1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <linux/magic.h>
64 #ifdef HAVE_SYS_AUXV_H
75 #include "path-util.h"
76 #include "exit-status.h"
80 #include "device-nodes.h"
87 char **saved_argv = NULL;
89 static volatile unsigned cached_columns = 0;
90 static volatile unsigned cached_lines = 0;
92 size_t page_size(void) {
93 static thread_local size_t pgsz = 0;
96 if (_likely_(pgsz > 0))
99 r = sysconf(_SC_PAGESIZE);
106 bool streq_ptr(const char *a, const char *b) {
108 /* Like streq(), but tries to make sense of NULL pointers */
119 char* endswith(const char *s, const char *postfix) {
126 pl = strlen(postfix);
129 return (char*) s + sl;
134 if (memcmp(s + sl - pl, postfix, pl) != 0)
137 return (char*) s + sl - pl;
140 bool first_word(const char *s, const char *word) {
155 if (memcmp(s, word, wl) != 0)
159 strchr(WHITESPACE, s[wl]);
162 int close_nointr(int fd) {
168 /* Just ignore EINTR; a retry loop is the wrong
169 * thing to do on Linux.
171 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
172 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
173 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
174 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
176 if (_unlikely_(r < 0 && errno == EINTR))
184 void close_nointr_nofail(int fd) {
187 /* like close_nointr() but cannot fail, and guarantees errno
190 assert_se(close_nointr(fd) == 0);
193 void close_many(const int fds[], unsigned n_fd) {
196 assert(fds || n_fd <= 0);
198 for (i = 0; i < n_fd; i++)
199 close_nointr_nofail(fds[i]);
202 int unlink_noerrno(const char *path) {
213 int parse_boolean(const char *v) {
216 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
218 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
224 int parse_pid(const char *s, pid_t* ret_pid) {
225 unsigned long ul = 0;
232 r = safe_atolu(s, &ul);
238 if ((unsigned long) pid != ul)
248 int parse_uid(const char *s, uid_t* ret_uid) {
249 unsigned long ul = 0;
256 r = safe_atolu(s, &ul);
262 if ((unsigned long) uid != ul)
269 int safe_atou(const char *s, unsigned *ret_u) {
277 l = strtoul(s, &x, 0);
279 if (!x || x == s || *x || errno)
280 return errno > 0 ? -errno : -EINVAL;
282 if ((unsigned long) (unsigned) l != l)
285 *ret_u = (unsigned) l;
289 int safe_atoi(const char *s, int *ret_i) {
297 l = strtol(s, &x, 0);
299 if (!x || x == s || *x || errno)
300 return errno > 0 ? -errno : -EINVAL;
302 if ((long) (int) l != l)
309 int safe_atollu(const char *s, long long unsigned *ret_llu) {
311 unsigned long long l;
317 l = strtoull(s, &x, 0);
319 if (!x || x == s || *x || errno)
320 return errno ? -errno : -EINVAL;
326 int safe_atolli(const char *s, long long int *ret_lli) {
334 l = strtoll(s, &x, 0);
336 if (!x || x == s || *x || errno)
337 return errno ? -errno : -EINVAL;
343 int safe_atod(const char *s, double *ret_d) {
350 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
355 if (!x || x == s || *x || errno)
356 return errno ? -errno : -EINVAL;
362 static size_t strcspn_escaped(const char *s, const char *reject) {
363 bool escaped = false;
366 for (n=0; s[n]; n++) {
369 else if (s[n] == '\\')
371 else if (strchr(reject, s[n]))
377 /* Split a string into words. */
378 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
381 current = *state ? *state : (char*) c;
383 if (!*current || *c == 0)
386 current += strspn(current, separator);
390 if (quoted && strchr("\'\"", *current)) {
391 char quotechar = *(current++);
392 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
393 *state = current+*l+1;
395 *l = strcspn_escaped(current, separator);
398 *l = strcspn(current, separator);
402 return (char*) current;
405 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
407 _cleanup_free_ char *line = NULL;
419 p = procfs_file_alloca(pid, "stat");
420 r = read_one_line_file(p, &line);
424 /* Let's skip the pid and comm fields. The latter is enclosed
425 * in () but does not escape any () in its value, so let's
426 * skip over it manually */
428 p = strrchr(line, ')');
440 if ((long unsigned) (pid_t) ppid != ppid)
443 *_ppid = (pid_t) ppid;
448 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
450 _cleanup_free_ char *line = NULL;
456 p = procfs_file_alloca(pid, "stat");
457 r = read_one_line_file(p, &line);
461 /* Let's skip the pid and comm fields. The latter is enclosed
462 * in () but does not escape any () in its value, so let's
463 * skip over it manually */
465 p = strrchr(line, ')');
487 "%*d " /* priority */
489 "%*d " /* num_threads */
490 "%*d " /* itrealvalue */
491 "%llu " /* starttime */,
498 int fchmod_umask(int fd, mode_t m) {
503 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
509 char *truncate_nl(char *s) {
512 s[strcspn(s, NEWLINE)] = 0;
516 int get_process_comm(pid_t pid, char **name) {
523 p = procfs_file_alloca(pid, "comm");
525 r = read_one_line_file(p, name);
532 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
533 _cleanup_fclose_ FILE *f = NULL;
541 p = procfs_file_alloca(pid, "cmdline");
547 if (max_length == 0) {
548 size_t len = 0, allocated = 0;
550 while ((c = getc(f)) != EOF) {
552 if (!GREEDY_REALLOC(r, allocated, len+2)) {
557 r[len++] = isprint(c) ? c : ' ';
567 r = new(char, max_length);
573 while ((c = getc(f)) != EOF) {
595 size_t n = MIN(left-1, 3U);
602 /* Kernel threads have no argv[] */
603 if (r == NULL || r[0] == 0) {
604 _cleanup_free_ char *t = NULL;
612 h = get_process_comm(pid, &t);
616 r = strjoin("[", t, "]", NULL);
625 int is_kernel_thread(pid_t pid) {
637 p = procfs_file_alloca(pid, "cmdline");
642 count = fread(&c, 1, 1, f);
646 /* Kernel threads have an empty cmdline */
649 return eof ? 1 : -errno;
654 int get_process_capeff(pid_t pid, char **capeff) {
660 p = procfs_file_alloca(pid, "status");
662 return get_status_field(p, "\nCapEff:", capeff);
665 int get_process_exe(pid_t pid, char **name) {
673 p = procfs_file_alloca(pid, "exe");
675 r = readlink_malloc(p, name);
677 return r == -ENOENT ? -ESRCH : r;
679 d = endswith(*name, " (deleted)");
686 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
687 _cleanup_fclose_ FILE *f = NULL;
697 p = procfs_file_alloca(pid, "status");
702 FOREACH_LINE(line, f, return -errno) {
707 if (startswith(l, field)) {
709 l += strspn(l, WHITESPACE);
711 l[strcspn(l, WHITESPACE)] = 0;
713 return parse_uid(l, uid);
720 int get_process_uid(pid_t pid, uid_t *uid) {
721 return get_process_id(pid, "Uid:", uid);
724 int get_process_gid(pid_t pid, gid_t *gid) {
725 assert_cc(sizeof(uid_t) == sizeof(gid_t));
726 return get_process_id(pid, "Gid:", gid);
729 char *strnappend(const char *s, const char *suffix, size_t b) {
737 return strndup(suffix, b);
746 if (b > ((size_t) -1) - a)
749 r = new(char, a+b+1);
754 memcpy(r+a, suffix, b);
760 char *strappend(const char *s, const char *suffix) {
761 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
764 int readlink_malloc(const char *p, char **r) {
774 if (!(c = new(char, l)))
777 if ((n = readlink(p, c, l-1)) < 0) {
783 if ((size_t) n < l-1) {
794 int readlink_and_make_absolute(const char *p, char **r) {
795 _cleanup_free_ char *target = NULL;
802 j = readlink_malloc(p, &target);
806 k = file_in_same_dir(p, target);
814 int readlink_and_canonicalize(const char *p, char **r) {
821 j = readlink_and_make_absolute(p, &t);
825 s = canonicalize_file_name(t);
832 path_kill_slashes(*r);
837 int reset_all_signal_handlers(void) {
840 for (sig = 1; sig < _NSIG; sig++) {
841 struct sigaction sa = {
842 .sa_handler = SIG_DFL,
843 .sa_flags = SA_RESTART,
846 if (sig == SIGKILL || sig == SIGSTOP)
849 /* On Linux the first two RT signals are reserved by
850 * glibc, and sigaction() will return EINVAL for them. */
851 if ((sigaction(sig, &sa, NULL) < 0))
859 char *strstrip(char *s) {
862 /* Drops trailing whitespace. Modifies the string in
863 * place. Returns pointer to first non-space character */
865 s += strspn(s, WHITESPACE);
867 for (e = strchr(s, 0); e > s; e --)
868 if (!strchr(WHITESPACE, e[-1]))
876 char *delete_chars(char *s, const char *bad) {
879 /* Drops all whitespace, regardless where in the string */
881 for (f = s, t = s; *f; f++) {
893 bool in_charset(const char *s, const char* charset) {
900 if (!strchr(charset, *i))
906 char *file_in_same_dir(const char *path, const char *filename) {
913 /* This removes the last component of path and appends
914 * filename, unless the latter is absolute anyway or the
917 if (path_is_absolute(filename))
918 return strdup(filename);
920 if (!(e = strrchr(path, '/')))
921 return strdup(filename);
923 k = strlen(filename);
924 if (!(r = new(char, e-path+1+k+1)))
927 memcpy(r, path, e-path+1);
928 memcpy(r+(e-path)+1, filename, k+1);
933 int rmdir_parents(const char *path, const char *stop) {
942 /* Skip trailing slashes */
943 while (l > 0 && path[l-1] == '/')
949 /* Skip last component */
950 while (l > 0 && path[l-1] != '/')
953 /* Skip trailing slashes */
954 while (l > 0 && path[l-1] == '/')
960 if (!(t = strndup(path, l)))
963 if (path_startswith(stop, t)) {
979 char hexchar(int x) {
980 static const char table[16] = "0123456789abcdef";
982 return table[x & 15];
985 int unhexchar(char c) {
987 if (c >= '0' && c <= '9')
990 if (c >= 'a' && c <= 'f')
993 if (c >= 'A' && c <= 'F')
999 char *hexmem(const void *p, size_t l) {
1003 z = r = malloc(l * 2 + 1);
1007 for (x = p; x < (const uint8_t*) p + l; x++) {
1008 *(z++) = hexchar(*x >> 4);
1009 *(z++) = hexchar(*x & 15);
1016 void *unhexmem(const char *p, size_t l) {
1022 z = r = malloc((l + 1) / 2 + 1);
1026 for (x = p; x < p + l; x += 2) {
1029 a = unhexchar(x[0]);
1031 b = unhexchar(x[1]);
1035 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1042 char octchar(int x) {
1043 return '0' + (x & 7);
1046 int unoctchar(char c) {
1048 if (c >= '0' && c <= '7')
1054 char decchar(int x) {
1055 return '0' + (x % 10);
1058 int undecchar(char c) {
1060 if (c >= '0' && c <= '9')
1066 char *cescape(const char *s) {
1072 /* Does C style string escaping. */
1074 r = new(char, strlen(s)*4 + 1);
1078 for (f = s, t = r; *f; f++)
1124 /* For special chars we prefer octal over
1125 * hexadecimal encoding, simply because glib's
1126 * g_strescape() does the same */
1127 if ((*f < ' ') || (*f >= 127)) {
1129 *(t++) = octchar((unsigned char) *f >> 6);
1130 *(t++) = octchar((unsigned char) *f >> 3);
1131 *(t++) = octchar((unsigned char) *f);
1142 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1149 /* Undoes C style string escaping, and optionally prefixes it. */
1151 pl = prefix ? strlen(prefix) : 0;
1153 r = new(char, pl+length+1);
1158 memcpy(r, prefix, pl);
1160 for (f = s, t = r + pl; f < s + length; f++) {
1203 /* This is an extension of the XDG syntax files */
1208 /* hexadecimal encoding */
1211 a = unhexchar(f[1]);
1212 b = unhexchar(f[2]);
1214 if (a < 0 || b < 0) {
1215 /* Invalid escape code, let's take it literal then */
1219 *(t++) = (char) ((a << 4) | b);
1234 /* octal encoding */
1237 a = unoctchar(f[0]);
1238 b = unoctchar(f[1]);
1239 c = unoctchar(f[2]);
1241 if (a < 0 || b < 0 || c < 0) {
1242 /* Invalid escape code, let's take it literal then */
1246 *(t++) = (char) ((a << 6) | (b << 3) | c);
1254 /* premature end of string.*/
1259 /* Invalid escape code, let's take it literal then */
1271 char *cunescape_length(const char *s, size_t length) {
1272 return cunescape_length_with_prefix(s, length, NULL);
1275 char *cunescape(const char *s) {
1278 return cunescape_length(s, strlen(s));
1281 char *xescape(const char *s, const char *bad) {
1285 /* Escapes all chars in bad, in addition to \ and all special
1286 * chars, in \xFF style escaping. May be reversed with
1289 r = new(char, strlen(s) * 4 + 1);
1293 for (f = s, t = r; *f; f++) {
1295 if ((*f < ' ') || (*f >= 127) ||
1296 (*f == '\\') || strchr(bad, *f)) {
1299 *(t++) = hexchar(*f >> 4);
1300 *(t++) = hexchar(*f);
1310 char *ascii_strlower(char *t) {
1315 for (p = t; *p; p++)
1316 if (*p >= 'A' && *p <= 'Z')
1317 *p = *p - 'A' + 'a';
1322 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1326 filename[0] == '.' ||
1327 streq(filename, "lost+found") ||
1328 streq(filename, "aquota.user") ||
1329 streq(filename, "aquota.group") ||
1330 endswith(filename, ".rpmnew") ||
1331 endswith(filename, ".rpmsave") ||
1332 endswith(filename, ".rpmorig") ||
1333 endswith(filename, ".dpkg-old") ||
1334 endswith(filename, ".dpkg-new") ||
1335 endswith(filename, ".swp");
1338 bool ignore_file(const char *filename) {
1341 if (endswith(filename, "~"))
1344 return ignore_file_allow_backup(filename);
1347 int fd_nonblock(int fd, bool nonblock) {
1352 if ((flags = fcntl(fd, F_GETFL, 0)) < 0)
1356 flags |= O_NONBLOCK;
1358 flags &= ~O_NONBLOCK;
1360 if (fcntl(fd, F_SETFL, flags) < 0)
1366 int fd_cloexec(int fd, bool cloexec) {
1371 if ((flags = fcntl(fd, F_GETFD, 0)) < 0)
1375 flags |= FD_CLOEXEC;
1377 flags &= ~FD_CLOEXEC;
1379 if (fcntl(fd, F_SETFD, flags) < 0)
1385 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1388 assert(n_fdset == 0 || fdset);
1390 for (i = 0; i < n_fdset; i++)
1397 int close_all_fds(const int except[], unsigned n_except) {
1402 assert(n_except == 0 || except);
1404 d = opendir("/proc/self/fd");
1409 /* When /proc isn't available (for example in chroots)
1410 * the fallback is brute forcing through the fd
1413 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1414 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1416 if (fd_in_set(fd, except, n_except))
1419 if (close_nointr(fd) < 0)
1420 if (errno != EBADF && r == 0)
1427 while ((de = readdir(d))) {
1430 if (ignore_file(de->d_name))
1433 if (safe_atoi(de->d_name, &fd) < 0)
1434 /* Let's better ignore this, just in case */
1443 if (fd_in_set(fd, except, n_except))
1446 if (close_nointr(fd) < 0) {
1447 /* Valgrind has its own FD and doesn't want to have it closed */
1448 if (errno != EBADF && r == 0)
1457 bool chars_intersect(const char *a, const char *b) {
1460 /* Returns true if any of the chars in a are in b. */
1461 for (p = a; *p; p++)
1468 bool fstype_is_network(const char *fstype) {
1469 static const char table[] =
1479 return nulstr_contains(table, fstype);
1483 _cleanup_close_ int fd;
1485 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1491 TIOCL_GETKMSGREDIRECT,
1495 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1498 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1501 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1507 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1508 struct termios old_termios, new_termios;
1510 char line[LINE_MAX];
1515 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1516 new_termios = old_termios;
1518 new_termios.c_lflag &= ~ICANON;
1519 new_termios.c_cc[VMIN] = 1;
1520 new_termios.c_cc[VTIME] = 0;
1522 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1525 if (t != (usec_t) -1) {
1526 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1527 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1532 k = fread(&c, 1, 1, f);
1534 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1540 *need_nl = c != '\n';
1547 if (t != (usec_t) -1)
1548 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1551 if (!fgets(line, sizeof(line), f))
1556 if (strlen(line) != 1)
1566 int ask(char *ret, const char *replies, const char *text, ...) {
1576 bool need_nl = true;
1579 fputs(ANSI_HIGHLIGHT_ON, stdout);
1586 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1590 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1593 if (r == -EBADMSG) {
1594 puts("Bad input, please try again.");
1605 if (strchr(replies, c)) {
1610 puts("Read unexpected character, please try again.");
1614 int reset_terminal_fd(int fd, bool switch_to_text) {
1615 struct termios termios;
1618 /* Set terminal to some sane defaults */
1622 /* We leave locked terminal attributes untouched, so that
1623 * Plymouth may set whatever it wants to set, and we don't
1624 * interfere with that. */
1626 /* Disable exclusive mode, just in case */
1627 ioctl(fd, TIOCNXCL);
1629 /* Switch to text mode */
1631 ioctl(fd, KDSETMODE, KD_TEXT);
1633 /* Enable console unicode mode */
1634 ioctl(fd, KDSKBMODE, K_UNICODE);
1636 if (tcgetattr(fd, &termios) < 0) {
1641 /* We only reset the stuff that matters to the software. How
1642 * hardware is set up we don't touch assuming that somebody
1643 * else will do that for us */
1645 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1646 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1647 termios.c_oflag |= ONLCR;
1648 termios.c_cflag |= CREAD;
1649 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1651 termios.c_cc[VINTR] = 03; /* ^C */
1652 termios.c_cc[VQUIT] = 034; /* ^\ */
1653 termios.c_cc[VERASE] = 0177;
1654 termios.c_cc[VKILL] = 025; /* ^X */
1655 termios.c_cc[VEOF] = 04; /* ^D */
1656 termios.c_cc[VSTART] = 021; /* ^Q */
1657 termios.c_cc[VSTOP] = 023; /* ^S */
1658 termios.c_cc[VSUSP] = 032; /* ^Z */
1659 termios.c_cc[VLNEXT] = 026; /* ^V */
1660 termios.c_cc[VWERASE] = 027; /* ^W */
1661 termios.c_cc[VREPRINT] = 022; /* ^R */
1662 termios.c_cc[VEOL] = 0;
1663 termios.c_cc[VEOL2] = 0;
1665 termios.c_cc[VTIME] = 0;
1666 termios.c_cc[VMIN] = 1;
1668 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1672 /* Just in case, flush all crap out */
1673 tcflush(fd, TCIOFLUSH);
1678 int reset_terminal(const char *name) {
1681 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1685 r = reset_terminal_fd(fd, true);
1686 close_nointr_nofail(fd);
1691 int open_terminal(const char *name, int mode) {
1696 * If a TTY is in the process of being closed opening it might
1697 * cause EIO. This is horribly awful, but unlikely to be
1698 * changed in the kernel. Hence we work around this problem by
1699 * retrying a couple of times.
1701 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1704 assert(!(mode & O_CREAT));
1707 fd = open(name, mode, 0);
1714 /* Max 1s in total */
1718 usleep(50 * USEC_PER_MSEC);
1727 close_nointr_nofail(fd);
1732 close_nointr_nofail(fd);
1739 int flush_fd(int fd) {
1740 struct pollfd pollfd = {
1750 r = poll(&pollfd, 1, 0);
1760 l = read(fd, buf, sizeof(buf));
1766 if (errno == EAGAIN)
1775 int acquire_terminal(
1779 bool ignore_tiocstty_eperm,
1782 int fd = -1, notify = -1, r = 0, wd = -1;
1787 /* We use inotify to be notified when the tty is closed. We
1788 * create the watch before checking if we can actually acquire
1789 * it, so that we don't lose any event.
1791 * Note: strictly speaking this actually watches for the
1792 * device being closed, it does *not* really watch whether a
1793 * tty loses its controlling process. However, unless some
1794 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1795 * its tty otherwise this will not become a problem. As long
1796 * as the administrator makes sure not configure any service
1797 * on the same tty as an untrusted user this should not be a
1798 * problem. (Which he probably should not do anyway.) */
1800 if (timeout != (usec_t) -1)
1801 ts = now(CLOCK_MONOTONIC);
1803 if (!fail && !force) {
1804 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1810 wd = inotify_add_watch(notify, name, IN_CLOSE);
1818 struct sigaction sa_old, sa_new = {
1819 .sa_handler = SIG_IGN,
1820 .sa_flags = SA_RESTART,
1824 r = flush_fd(notify);
1829 /* We pass here O_NOCTTY only so that we can check the return
1830 * value TIOCSCTTY and have a reliable way to figure out if we
1831 * successfully became the controlling process of the tty */
1832 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1836 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1837 * if we already own the tty. */
1838 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1840 /* First, try to get the tty */
1841 if (ioctl(fd, TIOCSCTTY, force) < 0)
1844 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1846 /* Sometimes it makes sense to ignore TIOCSCTTY
1847 * returning EPERM, i.e. when very likely we already
1848 * are have this controlling terminal. */
1849 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1852 if (r < 0 && (force || fail || r != -EPERM)) {
1861 assert(notify >= 0);
1864 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1866 struct inotify_event *e;
1868 if (timeout != (usec_t) -1) {
1871 n = now(CLOCK_MONOTONIC);
1872 if (ts + timeout < n) {
1877 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1887 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1890 if (errno == EINTR || errno == EAGAIN)
1897 e = (struct inotify_event*) inotify_buffer;
1902 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1907 step = sizeof(struct inotify_event) + e->len;
1908 assert(step <= (size_t) l);
1910 e = (struct inotify_event*) ((uint8_t*) e + step);
1917 /* We close the tty fd here since if the old session
1918 * ended our handle will be dead. It's important that
1919 * we do this after sleeping, so that we don't enter
1920 * an endless loop. */
1921 close_nointr_nofail(fd);
1925 close_nointr_nofail(notify);
1927 r = reset_terminal_fd(fd, true);
1929 log_warning("Failed to reset terminal: %s", strerror(-r));
1935 close_nointr_nofail(fd);
1938 close_nointr_nofail(notify);
1943 int release_terminal(void) {
1945 struct sigaction sa_old, sa_new = {
1946 .sa_handler = SIG_IGN,
1947 .sa_flags = SA_RESTART,
1949 _cleanup_close_ int fd;
1951 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
1955 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1956 * by our own TIOCNOTTY */
1957 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1959 if (ioctl(fd, TIOCNOTTY) < 0)
1962 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1967 int sigaction_many(const struct sigaction *sa, ...) {
1972 while ((sig = va_arg(ap, int)) > 0)
1973 if (sigaction(sig, sa, NULL) < 0)
1980 int ignore_signals(int sig, ...) {
1981 struct sigaction sa = {
1982 .sa_handler = SIG_IGN,
1983 .sa_flags = SA_RESTART,
1989 if (sigaction(sig, &sa, NULL) < 0)
1993 while ((sig = va_arg(ap, int)) > 0)
1994 if (sigaction(sig, &sa, NULL) < 0)
2001 int default_signals(int sig, ...) {
2002 struct sigaction sa = {
2003 .sa_handler = SIG_DFL,
2004 .sa_flags = SA_RESTART,
2009 if (sigaction(sig, &sa, NULL) < 0)
2013 while ((sig = va_arg(ap, int)) > 0)
2014 if (sigaction(sig, &sa, NULL) < 0)
2021 int close_pipe(int p[]) {
2027 a = close_nointr(p[0]);
2032 b = close_nointr(p[1]);
2036 return a < 0 ? a : b;
2039 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2046 while (nbytes > 0) {
2049 k = read(fd, p, nbytes);
2050 if (k < 0 && errno == EINTR)
2053 if (k < 0 && errno == EAGAIN && do_poll) {
2055 /* We knowingly ignore any return value here,
2056 * and expect that any error/EOF is reported
2059 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2064 return n > 0 ? n : (k < 0 ? -errno : 0);
2074 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2075 const uint8_t *p = buf;
2081 while (nbytes > 0) {
2084 k = write(fd, p, nbytes);
2085 if (k < 0 && errno == EINTR)
2088 if (k < 0 && errno == EAGAIN && do_poll) {
2090 /* We knowingly ignore any return value here,
2091 * and expect that any error/EOF is reported
2094 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2099 return n > 0 ? n : (k < 0 ? -errno : 0);
2109 int parse_bytes(const char *t, off_t *bytes) {
2110 static const struct {
2112 unsigned long long factor;
2116 { "M", 1024ULL*1024ULL },
2117 { "G", 1024ULL*1024ULL*1024ULL },
2118 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2119 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2120 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2125 unsigned long long r = 0;
2137 l = strtoll(p, &e, 10);
2148 e += strspn(e, WHITESPACE);
2150 for (i = 0; i < ELEMENTSOF(table); i++)
2151 if (startswith(e, table[i].suffix)) {
2152 unsigned long long tmp;
2153 if ((unsigned long long) l > ULLONG_MAX / table[i].factor)
2155 tmp = l * table[i].factor;
2156 if (tmp > ULLONG_MAX - r)
2160 if ((unsigned long long) (off_t) r != r)
2163 p = e + strlen(table[i].suffix);
2167 if (i >= ELEMENTSOF(table))
2177 int make_stdio(int fd) {
2182 r = dup3(fd, STDIN_FILENO, 0);
2183 s = dup3(fd, STDOUT_FILENO, 0);
2184 t = dup3(fd, STDERR_FILENO, 0);
2187 close_nointr_nofail(fd);
2189 if (r < 0 || s < 0 || t < 0)
2192 /* We rely here that the new fd has O_CLOEXEC not set */
2197 int make_null_stdio(void) {
2200 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2204 return make_stdio(null_fd);
2207 bool is_device_path(const char *path) {
2209 /* Returns true on paths that refer to a device, either in
2210 * sysfs or in /dev */
2213 path_startswith(path, "/dev/") ||
2214 path_startswith(path, "/sys/");
2217 int dir_is_empty(const char *path) {
2218 _cleanup_closedir_ DIR *d;
2229 if (!de && errno != 0)
2235 if (!ignore_file(de->d_name))
2240 char* dirname_malloc(const char *path) {
2241 char *d, *dir, *dir2;
2258 int dev_urandom(void *p, size_t n) {
2259 _cleanup_close_ int fd;
2262 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2264 return errno == ENOENT ? -ENOSYS : -errno;
2266 k = loop_read(fd, p, n, true);
2269 if ((size_t) k != n)
2275 void random_bytes(void *p, size_t n) {
2276 static bool srand_called = false;
2280 r = dev_urandom(p, n);
2284 /* If some idiot made /dev/urandom unavailable to us, he'll
2285 * get a PRNG instead. */
2287 if (!srand_called) {
2290 #ifdef HAVE_SYS_AUXV_H
2291 /* The kernel provides us with a bit of entropy in
2292 * auxv, so let's try to make use of that to seed the
2293 * pseudo-random generator. It's better than
2298 auxv = (void*) getauxval(AT_RANDOM);
2300 x ^= *(unsigned*) auxv;
2303 x ^= (unsigned) now(CLOCK_REALTIME);
2304 x ^= (unsigned) gettid();
2307 srand_called = true;
2310 for (q = p; q < (uint8_t*) p + n; q ++)
2314 void rename_process(const char name[8]) {
2317 /* This is a like a poor man's setproctitle(). It changes the
2318 * comm field, argv[0], and also the glibc's internally used
2319 * name of the process. For the first one a limit of 16 chars
2320 * applies, to the second one usually one of 10 (i.e. length
2321 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2322 * "systemd"). If you pass a longer string it will be
2325 prctl(PR_SET_NAME, name);
2327 if (program_invocation_name)
2328 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2330 if (saved_argc > 0) {
2334 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2336 for (i = 1; i < saved_argc; i++) {
2340 memzero(saved_argv[i], strlen(saved_argv[i]));
2345 void sigset_add_many(sigset_t *ss, ...) {
2352 while ((sig = va_arg(ap, int)) > 0)
2353 assert_se(sigaddset(ss, sig) == 0);
2357 char* gethostname_malloc(void) {
2360 assert_se(uname(&u) >= 0);
2362 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2363 return strdup(u.nodename);
2365 return strdup(u.sysname);
2368 bool hostname_is_set(void) {
2371 assert_se(uname(&u) >= 0);
2373 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2376 static char *lookup_uid(uid_t uid) {
2379 _cleanup_free_ char *buf = NULL;
2380 struct passwd pwbuf, *pw = NULL;
2382 /* Shortcut things to avoid NSS lookups */
2384 return strdup("root");
2386 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2390 buf = malloc(bufsize);
2394 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2395 return strdup(pw->pw_name);
2397 if (asprintf(&name, "%lu", (unsigned long) uid) < 0)
2403 char* getlogname_malloc(void) {
2407 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2412 return lookup_uid(uid);
2415 char *getusername_malloc(void) {
2422 return lookup_uid(getuid());
2425 int getttyname_malloc(int fd, char **r) {
2426 char path[PATH_MAX], *c;
2431 k = ttyname_r(fd, path, sizeof(path));
2437 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2445 int getttyname_harder(int fd, char **r) {
2449 k = getttyname_malloc(fd, &s);
2453 if (streq(s, "tty")) {
2455 return get_ctty(0, NULL, r);
2462 int get_ctty_devnr(pid_t pid, dev_t *d) {
2464 _cleanup_free_ char *line = NULL;
2466 unsigned long ttynr;
2470 p = procfs_file_alloca(pid, "stat");
2471 r = read_one_line_file(p, &line);
2475 p = strrchr(line, ')');
2485 "%*d " /* session */
2490 if (major(ttynr) == 0 && minor(ttynr) == 0)
2499 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2501 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *s, *b, *p;
2506 k = get_ctty_devnr(pid, &devnr);
2510 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2512 k = readlink_malloc(fn, &s);
2518 /* This is an ugly hack */
2519 if (major(devnr) == 136) {
2520 if (asprintf(&b, "pts/%lu", (unsigned long) minor(devnr)) < 0)
2530 /* Probably something like the ptys which have no
2531 * symlink in /dev/char. Let's return something
2532 * vaguely useful. */
2545 if (startswith(s, "/dev/"))
2547 else if (startswith(s, "../"))
2565 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2571 /* This returns the first error we run into, but nevertheless
2572 * tries to go on. This closes the passed fd. */
2576 close_nointr_nofail(fd);
2578 return errno == ENOENT ? 0 : -errno;
2583 bool is_dir, keep_around;
2589 if (!de && errno != 0) {
2598 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2601 if (de->d_type == DT_UNKNOWN ||
2603 (de->d_type == DT_DIR && root_dev)) {
2604 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2605 if (ret == 0 && errno != ENOENT)
2610 is_dir = S_ISDIR(st.st_mode);
2613 (st.st_uid == 0 || st.st_uid == getuid()) &&
2614 (st.st_mode & S_ISVTX);
2616 is_dir = de->d_type == DT_DIR;
2617 keep_around = false;
2623 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2624 if (root_dev && st.st_dev != root_dev->st_dev)
2627 subdir_fd = openat(fd, de->d_name,
2628 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2629 if (subdir_fd < 0) {
2630 if (ret == 0 && errno != ENOENT)
2635 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2636 if (r < 0 && ret == 0)
2640 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2641 if (ret == 0 && errno != ENOENT)
2645 } else if (!only_dirs && !keep_around) {
2647 if (unlinkat(fd, de->d_name, 0) < 0) {
2648 if (ret == 0 && errno != ENOENT)
2659 _pure_ static int is_temporary_fs(struct statfs *s) {
2662 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2663 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2666 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2671 if (fstatfs(fd, &s) < 0) {
2672 close_nointr_nofail(fd);
2676 /* We refuse to clean disk file systems with this call. This
2677 * is extra paranoia just to be sure we never ever remove
2679 if (!is_temporary_fs(&s)) {
2680 log_error("Attempted to remove disk file system, and we can't allow that.");
2681 close_nointr_nofail(fd);
2685 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2688 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2694 /* We refuse to clean the root file system with this
2695 * call. This is extra paranoia to never cause a really
2696 * seriously broken system. */
2697 if (path_equal(path, "/")) {
2698 log_error("Attempted to remove entire root file system, and we can't allow that.");
2702 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2705 if (errno != ENOTDIR)
2709 if (statfs(path, &s) < 0)
2712 if (!is_temporary_fs(&s)) {
2713 log_error("Attempted to remove disk file system, and we can't allow that.");
2718 if (delete_root && !only_dirs)
2719 if (unlink(path) < 0 && errno != ENOENT)
2726 if (fstatfs(fd, &s) < 0) {
2727 close_nointr_nofail(fd);
2731 if (!is_temporary_fs(&s)) {
2732 log_error("Attempted to remove disk file system, and we can't allow that.");
2733 close_nointr_nofail(fd);
2738 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2741 if (honour_sticky && file_is_priv_sticky(path) > 0)
2744 if (rmdir(path) < 0 && errno != ENOENT) {
2753 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2754 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2757 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2758 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2761 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2764 /* Under the assumption that we are running privileged we
2765 * first change the access mode and only then hand out
2766 * ownership to avoid a window where access is too open. */
2768 if (mode != (mode_t) -1)
2769 if (chmod(path, mode) < 0)
2772 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2773 if (chown(path, uid, gid) < 0)
2779 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2782 /* Under the assumption that we are running privileged we
2783 * first change the access mode and only then hand out
2784 * ownership to avoid a window where access is too open. */
2786 if (mode != (mode_t) -1)
2787 if (fchmod(fd, mode) < 0)
2790 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2791 if (fchown(fd, uid, gid) < 0)
2797 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2801 /* Allocates the cpuset in the right size */
2804 if (!(r = CPU_ALLOC(n)))
2807 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2808 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2818 if (errno != EINVAL)
2825 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2826 static const char status_indent[] = " "; /* "[" STATUS "] " */
2827 _cleanup_free_ char *s = NULL;
2828 _cleanup_close_ int fd = -1;
2829 struct iovec iovec[6] = {};
2831 static bool prev_ephemeral;
2835 /* This is independent of logging, as status messages are
2836 * optional and go exclusively to the console. */
2838 if (vasprintf(&s, format, ap) < 0)
2841 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2854 sl = status ? sizeof(status_indent)-1 : 0;
2860 e = ellipsize(s, emax, 75);
2868 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2869 prev_ephemeral = ephemeral;
2872 if (!isempty(status)) {
2873 IOVEC_SET_STRING(iovec[n++], "[");
2874 IOVEC_SET_STRING(iovec[n++], status);
2875 IOVEC_SET_STRING(iovec[n++], "] ");
2877 IOVEC_SET_STRING(iovec[n++], status_indent);
2880 IOVEC_SET_STRING(iovec[n++], s);
2882 IOVEC_SET_STRING(iovec[n++], "\n");
2884 if (writev(fd, iovec, n) < 0)
2890 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
2896 va_start(ap, format);
2897 r = status_vprintf(status, ellipse, ephemeral, format, ap);
2903 int status_welcome(void) {
2904 _cleanup_free_ char *pretty_name = NULL, *ansi_color = NULL;
2907 r = parse_env_file("/etc/os-release", NEWLINE,
2908 "PRETTY_NAME", &pretty_name,
2909 "ANSI_COLOR", &ansi_color,
2912 if (r < 0 && r != -ENOENT)
2913 log_warning("Failed to read /etc/os-release: %s", strerror(-r));
2915 return status_printf(NULL, false, false,
2916 "\nWelcome to \x1B[%sm%s\x1B[0m!\n",
2917 isempty(ansi_color) ? "1" : ansi_color,
2918 isempty(pretty_name) ? "Linux" : pretty_name);
2921 char *replace_env(const char *format, char **env) {
2928 const char *e, *word = format;
2933 for (e = format; *e; e ++) {
2944 if (!(k = strnappend(r, word, e-word-1)))
2953 } else if (*e == '$') {
2954 if (!(k = strnappend(r, word, e-word)))
2970 t = strempty(strv_env_get_n(env, word+2, e-word-2));
2972 k = strappend(r, t);
2986 if (!(k = strnappend(r, word, e-word)))
2997 char **replace_env_argv(char **argv, char **env) {
2999 unsigned k = 0, l = 0;
3001 l = strv_length(argv);
3003 if (!(r = new(char*, l+1)))
3006 STRV_FOREACH(i, argv) {
3008 /* If $FOO appears as single word, replace it by the split up variable */
3009 if ((*i)[0] == '$' && (*i)[1] != '{') {
3014 e = strv_env_get(env, *i+1);
3017 if (!(m = strv_split_quoted(e))) {
3028 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3037 memcpy(r + k, m, q * sizeof(char*));
3045 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3046 if (!(r[k++] = replace_env(*i, env))) {
3056 int fd_columns(int fd) {
3057 struct winsize ws = {};
3059 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3068 unsigned columns(void) {
3072 if (_likely_(cached_columns > 0))
3073 return cached_columns;
3076 e = getenv("COLUMNS");
3081 c = fd_columns(STDOUT_FILENO);
3090 int fd_lines(int fd) {
3091 struct winsize ws = {};
3093 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3102 unsigned lines(void) {
3106 if (_likely_(cached_lines > 0))
3107 return cached_lines;
3110 e = getenv("LINES");
3115 l = fd_lines(STDOUT_FILENO);
3121 return cached_lines;
3124 /* intended to be used as a SIGWINCH sighandler */
3125 void columns_lines_cache_reset(int signum) {
3131 static int cached_on_tty = -1;
3133 if (_unlikely_(cached_on_tty < 0))
3134 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3136 return cached_on_tty;
3139 int running_in_chroot(void) {
3140 struct stat a = {}, b = {};
3142 /* Only works as root */
3143 if (stat("/proc/1/root", &a) < 0)
3146 if (stat("/", &b) < 0)
3150 a.st_dev != b.st_dev ||
3151 a.st_ino != b.st_ino;
3154 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3159 assert(percent <= 100);
3160 assert(new_length >= 3);
3162 if (old_length <= 3 || old_length <= new_length)
3163 return strndup(s, old_length);
3165 r = new0(char, new_length+1);
3169 x = (new_length * percent) / 100;
3171 if (x > new_length - 3)
3179 s + old_length - (new_length - x - 3),
3180 new_length - x - 3);
3185 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3189 unsigned k, len, len2;
3192 assert(percent <= 100);
3193 assert(new_length >= 3);
3195 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3196 if (ascii_is_valid(s))
3197 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3199 if (old_length <= 3 || old_length <= new_length)
3200 return strndup(s, old_length);
3202 x = (new_length * percent) / 100;
3204 if (x > new_length - 3)
3208 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3211 c = utf8_encoded_to_unichar(i);
3214 k += unichar_iswide(c) ? 2 : 1;
3217 if (k > x) /* last character was wide and went over quota */
3220 for (j = s + old_length; k < new_length && j > i; ) {
3223 j = utf8_prev_char(j);
3224 c = utf8_encoded_to_unichar(j);
3227 k += unichar_iswide(c) ? 2 : 1;
3231 /* we don't actually need to ellipsize */
3233 return memdup(s, old_length + 1);
3235 /* make space for ellipsis */
3236 j = utf8_next_char(j);
3239 len2 = s + old_length - j;
3240 e = new(char, len + 3 + len2 + 1);
3245 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3246 old_length, new_length, x, len, len2, k);
3250 e[len] = 0xe2; /* tri-dot ellipsis: … */
3254 memcpy(e + len + 3, j, len2 + 1);
3259 char *ellipsize(const char *s, size_t length, unsigned percent) {
3260 return ellipsize_mem(s, strlen(s), length, percent);
3263 int touch(const char *path) {
3268 /* This just opens the file for writing, ensuring it
3269 * exists. It doesn't call utimensat() the way /usr/bin/touch
3272 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
3276 close_nointr_nofail(fd);
3280 char *unquote(const char *s, const char* quotes) {
3284 /* This is rather stupid, simply removes the heading and
3285 * trailing quotes if there is one. Doesn't care about
3286 * escaping or anything. We should make this smarter one
3293 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3294 return strndup(s+1, l-2);
3299 char *normalize_env_assignment(const char *s) {
3300 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3303 eq = strchr(s, '=');
3315 memmove(r, t, strlen(t) + 1);
3319 name = strndup(s, eq - s);
3327 value = unquote(strstrip(p), QUOTES);
3331 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3337 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3348 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3360 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3367 r = wait_for_terminate(pid, &status);
3369 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3373 if (status.si_code == CLD_EXITED) {
3374 if (status.si_status != 0) {
3375 log_warning("%s failed with error code %i.", name, status.si_status);
3376 return status.si_status;
3379 log_debug("%s succeeded.", name);
3382 } else if (status.si_code == CLD_KILLED ||
3383 status.si_code == CLD_DUMPED) {
3385 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3389 log_warning("%s failed due to unknown reason.", name);
3393 noreturn void freeze(void) {
3395 /* Make sure nobody waits for us on a socket anymore */
3396 close_all_fds(NULL, 0);
3404 bool null_or_empty(struct stat *st) {
3407 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3410 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3416 int null_or_empty_path(const char *fn) {
3421 if (stat(fn, &st) < 0)
3424 return null_or_empty(&st);
3427 DIR *xopendirat(int fd, const char *name, int flags) {
3431 assert(!(flags & O_CREAT));
3433 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3439 close_nointr_nofail(nfd);
3446 int signal_from_string_try_harder(const char *s) {
3450 signo = signal_from_string(s);
3452 if (startswith(s, "SIG"))
3453 return signal_from_string(s+3);
3458 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3459 _cleanup_free_ char *t = NULL, *u = NULL;
3463 u = unquote(tagvalue, "\"\'");
3467 enc_len = strlen(u) * 4 + 1;
3468 t = new(char, enc_len);
3472 if (encode_devnode_name(u, t, enc_len) < 0)
3475 if (asprintf(&dn, "/dev/disk/by-%s/%s", by, t) < 0)
3481 char *fstab_node_to_udev_node(const char *p) {
3484 if (startswith(p, "LABEL="))
3485 return tag_to_udev_node(p+6, "label");
3487 if (startswith(p, "UUID="))
3488 return tag_to_udev_node(p+5, "uuid");
3490 if (startswith(p, "PARTUUID="))
3491 return tag_to_udev_node(p+9, "partuuid");
3493 if (startswith(p, "PARTLABEL="))
3494 return tag_to_udev_node(p+10, "partlabel");
3499 bool tty_is_vc(const char *tty) {
3502 if (startswith(tty, "/dev/"))
3505 return vtnr_from_tty(tty) >= 0;
3508 bool tty_is_console(const char *tty) {
3511 if (startswith(tty, "/dev/"))
3514 return streq(tty, "console");
3517 int vtnr_from_tty(const char *tty) {
3522 if (startswith(tty, "/dev/"))
3525 if (!startswith(tty, "tty") )
3528 if (tty[3] < '0' || tty[3] > '9')
3531 r = safe_atoi(tty+3, &i);
3535 if (i < 0 || i > 63)
3541 char *resolve_dev_console(char **active) {
3544 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3545 * (i.e. not read-only-mounted which is a sign for container setups) */
3547 if (path_is_read_only_fs("/sys") > 0)
3550 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3553 /* If multiple log outputs are configured the last one is what
3554 * /dev/console points to */
3555 tty = strrchr(*active, ' ');
3561 if (streq(tty, "tty0")) {
3564 /* Get the active VC (e.g. tty1) */
3565 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3567 tty = *active = tmp;
3574 bool tty_is_vc_resolve(const char *tty) {
3575 _cleanup_free_ char *active = NULL;
3579 if (startswith(tty, "/dev/"))
3582 if (streq(tty, "console")) {
3583 tty = resolve_dev_console(&active);
3588 return tty_is_vc(tty);
3591 const char *default_term_for_tty(const char *tty) {
3594 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3597 bool dirent_is_file(const struct dirent *de) {
3600 if (ignore_file(de->d_name))
3603 if (de->d_type != DT_REG &&
3604 de->d_type != DT_LNK &&
3605 de->d_type != DT_UNKNOWN)
3611 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3614 if (de->d_type != DT_REG &&
3615 de->d_type != DT_LNK &&
3616 de->d_type != DT_UNKNOWN)
3619 if (ignore_file_allow_backup(de->d_name))
3622 return endswith(de->d_name, suffix);
3625 void execute_directory(const char *directory, DIR *d, char *argv[]) {
3628 Hashmap *pids = NULL;
3632 /* Executes all binaries in a directory in parallel and
3633 * waits for them to finish. */
3636 if (!(_d = opendir(directory))) {
3638 if (errno == ENOENT)
3641 log_error("Failed to enumerate directory %s: %m", directory);
3648 if (!(pids = hashmap_new(trivial_hash_func, trivial_compare_func))) {
3649 log_error("Failed to allocate set.");
3653 while ((de = readdir(d))) {
3658 if (!dirent_is_file(de))
3661 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3666 if ((pid = fork()) < 0) {
3667 log_error("Failed to fork: %m");
3685 log_error("Failed to execute %s: %m", path);
3686 _exit(EXIT_FAILURE);
3689 log_debug("Spawned %s as %lu", path, (unsigned long) pid);
3691 if ((k = hashmap_put(pids, UINT_TO_PTR(pid), path)) < 0) {
3692 log_error("Failed to add PID to set: %s", strerror(-k));
3697 while (!hashmap_isempty(pids)) {
3698 pid_t pid = PTR_TO_UINT(hashmap_first_key(pids));
3702 if (waitid(P_PID, pid, &si, WEXITED) < 0) {
3707 log_error("waitid() failed: %m");
3711 if ((path = hashmap_remove(pids, UINT_TO_PTR(si.si_pid)))) {
3712 if (!is_clean_exit(si.si_code, si.si_status, NULL)) {
3713 if (si.si_code == CLD_EXITED)
3714 log_error("%s exited with exit status %i.", path, si.si_status);
3716 log_error("%s terminated by signal %s.", path, signal_to_string(si.si_status));
3718 log_debug("%s exited successfully.", path);
3729 hashmap_free_free(pids);
3732 int kill_and_sigcont(pid_t pid, int sig) {
3735 r = kill(pid, sig) < 0 ? -errno : 0;
3743 bool nulstr_contains(const char*nulstr, const char *needle) {
3749 NULSTR_FOREACH(i, nulstr)
3750 if (streq(i, needle))
3756 bool plymouth_running(void) {
3757 return access("/run/plymouth/pid", F_OK) >= 0;
3760 char* strshorten(char *s, size_t l) {
3769 static bool hostname_valid_char(char c) {
3771 (c >= 'a' && c <= 'z') ||
3772 (c >= 'A' && c <= 'Z') ||
3773 (c >= '0' && c <= '9') ||
3779 bool hostname_is_valid(const char *s) {
3786 for (p = s, dot = true; *p; p++) {
3793 if (!hostname_valid_char(*p))
3803 if (p-s > HOST_NAME_MAX)
3809 char* hostname_cleanup(char *s, bool lowercase) {
3813 for (p = s, d = s, dot = true; *p; p++) {
3820 } else if (hostname_valid_char(*p)) {
3821 *(d++) = lowercase ? tolower(*p) : *p;
3832 strshorten(s, HOST_NAME_MAX);
3837 int pipe_eof(int fd) {
3838 struct pollfd pollfd = {
3840 .events = POLLIN|POLLHUP,
3845 r = poll(&pollfd, 1, 0);
3852 return pollfd.revents & POLLHUP;
3855 int fd_wait_for_event(int fd, int event, usec_t t) {
3857 struct pollfd pollfd = {
3865 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
3872 return pollfd.revents;
3875 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
3886 t = new(char, strlen(path) + 1 + 6 + 1);
3890 fn = basename(path);
3894 stpcpy(stpcpy(t+k+1, fn), "XXXXXX");
3896 fd = mkostemp_safe(t, O_WRONLY|O_CLOEXEC);
3902 f = fdopen(fd, "we");
3915 int terminal_vhangup_fd(int fd) {
3918 if (ioctl(fd, TIOCVHANGUP) < 0)
3924 int terminal_vhangup(const char *name) {
3927 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3931 r = terminal_vhangup_fd(fd);
3932 close_nointr_nofail(fd);
3937 int vt_disallocate(const char *name) {
3941 /* Deallocate the VT if possible. If not possible
3942 * (i.e. because it is the active one), at least clear it
3943 * entirely (including the scrollback buffer) */
3945 if (!startswith(name, "/dev/"))
3948 if (!tty_is_vc(name)) {
3949 /* So this is not a VT. I guess we cannot deallocate
3950 * it then. But let's at least clear the screen */
3952 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3957 "\033[r" /* clear scrolling region */
3958 "\033[H" /* move home */
3959 "\033[2J", /* clear screen */
3961 close_nointr_nofail(fd);
3966 if (!startswith(name, "/dev/tty"))
3969 r = safe_atou(name+8, &u);
3976 /* Try to deallocate */
3977 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
3981 r = ioctl(fd, VT_DISALLOCATE, u);
3982 close_nointr_nofail(fd);
3990 /* Couldn't deallocate, so let's clear it fully with
3992 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3997 "\033[r" /* clear scrolling region */
3998 "\033[H" /* move home */
3999 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4001 close_nointr_nofail(fd);
4006 int copy_file(const char *from, const char *to, int flags) {
4007 _cleanup_close_ int fdf = -1;
4013 fdf = open(from, O_RDONLY|O_CLOEXEC|O_NOCTTY);
4017 fdt = open(to, flags|O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
4025 n = read(fdf, buf, sizeof(buf));
4039 k = loop_write(fdt, buf, n, false);
4041 r = k < 0 ? k : (errno ? -errno : -EIO);
4050 r = close_nointr(fdt);
4060 int symlink_atomic(const char *from, const char *to) {
4062 _cleanup_free_ char *t;
4072 t = new(char, strlen(to) + 1 + 16 + 1);
4080 x = stpcpy(t+k+1, fn);
4083 for (i = 0; i < 16; i++) {
4084 *(x++) = hexchar(u & 0xF);
4090 if (symlink(from, t) < 0)
4093 if (rename(t, to) < 0) {
4102 bool display_is_local(const char *display) {
4106 display[0] == ':' &&
4107 display[1] >= '0' &&
4111 int socket_from_display(const char *display, char **path) {
4118 if (!display_is_local(display))
4121 k = strspn(display+1, "0123456789");
4123 f = new(char, sizeof("/tmp/.X11-unix/X") + k);
4127 c = stpcpy(f, "/tmp/.X11-unix/X");
4128 memcpy(c, display+1, k);
4137 const char **username,
4138 uid_t *uid, gid_t *gid,
4140 const char **shell) {
4148 /* We enforce some special rules for uid=0: in order to avoid
4149 * NSS lookups for root we hardcode its data. */
4151 if (streq(*username, "root") || streq(*username, "0")) {
4169 if (parse_uid(*username, &u) >= 0) {
4173 /* If there are multiple users with the same id, make
4174 * sure to leave $USER to the configured value instead
4175 * of the first occurrence in the database. However if
4176 * the uid was configured by a numeric uid, then let's
4177 * pick the real username from /etc/passwd. */
4179 *username = p->pw_name;
4182 p = getpwnam(*username);
4186 return errno > 0 ? -errno : -ESRCH;
4198 *shell = p->pw_shell;
4203 char* uid_to_name(uid_t uid) {
4208 return strdup("root");
4212 return strdup(p->pw_name);
4214 if (asprintf(&r, "%lu", (unsigned long) uid) < 0)
4220 char* gid_to_name(gid_t gid) {
4225 return strdup("root");
4229 return strdup(p->gr_name);
4231 if (asprintf(&r, "%lu", (unsigned long) gid) < 0)
4237 int get_group_creds(const char **groupname, gid_t *gid) {
4243 /* We enforce some special rules for gid=0: in order to avoid
4244 * NSS lookups for root we hardcode its data. */
4246 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4247 *groupname = "root";
4255 if (parse_gid(*groupname, &id) >= 0) {
4260 *groupname = g->gr_name;
4263 g = getgrnam(*groupname);
4267 return errno > 0 ? -errno : -ESRCH;
4275 int in_gid(gid_t gid) {
4277 int ngroups_max, r, i;
4279 if (getgid() == gid)
4282 if (getegid() == gid)
4285 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4286 assert(ngroups_max > 0);
4288 gids = alloca(sizeof(gid_t) * ngroups_max);
4290 r = getgroups(ngroups_max, gids);
4294 for (i = 0; i < r; i++)
4301 int in_group(const char *name) {
4305 r = get_group_creds(&name, &gid);
4312 int glob_exists(const char *path) {
4313 _cleanup_globfree_ glob_t g = {};
4319 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4321 if (k == GLOB_NOMATCH)
4323 else if (k == GLOB_NOSPACE)
4326 return !strv_isempty(g.gl_pathv);
4328 return errno ? -errno : -EIO;
4331 int glob_extend(char ***strv, const char *path) {
4332 _cleanup_globfree_ glob_t g = {};
4337 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4339 if (k == GLOB_NOMATCH)
4341 else if (k == GLOB_NOSPACE)
4343 else if (k != 0 || strv_isempty(g.gl_pathv))
4344 return errno ? -errno : -EIO;
4346 STRV_FOREACH(p, g.gl_pathv) {
4347 k = strv_extend(strv, *p);
4355 int dirent_ensure_type(DIR *d, struct dirent *de) {
4361 if (de->d_type != DT_UNKNOWN)
4364 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4368 S_ISREG(st.st_mode) ? DT_REG :
4369 S_ISDIR(st.st_mode) ? DT_DIR :
4370 S_ISLNK(st.st_mode) ? DT_LNK :
4371 S_ISFIFO(st.st_mode) ? DT_FIFO :
4372 S_ISSOCK(st.st_mode) ? DT_SOCK :
4373 S_ISCHR(st.st_mode) ? DT_CHR :
4374 S_ISBLK(st.st_mode) ? DT_BLK :
4380 int in_search_path(const char *path, char **search) {
4382 _cleanup_free_ char *parent = NULL;
4385 r = path_get_parent(path, &parent);
4389 STRV_FOREACH(i, search)
4390 if (path_equal(parent, *i))
4396 int get_files_in_directory(const char *path, char ***list) {
4397 _cleanup_closedir_ DIR *d = NULL;
4398 size_t bufsize = 0, n = 0;
4399 _cleanup_strv_free_ char **l = NULL;
4403 /* Returns all files in a directory in *list, and the number
4404 * of files as return value. If list is NULL returns only the
4416 if (!de && errno != 0)
4421 dirent_ensure_type(d, de);
4423 if (!dirent_is_file(de))
4427 /* one extra slot is needed for the terminating NULL */
4428 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4431 l[n] = strdup(de->d_name);
4442 l = NULL; /* avoid freeing */
4448 char *strjoin(const char *x, ...) {
4462 t = va_arg(ap, const char *);
4467 if (n > ((size_t) -1) - l) {
4491 t = va_arg(ap, const char *);
4505 bool is_main_thread(void) {
4506 static thread_local int cached = 0;
4508 if (_unlikely_(cached == 0))
4509 cached = getpid() == gettid() ? 1 : -1;
4514 int block_get_whole_disk(dev_t d, dev_t *ret) {
4521 /* If it has a queue this is good enough for us */
4522 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4525 r = access(p, F_OK);
4533 /* If it is a partition find the originating device */
4534 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4537 r = access(p, F_OK);
4543 /* Get parent dev_t */
4544 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4547 r = read_one_line_file(p, &s);
4553 r = sscanf(s, "%u:%u", &m, &n);
4559 /* Only return this if it is really good enough for us. */
4560 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4563 r = access(p, F_OK);
4567 *ret = makedev(m, n);
4574 int file_is_priv_sticky(const char *p) {
4579 if (lstat(p, &st) < 0)
4583 (st.st_uid == 0 || st.st_uid == getuid()) &&
4584 (st.st_mode & S_ISVTX);
4587 static const char *const ioprio_class_table[] = {
4588 [IOPRIO_CLASS_NONE] = "none",
4589 [IOPRIO_CLASS_RT] = "realtime",
4590 [IOPRIO_CLASS_BE] = "best-effort",
4591 [IOPRIO_CLASS_IDLE] = "idle"
4594 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4596 static const char *const sigchld_code_table[] = {
4597 [CLD_EXITED] = "exited",
4598 [CLD_KILLED] = "killed",
4599 [CLD_DUMPED] = "dumped",
4600 [CLD_TRAPPED] = "trapped",
4601 [CLD_STOPPED] = "stopped",
4602 [CLD_CONTINUED] = "continued",
4605 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4607 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4608 [LOG_FAC(LOG_KERN)] = "kern",
4609 [LOG_FAC(LOG_USER)] = "user",
4610 [LOG_FAC(LOG_MAIL)] = "mail",
4611 [LOG_FAC(LOG_DAEMON)] = "daemon",
4612 [LOG_FAC(LOG_AUTH)] = "auth",
4613 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4614 [LOG_FAC(LOG_LPR)] = "lpr",
4615 [LOG_FAC(LOG_NEWS)] = "news",
4616 [LOG_FAC(LOG_UUCP)] = "uucp",
4617 [LOG_FAC(LOG_CRON)] = "cron",
4618 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4619 [LOG_FAC(LOG_FTP)] = "ftp",
4620 [LOG_FAC(LOG_LOCAL0)] = "local0",
4621 [LOG_FAC(LOG_LOCAL1)] = "local1",
4622 [LOG_FAC(LOG_LOCAL2)] = "local2",
4623 [LOG_FAC(LOG_LOCAL3)] = "local3",
4624 [LOG_FAC(LOG_LOCAL4)] = "local4",
4625 [LOG_FAC(LOG_LOCAL5)] = "local5",
4626 [LOG_FAC(LOG_LOCAL6)] = "local6",
4627 [LOG_FAC(LOG_LOCAL7)] = "local7"
4630 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4632 static const char *const log_level_table[] = {
4633 [LOG_EMERG] = "emerg",
4634 [LOG_ALERT] = "alert",
4635 [LOG_CRIT] = "crit",
4637 [LOG_WARNING] = "warning",
4638 [LOG_NOTICE] = "notice",
4639 [LOG_INFO] = "info",
4640 [LOG_DEBUG] = "debug"
4643 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4645 static const char* const sched_policy_table[] = {
4646 [SCHED_OTHER] = "other",
4647 [SCHED_BATCH] = "batch",
4648 [SCHED_IDLE] = "idle",
4649 [SCHED_FIFO] = "fifo",
4653 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4655 static const char* const rlimit_table[] = {
4656 [RLIMIT_CPU] = "LimitCPU",
4657 [RLIMIT_FSIZE] = "LimitFSIZE",
4658 [RLIMIT_DATA] = "LimitDATA",
4659 [RLIMIT_STACK] = "LimitSTACK",
4660 [RLIMIT_CORE] = "LimitCORE",
4661 [RLIMIT_RSS] = "LimitRSS",
4662 [RLIMIT_NOFILE] = "LimitNOFILE",
4663 [RLIMIT_AS] = "LimitAS",
4664 [RLIMIT_NPROC] = "LimitNPROC",
4665 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4666 [RLIMIT_LOCKS] = "LimitLOCKS",
4667 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4668 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4669 [RLIMIT_NICE] = "LimitNICE",
4670 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4671 [RLIMIT_RTTIME] = "LimitRTTIME"
4674 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4676 static const char* const ip_tos_table[] = {
4677 [IPTOS_LOWDELAY] = "low-delay",
4678 [IPTOS_THROUGHPUT] = "throughput",
4679 [IPTOS_RELIABILITY] = "reliability",
4680 [IPTOS_LOWCOST] = "low-cost",
4683 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4685 static const char *const __signal_table[] = {
4702 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4713 [SIGVTALRM] = "VTALRM",
4715 [SIGWINCH] = "WINCH",
4721 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4723 const char *signal_to_string(int signo) {
4724 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4727 name = __signal_to_string(signo);
4731 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4732 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4734 snprintf(buf, sizeof(buf), "%d", signo);
4739 int signal_from_string(const char *s) {
4744 signo = __signal_from_string(s);
4748 if (startswith(s, "RTMIN+")) {
4752 if (safe_atou(s, &u) >= 0) {
4753 signo = (int) u + offset;
4754 if (signo > 0 && signo < _NSIG)
4760 bool kexec_loaded(void) {
4761 bool loaded = false;
4764 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4772 int strdup_or_null(const char *a, char **b) {
4790 int prot_from_flags(int flags) {
4792 switch (flags & O_ACCMODE) {
4801 return PROT_READ|PROT_WRITE;
4808 char *format_bytes(char *buf, size_t l, off_t t) {
4811 static const struct {
4815 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4816 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4817 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4818 { "G", 1024ULL*1024ULL*1024ULL },
4819 { "M", 1024ULL*1024ULL },
4823 for (i = 0; i < ELEMENTSOF(table); i++) {
4825 if (t >= table[i].factor) {
4828 (unsigned long long) (t / table[i].factor),
4829 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4836 snprintf(buf, l, "%lluB", (unsigned long long) t);
4844 void* memdup(const void *p, size_t l) {
4857 int fd_inc_sndbuf(int fd, size_t n) {
4859 socklen_t l = sizeof(value);
4861 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4862 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4865 /* If we have the privileges we will ignore the kernel limit. */
4868 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4869 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
4875 int fd_inc_rcvbuf(int fd, size_t n) {
4877 socklen_t l = sizeof(value);
4879 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
4880 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4883 /* If we have the privileges we will ignore the kernel limit. */
4886 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
4887 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
4892 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
4893 pid_t parent_pid, agent_pid;
4895 bool stdout_is_tty, stderr_is_tty;
4903 parent_pid = getpid();
4905 /* Spawns a temporary TTY agent, making sure it goes away when
4912 if (agent_pid != 0) {
4919 * Make sure the agent goes away when the parent dies */
4920 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
4921 _exit(EXIT_FAILURE);
4923 /* Check whether our parent died before we were able
4924 * to set the death signal */
4925 if (getppid() != parent_pid)
4926 _exit(EXIT_SUCCESS);
4928 /* Don't leak fds to the agent */
4929 close_all_fds(except, n_except);
4931 stdout_is_tty = isatty(STDOUT_FILENO);
4932 stderr_is_tty = isatty(STDERR_FILENO);
4934 if (!stdout_is_tty || !stderr_is_tty) {
4935 /* Detach from stdout/stderr. and reopen
4936 * /dev/tty for them. This is important to
4937 * ensure that when systemctl is started via
4938 * popen() or a similar call that expects to
4939 * read EOF we actually do generate EOF and
4940 * not delay this indefinitely by because we
4941 * keep an unused copy of stdin around. */
4942 fd = open("/dev/tty", O_WRONLY);
4944 log_error("Failed to open /dev/tty: %m");
4945 _exit(EXIT_FAILURE);
4949 dup2(fd, STDOUT_FILENO);
4952 dup2(fd, STDERR_FILENO);
4958 /* Count arguments */
4960 for (n = 0; va_arg(ap, char*); n++)
4965 l = alloca(sizeof(char *) * (n + 1));
4967 /* Fill in arguments */
4969 for (i = 0; i <= n; i++)
4970 l[i] = va_arg(ap, char*);
4974 _exit(EXIT_FAILURE);
4977 int setrlimit_closest(int resource, const struct rlimit *rlim) {
4978 struct rlimit highest, fixed;
4982 if (setrlimit(resource, rlim) >= 0)
4988 /* So we failed to set the desired setrlimit, then let's try
4989 * to get as close as we can */
4990 assert_se(getrlimit(resource, &highest) == 0);
4992 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
4993 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
4995 if (setrlimit(resource, &fixed) < 0)
5001 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5002 _cleanup_fclose_ FILE *f = NULL;
5013 path = procfs_file_alloca(pid, "environ");
5015 f = fopen(path, "re");
5023 char line[LINE_MAX];
5026 for (i = 0; i < sizeof(line)-1; i++) {
5030 if (_unlikely_(c == EOF)) {
5040 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5041 value = strdup(line + l + 1);
5055 bool is_valid_documentation_url(const char *url) {
5058 if (startswith(url, "http://") && url[7])
5061 if (startswith(url, "https://") && url[8])
5064 if (startswith(url, "file:") && url[5])
5067 if (startswith(url, "info:") && url[5])
5070 if (startswith(url, "man:") && url[4])
5076 bool in_initrd(void) {
5077 static int saved = -1;
5083 /* We make two checks here:
5085 * 1. the flag file /etc/initrd-release must exist
5086 * 2. the root file system must be a memory file system
5088 * The second check is extra paranoia, since misdetecting an
5089 * initrd can have bad bad consequences due the initrd
5090 * emptying when transititioning to the main systemd.
5093 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5094 statfs("/", &s) >= 0 &&
5095 is_temporary_fs(&s);
5100 void warn_melody(void) {
5101 _cleanup_close_ int fd = -1;
5103 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5107 /* Yeah, this is synchronous. Kinda sucks. But well... */
5109 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5110 usleep(125*USEC_PER_MSEC);
5112 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5113 usleep(125*USEC_PER_MSEC);
5115 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5116 usleep(125*USEC_PER_MSEC);
5118 ioctl(fd, KIOCSOUND, 0);
5121 int make_console_stdio(void) {
5124 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5126 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5128 log_error("Failed to acquire terminal: %s", strerror(-fd));
5134 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5141 int get_home_dir(char **_h) {
5149 /* Take the user specified one */
5160 /* Hardcode home directory for root to avoid NSS */
5163 h = strdup("/root");
5171 /* Check the database... */
5175 return errno > 0 ? -errno : -ESRCH;
5177 if (!path_is_absolute(p->pw_dir))
5180 h = strdup(p->pw_dir);
5188 int get_shell(char **_s) {
5196 /* Take the user specified one */
5197 e = getenv("SHELL");
5207 /* Hardcode home directory for root to avoid NSS */
5210 s = strdup("/bin/sh");
5218 /* Check the database... */
5222 return errno > 0 ? -errno : -ESRCH;
5224 if (!path_is_absolute(p->pw_shell))
5227 s = strdup(p->pw_shell);
5235 bool filename_is_safe(const char *p) {
5249 if (strlen(p) > FILENAME_MAX)
5255 bool string_is_safe(const char *p) {
5260 for (t = p; *t; t++) {
5261 if (*t > 0 && *t < ' ')
5264 if (strchr("\\\"\'", *t))
5272 * Check if a string contains control characters.
5273 * Spaces and tabs are not considered control characters.
5275 bool string_has_cc(const char *p) {
5280 for (t = p; *t; t++)
5281 if (*t > 0 && *t < ' ' && *t != '\t')
5287 bool path_is_safe(const char *p) {
5292 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5295 if (strlen(p) > PATH_MAX)
5298 /* The following two checks are not really dangerous, but hey, they still are confusing */
5299 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5302 if (strstr(p, "//"))
5308 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5309 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5310 int (*compar) (const void *, const void *, void *), void *arg) {
5319 p = (void *)(((const char *) base) + (idx * size));
5320 comparison = compar(key, p, arg);
5323 else if (comparison > 0)
5331 bool is_locale_utf8(void) {
5333 static int cached_answer = -1;
5335 if (cached_answer >= 0)
5338 if (!setlocale(LC_ALL, "")) {
5339 cached_answer = true;
5343 set = nl_langinfo(CODESET);
5345 cached_answer = true;
5349 if (streq(set, "UTF-8")) {
5350 cached_answer = true;
5354 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5355 * unset and everything can do to UTF-8 nowadays. */
5356 set = setlocale(LC_CTYPE, NULL);
5358 cached_answer = true;
5362 /* Check result, but ignore the result if C was set
5366 !getenv("LC_ALL") &&
5367 !getenv("LC_CTYPE") &&
5371 return (bool) cached_answer;
5374 const char *draw_special_char(DrawSpecialChar ch) {
5375 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5377 [DRAW_TREE_VERT] = "\342\224\202 ", /* │ */
5378 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5379 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5380 [DRAW_TREE_SPACE] = " ", /* */
5381 [DRAW_TRIANGULAR_BULLET] = "\342\200\243 ", /* ‣ */
5382 [DRAW_BLACK_CIRCLE] = "\342\227\217 ", /* ● */
5384 /* ASCII fallback */ {
5385 [DRAW_TREE_VERT] = "| ",
5386 [DRAW_TREE_BRANCH] = "|-",
5387 [DRAW_TREE_RIGHT] = "`-",
5388 [DRAW_TREE_SPACE] = " ",
5389 [DRAW_TRIANGULAR_BULLET] = "> ",
5390 [DRAW_BLACK_CIRCLE] = "* ",
5394 return draw_table[!is_locale_utf8()][ch];
5397 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5400 size_t l, old_len, new_len;
5406 old_len = strlen(old_string);
5407 new_len = strlen(new_string);
5420 if (!startswith(f, old_string)) {
5426 nl = l - old_len + new_len;
5427 a = realloc(r, nl + 1);
5435 t = stpcpy(t, new_string);
5447 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5448 const char *i, *begin = NULL;
5453 } state = STATE_OTHER;
5455 size_t osz = 0, isz;
5461 /* Strips ANSI color and replaces TABs by 8 spaces */
5463 isz = _isz ? *_isz : strlen(*ibuf);
5465 f = open_memstream(&obuf, &osz);
5469 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5474 if (i >= *ibuf + isz) /* EOT */
5476 else if (*i == '\x1B')
5477 state = STATE_ESCAPE;
5478 else if (*i == '\t')
5485 if (i >= *ibuf + isz) { /* EOT */
5488 } else if (*i == '[') {
5489 state = STATE_BRACKET;
5494 state = STATE_OTHER;
5501 if (i >= *ibuf + isz || /* EOT */
5502 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5505 state = STATE_OTHER;
5507 } else if (*i == 'm')
5508 state = STATE_OTHER;
5530 int on_ac_power(void) {
5531 bool found_offline = false, found_online = false;
5532 _cleanup_closedir_ DIR *d = NULL;
5534 d = opendir("/sys/class/power_supply");
5540 _cleanup_close_ int fd = -1, device = -1;
5546 if (!de && errno != 0)
5552 if (ignore_file(de->d_name))
5555 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5557 if (errno == ENOENT || errno == ENOTDIR)
5563 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5565 if (errno == ENOENT)
5571 n = read(fd, contents, sizeof(contents));
5575 if (n != 6 || memcmp(contents, "Mains\n", 6))
5578 close_nointr_nofail(fd);
5579 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5581 if (errno == ENOENT)
5587 n = read(fd, contents, sizeof(contents));
5591 if (n != 2 || contents[1] != '\n')
5594 if (contents[0] == '1') {
5595 found_online = true;
5597 } else if (contents[0] == '0')
5598 found_offline = true;
5603 return found_online || !found_offline;
5606 static int search_and_fopen_internal(const char *path, const char *mode, char **search, FILE **_f) {
5613 if (!path_strv_canonicalize_uniq(search))
5616 STRV_FOREACH(i, search) {
5617 _cleanup_free_ char *p = NULL;
5620 p = strjoin(*i, "/", path, NULL);
5630 if (errno != ENOENT)
5637 int search_and_fopen(const char *path, const char *mode, const char **search, FILE **_f) {
5638 _cleanup_strv_free_ char **copy = NULL;
5644 if (path_is_absolute(path)) {
5647 f = fopen(path, mode);
5656 copy = strv_copy((char**) search);
5660 return search_and_fopen_internal(path, mode, copy, _f);
5663 int search_and_fopen_nulstr(const char *path, const char *mode, const char *search, FILE **_f) {
5664 _cleanup_strv_free_ char **s = NULL;
5666 if (path_is_absolute(path)) {
5669 f = fopen(path, mode);
5678 s = strv_split_nulstr(search);
5682 return search_and_fopen_internal(path, mode, s, _f);
5685 char *strextend(char **x, ...) {
5692 l = f = *x ? strlen(*x) : 0;
5699 t = va_arg(ap, const char *);
5704 if (n > ((size_t) -1) - l) {
5713 r = realloc(*x, l+1);
5723 t = va_arg(ap, const char *);
5737 char *strrep(const char *s, unsigned n) {
5745 p = r = malloc(l * n + 1);
5749 for (i = 0; i < n; i++)
5756 void* greedy_realloc(void **p, size_t *allocated, size_t need) {
5763 if (*allocated >= need)
5766 a = MAX(64u, need * 2);
5768 /* check for overflows */
5781 void* greedy_realloc0(void **p, size_t *allocated, size_t need) {
5790 q = greedy_realloc(p, allocated, need);
5794 if (*allocated > prev)
5795 memzero(&q[prev], *allocated - prev);
5800 bool id128_is_valid(const char *s) {
5806 /* Simple formatted 128bit hex string */
5808 for (i = 0; i < l; i++) {
5811 if (!(c >= '0' && c <= '9') &&
5812 !(c >= 'a' && c <= 'z') &&
5813 !(c >= 'A' && c <= 'Z'))
5817 } else if (l == 36) {
5819 /* Formatted UUID */
5821 for (i = 0; i < l; i++) {
5824 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5828 if (!(c >= '0' && c <= '9') &&
5829 !(c >= 'a' && c <= 'z') &&
5830 !(c >= 'A' && c <= 'Z'))
5841 void parse_user_at_host(char *arg, char **user, char **host) {
5846 *host = strchr(arg, '@');
5855 int split_pair(const char *s, const char *sep, char **l, char **r) {
5870 a = strndup(s, x - s);
5874 b = strdup(x + strlen(sep));
5886 int shall_restore_state(void) {
5887 _cleanup_free_ char *line;
5892 r = proc_cmdline(&line);
5895 if (r == 0) /* Container ... */
5898 FOREACH_WORD_QUOTED(w, l, line, state)
5899 if (l == 23 && strneq(w, "systemd.restore_state=0", 23))
5905 int proc_cmdline(char **ret) {
5908 if (detect_container(NULL) > 0) {
5912 r = read_full_file("/proc/1/cmdline", &buf, &sz);
5916 for (p = buf; p + 1 < buf + sz; p++)
5925 r = read_one_line_file("/proc/cmdline", ret);
5932 int container_get_leader(const char *machine, pid_t *pid) {
5933 _cleanup_free_ char *s = NULL, *class = NULL;
5941 p = strappenda("/run/systemd/machines/", machine);
5942 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
5950 if (!streq_ptr(class, "container"))
5953 r = parse_pid(s, &leader);
5963 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *root_fd) {
5964 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1;
5965 const char *pidns, *mntns, *root;
5973 mntns = procfs_file_alloca(pid, "ns/mnt");
5974 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
5978 pidns = procfs_file_alloca(pid, "ns/pid");
5979 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
5983 root = procfs_file_alloca(pid, "root");
5984 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
5988 *pidns_fd = pidnsfd;
5989 *mntns_fd = mntnsfd;
5997 int namespace_enter(int pidns_fd, int mntns_fd, int root_fd) {
5998 assert(pidns_fd >= 0);
5999 assert(mntns_fd >= 0);
6000 assert(root_fd >= 0);
6002 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6005 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6008 if (fchdir(root_fd) < 0)
6011 if (chroot(".") < 0)
6014 if (setresgid(0, 0, 0) < 0)
6017 if (setresuid(0, 0, 0) < 0)
6023 bool pid_valid(pid_t pid) {
6027 if (kill(pid, 0) >= 0)
6030 return errno != ESRCH;
6033 int getpeercred(int fd, struct ucred *ucred) {
6034 socklen_t n = sizeof(struct ucred);
6041 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6045 if (n != sizeof(struct ucred))
6048 /* Check if the data is actually useful and not suppressed due
6049 * to namespacing issues */
6057 int getpeersec(int fd, char **ret) {
6069 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6073 if (errno != ERANGE)
6080 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6096 /* This is much like like mkostemp() but is subject to umask(). */
6097 int mkostemp_safe(char *pattern, int flags) {
6098 _cleanup_umask_ mode_t u;
6105 fd = mkostemp(pattern, flags);
6112 int open_tmpfile(const char *path, int flags) {
6119 /* Try O_TMPFILE first, if it is supported */
6120 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6125 /* Fall back to unguessable name + unlinking */
6126 p = strappenda(path, "/systemd-tmp-XXXXXX");
6128 fd = mkostemp_safe(p, flags);
6136 int fd_warn_permissions(const char *path, int fd) {
6139 if (fstat(fd, &st) < 0)
6142 if (st.st_mode & 0111)
6143 log_warning("Configuration file %s is marked executable. Please remove executable permission bits. Proceeding anyway.", path);
6145 if (st.st_mode & 0002)
6146 log_warning("Configuration file %s is marked world-writable. Please remove world writability permission bits. Proceeding anyway.", path);
6148 if (getpid() == 1 && (st.st_mode & 0044) != 0044)
6149 log_warning("Configuration file %s is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.", path);
~ianmdlvl / elogind.git / blob