1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <linux/magic.h>
64 #ifdef HAVE_SYS_AUXV_H
75 #include "path-util.h"
76 #include "exit-status.h"
80 #include "device-nodes.h"
87 char **saved_argv = NULL;
89 static volatile unsigned cached_columns = 0;
90 static volatile unsigned cached_lines = 0;
92 size_t page_size(void) {
93 static thread_local size_t pgsz = 0;
96 if (_likely_(pgsz > 0))
99 r = sysconf(_SC_PAGESIZE);
106 bool streq_ptr(const char *a, const char *b) {
108 /* Like streq(), but tries to make sense of NULL pointers */
119 char* endswith(const char *s, const char *postfix) {
126 pl = strlen(postfix);
129 return (char*) s + sl;
134 if (memcmp(s + sl - pl, postfix, pl) != 0)
137 return (char*) s + sl - pl;
140 bool first_word(const char *s, const char *word) {
155 if (memcmp(s, word, wl) != 0)
159 strchr(WHITESPACE, s[wl]);
162 int close_nointr(int fd) {
168 /* Just ignore EINTR; a retry loop is the wrong
169 * thing to do on Linux.
171 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
172 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
173 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
174 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
176 if (_unlikely_(r < 0 && errno == EINTR))
184 void close_nointr_nofail(int fd) {
187 /* like close_nointr() but cannot fail, and guarantees errno
190 assert_se(close_nointr(fd) == 0);
193 void close_many(const int fds[], unsigned n_fd) {
196 assert(fds || n_fd <= 0);
198 for (i = 0; i < n_fd; i++)
199 close_nointr_nofail(fds[i]);
202 int unlink_noerrno(const char *path) {
213 int parse_boolean(const char *v) {
216 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
218 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
224 int parse_pid(const char *s, pid_t* ret_pid) {
225 unsigned long ul = 0;
232 r = safe_atolu(s, &ul);
238 if ((unsigned long) pid != ul)
248 int parse_uid(const char *s, uid_t* ret_uid) {
249 unsigned long ul = 0;
256 r = safe_atolu(s, &ul);
262 if ((unsigned long) uid != ul)
269 int safe_atou(const char *s, unsigned *ret_u) {
277 l = strtoul(s, &x, 0);
279 if (!x || x == s || *x || errno)
280 return errno > 0 ? -errno : -EINVAL;
282 if ((unsigned long) (unsigned) l != l)
285 *ret_u = (unsigned) l;
289 int safe_atoi(const char *s, int *ret_i) {
297 l = strtol(s, &x, 0);
299 if (!x || x == s || *x || errno)
300 return errno > 0 ? -errno : -EINVAL;
302 if ((long) (int) l != l)
309 int safe_atollu(const char *s, long long unsigned *ret_llu) {
311 unsigned long long l;
317 l = strtoull(s, &x, 0);
319 if (!x || x == s || *x || errno)
320 return errno ? -errno : -EINVAL;
326 int safe_atolli(const char *s, long long int *ret_lli) {
334 l = strtoll(s, &x, 0);
336 if (!x || x == s || *x || errno)
337 return errno ? -errno : -EINVAL;
343 int safe_atod(const char *s, double *ret_d) {
350 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
355 if (!x || x == s || *x || errno)
356 return errno ? -errno : -EINVAL;
362 static size_t strcspn_escaped(const char *s, const char *reject) {
363 bool escaped = false;
366 for (n=0; s[n]; n++) {
369 else if (s[n] == '\\')
371 else if (strchr(reject, s[n]))
377 /* Split a string into words. */
378 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
381 current = *state ? *state : (char*) c;
383 if (!*current || *c == 0)
386 current += strspn(current, separator);
390 if (quoted && strchr("\'\"", *current)) {
391 char quotechar = *(current++);
392 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
393 *state = current+*l+1;
395 *l = strcspn_escaped(current, separator);
398 *l = strcspn(current, separator);
402 return (char*) current;
405 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
407 _cleanup_free_ char *line = NULL;
419 p = procfs_file_alloca(pid, "stat");
420 r = read_one_line_file(p, &line);
424 /* Let's skip the pid and comm fields. The latter is enclosed
425 * in () but does not escape any () in its value, so let's
426 * skip over it manually */
428 p = strrchr(line, ')');
440 if ((long unsigned) (pid_t) ppid != ppid)
443 *_ppid = (pid_t) ppid;
448 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
450 _cleanup_free_ char *line = NULL;
456 p = procfs_file_alloca(pid, "stat");
457 r = read_one_line_file(p, &line);
461 /* Let's skip the pid and comm fields. The latter is enclosed
462 * in () but does not escape any () in its value, so let's
463 * skip over it manually */
465 p = strrchr(line, ')');
487 "%*d " /* priority */
489 "%*d " /* num_threads */
490 "%*d " /* itrealvalue */
491 "%llu " /* starttime */,
498 int fchmod_umask(int fd, mode_t m) {
503 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
509 char *truncate_nl(char *s) {
512 s[strcspn(s, NEWLINE)] = 0;
516 int get_process_comm(pid_t pid, char **name) {
523 p = procfs_file_alloca(pid, "comm");
525 r = read_one_line_file(p, name);
532 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
533 _cleanup_fclose_ FILE *f = NULL;
541 p = procfs_file_alloca(pid, "cmdline");
547 if (max_length == 0) {
548 size_t len = 0, allocated = 0;
550 while ((c = getc(f)) != EOF) {
552 if (!GREEDY_REALLOC(r, allocated, len+2)) {
557 r[len++] = isprint(c) ? c : ' ';
567 r = new(char, max_length);
573 while ((c = getc(f)) != EOF) {
595 size_t n = MIN(left-1, 3U);
602 /* Kernel threads have no argv[] */
603 if (r == NULL || r[0] == 0) {
604 _cleanup_free_ char *t = NULL;
612 h = get_process_comm(pid, &t);
616 r = strjoin("[", t, "]", NULL);
625 int is_kernel_thread(pid_t pid) {
637 p = procfs_file_alloca(pid, "cmdline");
642 count = fread(&c, 1, 1, f);
646 /* Kernel threads have an empty cmdline */
649 return eof ? 1 : -errno;
654 int get_process_capeff(pid_t pid, char **capeff) {
660 p = procfs_file_alloca(pid, "status");
662 return get_status_field(p, "\nCapEff:", capeff);
665 int get_process_exe(pid_t pid, char **name) {
673 p = procfs_file_alloca(pid, "exe");
675 r = readlink_malloc(p, name);
677 return r == -ENOENT ? -ESRCH : r;
679 d = endswith(*name, " (deleted)");
686 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
687 _cleanup_fclose_ FILE *f = NULL;
697 p = procfs_file_alloca(pid, "status");
702 FOREACH_LINE(line, f, return -errno) {
707 if (startswith(l, field)) {
709 l += strspn(l, WHITESPACE);
711 l[strcspn(l, WHITESPACE)] = 0;
713 return parse_uid(l, uid);
720 int get_process_uid(pid_t pid, uid_t *uid) {
721 return get_process_id(pid, "Uid:", uid);
724 int get_process_gid(pid_t pid, gid_t *gid) {
725 assert_cc(sizeof(uid_t) == sizeof(gid_t));
726 return get_process_id(pid, "Gid:", gid);
729 char *strnappend(const char *s, const char *suffix, size_t b) {
737 return strndup(suffix, b);
746 if (b > ((size_t) -1) - a)
749 r = new(char, a+b+1);
754 memcpy(r+a, suffix, b);
760 char *strappend(const char *s, const char *suffix) {
761 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
764 int readlink_malloc(const char *p, char **r) {
774 if (!(c = new(char, l)))
777 if ((n = readlink(p, c, l-1)) < 0) {
783 if ((size_t) n < l-1) {
794 int readlink_and_make_absolute(const char *p, char **r) {
795 _cleanup_free_ char *target = NULL;
802 j = readlink_malloc(p, &target);
806 k = file_in_same_dir(p, target);
814 int readlink_and_canonicalize(const char *p, char **r) {
821 j = readlink_and_make_absolute(p, &t);
825 s = canonicalize_file_name(t);
832 path_kill_slashes(*r);
837 int reset_all_signal_handlers(void) {
840 for (sig = 1; sig < _NSIG; sig++) {
841 struct sigaction sa = {
842 .sa_handler = SIG_DFL,
843 .sa_flags = SA_RESTART,
846 if (sig == SIGKILL || sig == SIGSTOP)
849 /* On Linux the first two RT signals are reserved by
850 * glibc, and sigaction() will return EINVAL for them. */
851 if ((sigaction(sig, &sa, NULL) < 0))
859 char *strstrip(char *s) {
862 /* Drops trailing whitespace. Modifies the string in
863 * place. Returns pointer to first non-space character */
865 s += strspn(s, WHITESPACE);
867 for (e = strchr(s, 0); e > s; e --)
868 if (!strchr(WHITESPACE, e[-1]))
876 char *delete_chars(char *s, const char *bad) {
879 /* Drops all whitespace, regardless where in the string */
881 for (f = s, t = s; *f; f++) {
893 bool in_charset(const char *s, const char* charset) {
900 if (!strchr(charset, *i))
906 char *file_in_same_dir(const char *path, const char *filename) {
913 /* This removes the last component of path and appends
914 * filename, unless the latter is absolute anyway or the
917 if (path_is_absolute(filename))
918 return strdup(filename);
920 if (!(e = strrchr(path, '/')))
921 return strdup(filename);
923 k = strlen(filename);
924 if (!(r = new(char, e-path+1+k+1)))
927 memcpy(r, path, e-path+1);
928 memcpy(r+(e-path)+1, filename, k+1);
933 int rmdir_parents(const char *path, const char *stop) {
942 /* Skip trailing slashes */
943 while (l > 0 && path[l-1] == '/')
949 /* Skip last component */
950 while (l > 0 && path[l-1] != '/')
953 /* Skip trailing slashes */
954 while (l > 0 && path[l-1] == '/')
960 if (!(t = strndup(path, l)))
963 if (path_startswith(stop, t)) {
979 char hexchar(int x) {
980 static const char table[16] = "0123456789abcdef";
982 return table[x & 15];
985 int unhexchar(char c) {
987 if (c >= '0' && c <= '9')
990 if (c >= 'a' && c <= 'f')
993 if (c >= 'A' && c <= 'F')
999 char *hexmem(const void *p, size_t l) {
1003 z = r = malloc(l * 2 + 1);
1007 for (x = p; x < (const uint8_t*) p + l; x++) {
1008 *(z++) = hexchar(*x >> 4);
1009 *(z++) = hexchar(*x & 15);
1016 void *unhexmem(const char *p, size_t l) {
1022 z = r = malloc((l + 1) / 2 + 1);
1026 for (x = p; x < p + l; x += 2) {
1029 a = unhexchar(x[0]);
1031 b = unhexchar(x[1]);
1035 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1042 char octchar(int x) {
1043 return '0' + (x & 7);
1046 int unoctchar(char c) {
1048 if (c >= '0' && c <= '7')
1054 char decchar(int x) {
1055 return '0' + (x % 10);
1058 int undecchar(char c) {
1060 if (c >= '0' && c <= '9')
1066 char *cescape(const char *s) {
1072 /* Does C style string escaping. */
1074 r = new(char, strlen(s)*4 + 1);
1078 for (f = s, t = r; *f; f++)
1124 /* For special chars we prefer octal over
1125 * hexadecimal encoding, simply because glib's
1126 * g_strescape() does the same */
1127 if ((*f < ' ') || (*f >= 127)) {
1129 *(t++) = octchar((unsigned char) *f >> 6);
1130 *(t++) = octchar((unsigned char) *f >> 3);
1131 *(t++) = octchar((unsigned char) *f);
1142 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1149 /* Undoes C style string escaping, and optionally prefixes it. */
1151 pl = prefix ? strlen(prefix) : 0;
1153 r = new(char, pl+length+1);
1158 memcpy(r, prefix, pl);
1160 for (f = s, t = r + pl; f < s + length; f++) {
1203 /* This is an extension of the XDG syntax files */
1208 /* hexadecimal encoding */
1211 a = unhexchar(f[1]);
1212 b = unhexchar(f[2]);
1214 if (a < 0 || b < 0) {
1215 /* Invalid escape code, let's take it literal then */
1219 *(t++) = (char) ((a << 4) | b);
1234 /* octal encoding */
1237 a = unoctchar(f[0]);
1238 b = unoctchar(f[1]);
1239 c = unoctchar(f[2]);
1241 if (a < 0 || b < 0 || c < 0) {
1242 /* Invalid escape code, let's take it literal then */
1246 *(t++) = (char) ((a << 6) | (b << 3) | c);
1254 /* premature end of string.*/
1259 /* Invalid escape code, let's take it literal then */
1271 char *cunescape_length(const char *s, size_t length) {
1272 return cunescape_length_with_prefix(s, length, NULL);
1275 char *cunescape(const char *s) {
1278 return cunescape_length(s, strlen(s));
1281 char *xescape(const char *s, const char *bad) {
1285 /* Escapes all chars in bad, in addition to \ and all special
1286 * chars, in \xFF style escaping. May be reversed with
1289 r = new(char, strlen(s) * 4 + 1);
1293 for (f = s, t = r; *f; f++) {
1295 if ((*f < ' ') || (*f >= 127) ||
1296 (*f == '\\') || strchr(bad, *f)) {
1299 *(t++) = hexchar(*f >> 4);
1300 *(t++) = hexchar(*f);
1310 char *ascii_strlower(char *t) {
1315 for (p = t; *p; p++)
1316 if (*p >= 'A' && *p <= 'Z')
1317 *p = *p - 'A' + 'a';
1322 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1326 filename[0] == '.' ||
1327 streq(filename, "lost+found") ||
1328 streq(filename, "aquota.user") ||
1329 streq(filename, "aquota.group") ||
1330 endswith(filename, ".rpmnew") ||
1331 endswith(filename, ".rpmsave") ||
1332 endswith(filename, ".rpmorig") ||
1333 endswith(filename, ".dpkg-old") ||
1334 endswith(filename, ".dpkg-new") ||
1335 endswith(filename, ".swp");
1338 bool ignore_file(const char *filename) {
1341 if (endswith(filename, "~"))
1344 return ignore_file_allow_backup(filename);
1347 int fd_nonblock(int fd, bool nonblock) {
1352 if ((flags = fcntl(fd, F_GETFL, 0)) < 0)
1356 flags |= O_NONBLOCK;
1358 flags &= ~O_NONBLOCK;
1360 if (fcntl(fd, F_SETFL, flags) < 0)
1366 int fd_cloexec(int fd, bool cloexec) {
1371 if ((flags = fcntl(fd, F_GETFD, 0)) < 0)
1375 flags |= FD_CLOEXEC;
1377 flags &= ~FD_CLOEXEC;
1379 if (fcntl(fd, F_SETFD, flags) < 0)
1385 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1388 assert(n_fdset == 0 || fdset);
1390 for (i = 0; i < n_fdset; i++)
1397 int close_all_fds(const int except[], unsigned n_except) {
1402 assert(n_except == 0 || except);
1404 d = opendir("/proc/self/fd");
1409 /* When /proc isn't available (for example in chroots)
1410 * the fallback is brute forcing through the fd
1413 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1414 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1416 if (fd_in_set(fd, except, n_except))
1419 if (close_nointr(fd) < 0)
1420 if (errno != EBADF && r == 0)
1427 while ((de = readdir(d))) {
1430 if (ignore_file(de->d_name))
1433 if (safe_atoi(de->d_name, &fd) < 0)
1434 /* Let's better ignore this, just in case */
1443 if (fd_in_set(fd, except, n_except))
1446 if (close_nointr(fd) < 0) {
1447 /* Valgrind has its own FD and doesn't want to have it closed */
1448 if (errno != EBADF && r == 0)
1457 bool chars_intersect(const char *a, const char *b) {
1460 /* Returns true if any of the chars in a are in b. */
1461 for (p = a; *p; p++)
1468 bool fstype_is_network(const char *fstype) {
1469 static const char table[] =
1479 return nulstr_contains(table, fstype);
1483 _cleanup_close_ int fd;
1485 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1491 TIOCL_GETKMSGREDIRECT,
1495 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1498 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1501 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1507 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1508 struct termios old_termios, new_termios;
1510 char line[LINE_MAX];
1515 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1516 new_termios = old_termios;
1518 new_termios.c_lflag &= ~ICANON;
1519 new_termios.c_cc[VMIN] = 1;
1520 new_termios.c_cc[VTIME] = 0;
1522 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1525 if (t != (usec_t) -1) {
1526 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1527 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1532 k = fread(&c, 1, 1, f);
1534 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1540 *need_nl = c != '\n';
1547 if (t != (usec_t) -1)
1548 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1551 if (!fgets(line, sizeof(line), f))
1556 if (strlen(line) != 1)
1566 int ask(char *ret, const char *replies, const char *text, ...) {
1576 bool need_nl = true;
1579 fputs(ANSI_HIGHLIGHT_ON, stdout);
1586 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1590 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1593 if (r == -EBADMSG) {
1594 puts("Bad input, please try again.");
1605 if (strchr(replies, c)) {
1610 puts("Read unexpected character, please try again.");
1614 int reset_terminal_fd(int fd, bool switch_to_text) {
1615 struct termios termios;
1618 /* Set terminal to some sane defaults */
1622 /* We leave locked terminal attributes untouched, so that
1623 * Plymouth may set whatever it wants to set, and we don't
1624 * interfere with that. */
1626 /* Disable exclusive mode, just in case */
1627 ioctl(fd, TIOCNXCL);
1629 /* Switch to text mode */
1631 ioctl(fd, KDSETMODE, KD_TEXT);
1633 /* Enable console unicode mode */
1634 ioctl(fd, KDSKBMODE, K_UNICODE);
1636 if (tcgetattr(fd, &termios) < 0) {
1641 /* We only reset the stuff that matters to the software. How
1642 * hardware is set up we don't touch assuming that somebody
1643 * else will do that for us */
1645 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1646 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1647 termios.c_oflag |= ONLCR;
1648 termios.c_cflag |= CREAD;
1649 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1651 termios.c_cc[VINTR] = 03; /* ^C */
1652 termios.c_cc[VQUIT] = 034; /* ^\ */
1653 termios.c_cc[VERASE] = 0177;
1654 termios.c_cc[VKILL] = 025; /* ^X */
1655 termios.c_cc[VEOF] = 04; /* ^D */
1656 termios.c_cc[VSTART] = 021; /* ^Q */
1657 termios.c_cc[VSTOP] = 023; /* ^S */
1658 termios.c_cc[VSUSP] = 032; /* ^Z */
1659 termios.c_cc[VLNEXT] = 026; /* ^V */
1660 termios.c_cc[VWERASE] = 027; /* ^W */
1661 termios.c_cc[VREPRINT] = 022; /* ^R */
1662 termios.c_cc[VEOL] = 0;
1663 termios.c_cc[VEOL2] = 0;
1665 termios.c_cc[VTIME] = 0;
1666 termios.c_cc[VMIN] = 1;
1668 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1672 /* Just in case, flush all crap out */
1673 tcflush(fd, TCIOFLUSH);
1678 int reset_terminal(const char *name) {
1681 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1685 r = reset_terminal_fd(fd, true);
1686 close_nointr_nofail(fd);
1691 int open_terminal(const char *name, int mode) {
1696 * If a TTY is in the process of being closed opening it might
1697 * cause EIO. This is horribly awful, but unlikely to be
1698 * changed in the kernel. Hence we work around this problem by
1699 * retrying a couple of times.
1701 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1704 assert(!(mode & O_CREAT));
1707 fd = open(name, mode, 0);
1714 /* Max 1s in total */
1718 usleep(50 * USEC_PER_MSEC);
1727 close_nointr_nofail(fd);
1732 close_nointr_nofail(fd);
1739 int flush_fd(int fd) {
1740 struct pollfd pollfd = {
1750 r = poll(&pollfd, 1, 0);
1760 l = read(fd, buf, sizeof(buf));
1766 if (errno == EAGAIN)
1775 int acquire_terminal(
1779 bool ignore_tiocstty_eperm,
1782 int fd = -1, notify = -1, r = 0, wd = -1;
1787 /* We use inotify to be notified when the tty is closed. We
1788 * create the watch before checking if we can actually acquire
1789 * it, so that we don't lose any event.
1791 * Note: strictly speaking this actually watches for the
1792 * device being closed, it does *not* really watch whether a
1793 * tty loses its controlling process. However, unless some
1794 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1795 * its tty otherwise this will not become a problem. As long
1796 * as the administrator makes sure not configure any service
1797 * on the same tty as an untrusted user this should not be a
1798 * problem. (Which he probably should not do anyway.) */
1800 if (timeout != (usec_t) -1)
1801 ts = now(CLOCK_MONOTONIC);
1803 if (!fail && !force) {
1804 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1810 wd = inotify_add_watch(notify, name, IN_CLOSE);
1818 struct sigaction sa_old, sa_new = {
1819 .sa_handler = SIG_IGN,
1820 .sa_flags = SA_RESTART,
1824 r = flush_fd(notify);
1829 /* We pass here O_NOCTTY only so that we can check the return
1830 * value TIOCSCTTY and have a reliable way to figure out if we
1831 * successfully became the controlling process of the tty */
1832 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1836 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1837 * if we already own the tty. */
1838 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1840 /* First, try to get the tty */
1841 if (ioctl(fd, TIOCSCTTY, force) < 0)
1844 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1846 /* Sometimes it makes sense to ignore TIOCSCTTY
1847 * returning EPERM, i.e. when very likely we already
1848 * are have this controlling terminal. */
1849 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1852 if (r < 0 && (force || fail || r != -EPERM)) {
1861 assert(notify >= 0);
1864 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1866 struct inotify_event *e;
1868 if (timeout != (usec_t) -1) {
1871 n = now(CLOCK_MONOTONIC);
1872 if (ts + timeout < n) {
1877 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1887 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1890 if (errno == EINTR || errno == EAGAIN)
1897 e = (struct inotify_event*) inotify_buffer;
1902 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1907 step = sizeof(struct inotify_event) + e->len;
1908 assert(step <= (size_t) l);
1910 e = (struct inotify_event*) ((uint8_t*) e + step);
1917 /* We close the tty fd here since if the old session
1918 * ended our handle will be dead. It's important that
1919 * we do this after sleeping, so that we don't enter
1920 * an endless loop. */
1921 close_nointr_nofail(fd);
1925 close_nointr_nofail(notify);
1927 r = reset_terminal_fd(fd, true);
1929 log_warning("Failed to reset terminal: %s", strerror(-r));
1935 close_nointr_nofail(fd);
1938 close_nointr_nofail(notify);
1943 int release_terminal(void) {
1945 struct sigaction sa_old, sa_new = {
1946 .sa_handler = SIG_IGN,
1947 .sa_flags = SA_RESTART,
1949 _cleanup_close_ int fd;
1951 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
1955 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1956 * by our own TIOCNOTTY */
1957 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1959 if (ioctl(fd, TIOCNOTTY) < 0)
1962 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1967 int sigaction_many(const struct sigaction *sa, ...) {
1972 while ((sig = va_arg(ap, int)) > 0)
1973 if (sigaction(sig, sa, NULL) < 0)
1980 int ignore_signals(int sig, ...) {
1981 struct sigaction sa = {
1982 .sa_handler = SIG_IGN,
1983 .sa_flags = SA_RESTART,
1989 if (sigaction(sig, &sa, NULL) < 0)
1993 while ((sig = va_arg(ap, int)) > 0)
1994 if (sigaction(sig, &sa, NULL) < 0)
2001 int default_signals(int sig, ...) {
2002 struct sigaction sa = {
2003 .sa_handler = SIG_DFL,
2004 .sa_flags = SA_RESTART,
2009 if (sigaction(sig, &sa, NULL) < 0)
2013 while ((sig = va_arg(ap, int)) > 0)
2014 if (sigaction(sig, &sa, NULL) < 0)
2021 int close_pipe(int p[]) {
2027 a = close_nointr(p[0]);
2032 b = close_nointr(p[1]);
2036 return a < 0 ? a : b;
2039 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2046 while (nbytes > 0) {
2049 k = read(fd, p, nbytes);
2050 if (k < 0 && errno == EINTR)
2053 if (k < 0 && errno == EAGAIN && do_poll) {
2055 /* We knowingly ignore any return value here,
2056 * and expect that any error/EOF is reported
2059 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2064 return n > 0 ? n : (k < 0 ? -errno : 0);
2074 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2075 const uint8_t *p = buf;
2081 while (nbytes > 0) {
2084 k = write(fd, p, nbytes);
2085 if (k < 0 && errno == EINTR)
2088 if (k < 0 && errno == EAGAIN && do_poll) {
2090 /* We knowingly ignore any return value here,
2091 * and expect that any error/EOF is reported
2094 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2099 return n > 0 ? n : (k < 0 ? -errno : 0);
2109 int parse_bytes(const char *t, off_t *bytes) {
2110 static const struct {
2112 unsigned long long factor;
2116 { "M", 1024ULL*1024ULL },
2117 { "G", 1024ULL*1024ULL*1024ULL },
2118 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2119 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2120 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2125 unsigned long long r = 0;
2137 l = strtoll(p, &e, 10);
2148 e += strspn(e, WHITESPACE);
2150 for (i = 0; i < ELEMENTSOF(table); i++)
2151 if (startswith(e, table[i].suffix)) {
2152 unsigned long long tmp;
2153 if ((unsigned long long) l > ULLONG_MAX / table[i].factor)
2155 tmp = l * table[i].factor;
2156 if (tmp > ULLONG_MAX - r)
2160 if ((unsigned long long) (off_t) r != r)
2163 p = e + strlen(table[i].suffix);
2167 if (i >= ELEMENTSOF(table))
2177 int make_stdio(int fd) {
2182 r = dup3(fd, STDIN_FILENO, 0);
2183 s = dup3(fd, STDOUT_FILENO, 0);
2184 t = dup3(fd, STDERR_FILENO, 0);
2187 close_nointr_nofail(fd);
2189 if (r < 0 || s < 0 || t < 0)
2192 /* We rely here that the new fd has O_CLOEXEC not set */
2197 int make_null_stdio(void) {
2200 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2204 return make_stdio(null_fd);
2207 bool is_device_path(const char *path) {
2209 /* Returns true on paths that refer to a device, either in
2210 * sysfs or in /dev */
2213 path_startswith(path, "/dev/") ||
2214 path_startswith(path, "/sys/");
2217 int dir_is_empty(const char *path) {
2218 _cleanup_closedir_ DIR *d;
2229 if (!de && errno != 0)
2235 if (!ignore_file(de->d_name))
2240 char* dirname_malloc(const char *path) {
2241 char *d, *dir, *dir2;
2258 void random_bytes(void *p, size_t n) {
2259 static bool srand_called = false;
2260 _cleanup_close_ int fd;
2264 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2268 k = loop_read(fd, p, n, true);
2269 if (k < 0 || (size_t) k != n)
2276 if (!srand_called) {
2278 #ifdef HAVE_SYS_AUXV_H
2279 /* The kernel provides us with a bit of entropy in
2280 * auxv, so let's try to make use of that to seed the
2281 * pseudo-random generator. It's better than
2286 auxv = (void*) getauxval(AT_RANDOM);
2288 srand(*(unsigned*) auxv);
2291 srand(time(NULL) + gettid());
2293 srand_called = true;
2296 /* If some idiot made /dev/urandom unavailable to us, he'll
2297 * get a PRNG instead. */
2298 for (q = p; q < (uint8_t*) p + n; q ++)
2302 void rename_process(const char name[8]) {
2305 /* This is a like a poor man's setproctitle(). It changes the
2306 * comm field, argv[0], and also the glibc's internally used
2307 * name of the process. For the first one a limit of 16 chars
2308 * applies, to the second one usually one of 10 (i.e. length
2309 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2310 * "systemd"). If you pass a longer string it will be
2313 prctl(PR_SET_NAME, name);
2315 if (program_invocation_name)
2316 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2318 if (saved_argc > 0) {
2322 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2324 for (i = 1; i < saved_argc; i++) {
2328 memset(saved_argv[i], 0, strlen(saved_argv[i]));
2333 void sigset_add_many(sigset_t *ss, ...) {
2340 while ((sig = va_arg(ap, int)) > 0)
2341 assert_se(sigaddset(ss, sig) == 0);
2345 char* gethostname_malloc(void) {
2348 assert_se(uname(&u) >= 0);
2350 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2351 return strdup(u.nodename);
2353 return strdup(u.sysname);
2356 bool hostname_is_set(void) {
2359 assert_se(uname(&u) >= 0);
2361 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2364 static char *lookup_uid(uid_t uid) {
2367 _cleanup_free_ char *buf = NULL;
2368 struct passwd pwbuf, *pw = NULL;
2370 /* Shortcut things to avoid NSS lookups */
2372 return strdup("root");
2374 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2378 buf = malloc(bufsize);
2382 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2383 return strdup(pw->pw_name);
2385 if (asprintf(&name, "%lu", (unsigned long) uid) < 0)
2391 char* getlogname_malloc(void) {
2395 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2400 return lookup_uid(uid);
2403 char *getusername_malloc(void) {
2410 return lookup_uid(getuid());
2413 int getttyname_malloc(int fd, char **r) {
2414 char path[PATH_MAX], *c;
2419 k = ttyname_r(fd, path, sizeof(path));
2425 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2433 int getttyname_harder(int fd, char **r) {
2437 k = getttyname_malloc(fd, &s);
2441 if (streq(s, "tty")) {
2443 return get_ctty(0, NULL, r);
2450 int get_ctty_devnr(pid_t pid, dev_t *d) {
2452 _cleanup_free_ char *line = NULL;
2454 unsigned long ttynr;
2458 p = procfs_file_alloca(pid, "stat");
2459 r = read_one_line_file(p, &line);
2463 p = strrchr(line, ')');
2473 "%*d " /* session */
2478 if (major(ttynr) == 0 && minor(ttynr) == 0)
2487 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2489 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *s, *b, *p;
2494 k = get_ctty_devnr(pid, &devnr);
2498 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2500 k = readlink_malloc(fn, &s);
2506 /* This is an ugly hack */
2507 if (major(devnr) == 136) {
2508 if (asprintf(&b, "pts/%lu", (unsigned long) minor(devnr)) < 0)
2518 /* Probably something like the ptys which have no
2519 * symlink in /dev/char. Let's return something
2520 * vaguely useful. */
2533 if (startswith(s, "/dev/"))
2535 else if (startswith(s, "../"))
2553 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2559 /* This returns the first error we run into, but nevertheless
2560 * tries to go on. This closes the passed fd. */
2564 close_nointr_nofail(fd);
2566 return errno == ENOENT ? 0 : -errno;
2571 bool is_dir, keep_around;
2577 if (!de && errno != 0) {
2586 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2589 if (de->d_type == DT_UNKNOWN ||
2591 (de->d_type == DT_DIR && root_dev)) {
2592 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2593 if (ret == 0 && errno != ENOENT)
2598 is_dir = S_ISDIR(st.st_mode);
2601 (st.st_uid == 0 || st.st_uid == getuid()) &&
2602 (st.st_mode & S_ISVTX);
2604 is_dir = de->d_type == DT_DIR;
2605 keep_around = false;
2611 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2612 if (root_dev && st.st_dev != root_dev->st_dev)
2615 subdir_fd = openat(fd, de->d_name,
2616 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2617 if (subdir_fd < 0) {
2618 if (ret == 0 && errno != ENOENT)
2623 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2624 if (r < 0 && ret == 0)
2628 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2629 if (ret == 0 && errno != ENOENT)
2633 } else if (!only_dirs && !keep_around) {
2635 if (unlinkat(fd, de->d_name, 0) < 0) {
2636 if (ret == 0 && errno != ENOENT)
2647 _pure_ static int is_temporary_fs(struct statfs *s) {
2650 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2651 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2654 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2659 if (fstatfs(fd, &s) < 0) {
2660 close_nointr_nofail(fd);
2664 /* We refuse to clean disk file systems with this call. This
2665 * is extra paranoia just to be sure we never ever remove
2667 if (!is_temporary_fs(&s)) {
2668 log_error("Attempted to remove disk file system, and we can't allow that.");
2669 close_nointr_nofail(fd);
2673 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2676 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2682 /* We refuse to clean the root file system with this
2683 * call. This is extra paranoia to never cause a really
2684 * seriously broken system. */
2685 if (path_equal(path, "/")) {
2686 log_error("Attempted to remove entire root file system, and we can't allow that.");
2690 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2693 if (errno != ENOTDIR)
2697 if (statfs(path, &s) < 0)
2700 if (!is_temporary_fs(&s)) {
2701 log_error("Attempted to remove disk file system, and we can't allow that.");
2706 if (delete_root && !only_dirs)
2707 if (unlink(path) < 0 && errno != ENOENT)
2714 if (fstatfs(fd, &s) < 0) {
2715 close_nointr_nofail(fd);
2719 if (!is_temporary_fs(&s)) {
2720 log_error("Attempted to remove disk file system, and we can't allow that.");
2721 close_nointr_nofail(fd);
2726 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2729 if (honour_sticky && file_is_priv_sticky(path) > 0)
2732 if (rmdir(path) < 0 && errno != ENOENT) {
2741 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2742 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2745 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2746 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2749 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2752 /* Under the assumption that we are running privileged we
2753 * first change the access mode and only then hand out
2754 * ownership to avoid a window where access is too open. */
2756 if (mode != (mode_t) -1)
2757 if (chmod(path, mode) < 0)
2760 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2761 if (chown(path, uid, gid) < 0)
2767 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2770 /* Under the assumption that we are running privileged we
2771 * first change the access mode and only then hand out
2772 * ownership to avoid a window where access is too open. */
2774 if (mode != (mode_t) -1)
2775 if (fchmod(fd, mode) < 0)
2778 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2779 if (fchown(fd, uid, gid) < 0)
2785 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2789 /* Allocates the cpuset in the right size */
2792 if (!(r = CPU_ALLOC(n)))
2795 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2796 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2806 if (errno != EINVAL)
2813 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2814 static const char status_indent[] = " "; /* "[" STATUS "] " */
2815 _cleanup_free_ char *s = NULL;
2816 _cleanup_close_ int fd = -1;
2817 struct iovec iovec[6] = {};
2819 static bool prev_ephemeral;
2823 /* This is independent of logging, as status messages are
2824 * optional and go exclusively to the console. */
2826 if (vasprintf(&s, format, ap) < 0)
2829 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2842 sl = status ? sizeof(status_indent)-1 : 0;
2848 e = ellipsize(s, emax, 75);
2856 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2857 prev_ephemeral = ephemeral;
2860 if (!isempty(status)) {
2861 IOVEC_SET_STRING(iovec[n++], "[");
2862 IOVEC_SET_STRING(iovec[n++], status);
2863 IOVEC_SET_STRING(iovec[n++], "] ");
2865 IOVEC_SET_STRING(iovec[n++], status_indent);
2868 IOVEC_SET_STRING(iovec[n++], s);
2870 IOVEC_SET_STRING(iovec[n++], "\n");
2872 if (writev(fd, iovec, n) < 0)
2878 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
2884 va_start(ap, format);
2885 r = status_vprintf(status, ellipse, ephemeral, format, ap);
2891 int status_welcome(void) {
2892 _cleanup_free_ char *pretty_name = NULL, *ansi_color = NULL;
2895 r = parse_env_file("/etc/os-release", NEWLINE,
2896 "PRETTY_NAME", &pretty_name,
2897 "ANSI_COLOR", &ansi_color,
2900 if (r < 0 && r != -ENOENT)
2901 log_warning("Failed to read /etc/os-release: %s", strerror(-r));
2903 return status_printf(NULL, false, false,
2904 "\nWelcome to \x1B[%sm%s\x1B[0m!\n",
2905 isempty(ansi_color) ? "1" : ansi_color,
2906 isempty(pretty_name) ? "Linux" : pretty_name);
2909 char *replace_env(const char *format, char **env) {
2916 const char *e, *word = format;
2921 for (e = format; *e; e ++) {
2932 if (!(k = strnappend(r, word, e-word-1)))
2941 } else if (*e == '$') {
2942 if (!(k = strnappend(r, word, e-word)))
2958 t = strempty(strv_env_get_n(env, word+2, e-word-2));
2960 k = strappend(r, t);
2974 if (!(k = strnappend(r, word, e-word)))
2985 char **replace_env_argv(char **argv, char **env) {
2987 unsigned k = 0, l = 0;
2989 l = strv_length(argv);
2991 if (!(r = new(char*, l+1)))
2994 STRV_FOREACH(i, argv) {
2996 /* If $FOO appears as single word, replace it by the split up variable */
2997 if ((*i)[0] == '$' && (*i)[1] != '{') {
3002 e = strv_env_get(env, *i+1);
3005 if (!(m = strv_split_quoted(e))) {
3016 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3025 memcpy(r + k, m, q * sizeof(char*));
3033 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3034 if (!(r[k++] = replace_env(*i, env))) {
3044 int fd_columns(int fd) {
3045 struct winsize ws = {};
3047 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3056 unsigned columns(void) {
3060 if (_likely_(cached_columns > 0))
3061 return cached_columns;
3064 e = getenv("COLUMNS");
3069 c = fd_columns(STDOUT_FILENO);
3078 int fd_lines(int fd) {
3079 struct winsize ws = {};
3081 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3090 unsigned lines(void) {
3094 if (_likely_(cached_lines > 0))
3095 return cached_lines;
3098 e = getenv("LINES");
3103 l = fd_lines(STDOUT_FILENO);
3109 return cached_lines;
3112 /* intended to be used as a SIGWINCH sighandler */
3113 void columns_lines_cache_reset(int signum) {
3119 static int cached_on_tty = -1;
3121 if (_unlikely_(cached_on_tty < 0))
3122 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3124 return cached_on_tty;
3127 int running_in_chroot(void) {
3128 struct stat a = {}, b = {};
3130 /* Only works as root */
3131 if (stat("/proc/1/root", &a) < 0)
3134 if (stat("/", &b) < 0)
3138 a.st_dev != b.st_dev ||
3139 a.st_ino != b.st_ino;
3142 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3147 assert(percent <= 100);
3148 assert(new_length >= 3);
3150 if (old_length <= 3 || old_length <= new_length)
3151 return strndup(s, old_length);
3153 r = new0(char, new_length+1);
3157 x = (new_length * percent) / 100;
3159 if (x > new_length - 3)
3167 s + old_length - (new_length - x - 3),
3168 new_length - x - 3);
3173 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3177 unsigned k, len, len2;
3180 assert(percent <= 100);
3181 assert(new_length >= 3);
3183 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3184 if (ascii_is_valid(s))
3185 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3187 if (old_length <= 3 || old_length <= new_length)
3188 return strndup(s, old_length);
3190 x = (new_length * percent) / 100;
3192 if (x > new_length - 3)
3196 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3199 c = utf8_encoded_to_unichar(i);
3202 k += unichar_iswide(c) ? 2 : 1;
3205 if (k > x) /* last character was wide and went over quota */
3208 for (j = s + old_length; k < new_length && j > i; ) {
3211 j = utf8_prev_char(j);
3212 c = utf8_encoded_to_unichar(j);
3215 k += unichar_iswide(c) ? 2 : 1;
3219 /* we don't actually need to ellipsize */
3221 return memdup(s, old_length + 1);
3223 /* make space for ellipsis */
3224 j = utf8_next_char(j);
3227 len2 = s + old_length - j;
3228 e = new(char, len + 3 + len2 + 1);
3233 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3234 old_length, new_length, x, len, len2, k);
3238 e[len] = 0xe2; /* tri-dot ellipsis: … */
3242 memcpy(e + len + 3, j, len2 + 1);
3247 char *ellipsize(const char *s, size_t length, unsigned percent) {
3248 return ellipsize_mem(s, strlen(s), length, percent);
3251 int touch(const char *path) {
3256 /* This just opens the file for writing, ensuring it
3257 * exists. It doesn't call utimensat() the way /usr/bin/touch
3260 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
3264 close_nointr_nofail(fd);
3268 char *unquote(const char *s, const char* quotes) {
3272 /* This is rather stupid, simply removes the heading and
3273 * trailing quotes if there is one. Doesn't care about
3274 * escaping or anything. We should make this smarter one
3281 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3282 return strndup(s+1, l-2);
3287 char *normalize_env_assignment(const char *s) {
3288 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3291 eq = strchr(s, '=');
3303 memmove(r, t, strlen(t) + 1);
3307 name = strndup(s, eq - s);
3315 value = unquote(strstrip(p), QUOTES);
3319 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3325 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3336 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3348 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3355 r = wait_for_terminate(pid, &status);
3357 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3361 if (status.si_code == CLD_EXITED) {
3362 if (status.si_status != 0) {
3363 log_warning("%s failed with error code %i.", name, status.si_status);
3364 return status.si_status;
3367 log_debug("%s succeeded.", name);
3370 } else if (status.si_code == CLD_KILLED ||
3371 status.si_code == CLD_DUMPED) {
3373 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3377 log_warning("%s failed due to unknown reason.", name);
3381 noreturn void freeze(void) {
3383 /* Make sure nobody waits for us on a socket anymore */
3384 close_all_fds(NULL, 0);
3392 bool null_or_empty(struct stat *st) {
3395 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3398 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3404 int null_or_empty_path(const char *fn) {
3409 if (stat(fn, &st) < 0)
3412 return null_or_empty(&st);
3415 DIR *xopendirat(int fd, const char *name, int flags) {
3419 assert(!(flags & O_CREAT));
3421 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3427 close_nointr_nofail(nfd);
3434 int signal_from_string_try_harder(const char *s) {
3438 signo = signal_from_string(s);
3440 if (startswith(s, "SIG"))
3441 return signal_from_string(s+3);
3446 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3447 _cleanup_free_ char *t = NULL, *u = NULL;
3451 u = unquote(tagvalue, "\"\'");
3455 enc_len = strlen(u) * 4 + 1;
3456 t = new(char, enc_len);
3460 if (encode_devnode_name(u, t, enc_len) < 0)
3463 if (asprintf(&dn, "/dev/disk/by-%s/%s", by, t) < 0)
3469 char *fstab_node_to_udev_node(const char *p) {
3472 if (startswith(p, "LABEL="))
3473 return tag_to_udev_node(p+6, "label");
3475 if (startswith(p, "UUID="))
3476 return tag_to_udev_node(p+5, "uuid");
3478 if (startswith(p, "PARTUUID="))
3479 return tag_to_udev_node(p+9, "partuuid");
3481 if (startswith(p, "PARTLABEL="))
3482 return tag_to_udev_node(p+10, "partlabel");
3487 bool tty_is_vc(const char *tty) {
3490 if (startswith(tty, "/dev/"))
3493 return vtnr_from_tty(tty) >= 0;
3496 bool tty_is_console(const char *tty) {
3499 if (startswith(tty, "/dev/"))
3502 return streq(tty, "console");
3505 int vtnr_from_tty(const char *tty) {
3510 if (startswith(tty, "/dev/"))
3513 if (!startswith(tty, "tty") )
3516 if (tty[3] < '0' || tty[3] > '9')
3519 r = safe_atoi(tty+3, &i);
3523 if (i < 0 || i > 63)
3529 char *resolve_dev_console(char **active) {
3532 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3533 * (i.e. not read-only-mounted which is a sign for container setups) */
3535 if (path_is_read_only_fs("/sys") > 0)
3538 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3541 /* If multiple log outputs are configured the last one is what
3542 * /dev/console points to */
3543 tty = strrchr(*active, ' ');
3549 if (streq(tty, "tty0")) {
3552 /* Get the active VC (e.g. tty1) */
3553 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3555 tty = *active = tmp;
3562 bool tty_is_vc_resolve(const char *tty) {
3563 _cleanup_free_ char *active = NULL;
3567 if (startswith(tty, "/dev/"))
3570 if (streq(tty, "console")) {
3571 tty = resolve_dev_console(&active);
3576 return tty_is_vc(tty);
3579 const char *default_term_for_tty(const char *tty) {
3582 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3585 bool dirent_is_file(const struct dirent *de) {
3588 if (ignore_file(de->d_name))
3591 if (de->d_type != DT_REG &&
3592 de->d_type != DT_LNK &&
3593 de->d_type != DT_UNKNOWN)
3599 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3602 if (de->d_type != DT_REG &&
3603 de->d_type != DT_LNK &&
3604 de->d_type != DT_UNKNOWN)
3607 if (ignore_file_allow_backup(de->d_name))
3610 return endswith(de->d_name, suffix);
3613 void execute_directory(const char *directory, DIR *d, char *argv[]) {
3616 Hashmap *pids = NULL;
3620 /* Executes all binaries in a directory in parallel and
3621 * waits for them to finish. */
3624 if (!(_d = opendir(directory))) {
3626 if (errno == ENOENT)
3629 log_error("Failed to enumerate directory %s: %m", directory);
3636 if (!(pids = hashmap_new(trivial_hash_func, trivial_compare_func))) {
3637 log_error("Failed to allocate set.");
3641 while ((de = readdir(d))) {
3646 if (!dirent_is_file(de))
3649 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3654 if ((pid = fork()) < 0) {
3655 log_error("Failed to fork: %m");
3673 log_error("Failed to execute %s: %m", path);
3674 _exit(EXIT_FAILURE);
3677 log_debug("Spawned %s as %lu", path, (unsigned long) pid);
3679 if ((k = hashmap_put(pids, UINT_TO_PTR(pid), path)) < 0) {
3680 log_error("Failed to add PID to set: %s", strerror(-k));
3685 while (!hashmap_isempty(pids)) {
3686 pid_t pid = PTR_TO_UINT(hashmap_first_key(pids));
3690 if (waitid(P_PID, pid, &si, WEXITED) < 0) {
3695 log_error("waitid() failed: %m");
3699 if ((path = hashmap_remove(pids, UINT_TO_PTR(si.si_pid)))) {
3700 if (!is_clean_exit(si.si_code, si.si_status, NULL)) {
3701 if (si.si_code == CLD_EXITED)
3702 log_error("%s exited with exit status %i.", path, si.si_status);
3704 log_error("%s terminated by signal %s.", path, signal_to_string(si.si_status));
3706 log_debug("%s exited successfully.", path);
3717 hashmap_free_free(pids);
3720 int kill_and_sigcont(pid_t pid, int sig) {
3723 r = kill(pid, sig) < 0 ? -errno : 0;
3731 bool nulstr_contains(const char*nulstr, const char *needle) {
3737 NULSTR_FOREACH(i, nulstr)
3738 if (streq(i, needle))
3744 bool plymouth_running(void) {
3745 return access("/run/plymouth/pid", F_OK) >= 0;
3748 char* strshorten(char *s, size_t l) {
3757 static bool hostname_valid_char(char c) {
3759 (c >= 'a' && c <= 'z') ||
3760 (c >= 'A' && c <= 'Z') ||
3761 (c >= '0' && c <= '9') ||
3767 bool hostname_is_valid(const char *s) {
3774 for (p = s, dot = true; *p; p++) {
3781 if (!hostname_valid_char(*p))
3791 if (p-s > HOST_NAME_MAX)
3797 char* hostname_cleanup(char *s, bool lowercase) {
3801 for (p = s, d = s, dot = true; *p; p++) {
3808 } else if (hostname_valid_char(*p)) {
3809 *(d++) = lowercase ? tolower(*p) : *p;
3820 strshorten(s, HOST_NAME_MAX);
3825 int pipe_eof(int fd) {
3827 struct pollfd pollfd = {
3829 .events = POLLIN|POLLHUP,
3832 r = poll(&pollfd, 1, 0);
3839 return pollfd.revents & POLLHUP;
3842 int fd_wait_for_event(int fd, int event, usec_t t) {
3844 struct pollfd pollfd = {
3852 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
3859 return pollfd.revents;
3862 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
3873 t = new(char, strlen(path) + 1 + 6 + 1);
3877 fn = basename(path);
3881 stpcpy(stpcpy(t+k+1, fn), "XXXXXX");
3883 fd = mkostemp(t, O_WRONLY|O_CLOEXEC);
3889 f = fdopen(fd, "we");
3902 int terminal_vhangup_fd(int fd) {
3905 if (ioctl(fd, TIOCVHANGUP) < 0)
3911 int terminal_vhangup(const char *name) {
3914 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3918 r = terminal_vhangup_fd(fd);
3919 close_nointr_nofail(fd);
3924 int vt_disallocate(const char *name) {
3928 /* Deallocate the VT if possible. If not possible
3929 * (i.e. because it is the active one), at least clear it
3930 * entirely (including the scrollback buffer) */
3932 if (!startswith(name, "/dev/"))
3935 if (!tty_is_vc(name)) {
3936 /* So this is not a VT. I guess we cannot deallocate
3937 * it then. But let's at least clear the screen */
3939 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3944 "\033[r" /* clear scrolling region */
3945 "\033[H" /* move home */
3946 "\033[2J", /* clear screen */
3948 close_nointr_nofail(fd);
3953 if (!startswith(name, "/dev/tty"))
3956 r = safe_atou(name+8, &u);
3963 /* Try to deallocate */
3964 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
3968 r = ioctl(fd, VT_DISALLOCATE, u);
3969 close_nointr_nofail(fd);
3977 /* Couldn't deallocate, so let's clear it fully with
3979 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3984 "\033[r" /* clear scrolling region */
3985 "\033[H" /* move home */
3986 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
3988 close_nointr_nofail(fd);
3993 int copy_file(const char *from, const char *to, int flags) {
3994 _cleanup_close_ int fdf = -1;
4000 fdf = open(from, O_RDONLY|O_CLOEXEC|O_NOCTTY);
4004 fdt = open(to, flags|O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
4012 n = read(fdf, buf, sizeof(buf));
4026 k = loop_write(fdt, buf, n, false);
4028 r = k < 0 ? k : (errno ? -errno : -EIO);
4037 r = close_nointr(fdt);
4047 int symlink_atomic(const char *from, const char *to) {
4049 _cleanup_free_ char *t;
4059 t = new(char, strlen(to) + 1 + 16 + 1);
4067 x = stpcpy(t+k+1, fn);
4070 for (i = 0; i < 16; i++) {
4071 *(x++) = hexchar(u & 0xF);
4077 if (symlink(from, t) < 0)
4080 if (rename(t, to) < 0) {
4089 bool display_is_local(const char *display) {
4093 display[0] == ':' &&
4094 display[1] >= '0' &&
4098 int socket_from_display(const char *display, char **path) {
4105 if (!display_is_local(display))
4108 k = strspn(display+1, "0123456789");
4110 f = new(char, sizeof("/tmp/.X11-unix/X") + k);
4114 c = stpcpy(f, "/tmp/.X11-unix/X");
4115 memcpy(c, display+1, k);
4124 const char **username,
4125 uid_t *uid, gid_t *gid,
4127 const char **shell) {
4135 /* We enforce some special rules for uid=0: in order to avoid
4136 * NSS lookups for root we hardcode its data. */
4138 if (streq(*username, "root") || streq(*username, "0")) {
4156 if (parse_uid(*username, &u) >= 0) {
4160 /* If there are multiple users with the same id, make
4161 * sure to leave $USER to the configured value instead
4162 * of the first occurrence in the database. However if
4163 * the uid was configured by a numeric uid, then let's
4164 * pick the real username from /etc/passwd. */
4166 *username = p->pw_name;
4169 p = getpwnam(*username);
4173 return errno > 0 ? -errno : -ESRCH;
4185 *shell = p->pw_shell;
4190 char* uid_to_name(uid_t uid) {
4195 return strdup("root");
4199 return strdup(p->pw_name);
4201 if (asprintf(&r, "%lu", (unsigned long) uid) < 0)
4207 char* gid_to_name(gid_t gid) {
4212 return strdup("root");
4216 return strdup(p->gr_name);
4218 if (asprintf(&r, "%lu", (unsigned long) gid) < 0)
4224 int get_group_creds(const char **groupname, gid_t *gid) {
4230 /* We enforce some special rules for gid=0: in order to avoid
4231 * NSS lookups for root we hardcode its data. */
4233 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4234 *groupname = "root";
4242 if (parse_gid(*groupname, &id) >= 0) {
4247 *groupname = g->gr_name;
4250 g = getgrnam(*groupname);
4254 return errno > 0 ? -errno : -ESRCH;
4262 int in_gid(gid_t gid) {
4264 int ngroups_max, r, i;
4266 if (getgid() == gid)
4269 if (getegid() == gid)
4272 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4273 assert(ngroups_max > 0);
4275 gids = alloca(sizeof(gid_t) * ngroups_max);
4277 r = getgroups(ngroups_max, gids);
4281 for (i = 0; i < r; i++)
4288 int in_group(const char *name) {
4292 r = get_group_creds(&name, &gid);
4299 int glob_exists(const char *path) {
4300 _cleanup_globfree_ glob_t g = {};
4306 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4308 if (k == GLOB_NOMATCH)
4310 else if (k == GLOB_NOSPACE)
4313 return !strv_isempty(g.gl_pathv);
4315 return errno ? -errno : -EIO;
4318 int glob_extend(char ***strv, const char *path) {
4319 _cleanup_globfree_ glob_t g = {};
4324 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4326 if (k == GLOB_NOMATCH)
4328 else if (k == GLOB_NOSPACE)
4330 else if (k != 0 || strv_isempty(g.gl_pathv))
4331 return errno ? -errno : -EIO;
4333 STRV_FOREACH(p, g.gl_pathv) {
4334 k = strv_extend(strv, *p);
4342 int dirent_ensure_type(DIR *d, struct dirent *de) {
4348 if (de->d_type != DT_UNKNOWN)
4351 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4355 S_ISREG(st.st_mode) ? DT_REG :
4356 S_ISDIR(st.st_mode) ? DT_DIR :
4357 S_ISLNK(st.st_mode) ? DT_LNK :
4358 S_ISFIFO(st.st_mode) ? DT_FIFO :
4359 S_ISSOCK(st.st_mode) ? DT_SOCK :
4360 S_ISCHR(st.st_mode) ? DT_CHR :
4361 S_ISBLK(st.st_mode) ? DT_BLK :
4367 int in_search_path(const char *path, char **search) {
4369 _cleanup_free_ char *parent = NULL;
4372 r = path_get_parent(path, &parent);
4376 STRV_FOREACH(i, search)
4377 if (path_equal(parent, *i))
4383 int get_files_in_directory(const char *path, char ***list) {
4384 _cleanup_closedir_ DIR *d = NULL;
4385 size_t bufsize = 0, n = 0;
4386 _cleanup_strv_free_ char **l = NULL;
4390 /* Returns all files in a directory in *list, and the number
4391 * of files as return value. If list is NULL returns only the
4403 if (!de && errno != 0)
4408 dirent_ensure_type(d, de);
4410 if (!dirent_is_file(de))
4414 /* one extra slot is needed for the terminating NULL */
4415 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4418 l[n] = strdup(de->d_name);
4429 l = NULL; /* avoid freeing */
4435 char *strjoin(const char *x, ...) {
4449 t = va_arg(ap, const char *);
4454 if (n > ((size_t) -1) - l) {
4478 t = va_arg(ap, const char *);
4492 bool is_main_thread(void) {
4493 static thread_local int cached = 0;
4495 if (_unlikely_(cached == 0))
4496 cached = getpid() == gettid() ? 1 : -1;
4501 int block_get_whole_disk(dev_t d, dev_t *ret) {
4508 /* If it has a queue this is good enough for us */
4509 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4512 r = access(p, F_OK);
4520 /* If it is a partition find the originating device */
4521 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4524 r = access(p, F_OK);
4530 /* Get parent dev_t */
4531 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4534 r = read_one_line_file(p, &s);
4540 r = sscanf(s, "%u:%u", &m, &n);
4546 /* Only return this if it is really good enough for us. */
4547 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4550 r = access(p, F_OK);
4554 *ret = makedev(m, n);
4561 int file_is_priv_sticky(const char *p) {
4566 if (lstat(p, &st) < 0)
4570 (st.st_uid == 0 || st.st_uid == getuid()) &&
4571 (st.st_mode & S_ISVTX);
4574 static const char *const ioprio_class_table[] = {
4575 [IOPRIO_CLASS_NONE] = "none",
4576 [IOPRIO_CLASS_RT] = "realtime",
4577 [IOPRIO_CLASS_BE] = "best-effort",
4578 [IOPRIO_CLASS_IDLE] = "idle"
4581 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4583 static const char *const sigchld_code_table[] = {
4584 [CLD_EXITED] = "exited",
4585 [CLD_KILLED] = "killed",
4586 [CLD_DUMPED] = "dumped",
4587 [CLD_TRAPPED] = "trapped",
4588 [CLD_STOPPED] = "stopped",
4589 [CLD_CONTINUED] = "continued",
4592 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4594 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4595 [LOG_FAC(LOG_KERN)] = "kern",
4596 [LOG_FAC(LOG_USER)] = "user",
4597 [LOG_FAC(LOG_MAIL)] = "mail",
4598 [LOG_FAC(LOG_DAEMON)] = "daemon",
4599 [LOG_FAC(LOG_AUTH)] = "auth",
4600 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4601 [LOG_FAC(LOG_LPR)] = "lpr",
4602 [LOG_FAC(LOG_NEWS)] = "news",
4603 [LOG_FAC(LOG_UUCP)] = "uucp",
4604 [LOG_FAC(LOG_CRON)] = "cron",
4605 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4606 [LOG_FAC(LOG_FTP)] = "ftp",
4607 [LOG_FAC(LOG_LOCAL0)] = "local0",
4608 [LOG_FAC(LOG_LOCAL1)] = "local1",
4609 [LOG_FAC(LOG_LOCAL2)] = "local2",
4610 [LOG_FAC(LOG_LOCAL3)] = "local3",
4611 [LOG_FAC(LOG_LOCAL4)] = "local4",
4612 [LOG_FAC(LOG_LOCAL5)] = "local5",
4613 [LOG_FAC(LOG_LOCAL6)] = "local6",
4614 [LOG_FAC(LOG_LOCAL7)] = "local7"
4617 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4619 static const char *const log_level_table[] = {
4620 [LOG_EMERG] = "emerg",
4621 [LOG_ALERT] = "alert",
4622 [LOG_CRIT] = "crit",
4624 [LOG_WARNING] = "warning",
4625 [LOG_NOTICE] = "notice",
4626 [LOG_INFO] = "info",
4627 [LOG_DEBUG] = "debug"
4630 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4632 static const char* const sched_policy_table[] = {
4633 [SCHED_OTHER] = "other",
4634 [SCHED_BATCH] = "batch",
4635 [SCHED_IDLE] = "idle",
4636 [SCHED_FIFO] = "fifo",
4640 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4642 static const char* const rlimit_table[] = {
4643 [RLIMIT_CPU] = "LimitCPU",
4644 [RLIMIT_FSIZE] = "LimitFSIZE",
4645 [RLIMIT_DATA] = "LimitDATA",
4646 [RLIMIT_STACK] = "LimitSTACK",
4647 [RLIMIT_CORE] = "LimitCORE",
4648 [RLIMIT_RSS] = "LimitRSS",
4649 [RLIMIT_NOFILE] = "LimitNOFILE",
4650 [RLIMIT_AS] = "LimitAS",
4651 [RLIMIT_NPROC] = "LimitNPROC",
4652 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4653 [RLIMIT_LOCKS] = "LimitLOCKS",
4654 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4655 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4656 [RLIMIT_NICE] = "LimitNICE",
4657 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4658 [RLIMIT_RTTIME] = "LimitRTTIME"
4661 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4663 static const char* const ip_tos_table[] = {
4664 [IPTOS_LOWDELAY] = "low-delay",
4665 [IPTOS_THROUGHPUT] = "throughput",
4666 [IPTOS_RELIABILITY] = "reliability",
4667 [IPTOS_LOWCOST] = "low-cost",
4670 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4672 static const char *const __signal_table[] = {
4689 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4700 [SIGVTALRM] = "VTALRM",
4702 [SIGWINCH] = "WINCH",
4708 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4710 const char *signal_to_string(int signo) {
4711 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4714 name = __signal_to_string(signo);
4718 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4719 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4721 snprintf(buf, sizeof(buf), "%d", signo);
4726 int signal_from_string(const char *s) {
4731 signo = __signal_from_string(s);
4735 if (startswith(s, "RTMIN+")) {
4739 if (safe_atou(s, &u) >= 0) {
4740 signo = (int) u + offset;
4741 if (signo > 0 && signo < _NSIG)
4747 bool kexec_loaded(void) {
4748 bool loaded = false;
4751 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4759 int strdup_or_null(const char *a, char **b) {
4777 int prot_from_flags(int flags) {
4779 switch (flags & O_ACCMODE) {
4788 return PROT_READ|PROT_WRITE;
4795 char *format_bytes(char *buf, size_t l, off_t t) {
4798 static const struct {
4802 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4803 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4804 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4805 { "G", 1024ULL*1024ULL*1024ULL },
4806 { "M", 1024ULL*1024ULL },
4810 for (i = 0; i < ELEMENTSOF(table); i++) {
4812 if (t >= table[i].factor) {
4815 (unsigned long long) (t / table[i].factor),
4816 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4823 snprintf(buf, l, "%lluB", (unsigned long long) t);
4831 void* memdup(const void *p, size_t l) {
4844 int fd_inc_sndbuf(int fd, size_t n) {
4846 socklen_t l = sizeof(value);
4848 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4849 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4852 /* If we have the privileges we will ignore the kernel limit. */
4855 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4856 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
4862 int fd_inc_rcvbuf(int fd, size_t n) {
4864 socklen_t l = sizeof(value);
4866 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
4867 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4870 /* If we have the privileges we will ignore the kernel limit. */
4873 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
4874 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
4879 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
4880 pid_t parent_pid, agent_pid;
4882 bool stdout_is_tty, stderr_is_tty;
4890 parent_pid = getpid();
4892 /* Spawns a temporary TTY agent, making sure it goes away when
4899 if (agent_pid != 0) {
4906 * Make sure the agent goes away when the parent dies */
4907 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
4908 _exit(EXIT_FAILURE);
4910 /* Check whether our parent died before we were able
4911 * to set the death signal */
4912 if (getppid() != parent_pid)
4913 _exit(EXIT_SUCCESS);
4915 /* Don't leak fds to the agent */
4916 close_all_fds(except, n_except);
4918 stdout_is_tty = isatty(STDOUT_FILENO);
4919 stderr_is_tty = isatty(STDERR_FILENO);
4921 if (!stdout_is_tty || !stderr_is_tty) {
4922 /* Detach from stdout/stderr. and reopen
4923 * /dev/tty for them. This is important to
4924 * ensure that when systemctl is started via
4925 * popen() or a similar call that expects to
4926 * read EOF we actually do generate EOF and
4927 * not delay this indefinitely by because we
4928 * keep an unused copy of stdin around. */
4929 fd = open("/dev/tty", O_WRONLY);
4931 log_error("Failed to open /dev/tty: %m");
4932 _exit(EXIT_FAILURE);
4936 dup2(fd, STDOUT_FILENO);
4939 dup2(fd, STDERR_FILENO);
4945 /* Count arguments */
4947 for (n = 0; va_arg(ap, char*); n++)
4952 l = alloca(sizeof(char *) * (n + 1));
4954 /* Fill in arguments */
4956 for (i = 0; i <= n; i++)
4957 l[i] = va_arg(ap, char*);
4961 _exit(EXIT_FAILURE);
4964 int setrlimit_closest(int resource, const struct rlimit *rlim) {
4965 struct rlimit highest, fixed;
4969 if (setrlimit(resource, rlim) >= 0)
4975 /* So we failed to set the desired setrlimit, then let's try
4976 * to get as close as we can */
4977 assert_se(getrlimit(resource, &highest) == 0);
4979 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
4980 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
4982 if (setrlimit(resource, &fixed) < 0)
4988 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
4989 _cleanup_fclose_ FILE *f = NULL;
5000 path = procfs_file_alloca(pid, "environ");
5002 f = fopen(path, "re");
5010 char line[LINE_MAX];
5013 for (i = 0; i < sizeof(line)-1; i++) {
5017 if (_unlikely_(c == EOF)) {
5027 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5028 value = strdup(line + l + 1);
5042 bool is_valid_documentation_url(const char *url) {
5045 if (startswith(url, "http://") && url[7])
5048 if (startswith(url, "https://") && url[8])
5051 if (startswith(url, "file:") && url[5])
5054 if (startswith(url, "info:") && url[5])
5057 if (startswith(url, "man:") && url[4])
5063 bool in_initrd(void) {
5064 static int saved = -1;
5070 /* We make two checks here:
5072 * 1. the flag file /etc/initrd-release must exist
5073 * 2. the root file system must be a memory file system
5075 * The second check is extra paranoia, since misdetecting an
5076 * initrd can have bad bad consequences due the initrd
5077 * emptying when transititioning to the main systemd.
5080 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5081 statfs("/", &s) >= 0 &&
5082 is_temporary_fs(&s);
5087 void warn_melody(void) {
5088 _cleanup_close_ int fd = -1;
5090 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5094 /* Yeah, this is synchronous. Kinda sucks. But well... */
5096 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5097 usleep(125*USEC_PER_MSEC);
5099 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5100 usleep(125*USEC_PER_MSEC);
5102 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5103 usleep(125*USEC_PER_MSEC);
5105 ioctl(fd, KIOCSOUND, 0);
5108 int make_console_stdio(void) {
5111 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5113 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5115 log_error("Failed to acquire terminal: %s", strerror(-fd));
5121 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5128 int get_home_dir(char **_h) {
5136 /* Take the user specified one */
5147 /* Hardcode home directory for root to avoid NSS */
5150 h = strdup("/root");
5158 /* Check the database... */
5162 return errno > 0 ? -errno : -ESRCH;
5164 if (!path_is_absolute(p->pw_dir))
5167 h = strdup(p->pw_dir);
5175 int get_shell(char **_s) {
5183 /* Take the user specified one */
5184 e = getenv("SHELL");
5194 /* Hardcode home directory for root to avoid NSS */
5197 s = strdup("/bin/sh");
5205 /* Check the database... */
5209 return errno > 0 ? -errno : -ESRCH;
5211 if (!path_is_absolute(p->pw_shell))
5214 s = strdup(p->pw_shell);
5222 bool filename_is_safe(const char *p) {
5236 if (strlen(p) > FILENAME_MAX)
5242 bool string_is_safe(const char *p) {
5247 for (t = p; *t; t++) {
5248 if (*t > 0 && *t < ' ')
5251 if (strchr("\\\"\'", *t))
5259 * Check if a string contains control characters.
5260 * Spaces and tabs are not considered control characters.
5262 bool string_has_cc(const char *p) {
5267 for (t = p; *t; t++)
5268 if (*t > 0 && *t < ' ' && *t != '\t')
5274 bool path_is_safe(const char *p) {
5279 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5282 if (strlen(p) > PATH_MAX)
5285 /* The following two checks are not really dangerous, but hey, they still are confusing */
5286 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5289 if (strstr(p, "//"))
5295 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5296 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5297 int (*compar) (const void *, const void *, void *), void *arg) {
5306 p = (void *)(((const char *) base) + (idx * size));
5307 comparison = compar(key, p, arg);
5310 else if (comparison > 0)
5318 bool is_locale_utf8(void) {
5320 static int cached_answer = -1;
5322 if (cached_answer >= 0)
5325 if (!setlocale(LC_ALL, "")) {
5326 cached_answer = true;
5330 set = nl_langinfo(CODESET);
5332 cached_answer = true;
5336 if (streq(set, "UTF-8")) {
5337 cached_answer = true;
5341 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5342 * unset and everything can do to UTF-8 nowadays. */
5343 set = setlocale(LC_CTYPE, NULL);
5345 cached_answer = true;
5349 /* Check result, but ignore the result if C was set
5353 !getenv("LC_ALL") &&
5354 !getenv("LC_CTYPE") &&
5358 return (bool) cached_answer;
5361 const char *draw_special_char(DrawSpecialChar ch) {
5362 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5364 [DRAW_TREE_VERT] = "\342\224\202 ", /* │ */
5365 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5366 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5367 [DRAW_TREE_SPACE] = " ", /* */
5368 [DRAW_TRIANGULAR_BULLET] = "\342\200\243 ", /* ‣ */
5369 [DRAW_BLACK_CIRCLE] = "\342\227\217 ", /* ● */
5371 /* ASCII fallback */ {
5372 [DRAW_TREE_VERT] = "| ",
5373 [DRAW_TREE_BRANCH] = "|-",
5374 [DRAW_TREE_RIGHT] = "`-",
5375 [DRAW_TREE_SPACE] = " ",
5376 [DRAW_TRIANGULAR_BULLET] = "> ",
5377 [DRAW_BLACK_CIRCLE] = "* ",
5381 return draw_table[!is_locale_utf8()][ch];
5384 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5387 size_t l, old_len, new_len;
5393 old_len = strlen(old_string);
5394 new_len = strlen(new_string);
5407 if (!startswith(f, old_string)) {
5413 nl = l - old_len + new_len;
5414 a = realloc(r, nl + 1);
5422 t = stpcpy(t, new_string);
5434 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5435 const char *i, *begin = NULL;
5440 } state = STATE_OTHER;
5442 size_t osz = 0, isz;
5448 /* Strips ANSI color and replaces TABs by 8 spaces */
5450 isz = _isz ? *_isz : strlen(*ibuf);
5452 f = open_memstream(&obuf, &osz);
5456 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5461 if (i >= *ibuf + isz) /* EOT */
5463 else if (*i == '\x1B')
5464 state = STATE_ESCAPE;
5465 else if (*i == '\t')
5472 if (i >= *ibuf + isz) { /* EOT */
5475 } else if (*i == '[') {
5476 state = STATE_BRACKET;
5481 state = STATE_OTHER;
5488 if (i >= *ibuf + isz || /* EOT */
5489 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5492 state = STATE_OTHER;
5494 } else if (*i == 'm')
5495 state = STATE_OTHER;
5517 int on_ac_power(void) {
5518 bool found_offline = false, found_online = false;
5519 _cleanup_closedir_ DIR *d = NULL;
5521 d = opendir("/sys/class/power_supply");
5527 _cleanup_close_ int fd = -1, device = -1;
5533 if (!de && errno != 0)
5539 if (ignore_file(de->d_name))
5542 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5544 if (errno == ENOENT || errno == ENOTDIR)
5550 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5552 if (errno == ENOENT)
5558 n = read(fd, contents, sizeof(contents));
5562 if (n != 6 || memcmp(contents, "Mains\n", 6))
5565 close_nointr_nofail(fd);
5566 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5568 if (errno == ENOENT)
5574 n = read(fd, contents, sizeof(contents));
5578 if (n != 2 || contents[1] != '\n')
5581 if (contents[0] == '1') {
5582 found_online = true;
5584 } else if (contents[0] == '0')
5585 found_offline = true;
5590 return found_online || !found_offline;
5593 static int search_and_fopen_internal(const char *path, const char *mode, char **search, FILE **_f) {
5600 if (!path_strv_canonicalize_uniq(search))
5603 STRV_FOREACH(i, search) {
5604 _cleanup_free_ char *p = NULL;
5607 p = strjoin(*i, "/", path, NULL);
5617 if (errno != ENOENT)
5624 int search_and_fopen(const char *path, const char *mode, const char **search, FILE **_f) {
5625 _cleanup_strv_free_ char **copy = NULL;
5631 if (path_is_absolute(path)) {
5634 f = fopen(path, mode);
5643 copy = strv_copy((char**) search);
5647 return search_and_fopen_internal(path, mode, copy, _f);
5650 int search_and_fopen_nulstr(const char *path, const char *mode, const char *search, FILE **_f) {
5651 _cleanup_strv_free_ char **s = NULL;
5653 if (path_is_absolute(path)) {
5656 f = fopen(path, mode);
5665 s = strv_split_nulstr(search);
5669 return search_and_fopen_internal(path, mode, s, _f);
5672 char *strextend(char **x, ...) {
5679 l = f = *x ? strlen(*x) : 0;
5686 t = va_arg(ap, const char *);
5691 if (n > ((size_t) -1) - l) {
5700 r = realloc(*x, l+1);
5710 t = va_arg(ap, const char *);
5724 char *strrep(const char *s, unsigned n) {
5732 p = r = malloc(l * n + 1);
5736 for (i = 0; i < n; i++)
5743 void* greedy_realloc(void **p, size_t *allocated, size_t need) {
5750 if (*allocated >= need)
5753 a = MAX(64u, need * 2);
5755 /* check for overflows */
5768 void* greedy_realloc0(void **p, size_t *allocated, size_t need) {
5777 q = greedy_realloc(p, allocated, need);
5781 if (*allocated > prev)
5782 memset(&q[prev], 0, *allocated - prev);
5787 bool id128_is_valid(const char *s) {
5793 /* Simple formatted 128bit hex string */
5795 for (i = 0; i < l; i++) {
5798 if (!(c >= '0' && c <= '9') &&
5799 !(c >= 'a' && c <= 'z') &&
5800 !(c >= 'A' && c <= 'Z'))
5804 } else if (l == 36) {
5806 /* Formatted UUID */
5808 for (i = 0; i < l; i++) {
5811 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5815 if (!(c >= '0' && c <= '9') &&
5816 !(c >= 'a' && c <= 'z') &&
5817 !(c >= 'A' && c <= 'Z'))
5828 void parse_user_at_host(char *arg, char **user, char **host) {
5833 *host = strchr(arg, '@');
5842 int split_pair(const char *s, const char *sep, char **l, char **r) {
5857 a = strndup(s, x - s);
5861 b = strdup(x + strlen(sep));
5873 int shall_restore_state(void) {
5874 _cleanup_free_ char *line;
5879 r = proc_cmdline(&line);
5882 if (r == 0) /* Container ... */
5885 FOREACH_WORD_QUOTED(w, l, line, state)
5886 if (l == 23 && strneq(w, "systemd.restore_state=0", 23))
5892 int proc_cmdline(char **ret) {
5895 if (detect_container(NULL) > 0) {
5899 r = read_full_file("/proc/1/cmdline", &buf, &sz);
5903 for (p = buf; p + 1 < buf + sz; p++)
5912 r = read_one_line_file("/proc/cmdline", ret);
5919 int container_get_leader(const char *machine, pid_t *pid) {
5920 _cleanup_free_ char *s = NULL, *class = NULL;
5928 p = strappenda("/run/systemd/machines/", machine);
5929 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
5937 if (!streq_ptr(class, "container"))
5940 r = parse_pid(s, &leader);
5950 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *root_fd) {
5951 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1;
5952 const char *pidns, *mntns, *root;
5960 mntns = procfs_file_alloca(pid, "ns/mnt");
5961 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
5965 pidns = procfs_file_alloca(pid, "ns/pid");
5966 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
5970 root = procfs_file_alloca(pid, "root");
5971 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
5975 *pidns_fd = pidnsfd;
5976 *mntns_fd = mntnsfd;
5984 int namespace_enter(int pidns_fd, int mntns_fd, int root_fd) {
5985 assert(pidns_fd >= 0);
5986 assert(mntns_fd >= 0);
5987 assert(root_fd >= 0);
5989 if (setns(pidns_fd, CLONE_NEWPID) < 0)
5992 if (setns(mntns_fd, CLONE_NEWNS) < 0)
5995 if (fchdir(root_fd) < 0)
5998 if (chroot(".") < 0)
6001 if (setresgid(0, 0, 0) < 0)
6004 if (setresuid(0, 0, 0) < 0)
6010 bool pid_valid(pid_t pid) {
6014 if (kill(pid, 0) >= 0)
6017 return errno != ESRCH;
6020 int getpeercred(int fd, struct ucred *ucred) {
6021 socklen_t n = sizeof(struct ucred);
6028 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6032 if (n != sizeof(struct ucred))
6035 /* Check if the data is actually useful and not suppressed due
6036 * to namespacing issues */
6044 int getpeersec(int fd, char **ret) {
6056 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6060 if (errno != ERANGE)
6067 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6083 int writev_safe(int fd, const struct iovec *w, int j) {
6084 for (int i = 0; i < j; i++) {
6087 while (written < w[i].iov_len) {
6090 r = write(fd, (char*) w[i].iov_base + written, w[i].iov_len - written);
6091 if (r < 0 && errno != -EINTR)
6101 int mkostemp_safe(char *pattern, int flags) {
6102 char *s = pattern + strlen(pattern) - 6;
6103 uint64_t tries = TMP_MAX;
6106 assert(streq(s, "XXXXXX"));
6108 randfd = open("/dev/urandom", O_RDONLY);
6113 fd = read(randfd, s, 6);
6117 for (i = 0; i < 6; i++)
6118 s[i] = ALPHANUMERICAL[(unsigned) s[i] % strlen(ALPHANUMERICAL)];
6120 fd = open(pattern, flags|O_EXCL|O_CREAT, S_IRUSR|S_IWUSR);
6123 if (!IN_SET(errno, EEXIST, EINTR))
6130 int open_tmpfile(const char *path, int flags) {
6135 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6139 p = strappenda(path, "/systemd-tmp-XXXXXX");
6141 fd = mkostemp_safe(p, O_RDWR|O_CLOEXEC);
~ianmdlvl / elogind.git / blob