1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <sys/mount.h>
58 #include <linux/magic.h>
62 #include <sys/personality.h>
66 #ifdef HAVE_SYS_AUXV_H
78 #include "path-util.h"
79 #include "exit-status.h"
83 #include "device-nodes.h"
90 char **saved_argv = NULL;
92 static volatile unsigned cached_columns = 0;
93 static volatile unsigned cached_lines = 0;
95 size_t page_size(void) {
96 static thread_local size_t pgsz = 0;
99 if (_likely_(pgsz > 0))
102 r = sysconf(_SC_PAGESIZE);
109 bool streq_ptr(const char *a, const char *b) {
111 /* Like streq(), but tries to make sense of NULL pointers */
122 char* endswith(const char *s, const char *postfix) {
129 pl = strlen(postfix);
132 return (char*) s + sl;
137 if (memcmp(s + sl - pl, postfix, pl) != 0)
140 return (char*) s + sl - pl;
143 bool first_word(const char *s, const char *word) {
158 if (memcmp(s, word, wl) != 0)
162 strchr(WHITESPACE, s[wl]);
165 int close_nointr(int fd) {
172 else if (errno == EINTR)
174 * Just ignore EINTR; a retry loop is the wrong
175 * thing to do on Linux.
177 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
178 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
179 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
180 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
187 int safe_close(int fd) {
190 * Like close_nointr() but cannot fail. Guarantees errno is
191 * unchanged. Is a NOP with negative fds passed, and returns
192 * -1, so that it can be used in this syntax:
194 * fd = safe_close(fd);
200 /* The kernel might return pretty much any error code
201 * via close(), but the fd will be closed anyway. The
202 * only condition we want to check for here is whether
203 * the fd was invalid at all... */
205 assert_se(close_nointr(fd) != -EBADF);
211 void close_many(const int fds[], unsigned n_fd) {
214 assert(fds || n_fd <= 0);
216 for (i = 0; i < n_fd; i++)
220 int unlink_noerrno(const char *path) {
231 int parse_boolean(const char *v) {
234 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
236 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
242 int parse_pid(const char *s, pid_t* ret_pid) {
243 unsigned long ul = 0;
250 r = safe_atolu(s, &ul);
256 if ((unsigned long) pid != ul)
266 int parse_uid(const char *s, uid_t* ret_uid) {
267 unsigned long ul = 0;
274 r = safe_atolu(s, &ul);
280 if ((unsigned long) uid != ul)
287 int safe_atou(const char *s, unsigned *ret_u) {
295 l = strtoul(s, &x, 0);
297 if (!x || x == s || *x || errno)
298 return errno > 0 ? -errno : -EINVAL;
300 if ((unsigned long) (unsigned) l != l)
303 *ret_u = (unsigned) l;
307 int safe_atoi(const char *s, int *ret_i) {
315 l = strtol(s, &x, 0);
317 if (!x || x == s || *x || errno)
318 return errno > 0 ? -errno : -EINVAL;
320 if ((long) (int) l != l)
327 int safe_atollu(const char *s, long long unsigned *ret_llu) {
329 unsigned long long l;
335 l = strtoull(s, &x, 0);
337 if (!x || x == s || *x || errno)
338 return errno ? -errno : -EINVAL;
344 int safe_atolli(const char *s, long long int *ret_lli) {
352 l = strtoll(s, &x, 0);
354 if (!x || x == s || *x || errno)
355 return errno ? -errno : -EINVAL;
361 int safe_atod(const char *s, double *ret_d) {
368 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
373 if (!x || x == s || *x || errno)
374 return errno ? -errno : -EINVAL;
380 static size_t strcspn_escaped(const char *s, const char *reject) {
381 bool escaped = false;
384 for (n=0; s[n]; n++) {
387 else if (s[n] == '\\')
389 else if (strchr(reject, s[n]))
395 /* Split a string into words. */
396 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
399 current = *state ? *state : (char*) c;
401 if (!*current || *c == 0)
404 current += strspn(current, separator);
408 if (quoted && strchr("\'\"", *current)) {
409 char quotechar = *(current++);
410 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
411 *state = current+*l+1;
413 *l = strcspn_escaped(current, separator);
416 *l = strcspn(current, separator);
420 return (char*) current;
423 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
425 _cleanup_free_ char *line = NULL;
437 p = procfs_file_alloca(pid, "stat");
438 r = read_one_line_file(p, &line);
442 /* Let's skip the pid and comm fields. The latter is enclosed
443 * in () but does not escape any () in its value, so let's
444 * skip over it manually */
446 p = strrchr(line, ')');
458 if ((long unsigned) (pid_t) ppid != ppid)
461 *_ppid = (pid_t) ppid;
466 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
468 _cleanup_free_ char *line = NULL;
474 p = procfs_file_alloca(pid, "stat");
475 r = read_one_line_file(p, &line);
479 /* Let's skip the pid and comm fields. The latter is enclosed
480 * in () but does not escape any () in its value, so let's
481 * skip over it manually */
483 p = strrchr(line, ')');
505 "%*d " /* priority */
507 "%*d " /* num_threads */
508 "%*d " /* itrealvalue */
509 "%llu " /* starttime */,
516 int fchmod_umask(int fd, mode_t m) {
521 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
527 char *truncate_nl(char *s) {
530 s[strcspn(s, NEWLINE)] = 0;
534 int get_process_state(pid_t pid) {
538 _cleanup_free_ char *line = NULL;
542 p = procfs_file_alloca(pid, "stat");
543 r = read_one_line_file(p, &line);
547 p = strrchr(line, ')');
553 if (sscanf(p, " %c", &state) != 1)
556 return (unsigned char) state;
559 int get_process_comm(pid_t pid, char **name) {
566 p = procfs_file_alloca(pid, "comm");
568 r = read_one_line_file(p, name);
575 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
576 _cleanup_fclose_ FILE *f = NULL;
584 p = procfs_file_alloca(pid, "cmdline");
590 if (max_length == 0) {
591 size_t len = 0, allocated = 0;
593 while ((c = getc(f)) != EOF) {
595 if (!GREEDY_REALLOC(r, allocated, len+2)) {
600 r[len++] = isprint(c) ? c : ' ';
610 r = new(char, max_length);
616 while ((c = getc(f)) != EOF) {
638 size_t n = MIN(left-1, 3U);
645 /* Kernel threads have no argv[] */
646 if (r == NULL || r[0] == 0) {
647 _cleanup_free_ char *t = NULL;
655 h = get_process_comm(pid, &t);
659 r = strjoin("[", t, "]", NULL);
668 int is_kernel_thread(pid_t pid) {
680 p = procfs_file_alloca(pid, "cmdline");
685 count = fread(&c, 1, 1, f);
689 /* Kernel threads have an empty cmdline */
692 return eof ? 1 : -errno;
697 int get_process_capeff(pid_t pid, char **capeff) {
703 p = procfs_file_alloca(pid, "status");
705 return get_status_field(p, "\nCapEff:", capeff);
708 int get_process_exe(pid_t pid, char **name) {
716 p = procfs_file_alloca(pid, "exe");
718 r = readlink_malloc(p, name);
720 return r == -ENOENT ? -ESRCH : r;
722 d = endswith(*name, " (deleted)");
729 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
730 _cleanup_fclose_ FILE *f = NULL;
740 p = procfs_file_alloca(pid, "status");
745 FOREACH_LINE(line, f, return -errno) {
750 if (startswith(l, field)) {
752 l += strspn(l, WHITESPACE);
754 l[strcspn(l, WHITESPACE)] = 0;
756 return parse_uid(l, uid);
763 int get_process_uid(pid_t pid, uid_t *uid) {
764 return get_process_id(pid, "Uid:", uid);
767 int get_process_gid(pid_t pid, gid_t *gid) {
768 assert_cc(sizeof(uid_t) == sizeof(gid_t));
769 return get_process_id(pid, "Gid:", gid);
772 char *strnappend(const char *s, const char *suffix, size_t b) {
780 return strndup(suffix, b);
789 if (b > ((size_t) -1) - a)
792 r = new(char, a+b+1);
797 memcpy(r+a, suffix, b);
803 char *strappend(const char *s, const char *suffix) {
804 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
807 int readlinkat_malloc(int fd, const char *p, char **ret) {
822 n = readlinkat(fd, p, c, l-1);
829 if ((size_t) n < l-1) {
840 int readlink_malloc(const char *p, char **ret) {
841 return readlinkat_malloc(AT_FDCWD, p, ret);
844 int readlink_and_make_absolute(const char *p, char **r) {
845 _cleanup_free_ char *target = NULL;
852 j = readlink_malloc(p, &target);
856 k = file_in_same_dir(p, target);
864 int readlink_and_canonicalize(const char *p, char **r) {
871 j = readlink_and_make_absolute(p, &t);
875 s = canonicalize_file_name(t);
882 path_kill_slashes(*r);
887 int reset_all_signal_handlers(void) {
890 for (sig = 1; sig < _NSIG; sig++) {
891 struct sigaction sa = {
892 .sa_handler = SIG_DFL,
893 .sa_flags = SA_RESTART,
896 if (sig == SIGKILL || sig == SIGSTOP)
899 /* On Linux the first two RT signals are reserved by
900 * glibc, and sigaction() will return EINVAL for them. */
901 if ((sigaction(sig, &sa, NULL) < 0))
909 char *strstrip(char *s) {
912 /* Drops trailing whitespace. Modifies the string in
913 * place. Returns pointer to first non-space character */
915 s += strspn(s, WHITESPACE);
917 for (e = strchr(s, 0); e > s; e --)
918 if (!strchr(WHITESPACE, e[-1]))
926 char *delete_chars(char *s, const char *bad) {
929 /* Drops all whitespace, regardless where in the string */
931 for (f = s, t = s; *f; f++) {
943 char *file_in_same_dir(const char *path, const char *filename) {
950 /* This removes the last component of path and appends
951 * filename, unless the latter is absolute anyway or the
954 if (path_is_absolute(filename))
955 return strdup(filename);
957 if (!(e = strrchr(path, '/')))
958 return strdup(filename);
960 k = strlen(filename);
961 if (!(r = new(char, e-path+1+k+1)))
964 memcpy(r, path, e-path+1);
965 memcpy(r+(e-path)+1, filename, k+1);
970 int rmdir_parents(const char *path, const char *stop) {
979 /* Skip trailing slashes */
980 while (l > 0 && path[l-1] == '/')
986 /* Skip last component */
987 while (l > 0 && path[l-1] != '/')
990 /* Skip trailing slashes */
991 while (l > 0 && path[l-1] == '/')
997 if (!(t = strndup(path, l)))
1000 if (path_startswith(stop, t)) {
1009 if (errno != ENOENT)
1016 char hexchar(int x) {
1017 static const char table[16] = "0123456789abcdef";
1019 return table[x & 15];
1022 int unhexchar(char c) {
1024 if (c >= '0' && c <= '9')
1027 if (c >= 'a' && c <= 'f')
1028 return c - 'a' + 10;
1030 if (c >= 'A' && c <= 'F')
1031 return c - 'A' + 10;
1036 char *hexmem(const void *p, size_t l) {
1040 z = r = malloc(l * 2 + 1);
1044 for (x = p; x < (const uint8_t*) p + l; x++) {
1045 *(z++) = hexchar(*x >> 4);
1046 *(z++) = hexchar(*x & 15);
1053 void *unhexmem(const char *p, size_t l) {
1059 z = r = malloc((l + 1) / 2 + 1);
1063 for (x = p; x < p + l; x += 2) {
1066 a = unhexchar(x[0]);
1068 b = unhexchar(x[1]);
1072 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1079 char octchar(int x) {
1080 return '0' + (x & 7);
1083 int unoctchar(char c) {
1085 if (c >= '0' && c <= '7')
1091 char decchar(int x) {
1092 return '0' + (x % 10);
1095 int undecchar(char c) {
1097 if (c >= '0' && c <= '9')
1103 char *cescape(const char *s) {
1109 /* Does C style string escaping. */
1111 r = new(char, strlen(s)*4 + 1);
1115 for (f = s, t = r; *f; f++)
1161 /* For special chars we prefer octal over
1162 * hexadecimal encoding, simply because glib's
1163 * g_strescape() does the same */
1164 if ((*f < ' ') || (*f >= 127)) {
1166 *(t++) = octchar((unsigned char) *f >> 6);
1167 *(t++) = octchar((unsigned char) *f >> 3);
1168 *(t++) = octchar((unsigned char) *f);
1179 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1186 /* Undoes C style string escaping, and optionally prefixes it. */
1188 pl = prefix ? strlen(prefix) : 0;
1190 r = new(char, pl+length+1);
1195 memcpy(r, prefix, pl);
1197 for (f = s, t = r + pl; f < s + length; f++) {
1240 /* This is an extension of the XDG syntax files */
1245 /* hexadecimal encoding */
1248 a = unhexchar(f[1]);
1249 b = unhexchar(f[2]);
1251 if (a < 0 || b < 0) {
1252 /* Invalid escape code, let's take it literal then */
1256 *(t++) = (char) ((a << 4) | b);
1271 /* octal encoding */
1274 a = unoctchar(f[0]);
1275 b = unoctchar(f[1]);
1276 c = unoctchar(f[2]);
1278 if (a < 0 || b < 0 || c < 0) {
1279 /* Invalid escape code, let's take it literal then */
1283 *(t++) = (char) ((a << 6) | (b << 3) | c);
1291 /* premature end of string.*/
1296 /* Invalid escape code, let's take it literal then */
1308 char *cunescape_length(const char *s, size_t length) {
1309 return cunescape_length_with_prefix(s, length, NULL);
1312 char *cunescape(const char *s) {
1315 return cunescape_length(s, strlen(s));
1318 char *xescape(const char *s, const char *bad) {
1322 /* Escapes all chars in bad, in addition to \ and all special
1323 * chars, in \xFF style escaping. May be reversed with
1326 r = new(char, strlen(s) * 4 + 1);
1330 for (f = s, t = r; *f; f++) {
1332 if ((*f < ' ') || (*f >= 127) ||
1333 (*f == '\\') || strchr(bad, *f)) {
1336 *(t++) = hexchar(*f >> 4);
1337 *(t++) = hexchar(*f);
1347 char *ascii_strlower(char *t) {
1352 for (p = t; *p; p++)
1353 if (*p >= 'A' && *p <= 'Z')
1354 *p = *p - 'A' + 'a';
1359 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1363 filename[0] == '.' ||
1364 streq(filename, "lost+found") ||
1365 streq(filename, "aquota.user") ||
1366 streq(filename, "aquota.group") ||
1367 endswith(filename, ".rpmnew") ||
1368 endswith(filename, ".rpmsave") ||
1369 endswith(filename, ".rpmorig") ||
1370 endswith(filename, ".dpkg-old") ||
1371 endswith(filename, ".dpkg-new") ||
1372 endswith(filename, ".swp");
1375 bool ignore_file(const char *filename) {
1378 if (endswith(filename, "~"))
1381 return ignore_file_allow_backup(filename);
1384 int fd_nonblock(int fd, bool nonblock) {
1389 flags = fcntl(fd, F_GETFL, 0);
1394 nflags = flags | O_NONBLOCK;
1396 nflags = flags & ~O_NONBLOCK;
1398 if (nflags == flags)
1401 if (fcntl(fd, F_SETFL, nflags) < 0)
1407 int fd_cloexec(int fd, bool cloexec) {
1412 flags = fcntl(fd, F_GETFD, 0);
1417 nflags = flags | FD_CLOEXEC;
1419 nflags = flags & ~FD_CLOEXEC;
1421 if (nflags == flags)
1424 if (fcntl(fd, F_SETFD, nflags) < 0)
1430 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1433 assert(n_fdset == 0 || fdset);
1435 for (i = 0; i < n_fdset; i++)
1442 int close_all_fds(const int except[], unsigned n_except) {
1447 assert(n_except == 0 || except);
1449 d = opendir("/proc/self/fd");
1454 /* When /proc isn't available (for example in chroots)
1455 * the fallback is brute forcing through the fd
1458 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1459 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1461 if (fd_in_set(fd, except, n_except))
1464 if (close_nointr(fd) < 0)
1465 if (errno != EBADF && r == 0)
1472 while ((de = readdir(d))) {
1475 if (ignore_file(de->d_name))
1478 if (safe_atoi(de->d_name, &fd) < 0)
1479 /* Let's better ignore this, just in case */
1488 if (fd_in_set(fd, except, n_except))
1491 if (close_nointr(fd) < 0) {
1492 /* Valgrind has its own FD and doesn't want to have it closed */
1493 if (errno != EBADF && r == 0)
1502 bool chars_intersect(const char *a, const char *b) {
1505 /* Returns true if any of the chars in a are in b. */
1506 for (p = a; *p; p++)
1513 bool fstype_is_network(const char *fstype) {
1514 static const char table[] =
1528 x = startswith(fstype, "fuse.");
1532 return nulstr_contains(table, fstype);
1536 _cleanup_close_ int fd;
1538 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1544 TIOCL_GETKMSGREDIRECT,
1548 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1551 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1554 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1560 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1561 struct termios old_termios, new_termios;
1563 char line[LINE_MAX];
1568 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1569 new_termios = old_termios;
1571 new_termios.c_lflag &= ~ICANON;
1572 new_termios.c_cc[VMIN] = 1;
1573 new_termios.c_cc[VTIME] = 0;
1575 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1578 if (t != (usec_t) -1) {
1579 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1580 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1585 k = fread(&c, 1, 1, f);
1587 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1593 *need_nl = c != '\n';
1600 if (t != (usec_t) -1)
1601 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1604 if (!fgets(line, sizeof(line), f))
1609 if (strlen(line) != 1)
1619 int ask(char *ret, const char *replies, const char *text, ...) {
1629 bool need_nl = true;
1632 fputs(ANSI_HIGHLIGHT_ON, stdout);
1639 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1643 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1646 if (r == -EBADMSG) {
1647 puts("Bad input, please try again.");
1658 if (strchr(replies, c)) {
1663 puts("Read unexpected character, please try again.");
1667 int reset_terminal_fd(int fd, bool switch_to_text) {
1668 struct termios termios;
1671 /* Set terminal to some sane defaults */
1675 /* We leave locked terminal attributes untouched, so that
1676 * Plymouth may set whatever it wants to set, and we don't
1677 * interfere with that. */
1679 /* Disable exclusive mode, just in case */
1680 ioctl(fd, TIOCNXCL);
1682 /* Switch to text mode */
1684 ioctl(fd, KDSETMODE, KD_TEXT);
1686 /* Enable console unicode mode */
1687 ioctl(fd, KDSKBMODE, K_UNICODE);
1689 if (tcgetattr(fd, &termios) < 0) {
1694 /* We only reset the stuff that matters to the software. How
1695 * hardware is set up we don't touch assuming that somebody
1696 * else will do that for us */
1698 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1699 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1700 termios.c_oflag |= ONLCR;
1701 termios.c_cflag |= CREAD;
1702 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1704 termios.c_cc[VINTR] = 03; /* ^C */
1705 termios.c_cc[VQUIT] = 034; /* ^\ */
1706 termios.c_cc[VERASE] = 0177;
1707 termios.c_cc[VKILL] = 025; /* ^X */
1708 termios.c_cc[VEOF] = 04; /* ^D */
1709 termios.c_cc[VSTART] = 021; /* ^Q */
1710 termios.c_cc[VSTOP] = 023; /* ^S */
1711 termios.c_cc[VSUSP] = 032; /* ^Z */
1712 termios.c_cc[VLNEXT] = 026; /* ^V */
1713 termios.c_cc[VWERASE] = 027; /* ^W */
1714 termios.c_cc[VREPRINT] = 022; /* ^R */
1715 termios.c_cc[VEOL] = 0;
1716 termios.c_cc[VEOL2] = 0;
1718 termios.c_cc[VTIME] = 0;
1719 termios.c_cc[VMIN] = 1;
1721 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1725 /* Just in case, flush all crap out */
1726 tcflush(fd, TCIOFLUSH);
1731 int reset_terminal(const char *name) {
1732 _cleanup_close_ int fd = -1;
1734 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1738 return reset_terminal_fd(fd, true);
1741 int open_terminal(const char *name, int mode) {
1746 * If a TTY is in the process of being closed opening it might
1747 * cause EIO. This is horribly awful, but unlikely to be
1748 * changed in the kernel. Hence we work around this problem by
1749 * retrying a couple of times.
1751 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1754 assert(!(mode & O_CREAT));
1757 fd = open(name, mode, 0);
1764 /* Max 1s in total */
1768 usleep(50 * USEC_PER_MSEC);
1789 int flush_fd(int fd) {
1790 struct pollfd pollfd = {
1800 r = poll(&pollfd, 1, 0);
1810 l = read(fd, buf, sizeof(buf));
1816 if (errno == EAGAIN)
1825 int acquire_terminal(
1829 bool ignore_tiocstty_eperm,
1832 int fd = -1, notify = -1, r = 0, wd = -1;
1837 /* We use inotify to be notified when the tty is closed. We
1838 * create the watch before checking if we can actually acquire
1839 * it, so that we don't lose any event.
1841 * Note: strictly speaking this actually watches for the
1842 * device being closed, it does *not* really watch whether a
1843 * tty loses its controlling process. However, unless some
1844 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1845 * its tty otherwise this will not become a problem. As long
1846 * as the administrator makes sure not configure any service
1847 * on the same tty as an untrusted user this should not be a
1848 * problem. (Which he probably should not do anyway.) */
1850 if (timeout != (usec_t) -1)
1851 ts = now(CLOCK_MONOTONIC);
1853 if (!fail && !force) {
1854 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1860 wd = inotify_add_watch(notify, name, IN_CLOSE);
1868 struct sigaction sa_old, sa_new = {
1869 .sa_handler = SIG_IGN,
1870 .sa_flags = SA_RESTART,
1874 r = flush_fd(notify);
1879 /* We pass here O_NOCTTY only so that we can check the return
1880 * value TIOCSCTTY and have a reliable way to figure out if we
1881 * successfully became the controlling process of the tty */
1882 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1886 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1887 * if we already own the tty. */
1888 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1890 /* First, try to get the tty */
1891 if (ioctl(fd, TIOCSCTTY, force) < 0)
1894 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1896 /* Sometimes it makes sense to ignore TIOCSCTTY
1897 * returning EPERM, i.e. when very likely we already
1898 * are have this controlling terminal. */
1899 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1902 if (r < 0 && (force || fail || r != -EPERM)) {
1911 assert(notify >= 0);
1914 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1916 struct inotify_event *e;
1918 if (timeout != (usec_t) -1) {
1921 n = now(CLOCK_MONOTONIC);
1922 if (ts + timeout < n) {
1927 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1937 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1940 if (errno == EINTR || errno == EAGAIN)
1947 e = (struct inotify_event*) inotify_buffer;
1952 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1957 step = sizeof(struct inotify_event) + e->len;
1958 assert(step <= (size_t) l);
1960 e = (struct inotify_event*) ((uint8_t*) e + step);
1967 /* We close the tty fd here since if the old session
1968 * ended our handle will be dead. It's important that
1969 * we do this after sleeping, so that we don't enter
1970 * an endless loop. */
1976 r = reset_terminal_fd(fd, true);
1978 log_warning("Failed to reset terminal: %s", strerror(-r));
1989 int release_terminal(void) {
1991 struct sigaction sa_old, sa_new = {
1992 .sa_handler = SIG_IGN,
1993 .sa_flags = SA_RESTART,
1995 _cleanup_close_ int fd;
1997 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
2001 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
2002 * by our own TIOCNOTTY */
2003 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
2005 if (ioctl(fd, TIOCNOTTY) < 0)
2008 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
2013 int sigaction_many(const struct sigaction *sa, ...) {
2018 while ((sig = va_arg(ap, int)) > 0)
2019 if (sigaction(sig, sa, NULL) < 0)
2026 int ignore_signals(int sig, ...) {
2027 struct sigaction sa = {
2028 .sa_handler = SIG_IGN,
2029 .sa_flags = SA_RESTART,
2034 if (sigaction(sig, &sa, NULL) < 0)
2038 while ((sig = va_arg(ap, int)) > 0)
2039 if (sigaction(sig, &sa, NULL) < 0)
2046 int default_signals(int sig, ...) {
2047 struct sigaction sa = {
2048 .sa_handler = SIG_DFL,
2049 .sa_flags = SA_RESTART,
2054 if (sigaction(sig, &sa, NULL) < 0)
2058 while ((sig = va_arg(ap, int)) > 0)
2059 if (sigaction(sig, &sa, NULL) < 0)
2066 void safe_close_pair(int p[]) {
2070 /* Special case pairs which use the same fd in both
2072 p[0] = p[1] = safe_close(p[0]);
2076 p[0] = safe_close(p[0]);
2077 p[1] = safe_close(p[1]);
2080 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2087 while (nbytes > 0) {
2090 k = read(fd, p, nbytes);
2091 if (k < 0 && errno == EINTR)
2094 if (k < 0 && errno == EAGAIN && do_poll) {
2096 /* We knowingly ignore any return value here,
2097 * and expect that any error/EOF is reported
2100 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2105 return n > 0 ? n : (k < 0 ? -errno : 0);
2115 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2116 const uint8_t *p = buf;
2122 while (nbytes > 0) {
2125 k = write(fd, p, nbytes);
2126 if (k < 0 && errno == EINTR)
2129 if (k < 0 && errno == EAGAIN && do_poll) {
2131 /* We knowingly ignore any return value here,
2132 * and expect that any error/EOF is reported
2135 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2140 return n > 0 ? n : (k < 0 ? -errno : 0);
2150 int parse_size(const char *t, off_t base, off_t *size) {
2152 /* Soo, sometimes we want to parse IEC binary suffxies, and
2153 * sometimes SI decimal suffixes. This function can parse
2154 * both. Which one is the right way depends on the
2155 * context. Wikipedia suggests that SI is customary for
2156 * hardrware metrics and network speeds, while IEC is
2157 * customary for most data sizes used by software and volatile
2158 * (RAM) memory. Hence be careful which one you pick!
2160 * In either case we use just K, M, G as suffix, and not Ki,
2161 * Mi, Gi or so (as IEC would suggest). That's because that's
2162 * frickin' ugly. But this means you really need to make sure
2163 * to document which base you are parsing when you use this
2168 unsigned long long factor;
2171 static const struct table iec[] = {
2172 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2173 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2174 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2175 { "G", 1024ULL*1024ULL*1024ULL },
2176 { "M", 1024ULL*1024ULL },
2182 static const struct table si[] = {
2183 { "E", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2184 { "P", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2185 { "T", 1000ULL*1000ULL*1000ULL*1000ULL },
2186 { "G", 1000ULL*1000ULL*1000ULL },
2187 { "M", 1000ULL*1000ULL },
2193 const struct table *table;
2195 unsigned long long r = 0;
2196 unsigned n_entries, start_pos = 0;
2199 assert(base == 1000 || base == 1024);
2204 n_entries = ELEMENTSOF(si);
2207 n_entries = ELEMENTSOF(iec);
2213 unsigned long long l2;
2219 l = strtoll(p, &e, 10);
2232 if (*e >= '0' && *e <= '9') {
2235 /* strotoull itself would accept space/+/- */
2236 l2 = strtoull(e, &e2, 10);
2238 if (errno == ERANGE)
2241 /* Ignore failure. E.g. 10.M is valid */
2248 e += strspn(e, WHITESPACE);
2250 for (i = start_pos; i < n_entries; i++)
2251 if (startswith(e, table[i].suffix)) {
2252 unsigned long long tmp;
2253 if ((unsigned long long) l + (frac > 0) > ULLONG_MAX / table[i].factor)
2255 tmp = l * table[i].factor + (unsigned long long) (frac * table[i].factor);
2256 if (tmp > ULLONG_MAX - r)
2260 if ((unsigned long long) (off_t) r != r)
2263 p = e + strlen(table[i].suffix);
2279 int make_stdio(int fd) {
2284 r = dup3(fd, STDIN_FILENO, 0);
2285 s = dup3(fd, STDOUT_FILENO, 0);
2286 t = dup3(fd, STDERR_FILENO, 0);
2291 if (r < 0 || s < 0 || t < 0)
2294 /* We rely here that the new fd has O_CLOEXEC not set */
2299 int make_null_stdio(void) {
2302 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2306 return make_stdio(null_fd);
2309 bool is_device_path(const char *path) {
2311 /* Returns true on paths that refer to a device, either in
2312 * sysfs or in /dev */
2315 path_startswith(path, "/dev/") ||
2316 path_startswith(path, "/sys/");
2319 int dir_is_empty(const char *path) {
2320 _cleanup_closedir_ DIR *d;
2331 if (!de && errno != 0)
2337 if (!ignore_file(de->d_name))
2342 char* dirname_malloc(const char *path) {
2343 char *d, *dir, *dir2;
2360 int dev_urandom(void *p, size_t n) {
2361 _cleanup_close_ int fd;
2364 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2366 return errno == ENOENT ? -ENOSYS : -errno;
2368 k = loop_read(fd, p, n, true);
2371 if ((size_t) k != n)
2377 void random_bytes(void *p, size_t n) {
2378 static bool srand_called = false;
2382 r = dev_urandom(p, n);
2386 /* If some idiot made /dev/urandom unavailable to us, he'll
2387 * get a PRNG instead. */
2389 if (!srand_called) {
2392 #ifdef HAVE_SYS_AUXV_H
2393 /* The kernel provides us with a bit of entropy in
2394 * auxv, so let's try to make use of that to seed the
2395 * pseudo-random generator. It's better than
2400 auxv = (void*) getauxval(AT_RANDOM);
2402 x ^= *(unsigned*) auxv;
2405 x ^= (unsigned) now(CLOCK_REALTIME);
2406 x ^= (unsigned) gettid();
2409 srand_called = true;
2412 for (q = p; q < (uint8_t*) p + n; q ++)
2416 void rename_process(const char name[8]) {
2419 /* This is a like a poor man's setproctitle(). It changes the
2420 * comm field, argv[0], and also the glibc's internally used
2421 * name of the process. For the first one a limit of 16 chars
2422 * applies, to the second one usually one of 10 (i.e. length
2423 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2424 * "systemd"). If you pass a longer string it will be
2427 prctl(PR_SET_NAME, name);
2429 if (program_invocation_name)
2430 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2432 if (saved_argc > 0) {
2436 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2438 for (i = 1; i < saved_argc; i++) {
2442 memzero(saved_argv[i], strlen(saved_argv[i]));
2447 void sigset_add_many(sigset_t *ss, ...) {
2454 while ((sig = va_arg(ap, int)) > 0)
2455 assert_se(sigaddset(ss, sig) == 0);
2459 int sigprocmask_many(int how, ...) {
2464 assert_se(sigemptyset(&ss) == 0);
2467 while ((sig = va_arg(ap, int)) > 0)
2468 assert_se(sigaddset(&ss, sig) == 0);
2471 if (sigprocmask(how, &ss, NULL) < 0)
2477 char* gethostname_malloc(void) {
2480 assert_se(uname(&u) >= 0);
2482 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2483 return strdup(u.nodename);
2485 return strdup(u.sysname);
2488 bool hostname_is_set(void) {
2491 assert_se(uname(&u) >= 0);
2493 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2496 static char *lookup_uid(uid_t uid) {
2499 _cleanup_free_ char *buf = NULL;
2500 struct passwd pwbuf, *pw = NULL;
2502 /* Shortcut things to avoid NSS lookups */
2504 return strdup("root");
2506 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2510 buf = malloc(bufsize);
2514 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2515 return strdup(pw->pw_name);
2517 if (asprintf(&name, UID_FMT, uid) < 0)
2523 char* getlogname_malloc(void) {
2527 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2532 return lookup_uid(uid);
2535 char *getusername_malloc(void) {
2542 return lookup_uid(getuid());
2545 int getttyname_malloc(int fd, char **r) {
2546 char path[PATH_MAX], *c;
2551 k = ttyname_r(fd, path, sizeof(path));
2557 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2565 int getttyname_harder(int fd, char **r) {
2569 k = getttyname_malloc(fd, &s);
2573 if (streq(s, "tty")) {
2575 return get_ctty(0, NULL, r);
2582 int get_ctty_devnr(pid_t pid, dev_t *d) {
2584 _cleanup_free_ char *line = NULL;
2586 unsigned long ttynr;
2590 p = procfs_file_alloca(pid, "stat");
2591 r = read_one_line_file(p, &line);
2595 p = strrchr(line, ')');
2605 "%*d " /* session */
2610 if (major(ttynr) == 0 && minor(ttynr) == 0)
2619 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2620 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *b = NULL;
2621 _cleanup_free_ char *s = NULL;
2628 k = get_ctty_devnr(pid, &devnr);
2632 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2634 k = readlink_malloc(fn, &s);
2640 /* This is an ugly hack */
2641 if (major(devnr) == 136) {
2642 asprintf(&b, "pts/%u", minor(devnr));
2646 /* Probably something like the ptys which have no
2647 * symlink in /dev/char. Let's return something
2648 * vaguely useful. */
2654 if (startswith(s, "/dev/"))
2656 else if (startswith(s, "../"))
2674 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2675 _cleanup_closedir_ DIR *d = NULL;
2680 /* This returns the first error we run into, but nevertheless
2681 * tries to go on. This closes the passed fd. */
2687 return errno == ENOENT ? 0 : -errno;
2692 bool is_dir, keep_around;
2699 if (errno != 0 && ret == 0)
2704 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2707 if (de->d_type == DT_UNKNOWN ||
2709 (de->d_type == DT_DIR && root_dev)) {
2710 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2711 if (ret == 0 && errno != ENOENT)
2716 is_dir = S_ISDIR(st.st_mode);
2719 (st.st_uid == 0 || st.st_uid == getuid()) &&
2720 (st.st_mode & S_ISVTX);
2722 is_dir = de->d_type == DT_DIR;
2723 keep_around = false;
2729 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2730 if (root_dev && st.st_dev != root_dev->st_dev)
2733 subdir_fd = openat(fd, de->d_name,
2734 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2735 if (subdir_fd < 0) {
2736 if (ret == 0 && errno != ENOENT)
2741 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2742 if (r < 0 && ret == 0)
2746 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2747 if (ret == 0 && errno != ENOENT)
2751 } else if (!only_dirs && !keep_around) {
2753 if (unlinkat(fd, de->d_name, 0) < 0) {
2754 if (ret == 0 && errno != ENOENT)
2761 _pure_ static int is_temporary_fs(struct statfs *s) {
2764 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2765 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2768 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2773 if (fstatfs(fd, &s) < 0) {
2778 /* We refuse to clean disk file systems with this call. This
2779 * is extra paranoia just to be sure we never ever remove
2781 if (!is_temporary_fs(&s)) {
2782 log_error("Attempted to remove disk file system, and we can't allow that.");
2787 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2790 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2796 /* We refuse to clean the root file system with this
2797 * call. This is extra paranoia to never cause a really
2798 * seriously broken system. */
2799 if (path_equal(path, "/")) {
2800 log_error("Attempted to remove entire root file system, and we can't allow that.");
2804 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2807 if (errno != ENOTDIR)
2811 if (statfs(path, &s) < 0)
2814 if (!is_temporary_fs(&s)) {
2815 log_error("Attempted to remove disk file system, and we can't allow that.");
2820 if (delete_root && !only_dirs)
2821 if (unlink(path) < 0 && errno != ENOENT)
2828 if (fstatfs(fd, &s) < 0) {
2833 if (!is_temporary_fs(&s)) {
2834 log_error("Attempted to remove disk file system, and we can't allow that.");
2840 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2843 if (honour_sticky && file_is_priv_sticky(path) > 0)
2846 if (rmdir(path) < 0 && errno != ENOENT) {
2855 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2856 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2859 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2860 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2863 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2866 /* Under the assumption that we are running privileged we
2867 * first change the access mode and only then hand out
2868 * ownership to avoid a window where access is too open. */
2870 if (mode != (mode_t) -1)
2871 if (chmod(path, mode) < 0)
2874 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2875 if (chown(path, uid, gid) < 0)
2881 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2884 /* Under the assumption that we are running privileged we
2885 * first change the access mode and only then hand out
2886 * ownership to avoid a window where access is too open. */
2888 if (mode != (mode_t) -1)
2889 if (fchmod(fd, mode) < 0)
2892 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2893 if (fchown(fd, uid, gid) < 0)
2899 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2903 /* Allocates the cpuset in the right size */
2906 if (!(r = CPU_ALLOC(n)))
2909 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2910 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2920 if (errno != EINVAL)
2927 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2928 static const char status_indent[] = " "; /* "[" STATUS "] " */
2929 _cleanup_free_ char *s = NULL;
2930 _cleanup_close_ int fd = -1;
2931 struct iovec iovec[6] = {};
2933 static bool prev_ephemeral;
2937 /* This is independent of logging, as status messages are
2938 * optional and go exclusively to the console. */
2940 if (vasprintf(&s, format, ap) < 0)
2943 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2956 sl = status ? sizeof(status_indent)-1 : 0;
2962 e = ellipsize(s, emax, 75);
2970 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2971 prev_ephemeral = ephemeral;
2974 if (!isempty(status)) {
2975 IOVEC_SET_STRING(iovec[n++], "[");
2976 IOVEC_SET_STRING(iovec[n++], status);
2977 IOVEC_SET_STRING(iovec[n++], "] ");
2979 IOVEC_SET_STRING(iovec[n++], status_indent);
2982 IOVEC_SET_STRING(iovec[n++], s);
2984 IOVEC_SET_STRING(iovec[n++], "\n");
2986 if (writev(fd, iovec, n) < 0)
2992 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
2998 va_start(ap, format);
2999 r = status_vprintf(status, ellipse, ephemeral, format, ap);
3005 char *replace_env(const char *format, char **env) {
3012 const char *e, *word = format;
3017 for (e = format; *e; e ++) {
3028 if (!(k = strnappend(r, word, e-word-1)))
3037 } else if (*e == '$') {
3038 if (!(k = strnappend(r, word, e-word)))
3054 t = strempty(strv_env_get_n(env, word+2, e-word-2));
3056 k = strappend(r, t);
3070 if (!(k = strnappend(r, word, e-word)))
3081 char **replace_env_argv(char **argv, char **env) {
3083 unsigned k = 0, l = 0;
3085 l = strv_length(argv);
3087 if (!(r = new(char*, l+1)))
3090 STRV_FOREACH(i, argv) {
3092 /* If $FOO appears as single word, replace it by the split up variable */
3093 if ((*i)[0] == '$' && (*i)[1] != '{') {
3098 e = strv_env_get(env, *i+1);
3101 if (!(m = strv_split_quoted(e))) {
3112 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3121 memcpy(r + k, m, q * sizeof(char*));
3129 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3130 if (!(r[k++] = replace_env(*i, env))) {
3140 int fd_columns(int fd) {
3141 struct winsize ws = {};
3143 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3152 unsigned columns(void) {
3156 if (_likely_(cached_columns > 0))
3157 return cached_columns;
3160 e = getenv("COLUMNS");
3165 c = fd_columns(STDOUT_FILENO);
3174 int fd_lines(int fd) {
3175 struct winsize ws = {};
3177 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3186 unsigned lines(void) {
3190 if (_likely_(cached_lines > 0))
3191 return cached_lines;
3194 e = getenv("LINES");
3199 l = fd_lines(STDOUT_FILENO);
3205 return cached_lines;
3208 /* intended to be used as a SIGWINCH sighandler */
3209 void columns_lines_cache_reset(int signum) {
3215 static int cached_on_tty = -1;
3217 if (_unlikely_(cached_on_tty < 0))
3218 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3220 return cached_on_tty;
3223 int files_same(const char *filea, const char *fileb) {
3226 if (stat(filea, &a) < 0)
3229 if (stat(fileb, &b) < 0)
3232 return a.st_dev == b.st_dev &&
3233 a.st_ino == b.st_ino;
3236 int running_in_chroot(void) {
3239 ret = files_same("/proc/1/root", "/");
3246 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3251 assert(percent <= 100);
3252 assert(new_length >= 3);
3254 if (old_length <= 3 || old_length <= new_length)
3255 return strndup(s, old_length);
3257 r = new0(char, new_length+1);
3261 x = (new_length * percent) / 100;
3263 if (x > new_length - 3)
3271 s + old_length - (new_length - x - 3),
3272 new_length - x - 3);
3277 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3281 unsigned k, len, len2;
3284 assert(percent <= 100);
3285 assert(new_length >= 3);
3287 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3288 if (ascii_is_valid(s))
3289 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3291 if (old_length <= 3 || old_length <= new_length)
3292 return strndup(s, old_length);
3294 x = (new_length * percent) / 100;
3296 if (x > new_length - 3)
3300 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3303 c = utf8_encoded_to_unichar(i);
3306 k += unichar_iswide(c) ? 2 : 1;
3309 if (k > x) /* last character was wide and went over quota */
3312 for (j = s + old_length; k < new_length && j > i; ) {
3315 j = utf8_prev_char(j);
3316 c = utf8_encoded_to_unichar(j);
3319 k += unichar_iswide(c) ? 2 : 1;
3323 /* we don't actually need to ellipsize */
3325 return memdup(s, old_length + 1);
3327 /* make space for ellipsis */
3328 j = utf8_next_char(j);
3331 len2 = s + old_length - j;
3332 e = new(char, len + 3 + len2 + 1);
3337 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3338 old_length, new_length, x, len, len2, k);
3342 e[len] = 0xe2; /* tri-dot ellipsis: … */
3346 memcpy(e + len + 3, j, len2 + 1);
3351 char *ellipsize(const char *s, size_t length, unsigned percent) {
3352 return ellipsize_mem(s, strlen(s), length, percent);
3355 int touch_file(const char *path, bool parents, usec_t stamp, uid_t uid, gid_t gid, mode_t mode) {
3356 _cleanup_close_ int fd;
3362 mkdir_parents(path, 0755);
3364 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, mode > 0 ? mode : 0644);
3369 r = fchmod(fd, mode);
3374 if (uid != (uid_t) -1 || gid != (gid_t) -1) {
3375 r = fchown(fd, uid, gid);
3380 if (stamp != (usec_t) -1) {
3381 struct timespec ts[2];
3383 timespec_store(&ts[0], stamp);
3385 r = futimens(fd, ts);
3387 r = futimens(fd, NULL);
3394 int touch(const char *path) {
3395 return touch_file(path, false, (usec_t) -1, (uid_t) -1, (gid_t) -1, 0);
3398 char *unquote(const char *s, const char* quotes) {
3402 /* This is rather stupid, simply removes the heading and
3403 * trailing quotes if there is one. Doesn't care about
3404 * escaping or anything. We should make this smarter one
3411 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3412 return strndup(s+1, l-2);
3417 char *normalize_env_assignment(const char *s) {
3418 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3421 eq = strchr(s, '=');
3433 memmove(r, t, strlen(t) + 1);
3437 name = strndup(s, eq - s);
3445 value = unquote(strstrip(p), QUOTES);
3449 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3455 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3466 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3478 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3485 r = wait_for_terminate(pid, &status);
3487 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3491 if (status.si_code == CLD_EXITED) {
3492 if (status.si_status != 0) {
3493 log_warning("%s failed with error code %i.", name, status.si_status);
3494 return status.si_status;
3497 log_debug("%s succeeded.", name);
3500 } else if (status.si_code == CLD_KILLED ||
3501 status.si_code == CLD_DUMPED) {
3503 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3507 log_warning("%s failed due to unknown reason.", name);
3511 noreturn void freeze(void) {
3513 /* Make sure nobody waits for us on a socket anymore */
3514 close_all_fds(NULL, 0);
3522 bool null_or_empty(struct stat *st) {
3525 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3528 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3534 int null_or_empty_path(const char *fn) {
3539 if (stat(fn, &st) < 0)
3542 return null_or_empty(&st);
3545 DIR *xopendirat(int fd, const char *name, int flags) {
3549 assert(!(flags & O_CREAT));
3551 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3564 int signal_from_string_try_harder(const char *s) {
3568 signo = signal_from_string(s);
3570 if (startswith(s, "SIG"))
3571 return signal_from_string(s+3);
3576 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3577 _cleanup_free_ char *t = NULL, *u = NULL;
3580 u = unquote(tagvalue, "\"\'");
3584 enc_len = strlen(u) * 4 + 1;
3585 t = new(char, enc_len);
3589 if (encode_devnode_name(u, t, enc_len) < 0)
3592 return strjoin("/dev/disk/by-", by, "/", t, NULL);
3595 char *fstab_node_to_udev_node(const char *p) {
3598 if (startswith(p, "LABEL="))
3599 return tag_to_udev_node(p+6, "label");
3601 if (startswith(p, "UUID="))
3602 return tag_to_udev_node(p+5, "uuid");
3604 if (startswith(p, "PARTUUID="))
3605 return tag_to_udev_node(p+9, "partuuid");
3607 if (startswith(p, "PARTLABEL="))
3608 return tag_to_udev_node(p+10, "partlabel");
3613 bool tty_is_vc(const char *tty) {
3616 return vtnr_from_tty(tty) >= 0;
3619 bool tty_is_console(const char *tty) {
3622 if (startswith(tty, "/dev/"))
3625 return streq(tty, "console");
3628 int vtnr_from_tty(const char *tty) {
3633 if (startswith(tty, "/dev/"))
3636 if (!startswith(tty, "tty") )
3639 if (tty[3] < '0' || tty[3] > '9')
3642 r = safe_atoi(tty+3, &i);
3646 if (i < 0 || i > 63)
3652 char *resolve_dev_console(char **active) {
3655 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3656 * (i.e. not read-only-mounted which is a sign for container setups) */
3658 if (path_is_read_only_fs("/sys") > 0)
3661 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3664 /* If multiple log outputs are configured the last one is what
3665 * /dev/console points to */
3666 tty = strrchr(*active, ' ');
3672 if (streq(tty, "tty0")) {
3675 /* Get the active VC (e.g. tty1) */
3676 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3678 tty = *active = tmp;
3685 bool tty_is_vc_resolve(const char *tty) {
3686 _cleanup_free_ char *active = NULL;
3690 if (startswith(tty, "/dev/"))
3693 if (streq(tty, "console")) {
3694 tty = resolve_dev_console(&active);
3699 return tty_is_vc(tty);
3702 const char *default_term_for_tty(const char *tty) {
3705 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3708 bool dirent_is_file(const struct dirent *de) {
3711 if (ignore_file(de->d_name))
3714 if (de->d_type != DT_REG &&
3715 de->d_type != DT_LNK &&
3716 de->d_type != DT_UNKNOWN)
3722 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3725 if (de->d_type != DT_REG &&
3726 de->d_type != DT_LNK &&
3727 de->d_type != DT_UNKNOWN)
3730 if (ignore_file_allow_backup(de->d_name))
3733 return endswith(de->d_name, suffix);
3736 void execute_directory(const char *directory, DIR *d, usec_t timeout, char *argv[]) {
3742 /* Executes all binaries in a directory in parallel and waits
3743 * for them to finish. Optionally a timeout is applied. */
3745 executor_pid = fork();
3746 if (executor_pid < 0) {
3747 log_error("Failed to fork: %m");
3750 } else if (executor_pid == 0) {
3751 _cleanup_hashmap_free_free_ Hashmap *pids = NULL;
3752 _cleanup_closedir_ DIR *_d = NULL;
3756 /* We fork this all off from a child process so that
3757 * we can somewhat cleanly make use of SIGALRM to set
3760 reset_all_signal_handlers();
3762 assert_se(sigemptyset(&ss) == 0);
3763 assert_se(sigprocmask(SIG_SETMASK, &ss, NULL) == 0);
3765 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3768 d = _d = opendir(directory);
3770 if (errno == ENOENT)
3771 _exit(EXIT_SUCCESS);
3773 log_error("Failed to enumerate directory %s: %m", directory);
3774 _exit(EXIT_FAILURE);
3778 pids = hashmap_new(NULL, NULL);
3781 _exit(EXIT_FAILURE);
3784 FOREACH_DIRENT(de, d, break) {
3785 _cleanup_free_ char *path = NULL;
3788 if (!dirent_is_file(de))
3791 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3793 _exit(EXIT_FAILURE);
3798 log_error("Failed to fork: %m");
3800 } else if (pid == 0) {
3803 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3813 log_error("Failed to execute %s: %m", path);
3814 _exit(EXIT_FAILURE);
3818 log_debug("Spawned %s as " PID_FMT ".", path, pid);
3820 r = hashmap_put(pids, UINT_TO_PTR(pid), path);
3823 _exit(EXIT_FAILURE);
3829 /* Abort execution of this process after the
3830 * timout. We simply rely on SIGALRM as default action
3831 * terminating the process, and turn on alarm(). */
3833 if (timeout != (usec_t) -1)
3834 alarm((timeout + USEC_PER_SEC - 1) / USEC_PER_SEC);
3836 while (!hashmap_isempty(pids)) {
3837 _cleanup_free_ char *path = NULL;
3840 pid = PTR_TO_UINT(hashmap_first_key(pids));
3843 path = hashmap_remove(pids, UINT_TO_PTR(pid));
3846 wait_for_terminate_and_warn(path, pid);
3849 _exit(EXIT_SUCCESS);
3852 wait_for_terminate_and_warn(directory, executor_pid);
3855 int kill_and_sigcont(pid_t pid, int sig) {
3858 r = kill(pid, sig) < 0 ? -errno : 0;
3866 bool nulstr_contains(const char*nulstr, const char *needle) {
3872 NULSTR_FOREACH(i, nulstr)
3873 if (streq(i, needle))
3879 bool plymouth_running(void) {
3880 return access("/run/plymouth/pid", F_OK) >= 0;
3883 char* strshorten(char *s, size_t l) {
3892 static bool hostname_valid_char(char c) {
3894 (c >= 'a' && c <= 'z') ||
3895 (c >= 'A' && c <= 'Z') ||
3896 (c >= '0' && c <= '9') ||
3902 bool hostname_is_valid(const char *s) {
3909 for (p = s, dot = true; *p; p++) {
3916 if (!hostname_valid_char(*p))
3926 if (p-s > HOST_NAME_MAX)
3932 char* hostname_cleanup(char *s, bool lowercase) {
3936 for (p = s, d = s, dot = true; *p; p++) {
3943 } else if (hostname_valid_char(*p)) {
3944 *(d++) = lowercase ? tolower(*p) : *p;
3955 strshorten(s, HOST_NAME_MAX);
3960 int pipe_eof(int fd) {
3961 struct pollfd pollfd = {
3963 .events = POLLIN|POLLHUP,
3968 r = poll(&pollfd, 1, 0);
3975 return pollfd.revents & POLLHUP;
3978 int fd_wait_for_event(int fd, int event, usec_t t) {
3980 struct pollfd pollfd = {
3988 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
3995 return pollfd.revents;
3998 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
4007 t = tempfn_xxxxxx(path);
4011 fd = mkostemp_safe(t, O_WRONLY|O_CLOEXEC);
4017 f = fdopen(fd, "we");
4030 int terminal_vhangup_fd(int fd) {
4033 if (ioctl(fd, TIOCVHANGUP) < 0)
4039 int terminal_vhangup(const char *name) {
4040 _cleanup_close_ int fd;
4042 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4046 return terminal_vhangup_fd(fd);
4049 int vt_disallocate(const char *name) {
4053 /* Deallocate the VT if possible. If not possible
4054 * (i.e. because it is the active one), at least clear it
4055 * entirely (including the scrollback buffer) */
4057 if (!startswith(name, "/dev/"))
4060 if (!tty_is_vc(name)) {
4061 /* So this is not a VT. I guess we cannot deallocate
4062 * it then. But let's at least clear the screen */
4064 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4069 "\033[r" /* clear scrolling region */
4070 "\033[H" /* move home */
4071 "\033[2J", /* clear screen */
4078 if (!startswith(name, "/dev/tty"))
4081 r = safe_atou(name+8, &u);
4088 /* Try to deallocate */
4089 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
4093 r = ioctl(fd, VT_DISALLOCATE, u);
4102 /* Couldn't deallocate, so let's clear it fully with
4104 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4109 "\033[r" /* clear scrolling region */
4110 "\033[H" /* move home */
4111 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4118 int symlink_atomic(const char *from, const char *to) {
4119 _cleanup_free_ char *t = NULL;
4124 t = tempfn_random(to);
4128 if (symlink(from, t) < 0)
4131 if (rename(t, to) < 0) {
4139 int mknod_atomic(const char *path, mode_t mode, dev_t dev) {
4140 _cleanup_free_ char *t = NULL;
4144 t = tempfn_random(path);
4148 if (mknod(t, mode, dev) < 0)
4151 if (rename(t, path) < 0) {
4159 int mkfifo_atomic(const char *path, mode_t mode) {
4160 _cleanup_free_ char *t = NULL;
4164 t = tempfn_random(path);
4168 if (mkfifo(t, mode) < 0)
4171 if (rename(t, path) < 0) {
4179 bool display_is_local(const char *display) {
4183 display[0] == ':' &&
4184 display[1] >= '0' &&
4188 int socket_from_display(const char *display, char **path) {
4195 if (!display_is_local(display))
4198 k = strspn(display+1, "0123456789");
4200 f = new(char, strlen("/tmp/.X11-unix/X") + k + 1);
4204 c = stpcpy(f, "/tmp/.X11-unix/X");
4205 memcpy(c, display+1, k);
4214 const char **username,
4215 uid_t *uid, gid_t *gid,
4217 const char **shell) {
4225 /* We enforce some special rules for uid=0: in order to avoid
4226 * NSS lookups for root we hardcode its data. */
4228 if (streq(*username, "root") || streq(*username, "0")) {
4246 if (parse_uid(*username, &u) >= 0) {
4250 /* If there are multiple users with the same id, make
4251 * sure to leave $USER to the configured value instead
4252 * of the first occurrence in the database. However if
4253 * the uid was configured by a numeric uid, then let's
4254 * pick the real username from /etc/passwd. */
4256 *username = p->pw_name;
4259 p = getpwnam(*username);
4263 return errno > 0 ? -errno : -ESRCH;
4275 *shell = p->pw_shell;
4280 char* uid_to_name(uid_t uid) {
4285 return strdup("root");
4289 return strdup(p->pw_name);
4291 if (asprintf(&r, UID_FMT, uid) < 0)
4297 char* gid_to_name(gid_t gid) {
4302 return strdup("root");
4306 return strdup(p->gr_name);
4308 if (asprintf(&r, GID_FMT, gid) < 0)
4314 int get_group_creds(const char **groupname, gid_t *gid) {
4320 /* We enforce some special rules for gid=0: in order to avoid
4321 * NSS lookups for root we hardcode its data. */
4323 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4324 *groupname = "root";
4332 if (parse_gid(*groupname, &id) >= 0) {
4337 *groupname = g->gr_name;
4340 g = getgrnam(*groupname);
4344 return errno > 0 ? -errno : -ESRCH;
4352 int in_gid(gid_t gid) {
4354 int ngroups_max, r, i;
4356 if (getgid() == gid)
4359 if (getegid() == gid)
4362 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4363 assert(ngroups_max > 0);
4365 gids = alloca(sizeof(gid_t) * ngroups_max);
4367 r = getgroups(ngroups_max, gids);
4371 for (i = 0; i < r; i++)
4378 int in_group(const char *name) {
4382 r = get_group_creds(&name, &gid);
4389 int glob_exists(const char *path) {
4390 _cleanup_globfree_ glob_t g = {};
4396 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4398 if (k == GLOB_NOMATCH)
4400 else if (k == GLOB_NOSPACE)
4403 return !strv_isempty(g.gl_pathv);
4405 return errno ? -errno : -EIO;
4408 int glob_extend(char ***strv, const char *path) {
4409 _cleanup_globfree_ glob_t g = {};
4414 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4416 if (k == GLOB_NOMATCH)
4418 else if (k == GLOB_NOSPACE)
4420 else if (k != 0 || strv_isempty(g.gl_pathv))
4421 return errno ? -errno : -EIO;
4423 STRV_FOREACH(p, g.gl_pathv) {
4424 k = strv_extend(strv, *p);
4432 int dirent_ensure_type(DIR *d, struct dirent *de) {
4438 if (de->d_type != DT_UNKNOWN)
4441 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4445 S_ISREG(st.st_mode) ? DT_REG :
4446 S_ISDIR(st.st_mode) ? DT_DIR :
4447 S_ISLNK(st.st_mode) ? DT_LNK :
4448 S_ISFIFO(st.st_mode) ? DT_FIFO :
4449 S_ISSOCK(st.st_mode) ? DT_SOCK :
4450 S_ISCHR(st.st_mode) ? DT_CHR :
4451 S_ISBLK(st.st_mode) ? DT_BLK :
4457 int get_files_in_directory(const char *path, char ***list) {
4458 _cleanup_closedir_ DIR *d = NULL;
4459 size_t bufsize = 0, n = 0;
4460 _cleanup_strv_free_ char **l = NULL;
4464 /* Returns all files in a directory in *list, and the number
4465 * of files as return value. If list is NULL returns only the
4477 if (!de && errno != 0)
4482 dirent_ensure_type(d, de);
4484 if (!dirent_is_file(de))
4488 /* one extra slot is needed for the terminating NULL */
4489 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4492 l[n] = strdup(de->d_name);
4503 l = NULL; /* avoid freeing */
4509 char *strjoin(const char *x, ...) {
4523 t = va_arg(ap, const char *);
4528 if (n > ((size_t) -1) - l) {
4552 t = va_arg(ap, const char *);
4566 bool is_main_thread(void) {
4567 static thread_local int cached = 0;
4569 if (_unlikely_(cached == 0))
4570 cached = getpid() == gettid() ? 1 : -1;
4575 int block_get_whole_disk(dev_t d, dev_t *ret) {
4582 /* If it has a queue this is good enough for us */
4583 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4586 r = access(p, F_OK);
4594 /* If it is a partition find the originating device */
4595 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4598 r = access(p, F_OK);
4604 /* Get parent dev_t */
4605 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4608 r = read_one_line_file(p, &s);
4614 r = sscanf(s, "%u:%u", &m, &n);
4620 /* Only return this if it is really good enough for us. */
4621 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4624 r = access(p, F_OK);
4628 *ret = makedev(m, n);
4635 int file_is_priv_sticky(const char *p) {
4640 if (lstat(p, &st) < 0)
4644 (st.st_uid == 0 || st.st_uid == getuid()) &&
4645 (st.st_mode & S_ISVTX);
4648 static const char *const ioprio_class_table[] = {
4649 [IOPRIO_CLASS_NONE] = "none",
4650 [IOPRIO_CLASS_RT] = "realtime",
4651 [IOPRIO_CLASS_BE] = "best-effort",
4652 [IOPRIO_CLASS_IDLE] = "idle"
4655 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4657 static const char *const sigchld_code_table[] = {
4658 [CLD_EXITED] = "exited",
4659 [CLD_KILLED] = "killed",
4660 [CLD_DUMPED] = "dumped",
4661 [CLD_TRAPPED] = "trapped",
4662 [CLD_STOPPED] = "stopped",
4663 [CLD_CONTINUED] = "continued",
4666 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4668 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4669 [LOG_FAC(LOG_KERN)] = "kern",
4670 [LOG_FAC(LOG_USER)] = "user",
4671 [LOG_FAC(LOG_MAIL)] = "mail",
4672 [LOG_FAC(LOG_DAEMON)] = "daemon",
4673 [LOG_FAC(LOG_AUTH)] = "auth",
4674 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4675 [LOG_FAC(LOG_LPR)] = "lpr",
4676 [LOG_FAC(LOG_NEWS)] = "news",
4677 [LOG_FAC(LOG_UUCP)] = "uucp",
4678 [LOG_FAC(LOG_CRON)] = "cron",
4679 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4680 [LOG_FAC(LOG_FTP)] = "ftp",
4681 [LOG_FAC(LOG_LOCAL0)] = "local0",
4682 [LOG_FAC(LOG_LOCAL1)] = "local1",
4683 [LOG_FAC(LOG_LOCAL2)] = "local2",
4684 [LOG_FAC(LOG_LOCAL3)] = "local3",
4685 [LOG_FAC(LOG_LOCAL4)] = "local4",
4686 [LOG_FAC(LOG_LOCAL5)] = "local5",
4687 [LOG_FAC(LOG_LOCAL6)] = "local6",
4688 [LOG_FAC(LOG_LOCAL7)] = "local7"
4691 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4693 static const char *const log_level_table[] = {
4694 [LOG_EMERG] = "emerg",
4695 [LOG_ALERT] = "alert",
4696 [LOG_CRIT] = "crit",
4698 [LOG_WARNING] = "warning",
4699 [LOG_NOTICE] = "notice",
4700 [LOG_INFO] = "info",
4701 [LOG_DEBUG] = "debug"
4704 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4706 static const char* const sched_policy_table[] = {
4707 [SCHED_OTHER] = "other",
4708 [SCHED_BATCH] = "batch",
4709 [SCHED_IDLE] = "idle",
4710 [SCHED_FIFO] = "fifo",
4714 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4716 static const char* const rlimit_table[_RLIMIT_MAX] = {
4717 [RLIMIT_CPU] = "LimitCPU",
4718 [RLIMIT_FSIZE] = "LimitFSIZE",
4719 [RLIMIT_DATA] = "LimitDATA",
4720 [RLIMIT_STACK] = "LimitSTACK",
4721 [RLIMIT_CORE] = "LimitCORE",
4722 [RLIMIT_RSS] = "LimitRSS",
4723 [RLIMIT_NOFILE] = "LimitNOFILE",
4724 [RLIMIT_AS] = "LimitAS",
4725 [RLIMIT_NPROC] = "LimitNPROC",
4726 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4727 [RLIMIT_LOCKS] = "LimitLOCKS",
4728 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4729 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4730 [RLIMIT_NICE] = "LimitNICE",
4731 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4732 [RLIMIT_RTTIME] = "LimitRTTIME"
4735 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4737 static const char* const ip_tos_table[] = {
4738 [IPTOS_LOWDELAY] = "low-delay",
4739 [IPTOS_THROUGHPUT] = "throughput",
4740 [IPTOS_RELIABILITY] = "reliability",
4741 [IPTOS_LOWCOST] = "low-cost",
4744 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4746 static const char *const __signal_table[] = {
4763 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4774 [SIGVTALRM] = "VTALRM",
4776 [SIGWINCH] = "WINCH",
4782 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4784 const char *signal_to_string(int signo) {
4785 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4788 name = __signal_to_string(signo);
4792 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4793 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4795 snprintf(buf, sizeof(buf), "%d", signo);
4800 int signal_from_string(const char *s) {
4805 signo = __signal_from_string(s);
4809 if (startswith(s, "RTMIN+")) {
4813 if (safe_atou(s, &u) >= 0) {
4814 signo = (int) u + offset;
4815 if (signo > 0 && signo < _NSIG)
4821 bool kexec_loaded(void) {
4822 bool loaded = false;
4825 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4833 int strdup_or_null(const char *a, char **b) {
4851 int prot_from_flags(int flags) {
4853 switch (flags & O_ACCMODE) {
4862 return PROT_READ|PROT_WRITE;
4869 char *format_bytes(char *buf, size_t l, off_t t) {
4872 static const struct {
4876 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4877 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4878 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4879 { "G", 1024ULL*1024ULL*1024ULL },
4880 { "M", 1024ULL*1024ULL },
4884 for (i = 0; i < ELEMENTSOF(table); i++) {
4886 if (t >= table[i].factor) {
4889 (unsigned long long) (t / table[i].factor),
4890 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4897 snprintf(buf, l, "%lluB", (unsigned long long) t);
4905 void* memdup(const void *p, size_t l) {
4918 int fd_inc_sndbuf(int fd, size_t n) {
4920 socklen_t l = sizeof(value);
4922 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4923 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4926 /* If we have the privileges we will ignore the kernel limit. */
4929 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4930 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
4936 int fd_inc_rcvbuf(int fd, size_t n) {
4938 socklen_t l = sizeof(value);
4940 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
4941 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4944 /* If we have the privileges we will ignore the kernel limit. */
4947 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
4948 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
4953 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
4954 pid_t parent_pid, agent_pid;
4956 bool stdout_is_tty, stderr_is_tty;
4964 parent_pid = getpid();
4966 /* Spawns a temporary TTY agent, making sure it goes away when
4973 if (agent_pid != 0) {
4980 * Make sure the agent goes away when the parent dies */
4981 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
4982 _exit(EXIT_FAILURE);
4984 /* Check whether our parent died before we were able
4985 * to set the death signal */
4986 if (getppid() != parent_pid)
4987 _exit(EXIT_SUCCESS);
4989 /* Don't leak fds to the agent */
4990 close_all_fds(except, n_except);
4992 stdout_is_tty = isatty(STDOUT_FILENO);
4993 stderr_is_tty = isatty(STDERR_FILENO);
4995 if (!stdout_is_tty || !stderr_is_tty) {
4996 /* Detach from stdout/stderr. and reopen
4997 * /dev/tty for them. This is important to
4998 * ensure that when systemctl is started via
4999 * popen() or a similar call that expects to
5000 * read EOF we actually do generate EOF and
5001 * not delay this indefinitely by because we
5002 * keep an unused copy of stdin around. */
5003 fd = open("/dev/tty", O_WRONLY);
5005 log_error("Failed to open /dev/tty: %m");
5006 _exit(EXIT_FAILURE);
5010 dup2(fd, STDOUT_FILENO);
5013 dup2(fd, STDERR_FILENO);
5019 /* Count arguments */
5021 for (n = 0; va_arg(ap, char*); n++)
5026 l = alloca(sizeof(char *) * (n + 1));
5028 /* Fill in arguments */
5030 for (i = 0; i <= n; i++)
5031 l[i] = va_arg(ap, char*);
5035 _exit(EXIT_FAILURE);
5038 int setrlimit_closest(int resource, const struct rlimit *rlim) {
5039 struct rlimit highest, fixed;
5043 if (setrlimit(resource, rlim) >= 0)
5049 /* So we failed to set the desired setrlimit, then let's try
5050 * to get as close as we can */
5051 assert_se(getrlimit(resource, &highest) == 0);
5053 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
5054 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
5056 if (setrlimit(resource, &fixed) < 0)
5062 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5063 _cleanup_fclose_ FILE *f = NULL;
5074 path = procfs_file_alloca(pid, "environ");
5076 f = fopen(path, "re");
5084 char line[LINE_MAX];
5087 for (i = 0; i < sizeof(line)-1; i++) {
5091 if (_unlikely_(c == EOF)) {
5101 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5102 value = strdup(line + l + 1);
5116 bool is_valid_documentation_url(const char *url) {
5119 if (startswith(url, "http://") && url[7])
5122 if (startswith(url, "https://") && url[8])
5125 if (startswith(url, "file:") && url[5])
5128 if (startswith(url, "info:") && url[5])
5131 if (startswith(url, "man:") && url[4])
5137 bool in_initrd(void) {
5138 static int saved = -1;
5144 /* We make two checks here:
5146 * 1. the flag file /etc/initrd-release must exist
5147 * 2. the root file system must be a memory file system
5149 * The second check is extra paranoia, since misdetecting an
5150 * initrd can have bad bad consequences due the initrd
5151 * emptying when transititioning to the main systemd.
5154 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5155 statfs("/", &s) >= 0 &&
5156 is_temporary_fs(&s);
5161 void warn_melody(void) {
5162 _cleanup_close_ int fd = -1;
5164 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5168 /* Yeah, this is synchronous. Kinda sucks. But well... */
5170 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5171 usleep(125*USEC_PER_MSEC);
5173 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5174 usleep(125*USEC_PER_MSEC);
5176 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5177 usleep(125*USEC_PER_MSEC);
5179 ioctl(fd, KIOCSOUND, 0);
5182 int make_console_stdio(void) {
5185 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5187 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5189 log_error("Failed to acquire terminal: %s", strerror(-fd));
5195 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5202 int get_home_dir(char **_h) {
5210 /* Take the user specified one */
5221 /* Hardcode home directory for root to avoid NSS */
5224 h = strdup("/root");
5232 /* Check the database... */
5236 return errno > 0 ? -errno : -ESRCH;
5238 if (!path_is_absolute(p->pw_dir))
5241 h = strdup(p->pw_dir);
5249 int get_shell(char **_s) {
5257 /* Take the user specified one */
5258 e = getenv("SHELL");
5268 /* Hardcode home directory for root to avoid NSS */
5271 s = strdup("/bin/sh");
5279 /* Check the database... */
5283 return errno > 0 ? -errno : -ESRCH;
5285 if (!path_is_absolute(p->pw_shell))
5288 s = strdup(p->pw_shell);
5296 bool filename_is_safe(const char *p) {
5310 if (strlen(p) > FILENAME_MAX)
5316 bool string_is_safe(const char *p) {
5321 for (t = p; *t; t++) {
5322 if (*t > 0 && *t < ' ')
5325 if (strchr("\\\"\'", *t))
5333 * Check if a string contains control characters.
5334 * Spaces and tabs are not considered control characters.
5336 bool string_has_cc(const char *p) {
5341 for (t = p; *t; t++)
5342 if (*t > 0 && *t < ' ' && *t != '\t')
5348 bool path_is_safe(const char *p) {
5353 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5356 if (strlen(p) > PATH_MAX)
5359 /* The following two checks are not really dangerous, but hey, they still are confusing */
5360 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5363 if (strstr(p, "//"))
5369 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5370 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5371 int (*compar) (const void *, const void *, void *), void *arg) {
5380 p = (void *)(((const char *) base) + (idx * size));
5381 comparison = compar(key, p, arg);
5384 else if (comparison > 0)
5392 bool is_locale_utf8(void) {
5394 static int cached_answer = -1;
5396 if (cached_answer >= 0)
5399 if (!setlocale(LC_ALL, "")) {
5400 cached_answer = true;
5404 set = nl_langinfo(CODESET);
5406 cached_answer = true;
5410 if (streq(set, "UTF-8")) {
5411 cached_answer = true;
5415 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5416 * unset and everything can do to UTF-8 nowadays. */
5417 set = setlocale(LC_CTYPE, NULL);
5419 cached_answer = true;
5423 /* Check result, but ignore the result if C was set
5427 !getenv("LC_ALL") &&
5428 !getenv("LC_CTYPE") &&
5432 return (bool) cached_answer;
5435 const char *draw_special_char(DrawSpecialChar ch) {
5436 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5439 [DRAW_TREE_VERTICAL] = "\342\224\202 ", /* │ */
5440 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5441 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5442 [DRAW_TREE_SPACE] = " ", /* */
5443 [DRAW_TRIANGULAR_BULLET] = "\342\200\243", /* ‣ */
5444 [DRAW_BLACK_CIRCLE] = "\342\227\217", /* ● */
5445 [DRAW_ARROW] = "\342\206\222", /* → */
5446 [DRAW_DASH] = "\342\200\223", /* – */
5449 /* ASCII fallback */ {
5450 [DRAW_TREE_VERTICAL] = "| ",
5451 [DRAW_TREE_BRANCH] = "|-",
5452 [DRAW_TREE_RIGHT] = "`-",
5453 [DRAW_TREE_SPACE] = " ",
5454 [DRAW_TRIANGULAR_BULLET] = ">",
5455 [DRAW_BLACK_CIRCLE] = "*",
5456 [DRAW_ARROW] = "->",
5461 return draw_table[!is_locale_utf8()][ch];
5464 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5467 size_t l, old_len, new_len;
5473 old_len = strlen(old_string);
5474 new_len = strlen(new_string);
5487 if (!startswith(f, old_string)) {
5493 nl = l - old_len + new_len;
5494 a = realloc(r, nl + 1);
5502 t = stpcpy(t, new_string);
5514 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5515 const char *i, *begin = NULL;
5520 } state = STATE_OTHER;
5522 size_t osz = 0, isz;
5528 /* Strips ANSI color and replaces TABs by 8 spaces */
5530 isz = _isz ? *_isz : strlen(*ibuf);
5532 f = open_memstream(&obuf, &osz);
5536 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5541 if (i >= *ibuf + isz) /* EOT */
5543 else if (*i == '\x1B')
5544 state = STATE_ESCAPE;
5545 else if (*i == '\t')
5552 if (i >= *ibuf + isz) { /* EOT */
5555 } else if (*i == '[') {
5556 state = STATE_BRACKET;
5561 state = STATE_OTHER;
5568 if (i >= *ibuf + isz || /* EOT */
5569 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5572 state = STATE_OTHER;
5574 } else if (*i == 'm')
5575 state = STATE_OTHER;
5597 int on_ac_power(void) {
5598 bool found_offline = false, found_online = false;
5599 _cleanup_closedir_ DIR *d = NULL;
5601 d = opendir("/sys/class/power_supply");
5607 _cleanup_close_ int fd = -1, device = -1;
5613 if (!de && errno != 0)
5619 if (ignore_file(de->d_name))
5622 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5624 if (errno == ENOENT || errno == ENOTDIR)
5630 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5632 if (errno == ENOENT)
5638 n = read(fd, contents, sizeof(contents));
5642 if (n != 6 || memcmp(contents, "Mains\n", 6))
5646 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5648 if (errno == ENOENT)
5654 n = read(fd, contents, sizeof(contents));
5658 if (n != 2 || contents[1] != '\n')
5661 if (contents[0] == '1') {
5662 found_online = true;
5664 } else if (contents[0] == '0')
5665 found_offline = true;
5670 return found_online || !found_offline;
5673 static int search_and_fopen_internal(const char *path, const char *mode, const char *root, char **search, FILE **_f) {
5680 if (!path_strv_resolve_uniq(search, root))
5683 STRV_FOREACH(i, search) {
5684 _cleanup_free_ char *p = NULL;
5688 p = strjoin(root, *i, "/", path, NULL);
5690 p = strjoin(*i, "/", path, NULL);
5700 if (errno != ENOENT)
5707 int search_and_fopen(const char *path, const char *mode, const char *root, const char **search, FILE **_f) {
5708 _cleanup_strv_free_ char **copy = NULL;
5714 if (path_is_absolute(path)) {
5717 f = fopen(path, mode);
5726 copy = strv_copy((char**) search);
5730 return search_and_fopen_internal(path, mode, root, copy, _f);
5733 int search_and_fopen_nulstr(const char *path, const char *mode, const char *root, const char *search, FILE **_f) {
5734 _cleanup_strv_free_ char **s = NULL;
5736 if (path_is_absolute(path)) {
5739 f = fopen(path, mode);
5748 s = strv_split_nulstr(search);
5752 return search_and_fopen_internal(path, mode, root, s, _f);
5755 char *strextend(char **x, ...) {
5762 l = f = *x ? strlen(*x) : 0;
5769 t = va_arg(ap, const char *);
5774 if (n > ((size_t) -1) - l) {
5783 r = realloc(*x, l+1);
5793 t = va_arg(ap, const char *);
5807 char *strrep(const char *s, unsigned n) {
5815 p = r = malloc(l * n + 1);
5819 for (i = 0; i < n; i++)
5826 void* greedy_realloc(void **p, size_t *allocated, size_t need, size_t size) {
5833 if (*allocated >= need)
5836 newalloc = MAX(need * 2, 64u / size);
5837 a = newalloc * size;
5839 /* check for overflows */
5840 if (a < size * need)
5848 *allocated = newalloc;
5852 void* greedy_realloc0(void **p, size_t *allocated, size_t need, size_t size) {
5861 q = greedy_realloc(p, allocated, need, size);
5865 if (*allocated > prev)
5866 memzero(q + prev * size, (*allocated - prev) * size);
5871 bool id128_is_valid(const char *s) {
5877 /* Simple formatted 128bit hex string */
5879 for (i = 0; i < l; i++) {
5882 if (!(c >= '0' && c <= '9') &&
5883 !(c >= 'a' && c <= 'z') &&
5884 !(c >= 'A' && c <= 'Z'))
5888 } else if (l == 36) {
5890 /* Formatted UUID */
5892 for (i = 0; i < l; i++) {
5895 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5899 if (!(c >= '0' && c <= '9') &&
5900 !(c >= 'a' && c <= 'z') &&
5901 !(c >= 'A' && c <= 'Z'))
5912 int split_pair(const char *s, const char *sep, char **l, char **r) {
5927 a = strndup(s, x - s);
5931 b = strdup(x + strlen(sep));
5943 int shall_restore_state(void) {
5944 _cleanup_free_ char *line = NULL;
5949 r = proc_cmdline(&line);
5952 if (r == 0) /* Container ... */
5957 FOREACH_WORD_QUOTED(w, l, line, state) {
5965 e = startswith(n, "systemd.restore_state=");
5969 k = parse_boolean(e);
5977 int proc_cmdline(char **ret) {
5980 if (detect_container(NULL) > 0) {
5981 char *buf = NULL, *p;
5984 r = read_full_file("/proc/1/cmdline", &buf, &sz);
5988 for (p = buf; p + 1 < buf + sz; p++)
5997 r = read_one_line_file("/proc/cmdline", ret);
6004 int parse_proc_cmdline(int (*parse_item)(const char *key, const char *value)) {
6005 _cleanup_free_ char *line = NULL;
6012 r = proc_cmdline(&line);
6014 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
6018 FOREACH_WORD_QUOTED(w, l, line, state) {
6019 char word[l+1], *value;
6024 /* Filter out arguments that are intended only for the
6026 if (!in_initrd() && startswith(word, "rd."))
6029 value = strchr(word, '=');
6033 r = parse_item(word, value);
6041 int container_get_leader(const char *machine, pid_t *pid) {
6042 _cleanup_free_ char *s = NULL, *class = NULL;
6050 p = strappenda("/run/systemd/machines/", machine);
6051 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
6059 if (!streq_ptr(class, "container"))
6062 r = parse_pid(s, &leader);
6072 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *netns_fd, int *root_fd) {
6073 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1, netnsfd = -1;
6081 mntns = procfs_file_alloca(pid, "ns/mnt");
6082 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6090 pidns = procfs_file_alloca(pid, "ns/pid");
6091 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6099 netns = procfs_file_alloca(pid, "ns/net");
6100 netnsfd = open(netns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6108 root = procfs_file_alloca(pid, "root");
6109 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
6115 *pidns_fd = pidnsfd;
6118 *mntns_fd = mntnsfd;
6121 *netns_fd = netnsfd;
6126 pidnsfd = mntnsfd = netnsfd = -1;
6131 int namespace_enter(int pidns_fd, int mntns_fd, int netns_fd, int root_fd) {
6134 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6138 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6142 if (setns(netns_fd, CLONE_NEWNET) < 0)
6146 if (fchdir(root_fd) < 0)
6149 if (chroot(".") < 0)
6153 if (setresgid(0, 0, 0) < 0)
6156 if (setgroups(0, NULL) < 0)
6159 if (setresuid(0, 0, 0) < 0)
6165 bool pid_is_unwaited(pid_t pid) {
6166 /* Checks whether a PID is still valid at all, including a zombie */
6171 if (kill(pid, 0) >= 0)
6174 return errno != ESRCH;
6177 bool pid_is_alive(pid_t pid) {
6180 /* Checks whether a PID is still valid and not a zombie */
6185 r = get_process_state(pid);
6186 if (r == -ENOENT || r == 'Z')
6192 int getpeercred(int fd, struct ucred *ucred) {
6193 socklen_t n = sizeof(struct ucred);
6200 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6204 if (n != sizeof(struct ucred))
6207 /* Check if the data is actually useful and not suppressed due
6208 * to namespacing issues */
6216 int getpeersec(int fd, char **ret) {
6228 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6232 if (errno != ERANGE)
6239 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6255 /* This is much like like mkostemp() but is subject to umask(). */
6256 int mkostemp_safe(char *pattern, int flags) {
6257 _cleanup_umask_ mode_t u;
6264 fd = mkostemp(pattern, flags);
6271 int open_tmpfile(const char *path, int flags) {
6278 /* Try O_TMPFILE first, if it is supported */
6279 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6284 /* Fall back to unguessable name + unlinking */
6285 p = strappenda(path, "/systemd-tmp-XXXXXX");
6287 fd = mkostemp_safe(p, flags);
6295 int fd_warn_permissions(const char *path, int fd) {
6298 if (fstat(fd, &st) < 0)
6301 if (st.st_mode & 0111)
6302 log_warning("Configuration file %s is marked executable. Please remove executable permission bits. Proceeding anyway.", path);
6304 if (st.st_mode & 0002)
6305 log_warning("Configuration file %s is marked world-writable. Please remove world writability permission bits. Proceeding anyway.", path);
6307 if (getpid() == 1 && (st.st_mode & 0044) != 0044)
6308 log_warning("Configuration file %s is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.", path);
6313 unsigned long personality_from_string(const char *p) {
6315 /* Parse a personality specifier. We introduce our own
6316 * identifiers that indicate specific ABIs, rather than just
6317 * hints regarding the register size, since we want to keep
6318 * things open for multiple locally supported ABIs for the
6319 * same register size. We try to reuse the ABI identifiers
6320 * used by libseccomp. */
6322 #if defined(__x86_64__)
6324 if (streq(p, "x86"))
6327 if (streq(p, "x86-64"))
6330 #elif defined(__i386__)
6332 if (streq(p, "x86"))
6336 /* personality(7) documents that 0xffffffffUL is used for
6337 * querying the current personality, hence let's use that here
6338 * as error indicator. */
6339 return 0xffffffffUL;
6342 const char* personality_to_string(unsigned long p) {
6344 #if defined(__x86_64__)
6346 if (p == PER_LINUX32)
6352 #elif defined(__i386__)
6361 uint64_t physical_memory(void) {
6364 /* We return this as uint64_t in case we are running as 32bit
6365 * process on a 64bit kernel with huge amounts of memory */
6367 mem = sysconf(_SC_PHYS_PAGES);
6370 return (uint64_t) mem * (uint64_t) page_size();
6373 char* mount_test_option(const char *haystack, const char *needle) {
6375 struct mntent me = {
6376 .mnt_opts = (char*) haystack
6381 /* Like glibc's hasmntopt(), but works on a string, not a
6387 return hasmntopt(&me, needle);
6390 void hexdump(FILE *f, const void *p, size_t s) {
6391 const uint8_t *b = p;
6394 assert(s == 0 || b);
6399 fprintf(f, "%04x ", n);
6401 for (i = 0; i < 16; i++) {
6406 fprintf(f, "%02x ", b[i]);
6414 for (i = 0; i < 16; i++) {
6419 fputc(isprint(b[i]) ? (char) b[i] : '.', f);
6433 int update_reboot_param_file(const char *param) {
6438 r = write_string_file(REBOOT_PARAM_FILE, param);
6440 log_error("Failed to write reboot param to "
6441 REBOOT_PARAM_FILE": %s", strerror(-r));
6443 unlink(REBOOT_PARAM_FILE);
6448 int umount_recursive(const char *prefix, int flags) {
6452 /* Try to umount everything recursively below a
6453 * directory. Also, take care of stacked mounts, and keep
6454 * unmounting them until they are gone. */
6457 _cleanup_fclose_ FILE *proc_self_mountinfo = NULL;
6462 proc_self_mountinfo = fopen("/proc/self/mountinfo", "re");
6463 if (!proc_self_mountinfo)
6467 _cleanup_free_ char *path = NULL, *p = NULL;
6470 k = fscanf(proc_self_mountinfo,
6471 "%*s " /* (1) mount id */
6472 "%*s " /* (2) parent id */
6473 "%*s " /* (3) major:minor */
6474 "%*s " /* (4) root */
6475 "%ms " /* (5) mount point */
6476 "%*s" /* (6) mount options */
6477 "%*[^-]" /* (7) optional fields */
6478 "- " /* (8) separator */
6479 "%*s " /* (9) file system type */
6480 "%*s" /* (10) mount source */
6481 "%*s" /* (11) mount options 2 */
6482 "%*[^\n]", /* some rubbish at the end */
6491 p = cunescape(path);
6495 if (!path_startswith(p, prefix))
6498 if (umount2(p, flags) < 0) {
6514 int bind_remount_recursive(const char *prefix, bool ro) {
6515 _cleanup_set_free_free_ Set *done = NULL;
6516 _cleanup_free_ char *cleaned = NULL;
6519 /* Recursively remount a directory (and all its submounts)
6520 * read-only or read-write. If the directory is already
6521 * mounted, we reuse the mount and simply mark it
6522 * MS_BIND|MS_RDONLY (or remove the MS_RDONLY for read-write
6523 * operation). If it isn't we first make it one. Afterwards we
6524 * apply MS_BIND|MS_RDONLY (or remove MS_RDONLY) to all
6525 * submounts we can access, too. When mounts are stacked on
6526 * the same mount point we only care for each individual
6527 * "top-level" mount on each point, as we cannot
6528 * influence/access the underlying mounts anyway. We do not
6529 * have any effect on future submounts that might get
6530 * propagated, they migt be writable. This includes future
6531 * submounts that have been triggered via autofs. */
6533 cleaned = strdup(prefix);
6537 path_kill_slashes(cleaned);
6539 done = set_new(string_hash_func, string_compare_func);
6544 _cleanup_fclose_ FILE *proc_self_mountinfo = NULL;
6545 _cleanup_set_free_free_ Set *todo = NULL;
6546 bool top_autofs = false;
6549 todo = set_new(string_hash_func, string_compare_func);
6553 proc_self_mountinfo = fopen("/proc/self/mountinfo", "re");
6554 if (!proc_self_mountinfo)
6558 _cleanup_free_ char *path = NULL, *p = NULL, *type = NULL;
6561 k = fscanf(proc_self_mountinfo,
6562 "%*s " /* (1) mount id */
6563 "%*s " /* (2) parent id */
6564 "%*s " /* (3) major:minor */
6565 "%*s " /* (4) root */
6566 "%ms " /* (5) mount point */
6567 "%*s" /* (6) mount options (superblock) */
6568 "%*[^-]" /* (7) optional fields */
6569 "- " /* (8) separator */
6570 "%ms " /* (9) file system type */
6571 "%*s" /* (10) mount source */
6572 "%*s" /* (11) mount options (bind mount) */
6573 "%*[^\n]", /* some rubbish at the end */
6583 p = cunescape(path);
6587 /* Let's ignore autofs mounts. If they aren't
6588 * triggered yet, we want to avoid triggering
6589 * them, as we don't make any guarantees for
6590 * future submounts anyway. If they are
6591 * already triggered, then we will find
6592 * another entry for this. */
6593 if (streq(type, "autofs")) {
6594 top_autofs = top_autofs || path_equal(cleaned, p);
6598 if (path_startswith(p, cleaned) &&
6599 !set_contains(done, p)) {
6601 r = set_consume(todo, p);
6611 /* If we have no submounts to process anymore and if
6612 * the root is either already done, or an autofs, we
6614 if (set_isempty(todo) &&
6615 (top_autofs || set_contains(done, cleaned)))
6618 if (!set_contains(done, cleaned) &&
6619 !set_contains(todo, cleaned)) {
6620 /* The prefix directory itself is not yet a
6621 * mount, make it one. */
6622 if (mount(cleaned, cleaned, NULL, MS_BIND|MS_REC, NULL) < 0)
6625 if (mount(NULL, prefix, NULL, MS_BIND|MS_REMOUNT|(ro ? MS_RDONLY : 0), NULL) < 0)
6628 x = strdup(cleaned);
6632 r = set_consume(done, x);
6637 while ((x = set_steal_first(todo))) {
6639 r = set_consume(done, x);
6645 if (mount(NULL, x, NULL, MS_BIND|MS_REMOUNT|(ro ? MS_RDONLY : 0), NULL) < 0) {
6647 /* Deal with mount points that are
6648 * obstructed by a later mount */
6650 if (errno != ENOENT)
6658 int fflush_and_check(FILE *f) {
6665 return errno ? -errno : -EIO;
6670 char *tempfn_xxxxxx(const char *p) {
6677 t = new(char, strlen(p) + 1 + 6 + 1);
6684 strcpy(stpcpy(stpcpy(mempcpy(t, p, k), "."), fn), "XXXXXX");
6689 char *tempfn_random(const char *p) {
6698 t = new(char, strlen(p) + 1 + 16 + 1);
6705 x = stpcpy(stpcpy(mempcpy(t, p, k), "."), fn);
6708 for (i = 0; i < 16; i++) {
6709 *(x++) = hexchar(u & 0xF);