1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <linux/magic.h>
61 #include <sys/personality.h>
65 #ifdef HAVE_SYS_AUXV_H
76 #include "path-util.h"
77 #include "exit-status.h"
81 #include "device-nodes.h"
88 char **saved_argv = NULL;
90 static volatile unsigned cached_columns = 0;
91 static volatile unsigned cached_lines = 0;
93 size_t page_size(void) {
94 static thread_local size_t pgsz = 0;
97 if (_likely_(pgsz > 0))
100 r = sysconf(_SC_PAGESIZE);
107 bool streq_ptr(const char *a, const char *b) {
109 /* Like streq(), but tries to make sense of NULL pointers */
120 char* endswith(const char *s, const char *postfix) {
127 pl = strlen(postfix);
130 return (char*) s + sl;
135 if (memcmp(s + sl - pl, postfix, pl) != 0)
138 return (char*) s + sl - pl;
141 bool first_word(const char *s, const char *word) {
156 if (memcmp(s, word, wl) != 0)
160 strchr(WHITESPACE, s[wl]);
163 int close_nointr(int fd) {
169 /* Just ignore EINTR; a retry loop is the wrong
170 * thing to do on Linux.
172 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
173 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
174 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
175 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
177 if (_unlikely_(r < 0 && errno == EINTR))
185 void close_nointr_nofail(int fd) {
188 /* like close_nointr() but cannot fail, and guarantees errno
191 assert_se(close_nointr(fd) == 0);
194 void close_many(const int fds[], unsigned n_fd) {
197 assert(fds || n_fd <= 0);
199 for (i = 0; i < n_fd; i++)
200 close_nointr_nofail(fds[i]);
203 int unlink_noerrno(const char *path) {
214 int parse_boolean(const char *v) {
217 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
219 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
225 int parse_pid(const char *s, pid_t* ret_pid) {
226 unsigned long ul = 0;
233 r = safe_atolu(s, &ul);
239 if ((unsigned long) pid != ul)
249 int parse_uid(const char *s, uid_t* ret_uid) {
250 unsigned long ul = 0;
257 r = safe_atolu(s, &ul);
263 if ((unsigned long) uid != ul)
270 int safe_atou(const char *s, unsigned *ret_u) {
278 l = strtoul(s, &x, 0);
280 if (!x || x == s || *x || errno)
281 return errno > 0 ? -errno : -EINVAL;
283 if ((unsigned long) (unsigned) l != l)
286 *ret_u = (unsigned) l;
290 int safe_atoi(const char *s, int *ret_i) {
298 l = strtol(s, &x, 0);
300 if (!x || x == s || *x || errno)
301 return errno > 0 ? -errno : -EINVAL;
303 if ((long) (int) l != l)
310 int safe_atollu(const char *s, long long unsigned *ret_llu) {
312 unsigned long long l;
318 l = strtoull(s, &x, 0);
320 if (!x || x == s || *x || errno)
321 return errno ? -errno : -EINVAL;
327 int safe_atolli(const char *s, long long int *ret_lli) {
335 l = strtoll(s, &x, 0);
337 if (!x || x == s || *x || errno)
338 return errno ? -errno : -EINVAL;
344 int safe_atod(const char *s, double *ret_d) {
351 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
356 if (!x || x == s || *x || errno)
357 return errno ? -errno : -EINVAL;
363 static size_t strcspn_escaped(const char *s, const char *reject) {
364 bool escaped = false;
367 for (n=0; s[n]; n++) {
370 else if (s[n] == '\\')
372 else if (strchr(reject, s[n]))
378 /* Split a string into words. */
379 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
382 current = *state ? *state : (char*) c;
384 if (!*current || *c == 0)
387 current += strspn(current, separator);
391 if (quoted && strchr("\'\"", *current)) {
392 char quotechar = *(current++);
393 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
394 *state = current+*l+1;
396 *l = strcspn_escaped(current, separator);
399 *l = strcspn(current, separator);
403 return (char*) current;
406 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
408 _cleanup_free_ char *line = NULL;
420 p = procfs_file_alloca(pid, "stat");
421 r = read_one_line_file(p, &line);
425 /* Let's skip the pid and comm fields. The latter is enclosed
426 * in () but does not escape any () in its value, so let's
427 * skip over it manually */
429 p = strrchr(line, ')');
441 if ((long unsigned) (pid_t) ppid != ppid)
444 *_ppid = (pid_t) ppid;
449 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
451 _cleanup_free_ char *line = NULL;
457 p = procfs_file_alloca(pid, "stat");
458 r = read_one_line_file(p, &line);
462 /* Let's skip the pid and comm fields. The latter is enclosed
463 * in () but does not escape any () in its value, so let's
464 * skip over it manually */
466 p = strrchr(line, ')');
488 "%*d " /* priority */
490 "%*d " /* num_threads */
491 "%*d " /* itrealvalue */
492 "%llu " /* starttime */,
499 int fchmod_umask(int fd, mode_t m) {
504 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
510 char *truncate_nl(char *s) {
513 s[strcspn(s, NEWLINE)] = 0;
517 int get_process_state(pid_t pid) {
521 _cleanup_free_ char *line = NULL;
525 p = procfs_file_alloca(pid, "stat");
526 r = read_one_line_file(p, &line);
530 p = strrchr(line, ')');
536 if (sscanf(p, " %c", &state) != 1)
539 return (unsigned char) state;
542 int get_process_comm(pid_t pid, char **name) {
549 p = procfs_file_alloca(pid, "comm");
551 r = read_one_line_file(p, name);
558 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
559 _cleanup_fclose_ FILE *f = NULL;
567 p = procfs_file_alloca(pid, "cmdline");
573 if (max_length == 0) {
574 size_t len = 0, allocated = 0;
576 while ((c = getc(f)) != EOF) {
578 if (!GREEDY_REALLOC(r, allocated, len+2)) {
583 r[len++] = isprint(c) ? c : ' ';
593 r = new(char, max_length);
599 while ((c = getc(f)) != EOF) {
621 size_t n = MIN(left-1, 3U);
628 /* Kernel threads have no argv[] */
629 if (r == NULL || r[0] == 0) {
630 _cleanup_free_ char *t = NULL;
638 h = get_process_comm(pid, &t);
642 r = strjoin("[", t, "]", NULL);
651 int is_kernel_thread(pid_t pid) {
663 p = procfs_file_alloca(pid, "cmdline");
668 count = fread(&c, 1, 1, f);
672 /* Kernel threads have an empty cmdline */
675 return eof ? 1 : -errno;
680 int get_process_capeff(pid_t pid, char **capeff) {
686 p = procfs_file_alloca(pid, "status");
688 return get_status_field(p, "\nCapEff:", capeff);
691 int get_process_exe(pid_t pid, char **name) {
699 p = procfs_file_alloca(pid, "exe");
701 r = readlink_malloc(p, name);
703 return r == -ENOENT ? -ESRCH : r;
705 d = endswith(*name, " (deleted)");
712 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
713 _cleanup_fclose_ FILE *f = NULL;
723 p = procfs_file_alloca(pid, "status");
728 FOREACH_LINE(line, f, return -errno) {
733 if (startswith(l, field)) {
735 l += strspn(l, WHITESPACE);
737 l[strcspn(l, WHITESPACE)] = 0;
739 return parse_uid(l, uid);
746 int get_process_uid(pid_t pid, uid_t *uid) {
747 return get_process_id(pid, "Uid:", uid);
750 int get_process_gid(pid_t pid, gid_t *gid) {
751 assert_cc(sizeof(uid_t) == sizeof(gid_t));
752 return get_process_id(pid, "Gid:", gid);
755 char *strnappend(const char *s, const char *suffix, size_t b) {
763 return strndup(suffix, b);
772 if (b > ((size_t) -1) - a)
775 r = new(char, a+b+1);
780 memcpy(r+a, suffix, b);
786 char *strappend(const char *s, const char *suffix) {
787 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
790 int readlink_malloc(const char *p, char **ret) {
805 n = readlink(p, c, l-1);
812 if ((size_t) n < l-1) {
823 int readlink_and_make_absolute(const char *p, char **r) {
824 _cleanup_free_ char *target = NULL;
831 j = readlink_malloc(p, &target);
835 k = file_in_same_dir(p, target);
843 int readlink_and_canonicalize(const char *p, char **r) {
850 j = readlink_and_make_absolute(p, &t);
854 s = canonicalize_file_name(t);
861 path_kill_slashes(*r);
866 int reset_all_signal_handlers(void) {
869 for (sig = 1; sig < _NSIG; sig++) {
870 struct sigaction sa = {
871 .sa_handler = SIG_DFL,
872 .sa_flags = SA_RESTART,
875 if (sig == SIGKILL || sig == SIGSTOP)
878 /* On Linux the first two RT signals are reserved by
879 * glibc, and sigaction() will return EINVAL for them. */
880 if ((sigaction(sig, &sa, NULL) < 0))
888 char *strstrip(char *s) {
891 /* Drops trailing whitespace. Modifies the string in
892 * place. Returns pointer to first non-space character */
894 s += strspn(s, WHITESPACE);
896 for (e = strchr(s, 0); e > s; e --)
897 if (!strchr(WHITESPACE, e[-1]))
905 char *delete_chars(char *s, const char *bad) {
908 /* Drops all whitespace, regardless where in the string */
910 for (f = s, t = s; *f; f++) {
922 bool in_charset(const char *s, const char* charset) {
929 if (!strchr(charset, *i))
935 char *file_in_same_dir(const char *path, const char *filename) {
942 /* This removes the last component of path and appends
943 * filename, unless the latter is absolute anyway or the
946 if (path_is_absolute(filename))
947 return strdup(filename);
949 if (!(e = strrchr(path, '/')))
950 return strdup(filename);
952 k = strlen(filename);
953 if (!(r = new(char, e-path+1+k+1)))
956 memcpy(r, path, e-path+1);
957 memcpy(r+(e-path)+1, filename, k+1);
962 int rmdir_parents(const char *path, const char *stop) {
971 /* Skip trailing slashes */
972 while (l > 0 && path[l-1] == '/')
978 /* Skip last component */
979 while (l > 0 && path[l-1] != '/')
982 /* Skip trailing slashes */
983 while (l > 0 && path[l-1] == '/')
989 if (!(t = strndup(path, l)))
992 if (path_startswith(stop, t)) {
1001 if (errno != ENOENT)
1008 char hexchar(int x) {
1009 static const char table[16] = "0123456789abcdef";
1011 return table[x & 15];
1014 int unhexchar(char c) {
1016 if (c >= '0' && c <= '9')
1019 if (c >= 'a' && c <= 'f')
1020 return c - 'a' + 10;
1022 if (c >= 'A' && c <= 'F')
1023 return c - 'A' + 10;
1028 char *hexmem(const void *p, size_t l) {
1032 z = r = malloc(l * 2 + 1);
1036 for (x = p; x < (const uint8_t*) p + l; x++) {
1037 *(z++) = hexchar(*x >> 4);
1038 *(z++) = hexchar(*x & 15);
1045 void *unhexmem(const char *p, size_t l) {
1051 z = r = malloc((l + 1) / 2 + 1);
1055 for (x = p; x < p + l; x += 2) {
1058 a = unhexchar(x[0]);
1060 b = unhexchar(x[1]);
1064 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1071 char octchar(int x) {
1072 return '0' + (x & 7);
1075 int unoctchar(char c) {
1077 if (c >= '0' && c <= '7')
1083 char decchar(int x) {
1084 return '0' + (x % 10);
1087 int undecchar(char c) {
1089 if (c >= '0' && c <= '9')
1095 char *cescape(const char *s) {
1101 /* Does C style string escaping. */
1103 r = new(char, strlen(s)*4 + 1);
1107 for (f = s, t = r; *f; f++)
1153 /* For special chars we prefer octal over
1154 * hexadecimal encoding, simply because glib's
1155 * g_strescape() does the same */
1156 if ((*f < ' ') || (*f >= 127)) {
1158 *(t++) = octchar((unsigned char) *f >> 6);
1159 *(t++) = octchar((unsigned char) *f >> 3);
1160 *(t++) = octchar((unsigned char) *f);
1171 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1178 /* Undoes C style string escaping, and optionally prefixes it. */
1180 pl = prefix ? strlen(prefix) : 0;
1182 r = new(char, pl+length+1);
1187 memcpy(r, prefix, pl);
1189 for (f = s, t = r + pl; f < s + length; f++) {
1232 /* This is an extension of the XDG syntax files */
1237 /* hexadecimal encoding */
1240 a = unhexchar(f[1]);
1241 b = unhexchar(f[2]);
1243 if (a < 0 || b < 0) {
1244 /* Invalid escape code, let's take it literal then */
1248 *(t++) = (char) ((a << 4) | b);
1263 /* octal encoding */
1266 a = unoctchar(f[0]);
1267 b = unoctchar(f[1]);
1268 c = unoctchar(f[2]);
1270 if (a < 0 || b < 0 || c < 0) {
1271 /* Invalid escape code, let's take it literal then */
1275 *(t++) = (char) ((a << 6) | (b << 3) | c);
1283 /* premature end of string.*/
1288 /* Invalid escape code, let's take it literal then */
1300 char *cunescape_length(const char *s, size_t length) {
1301 return cunescape_length_with_prefix(s, length, NULL);
1304 char *cunescape(const char *s) {
1307 return cunescape_length(s, strlen(s));
1310 char *xescape(const char *s, const char *bad) {
1314 /* Escapes all chars in bad, in addition to \ and all special
1315 * chars, in \xFF style escaping. May be reversed with
1318 r = new(char, strlen(s) * 4 + 1);
1322 for (f = s, t = r; *f; f++) {
1324 if ((*f < ' ') || (*f >= 127) ||
1325 (*f == '\\') || strchr(bad, *f)) {
1328 *(t++) = hexchar(*f >> 4);
1329 *(t++) = hexchar(*f);
1339 char *ascii_strlower(char *t) {
1344 for (p = t; *p; p++)
1345 if (*p >= 'A' && *p <= 'Z')
1346 *p = *p - 'A' + 'a';
1351 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1355 filename[0] == '.' ||
1356 streq(filename, "lost+found") ||
1357 streq(filename, "aquota.user") ||
1358 streq(filename, "aquota.group") ||
1359 endswith(filename, ".rpmnew") ||
1360 endswith(filename, ".rpmsave") ||
1361 endswith(filename, ".rpmorig") ||
1362 endswith(filename, ".dpkg-old") ||
1363 endswith(filename, ".dpkg-new") ||
1364 endswith(filename, ".swp");
1367 bool ignore_file(const char *filename) {
1370 if (endswith(filename, "~"))
1373 return ignore_file_allow_backup(filename);
1376 int fd_nonblock(int fd, bool nonblock) {
1381 if ((flags = fcntl(fd, F_GETFL, 0)) < 0)
1385 flags |= O_NONBLOCK;
1387 flags &= ~O_NONBLOCK;
1389 if (fcntl(fd, F_SETFL, flags) < 0)
1395 int fd_cloexec(int fd, bool cloexec) {
1400 if ((flags = fcntl(fd, F_GETFD, 0)) < 0)
1404 flags |= FD_CLOEXEC;
1406 flags &= ~FD_CLOEXEC;
1408 if (fcntl(fd, F_SETFD, flags) < 0)
1414 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1417 assert(n_fdset == 0 || fdset);
1419 for (i = 0; i < n_fdset; i++)
1426 int close_all_fds(const int except[], unsigned n_except) {
1431 assert(n_except == 0 || except);
1433 d = opendir("/proc/self/fd");
1438 /* When /proc isn't available (for example in chroots)
1439 * the fallback is brute forcing through the fd
1442 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1443 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1445 if (fd_in_set(fd, except, n_except))
1448 if (close_nointr(fd) < 0)
1449 if (errno != EBADF && r == 0)
1456 while ((de = readdir(d))) {
1459 if (ignore_file(de->d_name))
1462 if (safe_atoi(de->d_name, &fd) < 0)
1463 /* Let's better ignore this, just in case */
1472 if (fd_in_set(fd, except, n_except))
1475 if (close_nointr(fd) < 0) {
1476 /* Valgrind has its own FD and doesn't want to have it closed */
1477 if (errno != EBADF && r == 0)
1486 bool chars_intersect(const char *a, const char *b) {
1489 /* Returns true if any of the chars in a are in b. */
1490 for (p = a; *p; p++)
1497 bool fstype_is_network(const char *fstype) {
1498 static const char table[] =
1508 return nulstr_contains(table, fstype);
1512 _cleanup_close_ int fd;
1514 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1520 TIOCL_GETKMSGREDIRECT,
1524 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1527 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1530 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1536 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1537 struct termios old_termios, new_termios;
1539 char line[LINE_MAX];
1544 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1545 new_termios = old_termios;
1547 new_termios.c_lflag &= ~ICANON;
1548 new_termios.c_cc[VMIN] = 1;
1549 new_termios.c_cc[VTIME] = 0;
1551 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1554 if (t != (usec_t) -1) {
1555 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1556 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1561 k = fread(&c, 1, 1, f);
1563 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1569 *need_nl = c != '\n';
1576 if (t != (usec_t) -1)
1577 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1580 if (!fgets(line, sizeof(line), f))
1585 if (strlen(line) != 1)
1595 int ask(char *ret, const char *replies, const char *text, ...) {
1605 bool need_nl = true;
1608 fputs(ANSI_HIGHLIGHT_ON, stdout);
1615 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1619 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1622 if (r == -EBADMSG) {
1623 puts("Bad input, please try again.");
1634 if (strchr(replies, c)) {
1639 puts("Read unexpected character, please try again.");
1643 int reset_terminal_fd(int fd, bool switch_to_text) {
1644 struct termios termios;
1647 /* Set terminal to some sane defaults */
1651 /* We leave locked terminal attributes untouched, so that
1652 * Plymouth may set whatever it wants to set, and we don't
1653 * interfere with that. */
1655 /* Disable exclusive mode, just in case */
1656 ioctl(fd, TIOCNXCL);
1658 /* Switch to text mode */
1660 ioctl(fd, KDSETMODE, KD_TEXT);
1662 /* Enable console unicode mode */
1663 ioctl(fd, KDSKBMODE, K_UNICODE);
1665 if (tcgetattr(fd, &termios) < 0) {
1670 /* We only reset the stuff that matters to the software. How
1671 * hardware is set up we don't touch assuming that somebody
1672 * else will do that for us */
1674 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1675 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1676 termios.c_oflag |= ONLCR;
1677 termios.c_cflag |= CREAD;
1678 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1680 termios.c_cc[VINTR] = 03; /* ^C */
1681 termios.c_cc[VQUIT] = 034; /* ^\ */
1682 termios.c_cc[VERASE] = 0177;
1683 termios.c_cc[VKILL] = 025; /* ^X */
1684 termios.c_cc[VEOF] = 04; /* ^D */
1685 termios.c_cc[VSTART] = 021; /* ^Q */
1686 termios.c_cc[VSTOP] = 023; /* ^S */
1687 termios.c_cc[VSUSP] = 032; /* ^Z */
1688 termios.c_cc[VLNEXT] = 026; /* ^V */
1689 termios.c_cc[VWERASE] = 027; /* ^W */
1690 termios.c_cc[VREPRINT] = 022; /* ^R */
1691 termios.c_cc[VEOL] = 0;
1692 termios.c_cc[VEOL2] = 0;
1694 termios.c_cc[VTIME] = 0;
1695 termios.c_cc[VMIN] = 1;
1697 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1701 /* Just in case, flush all crap out */
1702 tcflush(fd, TCIOFLUSH);
1707 int reset_terminal(const char *name) {
1710 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1714 r = reset_terminal_fd(fd, true);
1715 close_nointr_nofail(fd);
1720 int open_terminal(const char *name, int mode) {
1725 * If a TTY is in the process of being closed opening it might
1726 * cause EIO. This is horribly awful, but unlikely to be
1727 * changed in the kernel. Hence we work around this problem by
1728 * retrying a couple of times.
1730 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1733 assert(!(mode & O_CREAT));
1736 fd = open(name, mode, 0);
1743 /* Max 1s in total */
1747 usleep(50 * USEC_PER_MSEC);
1756 close_nointr_nofail(fd);
1761 close_nointr_nofail(fd);
1768 int flush_fd(int fd) {
1769 struct pollfd pollfd = {
1779 r = poll(&pollfd, 1, 0);
1789 l = read(fd, buf, sizeof(buf));
1795 if (errno == EAGAIN)
1804 int acquire_terminal(
1808 bool ignore_tiocstty_eperm,
1811 int fd = -1, notify = -1, r = 0, wd = -1;
1816 /* We use inotify to be notified when the tty is closed. We
1817 * create the watch before checking if we can actually acquire
1818 * it, so that we don't lose any event.
1820 * Note: strictly speaking this actually watches for the
1821 * device being closed, it does *not* really watch whether a
1822 * tty loses its controlling process. However, unless some
1823 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1824 * its tty otherwise this will not become a problem. As long
1825 * as the administrator makes sure not configure any service
1826 * on the same tty as an untrusted user this should not be a
1827 * problem. (Which he probably should not do anyway.) */
1829 if (timeout != (usec_t) -1)
1830 ts = now(CLOCK_MONOTONIC);
1832 if (!fail && !force) {
1833 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1839 wd = inotify_add_watch(notify, name, IN_CLOSE);
1847 struct sigaction sa_old, sa_new = {
1848 .sa_handler = SIG_IGN,
1849 .sa_flags = SA_RESTART,
1853 r = flush_fd(notify);
1858 /* We pass here O_NOCTTY only so that we can check the return
1859 * value TIOCSCTTY and have a reliable way to figure out if we
1860 * successfully became the controlling process of the tty */
1861 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1865 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1866 * if we already own the tty. */
1867 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1869 /* First, try to get the tty */
1870 if (ioctl(fd, TIOCSCTTY, force) < 0)
1873 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1875 /* Sometimes it makes sense to ignore TIOCSCTTY
1876 * returning EPERM, i.e. when very likely we already
1877 * are have this controlling terminal. */
1878 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1881 if (r < 0 && (force || fail || r != -EPERM)) {
1890 assert(notify >= 0);
1893 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1895 struct inotify_event *e;
1897 if (timeout != (usec_t) -1) {
1900 n = now(CLOCK_MONOTONIC);
1901 if (ts + timeout < n) {
1906 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1916 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1919 if (errno == EINTR || errno == EAGAIN)
1926 e = (struct inotify_event*) inotify_buffer;
1931 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1936 step = sizeof(struct inotify_event) + e->len;
1937 assert(step <= (size_t) l);
1939 e = (struct inotify_event*) ((uint8_t*) e + step);
1946 /* We close the tty fd here since if the old session
1947 * ended our handle will be dead. It's important that
1948 * we do this after sleeping, so that we don't enter
1949 * an endless loop. */
1950 close_nointr_nofail(fd);
1954 close_nointr_nofail(notify);
1956 r = reset_terminal_fd(fd, true);
1958 log_warning("Failed to reset terminal: %s", strerror(-r));
1964 close_nointr_nofail(fd);
1967 close_nointr_nofail(notify);
1972 int release_terminal(void) {
1974 struct sigaction sa_old, sa_new = {
1975 .sa_handler = SIG_IGN,
1976 .sa_flags = SA_RESTART,
1978 _cleanup_close_ int fd;
1980 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
1984 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1985 * by our own TIOCNOTTY */
1986 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1988 if (ioctl(fd, TIOCNOTTY) < 0)
1991 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1996 int sigaction_many(const struct sigaction *sa, ...) {
2001 while ((sig = va_arg(ap, int)) > 0)
2002 if (sigaction(sig, sa, NULL) < 0)
2009 int ignore_signals(int sig, ...) {
2010 struct sigaction sa = {
2011 .sa_handler = SIG_IGN,
2012 .sa_flags = SA_RESTART,
2018 if (sigaction(sig, &sa, NULL) < 0)
2022 while ((sig = va_arg(ap, int)) > 0)
2023 if (sigaction(sig, &sa, NULL) < 0)
2030 int default_signals(int sig, ...) {
2031 struct sigaction sa = {
2032 .sa_handler = SIG_DFL,
2033 .sa_flags = SA_RESTART,
2038 if (sigaction(sig, &sa, NULL) < 0)
2042 while ((sig = va_arg(ap, int)) > 0)
2043 if (sigaction(sig, &sa, NULL) < 0)
2050 int close_pipe(int p[]) {
2056 a = close_nointr(p[0]);
2061 b = close_nointr(p[1]);
2065 return a < 0 ? a : b;
2068 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2075 while (nbytes > 0) {
2078 k = read(fd, p, nbytes);
2079 if (k < 0 && errno == EINTR)
2082 if (k < 0 && errno == EAGAIN && do_poll) {
2084 /* We knowingly ignore any return value here,
2085 * and expect that any error/EOF is reported
2088 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2093 return n > 0 ? n : (k < 0 ? -errno : 0);
2103 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2104 const uint8_t *p = buf;
2110 while (nbytes > 0) {
2113 k = write(fd, p, nbytes);
2114 if (k < 0 && errno == EINTR)
2117 if (k < 0 && errno == EAGAIN && do_poll) {
2119 /* We knowingly ignore any return value here,
2120 * and expect that any error/EOF is reported
2123 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2128 return n > 0 ? n : (k < 0 ? -errno : 0);
2138 int parse_bytes(const char *t, off_t *bytes) {
2139 static const struct {
2141 unsigned long long factor;
2145 { "M", 1024ULL*1024ULL },
2146 { "G", 1024ULL*1024ULL*1024ULL },
2147 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2148 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2149 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2154 unsigned long long r = 0;
2166 l = strtoll(p, &e, 10);
2177 e += strspn(e, WHITESPACE);
2179 for (i = 0; i < ELEMENTSOF(table); i++)
2180 if (startswith(e, table[i].suffix)) {
2181 unsigned long long tmp;
2182 if ((unsigned long long) l > ULLONG_MAX / table[i].factor)
2184 tmp = l * table[i].factor;
2185 if (tmp > ULLONG_MAX - r)
2189 if ((unsigned long long) (off_t) r != r)
2192 p = e + strlen(table[i].suffix);
2196 if (i >= ELEMENTSOF(table))
2206 int make_stdio(int fd) {
2211 r = dup3(fd, STDIN_FILENO, 0);
2212 s = dup3(fd, STDOUT_FILENO, 0);
2213 t = dup3(fd, STDERR_FILENO, 0);
2216 close_nointr_nofail(fd);
2218 if (r < 0 || s < 0 || t < 0)
2221 /* We rely here that the new fd has O_CLOEXEC not set */
2226 int make_null_stdio(void) {
2229 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2233 return make_stdio(null_fd);
2236 bool is_device_path(const char *path) {
2238 /* Returns true on paths that refer to a device, either in
2239 * sysfs or in /dev */
2242 path_startswith(path, "/dev/") ||
2243 path_startswith(path, "/sys/");
2246 int dir_is_empty(const char *path) {
2247 _cleanup_closedir_ DIR *d;
2258 if (!de && errno != 0)
2264 if (!ignore_file(de->d_name))
2269 char* dirname_malloc(const char *path) {
2270 char *d, *dir, *dir2;
2287 int dev_urandom(void *p, size_t n) {
2288 _cleanup_close_ int fd;
2291 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2293 return errno == ENOENT ? -ENOSYS : -errno;
2295 k = loop_read(fd, p, n, true);
2298 if ((size_t) k != n)
2304 void random_bytes(void *p, size_t n) {
2305 static bool srand_called = false;
2309 r = dev_urandom(p, n);
2313 /* If some idiot made /dev/urandom unavailable to us, he'll
2314 * get a PRNG instead. */
2316 if (!srand_called) {
2319 #ifdef HAVE_SYS_AUXV_H
2320 /* The kernel provides us with a bit of entropy in
2321 * auxv, so let's try to make use of that to seed the
2322 * pseudo-random generator. It's better than
2327 auxv = (void*) getauxval(AT_RANDOM);
2329 x ^= *(unsigned*) auxv;
2332 x ^= (unsigned) now(CLOCK_REALTIME);
2333 x ^= (unsigned) gettid();
2336 srand_called = true;
2339 for (q = p; q < (uint8_t*) p + n; q ++)
2343 void rename_process(const char name[8]) {
2346 /* This is a like a poor man's setproctitle(). It changes the
2347 * comm field, argv[0], and also the glibc's internally used
2348 * name of the process. For the first one a limit of 16 chars
2349 * applies, to the second one usually one of 10 (i.e. length
2350 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2351 * "systemd"). If you pass a longer string it will be
2354 prctl(PR_SET_NAME, name);
2356 if (program_invocation_name)
2357 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2359 if (saved_argc > 0) {
2363 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2365 for (i = 1; i < saved_argc; i++) {
2369 memzero(saved_argv[i], strlen(saved_argv[i]));
2374 void sigset_add_many(sigset_t *ss, ...) {
2381 while ((sig = va_arg(ap, int)) > 0)
2382 assert_se(sigaddset(ss, sig) == 0);
2386 char* gethostname_malloc(void) {
2389 assert_se(uname(&u) >= 0);
2391 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2392 return strdup(u.nodename);
2394 return strdup(u.sysname);
2397 bool hostname_is_set(void) {
2400 assert_se(uname(&u) >= 0);
2402 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2405 static char *lookup_uid(uid_t uid) {
2408 _cleanup_free_ char *buf = NULL;
2409 struct passwd pwbuf, *pw = NULL;
2411 /* Shortcut things to avoid NSS lookups */
2413 return strdup("root");
2415 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2419 buf = malloc(bufsize);
2423 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2424 return strdup(pw->pw_name);
2426 if (asprintf(&name, "%lu", (unsigned long) uid) < 0)
2432 char* getlogname_malloc(void) {
2436 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2441 return lookup_uid(uid);
2444 char *getusername_malloc(void) {
2451 return lookup_uid(getuid());
2454 int getttyname_malloc(int fd, char **r) {
2455 char path[PATH_MAX], *c;
2460 k = ttyname_r(fd, path, sizeof(path));
2466 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2474 int getttyname_harder(int fd, char **r) {
2478 k = getttyname_malloc(fd, &s);
2482 if (streq(s, "tty")) {
2484 return get_ctty(0, NULL, r);
2491 int get_ctty_devnr(pid_t pid, dev_t *d) {
2493 _cleanup_free_ char *line = NULL;
2495 unsigned long ttynr;
2499 p = procfs_file_alloca(pid, "stat");
2500 r = read_one_line_file(p, &line);
2504 p = strrchr(line, ')');
2514 "%*d " /* session */
2519 if (major(ttynr) == 0 && minor(ttynr) == 0)
2528 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2529 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *b = NULL;
2530 _cleanup_free_ char *s = NULL;
2537 k = get_ctty_devnr(pid, &devnr);
2541 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2543 k = readlink_malloc(fn, &s);
2549 /* This is an ugly hack */
2550 if (major(devnr) == 136) {
2551 asprintf(&b, "pts/%lu", (unsigned long) minor(devnr));
2555 /* Probably something like the ptys which have no
2556 * symlink in /dev/char. Let's return something
2557 * vaguely useful. */
2563 if (startswith(s, "/dev/"))
2565 else if (startswith(s, "../"))
2583 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2589 /* This returns the first error we run into, but nevertheless
2590 * tries to go on. This closes the passed fd. */
2594 close_nointr_nofail(fd);
2596 return errno == ENOENT ? 0 : -errno;
2601 bool is_dir, keep_around;
2607 if (!de && errno != 0) {
2616 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2619 if (de->d_type == DT_UNKNOWN ||
2621 (de->d_type == DT_DIR && root_dev)) {
2622 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2623 if (ret == 0 && errno != ENOENT)
2628 is_dir = S_ISDIR(st.st_mode);
2631 (st.st_uid == 0 || st.st_uid == getuid()) &&
2632 (st.st_mode & S_ISVTX);
2634 is_dir = de->d_type == DT_DIR;
2635 keep_around = false;
2641 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2642 if (root_dev && st.st_dev != root_dev->st_dev)
2645 subdir_fd = openat(fd, de->d_name,
2646 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2647 if (subdir_fd < 0) {
2648 if (ret == 0 && errno != ENOENT)
2653 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2654 if (r < 0 && ret == 0)
2658 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2659 if (ret == 0 && errno != ENOENT)
2663 } else if (!only_dirs && !keep_around) {
2665 if (unlinkat(fd, de->d_name, 0) < 0) {
2666 if (ret == 0 && errno != ENOENT)
2677 _pure_ static int is_temporary_fs(struct statfs *s) {
2680 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2681 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2684 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2689 if (fstatfs(fd, &s) < 0) {
2690 close_nointr_nofail(fd);
2694 /* We refuse to clean disk file systems with this call. This
2695 * is extra paranoia just to be sure we never ever remove
2697 if (!is_temporary_fs(&s)) {
2698 log_error("Attempted to remove disk file system, and we can't allow that.");
2699 close_nointr_nofail(fd);
2703 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2706 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2712 /* We refuse to clean the root file system with this
2713 * call. This is extra paranoia to never cause a really
2714 * seriously broken system. */
2715 if (path_equal(path, "/")) {
2716 log_error("Attempted to remove entire root file system, and we can't allow that.");
2720 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2723 if (errno != ENOTDIR)
2727 if (statfs(path, &s) < 0)
2730 if (!is_temporary_fs(&s)) {
2731 log_error("Attempted to remove disk file system, and we can't allow that.");
2736 if (delete_root && !only_dirs)
2737 if (unlink(path) < 0 && errno != ENOENT)
2744 if (fstatfs(fd, &s) < 0) {
2745 close_nointr_nofail(fd);
2749 if (!is_temporary_fs(&s)) {
2750 log_error("Attempted to remove disk file system, and we can't allow that.");
2751 close_nointr_nofail(fd);
2756 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2759 if (honour_sticky && file_is_priv_sticky(path) > 0)
2762 if (rmdir(path) < 0 && errno != ENOENT) {
2771 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2772 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2775 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2776 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2779 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2782 /* Under the assumption that we are running privileged we
2783 * first change the access mode and only then hand out
2784 * ownership to avoid a window where access is too open. */
2786 if (mode != (mode_t) -1)
2787 if (chmod(path, mode) < 0)
2790 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2791 if (chown(path, uid, gid) < 0)
2797 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2800 /* Under the assumption that we are running privileged we
2801 * first change the access mode and only then hand out
2802 * ownership to avoid a window where access is too open. */
2804 if (mode != (mode_t) -1)
2805 if (fchmod(fd, mode) < 0)
2808 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2809 if (fchown(fd, uid, gid) < 0)
2815 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2819 /* Allocates the cpuset in the right size */
2822 if (!(r = CPU_ALLOC(n)))
2825 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2826 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2836 if (errno != EINVAL)
2843 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2844 static const char status_indent[] = " "; /* "[" STATUS "] " */
2845 _cleanup_free_ char *s = NULL;
2846 _cleanup_close_ int fd = -1;
2847 struct iovec iovec[6] = {};
2849 static bool prev_ephemeral;
2853 /* This is independent of logging, as status messages are
2854 * optional and go exclusively to the console. */
2856 if (vasprintf(&s, format, ap) < 0)
2859 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2872 sl = status ? sizeof(status_indent)-1 : 0;
2878 e = ellipsize(s, emax, 75);
2886 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2887 prev_ephemeral = ephemeral;
2890 if (!isempty(status)) {
2891 IOVEC_SET_STRING(iovec[n++], "[");
2892 IOVEC_SET_STRING(iovec[n++], status);
2893 IOVEC_SET_STRING(iovec[n++], "] ");
2895 IOVEC_SET_STRING(iovec[n++], status_indent);
2898 IOVEC_SET_STRING(iovec[n++], s);
2900 IOVEC_SET_STRING(iovec[n++], "\n");
2902 if (writev(fd, iovec, n) < 0)
2908 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
2914 va_start(ap, format);
2915 r = status_vprintf(status, ellipse, ephemeral, format, ap);
2921 char *replace_env(const char *format, char **env) {
2928 const char *e, *word = format;
2933 for (e = format; *e; e ++) {
2944 if (!(k = strnappend(r, word, e-word-1)))
2953 } else if (*e == '$') {
2954 if (!(k = strnappend(r, word, e-word)))
2970 t = strempty(strv_env_get_n(env, word+2, e-word-2));
2972 k = strappend(r, t);
2986 if (!(k = strnappend(r, word, e-word)))
2997 char **replace_env_argv(char **argv, char **env) {
2999 unsigned k = 0, l = 0;
3001 l = strv_length(argv);
3003 if (!(r = new(char*, l+1)))
3006 STRV_FOREACH(i, argv) {
3008 /* If $FOO appears as single word, replace it by the split up variable */
3009 if ((*i)[0] == '$' && (*i)[1] != '{') {
3014 e = strv_env_get(env, *i+1);
3017 if (!(m = strv_split_quoted(e))) {
3028 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3037 memcpy(r + k, m, q * sizeof(char*));
3045 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3046 if (!(r[k++] = replace_env(*i, env))) {
3056 int fd_columns(int fd) {
3057 struct winsize ws = {};
3059 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3068 unsigned columns(void) {
3072 if (_likely_(cached_columns > 0))
3073 return cached_columns;
3076 e = getenv("COLUMNS");
3081 c = fd_columns(STDOUT_FILENO);
3090 int fd_lines(int fd) {
3091 struct winsize ws = {};
3093 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3102 unsigned lines(void) {
3106 if (_likely_(cached_lines > 0))
3107 return cached_lines;
3110 e = getenv("LINES");
3115 l = fd_lines(STDOUT_FILENO);
3121 return cached_lines;
3124 /* intended to be used as a SIGWINCH sighandler */
3125 void columns_lines_cache_reset(int signum) {
3131 static int cached_on_tty = -1;
3133 if (_unlikely_(cached_on_tty < 0))
3134 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3136 return cached_on_tty;
3139 int running_in_chroot(void) {
3140 struct stat a = {}, b = {};
3142 /* Only works as root */
3143 if (stat("/proc/1/root", &a) < 0)
3146 if (stat("/", &b) < 0)
3150 a.st_dev != b.st_dev ||
3151 a.st_ino != b.st_ino;
3154 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3159 assert(percent <= 100);
3160 assert(new_length >= 3);
3162 if (old_length <= 3 || old_length <= new_length)
3163 return strndup(s, old_length);
3165 r = new0(char, new_length+1);
3169 x = (new_length * percent) / 100;
3171 if (x > new_length - 3)
3179 s + old_length - (new_length - x - 3),
3180 new_length - x - 3);
3185 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3189 unsigned k, len, len2;
3192 assert(percent <= 100);
3193 assert(new_length >= 3);
3195 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3196 if (ascii_is_valid(s))
3197 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3199 if (old_length <= 3 || old_length <= new_length)
3200 return strndup(s, old_length);
3202 x = (new_length * percent) / 100;
3204 if (x > new_length - 3)
3208 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3211 c = utf8_encoded_to_unichar(i);
3214 k += unichar_iswide(c) ? 2 : 1;
3217 if (k > x) /* last character was wide and went over quota */
3220 for (j = s + old_length; k < new_length && j > i; ) {
3223 j = utf8_prev_char(j);
3224 c = utf8_encoded_to_unichar(j);
3227 k += unichar_iswide(c) ? 2 : 1;
3231 /* we don't actually need to ellipsize */
3233 return memdup(s, old_length + 1);
3235 /* make space for ellipsis */
3236 j = utf8_next_char(j);
3239 len2 = s + old_length - j;
3240 e = new(char, len + 3 + len2 + 1);
3245 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3246 old_length, new_length, x, len, len2, k);
3250 e[len] = 0xe2; /* tri-dot ellipsis: … */
3254 memcpy(e + len + 3, j, len2 + 1);
3259 char *ellipsize(const char *s, size_t length, unsigned percent) {
3260 return ellipsize_mem(s, strlen(s), length, percent);
3263 int touch(const char *path) {
3268 /* This just opens the file for writing, ensuring it
3269 * exists. It doesn't call utimensat() the way /usr/bin/touch
3272 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
3276 close_nointr_nofail(fd);
3280 char *unquote(const char *s, const char* quotes) {
3284 /* This is rather stupid, simply removes the heading and
3285 * trailing quotes if there is one. Doesn't care about
3286 * escaping or anything. We should make this smarter one
3293 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3294 return strndup(s+1, l-2);
3299 char *normalize_env_assignment(const char *s) {
3300 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3303 eq = strchr(s, '=');
3315 memmove(r, t, strlen(t) + 1);
3319 name = strndup(s, eq - s);
3327 value = unquote(strstrip(p), QUOTES);
3331 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3337 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3348 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3360 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3367 r = wait_for_terminate(pid, &status);
3369 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3373 if (status.si_code == CLD_EXITED) {
3374 if (status.si_status != 0) {
3375 log_warning("%s failed with error code %i.", name, status.si_status);
3376 return status.si_status;
3379 log_debug("%s succeeded.", name);
3382 } else if (status.si_code == CLD_KILLED ||
3383 status.si_code == CLD_DUMPED) {
3385 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3389 log_warning("%s failed due to unknown reason.", name);
3393 noreturn void freeze(void) {
3395 /* Make sure nobody waits for us on a socket anymore */
3396 close_all_fds(NULL, 0);
3404 bool null_or_empty(struct stat *st) {
3407 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3410 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3416 int null_or_empty_path(const char *fn) {
3421 if (stat(fn, &st) < 0)
3424 return null_or_empty(&st);
3427 DIR *xopendirat(int fd, const char *name, int flags) {
3431 assert(!(flags & O_CREAT));
3433 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3439 close_nointr_nofail(nfd);
3446 int signal_from_string_try_harder(const char *s) {
3450 signo = signal_from_string(s);
3452 if (startswith(s, "SIG"))
3453 return signal_from_string(s+3);
3458 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3459 _cleanup_free_ char *t = NULL, *u = NULL;
3463 u = unquote(tagvalue, "\"\'");
3467 enc_len = strlen(u) * 4 + 1;
3468 t = new(char, enc_len);
3472 if (encode_devnode_name(u, t, enc_len) < 0)
3475 if (asprintf(&dn, "/dev/disk/by-%s/%s", by, t) < 0)
3481 char *fstab_node_to_udev_node(const char *p) {
3484 if (startswith(p, "LABEL="))
3485 return tag_to_udev_node(p+6, "label");
3487 if (startswith(p, "UUID="))
3488 return tag_to_udev_node(p+5, "uuid");
3490 if (startswith(p, "PARTUUID="))
3491 return tag_to_udev_node(p+9, "partuuid");
3493 if (startswith(p, "PARTLABEL="))
3494 return tag_to_udev_node(p+10, "partlabel");
3499 bool tty_is_vc(const char *tty) {
3502 if (startswith(tty, "/dev/"))
3505 return vtnr_from_tty(tty) >= 0;
3508 bool tty_is_console(const char *tty) {
3511 if (startswith(tty, "/dev/"))
3514 return streq(tty, "console");
3517 int vtnr_from_tty(const char *tty) {
3522 if (startswith(tty, "/dev/"))
3525 if (!startswith(tty, "tty") )
3528 if (tty[3] < '0' || tty[3] > '9')
3531 r = safe_atoi(tty+3, &i);
3535 if (i < 0 || i > 63)
3541 char *resolve_dev_console(char **active) {
3544 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3545 * (i.e. not read-only-mounted which is a sign for container setups) */
3547 if (path_is_read_only_fs("/sys") > 0)
3550 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3553 /* If multiple log outputs are configured the last one is what
3554 * /dev/console points to */
3555 tty = strrchr(*active, ' ');
3561 if (streq(tty, "tty0")) {
3564 /* Get the active VC (e.g. tty1) */
3565 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3567 tty = *active = tmp;
3574 bool tty_is_vc_resolve(const char *tty) {
3575 _cleanup_free_ char *active = NULL;
3579 if (startswith(tty, "/dev/"))
3582 if (streq(tty, "console")) {
3583 tty = resolve_dev_console(&active);
3588 return tty_is_vc(tty);
3591 const char *default_term_for_tty(const char *tty) {
3594 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3597 bool dirent_is_file(const struct dirent *de) {
3600 if (ignore_file(de->d_name))
3603 if (de->d_type != DT_REG &&
3604 de->d_type != DT_LNK &&
3605 de->d_type != DT_UNKNOWN)
3611 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3614 if (de->d_type != DT_REG &&
3615 de->d_type != DT_LNK &&
3616 de->d_type != DT_UNKNOWN)
3619 if (ignore_file_allow_backup(de->d_name))
3622 return endswith(de->d_name, suffix);
3625 void execute_directory(const char *directory, DIR *d, char *argv[]) {
3628 Hashmap *pids = NULL;
3632 /* Executes all binaries in a directory in parallel and
3633 * waits for them to finish. */
3636 if (!(_d = opendir(directory))) {
3638 if (errno == ENOENT)
3641 log_error("Failed to enumerate directory %s: %m", directory);
3648 if (!(pids = hashmap_new(trivial_hash_func, trivial_compare_func))) {
3649 log_error("Failed to allocate set.");
3653 while ((de = readdir(d))) {
3658 if (!dirent_is_file(de))
3661 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3666 if ((pid = fork()) < 0) {
3667 log_error("Failed to fork: %m");
3685 log_error("Failed to execute %s: %m", path);
3686 _exit(EXIT_FAILURE);
3689 log_debug("Spawned %s as %lu", path, (unsigned long) pid);
3691 if ((k = hashmap_put(pids, UINT_TO_PTR(pid), path)) < 0) {
3692 log_error("Failed to add PID to set: %s", strerror(-k));
3697 while (!hashmap_isempty(pids)) {
3698 pid_t pid = PTR_TO_UINT(hashmap_first_key(pids));
3702 if (waitid(P_PID, pid, &si, WEXITED) < 0) {
3707 log_error("waitid() failed: %m");
3711 if ((path = hashmap_remove(pids, UINT_TO_PTR(si.si_pid)))) {
3712 if (!is_clean_exit(si.si_code, si.si_status, NULL)) {
3713 if (si.si_code == CLD_EXITED)
3714 log_error("%s exited with exit status %i.", path, si.si_status);
3716 log_error("%s terminated by signal %s.", path, signal_to_string(si.si_status));
3718 log_debug("%s exited successfully.", path);
3729 hashmap_free_free(pids);
3732 int kill_and_sigcont(pid_t pid, int sig) {
3735 r = kill(pid, sig) < 0 ? -errno : 0;
3743 bool nulstr_contains(const char*nulstr, const char *needle) {
3749 NULSTR_FOREACH(i, nulstr)
3750 if (streq(i, needle))
3756 bool plymouth_running(void) {
3757 return access("/run/plymouth/pid", F_OK) >= 0;
3760 char* strshorten(char *s, size_t l) {
3769 static bool hostname_valid_char(char c) {
3771 (c >= 'a' && c <= 'z') ||
3772 (c >= 'A' && c <= 'Z') ||
3773 (c >= '0' && c <= '9') ||
3779 bool hostname_is_valid(const char *s) {
3786 for (p = s, dot = true; *p; p++) {
3793 if (!hostname_valid_char(*p))
3803 if (p-s > HOST_NAME_MAX)
3809 char* hostname_cleanup(char *s, bool lowercase) {
3813 for (p = s, d = s, dot = true; *p; p++) {
3820 } else if (hostname_valid_char(*p)) {
3821 *(d++) = lowercase ? tolower(*p) : *p;
3832 strshorten(s, HOST_NAME_MAX);
3837 int pipe_eof(int fd) {
3838 struct pollfd pollfd = {
3840 .events = POLLIN|POLLHUP,
3845 r = poll(&pollfd, 1, 0);
3852 return pollfd.revents & POLLHUP;
3855 int fd_wait_for_event(int fd, int event, usec_t t) {
3857 struct pollfd pollfd = {
3865 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
3872 return pollfd.revents;
3875 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
3886 t = new(char, strlen(path) + 1 + 6 + 1);
3890 fn = basename(path);
3894 stpcpy(stpcpy(t+k+1, fn), "XXXXXX");
3896 fd = mkostemp_safe(t, O_WRONLY|O_CLOEXEC);
3902 f = fdopen(fd, "we");
3915 int terminal_vhangup_fd(int fd) {
3918 if (ioctl(fd, TIOCVHANGUP) < 0)
3924 int terminal_vhangup(const char *name) {
3927 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3931 r = terminal_vhangup_fd(fd);
3932 close_nointr_nofail(fd);
3937 int vt_disallocate(const char *name) {
3941 /* Deallocate the VT if possible. If not possible
3942 * (i.e. because it is the active one), at least clear it
3943 * entirely (including the scrollback buffer) */
3945 if (!startswith(name, "/dev/"))
3948 if (!tty_is_vc(name)) {
3949 /* So this is not a VT. I guess we cannot deallocate
3950 * it then. But let's at least clear the screen */
3952 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3957 "\033[r" /* clear scrolling region */
3958 "\033[H" /* move home */
3959 "\033[2J", /* clear screen */
3961 close_nointr_nofail(fd);
3966 if (!startswith(name, "/dev/tty"))
3969 r = safe_atou(name+8, &u);
3976 /* Try to deallocate */
3977 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
3981 r = ioctl(fd, VT_DISALLOCATE, u);
3982 close_nointr_nofail(fd);
3990 /* Couldn't deallocate, so let's clear it fully with
3992 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3997 "\033[r" /* clear scrolling region */
3998 "\033[H" /* move home */
3999 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4001 close_nointr_nofail(fd);
4006 int copy_file(const char *from, const char *to, int flags) {
4007 _cleanup_close_ int fdf = -1;
4013 fdf = open(from, O_RDONLY|O_CLOEXEC|O_NOCTTY);
4017 fdt = open(to, flags|O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
4025 n = read(fdf, buf, sizeof(buf));
4039 k = loop_write(fdt, buf, n, false);
4041 r = k < 0 ? k : (errno ? -errno : -EIO);
4050 r = close_nointr(fdt);
4060 int symlink_atomic(const char *from, const char *to) {
4062 _cleanup_free_ char *t;
4072 t = new(char, strlen(to) + 1 + 16 + 1);
4080 x = stpcpy(t+k+1, fn);
4083 for (i = 0; i < 16; i++) {
4084 *(x++) = hexchar(u & 0xF);
4090 if (symlink(from, t) < 0)
4093 if (rename(t, to) < 0) {
4102 bool display_is_local(const char *display) {
4106 display[0] == ':' &&
4107 display[1] >= '0' &&
4111 int socket_from_display(const char *display, char **path) {
4118 if (!display_is_local(display))
4121 k = strspn(display+1, "0123456789");
4123 f = new(char, sizeof("/tmp/.X11-unix/X") + k);
4127 c = stpcpy(f, "/tmp/.X11-unix/X");
4128 memcpy(c, display+1, k);
4137 const char **username,
4138 uid_t *uid, gid_t *gid,
4140 const char **shell) {
4148 /* We enforce some special rules for uid=0: in order to avoid
4149 * NSS lookups for root we hardcode its data. */
4151 if (streq(*username, "root") || streq(*username, "0")) {
4169 if (parse_uid(*username, &u) >= 0) {
4173 /* If there are multiple users with the same id, make
4174 * sure to leave $USER to the configured value instead
4175 * of the first occurrence in the database. However if
4176 * the uid was configured by a numeric uid, then let's
4177 * pick the real username from /etc/passwd. */
4179 *username = p->pw_name;
4182 p = getpwnam(*username);
4186 return errno > 0 ? -errno : -ESRCH;
4198 *shell = p->pw_shell;
4203 char* uid_to_name(uid_t uid) {
4208 return strdup("root");
4212 return strdup(p->pw_name);
4214 if (asprintf(&r, "%lu", (unsigned long) uid) < 0)
4220 char* gid_to_name(gid_t gid) {
4225 return strdup("root");
4229 return strdup(p->gr_name);
4231 if (asprintf(&r, "%lu", (unsigned long) gid) < 0)
4237 int get_group_creds(const char **groupname, gid_t *gid) {
4243 /* We enforce some special rules for gid=0: in order to avoid
4244 * NSS lookups for root we hardcode its data. */
4246 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4247 *groupname = "root";
4255 if (parse_gid(*groupname, &id) >= 0) {
4260 *groupname = g->gr_name;
4263 g = getgrnam(*groupname);
4267 return errno > 0 ? -errno : -ESRCH;
4275 int in_gid(gid_t gid) {
4277 int ngroups_max, r, i;
4279 if (getgid() == gid)
4282 if (getegid() == gid)
4285 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4286 assert(ngroups_max > 0);
4288 gids = alloca(sizeof(gid_t) * ngroups_max);
4290 r = getgroups(ngroups_max, gids);
4294 for (i = 0; i < r; i++)
4301 int in_group(const char *name) {
4305 r = get_group_creds(&name, &gid);
4312 int glob_exists(const char *path) {
4313 _cleanup_globfree_ glob_t g = {};
4319 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4321 if (k == GLOB_NOMATCH)
4323 else if (k == GLOB_NOSPACE)
4326 return !strv_isempty(g.gl_pathv);
4328 return errno ? -errno : -EIO;
4331 int glob_extend(char ***strv, const char *path) {
4332 _cleanup_globfree_ glob_t g = {};
4337 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4339 if (k == GLOB_NOMATCH)
4341 else if (k == GLOB_NOSPACE)
4343 else if (k != 0 || strv_isempty(g.gl_pathv))
4344 return errno ? -errno : -EIO;
4346 STRV_FOREACH(p, g.gl_pathv) {
4347 k = strv_extend(strv, *p);
4355 int dirent_ensure_type(DIR *d, struct dirent *de) {
4361 if (de->d_type != DT_UNKNOWN)
4364 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4368 S_ISREG(st.st_mode) ? DT_REG :
4369 S_ISDIR(st.st_mode) ? DT_DIR :
4370 S_ISLNK(st.st_mode) ? DT_LNK :
4371 S_ISFIFO(st.st_mode) ? DT_FIFO :
4372 S_ISSOCK(st.st_mode) ? DT_SOCK :
4373 S_ISCHR(st.st_mode) ? DT_CHR :
4374 S_ISBLK(st.st_mode) ? DT_BLK :
4380 int in_search_path(const char *path, char **search) {
4382 _cleanup_free_ char *parent = NULL;
4385 r = path_get_parent(path, &parent);
4389 STRV_FOREACH(i, search)
4390 if (path_equal(parent, *i))
4396 int get_files_in_directory(const char *path, char ***list) {
4397 _cleanup_closedir_ DIR *d = NULL;
4398 size_t bufsize = 0, n = 0;
4399 _cleanup_strv_free_ char **l = NULL;
4403 /* Returns all files in a directory in *list, and the number
4404 * of files as return value. If list is NULL returns only the
4416 if (!de && errno != 0)
4421 dirent_ensure_type(d, de);
4423 if (!dirent_is_file(de))
4427 /* one extra slot is needed for the terminating NULL */
4428 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4431 l[n] = strdup(de->d_name);
4442 l = NULL; /* avoid freeing */
4448 char *strjoin(const char *x, ...) {
4462 t = va_arg(ap, const char *);
4467 if (n > ((size_t) -1) - l) {
4491 t = va_arg(ap, const char *);
4505 bool is_main_thread(void) {
4506 static thread_local int cached = 0;
4508 if (_unlikely_(cached == 0))
4509 cached = getpid() == gettid() ? 1 : -1;
4514 int block_get_whole_disk(dev_t d, dev_t *ret) {
4521 /* If it has a queue this is good enough for us */
4522 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4525 r = access(p, F_OK);
4533 /* If it is a partition find the originating device */
4534 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4537 r = access(p, F_OK);
4543 /* Get parent dev_t */
4544 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4547 r = read_one_line_file(p, &s);
4553 r = sscanf(s, "%u:%u", &m, &n);
4559 /* Only return this if it is really good enough for us. */
4560 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4563 r = access(p, F_OK);
4567 *ret = makedev(m, n);
4574 int file_is_priv_sticky(const char *p) {
4579 if (lstat(p, &st) < 0)
4583 (st.st_uid == 0 || st.st_uid == getuid()) &&
4584 (st.st_mode & S_ISVTX);
4587 static const char *const ioprio_class_table[] = {
4588 [IOPRIO_CLASS_NONE] = "none",
4589 [IOPRIO_CLASS_RT] = "realtime",
4590 [IOPRIO_CLASS_BE] = "best-effort",
4591 [IOPRIO_CLASS_IDLE] = "idle"
4594 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4596 static const char *const sigchld_code_table[] = {
4597 [CLD_EXITED] = "exited",
4598 [CLD_KILLED] = "killed",
4599 [CLD_DUMPED] = "dumped",
4600 [CLD_TRAPPED] = "trapped",
4601 [CLD_STOPPED] = "stopped",
4602 [CLD_CONTINUED] = "continued",
4605 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4607 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4608 [LOG_FAC(LOG_KERN)] = "kern",
4609 [LOG_FAC(LOG_USER)] = "user",
4610 [LOG_FAC(LOG_MAIL)] = "mail",
4611 [LOG_FAC(LOG_DAEMON)] = "daemon",
4612 [LOG_FAC(LOG_AUTH)] = "auth",
4613 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4614 [LOG_FAC(LOG_LPR)] = "lpr",
4615 [LOG_FAC(LOG_NEWS)] = "news",
4616 [LOG_FAC(LOG_UUCP)] = "uucp",
4617 [LOG_FAC(LOG_CRON)] = "cron",
4618 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4619 [LOG_FAC(LOG_FTP)] = "ftp",
4620 [LOG_FAC(LOG_LOCAL0)] = "local0",
4621 [LOG_FAC(LOG_LOCAL1)] = "local1",
4622 [LOG_FAC(LOG_LOCAL2)] = "local2",
4623 [LOG_FAC(LOG_LOCAL3)] = "local3",
4624 [LOG_FAC(LOG_LOCAL4)] = "local4",
4625 [LOG_FAC(LOG_LOCAL5)] = "local5",
4626 [LOG_FAC(LOG_LOCAL6)] = "local6",
4627 [LOG_FAC(LOG_LOCAL7)] = "local7"
4630 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4632 static const char *const log_level_table[] = {
4633 [LOG_EMERG] = "emerg",
4634 [LOG_ALERT] = "alert",
4635 [LOG_CRIT] = "crit",
4637 [LOG_WARNING] = "warning",
4638 [LOG_NOTICE] = "notice",
4639 [LOG_INFO] = "info",
4640 [LOG_DEBUG] = "debug"
4643 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4645 static const char* const sched_policy_table[] = {
4646 [SCHED_OTHER] = "other",
4647 [SCHED_BATCH] = "batch",
4648 [SCHED_IDLE] = "idle",
4649 [SCHED_FIFO] = "fifo",
4653 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4655 static const char* const rlimit_table[] = {
4656 [RLIMIT_CPU] = "LimitCPU",
4657 [RLIMIT_FSIZE] = "LimitFSIZE",
4658 [RLIMIT_DATA] = "LimitDATA",
4659 [RLIMIT_STACK] = "LimitSTACK",
4660 [RLIMIT_CORE] = "LimitCORE",
4661 [RLIMIT_RSS] = "LimitRSS",
4662 [RLIMIT_NOFILE] = "LimitNOFILE",
4663 [RLIMIT_AS] = "LimitAS",
4664 [RLIMIT_NPROC] = "LimitNPROC",
4665 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4666 [RLIMIT_LOCKS] = "LimitLOCKS",
4667 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4668 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4669 [RLIMIT_NICE] = "LimitNICE",
4670 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4671 [RLIMIT_RTTIME] = "LimitRTTIME"
4674 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4676 static const char* const ip_tos_table[] = {
4677 [IPTOS_LOWDELAY] = "low-delay",
4678 [IPTOS_THROUGHPUT] = "throughput",
4679 [IPTOS_RELIABILITY] = "reliability",
4680 [IPTOS_LOWCOST] = "low-cost",
4683 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4685 static const char *const __signal_table[] = {
4702 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4713 [SIGVTALRM] = "VTALRM",
4715 [SIGWINCH] = "WINCH",
4721 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4723 const char *signal_to_string(int signo) {
4724 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4727 name = __signal_to_string(signo);
4731 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4732 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4734 snprintf(buf, sizeof(buf), "%d", signo);
4739 int signal_from_string(const char *s) {
4744 signo = __signal_from_string(s);
4748 if (startswith(s, "RTMIN+")) {
4752 if (safe_atou(s, &u) >= 0) {
4753 signo = (int) u + offset;
4754 if (signo > 0 && signo < _NSIG)
4760 bool kexec_loaded(void) {
4761 bool loaded = false;
4764 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4772 int strdup_or_null(const char *a, char **b) {
4790 int prot_from_flags(int flags) {
4792 switch (flags & O_ACCMODE) {
4801 return PROT_READ|PROT_WRITE;
4808 char *format_bytes(char *buf, size_t l, off_t t) {
4811 static const struct {
4815 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4816 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4817 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4818 { "G", 1024ULL*1024ULL*1024ULL },
4819 { "M", 1024ULL*1024ULL },
4823 for (i = 0; i < ELEMENTSOF(table); i++) {
4825 if (t >= table[i].factor) {
4828 (unsigned long long) (t / table[i].factor),
4829 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4836 snprintf(buf, l, "%lluB", (unsigned long long) t);
4844 void* memdup(const void *p, size_t l) {
4857 int fd_inc_sndbuf(int fd, size_t n) {
4859 socklen_t l = sizeof(value);
4861 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4862 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4865 /* If we have the privileges we will ignore the kernel limit. */
4868 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4869 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
4875 int fd_inc_rcvbuf(int fd, size_t n) {
4877 socklen_t l = sizeof(value);
4879 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
4880 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4883 /* If we have the privileges we will ignore the kernel limit. */
4886 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
4887 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
4892 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
4893 pid_t parent_pid, agent_pid;
4895 bool stdout_is_tty, stderr_is_tty;
4903 parent_pid = getpid();
4905 /* Spawns a temporary TTY agent, making sure it goes away when
4912 if (agent_pid != 0) {
4919 * Make sure the agent goes away when the parent dies */
4920 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
4921 _exit(EXIT_FAILURE);
4923 /* Check whether our parent died before we were able
4924 * to set the death signal */
4925 if (getppid() != parent_pid)
4926 _exit(EXIT_SUCCESS);
4928 /* Don't leak fds to the agent */
4929 close_all_fds(except, n_except);
4931 stdout_is_tty = isatty(STDOUT_FILENO);
4932 stderr_is_tty = isatty(STDERR_FILENO);
4934 if (!stdout_is_tty || !stderr_is_tty) {
4935 /* Detach from stdout/stderr. and reopen
4936 * /dev/tty for them. This is important to
4937 * ensure that when systemctl is started via
4938 * popen() or a similar call that expects to
4939 * read EOF we actually do generate EOF and
4940 * not delay this indefinitely by because we
4941 * keep an unused copy of stdin around. */
4942 fd = open("/dev/tty", O_WRONLY);
4944 log_error("Failed to open /dev/tty: %m");
4945 _exit(EXIT_FAILURE);
4949 dup2(fd, STDOUT_FILENO);
4952 dup2(fd, STDERR_FILENO);
4958 /* Count arguments */
4960 for (n = 0; va_arg(ap, char*); n++)
4965 l = alloca(sizeof(char *) * (n + 1));
4967 /* Fill in arguments */
4969 for (i = 0; i <= n; i++)
4970 l[i] = va_arg(ap, char*);
4974 _exit(EXIT_FAILURE);
4977 int setrlimit_closest(int resource, const struct rlimit *rlim) {
4978 struct rlimit highest, fixed;
4982 if (setrlimit(resource, rlim) >= 0)
4988 /* So we failed to set the desired setrlimit, then let's try
4989 * to get as close as we can */
4990 assert_se(getrlimit(resource, &highest) == 0);
4992 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
4993 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
4995 if (setrlimit(resource, &fixed) < 0)
5001 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5002 _cleanup_fclose_ FILE *f = NULL;
5013 path = procfs_file_alloca(pid, "environ");
5015 f = fopen(path, "re");
5023 char line[LINE_MAX];
5026 for (i = 0; i < sizeof(line)-1; i++) {
5030 if (_unlikely_(c == EOF)) {
5040 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5041 value = strdup(line + l + 1);
5055 bool is_valid_documentation_url(const char *url) {
5058 if (startswith(url, "http://") && url[7])
5061 if (startswith(url, "https://") && url[8])
5064 if (startswith(url, "file:") && url[5])
5067 if (startswith(url, "info:") && url[5])
5070 if (startswith(url, "man:") && url[4])
5076 bool in_initrd(void) {
5077 static int saved = -1;
5083 /* We make two checks here:
5085 * 1. the flag file /etc/initrd-release must exist
5086 * 2. the root file system must be a memory file system
5088 * The second check is extra paranoia, since misdetecting an
5089 * initrd can have bad bad consequences due the initrd
5090 * emptying when transititioning to the main systemd.
5093 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5094 statfs("/", &s) >= 0 &&
5095 is_temporary_fs(&s);
5100 void warn_melody(void) {
5101 _cleanup_close_ int fd = -1;
5103 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5107 /* Yeah, this is synchronous. Kinda sucks. But well... */
5109 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5110 usleep(125*USEC_PER_MSEC);
5112 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5113 usleep(125*USEC_PER_MSEC);
5115 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5116 usleep(125*USEC_PER_MSEC);
5118 ioctl(fd, KIOCSOUND, 0);
5121 int make_console_stdio(void) {
5124 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5126 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5128 log_error("Failed to acquire terminal: %s", strerror(-fd));
5134 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5141 int get_home_dir(char **_h) {
5149 /* Take the user specified one */
5160 /* Hardcode home directory for root to avoid NSS */
5163 h = strdup("/root");
5171 /* Check the database... */
5175 return errno > 0 ? -errno : -ESRCH;
5177 if (!path_is_absolute(p->pw_dir))
5180 h = strdup(p->pw_dir);
5188 int get_shell(char **_s) {
5196 /* Take the user specified one */
5197 e = getenv("SHELL");
5207 /* Hardcode home directory for root to avoid NSS */
5210 s = strdup("/bin/sh");
5218 /* Check the database... */
5222 return errno > 0 ? -errno : -ESRCH;
5224 if (!path_is_absolute(p->pw_shell))
5227 s = strdup(p->pw_shell);
5235 bool filename_is_safe(const char *p) {
5249 if (strlen(p) > FILENAME_MAX)
5255 bool string_is_safe(const char *p) {
5260 for (t = p; *t; t++) {
5261 if (*t > 0 && *t < ' ')
5264 if (strchr("\\\"\'", *t))
5272 * Check if a string contains control characters.
5273 * Spaces and tabs are not considered control characters.
5275 bool string_has_cc(const char *p) {
5280 for (t = p; *t; t++)
5281 if (*t > 0 && *t < ' ' && *t != '\t')
5287 bool path_is_safe(const char *p) {
5292 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5295 if (strlen(p) > PATH_MAX)
5298 /* The following two checks are not really dangerous, but hey, they still are confusing */
5299 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5302 if (strstr(p, "//"))
5308 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5309 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5310 int (*compar) (const void *, const void *, void *), void *arg) {
5319 p = (void *)(((const char *) base) + (idx * size));
5320 comparison = compar(key, p, arg);
5323 else if (comparison > 0)
5331 bool is_locale_utf8(void) {
5333 static int cached_answer = -1;
5335 if (cached_answer >= 0)
5338 if (!setlocale(LC_ALL, "")) {
5339 cached_answer = true;
5343 set = nl_langinfo(CODESET);
5345 cached_answer = true;
5349 if (streq(set, "UTF-8")) {
5350 cached_answer = true;
5354 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5355 * unset and everything can do to UTF-8 nowadays. */
5356 set = setlocale(LC_CTYPE, NULL);
5358 cached_answer = true;
5362 /* Check result, but ignore the result if C was set
5366 !getenv("LC_ALL") &&
5367 !getenv("LC_CTYPE") &&
5371 return (bool) cached_answer;
5374 const char *draw_special_char(DrawSpecialChar ch) {
5375 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5377 [DRAW_TREE_VERT] = "\342\224\202 ", /* │ */
5378 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5379 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5380 [DRAW_TREE_SPACE] = " ", /* */
5381 [DRAW_TRIANGULAR_BULLET] = "\342\200\243 ", /* ‣ */
5382 [DRAW_BLACK_CIRCLE] = "\342\227\217 ", /* ● */
5384 /* ASCII fallback */ {
5385 [DRAW_TREE_VERT] = "| ",
5386 [DRAW_TREE_BRANCH] = "|-",
5387 [DRAW_TREE_RIGHT] = "`-",
5388 [DRAW_TREE_SPACE] = " ",
5389 [DRAW_TRIANGULAR_BULLET] = "> ",
5390 [DRAW_BLACK_CIRCLE] = "* ",
5394 return draw_table[!is_locale_utf8()][ch];
5397 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5400 size_t l, old_len, new_len;
5406 old_len = strlen(old_string);
5407 new_len = strlen(new_string);
5420 if (!startswith(f, old_string)) {
5426 nl = l - old_len + new_len;
5427 a = realloc(r, nl + 1);
5435 t = stpcpy(t, new_string);
5447 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5448 const char *i, *begin = NULL;
5453 } state = STATE_OTHER;
5455 size_t osz = 0, isz;
5461 /* Strips ANSI color and replaces TABs by 8 spaces */
5463 isz = _isz ? *_isz : strlen(*ibuf);
5465 f = open_memstream(&obuf, &osz);
5469 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5474 if (i >= *ibuf + isz) /* EOT */
5476 else if (*i == '\x1B')
5477 state = STATE_ESCAPE;
5478 else if (*i == '\t')
5485 if (i >= *ibuf + isz) { /* EOT */
5488 } else if (*i == '[') {
5489 state = STATE_BRACKET;
5494 state = STATE_OTHER;
5501 if (i >= *ibuf + isz || /* EOT */
5502 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5505 state = STATE_OTHER;
5507 } else if (*i == 'm')
5508 state = STATE_OTHER;
5530 int on_ac_power(void) {
5531 bool found_offline = false, found_online = false;
5532 _cleanup_closedir_ DIR *d = NULL;
5534 d = opendir("/sys/class/power_supply");
5540 _cleanup_close_ int fd = -1, device = -1;
5546 if (!de && errno != 0)
5552 if (ignore_file(de->d_name))
5555 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5557 if (errno == ENOENT || errno == ENOTDIR)
5563 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5565 if (errno == ENOENT)
5571 n = read(fd, contents, sizeof(contents));
5575 if (n != 6 || memcmp(contents, "Mains\n", 6))
5578 close_nointr_nofail(fd);
5579 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5581 if (errno == ENOENT)
5587 n = read(fd, contents, sizeof(contents));
5591 if (n != 2 || contents[1] != '\n')
5594 if (contents[0] == '1') {
5595 found_online = true;
5597 } else if (contents[0] == '0')
5598 found_offline = true;
5603 return found_online || !found_offline;
5606 static int search_and_fopen_internal(const char *path, const char *mode, char **search, FILE **_f) {
5613 if (!path_strv_canonicalize_absolute_uniq(search, NULL))
5616 STRV_FOREACH(i, search) {
5617 _cleanup_free_ char *p = NULL;
5620 p = strjoin(*i, "/", path, NULL);
5630 if (errno != ENOENT)
5637 int search_and_fopen(const char *path, const char *mode, const char **search, FILE **_f) {
5638 _cleanup_strv_free_ char **copy = NULL;
5644 if (path_is_absolute(path)) {
5647 f = fopen(path, mode);
5656 copy = strv_copy((char**) search);
5660 return search_and_fopen_internal(path, mode, copy, _f);
5663 int search_and_fopen_nulstr(const char *path, const char *mode, const char *search, FILE **_f) {
5664 _cleanup_strv_free_ char **s = NULL;
5666 if (path_is_absolute(path)) {
5669 f = fopen(path, mode);
5678 s = strv_split_nulstr(search);
5682 return search_and_fopen_internal(path, mode, s, _f);
5685 char *strextend(char **x, ...) {
5692 l = f = *x ? strlen(*x) : 0;
5699 t = va_arg(ap, const char *);
5704 if (n > ((size_t) -1) - l) {
5713 r = realloc(*x, l+1);
5723 t = va_arg(ap, const char *);
5737 char *strrep(const char *s, unsigned n) {
5745 p = r = malloc(l * n + 1);
5749 for (i = 0; i < n; i++)
5756 void* greedy_realloc(void **p, size_t *allocated, size_t need) {
5763 if (*allocated >= need)
5766 a = MAX(64u, need * 2);
5768 /* check for overflows */
5781 void* greedy_realloc0(void **p, size_t *allocated, size_t need) {
5790 q = greedy_realloc(p, allocated, need);
5794 if (*allocated > prev)
5795 memzero(&q[prev], *allocated - prev);
5800 bool id128_is_valid(const char *s) {
5806 /* Simple formatted 128bit hex string */
5808 for (i = 0; i < l; i++) {
5811 if (!(c >= '0' && c <= '9') &&
5812 !(c >= 'a' && c <= 'z') &&
5813 !(c >= 'A' && c <= 'Z'))
5817 } else if (l == 36) {
5819 /* Formatted UUID */
5821 for (i = 0; i < l; i++) {
5824 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5828 if (!(c >= '0' && c <= '9') &&
5829 !(c >= 'a' && c <= 'z') &&
5830 !(c >= 'A' && c <= 'Z'))
5841 int split_pair(const char *s, const char *sep, char **l, char **r) {
5856 a = strndup(s, x - s);
5860 b = strdup(x + strlen(sep));
5872 int shall_restore_state(void) {
5873 _cleanup_free_ char *line;
5878 r = proc_cmdline(&line);
5881 if (r == 0) /* Container ... */
5884 FOREACH_WORD_QUOTED(w, l, line, state)
5885 if (l == 23 && strneq(w, "systemd.restore_state=0", 23))
5891 int proc_cmdline(char **ret) {
5894 if (detect_container(NULL) > 0) {
5895 char *buf = NULL, *p;
5898 r = read_full_file("/proc/1/cmdline", &buf, &sz);
5902 for (p = buf; p + 1 < buf + sz; p++)
5911 r = read_one_line_file("/proc/cmdline", ret);
5918 int parse_proc_cmdline(int (*parse_word)(const char *word)) {
5919 _cleanup_free_ char *line = NULL;
5924 r = proc_cmdline(&line);
5926 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
5930 FOREACH_WORD_QUOTED(w, l, line, state) {
5931 _cleanup_free_ char *word;
5933 word = strndup(w, l);
5937 r = parse_word(word);
5939 log_error("Failed on cmdline argument %s: %s", word, strerror(-r));
5947 int container_get_leader(const char *machine, pid_t *pid) {
5948 _cleanup_free_ char *s = NULL, *class = NULL;
5956 p = strappenda("/run/systemd/machines/", machine);
5957 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
5965 if (!streq_ptr(class, "container"))
5968 r = parse_pid(s, &leader);
5978 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *root_fd) {
5979 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1;
5980 const char *pidns, *mntns, *root;
5988 mntns = procfs_file_alloca(pid, "ns/mnt");
5989 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
5993 pidns = procfs_file_alloca(pid, "ns/pid");
5994 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
5998 root = procfs_file_alloca(pid, "root");
5999 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
6003 *pidns_fd = pidnsfd;
6004 *mntns_fd = mntnsfd;
6012 int namespace_enter(int pidns_fd, int mntns_fd, int root_fd) {
6013 assert(pidns_fd >= 0);
6014 assert(mntns_fd >= 0);
6015 assert(root_fd >= 0);
6017 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6020 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6023 if (fchdir(root_fd) < 0)
6026 if (chroot(".") < 0)
6029 if (setresgid(0, 0, 0) < 0)
6032 if (setresuid(0, 0, 0) < 0)
6038 bool pid_is_unwaited(pid_t pid) {
6039 /* Checks whether a PID is still valid at all, including a zombie */
6044 if (kill(pid, 0) >= 0)
6047 return errno != ESRCH;
6050 bool pid_is_alive(pid_t pid) {
6053 /* Checks whether a PID is still valid and not a zombie */
6058 r = get_process_state(pid);
6059 if (r == -ENOENT || r == 'Z')
6065 int getpeercred(int fd, struct ucred *ucred) {
6066 socklen_t n = sizeof(struct ucred);
6073 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6077 if (n != sizeof(struct ucred))
6080 /* Check if the data is actually useful and not suppressed due
6081 * to namespacing issues */
6089 int getpeersec(int fd, char **ret) {
6101 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6105 if (errno != ERANGE)
6112 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6128 /* This is much like like mkostemp() but is subject to umask(). */
6129 int mkostemp_safe(char *pattern, int flags) {
6130 _cleanup_umask_ mode_t u;
6137 fd = mkostemp(pattern, flags);
6144 int open_tmpfile(const char *path, int flags) {
6151 /* Try O_TMPFILE first, if it is supported */
6152 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6157 /* Fall back to unguessable name + unlinking */
6158 p = strappenda(path, "/systemd-tmp-XXXXXX");
6160 fd = mkostemp_safe(p, flags);
6168 int fd_warn_permissions(const char *path, int fd) {
6171 if (fstat(fd, &st) < 0)
6174 if (st.st_mode & 0111)
6175 log_warning("Configuration file %s is marked executable. Please remove executable permission bits. Proceeding anyway.", path);
6177 if (st.st_mode & 0002)
6178 log_warning("Configuration file %s is marked world-writable. Please remove world writability permission bits. Proceeding anyway.", path);
6180 if (getpid() == 1 && (st.st_mode & 0044) != 0044)
6181 log_warning("Configuration file %s is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.", path);
6186 unsigned long personality_from_string(const char *p) {
6188 /* Parse a personality specifier. We introduce our own
6189 * identifiers that indicate specific ABIs, rather than just
6190 * hints regarding the register size, since we want to keep
6191 * things open for multiple locally supported ABIs for the
6192 * same register size. We try to reuse the ABI identifiers
6193 * used by libseccomp. */
6195 #if defined(__x86_64__)
6197 if (streq(p, "x86"))
6200 if (streq(p, "x86-64"))
6203 #elif defined(__i386__)
6205 if (streq(p, "x86"))
6209 /* personality(7) documents that 0xffffffffUL is used for
6210 * querying the current personality, hence let's use that here
6211 * as error indicator. */
6212 return 0xffffffffUL;
6215 const char* personality_to_string(unsigned long p) {
6217 #if defined(__x86_64__)
6219 if (p == PER_LINUX32)
6225 #elif defined(__i386__)
~ianmdlvl / elogind.git / blob