1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
22 #include <dbus/dbus.h>
28 #include <sys/types.h>
34 #include <sys/prctl.h>
35 #include <sys/mount.h>
39 #include "load-fragment.h"
42 #include "conf-parser.h"
43 #include "bus-errors.h"
51 #include "path-util.h"
52 #include "switch-root.h"
53 #include "capability.h"
55 #include "mount-setup.h"
56 #include "loopback-setup.h"
57 #include "kmod-setup.h"
58 #include "hostname-setup.h"
59 #include "machine-id-setup.h"
60 #include "locale-setup.h"
62 #include "selinux-setup.h"
63 #include "ima-setup.h"
69 ACTION_DUMP_CONFIGURATION_ITEMS,
71 } arg_action = ACTION_RUN;
73 static char *arg_default_unit = NULL;
74 static ManagerRunningAs arg_running_as = _MANAGER_RUNNING_AS_INVALID;
76 static bool arg_dump_core = true;
77 static bool arg_crash_shell = false;
78 static int arg_crash_chvt = -1;
79 static bool arg_confirm_spawn = false;
80 static bool arg_show_status = true;
81 static bool arg_switched_root = false;
82 #ifdef HAVE_SYSV_COMPAT
83 static bool arg_sysv_console = true;
85 static char **arg_default_controllers = NULL;
86 static char ***arg_join_controllers = NULL;
87 static ExecOutput arg_default_std_output = EXEC_OUTPUT_JOURNAL;
88 static ExecOutput arg_default_std_error = EXEC_OUTPUT_INHERIT;
89 static usec_t arg_runtime_watchdog = 0;
90 static usec_t arg_shutdown_watchdog = 10 * USEC_PER_MINUTE;
91 static struct rlimit *arg_default_rlimit[RLIMIT_NLIMITS] = {};
92 static uint64_t arg_capability_bounding_set_drop = 0;
93 static nsec_t arg_timer_slack_nsec = (nsec_t) -1;
95 static FILE* serialization = NULL;
97 static void nop_handler(int sig) {
100 _noreturn_ static void crash(int sig) {
103 log_error("Caught <%s>, not dumping core.", signal_to_string(sig));
108 /* We want to wait for the core process, hence let's enable SIGCHLD */
110 sa.sa_handler = nop_handler;
111 sa.sa_flags = SA_NOCLDSTOP|SA_RESTART;
112 assert_se(sigaction(SIGCHLD, &sa, NULL) == 0);
114 if ((pid = fork()) < 0)
115 log_error("Caught <%s>, cannot fork for core dump: %s", signal_to_string(sig), strerror(errno));
120 /* Enable default signal handler for core dump */
122 sa.sa_handler = SIG_DFL;
123 assert_se(sigaction(sig, &sa, NULL) == 0);
125 /* Don't limit the core dump size */
127 rl.rlim_cur = RLIM_INFINITY;
128 rl.rlim_max = RLIM_INFINITY;
129 setrlimit(RLIMIT_CORE, &rl);
131 /* Just to be sure... */
132 assert_se(chdir("/") == 0);
134 /* Raise the signal again */
137 assert_not_reached("We shouldn't be here...");
144 /* Order things nicely. */
145 if ((r = wait_for_terminate(pid, &status)) < 0)
146 log_error("Caught <%s>, waitpid() failed: %s", signal_to_string(sig), strerror(-r));
147 else if (status.si_code != CLD_DUMPED)
148 log_error("Caught <%s>, core dump failed.", signal_to_string(sig));
150 log_error("Caught <%s>, dumped core as pid %lu.", signal_to_string(sig), (unsigned long) pid);
155 chvt(arg_crash_chvt);
157 if (arg_crash_shell) {
161 log_info("Executing crash shell in 10s...");
164 /* Let the kernel reap children for us */
166 sa.sa_handler = SIG_IGN;
167 sa.sa_flags = SA_NOCLDSTOP|SA_NOCLDWAIT|SA_RESTART;
168 assert_se(sigaction(SIGCHLD, &sa, NULL) == 0);
170 if ((pid = fork()) < 0)
171 log_error("Failed to fork off crash shell: %s", strerror(errno));
175 if ((fd = acquire_terminal("/dev/console", false, true, true)) < 0)
176 log_error("Failed to acquire terminal: %s", strerror(-fd));
177 else if ((r = make_stdio(fd)) < 0)
178 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
180 execl("/bin/sh", "/bin/sh", NULL);
182 log_error("execl() failed: %s", strerror(errno));
186 log_info("Successfully spawned crash shell as pid %lu.", (unsigned long) pid);
189 log_info("Freezing execution.");
193 static void install_crash_handler(void) {
198 sa.sa_handler = crash;
199 sa.sa_flags = SA_NODEFER;
201 sigaction_many(&sa, SIGNALS_CRASH_HANDLER, -1);
204 static int console_setup(bool do_reset) {
207 /* If we are init, we connect stdin/stdout/stderr to /dev/null
208 * and make sure we don't have a controlling tty. */
215 tty_fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
217 log_error("Failed to open /dev/console: %s", strerror(-tty_fd));
221 /* We don't want to force text mode.
222 * plymouth may be showing pictures already from initrd. */
223 r = reset_terminal_fd(tty_fd, false);
225 log_error("Failed to reset /dev/console: %s", strerror(-r));
227 close_nointr_nofail(tty_fd);
231 static int set_default_unit(const char *u) {
240 free(arg_default_unit);
241 arg_default_unit = c;
246 static int parse_proc_cmdline_word(const char *word) {
248 static const char * const rlmap[] = {
249 "emergency", SPECIAL_EMERGENCY_TARGET,
250 "-b", SPECIAL_EMERGENCY_TARGET,
251 "single", SPECIAL_RESCUE_TARGET,
252 "-s", SPECIAL_RESCUE_TARGET,
253 "s", SPECIAL_RESCUE_TARGET,
254 "S", SPECIAL_RESCUE_TARGET,
255 "1", SPECIAL_RESCUE_TARGET,
256 "2", SPECIAL_RUNLEVEL2_TARGET,
257 "3", SPECIAL_RUNLEVEL3_TARGET,
258 "4", SPECIAL_RUNLEVEL4_TARGET,
259 "5", SPECIAL_RUNLEVEL5_TARGET,
264 if (startswith(word, "systemd.unit=")) {
267 return set_default_unit(word + 13);
269 } else if (startswith(word, "rd.systemd.unit=")) {
272 return set_default_unit(word + 16);
274 } else if (startswith(word, "systemd.log_target=")) {
276 if (log_set_target_from_string(word + 19) < 0)
277 log_warning("Failed to parse log target %s. Ignoring.", word + 19);
279 } else if (startswith(word, "systemd.log_level=")) {
281 if (log_set_max_level_from_string(word + 18) < 0)
282 log_warning("Failed to parse log level %s. Ignoring.", word + 18);
284 } else if (startswith(word, "systemd.log_color=")) {
286 if (log_show_color_from_string(word + 18) < 0)
287 log_warning("Failed to parse log color setting %s. Ignoring.", word + 18);
289 } else if (startswith(word, "systemd.log_location=")) {
291 if (log_show_location_from_string(word + 21) < 0)
292 log_warning("Failed to parse log location setting %s. Ignoring.", word + 21);
294 } else if (startswith(word, "systemd.dump_core=")) {
297 if ((r = parse_boolean(word + 18)) < 0)
298 log_warning("Failed to parse dump core switch %s. Ignoring.", word + 18);
302 } else if (startswith(word, "systemd.crash_shell=")) {
305 if ((r = parse_boolean(word + 20)) < 0)
306 log_warning("Failed to parse crash shell switch %s. Ignoring.", word + 20);
310 } else if (startswith(word, "systemd.confirm_spawn=")) {
313 if ((r = parse_boolean(word + 22)) < 0)
314 log_warning("Failed to parse confirm spawn switch %s. Ignoring.", word + 22);
316 arg_confirm_spawn = r;
318 } else if (startswith(word, "systemd.crash_chvt=")) {
321 if (safe_atoi(word + 19, &k) < 0)
322 log_warning("Failed to parse crash chvt switch %s. Ignoring.", word + 19);
326 } else if (startswith(word, "systemd.show_status=")) {
329 if ((r = parse_boolean(word + 20)) < 0)
330 log_warning("Failed to parse show status switch %s. Ignoring.", word + 20);
333 } else if (startswith(word, "systemd.default_standard_output=")) {
336 if ((r = exec_output_from_string(word + 32)) < 0)
337 log_warning("Failed to parse default standard output switch %s. Ignoring.", word + 32);
339 arg_default_std_output = r;
340 } else if (startswith(word, "systemd.default_standard_error=")) {
343 if ((r = exec_output_from_string(word + 31)) < 0)
344 log_warning("Failed to parse default standard error switch %s. Ignoring.", word + 31);
346 arg_default_std_error = r;
347 } else if (startswith(word, "systemd.setenv=")) {
351 cenv = strdup(word + 15);
355 eq = strchr(cenv, '=');
359 log_warning("unsetenv failed %s. Ignoring.", strerror(errno));
362 r = setenv(cenv, eq + 1, 1);
364 log_warning("setenv failed %s. Ignoring.", strerror(errno));
367 #ifdef HAVE_SYSV_COMPAT
368 } else if (startswith(word, "systemd.sysv_console=")) {
371 if ((r = parse_boolean(word + 21)) < 0)
372 log_warning("Failed to parse SysV console switch %s. Ignoring.", word + 20);
374 arg_sysv_console = r;
377 } else if (startswith(word, "systemd.")) {
379 log_warning("Unknown kernel switch %s. Ignoring.", word);
381 log_info("Supported kernel switches:\n"
382 "systemd.unit=UNIT Default unit to start\n"
383 "rd.systemd.unit=UNIT Default unit to start when run in initrd\n"
384 "systemd.dump_core=0|1 Dump core on crash\n"
385 "systemd.crash_shell=0|1 Run shell on crash\n"
386 "systemd.crash_chvt=N Change to VT #N on crash\n"
387 "systemd.confirm_spawn=0|1 Confirm every process spawn\n"
388 "systemd.show_status=0|1 Show status updates on the console during bootup\n"
389 #ifdef HAVE_SYSV_COMPAT
390 "systemd.sysv_console=0|1 Connect output of SysV scripts to console\n"
392 "systemd.log_target=console|kmsg|journal|journal-or-kmsg|syslog|syslog-or-kmsg|null\n"
394 "systemd.log_level=LEVEL Log level\n"
395 "systemd.log_color=0|1 Highlight important log messages\n"
396 "systemd.log_location=0|1 Include code location in log messages\n"
397 "systemd.default_standard_output=null|tty|syslog|syslog+console|kmsg|kmsg+console|journal|journal+console\n"
398 " Set default log output for services\n"
399 "systemd.default_standard_error=null|tty|syslog|syslog+console|kmsg|kmsg+console|journal|journal+console\n"
400 " Set default log error output for services\n");
402 } else if (streq(word, "quiet")) {
403 arg_show_status = false;
404 #ifdef HAVE_SYSV_COMPAT
405 arg_sysv_console = false;
410 /* SysV compatibility */
411 for (i = 0; i < ELEMENTSOF(rlmap); i += 2)
412 if (streq(word, rlmap[i]))
413 return set_default_unit(rlmap[i+1]);
419 static int config_parse_level2(
420 const char *filename,
433 log_set_max_level_from_string(rvalue);
437 static int config_parse_target(
438 const char *filename,
451 log_set_target_from_string(rvalue);
455 static int config_parse_color(
456 const char *filename,
469 log_show_color_from_string(rvalue);
473 static int config_parse_location(
474 const char *filename,
487 log_show_location_from_string(rvalue);
491 static int config_parse_cpu_affinity2(
492 const char *filename,
511 FOREACH_WORD_QUOTED(w, l, rvalue, state) {
516 if (!(t = strndup(w, l)))
519 r = safe_atou(t, &cpu);
523 if (!(c = cpu_set_malloc(&ncpus)))
526 if (r < 0 || cpu >= ncpus) {
527 log_error("[%s:%u] Failed to parse CPU affinity: %s", filename, line, rvalue);
532 CPU_SET_S(cpu, CPU_ALLOC_SIZE(ncpus), c);
536 if (sched_setaffinity(0, CPU_ALLOC_SIZE(ncpus), c) < 0)
537 log_warning("Failed to set CPU affinity: %m");
545 static void strv_free_free(char ***l) {
557 static void free_join_controllers(void) {
558 if (!arg_join_controllers)
561 strv_free_free(arg_join_controllers);
562 arg_join_controllers = NULL;
565 static int config_parse_join_controllers(
566 const char *filename,
583 free_join_controllers();
585 FOREACH_WORD_QUOTED(w, length, rvalue, state) {
588 s = strndup(w, length);
592 l = strv_split(s, ",");
597 if (strv_length(l) <= 1) {
602 if (!arg_join_controllers) {
603 arg_join_controllers = new(char**, 2);
604 if (!arg_join_controllers) {
609 arg_join_controllers[0] = l;
610 arg_join_controllers[1] = NULL;
617 t = new0(char**, n+2);
625 for (a = arg_join_controllers; *a; a++) {
627 if (strv_overlap(*a, l)) {
630 c = strv_merge(*a, l);
653 t[n++] = strv_uniq(l);
655 strv_free_free(arg_join_controllers);
656 arg_join_controllers = t;
663 static int parse_config_file(void) {
665 const ConfigTableItem items[] = {
666 { "Manager", "LogLevel", config_parse_level2, 0, NULL },
667 { "Manager", "LogTarget", config_parse_target, 0, NULL },
668 { "Manager", "LogColor", config_parse_color, 0, NULL },
669 { "Manager", "LogLocation", config_parse_location, 0, NULL },
670 { "Manager", "DumpCore", config_parse_bool, 0, &arg_dump_core },
671 { "Manager", "CrashShell", config_parse_bool, 0, &arg_crash_shell },
672 { "Manager", "ShowStatus", config_parse_bool, 0, &arg_show_status },
673 #ifdef HAVE_SYSV_COMPAT
674 { "Manager", "SysVConsole", config_parse_bool, 0, &arg_sysv_console },
676 { "Manager", "CrashChVT", config_parse_int, 0, &arg_crash_chvt },
677 { "Manager", "CPUAffinity", config_parse_cpu_affinity2, 0, NULL },
678 { "Manager", "DefaultControllers", config_parse_strv, 0, &arg_default_controllers },
679 { "Manager", "DefaultStandardOutput", config_parse_output, 0, &arg_default_std_output },
680 { "Manager", "DefaultStandardError", config_parse_output, 0, &arg_default_std_error },
681 { "Manager", "JoinControllers", config_parse_join_controllers, 0, &arg_join_controllers },
682 { "Manager", "RuntimeWatchdogSec", config_parse_usec, 0, &arg_runtime_watchdog },
683 { "Manager", "ShutdownWatchdogSec", config_parse_usec, 0, &arg_shutdown_watchdog },
684 { "Manager", "CapabilityBoundingSet", config_parse_bounding_set, 0, &arg_capability_bounding_set_drop },
685 { "Manager", "TimerSlackNSec", config_parse_nsec, 0, &arg_timer_slack_nsec },
686 { "Manager", "DefaultLimitCPU", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_CPU]},
687 { "Manager", "DefaultLimitFSIZE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_FSIZE]},
688 { "Manager", "DefaultLimitDATA", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_DATA]},
689 { "Manager", "DefaultLimitSTACK", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_STACK]},
690 { "Manager", "DefaultLimitCORE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_CORE]},
691 { "Manager", "DefaultLimitRSS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RSS]},
692 { "Manager", "DefaultLimitNOFILE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NOFILE]},
693 { "Manager", "DefaultLimitAS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_AS]},
694 { "Manager", "DefaultLimitNPROC", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NPROC]},
695 { "Manager", "DefaultLimitMEMLOCK", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_MEMLOCK]},
696 { "Manager", "DefaultLimitLOCKS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_LOCKS]},
697 { "Manager", "DefaultLimitSIGPENDING",config_parse_limit, 0, &arg_default_rlimit[RLIMIT_SIGPENDING]},
698 { "Manager", "DefaultLimitMSGQUEUE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_MSGQUEUE]},
699 { "Manager", "DefaultLimitNICE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NICE]},
700 { "Manager", "DefaultLimitRTPRIO", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RTPRIO]},
701 { "Manager", "DefaultLimitRTTIME", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RTTIME]},
702 { NULL, NULL, NULL, 0, NULL }
709 fn = arg_running_as == MANAGER_SYSTEM ? SYSTEM_CONFIG_FILE : USER_CONFIG_FILE;
715 log_warning("Failed to open configuration file '%s': %m", fn);
719 r = config_parse(fn, f, "Manager\0", config_item_table_lookup, (void*) items, false, NULL);
721 log_warning("Failed to parse configuration file: %s", strerror(-r));
728 static int parse_proc_cmdline(void) {
729 char *line, *w, *state;
733 /* Don't read /proc/cmdline if we are in a container, since
734 * that is only relevant for the host system */
735 if (detect_container(NULL) > 0)
738 if ((r = read_one_line_file("/proc/cmdline", &line)) < 0) {
739 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
743 FOREACH_WORD_QUOTED(w, l, line, state) {
746 if (!(word = strndup(w, l))) {
751 r = parse_proc_cmdline_word(word);
765 static int parse_argv(int argc, char *argv[]) {
768 ARG_LOG_LEVEL = 0x100,
776 ARG_DUMP_CONFIGURATION_ITEMS,
785 ARG_DEFAULT_STD_OUTPUT,
786 ARG_DEFAULT_STD_ERROR
789 static const struct option options[] = {
790 { "log-level", required_argument, NULL, ARG_LOG_LEVEL },
791 { "log-target", required_argument, NULL, ARG_LOG_TARGET },
792 { "log-color", optional_argument, NULL, ARG_LOG_COLOR },
793 { "log-location", optional_argument, NULL, ARG_LOG_LOCATION },
794 { "unit", required_argument, NULL, ARG_UNIT },
795 { "system", no_argument, NULL, ARG_SYSTEM },
796 { "user", no_argument, NULL, ARG_USER },
797 { "test", no_argument, NULL, ARG_TEST },
798 { "help", no_argument, NULL, 'h' },
799 { "dump-configuration-items", no_argument, NULL, ARG_DUMP_CONFIGURATION_ITEMS },
800 { "dump-core", optional_argument, NULL, ARG_DUMP_CORE },
801 { "crash-shell", optional_argument, NULL, ARG_CRASH_SHELL },
802 { "confirm-spawn", optional_argument, NULL, ARG_CONFIRM_SPAWN },
803 { "show-status", optional_argument, NULL, ARG_SHOW_STATUS },
804 #ifdef HAVE_SYSV_COMPAT
805 { "sysv-console", optional_argument, NULL, ARG_SYSV_CONSOLE },
807 { "deserialize", required_argument, NULL, ARG_DESERIALIZE },
808 { "switched-root", no_argument, NULL, ARG_SWITCHED_ROOT },
809 { "introspect", optional_argument, NULL, ARG_INTROSPECT },
810 { "default-standard-output", required_argument, NULL, ARG_DEFAULT_STD_OUTPUT, },
811 { "default-standard-error", required_argument, NULL, ARG_DEFAULT_STD_ERROR, },
823 while ((c = getopt_long(argc, argv, "hDbsz:", options, NULL)) >= 0)
828 if ((r = log_set_max_level_from_string(optarg)) < 0) {
829 log_error("Failed to parse log level %s.", optarg);
837 if ((r = log_set_target_from_string(optarg)) < 0) {
838 log_error("Failed to parse log target %s.", optarg);
847 if ((r = log_show_color_from_string(optarg)) < 0) {
848 log_error("Failed to parse log color setting %s.", optarg);
852 log_show_color(true);
856 case ARG_LOG_LOCATION:
859 if ((r = log_show_location_from_string(optarg)) < 0) {
860 log_error("Failed to parse log location setting %s.", optarg);
864 log_show_location(true);
868 case ARG_DEFAULT_STD_OUTPUT:
870 if ((r = exec_output_from_string(optarg)) < 0) {
871 log_error("Failed to parse default standard output setting %s.", optarg);
874 arg_default_std_output = r;
877 case ARG_DEFAULT_STD_ERROR:
879 if ((r = exec_output_from_string(optarg)) < 0) {
880 log_error("Failed to parse default standard error output setting %s.", optarg);
883 arg_default_std_error = r;
888 if ((r = set_default_unit(optarg)) < 0) {
889 log_error("Failed to set default unit %s: %s", optarg, strerror(-r));
896 arg_running_as = MANAGER_SYSTEM;
900 arg_running_as = MANAGER_USER;
904 arg_action = ACTION_TEST;
907 case ARG_DUMP_CONFIGURATION_ITEMS:
908 arg_action = ACTION_DUMP_CONFIGURATION_ITEMS;
912 r = optarg ? parse_boolean(optarg) : 1;
914 log_error("Failed to parse dump core boolean %s.", optarg);
920 case ARG_CRASH_SHELL:
921 r = optarg ? parse_boolean(optarg) : 1;
923 log_error("Failed to parse crash shell boolean %s.", optarg);
929 case ARG_CONFIRM_SPAWN:
930 r = optarg ? parse_boolean(optarg) : 1;
932 log_error("Failed to parse confirm spawn boolean %s.", optarg);
935 arg_confirm_spawn = r;
938 case ARG_SHOW_STATUS:
939 r = optarg ? parse_boolean(optarg) : 1;
941 log_error("Failed to parse show status boolean %s.", optarg);
947 #ifdef HAVE_SYSV_COMPAT
948 case ARG_SYSV_CONSOLE:
949 r = optarg ? parse_boolean(optarg) : 1;
951 log_error("Failed to parse SysV console boolean %s.", optarg);
954 arg_sysv_console = r;
958 case ARG_DESERIALIZE: {
962 if ((r = safe_atoi(optarg, &fd)) < 0 || fd < 0) {
963 log_error("Failed to parse deserialize option %s.", optarg);
967 if (!(f = fdopen(fd, "r"))) {
968 log_error("Failed to open serialization fd: %m");
973 fclose(serialization);
980 case ARG_SWITCHED_ROOT:
981 arg_switched_root = true;
984 case ARG_INTROSPECT: {
985 const char * const * i = NULL;
987 for (i = bus_interface_table; *i; i += 2)
988 if (!optarg || streq(i[0], optarg)) {
989 fputs(DBUS_INTROSPECT_1_0_XML_DOCTYPE_DECL_NODE
992 fputs("</node>\n", stdout);
999 log_error("Unknown interface %s.", optarg);
1001 arg_action = ACTION_DONE;
1006 arg_action = ACTION_HELP;
1010 log_set_max_level(LOG_DEBUG);
1016 /* Just to eat away the sysvinit kernel
1017 * cmdline args without getopt() error
1018 * messages that we'll parse in
1019 * parse_proc_cmdline_word() or ignore. */
1023 if (getpid() != 1) {
1024 log_error("Unknown option code %c", c);
1031 if (optind < argc && getpid() != 1) {
1032 /* Hmm, when we aren't run as init system
1033 * let's complain about excess arguments */
1035 log_error("Excess arguments.");
1039 if (detect_container(NULL) > 0) {
1042 /* All /proc/cmdline arguments the kernel didn't
1043 * understand it passed to us. We're not really
1044 * interested in that usually since /proc/cmdline is
1045 * more interesting and complete. With one exception:
1046 * if we are run in a container /proc/cmdline is not
1047 * relevant for the container, hence we rely on argv[]
1050 for (a = argv; a < argv + argc; a++)
1051 if ((r = parse_proc_cmdline_word(*a)) < 0)
1058 static int help(void) {
1060 printf("%s [OPTIONS...]\n\n"
1061 "Starts up and maintains the system or user services.\n\n"
1062 " -h --help Show this help\n"
1063 " --test Determine startup sequence, dump it and exit\n"
1064 " --dump-configuration-items Dump understood unit configuration items\n"
1065 " --introspect[=INTERFACE] Extract D-Bus interface data\n"
1066 " --unit=UNIT Set default unit\n"
1067 " --system Run a system instance, even if PID != 1\n"
1068 " --user Run a user instance\n"
1069 " --dump-core[=0|1] Dump core on crash\n"
1070 " --crash-shell[=0|1] Run shell on crash\n"
1071 " --confirm-spawn[=0|1] Ask for confirmation when spawning processes\n"
1072 " --show-status[=0|1] Show status updates on the console during bootup\n"
1073 #ifdef HAVE_SYSV_COMPAT
1074 " --sysv-console[=0|1] Connect output of SysV scripts to console\n"
1076 " --log-target=TARGET Set log target (console, journal, syslog, kmsg, journal-or-kmsg, syslog-or-kmsg, null)\n"
1077 " --log-level=LEVEL Set log level (debug, info, notice, warning, err, crit, alert, emerg)\n"
1078 " --log-color[=0|1] Highlight important log messages\n"
1079 " --log-location[=0|1] Include code location in log messages\n"
1080 " --default-standard-output= Set default standard output for services\n"
1081 " --default-standard-error= Set default standard error output for services\n",
1082 program_invocation_short_name);
1087 static int prepare_reexecute(Manager *m, FILE **_f, FDSet **_fds) {
1096 /* Make sure nothing is really destructed when we shut down */
1099 if ((r = manager_open_serialization(m, &f)) < 0) {
1100 log_error("Failed to create serialization file: %s", strerror(-r));
1104 if (!(fds = fdset_new())) {
1106 log_error("Failed to allocate fd set: %s", strerror(-r));
1110 if ((r = manager_serialize(m, f, fds)) < 0) {
1111 log_error("Failed to serialize state: %s", strerror(-r));
1115 if (fseeko(f, 0, SEEK_SET) < 0) {
1116 log_error("Failed to rewind serialization fd: %m");
1120 if ((r = fd_cloexec(fileno(f), false)) < 0) {
1121 log_error("Failed to disable O_CLOEXEC for serialization: %s", strerror(-r));
1125 if ((r = fdset_cloexec(fds, false)) < 0) {
1126 log_error("Failed to disable O_CLOEXEC for serialization fds: %s", strerror(-r));
1144 static struct dual_timestamp* parse_initrd_timestamp(struct dual_timestamp *t) {
1146 unsigned long long a, b;
1150 e = getenv("RD_TIMESTAMP");
1154 if (sscanf(e, "%llu %llu", &a, &b) != 2)
1157 t->realtime = (usec_t) a;
1158 t->monotonic = (usec_t) b;
1163 static void test_mtab(void) {
1166 /* Check that /etc/mtab is a symlink */
1168 if (readlink_malloc("/etc/mtab", &p) >= 0) {
1171 b = streq(p, "/proc/self/mounts") || streq(p, "/proc/mounts");
1178 log_warning("/etc/mtab is not a symlink or not pointing to /proc/self/mounts. "
1179 "This is not supported anymore. "
1180 "Please make sure to replace this file by a symlink to avoid incorrect or misleading mount(8) output.");
1183 static void test_usr(void) {
1185 /* Check that /usr is not a separate fs */
1187 if (dir_is_empty("/usr") <= 0)
1190 log_warning("/usr appears to be on its own filesytem and is not already mounted. This is not a supported setup. "
1191 "Some things will probably break (sometimes even silently) in mysterious ways. "
1192 "Consult http://freedesktop.org/wiki/Software/systemd/separate-usr-is-broken for more information.");
1195 static void test_cgroups(void) {
1197 if (access("/proc/cgroups", F_OK) >= 0)
1200 log_warning("CONFIG_CGROUPS was not set when your kernel was compiled. "
1201 "Systems without control groups are not supported. "
1202 "We will now sleep for 10s, and then continue boot-up. "
1203 "Expect breakage and please do not file bugs. "
1204 "Instead fix your kernel and enable CONFIG_CGROUPS. "
1205 "Consult http://0pointer.de/blog/projects/cgroups-vs-cgroups.html for more information.");
1210 int main(int argc, char *argv[]) {
1212 int r, retval = EXIT_FAILURE;
1213 usec_t before_startup, after_startup;
1214 char timespan[FORMAT_TIMESPAN_MAX];
1216 bool reexecute = false;
1217 const char *shutdown_verb = NULL;
1218 dual_timestamp initrd_timestamp = { 0ULL, 0ULL };
1219 static char systemd[] = "systemd";
1220 bool skip_setup = false;
1222 bool loaded_policy = false;
1223 bool arm_reboot_watchdog = false;
1224 bool queue_default_job = false;
1225 char *switch_root_dir = NULL, *switch_root_init = NULL;
1227 #ifdef HAVE_SYSV_COMPAT
1228 if (getpid() != 1 && strstr(program_invocation_short_name, "init")) {
1229 /* This is compatibility support for SysV, where
1230 * calling init as a user is identical to telinit. */
1233 execv(SYSTEMCTL_BINARY_PATH, argv);
1234 log_error("Failed to exec " SYSTEMCTL_BINARY_PATH ": %m");
1239 /* Determine if this is a reexecution or normal bootup. We do
1240 * the full command line parsing much later, so let's just
1241 * have a quick peek here. */
1242 for (j = 1; j < argc; j++)
1243 if (streq(argv[j], "--deserialize")) {
1248 /* If we have switched root, do all the special setup
1250 for (j = 1; j < argc; j++)
1251 if (streq(argv[j], "--switched-root")) {
1256 /* If we get started via the /sbin/init symlink then we are
1257 called 'init'. After a subsequent reexecution we are then
1258 called 'systemd'. That is confusing, hence let's call us
1259 systemd right-away. */
1260 program_invocation_short_name = systemd;
1261 prctl(PR_SET_NAME, systemd);
1266 log_show_color(isatty(STDERR_FILENO) > 0);
1267 log_show_location(false);
1268 log_set_max_level(LOG_INFO);
1270 if (getpid() == 1) {
1272 char *rd_timestamp = NULL;
1274 dual_timestamp_get(&initrd_timestamp);
1275 asprintf(&rd_timestamp, "%llu %llu",
1276 (unsigned long long) initrd_timestamp.realtime,
1277 (unsigned long long) initrd_timestamp.monotonic);
1279 setenv("RD_TIMESTAMP", rd_timestamp, 1);
1284 arg_running_as = MANAGER_SYSTEM;
1285 log_set_target(detect_container(NULL) > 0 ? LOG_TARGET_JOURNAL : LOG_TARGET_JOURNAL_OR_KMSG);
1288 if (selinux_setup(&loaded_policy) < 0)
1290 if (ima_setup() < 0)
1296 if (label_init(NULL) < 0)
1300 if (hwclock_is_localtime() > 0) {
1303 r = hwclock_apply_localtime_delta(&min);
1305 log_error("Failed to apply local time delta, ignoring: %s", strerror(-r));
1307 log_info("RTC configured in localtime, applying delta of %i minutes to system time.", min);
1311 arg_running_as = MANAGER_USER;
1312 log_set_target(LOG_TARGET_AUTO);
1316 /* Initialize default unit */
1317 if (set_default_unit(SPECIAL_DEFAULT_TARGET) < 0)
1320 /* By default, mount "cpu" and "cpuacct" together */
1321 arg_join_controllers = new(char**, 2);
1322 if (!arg_join_controllers)
1325 arg_join_controllers[0] = strv_new("cpu", "cpuacct", NULL);
1326 arg_join_controllers[1] = NULL;
1328 if (!arg_join_controllers[0])
1331 /* Mount /proc, /sys and friends, so that /proc/cmdline and
1332 * /proc/$PID/fd is available. */
1333 if (geteuid() == 0 && !getenv("SYSTEMD_SKIP_API_MOUNTS")) {
1334 r = mount_setup(loaded_policy);
1339 /* Reset all signal handlers. */
1340 assert_se(reset_all_signal_handlers() == 0);
1342 /* If we are init, we can block sigkill. Yay. */
1343 ignore_signals(SIGNALS_IGNORE, -1);
1345 if (parse_config_file() < 0)
1348 if (arg_running_as == MANAGER_SYSTEM)
1349 if (parse_proc_cmdline() < 0)
1352 log_parse_environment();
1354 if (parse_argv(argc, argv) < 0)
1357 if (arg_action == ACTION_TEST && geteuid() == 0) {
1358 log_error("Don't run test mode as root.");
1362 if (arg_running_as == MANAGER_SYSTEM &&
1363 arg_action == ACTION_RUN &&
1364 running_in_chroot() > 0) {
1365 log_error("Cannot be run in a chroot() environment.");
1369 if (arg_action == ACTION_HELP) {
1372 } else if (arg_action == ACTION_DUMP_CONFIGURATION_ITEMS) {
1373 unit_dump_config_items(stdout);
1374 retval = EXIT_SUCCESS;
1376 } else if (arg_action == ACTION_DONE) {
1377 retval = EXIT_SUCCESS;
1381 assert_se(arg_action == ACTION_RUN || arg_action == ACTION_TEST);
1383 /* Close logging fds, in order not to confuse fdset below */
1386 /* Remember open file descriptors for later deserialization */
1387 if (serialization) {
1388 r = fdset_new_fill(&fds);
1390 log_error("Failed to allocate fd set: %s", strerror(-r));
1394 assert_se(fdset_remove(fds, fileno(serialization)) >= 0);
1396 close_all_fds(NULL, 0);
1398 /* Set up PATH unless it is already set */
1400 #ifdef HAVE_SPLIT_USR
1401 "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
1403 "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin",
1405 arg_running_as == MANAGER_SYSTEM);
1407 if (arg_running_as == MANAGER_SYSTEM) {
1408 /* Parse the data passed to us. We leave this
1409 * variables set, but the manager later on will not
1410 * pass them on to our children. */
1412 parse_initrd_timestamp(&initrd_timestamp);
1414 /* Unset some environment variables passed in from the
1415 * kernel that don't really make sense for us. */
1419 /* When we are invoked by a shell, these might be set,
1420 * but make little sense to pass on */
1425 /* When we are invoked by a chroot-like tool such as
1426 * nspawn, these might be set, but make little sense
1429 unsetenv("LOGNAME");
1431 /* All other variables are left as is, so that clients
1432 * can still read them via /proc/1/environ */
1435 /* Move out of the way, so that we won't block unmounts */
1436 assert_se(chdir("/") == 0);
1438 if (arg_running_as == MANAGER_SYSTEM) {
1439 /* Become a session leader if we aren't one yet. */
1442 /* Disable the umask logic */
1446 /* Make sure D-Bus doesn't fiddle with the SIGPIPE handlers */
1447 dbus_connection_set_change_sigpipe(FALSE);
1449 /* Reset the console, but only if this is really init and we
1450 * are freshly booted */
1451 if (arg_running_as == MANAGER_SYSTEM && arg_action == ACTION_RUN) {
1452 console_setup(getpid() == 1 && !skip_setup);
1456 /* Open the logging devices, if possible and necessary */
1459 /* Make sure we leave a core dump without panicing the
1462 install_crash_handler();
1464 if (geteuid() == 0 && !getenv("SYSTEMD_SKIP_API_MOUNTS")) {
1465 r = mount_cgroup_controllers(arg_join_controllers);
1470 log_full(arg_running_as == MANAGER_SYSTEM ? LOG_INFO : LOG_DEBUG,
1471 PACKAGE_STRING " running in %s mode. (" SYSTEMD_FEATURES "; " DISTRIBUTION ")", manager_running_as_to_string(arg_running_as));
1473 if (arg_running_as == MANAGER_SYSTEM && !skip_setup) {
1476 if (arg_show_status || plymouth_running())
1489 if (arg_running_as == MANAGER_SYSTEM && arg_runtime_watchdog > 0)
1490 watchdog_set_timeout(&arg_runtime_watchdog);
1492 if (arg_timer_slack_nsec != (nsec_t) -1)
1493 if (prctl(PR_SET_TIMERSLACK, arg_timer_slack_nsec) < 0)
1494 log_error("Failed to adjust timer slack: %m");
1496 if (arg_capability_bounding_set_drop) {
1497 r = capability_bounding_set_drop(arg_capability_bounding_set_drop, true);
1499 log_error("Failed to drop capability bounding set: %s", strerror(-r));
1502 r = capability_bounding_set_drop_usermode(arg_capability_bounding_set_drop);
1504 log_error("Failed to drop capability bounding set of usermode helpers: %s", strerror(-r));
1509 r = manager_new(arg_running_as, &m);
1511 log_error("Failed to allocate manager object: %s", strerror(-r));
1515 m->confirm_spawn = arg_confirm_spawn;
1516 #ifdef HAVE_SYSV_COMPAT
1517 m->sysv_console = arg_sysv_console;
1519 m->default_std_output = arg_default_std_output;
1520 m->default_std_error = arg_default_std_error;
1521 m->runtime_watchdog = arg_runtime_watchdog;
1522 m->shutdown_watchdog = arg_shutdown_watchdog;
1524 manager_set_default_rlimits(m, arg_default_rlimit);
1526 if (dual_timestamp_is_set(&initrd_timestamp))
1527 m->initrd_timestamp = initrd_timestamp;
1529 if (arg_default_controllers)
1530 manager_set_default_controllers(m, arg_default_controllers);
1532 manager_set_show_status(m, arg_show_status);
1534 /* Remember whether we should queue the default job */
1535 queue_default_job = !serialization || arg_switched_root;
1537 before_startup = now(CLOCK_MONOTONIC);
1539 r = manager_startup(m, serialization, fds);
1541 log_error("Failed to fully start up daemon: %s", strerror(-r));
1543 /* This will close all file descriptors that were opened, but
1544 * not claimed by any unit. */
1550 if (serialization) {
1551 fclose(serialization);
1552 serialization = NULL;
1555 if (queue_default_job) {
1557 Unit *target = NULL;
1558 Job *default_unit_job;
1560 dbus_error_init(&error);
1562 log_debug("Activating default unit: %s", arg_default_unit);
1564 r = manager_load_unit(m, arg_default_unit, NULL, &error, &target);
1566 log_error("Failed to load default target: %s", bus_error(&error, r));
1567 dbus_error_free(&error);
1568 } else if (target->load_state == UNIT_ERROR)
1569 log_error("Failed to load default target: %s", strerror(-target->load_error));
1570 else if (target->load_state == UNIT_MASKED)
1571 log_error("Default target masked.");
1573 if (!target || target->load_state != UNIT_LOADED) {
1574 log_info("Trying to load rescue target...");
1576 r = manager_load_unit(m, SPECIAL_RESCUE_TARGET, NULL, &error, &target);
1578 log_error("Failed to load rescue target: %s", bus_error(&error, r));
1579 dbus_error_free(&error);
1581 } else if (target->load_state == UNIT_ERROR) {
1582 log_error("Failed to load rescue target: %s", strerror(-target->load_error));
1584 } else if (target->load_state == UNIT_MASKED) {
1585 log_error("Rescue target masked.");
1590 assert(target->load_state == UNIT_LOADED);
1592 if (arg_action == ACTION_TEST) {
1593 printf("-> By units:\n");
1594 manager_dump_units(m, stdout, "\t");
1597 r = manager_add_job(m, JOB_START, target, JOB_REPLACE, false, &error, &default_unit_job);
1599 log_error("Failed to start default target: %s", bus_error(&error, r));
1600 dbus_error_free(&error);
1603 m->default_unit_job_id = default_unit_job->id;
1605 after_startup = now(CLOCK_MONOTONIC);
1606 log_full(arg_action == ACTION_TEST ? LOG_INFO : LOG_DEBUG,
1607 "Loaded units and determined initial transaction in %s.",
1608 format_timespan(timespan, sizeof(timespan), after_startup - before_startup));
1610 if (arg_action == ACTION_TEST) {
1611 printf("-> By jobs:\n");
1612 manager_dump_jobs(m, stdout, "\t");
1613 retval = EXIT_SUCCESS;
1619 r = manager_loop(m);
1621 log_error("Failed to run mainloop: %s", strerror(-r));
1625 switch (m->exit_code) {
1628 retval = EXIT_SUCCESS;
1632 case MANAGER_RELOAD:
1633 log_info("Reloading.");
1634 r = manager_reload(m);
1636 log_error("Failed to reload: %s", strerror(-r));
1639 case MANAGER_REEXECUTE:
1641 if (prepare_reexecute(m, &serialization, &fds) < 0)
1645 log_notice("Reexecuting.");
1648 case MANAGER_SWITCH_ROOT:
1649 /* Steal the switch root parameters */
1650 switch_root_dir = m->switch_root;
1651 switch_root_init = m->switch_root_init;
1652 m->switch_root = m->switch_root_init = NULL;
1654 if (!switch_root_init)
1655 if (prepare_reexecute(m, &serialization, &fds) < 0)
1659 log_notice("Switching root.");
1662 case MANAGER_REBOOT:
1663 case MANAGER_POWEROFF:
1665 case MANAGER_KEXEC: {
1666 static const char * const table[_MANAGER_EXIT_CODE_MAX] = {
1667 [MANAGER_REBOOT] = "reboot",
1668 [MANAGER_POWEROFF] = "poweroff",
1669 [MANAGER_HALT] = "halt",
1670 [MANAGER_KEXEC] = "kexec"
1673 assert_se(shutdown_verb = table[m->exit_code]);
1674 arm_reboot_watchdog = m->exit_code == MANAGER_REBOOT;
1676 log_notice("Shutting down.");
1681 assert_not_reached("Unknown exit code.");
1689 for (j = 0; j < RLIMIT_NLIMITS; j++)
1690 free (arg_default_rlimit[j]);
1692 free(arg_default_unit);
1693 strv_free(arg_default_controllers);
1694 free_join_controllers();
1701 unsigned i, args_size;
1703 /* Close and disarm the watchdog, so that the new
1704 * instance can reinitialize it, but doesn't get
1705 * rebooted while we do that */
1706 watchdog_close(true);
1708 if (switch_root_dir) {
1709 r = switch_root(switch_root_dir);
1711 log_error("Failed to switch root, ignoring: %s", strerror(-r));
1714 args_size = MAX(6, argc+1);
1715 args = newa(const char*, args_size);
1717 if (!switch_root_init) {
1720 /* First try to spawn ourselves with the right
1721 * path, and with full serialization. We do
1722 * this only if the user didn't specify an
1723 * explicit init to spawn. */
1725 assert(serialization);
1728 snprintf(sfd, sizeof(sfd), "%i", fileno(serialization));
1732 args[i++] = SYSTEMD_BINARY_PATH;
1733 if (switch_root_dir)
1734 args[i++] = "--switched-root";
1735 args[i++] = arg_running_as == MANAGER_SYSTEM ? "--system" : "--user";
1736 args[i++] = "--deserialize";
1740 assert(i <= args_size);
1741 execv(args[0], (char* const*) args);
1744 /* Try the fallback, if there is any, without any
1745 * serialization. We pass the original argv[] and
1746 * envp[]. (Well, modulo the ordering changes due to
1747 * getopt() in argv[], and some cleanups in envp[],
1748 * but let's hope that doesn't matter.) */
1750 if (serialization) {
1751 fclose(serialization);
1752 serialization = NULL;
1760 for (j = 1, i = 1; j < argc; j++)
1761 args[i++] = argv[j];
1763 assert(i <= args_size);
1765 if (switch_root_init) {
1766 args[0] = switch_root_init;
1767 execv(args[0], (char* const*) args);
1768 log_warning("Failed to execute configured init, trying fallback: %m");
1771 args[0] = "/sbin/init";
1772 execv(args[0], (char* const*) args);
1774 if (errno == ENOENT) {
1775 log_warning("No /sbin/init, trying fallback");
1777 args[0] = "/bin/sh";
1779 execv(args[0], (char* const*) args);
1780 log_error("Failed to execute /bin/sh, giving up: %m");
1782 log_warning("Failed to execute /sbin/init, giving up: %m");
1786 fclose(serialization);
1791 if (shutdown_verb) {
1792 const char * command_line[] = {
1793 SYSTEMD_SHUTDOWN_BINARY_PATH,
1799 if (arm_reboot_watchdog && arg_shutdown_watchdog > 0) {
1802 /* If we reboot let's set the shutdown
1803 * watchdog and tell the shutdown binary to
1804 * repeatedly ping it */
1805 watchdog_set_timeout(&arg_shutdown_watchdog);
1806 watchdog_close(false);
1808 /* Tell the binary how often to ping */
1809 snprintf(e, sizeof(e), "WATCHDOG_USEC=%llu", (unsigned long long) arg_shutdown_watchdog);
1812 env_block = strv_append(environ, e);
1814 env_block = strv_copy(environ);
1815 watchdog_close(true);
1818 execve(SYSTEMD_SHUTDOWN_BINARY_PATH, (char **) command_line, env_block);
1820 log_error("Failed to execute shutdown binary, freezing: %m");
~ianmdlvl / elogind.git / blob