1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <linux/magic.h>
64 #ifdef HAVE_SYS_AUXV_H
75 #include "path-util.h"
76 #include "exit-status.h"
80 #include "device-nodes.h"
87 char **saved_argv = NULL;
89 static volatile unsigned cached_columns = 0;
90 static volatile unsigned cached_lines = 0;
92 size_t page_size(void) {
93 static thread_local size_t pgsz = 0;
96 if (_likely_(pgsz > 0))
99 r = sysconf(_SC_PAGESIZE);
106 bool streq_ptr(const char *a, const char *b) {
108 /* Like streq(), but tries to make sense of NULL pointers */
119 char* endswith(const char *s, const char *postfix) {
126 pl = strlen(postfix);
129 return (char*) s + sl;
134 if (memcmp(s + sl - pl, postfix, pl) != 0)
137 return (char*) s + sl - pl;
140 bool first_word(const char *s, const char *word) {
155 if (memcmp(s, word, wl) != 0)
159 strchr(WHITESPACE, s[wl]);
162 int close_nointr(int fd) {
168 /* Just ignore EINTR; a retry loop is the wrong
169 * thing to do on Linux.
171 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
172 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
173 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
174 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
176 if (_unlikely_(r < 0 && errno == EINTR))
184 void close_nointr_nofail(int fd) {
187 /* like close_nointr() but cannot fail, and guarantees errno
190 assert_se(close_nointr(fd) == 0);
193 void close_many(const int fds[], unsigned n_fd) {
196 assert(fds || n_fd <= 0);
198 for (i = 0; i < n_fd; i++)
199 close_nointr_nofail(fds[i]);
202 int unlink_noerrno(const char *path) {
213 int parse_boolean(const char *v) {
216 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
218 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
224 int parse_pid(const char *s, pid_t* ret_pid) {
225 unsigned long ul = 0;
232 r = safe_atolu(s, &ul);
238 if ((unsigned long) pid != ul)
248 int parse_uid(const char *s, uid_t* ret_uid) {
249 unsigned long ul = 0;
256 r = safe_atolu(s, &ul);
262 if ((unsigned long) uid != ul)
269 int safe_atou(const char *s, unsigned *ret_u) {
277 l = strtoul(s, &x, 0);
279 if (!x || x == s || *x || errno)
280 return errno > 0 ? -errno : -EINVAL;
282 if ((unsigned long) (unsigned) l != l)
285 *ret_u = (unsigned) l;
289 int safe_atoi(const char *s, int *ret_i) {
297 l = strtol(s, &x, 0);
299 if (!x || x == s || *x || errno)
300 return errno > 0 ? -errno : -EINVAL;
302 if ((long) (int) l != l)
309 int safe_atollu(const char *s, long long unsigned *ret_llu) {
311 unsigned long long l;
317 l = strtoull(s, &x, 0);
319 if (!x || x == s || *x || errno)
320 return errno ? -errno : -EINVAL;
326 int safe_atolli(const char *s, long long int *ret_lli) {
334 l = strtoll(s, &x, 0);
336 if (!x || x == s || *x || errno)
337 return errno ? -errno : -EINVAL;
343 int safe_atod(const char *s, double *ret_d) {
350 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
355 if (!x || x == s || *x || errno)
356 return errno ? -errno : -EINVAL;
362 static size_t strcspn_escaped(const char *s, const char *reject) {
363 bool escaped = false;
366 for (n=0; s[n]; n++) {
369 else if (s[n] == '\\')
371 else if (strchr(reject, s[n]))
377 /* Split a string into words. */
378 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
381 current = *state ? *state : (char*) c;
383 if (!*current || *c == 0)
386 current += strspn(current, separator);
390 if (quoted && strchr("\'\"", *current)) {
391 char quotechar = *(current++);
392 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
393 *state = current+*l+1;
395 *l = strcspn_escaped(current, separator);
398 *l = strcspn(current, separator);
402 return (char*) current;
405 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
407 _cleanup_free_ char *line = NULL;
419 p = procfs_file_alloca(pid, "stat");
420 r = read_one_line_file(p, &line);
424 /* Let's skip the pid and comm fields. The latter is enclosed
425 * in () but does not escape any () in its value, so let's
426 * skip over it manually */
428 p = strrchr(line, ')');
440 if ((long unsigned) (pid_t) ppid != ppid)
443 *_ppid = (pid_t) ppid;
448 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
450 _cleanup_free_ char *line = NULL;
456 p = procfs_file_alloca(pid, "stat");
457 r = read_one_line_file(p, &line);
461 /* Let's skip the pid and comm fields. The latter is enclosed
462 * in () but does not escape any () in its value, so let's
463 * skip over it manually */
465 p = strrchr(line, ')');
487 "%*d " /* priority */
489 "%*d " /* num_threads */
490 "%*d " /* itrealvalue */
491 "%llu " /* starttime */,
498 int fchmod_umask(int fd, mode_t m) {
503 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
509 char *truncate_nl(char *s) {
512 s[strcspn(s, NEWLINE)] = 0;
516 int get_process_state(pid_t pid) {
520 _cleanup_free_ char *line = NULL;
524 p = procfs_file_alloca(pid, "stat");
525 r = read_one_line_file(p, &line);
529 p = strrchr(line, ')');
535 if (sscanf(p, " %c", &state) != 1)
538 return (unsigned char) state;
541 int get_process_comm(pid_t pid, char **name) {
548 p = procfs_file_alloca(pid, "comm");
550 r = read_one_line_file(p, name);
557 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
558 _cleanup_fclose_ FILE *f = NULL;
566 p = procfs_file_alloca(pid, "cmdline");
572 if (max_length == 0) {
573 size_t len = 0, allocated = 0;
575 while ((c = getc(f)) != EOF) {
577 if (!GREEDY_REALLOC(r, allocated, len+2)) {
582 r[len++] = isprint(c) ? c : ' ';
592 r = new(char, max_length);
598 while ((c = getc(f)) != EOF) {
620 size_t n = MIN(left-1, 3U);
627 /* Kernel threads have no argv[] */
628 if (r == NULL || r[0] == 0) {
629 _cleanup_free_ char *t = NULL;
637 h = get_process_comm(pid, &t);
641 r = strjoin("[", t, "]", NULL);
650 int is_kernel_thread(pid_t pid) {
662 p = procfs_file_alloca(pid, "cmdline");
667 count = fread(&c, 1, 1, f);
671 /* Kernel threads have an empty cmdline */
674 return eof ? 1 : -errno;
679 int get_process_capeff(pid_t pid, char **capeff) {
685 p = procfs_file_alloca(pid, "status");
687 return get_status_field(p, "\nCapEff:", capeff);
690 int get_process_exe(pid_t pid, char **name) {
698 p = procfs_file_alloca(pid, "exe");
700 r = readlink_malloc(p, name);
702 return r == -ENOENT ? -ESRCH : r;
704 d = endswith(*name, " (deleted)");
711 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
712 _cleanup_fclose_ FILE *f = NULL;
722 p = procfs_file_alloca(pid, "status");
727 FOREACH_LINE(line, f, return -errno) {
732 if (startswith(l, field)) {
734 l += strspn(l, WHITESPACE);
736 l[strcspn(l, WHITESPACE)] = 0;
738 return parse_uid(l, uid);
745 int get_process_uid(pid_t pid, uid_t *uid) {
746 return get_process_id(pid, "Uid:", uid);
749 int get_process_gid(pid_t pid, gid_t *gid) {
750 assert_cc(sizeof(uid_t) == sizeof(gid_t));
751 return get_process_id(pid, "Gid:", gid);
754 char *strnappend(const char *s, const char *suffix, size_t b) {
762 return strndup(suffix, b);
771 if (b > ((size_t) -1) - a)
774 r = new(char, a+b+1);
779 memcpy(r+a, suffix, b);
785 char *strappend(const char *s, const char *suffix) {
786 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
789 int readlink_malloc(const char *p, char **ret) {
804 n = readlink(p, c, l-1);
811 if ((size_t) n < l-1) {
822 int readlink_and_make_absolute(const char *p, char **r) {
823 _cleanup_free_ char *target = NULL;
830 j = readlink_malloc(p, &target);
834 k = file_in_same_dir(p, target);
842 int readlink_and_canonicalize(const char *p, char **r) {
849 j = readlink_and_make_absolute(p, &t);
853 s = canonicalize_file_name(t);
860 path_kill_slashes(*r);
865 int reset_all_signal_handlers(void) {
868 for (sig = 1; sig < _NSIG; sig++) {
869 struct sigaction sa = {
870 .sa_handler = SIG_DFL,
871 .sa_flags = SA_RESTART,
874 if (sig == SIGKILL || sig == SIGSTOP)
877 /* On Linux the first two RT signals are reserved by
878 * glibc, and sigaction() will return EINVAL for them. */
879 if ((sigaction(sig, &sa, NULL) < 0))
887 char *strstrip(char *s) {
890 /* Drops trailing whitespace. Modifies the string in
891 * place. Returns pointer to first non-space character */
893 s += strspn(s, WHITESPACE);
895 for (e = strchr(s, 0); e > s; e --)
896 if (!strchr(WHITESPACE, e[-1]))
904 char *delete_chars(char *s, const char *bad) {
907 /* Drops all whitespace, regardless where in the string */
909 for (f = s, t = s; *f; f++) {
921 bool in_charset(const char *s, const char* charset) {
928 if (!strchr(charset, *i))
934 char *file_in_same_dir(const char *path, const char *filename) {
941 /* This removes the last component of path and appends
942 * filename, unless the latter is absolute anyway or the
945 if (path_is_absolute(filename))
946 return strdup(filename);
948 if (!(e = strrchr(path, '/')))
949 return strdup(filename);
951 k = strlen(filename);
952 if (!(r = new(char, e-path+1+k+1)))
955 memcpy(r, path, e-path+1);
956 memcpy(r+(e-path)+1, filename, k+1);
961 int rmdir_parents(const char *path, const char *stop) {
970 /* Skip trailing slashes */
971 while (l > 0 && path[l-1] == '/')
977 /* Skip last component */
978 while (l > 0 && path[l-1] != '/')
981 /* Skip trailing slashes */
982 while (l > 0 && path[l-1] == '/')
988 if (!(t = strndup(path, l)))
991 if (path_startswith(stop, t)) {
1000 if (errno != ENOENT)
1007 char hexchar(int x) {
1008 static const char table[16] = "0123456789abcdef";
1010 return table[x & 15];
1013 int unhexchar(char c) {
1015 if (c >= '0' && c <= '9')
1018 if (c >= 'a' && c <= 'f')
1019 return c - 'a' + 10;
1021 if (c >= 'A' && c <= 'F')
1022 return c - 'A' + 10;
1027 char *hexmem(const void *p, size_t l) {
1031 z = r = malloc(l * 2 + 1);
1035 for (x = p; x < (const uint8_t*) p + l; x++) {
1036 *(z++) = hexchar(*x >> 4);
1037 *(z++) = hexchar(*x & 15);
1044 void *unhexmem(const char *p, size_t l) {
1050 z = r = malloc((l + 1) / 2 + 1);
1054 for (x = p; x < p + l; x += 2) {
1057 a = unhexchar(x[0]);
1059 b = unhexchar(x[1]);
1063 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1070 char octchar(int x) {
1071 return '0' + (x & 7);
1074 int unoctchar(char c) {
1076 if (c >= '0' && c <= '7')
1082 char decchar(int x) {
1083 return '0' + (x % 10);
1086 int undecchar(char c) {
1088 if (c >= '0' && c <= '9')
1094 char *cescape(const char *s) {
1100 /* Does C style string escaping. */
1102 r = new(char, strlen(s)*4 + 1);
1106 for (f = s, t = r; *f; f++)
1152 /* For special chars we prefer octal over
1153 * hexadecimal encoding, simply because glib's
1154 * g_strescape() does the same */
1155 if ((*f < ' ') || (*f >= 127)) {
1157 *(t++) = octchar((unsigned char) *f >> 6);
1158 *(t++) = octchar((unsigned char) *f >> 3);
1159 *(t++) = octchar((unsigned char) *f);
1170 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1177 /* Undoes C style string escaping, and optionally prefixes it. */
1179 pl = prefix ? strlen(prefix) : 0;
1181 r = new(char, pl+length+1);
1186 memcpy(r, prefix, pl);
1188 for (f = s, t = r + pl; f < s + length; f++) {
1231 /* This is an extension of the XDG syntax files */
1236 /* hexadecimal encoding */
1239 a = unhexchar(f[1]);
1240 b = unhexchar(f[2]);
1242 if (a < 0 || b < 0) {
1243 /* Invalid escape code, let's take it literal then */
1247 *(t++) = (char) ((a << 4) | b);
1262 /* octal encoding */
1265 a = unoctchar(f[0]);
1266 b = unoctchar(f[1]);
1267 c = unoctchar(f[2]);
1269 if (a < 0 || b < 0 || c < 0) {
1270 /* Invalid escape code, let's take it literal then */
1274 *(t++) = (char) ((a << 6) | (b << 3) | c);
1282 /* premature end of string.*/
1287 /* Invalid escape code, let's take it literal then */
1299 char *cunescape_length(const char *s, size_t length) {
1300 return cunescape_length_with_prefix(s, length, NULL);
1303 char *cunescape(const char *s) {
1306 return cunescape_length(s, strlen(s));
1309 char *xescape(const char *s, const char *bad) {
1313 /* Escapes all chars in bad, in addition to \ and all special
1314 * chars, in \xFF style escaping. May be reversed with
1317 r = new(char, strlen(s) * 4 + 1);
1321 for (f = s, t = r; *f; f++) {
1323 if ((*f < ' ') || (*f >= 127) ||
1324 (*f == '\\') || strchr(bad, *f)) {
1327 *(t++) = hexchar(*f >> 4);
1328 *(t++) = hexchar(*f);
1338 char *ascii_strlower(char *t) {
1343 for (p = t; *p; p++)
1344 if (*p >= 'A' && *p <= 'Z')
1345 *p = *p - 'A' + 'a';
1350 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1354 filename[0] == '.' ||
1355 streq(filename, "lost+found") ||
1356 streq(filename, "aquota.user") ||
1357 streq(filename, "aquota.group") ||
1358 endswith(filename, ".rpmnew") ||
1359 endswith(filename, ".rpmsave") ||
1360 endswith(filename, ".rpmorig") ||
1361 endswith(filename, ".dpkg-old") ||
1362 endswith(filename, ".dpkg-new") ||
1363 endswith(filename, ".swp");
1366 bool ignore_file(const char *filename) {
1369 if (endswith(filename, "~"))
1372 return ignore_file_allow_backup(filename);
1375 int fd_nonblock(int fd, bool nonblock) {
1380 if ((flags = fcntl(fd, F_GETFL, 0)) < 0)
1384 flags |= O_NONBLOCK;
1386 flags &= ~O_NONBLOCK;
1388 if (fcntl(fd, F_SETFL, flags) < 0)
1394 int fd_cloexec(int fd, bool cloexec) {
1399 if ((flags = fcntl(fd, F_GETFD, 0)) < 0)
1403 flags |= FD_CLOEXEC;
1405 flags &= ~FD_CLOEXEC;
1407 if (fcntl(fd, F_SETFD, flags) < 0)
1413 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1416 assert(n_fdset == 0 || fdset);
1418 for (i = 0; i < n_fdset; i++)
1425 int close_all_fds(const int except[], unsigned n_except) {
1430 assert(n_except == 0 || except);
1432 d = opendir("/proc/self/fd");
1437 /* When /proc isn't available (for example in chroots)
1438 * the fallback is brute forcing through the fd
1441 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1442 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1444 if (fd_in_set(fd, except, n_except))
1447 if (close_nointr(fd) < 0)
1448 if (errno != EBADF && r == 0)
1455 while ((de = readdir(d))) {
1458 if (ignore_file(de->d_name))
1461 if (safe_atoi(de->d_name, &fd) < 0)
1462 /* Let's better ignore this, just in case */
1471 if (fd_in_set(fd, except, n_except))
1474 if (close_nointr(fd) < 0) {
1475 /* Valgrind has its own FD and doesn't want to have it closed */
1476 if (errno != EBADF && r == 0)
1485 bool chars_intersect(const char *a, const char *b) {
1488 /* Returns true if any of the chars in a are in b. */
1489 for (p = a; *p; p++)
1496 bool fstype_is_network(const char *fstype) {
1497 static const char table[] =
1507 return nulstr_contains(table, fstype);
1511 _cleanup_close_ int fd;
1513 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1519 TIOCL_GETKMSGREDIRECT,
1523 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1526 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1529 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1535 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1536 struct termios old_termios, new_termios;
1538 char line[LINE_MAX];
1543 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1544 new_termios = old_termios;
1546 new_termios.c_lflag &= ~ICANON;
1547 new_termios.c_cc[VMIN] = 1;
1548 new_termios.c_cc[VTIME] = 0;
1550 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1553 if (t != (usec_t) -1) {
1554 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1555 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1560 k = fread(&c, 1, 1, f);
1562 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1568 *need_nl = c != '\n';
1575 if (t != (usec_t) -1)
1576 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1579 if (!fgets(line, sizeof(line), f))
1584 if (strlen(line) != 1)
1594 int ask(char *ret, const char *replies, const char *text, ...) {
1604 bool need_nl = true;
1607 fputs(ANSI_HIGHLIGHT_ON, stdout);
1614 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1618 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1621 if (r == -EBADMSG) {
1622 puts("Bad input, please try again.");
1633 if (strchr(replies, c)) {
1638 puts("Read unexpected character, please try again.");
1642 int reset_terminal_fd(int fd, bool switch_to_text) {
1643 struct termios termios;
1646 /* Set terminal to some sane defaults */
1650 /* We leave locked terminal attributes untouched, so that
1651 * Plymouth may set whatever it wants to set, and we don't
1652 * interfere with that. */
1654 /* Disable exclusive mode, just in case */
1655 ioctl(fd, TIOCNXCL);
1657 /* Switch to text mode */
1659 ioctl(fd, KDSETMODE, KD_TEXT);
1661 /* Enable console unicode mode */
1662 ioctl(fd, KDSKBMODE, K_UNICODE);
1664 if (tcgetattr(fd, &termios) < 0) {
1669 /* We only reset the stuff that matters to the software. How
1670 * hardware is set up we don't touch assuming that somebody
1671 * else will do that for us */
1673 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1674 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1675 termios.c_oflag |= ONLCR;
1676 termios.c_cflag |= CREAD;
1677 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1679 termios.c_cc[VINTR] = 03; /* ^C */
1680 termios.c_cc[VQUIT] = 034; /* ^\ */
1681 termios.c_cc[VERASE] = 0177;
1682 termios.c_cc[VKILL] = 025; /* ^X */
1683 termios.c_cc[VEOF] = 04; /* ^D */
1684 termios.c_cc[VSTART] = 021; /* ^Q */
1685 termios.c_cc[VSTOP] = 023; /* ^S */
1686 termios.c_cc[VSUSP] = 032; /* ^Z */
1687 termios.c_cc[VLNEXT] = 026; /* ^V */
1688 termios.c_cc[VWERASE] = 027; /* ^W */
1689 termios.c_cc[VREPRINT] = 022; /* ^R */
1690 termios.c_cc[VEOL] = 0;
1691 termios.c_cc[VEOL2] = 0;
1693 termios.c_cc[VTIME] = 0;
1694 termios.c_cc[VMIN] = 1;
1696 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1700 /* Just in case, flush all crap out */
1701 tcflush(fd, TCIOFLUSH);
1706 int reset_terminal(const char *name) {
1709 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1713 r = reset_terminal_fd(fd, true);
1714 close_nointr_nofail(fd);
1719 int open_terminal(const char *name, int mode) {
1724 * If a TTY is in the process of being closed opening it might
1725 * cause EIO. This is horribly awful, but unlikely to be
1726 * changed in the kernel. Hence we work around this problem by
1727 * retrying a couple of times.
1729 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1732 assert(!(mode & O_CREAT));
1735 fd = open(name, mode, 0);
1742 /* Max 1s in total */
1746 usleep(50 * USEC_PER_MSEC);
1755 close_nointr_nofail(fd);
1760 close_nointr_nofail(fd);
1767 int flush_fd(int fd) {
1768 struct pollfd pollfd = {
1778 r = poll(&pollfd, 1, 0);
1788 l = read(fd, buf, sizeof(buf));
1794 if (errno == EAGAIN)
1803 int acquire_terminal(
1807 bool ignore_tiocstty_eperm,
1810 int fd = -1, notify = -1, r = 0, wd = -1;
1815 /* We use inotify to be notified when the tty is closed. We
1816 * create the watch before checking if we can actually acquire
1817 * it, so that we don't lose any event.
1819 * Note: strictly speaking this actually watches for the
1820 * device being closed, it does *not* really watch whether a
1821 * tty loses its controlling process. However, unless some
1822 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1823 * its tty otherwise this will not become a problem. As long
1824 * as the administrator makes sure not configure any service
1825 * on the same tty as an untrusted user this should not be a
1826 * problem. (Which he probably should not do anyway.) */
1828 if (timeout != (usec_t) -1)
1829 ts = now(CLOCK_MONOTONIC);
1831 if (!fail && !force) {
1832 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1838 wd = inotify_add_watch(notify, name, IN_CLOSE);
1846 struct sigaction sa_old, sa_new = {
1847 .sa_handler = SIG_IGN,
1848 .sa_flags = SA_RESTART,
1852 r = flush_fd(notify);
1857 /* We pass here O_NOCTTY only so that we can check the return
1858 * value TIOCSCTTY and have a reliable way to figure out if we
1859 * successfully became the controlling process of the tty */
1860 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1864 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1865 * if we already own the tty. */
1866 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1868 /* First, try to get the tty */
1869 if (ioctl(fd, TIOCSCTTY, force) < 0)
1872 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1874 /* Sometimes it makes sense to ignore TIOCSCTTY
1875 * returning EPERM, i.e. when very likely we already
1876 * are have this controlling terminal. */
1877 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1880 if (r < 0 && (force || fail || r != -EPERM)) {
1889 assert(notify >= 0);
1892 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1894 struct inotify_event *e;
1896 if (timeout != (usec_t) -1) {
1899 n = now(CLOCK_MONOTONIC);
1900 if (ts + timeout < n) {
1905 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1915 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1918 if (errno == EINTR || errno == EAGAIN)
1925 e = (struct inotify_event*) inotify_buffer;
1930 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1935 step = sizeof(struct inotify_event) + e->len;
1936 assert(step <= (size_t) l);
1938 e = (struct inotify_event*) ((uint8_t*) e + step);
1945 /* We close the tty fd here since if the old session
1946 * ended our handle will be dead. It's important that
1947 * we do this after sleeping, so that we don't enter
1948 * an endless loop. */
1949 close_nointr_nofail(fd);
1953 close_nointr_nofail(notify);
1955 r = reset_terminal_fd(fd, true);
1957 log_warning("Failed to reset terminal: %s", strerror(-r));
1963 close_nointr_nofail(fd);
1966 close_nointr_nofail(notify);
1971 int release_terminal(void) {
1973 struct sigaction sa_old, sa_new = {
1974 .sa_handler = SIG_IGN,
1975 .sa_flags = SA_RESTART,
1977 _cleanup_close_ int fd;
1979 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
1983 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1984 * by our own TIOCNOTTY */
1985 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1987 if (ioctl(fd, TIOCNOTTY) < 0)
1990 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1995 int sigaction_many(const struct sigaction *sa, ...) {
2000 while ((sig = va_arg(ap, int)) > 0)
2001 if (sigaction(sig, sa, NULL) < 0)
2008 int ignore_signals(int sig, ...) {
2009 struct sigaction sa = {
2010 .sa_handler = SIG_IGN,
2011 .sa_flags = SA_RESTART,
2017 if (sigaction(sig, &sa, NULL) < 0)
2021 while ((sig = va_arg(ap, int)) > 0)
2022 if (sigaction(sig, &sa, NULL) < 0)
2029 int default_signals(int sig, ...) {
2030 struct sigaction sa = {
2031 .sa_handler = SIG_DFL,
2032 .sa_flags = SA_RESTART,
2037 if (sigaction(sig, &sa, NULL) < 0)
2041 while ((sig = va_arg(ap, int)) > 0)
2042 if (sigaction(sig, &sa, NULL) < 0)
2049 int close_pipe(int p[]) {
2055 a = close_nointr(p[0]);
2060 b = close_nointr(p[1]);
2064 return a < 0 ? a : b;
2067 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2074 while (nbytes > 0) {
2077 k = read(fd, p, nbytes);
2078 if (k < 0 && errno == EINTR)
2081 if (k < 0 && errno == EAGAIN && do_poll) {
2083 /* We knowingly ignore any return value here,
2084 * and expect that any error/EOF is reported
2087 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2092 return n > 0 ? n : (k < 0 ? -errno : 0);
2102 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2103 const uint8_t *p = buf;
2109 while (nbytes > 0) {
2112 k = write(fd, p, nbytes);
2113 if (k < 0 && errno == EINTR)
2116 if (k < 0 && errno == EAGAIN && do_poll) {
2118 /* We knowingly ignore any return value here,
2119 * and expect that any error/EOF is reported
2122 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2127 return n > 0 ? n : (k < 0 ? -errno : 0);
2137 int parse_bytes(const char *t, off_t *bytes) {
2138 static const struct {
2140 unsigned long long factor;
2144 { "M", 1024ULL*1024ULL },
2145 { "G", 1024ULL*1024ULL*1024ULL },
2146 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2147 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2148 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2153 unsigned long long r = 0;
2165 l = strtoll(p, &e, 10);
2176 e += strspn(e, WHITESPACE);
2178 for (i = 0; i < ELEMENTSOF(table); i++)
2179 if (startswith(e, table[i].suffix)) {
2180 unsigned long long tmp;
2181 if ((unsigned long long) l > ULLONG_MAX / table[i].factor)
2183 tmp = l * table[i].factor;
2184 if (tmp > ULLONG_MAX - r)
2188 if ((unsigned long long) (off_t) r != r)
2191 p = e + strlen(table[i].suffix);
2195 if (i >= ELEMENTSOF(table))
2205 int make_stdio(int fd) {
2210 r = dup3(fd, STDIN_FILENO, 0);
2211 s = dup3(fd, STDOUT_FILENO, 0);
2212 t = dup3(fd, STDERR_FILENO, 0);
2215 close_nointr_nofail(fd);
2217 if (r < 0 || s < 0 || t < 0)
2220 /* We rely here that the new fd has O_CLOEXEC not set */
2225 int make_null_stdio(void) {
2228 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2232 return make_stdio(null_fd);
2235 bool is_device_path(const char *path) {
2237 /* Returns true on paths that refer to a device, either in
2238 * sysfs or in /dev */
2241 path_startswith(path, "/dev/") ||
2242 path_startswith(path, "/sys/");
2245 int dir_is_empty(const char *path) {
2246 _cleanup_closedir_ DIR *d;
2257 if (!de && errno != 0)
2263 if (!ignore_file(de->d_name))
2268 char* dirname_malloc(const char *path) {
2269 char *d, *dir, *dir2;
2286 int dev_urandom(void *p, size_t n) {
2287 _cleanup_close_ int fd;
2290 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2292 return errno == ENOENT ? -ENOSYS : -errno;
2294 k = loop_read(fd, p, n, true);
2297 if ((size_t) k != n)
2303 void random_bytes(void *p, size_t n) {
2304 static bool srand_called = false;
2308 r = dev_urandom(p, n);
2312 /* If some idiot made /dev/urandom unavailable to us, he'll
2313 * get a PRNG instead. */
2315 if (!srand_called) {
2318 #ifdef HAVE_SYS_AUXV_H
2319 /* The kernel provides us with a bit of entropy in
2320 * auxv, so let's try to make use of that to seed the
2321 * pseudo-random generator. It's better than
2326 auxv = (void*) getauxval(AT_RANDOM);
2328 x ^= *(unsigned*) auxv;
2331 x ^= (unsigned) now(CLOCK_REALTIME);
2332 x ^= (unsigned) gettid();
2335 srand_called = true;
2338 for (q = p; q < (uint8_t*) p + n; q ++)
2342 void rename_process(const char name[8]) {
2345 /* This is a like a poor man's setproctitle(). It changes the
2346 * comm field, argv[0], and also the glibc's internally used
2347 * name of the process. For the first one a limit of 16 chars
2348 * applies, to the second one usually one of 10 (i.e. length
2349 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2350 * "systemd"). If you pass a longer string it will be
2353 prctl(PR_SET_NAME, name);
2355 if (program_invocation_name)
2356 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2358 if (saved_argc > 0) {
2362 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2364 for (i = 1; i < saved_argc; i++) {
2368 memzero(saved_argv[i], strlen(saved_argv[i]));
2373 void sigset_add_many(sigset_t *ss, ...) {
2380 while ((sig = va_arg(ap, int)) > 0)
2381 assert_se(sigaddset(ss, sig) == 0);
2385 char* gethostname_malloc(void) {
2388 assert_se(uname(&u) >= 0);
2390 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2391 return strdup(u.nodename);
2393 return strdup(u.sysname);
2396 bool hostname_is_set(void) {
2399 assert_se(uname(&u) >= 0);
2401 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2404 static char *lookup_uid(uid_t uid) {
2407 _cleanup_free_ char *buf = NULL;
2408 struct passwd pwbuf, *pw = NULL;
2410 /* Shortcut things to avoid NSS lookups */
2412 return strdup("root");
2414 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2418 buf = malloc(bufsize);
2422 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2423 return strdup(pw->pw_name);
2425 if (asprintf(&name, "%lu", (unsigned long) uid) < 0)
2431 char* getlogname_malloc(void) {
2435 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2440 return lookup_uid(uid);
2443 char *getusername_malloc(void) {
2450 return lookup_uid(getuid());
2453 int getttyname_malloc(int fd, char **r) {
2454 char path[PATH_MAX], *c;
2459 k = ttyname_r(fd, path, sizeof(path));
2465 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2473 int getttyname_harder(int fd, char **r) {
2477 k = getttyname_malloc(fd, &s);
2481 if (streq(s, "tty")) {
2483 return get_ctty(0, NULL, r);
2490 int get_ctty_devnr(pid_t pid, dev_t *d) {
2492 _cleanup_free_ char *line = NULL;
2494 unsigned long ttynr;
2498 p = procfs_file_alloca(pid, "stat");
2499 r = read_one_line_file(p, &line);
2503 p = strrchr(line, ')');
2513 "%*d " /* session */
2518 if (major(ttynr) == 0 && minor(ttynr) == 0)
2527 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2529 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *s, *b, *p;
2534 k = get_ctty_devnr(pid, &devnr);
2538 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2540 k = readlink_malloc(fn, &s);
2546 /* This is an ugly hack */
2547 if (major(devnr) == 136) {
2548 if (asprintf(&b, "pts/%lu", (unsigned long) minor(devnr)) < 0)
2558 /* Probably something like the ptys which have no
2559 * symlink in /dev/char. Let's return something
2560 * vaguely useful. */
2573 if (startswith(s, "/dev/"))
2575 else if (startswith(s, "../"))
2593 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2599 /* This returns the first error we run into, but nevertheless
2600 * tries to go on. This closes the passed fd. */
2604 close_nointr_nofail(fd);
2606 return errno == ENOENT ? 0 : -errno;
2611 bool is_dir, keep_around;
2617 if (!de && errno != 0) {
2626 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2629 if (de->d_type == DT_UNKNOWN ||
2631 (de->d_type == DT_DIR && root_dev)) {
2632 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2633 if (ret == 0 && errno != ENOENT)
2638 is_dir = S_ISDIR(st.st_mode);
2641 (st.st_uid == 0 || st.st_uid == getuid()) &&
2642 (st.st_mode & S_ISVTX);
2644 is_dir = de->d_type == DT_DIR;
2645 keep_around = false;
2651 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2652 if (root_dev && st.st_dev != root_dev->st_dev)
2655 subdir_fd = openat(fd, de->d_name,
2656 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2657 if (subdir_fd < 0) {
2658 if (ret == 0 && errno != ENOENT)
2663 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2664 if (r < 0 && ret == 0)
2668 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2669 if (ret == 0 && errno != ENOENT)
2673 } else if (!only_dirs && !keep_around) {
2675 if (unlinkat(fd, de->d_name, 0) < 0) {
2676 if (ret == 0 && errno != ENOENT)
2687 _pure_ static int is_temporary_fs(struct statfs *s) {
2690 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2691 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2694 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2699 if (fstatfs(fd, &s) < 0) {
2700 close_nointr_nofail(fd);
2704 /* We refuse to clean disk file systems with this call. This
2705 * is extra paranoia just to be sure we never ever remove
2707 if (!is_temporary_fs(&s)) {
2708 log_error("Attempted to remove disk file system, and we can't allow that.");
2709 close_nointr_nofail(fd);
2713 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2716 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2722 /* We refuse to clean the root file system with this
2723 * call. This is extra paranoia to never cause a really
2724 * seriously broken system. */
2725 if (path_equal(path, "/")) {
2726 log_error("Attempted to remove entire root file system, and we can't allow that.");
2730 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2733 if (errno != ENOTDIR)
2737 if (statfs(path, &s) < 0)
2740 if (!is_temporary_fs(&s)) {
2741 log_error("Attempted to remove disk file system, and we can't allow that.");
2746 if (delete_root && !only_dirs)
2747 if (unlink(path) < 0 && errno != ENOENT)
2754 if (fstatfs(fd, &s) < 0) {
2755 close_nointr_nofail(fd);
2759 if (!is_temporary_fs(&s)) {
2760 log_error("Attempted to remove disk file system, and we can't allow that.");
2761 close_nointr_nofail(fd);
2766 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2769 if (honour_sticky && file_is_priv_sticky(path) > 0)
2772 if (rmdir(path) < 0 && errno != ENOENT) {
2781 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2782 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2785 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2786 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2789 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2792 /* Under the assumption that we are running privileged we
2793 * first change the access mode and only then hand out
2794 * ownership to avoid a window where access is too open. */
2796 if (mode != (mode_t) -1)
2797 if (chmod(path, mode) < 0)
2800 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2801 if (chown(path, uid, gid) < 0)
2807 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2810 /* Under the assumption that we are running privileged we
2811 * first change the access mode and only then hand out
2812 * ownership to avoid a window where access is too open. */
2814 if (mode != (mode_t) -1)
2815 if (fchmod(fd, mode) < 0)
2818 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2819 if (fchown(fd, uid, gid) < 0)
2825 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2829 /* Allocates the cpuset in the right size */
2832 if (!(r = CPU_ALLOC(n)))
2835 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2836 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2846 if (errno != EINVAL)
2853 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2854 static const char status_indent[] = " "; /* "[" STATUS "] " */
2855 _cleanup_free_ char *s = NULL;
2856 _cleanup_close_ int fd = -1;
2857 struct iovec iovec[6] = {};
2859 static bool prev_ephemeral;
2863 /* This is independent of logging, as status messages are
2864 * optional and go exclusively to the console. */
2866 if (vasprintf(&s, format, ap) < 0)
2869 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2882 sl = status ? sizeof(status_indent)-1 : 0;
2888 e = ellipsize(s, emax, 75);
2896 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2897 prev_ephemeral = ephemeral;
2900 if (!isempty(status)) {
2901 IOVEC_SET_STRING(iovec[n++], "[");
2902 IOVEC_SET_STRING(iovec[n++], status);
2903 IOVEC_SET_STRING(iovec[n++], "] ");
2905 IOVEC_SET_STRING(iovec[n++], status_indent);
2908 IOVEC_SET_STRING(iovec[n++], s);
2910 IOVEC_SET_STRING(iovec[n++], "\n");
2912 if (writev(fd, iovec, n) < 0)
2918 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
2924 va_start(ap, format);
2925 r = status_vprintf(status, ellipse, ephemeral, format, ap);
2931 int status_welcome(void) {
2932 _cleanup_free_ char *pretty_name = NULL, *ansi_color = NULL;
2935 r = parse_env_file("/etc/os-release", NEWLINE,
2936 "PRETTY_NAME", &pretty_name,
2937 "ANSI_COLOR", &ansi_color,
2940 if (r < 0 && r != -ENOENT)
2941 log_warning("Failed to read /etc/os-release: %s", strerror(-r));
2943 return status_printf(NULL, false, false,
2944 "\nWelcome to \x1B[%sm%s\x1B[0m!\n",
2945 isempty(ansi_color) ? "1" : ansi_color,
2946 isempty(pretty_name) ? "Linux" : pretty_name);
2949 char *replace_env(const char *format, char **env) {
2956 const char *e, *word = format;
2961 for (e = format; *e; e ++) {
2972 if (!(k = strnappend(r, word, e-word-1)))
2981 } else if (*e == '$') {
2982 if (!(k = strnappend(r, word, e-word)))
2998 t = strempty(strv_env_get_n(env, word+2, e-word-2));
3000 k = strappend(r, t);
3014 if (!(k = strnappend(r, word, e-word)))
3025 char **replace_env_argv(char **argv, char **env) {
3027 unsigned k = 0, l = 0;
3029 l = strv_length(argv);
3031 if (!(r = new(char*, l+1)))
3034 STRV_FOREACH(i, argv) {
3036 /* If $FOO appears as single word, replace it by the split up variable */
3037 if ((*i)[0] == '$' && (*i)[1] != '{') {
3042 e = strv_env_get(env, *i+1);
3045 if (!(m = strv_split_quoted(e))) {
3056 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3065 memcpy(r + k, m, q * sizeof(char*));
3073 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3074 if (!(r[k++] = replace_env(*i, env))) {
3084 int fd_columns(int fd) {
3085 struct winsize ws = {};
3087 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3096 unsigned columns(void) {
3100 if (_likely_(cached_columns > 0))
3101 return cached_columns;
3104 e = getenv("COLUMNS");
3109 c = fd_columns(STDOUT_FILENO);
3118 int fd_lines(int fd) {
3119 struct winsize ws = {};
3121 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3130 unsigned lines(void) {
3134 if (_likely_(cached_lines > 0))
3135 return cached_lines;
3138 e = getenv("LINES");
3143 l = fd_lines(STDOUT_FILENO);
3149 return cached_lines;
3152 /* intended to be used as a SIGWINCH sighandler */
3153 void columns_lines_cache_reset(int signum) {
3159 static int cached_on_tty = -1;
3161 if (_unlikely_(cached_on_tty < 0))
3162 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3164 return cached_on_tty;
3167 int running_in_chroot(void) {
3168 struct stat a = {}, b = {};
3170 /* Only works as root */
3171 if (stat("/proc/1/root", &a) < 0)
3174 if (stat("/", &b) < 0)
3178 a.st_dev != b.st_dev ||
3179 a.st_ino != b.st_ino;
3182 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3187 assert(percent <= 100);
3188 assert(new_length >= 3);
3190 if (old_length <= 3 || old_length <= new_length)
3191 return strndup(s, old_length);
3193 r = new0(char, new_length+1);
3197 x = (new_length * percent) / 100;
3199 if (x > new_length - 3)
3207 s + old_length - (new_length - x - 3),
3208 new_length - x - 3);
3213 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3217 unsigned k, len, len2;
3220 assert(percent <= 100);
3221 assert(new_length >= 3);
3223 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3224 if (ascii_is_valid(s))
3225 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3227 if (old_length <= 3 || old_length <= new_length)
3228 return strndup(s, old_length);
3230 x = (new_length * percent) / 100;
3232 if (x > new_length - 3)
3236 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3239 c = utf8_encoded_to_unichar(i);
3242 k += unichar_iswide(c) ? 2 : 1;
3245 if (k > x) /* last character was wide and went over quota */
3248 for (j = s + old_length; k < new_length && j > i; ) {
3251 j = utf8_prev_char(j);
3252 c = utf8_encoded_to_unichar(j);
3255 k += unichar_iswide(c) ? 2 : 1;
3259 /* we don't actually need to ellipsize */
3261 return memdup(s, old_length + 1);
3263 /* make space for ellipsis */
3264 j = utf8_next_char(j);
3267 len2 = s + old_length - j;
3268 e = new(char, len + 3 + len2 + 1);
3273 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3274 old_length, new_length, x, len, len2, k);
3278 e[len] = 0xe2; /* tri-dot ellipsis: … */
3282 memcpy(e + len + 3, j, len2 + 1);
3287 char *ellipsize(const char *s, size_t length, unsigned percent) {
3288 return ellipsize_mem(s, strlen(s), length, percent);
3291 int touch(const char *path) {
3296 /* This just opens the file for writing, ensuring it
3297 * exists. It doesn't call utimensat() the way /usr/bin/touch
3300 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
3304 close_nointr_nofail(fd);
3308 char *unquote(const char *s, const char* quotes) {
3312 /* This is rather stupid, simply removes the heading and
3313 * trailing quotes if there is one. Doesn't care about
3314 * escaping or anything. We should make this smarter one
3321 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3322 return strndup(s+1, l-2);
3327 char *normalize_env_assignment(const char *s) {
3328 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3331 eq = strchr(s, '=');
3343 memmove(r, t, strlen(t) + 1);
3347 name = strndup(s, eq - s);
3355 value = unquote(strstrip(p), QUOTES);
3359 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3365 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3376 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3388 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3395 r = wait_for_terminate(pid, &status);
3397 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3401 if (status.si_code == CLD_EXITED) {
3402 if (status.si_status != 0) {
3403 log_warning("%s failed with error code %i.", name, status.si_status);
3404 return status.si_status;
3407 log_debug("%s succeeded.", name);
3410 } else if (status.si_code == CLD_KILLED ||
3411 status.si_code == CLD_DUMPED) {
3413 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3417 log_warning("%s failed due to unknown reason.", name);
3421 noreturn void freeze(void) {
3423 /* Make sure nobody waits for us on a socket anymore */
3424 close_all_fds(NULL, 0);
3432 bool null_or_empty(struct stat *st) {
3435 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3438 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3444 int null_or_empty_path(const char *fn) {
3449 if (stat(fn, &st) < 0)
3452 return null_or_empty(&st);
3455 DIR *xopendirat(int fd, const char *name, int flags) {
3459 assert(!(flags & O_CREAT));
3461 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3467 close_nointr_nofail(nfd);
3474 int signal_from_string_try_harder(const char *s) {
3478 signo = signal_from_string(s);
3480 if (startswith(s, "SIG"))
3481 return signal_from_string(s+3);
3486 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3487 _cleanup_free_ char *t = NULL, *u = NULL;
3491 u = unquote(tagvalue, "\"\'");
3495 enc_len = strlen(u) * 4 + 1;
3496 t = new(char, enc_len);
3500 if (encode_devnode_name(u, t, enc_len) < 0)
3503 if (asprintf(&dn, "/dev/disk/by-%s/%s", by, t) < 0)
3509 char *fstab_node_to_udev_node(const char *p) {
3512 if (startswith(p, "LABEL="))
3513 return tag_to_udev_node(p+6, "label");
3515 if (startswith(p, "UUID="))
3516 return tag_to_udev_node(p+5, "uuid");
3518 if (startswith(p, "PARTUUID="))
3519 return tag_to_udev_node(p+9, "partuuid");
3521 if (startswith(p, "PARTLABEL="))
3522 return tag_to_udev_node(p+10, "partlabel");
3527 bool tty_is_vc(const char *tty) {
3530 if (startswith(tty, "/dev/"))
3533 return vtnr_from_tty(tty) >= 0;
3536 bool tty_is_console(const char *tty) {
3539 if (startswith(tty, "/dev/"))
3542 return streq(tty, "console");
3545 int vtnr_from_tty(const char *tty) {
3550 if (startswith(tty, "/dev/"))
3553 if (!startswith(tty, "tty") )
3556 if (tty[3] < '0' || tty[3] > '9')
3559 r = safe_atoi(tty+3, &i);
3563 if (i < 0 || i > 63)
3569 char *resolve_dev_console(char **active) {
3572 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3573 * (i.e. not read-only-mounted which is a sign for container setups) */
3575 if (path_is_read_only_fs("/sys") > 0)
3578 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3581 /* If multiple log outputs are configured the last one is what
3582 * /dev/console points to */
3583 tty = strrchr(*active, ' ');
3589 if (streq(tty, "tty0")) {
3592 /* Get the active VC (e.g. tty1) */
3593 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3595 tty = *active = tmp;
3602 bool tty_is_vc_resolve(const char *tty) {
3603 _cleanup_free_ char *active = NULL;
3607 if (startswith(tty, "/dev/"))
3610 if (streq(tty, "console")) {
3611 tty = resolve_dev_console(&active);
3616 return tty_is_vc(tty);
3619 const char *default_term_for_tty(const char *tty) {
3622 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3625 bool dirent_is_file(const struct dirent *de) {
3628 if (ignore_file(de->d_name))
3631 if (de->d_type != DT_REG &&
3632 de->d_type != DT_LNK &&
3633 de->d_type != DT_UNKNOWN)
3639 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3642 if (de->d_type != DT_REG &&
3643 de->d_type != DT_LNK &&
3644 de->d_type != DT_UNKNOWN)
3647 if (ignore_file_allow_backup(de->d_name))
3650 return endswith(de->d_name, suffix);
3653 void execute_directory(const char *directory, DIR *d, char *argv[]) {
3656 Hashmap *pids = NULL;
3660 /* Executes all binaries in a directory in parallel and
3661 * waits for them to finish. */
3664 if (!(_d = opendir(directory))) {
3666 if (errno == ENOENT)
3669 log_error("Failed to enumerate directory %s: %m", directory);
3676 if (!(pids = hashmap_new(trivial_hash_func, trivial_compare_func))) {
3677 log_error("Failed to allocate set.");
3681 while ((de = readdir(d))) {
3686 if (!dirent_is_file(de))
3689 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3694 if ((pid = fork()) < 0) {
3695 log_error("Failed to fork: %m");
3713 log_error("Failed to execute %s: %m", path);
3714 _exit(EXIT_FAILURE);
3717 log_debug("Spawned %s as %lu", path, (unsigned long) pid);
3719 if ((k = hashmap_put(pids, UINT_TO_PTR(pid), path)) < 0) {
3720 log_error("Failed to add PID to set: %s", strerror(-k));
3725 while (!hashmap_isempty(pids)) {
3726 pid_t pid = PTR_TO_UINT(hashmap_first_key(pids));
3730 if (waitid(P_PID, pid, &si, WEXITED) < 0) {
3735 log_error("waitid() failed: %m");
3739 if ((path = hashmap_remove(pids, UINT_TO_PTR(si.si_pid)))) {
3740 if (!is_clean_exit(si.si_code, si.si_status, NULL)) {
3741 if (si.si_code == CLD_EXITED)
3742 log_error("%s exited with exit status %i.", path, si.si_status);
3744 log_error("%s terminated by signal %s.", path, signal_to_string(si.si_status));
3746 log_debug("%s exited successfully.", path);
3757 hashmap_free_free(pids);
3760 int kill_and_sigcont(pid_t pid, int sig) {
3763 r = kill(pid, sig) < 0 ? -errno : 0;
3771 bool nulstr_contains(const char*nulstr, const char *needle) {
3777 NULSTR_FOREACH(i, nulstr)
3778 if (streq(i, needle))
3784 bool plymouth_running(void) {
3785 return access("/run/plymouth/pid", F_OK) >= 0;
3788 char* strshorten(char *s, size_t l) {
3797 static bool hostname_valid_char(char c) {
3799 (c >= 'a' && c <= 'z') ||
3800 (c >= 'A' && c <= 'Z') ||
3801 (c >= '0' && c <= '9') ||
3807 bool hostname_is_valid(const char *s) {
3814 for (p = s, dot = true; *p; p++) {
3821 if (!hostname_valid_char(*p))
3831 if (p-s > HOST_NAME_MAX)
3837 char* hostname_cleanup(char *s, bool lowercase) {
3841 for (p = s, d = s, dot = true; *p; p++) {
3848 } else if (hostname_valid_char(*p)) {
3849 *(d++) = lowercase ? tolower(*p) : *p;
3860 strshorten(s, HOST_NAME_MAX);
3865 int pipe_eof(int fd) {
3866 struct pollfd pollfd = {
3868 .events = POLLIN|POLLHUP,
3873 r = poll(&pollfd, 1, 0);
3880 return pollfd.revents & POLLHUP;
3883 int fd_wait_for_event(int fd, int event, usec_t t) {
3885 struct pollfd pollfd = {
3893 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
3900 return pollfd.revents;
3903 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
3914 t = new(char, strlen(path) + 1 + 6 + 1);
3918 fn = basename(path);
3922 stpcpy(stpcpy(t+k+1, fn), "XXXXXX");
3924 fd = mkostemp_safe(t, O_WRONLY|O_CLOEXEC);
3930 f = fdopen(fd, "we");
3943 int terminal_vhangup_fd(int fd) {
3946 if (ioctl(fd, TIOCVHANGUP) < 0)
3952 int terminal_vhangup(const char *name) {
3955 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3959 r = terminal_vhangup_fd(fd);
3960 close_nointr_nofail(fd);
3965 int vt_disallocate(const char *name) {
3969 /* Deallocate the VT if possible. If not possible
3970 * (i.e. because it is the active one), at least clear it
3971 * entirely (including the scrollback buffer) */
3973 if (!startswith(name, "/dev/"))
3976 if (!tty_is_vc(name)) {
3977 /* So this is not a VT. I guess we cannot deallocate
3978 * it then. But let's at least clear the screen */
3980 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3985 "\033[r" /* clear scrolling region */
3986 "\033[H" /* move home */
3987 "\033[2J", /* clear screen */
3989 close_nointr_nofail(fd);
3994 if (!startswith(name, "/dev/tty"))
3997 r = safe_atou(name+8, &u);
4004 /* Try to deallocate */
4005 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
4009 r = ioctl(fd, VT_DISALLOCATE, u);
4010 close_nointr_nofail(fd);
4018 /* Couldn't deallocate, so let's clear it fully with
4020 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4025 "\033[r" /* clear scrolling region */
4026 "\033[H" /* move home */
4027 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4029 close_nointr_nofail(fd);
4034 int copy_file(const char *from, const char *to, int flags) {
4035 _cleanup_close_ int fdf = -1;
4041 fdf = open(from, O_RDONLY|O_CLOEXEC|O_NOCTTY);
4045 fdt = open(to, flags|O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
4053 n = read(fdf, buf, sizeof(buf));
4067 k = loop_write(fdt, buf, n, false);
4069 r = k < 0 ? k : (errno ? -errno : -EIO);
4078 r = close_nointr(fdt);
4088 int symlink_atomic(const char *from, const char *to) {
4090 _cleanup_free_ char *t;
4100 t = new(char, strlen(to) + 1 + 16 + 1);
4108 x = stpcpy(t+k+1, fn);
4111 for (i = 0; i < 16; i++) {
4112 *(x++) = hexchar(u & 0xF);
4118 if (symlink(from, t) < 0)
4121 if (rename(t, to) < 0) {
4130 bool display_is_local(const char *display) {
4134 display[0] == ':' &&
4135 display[1] >= '0' &&
4139 int socket_from_display(const char *display, char **path) {
4146 if (!display_is_local(display))
4149 k = strspn(display+1, "0123456789");
4151 f = new(char, sizeof("/tmp/.X11-unix/X") + k);
4155 c = stpcpy(f, "/tmp/.X11-unix/X");
4156 memcpy(c, display+1, k);
4165 const char **username,
4166 uid_t *uid, gid_t *gid,
4168 const char **shell) {
4176 /* We enforce some special rules for uid=0: in order to avoid
4177 * NSS lookups for root we hardcode its data. */
4179 if (streq(*username, "root") || streq(*username, "0")) {
4197 if (parse_uid(*username, &u) >= 0) {
4201 /* If there are multiple users with the same id, make
4202 * sure to leave $USER to the configured value instead
4203 * of the first occurrence in the database. However if
4204 * the uid was configured by a numeric uid, then let's
4205 * pick the real username from /etc/passwd. */
4207 *username = p->pw_name;
4210 p = getpwnam(*username);
4214 return errno > 0 ? -errno : -ESRCH;
4226 *shell = p->pw_shell;
4231 char* uid_to_name(uid_t uid) {
4236 return strdup("root");
4240 return strdup(p->pw_name);
4242 if (asprintf(&r, "%lu", (unsigned long) uid) < 0)
4248 char* gid_to_name(gid_t gid) {
4253 return strdup("root");
4257 return strdup(p->gr_name);
4259 if (asprintf(&r, "%lu", (unsigned long) gid) < 0)
4265 int get_group_creds(const char **groupname, gid_t *gid) {
4271 /* We enforce some special rules for gid=0: in order to avoid
4272 * NSS lookups for root we hardcode its data. */
4274 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4275 *groupname = "root";
4283 if (parse_gid(*groupname, &id) >= 0) {
4288 *groupname = g->gr_name;
4291 g = getgrnam(*groupname);
4295 return errno > 0 ? -errno : -ESRCH;
4303 int in_gid(gid_t gid) {
4305 int ngroups_max, r, i;
4307 if (getgid() == gid)
4310 if (getegid() == gid)
4313 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4314 assert(ngroups_max > 0);
4316 gids = alloca(sizeof(gid_t) * ngroups_max);
4318 r = getgroups(ngroups_max, gids);
4322 for (i = 0; i < r; i++)
4329 int in_group(const char *name) {
4333 r = get_group_creds(&name, &gid);
4340 int glob_exists(const char *path) {
4341 _cleanup_globfree_ glob_t g = {};
4347 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4349 if (k == GLOB_NOMATCH)
4351 else if (k == GLOB_NOSPACE)
4354 return !strv_isempty(g.gl_pathv);
4356 return errno ? -errno : -EIO;
4359 int glob_extend(char ***strv, const char *path) {
4360 _cleanup_globfree_ glob_t g = {};
4365 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4367 if (k == GLOB_NOMATCH)
4369 else if (k == GLOB_NOSPACE)
4371 else if (k != 0 || strv_isempty(g.gl_pathv))
4372 return errno ? -errno : -EIO;
4374 STRV_FOREACH(p, g.gl_pathv) {
4375 k = strv_extend(strv, *p);
4383 int dirent_ensure_type(DIR *d, struct dirent *de) {
4389 if (de->d_type != DT_UNKNOWN)
4392 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4396 S_ISREG(st.st_mode) ? DT_REG :
4397 S_ISDIR(st.st_mode) ? DT_DIR :
4398 S_ISLNK(st.st_mode) ? DT_LNK :
4399 S_ISFIFO(st.st_mode) ? DT_FIFO :
4400 S_ISSOCK(st.st_mode) ? DT_SOCK :
4401 S_ISCHR(st.st_mode) ? DT_CHR :
4402 S_ISBLK(st.st_mode) ? DT_BLK :
4408 int in_search_path(const char *path, char **search) {
4410 _cleanup_free_ char *parent = NULL;
4413 r = path_get_parent(path, &parent);
4417 STRV_FOREACH(i, search)
4418 if (path_equal(parent, *i))
4424 int get_files_in_directory(const char *path, char ***list) {
4425 _cleanup_closedir_ DIR *d = NULL;
4426 size_t bufsize = 0, n = 0;
4427 _cleanup_strv_free_ char **l = NULL;
4431 /* Returns all files in a directory in *list, and the number
4432 * of files as return value. If list is NULL returns only the
4444 if (!de && errno != 0)
4449 dirent_ensure_type(d, de);
4451 if (!dirent_is_file(de))
4455 /* one extra slot is needed for the terminating NULL */
4456 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4459 l[n] = strdup(de->d_name);
4470 l = NULL; /* avoid freeing */
4476 char *strjoin(const char *x, ...) {
4490 t = va_arg(ap, const char *);
4495 if (n > ((size_t) -1) - l) {
4519 t = va_arg(ap, const char *);
4533 bool is_main_thread(void) {
4534 static thread_local int cached = 0;
4536 if (_unlikely_(cached == 0))
4537 cached = getpid() == gettid() ? 1 : -1;
4542 int block_get_whole_disk(dev_t d, dev_t *ret) {
4549 /* If it has a queue this is good enough for us */
4550 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4553 r = access(p, F_OK);
4561 /* If it is a partition find the originating device */
4562 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4565 r = access(p, F_OK);
4571 /* Get parent dev_t */
4572 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4575 r = read_one_line_file(p, &s);
4581 r = sscanf(s, "%u:%u", &m, &n);
4587 /* Only return this if it is really good enough for us. */
4588 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4591 r = access(p, F_OK);
4595 *ret = makedev(m, n);
4602 int file_is_priv_sticky(const char *p) {
4607 if (lstat(p, &st) < 0)
4611 (st.st_uid == 0 || st.st_uid == getuid()) &&
4612 (st.st_mode & S_ISVTX);
4615 static const char *const ioprio_class_table[] = {
4616 [IOPRIO_CLASS_NONE] = "none",
4617 [IOPRIO_CLASS_RT] = "realtime",
4618 [IOPRIO_CLASS_BE] = "best-effort",
4619 [IOPRIO_CLASS_IDLE] = "idle"
4622 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4624 static const char *const sigchld_code_table[] = {
4625 [CLD_EXITED] = "exited",
4626 [CLD_KILLED] = "killed",
4627 [CLD_DUMPED] = "dumped",
4628 [CLD_TRAPPED] = "trapped",
4629 [CLD_STOPPED] = "stopped",
4630 [CLD_CONTINUED] = "continued",
4633 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4635 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4636 [LOG_FAC(LOG_KERN)] = "kern",
4637 [LOG_FAC(LOG_USER)] = "user",
4638 [LOG_FAC(LOG_MAIL)] = "mail",
4639 [LOG_FAC(LOG_DAEMON)] = "daemon",
4640 [LOG_FAC(LOG_AUTH)] = "auth",
4641 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4642 [LOG_FAC(LOG_LPR)] = "lpr",
4643 [LOG_FAC(LOG_NEWS)] = "news",
4644 [LOG_FAC(LOG_UUCP)] = "uucp",
4645 [LOG_FAC(LOG_CRON)] = "cron",
4646 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4647 [LOG_FAC(LOG_FTP)] = "ftp",
4648 [LOG_FAC(LOG_LOCAL0)] = "local0",
4649 [LOG_FAC(LOG_LOCAL1)] = "local1",
4650 [LOG_FAC(LOG_LOCAL2)] = "local2",
4651 [LOG_FAC(LOG_LOCAL3)] = "local3",
4652 [LOG_FAC(LOG_LOCAL4)] = "local4",
4653 [LOG_FAC(LOG_LOCAL5)] = "local5",
4654 [LOG_FAC(LOG_LOCAL6)] = "local6",
4655 [LOG_FAC(LOG_LOCAL7)] = "local7"
4658 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4660 static const char *const log_level_table[] = {
4661 [LOG_EMERG] = "emerg",
4662 [LOG_ALERT] = "alert",
4663 [LOG_CRIT] = "crit",
4665 [LOG_WARNING] = "warning",
4666 [LOG_NOTICE] = "notice",
4667 [LOG_INFO] = "info",
4668 [LOG_DEBUG] = "debug"
4671 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4673 static const char* const sched_policy_table[] = {
4674 [SCHED_OTHER] = "other",
4675 [SCHED_BATCH] = "batch",
4676 [SCHED_IDLE] = "idle",
4677 [SCHED_FIFO] = "fifo",
4681 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4683 static const char* const rlimit_table[] = {
4684 [RLIMIT_CPU] = "LimitCPU",
4685 [RLIMIT_FSIZE] = "LimitFSIZE",
4686 [RLIMIT_DATA] = "LimitDATA",
4687 [RLIMIT_STACK] = "LimitSTACK",
4688 [RLIMIT_CORE] = "LimitCORE",
4689 [RLIMIT_RSS] = "LimitRSS",
4690 [RLIMIT_NOFILE] = "LimitNOFILE",
4691 [RLIMIT_AS] = "LimitAS",
4692 [RLIMIT_NPROC] = "LimitNPROC",
4693 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4694 [RLIMIT_LOCKS] = "LimitLOCKS",
4695 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4696 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4697 [RLIMIT_NICE] = "LimitNICE",
4698 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4699 [RLIMIT_RTTIME] = "LimitRTTIME"
4702 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4704 static const char* const ip_tos_table[] = {
4705 [IPTOS_LOWDELAY] = "low-delay",
4706 [IPTOS_THROUGHPUT] = "throughput",
4707 [IPTOS_RELIABILITY] = "reliability",
4708 [IPTOS_LOWCOST] = "low-cost",
4711 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4713 static const char *const __signal_table[] = {
4730 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4741 [SIGVTALRM] = "VTALRM",
4743 [SIGWINCH] = "WINCH",
4749 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4751 const char *signal_to_string(int signo) {
4752 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4755 name = __signal_to_string(signo);
4759 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4760 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4762 snprintf(buf, sizeof(buf), "%d", signo);
4767 int signal_from_string(const char *s) {
4772 signo = __signal_from_string(s);
4776 if (startswith(s, "RTMIN+")) {
4780 if (safe_atou(s, &u) >= 0) {
4781 signo = (int) u + offset;
4782 if (signo > 0 && signo < _NSIG)
4788 bool kexec_loaded(void) {
4789 bool loaded = false;
4792 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4800 int strdup_or_null(const char *a, char **b) {
4818 int prot_from_flags(int flags) {
4820 switch (flags & O_ACCMODE) {
4829 return PROT_READ|PROT_WRITE;
4836 char *format_bytes(char *buf, size_t l, off_t t) {
4839 static const struct {
4843 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4844 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4845 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4846 { "G", 1024ULL*1024ULL*1024ULL },
4847 { "M", 1024ULL*1024ULL },
4851 for (i = 0; i < ELEMENTSOF(table); i++) {
4853 if (t >= table[i].factor) {
4856 (unsigned long long) (t / table[i].factor),
4857 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4864 snprintf(buf, l, "%lluB", (unsigned long long) t);
4872 void* memdup(const void *p, size_t l) {
4885 int fd_inc_sndbuf(int fd, size_t n) {
4887 socklen_t l = sizeof(value);
4889 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4890 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4893 /* If we have the privileges we will ignore the kernel limit. */
4896 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4897 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
4903 int fd_inc_rcvbuf(int fd, size_t n) {
4905 socklen_t l = sizeof(value);
4907 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
4908 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4911 /* If we have the privileges we will ignore the kernel limit. */
4914 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
4915 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
4920 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
4921 pid_t parent_pid, agent_pid;
4923 bool stdout_is_tty, stderr_is_tty;
4931 parent_pid = getpid();
4933 /* Spawns a temporary TTY agent, making sure it goes away when
4940 if (agent_pid != 0) {
4947 * Make sure the agent goes away when the parent dies */
4948 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
4949 _exit(EXIT_FAILURE);
4951 /* Check whether our parent died before we were able
4952 * to set the death signal */
4953 if (getppid() != parent_pid)
4954 _exit(EXIT_SUCCESS);
4956 /* Don't leak fds to the agent */
4957 close_all_fds(except, n_except);
4959 stdout_is_tty = isatty(STDOUT_FILENO);
4960 stderr_is_tty = isatty(STDERR_FILENO);
4962 if (!stdout_is_tty || !stderr_is_tty) {
4963 /* Detach from stdout/stderr. and reopen
4964 * /dev/tty for them. This is important to
4965 * ensure that when systemctl is started via
4966 * popen() or a similar call that expects to
4967 * read EOF we actually do generate EOF and
4968 * not delay this indefinitely by because we
4969 * keep an unused copy of stdin around. */
4970 fd = open("/dev/tty", O_WRONLY);
4972 log_error("Failed to open /dev/tty: %m");
4973 _exit(EXIT_FAILURE);
4977 dup2(fd, STDOUT_FILENO);
4980 dup2(fd, STDERR_FILENO);
4986 /* Count arguments */
4988 for (n = 0; va_arg(ap, char*); n++)
4993 l = alloca(sizeof(char *) * (n + 1));
4995 /* Fill in arguments */
4997 for (i = 0; i <= n; i++)
4998 l[i] = va_arg(ap, char*);
5002 _exit(EXIT_FAILURE);
5005 int setrlimit_closest(int resource, const struct rlimit *rlim) {
5006 struct rlimit highest, fixed;
5010 if (setrlimit(resource, rlim) >= 0)
5016 /* So we failed to set the desired setrlimit, then let's try
5017 * to get as close as we can */
5018 assert_se(getrlimit(resource, &highest) == 0);
5020 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
5021 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
5023 if (setrlimit(resource, &fixed) < 0)
5029 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5030 _cleanup_fclose_ FILE *f = NULL;
5041 path = procfs_file_alloca(pid, "environ");
5043 f = fopen(path, "re");
5051 char line[LINE_MAX];
5054 for (i = 0; i < sizeof(line)-1; i++) {
5058 if (_unlikely_(c == EOF)) {
5068 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5069 value = strdup(line + l + 1);
5083 bool is_valid_documentation_url(const char *url) {
5086 if (startswith(url, "http://") && url[7])
5089 if (startswith(url, "https://") && url[8])
5092 if (startswith(url, "file:") && url[5])
5095 if (startswith(url, "info:") && url[5])
5098 if (startswith(url, "man:") && url[4])
5104 bool in_initrd(void) {
5105 static int saved = -1;
5111 /* We make two checks here:
5113 * 1. the flag file /etc/initrd-release must exist
5114 * 2. the root file system must be a memory file system
5116 * The second check is extra paranoia, since misdetecting an
5117 * initrd can have bad bad consequences due the initrd
5118 * emptying when transititioning to the main systemd.
5121 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5122 statfs("/", &s) >= 0 &&
5123 is_temporary_fs(&s);
5128 void warn_melody(void) {
5129 _cleanup_close_ int fd = -1;
5131 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5135 /* Yeah, this is synchronous. Kinda sucks. But well... */
5137 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5138 usleep(125*USEC_PER_MSEC);
5140 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5141 usleep(125*USEC_PER_MSEC);
5143 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5144 usleep(125*USEC_PER_MSEC);
5146 ioctl(fd, KIOCSOUND, 0);
5149 int make_console_stdio(void) {
5152 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5154 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5156 log_error("Failed to acquire terminal: %s", strerror(-fd));
5162 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5169 int get_home_dir(char **_h) {
5177 /* Take the user specified one */
5188 /* Hardcode home directory for root to avoid NSS */
5191 h = strdup("/root");
5199 /* Check the database... */
5203 return errno > 0 ? -errno : -ESRCH;
5205 if (!path_is_absolute(p->pw_dir))
5208 h = strdup(p->pw_dir);
5216 int get_shell(char **_s) {
5224 /* Take the user specified one */
5225 e = getenv("SHELL");
5235 /* Hardcode home directory for root to avoid NSS */
5238 s = strdup("/bin/sh");
5246 /* Check the database... */
5250 return errno > 0 ? -errno : -ESRCH;
5252 if (!path_is_absolute(p->pw_shell))
5255 s = strdup(p->pw_shell);
5263 bool filename_is_safe(const char *p) {
5277 if (strlen(p) > FILENAME_MAX)
5283 bool string_is_safe(const char *p) {
5288 for (t = p; *t; t++) {
5289 if (*t > 0 && *t < ' ')
5292 if (strchr("\\\"\'", *t))
5300 * Check if a string contains control characters.
5301 * Spaces and tabs are not considered control characters.
5303 bool string_has_cc(const char *p) {
5308 for (t = p; *t; t++)
5309 if (*t > 0 && *t < ' ' && *t != '\t')
5315 bool path_is_safe(const char *p) {
5320 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5323 if (strlen(p) > PATH_MAX)
5326 /* The following two checks are not really dangerous, but hey, they still are confusing */
5327 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5330 if (strstr(p, "//"))
5336 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5337 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5338 int (*compar) (const void *, const void *, void *), void *arg) {
5347 p = (void *)(((const char *) base) + (idx * size));
5348 comparison = compar(key, p, arg);
5351 else if (comparison > 0)
5359 bool is_locale_utf8(void) {
5361 static int cached_answer = -1;
5363 if (cached_answer >= 0)
5366 if (!setlocale(LC_ALL, "")) {
5367 cached_answer = true;
5371 set = nl_langinfo(CODESET);
5373 cached_answer = true;
5377 if (streq(set, "UTF-8")) {
5378 cached_answer = true;
5382 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5383 * unset and everything can do to UTF-8 nowadays. */
5384 set = setlocale(LC_CTYPE, NULL);
5386 cached_answer = true;
5390 /* Check result, but ignore the result if C was set
5394 !getenv("LC_ALL") &&
5395 !getenv("LC_CTYPE") &&
5399 return (bool) cached_answer;
5402 const char *draw_special_char(DrawSpecialChar ch) {
5403 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5405 [DRAW_TREE_VERT] = "\342\224\202 ", /* │ */
5406 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5407 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5408 [DRAW_TREE_SPACE] = " ", /* */
5409 [DRAW_TRIANGULAR_BULLET] = "\342\200\243 ", /* ‣ */
5410 [DRAW_BLACK_CIRCLE] = "\342\227\217 ", /* ● */
5412 /* ASCII fallback */ {
5413 [DRAW_TREE_VERT] = "| ",
5414 [DRAW_TREE_BRANCH] = "|-",
5415 [DRAW_TREE_RIGHT] = "`-",
5416 [DRAW_TREE_SPACE] = " ",
5417 [DRAW_TRIANGULAR_BULLET] = "> ",
5418 [DRAW_BLACK_CIRCLE] = "* ",
5422 return draw_table[!is_locale_utf8()][ch];
5425 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5428 size_t l, old_len, new_len;
5434 old_len = strlen(old_string);
5435 new_len = strlen(new_string);
5448 if (!startswith(f, old_string)) {
5454 nl = l - old_len + new_len;
5455 a = realloc(r, nl + 1);
5463 t = stpcpy(t, new_string);
5475 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5476 const char *i, *begin = NULL;
5481 } state = STATE_OTHER;
5483 size_t osz = 0, isz;
5489 /* Strips ANSI color and replaces TABs by 8 spaces */
5491 isz = _isz ? *_isz : strlen(*ibuf);
5493 f = open_memstream(&obuf, &osz);
5497 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5502 if (i >= *ibuf + isz) /* EOT */
5504 else if (*i == '\x1B')
5505 state = STATE_ESCAPE;
5506 else if (*i == '\t')
5513 if (i >= *ibuf + isz) { /* EOT */
5516 } else if (*i == '[') {
5517 state = STATE_BRACKET;
5522 state = STATE_OTHER;
5529 if (i >= *ibuf + isz || /* EOT */
5530 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5533 state = STATE_OTHER;
5535 } else if (*i == 'm')
5536 state = STATE_OTHER;
5558 int on_ac_power(void) {
5559 bool found_offline = false, found_online = false;
5560 _cleanup_closedir_ DIR *d = NULL;
5562 d = opendir("/sys/class/power_supply");
5568 _cleanup_close_ int fd = -1, device = -1;
5574 if (!de && errno != 0)
5580 if (ignore_file(de->d_name))
5583 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5585 if (errno == ENOENT || errno == ENOTDIR)
5591 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5593 if (errno == ENOENT)
5599 n = read(fd, contents, sizeof(contents));
5603 if (n != 6 || memcmp(contents, "Mains\n", 6))
5606 close_nointr_nofail(fd);
5607 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5609 if (errno == ENOENT)
5615 n = read(fd, contents, sizeof(contents));
5619 if (n != 2 || contents[1] != '\n')
5622 if (contents[0] == '1') {
5623 found_online = true;
5625 } else if (contents[0] == '0')
5626 found_offline = true;
5631 return found_online || !found_offline;
5634 static int search_and_fopen_internal(const char *path, const char *mode, char **search, FILE **_f) {
5641 if (!path_strv_canonicalize_absolute_uniq(search, NULL))
5644 STRV_FOREACH(i, search) {
5645 _cleanup_free_ char *p = NULL;
5648 p = strjoin(*i, "/", path, NULL);
5658 if (errno != ENOENT)
5665 int search_and_fopen(const char *path, const char *mode, const char **search, FILE **_f) {
5666 _cleanup_strv_free_ char **copy = NULL;
5672 if (path_is_absolute(path)) {
5675 f = fopen(path, mode);
5684 copy = strv_copy((char**) search);
5688 return search_and_fopen_internal(path, mode, copy, _f);
5691 int search_and_fopen_nulstr(const char *path, const char *mode, const char *search, FILE **_f) {
5692 _cleanup_strv_free_ char **s = NULL;
5694 if (path_is_absolute(path)) {
5697 f = fopen(path, mode);
5706 s = strv_split_nulstr(search);
5710 return search_and_fopen_internal(path, mode, s, _f);
5713 char *strextend(char **x, ...) {
5720 l = f = *x ? strlen(*x) : 0;
5727 t = va_arg(ap, const char *);
5732 if (n > ((size_t) -1) - l) {
5741 r = realloc(*x, l+1);
5751 t = va_arg(ap, const char *);
5765 char *strrep(const char *s, unsigned n) {
5773 p = r = malloc(l * n + 1);
5777 for (i = 0; i < n; i++)
5784 void* greedy_realloc(void **p, size_t *allocated, size_t need) {
5791 if (*allocated >= need)
5794 a = MAX(64u, need * 2);
5796 /* check for overflows */
5809 void* greedy_realloc0(void **p, size_t *allocated, size_t need) {
5818 q = greedy_realloc(p, allocated, need);
5822 if (*allocated > prev)
5823 memzero(&q[prev], *allocated - prev);
5828 bool id128_is_valid(const char *s) {
5834 /* Simple formatted 128bit hex string */
5836 for (i = 0; i < l; i++) {
5839 if (!(c >= '0' && c <= '9') &&
5840 !(c >= 'a' && c <= 'z') &&
5841 !(c >= 'A' && c <= 'Z'))
5845 } else if (l == 36) {
5847 /* Formatted UUID */
5849 for (i = 0; i < l; i++) {
5852 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5856 if (!(c >= '0' && c <= '9') &&
5857 !(c >= 'a' && c <= 'z') &&
5858 !(c >= 'A' && c <= 'Z'))
5869 int split_pair(const char *s, const char *sep, char **l, char **r) {
5884 a = strndup(s, x - s);
5888 b = strdup(x + strlen(sep));
5900 int shall_restore_state(void) {
5901 _cleanup_free_ char *line;
5906 r = proc_cmdline(&line);
5909 if (r == 0) /* Container ... */
5912 FOREACH_WORD_QUOTED(w, l, line, state)
5913 if (l == 23 && strneq(w, "systemd.restore_state=0", 23))
5919 int proc_cmdline(char **ret) {
5922 if (detect_container(NULL) > 0) {
5926 r = read_full_file("/proc/1/cmdline", &buf, &sz);
5930 for (p = buf; p + 1 < buf + sz; p++)
5939 r = read_one_line_file("/proc/cmdline", ret);
5946 int container_get_leader(const char *machine, pid_t *pid) {
5947 _cleanup_free_ char *s = NULL, *class = NULL;
5955 p = strappenda("/run/systemd/machines/", machine);
5956 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
5964 if (!streq_ptr(class, "container"))
5967 r = parse_pid(s, &leader);
5977 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *root_fd) {
5978 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1;
5979 const char *pidns, *mntns, *root;
5987 mntns = procfs_file_alloca(pid, "ns/mnt");
5988 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
5992 pidns = procfs_file_alloca(pid, "ns/pid");
5993 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
5997 root = procfs_file_alloca(pid, "root");
5998 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
6002 *pidns_fd = pidnsfd;
6003 *mntns_fd = mntnsfd;
6011 int namespace_enter(int pidns_fd, int mntns_fd, int root_fd) {
6012 assert(pidns_fd >= 0);
6013 assert(mntns_fd >= 0);
6014 assert(root_fd >= 0);
6016 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6019 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6022 if (fchdir(root_fd) < 0)
6025 if (chroot(".") < 0)
6028 if (setresgid(0, 0, 0) < 0)
6031 if (setresuid(0, 0, 0) < 0)
6037 bool pid_valid(pid_t pid) {
6041 if (kill(pid, 0) >= 0)
6044 return errno != ESRCH;
6047 int getpeercred(int fd, struct ucred *ucred) {
6048 socklen_t n = sizeof(struct ucred);
6055 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6059 if (n != sizeof(struct ucred))
6062 /* Check if the data is actually useful and not suppressed due
6063 * to namespacing issues */
6071 int getpeersec(int fd, char **ret) {
6083 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6087 if (errno != ERANGE)
6094 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6110 /* This is much like like mkostemp() but is subject to umask(). */
6111 int mkostemp_safe(char *pattern, int flags) {
6112 _cleanup_umask_ mode_t u;
6119 fd = mkostemp(pattern, flags);
6126 int open_tmpfile(const char *path, int flags) {
6133 /* Try O_TMPFILE first, if it is supported */
6134 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6139 /* Fall back to unguessable name + unlinking */
6140 p = strappenda(path, "/systemd-tmp-XXXXXX");
6142 fd = mkostemp_safe(p, flags);
6150 int fd_warn_permissions(const char *path, int fd) {
6153 if (fstat(fd, &st) < 0)
6156 if (st.st_mode & 0111)
6157 log_warning("Configuration file %s is marked executable. Please remove executable permission bits. Proceeding anyway.", path);
6159 if (st.st_mode & 0002)
6160 log_warning("Configuration file %s is marked world-writable. Please remove world writability permission bits. Proceeding anyway.", path);
6162 if (getpid() == 1 && (st.st_mode & 0044) != 0044)
6163 log_warning("Configuration file %s is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.", path);
~ianmdlvl / elogind.git / blob