1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
22 #include <dbus/dbus.h>
28 #include <sys/types.h>
34 #include <sys/prctl.h>
35 #include <sys/mount.h>
39 #include "load-fragment.h"
42 #include "conf-parser.h"
43 #include "bus-errors.h"
51 #include "path-util.h"
52 #include "switch-root.h"
53 #include "capability.h"
55 #include "mount-setup.h"
56 #include "loopback-setup.h"
57 #include "kmod-setup.h"
58 #include "hostname-setup.h"
59 #include "machine-id-setup.h"
60 #include "locale-setup.h"
62 #include "selinux-setup.h"
63 #include "ima-setup.h"
69 ACTION_DUMP_CONFIGURATION_ITEMS,
71 } arg_action = ACTION_RUN;
73 static char *arg_default_unit = NULL;
74 static ManagerRunningAs arg_running_as = _MANAGER_RUNNING_AS_INVALID;
76 static bool arg_dump_core = true;
77 static bool arg_crash_shell = false;
78 static int arg_crash_chvt = -1;
79 static bool arg_confirm_spawn = false;
80 static bool arg_show_status = true;
81 static bool arg_switched_root = false;
82 #ifdef HAVE_SYSV_COMPAT
83 static bool arg_sysv_console = true;
85 static char **arg_default_controllers = NULL;
86 static char ***arg_join_controllers = NULL;
87 static ExecOutput arg_default_std_output = EXEC_OUTPUT_JOURNAL;
88 static ExecOutput arg_default_std_error = EXEC_OUTPUT_INHERIT;
89 static usec_t arg_runtime_watchdog = 0;
90 static usec_t arg_shutdown_watchdog = 10 * USEC_PER_MINUTE;
91 static struct rlimit *arg_default_rlimit[RLIMIT_NLIMITS] = {};
92 static uint64_t arg_capability_bounding_set_drop = 0;
93 static nsec_t arg_timer_slack_nsec = (nsec_t) -1;
95 static FILE* serialization = NULL;
97 static void nop_handler(int sig) {
100 _noreturn_ static void crash(int sig) {
103 log_error("Caught <%s>, not dumping core.", signal_to_string(sig));
108 /* We want to wait for the core process, hence let's enable SIGCHLD */
110 sa.sa_handler = nop_handler;
111 sa.sa_flags = SA_NOCLDSTOP|SA_RESTART;
112 assert_se(sigaction(SIGCHLD, &sa, NULL) == 0);
114 if ((pid = fork()) < 0)
115 log_error("Caught <%s>, cannot fork for core dump: %s", signal_to_string(sig), strerror(errno));
120 /* Enable default signal handler for core dump */
122 sa.sa_handler = SIG_DFL;
123 assert_se(sigaction(sig, &sa, NULL) == 0);
125 /* Don't limit the core dump size */
127 rl.rlim_cur = RLIM_INFINITY;
128 rl.rlim_max = RLIM_INFINITY;
129 setrlimit(RLIMIT_CORE, &rl);
131 /* Just to be sure... */
132 assert_se(chdir("/") == 0);
134 /* Raise the signal again */
137 assert_not_reached("We shouldn't be here...");
144 /* Order things nicely. */
145 if ((r = wait_for_terminate(pid, &status)) < 0)
146 log_error("Caught <%s>, waitpid() failed: %s", signal_to_string(sig), strerror(-r));
147 else if (status.si_code != CLD_DUMPED)
148 log_error("Caught <%s>, core dump failed.", signal_to_string(sig));
150 log_error("Caught <%s>, dumped core as pid %lu.", signal_to_string(sig), (unsigned long) pid);
155 chvt(arg_crash_chvt);
157 if (arg_crash_shell) {
161 log_info("Executing crash shell in 10s...");
164 /* Let the kernel reap children for us */
166 sa.sa_handler = SIG_IGN;
167 sa.sa_flags = SA_NOCLDSTOP|SA_NOCLDWAIT|SA_RESTART;
168 assert_se(sigaction(SIGCHLD, &sa, NULL) == 0);
170 if ((pid = fork()) < 0)
171 log_error("Failed to fork off crash shell: %s", strerror(errno));
175 if ((fd = acquire_terminal("/dev/console", false, true, true)) < 0)
176 log_error("Failed to acquire terminal: %s", strerror(-fd));
177 else if ((r = make_stdio(fd)) < 0)
178 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
180 execl("/bin/sh", "/bin/sh", NULL);
182 log_error("execl() failed: %s", strerror(errno));
186 log_info("Successfully spawned crash shell as pid %lu.", (unsigned long) pid);
189 log_info("Freezing execution.");
193 static void install_crash_handler(void) {
198 sa.sa_handler = crash;
199 sa.sa_flags = SA_NODEFER;
201 sigaction_many(&sa, SIGNALS_CRASH_HANDLER, -1);
204 static int console_setup(bool do_reset) {
207 /* If we are init, we connect stdin/stdout/stderr to /dev/null
208 * and make sure we don't have a controlling tty. */
215 tty_fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
217 log_error("Failed to open /dev/console: %s", strerror(-tty_fd));
221 /* We don't want to force text mode.
222 * plymouth may be showing pictures already from initrd. */
223 r = reset_terminal_fd(tty_fd, false);
225 log_error("Failed to reset /dev/console: %s", strerror(-r));
227 close_nointr_nofail(tty_fd);
231 static int set_default_unit(const char *u) {
240 free(arg_default_unit);
241 arg_default_unit = c;
246 static int parse_proc_cmdline_word(const char *word) {
248 static const char * const rlmap[] = {
249 "emergency", SPECIAL_EMERGENCY_TARGET,
250 "-b", SPECIAL_EMERGENCY_TARGET,
251 "single", SPECIAL_RESCUE_TARGET,
252 "-s", SPECIAL_RESCUE_TARGET,
253 "s", SPECIAL_RESCUE_TARGET,
254 "S", SPECIAL_RESCUE_TARGET,
255 "1", SPECIAL_RESCUE_TARGET,
256 "2", SPECIAL_RUNLEVEL2_TARGET,
257 "3", SPECIAL_RUNLEVEL3_TARGET,
258 "4", SPECIAL_RUNLEVEL4_TARGET,
259 "5", SPECIAL_RUNLEVEL5_TARGET,
264 if (startswith(word, "systemd.unit=")) {
267 return set_default_unit(word + 13);
269 } else if (startswith(word, "rd.systemd.unit=")) {
272 return set_default_unit(word + 16);
274 } else if (startswith(word, "systemd.log_target=")) {
276 if (log_set_target_from_string(word + 19) < 0)
277 log_warning("Failed to parse log target %s. Ignoring.", word + 19);
279 } else if (startswith(word, "systemd.log_level=")) {
281 if (log_set_max_level_from_string(word + 18) < 0)
282 log_warning("Failed to parse log level %s. Ignoring.", word + 18);
284 } else if (startswith(word, "systemd.log_color=")) {
286 if (log_show_color_from_string(word + 18) < 0)
287 log_warning("Failed to parse log color setting %s. Ignoring.", word + 18);
289 } else if (startswith(word, "systemd.log_location=")) {
291 if (log_show_location_from_string(word + 21) < 0)
292 log_warning("Failed to parse log location setting %s. Ignoring.", word + 21);
294 } else if (startswith(word, "systemd.dump_core=")) {
297 if ((r = parse_boolean(word + 18)) < 0)
298 log_warning("Failed to parse dump core switch %s. Ignoring.", word + 18);
302 } else if (startswith(word, "systemd.crash_shell=")) {
305 if ((r = parse_boolean(word + 20)) < 0)
306 log_warning("Failed to parse crash shell switch %s. Ignoring.", word + 20);
310 } else if (startswith(word, "systemd.confirm_spawn=")) {
313 if ((r = parse_boolean(word + 22)) < 0)
314 log_warning("Failed to parse confirm spawn switch %s. Ignoring.", word + 22);
316 arg_confirm_spawn = r;
318 } else if (startswith(word, "systemd.crash_chvt=")) {
321 if (safe_atoi(word + 19, &k) < 0)
322 log_warning("Failed to parse crash chvt switch %s. Ignoring.", word + 19);
326 } else if (startswith(word, "systemd.show_status=")) {
329 if ((r = parse_boolean(word + 20)) < 0)
330 log_warning("Failed to parse show status switch %s. Ignoring.", word + 20);
333 } else if (startswith(word, "systemd.default_standard_output=")) {
336 if ((r = exec_output_from_string(word + 32)) < 0)
337 log_warning("Failed to parse default standard output switch %s. Ignoring.", word + 32);
339 arg_default_std_output = r;
340 } else if (startswith(word, "systemd.default_standard_error=")) {
343 if ((r = exec_output_from_string(word + 31)) < 0)
344 log_warning("Failed to parse default standard error switch %s. Ignoring.", word + 31);
346 arg_default_std_error = r;
347 } else if (startswith(word, "systemd.setenv=")) {
351 cenv = strdup(word + 15);
355 eq = strchr(cenv, '=');
359 log_warning("unsetenv failed %s. Ignoring.", strerror(errno));
362 r = setenv(cenv, eq + 1, 1);
364 log_warning("setenv failed %s. Ignoring.", strerror(errno));
367 #ifdef HAVE_SYSV_COMPAT
368 } else if (startswith(word, "systemd.sysv_console=")) {
371 if ((r = parse_boolean(word + 21)) < 0)
372 log_warning("Failed to parse SysV console switch %s. Ignoring.", word + 20);
374 arg_sysv_console = r;
377 } else if (startswith(word, "systemd.") ||
378 (in_initrd() && startswith(word, "rd.systemd."))) {
380 log_warning("Unknown kernel switch %s. Ignoring.", word);
382 log_info("Supported kernel switches:\n"
383 "systemd.unit=UNIT Default unit to start\n"
384 "rd.systemd.unit=UNIT Default unit to start when run in initrd\n"
385 "systemd.dump_core=0|1 Dump core on crash\n"
386 "systemd.crash_shell=0|1 Run shell on crash\n"
387 "systemd.crash_chvt=N Change to VT #N on crash\n"
388 "systemd.confirm_spawn=0|1 Confirm every process spawn\n"
389 "systemd.show_status=0|1 Show status updates on the console during bootup\n"
390 #ifdef HAVE_SYSV_COMPAT
391 "systemd.sysv_console=0|1 Connect output of SysV scripts to console\n"
393 "systemd.log_target=console|kmsg|journal|journal-or-kmsg|syslog|syslog-or-kmsg|null\n"
395 "systemd.log_level=LEVEL Log level\n"
396 "systemd.log_color=0|1 Highlight important log messages\n"
397 "systemd.log_location=0|1 Include code location in log messages\n"
398 "systemd.default_standard_output=null|tty|syslog|syslog+console|kmsg|kmsg+console|journal|journal+console\n"
399 " Set default log output for services\n"
400 "systemd.default_standard_error=null|tty|syslog|syslog+console|kmsg|kmsg+console|journal|journal+console\n"
401 " Set default log error output for services\n"
402 "systemd.setenv=ASSIGNMENT Set an environment variable for all spawned processes\n");
404 } else if (streq(word, "quiet")) {
405 arg_show_status = false;
406 #ifdef HAVE_SYSV_COMPAT
407 arg_sysv_console = false;
409 } else if (!in_initrd()) {
412 /* SysV compatibility */
413 for (i = 0; i < ELEMENTSOF(rlmap); i += 2)
414 if (streq(word, rlmap[i]))
415 return set_default_unit(rlmap[i+1]);
421 static int config_parse_level2(
422 const char *filename,
435 log_set_max_level_from_string(rvalue);
439 static int config_parse_target(
440 const char *filename,
453 log_set_target_from_string(rvalue);
457 static int config_parse_color(
458 const char *filename,
471 log_show_color_from_string(rvalue);
475 static int config_parse_location(
476 const char *filename,
489 log_show_location_from_string(rvalue);
493 static int config_parse_cpu_affinity2(
494 const char *filename,
513 FOREACH_WORD_QUOTED(w, l, rvalue, state) {
518 if (!(t = strndup(w, l)))
521 r = safe_atou(t, &cpu);
525 if (!(c = cpu_set_malloc(&ncpus)))
528 if (r < 0 || cpu >= ncpus) {
529 log_error("[%s:%u] Failed to parse CPU affinity: %s", filename, line, rvalue);
534 CPU_SET_S(cpu, CPU_ALLOC_SIZE(ncpus), c);
538 if (sched_setaffinity(0, CPU_ALLOC_SIZE(ncpus), c) < 0)
539 log_warning("Failed to set CPU affinity: %m");
547 static void strv_free_free(char ***l) {
559 static void free_join_controllers(void) {
560 if (!arg_join_controllers)
563 strv_free_free(arg_join_controllers);
564 arg_join_controllers = NULL;
567 static int config_parse_join_controllers(
568 const char *filename,
585 free_join_controllers();
587 FOREACH_WORD_QUOTED(w, length, rvalue, state) {
590 s = strndup(w, length);
594 l = strv_split(s, ",");
599 if (strv_length(l) <= 1) {
604 if (!arg_join_controllers) {
605 arg_join_controllers = new(char**, 2);
606 if (!arg_join_controllers) {
611 arg_join_controllers[0] = l;
612 arg_join_controllers[1] = NULL;
619 t = new0(char**, n+2);
627 for (a = arg_join_controllers; *a; a++) {
629 if (strv_overlap(*a, l)) {
632 c = strv_merge(*a, l);
655 t[n++] = strv_uniq(l);
657 strv_free_free(arg_join_controllers);
658 arg_join_controllers = t;
665 static int parse_config_file(void) {
667 const ConfigTableItem items[] = {
668 { "Manager", "LogLevel", config_parse_level2, 0, NULL },
669 { "Manager", "LogTarget", config_parse_target, 0, NULL },
670 { "Manager", "LogColor", config_parse_color, 0, NULL },
671 { "Manager", "LogLocation", config_parse_location, 0, NULL },
672 { "Manager", "DumpCore", config_parse_bool, 0, &arg_dump_core },
673 { "Manager", "CrashShell", config_parse_bool, 0, &arg_crash_shell },
674 { "Manager", "ShowStatus", config_parse_bool, 0, &arg_show_status },
675 #ifdef HAVE_SYSV_COMPAT
676 { "Manager", "SysVConsole", config_parse_bool, 0, &arg_sysv_console },
678 { "Manager", "CrashChVT", config_parse_int, 0, &arg_crash_chvt },
679 { "Manager", "CPUAffinity", config_parse_cpu_affinity2, 0, NULL },
680 { "Manager", "DefaultControllers", config_parse_strv, 0, &arg_default_controllers },
681 { "Manager", "DefaultStandardOutput", config_parse_output, 0, &arg_default_std_output },
682 { "Manager", "DefaultStandardError", config_parse_output, 0, &arg_default_std_error },
683 { "Manager", "JoinControllers", config_parse_join_controllers, 0, &arg_join_controllers },
684 { "Manager", "RuntimeWatchdogSec", config_parse_usec, 0, &arg_runtime_watchdog },
685 { "Manager", "ShutdownWatchdogSec", config_parse_usec, 0, &arg_shutdown_watchdog },
686 { "Manager", "CapabilityBoundingSet", config_parse_bounding_set, 0, &arg_capability_bounding_set_drop },
687 { "Manager", "TimerSlackNSec", config_parse_nsec, 0, &arg_timer_slack_nsec },
688 { "Manager", "DefaultLimitCPU", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_CPU]},
689 { "Manager", "DefaultLimitFSIZE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_FSIZE]},
690 { "Manager", "DefaultLimitDATA", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_DATA]},
691 { "Manager", "DefaultLimitSTACK", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_STACK]},
692 { "Manager", "DefaultLimitCORE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_CORE]},
693 { "Manager", "DefaultLimitRSS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RSS]},
694 { "Manager", "DefaultLimitNOFILE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NOFILE]},
695 { "Manager", "DefaultLimitAS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_AS]},
696 { "Manager", "DefaultLimitNPROC", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NPROC]},
697 { "Manager", "DefaultLimitMEMLOCK", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_MEMLOCK]},
698 { "Manager", "DefaultLimitLOCKS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_LOCKS]},
699 { "Manager", "DefaultLimitSIGPENDING",config_parse_limit, 0, &arg_default_rlimit[RLIMIT_SIGPENDING]},
700 { "Manager", "DefaultLimitMSGQUEUE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_MSGQUEUE]},
701 { "Manager", "DefaultLimitNICE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NICE]},
702 { "Manager", "DefaultLimitRTPRIO", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RTPRIO]},
703 { "Manager", "DefaultLimitRTTIME", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RTTIME]},
704 { NULL, NULL, NULL, 0, NULL }
711 fn = arg_running_as == MANAGER_SYSTEM ? SYSTEM_CONFIG_FILE : USER_CONFIG_FILE;
717 log_warning("Failed to open configuration file '%s': %m", fn);
721 r = config_parse(fn, f, "Manager\0", config_item_table_lookup, (void*) items, false, NULL);
723 log_warning("Failed to parse configuration file: %s", strerror(-r));
730 static int parse_proc_cmdline(void) {
731 char *line, *w, *state;
735 /* Don't read /proc/cmdline if we are in a container, since
736 * that is only relevant for the host system */
737 if (detect_container(NULL) > 0)
740 if ((r = read_one_line_file("/proc/cmdline", &line)) < 0) {
741 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
745 FOREACH_WORD_QUOTED(w, l, line, state) {
748 if (!(word = strndup(w, l))) {
753 r = parse_proc_cmdline_word(word);
767 static int parse_argv(int argc, char *argv[]) {
770 ARG_LOG_LEVEL = 0x100,
778 ARG_DUMP_CONFIGURATION_ITEMS,
787 ARG_DEFAULT_STD_OUTPUT,
788 ARG_DEFAULT_STD_ERROR
791 static const struct option options[] = {
792 { "log-level", required_argument, NULL, ARG_LOG_LEVEL },
793 { "log-target", required_argument, NULL, ARG_LOG_TARGET },
794 { "log-color", optional_argument, NULL, ARG_LOG_COLOR },
795 { "log-location", optional_argument, NULL, ARG_LOG_LOCATION },
796 { "unit", required_argument, NULL, ARG_UNIT },
797 { "system", no_argument, NULL, ARG_SYSTEM },
798 { "user", no_argument, NULL, ARG_USER },
799 { "test", no_argument, NULL, ARG_TEST },
800 { "help", no_argument, NULL, 'h' },
801 { "dump-configuration-items", no_argument, NULL, ARG_DUMP_CONFIGURATION_ITEMS },
802 { "dump-core", optional_argument, NULL, ARG_DUMP_CORE },
803 { "crash-shell", optional_argument, NULL, ARG_CRASH_SHELL },
804 { "confirm-spawn", optional_argument, NULL, ARG_CONFIRM_SPAWN },
805 { "show-status", optional_argument, NULL, ARG_SHOW_STATUS },
806 #ifdef HAVE_SYSV_COMPAT
807 { "sysv-console", optional_argument, NULL, ARG_SYSV_CONSOLE },
809 { "deserialize", required_argument, NULL, ARG_DESERIALIZE },
810 { "switched-root", no_argument, NULL, ARG_SWITCHED_ROOT },
811 { "introspect", optional_argument, NULL, ARG_INTROSPECT },
812 { "default-standard-output", required_argument, NULL, ARG_DEFAULT_STD_OUTPUT, },
813 { "default-standard-error", required_argument, NULL, ARG_DEFAULT_STD_ERROR, },
825 while ((c = getopt_long(argc, argv, "hDbsz:", options, NULL)) >= 0)
830 if ((r = log_set_max_level_from_string(optarg)) < 0) {
831 log_error("Failed to parse log level %s.", optarg);
839 if ((r = log_set_target_from_string(optarg)) < 0) {
840 log_error("Failed to parse log target %s.", optarg);
849 if ((r = log_show_color_from_string(optarg)) < 0) {
850 log_error("Failed to parse log color setting %s.", optarg);
854 log_show_color(true);
858 case ARG_LOG_LOCATION:
861 if ((r = log_show_location_from_string(optarg)) < 0) {
862 log_error("Failed to parse log location setting %s.", optarg);
866 log_show_location(true);
870 case ARG_DEFAULT_STD_OUTPUT:
872 if ((r = exec_output_from_string(optarg)) < 0) {
873 log_error("Failed to parse default standard output setting %s.", optarg);
876 arg_default_std_output = r;
879 case ARG_DEFAULT_STD_ERROR:
881 if ((r = exec_output_from_string(optarg)) < 0) {
882 log_error("Failed to parse default standard error output setting %s.", optarg);
885 arg_default_std_error = r;
890 if ((r = set_default_unit(optarg)) < 0) {
891 log_error("Failed to set default unit %s: %s", optarg, strerror(-r));
898 arg_running_as = MANAGER_SYSTEM;
902 arg_running_as = MANAGER_USER;
906 arg_action = ACTION_TEST;
909 case ARG_DUMP_CONFIGURATION_ITEMS:
910 arg_action = ACTION_DUMP_CONFIGURATION_ITEMS;
914 r = optarg ? parse_boolean(optarg) : 1;
916 log_error("Failed to parse dump core boolean %s.", optarg);
922 case ARG_CRASH_SHELL:
923 r = optarg ? parse_boolean(optarg) : 1;
925 log_error("Failed to parse crash shell boolean %s.", optarg);
931 case ARG_CONFIRM_SPAWN:
932 r = optarg ? parse_boolean(optarg) : 1;
934 log_error("Failed to parse confirm spawn boolean %s.", optarg);
937 arg_confirm_spawn = r;
940 case ARG_SHOW_STATUS:
941 r = optarg ? parse_boolean(optarg) : 1;
943 log_error("Failed to parse show status boolean %s.", optarg);
949 #ifdef HAVE_SYSV_COMPAT
950 case ARG_SYSV_CONSOLE:
951 r = optarg ? parse_boolean(optarg) : 1;
953 log_error("Failed to parse SysV console boolean %s.", optarg);
956 arg_sysv_console = r;
960 case ARG_DESERIALIZE: {
964 if ((r = safe_atoi(optarg, &fd)) < 0 || fd < 0) {
965 log_error("Failed to parse deserialize option %s.", optarg);
969 if (!(f = fdopen(fd, "r"))) {
970 log_error("Failed to open serialization fd: %m");
975 fclose(serialization);
982 case ARG_SWITCHED_ROOT:
983 arg_switched_root = true;
986 case ARG_INTROSPECT: {
987 const char * const * i = NULL;
989 for (i = bus_interface_table; *i; i += 2)
990 if (!optarg || streq(i[0], optarg)) {
991 fputs(DBUS_INTROSPECT_1_0_XML_DOCTYPE_DECL_NODE
994 fputs("</node>\n", stdout);
1000 if (!i[0] && optarg)
1001 log_error("Unknown interface %s.", optarg);
1003 arg_action = ACTION_DONE;
1008 arg_action = ACTION_HELP;
1012 log_set_max_level(LOG_DEBUG);
1018 /* Just to eat away the sysvinit kernel
1019 * cmdline args without getopt() error
1020 * messages that we'll parse in
1021 * parse_proc_cmdline_word() or ignore. */
1025 if (getpid() != 1) {
1026 log_error("Unknown option code %c", c);
1033 if (optind < argc && getpid() != 1) {
1034 /* Hmm, when we aren't run as init system
1035 * let's complain about excess arguments */
1037 log_error("Excess arguments.");
1041 if (detect_container(NULL) > 0) {
1044 /* All /proc/cmdline arguments the kernel didn't
1045 * understand it passed to us. We're not really
1046 * interested in that usually since /proc/cmdline is
1047 * more interesting and complete. With one exception:
1048 * if we are run in a container /proc/cmdline is not
1049 * relevant for the container, hence we rely on argv[]
1052 for (a = argv; a < argv + argc; a++)
1053 if ((r = parse_proc_cmdline_word(*a)) < 0)
1060 static int help(void) {
1062 printf("%s [OPTIONS...]\n\n"
1063 "Starts up and maintains the system or user services.\n\n"
1064 " -h --help Show this help\n"
1065 " --test Determine startup sequence, dump it and exit\n"
1066 " --dump-configuration-items Dump understood unit configuration items\n"
1067 " --introspect[=INTERFACE] Extract D-Bus interface data\n"
1068 " --unit=UNIT Set default unit\n"
1069 " --system Run a system instance, even if PID != 1\n"
1070 " --user Run a user instance\n"
1071 " --dump-core[=0|1] Dump core on crash\n"
1072 " --crash-shell[=0|1] Run shell on crash\n"
1073 " --confirm-spawn[=0|1] Ask for confirmation when spawning processes\n"
1074 " --show-status[=0|1] Show status updates on the console during bootup\n"
1075 #ifdef HAVE_SYSV_COMPAT
1076 " --sysv-console[=0|1] Connect output of SysV scripts to console\n"
1078 " --log-target=TARGET Set log target (console, journal, syslog, kmsg, journal-or-kmsg, syslog-or-kmsg, null)\n"
1079 " --log-level=LEVEL Set log level (debug, info, notice, warning, err, crit, alert, emerg)\n"
1080 " --log-color[=0|1] Highlight important log messages\n"
1081 " --log-location[=0|1] Include code location in log messages\n"
1082 " --default-standard-output= Set default standard output for services\n"
1083 " --default-standard-error= Set default standard error output for services\n",
1084 program_invocation_short_name);
1089 static int prepare_reexecute(Manager *m, FILE **_f, FDSet **_fds) {
1098 /* Make sure nothing is really destructed when we shut down */
1101 if ((r = manager_open_serialization(m, &f)) < 0) {
1102 log_error("Failed to create serialization file: %s", strerror(-r));
1106 if (!(fds = fdset_new())) {
1108 log_error("Failed to allocate fd set: %s", strerror(-r));
1112 if ((r = manager_serialize(m, f, fds)) < 0) {
1113 log_error("Failed to serialize state: %s", strerror(-r));
1117 if (fseeko(f, 0, SEEK_SET) < 0) {
1118 log_error("Failed to rewind serialization fd: %m");
1122 if ((r = fd_cloexec(fileno(f), false)) < 0) {
1123 log_error("Failed to disable O_CLOEXEC for serialization: %s", strerror(-r));
1127 if ((r = fdset_cloexec(fds, false)) < 0) {
1128 log_error("Failed to disable O_CLOEXEC for serialization fds: %s", strerror(-r));
1146 static struct dual_timestamp* parse_initrd_timestamp(struct dual_timestamp *t) {
1148 unsigned long long a, b;
1152 e = getenv("RD_TIMESTAMP");
1156 if (sscanf(e, "%llu %llu", &a, &b) != 2)
1159 t->realtime = (usec_t) a;
1160 t->monotonic = (usec_t) b;
1165 static void test_mtab(void) {
1168 /* Check that /etc/mtab is a symlink */
1170 if (readlink_malloc("/etc/mtab", &p) >= 0) {
1173 b = streq(p, "/proc/self/mounts") || streq(p, "/proc/mounts");
1180 log_warning("/etc/mtab is not a symlink or not pointing to /proc/self/mounts. "
1181 "This is not supported anymore. "
1182 "Please make sure to replace this file by a symlink to avoid incorrect or misleading mount(8) output.");
1185 static void test_usr(void) {
1187 /* Check that /usr is not a separate fs */
1189 if (dir_is_empty("/usr") <= 0)
1192 log_warning("/usr appears to be on its own filesytem and is not already mounted. This is not a supported setup. "
1193 "Some things will probably break (sometimes even silently) in mysterious ways. "
1194 "Consult http://freedesktop.org/wiki/Software/systemd/separate-usr-is-broken for more information.");
1197 static void test_cgroups(void) {
1199 if (access("/proc/cgroups", F_OK) >= 0)
1202 log_warning("CONFIG_CGROUPS was not set when your kernel was compiled. "
1203 "Systems without control groups are not supported. "
1204 "We will now sleep for 10s, and then continue boot-up. "
1205 "Expect breakage and please do not file bugs. "
1206 "Instead fix your kernel and enable CONFIG_CGROUPS. "
1207 "Consult http://0pointer.de/blog/projects/cgroups-vs-cgroups.html for more information.");
1212 int main(int argc, char *argv[]) {
1214 int r, retval = EXIT_FAILURE;
1215 usec_t before_startup, after_startup;
1216 char timespan[FORMAT_TIMESPAN_MAX];
1218 bool reexecute = false;
1219 const char *shutdown_verb = NULL;
1220 dual_timestamp initrd_timestamp = { 0ULL, 0ULL };
1221 static char systemd[] = "systemd";
1222 bool skip_setup = false;
1224 bool loaded_policy = false;
1225 bool arm_reboot_watchdog = false;
1226 bool queue_default_job = false;
1227 char *switch_root_dir = NULL, *switch_root_init = NULL;
1229 #ifdef HAVE_SYSV_COMPAT
1230 if (getpid() != 1 && strstr(program_invocation_short_name, "init")) {
1231 /* This is compatibility support for SysV, where
1232 * calling init as a user is identical to telinit. */
1235 execv(SYSTEMCTL_BINARY_PATH, argv);
1236 log_error("Failed to exec " SYSTEMCTL_BINARY_PATH ": %m");
1241 /* Determine if this is a reexecution or normal bootup. We do
1242 * the full command line parsing much later, so let's just
1243 * have a quick peek here. */
1244 for (j = 1; j < argc; j++)
1245 if (streq(argv[j], "--deserialize")) {
1250 /* If we have switched root, do all the special setup
1252 for (j = 1; j < argc; j++)
1253 if (streq(argv[j], "--switched-root")) {
1258 /* If we get started via the /sbin/init symlink then we are
1259 called 'init'. After a subsequent reexecution we are then
1260 called 'systemd'. That is confusing, hence let's call us
1261 systemd right-away. */
1262 program_invocation_short_name = systemd;
1263 prctl(PR_SET_NAME, systemd);
1268 log_show_color(isatty(STDERR_FILENO) > 0);
1269 log_show_location(false);
1270 log_set_max_level(LOG_INFO);
1272 if (getpid() == 1) {
1274 char *rd_timestamp = NULL;
1276 dual_timestamp_get(&initrd_timestamp);
1277 asprintf(&rd_timestamp, "%llu %llu",
1278 (unsigned long long) initrd_timestamp.realtime,
1279 (unsigned long long) initrd_timestamp.monotonic);
1281 setenv("RD_TIMESTAMP", rd_timestamp, 1);
1286 arg_running_as = MANAGER_SYSTEM;
1287 log_set_target(detect_container(NULL) > 0 ? LOG_TARGET_JOURNAL : LOG_TARGET_JOURNAL_OR_KMSG);
1290 if (selinux_setup(&loaded_policy) < 0)
1292 if (ima_setup() < 0)
1298 if (label_init(NULL) < 0)
1302 if (hwclock_is_localtime() > 0) {
1305 r = hwclock_apply_localtime_delta(&min);
1307 log_error("Failed to apply local time delta, ignoring: %s", strerror(-r));
1309 log_info("RTC configured in localtime, applying delta of %i minutes to system time.", min);
1313 arg_running_as = MANAGER_USER;
1314 log_set_target(LOG_TARGET_AUTO);
1318 /* Initialize default unit */
1319 if (set_default_unit(SPECIAL_DEFAULT_TARGET) < 0)
1322 /* By default, mount "cpu" and "cpuacct" together */
1323 arg_join_controllers = new(char**, 2);
1324 if (!arg_join_controllers)
1327 arg_join_controllers[0] = strv_new("cpu", "cpuacct", NULL);
1328 arg_join_controllers[1] = NULL;
1330 if (!arg_join_controllers[0])
1333 /* Mount /proc, /sys and friends, so that /proc/cmdline and
1334 * /proc/$PID/fd is available. */
1335 if (geteuid() == 0 && !getenv("SYSTEMD_SKIP_API_MOUNTS")) {
1336 r = mount_setup(loaded_policy);
1341 /* Reset all signal handlers. */
1342 assert_se(reset_all_signal_handlers() == 0);
1344 /* If we are init, we can block sigkill. Yay. */
1345 ignore_signals(SIGNALS_IGNORE, -1);
1347 if (parse_config_file() < 0)
1350 if (arg_running_as == MANAGER_SYSTEM)
1351 if (parse_proc_cmdline() < 0)
1354 log_parse_environment();
1356 if (parse_argv(argc, argv) < 0)
1359 if (arg_action == ACTION_TEST && geteuid() == 0) {
1360 log_error("Don't run test mode as root.");
1364 if (arg_running_as == MANAGER_SYSTEM &&
1365 arg_action == ACTION_RUN &&
1366 running_in_chroot() > 0) {
1367 log_error("Cannot be run in a chroot() environment.");
1371 if (arg_action == ACTION_HELP) {
1374 } else if (arg_action == ACTION_DUMP_CONFIGURATION_ITEMS) {
1375 unit_dump_config_items(stdout);
1376 retval = EXIT_SUCCESS;
1378 } else if (arg_action == ACTION_DONE) {
1379 retval = EXIT_SUCCESS;
1383 assert_se(arg_action == ACTION_RUN || arg_action == ACTION_TEST);
1385 /* Close logging fds, in order not to confuse fdset below */
1388 /* Remember open file descriptors for later deserialization */
1389 if (serialization) {
1390 r = fdset_new_fill(&fds);
1392 log_error("Failed to allocate fd set: %s", strerror(-r));
1396 assert_se(fdset_remove(fds, fileno(serialization)) >= 0);
1398 close_all_fds(NULL, 0);
1400 /* Set up PATH unless it is already set */
1402 #ifdef HAVE_SPLIT_USR
1403 "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
1405 "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin",
1407 arg_running_as == MANAGER_SYSTEM);
1409 if (arg_running_as == MANAGER_SYSTEM) {
1410 /* Parse the data passed to us. We leave this
1411 * variables set, but the manager later on will not
1412 * pass them on to our children. */
1414 parse_initrd_timestamp(&initrd_timestamp);
1416 /* Unset some environment variables passed in from the
1417 * kernel that don't really make sense for us. */
1421 /* When we are invoked by a shell, these might be set,
1422 * but make little sense to pass on */
1427 /* When we are invoked by a chroot-like tool such as
1428 * nspawn, these might be set, but make little sense
1431 unsetenv("LOGNAME");
1433 /* All other variables are left as is, so that clients
1434 * can still read them via /proc/1/environ */
1437 /* Move out of the way, so that we won't block unmounts */
1438 assert_se(chdir("/") == 0);
1440 if (arg_running_as == MANAGER_SYSTEM) {
1441 /* Become a session leader if we aren't one yet. */
1444 /* Disable the umask logic */
1448 /* Make sure D-Bus doesn't fiddle with the SIGPIPE handlers */
1449 dbus_connection_set_change_sigpipe(FALSE);
1451 /* Reset the console, but only if this is really init and we
1452 * are freshly booted */
1453 if (arg_running_as == MANAGER_SYSTEM && arg_action == ACTION_RUN) {
1454 console_setup(getpid() == 1 && !skip_setup);
1458 /* Open the logging devices, if possible and necessary */
1461 /* Make sure we leave a core dump without panicing the
1464 install_crash_handler();
1466 if (geteuid() == 0 && !getenv("SYSTEMD_SKIP_API_MOUNTS")) {
1467 r = mount_cgroup_controllers(arg_join_controllers);
1472 log_full(arg_running_as == MANAGER_SYSTEM ? LOG_INFO : LOG_DEBUG,
1473 PACKAGE_STRING " running in %s mode. (" SYSTEMD_FEATURES "; " DISTRIBUTION ")", manager_running_as_to_string(arg_running_as));
1475 if (arg_running_as == MANAGER_SYSTEM && !skip_setup) {
1478 if (arg_show_status || plymouth_running())
1491 if (arg_running_as == MANAGER_SYSTEM && arg_runtime_watchdog > 0)
1492 watchdog_set_timeout(&arg_runtime_watchdog);
1494 if (arg_timer_slack_nsec != (nsec_t) -1)
1495 if (prctl(PR_SET_TIMERSLACK, arg_timer_slack_nsec) < 0)
1496 log_error("Failed to adjust timer slack: %m");
1498 if (arg_capability_bounding_set_drop) {
1499 r = capability_bounding_set_drop(arg_capability_bounding_set_drop, true);
1501 log_error("Failed to drop capability bounding set: %s", strerror(-r));
1504 r = capability_bounding_set_drop_usermode(arg_capability_bounding_set_drop);
1506 log_error("Failed to drop capability bounding set of usermode helpers: %s", strerror(-r));
1511 r = manager_new(arg_running_as, &m);
1513 log_error("Failed to allocate manager object: %s", strerror(-r));
1517 m->confirm_spawn = arg_confirm_spawn;
1518 #ifdef HAVE_SYSV_COMPAT
1519 m->sysv_console = arg_sysv_console;
1521 m->default_std_output = arg_default_std_output;
1522 m->default_std_error = arg_default_std_error;
1523 m->runtime_watchdog = arg_runtime_watchdog;
1524 m->shutdown_watchdog = arg_shutdown_watchdog;
1526 manager_set_default_rlimits(m, arg_default_rlimit);
1528 if (dual_timestamp_is_set(&initrd_timestamp))
1529 m->initrd_timestamp = initrd_timestamp;
1531 if (arg_default_controllers)
1532 manager_set_default_controllers(m, arg_default_controllers);
1534 manager_set_show_status(m, arg_show_status);
1536 /* Remember whether we should queue the default job */
1537 queue_default_job = !serialization || arg_switched_root;
1539 before_startup = now(CLOCK_MONOTONIC);
1541 r = manager_startup(m, serialization, fds);
1543 log_error("Failed to fully start up daemon: %s", strerror(-r));
1545 /* This will close all file descriptors that were opened, but
1546 * not claimed by any unit. */
1552 if (serialization) {
1553 fclose(serialization);
1554 serialization = NULL;
1557 if (queue_default_job) {
1559 Unit *target = NULL;
1560 Job *default_unit_job;
1562 dbus_error_init(&error);
1564 log_debug("Activating default unit: %s", arg_default_unit);
1566 r = manager_load_unit(m, arg_default_unit, NULL, &error, &target);
1568 log_error("Failed to load default target: %s", bus_error(&error, r));
1569 dbus_error_free(&error);
1570 } else if (target->load_state == UNIT_ERROR)
1571 log_error("Failed to load default target: %s", strerror(-target->load_error));
1572 else if (target->load_state == UNIT_MASKED)
1573 log_error("Default target masked.");
1575 if (!target || target->load_state != UNIT_LOADED) {
1576 log_info("Trying to load rescue target...");
1578 r = manager_load_unit(m, SPECIAL_RESCUE_TARGET, NULL, &error, &target);
1580 log_error("Failed to load rescue target: %s", bus_error(&error, r));
1581 dbus_error_free(&error);
1583 } else if (target->load_state == UNIT_ERROR) {
1584 log_error("Failed to load rescue target: %s", strerror(-target->load_error));
1586 } else if (target->load_state == UNIT_MASKED) {
1587 log_error("Rescue target masked.");
1592 assert(target->load_state == UNIT_LOADED);
1594 if (arg_action == ACTION_TEST) {
1595 printf("-> By units:\n");
1596 manager_dump_units(m, stdout, "\t");
1599 r = manager_add_job(m, JOB_START, target, JOB_REPLACE, false, &error, &default_unit_job);
1601 log_error("Failed to start default target: %s", bus_error(&error, r));
1602 dbus_error_free(&error);
1605 m->default_unit_job_id = default_unit_job->id;
1607 after_startup = now(CLOCK_MONOTONIC);
1608 log_full(arg_action == ACTION_TEST ? LOG_INFO : LOG_DEBUG,
1609 "Loaded units and determined initial transaction in %s.",
1610 format_timespan(timespan, sizeof(timespan), after_startup - before_startup));
1612 if (arg_action == ACTION_TEST) {
1613 printf("-> By jobs:\n");
1614 manager_dump_jobs(m, stdout, "\t");
1615 retval = EXIT_SUCCESS;
1621 r = manager_loop(m);
1623 log_error("Failed to run mainloop: %s", strerror(-r));
1627 switch (m->exit_code) {
1630 retval = EXIT_SUCCESS;
1634 case MANAGER_RELOAD:
1635 log_info("Reloading.");
1636 r = manager_reload(m);
1638 log_error("Failed to reload: %s", strerror(-r));
1641 case MANAGER_REEXECUTE:
1643 if (prepare_reexecute(m, &serialization, &fds) < 0)
1647 log_notice("Reexecuting.");
1650 case MANAGER_SWITCH_ROOT:
1651 /* Steal the switch root parameters */
1652 switch_root_dir = m->switch_root;
1653 switch_root_init = m->switch_root_init;
1654 m->switch_root = m->switch_root_init = NULL;
1656 if (!switch_root_init)
1657 if (prepare_reexecute(m, &serialization, &fds) < 0)
1661 log_notice("Switching root.");
1664 case MANAGER_REBOOT:
1665 case MANAGER_POWEROFF:
1667 case MANAGER_KEXEC: {
1668 static const char * const table[_MANAGER_EXIT_CODE_MAX] = {
1669 [MANAGER_REBOOT] = "reboot",
1670 [MANAGER_POWEROFF] = "poweroff",
1671 [MANAGER_HALT] = "halt",
1672 [MANAGER_KEXEC] = "kexec"
1675 assert_se(shutdown_verb = table[m->exit_code]);
1676 arm_reboot_watchdog = m->exit_code == MANAGER_REBOOT;
1678 log_notice("Shutting down.");
1683 assert_not_reached("Unknown exit code.");
1691 for (j = 0; j < RLIMIT_NLIMITS; j++)
1692 free (arg_default_rlimit[j]);
1694 free(arg_default_unit);
1695 strv_free(arg_default_controllers);
1696 free_join_controllers();
1703 unsigned i, args_size;
1705 /* Close and disarm the watchdog, so that the new
1706 * instance can reinitialize it, but doesn't get
1707 * rebooted while we do that */
1708 watchdog_close(true);
1710 if (switch_root_dir) {
1711 r = switch_root(switch_root_dir);
1713 log_error("Failed to switch root, ignoring: %s", strerror(-r));
1716 args_size = MAX(6, argc+1);
1717 args = newa(const char*, args_size);
1719 if (!switch_root_init) {
1722 /* First try to spawn ourselves with the right
1723 * path, and with full serialization. We do
1724 * this only if the user didn't specify an
1725 * explicit init to spawn. */
1727 assert(serialization);
1730 snprintf(sfd, sizeof(sfd), "%i", fileno(serialization));
1734 args[i++] = SYSTEMD_BINARY_PATH;
1735 if (switch_root_dir)
1736 args[i++] = "--switched-root";
1737 args[i++] = arg_running_as == MANAGER_SYSTEM ? "--system" : "--user";
1738 args[i++] = "--deserialize";
1742 assert(i <= args_size);
1743 execv(args[0], (char* const*) args);
1746 /* Try the fallback, if there is any, without any
1747 * serialization. We pass the original argv[] and
1748 * envp[]. (Well, modulo the ordering changes due to
1749 * getopt() in argv[], and some cleanups in envp[],
1750 * but let's hope that doesn't matter.) */
1752 if (serialization) {
1753 fclose(serialization);
1754 serialization = NULL;
1762 for (j = 1, i = 1; j < argc; j++)
1763 args[i++] = argv[j];
1765 assert(i <= args_size);
1767 if (switch_root_init) {
1768 args[0] = switch_root_init;
1769 execv(args[0], (char* const*) args);
1770 log_warning("Failed to execute configured init, trying fallback: %m");
1773 args[0] = "/sbin/init";
1774 execv(args[0], (char* const*) args);
1776 if (errno == ENOENT) {
1777 log_warning("No /sbin/init, trying fallback");
1779 args[0] = "/bin/sh";
1781 execv(args[0], (char* const*) args);
1782 log_error("Failed to execute /bin/sh, giving up: %m");
1784 log_warning("Failed to execute /sbin/init, giving up: %m");
1788 fclose(serialization);
1793 if (shutdown_verb) {
1794 const char * command_line[] = {
1795 SYSTEMD_SHUTDOWN_BINARY_PATH,
1801 if (arm_reboot_watchdog && arg_shutdown_watchdog > 0) {
1804 /* If we reboot let's set the shutdown
1805 * watchdog and tell the shutdown binary to
1806 * repeatedly ping it */
1807 watchdog_set_timeout(&arg_shutdown_watchdog);
1808 watchdog_close(false);
1810 /* Tell the binary how often to ping */
1811 snprintf(e, sizeof(e), "WATCHDOG_USEC=%llu", (unsigned long long) arg_shutdown_watchdog);
1814 env_block = strv_append(environ, e);
1816 env_block = strv_copy(environ);
1817 watchdog_close(true);
1820 execve(SYSTEMD_SHUTDOWN_BINARY_PATH, (char **) command_line, env_block);
1822 log_error("Failed to execute shutdown binary, freezing: %m");
~ianmdlvl / elogind.git / blob