1 /* SPDX-License-Identifier: LGPL-2.1+ */
3 Copyright 2010 Lennart Poettering
4 Copyright 2010 Harald Hoyer
9 #include "fileio-label.h"
11 #include "selinux-util.h"
13 int write_string_file_atomic_label_ts(const char *fn, const char *line, struct timespec *ts) {
16 r = mac_selinux_create_file_prepare(fn, S_IFREG);
20 r = write_string_file_ts(fn, line, WRITE_STRING_FILE_CREATE|WRITE_STRING_FILE_ATOMIC, ts);
22 mac_selinux_create_file_clear();
27 #if 0 /// UNNEEDED by elogind
28 int write_env_file_label(const char *fname, char **l) {
31 r = mac_selinux_create_file_prepare(fname, S_IFREG);
35 r = write_env_file(fname, l);
37 mac_selinux_create_file_clear();
42 int fopen_temporary_label(const char *target,
43 const char *path, FILE **f, char **temp_path) {
46 r = mac_selinux_create_file_prepare(target, S_IFREG);
50 r = fopen_temporary(path, f, temp_path);
52 mac_selinux_create_file_clear();
58 int create_shutdown_run_nologin_or_warn(void) {
61 /* This is used twice: once in systemd-user-sessions.service, in order to block logins when we actually go
62 * down, and once in systemd-logind.service when shutdowns are scheduled, and logins are to be turned off a bit
63 * in advance. We use the same wording of the message in both cases. */
65 r = write_string_file_atomic_label("/run/nologin",
66 "System is going down. Unprivileged users are not permitted to log in anymore. "
67 "For technical details, see pam_nologin(8).");
69 return log_error_errno(r, "Failed to create /run/nologin: %m");