1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <linux/magic.h>
61 #include <sys/personality.h>
65 #ifdef HAVE_SYS_AUXV_H
77 #include "path-util.h"
78 #include "exit-status.h"
82 #include "device-nodes.h"
89 char **saved_argv = NULL;
91 static volatile unsigned cached_columns = 0;
92 static volatile unsigned cached_lines = 0;
94 size_t page_size(void) {
95 static thread_local size_t pgsz = 0;
98 if (_likely_(pgsz > 0))
101 r = sysconf(_SC_PAGESIZE);
108 bool streq_ptr(const char *a, const char *b) {
110 /* Like streq(), but tries to make sense of NULL pointers */
121 char* endswith(const char *s, const char *postfix) {
128 pl = strlen(postfix);
131 return (char*) s + sl;
136 if (memcmp(s + sl - pl, postfix, pl) != 0)
139 return (char*) s + sl - pl;
142 bool first_word(const char *s, const char *word) {
157 if (memcmp(s, word, wl) != 0)
161 strchr(WHITESPACE, s[wl]);
164 int close_nointr(int fd) {
171 else if (errno == EINTR)
173 * Just ignore EINTR; a retry loop is the wrong
174 * thing to do on Linux.
176 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
177 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
178 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
179 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
186 int safe_close(int fd) {
189 * Like close_nointr() but cannot fail. Guarantees errno is
190 * unchanged. Is a NOP with negative fds passed, and returns
191 * -1, so that it can be used in this syntax:
193 * fd = safe_close(fd);
199 /* The kernel might return pretty much any error code
200 * via close(), but the fd will be closed anyway. The
201 * only condition we want to check for here is whether
202 * the fd was invalid at all... */
204 assert_se(close_nointr(fd) != -EBADF);
210 void close_many(const int fds[], unsigned n_fd) {
213 assert(fds || n_fd <= 0);
215 for (i = 0; i < n_fd; i++)
219 int unlink_noerrno(const char *path) {
230 int parse_boolean(const char *v) {
233 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
235 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
241 int parse_pid(const char *s, pid_t* ret_pid) {
242 unsigned long ul = 0;
249 r = safe_atolu(s, &ul);
255 if ((unsigned long) pid != ul)
265 int parse_uid(const char *s, uid_t* ret_uid) {
266 unsigned long ul = 0;
273 r = safe_atolu(s, &ul);
279 if ((unsigned long) uid != ul)
286 int safe_atou(const char *s, unsigned *ret_u) {
294 l = strtoul(s, &x, 0);
296 if (!x || x == s || *x || errno)
297 return errno > 0 ? -errno : -EINVAL;
299 if ((unsigned long) (unsigned) l != l)
302 *ret_u = (unsigned) l;
306 int safe_atoi(const char *s, int *ret_i) {
314 l = strtol(s, &x, 0);
316 if (!x || x == s || *x || errno)
317 return errno > 0 ? -errno : -EINVAL;
319 if ((long) (int) l != l)
326 int safe_atollu(const char *s, long long unsigned *ret_llu) {
328 unsigned long long l;
334 l = strtoull(s, &x, 0);
336 if (!x || x == s || *x || errno)
337 return errno ? -errno : -EINVAL;
343 int safe_atolli(const char *s, long long int *ret_lli) {
351 l = strtoll(s, &x, 0);
353 if (!x || x == s || *x || errno)
354 return errno ? -errno : -EINVAL;
360 int safe_atod(const char *s, double *ret_d) {
367 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
372 if (!x || x == s || *x || errno)
373 return errno ? -errno : -EINVAL;
379 static size_t strcspn_escaped(const char *s, const char *reject) {
380 bool escaped = false;
383 for (n=0; s[n]; n++) {
386 else if (s[n] == '\\')
388 else if (strchr(reject, s[n]))
394 /* Split a string into words. */
395 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
398 current = *state ? *state : (char*) c;
400 if (!*current || *c == 0)
403 current += strspn(current, separator);
407 if (quoted && strchr("\'\"", *current)) {
408 char quotechar = *(current++);
409 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
410 *state = current+*l+1;
412 *l = strcspn_escaped(current, separator);
415 *l = strcspn(current, separator);
419 return (char*) current;
422 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
424 _cleanup_free_ char *line = NULL;
436 p = procfs_file_alloca(pid, "stat");
437 r = read_one_line_file(p, &line);
441 /* Let's skip the pid and comm fields. The latter is enclosed
442 * in () but does not escape any () in its value, so let's
443 * skip over it manually */
445 p = strrchr(line, ')');
457 if ((long unsigned) (pid_t) ppid != ppid)
460 *_ppid = (pid_t) ppid;
465 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
467 _cleanup_free_ char *line = NULL;
473 p = procfs_file_alloca(pid, "stat");
474 r = read_one_line_file(p, &line);
478 /* Let's skip the pid and comm fields. The latter is enclosed
479 * in () but does not escape any () in its value, so let's
480 * skip over it manually */
482 p = strrchr(line, ')');
504 "%*d " /* priority */
506 "%*d " /* num_threads */
507 "%*d " /* itrealvalue */
508 "%llu " /* starttime */,
515 int fchmod_umask(int fd, mode_t m) {
520 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
526 char *truncate_nl(char *s) {
529 s[strcspn(s, NEWLINE)] = 0;
533 int get_process_state(pid_t pid) {
537 _cleanup_free_ char *line = NULL;
541 p = procfs_file_alloca(pid, "stat");
542 r = read_one_line_file(p, &line);
546 p = strrchr(line, ')');
552 if (sscanf(p, " %c", &state) != 1)
555 return (unsigned char) state;
558 int get_process_comm(pid_t pid, char **name) {
565 p = procfs_file_alloca(pid, "comm");
567 r = read_one_line_file(p, name);
574 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
575 _cleanup_fclose_ FILE *f = NULL;
583 p = procfs_file_alloca(pid, "cmdline");
589 if (max_length == 0) {
590 size_t len = 0, allocated = 0;
592 while ((c = getc(f)) != EOF) {
594 if (!GREEDY_REALLOC(r, allocated, len+2)) {
599 r[len++] = isprint(c) ? c : ' ';
609 r = new(char, max_length);
615 while ((c = getc(f)) != EOF) {
637 size_t n = MIN(left-1, 3U);
644 /* Kernel threads have no argv[] */
645 if (r == NULL || r[0] == 0) {
646 _cleanup_free_ char *t = NULL;
654 h = get_process_comm(pid, &t);
658 r = strjoin("[", t, "]", NULL);
667 int is_kernel_thread(pid_t pid) {
679 p = procfs_file_alloca(pid, "cmdline");
684 count = fread(&c, 1, 1, f);
688 /* Kernel threads have an empty cmdline */
691 return eof ? 1 : -errno;
696 int get_process_capeff(pid_t pid, char **capeff) {
702 p = procfs_file_alloca(pid, "status");
704 return get_status_field(p, "\nCapEff:", capeff);
707 int get_process_exe(pid_t pid, char **name) {
715 p = procfs_file_alloca(pid, "exe");
717 r = readlink_malloc(p, name);
719 return r == -ENOENT ? -ESRCH : r;
721 d = endswith(*name, " (deleted)");
728 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
729 _cleanup_fclose_ FILE *f = NULL;
739 p = procfs_file_alloca(pid, "status");
744 FOREACH_LINE(line, f, return -errno) {
749 if (startswith(l, field)) {
751 l += strspn(l, WHITESPACE);
753 l[strcspn(l, WHITESPACE)] = 0;
755 return parse_uid(l, uid);
762 int get_process_uid(pid_t pid, uid_t *uid) {
763 return get_process_id(pid, "Uid:", uid);
766 int get_process_gid(pid_t pid, gid_t *gid) {
767 assert_cc(sizeof(uid_t) == sizeof(gid_t));
768 return get_process_id(pid, "Gid:", gid);
771 char *strnappend(const char *s, const char *suffix, size_t b) {
779 return strndup(suffix, b);
788 if (b > ((size_t) -1) - a)
791 r = new(char, a+b+1);
796 memcpy(r+a, suffix, b);
802 char *strappend(const char *s, const char *suffix) {
803 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
806 int readlink_malloc(const char *p, char **ret) {
821 n = readlink(p, c, l-1);
828 if ((size_t) n < l-1) {
839 int readlink_and_make_absolute(const char *p, char **r) {
840 _cleanup_free_ char *target = NULL;
847 j = readlink_malloc(p, &target);
851 k = file_in_same_dir(p, target);
859 int readlink_and_canonicalize(const char *p, char **r) {
866 j = readlink_and_make_absolute(p, &t);
870 s = canonicalize_file_name(t);
877 path_kill_slashes(*r);
882 int reset_all_signal_handlers(void) {
885 for (sig = 1; sig < _NSIG; sig++) {
886 struct sigaction sa = {
887 .sa_handler = SIG_DFL,
888 .sa_flags = SA_RESTART,
891 if (sig == SIGKILL || sig == SIGSTOP)
894 /* On Linux the first two RT signals are reserved by
895 * glibc, and sigaction() will return EINVAL for them. */
896 if ((sigaction(sig, &sa, NULL) < 0))
904 char *strstrip(char *s) {
907 /* Drops trailing whitespace. Modifies the string in
908 * place. Returns pointer to first non-space character */
910 s += strspn(s, WHITESPACE);
912 for (e = strchr(s, 0); e > s; e --)
913 if (!strchr(WHITESPACE, e[-1]))
921 char *delete_chars(char *s, const char *bad) {
924 /* Drops all whitespace, regardless where in the string */
926 for (f = s, t = s; *f; f++) {
938 char *file_in_same_dir(const char *path, const char *filename) {
945 /* This removes the last component of path and appends
946 * filename, unless the latter is absolute anyway or the
949 if (path_is_absolute(filename))
950 return strdup(filename);
952 if (!(e = strrchr(path, '/')))
953 return strdup(filename);
955 k = strlen(filename);
956 if (!(r = new(char, e-path+1+k+1)))
959 memcpy(r, path, e-path+1);
960 memcpy(r+(e-path)+1, filename, k+1);
965 int rmdir_parents(const char *path, const char *stop) {
974 /* Skip trailing slashes */
975 while (l > 0 && path[l-1] == '/')
981 /* Skip last component */
982 while (l > 0 && path[l-1] != '/')
985 /* Skip trailing slashes */
986 while (l > 0 && path[l-1] == '/')
992 if (!(t = strndup(path, l)))
995 if (path_startswith(stop, t)) {
1004 if (errno != ENOENT)
1011 char hexchar(int x) {
1012 static const char table[16] = "0123456789abcdef";
1014 return table[x & 15];
1017 int unhexchar(char c) {
1019 if (c >= '0' && c <= '9')
1022 if (c >= 'a' && c <= 'f')
1023 return c - 'a' + 10;
1025 if (c >= 'A' && c <= 'F')
1026 return c - 'A' + 10;
1031 char *hexmem(const void *p, size_t l) {
1035 z = r = malloc(l * 2 + 1);
1039 for (x = p; x < (const uint8_t*) p + l; x++) {
1040 *(z++) = hexchar(*x >> 4);
1041 *(z++) = hexchar(*x & 15);
1048 void *unhexmem(const char *p, size_t l) {
1054 z = r = malloc((l + 1) / 2 + 1);
1058 for (x = p; x < p + l; x += 2) {
1061 a = unhexchar(x[0]);
1063 b = unhexchar(x[1]);
1067 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1074 char octchar(int x) {
1075 return '0' + (x & 7);
1078 int unoctchar(char c) {
1080 if (c >= '0' && c <= '7')
1086 char decchar(int x) {
1087 return '0' + (x % 10);
1090 int undecchar(char c) {
1092 if (c >= '0' && c <= '9')
1098 char *cescape(const char *s) {
1104 /* Does C style string escaping. */
1106 r = new(char, strlen(s)*4 + 1);
1110 for (f = s, t = r; *f; f++)
1156 /* For special chars we prefer octal over
1157 * hexadecimal encoding, simply because glib's
1158 * g_strescape() does the same */
1159 if ((*f < ' ') || (*f >= 127)) {
1161 *(t++) = octchar((unsigned char) *f >> 6);
1162 *(t++) = octchar((unsigned char) *f >> 3);
1163 *(t++) = octchar((unsigned char) *f);
1174 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1181 /* Undoes C style string escaping, and optionally prefixes it. */
1183 pl = prefix ? strlen(prefix) : 0;
1185 r = new(char, pl+length+1);
1190 memcpy(r, prefix, pl);
1192 for (f = s, t = r + pl; f < s + length; f++) {
1235 /* This is an extension of the XDG syntax files */
1240 /* hexadecimal encoding */
1243 a = unhexchar(f[1]);
1244 b = unhexchar(f[2]);
1246 if (a < 0 || b < 0) {
1247 /* Invalid escape code, let's take it literal then */
1251 *(t++) = (char) ((a << 4) | b);
1266 /* octal encoding */
1269 a = unoctchar(f[0]);
1270 b = unoctchar(f[1]);
1271 c = unoctchar(f[2]);
1273 if (a < 0 || b < 0 || c < 0) {
1274 /* Invalid escape code, let's take it literal then */
1278 *(t++) = (char) ((a << 6) | (b << 3) | c);
1286 /* premature end of string.*/
1291 /* Invalid escape code, let's take it literal then */
1303 char *cunescape_length(const char *s, size_t length) {
1304 return cunescape_length_with_prefix(s, length, NULL);
1307 char *cunescape(const char *s) {
1310 return cunescape_length(s, strlen(s));
1313 char *xescape(const char *s, const char *bad) {
1317 /* Escapes all chars in bad, in addition to \ and all special
1318 * chars, in \xFF style escaping. May be reversed with
1321 r = new(char, strlen(s) * 4 + 1);
1325 for (f = s, t = r; *f; f++) {
1327 if ((*f < ' ') || (*f >= 127) ||
1328 (*f == '\\') || strchr(bad, *f)) {
1331 *(t++) = hexchar(*f >> 4);
1332 *(t++) = hexchar(*f);
1342 char *ascii_strlower(char *t) {
1347 for (p = t; *p; p++)
1348 if (*p >= 'A' && *p <= 'Z')
1349 *p = *p - 'A' + 'a';
1354 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1358 filename[0] == '.' ||
1359 streq(filename, "lost+found") ||
1360 streq(filename, "aquota.user") ||
1361 streq(filename, "aquota.group") ||
1362 endswith(filename, ".rpmnew") ||
1363 endswith(filename, ".rpmsave") ||
1364 endswith(filename, ".rpmorig") ||
1365 endswith(filename, ".dpkg-old") ||
1366 endswith(filename, ".dpkg-new") ||
1367 endswith(filename, ".swp");
1370 bool ignore_file(const char *filename) {
1373 if (endswith(filename, "~"))
1376 return ignore_file_allow_backup(filename);
1379 int fd_nonblock(int fd, bool nonblock) {
1384 flags = fcntl(fd, F_GETFL, 0);
1389 nflags = flags | O_NONBLOCK;
1391 nflags = flags & ~O_NONBLOCK;
1393 if (nflags == flags)
1396 if (fcntl(fd, F_SETFL, nflags) < 0)
1402 int fd_cloexec(int fd, bool cloexec) {
1407 flags = fcntl(fd, F_GETFD, 0);
1412 nflags = flags | FD_CLOEXEC;
1414 nflags = flags & ~FD_CLOEXEC;
1416 if (nflags == flags)
1419 if (fcntl(fd, F_SETFD, nflags) < 0)
1425 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1428 assert(n_fdset == 0 || fdset);
1430 for (i = 0; i < n_fdset; i++)
1437 int close_all_fds(const int except[], unsigned n_except) {
1442 assert(n_except == 0 || except);
1444 d = opendir("/proc/self/fd");
1449 /* When /proc isn't available (for example in chroots)
1450 * the fallback is brute forcing through the fd
1453 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1454 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1456 if (fd_in_set(fd, except, n_except))
1459 if (close_nointr(fd) < 0)
1460 if (errno != EBADF && r == 0)
1467 while ((de = readdir(d))) {
1470 if (ignore_file(de->d_name))
1473 if (safe_atoi(de->d_name, &fd) < 0)
1474 /* Let's better ignore this, just in case */
1483 if (fd_in_set(fd, except, n_except))
1486 if (close_nointr(fd) < 0) {
1487 /* Valgrind has its own FD and doesn't want to have it closed */
1488 if (errno != EBADF && r == 0)
1497 bool chars_intersect(const char *a, const char *b) {
1500 /* Returns true if any of the chars in a are in b. */
1501 for (p = a; *p; p++)
1508 bool fstype_is_network(const char *fstype) {
1509 static const char table[] =
1522 x = startswith(fstype, "fuse.");
1526 return nulstr_contains(table, fstype);
1530 _cleanup_close_ int fd;
1532 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1538 TIOCL_GETKMSGREDIRECT,
1542 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1545 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1548 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1554 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1555 struct termios old_termios, new_termios;
1557 char line[LINE_MAX];
1562 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1563 new_termios = old_termios;
1565 new_termios.c_lflag &= ~ICANON;
1566 new_termios.c_cc[VMIN] = 1;
1567 new_termios.c_cc[VTIME] = 0;
1569 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1572 if (t != (usec_t) -1) {
1573 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1574 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1579 k = fread(&c, 1, 1, f);
1581 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1587 *need_nl = c != '\n';
1594 if (t != (usec_t) -1)
1595 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1598 if (!fgets(line, sizeof(line), f))
1603 if (strlen(line) != 1)
1613 int ask(char *ret, const char *replies, const char *text, ...) {
1623 bool need_nl = true;
1626 fputs(ANSI_HIGHLIGHT_ON, stdout);
1633 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1637 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1640 if (r == -EBADMSG) {
1641 puts("Bad input, please try again.");
1652 if (strchr(replies, c)) {
1657 puts("Read unexpected character, please try again.");
1661 int reset_terminal_fd(int fd, bool switch_to_text) {
1662 struct termios termios;
1665 /* Set terminal to some sane defaults */
1669 /* We leave locked terminal attributes untouched, so that
1670 * Plymouth may set whatever it wants to set, and we don't
1671 * interfere with that. */
1673 /* Disable exclusive mode, just in case */
1674 ioctl(fd, TIOCNXCL);
1676 /* Switch to text mode */
1678 ioctl(fd, KDSETMODE, KD_TEXT);
1680 /* Enable console unicode mode */
1681 ioctl(fd, KDSKBMODE, K_UNICODE);
1683 if (tcgetattr(fd, &termios) < 0) {
1688 /* We only reset the stuff that matters to the software. How
1689 * hardware is set up we don't touch assuming that somebody
1690 * else will do that for us */
1692 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1693 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1694 termios.c_oflag |= ONLCR;
1695 termios.c_cflag |= CREAD;
1696 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1698 termios.c_cc[VINTR] = 03; /* ^C */
1699 termios.c_cc[VQUIT] = 034; /* ^\ */
1700 termios.c_cc[VERASE] = 0177;
1701 termios.c_cc[VKILL] = 025; /* ^X */
1702 termios.c_cc[VEOF] = 04; /* ^D */
1703 termios.c_cc[VSTART] = 021; /* ^Q */
1704 termios.c_cc[VSTOP] = 023; /* ^S */
1705 termios.c_cc[VSUSP] = 032; /* ^Z */
1706 termios.c_cc[VLNEXT] = 026; /* ^V */
1707 termios.c_cc[VWERASE] = 027; /* ^W */
1708 termios.c_cc[VREPRINT] = 022; /* ^R */
1709 termios.c_cc[VEOL] = 0;
1710 termios.c_cc[VEOL2] = 0;
1712 termios.c_cc[VTIME] = 0;
1713 termios.c_cc[VMIN] = 1;
1715 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1719 /* Just in case, flush all crap out */
1720 tcflush(fd, TCIOFLUSH);
1725 int reset_terminal(const char *name) {
1726 _cleanup_close_ int fd = -1;
1728 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1732 return reset_terminal_fd(fd, true);
1735 int open_terminal(const char *name, int mode) {
1740 * If a TTY is in the process of being closed opening it might
1741 * cause EIO. This is horribly awful, but unlikely to be
1742 * changed in the kernel. Hence we work around this problem by
1743 * retrying a couple of times.
1745 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1748 assert(!(mode & O_CREAT));
1751 fd = open(name, mode, 0);
1758 /* Max 1s in total */
1762 usleep(50 * USEC_PER_MSEC);
1783 int flush_fd(int fd) {
1784 struct pollfd pollfd = {
1794 r = poll(&pollfd, 1, 0);
1804 l = read(fd, buf, sizeof(buf));
1810 if (errno == EAGAIN)
1819 int acquire_terminal(
1823 bool ignore_tiocstty_eperm,
1826 int fd = -1, notify = -1, r = 0, wd = -1;
1831 /* We use inotify to be notified when the tty is closed. We
1832 * create the watch before checking if we can actually acquire
1833 * it, so that we don't lose any event.
1835 * Note: strictly speaking this actually watches for the
1836 * device being closed, it does *not* really watch whether a
1837 * tty loses its controlling process. However, unless some
1838 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1839 * its tty otherwise this will not become a problem. As long
1840 * as the administrator makes sure not configure any service
1841 * on the same tty as an untrusted user this should not be a
1842 * problem. (Which he probably should not do anyway.) */
1844 if (timeout != (usec_t) -1)
1845 ts = now(CLOCK_MONOTONIC);
1847 if (!fail && !force) {
1848 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1854 wd = inotify_add_watch(notify, name, IN_CLOSE);
1862 struct sigaction sa_old, sa_new = {
1863 .sa_handler = SIG_IGN,
1864 .sa_flags = SA_RESTART,
1868 r = flush_fd(notify);
1873 /* We pass here O_NOCTTY only so that we can check the return
1874 * value TIOCSCTTY and have a reliable way to figure out if we
1875 * successfully became the controlling process of the tty */
1876 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1880 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1881 * if we already own the tty. */
1882 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1884 /* First, try to get the tty */
1885 if (ioctl(fd, TIOCSCTTY, force) < 0)
1888 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1890 /* Sometimes it makes sense to ignore TIOCSCTTY
1891 * returning EPERM, i.e. when very likely we already
1892 * are have this controlling terminal. */
1893 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1896 if (r < 0 && (force || fail || r != -EPERM)) {
1905 assert(notify >= 0);
1908 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1910 struct inotify_event *e;
1912 if (timeout != (usec_t) -1) {
1915 n = now(CLOCK_MONOTONIC);
1916 if (ts + timeout < n) {
1921 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1931 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1934 if (errno == EINTR || errno == EAGAIN)
1941 e = (struct inotify_event*) inotify_buffer;
1946 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1951 step = sizeof(struct inotify_event) + e->len;
1952 assert(step <= (size_t) l);
1954 e = (struct inotify_event*) ((uint8_t*) e + step);
1961 /* We close the tty fd here since if the old session
1962 * ended our handle will be dead. It's important that
1963 * we do this after sleeping, so that we don't enter
1964 * an endless loop. */
1970 r = reset_terminal_fd(fd, true);
1972 log_warning("Failed to reset terminal: %s", strerror(-r));
1983 int release_terminal(void) {
1985 struct sigaction sa_old, sa_new = {
1986 .sa_handler = SIG_IGN,
1987 .sa_flags = SA_RESTART,
1989 _cleanup_close_ int fd;
1991 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
1995 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1996 * by our own TIOCNOTTY */
1997 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1999 if (ioctl(fd, TIOCNOTTY) < 0)
2002 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
2007 int sigaction_many(const struct sigaction *sa, ...) {
2012 while ((sig = va_arg(ap, int)) > 0)
2013 if (sigaction(sig, sa, NULL) < 0)
2020 int ignore_signals(int sig, ...) {
2021 struct sigaction sa = {
2022 .sa_handler = SIG_IGN,
2023 .sa_flags = SA_RESTART,
2028 if (sigaction(sig, &sa, NULL) < 0)
2032 while ((sig = va_arg(ap, int)) > 0)
2033 if (sigaction(sig, &sa, NULL) < 0)
2040 int default_signals(int sig, ...) {
2041 struct sigaction sa = {
2042 .sa_handler = SIG_DFL,
2043 .sa_flags = SA_RESTART,
2048 if (sigaction(sig, &sa, NULL) < 0)
2052 while ((sig = va_arg(ap, int)) > 0)
2053 if (sigaction(sig, &sa, NULL) < 0)
2060 void safe_close_pair(int p[]) {
2064 /* Special case pairs which use the same fd in both
2066 p[0] = p[1] = safe_close(p[0]);
2070 p[0] = safe_close(p[0]);
2071 p[1] = safe_close(p[1]);
2074 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2081 while (nbytes > 0) {
2084 k = read(fd, p, nbytes);
2085 if (k < 0 && errno == EINTR)
2088 if (k < 0 && errno == EAGAIN && do_poll) {
2090 /* We knowingly ignore any return value here,
2091 * and expect that any error/EOF is reported
2094 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2099 return n > 0 ? n : (k < 0 ? -errno : 0);
2109 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2110 const uint8_t *p = buf;
2116 while (nbytes > 0) {
2119 k = write(fd, p, nbytes);
2120 if (k < 0 && errno == EINTR)
2123 if (k < 0 && errno == EAGAIN && do_poll) {
2125 /* We knowingly ignore any return value here,
2126 * and expect that any error/EOF is reported
2129 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2134 return n > 0 ? n : (k < 0 ? -errno : 0);
2144 int parse_size(const char *t, off_t base, off_t *size) {
2146 /* Soo, sometimes we want to parse IEC binary suffxies, and
2147 * sometimes SI decimal suffixes. This function can parse
2148 * both. Which one is the right way depends on the
2149 * context. Wikipedia suggests that SI is customary for
2150 * hardrware metrics and network speeds, while IEC is
2151 * customary for most data sizes used by software and volatile
2152 * (RAM) memory. Hence be careful which one you pick!
2154 * In either case we use just K, M, G as suffix, and not Ki,
2155 * Mi, Gi or so (as IEC would suggest). That's because that's
2156 * frickin' ugly. But this means you really need to make sure
2157 * to document which base you are parsing when you use this
2162 unsigned long long factor;
2165 static const struct table iec[] = {
2166 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2167 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2168 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2169 { "G", 1024ULL*1024ULL*1024ULL },
2170 { "M", 1024ULL*1024ULL },
2176 static const struct table si[] = {
2177 { "E", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2178 { "P", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2179 { "T", 1000ULL*1000ULL*1000ULL*1000ULL },
2180 { "G", 1000ULL*1000ULL*1000ULL },
2181 { "M", 1000ULL*1000ULL },
2187 const struct table *table;
2189 unsigned long long r = 0;
2190 unsigned n_entries, start_pos = 0;
2193 assert(base == 1000 || base == 1024);
2198 n_entries = ELEMENTSOF(si);
2201 n_entries = ELEMENTSOF(iec);
2207 unsigned long long l2;
2213 l = strtoll(p, &e, 10);
2226 if (*e >= '0' && *e <= '9') {
2229 /* strotoull itself would accept space/+/- */
2230 l2 = strtoull(e, &e2, 10);
2232 if (errno == ERANGE)
2235 /* Ignore failure. E.g. 10.M is valid */
2242 e += strspn(e, WHITESPACE);
2244 for (i = start_pos; i < n_entries; i++)
2245 if (startswith(e, table[i].suffix)) {
2246 unsigned long long tmp;
2247 if ((unsigned long long) l + (frac > 0) > ULLONG_MAX / table[i].factor)
2249 tmp = l * table[i].factor + (unsigned long long) (frac * table[i].factor);
2250 if (tmp > ULLONG_MAX - r)
2254 if ((unsigned long long) (off_t) r != r)
2257 p = e + strlen(table[i].suffix);
2273 int make_stdio(int fd) {
2278 r = dup3(fd, STDIN_FILENO, 0);
2279 s = dup3(fd, STDOUT_FILENO, 0);
2280 t = dup3(fd, STDERR_FILENO, 0);
2285 if (r < 0 || s < 0 || t < 0)
2288 /* We rely here that the new fd has O_CLOEXEC not set */
2293 int make_null_stdio(void) {
2296 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2300 return make_stdio(null_fd);
2303 bool is_device_path(const char *path) {
2305 /* Returns true on paths that refer to a device, either in
2306 * sysfs or in /dev */
2309 path_startswith(path, "/dev/") ||
2310 path_startswith(path, "/sys/");
2313 int dir_is_empty(const char *path) {
2314 _cleanup_closedir_ DIR *d;
2325 if (!de && errno != 0)
2331 if (!ignore_file(de->d_name))
2336 char* dirname_malloc(const char *path) {
2337 char *d, *dir, *dir2;
2354 int dev_urandom(void *p, size_t n) {
2355 _cleanup_close_ int fd;
2358 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2360 return errno == ENOENT ? -ENOSYS : -errno;
2362 k = loop_read(fd, p, n, true);
2365 if ((size_t) k != n)
2371 void random_bytes(void *p, size_t n) {
2372 static bool srand_called = false;
2376 r = dev_urandom(p, n);
2380 /* If some idiot made /dev/urandom unavailable to us, he'll
2381 * get a PRNG instead. */
2383 if (!srand_called) {
2386 #ifdef HAVE_SYS_AUXV_H
2387 /* The kernel provides us with a bit of entropy in
2388 * auxv, so let's try to make use of that to seed the
2389 * pseudo-random generator. It's better than
2394 auxv = (void*) getauxval(AT_RANDOM);
2396 x ^= *(unsigned*) auxv;
2399 x ^= (unsigned) now(CLOCK_REALTIME);
2400 x ^= (unsigned) gettid();
2403 srand_called = true;
2406 for (q = p; q < (uint8_t*) p + n; q ++)
2410 void rename_process(const char name[8]) {
2413 /* This is a like a poor man's setproctitle(). It changes the
2414 * comm field, argv[0], and also the glibc's internally used
2415 * name of the process. For the first one a limit of 16 chars
2416 * applies, to the second one usually one of 10 (i.e. length
2417 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2418 * "systemd"). If you pass a longer string it will be
2421 prctl(PR_SET_NAME, name);
2423 if (program_invocation_name)
2424 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2426 if (saved_argc > 0) {
2430 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2432 for (i = 1; i < saved_argc; i++) {
2436 memzero(saved_argv[i], strlen(saved_argv[i]));
2441 void sigset_add_many(sigset_t *ss, ...) {
2448 while ((sig = va_arg(ap, int)) > 0)
2449 assert_se(sigaddset(ss, sig) == 0);
2453 int sigprocmask_many(int how, ...) {
2458 assert_se(sigemptyset(&ss) == 0);
2461 while ((sig = va_arg(ap, int)) > 0)
2462 assert_se(sigaddset(&ss, sig) == 0);
2465 if (sigprocmask(how, &ss, NULL) < 0)
2471 char* gethostname_malloc(void) {
2474 assert_se(uname(&u) >= 0);
2476 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2477 return strdup(u.nodename);
2479 return strdup(u.sysname);
2482 bool hostname_is_set(void) {
2485 assert_se(uname(&u) >= 0);
2487 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2490 static char *lookup_uid(uid_t uid) {
2493 _cleanup_free_ char *buf = NULL;
2494 struct passwd pwbuf, *pw = NULL;
2496 /* Shortcut things to avoid NSS lookups */
2498 return strdup("root");
2500 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2504 buf = malloc(bufsize);
2508 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2509 return strdup(pw->pw_name);
2511 if (asprintf(&name, UID_FMT, uid) < 0)
2517 char* getlogname_malloc(void) {
2521 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2526 return lookup_uid(uid);
2529 char *getusername_malloc(void) {
2536 return lookup_uid(getuid());
2539 int getttyname_malloc(int fd, char **r) {
2540 char path[PATH_MAX], *c;
2545 k = ttyname_r(fd, path, sizeof(path));
2551 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2559 int getttyname_harder(int fd, char **r) {
2563 k = getttyname_malloc(fd, &s);
2567 if (streq(s, "tty")) {
2569 return get_ctty(0, NULL, r);
2576 int get_ctty_devnr(pid_t pid, dev_t *d) {
2578 _cleanup_free_ char *line = NULL;
2580 unsigned long ttynr;
2584 p = procfs_file_alloca(pid, "stat");
2585 r = read_one_line_file(p, &line);
2589 p = strrchr(line, ')');
2599 "%*d " /* session */
2604 if (major(ttynr) == 0 && minor(ttynr) == 0)
2613 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2614 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *b = NULL;
2615 _cleanup_free_ char *s = NULL;
2622 k = get_ctty_devnr(pid, &devnr);
2626 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2628 k = readlink_malloc(fn, &s);
2634 /* This is an ugly hack */
2635 if (major(devnr) == 136) {
2636 asprintf(&b, "pts/%u", minor(devnr));
2640 /* Probably something like the ptys which have no
2641 * symlink in /dev/char. Let's return something
2642 * vaguely useful. */
2648 if (startswith(s, "/dev/"))
2650 else if (startswith(s, "../"))
2668 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2674 /* This returns the first error we run into, but nevertheless
2675 * tries to go on. This closes the passed fd. */
2681 return errno == ENOENT ? 0 : -errno;
2686 bool is_dir, keep_around;
2692 if (!de && errno != 0) {
2701 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2704 if (de->d_type == DT_UNKNOWN ||
2706 (de->d_type == DT_DIR && root_dev)) {
2707 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2708 if (ret == 0 && errno != ENOENT)
2713 is_dir = S_ISDIR(st.st_mode);
2716 (st.st_uid == 0 || st.st_uid == getuid()) &&
2717 (st.st_mode & S_ISVTX);
2719 is_dir = de->d_type == DT_DIR;
2720 keep_around = false;
2726 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2727 if (root_dev && st.st_dev != root_dev->st_dev)
2730 subdir_fd = openat(fd, de->d_name,
2731 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2732 if (subdir_fd < 0) {
2733 if (ret == 0 && errno != ENOENT)
2738 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2739 if (r < 0 && ret == 0)
2743 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2744 if (ret == 0 && errno != ENOENT)
2748 } else if (!only_dirs && !keep_around) {
2750 if (unlinkat(fd, de->d_name, 0) < 0) {
2751 if (ret == 0 && errno != ENOENT)
2762 _pure_ static int is_temporary_fs(struct statfs *s) {
2765 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2766 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2769 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2774 if (fstatfs(fd, &s) < 0) {
2779 /* We refuse to clean disk file systems with this call. This
2780 * is extra paranoia just to be sure we never ever remove
2782 if (!is_temporary_fs(&s)) {
2783 log_error("Attempted to remove disk file system, and we can't allow that.");
2788 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2791 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2797 /* We refuse to clean the root file system with this
2798 * call. This is extra paranoia to never cause a really
2799 * seriously broken system. */
2800 if (path_equal(path, "/")) {
2801 log_error("Attempted to remove entire root file system, and we can't allow that.");
2805 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2808 if (errno != ENOTDIR)
2812 if (statfs(path, &s) < 0)
2815 if (!is_temporary_fs(&s)) {
2816 log_error("Attempted to remove disk file system, and we can't allow that.");
2821 if (delete_root && !only_dirs)
2822 if (unlink(path) < 0 && errno != ENOENT)
2829 if (fstatfs(fd, &s) < 0) {
2834 if (!is_temporary_fs(&s)) {
2835 log_error("Attempted to remove disk file system, and we can't allow that.");
2841 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2844 if (honour_sticky && file_is_priv_sticky(path) > 0)
2847 if (rmdir(path) < 0 && errno != ENOENT) {
2856 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2857 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2860 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2861 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2864 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2867 /* Under the assumption that we are running privileged we
2868 * first change the access mode and only then hand out
2869 * ownership to avoid a window where access is too open. */
2871 if (mode != (mode_t) -1)
2872 if (chmod(path, mode) < 0)
2875 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2876 if (chown(path, uid, gid) < 0)
2882 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2885 /* Under the assumption that we are running privileged we
2886 * first change the access mode and only then hand out
2887 * ownership to avoid a window where access is too open. */
2889 if (mode != (mode_t) -1)
2890 if (fchmod(fd, mode) < 0)
2893 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2894 if (fchown(fd, uid, gid) < 0)
2900 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2904 /* Allocates the cpuset in the right size */
2907 if (!(r = CPU_ALLOC(n)))
2910 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2911 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2921 if (errno != EINVAL)
2928 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2929 static const char status_indent[] = " "; /* "[" STATUS "] " */
2930 _cleanup_free_ char *s = NULL;
2931 _cleanup_close_ int fd = -1;
2932 struct iovec iovec[6] = {};
2934 static bool prev_ephemeral;
2938 /* This is independent of logging, as status messages are
2939 * optional and go exclusively to the console. */
2941 if (vasprintf(&s, format, ap) < 0)
2944 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2957 sl = status ? sizeof(status_indent)-1 : 0;
2963 e = ellipsize(s, emax, 75);
2971 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2972 prev_ephemeral = ephemeral;
2975 if (!isempty(status)) {
2976 IOVEC_SET_STRING(iovec[n++], "[");
2977 IOVEC_SET_STRING(iovec[n++], status);
2978 IOVEC_SET_STRING(iovec[n++], "] ");
2980 IOVEC_SET_STRING(iovec[n++], status_indent);
2983 IOVEC_SET_STRING(iovec[n++], s);
2985 IOVEC_SET_STRING(iovec[n++], "\n");
2987 if (writev(fd, iovec, n) < 0)
2993 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
2999 va_start(ap, format);
3000 r = status_vprintf(status, ellipse, ephemeral, format, ap);
3006 char *replace_env(const char *format, char **env) {
3013 const char *e, *word = format;
3018 for (e = format; *e; e ++) {
3029 if (!(k = strnappend(r, word, e-word-1)))
3038 } else if (*e == '$') {
3039 if (!(k = strnappend(r, word, e-word)))
3055 t = strempty(strv_env_get_n(env, word+2, e-word-2));
3057 k = strappend(r, t);
3071 if (!(k = strnappend(r, word, e-word)))
3082 char **replace_env_argv(char **argv, char **env) {
3084 unsigned k = 0, l = 0;
3086 l = strv_length(argv);
3088 if (!(r = new(char*, l+1)))
3091 STRV_FOREACH(i, argv) {
3093 /* If $FOO appears as single word, replace it by the split up variable */
3094 if ((*i)[0] == '$' && (*i)[1] != '{') {
3099 e = strv_env_get(env, *i+1);
3102 if (!(m = strv_split_quoted(e))) {
3113 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3122 memcpy(r + k, m, q * sizeof(char*));
3130 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3131 if (!(r[k++] = replace_env(*i, env))) {
3141 int fd_columns(int fd) {
3142 struct winsize ws = {};
3144 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3153 unsigned columns(void) {
3157 if (_likely_(cached_columns > 0))
3158 return cached_columns;
3161 e = getenv("COLUMNS");
3166 c = fd_columns(STDOUT_FILENO);
3175 int fd_lines(int fd) {
3176 struct winsize ws = {};
3178 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3187 unsigned lines(void) {
3191 if (_likely_(cached_lines > 0))
3192 return cached_lines;
3195 e = getenv("LINES");
3200 l = fd_lines(STDOUT_FILENO);
3206 return cached_lines;
3209 /* intended to be used as a SIGWINCH sighandler */
3210 void columns_lines_cache_reset(int signum) {
3216 static int cached_on_tty = -1;
3218 if (_unlikely_(cached_on_tty < 0))
3219 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3221 return cached_on_tty;
3224 int files_same(const char *filea, const char *fileb) {
3227 if (stat(filea, &a) < 0)
3230 if (stat(fileb, &b) < 0)
3233 return a.st_dev == b.st_dev &&
3234 a.st_ino == b.st_ino;
3237 int running_in_chroot(void) {
3240 ret = files_same("/proc/1/root", "/");
3247 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3252 assert(percent <= 100);
3253 assert(new_length >= 3);
3255 if (old_length <= 3 || old_length <= new_length)
3256 return strndup(s, old_length);
3258 r = new0(char, new_length+1);
3262 x = (new_length * percent) / 100;
3264 if (x > new_length - 3)
3272 s + old_length - (new_length - x - 3),
3273 new_length - x - 3);
3278 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3282 unsigned k, len, len2;
3285 assert(percent <= 100);
3286 assert(new_length >= 3);
3288 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3289 if (ascii_is_valid(s))
3290 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3292 if (old_length <= 3 || old_length <= new_length)
3293 return strndup(s, old_length);
3295 x = (new_length * percent) / 100;
3297 if (x > new_length - 3)
3301 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3304 c = utf8_encoded_to_unichar(i);
3307 k += unichar_iswide(c) ? 2 : 1;
3310 if (k > x) /* last character was wide and went over quota */
3313 for (j = s + old_length; k < new_length && j > i; ) {
3316 j = utf8_prev_char(j);
3317 c = utf8_encoded_to_unichar(j);
3320 k += unichar_iswide(c) ? 2 : 1;
3324 /* we don't actually need to ellipsize */
3326 return memdup(s, old_length + 1);
3328 /* make space for ellipsis */
3329 j = utf8_next_char(j);
3332 len2 = s + old_length - j;
3333 e = new(char, len + 3 + len2 + 1);
3338 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3339 old_length, new_length, x, len, len2, k);
3343 e[len] = 0xe2; /* tri-dot ellipsis: … */
3347 memcpy(e + len + 3, j, len2 + 1);
3352 char *ellipsize(const char *s, size_t length, unsigned percent) {
3353 return ellipsize_mem(s, strlen(s), length, percent);
3356 int touch_file(const char *path, bool parents, usec_t stamp, uid_t uid, gid_t gid, mode_t mode) {
3357 _cleanup_close_ int fd;
3363 mkdir_parents(path, 0755);
3365 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, mode > 0 ? mode : 0644);
3370 r = fchmod(fd, mode);
3375 if (uid != (uid_t) -1 || gid != (gid_t) -1) {
3376 r = fchown(fd, uid, gid);
3381 if (stamp != (usec_t) -1) {
3382 struct timespec ts[2];
3384 timespec_store(&ts[0], stamp);
3386 r = futimens(fd, ts);
3388 r = futimens(fd, NULL);
3395 int touch(const char *path) {
3396 return touch_file(path, false, (usec_t) -1, (uid_t) -1, (gid_t) -1, 0);
3399 char *unquote(const char *s, const char* quotes) {
3403 /* This is rather stupid, simply removes the heading and
3404 * trailing quotes if there is one. Doesn't care about
3405 * escaping or anything. We should make this smarter one
3412 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3413 return strndup(s+1, l-2);
3418 char *normalize_env_assignment(const char *s) {
3419 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3422 eq = strchr(s, '=');
3434 memmove(r, t, strlen(t) + 1);
3438 name = strndup(s, eq - s);
3446 value = unquote(strstrip(p), QUOTES);
3450 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3456 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3467 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3479 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3486 r = wait_for_terminate(pid, &status);
3488 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3492 if (status.si_code == CLD_EXITED) {
3493 if (status.si_status != 0) {
3494 log_warning("%s failed with error code %i.", name, status.si_status);
3495 return status.si_status;
3498 log_debug("%s succeeded.", name);
3501 } else if (status.si_code == CLD_KILLED ||
3502 status.si_code == CLD_DUMPED) {
3504 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3508 log_warning("%s failed due to unknown reason.", name);
3512 noreturn void freeze(void) {
3514 /* Make sure nobody waits for us on a socket anymore */
3515 close_all_fds(NULL, 0);
3523 bool null_or_empty(struct stat *st) {
3526 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3529 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3535 int null_or_empty_path(const char *fn) {
3540 if (stat(fn, &st) < 0)
3543 return null_or_empty(&st);
3546 DIR *xopendirat(int fd, const char *name, int flags) {
3550 assert(!(flags & O_CREAT));
3552 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3565 int signal_from_string_try_harder(const char *s) {
3569 signo = signal_from_string(s);
3571 if (startswith(s, "SIG"))
3572 return signal_from_string(s+3);
3577 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3578 _cleanup_free_ char *t = NULL, *u = NULL;
3581 u = unquote(tagvalue, "\"\'");
3585 enc_len = strlen(u) * 4 + 1;
3586 t = new(char, enc_len);
3590 if (encode_devnode_name(u, t, enc_len) < 0)
3593 return strjoin("/dev/disk/by-", by, "/", t, NULL);
3596 char *fstab_node_to_udev_node(const char *p) {
3599 if (startswith(p, "LABEL="))
3600 return tag_to_udev_node(p+6, "label");
3602 if (startswith(p, "UUID="))
3603 return tag_to_udev_node(p+5, "uuid");
3605 if (startswith(p, "PARTUUID="))
3606 return tag_to_udev_node(p+9, "partuuid");
3608 if (startswith(p, "PARTLABEL="))
3609 return tag_to_udev_node(p+10, "partlabel");
3614 bool tty_is_vc(const char *tty) {
3617 if (startswith(tty, "/dev/"))
3620 return vtnr_from_tty(tty) >= 0;
3623 bool tty_is_console(const char *tty) {
3626 if (startswith(tty, "/dev/"))
3629 return streq(tty, "console");
3632 int vtnr_from_tty(const char *tty) {
3637 if (startswith(tty, "/dev/"))
3640 if (!startswith(tty, "tty") )
3643 if (tty[3] < '0' || tty[3] > '9')
3646 r = safe_atoi(tty+3, &i);
3650 if (i < 0 || i > 63)
3656 char *resolve_dev_console(char **active) {
3659 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3660 * (i.e. not read-only-mounted which is a sign for container setups) */
3662 if (path_is_read_only_fs("/sys") > 0)
3665 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3668 /* If multiple log outputs are configured the last one is what
3669 * /dev/console points to */
3670 tty = strrchr(*active, ' ');
3676 if (streq(tty, "tty0")) {
3679 /* Get the active VC (e.g. tty1) */
3680 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3682 tty = *active = tmp;
3689 bool tty_is_vc_resolve(const char *tty) {
3690 _cleanup_free_ char *active = NULL;
3694 if (startswith(tty, "/dev/"))
3697 if (streq(tty, "console")) {
3698 tty = resolve_dev_console(&active);
3703 return tty_is_vc(tty);
3706 const char *default_term_for_tty(const char *tty) {
3709 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3712 bool dirent_is_file(const struct dirent *de) {
3715 if (ignore_file(de->d_name))
3718 if (de->d_type != DT_REG &&
3719 de->d_type != DT_LNK &&
3720 de->d_type != DT_UNKNOWN)
3726 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3729 if (de->d_type != DT_REG &&
3730 de->d_type != DT_LNK &&
3731 de->d_type != DT_UNKNOWN)
3734 if (ignore_file_allow_backup(de->d_name))
3737 return endswith(de->d_name, suffix);
3740 void execute_directory(const char *directory, DIR *d, usec_t timeout, char *argv[]) {
3746 /* Executes all binaries in a directory in parallel and waits
3747 * for them to finish. Optionally a timeout is applied. */
3749 executor_pid = fork();
3750 if (executor_pid < 0) {
3751 log_error("Failed to fork: %m");
3754 } else if (executor_pid == 0) {
3755 _cleanup_hashmap_free_free_ Hashmap *pids = NULL;
3756 _cleanup_closedir_ DIR *_d = NULL;
3760 /* We fork this all off from a child process so that
3761 * we can somewhat cleanly make use of SIGALRM to set
3764 reset_all_signal_handlers();
3766 assert_se(sigemptyset(&ss) == 0);
3767 assert_se(sigprocmask(SIG_SETMASK, &ss, NULL) == 0);
3769 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3772 d = _d = opendir(directory);
3774 if (errno == ENOENT)
3775 _exit(EXIT_SUCCESS);
3777 log_error("Failed to enumerate directory %s: %m", directory);
3778 _exit(EXIT_FAILURE);
3782 pids = hashmap_new(NULL, NULL);
3785 _exit(EXIT_FAILURE);
3788 FOREACH_DIRENT(de, d, break) {
3789 _cleanup_free_ char *path = NULL;
3792 if (!dirent_is_file(de))
3795 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3797 _exit(EXIT_FAILURE);
3802 log_error("Failed to fork: %m");
3804 } else if (pid == 0) {
3807 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3817 log_error("Failed to execute %s: %m", path);
3818 _exit(EXIT_FAILURE);
3822 log_debug("Spawned %s as " PID_FMT ".", path, pid);
3824 r = hashmap_put(pids, UINT_TO_PTR(pid), path);
3827 _exit(EXIT_FAILURE);
3833 /* Abort execution of this process after the
3834 * timout. We simply rely on SIGALRM as default action
3835 * terminating the process, and turn on alarm(). */
3837 if (timeout != (usec_t) -1)
3838 alarm((timeout + USEC_PER_SEC - 1) / USEC_PER_SEC);
3840 while (!hashmap_isempty(pids)) {
3841 _cleanup_free_ char *path = NULL;
3844 pid = PTR_TO_UINT(hashmap_first_key(pids));
3847 path = hashmap_remove(pids, UINT_TO_PTR(pid));
3850 wait_for_terminate_and_warn(path, pid);
3853 _exit(EXIT_SUCCESS);
3856 wait_for_terminate_and_warn(directory, executor_pid);
3859 int kill_and_sigcont(pid_t pid, int sig) {
3862 r = kill(pid, sig) < 0 ? -errno : 0;
3870 bool nulstr_contains(const char*nulstr, const char *needle) {
3876 NULSTR_FOREACH(i, nulstr)
3877 if (streq(i, needle))
3883 bool plymouth_running(void) {
3884 return access("/run/plymouth/pid", F_OK) >= 0;
3887 char* strshorten(char *s, size_t l) {
3896 static bool hostname_valid_char(char c) {
3898 (c >= 'a' && c <= 'z') ||
3899 (c >= 'A' && c <= 'Z') ||
3900 (c >= '0' && c <= '9') ||
3906 bool hostname_is_valid(const char *s) {
3913 for (p = s, dot = true; *p; p++) {
3920 if (!hostname_valid_char(*p))
3930 if (p-s > HOST_NAME_MAX)
3936 char* hostname_cleanup(char *s, bool lowercase) {
3940 for (p = s, d = s, dot = true; *p; p++) {
3947 } else if (hostname_valid_char(*p)) {
3948 *(d++) = lowercase ? tolower(*p) : *p;
3959 strshorten(s, HOST_NAME_MAX);
3964 int pipe_eof(int fd) {
3965 struct pollfd pollfd = {
3967 .events = POLLIN|POLLHUP,
3972 r = poll(&pollfd, 1, 0);
3979 return pollfd.revents & POLLHUP;
3982 int fd_wait_for_event(int fd, int event, usec_t t) {
3984 struct pollfd pollfd = {
3992 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
3999 return pollfd.revents;
4002 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
4013 t = new(char, strlen(path) + 1 + 6 + 1);
4017 fn = basename(path);
4021 stpcpy(stpcpy(t+k+1, fn), "XXXXXX");
4023 fd = mkostemp_safe(t, O_WRONLY|O_CLOEXEC);
4029 f = fdopen(fd, "we");
4042 int terminal_vhangup_fd(int fd) {
4045 if (ioctl(fd, TIOCVHANGUP) < 0)
4051 int terminal_vhangup(const char *name) {
4052 _cleanup_close_ int fd;
4054 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4058 return terminal_vhangup_fd(fd);
4061 int vt_disallocate(const char *name) {
4065 /* Deallocate the VT if possible. If not possible
4066 * (i.e. because it is the active one), at least clear it
4067 * entirely (including the scrollback buffer) */
4069 if (!startswith(name, "/dev/"))
4072 if (!tty_is_vc(name)) {
4073 /* So this is not a VT. I guess we cannot deallocate
4074 * it then. But let's at least clear the screen */
4076 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4081 "\033[r" /* clear scrolling region */
4082 "\033[H" /* move home */
4083 "\033[2J", /* clear screen */
4090 if (!startswith(name, "/dev/tty"))
4093 r = safe_atou(name+8, &u);
4100 /* Try to deallocate */
4101 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
4105 r = ioctl(fd, VT_DISALLOCATE, u);
4114 /* Couldn't deallocate, so let's clear it fully with
4116 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4121 "\033[r" /* clear scrolling region */
4122 "\033[H" /* move home */
4123 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4130 int copy_file(const char *from, const char *to, int flags) {
4131 _cleanup_close_ int fdf = -1;
4137 fdf = open(from, O_RDONLY|O_CLOEXEC|O_NOCTTY);
4141 fdt = open(to, flags|O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
4149 n = read(fdf, buf, sizeof(buf));
4163 k = loop_write(fdt, buf, n, false);
4165 r = k < 0 ? k : (errno ? -errno : -EIO);
4174 r = close_nointr(fdt);
4184 int symlink_atomic(const char *from, const char *to) {
4186 _cleanup_free_ char *t;
4196 t = new(char, strlen(to) + 1 + 16 + 1);
4204 x = stpcpy(t+k+1, fn);
4207 for (i = 0; i < 16; i++) {
4208 *(x++) = hexchar(u & 0xF);
4214 if (symlink(from, t) < 0)
4217 if (rename(t, to) < 0) {
4226 bool display_is_local(const char *display) {
4230 display[0] == ':' &&
4231 display[1] >= '0' &&
4235 int socket_from_display(const char *display, char **path) {
4242 if (!display_is_local(display))
4245 k = strspn(display+1, "0123456789");
4247 f = new(char, strlen("/tmp/.X11-unix/X") + k + 1);
4251 c = stpcpy(f, "/tmp/.X11-unix/X");
4252 memcpy(c, display+1, k);
4261 const char **username,
4262 uid_t *uid, gid_t *gid,
4264 const char **shell) {
4272 /* We enforce some special rules for uid=0: in order to avoid
4273 * NSS lookups for root we hardcode its data. */
4275 if (streq(*username, "root") || streq(*username, "0")) {
4293 if (parse_uid(*username, &u) >= 0) {
4297 /* If there are multiple users with the same id, make
4298 * sure to leave $USER to the configured value instead
4299 * of the first occurrence in the database. However if
4300 * the uid was configured by a numeric uid, then let's
4301 * pick the real username from /etc/passwd. */
4303 *username = p->pw_name;
4306 p = getpwnam(*username);
4310 return errno > 0 ? -errno : -ESRCH;
4322 *shell = p->pw_shell;
4327 char* uid_to_name(uid_t uid) {
4332 return strdup("root");
4336 return strdup(p->pw_name);
4338 if (asprintf(&r, UID_FMT, uid) < 0)
4344 char* gid_to_name(gid_t gid) {
4349 return strdup("root");
4353 return strdup(p->gr_name);
4355 if (asprintf(&r, GID_FMT, gid) < 0)
4361 int get_group_creds(const char **groupname, gid_t *gid) {
4367 /* We enforce some special rules for gid=0: in order to avoid
4368 * NSS lookups for root we hardcode its data. */
4370 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4371 *groupname = "root";
4379 if (parse_gid(*groupname, &id) >= 0) {
4384 *groupname = g->gr_name;
4387 g = getgrnam(*groupname);
4391 return errno > 0 ? -errno : -ESRCH;
4399 int in_gid(gid_t gid) {
4401 int ngroups_max, r, i;
4403 if (getgid() == gid)
4406 if (getegid() == gid)
4409 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4410 assert(ngroups_max > 0);
4412 gids = alloca(sizeof(gid_t) * ngroups_max);
4414 r = getgroups(ngroups_max, gids);
4418 for (i = 0; i < r; i++)
4425 int in_group(const char *name) {
4429 r = get_group_creds(&name, &gid);
4436 int glob_exists(const char *path) {
4437 _cleanup_globfree_ glob_t g = {};
4443 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4445 if (k == GLOB_NOMATCH)
4447 else if (k == GLOB_NOSPACE)
4450 return !strv_isempty(g.gl_pathv);
4452 return errno ? -errno : -EIO;
4455 int glob_extend(char ***strv, const char *path) {
4456 _cleanup_globfree_ glob_t g = {};
4461 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4463 if (k == GLOB_NOMATCH)
4465 else if (k == GLOB_NOSPACE)
4467 else if (k != 0 || strv_isempty(g.gl_pathv))
4468 return errno ? -errno : -EIO;
4470 STRV_FOREACH(p, g.gl_pathv) {
4471 k = strv_extend(strv, *p);
4479 int dirent_ensure_type(DIR *d, struct dirent *de) {
4485 if (de->d_type != DT_UNKNOWN)
4488 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4492 S_ISREG(st.st_mode) ? DT_REG :
4493 S_ISDIR(st.st_mode) ? DT_DIR :
4494 S_ISLNK(st.st_mode) ? DT_LNK :
4495 S_ISFIFO(st.st_mode) ? DT_FIFO :
4496 S_ISSOCK(st.st_mode) ? DT_SOCK :
4497 S_ISCHR(st.st_mode) ? DT_CHR :
4498 S_ISBLK(st.st_mode) ? DT_BLK :
4504 int in_search_path(const char *path, char **search) {
4506 _cleanup_free_ char *parent = NULL;
4509 r = path_get_parent(path, &parent);
4513 STRV_FOREACH(i, search)
4514 if (path_equal(parent, *i))
4520 int get_files_in_directory(const char *path, char ***list) {
4521 _cleanup_closedir_ DIR *d = NULL;
4522 size_t bufsize = 0, n = 0;
4523 _cleanup_strv_free_ char **l = NULL;
4527 /* Returns all files in a directory in *list, and the number
4528 * of files as return value. If list is NULL returns only the
4540 if (!de && errno != 0)
4545 dirent_ensure_type(d, de);
4547 if (!dirent_is_file(de))
4551 /* one extra slot is needed for the terminating NULL */
4552 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4555 l[n] = strdup(de->d_name);
4566 l = NULL; /* avoid freeing */
4572 char *strjoin(const char *x, ...) {
4586 t = va_arg(ap, const char *);
4591 if (n > ((size_t) -1) - l) {
4615 t = va_arg(ap, const char *);
4629 bool is_main_thread(void) {
4630 static thread_local int cached = 0;
4632 if (_unlikely_(cached == 0))
4633 cached = getpid() == gettid() ? 1 : -1;
4638 int block_get_whole_disk(dev_t d, dev_t *ret) {
4645 /* If it has a queue this is good enough for us */
4646 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4649 r = access(p, F_OK);
4657 /* If it is a partition find the originating device */
4658 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4661 r = access(p, F_OK);
4667 /* Get parent dev_t */
4668 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4671 r = read_one_line_file(p, &s);
4677 r = sscanf(s, "%u:%u", &m, &n);
4683 /* Only return this if it is really good enough for us. */
4684 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4687 r = access(p, F_OK);
4691 *ret = makedev(m, n);
4698 int file_is_priv_sticky(const char *p) {
4703 if (lstat(p, &st) < 0)
4707 (st.st_uid == 0 || st.st_uid == getuid()) &&
4708 (st.st_mode & S_ISVTX);
4711 static const char *const ioprio_class_table[] = {
4712 [IOPRIO_CLASS_NONE] = "none",
4713 [IOPRIO_CLASS_RT] = "realtime",
4714 [IOPRIO_CLASS_BE] = "best-effort",
4715 [IOPRIO_CLASS_IDLE] = "idle"
4718 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4720 static const char *const sigchld_code_table[] = {
4721 [CLD_EXITED] = "exited",
4722 [CLD_KILLED] = "killed",
4723 [CLD_DUMPED] = "dumped",
4724 [CLD_TRAPPED] = "trapped",
4725 [CLD_STOPPED] = "stopped",
4726 [CLD_CONTINUED] = "continued",
4729 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4731 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4732 [LOG_FAC(LOG_KERN)] = "kern",
4733 [LOG_FAC(LOG_USER)] = "user",
4734 [LOG_FAC(LOG_MAIL)] = "mail",
4735 [LOG_FAC(LOG_DAEMON)] = "daemon",
4736 [LOG_FAC(LOG_AUTH)] = "auth",
4737 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4738 [LOG_FAC(LOG_LPR)] = "lpr",
4739 [LOG_FAC(LOG_NEWS)] = "news",
4740 [LOG_FAC(LOG_UUCP)] = "uucp",
4741 [LOG_FAC(LOG_CRON)] = "cron",
4742 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4743 [LOG_FAC(LOG_FTP)] = "ftp",
4744 [LOG_FAC(LOG_LOCAL0)] = "local0",
4745 [LOG_FAC(LOG_LOCAL1)] = "local1",
4746 [LOG_FAC(LOG_LOCAL2)] = "local2",
4747 [LOG_FAC(LOG_LOCAL3)] = "local3",
4748 [LOG_FAC(LOG_LOCAL4)] = "local4",
4749 [LOG_FAC(LOG_LOCAL5)] = "local5",
4750 [LOG_FAC(LOG_LOCAL6)] = "local6",
4751 [LOG_FAC(LOG_LOCAL7)] = "local7"
4754 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4756 static const char *const log_level_table[] = {
4757 [LOG_EMERG] = "emerg",
4758 [LOG_ALERT] = "alert",
4759 [LOG_CRIT] = "crit",
4761 [LOG_WARNING] = "warning",
4762 [LOG_NOTICE] = "notice",
4763 [LOG_INFO] = "info",
4764 [LOG_DEBUG] = "debug"
4767 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4769 static const char* const sched_policy_table[] = {
4770 [SCHED_OTHER] = "other",
4771 [SCHED_BATCH] = "batch",
4772 [SCHED_IDLE] = "idle",
4773 [SCHED_FIFO] = "fifo",
4777 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4779 static const char* const rlimit_table[_RLIMIT_MAX] = {
4780 [RLIMIT_CPU] = "LimitCPU",
4781 [RLIMIT_FSIZE] = "LimitFSIZE",
4782 [RLIMIT_DATA] = "LimitDATA",
4783 [RLIMIT_STACK] = "LimitSTACK",
4784 [RLIMIT_CORE] = "LimitCORE",
4785 [RLIMIT_RSS] = "LimitRSS",
4786 [RLIMIT_NOFILE] = "LimitNOFILE",
4787 [RLIMIT_AS] = "LimitAS",
4788 [RLIMIT_NPROC] = "LimitNPROC",
4789 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4790 [RLIMIT_LOCKS] = "LimitLOCKS",
4791 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4792 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4793 [RLIMIT_NICE] = "LimitNICE",
4794 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4795 [RLIMIT_RTTIME] = "LimitRTTIME"
4798 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4800 static const char* const ip_tos_table[] = {
4801 [IPTOS_LOWDELAY] = "low-delay",
4802 [IPTOS_THROUGHPUT] = "throughput",
4803 [IPTOS_RELIABILITY] = "reliability",
4804 [IPTOS_LOWCOST] = "low-cost",
4807 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4809 static const char *const __signal_table[] = {
4826 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4837 [SIGVTALRM] = "VTALRM",
4839 [SIGWINCH] = "WINCH",
4845 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4847 const char *signal_to_string(int signo) {
4848 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4851 name = __signal_to_string(signo);
4855 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4856 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4858 snprintf(buf, sizeof(buf), "%d", signo);
4863 int signal_from_string(const char *s) {
4868 signo = __signal_from_string(s);
4872 if (startswith(s, "RTMIN+")) {
4876 if (safe_atou(s, &u) >= 0) {
4877 signo = (int) u + offset;
4878 if (signo > 0 && signo < _NSIG)
4884 bool kexec_loaded(void) {
4885 bool loaded = false;
4888 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4896 int strdup_or_null(const char *a, char **b) {
4914 int prot_from_flags(int flags) {
4916 switch (flags & O_ACCMODE) {
4925 return PROT_READ|PROT_WRITE;
4932 char *format_bytes(char *buf, size_t l, off_t t) {
4935 static const struct {
4939 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4940 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4941 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4942 { "G", 1024ULL*1024ULL*1024ULL },
4943 { "M", 1024ULL*1024ULL },
4947 for (i = 0; i < ELEMENTSOF(table); i++) {
4949 if (t >= table[i].factor) {
4952 (unsigned long long) (t / table[i].factor),
4953 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4960 snprintf(buf, l, "%lluB", (unsigned long long) t);
4968 void* memdup(const void *p, size_t l) {
4981 int fd_inc_sndbuf(int fd, size_t n) {
4983 socklen_t l = sizeof(value);
4985 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4986 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4989 /* If we have the privileges we will ignore the kernel limit. */
4992 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4993 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
4999 int fd_inc_rcvbuf(int fd, size_t n) {
5001 socklen_t l = sizeof(value);
5003 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
5004 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
5007 /* If we have the privileges we will ignore the kernel limit. */
5010 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
5011 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
5016 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
5017 pid_t parent_pid, agent_pid;
5019 bool stdout_is_tty, stderr_is_tty;
5027 parent_pid = getpid();
5029 /* Spawns a temporary TTY agent, making sure it goes away when
5036 if (agent_pid != 0) {
5043 * Make sure the agent goes away when the parent dies */
5044 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
5045 _exit(EXIT_FAILURE);
5047 /* Check whether our parent died before we were able
5048 * to set the death signal */
5049 if (getppid() != parent_pid)
5050 _exit(EXIT_SUCCESS);
5052 /* Don't leak fds to the agent */
5053 close_all_fds(except, n_except);
5055 stdout_is_tty = isatty(STDOUT_FILENO);
5056 stderr_is_tty = isatty(STDERR_FILENO);
5058 if (!stdout_is_tty || !stderr_is_tty) {
5059 /* Detach from stdout/stderr. and reopen
5060 * /dev/tty for them. This is important to
5061 * ensure that when systemctl is started via
5062 * popen() or a similar call that expects to
5063 * read EOF we actually do generate EOF and
5064 * not delay this indefinitely by because we
5065 * keep an unused copy of stdin around. */
5066 fd = open("/dev/tty", O_WRONLY);
5068 log_error("Failed to open /dev/tty: %m");
5069 _exit(EXIT_FAILURE);
5073 dup2(fd, STDOUT_FILENO);
5076 dup2(fd, STDERR_FILENO);
5082 /* Count arguments */
5084 for (n = 0; va_arg(ap, char*); n++)
5089 l = alloca(sizeof(char *) * (n + 1));
5091 /* Fill in arguments */
5093 for (i = 0; i <= n; i++)
5094 l[i] = va_arg(ap, char*);
5098 _exit(EXIT_FAILURE);
5101 int setrlimit_closest(int resource, const struct rlimit *rlim) {
5102 struct rlimit highest, fixed;
5106 if (setrlimit(resource, rlim) >= 0)
5112 /* So we failed to set the desired setrlimit, then let's try
5113 * to get as close as we can */
5114 assert_se(getrlimit(resource, &highest) == 0);
5116 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
5117 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
5119 if (setrlimit(resource, &fixed) < 0)
5125 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5126 _cleanup_fclose_ FILE *f = NULL;
5137 path = procfs_file_alloca(pid, "environ");
5139 f = fopen(path, "re");
5147 char line[LINE_MAX];
5150 for (i = 0; i < sizeof(line)-1; i++) {
5154 if (_unlikely_(c == EOF)) {
5164 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5165 value = strdup(line + l + 1);
5179 bool is_valid_documentation_url(const char *url) {
5182 if (startswith(url, "http://") && url[7])
5185 if (startswith(url, "https://") && url[8])
5188 if (startswith(url, "file:") && url[5])
5191 if (startswith(url, "info:") && url[5])
5194 if (startswith(url, "man:") && url[4])
5200 bool in_initrd(void) {
5201 static int saved = -1;
5207 /* We make two checks here:
5209 * 1. the flag file /etc/initrd-release must exist
5210 * 2. the root file system must be a memory file system
5212 * The second check is extra paranoia, since misdetecting an
5213 * initrd can have bad bad consequences due the initrd
5214 * emptying when transititioning to the main systemd.
5217 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5218 statfs("/", &s) >= 0 &&
5219 is_temporary_fs(&s);
5224 void warn_melody(void) {
5225 _cleanup_close_ int fd = -1;
5227 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5231 /* Yeah, this is synchronous. Kinda sucks. But well... */
5233 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5234 usleep(125*USEC_PER_MSEC);
5236 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5237 usleep(125*USEC_PER_MSEC);
5239 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5240 usleep(125*USEC_PER_MSEC);
5242 ioctl(fd, KIOCSOUND, 0);
5245 int make_console_stdio(void) {
5248 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5250 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5252 log_error("Failed to acquire terminal: %s", strerror(-fd));
5258 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5265 int get_home_dir(char **_h) {
5273 /* Take the user specified one */
5284 /* Hardcode home directory for root to avoid NSS */
5287 h = strdup("/root");
5295 /* Check the database... */
5299 return errno > 0 ? -errno : -ESRCH;
5301 if (!path_is_absolute(p->pw_dir))
5304 h = strdup(p->pw_dir);
5312 int get_shell(char **_s) {
5320 /* Take the user specified one */
5321 e = getenv("SHELL");
5331 /* Hardcode home directory for root to avoid NSS */
5334 s = strdup("/bin/sh");
5342 /* Check the database... */
5346 return errno > 0 ? -errno : -ESRCH;
5348 if (!path_is_absolute(p->pw_shell))
5351 s = strdup(p->pw_shell);
5359 bool filename_is_safe(const char *p) {
5373 if (strlen(p) > FILENAME_MAX)
5379 bool string_is_safe(const char *p) {
5384 for (t = p; *t; t++) {
5385 if (*t > 0 && *t < ' ')
5388 if (strchr("\\\"\'", *t))
5396 * Check if a string contains control characters.
5397 * Spaces and tabs are not considered control characters.
5399 bool string_has_cc(const char *p) {
5404 for (t = p; *t; t++)
5405 if (*t > 0 && *t < ' ' && *t != '\t')
5411 bool path_is_safe(const char *p) {
5416 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5419 if (strlen(p) > PATH_MAX)
5422 /* The following two checks are not really dangerous, but hey, they still are confusing */
5423 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5426 if (strstr(p, "//"))
5432 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5433 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5434 int (*compar) (const void *, const void *, void *), void *arg) {
5443 p = (void *)(((const char *) base) + (idx * size));
5444 comparison = compar(key, p, arg);
5447 else if (comparison > 0)
5455 bool is_locale_utf8(void) {
5457 static int cached_answer = -1;
5459 if (cached_answer >= 0)
5462 if (!setlocale(LC_ALL, "")) {
5463 cached_answer = true;
5467 set = nl_langinfo(CODESET);
5469 cached_answer = true;
5473 if (streq(set, "UTF-8")) {
5474 cached_answer = true;
5478 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5479 * unset and everything can do to UTF-8 nowadays. */
5480 set = setlocale(LC_CTYPE, NULL);
5482 cached_answer = true;
5486 /* Check result, but ignore the result if C was set
5490 !getenv("LC_ALL") &&
5491 !getenv("LC_CTYPE") &&
5495 return (bool) cached_answer;
5498 const char *draw_special_char(DrawSpecialChar ch) {
5499 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5502 [DRAW_TREE_VERTICAL] = "\342\224\202 ", /* │ */
5503 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5504 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5505 [DRAW_TREE_SPACE] = " ", /* */
5506 [DRAW_TRIANGULAR_BULLET] = "\342\200\243", /* ‣ */
5507 [DRAW_BLACK_CIRCLE] = "\342\227\217", /* ● */
5508 [DRAW_ARROW] = "\342\206\222", /* → */
5511 /* ASCII fallback */ {
5512 [DRAW_TREE_VERTICAL] = "| ",
5513 [DRAW_TREE_BRANCH] = "|-",
5514 [DRAW_TREE_RIGHT] = "`-",
5515 [DRAW_TREE_SPACE] = " ",
5516 [DRAW_TRIANGULAR_BULLET] = ">",
5517 [DRAW_BLACK_CIRCLE] = "*",
5518 [DRAW_ARROW] = "->",
5522 return draw_table[!is_locale_utf8()][ch];
5525 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5528 size_t l, old_len, new_len;
5534 old_len = strlen(old_string);
5535 new_len = strlen(new_string);
5548 if (!startswith(f, old_string)) {
5554 nl = l - old_len + new_len;
5555 a = realloc(r, nl + 1);
5563 t = stpcpy(t, new_string);
5575 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5576 const char *i, *begin = NULL;
5581 } state = STATE_OTHER;
5583 size_t osz = 0, isz;
5589 /* Strips ANSI color and replaces TABs by 8 spaces */
5591 isz = _isz ? *_isz : strlen(*ibuf);
5593 f = open_memstream(&obuf, &osz);
5597 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5602 if (i >= *ibuf + isz) /* EOT */
5604 else if (*i == '\x1B')
5605 state = STATE_ESCAPE;
5606 else if (*i == '\t')
5613 if (i >= *ibuf + isz) { /* EOT */
5616 } else if (*i == '[') {
5617 state = STATE_BRACKET;
5622 state = STATE_OTHER;
5629 if (i >= *ibuf + isz || /* EOT */
5630 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5633 state = STATE_OTHER;
5635 } else if (*i == 'm')
5636 state = STATE_OTHER;
5658 int on_ac_power(void) {
5659 bool found_offline = false, found_online = false;
5660 _cleanup_closedir_ DIR *d = NULL;
5662 d = opendir("/sys/class/power_supply");
5668 _cleanup_close_ int fd = -1, device = -1;
5674 if (!de && errno != 0)
5680 if (ignore_file(de->d_name))
5683 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5685 if (errno == ENOENT || errno == ENOTDIR)
5691 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5693 if (errno == ENOENT)
5699 n = read(fd, contents, sizeof(contents));
5703 if (n != 6 || memcmp(contents, "Mains\n", 6))
5707 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5709 if (errno == ENOENT)
5715 n = read(fd, contents, sizeof(contents));
5719 if (n != 2 || contents[1] != '\n')
5722 if (contents[0] == '1') {
5723 found_online = true;
5725 } else if (contents[0] == '0')
5726 found_offline = true;
5731 return found_online || !found_offline;
5734 static int search_and_fopen_internal(const char *path, const char *mode, const char *root, char **search, FILE **_f) {
5741 if (!path_strv_canonicalize_absolute_uniq(search, root))
5744 STRV_FOREACH(i, search) {
5745 _cleanup_free_ char *p = NULL;
5748 p = strjoin(*i, "/", path, NULL);
5758 if (errno != ENOENT)
5765 int search_and_fopen(const char *path, const char *mode, const char *root, const char **search, FILE **_f) {
5766 _cleanup_strv_free_ char **copy = NULL;
5772 if (path_is_absolute(path)) {
5775 f = fopen(path, mode);
5784 copy = strv_copy((char**) search);
5788 return search_and_fopen_internal(path, mode, root, copy, _f);
5791 int search_and_fopen_nulstr(const char *path, const char *mode, const char *root, const char *search, FILE **_f) {
5792 _cleanup_strv_free_ char **s = NULL;
5794 if (path_is_absolute(path)) {
5797 f = fopen(path, mode);
5806 s = strv_split_nulstr(search);
5810 return search_and_fopen_internal(path, mode, root, s, _f);
5813 char *strextend(char **x, ...) {
5820 l = f = *x ? strlen(*x) : 0;
5827 t = va_arg(ap, const char *);
5832 if (n > ((size_t) -1) - l) {
5841 r = realloc(*x, l+1);
5851 t = va_arg(ap, const char *);
5865 char *strrep(const char *s, unsigned n) {
5873 p = r = malloc(l * n + 1);
5877 for (i = 0; i < n; i++)
5884 void* greedy_realloc(void **p, size_t *allocated, size_t need, size_t size) {
5891 if (*allocated >= need)
5894 newalloc = MAX(need * 2, 64u / size);
5895 a = newalloc * size;
5897 /* check for overflows */
5898 if (a < size * need)
5906 *allocated = newalloc;
5910 void* greedy_realloc0(void **p, size_t *allocated, size_t need, size_t size) {
5919 q = greedy_realloc(p, allocated, need, size);
5923 if (*allocated > prev)
5924 memzero(q + prev * size, (*allocated - prev) * size);
5929 bool id128_is_valid(const char *s) {
5935 /* Simple formatted 128bit hex string */
5937 for (i = 0; i < l; i++) {
5940 if (!(c >= '0' && c <= '9') &&
5941 !(c >= 'a' && c <= 'z') &&
5942 !(c >= 'A' && c <= 'Z'))
5946 } else if (l == 36) {
5948 /* Formatted UUID */
5950 for (i = 0; i < l; i++) {
5953 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5957 if (!(c >= '0' && c <= '9') &&
5958 !(c >= 'a' && c <= 'z') &&
5959 !(c >= 'A' && c <= 'Z'))
5970 int split_pair(const char *s, const char *sep, char **l, char **r) {
5985 a = strndup(s, x - s);
5989 b = strdup(x + strlen(sep));
6001 int shall_restore_state(void) {
6002 _cleanup_free_ char *line = NULL;
6007 r = proc_cmdline(&line);
6010 if (r == 0) /* Container ... */
6015 FOREACH_WORD_QUOTED(w, l, line, state) {
6023 e = startswith(n, "systemd.restore_state=");
6027 k = parse_boolean(e);
6035 int proc_cmdline(char **ret) {
6038 if (detect_container(NULL) > 0) {
6039 char *buf = NULL, *p;
6042 r = read_full_file("/proc/1/cmdline", &buf, &sz);
6046 for (p = buf; p + 1 < buf + sz; p++)
6055 r = read_one_line_file("/proc/cmdline", ret);
6062 int parse_proc_cmdline(int (*parse_item)(const char *key, const char *value)) {
6063 _cleanup_free_ char *line = NULL;
6070 r = proc_cmdline(&line);
6072 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
6076 FOREACH_WORD_QUOTED(w, l, line, state) {
6077 char word[l+1], *value;
6082 /* Filter out arguments that are intended only for the
6084 if (!in_initrd() && startswith(word, "rd."))
6087 value = strchr(word, '=');
6091 r = parse_item(word, value);
6099 int container_get_leader(const char *machine, pid_t *pid) {
6100 _cleanup_free_ char *s = NULL, *class = NULL;
6108 p = strappenda("/run/systemd/machines/", machine);
6109 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
6117 if (!streq_ptr(class, "container"))
6120 r = parse_pid(s, &leader);
6130 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *netns_fd, int *root_fd) {
6131 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1, netnsfd = -1;
6139 mntns = procfs_file_alloca(pid, "ns/mnt");
6140 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6148 pidns = procfs_file_alloca(pid, "ns/pid");
6149 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6157 netns = procfs_file_alloca(pid, "ns/net");
6158 netnsfd = open(netns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6166 root = procfs_file_alloca(pid, "root");
6167 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
6173 *pidns_fd = pidnsfd;
6176 *mntns_fd = mntnsfd;
6179 *netns_fd = netnsfd;
6184 pidnsfd = mntnsfd = netnsfd = -1;
6189 int namespace_enter(int pidns_fd, int mntns_fd, int netns_fd, int root_fd) {
6192 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6196 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6200 if (setns(netns_fd, CLONE_NEWNET) < 0)
6204 if (fchdir(root_fd) < 0)
6207 if (chroot(".") < 0)
6211 if (setresgid(0, 0, 0) < 0)
6214 if (setgroups(0, NULL) < 0)
6217 if (setresuid(0, 0, 0) < 0)
6223 bool pid_is_unwaited(pid_t pid) {
6224 /* Checks whether a PID is still valid at all, including a zombie */
6229 if (kill(pid, 0) >= 0)
6232 return errno != ESRCH;
6235 bool pid_is_alive(pid_t pid) {
6238 /* Checks whether a PID is still valid and not a zombie */
6243 r = get_process_state(pid);
6244 if (r == -ENOENT || r == 'Z')
6250 int getpeercred(int fd, struct ucred *ucred) {
6251 socklen_t n = sizeof(struct ucred);
6258 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6262 if (n != sizeof(struct ucred))
6265 /* Check if the data is actually useful and not suppressed due
6266 * to namespacing issues */
6274 int getpeersec(int fd, char **ret) {
6286 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6290 if (errno != ERANGE)
6297 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6313 /* This is much like like mkostemp() but is subject to umask(). */
6314 int mkostemp_safe(char *pattern, int flags) {
6315 _cleanup_umask_ mode_t u;
6322 fd = mkostemp(pattern, flags);
6329 int open_tmpfile(const char *path, int flags) {
6336 /* Try O_TMPFILE first, if it is supported */
6337 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6342 /* Fall back to unguessable name + unlinking */
6343 p = strappenda(path, "/systemd-tmp-XXXXXX");
6345 fd = mkostemp_safe(p, flags);
6353 int fd_warn_permissions(const char *path, int fd) {
6356 if (fstat(fd, &st) < 0)
6359 if (st.st_mode & 0111)
6360 log_warning("Configuration file %s is marked executable. Please remove executable permission bits. Proceeding anyway.", path);
6362 if (st.st_mode & 0002)
6363 log_warning("Configuration file %s is marked world-writable. Please remove world writability permission bits. Proceeding anyway.", path);
6365 if (getpid() == 1 && (st.st_mode & 0044) != 0044)
6366 log_warning("Configuration file %s is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.", path);
6371 unsigned long personality_from_string(const char *p) {
6373 /* Parse a personality specifier. We introduce our own
6374 * identifiers that indicate specific ABIs, rather than just
6375 * hints regarding the register size, since we want to keep
6376 * things open for multiple locally supported ABIs for the
6377 * same register size. We try to reuse the ABI identifiers
6378 * used by libseccomp. */
6380 #if defined(__x86_64__)
6382 if (streq(p, "x86"))
6385 if (streq(p, "x86-64"))
6388 #elif defined(__i386__)
6390 if (streq(p, "x86"))
6394 /* personality(7) documents that 0xffffffffUL is used for
6395 * querying the current personality, hence let's use that here
6396 * as error indicator. */
6397 return 0xffffffffUL;
6400 const char* personality_to_string(unsigned long p) {
6402 #if defined(__x86_64__)
6404 if (p == PER_LINUX32)
6410 #elif defined(__i386__)
6419 uint64_t physical_memory(void) {
6422 /* We return this as uint64_t in case we are running as 32bit
6423 * process on a 64bit kernel with huge amounts of memory */
6425 mem = sysconf(_SC_PHYS_PAGES);
6428 return (uint64_t) mem * (uint64_t) page_size();
6431 char* mount_test_option(const char *haystack, const char *needle) {
6433 struct mntent me = {
6434 .mnt_opts = (char*) haystack
6439 /* Like glibc's hasmntopt(), but works on a string, not a
6445 return hasmntopt(&me, needle);
6448 void hexdump(FILE *f, const void *p, size_t s) {
6449 const uint8_t *b = p;
6452 assert(s == 0 || b);
6457 fprintf(f, "%04x ", n);
6459 for (i = 0; i < 16; i++) {
6464 fprintf(f, "%02x ", b[i]);
6472 for (i = 0; i < 16; i++) {
6477 fputc(isprint(b[i]) ? (char) b[i] : '.', f);
6491 int update_reboot_param_file(const char *param) {
6496 r = write_string_file(REBOOT_PARAM_FILE, param);
6498 log_error("Failed to write reboot param to "
6499 REBOOT_PARAM_FILE": %s", strerror(-r));
6501 unlink(REBOOT_PARAM_FILE);