1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2011 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 2 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 General Public License for more details.
18 You should have received a copy of the GNU General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
22 #include <sys/epoll.h>
23 #include <sys/socket.h>
25 #include <sys/signalfd.h>
29 #include <sys/ioctl.h>
30 #include <linux/sockios.h>
31 #include <sys/statvfs.h>
33 #include <systemd/sd-journal.h>
34 #include <systemd/sd-login.h>
35 #include <systemd/sd-messages.h>
36 #include <systemd/sd-daemon.h>
39 #include "journal-file.h"
40 #include "socket-util.h"
41 #include "cgroup-util.h"
43 #include "journal-rate-limit.h"
44 #include "journal-internal.h"
45 #include "conf-parser.h"
51 #include <acl/libacl.h>
55 #define USER_JOURNALS_MAX 1024
56 #define STDOUT_STREAMS_MAX 4096
58 #define DEFAULT_RATE_LIMIT_INTERVAL (10*USEC_PER_SEC)
59 #define DEFAULT_RATE_LIMIT_BURST 200
61 #define RECHECK_AVAILABLE_SPACE_USEC (30*USEC_PER_SEC)
63 #define RECHECK_VAR_AVAILABLE_USEC (30*USEC_PER_SEC)
65 #define SYSLOG_TIMEOUT_USEC (250*USEC_PER_MSEC)
67 #define N_IOVEC_META_FIELDS 16
69 typedef enum StdoutStreamState {
70 STDOUT_STREAM_IDENTIFIER,
71 STDOUT_STREAM_PRIORITY,
72 STDOUT_STREAM_LEVEL_PREFIX,
73 STDOUT_STREAM_FORWARD_TO_SYSLOG,
74 STDOUT_STREAM_FORWARD_TO_KMSG,
75 STDOUT_STREAM_FORWARD_TO_CONSOLE,
81 StdoutStreamState state;
90 bool forward_to_syslog:1;
91 bool forward_to_kmsg:1;
92 bool forward_to_console:1;
94 char buffer[LINE_MAX+1];
97 LIST_FIELDS(StdoutStream, stdout_stream);
100 static int server_flush_to_var(Server *s);
102 static uint64_t available_space(Server *s) {
107 uint64_t sum = 0, avail = 0, ss_avail = 0;
113 ts = now(CLOCK_MONOTONIC);
115 if (s->cached_available_space_timestamp + RECHECK_AVAILABLE_SPACE_USEC > ts)
116 return s->cached_available_space;
118 r = sd_id128_get_machine(&machine);
122 if (s->system_journal) {
123 f = "/var/log/journal/";
124 m = &s->system_metrics;
126 f = "/run/log/journal/";
127 m = &s->runtime_metrics;
132 p = strappend(f, sd_id128_to_string(machine, ids));
142 if (fstatvfs(dirfd(d), &ss) < 0)
147 struct dirent buf, *de;
150 k = readdir_r(d, &buf, &de);
159 if (!dirent_is_file_with_suffix(de, ".journal"))
162 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
165 sum += (uint64_t) st.st_blocks * (uint64_t) st.st_blksize;
168 avail = sum >= m->max_use ? 0 : m->max_use - sum;
170 ss_avail = ss.f_bsize * ss.f_bavail;
172 ss_avail = ss_avail < m->keep_free ? 0 : ss_avail - m->keep_free;
174 if (ss_avail < avail)
177 s->cached_available_space = avail;
178 s->cached_available_space_timestamp = ts;
186 static void server_read_file_gid(Server *s) {
187 const char *adm = "adm";
192 if (s->file_gid_valid)
195 r = get_group_creds(&adm, &s->file_gid);
197 log_warning("Failed to resolve 'adm' group: %s", strerror(-r));
199 /* if we couldn't read the gid, then it will be 0, but that's
200 * fine and we shouldn't try to resolve the group again, so
201 * let's just pretend it worked right-away. */
202 s->file_gid_valid = true;
205 static void server_fix_perms(Server *s, JournalFile *f, uid_t uid) {
210 acl_permset_t permset;
215 server_read_file_gid(s);
217 r = fchmod_and_fchown(f->fd, 0640, 0, s->file_gid);
219 log_warning("Failed to fix access mode/rights on %s, ignoring: %s", f->path, strerror(-r));
225 acl = acl_get_fd(f->fd);
227 log_warning("Failed to read ACL on %s, ignoring: %m", f->path);
231 r = acl_find_uid(acl, uid, &entry);
234 if (acl_create_entry(&acl, &entry) < 0 ||
235 acl_set_tag_type(entry, ACL_USER) < 0 ||
236 acl_set_qualifier(entry, &uid) < 0) {
237 log_warning("Failed to patch ACL on %s, ignoring: %m", f->path);
242 if (acl_get_permset(entry, &permset) < 0 ||
243 acl_add_perm(permset, ACL_READ) < 0 ||
244 acl_calc_mask(&acl) < 0) {
245 log_warning("Failed to patch ACL on %s, ignoring: %m", f->path);
249 if (acl_set_fd(f->fd, acl) < 0)
250 log_warning("Failed to set ACL on %s, ignoring: %m", f->path);
257 static JournalFile* find_journal(Server *s, uid_t uid) {
266 /* We split up user logs only on /var, not on /run. If the
267 * runtime file is open, we write to it exclusively, in order
268 * to guarantee proper order as soon as we flush /run to
269 * /var and close the runtime file. */
271 if (s->runtime_journal)
272 return s->runtime_journal;
275 return s->system_journal;
277 r = sd_id128_get_machine(&machine);
279 return s->system_journal;
281 f = hashmap_get(s->user_journals, UINT32_TO_PTR(uid));
285 if (asprintf(&p, "/var/log/journal/%s/user-%lu.journal", sd_id128_to_string(machine, ids), (unsigned long) uid) < 0)
286 return s->system_journal;
288 while (hashmap_size(s->user_journals) >= USER_JOURNALS_MAX) {
289 /* Too many open? Then let's close one */
290 f = hashmap_steal_first(s->user_journals);
292 journal_file_close(f);
295 r = journal_file_open(p, O_RDWR|O_CREAT, 0640, s->system_journal, &f);
299 return s->system_journal;
301 server_fix_perms(s, f, uid);
302 f->metrics = s->system_metrics;
303 f->compress = s->compress;
305 r = hashmap_put(s->user_journals, UINT32_TO_PTR(uid), f);
307 journal_file_close(f);
308 return s->system_journal;
314 static void server_rotate(Server *s) {
320 log_info("Rotating...");
322 if (s->runtime_journal) {
323 r = journal_file_rotate(&s->runtime_journal);
325 log_error("Failed to rotate %s: %s", s->runtime_journal->path, strerror(-r));
328 if (s->system_journal) {
329 r = journal_file_rotate(&s->system_journal);
331 log_error("Failed to rotate %s: %s", s->system_journal->path, strerror(-r));
334 HASHMAP_FOREACH_KEY(f, k, s->user_journals, i) {
335 r = journal_file_rotate(&f);
337 log_error("Failed to rotate %s: %s", f->path, strerror(-r));
339 hashmap_replace(s->user_journals, k, f);
343 static void server_vacuum(Server *s) {
349 log_info("Vacuuming...");
351 r = sd_id128_get_machine(&machine);
353 log_error("Failed to get machine ID: %s", strerror(-r));
357 sd_id128_to_string(machine, ids);
359 if (s->system_journal) {
360 if (asprintf(&p, "/var/log/journal/%s", ids) < 0) {
361 log_error("Out of memory.");
365 r = journal_directory_vacuum(p, s->system_metrics.max_use, s->system_metrics.keep_free);
366 if (r < 0 && r != -ENOENT)
367 log_error("Failed to vacuum %s: %s", p, strerror(-r));
372 if (s->runtime_journal) {
373 if (asprintf(&p, "/run/log/journal/%s", ids) < 0) {
374 log_error("Out of memory.");
378 r = journal_directory_vacuum(p, s->runtime_metrics.max_use, s->runtime_metrics.keep_free);
379 if (r < 0 && r != -ENOENT)
380 log_error("Failed to vacuum %s: %s", p, strerror(-r));
384 s->cached_available_space_timestamp = 0;
387 static char *shortened_cgroup_path(pid_t pid) {
389 char *process_path, *init_path, *path;
393 r = cg_get_by_pid(SYSTEMD_CGROUP_CONTROLLER, pid, &process_path);
397 r = cg_get_by_pid(SYSTEMD_CGROUP_CONTROLLER, 1, &init_path);
403 if (endswith(init_path, "/system"))
404 init_path[strlen(init_path) - 7] = 0;
405 else if (streq(init_path, "/"))
408 if (startswith(process_path, init_path)) {
411 p = strdup(process_path + strlen(init_path));
429 static void dispatch_message_real(Server *s,
430 struct iovec *iovec, unsigned n, unsigned m,
432 struct timeval *tv) {
434 char *pid = NULL, *uid = NULL, *gid = NULL,
435 *source_time = NULL, *boot_id = NULL, *machine_id = NULL,
436 *comm = NULL, *cmdline = NULL, *hostname = NULL,
437 *audit_session = NULL, *audit_loginuid = NULL,
438 *exe = NULL, *cgroup = NULL, *session = NULL,
439 *owner_uid = NULL, *unit = NULL;
445 uid_t loginuid = 0, realuid = 0;
447 bool vacuumed = false;
452 assert(n + N_IOVEC_META_FIELDS <= m);
458 realuid = ucred->uid;
460 if (asprintf(&pid, "_PID=%lu", (unsigned long) ucred->pid) >= 0)
461 IOVEC_SET_STRING(iovec[n++], pid);
463 if (asprintf(&uid, "_UID=%lu", (unsigned long) ucred->uid) >= 0)
464 IOVEC_SET_STRING(iovec[n++], uid);
466 if (asprintf(&gid, "_GID=%lu", (unsigned long) ucred->gid) >= 0)
467 IOVEC_SET_STRING(iovec[n++], gid);
469 r = get_process_comm(ucred->pid, &t);
471 comm = strappend("_COMM=", t);
475 IOVEC_SET_STRING(iovec[n++], comm);
478 r = get_process_exe(ucred->pid, &t);
480 exe = strappend("_EXE=", t);
484 IOVEC_SET_STRING(iovec[n++], exe);
487 r = get_process_cmdline(ucred->pid, LINE_MAX, false, &t);
489 cmdline = strappend("_CMDLINE=", t);
493 IOVEC_SET_STRING(iovec[n++], cmdline);
496 r = audit_session_from_pid(ucred->pid, &audit);
498 if (asprintf(&audit_session, "_AUDIT_SESSION=%lu", (unsigned long) audit) >= 0)
499 IOVEC_SET_STRING(iovec[n++], audit_session);
501 r = audit_loginuid_from_pid(ucred->pid, &loginuid);
503 if (asprintf(&audit_loginuid, "_AUDIT_LOGINUID=%lu", (unsigned long) loginuid) >= 0)
504 IOVEC_SET_STRING(iovec[n++], audit_loginuid);
506 t = shortened_cgroup_path(ucred->pid);
508 cgroup = strappend("_SYSTEMD_CGROUP=", t);
512 IOVEC_SET_STRING(iovec[n++], cgroup);
515 if (sd_pid_get_session(ucred->pid, &t) >= 0) {
516 session = strappend("_SYSTEMD_SESSION=", t);
520 IOVEC_SET_STRING(iovec[n++], session);
523 if (sd_pid_get_unit(ucred->pid, &t) >= 0) {
524 unit = strappend("_SYSTEMD_UNIT=", t);
528 IOVEC_SET_STRING(iovec[n++], unit);
531 if (sd_pid_get_owner_uid(ucred->uid, &owner) >= 0)
532 if (asprintf(&owner_uid, "_SYSTEMD_OWNER_UID=%lu", (unsigned long) owner) >= 0)
533 IOVEC_SET_STRING(iovec[n++], owner_uid);
537 if (asprintf(&source_time, "_SOURCE_REALTIME_TIMESTAMP=%llu",
538 (unsigned long long) timeval_load(tv)) >= 0)
539 IOVEC_SET_STRING(iovec[n++], source_time);
542 /* Note that strictly speaking storing the boot id here is
543 * redundant since the entry includes this in-line
544 * anyway. However, we need this indexed, too. */
545 r = sd_id128_get_boot(&id);
547 if (asprintf(&boot_id, "_BOOT_ID=%s", sd_id128_to_string(id, idbuf)) >= 0)
548 IOVEC_SET_STRING(iovec[n++], boot_id);
550 r = sd_id128_get_machine(&id);
552 if (asprintf(&machine_id, "_MACHINE_ID=%s", sd_id128_to_string(id, idbuf)) >= 0)
553 IOVEC_SET_STRING(iovec[n++], machine_id);
555 t = gethostname_malloc();
557 hostname = strappend("_HOSTNAME=", t);
560 IOVEC_SET_STRING(iovec[n++], hostname);
565 server_flush_to_var(s);
568 f = find_journal(s, realuid == 0 ? 0 : loginuid);
570 log_warning("Dropping message, as we can't find a place to store the data.");
572 r = journal_file_append_entry(f, NULL, iovec, n, &s->seqnum, NULL, NULL);
574 if (r == -E2BIG && !vacuumed) {
575 log_info("Allocation limit reached.");
581 log_info("Retrying write.");
586 log_error("Failed to write entry, ignoring: %s", strerror(-r));
600 free(audit_loginuid);
607 static void driver_message(Server *s, sd_id128_t message_id, const char *format, ...) {
608 char mid[11 + 32 + 1];
609 char buffer[16 + LINE_MAX + 1];
610 struct iovec iovec[N_IOVEC_META_FIELDS + 4];
618 IOVEC_SET_STRING(iovec[n++], "PRIORITY=5");
619 IOVEC_SET_STRING(iovec[n++], "_TRANSPORT=driver");
621 memcpy(buffer, "MESSAGE=", 8);
622 va_start(ap, format);
623 vsnprintf(buffer + 8, sizeof(buffer) - 8, format, ap);
625 char_array_0(buffer);
626 IOVEC_SET_STRING(iovec[n++], buffer);
628 snprintf(mid, sizeof(mid), "MESSAGE_ID=" SD_ID128_FORMAT_STR, SD_ID128_FORMAT_VAL(message_id));
630 IOVEC_SET_STRING(iovec[n++], mid);
633 ucred.pid = getpid();
634 ucred.uid = getuid();
635 ucred.gid = getgid();
637 dispatch_message_real(s, iovec, n, ELEMENTSOF(iovec), &ucred, NULL);
640 static void dispatch_message(Server *s,
641 struct iovec *iovec, unsigned n, unsigned m,
646 char *path = NULL, *c;
649 assert(iovec || n == 0);
657 path = shortened_cgroup_path(ucred->pid);
661 /* example: /user/lennart/3/foobar
662 * /system/dbus.service/foobar
664 * So let's cut of everything past the third /, since that is
665 * wher user directories start */
667 c = strchr(path, '/');
669 c = strchr(c+1, '/');
671 c = strchr(c+1, '/');
677 rl = journal_rate_limit_test(s->rate_limit, path, priority & LOG_PRIMASK, available_space(s));
684 /* Write a suppression message if we suppressed something */
686 driver_message(s, SD_MESSAGE_JOURNAL_DROPPED, "Suppressed %u messages from %s", rl - 1, path);
691 dispatch_message_real(s, iovec, n, m, ucred, tv);
694 static void forward_syslog_iovec(Server *s, const struct iovec *iovec, unsigned n_iovec, struct ucred *ucred, struct timeval *tv) {
695 struct msghdr msghdr;
696 struct cmsghdr *cmsg;
698 struct cmsghdr cmsghdr;
699 uint8_t buf[CMSG_SPACE(sizeof(struct ucred))];
701 union sockaddr_union sa;
708 msghdr.msg_iov = (struct iovec*) iovec;
709 msghdr.msg_iovlen = n_iovec;
712 sa.un.sun_family = AF_UNIX;
713 strncpy(sa.un.sun_path, "/run/systemd/journal/syslog", sizeof(sa.un.sun_path));
714 msghdr.msg_name = &sa;
715 msghdr.msg_namelen = offsetof(union sockaddr_union, un.sun_path) + strlen(sa.un.sun_path);
719 msghdr.msg_control = &control;
720 msghdr.msg_controllen = sizeof(control);
722 cmsg = CMSG_FIRSTHDR(&msghdr);
723 cmsg->cmsg_level = SOL_SOCKET;
724 cmsg->cmsg_type = SCM_CREDENTIALS;
725 cmsg->cmsg_len = CMSG_LEN(sizeof(struct ucred));
726 memcpy(CMSG_DATA(cmsg), ucred, sizeof(struct ucred));
727 msghdr.msg_controllen = cmsg->cmsg_len;
730 /* Forward the syslog message we received via /dev/log to
731 * /run/systemd/syslog. Unfortunately we currently can't set
732 * the SO_TIMESTAMP auxiliary data, and hence we don't. */
734 if (sendmsg(s->syslog_fd, &msghdr, MSG_NOSIGNAL) >= 0)
737 if (ucred && errno == ESRCH) {
740 /* Hmm, presumably the sender process vanished
741 * by now, so let's fix it as good as we
746 memcpy(CMSG_DATA(cmsg), &u, sizeof(struct ucred));
748 if (sendmsg(s->syslog_fd, &msghdr, MSG_NOSIGNAL) >= 0)
752 log_debug("Failed to forward syslog message: %m");
755 static void forward_syslog_raw(Server *s, const char *buffer, struct ucred *ucred, struct timeval *tv) {
761 IOVEC_SET_STRING(iovec, buffer);
762 forward_syslog_iovec(s, &iovec, 1, ucred, tv);
765 static void forward_syslog(Server *s, int priority, const char *identifier, const char *message, struct ucred *ucred, struct timeval *tv) {
766 struct iovec iovec[5];
767 char header_priority[6], header_time[64], header_pid[16];
771 char *ident_buf = NULL;
774 assert(priority >= 0);
775 assert(priority <= 999);
778 /* First: priority field */
779 snprintf(header_priority, sizeof(header_priority), "<%i>", priority);
780 char_array_0(header_priority);
781 IOVEC_SET_STRING(iovec[n++], header_priority);
783 /* Second: timestamp */
784 t = tv ? tv->tv_sec : ((time_t) (now(CLOCK_REALTIME) / USEC_PER_SEC));
788 if (strftime(header_time, sizeof(header_time), "%h %e %T ", tm) <= 0)
790 IOVEC_SET_STRING(iovec[n++], header_time);
792 /* Third: identifier and PID */
795 get_process_comm(ucred->pid, &ident_buf);
796 identifier = ident_buf;
799 snprintf(header_pid, sizeof(header_pid), "[%lu]: ", (unsigned long) ucred->pid);
800 char_array_0(header_pid);
803 IOVEC_SET_STRING(iovec[n++], identifier);
805 IOVEC_SET_STRING(iovec[n++], header_pid);
806 } else if (identifier) {
807 IOVEC_SET_STRING(iovec[n++], identifier);
808 IOVEC_SET_STRING(iovec[n++], ": ");
811 /* Fourth: message */
812 IOVEC_SET_STRING(iovec[n++], message);
814 forward_syslog_iovec(s, iovec, n, ucred, tv);
819 static int fixup_priority(int priority) {
821 if ((priority & LOG_FACMASK) == 0)
822 return (priority & LOG_PRIMASK) | LOG_USER;
827 static void forward_kmsg(Server *s, int priority, const char *identifier, const char *message, struct ucred *ucred) {
828 struct iovec iovec[5];
829 char header_priority[6], header_pid[16];
831 char *ident_buf = NULL;
835 assert(priority >= 0);
836 assert(priority <= 999);
839 /* Never allow messages with kernel facility to be written to
840 * kmsg, regardless where the data comes from. */
841 priority = fixup_priority(priority);
843 /* First: priority field */
844 snprintf(header_priority, sizeof(header_priority), "<%i>", priority);
845 char_array_0(header_priority);
846 IOVEC_SET_STRING(iovec[n++], header_priority);
848 /* Second: identifier and PID */
851 get_process_comm(ucred->pid, &ident_buf);
852 identifier = ident_buf;
855 snprintf(header_pid, sizeof(header_pid), "[%lu]: ", (unsigned long) ucred->pid);
856 char_array_0(header_pid);
859 IOVEC_SET_STRING(iovec[n++], identifier);
861 IOVEC_SET_STRING(iovec[n++], header_pid);
862 } else if (identifier) {
863 IOVEC_SET_STRING(iovec[n++], identifier);
864 IOVEC_SET_STRING(iovec[n++], ": ");
867 /* Fourth: message */
868 IOVEC_SET_STRING(iovec[n++], message);
869 IOVEC_SET_STRING(iovec[n++], "\n");
871 fd = open("/dev/kmsg", O_WRONLY|O_NOCTTY|O_CLOEXEC);
873 log_debug("Failed to open /dev/kmsg for logging: %s", strerror(errno));
877 if (writev(fd, iovec, n) < 0)
878 log_debug("Failed to write to /dev/kmsg for logging: %s", strerror(errno));
880 close_nointr_nofail(fd);
886 static void forward_console(Server *s, const char *identifier, const char *message, struct ucred *ucred) {
887 struct iovec iovec[4];
890 char *ident_buf = NULL;
895 /* First: identifier and PID */
898 get_process_comm(ucred->pid, &ident_buf);
899 identifier = ident_buf;
902 snprintf(header_pid, sizeof(header_pid), "[%lu]: ", (unsigned long) ucred->pid);
903 char_array_0(header_pid);
906 IOVEC_SET_STRING(iovec[n++], identifier);
908 IOVEC_SET_STRING(iovec[n++], header_pid);
909 } else if (identifier) {
910 IOVEC_SET_STRING(iovec[n++], identifier);
911 IOVEC_SET_STRING(iovec[n++], ": ");
915 IOVEC_SET_STRING(iovec[n++], message);
916 IOVEC_SET_STRING(iovec[n++], "\n");
918 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
920 log_debug("Failed to open /dev/console for logging: %s", strerror(errno));
924 if (writev(fd, iovec, n) < 0)
925 log_debug("Failed to write to /dev/console for logging: %s", strerror(errno));
927 close_nointr_nofail(fd);
933 static void read_identifier(const char **buf, char **identifier, char **pid) {
944 p += strspn(p, WHITESPACE);
945 l = strcspn(p, WHITESPACE);
960 t = strndup(p+k+1, l-k-2);
980 *buf += strspn(*buf, WHITESPACE);
983 static void process_syslog_message(Server *s, const char *buf, struct ucred *ucred, struct timeval *tv) {
984 char *message = NULL, *syslog_priority = NULL, *syslog_facility = NULL, *syslog_identifier = NULL, *syslog_pid = NULL;
985 struct iovec iovec[N_IOVEC_META_FIELDS + 6];
987 int priority = LOG_USER | LOG_INFO;
988 char *identifier = NULL, *pid = NULL;
993 if (s->forward_to_syslog)
994 forward_syslog_raw(s, buf, ucred, tv);
996 parse_syslog_priority((char**) &buf, &priority);
997 skip_syslog_date((char**) &buf);
998 read_identifier(&buf, &identifier, &pid);
1000 if (s->forward_to_kmsg)
1001 forward_kmsg(s, priority, identifier, buf, ucred);
1003 if (s->forward_to_console)
1004 forward_console(s, identifier, buf, ucred);
1006 IOVEC_SET_STRING(iovec[n++], "_TRANSPORT=syslog");
1008 if (asprintf(&syslog_priority, "PRIORITY=%i", priority & LOG_PRIMASK) >= 0)
1009 IOVEC_SET_STRING(iovec[n++], syslog_priority);
1011 if (priority & LOG_FACMASK)
1012 if (asprintf(&syslog_facility, "SYSLOG_FACILITY=%i", LOG_FAC(priority)) >= 0)
1013 IOVEC_SET_STRING(iovec[n++], syslog_facility);
1016 syslog_identifier = strappend("SYSLOG_IDENTIFIER=", identifier);
1017 if (syslog_identifier)
1018 IOVEC_SET_STRING(iovec[n++], syslog_identifier);
1022 syslog_pid = strappend("SYSLOG_PID=", pid);
1024 IOVEC_SET_STRING(iovec[n++], syslog_pid);
1027 message = strappend("MESSAGE=", buf);
1029 IOVEC_SET_STRING(iovec[n++], message);
1031 dispatch_message(s, iovec, n, ELEMENTSOF(iovec), ucred, tv, priority);
1036 free(syslog_priority);
1037 free(syslog_facility);
1038 free(syslog_identifier);
1041 static bool valid_user_field(const char *p, size_t l) {
1044 /* We kinda enforce POSIX syntax recommendations for
1045 environment variables here, but make a couple of additional
1048 http://pubs.opengroup.org/onlinepubs/000095399/basedefs/xbd_chap08.html */
1050 /* No empty field names */
1054 /* Don't allow names longer than 64 chars */
1058 /* Variables starting with an underscore are protected */
1062 /* Don't allow digits as first character */
1063 if (p[0] >= '0' && p[0] <= '9')
1066 /* Only allow A-Z0-9 and '_' */
1067 for (a = p; a < p + l; a++)
1068 if (!((*a >= 'A' && *a <= 'Z') ||
1069 (*a >= '0' && *a <= '9') ||
1076 static void process_native_message(Server *s, const void *buffer, size_t buffer_size, struct ucred *ucred, struct timeval *tv) {
1077 struct iovec *iovec = NULL;
1078 unsigned n = 0, m = 0, j, tn = (unsigned) -1;
1081 int priority = LOG_INFO;
1082 char *identifier = NULL, *message = NULL;
1085 assert(buffer || n == 0);
1088 remaining = buffer_size;
1090 while (remaining > 0) {
1093 e = memchr(p, '\n', remaining);
1096 /* Trailing noise, let's ignore it, and flush what we collected */
1097 log_debug("Received message with trailing noise, ignoring.");
1102 /* Entry separator */
1103 dispatch_message(s, iovec, n, m, ucred, tv, priority);
1105 priority = LOG_INFO;
1112 if (*p == '.' || *p == '#') {
1113 /* Ignore control commands for now, and
1115 remaining -= (e - p) + 1;
1120 /* A property follows */
1122 if (n+N_IOVEC_META_FIELDS >= m) {
1126 u = MAX((n+N_IOVEC_META_FIELDS+1) * 2U, 4U);
1127 c = realloc(iovec, u * sizeof(struct iovec));
1129 log_error("Out of memory");
1137 q = memchr(p, '=', e - p);
1139 if (valid_user_field(p, q - p)) {
1144 /* If the field name starts with an
1145 * underscore, skip the variable,
1146 * since that indidates a trusted
1148 iovec[n].iov_base = (char*) p;
1149 iovec[n].iov_len = l;
1152 /* We need to determine the priority
1153 * of this entry for the rate limiting
1156 memcmp(p, "PRIORITY=", 9) == 0 &&
1157 p[9] >= '0' && p[9] <= '9')
1158 priority = (priority & LOG_FACMASK) | (p[9] - '0');
1161 memcmp(p, "SYSLOG_FACILITY=", 16) == 0 &&
1162 p[16] >= '0' && p[16] <= '9')
1163 priority = (priority & LOG_PRIMASK) | ((p[16] - '0') << 3);
1166 memcmp(p, "SYSLOG_FACILITY=", 16) == 0 &&
1167 p[16] >= '0' && p[16] <= '9' &&
1168 p[17] >= '0' && p[17] <= '9')
1169 priority = (priority & LOG_PRIMASK) | (((p[16] - '0')*10 + (p[17] - '0')) << 3);
1172 memcmp(p, "SYSLOG_IDENTIFIER=", 11) == 0) {
1175 t = strndup(p + 11, l - 11);
1180 } else if (l >= 8 &&
1181 memcmp(p, "MESSAGE=", 8) == 0) {
1184 t = strndup(p + 8, l - 8);
1192 remaining -= (e - p) + 1;
1199 if (remaining < e - p + 1 + sizeof(uint64_t) + 1) {
1200 log_debug("Failed to parse message, ignoring.");
1204 memcpy(&l, e + 1, sizeof(uint64_t));
1207 if (remaining < e - p + 1 + sizeof(uint64_t) + l + 1 ||
1208 e[1+sizeof(uint64_t)+l] != '\n') {
1209 log_debug("Failed to parse message, ignoring.");
1213 k = malloc((e - p) + 1 + l);
1215 log_error("Out of memory");
1219 memcpy(k, p, e - p);
1221 memcpy(k + (e - p) + 1, e + 1 + sizeof(uint64_t), l);
1223 if (valid_user_field(p, e - p)) {
1224 iovec[n].iov_base = k;
1225 iovec[n].iov_len = (e - p) + 1 + l;
1230 remaining -= (e - p) + 1 + sizeof(uint64_t) + l + 1;
1231 p = e + 1 + sizeof(uint64_t) + l + 1;
1239 IOVEC_SET_STRING(iovec[tn], "_TRANSPORT=journal");
1242 if (s->forward_to_syslog)
1243 forward_syslog(s, priority, identifier, message, ucred, tv);
1245 if (s->forward_to_kmsg)
1246 forward_kmsg(s, priority, identifier, message, ucred);
1248 if (s->forward_to_console)
1249 forward_console(s, identifier, message, ucred);
1252 dispatch_message(s, iovec, n, m, ucred, tv, priority);
1255 for (j = 0; j < n; j++) {
1259 if (iovec[j].iov_base < buffer ||
1260 (const uint8_t*) iovec[j].iov_base >= (const uint8_t*) buffer + buffer_size)
1261 free(iovec[j].iov_base);
1268 static int stdout_stream_log(StdoutStream *s, const char *p) {
1269 struct iovec iovec[N_IOVEC_META_FIELDS + 5];
1270 char *message = NULL, *syslog_priority = NULL, *syslog_facility = NULL, *syslog_identifier = NULL;
1277 priority = s->priority;
1279 if (s->level_prefix)
1280 parse_syslog_priority((char**) &p, &priority);
1282 if (s->forward_to_syslog || s->server->forward_to_syslog)
1283 forward_syslog(s->server, fixup_priority(priority), s->identifier, p, &s->ucred, NULL);
1285 if (s->forward_to_kmsg || s->server->forward_to_kmsg)
1286 forward_kmsg(s->server, priority, s->identifier, p, &s->ucred);
1288 if (s->forward_to_console || s->server->forward_to_console)
1289 forward_console(s->server, s->identifier, p, &s->ucred);
1291 IOVEC_SET_STRING(iovec[n++], "_TRANSPORT=stdout");
1293 if (asprintf(&syslog_priority, "PRIORITY=%i", priority & LOG_PRIMASK) >= 0)
1294 IOVEC_SET_STRING(iovec[n++], syslog_priority);
1296 if (priority & LOG_FACMASK)
1297 if (asprintf(&syslog_facility, "SYSLOG_FACILITY=%i", LOG_FAC(priority)) >= 0)
1298 IOVEC_SET_STRING(iovec[n++], syslog_facility);
1300 if (s->identifier) {
1301 syslog_identifier = strappend("SYSLOG_IDENTIFIER=", s->identifier);
1302 if (syslog_identifier)
1303 IOVEC_SET_STRING(iovec[n++], syslog_identifier);
1306 message = strappend("MESSAGE=", p);
1308 IOVEC_SET_STRING(iovec[n++], message);
1310 dispatch_message(s->server, iovec, n, ELEMENTSOF(iovec), &s->ucred, NULL, priority);
1313 free(syslog_priority);
1314 free(syslog_facility);
1315 free(syslog_identifier);
1320 static int stdout_stream_line(StdoutStream *s, char *p) {
1330 case STDOUT_STREAM_IDENTIFIER:
1331 s->identifier = strdup(p);
1332 if (!s->identifier) {
1333 log_error("Out of memory");
1337 s->state = STDOUT_STREAM_PRIORITY;
1340 case STDOUT_STREAM_PRIORITY:
1341 r = safe_atoi(p, &s->priority);
1342 if (r < 0 || s->priority <= 0 || s->priority >= 999) {
1343 log_warning("Failed to parse log priority line.");
1347 s->state = STDOUT_STREAM_LEVEL_PREFIX;
1350 case STDOUT_STREAM_LEVEL_PREFIX:
1351 r = parse_boolean(p);
1353 log_warning("Failed to parse level prefix line.");
1357 s->level_prefix = !!r;
1358 s->state = STDOUT_STREAM_FORWARD_TO_SYSLOG;
1361 case STDOUT_STREAM_FORWARD_TO_SYSLOG:
1362 r = parse_boolean(p);
1364 log_warning("Failed to parse forward to syslog line.");
1368 s->forward_to_syslog = !!r;
1369 s->state = STDOUT_STREAM_FORWARD_TO_KMSG;
1372 case STDOUT_STREAM_FORWARD_TO_KMSG:
1373 r = parse_boolean(p);
1375 log_warning("Failed to parse copy to kmsg line.");
1379 s->forward_to_kmsg = !!r;
1380 s->state = STDOUT_STREAM_FORWARD_TO_CONSOLE;
1383 case STDOUT_STREAM_FORWARD_TO_CONSOLE:
1384 r = parse_boolean(p);
1386 log_warning("Failed to parse copy to console line.");
1390 s->forward_to_console = !!r;
1391 s->state = STDOUT_STREAM_RUNNING;
1394 case STDOUT_STREAM_RUNNING:
1395 return stdout_stream_log(s, p);
1398 assert_not_reached("Unknown stream state");
1401 static int stdout_stream_scan(StdoutStream *s, bool force_flush) {
1409 remaining = s->length;
1414 end = memchr(p, '\n', remaining);
1417 else if (remaining >= sizeof(s->buffer) - 1) {
1418 end = p + sizeof(s->buffer) - 1;
1425 r = stdout_stream_line(s, p);
1433 if (force_flush && remaining > 0) {
1435 r = stdout_stream_line(s, p);
1443 if (p > s->buffer) {
1444 memmove(s->buffer, p, remaining);
1445 s->length = remaining;
1451 static int stdout_stream_process(StdoutStream *s) {
1457 l = read(s->fd, s->buffer+s->length, sizeof(s->buffer)-1-s->length);
1460 if (errno == EAGAIN)
1463 log_warning("Failed to read from stream: %m");
1468 r = stdout_stream_scan(s, true);
1476 r = stdout_stream_scan(s, false);
1484 static void stdout_stream_free(StdoutStream *s) {
1488 assert(s->server->n_stdout_streams > 0);
1489 s->server->n_stdout_streams --;
1490 LIST_REMOVE(StdoutStream, stdout_stream, s->server->stdout_streams, s);
1495 epoll_ctl(s->server->epoll_fd, EPOLL_CTL_DEL, s->fd, NULL);
1497 close_nointr_nofail(s->fd);
1500 free(s->identifier);
1504 static int stdout_stream_new(Server *s) {
1505 StdoutStream *stream;
1508 struct epoll_event ev;
1512 fd = accept4(s->stdout_fd, NULL, NULL, SOCK_NONBLOCK|SOCK_CLOEXEC);
1514 if (errno == EAGAIN)
1517 log_error("Failed to accept stdout connection: %m");
1521 if (s->n_stdout_streams >= STDOUT_STREAMS_MAX) {
1522 log_warning("Too many stdout streams, refusing connection.");
1523 close_nointr_nofail(fd);
1527 stream = new0(StdoutStream, 1);
1529 log_error("Out of memory.");
1530 close_nointr_nofail(fd);
1536 len = sizeof(stream->ucred);
1537 if (getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &stream->ucred, &len) < 0) {
1538 log_error("Failed to determine peer credentials: %m");
1543 if (shutdown(fd, SHUT_WR) < 0) {
1544 log_error("Failed to shutdown writing side of socket: %m");
1550 ev.data.ptr = stream;
1551 ev.events = EPOLLIN;
1552 if (epoll_ctl(s->epoll_fd, EPOLL_CTL_ADD, fd, &ev) < 0) {
1553 log_error("Failed to add stream to event loop: %m");
1559 LIST_PREPEND(StdoutStream, stdout_stream, s->stdout_streams, stream);
1560 s->n_stdout_streams ++;
1565 stdout_stream_free(stream);
1569 static int parse_kernel_timestamp(char **_p, usec_t *t) {
1580 if (strlen(p) < 14 || p[0] != '[' || p[13] != ']' || p[6] != '.')
1585 for (i = 1; i <= 5; i++) {
1591 k = undecchar(p[i]);
1598 for (i = 7; i <= 12; i++) {
1601 k = undecchar(p[i]);
1610 *_p += strspn(*_p, WHITESPACE);
1615 static void proc_kmsg_line(Server *s, const char *p) {
1616 struct iovec iovec[N_IOVEC_META_FIELDS + 7];
1617 char *message = NULL, *syslog_priority = NULL, *syslog_pid = NULL, *syslog_facility = NULL, *syslog_identifier = NULL, *source_time = NULL;
1618 int priority = LOG_KERN | LOG_INFO;
1621 char *identifier = NULL, *pid = NULL;
1626 parse_syslog_priority((char **) &p, &priority);
1628 if (s->forward_to_kmsg && (priority & LOG_FACMASK) != LOG_KERN)
1631 if (parse_kernel_timestamp((char **) &p, &usec) > 0) {
1632 if (asprintf(&source_time, "_SOURCE_MONOTONIC_TIMESTAMP=%llu",
1633 (unsigned long long) usec) >= 0)
1634 IOVEC_SET_STRING(iovec[n++], source_time);
1637 IOVEC_SET_STRING(iovec[n++], "_TRANSPORT=kernel");
1639 if (asprintf(&syslog_priority, "PRIORITY=%i", priority & LOG_PRIMASK) >= 0)
1640 IOVEC_SET_STRING(iovec[n++], syslog_priority);
1642 if ((priority & LOG_FACMASK) == LOG_KERN) {
1644 if (s->forward_to_syslog)
1645 forward_syslog(s, priority, "kernel", p, NULL, NULL);
1647 IOVEC_SET_STRING(iovec[n++], "SYSLOG_IDENTIFIER=kernel");
1649 read_identifier(&p, &identifier, &pid);
1651 if (s->forward_to_syslog)
1652 forward_syslog(s, priority, identifier, p, NULL, NULL);
1655 syslog_identifier = strappend("SYSLOG_IDENTIFIER=", identifier);
1656 if (syslog_identifier)
1657 IOVEC_SET_STRING(iovec[n++], syslog_identifier);
1661 syslog_pid = strappend("SYSLOG_PID=", pid);
1663 IOVEC_SET_STRING(iovec[n++], syslog_pid);
1666 if (asprintf(&syslog_facility, "SYSLOG_FACILITY=%i", LOG_FAC(priority)) >= 0)
1667 IOVEC_SET_STRING(iovec[n++], syslog_facility);
1670 message = strappend("MESSAGE=", p);
1672 IOVEC_SET_STRING(iovec[n++], message);
1675 dispatch_message(s, iovec, n, ELEMENTSOF(iovec), NULL, NULL, priority);
1678 free(syslog_priority);
1679 free(syslog_identifier);
1681 free(syslog_facility);
1687 static void proc_kmsg_scan(Server *s) {
1693 p = s->proc_kmsg_buffer;
1694 remaining = s->proc_kmsg_length;
1699 end = memchr(p, '\n', remaining);
1702 else if (remaining >= sizeof(s->proc_kmsg_buffer) - 1) {
1703 end = p + sizeof(s->proc_kmsg_buffer) - 1;
1710 proc_kmsg_line(s, p);
1716 if (p > s->proc_kmsg_buffer) {
1717 memmove(s->proc_kmsg_buffer, p, remaining);
1718 s->proc_kmsg_length = remaining;
1722 static int system_journal_open(Server *s) {
1728 r = sd_id128_get_machine(&machine);
1732 sd_id128_to_string(machine, ids);
1734 if (!s->system_journal) {
1736 /* First try to create the machine path, but not the prefix */
1737 fn = strappend("/var/log/journal/", ids);
1740 (void) mkdir(fn, 0755);
1743 /* The create the system journal file */
1744 fn = join("/var/log/journal/", ids, "/system.journal", NULL);
1748 r = journal_file_open(fn, O_RDWR|O_CREAT, 0640, NULL, &s->system_journal);
1752 journal_default_metrics(&s->system_metrics, s->system_journal->fd);
1754 s->system_journal->metrics = s->system_metrics;
1755 s->system_journal->compress = s->compress;
1757 server_fix_perms(s, s->system_journal, 0);
1760 if (r != -ENOENT && r != -EROFS)
1761 log_warning("Failed to open system journal: %s", strerror(-r));
1767 if (!s->runtime_journal) {
1769 fn = join("/run/log/journal/", ids, "/system.journal", NULL);
1773 if (s->system_journal) {
1775 /* Try to open the runtime journal, but only
1776 * if it already exists, so that we can flush
1777 * it into the system journal */
1779 r = journal_file_open(fn, O_RDWR, 0640, NULL, &s->runtime_journal);
1784 log_warning("Failed to open runtime journal: %s", strerror(-r));
1791 /* OK, we really need the runtime journal, so create
1792 * it if necessary. */
1794 (void) mkdir_parents(fn, 0755);
1795 r = journal_file_open(fn, O_RDWR|O_CREAT, 0640, NULL, &s->runtime_journal);
1799 log_error("Failed to open runtime journal: %s", strerror(-r));
1804 if (s->runtime_journal) {
1805 journal_default_metrics(&s->runtime_metrics, s->runtime_journal->fd);
1807 s->runtime_journal->metrics = s->runtime_metrics;
1808 s->runtime_journal->compress = s->compress;
1810 server_fix_perms(s, s->runtime_journal, 0);
1817 static int server_flush_to_var(Server *s) {
1818 char path[] = "/run/log/journal/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx";
1827 if (!s->runtime_journal)
1830 ts = now(CLOCK_MONOTONIC);
1831 if (s->var_available_timestamp + RECHECK_VAR_AVAILABLE_USEC > ts)
1834 s->var_available_timestamp = ts;
1836 system_journal_open(s);
1838 if (!s->system_journal)
1841 log_info("Flushing to /var...");
1843 r = sd_id128_get_machine(&machine);
1845 log_error("Failed to get machine id: %s", strerror(-r));
1849 r = sd_journal_open(&j, SD_JOURNAL_RUNTIME_ONLY);
1851 log_error("Failed to read runtime journal: %s", strerror(-r));
1855 SD_JOURNAL_FOREACH(j) {
1858 f = j->current_file;
1859 assert(f && f->current_offset > 0);
1861 r = journal_file_move_to_object(f, OBJECT_ENTRY, f->current_offset, &o);
1863 log_error("Can't read entry: %s", strerror(-r));
1867 r = journal_file_copy_entry(f, s->system_journal, o, f->current_offset, NULL, NULL, NULL);
1869 log_info("Allocation limit reached.");
1871 journal_file_post_change(s->system_journal);
1875 r = journal_file_copy_entry(f, s->system_journal, o, f->current_offset, NULL, NULL, NULL);
1879 log_error("Can't write entry: %s", strerror(-r));
1885 journal_file_post_change(s->system_journal);
1887 journal_file_close(s->runtime_journal);
1888 s->runtime_journal = NULL;
1891 sd_id128_to_string(machine, path + 17);
1892 rm_rf(path, false, true, false);
1898 static int server_read_proc_kmsg(Server *s) {
1901 assert(s->proc_kmsg_fd >= 0);
1903 l = read(s->proc_kmsg_fd, s->proc_kmsg_buffer + s->proc_kmsg_length, sizeof(s->proc_kmsg_buffer) - 1 - s->proc_kmsg_length);
1906 if (errno == EAGAIN || errno == EINTR)
1909 log_error("Failed to read from kernel: %m");
1913 s->proc_kmsg_length += l;
1919 static int server_flush_proc_kmsg(Server *s) {
1924 if (s->proc_kmsg_fd < 0)
1927 log_info("Flushing /proc/kmsg...");
1930 r = server_read_proc_kmsg(s);
1941 static int process_event(Server *s, struct epoll_event *ev) {
1944 if (ev->data.fd == s->signal_fd) {
1945 struct signalfd_siginfo sfsi;
1948 if (ev->events != EPOLLIN) {
1949 log_info("Got invalid event from epoll.");
1953 n = read(s->signal_fd, &sfsi, sizeof(sfsi));
1954 if (n != sizeof(sfsi)) {
1959 if (errno == EINTR || errno == EAGAIN)
1965 if (sfsi.ssi_signo == SIGUSR1) {
1966 server_flush_to_var(s);
1970 log_debug("Received SIG%s", signal_to_string(sfsi.ssi_signo));
1973 } else if (ev->data.fd == s->proc_kmsg_fd) {
1976 if (ev->events != EPOLLIN) {
1977 log_info("Got invalid event from epoll.");
1981 r = server_read_proc_kmsg(s);
1987 } else if (ev->data.fd == s->native_fd ||
1988 ev->data.fd == s->syslog_fd) {
1990 if (ev->events != EPOLLIN) {
1991 log_info("Got invalid event from epoll.");
1996 struct msghdr msghdr;
1998 struct ucred *ucred = NULL;
1999 struct timeval *tv = NULL;
2000 struct cmsghdr *cmsg;
2002 struct cmsghdr cmsghdr;
2003 uint8_t buf[CMSG_SPACE(sizeof(struct ucred)) +
2004 CMSG_SPACE(sizeof(struct timeval))];
2009 if (ioctl(ev->data.fd, SIOCINQ, &v) < 0) {
2010 log_error("SIOCINQ failed: %m");
2017 if (s->buffer_size < (size_t) v) {
2021 l = MAX(LINE_MAX + (size_t) v, s->buffer_size * 2);
2022 b = realloc(s->buffer, l+1);
2025 log_error("Couldn't increase buffer.");
2034 iovec.iov_base = s->buffer;
2035 iovec.iov_len = s->buffer_size;
2039 msghdr.msg_iov = &iovec;
2040 msghdr.msg_iovlen = 1;
2041 msghdr.msg_control = &control;
2042 msghdr.msg_controllen = sizeof(control);
2044 n = recvmsg(ev->data.fd, &msghdr, MSG_DONTWAIT);
2047 if (errno == EINTR || errno == EAGAIN)
2050 log_error("recvmsg() failed: %m");
2054 for (cmsg = CMSG_FIRSTHDR(&msghdr); cmsg; cmsg = CMSG_NXTHDR(&msghdr, cmsg)) {
2056 if (cmsg->cmsg_level == SOL_SOCKET &&
2057 cmsg->cmsg_type == SCM_CREDENTIALS &&
2058 cmsg->cmsg_len == CMSG_LEN(sizeof(struct ucred)))
2059 ucred = (struct ucred*) CMSG_DATA(cmsg);
2060 else if (cmsg->cmsg_level == SOL_SOCKET &&
2061 cmsg->cmsg_type == SO_TIMESTAMP &&
2062 cmsg->cmsg_len == CMSG_LEN(sizeof(struct timeval)))
2063 tv = (struct timeval*) CMSG_DATA(cmsg);
2066 if (ev->data.fd == s->syslog_fd) {
2069 e = memchr(s->buffer, '\n', n);
2075 process_syslog_message(s, strstrip(s->buffer), ucred, tv);
2077 process_native_message(s, s->buffer, n, ucred, tv);
2082 } else if (ev->data.fd == s->stdout_fd) {
2084 if (ev->events != EPOLLIN) {
2085 log_info("Got invalid event from epoll.");
2089 stdout_stream_new(s);
2093 StdoutStream *stream;
2095 if ((ev->events|EPOLLIN|EPOLLHUP) != (EPOLLIN|EPOLLHUP)) {
2096 log_info("Got invalid event from epoll.");
2100 /* If it is none of the well-known fds, it must be an
2101 * stdout stream fd. Note that this is a bit ugly here
2102 * (since we rely that none of the well-known fds
2103 * could be interpreted as pointer), but nonetheless
2104 * safe, since the well-known fds would never get an
2105 * fd > 4096, i.e. beyond the first memory page */
2107 stream = ev->data.ptr;
2109 if (stdout_stream_process(stream) <= 0)
2110 stdout_stream_free(stream);
2115 log_error("Unknown event.");
2119 static int open_syslog_socket(Server *s) {
2120 union sockaddr_union sa;
2122 struct epoll_event ev;
2127 if (s->syslog_fd < 0) {
2129 s->syslog_fd = socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0);
2130 if (s->syslog_fd < 0) {
2131 log_error("socket() failed: %m");
2136 sa.un.sun_family = AF_UNIX;
2137 strncpy(sa.un.sun_path, "/dev/log", sizeof(sa.un.sun_path));
2139 unlink(sa.un.sun_path);
2141 r = bind(s->syslog_fd, &sa.sa, offsetof(union sockaddr_union, un.sun_path) + strlen(sa.un.sun_path));
2143 log_error("bind() failed: %m");
2147 chmod(sa.un.sun_path, 0666);
2151 r = setsockopt(s->syslog_fd, SOL_SOCKET, SO_PASSCRED, &one, sizeof(one));
2153 log_error("SO_PASSCRED failed: %m");
2158 r = setsockopt(s->syslog_fd, SOL_SOCKET, SO_TIMESTAMP, &one, sizeof(one));
2160 log_error("SO_TIMESTAMP failed: %m");
2164 /* Since we use the same socket for forwarding this to some
2165 * other syslog implementation, make sure we don't hang
2167 timeval_store(&tv, SYSLOG_TIMEOUT_USEC);
2168 if (setsockopt(s->syslog_fd, SOL_SOCKET, SO_SNDTIMEO, &tv, sizeof(tv)) < 0) {
2169 log_error("SO_SNDTIMEO failed: %m");
2174 ev.events = EPOLLIN;
2175 ev.data.fd = s->syslog_fd;
2176 if (epoll_ctl(s->epoll_fd, EPOLL_CTL_ADD, s->syslog_fd, &ev) < 0) {
2177 log_error("Failed to add syslog server fd to epoll object: %m");
2184 static int open_native_socket(Server*s) {
2185 union sockaddr_union sa;
2187 struct epoll_event ev;
2191 if (s->native_fd < 0) {
2193 s->native_fd = socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0);
2194 if (s->native_fd < 0) {
2195 log_error("socket() failed: %m");
2200 sa.un.sun_family = AF_UNIX;
2201 strncpy(sa.un.sun_path, "/run/systemd/journal/socket", sizeof(sa.un.sun_path));
2203 unlink(sa.un.sun_path);
2205 r = bind(s->native_fd, &sa.sa, offsetof(union sockaddr_union, un.sun_path) + strlen(sa.un.sun_path));
2207 log_error("bind() failed: %m");
2211 chmod(sa.un.sun_path, 0666);
2215 r = setsockopt(s->native_fd, SOL_SOCKET, SO_PASSCRED, &one, sizeof(one));
2217 log_error("SO_PASSCRED failed: %m");
2222 r = setsockopt(s->native_fd, SOL_SOCKET, SO_TIMESTAMP, &one, sizeof(one));
2224 log_error("SO_TIMESTAMP failed: %m");
2229 ev.events = EPOLLIN;
2230 ev.data.fd = s->native_fd;
2231 if (epoll_ctl(s->epoll_fd, EPOLL_CTL_ADD, s->native_fd, &ev) < 0) {
2232 log_error("Failed to add native server fd to epoll object: %m");
2239 static int open_stdout_socket(Server *s) {
2240 union sockaddr_union sa;
2242 struct epoll_event ev;
2246 if (s->stdout_fd < 0) {
2248 s->stdout_fd = socket(AF_UNIX, SOCK_STREAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0);
2249 if (s->stdout_fd < 0) {
2250 log_error("socket() failed: %m");
2255 sa.un.sun_family = AF_UNIX;
2256 strncpy(sa.un.sun_path, "/run/systemd/journal/stdout", sizeof(sa.un.sun_path));
2258 unlink(sa.un.sun_path);
2260 r = bind(s->stdout_fd, &sa.sa, offsetof(union sockaddr_union, un.sun_path) + strlen(sa.un.sun_path));
2262 log_error("bind() failed: %m");
2266 chmod(sa.un.sun_path, 0666);
2268 if (listen(s->stdout_fd, SOMAXCONN) < 0) {
2269 log_error("liste() failed: %m");
2275 ev.events = EPOLLIN;
2276 ev.data.fd = s->stdout_fd;
2277 if (epoll_ctl(s->epoll_fd, EPOLL_CTL_ADD, s->stdout_fd, &ev) < 0) {
2278 log_error("Failed to add stdout server fd to epoll object: %m");
2285 static int open_proc_kmsg(Server *s) {
2286 struct epoll_event ev;
2290 if (!s->import_proc_kmsg)
2294 s->proc_kmsg_fd = open("/proc/kmsg", O_CLOEXEC|O_NONBLOCK|O_NOCTTY);
2295 if (s->proc_kmsg_fd < 0) {
2296 log_warning("Failed to open /proc/kmsg, ignoring: %m");
2301 ev.events = EPOLLIN;
2302 ev.data.fd = s->proc_kmsg_fd;
2303 if (epoll_ctl(s->epoll_fd, EPOLL_CTL_ADD, s->proc_kmsg_fd, &ev) < 0) {
2304 log_error("Failed to add /proc/kmsg fd to epoll object: %m");
2311 static int open_signalfd(Server *s) {
2313 struct epoll_event ev;
2317 assert_se(sigemptyset(&mask) == 0);
2318 sigset_add_many(&mask, SIGINT, SIGTERM, SIGUSR1, -1);
2319 assert_se(sigprocmask(SIG_SETMASK, &mask, NULL) == 0);
2321 s->signal_fd = signalfd(-1, &mask, SFD_NONBLOCK|SFD_CLOEXEC);
2322 if (s->signal_fd < 0) {
2323 log_error("signalfd(): %m");
2328 ev.events = EPOLLIN;
2329 ev.data.fd = s->signal_fd;
2331 if (epoll_ctl(s->epoll_fd, EPOLL_CTL_ADD, s->signal_fd, &ev) < 0) {
2332 log_error("epoll_ctl(): %m");
2339 static int server_parse_proc_cmdline(Server *s) {
2340 char *line, *w, *state;
2344 if (detect_container(NULL) > 0)
2347 r = read_one_line_file("/proc/cmdline", &line);
2349 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
2353 FOREACH_WORD_QUOTED(w, l, line, state) {
2356 word = strndup(w, l);
2362 if (startswith(word, "systemd_journald.forward_to_syslog=")) {
2363 r = parse_boolean(word + 35);
2365 log_warning("Failed to parse forward to syslog switch %s. Ignoring.", word + 35);
2367 s->forward_to_syslog = r;
2368 } else if (startswith(word, "systemd_journald.forward_to_kmsg=")) {
2369 r = parse_boolean(word + 33);
2371 log_warning("Failed to parse forward to kmsg switch %s. Ignoring.", word + 33);
2373 s->forward_to_kmsg = r;
2374 } else if (startswith(word, "systemd_journald.forward_to_console=")) {
2375 r = parse_boolean(word + 36);
2377 log_warning("Failed to parse forward to console switch %s. Ignoring.", word + 36);
2379 s->forward_to_console = r;
2392 static int server_parse_config_file(Server *s) {
2399 fn = "/etc/systemd/systemd-journald.conf";
2400 f = fopen(fn, "re");
2402 if (errno == ENOENT)
2405 log_warning("Failed to open configuration file %s: %m", fn);
2409 r = config_parse(fn, f, "Journal\0", config_item_perf_lookup, (void*) journald_gperf_lookup, false, s);
2411 log_warning("Failed to parse configuration file: %s", strerror(-r));
2418 static int server_init(Server *s) {
2424 s->syslog_fd = s->native_fd = s->stdout_fd = s->signal_fd = s->epoll_fd = s->proc_kmsg_fd = -1;
2427 s->rate_limit_interval = DEFAULT_RATE_LIMIT_INTERVAL;
2428 s->rate_limit_burst = DEFAULT_RATE_LIMIT_BURST;
2430 s->forward_to_syslog = true;
2431 s->import_proc_kmsg = true;
2433 memset(&s->system_metrics, 0xFF, sizeof(s->system_metrics));
2434 memset(&s->runtime_metrics, 0xFF, sizeof(s->runtime_metrics));
2436 server_parse_config_file(s);
2437 server_parse_proc_cmdline(s);
2439 s->user_journals = hashmap_new(trivial_hash_func, trivial_compare_func);
2440 if (!s->user_journals) {
2441 log_error("Out of memory.");
2445 s->epoll_fd = epoll_create1(EPOLL_CLOEXEC);
2446 if (s->epoll_fd < 0) {
2447 log_error("Failed to create epoll object: %m");
2451 n = sd_listen_fds(true);
2453 log_error("Failed to read listening file descriptors from environment: %s", strerror(-n));
2457 for (fd = SD_LISTEN_FDS_START; fd < SD_LISTEN_FDS_START + n; fd++) {
2459 if (sd_is_socket_unix(fd, SOCK_DGRAM, -1, "/run/systemd/journal/socket", 0) > 0) {
2461 if (s->native_fd >= 0) {
2462 log_error("Too many native sockets passed.");
2468 } else if (sd_is_socket_unix(fd, SOCK_STREAM, 1, "/run/systemd/journal/stdout", 0) > 0) {
2470 if (s->stdout_fd >= 0) {
2471 log_error("Too many stdout sockets passed.");
2477 } else if (sd_is_socket_unix(fd, SOCK_DGRAM, -1, "/dev/log", 0) > 0) {
2479 if (s->syslog_fd >= 0) {
2480 log_error("Too many /dev/log sockets passed.");
2487 log_error("Unknown socket passed.");
2492 r = open_syslog_socket(s);
2496 r = open_native_socket(s);
2500 r = open_stdout_socket(s);
2504 r = open_proc_kmsg(s);
2508 r = system_journal_open(s);
2512 r = open_signalfd(s);
2516 s->rate_limit = journal_rate_limit_new(s->rate_limit_interval, s->rate_limit_burst);
2523 static void server_done(Server *s) {
2527 while (s->stdout_streams)
2528 stdout_stream_free(s->stdout_streams);
2530 if (s->system_journal)
2531 journal_file_close(s->system_journal);
2533 if (s->runtime_journal)
2534 journal_file_close(s->runtime_journal);
2536 while ((f = hashmap_steal_first(s->user_journals)))
2537 journal_file_close(f);
2539 hashmap_free(s->user_journals);
2541 if (s->epoll_fd >= 0)
2542 close_nointr_nofail(s->epoll_fd);
2544 if (s->signal_fd >= 0)
2545 close_nointr_nofail(s->signal_fd);
2547 if (s->syslog_fd >= 0)
2548 close_nointr_nofail(s->syslog_fd);
2550 if (s->native_fd >= 0)
2551 close_nointr_nofail(s->native_fd);
2553 if (s->stdout_fd >= 0)
2554 close_nointr_nofail(s->stdout_fd);
2556 if (s->proc_kmsg_fd >= 0)
2557 close_nointr_nofail(s->proc_kmsg_fd);
2560 journal_rate_limit_free(s->rate_limit);
2565 int main(int argc, char *argv[]) {
2569 /* if (getppid() != 1) { */
2570 /* log_error("This program should be invoked by init only."); */
2571 /* return EXIT_FAILURE; */
2575 log_error("This program does not take arguments.");
2576 return EXIT_FAILURE;
2579 log_set_target(LOG_TARGET_CONSOLE);
2580 log_parse_environment();
2585 r = server_init(&server);
2589 server_vacuum(&server);
2590 server_flush_to_var(&server);
2591 server_flush_proc_kmsg(&server);
2593 log_debug("systemd-journald running as pid %lu", (unsigned long) getpid());
2594 driver_message(&server, SD_MESSAGE_JOURNAL_START, "Journal started");
2598 "STATUS=Processing requests...");
2601 struct epoll_event event;
2603 r = epoll_wait(server.epoll_fd, &event, 1, -1);
2609 log_error("epoll_wait() failed: %m");
2615 r = process_event(&server, &event);
2622 log_debug("systemd-journald stopped as pid %lu", (unsigned long) getpid());
2623 driver_message(&server, SD_MESSAGE_JOURNAL_STOP, "Journal stopped");
2627 "STATUS=Shutting down...");
2629 server_done(&server);
2631 return r < 0 ? EXIT_FAILURE : EXIT_SUCCESS;