1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2013 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
22 #include <sys/statfs.h>
27 #include "btrfs-util.h"
28 #include "path-util.h"
30 #include "machine-image.h"
32 static const char image_search_path[] =
34 "/var/lib/container\0"
35 "/usr/local/lib/machines\0"
36 "/usr/lib/machines\0";
38 Image *image_unref(Image *i) {
58 _cleanup_(image_unrefp) Image *i = NULL;
61 assert(t < _IMAGE_TYPE_MAX);
71 i->read_only = read_only;
75 i->name = strdup(pretty);
80 i->path = strjoin(path, "/", filename, NULL);
82 i->path = strdup(filename);
87 path_kill_slashes(i->path);
95 static int image_make(
108 /* We explicitly *do* follow symlinks here, since we want to
109 * allow symlinking trees into /var/lib/container/, and treat
112 if (fstatat(dfd, filename, &st, 0) < 0)
116 (path && path_startswith(path, "/usr")) ||
117 (faccessat(dfd, filename, W_OK, AT_EACCESS) < 0 && errno == EROFS);
119 if (S_ISDIR(st.st_mode)) {
127 /* btrfs subvolumes have inode 256 */
128 if (st.st_ino == 256) {
129 _cleanup_close_ int fd = -1;
132 fd = openat(dfd, filename, O_CLOEXEC|O_NOCTTY|O_DIRECTORY);
136 if (fstatfs(fd, &sfs) < 0)
139 if (F_TYPE_EQUAL(sfs.f_type, BTRFS_SUPER_MAGIC)) {
140 BtrfsSubvolInfo info;
142 /* It's a btrfs subvolume */
144 r = btrfs_subvol_get_info_fd(fd, &info);
148 r = image_new(IMAGE_SUBVOLUME,
152 info.read_only || read_only,
163 /* It's just a normal directory. */
165 r = image_new(IMAGE_DIRECTORY,
178 } else if (S_ISREG(st.st_mode) && endswith(filename, ".gpt")) {
181 /* It's a GPT block device */
186 fd_getcrtime_at(dfd, filename, &crtime, 0);
189 pretty = strndupa(filename, strlen(filename) - 4);
191 r = image_new(IMAGE_GPT,
195 !(st.st_mode & 0222) || read_only,
197 timespec_load(&st.st_mtim),
208 int image_find(const char *name, Image **ret) {
214 /* There are no images with invalid names */
215 if (!image_name_is_valid(name))
218 NULSTR_FOREACH(path, image_search_path) {
219 _cleanup_closedir_ DIR *d = NULL;
229 r = image_make(NULL, dirfd(d), path, name, ret);
230 if (r == 0 || r == -ENOENT) {
231 _cleanup_free_ char *gpt = NULL;
233 gpt = strappend(name, ".gpt");
237 r = image_make(NULL, dirfd(d), path, gpt, ret);
238 if (r == 0 || r == -ENOENT)
247 if (streq(name, ".host"))
248 return image_make(".host", AT_FDCWD, NULL, "/", ret);
253 int image_discover(Hashmap *h) {
259 NULSTR_FOREACH(path, image_search_path) {
260 _cleanup_closedir_ DIR *d = NULL;
271 FOREACH_DIRENT_ALL(de, d, return -errno) {
272 _cleanup_(image_unrefp) Image *image = NULL;
274 if (!image_name_is_valid(de->d_name))
277 if (hashmap_contains(h, de->d_name))
280 r = image_make(NULL, dirfd(d), path, de->d_name, &image);
281 if (r == 0 || r == -ENOENT)
286 r = hashmap_put(h, image->name, image);
294 if (!hashmap_contains(h, ".host")) {
295 _cleanup_(image_unrefp) Image *image = NULL;
297 r = image_make(".host", AT_FDCWD, NULL, "/", &image);
301 r = hashmap_put(h, image->name, image);
312 void image_hashmap_free(Hashmap *map) {
315 while ((i = hashmap_steal_first(map)))
321 int image_remove(Image *i) {
324 if (path_equal(i->path, "/") ||
325 path_startswith(i->path, "/usr"))
330 case IMAGE_SUBVOLUME:
331 return btrfs_subvol_remove(i->path);
333 case IMAGE_DIRECTORY:
335 return rm_rf_dangerous(i->path, false, true, false);
342 int image_rename(Image *i, const char *new_name) {
343 _cleanup_free_ char *new_path = NULL, *nn = NULL;
348 if (!image_name_is_valid(new_name))
351 if (path_equal(i->path, "/") ||
352 path_startswith(i->path, "/usr"))
355 r = image_find(new_name, NULL);
363 case IMAGE_SUBVOLUME:
364 case IMAGE_DIRECTORY:
365 new_path = file_in_same_dir(i->path, new_name);
371 fn = strappenda(new_name, ".gpt");
372 new_path = file_in_same_dir(i->path, fn);
383 nn = strdup(new_name);
387 if (renameat2(AT_FDCWD, i->path, AT_FDCWD, new_path, RENAME_NOREPLACE) < 0)
401 int image_clone(Image *i, const char *new_name, bool read_only) {
402 const char *new_path;
407 if (!image_name_is_valid(new_name))
410 r = image_find(new_name, NULL);
418 case IMAGE_SUBVOLUME:
419 case IMAGE_DIRECTORY:
420 new_path = strappenda("/var/lib/container/", new_name);
422 r = btrfs_subvol_snapshot(i->path, new_path, read_only, true);
426 new_path = strappenda("/var/lib/container/", new_name, ".gpt");
428 r = copy_file_atomic(i->path, new_path, read_only ? 0444 : 0644, false);
441 int image_read_only(Image *i, bool b) {
445 if (path_equal(i->path, "/") ||
446 path_startswith(i->path, "/usr"))
451 case IMAGE_SUBVOLUME:
452 r = btrfs_subvol_set_read_only(i->path, b);
460 if (stat(i->path, &st) < 0)
463 if (chmod(i->path, (st.st_mode & 0444) | (b ? 0000 : 0200)) < 0)
468 case IMAGE_DIRECTORY:
476 static const char* const image_type_table[_IMAGE_TYPE_MAX] = {
477 [IMAGE_DIRECTORY] = "directory",
478 [IMAGE_SUBVOLUME] = "subvolume",
482 DEFINE_STRING_TABLE_LOOKUP(image_type, ImageType);