1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
22 #include <dbus/dbus.h>
28 #include <sys/types.h>
34 #include <sys/prctl.h>
35 #include <sys/mount.h>
39 #include "load-fragment.h"
42 #include "conf-parser.h"
43 #include "bus-errors.h"
51 #include "path-util.h"
52 #include "switch-root.h"
53 #include "capability.h"
56 #include "mount-setup.h"
57 #include "loopback-setup.h"
58 #include "kmod-setup.h"
59 #include "hostname-setup.h"
60 #include "machine-id-setup.h"
61 #include "locale-setup.h"
63 #include "selinux-setup.h"
64 #include "ima-setup.h"
71 ACTION_DUMP_CONFIGURATION_ITEMS,
73 } arg_action = ACTION_RUN;
75 static char *arg_default_unit = NULL;
76 static ManagerRunningAs arg_running_as = _MANAGER_RUNNING_AS_INVALID;
78 static bool arg_dump_core = true;
79 static bool arg_crash_shell = false;
80 static int arg_crash_chvt = -1;
81 static bool arg_confirm_spawn = false;
82 static bool arg_show_status = true;
83 static bool arg_switched_root = false;
84 static char **arg_default_controllers = NULL;
85 static char ***arg_join_controllers = NULL;
86 static ExecOutput arg_default_std_output = EXEC_OUTPUT_JOURNAL;
87 static ExecOutput arg_default_std_error = EXEC_OUTPUT_INHERIT;
88 static usec_t arg_runtime_watchdog = 0;
89 static usec_t arg_shutdown_watchdog = 10 * USEC_PER_MINUTE;
90 static struct rlimit *arg_default_rlimit[RLIMIT_NLIMITS] = {};
91 static uint64_t arg_capability_bounding_set_drop = 0;
92 static nsec_t arg_timer_slack_nsec = (nsec_t) -1;
94 static FILE* serialization = NULL;
96 static void nop_handler(int sig) {
99 _noreturn_ static void crash(int sig) {
102 log_error("Caught <%s>, not dumping core.", signal_to_string(sig));
107 /* We want to wait for the core process, hence let's enable SIGCHLD */
109 sa.sa_handler = nop_handler;
110 sa.sa_flags = SA_NOCLDSTOP|SA_RESTART;
111 assert_se(sigaction(SIGCHLD, &sa, NULL) == 0);
113 if ((pid = fork()) < 0)
114 log_error("Caught <%s>, cannot fork for core dump: %s", signal_to_string(sig), strerror(errno));
119 /* Enable default signal handler for core dump */
121 sa.sa_handler = SIG_DFL;
122 assert_se(sigaction(sig, &sa, NULL) == 0);
124 /* Don't limit the core dump size */
126 rl.rlim_cur = RLIM_INFINITY;
127 rl.rlim_max = RLIM_INFINITY;
128 setrlimit(RLIMIT_CORE, &rl);
130 /* Just to be sure... */
131 assert_se(chdir("/") == 0);
133 /* Raise the signal again */
136 assert_not_reached("We shouldn't be here...");
143 /* Order things nicely. */
144 if ((r = wait_for_terminate(pid, &status)) < 0)
145 log_error("Caught <%s>, waitpid() failed: %s", signal_to_string(sig), strerror(-r));
146 else if (status.si_code != CLD_DUMPED)
147 log_error("Caught <%s>, core dump failed.", signal_to_string(sig));
149 log_error("Caught <%s>, dumped core as pid %lu.", signal_to_string(sig), (unsigned long) pid);
154 chvt(arg_crash_chvt);
156 if (arg_crash_shell) {
160 log_info("Executing crash shell in 10s...");
163 /* Let the kernel reap children for us */
165 sa.sa_handler = SIG_IGN;
166 sa.sa_flags = SA_NOCLDSTOP|SA_NOCLDWAIT|SA_RESTART;
167 assert_se(sigaction(SIGCHLD, &sa, NULL) == 0);
171 log_error("Failed to fork off crash shell: %m");
173 make_console_stdio();
174 execl("/bin/sh", "/bin/sh", NULL);
176 log_error("execl() failed: %m");
180 log_info("Successfully spawned crash shell as pid %lu.", (unsigned long) pid);
183 log_info("Freezing execution.");
187 static void install_crash_handler(void) {
192 sa.sa_handler = crash;
193 sa.sa_flags = SA_NODEFER;
195 sigaction_many(&sa, SIGNALS_CRASH_HANDLER, -1);
198 static int console_setup(bool do_reset) {
201 /* If we are init, we connect stdin/stdout/stderr to /dev/null
202 * and make sure we don't have a controlling tty. */
209 tty_fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
211 log_error("Failed to open /dev/console: %s", strerror(-tty_fd));
215 /* We don't want to force text mode.
216 * plymouth may be showing pictures already from initrd. */
217 r = reset_terminal_fd(tty_fd, false);
219 log_error("Failed to reset /dev/console: %s", strerror(-r));
221 close_nointr_nofail(tty_fd);
225 static int set_default_unit(const char *u) {
234 free(arg_default_unit);
235 arg_default_unit = c;
240 static int parse_proc_cmdline_word(const char *word) {
242 static const char * const rlmap[] = {
243 "emergency", SPECIAL_EMERGENCY_TARGET,
244 "-b", SPECIAL_EMERGENCY_TARGET,
245 "single", SPECIAL_RESCUE_TARGET,
246 "-s", SPECIAL_RESCUE_TARGET,
247 "s", SPECIAL_RESCUE_TARGET,
248 "S", SPECIAL_RESCUE_TARGET,
249 "1", SPECIAL_RESCUE_TARGET,
250 "2", SPECIAL_RUNLEVEL2_TARGET,
251 "3", SPECIAL_RUNLEVEL3_TARGET,
252 "4", SPECIAL_RUNLEVEL4_TARGET,
253 "5", SPECIAL_RUNLEVEL5_TARGET,
258 if (startswith(word, "systemd.unit=")) {
261 return set_default_unit(word + 13);
263 } else if (startswith(word, "rd.systemd.unit=")) {
266 return set_default_unit(word + 16);
268 } else if (startswith(word, "systemd.log_target=")) {
270 if (log_set_target_from_string(word + 19) < 0)
271 log_warning("Failed to parse log target %s. Ignoring.", word + 19);
273 } else if (startswith(word, "systemd.log_level=")) {
275 if (log_set_max_level_from_string(word + 18) < 0)
276 log_warning("Failed to parse log level %s. Ignoring.", word + 18);
278 } else if (startswith(word, "systemd.log_color=")) {
280 if (log_show_color_from_string(word + 18) < 0)
281 log_warning("Failed to parse log color setting %s. Ignoring.", word + 18);
283 } else if (startswith(word, "systemd.log_location=")) {
285 if (log_show_location_from_string(word + 21) < 0)
286 log_warning("Failed to parse log location setting %s. Ignoring.", word + 21);
288 } else if (startswith(word, "systemd.dump_core=")) {
291 if ((r = parse_boolean(word + 18)) < 0)
292 log_warning("Failed to parse dump core switch %s. Ignoring.", word + 18);
296 } else if (startswith(word, "systemd.crash_shell=")) {
299 if ((r = parse_boolean(word + 20)) < 0)
300 log_warning("Failed to parse crash shell switch %s. Ignoring.", word + 20);
304 } else if (startswith(word, "systemd.confirm_spawn=")) {
307 if ((r = parse_boolean(word + 22)) < 0)
308 log_warning("Failed to parse confirm spawn switch %s. Ignoring.", word + 22);
310 arg_confirm_spawn = r;
312 } else if (startswith(word, "systemd.crash_chvt=")) {
315 if (safe_atoi(word + 19, &k) < 0)
316 log_warning("Failed to parse crash chvt switch %s. Ignoring.", word + 19);
320 } else if (startswith(word, "systemd.show_status=")) {
323 if ((r = parse_boolean(word + 20)) < 0)
324 log_warning("Failed to parse show status switch %s. Ignoring.", word + 20);
327 } else if (startswith(word, "systemd.default_standard_output=")) {
330 if ((r = exec_output_from_string(word + 32)) < 0)
331 log_warning("Failed to parse default standard output switch %s. Ignoring.", word + 32);
333 arg_default_std_output = r;
334 } else if (startswith(word, "systemd.default_standard_error=")) {
337 if ((r = exec_output_from_string(word + 31)) < 0)
338 log_warning("Failed to parse default standard error switch %s. Ignoring.", word + 31);
340 arg_default_std_error = r;
341 } else if (startswith(word, "systemd.setenv=")) {
345 cenv = strdup(word + 15);
349 eq = strchr(cenv, '=');
353 log_warning("unsetenv failed %m. Ignoring.");
356 r = setenv(cenv, eq + 1, 1);
358 log_warning("setenv failed %m. Ignoring.");
362 } else if (startswith(word, "systemd.") ||
363 (in_initrd() && startswith(word, "rd.systemd."))) {
365 log_warning("Unknown kernel switch %s. Ignoring.", word);
367 log_info("Supported kernel switches:\n"
368 "systemd.unit=UNIT Default unit to start\n"
369 "rd.systemd.unit=UNIT Default unit to start when run in initrd\n"
370 "systemd.dump_core=0|1 Dump core on crash\n"
371 "systemd.crash_shell=0|1 Run shell on crash\n"
372 "systemd.crash_chvt=N Change to VT #N on crash\n"
373 "systemd.confirm_spawn=0|1 Confirm every process spawn\n"
374 "systemd.show_status=0|1 Show status updates on the console during bootup\n"
375 "systemd.log_target=console|kmsg|journal|journal-or-kmsg|syslog|syslog-or-kmsg|null\n"
377 "systemd.log_level=LEVEL Log level\n"
378 "systemd.log_color=0|1 Highlight important log messages\n"
379 "systemd.log_location=0|1 Include code location in log messages\n"
380 "systemd.default_standard_output=null|tty|syslog|syslog+console|kmsg|kmsg+console|journal|journal+console\n"
381 " Set default log output for services\n"
382 "systemd.default_standard_error=null|tty|syslog|syslog+console|kmsg|kmsg+console|journal|journal+console\n"
383 " Set default log error output for services\n"
384 "systemd.setenv=ASSIGNMENT Set an environment variable for all spawned processes\n");
386 } else if (streq(word, "quiet"))
387 arg_show_status = false;
388 else if (!in_initrd()) {
391 /* SysV compatibility */
392 for (i = 0; i < ELEMENTSOF(rlmap); i += 2)
393 if (streq(word, rlmap[i]))
394 return set_default_unit(rlmap[i+1]);
400 static int config_parse_level2(
401 const char *filename,
414 log_set_max_level_from_string(rvalue);
418 static int config_parse_target(
419 const char *filename,
432 log_set_target_from_string(rvalue);
436 static int config_parse_color(
437 const char *filename,
450 log_show_color_from_string(rvalue);
454 static int config_parse_location(
455 const char *filename,
468 log_show_location_from_string(rvalue);
472 static int config_parse_cpu_affinity2(
473 const char *filename,
492 FOREACH_WORD_QUOTED(w, l, rvalue, state) {
497 if (!(t = strndup(w, l)))
500 r = safe_atou(t, &cpu);
504 if (!(c = cpu_set_malloc(&ncpus)))
507 if (r < 0 || cpu >= ncpus) {
508 log_error("[%s:%u] Failed to parse CPU affinity: %s", filename, line, rvalue);
513 CPU_SET_S(cpu, CPU_ALLOC_SIZE(ncpus), c);
517 if (sched_setaffinity(0, CPU_ALLOC_SIZE(ncpus), c) < 0)
518 log_warning("Failed to set CPU affinity: %m");
526 static void strv_free_free(char ***l) {
538 static void free_join_controllers(void) {
539 if (!arg_join_controllers)
542 strv_free_free(arg_join_controllers);
543 arg_join_controllers = NULL;
546 static int config_parse_join_controllers(
547 const char *filename,
564 free_join_controllers();
566 FOREACH_WORD_QUOTED(w, length, rvalue, state) {
569 s = strndup(w, length);
573 l = strv_split(s, ",");
578 if (strv_length(l) <= 1) {
583 if (!arg_join_controllers) {
584 arg_join_controllers = new(char**, 2);
585 if (!arg_join_controllers) {
590 arg_join_controllers[0] = l;
591 arg_join_controllers[1] = NULL;
598 t = new0(char**, n+2);
606 for (a = arg_join_controllers; *a; a++) {
608 if (strv_overlap(*a, l)) {
611 c = strv_merge(*a, l);
634 t[n++] = strv_uniq(l);
636 strv_free_free(arg_join_controllers);
637 arg_join_controllers = t;
644 static int parse_config_file(void) {
646 const ConfigTableItem items[] = {
647 { "Manager", "LogLevel", config_parse_level2, 0, NULL },
648 { "Manager", "LogTarget", config_parse_target, 0, NULL },
649 { "Manager", "LogColor", config_parse_color, 0, NULL },
650 { "Manager", "LogLocation", config_parse_location, 0, NULL },
651 { "Manager", "DumpCore", config_parse_bool, 0, &arg_dump_core },
652 { "Manager", "CrashShell", config_parse_bool, 0, &arg_crash_shell },
653 { "Manager", "ShowStatus", config_parse_bool, 0, &arg_show_status },
654 { "Manager", "CrashChVT", config_parse_int, 0, &arg_crash_chvt },
655 { "Manager", "CPUAffinity", config_parse_cpu_affinity2, 0, NULL },
656 { "Manager", "DefaultControllers", config_parse_strv, 0, &arg_default_controllers },
657 { "Manager", "DefaultStandardOutput", config_parse_output, 0, &arg_default_std_output },
658 { "Manager", "DefaultStandardError", config_parse_output, 0, &arg_default_std_error },
659 { "Manager", "JoinControllers", config_parse_join_controllers, 0, &arg_join_controllers },
660 { "Manager", "RuntimeWatchdogSec", config_parse_usec, 0, &arg_runtime_watchdog },
661 { "Manager", "ShutdownWatchdogSec", config_parse_usec, 0, &arg_shutdown_watchdog },
662 { "Manager", "CapabilityBoundingSet", config_parse_bounding_set, 0, &arg_capability_bounding_set_drop },
663 { "Manager", "TimerSlackNSec", config_parse_nsec, 0, &arg_timer_slack_nsec },
664 { "Manager", "DefaultLimitCPU", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_CPU]},
665 { "Manager", "DefaultLimitFSIZE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_FSIZE]},
666 { "Manager", "DefaultLimitDATA", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_DATA]},
667 { "Manager", "DefaultLimitSTACK", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_STACK]},
668 { "Manager", "DefaultLimitCORE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_CORE]},
669 { "Manager", "DefaultLimitRSS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RSS]},
670 { "Manager", "DefaultLimitNOFILE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NOFILE]},
671 { "Manager", "DefaultLimitAS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_AS]},
672 { "Manager", "DefaultLimitNPROC", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NPROC]},
673 { "Manager", "DefaultLimitMEMLOCK", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_MEMLOCK]},
674 { "Manager", "DefaultLimitLOCKS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_LOCKS]},
675 { "Manager", "DefaultLimitSIGPENDING",config_parse_limit, 0, &arg_default_rlimit[RLIMIT_SIGPENDING]},
676 { "Manager", "DefaultLimitMSGQUEUE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_MSGQUEUE]},
677 { "Manager", "DefaultLimitNICE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NICE]},
678 { "Manager", "DefaultLimitRTPRIO", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RTPRIO]},
679 { "Manager", "DefaultLimitRTTIME", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RTTIME]},
680 { NULL, NULL, NULL, 0, NULL }
687 fn = arg_running_as == MANAGER_SYSTEM ? SYSTEM_CONFIG_FILE : USER_CONFIG_FILE;
693 log_warning("Failed to open configuration file '%s': %m", fn);
697 r = config_parse(fn, f, "Manager\0", config_item_table_lookup, (void*) items, false, NULL);
699 log_warning("Failed to parse configuration file: %s", strerror(-r));
706 static int parse_proc_cmdline(void) {
707 char *line, *w, *state;
711 /* Don't read /proc/cmdline if we are in a container, since
712 * that is only relevant for the host system */
713 if (detect_container(NULL) > 0)
716 if ((r = read_one_line_file("/proc/cmdline", &line)) < 0) {
717 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
721 FOREACH_WORD_QUOTED(w, l, line, state) {
724 if (!(word = strndup(w, l))) {
729 r = parse_proc_cmdline_word(word);
733 log_error("Failed on cmdline argument %s: %s", word, strerror(-r));
745 static int parse_argv(int argc, char *argv[]) {
748 ARG_LOG_LEVEL = 0x100,
757 ARG_DUMP_CONFIGURATION_ITEMS,
765 ARG_DEFAULT_STD_OUTPUT,
766 ARG_DEFAULT_STD_ERROR
769 static const struct option options[] = {
770 { "log-level", required_argument, NULL, ARG_LOG_LEVEL },
771 { "log-target", required_argument, NULL, ARG_LOG_TARGET },
772 { "log-color", optional_argument, NULL, ARG_LOG_COLOR },
773 { "log-location", optional_argument, NULL, ARG_LOG_LOCATION },
774 { "unit", required_argument, NULL, ARG_UNIT },
775 { "system", no_argument, NULL, ARG_SYSTEM },
776 { "user", no_argument, NULL, ARG_USER },
777 { "test", no_argument, NULL, ARG_TEST },
778 { "help", no_argument, NULL, 'h' },
779 { "version", no_argument, NULL, ARG_VERSION },
780 { "dump-configuration-items", no_argument, NULL, ARG_DUMP_CONFIGURATION_ITEMS },
781 { "dump-core", optional_argument, NULL, ARG_DUMP_CORE },
782 { "crash-shell", optional_argument, NULL, ARG_CRASH_SHELL },
783 { "confirm-spawn", optional_argument, NULL, ARG_CONFIRM_SPAWN },
784 { "show-status", optional_argument, NULL, ARG_SHOW_STATUS },
785 { "deserialize", required_argument, NULL, ARG_DESERIALIZE },
786 { "switched-root", no_argument, NULL, ARG_SWITCHED_ROOT },
787 { "introspect", optional_argument, NULL, ARG_INTROSPECT },
788 { "default-standard-output", required_argument, NULL, ARG_DEFAULT_STD_OUTPUT, },
789 { "default-standard-error", required_argument, NULL, ARG_DEFAULT_STD_ERROR, },
801 while ((c = getopt_long(argc, argv, "hDbsz:", options, NULL)) >= 0)
806 if ((r = log_set_max_level_from_string(optarg)) < 0) {
807 log_error("Failed to parse log level %s.", optarg);
815 if ((r = log_set_target_from_string(optarg)) < 0) {
816 log_error("Failed to parse log target %s.", optarg);
825 if ((r = log_show_color_from_string(optarg)) < 0) {
826 log_error("Failed to parse log color setting %s.", optarg);
830 log_show_color(true);
834 case ARG_LOG_LOCATION:
837 if ((r = log_show_location_from_string(optarg)) < 0) {
838 log_error("Failed to parse log location setting %s.", optarg);
842 log_show_location(true);
846 case ARG_DEFAULT_STD_OUTPUT:
848 if ((r = exec_output_from_string(optarg)) < 0) {
849 log_error("Failed to parse default standard output setting %s.", optarg);
852 arg_default_std_output = r;
855 case ARG_DEFAULT_STD_ERROR:
857 if ((r = exec_output_from_string(optarg)) < 0) {
858 log_error("Failed to parse default standard error output setting %s.", optarg);
861 arg_default_std_error = r;
866 if ((r = set_default_unit(optarg)) < 0) {
867 log_error("Failed to set default unit %s: %s", optarg, strerror(-r));
874 arg_running_as = MANAGER_SYSTEM;
878 arg_running_as = MANAGER_USER;
882 arg_action = ACTION_TEST;
886 arg_action = ACTION_VERSION;
889 case ARG_DUMP_CONFIGURATION_ITEMS:
890 arg_action = ACTION_DUMP_CONFIGURATION_ITEMS;
894 r = optarg ? parse_boolean(optarg) : 1;
896 log_error("Failed to parse dump core boolean %s.", optarg);
902 case ARG_CRASH_SHELL:
903 r = optarg ? parse_boolean(optarg) : 1;
905 log_error("Failed to parse crash shell boolean %s.", optarg);
911 case ARG_CONFIRM_SPAWN:
912 r = optarg ? parse_boolean(optarg) : 1;
914 log_error("Failed to parse confirm spawn boolean %s.", optarg);
917 arg_confirm_spawn = r;
920 case ARG_SHOW_STATUS:
921 r = optarg ? parse_boolean(optarg) : 1;
923 log_error("Failed to parse show status boolean %s.", optarg);
929 case ARG_DESERIALIZE: {
933 if ((r = safe_atoi(optarg, &fd)) < 0 || fd < 0) {
934 log_error("Failed to parse deserialize option %s.", optarg);
938 if (!(f = fdopen(fd, "r"))) {
939 log_error("Failed to open serialization fd: %m");
944 fclose(serialization);
951 case ARG_SWITCHED_ROOT:
952 arg_switched_root = true;
955 case ARG_INTROSPECT: {
956 const char * const * i = NULL;
958 for (i = bus_interface_table; *i; i += 2)
959 if (!optarg || streq(i[0], optarg)) {
960 fputs(DBUS_INTROSPECT_1_0_XML_DOCTYPE_DECL_NODE
963 fputs("</node>\n", stdout);
970 log_error("Unknown interface %s.", optarg);
972 arg_action = ACTION_DONE;
977 arg_action = ACTION_HELP;
981 log_set_max_level(LOG_DEBUG);
987 /* Just to eat away the sysvinit kernel
988 * cmdline args without getopt() error
989 * messages that we'll parse in
990 * parse_proc_cmdline_word() or ignore. */
995 log_error("Unknown option code %c", c);
1002 if (optind < argc && getpid() != 1) {
1003 /* Hmm, when we aren't run as init system
1004 * let's complain about excess arguments */
1006 log_error("Excess arguments.");
1010 if (detect_container(NULL) > 0) {
1013 /* All /proc/cmdline arguments the kernel didn't
1014 * understand it passed to us. We're not really
1015 * interested in that usually since /proc/cmdline is
1016 * more interesting and complete. With one exception:
1017 * if we are run in a container /proc/cmdline is not
1018 * relevant for the container, hence we rely on argv[]
1021 for (a = argv; a < argv + argc; a++)
1022 if ((r = parse_proc_cmdline_word(*a)) < 0) {
1023 log_error("Failed on cmdline argument %s: %s", *a, strerror(-r));
1031 static int help(void) {
1033 printf("%s [OPTIONS...]\n\n"
1034 "Starts up and maintains the system or user services.\n\n"
1035 " -h --help Show this help\n"
1036 " --test Determine startup sequence, dump it and exit\n"
1037 " --dump-configuration-items Dump understood unit configuration items\n"
1038 " --introspect[=INTERFACE] Extract D-Bus interface data\n"
1039 " --unit=UNIT Set default unit\n"
1040 " --system Run a system instance, even if PID != 1\n"
1041 " --user Run a user instance\n"
1042 " --dump-core[=0|1] Dump core on crash\n"
1043 " --crash-shell[=0|1] Run shell on crash\n"
1044 " --confirm-spawn[=0|1] Ask for confirmation when spawning processes\n"
1045 " --show-status[=0|1] Show status updates on the console during bootup\n"
1046 " --log-target=TARGET Set log target (console, journal, syslog, kmsg, journal-or-kmsg, syslog-or-kmsg, null)\n"
1047 " --log-level=LEVEL Set log level (debug, info, notice, warning, err, crit, alert, emerg)\n"
1048 " --log-color[=0|1] Highlight important log messages\n"
1049 " --log-location[=0|1] Include code location in log messages\n"
1050 " --default-standard-output= Set default standard output for services\n"
1051 " --default-standard-error= Set default standard error output for services\n",
1052 program_invocation_short_name);
1057 static int version(void) {
1058 puts(PACKAGE_STRING);
1060 puts(SYSTEMD_FEATURES);
1065 static int prepare_reexecute(Manager *m, FILE **_f, FDSet **_fds, bool serialize_jobs) {
1074 /* Make sure nothing is really destructed when we shut down */
1077 r = manager_open_serialization(m, &f);
1079 log_error("Failed to create serialization file: %s", strerror(-r));
1086 log_error("Failed to allocate fd set: %s", strerror(-r));
1090 r = manager_serialize(m, f, fds, serialize_jobs);
1092 log_error("Failed to serialize state: %s", strerror(-r));
1096 if (fseeko(f, 0, SEEK_SET) < 0) {
1097 log_error("Failed to rewind serialization fd: %m");
1101 r = fd_cloexec(fileno(f), false);
1103 log_error("Failed to disable O_CLOEXEC for serialization: %s", strerror(-r));
1107 r = fdset_cloexec(fds, false);
1109 log_error("Failed to disable O_CLOEXEC for serialization fds: %s", strerror(-r));
1127 static struct dual_timestamp* parse_initrd_timestamp(struct dual_timestamp *t) {
1129 unsigned long long a, b;
1133 e = getenv("RD_TIMESTAMP");
1137 if (sscanf(e, "%llu %llu", &a, &b) != 2)
1140 t->realtime = (usec_t) a;
1141 t->monotonic = (usec_t) b;
1146 static void test_mtab(void) {
1149 /* Check that /etc/mtab is a symlink */
1151 if (readlink_malloc("/etc/mtab", &p) >= 0) {
1154 b = streq(p, "/proc/self/mounts") || streq(p, "/proc/mounts");
1161 log_warning("/etc/mtab is not a symlink or not pointing to /proc/self/mounts. "
1162 "This is not supported anymore. "
1163 "Please make sure to replace this file by a symlink to avoid incorrect or misleading mount(8) output.");
1166 static void test_usr(void) {
1168 /* Check that /usr is not a separate fs */
1170 if (dir_is_empty("/usr") <= 0)
1173 log_warning("/usr appears to be on its own filesytem and is not already mounted. This is not a supported setup. "
1174 "Some things will probably break (sometimes even silently) in mysterious ways. "
1175 "Consult http://freedesktop.org/wiki/Software/systemd/separate-usr-is-broken for more information.");
1178 static void test_cgroups(void) {
1180 if (access("/proc/cgroups", F_OK) >= 0)
1183 log_warning("CONFIG_CGROUPS was not set when your kernel was compiled. "
1184 "Systems without control groups are not supported. "
1185 "We will now sleep for 10s, and then continue boot-up. "
1186 "Expect breakage and please do not file bugs. "
1187 "Instead fix your kernel and enable CONFIG_CGROUPS. "
1188 "Consult http://0pointer.de/blog/projects/cgroups-vs-cgroups.html for more information.");
1193 int main(int argc, char *argv[]) {
1195 int r, retval = EXIT_FAILURE;
1196 usec_t before_startup, after_startup;
1197 char timespan[FORMAT_TIMESPAN_MAX];
1199 bool reexecute = false;
1200 const char *shutdown_verb = NULL;
1201 dual_timestamp initrd_timestamp = { 0ULL, 0ULL };
1202 static char systemd[] = "systemd";
1203 bool skip_setup = false;
1205 bool loaded_policy = false;
1206 bool arm_reboot_watchdog = false;
1207 bool queue_default_job = false;
1208 char *switch_root_dir = NULL, *switch_root_init = NULL;
1210 #ifdef HAVE_SYSV_COMPAT
1211 if (getpid() != 1 && strstr(program_invocation_short_name, "init")) {
1212 /* This is compatibility support for SysV, where
1213 * calling init as a user is identical to telinit. */
1216 execv(SYSTEMCTL_BINARY_PATH, argv);
1217 log_error("Failed to exec " SYSTEMCTL_BINARY_PATH ": %m");
1222 /* Determine if this is a reexecution or normal bootup. We do
1223 * the full command line parsing much later, so let's just
1224 * have a quick peek here. */
1225 for (j = 1; j < argc; j++)
1226 if (streq(argv[j], "--deserialize")) {
1231 /* If we have switched root, do all the special setup
1233 for (j = 1; j < argc; j++)
1234 if (streq(argv[j], "--switched-root")) {
1239 /* If we get started via the /sbin/init symlink then we are
1240 called 'init'. After a subsequent reexecution we are then
1241 called 'systemd'. That is confusing, hence let's call us
1242 systemd right-away. */
1243 program_invocation_short_name = systemd;
1244 prctl(PR_SET_NAME, systemd);
1249 log_show_color(isatty(STDERR_FILENO) > 0);
1250 log_show_location(false);
1251 log_set_max_level(LOG_INFO);
1253 if (getpid() == 1) {
1255 char *rd_timestamp = NULL;
1257 dual_timestamp_get(&initrd_timestamp);
1258 asprintf(&rd_timestamp, "%llu %llu",
1259 (unsigned long long) initrd_timestamp.realtime,
1260 (unsigned long long) initrd_timestamp.monotonic);
1262 setenv("RD_TIMESTAMP", rd_timestamp, 1);
1267 arg_running_as = MANAGER_SYSTEM;
1268 log_set_target(detect_container(NULL) > 0 ? LOG_TARGET_JOURNAL : LOG_TARGET_JOURNAL_OR_KMSG);
1271 if (selinux_setup(&loaded_policy) < 0)
1273 if (ima_setup() < 0)
1279 if (label_init(NULL) < 0)
1283 if (hwclock_is_localtime() > 0) {
1286 r = hwclock_apply_localtime_delta(&min);
1288 log_error("Failed to apply local time delta, ignoring: %s", strerror(-r));
1290 log_info("RTC configured in localtime, applying delta of %i minutes to system time.", min);
1294 arg_running_as = MANAGER_USER;
1295 log_set_target(LOG_TARGET_AUTO);
1299 /* Initialize default unit */
1300 if (r == set_default_unit(SPECIAL_DEFAULT_TARGET) < 0) {
1301 log_error("Failed to set default unit %s: %s", SPECIAL_DEFAULT_TARGET, strerror(-r));
1305 /* By default, mount "cpu" and "cpuacct" together */
1306 arg_join_controllers = new(char**, 2);
1307 if (!arg_join_controllers)
1310 arg_join_controllers[0] = strv_new("cpu", "cpuacct", NULL);
1311 arg_join_controllers[1] = NULL;
1313 if (!arg_join_controllers[0])
1316 /* Mount /proc, /sys and friends, so that /proc/cmdline and
1317 * /proc/$PID/fd is available. */
1318 if (geteuid() == 0 && !getenv("SYSTEMD_SKIP_API_MOUNTS")) {
1319 r = mount_setup(loaded_policy);
1324 /* Reset all signal handlers. */
1325 assert_se(reset_all_signal_handlers() == 0);
1327 /* If we are init, we can block sigkill. Yay. */
1328 ignore_signals(SIGNALS_IGNORE, -1);
1330 if (parse_config_file() < 0)
1333 if (arg_running_as == MANAGER_SYSTEM)
1334 if (parse_proc_cmdline() < 0)
1337 log_parse_environment();
1339 if (parse_argv(argc, argv) < 0)
1342 if (arg_action == ACTION_TEST && geteuid() == 0) {
1343 log_error("Don't run test mode as root.");
1347 if (arg_running_as == MANAGER_SYSTEM &&
1348 arg_action == ACTION_RUN &&
1349 running_in_chroot() > 0) {
1350 log_error("Cannot be run in a chroot() environment.");
1354 if (arg_action == ACTION_HELP) {
1357 } else if (arg_action == ACTION_VERSION) {
1360 } else if (arg_action == ACTION_DUMP_CONFIGURATION_ITEMS) {
1361 unit_dump_config_items(stdout);
1362 retval = EXIT_SUCCESS;
1364 } else if (arg_action == ACTION_DONE) {
1365 retval = EXIT_SUCCESS;
1369 assert_se(arg_action == ACTION_RUN || arg_action == ACTION_TEST);
1371 /* Close logging fds, in order not to confuse fdset below */
1374 /* Remember open file descriptors for later deserialization */
1375 if (serialization) {
1376 r = fdset_new_fill(&fds);
1378 log_error("Failed to allocate fd set: %s", strerror(-r));
1382 assert_se(fdset_remove(fds, fileno(serialization)) >= 0);
1384 close_all_fds(NULL, 0);
1386 /* Set up PATH unless it is already set */
1388 #ifdef HAVE_SPLIT_USR
1389 "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
1391 "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin",
1393 arg_running_as == MANAGER_SYSTEM);
1395 if (arg_running_as == MANAGER_SYSTEM) {
1396 /* Parse the data passed to us. We leave this
1397 * variables set, but the manager later on will not
1398 * pass them on to our children. */
1400 parse_initrd_timestamp(&initrd_timestamp);
1402 /* Unset some environment variables passed in from the
1403 * kernel that don't really make sense for us. */
1407 /* When we are invoked by a shell, these might be set,
1408 * but make little sense to pass on */
1413 /* When we are invoked by a chroot-like tool such as
1414 * nspawn, these might be set, but make little sense
1417 unsetenv("LOGNAME");
1419 /* All other variables are left as is, so that clients
1420 * can still read them via /proc/1/environ */
1423 /* Move out of the way, so that we won't block unmounts */
1424 assert_se(chdir("/") == 0);
1426 if (arg_running_as == MANAGER_SYSTEM) {
1427 /* Become a session leader if we aren't one yet. */
1430 /* Disable the umask logic */
1434 /* Make sure D-Bus doesn't fiddle with the SIGPIPE handlers */
1435 dbus_connection_set_change_sigpipe(FALSE);
1437 /* Reset the console, but only if this is really init and we
1438 * are freshly booted */
1439 if (arg_running_as == MANAGER_SYSTEM && arg_action == ACTION_RUN) {
1440 console_setup(getpid() == 1 && !skip_setup);
1444 /* Open the logging devices, if possible and necessary */
1447 /* Make sure we leave a core dump without panicing the
1450 install_crash_handler();
1452 if (geteuid() == 0 && !getenv("SYSTEMD_SKIP_API_MOUNTS")) {
1453 r = mount_cgroup_controllers(arg_join_controllers);
1458 if (arg_running_as == MANAGER_SYSTEM) {
1459 const char *virtualization = NULL;
1461 log_info(PACKAGE_STRING " running in system mode. (" SYSTEMD_FEATURES "; " DISTRIBUTION ")");
1463 detect_virtualization(&virtualization);
1465 log_info("Detected virtualization '%s'.", virtualization);
1468 log_info("Running in initial RAM disk.");
1471 log_debug(PACKAGE_STRING " running in user mode. (" SYSTEMD_FEATURES "; " DISTRIBUTION ")");
1473 if (arg_running_as == MANAGER_SYSTEM && !skip_setup) {
1476 if (arg_show_status || plymouth_running())
1489 if (arg_running_as == MANAGER_SYSTEM && arg_runtime_watchdog > 0)
1490 watchdog_set_timeout(&arg_runtime_watchdog);
1492 if (arg_timer_slack_nsec != (nsec_t) -1)
1493 if (prctl(PR_SET_TIMERSLACK, arg_timer_slack_nsec) < 0)
1494 log_error("Failed to adjust timer slack: %m");
1496 if (arg_capability_bounding_set_drop) {
1497 r = capability_bounding_set_drop(arg_capability_bounding_set_drop, true);
1499 log_error("Failed to drop capability bounding set: %s", strerror(-r));
1502 r = capability_bounding_set_drop_usermode(arg_capability_bounding_set_drop);
1504 log_error("Failed to drop capability bounding set of usermode helpers: %s", strerror(-r));
1509 if (arg_running_as == MANAGER_USER) {
1510 /* Become reaper of our children */
1511 r = prctl(PR_SET_CHILD_SUBREAPER, 1);
1513 log_error("Failed to prctl(PR_SET_CHILD_SUBREAPER): %s", strerror(-r));
1515 log_error("Perhaps the kernel version is too old (< 3.4?)");
1518 r = manager_new(arg_running_as, &m);
1520 log_error("Failed to allocate manager object: %s", strerror(-r));
1524 m->confirm_spawn = arg_confirm_spawn;
1525 m->default_std_output = arg_default_std_output;
1526 m->default_std_error = arg_default_std_error;
1527 m->runtime_watchdog = arg_runtime_watchdog;
1528 m->shutdown_watchdog = arg_shutdown_watchdog;
1530 manager_set_default_rlimits(m, arg_default_rlimit);
1532 if (dual_timestamp_is_set(&initrd_timestamp))
1533 m->initrd_timestamp = initrd_timestamp;
1535 if (arg_default_controllers)
1536 manager_set_default_controllers(m, arg_default_controllers);
1538 manager_set_show_status(m, arg_show_status);
1540 /* Remember whether we should queue the default job */
1541 queue_default_job = !serialization || arg_switched_root;
1543 before_startup = now(CLOCK_MONOTONIC);
1545 r = manager_startup(m, serialization, fds);
1547 log_error("Failed to fully start up daemon: %s", strerror(-r));
1549 /* This will close all file descriptors that were opened, but
1550 * not claimed by any unit. */
1556 if (serialization) {
1557 fclose(serialization);
1558 serialization = NULL;
1561 if (queue_default_job) {
1563 Unit *target = NULL;
1564 Job *default_unit_job;
1566 dbus_error_init(&error);
1568 log_debug("Activating default unit: %s", arg_default_unit);
1570 r = manager_load_unit(m, arg_default_unit, NULL, &error, &target);
1572 log_error("Failed to load default target: %s", bus_error(&error, r));
1573 dbus_error_free(&error);
1574 } else if (target->load_state == UNIT_ERROR)
1575 log_error("Failed to load default target: %s", strerror(-target->load_error));
1576 else if (target->load_state == UNIT_MASKED)
1577 log_error("Default target masked.");
1579 if (!target || target->load_state != UNIT_LOADED) {
1580 log_info("Trying to load rescue target...");
1582 r = manager_load_unit(m, SPECIAL_RESCUE_TARGET, NULL, &error, &target);
1584 log_error("Failed to load rescue target: %s", bus_error(&error, r));
1585 dbus_error_free(&error);
1587 } else if (target->load_state == UNIT_ERROR) {
1588 log_error("Failed to load rescue target: %s", strerror(-target->load_error));
1590 } else if (target->load_state == UNIT_MASKED) {
1591 log_error("Rescue target masked.");
1596 assert(target->load_state == UNIT_LOADED);
1598 if (arg_action == ACTION_TEST) {
1599 printf("-> By units:\n");
1600 manager_dump_units(m, stdout, "\t");
1603 r = manager_add_job(m, JOB_START, target, JOB_REPLACE, false, &error, &default_unit_job);
1605 log_error("Failed to start default target: %s", bus_error(&error, r));
1606 dbus_error_free(&error);
1609 m->default_unit_job_id = default_unit_job->id;
1611 after_startup = now(CLOCK_MONOTONIC);
1612 log_full(arg_action == ACTION_TEST ? LOG_INFO : LOG_DEBUG,
1613 "Loaded units and determined initial transaction in %s.",
1614 format_timespan(timespan, sizeof(timespan), after_startup - before_startup));
1616 if (arg_action == ACTION_TEST) {
1617 printf("-> By jobs:\n");
1618 manager_dump_jobs(m, stdout, "\t");
1619 retval = EXIT_SUCCESS;
1625 r = manager_loop(m);
1627 log_error("Failed to run mainloop: %s", strerror(-r));
1631 switch (m->exit_code) {
1634 retval = EXIT_SUCCESS;
1638 case MANAGER_RELOAD:
1639 log_info("Reloading.");
1640 r = manager_reload(m);
1642 log_error("Failed to reload: %s", strerror(-r));
1645 case MANAGER_REEXECUTE:
1647 if (prepare_reexecute(m, &serialization, &fds, true) < 0)
1651 log_notice("Reexecuting.");
1654 case MANAGER_SWITCH_ROOT:
1655 /* Steal the switch root parameters */
1656 switch_root_dir = m->switch_root;
1657 switch_root_init = m->switch_root_init;
1658 m->switch_root = m->switch_root_init = NULL;
1660 if (!switch_root_init)
1661 if (prepare_reexecute(m, &serialization, &fds, false) < 0)
1665 log_notice("Switching root.");
1668 case MANAGER_REBOOT:
1669 case MANAGER_POWEROFF:
1671 case MANAGER_KEXEC: {
1672 static const char * const table[_MANAGER_EXIT_CODE_MAX] = {
1673 [MANAGER_REBOOT] = "reboot",
1674 [MANAGER_POWEROFF] = "poweroff",
1675 [MANAGER_HALT] = "halt",
1676 [MANAGER_KEXEC] = "kexec"
1679 assert_se(shutdown_verb = table[m->exit_code]);
1680 arm_reboot_watchdog = m->exit_code == MANAGER_REBOOT;
1682 log_notice("Shutting down.");
1687 assert_not_reached("Unknown exit code.");
1695 for (j = 0; j < RLIMIT_NLIMITS; j++)
1696 free (arg_default_rlimit[j]);
1698 free(arg_default_unit);
1699 strv_free(arg_default_controllers);
1700 free_join_controllers();
1707 unsigned i, args_size;
1709 /* Close and disarm the watchdog, so that the new
1710 * instance can reinitialize it, but doesn't get
1711 * rebooted while we do that */
1712 watchdog_close(true);
1714 if (switch_root_dir) {
1715 /* Kill all remaining processes from the
1716 * initrd, but don't wait for them, so that we
1717 * can handle the SIGCHLD for them after
1719 broadcast_signal(SIGTERM, false);
1721 /* And switch root */
1722 r = switch_root(switch_root_dir);
1724 log_error("Failed to switch root, ignoring: %s", strerror(-r));
1727 args_size = MAX(6, argc+1);
1728 args = newa(const char*, args_size);
1730 if (!switch_root_init) {
1733 /* First try to spawn ourselves with the right
1734 * path, and with full serialization. We do
1735 * this only if the user didn't specify an
1736 * explicit init to spawn. */
1738 assert(serialization);
1741 snprintf(sfd, sizeof(sfd), "%i", fileno(serialization));
1745 args[i++] = SYSTEMD_BINARY_PATH;
1746 if (switch_root_dir)
1747 args[i++] = "--switched-root";
1748 args[i++] = arg_running_as == MANAGER_SYSTEM ? "--system" : "--user";
1749 args[i++] = "--deserialize";
1753 assert(i <= args_size);
1754 execv(args[0], (char* const*) args);
1757 /* Try the fallback, if there is any, without any
1758 * serialization. We pass the original argv[] and
1759 * envp[]. (Well, modulo the ordering changes due to
1760 * getopt() in argv[], and some cleanups in envp[],
1761 * but let's hope that doesn't matter.) */
1763 if (serialization) {
1764 fclose(serialization);
1765 serialization = NULL;
1773 /* Reopen the console */
1774 make_console_stdio();
1776 for (j = 1, i = 1; j < argc; j++)
1777 args[i++] = argv[j];
1779 assert(i <= args_size);
1781 if (switch_root_init) {
1782 args[0] = switch_root_init;
1783 execv(args[0], (char* const*) args);
1784 log_warning("Failed to execute configured init, trying fallback: %m");
1787 args[0] = "/sbin/init";
1788 execv(args[0], (char* const*) args);
1790 if (errno == ENOENT) {
1791 log_warning("No /sbin/init, trying fallback");
1793 args[0] = "/bin/sh";
1795 execv(args[0], (char* const*) args);
1796 log_error("Failed to execute /bin/sh, giving up: %m");
1798 log_warning("Failed to execute /sbin/init, giving up: %m");
1802 fclose(serialization);
1807 if (shutdown_verb) {
1808 const char * command_line[] = {
1809 SYSTEMD_SHUTDOWN_BINARY_PATH,
1815 if (arm_reboot_watchdog && arg_shutdown_watchdog > 0) {
1818 /* If we reboot let's set the shutdown
1819 * watchdog and tell the shutdown binary to
1820 * repeatedly ping it */
1821 watchdog_set_timeout(&arg_shutdown_watchdog);
1822 watchdog_close(false);
1824 /* Tell the binary how often to ping */
1825 snprintf(e, sizeof(e), "WATCHDOG_USEC=%llu", (unsigned long long) arg_shutdown_watchdog);
1828 env_block = strv_append(environ, e);
1830 env_block = strv_copy(environ);
1831 watchdog_close(true);
1834 execve(SYSTEMD_SHUTDOWN_BINARY_PATH, (char **) command_line, env_block);
1836 log_error("Failed to execute shutdown binary, freezing: %m");
~ianmdlvl / elogind.git / blob