1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
22 #include <dbus/dbus.h>
28 #include <sys/types.h>
34 #include <sys/prctl.h>
35 #include <sys/mount.h>
39 #include "load-fragment.h"
42 #include "conf-parser.h"
43 #include "bus-errors.h"
51 #include "path-util.h"
52 #include "switch-root.h"
53 #include "capability.h"
56 #include "mount-setup.h"
57 #include "loopback-setup.h"
58 #include "kmod-setup.h"
59 #include "hostname-setup.h"
60 #include "machine-id-setup.h"
61 #include "locale-setup.h"
63 #include "selinux-setup.h"
64 #include "ima-setup.h"
71 ACTION_DUMP_CONFIGURATION_ITEMS,
73 } arg_action = ACTION_RUN;
75 static char *arg_default_unit = NULL;
76 static SystemdRunningAs arg_running_as = _SYSTEMD_RUNNING_AS_INVALID;
78 static bool arg_dump_core = true;
79 static bool arg_crash_shell = false;
80 static int arg_crash_chvt = -1;
81 static bool arg_confirm_spawn = false;
82 static bool arg_show_status = true;
83 static bool arg_switched_root = false;
84 static char **arg_default_controllers = NULL;
85 static char ***arg_join_controllers = NULL;
86 static ExecOutput arg_default_std_output = EXEC_OUTPUT_JOURNAL;
87 static ExecOutput arg_default_std_error = EXEC_OUTPUT_INHERIT;
88 static usec_t arg_runtime_watchdog = 0;
89 static usec_t arg_shutdown_watchdog = 10 * USEC_PER_MINUTE;
90 static struct rlimit *arg_default_rlimit[RLIMIT_NLIMITS] = {};
91 static uint64_t arg_capability_bounding_set_drop = 0;
92 static nsec_t arg_timer_slack_nsec = (nsec_t) -1;
94 static FILE* serialization = NULL;
96 static void nop_handler(int sig) {
99 _noreturn_ static void crash(int sig) {
102 log_error("Caught <%s>, not dumping core.", signal_to_string(sig));
107 /* We want to wait for the core process, hence let's enable SIGCHLD */
109 sa.sa_handler = nop_handler;
110 sa.sa_flags = SA_NOCLDSTOP|SA_RESTART;
111 assert_se(sigaction(SIGCHLD, &sa, NULL) == 0);
113 if ((pid = fork()) < 0)
114 log_error("Caught <%s>, cannot fork for core dump: %s", signal_to_string(sig), strerror(errno));
119 /* Enable default signal handler for core dump */
121 sa.sa_handler = SIG_DFL;
122 assert_se(sigaction(sig, &sa, NULL) == 0);
124 /* Don't limit the core dump size */
126 rl.rlim_cur = RLIM_INFINITY;
127 rl.rlim_max = RLIM_INFINITY;
128 setrlimit(RLIMIT_CORE, &rl);
130 /* Just to be sure... */
131 assert_se(chdir("/") == 0);
133 /* Raise the signal again */
136 assert_not_reached("We shouldn't be here...");
143 /* Order things nicely. */
144 if ((r = wait_for_terminate(pid, &status)) < 0)
145 log_error("Caught <%s>, waitpid() failed: %s", signal_to_string(sig), strerror(-r));
146 else if (status.si_code != CLD_DUMPED)
147 log_error("Caught <%s>, core dump failed.", signal_to_string(sig));
149 log_error("Caught <%s>, dumped core as pid %lu.", signal_to_string(sig), (unsigned long) pid);
154 chvt(arg_crash_chvt);
156 if (arg_crash_shell) {
160 log_info("Executing crash shell in 10s...");
163 /* Let the kernel reap children for us */
165 sa.sa_handler = SIG_IGN;
166 sa.sa_flags = SA_NOCLDSTOP|SA_NOCLDWAIT|SA_RESTART;
167 assert_se(sigaction(SIGCHLD, &sa, NULL) == 0);
171 log_error("Failed to fork off crash shell: %m");
173 make_console_stdio();
174 execl("/bin/sh", "/bin/sh", NULL);
176 log_error("execl() failed: %m");
180 log_info("Successfully spawned crash shell as pid %lu.", (unsigned long) pid);
183 log_info("Freezing execution.");
187 static void install_crash_handler(void) {
192 sa.sa_handler = crash;
193 sa.sa_flags = SA_NODEFER;
195 sigaction_many(&sa, SIGNALS_CRASH_HANDLER, -1);
198 static int console_setup(bool do_reset) {
201 /* If we are init, we connect stdin/stdout/stderr to /dev/null
202 * and make sure we don't have a controlling tty. */
209 tty_fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
211 log_error("Failed to open /dev/console: %s", strerror(-tty_fd));
215 /* We don't want to force text mode.
216 * plymouth may be showing pictures already from initrd. */
217 r = reset_terminal_fd(tty_fd, false);
219 log_error("Failed to reset /dev/console: %s", strerror(-r));
221 close_nointr_nofail(tty_fd);
225 static int set_default_unit(const char *u) {
234 free(arg_default_unit);
235 arg_default_unit = c;
240 static int parse_proc_cmdline_word(const char *word) {
242 static const char * const rlmap[] = {
243 "emergency", SPECIAL_EMERGENCY_TARGET,
244 "-b", SPECIAL_EMERGENCY_TARGET,
245 "single", SPECIAL_RESCUE_TARGET,
246 "-s", SPECIAL_RESCUE_TARGET,
247 "s", SPECIAL_RESCUE_TARGET,
248 "S", SPECIAL_RESCUE_TARGET,
249 "1", SPECIAL_RESCUE_TARGET,
250 "2", SPECIAL_RUNLEVEL2_TARGET,
251 "3", SPECIAL_RUNLEVEL3_TARGET,
252 "4", SPECIAL_RUNLEVEL4_TARGET,
253 "5", SPECIAL_RUNLEVEL5_TARGET,
258 if (startswith(word, "systemd.unit=")) {
261 return set_default_unit(word + 13);
263 } else if (startswith(word, "rd.systemd.unit=")) {
266 return set_default_unit(word + 16);
268 } else if (startswith(word, "systemd.log_target=")) {
270 if (log_set_target_from_string(word + 19) < 0)
271 log_warning("Failed to parse log target %s. Ignoring.", word + 19);
273 } else if (startswith(word, "systemd.log_level=")) {
275 if (log_set_max_level_from_string(word + 18) < 0)
276 log_warning("Failed to parse log level %s. Ignoring.", word + 18);
278 } else if (startswith(word, "systemd.log_color=")) {
280 if (log_show_color_from_string(word + 18) < 0)
281 log_warning("Failed to parse log color setting %s. Ignoring.", word + 18);
283 } else if (startswith(word, "systemd.log_location=")) {
285 if (log_show_location_from_string(word + 21) < 0)
286 log_warning("Failed to parse log location setting %s. Ignoring.", word + 21);
288 } else if (startswith(word, "systemd.dump_core=")) {
291 if ((r = parse_boolean(word + 18)) < 0)
292 log_warning("Failed to parse dump core switch %s. Ignoring.", word + 18);
296 } else if (startswith(word, "systemd.crash_shell=")) {
299 if ((r = parse_boolean(word + 20)) < 0)
300 log_warning("Failed to parse crash shell switch %s. Ignoring.", word + 20);
304 } else if (startswith(word, "systemd.confirm_spawn=")) {
307 if ((r = parse_boolean(word + 22)) < 0)
308 log_warning("Failed to parse confirm spawn switch %s. Ignoring.", word + 22);
310 arg_confirm_spawn = r;
312 } else if (startswith(word, "systemd.crash_chvt=")) {
315 if (safe_atoi(word + 19, &k) < 0)
316 log_warning("Failed to parse crash chvt switch %s. Ignoring.", word + 19);
320 } else if (startswith(word, "systemd.show_status=")) {
323 if ((r = parse_boolean(word + 20)) < 0)
324 log_warning("Failed to parse show status switch %s. Ignoring.", word + 20);
327 } else if (startswith(word, "systemd.default_standard_output=")) {
330 if ((r = exec_output_from_string(word + 32)) < 0)
331 log_warning("Failed to parse default standard output switch %s. Ignoring.", word + 32);
333 arg_default_std_output = r;
334 } else if (startswith(word, "systemd.default_standard_error=")) {
337 if ((r = exec_output_from_string(word + 31)) < 0)
338 log_warning("Failed to parse default standard error switch %s. Ignoring.", word + 31);
340 arg_default_std_error = r;
341 } else if (startswith(word, "systemd.setenv=")) {
345 cenv = strdup(word + 15);
349 eq = strchr(cenv, '=');
353 log_warning("unsetenv failed %m. Ignoring.");
356 r = setenv(cenv, eq + 1, 1);
358 log_warning("setenv failed %m. Ignoring.");
362 } else if (startswith(word, "systemd.") ||
363 (in_initrd() && startswith(word, "rd.systemd."))) {
365 log_warning("Unknown kernel switch %s. Ignoring.", word);
367 log_info("Supported kernel switches:\n"
368 "systemd.unit=UNIT Default unit to start\n"
369 "rd.systemd.unit=UNIT Default unit to start when run in initrd\n"
370 "systemd.dump_core=0|1 Dump core on crash\n"
371 "systemd.crash_shell=0|1 Run shell on crash\n"
372 "systemd.crash_chvt=N Change to VT #N on crash\n"
373 "systemd.confirm_spawn=0|1 Confirm every process spawn\n"
374 "systemd.show_status=0|1 Show status updates on the console during bootup\n"
375 "systemd.log_target=console|kmsg|journal|journal-or-kmsg|syslog|syslog-or-kmsg|null\n"
377 "systemd.log_level=LEVEL Log level\n"
378 "systemd.log_color=0|1 Highlight important log messages\n"
379 "systemd.log_location=0|1 Include code location in log messages\n"
380 "systemd.default_standard_output=null|tty|syslog|syslog+console|kmsg|kmsg+console|journal|journal+console\n"
381 " Set default log output for services\n"
382 "systemd.default_standard_error=null|tty|syslog|syslog+console|kmsg|kmsg+console|journal|journal+console\n"
383 " Set default log error output for services\n"
384 "systemd.setenv=ASSIGNMENT Set an environment variable for all spawned processes\n");
386 } else if (streq(word, "quiet"))
387 arg_show_status = false;
388 else if (!in_initrd()) {
391 /* SysV compatibility */
392 for (i = 0; i < ELEMENTSOF(rlmap); i += 2)
393 if (streq(word, rlmap[i]))
394 return set_default_unit(rlmap[i+1]);
400 static int config_parse_level2(
401 const char *filename,
414 log_set_max_level_from_string(rvalue);
418 static int config_parse_target(
419 const char *filename,
432 log_set_target_from_string(rvalue);
436 static int config_parse_color(
437 const char *filename,
450 log_show_color_from_string(rvalue);
454 static int config_parse_location(
455 const char *filename,
468 log_show_location_from_string(rvalue);
472 static int config_parse_cpu_affinity2(
473 const char *filename,
492 FOREACH_WORD_QUOTED(w, l, rvalue, state) {
497 if (!(t = strndup(w, l)))
500 r = safe_atou(t, &cpu);
504 if (!(c = cpu_set_malloc(&ncpus)))
507 if (r < 0 || cpu >= ncpus) {
508 log_error("[%s:%u] Failed to parse CPU affinity: %s", filename, line, rvalue);
513 CPU_SET_S(cpu, CPU_ALLOC_SIZE(ncpus), c);
517 if (sched_setaffinity(0, CPU_ALLOC_SIZE(ncpus), c) < 0)
518 log_warning("Failed to set CPU affinity: %m");
526 static void strv_free_free(char ***l) {
538 static void free_join_controllers(void) {
539 if (!arg_join_controllers)
542 strv_free_free(arg_join_controllers);
543 arg_join_controllers = NULL;
546 static int config_parse_join_controllers(
547 const char *filename,
564 free_join_controllers();
566 FOREACH_WORD_QUOTED(w, length, rvalue, state) {
569 s = strndup(w, length);
573 l = strv_split(s, ",");
578 if (strv_length(l) <= 1) {
583 if (!arg_join_controllers) {
584 arg_join_controllers = new(char**, 2);
585 if (!arg_join_controllers) {
590 arg_join_controllers[0] = l;
591 arg_join_controllers[1] = NULL;
598 t = new0(char**, n+2);
606 for (a = arg_join_controllers; *a; a++) {
608 if (strv_overlap(*a, l)) {
611 c = strv_merge(*a, l);
634 t[n++] = strv_uniq(l);
636 strv_free_free(arg_join_controllers);
637 arg_join_controllers = t;
644 static int parse_config_file(void) {
646 const ConfigTableItem items[] = {
647 { "Manager", "LogLevel", config_parse_level2, 0, NULL },
648 { "Manager", "LogTarget", config_parse_target, 0, NULL },
649 { "Manager", "LogColor", config_parse_color, 0, NULL },
650 { "Manager", "LogLocation", config_parse_location, 0, NULL },
651 { "Manager", "DumpCore", config_parse_bool, 0, &arg_dump_core },
652 { "Manager", "CrashShell", config_parse_bool, 0, &arg_crash_shell },
653 { "Manager", "ShowStatus", config_parse_bool, 0, &arg_show_status },
654 { "Manager", "CrashChVT", config_parse_int, 0, &arg_crash_chvt },
655 { "Manager", "CPUAffinity", config_parse_cpu_affinity2, 0, NULL },
656 { "Manager", "DefaultControllers", config_parse_strv, 0, &arg_default_controllers },
657 { "Manager", "DefaultStandardOutput", config_parse_output, 0, &arg_default_std_output },
658 { "Manager", "DefaultStandardError", config_parse_output, 0, &arg_default_std_error },
659 { "Manager", "JoinControllers", config_parse_join_controllers, 0, &arg_join_controllers },
660 { "Manager", "RuntimeWatchdogSec", config_parse_usec, 0, &arg_runtime_watchdog },
661 { "Manager", "ShutdownWatchdogSec", config_parse_usec, 0, &arg_shutdown_watchdog },
662 { "Manager", "CapabilityBoundingSet", config_parse_bounding_set, 0, &arg_capability_bounding_set_drop },
663 { "Manager", "TimerSlackNSec", config_parse_nsec, 0, &arg_timer_slack_nsec },
664 { "Manager", "DefaultLimitCPU", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_CPU]},
665 { "Manager", "DefaultLimitFSIZE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_FSIZE]},
666 { "Manager", "DefaultLimitDATA", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_DATA]},
667 { "Manager", "DefaultLimitSTACK", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_STACK]},
668 { "Manager", "DefaultLimitCORE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_CORE]},
669 { "Manager", "DefaultLimitRSS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RSS]},
670 { "Manager", "DefaultLimitNOFILE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NOFILE]},
671 { "Manager", "DefaultLimitAS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_AS]},
672 { "Manager", "DefaultLimitNPROC", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NPROC]},
673 { "Manager", "DefaultLimitMEMLOCK", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_MEMLOCK]},
674 { "Manager", "DefaultLimitLOCKS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_LOCKS]},
675 { "Manager", "DefaultLimitSIGPENDING",config_parse_limit, 0, &arg_default_rlimit[RLIMIT_SIGPENDING]},
676 { "Manager", "DefaultLimitMSGQUEUE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_MSGQUEUE]},
677 { "Manager", "DefaultLimitNICE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NICE]},
678 { "Manager", "DefaultLimitRTPRIO", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RTPRIO]},
679 { "Manager", "DefaultLimitRTTIME", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RTTIME]},
680 { NULL, NULL, NULL, 0, NULL }
687 fn = arg_running_as == SYSTEMD_SYSTEM ? SYSTEM_CONFIG_FILE : USER_CONFIG_FILE;
693 log_warning("Failed to open configuration file '%s': %m", fn);
697 r = config_parse(fn, f, "Manager\0", config_item_table_lookup, (void*) items, false, NULL);
699 log_warning("Failed to parse configuration file: %s", strerror(-r));
706 static int parse_proc_cmdline(void) {
707 char *line, *w, *state;
711 /* Don't read /proc/cmdline if we are in a container, since
712 * that is only relevant for the host system */
713 if (detect_container(NULL) > 0)
716 if ((r = read_one_line_file("/proc/cmdline", &line)) < 0) {
717 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
721 FOREACH_WORD_QUOTED(w, l, line, state) {
724 if (!(word = strndup(w, l))) {
729 r = parse_proc_cmdline_word(word);
731 log_error("Failed on cmdline argument %s: %s", word, strerror(-r));
746 static int parse_argv(int argc, char *argv[]) {
749 ARG_LOG_LEVEL = 0x100,
758 ARG_DUMP_CONFIGURATION_ITEMS,
766 ARG_DEFAULT_STD_OUTPUT,
767 ARG_DEFAULT_STD_ERROR
770 static const struct option options[] = {
771 { "log-level", required_argument, NULL, ARG_LOG_LEVEL },
772 { "log-target", required_argument, NULL, ARG_LOG_TARGET },
773 { "log-color", optional_argument, NULL, ARG_LOG_COLOR },
774 { "log-location", optional_argument, NULL, ARG_LOG_LOCATION },
775 { "unit", required_argument, NULL, ARG_UNIT },
776 { "system", no_argument, NULL, ARG_SYSTEM },
777 { "user", no_argument, NULL, ARG_USER },
778 { "test", no_argument, NULL, ARG_TEST },
779 { "help", no_argument, NULL, 'h' },
780 { "version", no_argument, NULL, ARG_VERSION },
781 { "dump-configuration-items", no_argument, NULL, ARG_DUMP_CONFIGURATION_ITEMS },
782 { "dump-core", optional_argument, NULL, ARG_DUMP_CORE },
783 { "crash-shell", optional_argument, NULL, ARG_CRASH_SHELL },
784 { "confirm-spawn", optional_argument, NULL, ARG_CONFIRM_SPAWN },
785 { "show-status", optional_argument, NULL, ARG_SHOW_STATUS },
786 { "deserialize", required_argument, NULL, ARG_DESERIALIZE },
787 { "switched-root", no_argument, NULL, ARG_SWITCHED_ROOT },
788 { "introspect", optional_argument, NULL, ARG_INTROSPECT },
789 { "default-standard-output", required_argument, NULL, ARG_DEFAULT_STD_OUTPUT, },
790 { "default-standard-error", required_argument, NULL, ARG_DEFAULT_STD_ERROR, },
802 while ((c = getopt_long(argc, argv, "hDbsz:", options, NULL)) >= 0)
807 if ((r = log_set_max_level_from_string(optarg)) < 0) {
808 log_error("Failed to parse log level %s.", optarg);
816 if ((r = log_set_target_from_string(optarg)) < 0) {
817 log_error("Failed to parse log target %s.", optarg);
826 if ((r = log_show_color_from_string(optarg)) < 0) {
827 log_error("Failed to parse log color setting %s.", optarg);
831 log_show_color(true);
835 case ARG_LOG_LOCATION:
838 if ((r = log_show_location_from_string(optarg)) < 0) {
839 log_error("Failed to parse log location setting %s.", optarg);
843 log_show_location(true);
847 case ARG_DEFAULT_STD_OUTPUT:
849 if ((r = exec_output_from_string(optarg)) < 0) {
850 log_error("Failed to parse default standard output setting %s.", optarg);
853 arg_default_std_output = r;
856 case ARG_DEFAULT_STD_ERROR:
858 if ((r = exec_output_from_string(optarg)) < 0) {
859 log_error("Failed to parse default standard error output setting %s.", optarg);
862 arg_default_std_error = r;
867 if ((r = set_default_unit(optarg)) < 0) {
868 log_error("Failed to set default unit %s: %s", optarg, strerror(-r));
875 arg_running_as = SYSTEMD_SYSTEM;
879 arg_running_as = SYSTEMD_USER;
883 arg_action = ACTION_TEST;
887 arg_action = ACTION_VERSION;
890 case ARG_DUMP_CONFIGURATION_ITEMS:
891 arg_action = ACTION_DUMP_CONFIGURATION_ITEMS;
895 r = optarg ? parse_boolean(optarg) : 1;
897 log_error("Failed to parse dump core boolean %s.", optarg);
903 case ARG_CRASH_SHELL:
904 r = optarg ? parse_boolean(optarg) : 1;
906 log_error("Failed to parse crash shell boolean %s.", optarg);
912 case ARG_CONFIRM_SPAWN:
913 r = optarg ? parse_boolean(optarg) : 1;
915 log_error("Failed to parse confirm spawn boolean %s.", optarg);
918 arg_confirm_spawn = r;
921 case ARG_SHOW_STATUS:
922 r = optarg ? parse_boolean(optarg) : 1;
924 log_error("Failed to parse show status boolean %s.", optarg);
930 case ARG_DESERIALIZE: {
934 if ((r = safe_atoi(optarg, &fd)) < 0 || fd < 0) {
935 log_error("Failed to parse deserialize option %s.", optarg);
939 if (!(f = fdopen(fd, "r"))) {
940 log_error("Failed to open serialization fd: %m");
945 fclose(serialization);
952 case ARG_SWITCHED_ROOT:
953 arg_switched_root = true;
956 case ARG_INTROSPECT: {
957 const char * const * i = NULL;
959 for (i = bus_interface_table; *i; i += 2)
960 if (!optarg || streq(i[0], optarg)) {
961 fputs(DBUS_INTROSPECT_1_0_XML_DOCTYPE_DECL_NODE
964 fputs("</node>\n", stdout);
971 log_error("Unknown interface %s.", optarg);
973 arg_action = ACTION_DONE;
978 arg_action = ACTION_HELP;
982 log_set_max_level(LOG_DEBUG);
988 /* Just to eat away the sysvinit kernel
989 * cmdline args without getopt() error
990 * messages that we'll parse in
991 * parse_proc_cmdline_word() or ignore. */
996 log_error("Unknown option code %c", c);
1003 if (optind < argc && getpid() != 1) {
1004 /* Hmm, when we aren't run as init system
1005 * let's complain about excess arguments */
1007 log_error("Excess arguments.");
1011 if (detect_container(NULL) > 0) {
1014 /* All /proc/cmdline arguments the kernel didn't
1015 * understand it passed to us. We're not really
1016 * interested in that usually since /proc/cmdline is
1017 * more interesting and complete. With one exception:
1018 * if we are run in a container /proc/cmdline is not
1019 * relevant for the container, hence we rely on argv[]
1022 for (a = argv; a < argv + argc; a++)
1023 if ((r = parse_proc_cmdline_word(*a)) < 0) {
1024 log_error("Failed on cmdline argument %s: %s", *a, strerror(-r));
1032 static int help(void) {
1034 printf("%s [OPTIONS...]\n\n"
1035 "Starts up and maintains the system or user services.\n\n"
1036 " -h --help Show this help\n"
1037 " --test Determine startup sequence, dump it and exit\n"
1038 " --dump-configuration-items Dump understood unit configuration items\n"
1039 " --introspect[=INTERFACE] Extract D-Bus interface data\n"
1040 " --unit=UNIT Set default unit\n"
1041 " --system Run a system instance, even if PID != 1\n"
1042 " --user Run a user instance\n"
1043 " --dump-core[=0|1] Dump core on crash\n"
1044 " --crash-shell[=0|1] Run shell on crash\n"
1045 " --confirm-spawn[=0|1] Ask for confirmation when spawning processes\n"
1046 " --show-status[=0|1] Show status updates on the console during bootup\n"
1047 " --log-target=TARGET Set log target (console, journal, syslog, kmsg, journal-or-kmsg, syslog-or-kmsg, null)\n"
1048 " --log-level=LEVEL Set log level (debug, info, notice, warning, err, crit, alert, emerg)\n"
1049 " --log-color[=0|1] Highlight important log messages\n"
1050 " --log-location[=0|1] Include code location in log messages\n"
1051 " --default-standard-output= Set default standard output for services\n"
1052 " --default-standard-error= Set default standard error output for services\n",
1053 program_invocation_short_name);
1058 static int version(void) {
1059 puts(PACKAGE_STRING);
1061 puts(SYSTEMD_FEATURES);
1066 static int prepare_reexecute(Manager *m, FILE **_f, FDSet **_fds, bool serialize_jobs) {
1075 /* Make sure nothing is really destructed when we shut down */
1078 r = manager_open_serialization(m, &f);
1080 log_error("Failed to create serialization file: %s", strerror(-r));
1087 log_error("Failed to allocate fd set: %s", strerror(-r));
1091 r = manager_serialize(m, f, fds, serialize_jobs);
1093 log_error("Failed to serialize state: %s", strerror(-r));
1097 if (fseeko(f, 0, SEEK_SET) < 0) {
1098 log_error("Failed to rewind serialization fd: %m");
1102 r = fd_cloexec(fileno(f), false);
1104 log_error("Failed to disable O_CLOEXEC for serialization: %s", strerror(-r));
1108 r = fdset_cloexec(fds, false);
1110 log_error("Failed to disable O_CLOEXEC for serialization fds: %s", strerror(-r));
1128 static int bump_rlimit_nofile(struct rlimit *saved_rlimit) {
1132 assert(saved_rlimit);
1134 /* Save the original RLIMIT_NOFILE so that we can reset it
1135 * later when transitioning from the initrd to the main
1136 * systemd or suchlike. */
1137 if (getrlimit(RLIMIT_NOFILE, saved_rlimit) < 0) {
1138 log_error("Reading RLIMIT_NOFILE failed: %m");
1142 /* Make sure forked processes get the default kernel setting */
1143 if (!arg_default_rlimit[RLIMIT_NOFILE]) {
1146 rl = newdup(struct rlimit, saved_rlimit, 1);
1150 arg_default_rlimit[RLIMIT_NOFILE] = rl;
1153 /* Bump up the resource limit for ourselves substantially */
1154 nl.rlim_cur = nl.rlim_max = 64*1024;
1155 r = setrlimit_closest(RLIMIT_NOFILE, &nl);
1157 log_error("Setting RLIMIT_NOFILE failed: %s", strerror(-r));
1164 static struct dual_timestamp* parse_initrd_timestamp(struct dual_timestamp *t) {
1166 unsigned long long a, b;
1170 e = getenv("RD_TIMESTAMP");
1174 if (sscanf(e, "%llu %llu", &a, &b) != 2)
1177 t->realtime = (usec_t) a;
1178 t->monotonic = (usec_t) b;
1183 static void test_mtab(void) {
1186 /* Check that /etc/mtab is a symlink */
1188 if (readlink_malloc("/etc/mtab", &p) >= 0) {
1191 b = streq(p, "/proc/self/mounts") || streq(p, "/proc/mounts");
1198 log_warning("/etc/mtab is not a symlink or not pointing to /proc/self/mounts. "
1199 "This is not supported anymore. "
1200 "Please make sure to replace this file by a symlink to avoid incorrect or misleading mount(8) output.");
1203 static void test_usr(void) {
1205 /* Check that /usr is not a separate fs */
1207 if (dir_is_empty("/usr") <= 0)
1210 log_warning("/usr appears to be on its own filesytem and is not already mounted. This is not a supported setup. "
1211 "Some things will probably break (sometimes even silently) in mysterious ways. "
1212 "Consult http://freedesktop.org/wiki/Software/systemd/separate-usr-is-broken for more information.");
1215 static void test_cgroups(void) {
1217 if (access("/proc/cgroups", F_OK) >= 0)
1220 log_warning("CONFIG_CGROUPS was not set when your kernel was compiled. "
1221 "Systems without control groups are not supported. "
1222 "We will now sleep for 10s, and then continue boot-up. "
1223 "Expect breakage and please do not file bugs. "
1224 "Instead fix your kernel and enable CONFIG_CGROUPS. "
1225 "Consult http://0pointer.de/blog/projects/cgroups-vs-cgroups.html for more information.");
1230 static int initialize_join_controllers(void) {
1231 /* By default, mount "cpu" + "cpuacct" together, and "net_cls"
1232 * + "net_prio". We'd like to add "cpuset" to the mix, but
1233 * "cpuset" does't really work for groups with no initialized
1236 arg_join_controllers = new(char**, 3);
1237 if (!arg_join_controllers)
1240 arg_join_controllers[0] = strv_new("cpu", "cpuacct", NULL);
1241 if (!arg_join_controllers[0])
1244 arg_join_controllers[1] = strv_new("net_cls", "net_prio", NULL);
1245 if (!arg_join_controllers[1])
1248 arg_join_controllers[2] = NULL;
1252 int main(int argc, char *argv[]) {
1254 int r, retval = EXIT_FAILURE;
1255 usec_t before_startup, after_startup;
1256 char timespan[FORMAT_TIMESPAN_MAX];
1258 bool reexecute = false;
1259 const char *shutdown_verb = NULL;
1260 dual_timestamp initrd_timestamp = { 0ULL, 0ULL };
1261 static char systemd[] = "systemd";
1262 bool skip_setup = false;
1264 bool loaded_policy = false;
1265 bool arm_reboot_watchdog = false;
1266 bool queue_default_job = false;
1267 char *switch_root_dir = NULL, *switch_root_init = NULL;
1268 static struct rlimit saved_rlimit_nofile = { 0, 0 };
1270 #ifdef HAVE_SYSV_COMPAT
1271 if (getpid() != 1 && strstr(program_invocation_short_name, "init")) {
1272 /* This is compatibility support for SysV, where
1273 * calling init as a user is identical to telinit. */
1276 execv(SYSTEMCTL_BINARY_PATH, argv);
1277 log_error("Failed to exec " SYSTEMCTL_BINARY_PATH ": %m");
1282 /* Determine if this is a reexecution or normal bootup. We do
1283 * the full command line parsing much later, so let's just
1284 * have a quick peek here. */
1285 for (j = 1; j < argc; j++)
1286 if (streq(argv[j], "--deserialize")) {
1291 /* If we have switched root, do all the special setup
1293 for (j = 1; j < argc; j++)
1294 if (streq(argv[j], "--switched-root")) {
1299 /* If we get started via the /sbin/init symlink then we are
1300 called 'init'. After a subsequent reexecution we are then
1301 called 'systemd'. That is confusing, hence let's call us
1302 systemd right-away. */
1303 program_invocation_short_name = systemd;
1304 prctl(PR_SET_NAME, systemd);
1309 log_show_color(isatty(STDERR_FILENO) > 0);
1311 if (getpid() == 1 && detect_container(NULL) <= 0) {
1313 /* Running outside of a container as PID 1 */
1314 arg_running_as = SYSTEMD_SYSTEM;
1316 log_set_target(LOG_TARGET_KMSG);
1320 char *rd_timestamp = NULL;
1322 dual_timestamp_get(&initrd_timestamp);
1323 asprintf(&rd_timestamp, "%llu %llu",
1324 (unsigned long long) initrd_timestamp.realtime,
1325 (unsigned long long) initrd_timestamp.monotonic);
1327 setenv("RD_TIMESTAMP", rd_timestamp, 1);
1333 if (selinux_setup(&loaded_policy) < 0)
1335 if (ima_setup() < 0)
1339 if (label_init(NULL) < 0)
1343 if (hwclock_is_localtime() > 0) {
1346 /* The first-time call to settimeofday() does a time warp in the kernel */
1347 r = hwclock_set_timezone(&min);
1349 log_error("Failed to apply local time delta, ignoring: %s", strerror(-r));
1351 log_info("RTC configured in localtime, applying delta of %i minutes to system time.", min);
1353 /* Do dummy first-time call to seal the kernel's time warp magic */
1354 hwclock_reset_timezone();
1356 /* Tell the kernel our time zone */
1357 r = hwclock_set_timezone(NULL);
1359 log_error("Failed to set the kernel's time zone, ignoring: %s", strerror(-r));
1363 /* Set the default for later on, but don't actually
1364 * open the logs like this for now. Note that if we
1365 * are transitioning from the initrd there might still
1366 * be journal fd open, and we shouldn't attempt
1367 * opening that before we parsed /proc/cmdline which
1368 * might redirect output elsewhere. */
1369 log_set_target(LOG_TARGET_JOURNAL_OR_KMSG);
1371 } else if (getpid() == 1) {
1373 /* Running inside a container, as PID 1 */
1374 arg_running_as = SYSTEMD_SYSTEM;
1375 log_set_target(LOG_TARGET_CONSOLE);
1378 /* For the later on, see above... */
1379 log_set_target(LOG_TARGET_JOURNAL);
1383 /* Running as user instance */
1384 arg_running_as = SYSTEMD_USER;
1385 log_set_target(LOG_TARGET_AUTO);
1389 /* Initialize default unit */
1390 r = set_default_unit(SPECIAL_DEFAULT_TARGET);
1392 log_error("Failed to set default unit %s: %s", SPECIAL_DEFAULT_TARGET, strerror(-r));
1396 r = initialize_join_controllers();
1400 /* Mount /proc, /sys and friends, so that /proc/cmdline and
1401 * /proc/$PID/fd is available. */
1402 if (geteuid() == 0 && !getenv("SYSTEMD_SKIP_API_MOUNTS")) {
1403 r = mount_setup(loaded_policy);
1408 /* Reset all signal handlers. */
1409 assert_se(reset_all_signal_handlers() == 0);
1411 /* If we are init, we can block sigkill. Yay. */
1412 ignore_signals(SIGNALS_IGNORE, -1);
1414 if (parse_config_file() < 0)
1417 if (arg_running_as == SYSTEMD_SYSTEM)
1418 if (parse_proc_cmdline() < 0)
1421 log_parse_environment();
1423 if (parse_argv(argc, argv) < 0)
1426 if (arg_action == ACTION_TEST && geteuid() == 0) {
1427 log_error("Don't run test mode as root.");
1431 if (arg_running_as == SYSTEMD_SYSTEM &&
1432 arg_action == ACTION_RUN &&
1433 running_in_chroot() > 0) {
1434 log_error("Cannot be run in a chroot() environment.");
1438 if (arg_action == ACTION_HELP) {
1441 } else if (arg_action == ACTION_VERSION) {
1444 } else if (arg_action == ACTION_DUMP_CONFIGURATION_ITEMS) {
1445 unit_dump_config_items(stdout);
1446 retval = EXIT_SUCCESS;
1448 } else if (arg_action == ACTION_DONE) {
1449 retval = EXIT_SUCCESS;
1453 assert_se(arg_action == ACTION_RUN || arg_action == ACTION_TEST);
1455 /* Close logging fds, in order not to confuse fdset below */
1458 /* Remember open file descriptors for later deserialization */
1459 if (serialization) {
1460 r = fdset_new_fill(&fds);
1462 log_error("Failed to allocate fd set: %s", strerror(-r));
1466 assert_se(fdset_remove(fds, fileno(serialization)) >= 0);
1468 close_all_fds(NULL, 0);
1470 /* Set up PATH unless it is already set */
1472 #ifdef HAVE_SPLIT_USR
1473 "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
1475 "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin",
1477 arg_running_as == SYSTEMD_SYSTEM);
1479 if (arg_running_as == SYSTEMD_SYSTEM) {
1480 /* Parse the data passed to us. We leave this
1481 * variables set, but the manager later on will not
1482 * pass them on to our children. */
1484 parse_initrd_timestamp(&initrd_timestamp);
1486 /* Unset some environment variables passed in from the
1487 * kernel that don't really make sense for us. */
1491 /* When we are invoked by a shell, these might be set,
1492 * but make little sense to pass on */
1497 /* When we are invoked by a chroot-like tool such as
1498 * nspawn, these might be set, but make little sense
1501 unsetenv("LOGNAME");
1503 /* All other variables are left as is, so that clients
1504 * can still read them via /proc/1/environ */
1507 /* Move out of the way, so that we won't block unmounts */
1508 assert_se(chdir("/") == 0);
1510 if (arg_running_as == SYSTEMD_SYSTEM) {
1511 /* Become a session leader if we aren't one yet. */
1514 /* Disable the umask logic */
1518 /* Make sure D-Bus doesn't fiddle with the SIGPIPE handlers */
1519 dbus_connection_set_change_sigpipe(FALSE);
1521 /* Reset the console, but only if this is really init and we
1522 * are freshly booted */
1523 if (arg_running_as == SYSTEMD_SYSTEM && arg_action == ACTION_RUN)
1524 console_setup(getpid() == 1 && !skip_setup);
1526 /* Open the logging devices, if possible and necessary */
1529 /* Make sure we leave a core dump without panicing the
1532 install_crash_handler();
1534 if (geteuid() == 0 && !getenv("SYSTEMD_SKIP_API_MOUNTS")) {
1535 r = mount_cgroup_controllers(arg_join_controllers);
1540 if (arg_running_as == SYSTEMD_SYSTEM) {
1541 const char *virtualization = NULL;
1543 log_info(PACKAGE_STRING " running in system mode. (" SYSTEMD_FEATURES "; " DISTRIBUTION ")");
1545 detect_virtualization(&virtualization);
1547 log_info("Detected virtualization '%s'.", virtualization);
1550 log_info("Running in initial RAM disk.");
1553 log_debug(PACKAGE_STRING " running in user mode. (" SYSTEMD_FEATURES "; " DISTRIBUTION ")");
1555 if (arg_running_as == SYSTEMD_SYSTEM && !skip_setup) {
1558 if (arg_show_status || plymouth_running())
1571 if (arg_running_as == SYSTEMD_SYSTEM && arg_runtime_watchdog > 0)
1572 watchdog_set_timeout(&arg_runtime_watchdog);
1574 if (arg_timer_slack_nsec != (nsec_t) -1)
1575 if (prctl(PR_SET_TIMERSLACK, arg_timer_slack_nsec) < 0)
1576 log_error("Failed to adjust timer slack: %m");
1578 if (arg_capability_bounding_set_drop) {
1579 r = capability_bounding_set_drop(arg_capability_bounding_set_drop, true);
1581 log_error("Failed to drop capability bounding set: %s", strerror(-r));
1584 r = capability_bounding_set_drop_usermode(arg_capability_bounding_set_drop);
1586 log_error("Failed to drop capability bounding set of usermode helpers: %s", strerror(-r));
1591 if (arg_running_as == SYSTEMD_USER) {
1592 /* Become reaper of our children */
1593 if (prctl(PR_SET_CHILD_SUBREAPER, 1) < 0) {
1594 log_warning("Failed to make us a subreaper: %m");
1595 if (errno == EINVAL)
1596 log_info("Perhaps the kernel version is too old (< 3.4?)");
1600 if (arg_running_as == SYSTEMD_SYSTEM)
1601 bump_rlimit_nofile(&saved_rlimit_nofile);
1603 r = manager_new(arg_running_as, &m);
1605 log_error("Failed to allocate manager object: %s", strerror(-r));
1609 m->confirm_spawn = arg_confirm_spawn;
1610 m->default_std_output = arg_default_std_output;
1611 m->default_std_error = arg_default_std_error;
1612 m->runtime_watchdog = arg_runtime_watchdog;
1613 m->shutdown_watchdog = arg_shutdown_watchdog;
1615 manager_set_default_rlimits(m, arg_default_rlimit);
1617 if (dual_timestamp_is_set(&initrd_timestamp))
1618 m->initrd_timestamp = initrd_timestamp;
1620 if (arg_default_controllers)
1621 manager_set_default_controllers(m, arg_default_controllers);
1623 manager_set_show_status(m, arg_show_status);
1625 /* Remember whether we should queue the default job */
1626 queue_default_job = !serialization || arg_switched_root;
1628 before_startup = now(CLOCK_MONOTONIC);
1630 r = manager_startup(m, serialization, fds);
1632 log_error("Failed to fully start up daemon: %s", strerror(-r));
1634 /* This will close all file descriptors that were opened, but
1635 * not claimed by any unit. */
1641 if (serialization) {
1642 fclose(serialization);
1643 serialization = NULL;
1646 if (queue_default_job) {
1648 Unit *target = NULL;
1649 Job *default_unit_job;
1651 dbus_error_init(&error);
1653 log_debug("Activating default unit: %s", arg_default_unit);
1655 r = manager_load_unit(m, arg_default_unit, NULL, &error, &target);
1657 log_error("Failed to load default target: %s", bus_error(&error, r));
1658 dbus_error_free(&error);
1659 } else if (target->load_state == UNIT_ERROR)
1660 log_error("Failed to load default target: %s", strerror(-target->load_error));
1661 else if (target->load_state == UNIT_MASKED)
1662 log_error("Default target masked.");
1664 if (!target || target->load_state != UNIT_LOADED) {
1665 log_info("Trying to load rescue target...");
1667 r = manager_load_unit(m, SPECIAL_RESCUE_TARGET, NULL, &error, &target);
1669 log_error("Failed to load rescue target: %s", bus_error(&error, r));
1670 dbus_error_free(&error);
1672 } else if (target->load_state == UNIT_ERROR) {
1673 log_error("Failed to load rescue target: %s", strerror(-target->load_error));
1675 } else if (target->load_state == UNIT_MASKED) {
1676 log_error("Rescue target masked.");
1681 assert(target->load_state == UNIT_LOADED);
1683 if (arg_action == ACTION_TEST) {
1684 printf("-> By units:\n");
1685 manager_dump_units(m, stdout, "\t");
1688 r = manager_add_job(m, JOB_START, target, JOB_REPLACE, false, &error, &default_unit_job);
1690 log_error("Failed to start default target: %s", bus_error(&error, r));
1691 dbus_error_free(&error);
1694 m->default_unit_job_id = default_unit_job->id;
1696 after_startup = now(CLOCK_MONOTONIC);
1697 log_full(arg_action == ACTION_TEST ? LOG_INFO : LOG_DEBUG,
1698 "Loaded units and determined initial transaction in %s.",
1699 format_timespan(timespan, sizeof(timespan), after_startup - before_startup));
1701 if (arg_action == ACTION_TEST) {
1702 printf("-> By jobs:\n");
1703 manager_dump_jobs(m, stdout, "\t");
1704 retval = EXIT_SUCCESS;
1710 r = manager_loop(m);
1712 log_error("Failed to run mainloop: %s", strerror(-r));
1716 switch (m->exit_code) {
1719 retval = EXIT_SUCCESS;
1723 case MANAGER_RELOAD:
1724 log_info("Reloading.");
1725 r = manager_reload(m);
1727 log_error("Failed to reload: %s", strerror(-r));
1730 case MANAGER_REEXECUTE:
1732 if (prepare_reexecute(m, &serialization, &fds, true) < 0)
1736 log_notice("Reexecuting.");
1739 case MANAGER_SWITCH_ROOT:
1740 /* Steal the switch root parameters */
1741 switch_root_dir = m->switch_root;
1742 switch_root_init = m->switch_root_init;
1743 m->switch_root = m->switch_root_init = NULL;
1745 if (!switch_root_init)
1746 if (prepare_reexecute(m, &serialization, &fds, false) < 0)
1750 log_notice("Switching root.");
1753 case MANAGER_REBOOT:
1754 case MANAGER_POWEROFF:
1756 case MANAGER_KEXEC: {
1757 static const char * const table[_MANAGER_EXIT_CODE_MAX] = {
1758 [MANAGER_REBOOT] = "reboot",
1759 [MANAGER_POWEROFF] = "poweroff",
1760 [MANAGER_HALT] = "halt",
1761 [MANAGER_KEXEC] = "kexec"
1764 assert_se(shutdown_verb = table[m->exit_code]);
1765 arm_reboot_watchdog = m->exit_code == MANAGER_REBOOT;
1767 log_notice("Shutting down.");
1772 assert_not_reached("Unknown exit code.");
1780 for (j = 0; j < RLIMIT_NLIMITS; j++)
1781 free(arg_default_rlimit[j]);
1783 free(arg_default_unit);
1784 strv_free(arg_default_controllers);
1785 free_join_controllers();
1792 unsigned i, args_size;
1794 /* Close and disarm the watchdog, so that the new
1795 * instance can reinitialize it, but doesn't get
1796 * rebooted while we do that */
1797 watchdog_close(true);
1799 /* Reset the RLIMIT_NOFILE to the kernel default, so
1800 * that the new systemd can pass the kernel default to
1801 * its child processes */
1802 if (saved_rlimit_nofile.rlim_cur > 0)
1803 setrlimit(RLIMIT_NOFILE, &saved_rlimit_nofile);
1805 if (switch_root_dir) {
1806 /* Kill all remaining processes from the
1807 * initrd, but don't wait for them, so that we
1808 * can handle the SIGCHLD for them after
1810 broadcast_signal(SIGTERM, false);
1812 /* And switch root */
1813 r = switch_root(switch_root_dir);
1815 log_error("Failed to switch root, ignoring: %s", strerror(-r));
1818 args_size = MAX(6, argc+1);
1819 args = newa(const char*, args_size);
1821 if (!switch_root_init) {
1824 /* First try to spawn ourselves with the right
1825 * path, and with full serialization. We do
1826 * this only if the user didn't specify an
1827 * explicit init to spawn. */
1829 assert(serialization);
1832 snprintf(sfd, sizeof(sfd), "%i", fileno(serialization));
1836 args[i++] = SYSTEMD_BINARY_PATH;
1837 if (switch_root_dir)
1838 args[i++] = "--switched-root";
1839 args[i++] = arg_running_as == SYSTEMD_SYSTEM ? "--system" : "--user";
1840 args[i++] = "--deserialize";
1844 assert(i <= args_size);
1845 execv(args[0], (char* const*) args);
1848 /* Try the fallback, if there is any, without any
1849 * serialization. We pass the original argv[] and
1850 * envp[]. (Well, modulo the ordering changes due to
1851 * getopt() in argv[], and some cleanups in envp[],
1852 * but let's hope that doesn't matter.) */
1854 if (serialization) {
1855 fclose(serialization);
1856 serialization = NULL;
1864 /* Reopen the console */
1865 make_console_stdio();
1867 for (j = 1, i = 1; j < argc; j++)
1868 args[i++] = argv[j];
1870 assert(i <= args_size);
1872 if (switch_root_init) {
1873 args[0] = switch_root_init;
1874 execv(args[0], (char* const*) args);
1875 log_warning("Failed to execute configured init, trying fallback: %m");
1878 args[0] = "/sbin/init";
1879 execv(args[0], (char* const*) args);
1881 if (errno == ENOENT) {
1882 log_warning("No /sbin/init, trying fallback");
1884 args[0] = "/bin/sh";
1886 execv(args[0], (char* const*) args);
1887 log_error("Failed to execute /bin/sh, giving up: %m");
1889 log_warning("Failed to execute /sbin/init, giving up: %m");
1893 fclose(serialization);
1898 if (shutdown_verb) {
1899 const char * command_line[] = {
1900 SYSTEMD_SHUTDOWN_BINARY_PATH,
1906 if (arm_reboot_watchdog && arg_shutdown_watchdog > 0) {
1909 /* If we reboot let's set the shutdown
1910 * watchdog and tell the shutdown binary to
1911 * repeatedly ping it */
1912 watchdog_set_timeout(&arg_shutdown_watchdog);
1913 watchdog_close(false);
1915 /* Tell the binary how often to ping */
1916 snprintf(e, sizeof(e), "WATCHDOG_USEC=%llu", (unsigned long long) arg_shutdown_watchdog);
1919 env_block = strv_append(environ, e);
1921 env_block = strv_copy(environ);
1922 watchdog_close(true);
1925 execve(SYSTEMD_SHUTDOWN_BINARY_PATH, (char **) command_line, env_block);
1927 log_error("Failed to execute shutdown binary, freezing: %m");
~ianmdlvl / elogind.git / blob