errno; + goto fail; + } + + if ((wd = inotify_add_watch(notify, name, IN_CLOSE)) < 0) { + r = -errno; + goto fail; + } + } + + for (;;) { + if (notify >= 0) + if ((r = flush_fd(notify)) < 0) + goto fail; + + /* We pass here O_NOCTTY only so that we can check the return + * value TIOCSCTTY and have a reliable way to figure out if we + * successfully became the controlling process of the tty */ + if ((fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC)) < 0) + return fd; + + /* First, try to get the tty */ + r = ioctl(fd, TIOCSCTTY, force); + + /* Sometimes it makes sense to ignore TIOCSCTTY + * returning EPERM, i.e. when very likely we already + * are have this controlling terminal. */ + if (r < 0 && errno == EPERM && ignore_tiocstty_eperm) + r = 0; + + if (r < 0 && (force || fail || errno != EPERM)) { + r = -errno; + goto fail; + } + + if (r >= 0) + break; + + assert(!fail); + assert(!force); + assert(notify >= 0); + + for (;;) { + uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX]; + ssize_t l; + struct inotify_event *e; + + if ((l = read(notify, inotify_buffer, sizeof(inotify_buffer))) < 0) { + + if (errno == EINTR) + continue; + + r = -errno; + goto fail; + } + + e = (struct inotify_event*) inotify_buffer; + + while (l > 0) { + size_t step; + + if (e->wd != wd || !(e->mask & IN_CLOSE)) { + r = -EIO; + goto fail; + } + + step = sizeof(struct inotify_event) + e->len; + assert(step <= (size_t) l); + + e = (struct inotify_event*) ((uint8_t*) e + step); + l -= step; + } + + break; + } + + /* We close the tty fd here since if the old session + * ended our handle will be dead. It's important that + * we do this after sleeping, so that we don't enter + * an endless loop. */ + close_nointr_nofail(fd); + } + + if (notify >= 0) + close_nointr_nofail(notify); + + r = reset_terminal_fd(fd, true); + if (r < 0) + log_warning("Failed to reset terminal: %s", strerror(-r)); + + return fd; + +fail: + if (fd >= 0) + close_nointr_nofail(fd); + + if (notify >= 0) + close_nointr_nofail(notify); + + return r; +} + +int release_terminal(void) { + int r = 0, fd; + struct sigaction sa_old, sa_new; + + if ((fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC)) < 0) + return -errno; + + /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed + * by our own TIOCNOTTY */ + + zero(sa_new); + sa_new.sa_handler = SIG_IGN; + sa_new.sa_flags = SA_RESTART; + assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0); + + if (ioctl(fd, TIOCNOTTY) < 0) + r = -errno; + + assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0); + + close_nointr_nofail(fd); + return r; +} + +int sigaction_many(const struct sigaction *sa, ...) { + va_list ap; + int r = 0, sig; + + va_start(ap, sa); + while ((sig = va_arg(ap, int)) > 0) + if (sigaction(sig, sa, NULL) < 0) + r = -errno; + va_end(ap); + + return r; +} + +int ignore_signals(int sig, ...) { + struct sigaction sa; + va_list ap; + int r = 0; + + zero(sa); + sa.sa_handler = SIG_IGN; + sa.sa_flags = SA_RESTART; + + if (sigaction(sig, &sa, NULL) < 0) + r = -errno; + + va_start(ap, sig); + while ((sig = va_arg(ap, int)) > 0) + if (sigaction(sig, &sa, NULL) < 0) + r = -errno; + va_end(ap); + + return r; +} + +int default_signals(int sig, ...) { + struct sigaction sa; + va_list ap; + int r = 0; + + zero(sa); + sa.sa_handler = SIG_DFL; + sa.sa_flags = SA_RESTART; + + if (sigaction(sig, &sa, NULL) < 0) + r = -errno; + + va_start(ap, sig); + while ((sig = va_arg(ap, int)) > 0) + if (sigaction(sig, &sa, NULL) < 0) + r = -errno; + va_end(ap); + + return r; +} + +int close_pipe(int p[]) { + int a = 0, b = 0; + + assert(p); + + if (p[0] >= 0) { + a = close_nointr(p[0]); + p[0] = -1; + } + + if (p[1] >= 0) { + b = close_nointr(p[1]); + p[1] = -1; + } + + return a < 0 ? a : b; +} + +ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) { + uint8_t *p; + ssize_t n = 0; + + assert(fd >= 0); + assert(buf); + + p = buf; + + while (nbytes > 0) { + ssize_t k; + + if ((k = read(fd, p, nbytes)) <= 0) { + + if (k < 0 && errno == EINTR) + continue; + + if (k < 0 && errno == EAGAIN && do_poll) { + struct pollfd pollfd; + + zero(pollfd); + pollfd.fd = fd; + pollfd.events = POLLIN; + + if (poll(&pollfd, 1, -1) < 0) { + if (errno == EINTR) + continue; + + return n > 0 ? n : -errno; + } + + if (pollfd.revents != POLLIN) + return n > 0 ? n : -EIO; + + continue; + } + + return n > 0 ? n : (k < 0 ? -errno : 0); + } + + p += k; + nbytes -= k; + n += k; + } + + return n; +} + +ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) { + const uint8_t *p; + ssize_t n = 0; + + assert(fd >= 0); + assert(buf); + + p = buf; + + while (nbytes > 0) { + ssize_t k; + + k = write(fd, p, nbytes); + if (k <= 0) { + + if (k < 0 && errno == EINTR) + continue; + + if (k < 0 && errno == EAGAIN && do_poll) { + struct pollfd pollfd; + + zero(pollfd); + pollfd.fd = fd; + pollfd.events = POLLOUT; + + if (poll(&pollfd, 1, -1) < 0) { + if (errno == EINTR) + continue; + + return n > 0 ? n : -errno; + } + + if (pollfd.revents != POLLOUT) + return n > 0 ? n : -EIO; + + continue; + } + + return n > 0 ? n : (k < 0 ? -errno : 0); + } + + p += k; + nbytes -= k; + n += k; + } + + return n; +} + +int path_is_mount_point(const char *t, bool allow_symlink) { + struct stat a, b; + char *parent; + int r; + + if (allow_symlink) + r = stat(t, &a); + else + r = lstat(t, &a); + + if (r < 0) { + if (errno == ENOENT) + return 0; + + return -errno; + } + + r = parent_of_path(t, &parent); + if (r < 0) + return r; + + r = lstat(parent, &b); + free(parent); + + if (r < 0) + return -errno; + + return a.st_dev != b.st_dev; +} + +int parse_usec(const char *t, usec_t *usec) { + static const struct { + const char *suffix; + usec_t usec; + } table[] = { + { "sec", USEC_PER_SEC }, + { "s", USEC_PER_SEC }, + { "min", USEC_PER_MINUTE }, + { "hr", USEC_PER_HOUR }, + { "h", USEC_PER_HOUR }, + { "d", USEC_PER_DAY }, + { "w", USEC_PER_WEEK }, + { "msec", USEC_PER_MSEC }, + { "ms", USEC_PER_MSEC }, + { "m", USEC_PER_MINUTE }, + { "usec", 1ULL }, + { "us", 1ULL }, + { "", USEC_PER_SEC }, + }; + + const char *p; + usec_t r = 0; + + assert(t); + assert(usec); + + p = t; + do { + long long l; + char *e; + unsigned i; + + errno = 0; + l = strtoll(p, &e, 10); + + if (errno != 0) + return -errno; + + if (l < 0) + return -ERANGE; + + if (e == p) + return -EINVAL; + + e += strspn(e, WHITESPACE); + + for (i = 0; i < ELEMENTSOF(table); i++) + if (startswith(e, table[i].suffix)) { + r += (usec_t) l * table[i].usec; + p = e + strlen(table[i].suffix); + break; + } + + if (i >= ELEMENTSOF(table)) + return -EINVAL; + + } while (*p != 0); + + *usec = r; + + return 0; +} + +int parse_bytes(const char *t, off_t *bytes) { + static const struct { + const char *suffix; + off_t factor; + } table[] = { + { "B", 1 }, + { "K", 1024ULL }, + { "M", 1024ULL*1024ULL }, + { "G", 1024ULL*1024ULL*1024ULL }, + { "T", 1024ULL*1024ULL*1024ULL*1024ULL }, + { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL }, + { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL }, + { "", 1 }, + }; + + const char *p; + off_t r = 0; + + assert(t); + assert(bytes); + + p = t; + do { + long long l; + char *e; + unsigned i; + + errno = 0; + l = strtoll(p, &e, 10); + + if (errno != 0) + return -errno; + + if (l < 0) + return -ERANGE; + + if (e == p) + return -EINVAL; + + e += strspn(e, WHITESPACE); + + for (i = 0; i < ELEMENTSOF(table); i++) + if (startswith(e, table[i].suffix)) { + r += (off_t) l * table[i].factor; + p = e + strlen(table[i].suffix); + break; + } + + if (i >= ELEMENTSOF(table)) + return -EINVAL; + + } while (*p != 0); + + *bytes = r; + + return 0; +} + +int make_stdio(int fd) { + int r, s, t; + + assert(fd >= 0); + + r = dup2(fd, STDIN_FILENO); + s = dup2(fd, STDOUT_FILENO); + t = dup2(fd, STDERR_FILENO); + + if (fd >= 3) + close_nointr_nofail(fd); + + if (r < 0 || s < 0 || t < 0) + return -errno; + + fd_cloexec(STDIN_FILENO, false); + fd_cloexec(STDOUT_FILENO, false); + fd_cloexec(STDERR_FILENO, false); + + return 0; +} + +int make_null_stdio(void) { + int null_fd; + + if ((null_fd = open("/dev/null", O_RDWR|O_NOCTTY)) < 0) + return -errno; + + return make_stdio(null_fd); +} + +bool is_device_path(const char *path) { + + /* Returns true on paths that refer to a device, either in + * sysfs or in /dev */ + + return + path_startswith(path, "/dev/") || + path_startswith(path, "/sys/"); +} + +int dir_is_empty(const char *path) { + DIR *d; + int r; + struct dirent buf, *de; + + if (!(d = opendir(path))) + return -errno; + + for (;;) { + if ((r = readdir_r(d, &buf, &de)) > 0) { + r = -r; + break; + } + + if (!de) { + r = 1; + break; + } + + if (!ignore_file(de->d_name)) { + r = 0; + break; + } + } + + closedir(d); + return r; +} + +unsigned long long random_ull(void) { + int fd; + uint64_t ull; + ssize_t r; + + if ((fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY)) < 0) + goto fallback; + + r = loop_read(fd, &ull, sizeof(ull), true); + close_nointr_nofail(fd); + + if (r != sizeof(ull)) + goto fallback; + + return ull; + +fallback: + return random() * RAND_MAX + random(); +} + +void rename_process(const char name[8]) { + assert(name); + + /* This is a like a poor man's setproctitle(). It changes the + * comm field, argv[0], and also the glibc's internally used + * name of the process. For the first one a limit of 16 chars + * applies, to the second one usually one of 10 (i.e. length + * of "/sbin/init"), to the third one one of 7 (i.e. length of + * "systemd"). If you pass a longer string it will be + * truncated */ + + prctl(PR_SET_NAME, name); + + if (program_invocation_name) + strncpy(program_invocation_name, name, strlen(program_invocation_name)); + + if (saved_argc > 0) { + int i; + + if (saved_argv[0]) + strncpy(saved_argv[0], name, strlen(saved_argv[0])); + + for (i = 1; i < saved_argc; i++) { + if (!saved_argv[i]) + break; + + memset(saved_argv[i], 0, strlen(saved_argv[i])); + } + } +} + +void sigset_add_many(sigset_t *ss, ...) { + va_list ap; + int sig; + + assert(ss); + + va_start(ap, ss); + while ((sig = va_arg(ap, int)) > 0) + assert_se(sigaddset(ss, sig) == 0); + va_end(ap); +} + +char* gethostname_malloc(void) { + struct utsname u; + + assert_se(uname(&u) >= 0); + + if (u.nodename[0]) + return strdup(u.nodename); + + return strdup(u.sysname); +} + +char* getlogname_malloc(void) { + uid_t uid; + long bufsize; + char *buf, *name; + struct passwd pwbuf, *pw = NULL; + struct stat st; + + if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0) + uid = st.st_uid; + else + uid = getuid(); + + /* Shortcut things to avoid NSS lookups */ + if (uid == 0) + return strdup("root"); + + if ((bufsize = sysconf(_SC_GETPW_R_SIZE_MAX)) <= 0) + bufsize = 4096; + + if (!(buf = malloc(bufsize))) + return NULL; + + if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw) { + name = strdup(pw->pw_name); + free(buf); + return name; + } + + free(buf); + + if (asprintf(&name, "%lu", (unsigned long) uid) < 0) + return NULL; + + return name; +} + +int getttyname_malloc(int fd, char **r) { + char path[PATH_MAX], *c; + int k; + + assert(r); + + if ((k = ttyname_r(fd, path, sizeof(path))) != 0) + return -k; + + char_array_0(path); + + if (!(c = strdup(startswith(path, "/dev/") ? path + 5 : path))) + return -ENOMEM; + + *r = c; + return 0; +} + +int getttyname_harder(int fd, char **r) { + int k; + char *s; + + if ((k = getttyname_malloc(fd, &s)) < 0) + return k; + + if (streq(s, "tty")) { + free(s); + return get_ctty(0, NULL, r); + } + + *r = s; + return 0; +} + +int get_ctty_devnr(pid_t pid, dev_t *d) { + int k; + char line[LINE_MAX], *p, *fn; + unsigned long ttynr; + FILE *f; + + if (asprintf(&fn, "/proc/%lu/stat", (unsigned long) (pid <= 0 ? getpid() : pid)) < 0) + return -ENOMEM; + + f = fopen(fn, "re"); + free(fn); + if (!f) + return -errno; + + if (!fgets(line, sizeof(line), f)) { + k = feof(f) ? -EIO : -errno; + fclose(f); + return k; + } + + fclose(f); + + p = strrchr(line, ')'); + if (!p) + return -EIO; + + p++; + + if (sscanf(p, " " + "%*c " /* state */ + "%*d " /* ppid */ + "%*d " /* pgrp */ + "%*d " /* session */ + "%lu ", /* ttynr */ + &ttynr) != 1) + return -EIO; + + *d = (dev_t) ttynr; + return 0; +} + +int get_ctty(pid_t pid, dev_t *_devnr, char **r) { + int k; + char fn[PATH_MAX], *s, *b, *p; + dev_t devnr; + + assert(r); + + k = get_ctty_devnr(pid, &devnr); + if (k < 0) + return k; + + snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr)); + char_array_0(fn); + + if ((k = readlink_malloc(fn, &s)) < 0) { + + if (k != -ENOENT) + return k; + + /* This is an ugly hack */ + if (major(devnr) == 136) { + if (asprintf(&b, "pts/%lu", (unsigned long) minor(devnr)) < 0) + return -ENOMEM; + + *r = b; + if (_devnr) + *_devnr = devnr; + + return 0; + } + + /* Probably something like the ptys which have no + * symlink in /dev/char. Let's return something + * vaguely useful. */ - case 'a': - *(t++) = '\a'; - break; - case 'b': - *(t++) = '\b'; - break; - case 'f': - *(t++) = '\f'; - break; - case 'n': - *(t++) = '\n'; - break; - case 'r': - *(t++) = '\r'; - break; - case 't': - *(t++) = '\t'; - break; - case 'v': - *(t++) = '\v'; - break; - case '\\': - *(t++) = '\\'; + if (!(b = strdup(fn + 5))) + return -ENOMEM; + + *r = b; + if (_devnr) + *_devnr = devnr; + + return 0; + } + + if (startswith(s, "/dev/")) + p = s + 5; + else if (startswith(s, "../")) + p = s + 3; + else + p = s; + + b = strdup(p); + free(s); + + if (!b) + return -ENOMEM; + + *r = b; + if (_devnr) + *_devnr = devnr; + + return 0; +} + +static int rm_rf_children(int fd, bool only_dirs, bool honour_sticky) { + DIR *d; + int ret = 0; + + assert(fd >= 0); + + /* This returns the first error we run into, but nevertheless + * tries to go on */ + + if (!(d = fdopendir(fd))) { + close_nointr_nofail(fd); + + return errno == ENOENT ? 0 : -errno; + } + + for (;;) { + struct dirent buf, *de; + bool is_dir, keep_around = false; + int r; + + if ((r = readdir_r(d, &buf, &de)) != 0) { + if (ret == 0) + ret = -r; break; - case '"': - *(t++) = '"'; + } + + if (!de) break; - case '\'': - *(t++) = '\''; + + if (streq(de->d_name, ".") || streq(de->d_name, "..")) + continue; + + if (de->d_type == DT_UNKNOWN) { + struct stat st; + + if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) { + if (ret == 0 && errno != ENOENT) + ret = -errno; + continue; + } + + if (honour_sticky) + keep_around = + (st.st_uid == 0 || st.st_uid == getuid()) && + (st.st_mode & S_ISVTX); + + is_dir = S_ISDIR(st.st_mode); + + } else { + if (honour_sticky) { + struct stat st; + + if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) { + if (ret == 0 && errno != ENOENT) + ret = -errno; + continue; + } + + keep_around = + (st.st_uid == 0 || st.st_uid == getuid()) && + (st.st_mode & S_ISVTX); + } + + is_dir = de->d_type == DT_DIR; + } + + if (is_dir) { + int subdir_fd; + + subdir_fd = openat(fd, de->d_name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW); + if (subdir_fd < 0) { + if (ret == 0 && errno != ENOENT) + ret = -errno; + continue; + } + + if ((r = rm_rf_children(subdir_fd, only_dirs, honour_sticky)) < 0) { + if (ret == 0) + ret = r; + } + + if (!keep_around) + if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) { + if (ret == 0 && errno != ENOENT) + ret = -errno; + } + + } else if (!only_dirs && !keep_around) { + + if (unlinkat(fd, de->d_name, 0) < 0) { + if (ret == 0 && errno != ENOENT) + ret = -errno; + } + } + } + + closedir(d); + + return ret; +} + +int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) { + int fd; + int r; + + assert(path); + + if ((fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC)) < 0) { + + if (errno != ENOTDIR) + return -errno; + + if (delete_root && !only_dirs) + if (unlink(path) < 0) + return -errno; + + return 0; + } + + r = rm_rf_children(fd, only_dirs, honour_sticky); + + if (delete_root) { + + if (honour_sticky && file_is_priv_sticky(path) > 0) + return r; + + if (rmdir(path) < 0 && errno != ENOENT) { + if (r == 0) + r = -errno; + } + } + + return r; +} + +int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) { + assert(path); + + /* Under the assumption that we are running privileged we + * first change the access mode and only then hand out + * ownership to avoid a window where access is too open. */ + + if (mode != (mode_t) -1) + if (chmod(path, mode) < 0) + return -errno; + + if (uid != (uid_t) -1 || gid != (gid_t) -1) + if (chown(path, uid, gid) < 0) + return -errno; + + return 0; +} + +int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) { + assert(fd >= 0); + + /* Under the assumption that we are running privileged we + * first change the access mode and only then hand out + * ownership to avoid a window where access is too open. */ + + if (fchmod(fd, mode) < 0) + return -errno; + + if (fchown(fd, uid, gid) < 0) + return -errno; + + return 0; +} + +cpu_set_t* cpu_set_malloc(unsigned *ncpus) { + cpu_set_t *r; + unsigned n = 1024; + + /* Allocates the cpuset in the right size */ + + for (;;) { + if (!(r = CPU_ALLOC(n))) + return NULL; + + if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) { + CPU_ZERO_S(CPU_ALLOC_SIZE(n), r); + + if (ncpus) + *ncpus = n; + + return r; + } + + CPU_FREE(r); + + if (errno != EINVAL) + return NULL; + + n *= 2; + } +} + +void status_vprintf(const char *status, bool ellipse, const char *format, va_list ap) { + char *s = NULL, *spaces = NULL, *e; + int fd = -1, c; + size_t emax, sl, left; + struct iovec iovec[5]; + int n = 0; + + assert(format); + + /* This independent of logging, as status messages are + * optional and go exclusively to the console. */ + + if (vasprintf(&s, format, ap) < 0) + goto finish; + + fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC); + if (fd < 0) + goto finish; + + if (ellipse) { + c = fd_columns(fd); + if (c <= 0) + c = 80; + + if (status) { + sl = 2 + 6 + 1; /* " [" status "]" */ + emax = (size_t) c > sl ? c - sl - 1 : 0; + } else + emax = c - 1; + + e = ellipsize(s, emax, 75); + if (e) { + free(s); + s = e; + } + } + + zero(iovec); + IOVEC_SET_STRING(iovec[n++], s); + + if (ellipse) { + sl = strlen(s); + left = emax > sl ? emax - sl : 0; + if (left > 0) { + spaces = malloc(left); + if (spaces) { + memset(spaces, ' ', left); + iovec[n].iov_base = spaces; + iovec[n].iov_len = left; + n++; + } + } + } + + if (status) { + IOVEC_SET_STRING(iovec[n++], " ["); + IOVEC_SET_STRING(iovec[n++], status); + IOVEC_SET_STRING(iovec[n++], "]\n"); + } else + IOVEC_SET_STRING(iovec[n++], "\n"); + + writev(fd, iovec, n); + +finish: + free(s); + free(spaces); + + if (fd >= 0) + close_nointr_nofail(fd); +} + +void status_printf(const char *status, bool ellipse, const char *format, ...) { + va_list ap; + + assert(format); + + va_start(ap, format); + status_vprintf(status, ellipse, format, ap); + va_end(ap); +} + +void status_welcome(void) { + char *pretty_name = NULL, *ansi_color = NULL; + const char *const_pretty = NULL, *const_color = NULL; + int r; + + if ((r = parse_env_file("/etc/os-release", NEWLINE, + "PRETTY_NAME", &pretty_name, + "ANSI_COLOR", &ansi_color, + NULL)) < 0) { + + if (r != -ENOENT) + log_warning("Failed to read /etc/os-release: %s", strerror(-r)); + } + + if (!pretty_name && !const_pretty) + const_pretty = "Linux"; + + if (!ansi_color && !const_color) + const_color = "1"; + + status_printf(NULL, + false, + "\nWelcome to \x1B[%sm%s\x1B[0m!\n", + const_color ? const_color : ansi_color, + const_pretty ? const_pretty : pretty_name); + + free(ansi_color); + free(pretty_name); +} + +char *replace_env(const char *format, char **env) { + enum { + WORD, + CURLY, + VARIABLE + } state = WORD; + + const char *e, *word = format; + char *r = NULL, *k; + + assert(format); + + for (e = format; *e; e ++) { + + switch (state) { + + case WORD: + if (*e == '$') + state = CURLY; break; - case 's': - /* This is an extension of the XDG syntax files */ - *(t++) = ' '; + case CURLY: + if (*e == '{') { + if (!(k = strnappend(r, word, e-word-1))) + goto fail; + + free(r); + r = k; + + word = e-1; + state = VARIABLE; + + } else if (*e == '$') { + if (!(k = strnappend(r, word, e-word))) + goto fail; + + free(r); + r = k; + + word = e+1; + state = WORD; + } else + state = WORD; break; - case 'x': { - /* hexadecimal encoding */ - int a, b; + case VARIABLE: + if (*e == '}') { + const char *t; - if ((a = unhexchar(f[1])) < 0 || - (b = unhexchar(f[2])) < 0) { - /* Invalid escape code, let's take it literal then */ - *(t++) = '\\'; - *(t++) = 'x'; - } else { - *(t++) = (char) ((a << 4) | b); - f += 2; - } + if (!(t = strv_env_get_with_length(env, word+2, e-word-2))) + t = ""; + + if (!(k = strappend(r, t))) + goto fail; + free(r); + r = k; + + word = e+1; + state = WORD; + } break; } + } - case '0': - case '1': - case '2': - case '3': - case '4': - case '5': - case '6': - case '7': { - /* octal encoding */ - int a, b, c; + if (!(k = strnappend(r, word, e-word))) + goto fail; - if ((a = unoctchar(f[0])) < 0 || - (b = unoctchar(f[1])) < 0 || - (c = unoctchar(f[2])) < 0) { - /* Invalid escape code, let's take it literal then */ - *(t++) = '\\'; - *(t++) = f[0]; - } else { - *(t++) = (char) ((a << 6) | (b << 3) | c); - f += 2; + free(r); + return k; + +fail: + free(r); + return NULL; +} + +char **replace_env_argv(char **argv, char **env) { + char **r, **i; + unsigned k = 0, l = 0; + + l = strv_length(argv); + + if (!(r = new(char*, l+1))) + return NULL; + + STRV_FOREACH(i, argv) { + + /* If $FOO appears as single word, replace it by the split up variable */ + if ((*i)[0] == '$' && (*i)[1] != '{') { + char *e; + char **w, **m; + unsigned q; + + if ((e = strv_env_get(env, *i+1))) { + + if (!(m = strv_split_quoted(e))) { + r[k] = NULL; + strv_free(r); + return NULL; + } + } else + m = NULL; + + q = strv_length(m); + l = l + q - 1; + + if (!(w = realloc(r, sizeof(char*) * (l+1)))) { + r[k] = NULL; + strv_free(r); + strv_free(m); + return NULL; } - break; - } + r = w; + if (m) { + memcpy(r + k, m, q * sizeof(char*)); + free(m); + } - case 0: - /* premature end of string.*/ - *(t++) = '\\'; - goto finish; + k += q; + continue; + } - default: - /* Invalid escape code, let's take it literal then */ - *(t++) = '\\'; - *(t++) = *f; - break; + /* If ${FOO} appears as part of a word, replace it by the variable as-is */ + if (!(r[k++] = replace_env(*i, env))) { + strv_free(r); + return NULL; } } -finish: - *t = 0; + r[k] = NULL; return r; } -char *cunescape(const char *s) { - return cunescape_length(s, strlen(s)); +int fd_columns(int fd) { + struct winsize ws; + zero(ws); + + if (ioctl(fd, TIOCGWINSZ, &ws) < 0) + return -errno; + + if (ws.ws_col <= 0) + return -EIO; + + return ws.ws_col; } -char *xescape(const char *s, const char *bad) { - char *r, *t; - const char *f; +unsigned columns(void) { + static __thread int parsed_columns = 0; + const char *e; - /* Escapes all chars in bad, in addition to \ and all special - * chars, in \xFF style escaping. May be reversed with - * cunescape. */ + if (_likely_(parsed_columns > 0)) + return parsed_columns; - if (!(r = new(char, strlen(s)*4+1))) - return NULL; + e = getenv("COLUMNS"); + if (e) + parsed_columns = atoi(e); - for (f = s, t = r; *f; f++) { + if (parsed_columns <= 0) + parsed_columns = fd_columns(STDOUT_FILENO); - if ((*f < ' ') || (*f >= 127) || - (*f == '\\') || strchr(bad, *f)) { - *(t++) = '\\'; - *(t++) = 'x'; - *(t++) = hexchar(*f >> 4); - *(t++) = hexchar(*f); - } else - *(t++) = *f; - } + if (parsed_columns <= 0) + parsed_columns = 80; - *t = 0; + return parsed_columns; +} - return r; +int fd_lines(int fd) { + struct winsize ws; + zero(ws); + + if (ioctl(fd, TIOCGWINSZ, &ws) < 0) + return -errno; + + if (ws.ws_row <= 0) + return -EIO; + + return ws.ws_row; } -char *bus_path_escape(const char *s) { - char *r, *t; - const char *f; +unsigned lines(void) { + static __thread int parsed_lines = 0; + const char *e; + + if (_likely_(parsed_lines > 0)) + return parsed_lines; + + e = getenv("LINES"); + if (e) + parsed_lines = atoi(e); + + if (parsed_lines <= 0) + parsed_lines = fd_lines(STDOUT_FILENO); + + if (parsed_lines <= 0) + parsed_lines = 25; + + return parsed_lines; +} + +int running_in_chroot(void) { + struct stat a, b; + + zero(a); + zero(b); + + /* Only works as root */ + + if (stat("/proc/1/root", &a) < 0) + return -errno; + + if (stat("/", &b) < 0) + return -errno; + + return + a.st_dev != b.st_dev || + a.st_ino != b.st_ino; +} + +char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) { + size_t x; + char *r; assert(s); + assert(percent <= 100); + assert(new_length >= 3); - /* Escapes all chars that D-Bus' object path cannot deal - * with. Can be reverse with bus_path_unescape() */ + if (old_length <= 3 || old_length <= new_length) + return strndup(s, old_length); - if (!(r = new(char, strlen(s)*3+1))) - return NULL; + r = new0(char, new_length+1); + if (!r) + return r; - for (f = s, t = r; *f; f++) { + x = (new_length * percent) / 100; - if (!(*f >= 'A' && *f <= 'Z') && - !(*f >= 'a' && *f <= 'z') && - !(*f >= '0' && *f <= '9')) { - *(t++) = '_'; - *(t++) = hexchar(*f >> 4); - *(t++) = hexchar(*f); - } else - *(t++) = *f; - } + if (x > new_length - 3) + x = new_length - 3; - *t = 0; + memcpy(r, s, x); + r[x] = '.'; + r[x+1] = '.'; + r[x+2] = '.'; + memcpy(r + x + 3, + s + old_length - (new_length - x - 3), + new_length - x - 3); return r; } -char *bus_path_unescape(const char *f) { - char *r, *t; - - assert(f); +char *ellipsize(const char *s, size_t length, unsigned percent) { + return ellipsize_mem(s, strlen(s), length, percent); +} - if (!(r = strdup(f))) - return NULL; +int touch(const char *path) { + int fd; - for (t = r; *f; f++) { + assert(path); - if (*f == '_') { - int a, b; + if ((fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644)) < 0) + return -errno; - if ((a = unhexchar(f[1])) < 0 || - (b = unhexchar(f[2])) < 0) { - /* Invalid escape code, let's take it literal then */ - *(t++) = '_'; - } else { - *(t++) = (char) ((a << 4) | b); - f += 2; - } - } else - *(t++) = *f; - } + close_nointr_nofail(fd); + return 0; +} - *t = 0; +char *unquote(const char *s, const char* quotes) { + size_t l; + assert(s); - return r; + l = strlen(s); + if (l < 2) + return strdup(s); + + if (strchr(quotes, s[0]) && s[l-1] == s[0]) + return strndup(s+1, l-2); + + return strdup(s); } -char *path_kill_slashes(char *path) { - char *f, *t; - bool slash = false; +char *normalize_env_assignment(const char *s) { + char *name, *value, *p, *r; - /* Removes redundant inner and trailing slashes. Modifies the - * passed string in-place. - * - * ///foo///bar/ becomes /foo/bar - */ + p = strchr(s, '='); - for (f = path, t = path; *f; f++) { + if (!p) { + if (!(r = strdup(s))) + return NULL; - if (*f == '/') { - slash = true; - continue; - } + return strstrip(r); + } - if (slash) { - slash = false; - *(t++) = '/'; - } + if (!(name = strndup(s, p - s))) + return NULL; - *(t++) = *f; + if (!(p = strdup(p+1))) { + free(name); + return NULL; } - /* Special rule, if we are talking of the root directory, a - trailing slash is good */ + value = unquote(strstrip(p), QUOTES); + free(p); - if (t == path && slash) - *(t++) = '/'; + if (!value) { + free(name); + return NULL; + } - *t = 0; - return path; -} + if (asprintf(&r, "%s=%s", name, value) < 0) + r = NULL; -bool path_startswith(const char *path, const char *prefix) { - assert(path); - assert(prefix); + free(value); + free(name); - if ((path[0] == '/') != (prefix[0] == '/')) - return false; + return r; +} - for (;;) { - size_t a, b; +int wait_for_terminate(pid_t pid, siginfo_t *status) { + siginfo_t dummy; - path += strspn(path, "/"); - prefix += strspn(prefix, "/"); + assert(pid >= 1); - if (*prefix == 0) - return true; + if (!status) + status = &dummy; - if (*path == 0) - return false; + for (;;) { + zero(*status); - a = strcspn(path, "/"); - b = strcspn(prefix, "/"); + if (waitid(P_PID, pid, status, WEXITED) < 0) { - if (a != b) - return false; + if (errno == EINTR) + continue; - if (memcmp(path, prefix, a) != 0) - return false; + return -errno; + } - path += a; - prefix += b; + return 0; } } -bool path_equal(const char *a, const char *b) { - assert(a); - assert(b); - - if ((a[0] == '/') != (b[0] == '/')) - return false; +int wait_for_terminate_and_warn(const char *name, pid_t pid) { + int r; + siginfo_t status; - for (;;) { - size_t j, k; + assert(name); + assert(pid > 1); - a += strspn(a, "/"); - b += strspn(b, "/"); + if ((r = wait_for_terminate(pid, &status)) < 0) { + log_warning("Failed to wait for %s: %s", name, strerror(-r)); + return r; + } - if (*a == 0 && *b == 0) - return true; + if (status.si_code == CLD_EXITED) { + if (status.si_status != 0) { + log_warning("%s failed with error code %i.", name, status.si_status); + return status.si_status; + } - if (*a == 0 || *b == 0) - return false; + log_debug("%s succeeded.", name); + return 0; - j = strcspn(a, "/"); - k = strcspn(b, "/"); + } else if (status.si_code == CLD_KILLED || + status.si_code == CLD_DUMPED) { - if (j != k) - return false; + log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status)); + return -EPROTO; + } - if (memcmp(a, b, j) != 0) - return false; + log_warning("%s failed due to unknown reason.", name); + return -EPROTO; - a += j; - b += k; - } } -char *ascii_strlower(char *t) { - char *p; +_noreturn_ void freeze(void) { - assert(t); + /* Make sure nobody waits for us on a socket anymore */ + close_all_fds(NULL, 0); - for (p = t; *p; p++) - if (*p >= 'A' && *p <= 'Z') - *p = *p - 'A' + 'a'; + sync(); - return t; + for (;;) + pause(); } -bool ignore_file(const char *filename) { - assert(filename); +bool null_or_empty(struct stat *st) { + assert(st); - return - filename[0] == '.' || - streq(filename, "lost+found") || - endswith(filename, "~") || - endswith(filename, ".rpmnew") || - endswith(filename, ".rpmsave") || - endswith(filename, ".rpmorig") || - endswith(filename, ".dpkg-old") || - endswith(filename, ".dpkg-new") || - endswith(filename, ".swp"); + if (S_ISREG(st->st_mode) && st->st_size <= 0) + return true; + + if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode)) + return true; + + return false; } -int fd_nonblock(int fd, bool nonblock) { - int flags; +int null_or_empty_path(const char *fn) { + struct stat st; - assert(fd >= 0); + assert(fn); - if ((flags = fcntl(fd, F_GETFL, 0)) < 0) + if (stat(fn, &st) < 0) return -errno; - if (nonblock) - flags |= O_NONBLOCK; - else - flags &= ~O_NONBLOCK; + return null_or_empty(&st); +} - if (fcntl(fd, F_SETFL, flags) < 0) - return -errno; +DIR *xopendirat(int fd, const char *name, int flags) { + int nfd; + DIR *d; - return 0; + if ((nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags)) < 0) + return NULL; + + if (!(d = fdopendir(nfd))) { + close_nointr_nofail(nfd); + return NULL; + } + + return d; } -int fd_cloexec(int fd, bool cloexec) { - int flags; +int signal_from_string_try_harder(const char *s) { + int signo; + assert(s); - assert(fd >= 0); + if ((signo = signal_from_string(s)) <= 0) + if (startswith(s, "SIG")) + return signal_from_string(s+3); - if ((flags = fcntl(fd, F_GETFD, 0)) < 0) - return -errno; + return signo; +} - if (cloexec) - flags |= FD_CLOEXEC; - else - flags &= ~FD_CLOEXEC; +void dual_timestamp_serialize(FILE *f, const char *name, dual_timestamp *t) { - if (fcntl(fd, F_SETFD, flags) < 0) - return -errno; + assert(f); + assert(name); + assert(t); - return 0; + if (!dual_timestamp_is_set(t)) + return; + + fprintf(f, "%s=%llu %llu\n", + name, + (unsigned long long) t->realtime, + (unsigned long long) t->monotonic); } -int close_all_fds(const int except[], unsigned n_except) { - DIR *d; - struct dirent *de; - int r = 0; +void dual_timestamp_deserialize(const char *value, dual_timestamp *t) { + unsigned long long a, b; - if (!(d = opendir("/proc/self/fd"))) - return -errno; + assert(value); + assert(t); - while ((de = readdir(d))) { - int fd = -1; + if (sscanf(value, "%lli %llu", &a, &b) != 2) + log_debug("Failed to parse finish timestamp value %s", value); + else { + t->realtime = a; + t->monotonic = b; + } +} - if (ignore_file(de->d_name)) - continue; +char *fstab_node_to_udev_node(const char *p) { + char *dn, *t, *u; + int r; - if ((r = safe_atoi(de->d_name, &fd)) < 0) - goto finish; + /* FIXME: to follow udev's logic 100% we need to leave valid + * UTF8 chars unescaped */ - if (fd < 3) - continue; + if (startswith(p, "LABEL=")) { - if (fd == dirfd(d)) - continue; + if (!(u = unquote(p+6, "\"\'"))) + return NULL; - if (except) { - bool found; - unsigned i; + t = xescape(u, "/ "); + free(u); - found = false; - for (i = 0; i < n_except; i++) - if (except[i] == fd) { - found = true; - break; - } + if (!t) + return NULL; - if (found) - continue; - } + r = asprintf(&dn, "/dev/disk/by-label/%s", t); + free(t); - if ((r = close_nointr(fd)) < 0) { - /* Valgrind has its own FD and doesn't want to have it closed */ - if (errno != EBADF) - goto finish; - } + if (r < 0) + return NULL; + + return dn; } - r = 0; + if (startswith(p, "UUID=")) { -finish: - closedir(d); - return r; -} + if (!(u = unquote(p+5, "\"\'"))) + return NULL; -bool chars_intersect(const char *a, const char *b) { - const char *p; + t = xescape(u, "/ "); + free(u); - /* Returns true if any of the chars in a are in b. */ - for (p = a; *p; p++) - if (strchr(b, *p)) - return true; + if (!t) + return NULL; - return false; -} + r = asprintf(&dn, "/dev/disk/by-uuid/%s", t); + free(t); -char *format_timestamp(char *buf, size_t l, usec_t t) { - struct tm tm; - time_t sec; + if (r < 0) + return NULL; - assert(buf); - assert(l > 0); + return dn; + } - if (t <= 0) - return NULL; + return strdup(p); +} - sec = (time_t) (t / USEC_PER_SEC); +void filter_environ(const char *prefix) { + int i, j; + assert(prefix); - if (strftime(buf, l, "%a, %d %b %Y %H:%M:%S %z", localtime_r(&sec, &tm)) <= 0) - return NULL; + if (!environ) + return; - return buf; -} + for (i = 0, j = 0; environ[i]; i++) { -char *format_timespan(char *buf, size_t l, usec_t t) { - static const struct { - const char *suffix; - usec_t usec; - } table[] = { - { "w", USEC_PER_WEEK }, - { "d", USEC_PER_DAY }, - { "h", USEC_PER_HOUR }, - { "min", USEC_PER_MINUTE }, - { "s", USEC_PER_SEC }, - { "ms", USEC_PER_MSEC }, - { "us", 1 }, - }; + if (startswith(environ[i], prefix)) + continue; - unsigned i; - char *p = buf; + environ[j++] = environ[i]; + } - assert(buf); - assert(l > 0); + environ[j] = NULL; +} - if (t == (usec_t) -1) - return NULL; +bool tty_is_vc(const char *tty) { + assert(tty); - /* The result of this function can be parsed with parse_usec */ + if (startswith(tty, "/dev/")) + tty += 5; - for (i = 0; i < ELEMENTSOF(table); i++) { - int k; - size_t n; + return vtnr_from_tty(tty) >= 0; +} + +int vtnr_from_tty(const char *tty) { + int i, r; - if (t < table[i].usec) - continue; + assert(tty); - if (l <= 1) - break; + if (startswith(tty, "/dev/")) + tty += 5; - k = snprintf(p, l, "%s%llu%s", p > buf ? " " : "", (unsigned long long) (t / table[i].usec), table[i].suffix); - n = MIN((size_t) k, l); + if (!startswith(tty, "tty") ) + return -EINVAL; - l -= n; - p += n; + if (tty[3] < '0' || tty[3] > '9') + return -EINVAL; - t %= table[i].usec; - } + r = safe_atoi(tty+3, &i); + if (r < 0) + return r; - *p = 0; + if (i < 0 || i > 63) + return -EINVAL; - return buf; + return i; } -bool fstype_is_network(const char *fstype) { - static const char * const table[] = { - "cifs", - "smbfs", - "ncpfs", - "nfs", - "nfs4", - "gfs", - "gfs2" - }; - - unsigned i; +bool tty_is_vc_resolve(const char *tty) { + char *active = NULL; + bool b; + + assert(tty); + + if (startswith(tty, "/dev/")) + tty += 5; + + /* Resolve where /dev/console is pointing to */ + if (streq(tty, "console")) + if (read_one_line_file("/sys/class/tty/console/active", &active) >= 0) { + /* If multiple log outputs are configured the + * last one is what /dev/console points to */ + tty = strrchr(active, ' '); + if (tty) + tty++; + else + tty = active; + } - for (i = 0; i < ELEMENTSOF(table); i++) - if (streq(table[i], fstype)) - return true; + b = tty_is_vc(tty); + free(active); - return false; + return b; } -int chvt(int vt) { - int fd, r = 0; - - if ((fd = open("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC)) < 0) - return -errno; +const char *default_term_for_tty(const char *tty) { + assert(tty); - if (vt < 0) { - int tiocl[2] = { - TIOCL_GETKMSGREDIRECT, - 0 - }; + return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt100"; +} - if (ioctl(fd, TIOCLINUX, tiocl) < 0) - return -errno; +bool dirent_is_file(const struct dirent *de) { + assert(de); - vt = tiocl[0] <= 0 ? 1 : tiocl[0]; - } + if (ignore_file(de->d_name)) + return false; - if (ioctl(fd, VT_ACTIVATE, vt) < 0) - r = -errno; + if (de->d_type != DT_REG && + de->d_type != DT_LNK && + de->d_type != DT_UNKNOWN) + return false; - close_nointr_nofail(r); - return r; + return true; } -int read_one_char(FILE *f, char *ret, bool *need_nl) { - struct termios old_termios, new_termios; - char c; - char line[1024]; - - assert(f); - assert(ret); +bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) { + assert(de); - if (tcgetattr(fileno(f), &old_termios) >= 0) { - new_termios = old_termios; + if (!dirent_is_file(de)) + return false; - new_termios.c_lflag &= ~ICANON; - new_termios.c_cc[VMIN] = 1; - new_termios.c_cc[VTIME] = 0; + return endswith(de->d_name, suffix); +} - if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) { - size_t k; +void execute_directory(const char *directory, DIR *d, char *argv[]) { + DIR *_d = NULL; + struct dirent *de; + Hashmap *pids = NULL; - k = fread(&c, 1, 1, f); + assert(directory); - tcsetattr(fileno(f), TCSADRAIN, &old_termios); + /* Executes all binaries in a directory in parallel and waits + * until all they all finished. */ - if (k <= 0) - return -EIO; + if (!d) { + if (!(_d = opendir(directory))) { - if (need_nl) - *need_nl = c != '\n'; + if (errno == ENOENT) + return; - *ret = c; - return 0; + log_error("Failed to enumerate directory %s: %m", directory); + return; } + + d = _d; } - if (!(fgets(line, sizeof(line), f))) - return -EIO; + if (!(pids = hashmap_new(trivial_hash_func, trivial_compare_func))) { + log_error("Failed to allocate set."); + goto finish; + } - truncate_nl(line); + while ((de = readdir(d))) { + char *path; + pid_t pid; + int k; - if (strlen(line) != 1) - return -EBADMSG; + if (!dirent_is_file(de)) + continue; - if (need_nl) - *need_nl = false; + if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) { + log_error("Out of memory"); + continue; + } - *ret = line[0]; - return 0; -} + if ((pid = fork()) < 0) { + log_error("Failed to fork: %m"); + free(path); + continue; + } -int ask(char *ret, const char *replies, const char *text, ...) { - assert(ret); - assert(replies); - assert(text); + if (pid == 0) { + char *_argv[2]; + /* Child */ - for (;;) { - va_list ap; - char c; - int r; - bool need_nl = true; + if (!argv) { + _argv[0] = path; + _argv[1] = NULL; + argv = _argv; + } else + if (!argv[0]) + argv[0] = path; - fputs("\x1B[1m", stdout); + execv(path, argv); - va_start(ap, text); - vprintf(text, ap); - va_end(ap); + log_error("Failed to execute %s: %m", path); + _exit(EXIT_FAILURE); + } - fputs("\x1B[0m", stdout); + log_debug("Spawned %s as %lu", path, (unsigned long) pid); - fflush(stdout); + if ((k = hashmap_put(pids, UINT_TO_PTR(pid), path)) < 0) { + log_error("Failed to add PID to set: %s", strerror(-k)); + free(path); + } + } - if ((r = read_one_char(stdin, &c, &need_nl)) < 0) { + while (!hashmap_isempty(pids)) { + pid_t pid = PTR_TO_UINT(hashmap_first_key(pids)); + siginfo_t si; + char *path; - if (r == -EBADMSG) { - puts("Bad input, please try again."); + zero(si); + if (waitid(P_PID, pid, &si, WEXITED) < 0) { + + if (errno == EINTR) continue; - } - putchar('\n'); - return r; + log_error("waitid() failed: %m"); + goto finish; } - if (need_nl) - putchar('\n'); + if ((path = hashmap_remove(pids, UINT_TO_PTR(si.si_pid)))) { + if (!is_clean_exit(si.si_code, si.si_status)) { + if (si.si_code == CLD_EXITED) + log_error("%s exited with exit status %i.", path, si.si_status); + else + log_error("%s terminated by signal %s.", path, signal_to_string(si.si_status)); + } else + log_debug("%s exited successfully.", path); - if (strchr(replies, c)) { - *ret = c; - return 0; + free(path); } - - puts("Read unexpected character, please try again."); } -} - -int reset_terminal(int fd) { - struct termios termios; - int r = 0; - long arg; - /* Set terminal to some sane defaults */ +finish: + if (_d) + closedir(_d); - assert(fd >= 0); + if (pids) + hashmap_free_free(pids); +} - /* First, unlock termios */ - zero(termios); - ioctl(fd, TIOCSLCKTRMIOS, &termios); +int kill_and_sigcont(pid_t pid, int sig) { + int r; - /* Disable exclusive mode, just in case */ - ioctl(fd, TIOCNXCL); + r = kill(pid, sig) < 0 ? -errno : 0; - /* Enable console unicode mode */ - arg = K_UNICODE; - ioctl(fd, KDSKBMODE, &arg); + if (r >= 0) + kill(pid, SIGCONT); - if (tcgetattr(fd, &termios) < 0) { - r = -errno; - goto finish; - } + return r; +} - /* We only reset the stuff that matters to the software. How - * hardware is set up we don't touch assuming that somebody - * else will do that for us */ +bool nulstr_contains(const char*nulstr, const char *needle) { + const char *i; - termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC); - termios.c_iflag |= ICRNL | IMAXBEL | IUTF8; - termios.c_oflag |= ONLCR; - termios.c_cflag |= CREAD; - termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE; + if (!nulstr) + return false; - termios.c_cc[VINTR] = 03; /* ^C */ - termios.c_cc[VQUIT] = 034; /* ^\ */ - termios.c_cc[VERASE] = 0177; - termios.c_cc[VKILL] = 025; /* ^X */ - termios.c_cc[VEOF] = 04; /* ^D */ - termios.c_cc[VSTART] = 021; /* ^Q */ - termios.c_cc[VSTOP] = 023; /* ^S */ - termios.c_cc[VSUSP] = 032; /* ^Z */ - termios.c_cc[VLNEXT] = 026; /* ^V */ - termios.c_cc[VWERASE] = 027; /* ^W */ - termios.c_cc[VREPRINT] = 022; /* ^R */ - termios.c_cc[VEOL] = 0; - termios.c_cc[VEOL2] = 0; + NULSTR_FOREACH(i, nulstr) + if (streq(i, needle)) + return true; - termios.c_cc[VTIME] = 0; - termios.c_cc[VMIN] = 1; + return false; +} - if (tcsetattr(fd, TCSANOW, &termios) < 0) - r = -errno; +bool plymouth_running(void) { + return access("/run/plymouth/pid", F_OK) >= 0; +} -finish: - /* Just in case, flush all crap out */ - tcflush(fd, TCIOFLUSH); +void parse_syslog_priority(char **p, int *priority) { + int a = 0, b = 0, c = 0; + int k; - return r; -} + assert(p); + assert(*p); + assert(priority); -int open_terminal(const char *name, int mode) { - int fd, r; + if ((*p)[0] != '<') + return; - if ((fd = open(name, mode)) < 0) - return -errno; + if (!strchr(*p, '>')) + return; - if ((r = isatty(fd)) < 0) { - close_nointr_nofail(fd); - return -errno; - } + if ((*p)[2] == '>') { + c = undecchar((*p)[1]); + k = 3; + } else if ((*p)[3] == '>') { + b = undecchar((*p)[1]); + c = undecchar((*p)[2]); + k = 4; + } else if ((*p)[4] == '>') { + a = undecchar((*p)[1]); + b = undecchar((*p)[2]); + c = undecchar((*p)[3]); + k = 5; + } else + return; - if (!r) { - close_nointr_nofail(fd); - return -ENOTTY; - } + if (a < 0 || b < 0 || c < 0) + return; - return fd; + *priority = a*100+b*10+c; + *p += k; } -int flush_fd(int fd) { - struct pollfd pollfd; +void skip_syslog_pid(char **buf) { + char *p; - zero(pollfd); - pollfd.fd = fd; - pollfd.events = POLLIN; + assert(buf); + assert(*buf); - for (;;) { - char buf[1024]; - ssize_t l; - int r; + p = *buf; - if ((r = poll(&pollfd, 1, 0)) < 0) { + if (*p != '[') + return; - if (errno == EINTR) - continue; + p++; + p += strspn(p, "0123456789"); - return -errno; - } + if (*p != ']') + return; - if (r == 0) - return 0; + p++; - if ((l = read(fd, buf, sizeof(buf))) < 0) { + *buf = p; +} - if (errno == EINTR) - continue; +void skip_syslog_date(char **buf) { + enum { + LETTER, + SPACE, + NUMBER, + SPACE_OR_NUMBER, + COLON + } sequence[] = { + LETTER, LETTER, LETTER, + SPACE, + SPACE_OR_NUMBER, NUMBER, + SPACE, + SPACE_OR_NUMBER, NUMBER, + COLON, + SPACE_OR_NUMBER, NUMBER, + COLON, + SPACE_OR_NUMBER, NUMBER, + SPACE + }; - if (errno == EAGAIN) - return 0; + char *p; + unsigned i; - return -errno; - } + assert(buf); + assert(*buf); - if (l <= 0) - return 0; - } -} + p = *buf; -int acquire_terminal(const char *name, bool fail, bool force, bool ignore_tiocstty_eperm) { - int fd = -1, notify = -1, r, wd = -1; + for (i = 0; i < ELEMENTSOF(sequence); i++, p++) { - assert(name); + if (!*p) + return; - /* We use inotify to be notified when the tty is closed. We - * create the watch before checking if we can actually acquire - * it, so that we don't lose any event. - * - * Note: strictly speaking this actually watches for the - * device being closed, it does *not* really watch whether a - * tty loses its controlling process. However, unless some - * rogue process uses TIOCNOTTY on /dev/tty *after* closing - * its tty otherwise this will not become a problem. As long - * as the administrator makes sure not configure any service - * on the same tty as an untrusted user this should not be a - * problem. (Which he probably should not do anyway.) */ + switch (sequence[i]) { + + case SPACE: + if (*p != ' ') + return; + break; + + case SPACE_OR_NUMBER: + if (*p == ' ') + break; - if (!fail && !force) { - if ((notify = inotify_init1(IN_CLOEXEC)) < 0) { - r = -errno; - goto fail; - } + /* fall through */ - if ((wd = inotify_add_watch(notify, name, IN_CLOSE)) < 0) { - r = -errno; - goto fail; - } - } + case NUMBER: + if (*p < '0' || *p > '9') + return; - for (;;) { - if (notify >= 0) - if ((r = flush_fd(notify)) < 0) - goto fail; + break; - /* We pass here O_NOCTTY only so that we can check the return - * value TIOCSCTTY and have a reliable way to figure out if we - * successfully became the controlling process of the tty */ - if ((fd = open_terminal(name, O_RDWR|O_NOCTTY)) < 0) - return -errno; + case LETTER: + if (!(*p >= 'A' && *p <= 'Z') && + !(*p >= 'a' && *p <= 'z')) + return; - /* First, try to get the tty */ - r = ioctl(fd, TIOCSCTTY, force); + break; - /* Sometimes it makes sense to ignore TIOCSCTTY - * returning EPERM, i.e. when very likely we already - * are have this controlling terminal. */ - if (r < 0 && errno == EPERM && ignore_tiocstty_eperm) - r = 0; + case COLON: + if (*p != ':') + return; + break; - if (r < 0 && (force || fail || errno != EPERM)) { - r = -errno; - goto fail; } + } - if (r >= 0) - break; + *buf = p; +} - assert(!fail); - assert(!force); - assert(notify >= 0); +int have_effective_cap(int value) { + cap_t cap; + cap_flag_value_t fv; + int r; - for (;;) { - struct inotify_event e; - ssize_t l; + if (!(cap = cap_get_proc())) + return -errno; - if ((l = read(notify, &e, sizeof(e))) != sizeof(e)) { + if (cap_get_flag(cap, value, CAP_EFFECTIVE, &fv) < 0) + r = -errno; + else + r = fv == CAP_SET; - if (l < 0) { + cap_free(cap); + return r; +} - if (errno == EINTR) - continue; +char* strshorten(char *s, size_t l) { + assert(s); - r = -errno; - } else - r = -EIO; + if (l < strlen(s)) + s[l] = 0; - goto fail; - } + return s; +} - if (e.wd != wd || !(e.mask & IN_CLOSE)) { - r = -EIO; - goto fail; - } +static bool hostname_valid_char(char c) { + return + (c >= 'a' && c <= 'z') || + (c >= 'A' && c <= 'Z') || + (c >= '0' && c <= '9') || + c == '-' || + c == '_' || + c == '.'; +} - break; - } +bool hostname_is_valid(const char *s) { + const char *p; - /* We close the tty fd here since if the old session - * ended our handle will be dead. It's important that - * we do this after sleeping, so that we don't enter - * an endless loop. */ - close_nointr_nofail(fd); - } + if (isempty(s)) + return false; - if (notify >= 0) - close_nointr_nofail(notify); + for (p = s; *p; p++) + if (!hostname_valid_char(*p)) + return false; - if ((r = reset_terminal(fd)) < 0) - log_warning("Failed to reset terminal: %s", strerror(-r)); + if (p-s > HOST_NAME_MAX) + return false; - return fd; + return true; +} -fail: - if (fd >= 0) - close_nointr_nofail(fd); +char* hostname_cleanup(char *s) { + char *p, *d; - if (notify >= 0) - close_nointr_nofail(notify); + for (p = s, d = s; *p; p++) + if ((*p >= 'a' && *p <= 'z') || + (*p >= 'A' && *p <= 'Z') || + (*p >= '0' && *p <= '9') || + *p == '-' || + *p == '_' || + *p == '.') + *(d++) = *p; - return r; + *d = 0; + + strshorten(s, HOST_NAME_MAX); + return s; } -int release_terminal(void) { - int r = 0, fd; - struct sigaction sa_old, sa_new; +int pipe_eof(int fd) { + struct pollfd pollfd; + int r; + + zero(pollfd); + pollfd.fd = fd; + pollfd.events = POLLIN|POLLHUP; - if ((fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY)) < 0) + r = poll(&pollfd, 1, 0); + if (r < 0) return -errno; - /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed - * by our own TIOCNOTTY */ + if (r == 0) + return 0; - zero(sa_new); - sa_new.sa_handler = SIG_IGN; - sa_new.sa_flags = SA_RESTART; - assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0); + return pollfd.revents & POLLHUP; +} - if (ioctl(fd, TIOCNOTTY) < 0) - r = -errno; +int fd_wait_for_event(int fd, int event, usec_t t) { + struct pollfd pollfd; + int r; - assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0); + zero(pollfd); + pollfd.fd = fd; + pollfd.events = event; - close_nointr_nofail(fd); - return r; + r = poll(&pollfd, 1, t == (usec_t) -1 ? -1 : (int) (t / USEC_PER_MSEC)); + if (r < 0) + return -errno; + + if (r == 0) + return 0; + + return pollfd.revents; } -int sigaction_many(const struct sigaction *sa, ...) { - va_list ap; - int r = 0, sig; +int fopen_temporary(const char *path, FILE **_f, char **_temp_path) { + FILE *f; + char *t; + const char *fn; + size_t k; + int fd; - va_start(ap, sa); - while ((sig = va_arg(ap, int)) > 0) - if (sigaction(sig, sa, NULL) < 0) - r = -errno; - va_end(ap); + assert(path); + assert(_f); + assert(_temp_path); - return r; -} + t = new(char, strlen(path) + 1 + 6 + 1); + if (!t) + return -ENOMEM; -int ignore_signals(int sig, ...) { - struct sigaction sa; - va_list ap; - int r = 0; + fn = file_name_from_path(path); + k = fn-path; + memcpy(t, path, k); + t[k] = '.'; + stpcpy(stpcpy(t+k+1, fn), "XXXXXX"); - zero(sa); - sa.sa_handler = SIG_IGN; - sa.sa_flags = SA_RESTART; + fd = mkostemp(t, O_WRONLY|O_CLOEXEC); + if (fd < 0) { + free(t); + return -errno; + } - if (sigaction(sig, &sa, NULL) < 0) - r = -errno; + f = fdopen(fd, "we"); + if (!f) { + unlink(t); + free(t); + return -errno; + } - va_start(ap, sig); - while ((sig = va_arg(ap, int)) > 0) - if (sigaction(sig, &sa, NULL) < 0) - r = -errno; - va_end(ap); + *_f = f; + *_temp_path = t; - return r; + return 0; } -int default_signals(int sig, ...) { - struct sigaction sa; - va_list ap; - int r = 0; +int terminal_vhangup_fd(int fd) { + assert(fd >= 0); - zero(sa); - sa.sa_handler = SIG_DFL; - sa.sa_flags = SA_RESTART; + if (ioctl(fd, TIOCVHANGUP) < 0) + return -errno; - if (sigaction(sig, &sa, NULL) < 0) - r = -errno; + return 0; +} - va_start(ap, sig); - while ((sig = va_arg(ap, int)) > 0) - if (sigaction(sig, &sa, NULL) < 0) - r = -errno; - va_end(ap); +int terminal_vhangup(const char *name) { + int fd, r; + + fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC); + if (fd < 0) + return fd; + + r = terminal_vhangup_fd(fd); + close_nointr_nofail(fd); return r; } -int close_pipe(int p[]) { - int a = 0, b = 0; +int vt_disallocate(const char *name) { + int fd, r; + unsigned u; - assert(p); + /* Deallocate the VT if possible. If not possible + * (i.e. because it is the active one), at least clear it + * entirely (including the scrollback buffer) */ - if (p[0] >= 0) { - a = close_nointr(p[0]); - p[0] = -1; - } + if (!startswith(name, "/dev/")) + return -EINVAL; - if (p[1] >= 0) { - b = close_nointr(p[1]); - p[1] = -1; + if (!tty_is_vc(name)) { + /* So this is not a VT. I guess we cannot deallocate + * it then. But let's at least clear the screen */ + + fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC); + if (fd < 0) + return fd; + + loop_write(fd, + "\033[r" /* clear scrolling region */ + "\033[H" /* move home */ + "\033[2J", /* clear screen */ + 10, false); + close_nointr_nofail(fd); + + return 0; } - return a < 0 ? a : b; -} + if (!startswith(name, "/dev/tty")) + return -EINVAL; -ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) { - uint8_t *p; - ssize_t n = 0; + r = safe_atou(name+8, &u); + if (r < 0) + return r; - assert(fd >= 0); - assert(buf); + if (u <= 0) + return -EINVAL; - p = buf; + /* Try to deallocate */ + fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC); + if (fd < 0) + return fd; - while (nbytes > 0) { - ssize_t k; + r = ioctl(fd, VT_DISALLOCATE, u); + close_nointr_nofail(fd); - if ((k = read(fd, p, nbytes)) <= 0) { + if (r >= 0) + return 0; - if (k < 0 && errno == EINTR) - continue; + if (errno != EBUSY) + return -errno; - if (k < 0 && errno == EAGAIN && do_poll) { - struct pollfd pollfd; + /* Couldn't deallocate, so let's clear it fully with + * scrollback */ + fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC); + if (fd < 0) + return fd; + + loop_write(fd, + "\033[r" /* clear scrolling region */ + "\033[H" /* move home */ + "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */ + 10, false); + close_nointr_nofail(fd); - zero(pollfd); - pollfd.fd = fd; - pollfd.events = POLLIN; + return 0; +} - if (poll(&pollfd, 1, -1) < 0) { - if (errno == EINTR) - continue; +static int files_add(Hashmap *h, const char *path, const char *suffix) { + DIR *dir; + struct dirent buffer, *de; + int r = 0; - return n > 0 ? n : -errno; - } + dir = opendir(path); + if (!dir) { + if (errno == ENOENT) + return 0; + return -errno; + } - if (pollfd.revents != POLLIN) - return n > 0 ? n : -EIO; + for (;;) { + int k; + char *p, *f; - continue; - } + k = readdir_r(dir, &buffer, &de); + if (k != 0) { + r = -k; + goto finish; + } - return n > 0 ? n : (k < 0 ? -errno : 0); + if (!de) + break; + + if (!dirent_is_file_with_suffix(de, suffix)) + continue; + + if (asprintf(&p, "%s/%s", path, de->d_name) < 0) { + r = -ENOMEM; + goto finish; } - p += k; - nbytes -= k; - n += k; + f = canonicalize_file_name(p); + if (!f) { + log_error("Failed to canonicalize file name '%s': %m", p); + free(p); + continue; + } + free(p); + + log_debug("found: %s\n", f); + if (hashmap_put(h, file_name_from_path(f), f) <= 0) + free(f); } - return n; +finish: + closedir(dir); + return r; +} + +static int base_cmp(const void *a, const void *b) { + const char *s1, *s2; + + s1 = *(char * const *)a; + s2 = *(char * const *)b; + return strcmp(file_name_from_path(s1), file_name_from_path(s2)); } -ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) { - const uint8_t *p; - ssize_t n = 0; +int conf_files_list(char ***strv, const char *suffix, const char *dir, ...) { + Hashmap *fh = NULL; + char **dirs = NULL; + char **files = NULL; + char **p; + va_list ap; + int r = 0; - assert(fd >= 0); - assert(buf); + va_start(ap, dir); + dirs = strv_new_ap(dir, ap); + va_end(ap); + if (!dirs) { + r = -ENOMEM; + goto finish; + } + if (!strv_path_canonicalize(dirs)) { + r = -ENOMEM; + goto finish; + } + if (!strv_uniq(dirs)) { + r = -ENOMEM; + goto finish; + } - p = buf; + fh = hashmap_new(string_hash_func, string_compare_func); + if (!fh) { + r = -ENOMEM; + goto finish; + } - while (nbytes > 0) { - ssize_t k; + STRV_FOREACH(p, dirs) { + if (files_add(fh, *p, suffix) < 0) { + log_error("Failed to search for files."); + r = -EINVAL; + goto finish; + } + } - if ((k = write(fd, p, nbytes)) <= 0) { + files = hashmap_get_strv(fh); + if (files == NULL) { + log_error("Failed to compose list of files."); + r = -ENOMEM; + goto finish; + } - if (k < 0 && errno == EINTR) - continue; + qsort(files, hashmap_size(fh), sizeof(char *), base_cmp); - if (k < 0 && errno == EAGAIN && do_poll) { - struct pollfd pollfd; +finish: + strv_free(dirs); + hashmap_free(fh); + *strv = files; + return r; +} - zero(pollfd); - pollfd.fd = fd; - pollfd.events = POLLOUT; +int hwclock_is_localtime(void) { + FILE *f; + bool local = false; + + /* + * The third line of adjtime is "UTC" or "LOCAL" or nothing. + * # /etc/adjtime + * 0.0 0 0 + * 0 + * UTC + */ + f = fopen("/etc/adjtime", "re"); + if (f) { + char line[LINE_MAX]; + bool b; - if (poll(&pollfd, 1, -1) < 0) { - if (errno == EINTR) - continue; + b = fgets(line, sizeof(line), f) && + fgets(line, sizeof(line), f) && + fgets(line, sizeof(line), f); - return n > 0 ? n : -errno; - } + fclose(f); - if (pollfd.revents != POLLOUT) - return n > 0 ? n : -EIO; + if (!b) + return -EIO; - continue; - } - return n > 0 ? n : (k < 0 ? -errno : 0); - } + truncate_nl(line); + local = streq(line, "LOCAL"); - p += k; - nbytes -= k; - n += k; - } + } else if (errno != -ENOENT) + return -errno; - return n; + return local; } -int path_is_mount_point(const char *t) { - struct stat a, b; - char *parent; - int r; +int hwclock_apply_localtime_delta(int *min) { + const struct timeval *tv_null = NULL; + struct timespec ts; + struct tm *tm; + int minuteswest; + struct timezone tz; - if (lstat(t, &a) < 0) { - if (errno == ENOENT) - return 0; + assert_se(clock_gettime(CLOCK_REALTIME, &ts) == 0); + assert_se(tm = localtime(&ts.tv_sec)); + minuteswest = tm->tm_gmtoff / 60; + tz.tz_minuteswest = -minuteswest; + tz.tz_dsttime = 0; /* DST_NONE*/ + + /* + * If the hardware clock does not run in UTC, but in local time: + * The very first time we set the kernel's timezone, it will warp + * the clock so that it runs in UTC instead of local time. + */ + if (settimeofday(tv_null, &tz) < 0) return -errno; - } + if (min) + *min = minuteswest; + return 0; +} - if ((r = parent_of_path(t, &parent)) < 0) - return r; +int hwclock_reset_localtime_delta(void) { + const struct timeval *tv_null = NULL; + struct timezone tz; - r = lstat(parent, &b); - free(parent); + tz.tz_minuteswest = 0; + tz.tz_dsttime = 0; /* DST_NONE*/ - if (r < 0) + if (settimeofday(tv_null, &tz) < 0) return -errno; - return a.st_dev != b.st_dev; + return 0; } -int parse_usec(const char *t, usec_t *usec) { - static const struct { - const char *suffix; - usec_t usec; - } table[] = { - { "sec", USEC_PER_SEC }, - { "s", USEC_PER_SEC }, - { "min", USEC_PER_MINUTE }, - { "hr", USEC_PER_HOUR }, - { "h", USEC_PER_HOUR }, - { "d", USEC_PER_DAY }, - { "w", USEC_PER_WEEK }, - { "msec", USEC_PER_MSEC }, - { "ms", USEC_PER_MSEC }, - { "m", USEC_PER_MINUTE }, - { "usec", 1ULL }, - { "us", 1ULL }, - { "", USEC_PER_SEC }, - }; - - const char *p; - usec_t r = 0; - - assert(t); - assert(usec); +int rtc_open(int flags) { + int fd; + DIR *d; - p = t; - do { - long long l; - char *e; - unsigned i; + /* First, we try to make use of the /dev/rtc symlink. If that + * doesn't exist, we open the first RTC which has hctosys=1 + * set. If we don't find any we just take the first RTC that + * exists at all. */ - errno = 0; - l = strtoll(p, &e, 10); + fd = open("/dev/rtc", flags); + if (fd >= 0) + return fd; - if (errno != 0) - return -errno; + d = opendir("/sys/class/rtc"); + if (!d) + goto fallback; - if (l < 0) - return -ERANGE; + for (;;) { + char *p, *v; + struct dirent buf, *de; + int r; - if (e == p) - return -EINVAL; + r = readdir_r(d, &buf, &de); + if (r != 0) + goto fallback; - e += strspn(e, WHITESPACE); + if (!de) + goto fallback; - for (i = 0; i < ELEMENTSOF(table); i++) - if (startswith(e, table[i].suffix)) { - r += (usec_t) l * table[i].usec; - p = e + strlen(table[i].suffix); - break; - } + if (ignore_file(de->d_name)) + continue; - if (i >= ELEMENTSOF(table)) - return -EINVAL; + p = join("/sys/class/rtc/", de->d_name, "/hctosys", NULL); + if (!p) { + closedir(d); + return -ENOMEM; + } - } while (*p != 0); + r = read_one_line_file(p, &v); + free(p); - *usec = r; + if (r < 0) + continue; - return 0; -} + r = parse_boolean(v); + free(v); -int make_stdio(int fd) { - int r, s, t; + if (r <= 0) + continue; - assert(fd >= 0); + p = strappend("/dev/", de->d_name); + fd = open(p, flags); + free(p); - r = dup2(fd, STDIN_FILENO); - s = dup2(fd, STDOUT_FILENO); - t = dup2(fd, STDERR_FILENO); + if (fd >= 0) { + closedir(d); + return fd; + } + } - if (fd >= 3) - close_nointr_nofail(fd); +fallback: + if (d) + closedir(d); - if (r < 0 || s < 0 || t < 0) + fd = open("/dev/rtc0", flags); + if (fd < 0) return -errno; - return 0; + return fd; } -bool is_clean_exit(int code, int status) { +int hwclock_get_time(struct tm *tm) { + int fd; + int err = 0; + + assert(tm); + + fd = rtc_open(O_RDONLY|O_CLOEXEC); + if (fd < 0) + return -errno; - if (code == CLD_EXITED) - return status == 0; + /* This leaves the timezone fields of struct tm + * uninitialized! */ + if (ioctl(fd, RTC_RD_TIME, tm) < 0) + err = -errno; - /* If a daemon does not implement handlers for some of the - * signals that's not considered an unclean shutdown */ - if (code == CLD_KILLED) - return - status == SIGHUP || - status == SIGINT || - status == SIGTERM || - status == SIGPIPE; + /* We don't now daylight saving, so we reset this in order not + * to confused mktime(). */ + tm->tm_isdst = -1; - return false; + close_nointr_nofail(fd); + + return err; } -bool is_device_path(const char *path) { +int hwclock_set_time(const struct tm *tm) { + int fd; + int err = 0; - /* Returns true on paths that refer to a device, either in - * sysfs or in /dev */ + assert(tm); - return - path_startswith(path, "/dev/") || - path_startswith(path, "/sys/"); + fd = rtc_open(O_RDONLY|O_CLOEXEC); + if (fd < 0) + return -errno; + + if (ioctl(fd, RTC_SET_TIME, tm) < 0) + err = -errno; + + close_nointr_nofail(fd); + + return err; } -int dir_is_empty(const char *path) { - DIR *d; - int r; - struct dirent buf, *de; +int copy_file(const char *from, const char *to) { + int r, fdf, fdt; - if (!(d = opendir(path))) + assert(from); + assert(to); + + fdf = open(from, O_RDONLY|O_CLOEXEC|O_NOCTTY); + if (fdf < 0) return -errno; + fdt = open(to, O_WRONLY|O_CREAT|O_EXCL|O_CLOEXEC|O_NOCTTY, 0644); + if (fdt < 0) { + close_nointr_nofail(fdf); + return -errno; + } + for (;;) { - if ((r = readdir_r(d, &buf, &de)) > 0) { - r = -r; - break; - } + char buf[PIPE_BUF]; + ssize_t n, k; - if (!de) { - r = 1; - break; - } + n = read(fdf, buf, sizeof(buf)); + if (n < 0) { + r = -errno; - if (!ignore_file(de->d_name)) { - r = 0; - break; + close_nointr_nofail(fdf); + close_nointr(fdt); + unlink(to); + + return r; } - } - closedir(d); - return r; -} + if (n == 0) + break; -unsigned long long random_ull(void) { - int fd; - uint64_t ull; - ssize_t r; + errno = 0; + k = loop_write(fdt, buf, n, false); + if (n != k) { + r = k < 0 ? k : (errno ? -errno : -EIO); - if ((fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY)) < 0) - goto fallback; + close_nointr_nofail(fdf); + close_nointr(fdt); - r = loop_read(fd, &ull, sizeof(ull), true); - close_nointr_nofail(fd); + unlink(to); + return r; + } + } - if (r != sizeof(ull)) - goto fallback; + close_nointr_nofail(fdf); + r = close_nointr(fdt); - return ull; + if (r < 0) { + unlink(to); + return r; + } -fallback: - return random() * RAND_MAX + random(); + return 0; } -void rename_process(const char name[8]) { - assert(name); - - prctl(PR_SET_NAME, name); +int symlink_or_copy(const char *from, const char *to) { + char *pf = NULL, *pt = NULL; + struct stat a, b; + int r; - /* This is a like a poor man's setproctitle(). The string - * passed should fit in 7 chars (i.e. the length of - * "systemd") */ + assert(from); + assert(to); - if (program_invocation_name) - strncpy(program_invocation_name, name, strlen(program_invocation_name)); -} + if (parent_of_path(from, &pf) < 0 || + parent_of_path(to, &pt) < 0) { + r = -ENOMEM; + goto finish; + } -void sigset_add_many(sigset_t *ss, ...) { - va_list ap; - int sig; + if (stat(pf, &a) < 0 || + stat(pt, &b) < 0) { + r = -errno; + goto finish; + } - assert(ss); + if (a.st_dev != b.st_dev) { + free(pf); + free(pt); - va_start(ap, ss); - while ((sig = va_arg(ap, int)) > 0) - assert_se(sigaddset(ss, sig) == 0); - va_end(ap); -} + return copy_file(from, to); + } -char* gethostname_malloc(void) { - struct utsname u; + if (symlink(from, to) < 0) { + r = -errno; + goto finish; + } - assert_se(uname(&u) >= 0); + r = 0; - if (u.nodename[0]) - return strdup(u.nodename); +finish: + free(pf); + free(pt); - return strdup(u.sysname); + return r; } -int getmachineid_malloc(char **b) { +int symlink_or_copy_atomic(const char *from, const char *to) { + char *t, *x; + const char *fn; + size_t k; + unsigned long long ull; + unsigned i; int r; - assert(b); + assert(from); + assert(to); - if ((r = read_one_line_file("/var/lib/dbus/machine-id", b)) < 0) - return r; + t = new(char, strlen(to) + 1 + 16 + 1); + if (!t) + return -ENOMEM; - strstrip(*b); - return 0; -} + fn = file_name_from_path(to); + k = fn-to; + memcpy(t, to, k); + t[k] = '.'; + x = stpcpy(t+k+1, fn); -char* getlogname_malloc(void) { - uid_t uid; - long bufsize; - char *buf, *name; - struct passwd pwbuf, *pw = NULL; - struct stat st; + ull = random_ull(); + for (i = 0; i < 16; i++) { + *(x++) = hexchar(ull & 0xF); + ull >>= 4; + } - if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0) - uid = st.st_uid; - else - uid = getuid(); + *x = 0; - /* Shortcut things to avoid NSS lookups */ - if (uid == 0) - return strdup("root"); + r = symlink_or_copy(from, t); + if (r < 0) { + unlink(t); + free(t); + return r; + } - if ((bufsize = sysconf(_SC_GETPW_R_SIZE_MAX)) <= 0) - bufsize = 4096; + if (rename(t, to) < 0) { + r = -errno; + unlink(t); + free(t); + return r; + } - if (!(buf = malloc(bufsize))) - return NULL; + free(t); + return r; +} - if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw) { - name = strdup(pw->pw_name); - free(buf); - return name; - } +int audit_session_from_pid(pid_t pid, uint32_t *id) { + char *s; + uint32_t u; + int r; - free(buf); + assert(id); - if (asprintf(&name, "%lu", (unsigned long) uid) < 0) - return NULL; + if (have_effective_cap(CAP_AUDIT_CONTROL) <= 0) + return -ENOENT; - return name; -} + if (pid == 0) + r = read_one_line_file("/proc/self/sessionid", &s); + else { + char *p; -int getttyname_malloc(char **r) { - char path[PATH_MAX], *p, *c; + if (asprintf(&p, "/proc/%lu/sessionid", (unsigned long) pid) < 0) + return -ENOMEM; - assert(r); + r = read_one_line_file(p, &s); + free(p); + } - if (ttyname_r(STDIN_FILENO, path, sizeof(path)) < 0) - return -errno; + if (r < 0) + return r; - char_array_0(path); + r = safe_atou32(s, &u); + free(s); - p = path; - if (startswith(path, "/dev/")) - p += 5; + if (r < 0) + return r; - if (!(c = strdup(p))) - return -ENOMEM; + if (u == (uint32_t) -1 || u <= 0) + return -ENOENT; - *r = c; + *id = u; return 0; } -static int rm_rf_children(int fd, bool only_dirs) { - DIR *d; - int ret = 0; +int audit_loginuid_from_pid(pid_t pid, uid_t *uid) { + char *s; + uid_t u; + int r; - assert(fd >= 0); + assert(uid); - /* This returns the first error we run into, but nevertheless - * tries to go on */ + /* Only use audit login uid if we are executed with sufficient + * capabilities so that pam_loginuid could do its job. If we + * are lacking the CAP_AUDIT_CONTROL capabality we most likely + * are being run in a container and /proc/self/loginuid is + * useless since it probably contains a uid of the host + * system. */ - if (!(d = fdopendir(fd))) { - close_nointr_nofail(fd); + if (have_effective_cap(CAP_AUDIT_CONTROL) <= 0) + return -ENOENT; - return errno == ENOENT ? 0 : -errno; + if (pid == 0) + r = read_one_line_file("/proc/self/loginuid", &s); + else { + char *p; + + if (asprintf(&p, "/proc/%lu/loginuid", (unsigned long) pid) < 0) + return -ENOMEM; + + r = read_one_line_file(p, &s); + free(p); } - for (;;) { - struct dirent buf, *de; - bool is_dir; - int r; + if (r < 0) + return r; - if ((r = readdir_r(d, &buf, &de)) != 0) { - if (ret == 0) - ret = -r; - break; - } + r = parse_uid(s, &u); + free(s); - if (!de) - break; + if (r < 0) + return r; - if (streq(de->d_name, ".") || streq(de->d_name, "..")) - continue; + if (u == (uid_t) -1) + return -ENOENT; - if (de->d_type == DT_UNKNOWN) { - struct stat st; + *uid = (uid_t) u; + return 0; +} - if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) { - if (ret == 0 && errno != ENOENT) - ret = -errno; - continue; - } +bool display_is_local(const char *display) { + assert(display); - is_dir = S_ISDIR(st.st_mode); - } else - is_dir = de->d_type == DT_DIR; + return + display[0] == ':' && + display[1] >= '0' && + display[1] <= '9'; +} - if (is_dir) { - int subdir_fd; +int socket_from_display(const char *display, char **path) { + size_t k; + char *f, *c; - if ((subdir_fd = openat(fd, de->d_name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC)) < 0) { - if (ret == 0 && errno != ENOENT) - ret = -errno; - continue; - } + assert(display); + assert(path); - if ((r = rm_rf_children(subdir_fd, only_dirs)) < 0) { - if (ret == 0) - ret = r; - } + if (!display_is_local(display)) + return -EINVAL; - if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) { - if (ret == 0 && errno != ENOENT) - ret = -errno; - } - } else if (!only_dirs) { + k = strspn(display+1, "0123456789"); - if (unlinkat(fd, de->d_name, 0) < 0) { - if (ret == 0 && errno != ENOENT) - ret = -errno; - } - } - } + f = new(char, sizeof("/tmp/.X11-unix/X") + k); + if (!f) + return -ENOMEM; - closedir(d); + c = stpcpy(f, "/tmp/.X11-unix/X"); + memcpy(c, display+1, k); + c[k] = 0; - return ret; + *path = f; + + return 0; } -int rm_rf(const char *path, bool only_dirs, bool delete_root) { - int fd; - int r; +int get_user_creds(const char **username, uid_t *uid, gid_t *gid, const char **home) { + struct passwd *p; + uid_t u; - assert(path); + assert(username); + assert(*username); - if ((fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC)) < 0) { + /* We enforce some special rules for uid=0: in order to avoid + * NSS lookups for root we hardcode its data. */ - if (errno != ENOTDIR) - return -errno; + if (streq(*username, "root") || streq(*username, "0")) { + *username = "root"; - if (delete_root && !only_dirs) - if (unlink(path) < 0) - return -errno; + if (uid) + *uid = 0; + + if (gid) + *gid = 0; + if (home) + *home = "/root"; return 0; } - r = rm_rf_children(fd, only_dirs); - - if (delete_root) - if (rmdir(path) < 0) { - if (r == 0) - r = -errno; - } - - return r; -} + if (parse_uid(*username, &u) >= 0) { + errno = 0; + p = getpwuid(u); + + /* If there are multiple users with the same id, make + * sure to leave $USER to the configured value instead + * of the first occurrence in the database. However if + * the uid was configured by a numeric uid, then let's + * pick the real username from /etc/passwd. */ + if (p) + *username = p->pw_name; + } else { + errno = 0; + p = getpwnam(*username); + } -int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) { - assert(path); + if (!p) + return errno != 0 ? -errno : -ESRCH; - /* Under the assumption that we are running privileged we - * first change the access mode and only then hand out - * ownership to avoid a window where access is too open. */ + if (uid) + *uid = p->pw_uid; - if (chmod(path, mode) < 0) - return -errno; + if (gid) + *gid = p->pw_gid; - if (chown(path, uid, gid) < 0) - return -errno; + if (home) + *home = p->pw_dir; return 0; } -cpu_set_t* cpu_set_malloc(unsigned *ncpus) { - cpu_set_t *r; - unsigned n = 1024; - - /* Allocates the cpuset in the right size */ +int get_group_creds(const char **groupname, gid_t *gid) { + struct group *g; + gid_t id; - for (;;) { - if (!(r = CPU_ALLOC(n))) - return NULL; + assert(groupname); - if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) { - CPU_ZERO_S(CPU_ALLOC_SIZE(n), r); + /* We enforce some special rules for gid=0: in order to avoid + * NSS lookups for root we hardcode its data. */ - if (ncpus) - *ncpus = n; + if (streq(*groupname, "root") || streq(*groupname, "0")) { + *groupname = "root"; - return r; - } + if (gid) + *gid = 0; - CPU_FREE(r); + return 0; + } - if (errno != EINVAL) - return NULL; + if (parse_gid(*groupname, &id) >= 0) { + errno = 0; + g = getgrgid(id); - n *= 2; + if (g) + *groupname = g->gr_name; + } else { + errno = 0; + g = getgrnam(*groupname); } -} -void status_vprintf(const char *format, va_list ap) { - char *s = NULL; - int fd = -1; + if (!g) + return errno != 0 ? -errno : -ESRCH; - assert(format); + if (gid) + *gid = g->gr_gid; - /* This independent of logging, as status messages are - * optional and go exclusively to the console. */ + return 0; +} - if (vasprintf(&s, format, ap) < 0) - goto finish; +int in_group(const char *name) { + gid_t gid, *gids; + int ngroups_max, r, i; - if ((fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC)) < 0) - goto finish; + r = get_group_creds(&name, &gid); + if (r < 0) + return r; - write(fd, s, strlen(s)); + if (getgid() == gid) + return 1; -finish: - free(s); + if (getegid() == gid) + return 1; - if (fd >= 0) - close_nointr_nofail(fd); -} + ngroups_max = sysconf(_SC_NGROUPS_MAX); + assert(ngroups_max > 0); -void status_printf(const char *format, ...) { - va_list ap; + gids = alloca(sizeof(gid_t) * ngroups_max); - assert(format); + r = getgroups(ngroups_max, gids); + if (r < 0) + return -errno; - va_start(ap, format); - status_vprintf(format, ap); - va_end(ap); + for (i = 0; i < r; i++) + if (gids[i] == gid) + return 1; + + return 0; } -void status_welcome(void) { +int glob_exists(const char *path) { + glob_t g; + int r, k; -#if defined(TARGET_FEDORA) - char *r; + assert(path); - if (read_one_line_file("/etc/system-release", &r) < 0) - return; + zero(g); + errno = 0; + k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g); - truncate_nl(r); + if (k == GLOB_NOMATCH) + r = 0; + else if (k == GLOB_NOSPACE) + r = -ENOMEM; + else if (k == 0) + r = !strv_isempty(g.gl_pathv); + else + r = errno ? -errno : -EIO; - /* This tries to mimic the color magic the old Red Hat sysinit - * script did. */ + globfree(&g); - if (startswith(r, "Red Hat")) - status_printf("Welcome to \x1B[0;31m%s\x1B[0m!\n", r); /* Red for RHEL */ - else if (startswith(r, "Fedora")) - status_printf("Welcome to \x1B[0;34m%s\x1B[0m!\n", r); /* Blue for Fedora */ - else - status_printf("Welcome to %s!\n", r); + return r; +} - free(r); +int dirent_ensure_type(DIR *d, struct dirent *de) { + struct stat st; -#elif defined(TARGET_SUSE) - char *r; + assert(d); + assert(de); - if (read_one_line_file("/etc/SuSE-release", &r) < 0) - return; + if (de->d_type != DT_UNKNOWN) + return 0; + + if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) + return -errno; - truncate_nl(r); + de->d_type = + S_ISREG(st.st_mode) ? DT_REG : + S_ISDIR(st.st_mode) ? DT_DIR : + S_ISLNK(st.st_mode) ? DT_LNK : + S_ISFIFO(st.st_mode) ? DT_FIFO : + S_ISSOCK(st.st_mode) ? DT_SOCK : + S_ISCHR(st.st_mode) ? DT_CHR : + S_ISBLK(st.st_mode) ? DT_BLK : + DT_UNKNOWN; - status_printf("Welcome to \x1B[0;32m%s\x1B[0m!\n", r); /* Green for SUSE */ - free(r); -#else -#warning "You probably should add a welcome text logic here." -#endif + return 0; } -char *replace_env(const char *format, char **env) { - enum { - WORD, - CURLY, - VARIABLE - } state = WORD; +int in_search_path(const char *path, char **search) { + char **i, *parent; + int r; - const char *e, *word = format; - char *r = NULL, *k; + r = parent_of_path(path, &parent); + if (r < 0) + return r; - assert(format); + r = 0; - for (e = format; *e; e ++) { + STRV_FOREACH(i, search) { + if (path_equal(parent, *i)) { + r = 1; + break; + } + } - switch (state) { + free(parent); - case WORD: - if (*e == '$') - state = CURLY; - break; + return r; +} - case CURLY: - if (*e == '{') { - if (!(k = strnappend(r, word, e-word-1))) - goto fail; +int get_files_in_directory(const char *path, char ***list) { + DIR *d; + int r = 0; + unsigned n = 0; + char **l = NULL; - free(r); - r = k; + assert(path); - word = e-1; - state = VARIABLE; + /* Returns all files in a directory in *list, and the number + * of files as return value. If list is NULL returns only the + * number */ - } else if (*e == '$') { - if (!(k = strnappend(r, word, e-word))) - goto fail; + d = opendir(path); + if (!d) + return -errno; - free(r); - r = k; + for (;;) { + struct dirent buffer, *de; + int k; - word = e+1; - state = WORD; - } else - state = WORD; + k = readdir_r(d, &buffer, &de); + if (k != 0) { + r = -k; + goto finish; + } + + if (!de) break; - case VARIABLE: - if (*e == '}') { - char *t; + dirent_ensure_type(d, de); - if ((t = strv_env_get_with_length(env, word+2, e-word-2))) { - if (!(k = strappend(r, t))) - goto fail; + if (!dirent_is_file(de)) + continue; - free(r); - r = k; + if (list) { + if ((unsigned) r >= n) { + char **t; - word = e+1; + n = MAX(16, 2*r); + t = realloc(l, sizeof(char*) * n); + if (!t) { + r = -ENOMEM; + goto finish; } - state = WORD; + l = t; } - break; - } + + assert((unsigned) r < n); + + l[r] = strdup(de->d_name); + if (!l[r]) { + r = -ENOMEM; + goto finish; + } + + l[++r] = NULL; + } else + r++; } - if (!(k = strnappend(r, word, e-word))) - goto fail; +finish: + if (d) + closedir(d); - free(r); - return k; + if (r >= 0) { + if (list) + *list = l; + } else + strv_free(l); -fail: - free(r); - return NULL; + return r; } -char **replace_env_argv(char **argv, char **env) { - char **r, **i; - unsigned k = 0, l = 0; +char *join(const char *x, ...) { + va_list ap; + size_t l; + char *r, *p; - l = strv_length(argv); + va_start(ap, x); - if (!(r = new(char*, l+1))) - return NULL; + if (x) { + l = strlen(x); - STRV_FOREACH(i, argv) { + for (;;) { + const char *t; - /* If $FOO appears as single word, replace it by the split up variable */ - if ((*i)[0] == '$') { - char *e = strv_env_get(env, *i+1); + t = va_arg(ap, const char *); + if (!t) + break; - if (e) { - char **w, **m; - unsigned q; + l += strlen(t); + } + } else + l = 0; - if (!(m = strv_split_quoted(e))) { - r[k] = NULL; - strv_free(r); - return NULL; - } + va_end(ap); - q = strv_length(m); - l = l + q - 1; + r = new(char, l+1); + if (!r) + return NULL; - if (!(w = realloc(r, sizeof(char*) * (l+1)))) { - r[k] = NULL; - strv_free(r); - strv_free(m); - return NULL; - } + if (x) { + p = stpcpy(r, x); - r = w; - memcpy(r + k, m, q * sizeof(char*)); - free(m); + va_start(ap, x); - k += q; - continue; - } - } + for (;;) { + const char *t; - /* If ${FOO} appears as part of a word, replace it by the variable as-is */ - if (!(r[k++] = replace_env(*i, env))) { - strv_free(r); - return NULL; + t = va_arg(ap, const char *); + if (!t) + break; + + p = stpcpy(p, t); } - } - r[k] = NULL; + va_end(ap); + } else + r[0] = 0; + return r; } -int columns(void) { - static __thread int parsed_columns = 0; - const char *e; +bool is_main_thread(void) { + static __thread int cached = 0; - if (parsed_columns > 0) - return parsed_columns; + if (_unlikely_(cached == 0)) + cached = getpid() == gettid() ? 1 : -1; - if ((e = getenv("COLUMNS"))) - parsed_columns = atoi(e); + return cached > 0; +} - if (parsed_columns <= 0) { - struct winsize ws; - zero(ws); +int block_get_whole_disk(dev_t d, dev_t *ret) { + char *p, *s; + int r; + unsigned n, m; - if (ioctl(STDIN_FILENO, TIOCGWINSZ, &ws) >= 0) - parsed_columns = ws.ws_col; - } + assert(ret); - if (parsed_columns <= 0) - parsed_columns = 80; + /* If it has a queue this is good enough for us */ + if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0) + return -ENOMEM; - return parsed_columns; -} + r = access(p, F_OK); + free(p); -int running_in_chroot(void) { - struct stat a, b; + if (r >= 0) { + *ret = d; + return 0; + } - zero(a); - zero(b); + /* If it is a partition find the originating device */ + if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0) + return -ENOMEM; - /* Only works as root */ + r = access(p, F_OK); + free(p); - if (stat("/proc/1/root", &a) < 0) - return -errno; + if (r < 0) + return -ENOENT; - if (stat("/", &b) < 0) - return -errno; + /* Get parent dev_t */ + if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0) + return -ENOMEM; - return - a.st_dev != b.st_dev || - a.st_ino != b.st_ino; -} + r = read_one_line_file(p, &s); + free(p); -char *ellipsize(const char *s, unsigned length, unsigned percent) { - size_t l, x; - char *r; + if (r < 0) + return r; - assert(s); - assert(percent <= 100); - assert(length >= 3); + r = sscanf(s, "%u:%u", &m, &n); + free(s); - l = strlen(s); + if (r != 2) + return -EINVAL; - if (l <= 3 || l <= length) - return strdup(s); + /* Only return this if it is really good enough for us. */ + if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0) + return -ENOMEM; - if (!(r = new0(char, length+1))) - return r; + r = access(p, F_OK); + free(p); + + if (r >= 0) { + *ret = makedev(m, n); + return 0; + } - x = (length * percent) / 100; + return -ENOENT; +} - if (x > length - 3) - x = length - 3; +int file_is_priv_sticky(const char *p) { + struct stat st; - memcpy(r, s, x); - r[x] = '.'; - r[x+1] = '.'; - r[x+2] = '.'; - memcpy(r + x + 3, - s + l - (length - x - 3), - length - x - 3); + assert(p); - return r; + if (lstat(p, &st) < 0) + return -errno; + + return + (st.st_uid == 0 || st.st_uid == getuid()) && + (st.st_mode & S_ISVTX); } static const char *const ioprio_class_table[] = { @@ -3239,7 +5936,7 @@ static const char *const sigchld_code_table[] = { DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int); -static const char *const log_facility_table[LOG_NFACILITIES] = { +static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = { [LOG_FAC(LOG_KERN)] = "kern", [LOG_FAC(LOG_USER)] = "user", [LOG_FAC(LOG_MAIL)] = "mail", @@ -3262,7 +5959,7 @@ static const char *const log_facility_table[LOG_NFACILITIES] = { [LOG_FAC(LOG_LOCAL7)] = "local7" }; -DEFINE_STRING_TABLE_LOOKUP(log_facility, int); +DEFINE_STRING_TABLE_LOOKUP(log_facility_unshifted, int); static const char *const log_level_table[] = { [LOG_EMERG] = "emerg", @@ -3317,7 +6014,7 @@ static const char* const ip_tos_table[] = { DEFINE_STRING_TABLE_LOOKUP(ip_tos, int); -static const char *const signal_table[] = { +static const char *const __signal_table[] = { [SIGHUP] = "HUP", [SIGINT] = "INT", [SIGQUIT] = "QUIT", @@ -3333,7 +6030,9 @@ static const char *const signal_table[] = { [SIGPIPE] = "PIPE", [SIGALRM] = "ALRM", [SIGTERM] = "TERM", - [SIGSTKFLT] = "STKFLT", +#ifdef SIGSTKFLT + [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */ +#endif [SIGCHLD] = "CHLD", [SIGCONT] = "CONT", [SIGSTOP] = "STOP", @@ -3351,4 +6050,207 @@ static const char *const signal_table[] = { [SIGSYS] = "SYS" }; -DEFINE_STRING_TABLE_LOOKUP(signal, int); +DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int); + +const char *signal_to_string(int signo) { + static __thread char buf[12]; + const char *name; + + name = __signal_to_string(signo); + if (name) + return name; + + if (signo >= SIGRTMIN && signo <= SIGRTMAX) + snprintf(buf, sizeof(buf) - 1, "RTMIN+%d", signo - SIGRTMIN); + else + snprintf(buf, sizeof(buf) - 1, "%d", signo); + char_array_0(buf); + return buf; +} + +int signal_from_string(const char *s) { + int signo; + int offset = 0; + unsigned u; + + signo =__signal_from_string(s); + if (signo > 0) + return signo; + + if (startswith(s, "RTMIN+")) { + s += 6; + offset = SIGRTMIN; + } + if (safe_atou(s, &u) >= 0) { + signo = (int) u + offset; + if (signo > 0 && signo < _NSIG) + return signo; + } + return -1; +} + +bool kexec_loaded(void) { + bool loaded = false; + char *s; + + if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) { + if (s[0] == '1') + loaded = true; + free(s); + } + return loaded; +} + +int strdup_or_null(const char *a, char **b) { + char *c; + + assert(b); + + if (!a) { + *b = NULL; + return 0; + } + + c = strdup(a); + if (!c) + return -ENOMEM; + + *b = c; + return 0; +} + +int prot_from_flags(int flags) { + + switch (flags & O_ACCMODE) { + + case O_RDONLY: + return PROT_READ; + + case O_WRONLY: + return PROT_WRITE; + + case O_RDWR: + return PROT_READ|PROT_WRITE; + + default: + return -EINVAL; + } +} + +unsigned long cap_last_cap(void) { + static __thread unsigned long saved; + static __thread bool valid = false; + unsigned long p; + + if (valid) + return saved; + + p = (unsigned long) CAP_LAST_CAP; + + if (prctl(PR_CAPBSET_READ, p) < 0) { + + /* Hmm, look downwards, until we find one that + * works */ + for (p--; p > 0; p --) + if (prctl(PR_CAPBSET_READ, p) >= 0) + break; + + } else { + + /* Hmm, look upwards, until we find one that doesn't + * work */ + for (;; p++) + if (prctl(PR_CAPBSET_READ, p+1) < 0) + break; + } + + saved = p; + valid = true; + + return p; +} + +char *format_bytes(char *buf, size_t l, off_t t) { + unsigned i; + + static const struct { + const char *suffix; + off_t factor; + } table[] = { + { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL }, + { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL }, + { "T", 1024ULL*1024ULL*1024ULL*1024ULL }, + { "G", 1024ULL*1024ULL*1024ULL }, + { "M", 1024ULL*1024ULL }, + { "K", 1024ULL }, + }; + + for (i = 0; i < ELEMENTSOF(table); i++) { + + if (t >= table[i].factor) { + snprintf(buf, l, + "%llu.%llu%s", + (unsigned long long) (t / table[i].factor), + (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL), + table[i].suffix); + + goto finish; + } + } + + snprintf(buf, l, "%lluB", (unsigned long long) t); + +finish: + buf[l-1] = 0; + return buf; + +} + +void* memdup(const void *p, size_t l) { + void *r; + + assert(p); + + r = malloc(l); + if (!r) + return NULL; + + memcpy(r, p, l); + return r; +} + +int fd_inc_sndbuf(int fd, size_t n) { + int r, value; + socklen_t l = sizeof(value); + + r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l); + if (r >= 0 && + l == sizeof(value) && + (size_t) value >= n*2) + return 0; + + value = (int) n; + r = setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)); + if (r < 0) + return -errno; + + return 1; +} + +int fd_inc_rcvbuf(int fd, size_t n) { + int r, value; + socklen_t l = sizeof(value); + + r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l); + if (r >= 0 && + l == sizeof(value) && + (size_t) value >= n*2) + return 0; + + value = (int) n; + r = setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)); + if (r < 0) + return -errno; + + return 1; +}