1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <linux/magic.h>
61 #include <sys/personality.h>
65 #ifdef HAVE_SYS_AUXV_H
76 #include "path-util.h"
77 #include "exit-status.h"
81 #include "device-nodes.h"
89 char **saved_argv = NULL;
91 static volatile unsigned cached_columns = 0;
92 static volatile unsigned cached_lines = 0;
94 size_t page_size(void) {
95 static thread_local size_t pgsz = 0;
98 if (_likely_(pgsz > 0))
101 r = sysconf(_SC_PAGESIZE);
108 bool streq_ptr(const char *a, const char *b) {
110 /* Like streq(), but tries to make sense of NULL pointers */
121 char* endswith(const char *s, const char *postfix) {
128 pl = strlen(postfix);
131 return (char*) s + sl;
136 if (memcmp(s + sl - pl, postfix, pl) != 0)
139 return (char*) s + sl - pl;
142 bool first_word(const char *s, const char *word) {
157 if (memcmp(s, word, wl) != 0)
161 strchr(WHITESPACE, s[wl]);
164 int close_nointr(int fd) {
170 /* Just ignore EINTR; a retry loop is the wrong
171 * thing to do on Linux.
173 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
174 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
175 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
176 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
178 if (_unlikely_(r < 0 && errno == EINTR))
186 void close_nointr_nofail(int fd) {
189 /* like close_nointr() but cannot fail, and guarantees errno
192 assert_se(close_nointr(fd) == 0);
195 void close_many(const int fds[], unsigned n_fd) {
198 assert(fds || n_fd <= 0);
200 for (i = 0; i < n_fd; i++)
201 close_nointr_nofail(fds[i]);
204 int unlink_noerrno(const char *path) {
215 int parse_boolean(const char *v) {
218 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
220 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
226 int parse_pid(const char *s, pid_t* ret_pid) {
227 unsigned long ul = 0;
234 r = safe_atolu(s, &ul);
240 if ((unsigned long) pid != ul)
250 int parse_uid(const char *s, uid_t* ret_uid) {
251 unsigned long ul = 0;
258 r = safe_atolu(s, &ul);
264 if ((unsigned long) uid != ul)
271 int safe_atou(const char *s, unsigned *ret_u) {
279 l = strtoul(s, &x, 0);
281 if (!x || x == s || *x || errno)
282 return errno > 0 ? -errno : -EINVAL;
284 if ((unsigned long) (unsigned) l != l)
287 *ret_u = (unsigned) l;
291 int safe_atoi(const char *s, int *ret_i) {
299 l = strtol(s, &x, 0);
301 if (!x || x == s || *x || errno)
302 return errno > 0 ? -errno : -EINVAL;
304 if ((long) (int) l != l)
311 int safe_atollu(const char *s, long long unsigned *ret_llu) {
313 unsigned long long l;
319 l = strtoull(s, &x, 0);
321 if (!x || x == s || *x || errno)
322 return errno ? -errno : -EINVAL;
328 int safe_atolli(const char *s, long long int *ret_lli) {
336 l = strtoll(s, &x, 0);
338 if (!x || x == s || *x || errno)
339 return errno ? -errno : -EINVAL;
345 int safe_atod(const char *s, double *ret_d) {
352 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
357 if (!x || x == s || *x || errno)
358 return errno ? -errno : -EINVAL;
364 static size_t strcspn_escaped(const char *s, const char *reject) {
365 bool escaped = false;
368 for (n=0; s[n]; n++) {
371 else if (s[n] == '\\')
373 else if (strchr(reject, s[n]))
379 /* Split a string into words. */
380 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
383 current = *state ? *state : (char*) c;
385 if (!*current || *c == 0)
388 current += strspn(current, separator);
392 if (quoted && strchr("\'\"", *current)) {
393 char quotechar = *(current++);
394 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
395 *state = current+*l+1;
397 *l = strcspn_escaped(current, separator);
400 *l = strcspn(current, separator);
404 return (char*) current;
407 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
409 _cleanup_free_ char *line = NULL;
421 p = procfs_file_alloca(pid, "stat");
422 r = read_one_line_file(p, &line);
426 /* Let's skip the pid and comm fields. The latter is enclosed
427 * in () but does not escape any () in its value, so let's
428 * skip over it manually */
430 p = strrchr(line, ')');
442 if ((long unsigned) (pid_t) ppid != ppid)
445 *_ppid = (pid_t) ppid;
450 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
452 _cleanup_free_ char *line = NULL;
458 p = procfs_file_alloca(pid, "stat");
459 r = read_one_line_file(p, &line);
463 /* Let's skip the pid and comm fields. The latter is enclosed
464 * in () but does not escape any () in its value, so let's
465 * skip over it manually */
467 p = strrchr(line, ')');
489 "%*d " /* priority */
491 "%*d " /* num_threads */
492 "%*d " /* itrealvalue */
493 "%llu " /* starttime */,
500 int fchmod_umask(int fd, mode_t m) {
505 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
511 char *truncate_nl(char *s) {
514 s[strcspn(s, NEWLINE)] = 0;
518 int get_process_state(pid_t pid) {
522 _cleanup_free_ char *line = NULL;
526 p = procfs_file_alloca(pid, "stat");
527 r = read_one_line_file(p, &line);
531 p = strrchr(line, ')');
537 if (sscanf(p, " %c", &state) != 1)
540 return (unsigned char) state;
543 int get_process_comm(pid_t pid, char **name) {
550 p = procfs_file_alloca(pid, "comm");
552 r = read_one_line_file(p, name);
559 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
560 _cleanup_fclose_ FILE *f = NULL;
568 p = procfs_file_alloca(pid, "cmdline");
574 if (max_length == 0) {
575 size_t len = 0, allocated = 0;
577 while ((c = getc(f)) != EOF) {
579 if (!GREEDY_REALLOC(r, allocated, len+2)) {
584 r[len++] = isprint(c) ? c : ' ';
594 r = new(char, max_length);
600 while ((c = getc(f)) != EOF) {
622 size_t n = MIN(left-1, 3U);
629 /* Kernel threads have no argv[] */
630 if (r == NULL || r[0] == 0) {
631 _cleanup_free_ char *t = NULL;
639 h = get_process_comm(pid, &t);
643 r = strjoin("[", t, "]", NULL);
652 int is_kernel_thread(pid_t pid) {
664 p = procfs_file_alloca(pid, "cmdline");
669 count = fread(&c, 1, 1, f);
673 /* Kernel threads have an empty cmdline */
676 return eof ? 1 : -errno;
681 int get_process_capeff(pid_t pid, char **capeff) {
687 p = procfs_file_alloca(pid, "status");
689 return get_status_field(p, "\nCapEff:", capeff);
692 int get_process_exe(pid_t pid, char **name) {
700 p = procfs_file_alloca(pid, "exe");
702 r = readlink_malloc(p, name);
704 return r == -ENOENT ? -ESRCH : r;
706 d = endswith(*name, " (deleted)");
713 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
714 _cleanup_fclose_ FILE *f = NULL;
724 p = procfs_file_alloca(pid, "status");
729 FOREACH_LINE(line, f, return -errno) {
734 if (startswith(l, field)) {
736 l += strspn(l, WHITESPACE);
738 l[strcspn(l, WHITESPACE)] = 0;
740 return parse_uid(l, uid);
747 int get_process_uid(pid_t pid, uid_t *uid) {
748 return get_process_id(pid, "Uid:", uid);
751 int get_process_gid(pid_t pid, gid_t *gid) {
752 assert_cc(sizeof(uid_t) == sizeof(gid_t));
753 return get_process_id(pid, "Gid:", gid);
756 char *strnappend(const char *s, const char *suffix, size_t b) {
764 return strndup(suffix, b);
773 if (b > ((size_t) -1) - a)
776 r = new(char, a+b+1);
781 memcpy(r+a, suffix, b);
787 char *strappend(const char *s, const char *suffix) {
788 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
791 int readlink_malloc(const char *p, char **ret) {
806 n = readlink(p, c, l-1);
813 if ((size_t) n < l-1) {
824 int readlink_and_make_absolute(const char *p, char **r) {
825 _cleanup_free_ char *target = NULL;
832 j = readlink_malloc(p, &target);
836 k = file_in_same_dir(p, target);
844 int readlink_and_canonicalize(const char *p, char **r) {
851 j = readlink_and_make_absolute(p, &t);
855 s = canonicalize_file_name(t);
862 path_kill_slashes(*r);
867 int reset_all_signal_handlers(void) {
870 for (sig = 1; sig < _NSIG; sig++) {
871 struct sigaction sa = {
872 .sa_handler = SIG_DFL,
873 .sa_flags = SA_RESTART,
876 if (sig == SIGKILL || sig == SIGSTOP)
879 /* On Linux the first two RT signals are reserved by
880 * glibc, and sigaction() will return EINVAL for them. */
881 if ((sigaction(sig, &sa, NULL) < 0))
889 char *strstrip(char *s) {
892 /* Drops trailing whitespace. Modifies the string in
893 * place. Returns pointer to first non-space character */
895 s += strspn(s, WHITESPACE);
897 for (e = strchr(s, 0); e > s; e --)
898 if (!strchr(WHITESPACE, e[-1]))
906 char *delete_chars(char *s, const char *bad) {
909 /* Drops all whitespace, regardless where in the string */
911 for (f = s, t = s; *f; f++) {
923 char *file_in_same_dir(const char *path, const char *filename) {
930 /* This removes the last component of path and appends
931 * filename, unless the latter is absolute anyway or the
934 if (path_is_absolute(filename))
935 return strdup(filename);
937 if (!(e = strrchr(path, '/')))
938 return strdup(filename);
940 k = strlen(filename);
941 if (!(r = new(char, e-path+1+k+1)))
944 memcpy(r, path, e-path+1);
945 memcpy(r+(e-path)+1, filename, k+1);
950 int rmdir_parents(const char *path, const char *stop) {
959 /* Skip trailing slashes */
960 while (l > 0 && path[l-1] == '/')
966 /* Skip last component */
967 while (l > 0 && path[l-1] != '/')
970 /* Skip trailing slashes */
971 while (l > 0 && path[l-1] == '/')
977 if (!(t = strndup(path, l)))
980 if (path_startswith(stop, t)) {
996 char hexchar(int x) {
997 static const char table[16] = "0123456789abcdef";
999 return table[x & 15];
1002 int unhexchar(char c) {
1004 if (c >= '0' && c <= '9')
1007 if (c >= 'a' && c <= 'f')
1008 return c - 'a' + 10;
1010 if (c >= 'A' && c <= 'F')
1011 return c - 'A' + 10;
1016 char *hexmem(const void *p, size_t l) {
1020 z = r = malloc(l * 2 + 1);
1024 for (x = p; x < (const uint8_t*) p + l; x++) {
1025 *(z++) = hexchar(*x >> 4);
1026 *(z++) = hexchar(*x & 15);
1033 void *unhexmem(const char *p, size_t l) {
1039 z = r = malloc((l + 1) / 2 + 1);
1043 for (x = p; x < p + l; x += 2) {
1046 a = unhexchar(x[0]);
1048 b = unhexchar(x[1]);
1052 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1059 char octchar(int x) {
1060 return '0' + (x & 7);
1063 int unoctchar(char c) {
1065 if (c >= '0' && c <= '7')
1071 char decchar(int x) {
1072 return '0' + (x % 10);
1075 int undecchar(char c) {
1077 if (c >= '0' && c <= '9')
1083 char *cescape(const char *s) {
1089 /* Does C style string escaping. */
1091 r = new(char, strlen(s)*4 + 1);
1095 for (f = s, t = r; *f; f++)
1141 /* For special chars we prefer octal over
1142 * hexadecimal encoding, simply because glib's
1143 * g_strescape() does the same */
1144 if ((*f < ' ') || (*f >= 127)) {
1146 *(t++) = octchar((unsigned char) *f >> 6);
1147 *(t++) = octchar((unsigned char) *f >> 3);
1148 *(t++) = octchar((unsigned char) *f);
1159 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1166 /* Undoes C style string escaping, and optionally prefixes it. */
1168 pl = prefix ? strlen(prefix) : 0;
1170 r = new(char, pl+length+1);
1175 memcpy(r, prefix, pl);
1177 for (f = s, t = r + pl; f < s + length; f++) {
1220 /* This is an extension of the XDG syntax files */
1225 /* hexadecimal encoding */
1228 a = unhexchar(f[1]);
1229 b = unhexchar(f[2]);
1231 if (a < 0 || b < 0) {
1232 /* Invalid escape code, let's take it literal then */
1236 *(t++) = (char) ((a << 4) | b);
1251 /* octal encoding */
1254 a = unoctchar(f[0]);
1255 b = unoctchar(f[1]);
1256 c = unoctchar(f[2]);
1258 if (a < 0 || b < 0 || c < 0) {
1259 /* Invalid escape code, let's take it literal then */
1263 *(t++) = (char) ((a << 6) | (b << 3) | c);
1271 /* premature end of string.*/
1276 /* Invalid escape code, let's take it literal then */
1288 char *cunescape_length(const char *s, size_t length) {
1289 return cunescape_length_with_prefix(s, length, NULL);
1292 char *cunescape(const char *s) {
1295 return cunescape_length(s, strlen(s));
1298 char *xescape(const char *s, const char *bad) {
1302 /* Escapes all chars in bad, in addition to \ and all special
1303 * chars, in \xFF style escaping. May be reversed with
1306 r = new(char, strlen(s) * 4 + 1);
1310 for (f = s, t = r; *f; f++) {
1312 if ((*f < ' ') || (*f >= 127) ||
1313 (*f == '\\') || strchr(bad, *f)) {
1316 *(t++) = hexchar(*f >> 4);
1317 *(t++) = hexchar(*f);
1327 char *ascii_strlower(char *t) {
1332 for (p = t; *p; p++)
1333 if (*p >= 'A' && *p <= 'Z')
1334 *p = *p - 'A' + 'a';
1339 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1343 filename[0] == '.' ||
1344 streq(filename, "lost+found") ||
1345 streq(filename, "aquota.user") ||
1346 streq(filename, "aquota.group") ||
1347 endswith(filename, ".rpmnew") ||
1348 endswith(filename, ".rpmsave") ||
1349 endswith(filename, ".rpmorig") ||
1350 endswith(filename, ".dpkg-old") ||
1351 endswith(filename, ".dpkg-new") ||
1352 endswith(filename, ".swp");
1355 bool ignore_file(const char *filename) {
1358 if (endswith(filename, "~"))
1361 return ignore_file_allow_backup(filename);
1364 int fd_nonblock(int fd, bool nonblock) {
1369 if ((flags = fcntl(fd, F_GETFL, 0)) < 0)
1373 flags |= O_NONBLOCK;
1375 flags &= ~O_NONBLOCK;
1377 if (fcntl(fd, F_SETFL, flags) < 0)
1383 int fd_cloexec(int fd, bool cloexec) {
1388 if ((flags = fcntl(fd, F_GETFD, 0)) < 0)
1392 flags |= FD_CLOEXEC;
1394 flags &= ~FD_CLOEXEC;
1396 if (fcntl(fd, F_SETFD, flags) < 0)
1402 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1405 assert(n_fdset == 0 || fdset);
1407 for (i = 0; i < n_fdset; i++)
1414 int close_all_fds(const int except[], unsigned n_except) {
1419 assert(n_except == 0 || except);
1421 d = opendir("/proc/self/fd");
1426 /* When /proc isn't available (for example in chroots)
1427 * the fallback is brute forcing through the fd
1430 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1431 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1433 if (fd_in_set(fd, except, n_except))
1436 if (close_nointr(fd) < 0)
1437 if (errno != EBADF && r == 0)
1444 while ((de = readdir(d))) {
1447 if (ignore_file(de->d_name))
1450 if (safe_atoi(de->d_name, &fd) < 0)
1451 /* Let's better ignore this, just in case */
1460 if (fd_in_set(fd, except, n_except))
1463 if (close_nointr(fd) < 0) {
1464 /* Valgrind has its own FD and doesn't want to have it closed */
1465 if (errno != EBADF && r == 0)
1474 bool chars_intersect(const char *a, const char *b) {
1477 /* Returns true if any of the chars in a are in b. */
1478 for (p = a; *p; p++)
1485 bool fstype_is_network(const char *fstype) {
1486 static const char table[] =
1496 return nulstr_contains(table, fstype);
1500 _cleanup_close_ int fd;
1502 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1508 TIOCL_GETKMSGREDIRECT,
1512 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1515 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1518 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1524 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1525 struct termios old_termios, new_termios;
1527 char line[LINE_MAX];
1532 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1533 new_termios = old_termios;
1535 new_termios.c_lflag &= ~ICANON;
1536 new_termios.c_cc[VMIN] = 1;
1537 new_termios.c_cc[VTIME] = 0;
1539 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1542 if (t != (usec_t) -1) {
1543 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1544 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1549 k = fread(&c, 1, 1, f);
1551 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1557 *need_nl = c != '\n';
1564 if (t != (usec_t) -1)
1565 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1568 if (!fgets(line, sizeof(line), f))
1573 if (strlen(line) != 1)
1583 int ask(char *ret, const char *replies, const char *text, ...) {
1593 bool need_nl = true;
1596 fputs(ANSI_HIGHLIGHT_ON, stdout);
1603 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1607 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1610 if (r == -EBADMSG) {
1611 puts("Bad input, please try again.");
1622 if (strchr(replies, c)) {
1627 puts("Read unexpected character, please try again.");
1631 int reset_terminal_fd(int fd, bool switch_to_text) {
1632 struct termios termios;
1635 /* Set terminal to some sane defaults */
1639 /* We leave locked terminal attributes untouched, so that
1640 * Plymouth may set whatever it wants to set, and we don't
1641 * interfere with that. */
1643 /* Disable exclusive mode, just in case */
1644 ioctl(fd, TIOCNXCL);
1646 /* Switch to text mode */
1648 ioctl(fd, KDSETMODE, KD_TEXT);
1650 /* Enable console unicode mode */
1651 ioctl(fd, KDSKBMODE, K_UNICODE);
1653 if (tcgetattr(fd, &termios) < 0) {
1658 /* We only reset the stuff that matters to the software. How
1659 * hardware is set up we don't touch assuming that somebody
1660 * else will do that for us */
1662 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1663 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1664 termios.c_oflag |= ONLCR;
1665 termios.c_cflag |= CREAD;
1666 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1668 termios.c_cc[VINTR] = 03; /* ^C */
1669 termios.c_cc[VQUIT] = 034; /* ^\ */
1670 termios.c_cc[VERASE] = 0177;
1671 termios.c_cc[VKILL] = 025; /* ^X */
1672 termios.c_cc[VEOF] = 04; /* ^D */
1673 termios.c_cc[VSTART] = 021; /* ^Q */
1674 termios.c_cc[VSTOP] = 023; /* ^S */
1675 termios.c_cc[VSUSP] = 032; /* ^Z */
1676 termios.c_cc[VLNEXT] = 026; /* ^V */
1677 termios.c_cc[VWERASE] = 027; /* ^W */
1678 termios.c_cc[VREPRINT] = 022; /* ^R */
1679 termios.c_cc[VEOL] = 0;
1680 termios.c_cc[VEOL2] = 0;
1682 termios.c_cc[VTIME] = 0;
1683 termios.c_cc[VMIN] = 1;
1685 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1689 /* Just in case, flush all crap out */
1690 tcflush(fd, TCIOFLUSH);
1695 int reset_terminal(const char *name) {
1698 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1702 r = reset_terminal_fd(fd, true);
1703 close_nointr_nofail(fd);
1708 int open_terminal(const char *name, int mode) {
1713 * If a TTY is in the process of being closed opening it might
1714 * cause EIO. This is horribly awful, but unlikely to be
1715 * changed in the kernel. Hence we work around this problem by
1716 * retrying a couple of times.
1718 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1721 assert(!(mode & O_CREAT));
1724 fd = open(name, mode, 0);
1731 /* Max 1s in total */
1735 usleep(50 * USEC_PER_MSEC);
1744 close_nointr_nofail(fd);
1749 close_nointr_nofail(fd);
1756 int flush_fd(int fd) {
1757 struct pollfd pollfd = {
1767 r = poll(&pollfd, 1, 0);
1777 l = read(fd, buf, sizeof(buf));
1783 if (errno == EAGAIN)
1792 int acquire_terminal(
1796 bool ignore_tiocstty_eperm,
1799 int fd = -1, notify = -1, r = 0, wd = -1;
1804 /* We use inotify to be notified when the tty is closed. We
1805 * create the watch before checking if we can actually acquire
1806 * it, so that we don't lose any event.
1808 * Note: strictly speaking this actually watches for the
1809 * device being closed, it does *not* really watch whether a
1810 * tty loses its controlling process. However, unless some
1811 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1812 * its tty otherwise this will not become a problem. As long
1813 * as the administrator makes sure not configure any service
1814 * on the same tty as an untrusted user this should not be a
1815 * problem. (Which he probably should not do anyway.) */
1817 if (timeout != (usec_t) -1)
1818 ts = now(CLOCK_MONOTONIC);
1820 if (!fail && !force) {
1821 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1827 wd = inotify_add_watch(notify, name, IN_CLOSE);
1835 struct sigaction sa_old, sa_new = {
1836 .sa_handler = SIG_IGN,
1837 .sa_flags = SA_RESTART,
1841 r = flush_fd(notify);
1846 /* We pass here O_NOCTTY only so that we can check the return
1847 * value TIOCSCTTY and have a reliable way to figure out if we
1848 * successfully became the controlling process of the tty */
1849 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1853 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1854 * if we already own the tty. */
1855 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1857 /* First, try to get the tty */
1858 if (ioctl(fd, TIOCSCTTY, force) < 0)
1861 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1863 /* Sometimes it makes sense to ignore TIOCSCTTY
1864 * returning EPERM, i.e. when very likely we already
1865 * are have this controlling terminal. */
1866 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1869 if (r < 0 && (force || fail || r != -EPERM)) {
1878 assert(notify >= 0);
1881 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1883 struct inotify_event *e;
1885 if (timeout != (usec_t) -1) {
1888 n = now(CLOCK_MONOTONIC);
1889 if (ts + timeout < n) {
1894 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1904 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1907 if (errno == EINTR || errno == EAGAIN)
1914 e = (struct inotify_event*) inotify_buffer;
1919 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1924 step = sizeof(struct inotify_event) + e->len;
1925 assert(step <= (size_t) l);
1927 e = (struct inotify_event*) ((uint8_t*) e + step);
1934 /* We close the tty fd here since if the old session
1935 * ended our handle will be dead. It's important that
1936 * we do this after sleeping, so that we don't enter
1937 * an endless loop. */
1938 close_nointr_nofail(fd);
1942 close_nointr_nofail(notify);
1944 r = reset_terminal_fd(fd, true);
1946 log_warning("Failed to reset terminal: %s", strerror(-r));
1952 close_nointr_nofail(fd);
1955 close_nointr_nofail(notify);
1960 int release_terminal(void) {
1962 struct sigaction sa_old, sa_new = {
1963 .sa_handler = SIG_IGN,
1964 .sa_flags = SA_RESTART,
1966 _cleanup_close_ int fd;
1968 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
1972 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1973 * by our own TIOCNOTTY */
1974 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1976 if (ioctl(fd, TIOCNOTTY) < 0)
1979 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1984 int sigaction_many(const struct sigaction *sa, ...) {
1989 while ((sig = va_arg(ap, int)) > 0)
1990 if (sigaction(sig, sa, NULL) < 0)
1997 int ignore_signals(int sig, ...) {
1998 struct sigaction sa = {
1999 .sa_handler = SIG_IGN,
2000 .sa_flags = SA_RESTART,
2006 if (sigaction(sig, &sa, NULL) < 0)
2010 while ((sig = va_arg(ap, int)) > 0)
2011 if (sigaction(sig, &sa, NULL) < 0)
2018 int default_signals(int sig, ...) {
2019 struct sigaction sa = {
2020 .sa_handler = SIG_DFL,
2021 .sa_flags = SA_RESTART,
2026 if (sigaction(sig, &sa, NULL) < 0)
2030 while ((sig = va_arg(ap, int)) > 0)
2031 if (sigaction(sig, &sa, NULL) < 0)
2038 int close_pipe(int p[]) {
2044 a = close_nointr(p[0]);
2049 b = close_nointr(p[1]);
2053 return a < 0 ? a : b;
2056 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2063 while (nbytes > 0) {
2066 k = read(fd, p, nbytes);
2067 if (k < 0 && errno == EINTR)
2070 if (k < 0 && errno == EAGAIN && do_poll) {
2072 /* We knowingly ignore any return value here,
2073 * and expect that any error/EOF is reported
2076 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2081 return n > 0 ? n : (k < 0 ? -errno : 0);
2091 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2092 const uint8_t *p = buf;
2098 while (nbytes > 0) {
2101 k = write(fd, p, nbytes);
2102 if (k < 0 && errno == EINTR)
2105 if (k < 0 && errno == EAGAIN && do_poll) {
2107 /* We knowingly ignore any return value here,
2108 * and expect that any error/EOF is reported
2111 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2116 return n > 0 ? n : (k < 0 ? -errno : 0);
2126 int parse_size(const char *t, off_t base, off_t *size) {
2128 /* Soo, sometimes we want to parse IEC binary suffxies, and
2129 * sometimes SI decimal suffixes. This function can parse
2130 * both. Which one is the right way depends on the
2131 * context. Wikipedia suggests that SI is customary for
2132 * hardrware metrics and network speeds, while IEC is
2133 * customary for most data sizes used by software and volatile
2134 * (RAM) memory. Hence be careful which one you pick!
2136 * In either case we use just K, M, G as suffix, and not Ki,
2137 * Mi, Gi or so (as IEC would suggest). That's because that's
2138 * frickin' ugly. But this means you really need to make sure
2139 * to document which base you are parsing when you use this
2144 unsigned long long factor;
2147 static const struct table iec[] = {
2148 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2149 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2150 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2151 { "G", 1024ULL*1024ULL*1024ULL },
2152 { "M", 1024ULL*1024ULL },
2158 static const struct table si[] = {
2159 { "E", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2160 { "P", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2161 { "T", 1000ULL*1000ULL*1000ULL*1000ULL },
2162 { "G", 1000ULL*1000ULL*1000ULL },
2163 { "M", 1000ULL*1000ULL },
2169 const struct table *table;
2171 unsigned long long r = 0;
2172 unsigned n_entries, start_pos = 0;
2175 assert(base == 1000 || base == 1024);
2180 n_entries = ELEMENTSOF(si);
2183 n_entries = ELEMENTSOF(iec);
2189 unsigned long long l2;
2195 l = strtoll(p, &e, 10);
2208 if (*e >= '0' && *e <= '9') {
2211 /* strotoull itself would accept space/+/- */
2212 l2 = strtoull(e, &e2, 10);
2214 if (errno == ERANGE)
2217 /* Ignore failure. E.g. 10.M is valid */
2224 e += strspn(e, WHITESPACE);
2226 for (i = start_pos; i < n_entries; i++)
2227 if (startswith(e, table[i].suffix)) {
2228 unsigned long long tmp;
2229 if ((unsigned long long) l + (frac > 0) > ULLONG_MAX / table[i].factor)
2231 tmp = l * table[i].factor + (unsigned long long) (frac * table[i].factor);
2232 if (tmp > ULLONG_MAX - r)
2236 if ((unsigned long long) (off_t) r != r)
2239 p = e + strlen(table[i].suffix);
2255 int make_stdio(int fd) {
2260 r = dup3(fd, STDIN_FILENO, 0);
2261 s = dup3(fd, STDOUT_FILENO, 0);
2262 t = dup3(fd, STDERR_FILENO, 0);
2265 close_nointr_nofail(fd);
2267 if (r < 0 || s < 0 || t < 0)
2270 /* We rely here that the new fd has O_CLOEXEC not set */
2275 int make_null_stdio(void) {
2278 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2282 return make_stdio(null_fd);
2285 bool is_device_path(const char *path) {
2287 /* Returns true on paths that refer to a device, either in
2288 * sysfs or in /dev */
2291 path_startswith(path, "/dev/") ||
2292 path_startswith(path, "/sys/");
2295 int dir_is_empty(const char *path) {
2296 _cleanup_closedir_ DIR *d;
2307 if (!de && errno != 0)
2313 if (!ignore_file(de->d_name))
2318 char* dirname_malloc(const char *path) {
2319 char *d, *dir, *dir2;
2336 int dev_urandom(void *p, size_t n) {
2337 _cleanup_close_ int fd;
2340 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2342 return errno == ENOENT ? -ENOSYS : -errno;
2344 k = loop_read(fd, p, n, true);
2347 if ((size_t) k != n)
2353 void random_bytes(void *p, size_t n) {
2354 static bool srand_called = false;
2358 r = dev_urandom(p, n);
2362 /* If some idiot made /dev/urandom unavailable to us, he'll
2363 * get a PRNG instead. */
2365 if (!srand_called) {
2368 #ifdef HAVE_SYS_AUXV_H
2369 /* The kernel provides us with a bit of entropy in
2370 * auxv, so let's try to make use of that to seed the
2371 * pseudo-random generator. It's better than
2376 auxv = (void*) getauxval(AT_RANDOM);
2378 x ^= *(unsigned*) auxv;
2381 x ^= (unsigned) now(CLOCK_REALTIME);
2382 x ^= (unsigned) gettid();
2385 srand_called = true;
2388 for (q = p; q < (uint8_t*) p + n; q ++)
2392 void rename_process(const char name[8]) {
2395 /* This is a like a poor man's setproctitle(). It changes the
2396 * comm field, argv[0], and also the glibc's internally used
2397 * name of the process. For the first one a limit of 16 chars
2398 * applies, to the second one usually one of 10 (i.e. length
2399 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2400 * "systemd"). If you pass a longer string it will be
2403 prctl(PR_SET_NAME, name);
2405 if (program_invocation_name)
2406 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2408 if (saved_argc > 0) {
2412 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2414 for (i = 1; i < saved_argc; i++) {
2418 memzero(saved_argv[i], strlen(saved_argv[i]));
2423 void sigset_add_many(sigset_t *ss, ...) {
2430 while ((sig = va_arg(ap, int)) > 0)
2431 assert_se(sigaddset(ss, sig) == 0);
2435 char* gethostname_malloc(void) {
2438 assert_se(uname(&u) >= 0);
2440 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2441 return strdup(u.nodename);
2443 return strdup(u.sysname);
2446 bool hostname_is_set(void) {
2449 assert_se(uname(&u) >= 0);
2451 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2454 static char *lookup_uid(uid_t uid) {
2457 _cleanup_free_ char *buf = NULL;
2458 struct passwd pwbuf, *pw = NULL;
2460 /* Shortcut things to avoid NSS lookups */
2462 return strdup("root");
2464 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2468 buf = malloc(bufsize);
2472 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2473 return strdup(pw->pw_name);
2475 if (asprintf(&name, "%lu", (unsigned long) uid) < 0)
2481 char* getlogname_malloc(void) {
2485 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2490 return lookup_uid(uid);
2493 char *getusername_malloc(void) {
2500 return lookup_uid(getuid());
2503 int getttyname_malloc(int fd, char **r) {
2504 char path[PATH_MAX], *c;
2509 k = ttyname_r(fd, path, sizeof(path));
2515 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2523 int getttyname_harder(int fd, char **r) {
2527 k = getttyname_malloc(fd, &s);
2531 if (streq(s, "tty")) {
2533 return get_ctty(0, NULL, r);
2540 int get_ctty_devnr(pid_t pid, dev_t *d) {
2542 _cleanup_free_ char *line = NULL;
2544 unsigned long ttynr;
2548 p = procfs_file_alloca(pid, "stat");
2549 r = read_one_line_file(p, &line);
2553 p = strrchr(line, ')');
2563 "%*d " /* session */
2568 if (major(ttynr) == 0 && minor(ttynr) == 0)
2577 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2578 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *b = NULL;
2579 _cleanup_free_ char *s = NULL;
2586 k = get_ctty_devnr(pid, &devnr);
2590 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2592 k = readlink_malloc(fn, &s);
2598 /* This is an ugly hack */
2599 if (major(devnr) == 136) {
2600 asprintf(&b, "pts/%lu", (unsigned long) minor(devnr));
2604 /* Probably something like the ptys which have no
2605 * symlink in /dev/char. Let's return something
2606 * vaguely useful. */
2612 if (startswith(s, "/dev/"))
2614 else if (startswith(s, "../"))
2632 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2638 /* This returns the first error we run into, but nevertheless
2639 * tries to go on. This closes the passed fd. */
2643 close_nointr_nofail(fd);
2645 return errno == ENOENT ? 0 : -errno;
2650 bool is_dir, keep_around;
2656 if (!de && errno != 0) {
2665 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2668 if (de->d_type == DT_UNKNOWN ||
2670 (de->d_type == DT_DIR && root_dev)) {
2671 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2672 if (ret == 0 && errno != ENOENT)
2677 is_dir = S_ISDIR(st.st_mode);
2680 (st.st_uid == 0 || st.st_uid == getuid()) &&
2681 (st.st_mode & S_ISVTX);
2683 is_dir = de->d_type == DT_DIR;
2684 keep_around = false;
2690 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2691 if (root_dev && st.st_dev != root_dev->st_dev)
2694 subdir_fd = openat(fd, de->d_name,
2695 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2696 if (subdir_fd < 0) {
2697 if (ret == 0 && errno != ENOENT)
2702 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2703 if (r < 0 && ret == 0)
2707 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2708 if (ret == 0 && errno != ENOENT)
2712 } else if (!only_dirs && !keep_around) {
2714 if (unlinkat(fd, de->d_name, 0) < 0) {
2715 if (ret == 0 && errno != ENOENT)
2726 _pure_ static int is_temporary_fs(struct statfs *s) {
2729 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2730 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2733 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2738 if (fstatfs(fd, &s) < 0) {
2739 close_nointr_nofail(fd);
2743 /* We refuse to clean disk file systems with this call. This
2744 * is extra paranoia just to be sure we never ever remove
2746 if (!is_temporary_fs(&s)) {
2747 log_error("Attempted to remove disk file system, and we can't allow that.");
2748 close_nointr_nofail(fd);
2752 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2755 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2761 /* We refuse to clean the root file system with this
2762 * call. This is extra paranoia to never cause a really
2763 * seriously broken system. */
2764 if (path_equal(path, "/")) {
2765 log_error("Attempted to remove entire root file system, and we can't allow that.");
2769 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2772 if (errno != ENOTDIR)
2776 if (statfs(path, &s) < 0)
2779 if (!is_temporary_fs(&s)) {
2780 log_error("Attempted to remove disk file system, and we can't allow that.");
2785 if (delete_root && !only_dirs)
2786 if (unlink(path) < 0 && errno != ENOENT)
2793 if (fstatfs(fd, &s) < 0) {
2794 close_nointr_nofail(fd);
2798 if (!is_temporary_fs(&s)) {
2799 log_error("Attempted to remove disk file system, and we can't allow that.");
2800 close_nointr_nofail(fd);
2805 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2808 if (honour_sticky && file_is_priv_sticky(path) > 0)
2811 if (rmdir(path) < 0 && errno != ENOENT) {
2820 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2821 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2824 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2825 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2828 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2831 /* Under the assumption that we are running privileged we
2832 * first change the access mode and only then hand out
2833 * ownership to avoid a window where access is too open. */
2835 if (mode != (mode_t) -1)
2836 if (chmod(path, mode) < 0)
2839 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2840 if (chown(path, uid, gid) < 0)
2846 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2849 /* Under the assumption that we are running privileged we
2850 * first change the access mode and only then hand out
2851 * ownership to avoid a window where access is too open. */
2853 if (mode != (mode_t) -1)
2854 if (fchmod(fd, mode) < 0)
2857 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2858 if (fchown(fd, uid, gid) < 0)
2864 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2868 /* Allocates the cpuset in the right size */
2871 if (!(r = CPU_ALLOC(n)))
2874 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2875 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2885 if (errno != EINVAL)
2892 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2893 static const char status_indent[] = " "; /* "[" STATUS "] " */
2894 _cleanup_free_ char *s = NULL;
2895 _cleanup_close_ int fd = -1;
2896 struct iovec iovec[6] = {};
2898 static bool prev_ephemeral;
2902 /* This is independent of logging, as status messages are
2903 * optional and go exclusively to the console. */
2905 if (vasprintf(&s, format, ap) < 0)
2908 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2921 sl = status ? sizeof(status_indent)-1 : 0;
2927 e = ellipsize(s, emax, 75);
2935 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2936 prev_ephemeral = ephemeral;
2939 if (!isempty(status)) {
2940 IOVEC_SET_STRING(iovec[n++], "[");
2941 IOVEC_SET_STRING(iovec[n++], status);
2942 IOVEC_SET_STRING(iovec[n++], "] ");
2944 IOVEC_SET_STRING(iovec[n++], status_indent);
2947 IOVEC_SET_STRING(iovec[n++], s);
2949 IOVEC_SET_STRING(iovec[n++], "\n");
2951 if (writev(fd, iovec, n) < 0)
2957 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
2963 va_start(ap, format);
2964 r = status_vprintf(status, ellipse, ephemeral, format, ap);
2970 char *replace_env(const char *format, char **env) {
2977 const char *e, *word = format;
2982 for (e = format; *e; e ++) {
2993 if (!(k = strnappend(r, word, e-word-1)))
3002 } else if (*e == '$') {
3003 if (!(k = strnappend(r, word, e-word)))
3019 t = strempty(strv_env_get_n(env, word+2, e-word-2));
3021 k = strappend(r, t);
3035 if (!(k = strnappend(r, word, e-word)))
3046 char **replace_env_argv(char **argv, char **env) {
3048 unsigned k = 0, l = 0;
3050 l = strv_length(argv);
3052 if (!(r = new(char*, l+1)))
3055 STRV_FOREACH(i, argv) {
3057 /* If $FOO appears as single word, replace it by the split up variable */
3058 if ((*i)[0] == '$' && (*i)[1] != '{') {
3063 e = strv_env_get(env, *i+1);
3066 if (!(m = strv_split_quoted(e))) {
3077 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3086 memcpy(r + k, m, q * sizeof(char*));
3094 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3095 if (!(r[k++] = replace_env(*i, env))) {
3105 int fd_columns(int fd) {
3106 struct winsize ws = {};
3108 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3117 unsigned columns(void) {
3121 if (_likely_(cached_columns > 0))
3122 return cached_columns;
3125 e = getenv("COLUMNS");
3130 c = fd_columns(STDOUT_FILENO);
3139 int fd_lines(int fd) {
3140 struct winsize ws = {};
3142 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3151 unsigned lines(void) {
3155 if (_likely_(cached_lines > 0))
3156 return cached_lines;
3159 e = getenv("LINES");
3164 l = fd_lines(STDOUT_FILENO);
3170 return cached_lines;
3173 /* intended to be used as a SIGWINCH sighandler */
3174 void columns_lines_cache_reset(int signum) {
3180 static int cached_on_tty = -1;
3182 if (_unlikely_(cached_on_tty < 0))
3183 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3185 return cached_on_tty;
3188 int files_same(const char *filea, const char *fileb) {
3191 if (stat(filea, &a) < 0)
3194 if (stat(fileb, &b) < 0)
3197 return a.st_dev == b.st_dev &&
3198 a.st_ino == b.st_ino;
3201 int running_in_chroot(void) {
3204 ret = files_same("/proc/1/root", "/");
3211 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3216 assert(percent <= 100);
3217 assert(new_length >= 3);
3219 if (old_length <= 3 || old_length <= new_length)
3220 return strndup(s, old_length);
3222 r = new0(char, new_length+1);
3226 x = (new_length * percent) / 100;
3228 if (x > new_length - 3)
3236 s + old_length - (new_length - x - 3),
3237 new_length - x - 3);
3242 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3246 unsigned k, len, len2;
3249 assert(percent <= 100);
3250 assert(new_length >= 3);
3252 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3253 if (ascii_is_valid(s))
3254 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3256 if (old_length <= 3 || old_length <= new_length)
3257 return strndup(s, old_length);
3259 x = (new_length * percent) / 100;
3261 if (x > new_length - 3)
3265 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3268 c = utf8_encoded_to_unichar(i);
3271 k += unichar_iswide(c) ? 2 : 1;
3274 if (k > x) /* last character was wide and went over quota */
3277 for (j = s + old_length; k < new_length && j > i; ) {
3280 j = utf8_prev_char(j);
3281 c = utf8_encoded_to_unichar(j);
3284 k += unichar_iswide(c) ? 2 : 1;
3288 /* we don't actually need to ellipsize */
3290 return memdup(s, old_length + 1);
3292 /* make space for ellipsis */
3293 j = utf8_next_char(j);
3296 len2 = s + old_length - j;
3297 e = new(char, len + 3 + len2 + 1);
3302 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3303 old_length, new_length, x, len, len2, k);
3307 e[len] = 0xe2; /* tri-dot ellipsis: … */
3311 memcpy(e + len + 3, j, len2 + 1);
3316 char *ellipsize(const char *s, size_t length, unsigned percent) {
3317 return ellipsize_mem(s, strlen(s), length, percent);
3320 int touch(const char *path) {
3325 /* This just opens the file for writing, ensuring it
3326 * exists. It doesn't call utimensat() the way /usr/bin/touch
3329 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
3333 close_nointr_nofail(fd);
3337 char *unquote(const char *s, const char* quotes) {
3341 /* This is rather stupid, simply removes the heading and
3342 * trailing quotes if there is one. Doesn't care about
3343 * escaping or anything. We should make this smarter one
3350 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3351 return strndup(s+1, l-2);
3356 char *normalize_env_assignment(const char *s) {
3357 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3360 eq = strchr(s, '=');
3372 memmove(r, t, strlen(t) + 1);
3376 name = strndup(s, eq - s);
3384 value = unquote(strstrip(p), QUOTES);
3388 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3394 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3405 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3417 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3424 r = wait_for_terminate(pid, &status);
3426 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3430 if (status.si_code == CLD_EXITED) {
3431 if (status.si_status != 0) {
3432 log_warning("%s failed with error code %i.", name, status.si_status);
3433 return status.si_status;
3436 log_debug("%s succeeded.", name);
3439 } else if (status.si_code == CLD_KILLED ||
3440 status.si_code == CLD_DUMPED) {
3442 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3446 log_warning("%s failed due to unknown reason.", name);
3450 noreturn void freeze(void) {
3452 /* Make sure nobody waits for us on a socket anymore */
3453 close_all_fds(NULL, 0);
3461 bool null_or_empty(struct stat *st) {
3464 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3467 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3473 int null_or_empty_path(const char *fn) {
3478 if (stat(fn, &st) < 0)
3481 return null_or_empty(&st);
3484 DIR *xopendirat(int fd, const char *name, int flags) {
3488 assert(!(flags & O_CREAT));
3490 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3496 close_nointr_nofail(nfd);
3503 int signal_from_string_try_harder(const char *s) {
3507 signo = signal_from_string(s);
3509 if (startswith(s, "SIG"))
3510 return signal_from_string(s+3);
3515 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3516 _cleanup_free_ char *t = NULL, *u = NULL;
3519 u = unquote(tagvalue, "\"\'");
3523 enc_len = strlen(u) * 4 + 1;
3524 t = new(char, enc_len);
3528 if (encode_devnode_name(u, t, enc_len) < 0)
3531 return strjoin("/dev/disk/by-", by, "/", t, NULL);
3534 char *fstab_node_to_udev_node(const char *p) {
3537 if (startswith(p, "LABEL="))
3538 return tag_to_udev_node(p+6, "label");
3540 if (startswith(p, "UUID="))
3541 return tag_to_udev_node(p+5, "uuid");
3543 if (startswith(p, "PARTUUID="))
3544 return tag_to_udev_node(p+9, "partuuid");
3546 if (startswith(p, "PARTLABEL="))
3547 return tag_to_udev_node(p+10, "partlabel");
3552 bool tty_is_vc(const char *tty) {
3555 if (startswith(tty, "/dev/"))
3558 return vtnr_from_tty(tty) >= 0;
3561 bool tty_is_console(const char *tty) {
3564 if (startswith(tty, "/dev/"))
3567 return streq(tty, "console");
3570 int vtnr_from_tty(const char *tty) {
3575 if (startswith(tty, "/dev/"))
3578 if (!startswith(tty, "tty") )
3581 if (tty[3] < '0' || tty[3] > '9')
3584 r = safe_atoi(tty+3, &i);
3588 if (i < 0 || i > 63)
3594 char *resolve_dev_console(char **active) {
3597 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3598 * (i.e. not read-only-mounted which is a sign for container setups) */
3600 if (path_is_read_only_fs("/sys") > 0)
3603 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3606 /* If multiple log outputs are configured the last one is what
3607 * /dev/console points to */
3608 tty = strrchr(*active, ' ');
3614 if (streq(tty, "tty0")) {
3617 /* Get the active VC (e.g. tty1) */
3618 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3620 tty = *active = tmp;
3627 bool tty_is_vc_resolve(const char *tty) {
3628 _cleanup_free_ char *active = NULL;
3632 if (startswith(tty, "/dev/"))
3635 if (streq(tty, "console")) {
3636 tty = resolve_dev_console(&active);
3641 return tty_is_vc(tty);
3644 const char *default_term_for_tty(const char *tty) {
3647 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3650 bool dirent_is_file(const struct dirent *de) {
3653 if (ignore_file(de->d_name))
3656 if (de->d_type != DT_REG &&
3657 de->d_type != DT_LNK &&
3658 de->d_type != DT_UNKNOWN)
3664 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3667 if (de->d_type != DT_REG &&
3668 de->d_type != DT_LNK &&
3669 de->d_type != DT_UNKNOWN)
3672 if (ignore_file_allow_backup(de->d_name))
3675 return endswith(de->d_name, suffix);
3678 void execute_directory(const char *directory, DIR *d, usec_t timeout, char *argv[]) {
3684 /* Executes all binaries in a directory in parallel and waits
3685 * for them to finish. Optionally a timeout is applied. */
3687 executor_pid = fork();
3688 if (executor_pid < 0) {
3689 log_error("Failed to fork: %m");
3692 } else if (executor_pid == 0) {
3693 _cleanup_hashmap_free_free_ Hashmap *pids = NULL;
3694 _cleanup_closedir_ DIR *_d = NULL;
3698 /* We fork this all off from a child process so that
3699 * we can somewhat cleanly make use of SIGALRM to set
3702 reset_all_signal_handlers();
3704 assert_se(sigemptyset(&ss) == 0);
3705 assert_se(sigprocmask(SIG_SETMASK, &ss, NULL) == 0);
3707 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3710 d = _d = opendir(directory);
3712 if (errno == ENOENT)
3713 _exit(EXIT_SUCCESS);
3715 log_error("Failed to enumerate directory %s: %m", directory);
3716 _exit(EXIT_FAILURE);
3720 pids = hashmap_new(NULL, NULL);
3723 _exit(EXIT_FAILURE);
3726 FOREACH_DIRENT(de, d, break) {
3727 _cleanup_free_ char *path = NULL;
3730 if (!dirent_is_file(de))
3733 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3735 _exit(EXIT_FAILURE);
3740 log_error("Failed to fork: %m");
3742 } else if (pid == 0) {
3745 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3755 log_error("Failed to execute %s: %m", path);
3756 _exit(EXIT_FAILURE);
3760 log_debug("Spawned %s as " PID_FMT ".", path, pid);
3762 r = hashmap_put(pids, UINT_TO_PTR(pid), path);
3765 _exit(EXIT_FAILURE);
3771 /* Abort execution of this process after the
3772 * timout. We simply rely on SIGALRM as default action
3773 * terminating the process, and turn on alarm(). */
3775 if (timeout != (usec_t) -1)
3776 alarm((timeout + USEC_PER_SEC - 1) / USEC_PER_SEC);
3778 while (!hashmap_isempty(pids)) {
3779 _cleanup_free_ char *path = NULL;
3782 pid = PTR_TO_UINT(hashmap_first_key(pids));
3785 path = hashmap_remove(pids, UINT_TO_PTR(pid));
3788 wait_for_terminate_and_warn(path, pid);
3791 _exit(EXIT_SUCCESS);
3794 wait_for_terminate_and_warn(directory, executor_pid);
3797 int kill_and_sigcont(pid_t pid, int sig) {
3800 r = kill(pid, sig) < 0 ? -errno : 0;
3808 bool nulstr_contains(const char*nulstr, const char *needle) {
3814 NULSTR_FOREACH(i, nulstr)
3815 if (streq(i, needle))
3821 bool plymouth_running(void) {
3822 return access("/run/plymouth/pid", F_OK) >= 0;
3825 char* strshorten(char *s, size_t l) {
3834 static bool hostname_valid_char(char c) {
3836 (c >= 'a' && c <= 'z') ||
3837 (c >= 'A' && c <= 'Z') ||
3838 (c >= '0' && c <= '9') ||
3844 bool hostname_is_valid(const char *s) {
3851 for (p = s, dot = true; *p; p++) {
3858 if (!hostname_valid_char(*p))
3868 if (p-s > HOST_NAME_MAX)
3874 char* hostname_cleanup(char *s, bool lowercase) {
3878 for (p = s, d = s, dot = true; *p; p++) {
3885 } else if (hostname_valid_char(*p)) {
3886 *(d++) = lowercase ? tolower(*p) : *p;
3897 strshorten(s, HOST_NAME_MAX);
3902 int pipe_eof(int fd) {
3903 struct pollfd pollfd = {
3905 .events = POLLIN|POLLHUP,
3910 r = poll(&pollfd, 1, 0);
3917 return pollfd.revents & POLLHUP;
3920 int fd_wait_for_event(int fd, int event, usec_t t) {
3922 struct pollfd pollfd = {
3930 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
3937 return pollfd.revents;
3940 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
3951 t = new(char, strlen(path) + 1 + 6 + 1);
3955 fn = basename(path);
3959 stpcpy(stpcpy(t+k+1, fn), "XXXXXX");
3961 fd = mkostemp_safe(t, O_WRONLY|O_CLOEXEC);
3967 f = fdopen(fd, "we");
3980 int terminal_vhangup_fd(int fd) {
3983 if (ioctl(fd, TIOCVHANGUP) < 0)
3989 int terminal_vhangup(const char *name) {
3992 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3996 r = terminal_vhangup_fd(fd);
3997 close_nointr_nofail(fd);
4002 int vt_disallocate(const char *name) {
4006 /* Deallocate the VT if possible. If not possible
4007 * (i.e. because it is the active one), at least clear it
4008 * entirely (including the scrollback buffer) */
4010 if (!startswith(name, "/dev/"))
4013 if (!tty_is_vc(name)) {
4014 /* So this is not a VT. I guess we cannot deallocate
4015 * it then. But let's at least clear the screen */
4017 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4022 "\033[r" /* clear scrolling region */
4023 "\033[H" /* move home */
4024 "\033[2J", /* clear screen */
4026 close_nointr_nofail(fd);
4031 if (!startswith(name, "/dev/tty"))
4034 r = safe_atou(name+8, &u);
4041 /* Try to deallocate */
4042 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
4046 r = ioctl(fd, VT_DISALLOCATE, u);
4047 close_nointr_nofail(fd);
4055 /* Couldn't deallocate, so let's clear it fully with
4057 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4062 "\033[r" /* clear scrolling region */
4063 "\033[H" /* move home */
4064 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4066 close_nointr_nofail(fd);
4071 int copy_file(const char *from, const char *to, int flags) {
4072 _cleanup_close_ int fdf = -1;
4078 fdf = open(from, O_RDONLY|O_CLOEXEC|O_NOCTTY);
4082 fdt = open(to, flags|O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
4090 n = read(fdf, buf, sizeof(buf));
4104 k = loop_write(fdt, buf, n, false);
4106 r = k < 0 ? k : (errno ? -errno : -EIO);
4115 r = close_nointr(fdt);
4125 int symlink_atomic(const char *from, const char *to) {
4127 _cleanup_free_ char *t;
4137 t = new(char, strlen(to) + 1 + 16 + 1);
4145 x = stpcpy(t+k+1, fn);
4148 for (i = 0; i < 16; i++) {
4149 *(x++) = hexchar(u & 0xF);
4155 if (symlink(from, t) < 0)
4158 if (rename(t, to) < 0) {
4167 bool display_is_local(const char *display) {
4171 display[0] == ':' &&
4172 display[1] >= '0' &&
4176 int socket_from_display(const char *display, char **path) {
4183 if (!display_is_local(display))
4186 k = strspn(display+1, "0123456789");
4188 f = new(char, sizeof("/tmp/.X11-unix/X") + k);
4192 c = stpcpy(f, "/tmp/.X11-unix/X");
4193 memcpy(c, display+1, k);
4202 const char **username,
4203 uid_t *uid, gid_t *gid,
4205 const char **shell) {
4213 /* We enforce some special rules for uid=0: in order to avoid
4214 * NSS lookups for root we hardcode its data. */
4216 if (streq(*username, "root") || streq(*username, "0")) {
4234 if (parse_uid(*username, &u) >= 0) {
4238 /* If there are multiple users with the same id, make
4239 * sure to leave $USER to the configured value instead
4240 * of the first occurrence in the database. However if
4241 * the uid was configured by a numeric uid, then let's
4242 * pick the real username from /etc/passwd. */
4244 *username = p->pw_name;
4247 p = getpwnam(*username);
4251 return errno > 0 ? -errno : -ESRCH;
4263 *shell = p->pw_shell;
4268 char* uid_to_name(uid_t uid) {
4273 return strdup("root");
4277 return strdup(p->pw_name);
4279 if (asprintf(&r, "%lu", (unsigned long) uid) < 0)
4285 char* gid_to_name(gid_t gid) {
4290 return strdup("root");
4294 return strdup(p->gr_name);
4296 if (asprintf(&r, "%lu", (unsigned long) gid) < 0)
4302 int get_group_creds(const char **groupname, gid_t *gid) {
4308 /* We enforce some special rules for gid=0: in order to avoid
4309 * NSS lookups for root we hardcode its data. */
4311 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4312 *groupname = "root";
4320 if (parse_gid(*groupname, &id) >= 0) {
4325 *groupname = g->gr_name;
4328 g = getgrnam(*groupname);
4332 return errno > 0 ? -errno : -ESRCH;
4340 int in_gid(gid_t gid) {
4342 int ngroups_max, r, i;
4344 if (getgid() == gid)
4347 if (getegid() == gid)
4350 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4351 assert(ngroups_max > 0);
4353 gids = alloca(sizeof(gid_t) * ngroups_max);
4355 r = getgroups(ngroups_max, gids);
4359 for (i = 0; i < r; i++)
4366 int in_group(const char *name) {
4370 r = get_group_creds(&name, &gid);
4377 int glob_exists(const char *path) {
4378 _cleanup_globfree_ glob_t g = {};
4384 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4386 if (k == GLOB_NOMATCH)
4388 else if (k == GLOB_NOSPACE)
4391 return !strv_isempty(g.gl_pathv);
4393 return errno ? -errno : -EIO;
4396 int glob_extend(char ***strv, const char *path) {
4397 _cleanup_globfree_ glob_t g = {};
4402 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4404 if (k == GLOB_NOMATCH)
4406 else if (k == GLOB_NOSPACE)
4408 else if (k != 0 || strv_isempty(g.gl_pathv))
4409 return errno ? -errno : -EIO;
4411 STRV_FOREACH(p, g.gl_pathv) {
4412 k = strv_extend(strv, *p);
4420 int dirent_ensure_type(DIR *d, struct dirent *de) {
4426 if (de->d_type != DT_UNKNOWN)
4429 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4433 S_ISREG(st.st_mode) ? DT_REG :
4434 S_ISDIR(st.st_mode) ? DT_DIR :
4435 S_ISLNK(st.st_mode) ? DT_LNK :
4436 S_ISFIFO(st.st_mode) ? DT_FIFO :
4437 S_ISSOCK(st.st_mode) ? DT_SOCK :
4438 S_ISCHR(st.st_mode) ? DT_CHR :
4439 S_ISBLK(st.st_mode) ? DT_BLK :
4445 int in_search_path(const char *path, char **search) {
4447 _cleanup_free_ char *parent = NULL;
4450 r = path_get_parent(path, &parent);
4454 STRV_FOREACH(i, search)
4455 if (path_equal(parent, *i))
4461 int get_files_in_directory(const char *path, char ***list) {
4462 _cleanup_closedir_ DIR *d = NULL;
4463 size_t bufsize = 0, n = 0;
4464 _cleanup_strv_free_ char **l = NULL;
4468 /* Returns all files in a directory in *list, and the number
4469 * of files as return value. If list is NULL returns only the
4481 if (!de && errno != 0)
4486 dirent_ensure_type(d, de);
4488 if (!dirent_is_file(de))
4492 /* one extra slot is needed for the terminating NULL */
4493 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4496 l[n] = strdup(de->d_name);
4507 l = NULL; /* avoid freeing */
4513 char *strjoin(const char *x, ...) {
4527 t = va_arg(ap, const char *);
4532 if (n > ((size_t) -1) - l) {
4556 t = va_arg(ap, const char *);
4570 bool is_main_thread(void) {
4571 static thread_local int cached = 0;
4573 if (_unlikely_(cached == 0))
4574 cached = getpid() == gettid() ? 1 : -1;
4579 int block_get_whole_disk(dev_t d, dev_t *ret) {
4586 /* If it has a queue this is good enough for us */
4587 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4590 r = access(p, F_OK);
4598 /* If it is a partition find the originating device */
4599 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4602 r = access(p, F_OK);
4608 /* Get parent dev_t */
4609 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4612 r = read_one_line_file(p, &s);
4618 r = sscanf(s, "%u:%u", &m, &n);
4624 /* Only return this if it is really good enough for us. */
4625 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4628 r = access(p, F_OK);
4632 *ret = makedev(m, n);
4639 int file_is_priv_sticky(const char *p) {
4644 if (lstat(p, &st) < 0)
4648 (st.st_uid == 0 || st.st_uid == getuid()) &&
4649 (st.st_mode & S_ISVTX);
4652 static const char *const ioprio_class_table[] = {
4653 [IOPRIO_CLASS_NONE] = "none",
4654 [IOPRIO_CLASS_RT] = "realtime",
4655 [IOPRIO_CLASS_BE] = "best-effort",
4656 [IOPRIO_CLASS_IDLE] = "idle"
4659 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4661 static const char *const sigchld_code_table[] = {
4662 [CLD_EXITED] = "exited",
4663 [CLD_KILLED] = "killed",
4664 [CLD_DUMPED] = "dumped",
4665 [CLD_TRAPPED] = "trapped",
4666 [CLD_STOPPED] = "stopped",
4667 [CLD_CONTINUED] = "continued",
4670 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4672 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4673 [LOG_FAC(LOG_KERN)] = "kern",
4674 [LOG_FAC(LOG_USER)] = "user",
4675 [LOG_FAC(LOG_MAIL)] = "mail",
4676 [LOG_FAC(LOG_DAEMON)] = "daemon",
4677 [LOG_FAC(LOG_AUTH)] = "auth",
4678 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4679 [LOG_FAC(LOG_LPR)] = "lpr",
4680 [LOG_FAC(LOG_NEWS)] = "news",
4681 [LOG_FAC(LOG_UUCP)] = "uucp",
4682 [LOG_FAC(LOG_CRON)] = "cron",
4683 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4684 [LOG_FAC(LOG_FTP)] = "ftp",
4685 [LOG_FAC(LOG_LOCAL0)] = "local0",
4686 [LOG_FAC(LOG_LOCAL1)] = "local1",
4687 [LOG_FAC(LOG_LOCAL2)] = "local2",
4688 [LOG_FAC(LOG_LOCAL3)] = "local3",
4689 [LOG_FAC(LOG_LOCAL4)] = "local4",
4690 [LOG_FAC(LOG_LOCAL5)] = "local5",
4691 [LOG_FAC(LOG_LOCAL6)] = "local6",
4692 [LOG_FAC(LOG_LOCAL7)] = "local7"
4695 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4697 static const char *const log_level_table[] = {
4698 [LOG_EMERG] = "emerg",
4699 [LOG_ALERT] = "alert",
4700 [LOG_CRIT] = "crit",
4702 [LOG_WARNING] = "warning",
4703 [LOG_NOTICE] = "notice",
4704 [LOG_INFO] = "info",
4705 [LOG_DEBUG] = "debug"
4708 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4710 static const char* const sched_policy_table[] = {
4711 [SCHED_OTHER] = "other",
4712 [SCHED_BATCH] = "batch",
4713 [SCHED_IDLE] = "idle",
4714 [SCHED_FIFO] = "fifo",
4718 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4720 static const char* const rlimit_table[_RLIMIT_MAX] = {
4721 [RLIMIT_CPU] = "LimitCPU",
4722 [RLIMIT_FSIZE] = "LimitFSIZE",
4723 [RLIMIT_DATA] = "LimitDATA",
4724 [RLIMIT_STACK] = "LimitSTACK",
4725 [RLIMIT_CORE] = "LimitCORE",
4726 [RLIMIT_RSS] = "LimitRSS",
4727 [RLIMIT_NOFILE] = "LimitNOFILE",
4728 [RLIMIT_AS] = "LimitAS",
4729 [RLIMIT_NPROC] = "LimitNPROC",
4730 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4731 [RLIMIT_LOCKS] = "LimitLOCKS",
4732 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4733 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4734 [RLIMIT_NICE] = "LimitNICE",
4735 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4736 [RLIMIT_RTTIME] = "LimitRTTIME"
4739 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4741 static const char* const ip_tos_table[] = {
4742 [IPTOS_LOWDELAY] = "low-delay",
4743 [IPTOS_THROUGHPUT] = "throughput",
4744 [IPTOS_RELIABILITY] = "reliability",
4745 [IPTOS_LOWCOST] = "low-cost",
4748 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4750 static const char *const __signal_table[] = {
4767 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4778 [SIGVTALRM] = "VTALRM",
4780 [SIGWINCH] = "WINCH",
4786 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4788 const char *signal_to_string(int signo) {
4789 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4792 name = __signal_to_string(signo);
4796 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4797 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4799 snprintf(buf, sizeof(buf), "%d", signo);
4804 int signal_from_string(const char *s) {
4809 signo = __signal_from_string(s);
4813 if (startswith(s, "RTMIN+")) {
4817 if (safe_atou(s, &u) >= 0) {
4818 signo = (int) u + offset;
4819 if (signo > 0 && signo < _NSIG)
4825 bool kexec_loaded(void) {
4826 bool loaded = false;
4829 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4837 int strdup_or_null(const char *a, char **b) {
4855 int prot_from_flags(int flags) {
4857 switch (flags & O_ACCMODE) {
4866 return PROT_READ|PROT_WRITE;
4873 char *format_bytes(char *buf, size_t l, off_t t) {
4876 static const struct {
4880 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4881 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4882 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4883 { "G", 1024ULL*1024ULL*1024ULL },
4884 { "M", 1024ULL*1024ULL },
4888 for (i = 0; i < ELEMENTSOF(table); i++) {
4890 if (t >= table[i].factor) {
4893 (unsigned long long) (t / table[i].factor),
4894 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4901 snprintf(buf, l, "%lluB", (unsigned long long) t);
4909 void* memdup(const void *p, size_t l) {
4922 int fd_inc_sndbuf(int fd, size_t n) {
4924 socklen_t l = sizeof(value);
4926 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4927 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4930 /* If we have the privileges we will ignore the kernel limit. */
4933 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4934 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
4940 int fd_inc_rcvbuf(int fd, size_t n) {
4942 socklen_t l = sizeof(value);
4944 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
4945 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4948 /* If we have the privileges we will ignore the kernel limit. */
4951 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
4952 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
4957 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
4958 pid_t parent_pid, agent_pid;
4960 bool stdout_is_tty, stderr_is_tty;
4968 parent_pid = getpid();
4970 /* Spawns a temporary TTY agent, making sure it goes away when
4977 if (agent_pid != 0) {
4984 * Make sure the agent goes away when the parent dies */
4985 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
4986 _exit(EXIT_FAILURE);
4988 /* Check whether our parent died before we were able
4989 * to set the death signal */
4990 if (getppid() != parent_pid)
4991 _exit(EXIT_SUCCESS);
4993 /* Don't leak fds to the agent */
4994 close_all_fds(except, n_except);
4996 stdout_is_tty = isatty(STDOUT_FILENO);
4997 stderr_is_tty = isatty(STDERR_FILENO);
4999 if (!stdout_is_tty || !stderr_is_tty) {
5000 /* Detach from stdout/stderr. and reopen
5001 * /dev/tty for them. This is important to
5002 * ensure that when systemctl is started via
5003 * popen() or a similar call that expects to
5004 * read EOF we actually do generate EOF and
5005 * not delay this indefinitely by because we
5006 * keep an unused copy of stdin around. */
5007 fd = open("/dev/tty", O_WRONLY);
5009 log_error("Failed to open /dev/tty: %m");
5010 _exit(EXIT_FAILURE);
5014 dup2(fd, STDOUT_FILENO);
5017 dup2(fd, STDERR_FILENO);
5023 /* Count arguments */
5025 for (n = 0; va_arg(ap, char*); n++)
5030 l = alloca(sizeof(char *) * (n + 1));
5032 /* Fill in arguments */
5034 for (i = 0; i <= n; i++)
5035 l[i] = va_arg(ap, char*);
5039 _exit(EXIT_FAILURE);
5042 int setrlimit_closest(int resource, const struct rlimit *rlim) {
5043 struct rlimit highest, fixed;
5047 if (setrlimit(resource, rlim) >= 0)
5053 /* So we failed to set the desired setrlimit, then let's try
5054 * to get as close as we can */
5055 assert_se(getrlimit(resource, &highest) == 0);
5057 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
5058 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
5060 if (setrlimit(resource, &fixed) < 0)
5066 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5067 _cleanup_fclose_ FILE *f = NULL;
5078 path = procfs_file_alloca(pid, "environ");
5080 f = fopen(path, "re");
5088 char line[LINE_MAX];
5091 for (i = 0; i < sizeof(line)-1; i++) {
5095 if (_unlikely_(c == EOF)) {
5105 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5106 value = strdup(line + l + 1);
5120 bool is_valid_documentation_url(const char *url) {
5123 if (startswith(url, "http://") && url[7])
5126 if (startswith(url, "https://") && url[8])
5129 if (startswith(url, "file:") && url[5])
5132 if (startswith(url, "info:") && url[5])
5135 if (startswith(url, "man:") && url[4])
5141 bool in_initrd(void) {
5142 static int saved = -1;
5148 /* We make two checks here:
5150 * 1. the flag file /etc/initrd-release must exist
5151 * 2. the root file system must be a memory file system
5153 * The second check is extra paranoia, since misdetecting an
5154 * initrd can have bad bad consequences due the initrd
5155 * emptying when transititioning to the main systemd.
5158 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5159 statfs("/", &s) >= 0 &&
5160 is_temporary_fs(&s);
5165 void warn_melody(void) {
5166 _cleanup_close_ int fd = -1;
5168 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5172 /* Yeah, this is synchronous. Kinda sucks. But well... */
5174 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5175 usleep(125*USEC_PER_MSEC);
5177 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5178 usleep(125*USEC_PER_MSEC);
5180 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5181 usleep(125*USEC_PER_MSEC);
5183 ioctl(fd, KIOCSOUND, 0);
5186 int make_console_stdio(void) {
5189 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5191 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5193 log_error("Failed to acquire terminal: %s", strerror(-fd));
5199 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5206 int get_home_dir(char **_h) {
5214 /* Take the user specified one */
5225 /* Hardcode home directory for root to avoid NSS */
5228 h = strdup("/root");
5236 /* Check the database... */
5240 return errno > 0 ? -errno : -ESRCH;
5242 if (!path_is_absolute(p->pw_dir))
5245 h = strdup(p->pw_dir);
5253 int get_shell(char **_s) {
5261 /* Take the user specified one */
5262 e = getenv("SHELL");
5272 /* Hardcode home directory for root to avoid NSS */
5275 s = strdup("/bin/sh");
5283 /* Check the database... */
5287 return errno > 0 ? -errno : -ESRCH;
5289 if (!path_is_absolute(p->pw_shell))
5292 s = strdup(p->pw_shell);
5300 bool filename_is_safe(const char *p) {
5314 if (strlen(p) > FILENAME_MAX)
5320 bool string_is_safe(const char *p) {
5325 for (t = p; *t; t++) {
5326 if (*t > 0 && *t < ' ')
5329 if (strchr("\\\"\'", *t))
5337 * Check if a string contains control characters.
5338 * Spaces and tabs are not considered control characters.
5340 bool string_has_cc(const char *p) {
5345 for (t = p; *t; t++)
5346 if (*t > 0 && *t < ' ' && *t != '\t')
5352 bool path_is_safe(const char *p) {
5357 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5360 if (strlen(p) > PATH_MAX)
5363 /* The following two checks are not really dangerous, but hey, they still are confusing */
5364 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5367 if (strstr(p, "//"))
5373 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5374 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5375 int (*compar) (const void *, const void *, void *), void *arg) {
5384 p = (void *)(((const char *) base) + (idx * size));
5385 comparison = compar(key, p, arg);
5388 else if (comparison > 0)
5396 bool is_locale_utf8(void) {
5398 static int cached_answer = -1;
5400 if (cached_answer >= 0)
5403 if (!setlocale(LC_ALL, "")) {
5404 cached_answer = true;
5408 set = nl_langinfo(CODESET);
5410 cached_answer = true;
5414 if (streq(set, "UTF-8")) {
5415 cached_answer = true;
5419 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5420 * unset and everything can do to UTF-8 nowadays. */
5421 set = setlocale(LC_CTYPE, NULL);
5423 cached_answer = true;
5427 /* Check result, but ignore the result if C was set
5431 !getenv("LC_ALL") &&
5432 !getenv("LC_CTYPE") &&
5436 return (bool) cached_answer;
5439 const char *draw_special_char(DrawSpecialChar ch) {
5440 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5442 [DRAW_TREE_VERT] = "\342\224\202 ", /* │ */
5443 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5444 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5445 [DRAW_TREE_SPACE] = " ", /* */
5446 [DRAW_TRIANGULAR_BULLET] = "\342\200\243 ", /* ‣ */
5447 [DRAW_BLACK_CIRCLE] = "\342\227\217 ", /* ● */
5449 /* ASCII fallback */ {
5450 [DRAW_TREE_VERT] = "| ",
5451 [DRAW_TREE_BRANCH] = "|-",
5452 [DRAW_TREE_RIGHT] = "`-",
5453 [DRAW_TREE_SPACE] = " ",
5454 [DRAW_TRIANGULAR_BULLET] = "> ",
5455 [DRAW_BLACK_CIRCLE] = "* ",
5459 return draw_table[!is_locale_utf8()][ch];
5462 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5465 size_t l, old_len, new_len;
5471 old_len = strlen(old_string);
5472 new_len = strlen(new_string);
5485 if (!startswith(f, old_string)) {
5491 nl = l - old_len + new_len;
5492 a = realloc(r, nl + 1);
5500 t = stpcpy(t, new_string);
5512 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5513 const char *i, *begin = NULL;
5518 } state = STATE_OTHER;
5520 size_t osz = 0, isz;
5526 /* Strips ANSI color and replaces TABs by 8 spaces */
5528 isz = _isz ? *_isz : strlen(*ibuf);
5530 f = open_memstream(&obuf, &osz);
5534 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5539 if (i >= *ibuf + isz) /* EOT */
5541 else if (*i == '\x1B')
5542 state = STATE_ESCAPE;
5543 else if (*i == '\t')
5550 if (i >= *ibuf + isz) { /* EOT */
5553 } else if (*i == '[') {
5554 state = STATE_BRACKET;
5559 state = STATE_OTHER;
5566 if (i >= *ibuf + isz || /* EOT */
5567 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5570 state = STATE_OTHER;
5572 } else if (*i == 'm')
5573 state = STATE_OTHER;
5595 int on_ac_power(void) {
5596 bool found_offline = false, found_online = false;
5597 _cleanup_closedir_ DIR *d = NULL;
5599 d = opendir("/sys/class/power_supply");
5605 _cleanup_close_ int fd = -1, device = -1;
5611 if (!de && errno != 0)
5617 if (ignore_file(de->d_name))
5620 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5622 if (errno == ENOENT || errno == ENOTDIR)
5628 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5630 if (errno == ENOENT)
5636 n = read(fd, contents, sizeof(contents));
5640 if (n != 6 || memcmp(contents, "Mains\n", 6))
5643 close_nointr_nofail(fd);
5644 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5646 if (errno == ENOENT)
5652 n = read(fd, contents, sizeof(contents));
5656 if (n != 2 || contents[1] != '\n')
5659 if (contents[0] == '1') {
5660 found_online = true;
5662 } else if (contents[0] == '0')
5663 found_offline = true;
5668 return found_online || !found_offline;
5671 static int search_and_fopen_internal(const char *path, const char *mode, const char *root, char **search, FILE **_f) {
5678 if (!path_strv_canonicalize_absolute_uniq(search, root))
5681 STRV_FOREACH(i, search) {
5682 _cleanup_free_ char *p = NULL;
5685 p = strjoin(*i, "/", path, NULL);
5695 if (errno != ENOENT)
5702 int search_and_fopen(const char *path, const char *mode, const char *root, const char **search, FILE **_f) {
5703 _cleanup_strv_free_ char **copy = NULL;
5709 if (path_is_absolute(path)) {
5712 f = fopen(path, mode);
5721 copy = strv_copy((char**) search);
5725 return search_and_fopen_internal(path, mode, root, copy, _f);
5728 int search_and_fopen_nulstr(const char *path, const char *mode, const char *root, const char *search, FILE **_f) {
5729 _cleanup_strv_free_ char **s = NULL;
5731 if (path_is_absolute(path)) {
5734 f = fopen(path, mode);
5743 s = strv_split_nulstr(search);
5747 return search_and_fopen_internal(path, mode, root, s, _f);
5750 char *strextend(char **x, ...) {
5757 l = f = *x ? strlen(*x) : 0;
5764 t = va_arg(ap, const char *);
5769 if (n > ((size_t) -1) - l) {
5778 r = realloc(*x, l+1);
5788 t = va_arg(ap, const char *);
5802 char *strrep(const char *s, unsigned n) {
5810 p = r = malloc(l * n + 1);
5814 for (i = 0; i < n; i++)
5821 void* greedy_realloc(void **p, size_t *allocated, size_t need) {
5828 if (*allocated >= need)
5831 a = MAX(64u, need * 2);
5833 /* check for overflows */
5846 void* greedy_realloc0(void **p, size_t *allocated, size_t need) {
5855 q = greedy_realloc(p, allocated, need);
5859 if (*allocated > prev)
5860 memzero(&q[prev], *allocated - prev);
5865 bool id128_is_valid(const char *s) {
5871 /* Simple formatted 128bit hex string */
5873 for (i = 0; i < l; i++) {
5876 if (!(c >= '0' && c <= '9') &&
5877 !(c >= 'a' && c <= 'z') &&
5878 !(c >= 'A' && c <= 'Z'))
5882 } else if (l == 36) {
5884 /* Formatted UUID */
5886 for (i = 0; i < l; i++) {
5889 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5893 if (!(c >= '0' && c <= '9') &&
5894 !(c >= 'a' && c <= 'z') &&
5895 !(c >= 'A' && c <= 'Z'))
5906 int split_pair(const char *s, const char *sep, char **l, char **r) {
5921 a = strndup(s, x - s);
5925 b = strdup(x + strlen(sep));
5937 int shall_restore_state(void) {
5938 _cleanup_free_ char *line = NULL;
5943 r = proc_cmdline(&line);
5946 if (r == 0) /* Container ... */
5951 FOREACH_WORD_QUOTED(w, l, line, state) {
5959 e = startswith(n, "systemd.restore_state=");
5963 k = parse_boolean(e);
5971 int proc_cmdline(char **ret) {
5974 if (detect_container(NULL) > 0) {
5975 char *buf = NULL, *p;
5978 r = read_full_file("/proc/1/cmdline", &buf, &sz);
5982 for (p = buf; p + 1 < buf + sz; p++)
5991 r = read_one_line_file("/proc/cmdline", ret);
5998 int parse_proc_cmdline(int (*parse_item)(const char *key, const char *value)) {
5999 _cleanup_free_ char *line = NULL;
6006 r = proc_cmdline(&line);
6008 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
6012 FOREACH_WORD_QUOTED(w, l, line, state) {
6013 char word[l+1], *value;
6018 /* Filter out arguments that are intended only for the
6020 if (!in_initrd() && startswith(word, "rd."))
6023 value = strchr(word, '=');
6027 r = parse_item(word, value);
6035 int container_get_leader(const char *machine, pid_t *pid) {
6036 _cleanup_free_ char *s = NULL, *class = NULL;
6044 p = strappenda("/run/systemd/machines/", machine);
6045 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
6053 if (!streq_ptr(class, "container"))
6056 r = parse_pid(s, &leader);
6066 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *root_fd) {
6067 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1;
6068 const char *pidns, *mntns, *root;
6076 mntns = procfs_file_alloca(pid, "ns/mnt");
6077 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6081 pidns = procfs_file_alloca(pid, "ns/pid");
6082 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6086 root = procfs_file_alloca(pid, "root");
6087 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
6091 *pidns_fd = pidnsfd;
6092 *mntns_fd = mntnsfd;
6100 int namespace_enter(int pidns_fd, int mntns_fd, int root_fd) {
6101 assert(pidns_fd >= 0);
6102 assert(mntns_fd >= 0);
6103 assert(root_fd >= 0);
6105 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6108 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6111 if (fchdir(root_fd) < 0)
6114 if (chroot(".") < 0)
6117 if (setresgid(0, 0, 0) < 0)
6120 if (setresuid(0, 0, 0) < 0)
6126 bool pid_is_unwaited(pid_t pid) {
6127 /* Checks whether a PID is still valid at all, including a zombie */
6132 if (kill(pid, 0) >= 0)
6135 return errno != ESRCH;
6138 bool pid_is_alive(pid_t pid) {
6141 /* Checks whether a PID is still valid and not a zombie */
6146 r = get_process_state(pid);
6147 if (r == -ENOENT || r == 'Z')
6153 int getpeercred(int fd, struct ucred *ucred) {
6154 socklen_t n = sizeof(struct ucred);
6161 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6165 if (n != sizeof(struct ucred))
6168 /* Check if the data is actually useful and not suppressed due
6169 * to namespacing issues */
6177 int getpeersec(int fd, char **ret) {
6189 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6193 if (errno != ERANGE)
6200 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6216 /* This is much like like mkostemp() but is subject to umask(). */
6217 int mkostemp_safe(char *pattern, int flags) {
6218 _cleanup_umask_ mode_t u;
6225 fd = mkostemp(pattern, flags);
6232 int open_tmpfile(const char *path, int flags) {
6239 /* Try O_TMPFILE first, if it is supported */
6240 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6245 /* Fall back to unguessable name + unlinking */
6246 p = strappenda(path, "/systemd-tmp-XXXXXX");
6248 fd = mkostemp_safe(p, flags);
6256 int fd_warn_permissions(const char *path, int fd) {
6259 if (fstat(fd, &st) < 0)
6262 if (st.st_mode & 0111)
6263 log_warning("Configuration file %s is marked executable. Please remove executable permission bits. Proceeding anyway.", path);
6265 if (st.st_mode & 0002)
6266 log_warning("Configuration file %s is marked world-writable. Please remove world writability permission bits. Proceeding anyway.", path);
6268 if (getpid() == 1 && (st.st_mode & 0044) != 0044)
6269 log_warning("Configuration file %s is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.", path);
6274 unsigned long personality_from_string(const char *p) {
6276 /* Parse a personality specifier. We introduce our own
6277 * identifiers that indicate specific ABIs, rather than just
6278 * hints regarding the register size, since we want to keep
6279 * things open for multiple locally supported ABIs for the
6280 * same register size. We try to reuse the ABI identifiers
6281 * used by libseccomp. */
6283 #if defined(__x86_64__)
6285 if (streq(p, "x86"))
6288 if (streq(p, "x86-64"))
6291 #elif defined(__i386__)
6293 if (streq(p, "x86"))
6297 /* personality(7) documents that 0xffffffffUL is used for
6298 * querying the current personality, hence let's use that here
6299 * as error indicator. */
6300 return 0xffffffffUL;
6303 const char* personality_to_string(unsigned long p) {
6305 #if defined(__x86_64__)
6307 if (p == PER_LINUX32)
6313 #elif defined(__i386__)
6322 uint64_t physical_memory(void) {
6325 /* We return this as uint64_t in case we are running as 32bit
6326 * process on a 64bit kernel with huge amounts of memory */
6328 mem = sysconf(_SC_PHYS_PAGES);
6331 return (uint64_t) mem * (uint64_t) page_size();
6334 char* mount_test_option(const char *haystack, const char *needle) {
6336 struct mntent me = {
6337 .mnt_opts = (char*) haystack
6342 /* Like glibc's hasmntopt(), but works on a string, not a
6348 return hasmntopt(&me, needle);
6351 void hexdump(FILE *f, const void *p, size_t s) {
6352 const uint8_t *b = p;
6355 assert(s == 0 || b);
6360 fprintf(f, "%04x ", n);
6362 for (i = 0; i < 16; i++) {
6367 fprintf(f, "%02x ", b[i]);
6375 for (i = 0; i < 16; i++) {
6380 fputc(isprint(b[i]) ? (char) b[i] : '.', f);
~ianmdlvl / elogind.git / blob