1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <linux/magic.h>
61 #include <sys/personality.h>
65 #ifdef HAVE_SYS_AUXV_H
76 #include "path-util.h"
77 #include "exit-status.h"
81 #include "device-nodes.h"
89 char **saved_argv = NULL;
91 static volatile unsigned cached_columns = 0;
92 static volatile unsigned cached_lines = 0;
94 size_t page_size(void) {
95 static thread_local size_t pgsz = 0;
98 if (_likely_(pgsz > 0))
101 r = sysconf(_SC_PAGESIZE);
108 bool streq_ptr(const char *a, const char *b) {
110 /* Like streq(), but tries to make sense of NULL pointers */
121 char* endswith(const char *s, const char *postfix) {
128 pl = strlen(postfix);
131 return (char*) s + sl;
136 if (memcmp(s + sl - pl, postfix, pl) != 0)
139 return (char*) s + sl - pl;
142 bool first_word(const char *s, const char *word) {
157 if (memcmp(s, word, wl) != 0)
161 strchr(WHITESPACE, s[wl]);
164 int close_nointr(int fd) {
170 /* Just ignore EINTR; a retry loop is the wrong
171 * thing to do on Linux.
173 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
174 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
175 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
176 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
178 if (_unlikely_(r < 0 && errno == EINTR))
186 int safe_close(int fd) {
189 * Like close_nointr() but cannot fail. Guarantees errno is
190 * unchanged. Is a NOP with negative fds passed, and returns
191 * -1, so that it can be used in this syntax:
193 * fd = safe_close(fd);
198 assert_se(close_nointr(fd) == 0);
204 void close_many(const int fds[], unsigned n_fd) {
207 assert(fds || n_fd <= 0);
209 for (i = 0; i < n_fd; i++)
213 int unlink_noerrno(const char *path) {
224 int parse_boolean(const char *v) {
227 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
229 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
235 int parse_pid(const char *s, pid_t* ret_pid) {
236 unsigned long ul = 0;
243 r = safe_atolu(s, &ul);
249 if ((unsigned long) pid != ul)
259 int parse_uid(const char *s, uid_t* ret_uid) {
260 unsigned long ul = 0;
267 r = safe_atolu(s, &ul);
273 if ((unsigned long) uid != ul)
280 int safe_atou(const char *s, unsigned *ret_u) {
288 l = strtoul(s, &x, 0);
290 if (!x || x == s || *x || errno)
291 return errno > 0 ? -errno : -EINVAL;
293 if ((unsigned long) (unsigned) l != l)
296 *ret_u = (unsigned) l;
300 int safe_atoi(const char *s, int *ret_i) {
308 l = strtol(s, &x, 0);
310 if (!x || x == s || *x || errno)
311 return errno > 0 ? -errno : -EINVAL;
313 if ((long) (int) l != l)
320 int safe_atollu(const char *s, long long unsigned *ret_llu) {
322 unsigned long long l;
328 l = strtoull(s, &x, 0);
330 if (!x || x == s || *x || errno)
331 return errno ? -errno : -EINVAL;
337 int safe_atolli(const char *s, long long int *ret_lli) {
345 l = strtoll(s, &x, 0);
347 if (!x || x == s || *x || errno)
348 return errno ? -errno : -EINVAL;
354 int safe_atod(const char *s, double *ret_d) {
361 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
366 if (!x || x == s || *x || errno)
367 return errno ? -errno : -EINVAL;
373 static size_t strcspn_escaped(const char *s, const char *reject) {
374 bool escaped = false;
377 for (n=0; s[n]; n++) {
380 else if (s[n] == '\\')
382 else if (strchr(reject, s[n]))
388 /* Split a string into words. */
389 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
392 current = *state ? *state : (char*) c;
394 if (!*current || *c == 0)
397 current += strspn(current, separator);
401 if (quoted && strchr("\'\"", *current)) {
402 char quotechar = *(current++);
403 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
404 *state = current+*l+1;
406 *l = strcspn_escaped(current, separator);
409 *l = strcspn(current, separator);
413 return (char*) current;
416 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
418 _cleanup_free_ char *line = NULL;
430 p = procfs_file_alloca(pid, "stat");
431 r = read_one_line_file(p, &line);
435 /* Let's skip the pid and comm fields. The latter is enclosed
436 * in () but does not escape any () in its value, so let's
437 * skip over it manually */
439 p = strrchr(line, ')');
451 if ((long unsigned) (pid_t) ppid != ppid)
454 *_ppid = (pid_t) ppid;
459 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
461 _cleanup_free_ char *line = NULL;
467 p = procfs_file_alloca(pid, "stat");
468 r = read_one_line_file(p, &line);
472 /* Let's skip the pid and comm fields. The latter is enclosed
473 * in () but does not escape any () in its value, so let's
474 * skip over it manually */
476 p = strrchr(line, ')');
498 "%*d " /* priority */
500 "%*d " /* num_threads */
501 "%*d " /* itrealvalue */
502 "%llu " /* starttime */,
509 int fchmod_umask(int fd, mode_t m) {
514 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
520 char *truncate_nl(char *s) {
523 s[strcspn(s, NEWLINE)] = 0;
527 int get_process_state(pid_t pid) {
531 _cleanup_free_ char *line = NULL;
535 p = procfs_file_alloca(pid, "stat");
536 r = read_one_line_file(p, &line);
540 p = strrchr(line, ')');
546 if (sscanf(p, " %c", &state) != 1)
549 return (unsigned char) state;
552 int get_process_comm(pid_t pid, char **name) {
559 p = procfs_file_alloca(pid, "comm");
561 r = read_one_line_file(p, name);
568 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
569 _cleanup_fclose_ FILE *f = NULL;
577 p = procfs_file_alloca(pid, "cmdline");
583 if (max_length == 0) {
584 size_t len = 0, allocated = 0;
586 while ((c = getc(f)) != EOF) {
588 if (!GREEDY_REALLOC(r, allocated, len+2)) {
593 r[len++] = isprint(c) ? c : ' ';
603 r = new(char, max_length);
609 while ((c = getc(f)) != EOF) {
631 size_t n = MIN(left-1, 3U);
638 /* Kernel threads have no argv[] */
639 if (r == NULL || r[0] == 0) {
640 _cleanup_free_ char *t = NULL;
648 h = get_process_comm(pid, &t);
652 r = strjoin("[", t, "]", NULL);
661 int is_kernel_thread(pid_t pid) {
673 p = procfs_file_alloca(pid, "cmdline");
678 count = fread(&c, 1, 1, f);
682 /* Kernel threads have an empty cmdline */
685 return eof ? 1 : -errno;
690 int get_process_capeff(pid_t pid, char **capeff) {
696 p = procfs_file_alloca(pid, "status");
698 return get_status_field(p, "\nCapEff:", capeff);
701 int get_process_exe(pid_t pid, char **name) {
709 p = procfs_file_alloca(pid, "exe");
711 r = readlink_malloc(p, name);
713 return r == -ENOENT ? -ESRCH : r;
715 d = endswith(*name, " (deleted)");
722 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
723 _cleanup_fclose_ FILE *f = NULL;
733 p = procfs_file_alloca(pid, "status");
738 FOREACH_LINE(line, f, return -errno) {
743 if (startswith(l, field)) {
745 l += strspn(l, WHITESPACE);
747 l[strcspn(l, WHITESPACE)] = 0;
749 return parse_uid(l, uid);
756 int get_process_uid(pid_t pid, uid_t *uid) {
757 return get_process_id(pid, "Uid:", uid);
760 int get_process_gid(pid_t pid, gid_t *gid) {
761 assert_cc(sizeof(uid_t) == sizeof(gid_t));
762 return get_process_id(pid, "Gid:", gid);
765 char *strnappend(const char *s, const char *suffix, size_t b) {
773 return strndup(suffix, b);
782 if (b > ((size_t) -1) - a)
785 r = new(char, a+b+1);
790 memcpy(r+a, suffix, b);
796 char *strappend(const char *s, const char *suffix) {
797 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
800 int readlink_malloc(const char *p, char **ret) {
815 n = readlink(p, c, l-1);
822 if ((size_t) n < l-1) {
833 int readlink_and_make_absolute(const char *p, char **r) {
834 _cleanup_free_ char *target = NULL;
841 j = readlink_malloc(p, &target);
845 k = file_in_same_dir(p, target);
853 int readlink_and_canonicalize(const char *p, char **r) {
860 j = readlink_and_make_absolute(p, &t);
864 s = canonicalize_file_name(t);
871 path_kill_slashes(*r);
876 int reset_all_signal_handlers(void) {
879 for (sig = 1; sig < _NSIG; sig++) {
880 struct sigaction sa = {
881 .sa_handler = SIG_DFL,
882 .sa_flags = SA_RESTART,
885 if (sig == SIGKILL || sig == SIGSTOP)
888 /* On Linux the first two RT signals are reserved by
889 * glibc, and sigaction() will return EINVAL for them. */
890 if ((sigaction(sig, &sa, NULL) < 0))
898 char *strstrip(char *s) {
901 /* Drops trailing whitespace. Modifies the string in
902 * place. Returns pointer to first non-space character */
904 s += strspn(s, WHITESPACE);
906 for (e = strchr(s, 0); e > s; e --)
907 if (!strchr(WHITESPACE, e[-1]))
915 char *delete_chars(char *s, const char *bad) {
918 /* Drops all whitespace, regardless where in the string */
920 for (f = s, t = s; *f; f++) {
932 char *file_in_same_dir(const char *path, const char *filename) {
939 /* This removes the last component of path and appends
940 * filename, unless the latter is absolute anyway or the
943 if (path_is_absolute(filename))
944 return strdup(filename);
946 if (!(e = strrchr(path, '/')))
947 return strdup(filename);
949 k = strlen(filename);
950 if (!(r = new(char, e-path+1+k+1)))
953 memcpy(r, path, e-path+1);
954 memcpy(r+(e-path)+1, filename, k+1);
959 int rmdir_parents(const char *path, const char *stop) {
968 /* Skip trailing slashes */
969 while (l > 0 && path[l-1] == '/')
975 /* Skip last component */
976 while (l > 0 && path[l-1] != '/')
979 /* Skip trailing slashes */
980 while (l > 0 && path[l-1] == '/')
986 if (!(t = strndup(path, l)))
989 if (path_startswith(stop, t)) {
1005 char hexchar(int x) {
1006 static const char table[16] = "0123456789abcdef";
1008 return table[x & 15];
1011 int unhexchar(char c) {
1013 if (c >= '0' && c <= '9')
1016 if (c >= 'a' && c <= 'f')
1017 return c - 'a' + 10;
1019 if (c >= 'A' && c <= 'F')
1020 return c - 'A' + 10;
1025 char *hexmem(const void *p, size_t l) {
1029 z = r = malloc(l * 2 + 1);
1033 for (x = p; x < (const uint8_t*) p + l; x++) {
1034 *(z++) = hexchar(*x >> 4);
1035 *(z++) = hexchar(*x & 15);
1042 void *unhexmem(const char *p, size_t l) {
1048 z = r = malloc((l + 1) / 2 + 1);
1052 for (x = p; x < p + l; x += 2) {
1055 a = unhexchar(x[0]);
1057 b = unhexchar(x[1]);
1061 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1068 char octchar(int x) {
1069 return '0' + (x & 7);
1072 int unoctchar(char c) {
1074 if (c >= '0' && c <= '7')
1080 char decchar(int x) {
1081 return '0' + (x % 10);
1084 int undecchar(char c) {
1086 if (c >= '0' && c <= '9')
1092 char *cescape(const char *s) {
1098 /* Does C style string escaping. */
1100 r = new(char, strlen(s)*4 + 1);
1104 for (f = s, t = r; *f; f++)
1150 /* For special chars we prefer octal over
1151 * hexadecimal encoding, simply because glib's
1152 * g_strescape() does the same */
1153 if ((*f < ' ') || (*f >= 127)) {
1155 *(t++) = octchar((unsigned char) *f >> 6);
1156 *(t++) = octchar((unsigned char) *f >> 3);
1157 *(t++) = octchar((unsigned char) *f);
1168 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1175 /* Undoes C style string escaping, and optionally prefixes it. */
1177 pl = prefix ? strlen(prefix) : 0;
1179 r = new(char, pl+length+1);
1184 memcpy(r, prefix, pl);
1186 for (f = s, t = r + pl; f < s + length; f++) {
1229 /* This is an extension of the XDG syntax files */
1234 /* hexadecimal encoding */
1237 a = unhexchar(f[1]);
1238 b = unhexchar(f[2]);
1240 if (a < 0 || b < 0) {
1241 /* Invalid escape code, let's take it literal then */
1245 *(t++) = (char) ((a << 4) | b);
1260 /* octal encoding */
1263 a = unoctchar(f[0]);
1264 b = unoctchar(f[1]);
1265 c = unoctchar(f[2]);
1267 if (a < 0 || b < 0 || c < 0) {
1268 /* Invalid escape code, let's take it literal then */
1272 *(t++) = (char) ((a << 6) | (b << 3) | c);
1280 /* premature end of string.*/
1285 /* Invalid escape code, let's take it literal then */
1297 char *cunescape_length(const char *s, size_t length) {
1298 return cunescape_length_with_prefix(s, length, NULL);
1301 char *cunescape(const char *s) {
1304 return cunescape_length(s, strlen(s));
1307 char *xescape(const char *s, const char *bad) {
1311 /* Escapes all chars in bad, in addition to \ and all special
1312 * chars, in \xFF style escaping. May be reversed with
1315 r = new(char, strlen(s) * 4 + 1);
1319 for (f = s, t = r; *f; f++) {
1321 if ((*f < ' ') || (*f >= 127) ||
1322 (*f == '\\') || strchr(bad, *f)) {
1325 *(t++) = hexchar(*f >> 4);
1326 *(t++) = hexchar(*f);
1336 char *ascii_strlower(char *t) {
1341 for (p = t; *p; p++)
1342 if (*p >= 'A' && *p <= 'Z')
1343 *p = *p - 'A' + 'a';
1348 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1352 filename[0] == '.' ||
1353 streq(filename, "lost+found") ||
1354 streq(filename, "aquota.user") ||
1355 streq(filename, "aquota.group") ||
1356 endswith(filename, ".rpmnew") ||
1357 endswith(filename, ".rpmsave") ||
1358 endswith(filename, ".rpmorig") ||
1359 endswith(filename, ".dpkg-old") ||
1360 endswith(filename, ".dpkg-new") ||
1361 endswith(filename, ".swp");
1364 bool ignore_file(const char *filename) {
1367 if (endswith(filename, "~"))
1370 return ignore_file_allow_backup(filename);
1373 int fd_nonblock(int fd, bool nonblock) {
1378 if ((flags = fcntl(fd, F_GETFL, 0)) < 0)
1382 flags |= O_NONBLOCK;
1384 flags &= ~O_NONBLOCK;
1386 if (fcntl(fd, F_SETFL, flags) < 0)
1392 int fd_cloexec(int fd, bool cloexec) {
1397 if ((flags = fcntl(fd, F_GETFD, 0)) < 0)
1401 flags |= FD_CLOEXEC;
1403 flags &= ~FD_CLOEXEC;
1405 if (fcntl(fd, F_SETFD, flags) < 0)
1411 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1414 assert(n_fdset == 0 || fdset);
1416 for (i = 0; i < n_fdset; i++)
1423 int close_all_fds(const int except[], unsigned n_except) {
1428 assert(n_except == 0 || except);
1430 d = opendir("/proc/self/fd");
1435 /* When /proc isn't available (for example in chroots)
1436 * the fallback is brute forcing through the fd
1439 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1440 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1442 if (fd_in_set(fd, except, n_except))
1445 if (close_nointr(fd) < 0)
1446 if (errno != EBADF && r == 0)
1453 while ((de = readdir(d))) {
1456 if (ignore_file(de->d_name))
1459 if (safe_atoi(de->d_name, &fd) < 0)
1460 /* Let's better ignore this, just in case */
1469 if (fd_in_set(fd, except, n_except))
1472 if (close_nointr(fd) < 0) {
1473 /* Valgrind has its own FD and doesn't want to have it closed */
1474 if (errno != EBADF && r == 0)
1483 bool chars_intersect(const char *a, const char *b) {
1486 /* Returns true if any of the chars in a are in b. */
1487 for (p = a; *p; p++)
1494 bool fstype_is_network(const char *fstype) {
1495 static const char table[] =
1505 return nulstr_contains(table, fstype);
1509 _cleanup_close_ int fd;
1511 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1517 TIOCL_GETKMSGREDIRECT,
1521 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1524 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1527 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1533 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1534 struct termios old_termios, new_termios;
1536 char line[LINE_MAX];
1541 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1542 new_termios = old_termios;
1544 new_termios.c_lflag &= ~ICANON;
1545 new_termios.c_cc[VMIN] = 1;
1546 new_termios.c_cc[VTIME] = 0;
1548 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1551 if (t != (usec_t) -1) {
1552 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1553 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1558 k = fread(&c, 1, 1, f);
1560 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1566 *need_nl = c != '\n';
1573 if (t != (usec_t) -1)
1574 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1577 if (!fgets(line, sizeof(line), f))
1582 if (strlen(line) != 1)
1592 int ask(char *ret, const char *replies, const char *text, ...) {
1602 bool need_nl = true;
1605 fputs(ANSI_HIGHLIGHT_ON, stdout);
1612 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1616 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1619 if (r == -EBADMSG) {
1620 puts("Bad input, please try again.");
1631 if (strchr(replies, c)) {
1636 puts("Read unexpected character, please try again.");
1640 int reset_terminal_fd(int fd, bool switch_to_text) {
1641 struct termios termios;
1644 /* Set terminal to some sane defaults */
1648 /* We leave locked terminal attributes untouched, so that
1649 * Plymouth may set whatever it wants to set, and we don't
1650 * interfere with that. */
1652 /* Disable exclusive mode, just in case */
1653 ioctl(fd, TIOCNXCL);
1655 /* Switch to text mode */
1657 ioctl(fd, KDSETMODE, KD_TEXT);
1659 /* Enable console unicode mode */
1660 ioctl(fd, KDSKBMODE, K_UNICODE);
1662 if (tcgetattr(fd, &termios) < 0) {
1667 /* We only reset the stuff that matters to the software. How
1668 * hardware is set up we don't touch assuming that somebody
1669 * else will do that for us */
1671 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1672 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1673 termios.c_oflag |= ONLCR;
1674 termios.c_cflag |= CREAD;
1675 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1677 termios.c_cc[VINTR] = 03; /* ^C */
1678 termios.c_cc[VQUIT] = 034; /* ^\ */
1679 termios.c_cc[VERASE] = 0177;
1680 termios.c_cc[VKILL] = 025; /* ^X */
1681 termios.c_cc[VEOF] = 04; /* ^D */
1682 termios.c_cc[VSTART] = 021; /* ^Q */
1683 termios.c_cc[VSTOP] = 023; /* ^S */
1684 termios.c_cc[VSUSP] = 032; /* ^Z */
1685 termios.c_cc[VLNEXT] = 026; /* ^V */
1686 termios.c_cc[VWERASE] = 027; /* ^W */
1687 termios.c_cc[VREPRINT] = 022; /* ^R */
1688 termios.c_cc[VEOL] = 0;
1689 termios.c_cc[VEOL2] = 0;
1691 termios.c_cc[VTIME] = 0;
1692 termios.c_cc[VMIN] = 1;
1694 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1698 /* Just in case, flush all crap out */
1699 tcflush(fd, TCIOFLUSH);
1704 int reset_terminal(const char *name) {
1705 _cleanup_close_ int fd = -1;
1707 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1711 return reset_terminal_fd(fd, true);
1714 int open_terminal(const char *name, int mode) {
1719 * If a TTY is in the process of being closed opening it might
1720 * cause EIO. This is horribly awful, but unlikely to be
1721 * changed in the kernel. Hence we work around this problem by
1722 * retrying a couple of times.
1724 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1727 assert(!(mode & O_CREAT));
1730 fd = open(name, mode, 0);
1737 /* Max 1s in total */
1741 usleep(50 * USEC_PER_MSEC);
1762 int flush_fd(int fd) {
1763 struct pollfd pollfd = {
1773 r = poll(&pollfd, 1, 0);
1783 l = read(fd, buf, sizeof(buf));
1789 if (errno == EAGAIN)
1798 int acquire_terminal(
1802 bool ignore_tiocstty_eperm,
1805 int fd = -1, notify = -1, r = 0, wd = -1;
1810 /* We use inotify to be notified when the tty is closed. We
1811 * create the watch before checking if we can actually acquire
1812 * it, so that we don't lose any event.
1814 * Note: strictly speaking this actually watches for the
1815 * device being closed, it does *not* really watch whether a
1816 * tty loses its controlling process. However, unless some
1817 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1818 * its tty otherwise this will not become a problem. As long
1819 * as the administrator makes sure not configure any service
1820 * on the same tty as an untrusted user this should not be a
1821 * problem. (Which he probably should not do anyway.) */
1823 if (timeout != (usec_t) -1)
1824 ts = now(CLOCK_MONOTONIC);
1826 if (!fail && !force) {
1827 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1833 wd = inotify_add_watch(notify, name, IN_CLOSE);
1841 struct sigaction sa_old, sa_new = {
1842 .sa_handler = SIG_IGN,
1843 .sa_flags = SA_RESTART,
1847 r = flush_fd(notify);
1852 /* We pass here O_NOCTTY only so that we can check the return
1853 * value TIOCSCTTY and have a reliable way to figure out if we
1854 * successfully became the controlling process of the tty */
1855 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1859 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1860 * if we already own the tty. */
1861 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1863 /* First, try to get the tty */
1864 if (ioctl(fd, TIOCSCTTY, force) < 0)
1867 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1869 /* Sometimes it makes sense to ignore TIOCSCTTY
1870 * returning EPERM, i.e. when very likely we already
1871 * are have this controlling terminal. */
1872 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1875 if (r < 0 && (force || fail || r != -EPERM)) {
1884 assert(notify >= 0);
1887 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1889 struct inotify_event *e;
1891 if (timeout != (usec_t) -1) {
1894 n = now(CLOCK_MONOTONIC);
1895 if (ts + timeout < n) {
1900 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1910 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1913 if (errno == EINTR || errno == EAGAIN)
1920 e = (struct inotify_event*) inotify_buffer;
1925 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1930 step = sizeof(struct inotify_event) + e->len;
1931 assert(step <= (size_t) l);
1933 e = (struct inotify_event*) ((uint8_t*) e + step);
1940 /* We close the tty fd here since if the old session
1941 * ended our handle will be dead. It's important that
1942 * we do this after sleeping, so that we don't enter
1943 * an endless loop. */
1949 r = reset_terminal_fd(fd, true);
1951 log_warning("Failed to reset terminal: %s", strerror(-r));
1962 int release_terminal(void) {
1964 struct sigaction sa_old, sa_new = {
1965 .sa_handler = SIG_IGN,
1966 .sa_flags = SA_RESTART,
1968 _cleanup_close_ int fd;
1970 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
1974 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1975 * by our own TIOCNOTTY */
1976 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1978 if (ioctl(fd, TIOCNOTTY) < 0)
1981 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1986 int sigaction_many(const struct sigaction *sa, ...) {
1991 while ((sig = va_arg(ap, int)) > 0)
1992 if (sigaction(sig, sa, NULL) < 0)
1999 int ignore_signals(int sig, ...) {
2000 struct sigaction sa = {
2001 .sa_handler = SIG_IGN,
2002 .sa_flags = SA_RESTART,
2008 if (sigaction(sig, &sa, NULL) < 0)
2012 while ((sig = va_arg(ap, int)) > 0)
2013 if (sigaction(sig, &sa, NULL) < 0)
2020 int default_signals(int sig, ...) {
2021 struct sigaction sa = {
2022 .sa_handler = SIG_DFL,
2023 .sa_flags = SA_RESTART,
2028 if (sigaction(sig, &sa, NULL) < 0)
2032 while ((sig = va_arg(ap, int)) > 0)
2033 if (sigaction(sig, &sa, NULL) < 0)
2040 int close_pipe(int p[]) {
2046 a = close_nointr(p[0]);
2051 b = close_nointr(p[1]);
2055 return a < 0 ? a : b;
2058 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2065 while (nbytes > 0) {
2068 k = read(fd, p, nbytes);
2069 if (k < 0 && errno == EINTR)
2072 if (k < 0 && errno == EAGAIN && do_poll) {
2074 /* We knowingly ignore any return value here,
2075 * and expect that any error/EOF is reported
2078 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2083 return n > 0 ? n : (k < 0 ? -errno : 0);
2093 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2094 const uint8_t *p = buf;
2100 while (nbytes > 0) {
2103 k = write(fd, p, nbytes);
2104 if (k < 0 && errno == EINTR)
2107 if (k < 0 && errno == EAGAIN && do_poll) {
2109 /* We knowingly ignore any return value here,
2110 * and expect that any error/EOF is reported
2113 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2118 return n > 0 ? n : (k < 0 ? -errno : 0);
2128 int parse_size(const char *t, off_t base, off_t *size) {
2130 /* Soo, sometimes we want to parse IEC binary suffxies, and
2131 * sometimes SI decimal suffixes. This function can parse
2132 * both. Which one is the right way depends on the
2133 * context. Wikipedia suggests that SI is customary for
2134 * hardrware metrics and network speeds, while IEC is
2135 * customary for most data sizes used by software and volatile
2136 * (RAM) memory. Hence be careful which one you pick!
2138 * In either case we use just K, M, G as suffix, and not Ki,
2139 * Mi, Gi or so (as IEC would suggest). That's because that's
2140 * frickin' ugly. But this means you really need to make sure
2141 * to document which base you are parsing when you use this
2146 unsigned long long factor;
2149 static const struct table iec[] = {
2150 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2151 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2152 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2153 { "G", 1024ULL*1024ULL*1024ULL },
2154 { "M", 1024ULL*1024ULL },
2160 static const struct table si[] = {
2161 { "E", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2162 { "P", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2163 { "T", 1000ULL*1000ULL*1000ULL*1000ULL },
2164 { "G", 1000ULL*1000ULL*1000ULL },
2165 { "M", 1000ULL*1000ULL },
2171 const struct table *table;
2173 unsigned long long r = 0;
2174 unsigned n_entries, start_pos = 0;
2177 assert(base == 1000 || base == 1024);
2182 n_entries = ELEMENTSOF(si);
2185 n_entries = ELEMENTSOF(iec);
2191 unsigned long long l2;
2197 l = strtoll(p, &e, 10);
2210 if (*e >= '0' && *e <= '9') {
2213 /* strotoull itself would accept space/+/- */
2214 l2 = strtoull(e, &e2, 10);
2216 if (errno == ERANGE)
2219 /* Ignore failure. E.g. 10.M is valid */
2226 e += strspn(e, WHITESPACE);
2228 for (i = start_pos; i < n_entries; i++)
2229 if (startswith(e, table[i].suffix)) {
2230 unsigned long long tmp;
2231 if ((unsigned long long) l + (frac > 0) > ULLONG_MAX / table[i].factor)
2233 tmp = l * table[i].factor + (unsigned long long) (frac * table[i].factor);
2234 if (tmp > ULLONG_MAX - r)
2238 if ((unsigned long long) (off_t) r != r)
2241 p = e + strlen(table[i].suffix);
2257 int make_stdio(int fd) {
2262 r = dup3(fd, STDIN_FILENO, 0);
2263 s = dup3(fd, STDOUT_FILENO, 0);
2264 t = dup3(fd, STDERR_FILENO, 0);
2269 if (r < 0 || s < 0 || t < 0)
2272 /* We rely here that the new fd has O_CLOEXEC not set */
2277 int make_null_stdio(void) {
2280 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2284 return make_stdio(null_fd);
2287 bool is_device_path(const char *path) {
2289 /* Returns true on paths that refer to a device, either in
2290 * sysfs or in /dev */
2293 path_startswith(path, "/dev/") ||
2294 path_startswith(path, "/sys/");
2297 int dir_is_empty(const char *path) {
2298 _cleanup_closedir_ DIR *d;
2309 if (!de && errno != 0)
2315 if (!ignore_file(de->d_name))
2320 char* dirname_malloc(const char *path) {
2321 char *d, *dir, *dir2;
2338 int dev_urandom(void *p, size_t n) {
2339 _cleanup_close_ int fd;
2342 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2344 return errno == ENOENT ? -ENOSYS : -errno;
2346 k = loop_read(fd, p, n, true);
2349 if ((size_t) k != n)
2355 void random_bytes(void *p, size_t n) {
2356 static bool srand_called = false;
2360 r = dev_urandom(p, n);
2364 /* If some idiot made /dev/urandom unavailable to us, he'll
2365 * get a PRNG instead. */
2367 if (!srand_called) {
2370 #ifdef HAVE_SYS_AUXV_H
2371 /* The kernel provides us with a bit of entropy in
2372 * auxv, so let's try to make use of that to seed the
2373 * pseudo-random generator. It's better than
2378 auxv = (void*) getauxval(AT_RANDOM);
2380 x ^= *(unsigned*) auxv;
2383 x ^= (unsigned) now(CLOCK_REALTIME);
2384 x ^= (unsigned) gettid();
2387 srand_called = true;
2390 for (q = p; q < (uint8_t*) p + n; q ++)
2394 void rename_process(const char name[8]) {
2397 /* This is a like a poor man's setproctitle(). It changes the
2398 * comm field, argv[0], and also the glibc's internally used
2399 * name of the process. For the first one a limit of 16 chars
2400 * applies, to the second one usually one of 10 (i.e. length
2401 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2402 * "systemd"). If you pass a longer string it will be
2405 prctl(PR_SET_NAME, name);
2407 if (program_invocation_name)
2408 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2410 if (saved_argc > 0) {
2414 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2416 for (i = 1; i < saved_argc; i++) {
2420 memzero(saved_argv[i], strlen(saved_argv[i]));
2425 void sigset_add_many(sigset_t *ss, ...) {
2432 while ((sig = va_arg(ap, int)) > 0)
2433 assert_se(sigaddset(ss, sig) == 0);
2437 char* gethostname_malloc(void) {
2440 assert_se(uname(&u) >= 0);
2442 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2443 return strdup(u.nodename);
2445 return strdup(u.sysname);
2448 bool hostname_is_set(void) {
2451 assert_se(uname(&u) >= 0);
2453 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2456 static char *lookup_uid(uid_t uid) {
2459 _cleanup_free_ char *buf = NULL;
2460 struct passwd pwbuf, *pw = NULL;
2462 /* Shortcut things to avoid NSS lookups */
2464 return strdup("root");
2466 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2470 buf = malloc(bufsize);
2474 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2475 return strdup(pw->pw_name);
2477 if (asprintf(&name, "%lu", (unsigned long) uid) < 0)
2483 char* getlogname_malloc(void) {
2487 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2492 return lookup_uid(uid);
2495 char *getusername_malloc(void) {
2502 return lookup_uid(getuid());
2505 int getttyname_malloc(int fd, char **r) {
2506 char path[PATH_MAX], *c;
2511 k = ttyname_r(fd, path, sizeof(path));
2517 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2525 int getttyname_harder(int fd, char **r) {
2529 k = getttyname_malloc(fd, &s);
2533 if (streq(s, "tty")) {
2535 return get_ctty(0, NULL, r);
2542 int get_ctty_devnr(pid_t pid, dev_t *d) {
2544 _cleanup_free_ char *line = NULL;
2546 unsigned long ttynr;
2550 p = procfs_file_alloca(pid, "stat");
2551 r = read_one_line_file(p, &line);
2555 p = strrchr(line, ')');
2565 "%*d " /* session */
2570 if (major(ttynr) == 0 && minor(ttynr) == 0)
2579 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2580 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *b = NULL;
2581 _cleanup_free_ char *s = NULL;
2588 k = get_ctty_devnr(pid, &devnr);
2592 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2594 k = readlink_malloc(fn, &s);
2600 /* This is an ugly hack */
2601 if (major(devnr) == 136) {
2602 asprintf(&b, "pts/%lu", (unsigned long) minor(devnr));
2606 /* Probably something like the ptys which have no
2607 * symlink in /dev/char. Let's return something
2608 * vaguely useful. */
2614 if (startswith(s, "/dev/"))
2616 else if (startswith(s, "../"))
2634 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2640 /* This returns the first error we run into, but nevertheless
2641 * tries to go on. This closes the passed fd. */
2647 return errno == ENOENT ? 0 : -errno;
2652 bool is_dir, keep_around;
2658 if (!de && errno != 0) {
2667 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2670 if (de->d_type == DT_UNKNOWN ||
2672 (de->d_type == DT_DIR && root_dev)) {
2673 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2674 if (ret == 0 && errno != ENOENT)
2679 is_dir = S_ISDIR(st.st_mode);
2682 (st.st_uid == 0 || st.st_uid == getuid()) &&
2683 (st.st_mode & S_ISVTX);
2685 is_dir = de->d_type == DT_DIR;
2686 keep_around = false;
2692 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2693 if (root_dev && st.st_dev != root_dev->st_dev)
2696 subdir_fd = openat(fd, de->d_name,
2697 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2698 if (subdir_fd < 0) {
2699 if (ret == 0 && errno != ENOENT)
2704 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2705 if (r < 0 && ret == 0)
2709 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2710 if (ret == 0 && errno != ENOENT)
2714 } else if (!only_dirs && !keep_around) {
2716 if (unlinkat(fd, de->d_name, 0) < 0) {
2717 if (ret == 0 && errno != ENOENT)
2728 _pure_ static int is_temporary_fs(struct statfs *s) {
2731 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2732 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2735 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2740 if (fstatfs(fd, &s) < 0) {
2745 /* We refuse to clean disk file systems with this call. This
2746 * is extra paranoia just to be sure we never ever remove
2748 if (!is_temporary_fs(&s)) {
2749 log_error("Attempted to remove disk file system, and we can't allow that.");
2754 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2757 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2763 /* We refuse to clean the root file system with this
2764 * call. This is extra paranoia to never cause a really
2765 * seriously broken system. */
2766 if (path_equal(path, "/")) {
2767 log_error("Attempted to remove entire root file system, and we can't allow that.");
2771 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2774 if (errno != ENOTDIR)
2778 if (statfs(path, &s) < 0)
2781 if (!is_temporary_fs(&s)) {
2782 log_error("Attempted to remove disk file system, and we can't allow that.");
2787 if (delete_root && !only_dirs)
2788 if (unlink(path) < 0 && errno != ENOENT)
2795 if (fstatfs(fd, &s) < 0) {
2800 if (!is_temporary_fs(&s)) {
2801 log_error("Attempted to remove disk file system, and we can't allow that.");
2807 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2810 if (honour_sticky && file_is_priv_sticky(path) > 0)
2813 if (rmdir(path) < 0 && errno != ENOENT) {
2822 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2823 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2826 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2827 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2830 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2833 /* Under the assumption that we are running privileged we
2834 * first change the access mode and only then hand out
2835 * ownership to avoid a window where access is too open. */
2837 if (mode != (mode_t) -1)
2838 if (chmod(path, mode) < 0)
2841 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2842 if (chown(path, uid, gid) < 0)
2848 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2851 /* Under the assumption that we are running privileged we
2852 * first change the access mode and only then hand out
2853 * ownership to avoid a window where access is too open. */
2855 if (mode != (mode_t) -1)
2856 if (fchmod(fd, mode) < 0)
2859 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2860 if (fchown(fd, uid, gid) < 0)
2866 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2870 /* Allocates the cpuset in the right size */
2873 if (!(r = CPU_ALLOC(n)))
2876 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2877 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2887 if (errno != EINVAL)
2894 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2895 static const char status_indent[] = " "; /* "[" STATUS "] " */
2896 _cleanup_free_ char *s = NULL;
2897 _cleanup_close_ int fd = -1;
2898 struct iovec iovec[6] = {};
2900 static bool prev_ephemeral;
2904 /* This is independent of logging, as status messages are
2905 * optional and go exclusively to the console. */
2907 if (vasprintf(&s, format, ap) < 0)
2910 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2923 sl = status ? sizeof(status_indent)-1 : 0;
2929 e = ellipsize(s, emax, 75);
2937 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2938 prev_ephemeral = ephemeral;
2941 if (!isempty(status)) {
2942 IOVEC_SET_STRING(iovec[n++], "[");
2943 IOVEC_SET_STRING(iovec[n++], status);
2944 IOVEC_SET_STRING(iovec[n++], "] ");
2946 IOVEC_SET_STRING(iovec[n++], status_indent);
2949 IOVEC_SET_STRING(iovec[n++], s);
2951 IOVEC_SET_STRING(iovec[n++], "\n");
2953 if (writev(fd, iovec, n) < 0)
2959 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
2965 va_start(ap, format);
2966 r = status_vprintf(status, ellipse, ephemeral, format, ap);
2972 char *replace_env(const char *format, char **env) {
2979 const char *e, *word = format;
2984 for (e = format; *e; e ++) {
2995 if (!(k = strnappend(r, word, e-word-1)))
3004 } else if (*e == '$') {
3005 if (!(k = strnappend(r, word, e-word)))
3021 t = strempty(strv_env_get_n(env, word+2, e-word-2));
3023 k = strappend(r, t);
3037 if (!(k = strnappend(r, word, e-word)))
3048 char **replace_env_argv(char **argv, char **env) {
3050 unsigned k = 0, l = 0;
3052 l = strv_length(argv);
3054 if (!(r = new(char*, l+1)))
3057 STRV_FOREACH(i, argv) {
3059 /* If $FOO appears as single word, replace it by the split up variable */
3060 if ((*i)[0] == '$' && (*i)[1] != '{') {
3065 e = strv_env_get(env, *i+1);
3068 if (!(m = strv_split_quoted(e))) {
3079 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3088 memcpy(r + k, m, q * sizeof(char*));
3096 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3097 if (!(r[k++] = replace_env(*i, env))) {
3107 int fd_columns(int fd) {
3108 struct winsize ws = {};
3110 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3119 unsigned columns(void) {
3123 if (_likely_(cached_columns > 0))
3124 return cached_columns;
3127 e = getenv("COLUMNS");
3132 c = fd_columns(STDOUT_FILENO);
3141 int fd_lines(int fd) {
3142 struct winsize ws = {};
3144 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3153 unsigned lines(void) {
3157 if (_likely_(cached_lines > 0))
3158 return cached_lines;
3161 e = getenv("LINES");
3166 l = fd_lines(STDOUT_FILENO);
3172 return cached_lines;
3175 /* intended to be used as a SIGWINCH sighandler */
3176 void columns_lines_cache_reset(int signum) {
3182 static int cached_on_tty = -1;
3184 if (_unlikely_(cached_on_tty < 0))
3185 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3187 return cached_on_tty;
3190 int files_same(const char *filea, const char *fileb) {
3193 if (stat(filea, &a) < 0)
3196 if (stat(fileb, &b) < 0)
3199 return a.st_dev == b.st_dev &&
3200 a.st_ino == b.st_ino;
3203 int running_in_chroot(void) {
3206 ret = files_same("/proc/1/root", "/");
3213 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3218 assert(percent <= 100);
3219 assert(new_length >= 3);
3221 if (old_length <= 3 || old_length <= new_length)
3222 return strndup(s, old_length);
3224 r = new0(char, new_length+1);
3228 x = (new_length * percent) / 100;
3230 if (x > new_length - 3)
3238 s + old_length - (new_length - x - 3),
3239 new_length - x - 3);
3244 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3248 unsigned k, len, len2;
3251 assert(percent <= 100);
3252 assert(new_length >= 3);
3254 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3255 if (ascii_is_valid(s))
3256 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3258 if (old_length <= 3 || old_length <= new_length)
3259 return strndup(s, old_length);
3261 x = (new_length * percent) / 100;
3263 if (x > new_length - 3)
3267 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3270 c = utf8_encoded_to_unichar(i);
3273 k += unichar_iswide(c) ? 2 : 1;
3276 if (k > x) /* last character was wide and went over quota */
3279 for (j = s + old_length; k < new_length && j > i; ) {
3282 j = utf8_prev_char(j);
3283 c = utf8_encoded_to_unichar(j);
3286 k += unichar_iswide(c) ? 2 : 1;
3290 /* we don't actually need to ellipsize */
3292 return memdup(s, old_length + 1);
3294 /* make space for ellipsis */
3295 j = utf8_next_char(j);
3298 len2 = s + old_length - j;
3299 e = new(char, len + 3 + len2 + 1);
3304 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3305 old_length, new_length, x, len, len2, k);
3309 e[len] = 0xe2; /* tri-dot ellipsis: … */
3313 memcpy(e + len + 3, j, len2 + 1);
3318 char *ellipsize(const char *s, size_t length, unsigned percent) {
3319 return ellipsize_mem(s, strlen(s), length, percent);
3322 int touch(const char *path) {
3323 _cleanup_close_ int fd;
3327 /* This just opens the file for writing, ensuring it
3328 * exists. It doesn't call utimensat() the way /usr/bin/touch
3331 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
3338 char *unquote(const char *s, const char* quotes) {
3342 /* This is rather stupid, simply removes the heading and
3343 * trailing quotes if there is one. Doesn't care about
3344 * escaping or anything. We should make this smarter one
3351 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3352 return strndup(s+1, l-2);
3357 char *normalize_env_assignment(const char *s) {
3358 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3361 eq = strchr(s, '=');
3373 memmove(r, t, strlen(t) + 1);
3377 name = strndup(s, eq - s);
3385 value = unquote(strstrip(p), QUOTES);
3389 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3395 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3406 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3418 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3425 r = wait_for_terminate(pid, &status);
3427 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3431 if (status.si_code == CLD_EXITED) {
3432 if (status.si_status != 0) {
3433 log_warning("%s failed with error code %i.", name, status.si_status);
3434 return status.si_status;
3437 log_debug("%s succeeded.", name);
3440 } else if (status.si_code == CLD_KILLED ||
3441 status.si_code == CLD_DUMPED) {
3443 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3447 log_warning("%s failed due to unknown reason.", name);
3451 noreturn void freeze(void) {
3453 /* Make sure nobody waits for us on a socket anymore */
3454 close_all_fds(NULL, 0);
3462 bool null_or_empty(struct stat *st) {
3465 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3468 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3474 int null_or_empty_path(const char *fn) {
3479 if (stat(fn, &st) < 0)
3482 return null_or_empty(&st);
3485 DIR *xopendirat(int fd, const char *name, int flags) {
3489 assert(!(flags & O_CREAT));
3491 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3504 int signal_from_string_try_harder(const char *s) {
3508 signo = signal_from_string(s);
3510 if (startswith(s, "SIG"))
3511 return signal_from_string(s+3);
3516 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3517 _cleanup_free_ char *t = NULL, *u = NULL;
3520 u = unquote(tagvalue, "\"\'");
3524 enc_len = strlen(u) * 4 + 1;
3525 t = new(char, enc_len);
3529 if (encode_devnode_name(u, t, enc_len) < 0)
3532 return strjoin("/dev/disk/by-", by, "/", t, NULL);
3535 char *fstab_node_to_udev_node(const char *p) {
3538 if (startswith(p, "LABEL="))
3539 return tag_to_udev_node(p+6, "label");
3541 if (startswith(p, "UUID="))
3542 return tag_to_udev_node(p+5, "uuid");
3544 if (startswith(p, "PARTUUID="))
3545 return tag_to_udev_node(p+9, "partuuid");
3547 if (startswith(p, "PARTLABEL="))
3548 return tag_to_udev_node(p+10, "partlabel");
3553 bool tty_is_vc(const char *tty) {
3556 if (startswith(tty, "/dev/"))
3559 return vtnr_from_tty(tty) >= 0;
3562 bool tty_is_console(const char *tty) {
3565 if (startswith(tty, "/dev/"))
3568 return streq(tty, "console");
3571 int vtnr_from_tty(const char *tty) {
3576 if (startswith(tty, "/dev/"))
3579 if (!startswith(tty, "tty") )
3582 if (tty[3] < '0' || tty[3] > '9')
3585 r = safe_atoi(tty+3, &i);
3589 if (i < 0 || i > 63)
3595 char *resolve_dev_console(char **active) {
3598 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3599 * (i.e. not read-only-mounted which is a sign for container setups) */
3601 if (path_is_read_only_fs("/sys") > 0)
3604 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3607 /* If multiple log outputs are configured the last one is what
3608 * /dev/console points to */
3609 tty = strrchr(*active, ' ');
3615 if (streq(tty, "tty0")) {
3618 /* Get the active VC (e.g. tty1) */
3619 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3621 tty = *active = tmp;
3628 bool tty_is_vc_resolve(const char *tty) {
3629 _cleanup_free_ char *active = NULL;
3633 if (startswith(tty, "/dev/"))
3636 if (streq(tty, "console")) {
3637 tty = resolve_dev_console(&active);
3642 return tty_is_vc(tty);
3645 const char *default_term_for_tty(const char *tty) {
3648 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3651 bool dirent_is_file(const struct dirent *de) {
3654 if (ignore_file(de->d_name))
3657 if (de->d_type != DT_REG &&
3658 de->d_type != DT_LNK &&
3659 de->d_type != DT_UNKNOWN)
3665 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3668 if (de->d_type != DT_REG &&
3669 de->d_type != DT_LNK &&
3670 de->d_type != DT_UNKNOWN)
3673 if (ignore_file_allow_backup(de->d_name))
3676 return endswith(de->d_name, suffix);
3679 void execute_directory(const char *directory, DIR *d, usec_t timeout, char *argv[]) {
3685 /* Executes all binaries in a directory in parallel and waits
3686 * for them to finish. Optionally a timeout is applied. */
3688 executor_pid = fork();
3689 if (executor_pid < 0) {
3690 log_error("Failed to fork: %m");
3693 } else if (executor_pid == 0) {
3694 _cleanup_hashmap_free_free_ Hashmap *pids = NULL;
3695 _cleanup_closedir_ DIR *_d = NULL;
3699 /* We fork this all off from a child process so that
3700 * we can somewhat cleanly make use of SIGALRM to set
3703 reset_all_signal_handlers();
3705 assert_se(sigemptyset(&ss) == 0);
3706 assert_se(sigprocmask(SIG_SETMASK, &ss, NULL) == 0);
3708 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3711 d = _d = opendir(directory);
3713 if (errno == ENOENT)
3714 _exit(EXIT_SUCCESS);
3716 log_error("Failed to enumerate directory %s: %m", directory);
3717 _exit(EXIT_FAILURE);
3721 pids = hashmap_new(NULL, NULL);
3724 _exit(EXIT_FAILURE);
3727 FOREACH_DIRENT(de, d, break) {
3728 _cleanup_free_ char *path = NULL;
3731 if (!dirent_is_file(de))
3734 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3736 _exit(EXIT_FAILURE);
3741 log_error("Failed to fork: %m");
3743 } else if (pid == 0) {
3746 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3756 log_error("Failed to execute %s: %m", path);
3757 _exit(EXIT_FAILURE);
3761 log_debug("Spawned %s as " PID_FMT ".", path, pid);
3763 r = hashmap_put(pids, UINT_TO_PTR(pid), path);
3766 _exit(EXIT_FAILURE);
3772 /* Abort execution of this process after the
3773 * timout. We simply rely on SIGALRM as default action
3774 * terminating the process, and turn on alarm(). */
3776 if (timeout != (usec_t) -1)
3777 alarm((timeout + USEC_PER_SEC - 1) / USEC_PER_SEC);
3779 while (!hashmap_isempty(pids)) {
3780 _cleanup_free_ char *path = NULL;
3783 pid = PTR_TO_UINT(hashmap_first_key(pids));
3786 path = hashmap_remove(pids, UINT_TO_PTR(pid));
3789 wait_for_terminate_and_warn(path, pid);
3792 _exit(EXIT_SUCCESS);
3795 wait_for_terminate_and_warn(directory, executor_pid);
3798 int kill_and_sigcont(pid_t pid, int sig) {
3801 r = kill(pid, sig) < 0 ? -errno : 0;
3809 bool nulstr_contains(const char*nulstr, const char *needle) {
3815 NULSTR_FOREACH(i, nulstr)
3816 if (streq(i, needle))
3822 bool plymouth_running(void) {
3823 return access("/run/plymouth/pid", F_OK) >= 0;
3826 char* strshorten(char *s, size_t l) {
3835 static bool hostname_valid_char(char c) {
3837 (c >= 'a' && c <= 'z') ||
3838 (c >= 'A' && c <= 'Z') ||
3839 (c >= '0' && c <= '9') ||
3845 bool hostname_is_valid(const char *s) {
3852 for (p = s, dot = true; *p; p++) {
3859 if (!hostname_valid_char(*p))
3869 if (p-s > HOST_NAME_MAX)
3875 char* hostname_cleanup(char *s, bool lowercase) {
3879 for (p = s, d = s, dot = true; *p; p++) {
3886 } else if (hostname_valid_char(*p)) {
3887 *(d++) = lowercase ? tolower(*p) : *p;
3898 strshorten(s, HOST_NAME_MAX);
3903 int pipe_eof(int fd) {
3904 struct pollfd pollfd = {
3906 .events = POLLIN|POLLHUP,
3911 r = poll(&pollfd, 1, 0);
3918 return pollfd.revents & POLLHUP;
3921 int fd_wait_for_event(int fd, int event, usec_t t) {
3923 struct pollfd pollfd = {
3931 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
3938 return pollfd.revents;
3941 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
3952 t = new(char, strlen(path) + 1 + 6 + 1);
3956 fn = basename(path);
3960 stpcpy(stpcpy(t+k+1, fn), "XXXXXX");
3962 fd = mkostemp_safe(t, O_WRONLY|O_CLOEXEC);
3968 f = fdopen(fd, "we");
3981 int terminal_vhangup_fd(int fd) {
3984 if (ioctl(fd, TIOCVHANGUP) < 0)
3990 int terminal_vhangup(const char *name) {
3991 _cleanup_close_ int fd;
3993 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3997 return terminal_vhangup_fd(fd);
4000 int vt_disallocate(const char *name) {
4004 /* Deallocate the VT if possible. If not possible
4005 * (i.e. because it is the active one), at least clear it
4006 * entirely (including the scrollback buffer) */
4008 if (!startswith(name, "/dev/"))
4011 if (!tty_is_vc(name)) {
4012 /* So this is not a VT. I guess we cannot deallocate
4013 * it then. But let's at least clear the screen */
4015 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4020 "\033[r" /* clear scrolling region */
4021 "\033[H" /* move home */
4022 "\033[2J", /* clear screen */
4029 if (!startswith(name, "/dev/tty"))
4032 r = safe_atou(name+8, &u);
4039 /* Try to deallocate */
4040 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
4044 r = ioctl(fd, VT_DISALLOCATE, u);
4053 /* Couldn't deallocate, so let's clear it fully with
4055 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4060 "\033[r" /* clear scrolling region */
4061 "\033[H" /* move home */
4062 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4069 int copy_file(const char *from, const char *to, int flags) {
4070 _cleanup_close_ int fdf = -1;
4076 fdf = open(from, O_RDONLY|O_CLOEXEC|O_NOCTTY);
4080 fdt = open(to, flags|O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
4088 n = read(fdf, buf, sizeof(buf));
4102 k = loop_write(fdt, buf, n, false);
4104 r = k < 0 ? k : (errno ? -errno : -EIO);
4113 r = close_nointr(fdt);
4123 int symlink_atomic(const char *from, const char *to) {
4125 _cleanup_free_ char *t;
4135 t = new(char, strlen(to) + 1 + 16 + 1);
4143 x = stpcpy(t+k+1, fn);
4146 for (i = 0; i < 16; i++) {
4147 *(x++) = hexchar(u & 0xF);
4153 if (symlink(from, t) < 0)
4156 if (rename(t, to) < 0) {
4165 bool display_is_local(const char *display) {
4169 display[0] == ':' &&
4170 display[1] >= '0' &&
4174 int socket_from_display(const char *display, char **path) {
4181 if (!display_is_local(display))
4184 k = strspn(display+1, "0123456789");
4186 f = new(char, strlen("/tmp/.X11-unix/X") + k + 1);
4190 c = stpcpy(f, "/tmp/.X11-unix/X");
4191 memcpy(c, display+1, k);
4200 const char **username,
4201 uid_t *uid, gid_t *gid,
4203 const char **shell) {
4211 /* We enforce some special rules for uid=0: in order to avoid
4212 * NSS lookups for root we hardcode its data. */
4214 if (streq(*username, "root") || streq(*username, "0")) {
4232 if (parse_uid(*username, &u) >= 0) {
4236 /* If there are multiple users with the same id, make
4237 * sure to leave $USER to the configured value instead
4238 * of the first occurrence in the database. However if
4239 * the uid was configured by a numeric uid, then let's
4240 * pick the real username from /etc/passwd. */
4242 *username = p->pw_name;
4245 p = getpwnam(*username);
4249 return errno > 0 ? -errno : -ESRCH;
4261 *shell = p->pw_shell;
4266 char* uid_to_name(uid_t uid) {
4271 return strdup("root");
4275 return strdup(p->pw_name);
4277 if (asprintf(&r, "%lu", (unsigned long) uid) < 0)
4283 char* gid_to_name(gid_t gid) {
4288 return strdup("root");
4292 return strdup(p->gr_name);
4294 if (asprintf(&r, "%lu", (unsigned long) gid) < 0)
4300 int get_group_creds(const char **groupname, gid_t *gid) {
4306 /* We enforce some special rules for gid=0: in order to avoid
4307 * NSS lookups for root we hardcode its data. */
4309 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4310 *groupname = "root";
4318 if (parse_gid(*groupname, &id) >= 0) {
4323 *groupname = g->gr_name;
4326 g = getgrnam(*groupname);
4330 return errno > 0 ? -errno : -ESRCH;
4338 int in_gid(gid_t gid) {
4340 int ngroups_max, r, i;
4342 if (getgid() == gid)
4345 if (getegid() == gid)
4348 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4349 assert(ngroups_max > 0);
4351 gids = alloca(sizeof(gid_t) * ngroups_max);
4353 r = getgroups(ngroups_max, gids);
4357 for (i = 0; i < r; i++)
4364 int in_group(const char *name) {
4368 r = get_group_creds(&name, &gid);
4375 int glob_exists(const char *path) {
4376 _cleanup_globfree_ glob_t g = {};
4382 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4384 if (k == GLOB_NOMATCH)
4386 else if (k == GLOB_NOSPACE)
4389 return !strv_isempty(g.gl_pathv);
4391 return errno ? -errno : -EIO;
4394 int glob_extend(char ***strv, const char *path) {
4395 _cleanup_globfree_ glob_t g = {};
4400 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4402 if (k == GLOB_NOMATCH)
4404 else if (k == GLOB_NOSPACE)
4406 else if (k != 0 || strv_isempty(g.gl_pathv))
4407 return errno ? -errno : -EIO;
4409 STRV_FOREACH(p, g.gl_pathv) {
4410 k = strv_extend(strv, *p);
4418 int dirent_ensure_type(DIR *d, struct dirent *de) {
4424 if (de->d_type != DT_UNKNOWN)
4427 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4431 S_ISREG(st.st_mode) ? DT_REG :
4432 S_ISDIR(st.st_mode) ? DT_DIR :
4433 S_ISLNK(st.st_mode) ? DT_LNK :
4434 S_ISFIFO(st.st_mode) ? DT_FIFO :
4435 S_ISSOCK(st.st_mode) ? DT_SOCK :
4436 S_ISCHR(st.st_mode) ? DT_CHR :
4437 S_ISBLK(st.st_mode) ? DT_BLK :
4443 int in_search_path(const char *path, char **search) {
4445 _cleanup_free_ char *parent = NULL;
4448 r = path_get_parent(path, &parent);
4452 STRV_FOREACH(i, search)
4453 if (path_equal(parent, *i))
4459 int get_files_in_directory(const char *path, char ***list) {
4460 _cleanup_closedir_ DIR *d = NULL;
4461 size_t bufsize = 0, n = 0;
4462 _cleanup_strv_free_ char **l = NULL;
4466 /* Returns all files in a directory in *list, and the number
4467 * of files as return value. If list is NULL returns only the
4479 if (!de && errno != 0)
4484 dirent_ensure_type(d, de);
4486 if (!dirent_is_file(de))
4490 /* one extra slot is needed for the terminating NULL */
4491 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4494 l[n] = strdup(de->d_name);
4505 l = NULL; /* avoid freeing */
4511 char *strjoin(const char *x, ...) {
4525 t = va_arg(ap, const char *);
4530 if (n > ((size_t) -1) - l) {
4554 t = va_arg(ap, const char *);
4568 bool is_main_thread(void) {
4569 static thread_local int cached = 0;
4571 if (_unlikely_(cached == 0))
4572 cached = getpid() == gettid() ? 1 : -1;
4577 int block_get_whole_disk(dev_t d, dev_t *ret) {
4584 /* If it has a queue this is good enough for us */
4585 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4588 r = access(p, F_OK);
4596 /* If it is a partition find the originating device */
4597 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4600 r = access(p, F_OK);
4606 /* Get parent dev_t */
4607 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4610 r = read_one_line_file(p, &s);
4616 r = sscanf(s, "%u:%u", &m, &n);
4622 /* Only return this if it is really good enough for us. */
4623 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4626 r = access(p, F_OK);
4630 *ret = makedev(m, n);
4637 int file_is_priv_sticky(const char *p) {
4642 if (lstat(p, &st) < 0)
4646 (st.st_uid == 0 || st.st_uid == getuid()) &&
4647 (st.st_mode & S_ISVTX);
4650 static const char *const ioprio_class_table[] = {
4651 [IOPRIO_CLASS_NONE] = "none",
4652 [IOPRIO_CLASS_RT] = "realtime",
4653 [IOPRIO_CLASS_BE] = "best-effort",
4654 [IOPRIO_CLASS_IDLE] = "idle"
4657 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4659 static const char *const sigchld_code_table[] = {
4660 [CLD_EXITED] = "exited",
4661 [CLD_KILLED] = "killed",
4662 [CLD_DUMPED] = "dumped",
4663 [CLD_TRAPPED] = "trapped",
4664 [CLD_STOPPED] = "stopped",
4665 [CLD_CONTINUED] = "continued",
4668 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4670 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4671 [LOG_FAC(LOG_KERN)] = "kern",
4672 [LOG_FAC(LOG_USER)] = "user",
4673 [LOG_FAC(LOG_MAIL)] = "mail",
4674 [LOG_FAC(LOG_DAEMON)] = "daemon",
4675 [LOG_FAC(LOG_AUTH)] = "auth",
4676 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4677 [LOG_FAC(LOG_LPR)] = "lpr",
4678 [LOG_FAC(LOG_NEWS)] = "news",
4679 [LOG_FAC(LOG_UUCP)] = "uucp",
4680 [LOG_FAC(LOG_CRON)] = "cron",
4681 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4682 [LOG_FAC(LOG_FTP)] = "ftp",
4683 [LOG_FAC(LOG_LOCAL0)] = "local0",
4684 [LOG_FAC(LOG_LOCAL1)] = "local1",
4685 [LOG_FAC(LOG_LOCAL2)] = "local2",
4686 [LOG_FAC(LOG_LOCAL3)] = "local3",
4687 [LOG_FAC(LOG_LOCAL4)] = "local4",
4688 [LOG_FAC(LOG_LOCAL5)] = "local5",
4689 [LOG_FAC(LOG_LOCAL6)] = "local6",
4690 [LOG_FAC(LOG_LOCAL7)] = "local7"
4693 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4695 static const char *const log_level_table[] = {
4696 [LOG_EMERG] = "emerg",
4697 [LOG_ALERT] = "alert",
4698 [LOG_CRIT] = "crit",
4700 [LOG_WARNING] = "warning",
4701 [LOG_NOTICE] = "notice",
4702 [LOG_INFO] = "info",
4703 [LOG_DEBUG] = "debug"
4706 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4708 static const char* const sched_policy_table[] = {
4709 [SCHED_OTHER] = "other",
4710 [SCHED_BATCH] = "batch",
4711 [SCHED_IDLE] = "idle",
4712 [SCHED_FIFO] = "fifo",
4716 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4718 static const char* const rlimit_table[_RLIMIT_MAX] = {
4719 [RLIMIT_CPU] = "LimitCPU",
4720 [RLIMIT_FSIZE] = "LimitFSIZE",
4721 [RLIMIT_DATA] = "LimitDATA",
4722 [RLIMIT_STACK] = "LimitSTACK",
4723 [RLIMIT_CORE] = "LimitCORE",
4724 [RLIMIT_RSS] = "LimitRSS",
4725 [RLIMIT_NOFILE] = "LimitNOFILE",
4726 [RLIMIT_AS] = "LimitAS",
4727 [RLIMIT_NPROC] = "LimitNPROC",
4728 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4729 [RLIMIT_LOCKS] = "LimitLOCKS",
4730 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4731 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4732 [RLIMIT_NICE] = "LimitNICE",
4733 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4734 [RLIMIT_RTTIME] = "LimitRTTIME"
4737 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4739 static const char* const ip_tos_table[] = {
4740 [IPTOS_LOWDELAY] = "low-delay",
4741 [IPTOS_THROUGHPUT] = "throughput",
4742 [IPTOS_RELIABILITY] = "reliability",
4743 [IPTOS_LOWCOST] = "low-cost",
4746 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4748 static const char *const __signal_table[] = {
4765 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4776 [SIGVTALRM] = "VTALRM",
4778 [SIGWINCH] = "WINCH",
4784 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4786 const char *signal_to_string(int signo) {
4787 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4790 name = __signal_to_string(signo);
4794 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4795 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4797 snprintf(buf, sizeof(buf), "%d", signo);
4802 int signal_from_string(const char *s) {
4807 signo = __signal_from_string(s);
4811 if (startswith(s, "RTMIN+")) {
4815 if (safe_atou(s, &u) >= 0) {
4816 signo = (int) u + offset;
4817 if (signo > 0 && signo < _NSIG)
4823 bool kexec_loaded(void) {
4824 bool loaded = false;
4827 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4835 int strdup_or_null(const char *a, char **b) {
4853 int prot_from_flags(int flags) {
4855 switch (flags & O_ACCMODE) {
4864 return PROT_READ|PROT_WRITE;
4871 char *format_bytes(char *buf, size_t l, off_t t) {
4874 static const struct {
4878 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4879 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4880 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4881 { "G", 1024ULL*1024ULL*1024ULL },
4882 { "M", 1024ULL*1024ULL },
4886 for (i = 0; i < ELEMENTSOF(table); i++) {
4888 if (t >= table[i].factor) {
4891 (unsigned long long) (t / table[i].factor),
4892 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4899 snprintf(buf, l, "%lluB", (unsigned long long) t);
4907 void* memdup(const void *p, size_t l) {
4920 int fd_inc_sndbuf(int fd, size_t n) {
4922 socklen_t l = sizeof(value);
4924 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4925 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4928 /* If we have the privileges we will ignore the kernel limit. */
4931 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4932 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
4938 int fd_inc_rcvbuf(int fd, size_t n) {
4940 socklen_t l = sizeof(value);
4942 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
4943 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4946 /* If we have the privileges we will ignore the kernel limit. */
4949 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
4950 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
4955 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
4956 pid_t parent_pid, agent_pid;
4958 bool stdout_is_tty, stderr_is_tty;
4966 parent_pid = getpid();
4968 /* Spawns a temporary TTY agent, making sure it goes away when
4975 if (agent_pid != 0) {
4982 * Make sure the agent goes away when the parent dies */
4983 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
4984 _exit(EXIT_FAILURE);
4986 /* Check whether our parent died before we were able
4987 * to set the death signal */
4988 if (getppid() != parent_pid)
4989 _exit(EXIT_SUCCESS);
4991 /* Don't leak fds to the agent */
4992 close_all_fds(except, n_except);
4994 stdout_is_tty = isatty(STDOUT_FILENO);
4995 stderr_is_tty = isatty(STDERR_FILENO);
4997 if (!stdout_is_tty || !stderr_is_tty) {
4998 /* Detach from stdout/stderr. and reopen
4999 * /dev/tty for them. This is important to
5000 * ensure that when systemctl is started via
5001 * popen() or a similar call that expects to
5002 * read EOF we actually do generate EOF and
5003 * not delay this indefinitely by because we
5004 * keep an unused copy of stdin around. */
5005 fd = open("/dev/tty", O_WRONLY);
5007 log_error("Failed to open /dev/tty: %m");
5008 _exit(EXIT_FAILURE);
5012 dup2(fd, STDOUT_FILENO);
5015 dup2(fd, STDERR_FILENO);
5021 /* Count arguments */
5023 for (n = 0; va_arg(ap, char*); n++)
5028 l = alloca(sizeof(char *) * (n + 1));
5030 /* Fill in arguments */
5032 for (i = 0; i <= n; i++)
5033 l[i] = va_arg(ap, char*);
5037 _exit(EXIT_FAILURE);
5040 int setrlimit_closest(int resource, const struct rlimit *rlim) {
5041 struct rlimit highest, fixed;
5045 if (setrlimit(resource, rlim) >= 0)
5051 /* So we failed to set the desired setrlimit, then let's try
5052 * to get as close as we can */
5053 assert_se(getrlimit(resource, &highest) == 0);
5055 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
5056 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
5058 if (setrlimit(resource, &fixed) < 0)
5064 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5065 _cleanup_fclose_ FILE *f = NULL;
5076 path = procfs_file_alloca(pid, "environ");
5078 f = fopen(path, "re");
5086 char line[LINE_MAX];
5089 for (i = 0; i < sizeof(line)-1; i++) {
5093 if (_unlikely_(c == EOF)) {
5103 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5104 value = strdup(line + l + 1);
5118 bool is_valid_documentation_url(const char *url) {
5121 if (startswith(url, "http://") && url[7])
5124 if (startswith(url, "https://") && url[8])
5127 if (startswith(url, "file:") && url[5])
5130 if (startswith(url, "info:") && url[5])
5133 if (startswith(url, "man:") && url[4])
5139 bool in_initrd(void) {
5140 static int saved = -1;
5146 /* We make two checks here:
5148 * 1. the flag file /etc/initrd-release must exist
5149 * 2. the root file system must be a memory file system
5151 * The second check is extra paranoia, since misdetecting an
5152 * initrd can have bad bad consequences due the initrd
5153 * emptying when transititioning to the main systemd.
5156 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5157 statfs("/", &s) >= 0 &&
5158 is_temporary_fs(&s);
5163 void warn_melody(void) {
5164 _cleanup_close_ int fd = -1;
5166 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5170 /* Yeah, this is synchronous. Kinda sucks. But well... */
5172 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5173 usleep(125*USEC_PER_MSEC);
5175 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5176 usleep(125*USEC_PER_MSEC);
5178 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5179 usleep(125*USEC_PER_MSEC);
5181 ioctl(fd, KIOCSOUND, 0);
5184 int make_console_stdio(void) {
5187 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5189 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5191 log_error("Failed to acquire terminal: %s", strerror(-fd));
5197 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5204 int get_home_dir(char **_h) {
5212 /* Take the user specified one */
5223 /* Hardcode home directory for root to avoid NSS */
5226 h = strdup("/root");
5234 /* Check the database... */
5238 return errno > 0 ? -errno : -ESRCH;
5240 if (!path_is_absolute(p->pw_dir))
5243 h = strdup(p->pw_dir);
5251 int get_shell(char **_s) {
5259 /* Take the user specified one */
5260 e = getenv("SHELL");
5270 /* Hardcode home directory for root to avoid NSS */
5273 s = strdup("/bin/sh");
5281 /* Check the database... */
5285 return errno > 0 ? -errno : -ESRCH;
5287 if (!path_is_absolute(p->pw_shell))
5290 s = strdup(p->pw_shell);
5298 bool filename_is_safe(const char *p) {
5312 if (strlen(p) > FILENAME_MAX)
5318 bool string_is_safe(const char *p) {
5323 for (t = p; *t; t++) {
5324 if (*t > 0 && *t < ' ')
5327 if (strchr("\\\"\'", *t))
5335 * Check if a string contains control characters.
5336 * Spaces and tabs are not considered control characters.
5338 bool string_has_cc(const char *p) {
5343 for (t = p; *t; t++)
5344 if (*t > 0 && *t < ' ' && *t != '\t')
5350 bool path_is_safe(const char *p) {
5355 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5358 if (strlen(p) > PATH_MAX)
5361 /* The following two checks are not really dangerous, but hey, they still are confusing */
5362 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5365 if (strstr(p, "//"))
5371 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5372 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5373 int (*compar) (const void *, const void *, void *), void *arg) {
5382 p = (void *)(((const char *) base) + (idx * size));
5383 comparison = compar(key, p, arg);
5386 else if (comparison > 0)
5394 bool is_locale_utf8(void) {
5396 static int cached_answer = -1;
5398 if (cached_answer >= 0)
5401 if (!setlocale(LC_ALL, "")) {
5402 cached_answer = true;
5406 set = nl_langinfo(CODESET);
5408 cached_answer = true;
5412 if (streq(set, "UTF-8")) {
5413 cached_answer = true;
5417 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5418 * unset and everything can do to UTF-8 nowadays. */
5419 set = setlocale(LC_CTYPE, NULL);
5421 cached_answer = true;
5425 /* Check result, but ignore the result if C was set
5429 !getenv("LC_ALL") &&
5430 !getenv("LC_CTYPE") &&
5434 return (bool) cached_answer;
5437 const char *draw_special_char(DrawSpecialChar ch) {
5438 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5440 [DRAW_TREE_VERT] = "\342\224\202 ", /* │ */
5441 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5442 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5443 [DRAW_TREE_SPACE] = " ", /* */
5444 [DRAW_TRIANGULAR_BULLET] = "\342\200\243 ", /* ‣ */
5445 [DRAW_BLACK_CIRCLE] = "\342\227\217 ", /* ● */
5447 /* ASCII fallback */ {
5448 [DRAW_TREE_VERT] = "| ",
5449 [DRAW_TREE_BRANCH] = "|-",
5450 [DRAW_TREE_RIGHT] = "`-",
5451 [DRAW_TREE_SPACE] = " ",
5452 [DRAW_TRIANGULAR_BULLET] = "> ",
5453 [DRAW_BLACK_CIRCLE] = "* ",
5457 return draw_table[!is_locale_utf8()][ch];
5460 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5463 size_t l, old_len, new_len;
5469 old_len = strlen(old_string);
5470 new_len = strlen(new_string);
5483 if (!startswith(f, old_string)) {
5489 nl = l - old_len + new_len;
5490 a = realloc(r, nl + 1);
5498 t = stpcpy(t, new_string);
5510 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5511 const char *i, *begin = NULL;
5516 } state = STATE_OTHER;
5518 size_t osz = 0, isz;
5524 /* Strips ANSI color and replaces TABs by 8 spaces */
5526 isz = _isz ? *_isz : strlen(*ibuf);
5528 f = open_memstream(&obuf, &osz);
5532 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5537 if (i >= *ibuf + isz) /* EOT */
5539 else if (*i == '\x1B')
5540 state = STATE_ESCAPE;
5541 else if (*i == '\t')
5548 if (i >= *ibuf + isz) { /* EOT */
5551 } else if (*i == '[') {
5552 state = STATE_BRACKET;
5557 state = STATE_OTHER;
5564 if (i >= *ibuf + isz || /* EOT */
5565 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5568 state = STATE_OTHER;
5570 } else if (*i == 'm')
5571 state = STATE_OTHER;
5593 int on_ac_power(void) {
5594 bool found_offline = false, found_online = false;
5595 _cleanup_closedir_ DIR *d = NULL;
5597 d = opendir("/sys/class/power_supply");
5603 _cleanup_close_ int fd = -1, device = -1;
5609 if (!de && errno != 0)
5615 if (ignore_file(de->d_name))
5618 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5620 if (errno == ENOENT || errno == ENOTDIR)
5626 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5628 if (errno == ENOENT)
5634 n = read(fd, contents, sizeof(contents));
5638 if (n != 6 || memcmp(contents, "Mains\n", 6))
5642 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5644 if (errno == ENOENT)
5650 n = read(fd, contents, sizeof(contents));
5654 if (n != 2 || contents[1] != '\n')
5657 if (contents[0] == '1') {
5658 found_online = true;
5660 } else if (contents[0] == '0')
5661 found_offline = true;
5666 return found_online || !found_offline;
5669 static int search_and_fopen_internal(const char *path, const char *mode, const char *root, char **search, FILE **_f) {
5676 if (!path_strv_canonicalize_absolute_uniq(search, root))
5679 STRV_FOREACH(i, search) {
5680 _cleanup_free_ char *p = NULL;
5683 p = strjoin(*i, "/", path, NULL);
5693 if (errno != ENOENT)
5700 int search_and_fopen(const char *path, const char *mode, const char *root, const char **search, FILE **_f) {
5701 _cleanup_strv_free_ char **copy = NULL;
5707 if (path_is_absolute(path)) {
5710 f = fopen(path, mode);
5719 copy = strv_copy((char**) search);
5723 return search_and_fopen_internal(path, mode, root, copy, _f);
5726 int search_and_fopen_nulstr(const char *path, const char *mode, const char *root, const char *search, FILE **_f) {
5727 _cleanup_strv_free_ char **s = NULL;
5729 if (path_is_absolute(path)) {
5732 f = fopen(path, mode);
5741 s = strv_split_nulstr(search);
5745 return search_and_fopen_internal(path, mode, root, s, _f);
5748 char *strextend(char **x, ...) {
5755 l = f = *x ? strlen(*x) : 0;
5762 t = va_arg(ap, const char *);
5767 if (n > ((size_t) -1) - l) {
5776 r = realloc(*x, l+1);
5786 t = va_arg(ap, const char *);
5800 char *strrep(const char *s, unsigned n) {
5808 p = r = malloc(l * n + 1);
5812 for (i = 0; i < n; i++)
5819 void* greedy_realloc(void **p, size_t *allocated, size_t need) {
5826 if (*allocated >= need)
5829 a = MAX(64u, need * 2);
5831 /* check for overflows */
5844 void* greedy_realloc0(void **p, size_t *allocated, size_t need) {
5853 q = greedy_realloc(p, allocated, need);
5857 if (*allocated > prev)
5858 memzero(&q[prev], *allocated - prev);
5863 bool id128_is_valid(const char *s) {
5869 /* Simple formatted 128bit hex string */
5871 for (i = 0; i < l; i++) {
5874 if (!(c >= '0' && c <= '9') &&
5875 !(c >= 'a' && c <= 'z') &&
5876 !(c >= 'A' && c <= 'Z'))
5880 } else if (l == 36) {
5882 /* Formatted UUID */
5884 for (i = 0; i < l; i++) {
5887 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5891 if (!(c >= '0' && c <= '9') &&
5892 !(c >= 'a' && c <= 'z') &&
5893 !(c >= 'A' && c <= 'Z'))
5904 int split_pair(const char *s, const char *sep, char **l, char **r) {
5919 a = strndup(s, x - s);
5923 b = strdup(x + strlen(sep));
5935 int shall_restore_state(void) {
5936 _cleanup_free_ char *line = NULL;
5941 r = proc_cmdline(&line);
5944 if (r == 0) /* Container ... */
5949 FOREACH_WORD_QUOTED(w, l, line, state) {
5957 e = startswith(n, "systemd.restore_state=");
5961 k = parse_boolean(e);
5969 int proc_cmdline(char **ret) {
5972 if (detect_container(NULL) > 0) {
5973 char *buf = NULL, *p;
5976 r = read_full_file("/proc/1/cmdline", &buf, &sz);
5980 for (p = buf; p + 1 < buf + sz; p++)
5989 r = read_one_line_file("/proc/cmdline", ret);
5996 int parse_proc_cmdline(int (*parse_item)(const char *key, const char *value)) {
5997 _cleanup_free_ char *line = NULL;
6004 r = proc_cmdline(&line);
6006 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
6010 FOREACH_WORD_QUOTED(w, l, line, state) {
6011 char word[l+1], *value;
6016 /* Filter out arguments that are intended only for the
6018 if (!in_initrd() && startswith(word, "rd."))
6021 value = strchr(word, '=');
6025 r = parse_item(word, value);
6033 int container_get_leader(const char *machine, pid_t *pid) {
6034 _cleanup_free_ char *s = NULL, *class = NULL;
6042 p = strappenda("/run/systemd/machines/", machine);
6043 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
6051 if (!streq_ptr(class, "container"))
6054 r = parse_pid(s, &leader);
6064 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *root_fd) {
6065 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1;
6066 const char *pidns, *mntns, *root;
6074 mntns = procfs_file_alloca(pid, "ns/mnt");
6075 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6079 pidns = procfs_file_alloca(pid, "ns/pid");
6080 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6084 root = procfs_file_alloca(pid, "root");
6085 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
6089 *pidns_fd = pidnsfd;
6090 *mntns_fd = mntnsfd;
6098 int namespace_enter(int pidns_fd, int mntns_fd, int root_fd) {
6099 assert(pidns_fd >= 0);
6100 assert(mntns_fd >= 0);
6101 assert(root_fd >= 0);
6103 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6106 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6109 if (fchdir(root_fd) < 0)
6112 if (chroot(".") < 0)
6115 if (setresgid(0, 0, 0) < 0)
6118 if (setresuid(0, 0, 0) < 0)
6124 bool pid_is_unwaited(pid_t pid) {
6125 /* Checks whether a PID is still valid at all, including a zombie */
6130 if (kill(pid, 0) >= 0)
6133 return errno != ESRCH;
6136 bool pid_is_alive(pid_t pid) {
6139 /* Checks whether a PID is still valid and not a zombie */
6144 r = get_process_state(pid);
6145 if (r == -ENOENT || r == 'Z')
6151 int getpeercred(int fd, struct ucred *ucred) {
6152 socklen_t n = sizeof(struct ucred);
6159 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6163 if (n != sizeof(struct ucred))
6166 /* Check if the data is actually useful and not suppressed due
6167 * to namespacing issues */
6175 int getpeersec(int fd, char **ret) {
6187 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6191 if (errno != ERANGE)
6198 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6214 /* This is much like like mkostemp() but is subject to umask(). */
6215 int mkostemp_safe(char *pattern, int flags) {
6216 _cleanup_umask_ mode_t u;
6223 fd = mkostemp(pattern, flags);
6230 int open_tmpfile(const char *path, int flags) {
6237 /* Try O_TMPFILE first, if it is supported */
6238 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6243 /* Fall back to unguessable name + unlinking */
6244 p = strappenda(path, "/systemd-tmp-XXXXXX");
6246 fd = mkostemp_safe(p, flags);
6254 int fd_warn_permissions(const char *path, int fd) {
6257 if (fstat(fd, &st) < 0)
6260 if (st.st_mode & 0111)
6261 log_warning("Configuration file %s is marked executable. Please remove executable permission bits. Proceeding anyway.", path);
6263 if (st.st_mode & 0002)
6264 log_warning("Configuration file %s is marked world-writable. Please remove world writability permission bits. Proceeding anyway.", path);
6266 if (getpid() == 1 && (st.st_mode & 0044) != 0044)
6267 log_warning("Configuration file %s is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.", path);
6272 unsigned long personality_from_string(const char *p) {
6274 /* Parse a personality specifier. We introduce our own
6275 * identifiers that indicate specific ABIs, rather than just
6276 * hints regarding the register size, since we want to keep
6277 * things open for multiple locally supported ABIs for the
6278 * same register size. We try to reuse the ABI identifiers
6279 * used by libseccomp. */
6281 #if defined(__x86_64__)
6283 if (streq(p, "x86"))
6286 if (streq(p, "x86-64"))
6289 #elif defined(__i386__)
6291 if (streq(p, "x86"))
6295 /* personality(7) documents that 0xffffffffUL is used for
6296 * querying the current personality, hence let's use that here
6297 * as error indicator. */
6298 return 0xffffffffUL;
6301 const char* personality_to_string(unsigned long p) {
6303 #if defined(__x86_64__)
6305 if (p == PER_LINUX32)
6311 #elif defined(__i386__)
6320 uint64_t physical_memory(void) {
6323 /* We return this as uint64_t in case we are running as 32bit
6324 * process on a 64bit kernel with huge amounts of memory */
6326 mem = sysconf(_SC_PHYS_PAGES);
6329 return (uint64_t) mem * (uint64_t) page_size();
6332 char* mount_test_option(const char *haystack, const char *needle) {
6334 struct mntent me = {
6335 .mnt_opts = (char*) haystack
6340 /* Like glibc's hasmntopt(), but works on a string, not a
6346 return hasmntopt(&me, needle);
6349 void hexdump(FILE *f, const void *p, size_t s) {
6350 const uint8_t *b = p;
6353 assert(s == 0 || b);
6358 fprintf(f, "%04x ", n);
6360 for (i = 0; i < 16; i++) {
6365 fprintf(f, "%02x ", b[i]);
6373 for (i = 0; i < 16; i++) {
6378 fputc(isprint(b[i]) ? (char) b[i] : '.', f);
~ianmdlvl / elogind.git / blob