1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
22 #include <dbus/dbus.h>
28 #include <sys/types.h>
34 #include <sys/prctl.h>
35 #include <sys/mount.h>
39 #include "load-fragment.h"
42 #include "conf-parser.h"
43 #include "bus-errors.h"
51 #include "path-util.h"
52 #include "switch-root.h"
53 #include "capability.h"
57 #include "sd-daemon.h"
59 #include "mount-setup.h"
60 #include "loopback-setup.h"
62 #include "kmod-setup.h"
64 #include "hostname-setup.h"
65 #include "machine-id-setup.h"
66 #include "locale-setup.h"
67 #include "selinux-setup.h"
68 #include "ima-setup.h"
70 #include "smack-setup.h"
77 ACTION_DUMP_CONFIGURATION_ITEMS,
79 } arg_action = ACTION_RUN;
81 static char *arg_default_unit = NULL;
82 static SystemdRunningAs arg_running_as = _SYSTEMD_RUNNING_AS_INVALID;
84 static bool arg_dump_core = true;
85 static bool arg_crash_shell = false;
86 static int arg_crash_chvt = -1;
87 static bool arg_confirm_spawn = false;
88 static bool arg_show_status = true;
89 static bool arg_switched_root = false;
90 static char **arg_default_controllers = NULL;
91 static char ***arg_join_controllers = NULL;
92 static ExecOutput arg_default_std_output = EXEC_OUTPUT_JOURNAL;
93 static ExecOutput arg_default_std_error = EXEC_OUTPUT_INHERIT;
94 static usec_t arg_runtime_watchdog = 0;
95 static usec_t arg_shutdown_watchdog = 10 * USEC_PER_MINUTE;
96 static struct rlimit *arg_default_rlimit[RLIMIT_NLIMITS] = {};
97 static uint64_t arg_capability_bounding_set_drop = 0;
98 static nsec_t arg_timer_slack_nsec = (nsec_t) -1;
100 static FILE* serialization = NULL;
102 static void nop_handler(int sig) {
105 _noreturn_ static void crash(int sig) {
108 log_error("Caught <%s>, not dumping core.", signal_to_string(sig));
110 struct sigaction sa = {
111 .sa_handler = nop_handler,
112 .sa_flags = SA_NOCLDSTOP|SA_RESTART,
116 /* We want to wait for the core process, hence let's enable SIGCHLD */
117 assert_se(sigaction(SIGCHLD, &sa, NULL) == 0);
121 log_error("Caught <%s>, cannot fork for core dump: %s", signal_to_string(sig), strerror(errno));
124 struct rlimit rl = {};
126 /* Enable default signal handler for core dump */
128 sa.sa_handler = SIG_DFL;
129 assert_se(sigaction(sig, &sa, NULL) == 0);
131 /* Don't limit the core dump size */
132 rl.rlim_cur = RLIM_INFINITY;
133 rl.rlim_max = RLIM_INFINITY;
134 setrlimit(RLIMIT_CORE, &rl);
136 /* Just to be sure... */
137 assert_se(chdir("/") == 0);
139 /* Raise the signal again */
142 assert_not_reached("We shouldn't be here...");
149 /* Order things nicely. */
150 r = wait_for_terminate(pid, &status);
152 log_error("Caught <%s>, waitpid() failed: %s", signal_to_string(sig), strerror(-r));
153 else if (status.si_code != CLD_DUMPED)
154 log_error("Caught <%s>, core dump failed.", signal_to_string(sig));
156 log_error("Caught <%s>, dumped core as pid %lu.", signal_to_string(sig), (unsigned long) pid);
161 chvt(arg_crash_chvt);
163 if (arg_crash_shell) {
164 struct sigaction sa = {
165 .sa_handler = SIG_IGN,
166 .sa_flags = SA_NOCLDSTOP|SA_NOCLDWAIT|SA_RESTART,
170 log_info("Executing crash shell in 10s...");
173 /* Let the kernel reap children for us */
174 assert_se(sigaction(SIGCHLD, &sa, NULL) == 0);
178 log_error("Failed to fork off crash shell: %m");
180 make_console_stdio();
181 execl("/bin/sh", "/bin/sh", NULL);
183 log_error("execl() failed: %m");
187 log_info("Successfully spawned crash shell as pid %lu.", (unsigned long) pid);
190 log_info("Freezing execution.");
194 static void install_crash_handler(void) {
195 struct sigaction sa = {
197 .sa_flags = SA_NODEFER,
200 sigaction_many(&sa, SIGNALS_CRASH_HANDLER, -1);
203 static int console_setup(bool do_reset) {
206 /* If we are init, we connect stdin/stdout/stderr to /dev/null
207 * and make sure we don't have a controlling tty. */
214 tty_fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
216 log_error("Failed to open /dev/console: %s", strerror(-tty_fd));
220 /* We don't want to force text mode.
221 * plymouth may be showing pictures already from initrd. */
222 r = reset_terminal_fd(tty_fd, false);
224 log_error("Failed to reset /dev/console: %s", strerror(-r));
226 close_nointr_nofail(tty_fd);
230 static int set_default_unit(const char *u) {
239 free(arg_default_unit);
240 arg_default_unit = c;
245 static int parse_proc_cmdline_word(const char *word) {
247 static const char * const rlmap[] = {
248 "emergency", SPECIAL_EMERGENCY_TARGET,
249 "-b", SPECIAL_EMERGENCY_TARGET,
250 "single", SPECIAL_RESCUE_TARGET,
251 "-s", SPECIAL_RESCUE_TARGET,
252 "s", SPECIAL_RESCUE_TARGET,
253 "S", SPECIAL_RESCUE_TARGET,
254 "1", SPECIAL_RESCUE_TARGET,
255 "2", SPECIAL_RUNLEVEL2_TARGET,
256 "3", SPECIAL_RUNLEVEL3_TARGET,
257 "4", SPECIAL_RUNLEVEL4_TARGET,
258 "5", SPECIAL_RUNLEVEL5_TARGET,
263 if (startswith(word, "systemd.unit=")) {
266 return set_default_unit(word + 13);
268 } else if (startswith(word, "rd.systemd.unit=")) {
271 return set_default_unit(word + 16);
273 } else if (startswith(word, "systemd.log_target=")) {
275 if (log_set_target_from_string(word + 19) < 0)
276 log_warning("Failed to parse log target %s. Ignoring.", word + 19);
278 } else if (startswith(word, "systemd.log_level=")) {
280 if (log_set_max_level_from_string(word + 18) < 0)
281 log_warning("Failed to parse log level %s. Ignoring.", word + 18);
283 } else if (startswith(word, "systemd.log_color=")) {
285 if (log_show_color_from_string(word + 18) < 0)
286 log_warning("Failed to parse log color setting %s. Ignoring.", word + 18);
288 } else if (startswith(word, "systemd.log_location=")) {
290 if (log_show_location_from_string(word + 21) < 0)
291 log_warning("Failed to parse log location setting %s. Ignoring.", word + 21);
293 } else if (startswith(word, "systemd.dump_core=")) {
296 if ((r = parse_boolean(word + 18)) < 0)
297 log_warning("Failed to parse dump core switch %s. Ignoring.", word + 18);
301 } else if (startswith(word, "systemd.crash_shell=")) {
304 if ((r = parse_boolean(word + 20)) < 0)
305 log_warning("Failed to parse crash shell switch %s. Ignoring.", word + 20);
309 } else if (startswith(word, "systemd.confirm_spawn=")) {
312 if ((r = parse_boolean(word + 22)) < 0)
313 log_warning("Failed to parse confirm spawn switch %s. Ignoring.", word + 22);
315 arg_confirm_spawn = r;
317 } else if (startswith(word, "systemd.crash_chvt=")) {
320 if (safe_atoi(word + 19, &k) < 0)
321 log_warning("Failed to parse crash chvt switch %s. Ignoring.", word + 19);
325 } else if (startswith(word, "systemd.show_status=")) {
328 if ((r = parse_boolean(word + 20)) < 0)
329 log_warning("Failed to parse show status switch %s. Ignoring.", word + 20);
332 } else if (startswith(word, "systemd.default_standard_output=")) {
335 if ((r = exec_output_from_string(word + 32)) < 0)
336 log_warning("Failed to parse default standard output switch %s. Ignoring.", word + 32);
338 arg_default_std_output = r;
339 } else if (startswith(word, "systemd.default_standard_error=")) {
342 if ((r = exec_output_from_string(word + 31)) < 0)
343 log_warning("Failed to parse default standard error switch %s. Ignoring.", word + 31);
345 arg_default_std_error = r;
346 } else if (startswith(word, "systemd.setenv=")) {
347 _cleanup_free_ char *cenv = NULL;
351 cenv = strdup(word + 15);
355 eq = strchr(cenv, '=');
357 if (!env_name_is_valid(cenv))
358 log_warning("Environment variable name '%s' is not valid. Ignoring.", cenv);
362 log_warning("Unsetting environment variable '%s' failed, ignoring: %m", cenv);
365 if (!env_assignment_is_valid(cenv))
366 log_warning("Environment variable assignment '%s' is not valid. Ignoring.", cenv);
369 r = setenv(cenv, eq + 1, 1);
371 log_warning("Setting environment variable '%s=%s' failed, ignoring: %m", cenv, eq + 1);
375 } else if (startswith(word, "systemd.") ||
376 (in_initrd() && startswith(word, "rd.systemd."))) {
380 /* Ignore systemd.journald.xyz and friends */
382 if (startswith(c, "rd."))
384 if (startswith(c, "systemd."))
386 if (c[strcspn(c, ".=")] != '.') {
388 log_warning("Unknown kernel switch %s. Ignoring.", word);
390 log_info("Supported kernel switches:\n"
391 "systemd.unit=UNIT Default unit to start\n"
392 "rd.systemd.unit=UNIT Default unit to start when run in initrd\n"
393 "systemd.dump_core=0|1 Dump core on crash\n"
394 "systemd.crash_shell=0|1 Run shell on crash\n"
395 "systemd.crash_chvt=N Change to VT #N on crash\n"
396 "systemd.confirm_spawn=0|1 Confirm every process spawn\n"
397 "systemd.show_status=0|1 Show status updates on the console during bootup\n"
398 "systemd.log_target=console|kmsg|journal|journal-or-kmsg|syslog|syslog-or-kmsg|null\n"
400 "systemd.log_level=LEVEL Log level\n"
401 "systemd.log_color=0|1 Highlight important log messages\n"
402 "systemd.log_location=0|1 Include code location in log messages\n"
403 "systemd.default_standard_output=null|tty|syslog|syslog+console|kmsg|kmsg+console|journal|journal+console\n"
404 " Set default log output for services\n"
405 "systemd.default_standard_error=null|tty|syslog|syslog+console|kmsg|kmsg+console|journal|journal+console\n"
406 " Set default log error output for services\n"
407 "systemd.setenv=ASSIGNMENT Set an environment variable for all spawned processes\n");
410 } else if (streq(word, "quiet"))
411 arg_show_status = false;
412 else if (!in_initrd()) {
415 /* SysV compatibility */
416 for (i = 0; i < ELEMENTSOF(rlmap); i += 2)
417 if (streq(word, rlmap[i]))
418 return set_default_unit(rlmap[i+1]);
424 static int config_parse_level2(
425 const char *filename,
438 log_set_max_level_from_string(rvalue);
442 static int config_parse_target(
443 const char *filename,
456 log_set_target_from_string(rvalue);
460 static int config_parse_color(
461 const char *filename,
474 log_show_color_from_string(rvalue);
478 static int config_parse_location(
479 const char *filename,
492 log_show_location_from_string(rvalue);
496 static int config_parse_cpu_affinity2(
497 const char *filename,
516 FOREACH_WORD_QUOTED(w, l, rvalue, state) {
521 if (!(t = strndup(w, l)))
524 r = safe_atou(t, &cpu);
528 if (!(c = cpu_set_malloc(&ncpus)))
531 if (r < 0 || cpu >= ncpus) {
532 log_error("[%s:%u] Failed to parse CPU affinity: %s", filename, line, rvalue);
537 CPU_SET_S(cpu, CPU_ALLOC_SIZE(ncpus), c);
541 if (sched_setaffinity(0, CPU_ALLOC_SIZE(ncpus), c) < 0)
542 log_warning("Failed to set CPU affinity: %m");
550 static void strv_free_free(char ***l) {
562 static void free_join_controllers(void) {
563 if (!arg_join_controllers)
566 strv_free_free(arg_join_controllers);
567 arg_join_controllers = NULL;
570 static int config_parse_join_controllers(
571 const char *filename,
588 free_join_controllers();
590 FOREACH_WORD_QUOTED(w, length, rvalue, state) {
593 s = strndup(w, length);
597 l = strv_split(s, ",");
602 if (strv_length(l) <= 1) {
607 if (!arg_join_controllers) {
608 arg_join_controllers = new(char**, 2);
609 if (!arg_join_controllers) {
614 arg_join_controllers[0] = l;
615 arg_join_controllers[1] = NULL;
622 t = new0(char**, n+2);
630 for (a = arg_join_controllers; *a; a++) {
632 if (strv_overlap(*a, l)) {
635 c = strv_merge(*a, l);
658 t[n++] = strv_uniq(l);
660 strv_free_free(arg_join_controllers);
661 arg_join_controllers = t;
668 static int parse_config_file(void) {
670 const ConfigTableItem items[] = {
671 { "Manager", "LogLevel", config_parse_level2, 0, NULL },
672 { "Manager", "LogTarget", config_parse_target, 0, NULL },
673 { "Manager", "LogColor", config_parse_color, 0, NULL },
674 { "Manager", "LogLocation", config_parse_location, 0, NULL },
675 { "Manager", "DumpCore", config_parse_bool, 0, &arg_dump_core },
676 { "Manager", "CrashShell", config_parse_bool, 0, &arg_crash_shell },
677 { "Manager", "ShowStatus", config_parse_bool, 0, &arg_show_status },
678 { "Manager", "CrashChVT", config_parse_int, 0, &arg_crash_chvt },
679 { "Manager", "CPUAffinity", config_parse_cpu_affinity2, 0, NULL },
680 { "Manager", "DefaultControllers", config_parse_strv, 0, &arg_default_controllers },
681 { "Manager", "DefaultStandardOutput", config_parse_output, 0, &arg_default_std_output },
682 { "Manager", "DefaultStandardError", config_parse_output, 0, &arg_default_std_error },
683 { "Manager", "JoinControllers", config_parse_join_controllers, 0, &arg_join_controllers },
684 { "Manager", "RuntimeWatchdogSec", config_parse_sec, 0, &arg_runtime_watchdog },
685 { "Manager", "ShutdownWatchdogSec", config_parse_sec, 0, &arg_shutdown_watchdog },
686 { "Manager", "CapabilityBoundingSet", config_parse_bounding_set, 0, &arg_capability_bounding_set_drop },
687 { "Manager", "TimerSlackNSec", config_parse_nsec, 0, &arg_timer_slack_nsec },
688 { "Manager", "DefaultLimitCPU", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_CPU]},
689 { "Manager", "DefaultLimitFSIZE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_FSIZE]},
690 { "Manager", "DefaultLimitDATA", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_DATA]},
691 { "Manager", "DefaultLimitSTACK", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_STACK]},
692 { "Manager", "DefaultLimitCORE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_CORE]},
693 { "Manager", "DefaultLimitRSS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RSS]},
694 { "Manager", "DefaultLimitNOFILE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NOFILE]},
695 { "Manager", "DefaultLimitAS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_AS]},
696 { "Manager", "DefaultLimitNPROC", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NPROC]},
697 { "Manager", "DefaultLimitMEMLOCK", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_MEMLOCK]},
698 { "Manager", "DefaultLimitLOCKS", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_LOCKS]},
699 { "Manager", "DefaultLimitSIGPENDING",config_parse_limit, 0, &arg_default_rlimit[RLIMIT_SIGPENDING]},
700 { "Manager", "DefaultLimitMSGQUEUE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_MSGQUEUE]},
701 { "Manager", "DefaultLimitNICE", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_NICE]},
702 { "Manager", "DefaultLimitRTPRIO", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RTPRIO]},
703 { "Manager", "DefaultLimitRTTIME", config_parse_limit, 0, &arg_default_rlimit[RLIMIT_RTTIME]},
704 { NULL, NULL, NULL, 0, NULL }
711 fn = arg_running_as == SYSTEMD_SYSTEM ? SYSTEM_CONFIG_FILE : USER_CONFIG_FILE;
717 log_warning("Failed to open configuration file '%s': %m", fn);
721 r = config_parse(fn, f, "Manager\0", config_item_table_lookup, (void*) items, false, NULL);
723 log_warning("Failed to parse configuration file: %s", strerror(-r));
730 static int parse_proc_cmdline(void) {
731 char *line, *w, *state;
735 /* Don't read /proc/cmdline if we are in a container, since
736 * that is only relevant for the host system */
737 if (detect_container(NULL) > 0)
740 if ((r = read_one_line_file("/proc/cmdline", &line)) < 0) {
741 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
745 FOREACH_WORD_QUOTED(w, l, line, state) {
748 if (!(word = strndup(w, l))) {
753 r = parse_proc_cmdline_word(word);
755 log_error("Failed on cmdline argument %s: %s", word, strerror(-r));
770 static int parse_argv(int argc, char *argv[]) {
773 ARG_LOG_LEVEL = 0x100,
782 ARG_DUMP_CONFIGURATION_ITEMS,
790 ARG_DEFAULT_STD_OUTPUT,
791 ARG_DEFAULT_STD_ERROR
794 static const struct option options[] = {
795 { "log-level", required_argument, NULL, ARG_LOG_LEVEL },
796 { "log-target", required_argument, NULL, ARG_LOG_TARGET },
797 { "log-color", optional_argument, NULL, ARG_LOG_COLOR },
798 { "log-location", optional_argument, NULL, ARG_LOG_LOCATION },
799 { "unit", required_argument, NULL, ARG_UNIT },
800 { "system", no_argument, NULL, ARG_SYSTEM },
801 { "user", no_argument, NULL, ARG_USER },
802 { "test", no_argument, NULL, ARG_TEST },
803 { "help", no_argument, NULL, 'h' },
804 { "version", no_argument, NULL, ARG_VERSION },
805 { "dump-configuration-items", no_argument, NULL, ARG_DUMP_CONFIGURATION_ITEMS },
806 { "dump-core", optional_argument, NULL, ARG_DUMP_CORE },
807 { "crash-shell", optional_argument, NULL, ARG_CRASH_SHELL },
808 { "confirm-spawn", optional_argument, NULL, ARG_CONFIRM_SPAWN },
809 { "show-status", optional_argument, NULL, ARG_SHOW_STATUS },
810 { "deserialize", required_argument, NULL, ARG_DESERIALIZE },
811 { "switched-root", no_argument, NULL, ARG_SWITCHED_ROOT },
812 { "introspect", optional_argument, NULL, ARG_INTROSPECT },
813 { "default-standard-output", required_argument, NULL, ARG_DEFAULT_STD_OUTPUT, },
814 { "default-standard-error", required_argument, NULL, ARG_DEFAULT_STD_ERROR, },
826 while ((c = getopt_long(argc, argv, "hDbsz:", options, NULL)) >= 0)
831 if ((r = log_set_max_level_from_string(optarg)) < 0) {
832 log_error("Failed to parse log level %s.", optarg);
840 if ((r = log_set_target_from_string(optarg)) < 0) {
841 log_error("Failed to parse log target %s.", optarg);
850 if ((r = log_show_color_from_string(optarg)) < 0) {
851 log_error("Failed to parse log color setting %s.", optarg);
855 log_show_color(true);
859 case ARG_LOG_LOCATION:
862 if ((r = log_show_location_from_string(optarg)) < 0) {
863 log_error("Failed to parse log location setting %s.", optarg);
867 log_show_location(true);
871 case ARG_DEFAULT_STD_OUTPUT:
873 if ((r = exec_output_from_string(optarg)) < 0) {
874 log_error("Failed to parse default standard output setting %s.", optarg);
877 arg_default_std_output = r;
880 case ARG_DEFAULT_STD_ERROR:
882 if ((r = exec_output_from_string(optarg)) < 0) {
883 log_error("Failed to parse default standard error output setting %s.", optarg);
886 arg_default_std_error = r;
891 if ((r = set_default_unit(optarg)) < 0) {
892 log_error("Failed to set default unit %s: %s", optarg, strerror(-r));
899 arg_running_as = SYSTEMD_SYSTEM;
903 arg_running_as = SYSTEMD_USER;
907 arg_action = ACTION_TEST;
911 arg_action = ACTION_VERSION;
914 case ARG_DUMP_CONFIGURATION_ITEMS:
915 arg_action = ACTION_DUMP_CONFIGURATION_ITEMS;
919 r = optarg ? parse_boolean(optarg) : 1;
921 log_error("Failed to parse dump core boolean %s.", optarg);
927 case ARG_CRASH_SHELL:
928 r = optarg ? parse_boolean(optarg) : 1;
930 log_error("Failed to parse crash shell boolean %s.", optarg);
936 case ARG_CONFIRM_SPAWN:
937 r = optarg ? parse_boolean(optarg) : 1;
939 log_error("Failed to parse confirm spawn boolean %s.", optarg);
942 arg_confirm_spawn = r;
945 case ARG_SHOW_STATUS:
946 r = optarg ? parse_boolean(optarg) : 1;
948 log_error("Failed to parse show status boolean %s.", optarg);
954 case ARG_DESERIALIZE: {
958 r = safe_atoi(optarg, &fd);
959 if (r < 0 || fd < 0) {
960 log_error("Failed to parse deserialize option %s.", optarg);
961 return r < 0 ? r : -EINVAL;
964 fd_cloexec(fd, true);
968 log_error("Failed to open serialization fd: %m");
973 fclose(serialization);
980 case ARG_SWITCHED_ROOT:
981 arg_switched_root = true;
984 case ARG_INTROSPECT: {
985 const char * const * i = NULL;
987 for (i = bus_interface_table; *i; i += 2)
988 if (!optarg || streq(i[0], optarg)) {
989 fputs(DBUS_INTROSPECT_1_0_XML_DOCTYPE_DECL_NODE
992 fputs("</node>\n", stdout);
999 log_error("Unknown interface %s.", optarg);
1001 arg_action = ACTION_DONE;
1006 arg_action = ACTION_HELP;
1010 log_set_max_level(LOG_DEBUG);
1016 /* Just to eat away the sysvinit kernel
1017 * cmdline args without getopt() error
1018 * messages that we'll parse in
1019 * parse_proc_cmdline_word() or ignore. */
1023 if (getpid() != 1) {
1024 log_error("Unknown option code %c", c);
1031 if (optind < argc && getpid() != 1) {
1032 /* Hmm, when we aren't run as init system
1033 * let's complain about excess arguments */
1035 log_error("Excess arguments.");
1039 if (detect_container(NULL) > 0) {
1042 /* All /proc/cmdline arguments the kernel didn't
1043 * understand it passed to us. We're not really
1044 * interested in that usually since /proc/cmdline is
1045 * more interesting and complete. With one exception:
1046 * if we are run in a container /proc/cmdline is not
1047 * relevant for the container, hence we rely on argv[]
1050 for (a = argv; a < argv + argc; a++)
1051 if ((r = parse_proc_cmdline_word(*a)) < 0) {
1052 log_error("Failed on cmdline argument %s: %s", *a, strerror(-r));
1060 static int help(void) {
1062 printf("%s [OPTIONS...]\n\n"
1063 "Starts up and maintains the system or user services.\n\n"
1064 " -h --help Show this help\n"
1065 " --test Determine startup sequence, dump it and exit\n"
1066 " --dump-configuration-items Dump understood unit configuration items\n"
1067 " --introspect[=INTERFACE] Extract D-Bus interface data\n"
1068 " --unit=UNIT Set default unit\n"
1069 " --system Run a system instance, even if PID != 1\n"
1070 " --user Run a user instance\n"
1071 " --dump-core[=0|1] Dump core on crash\n"
1072 " --crash-shell[=0|1] Run shell on crash\n"
1073 " --confirm-spawn[=0|1] Ask for confirmation when spawning processes\n"
1074 " --show-status[=0|1] Show status updates on the console during bootup\n"
1075 " --log-target=TARGET Set log target (console, journal, syslog, kmsg, journal-or-kmsg, syslog-or-kmsg, null)\n"
1076 " --log-level=LEVEL Set log level (debug, info, notice, warning, err, crit, alert, emerg)\n"
1077 " --log-color[=0|1] Highlight important log messages\n"
1078 " --log-location[=0|1] Include code location in log messages\n"
1079 " --default-standard-output= Set default standard output for services\n"
1080 " --default-standard-error= Set default standard error output for services\n",
1081 program_invocation_short_name);
1086 static int version(void) {
1087 puts(PACKAGE_STRING);
1088 puts(SYSTEMD_FEATURES);
1093 static int prepare_reexecute(Manager *m, FILE **_f, FDSet **_fds, bool serialize_jobs) {
1102 /* Make sure nothing is really destructed when we shut down */
1105 r = manager_open_serialization(m, &f);
1107 log_error("Failed to create serialization file: %s", strerror(-r));
1114 log_error("Failed to allocate fd set: %s", strerror(-r));
1118 r = manager_serialize(m, f, fds, serialize_jobs);
1120 log_error("Failed to serialize state: %s", strerror(-r));
1124 if (fseeko(f, 0, SEEK_SET) < 0) {
1125 log_error("Failed to rewind serialization fd: %m");
1129 r = fd_cloexec(fileno(f), false);
1131 log_error("Failed to disable O_CLOEXEC for serialization: %s", strerror(-r));
1135 r = fdset_cloexec(fds, false);
1137 log_error("Failed to disable O_CLOEXEC for serialization fds: %s", strerror(-r));
1155 static int bump_rlimit_nofile(struct rlimit *saved_rlimit) {
1159 assert(saved_rlimit);
1161 /* Save the original RLIMIT_NOFILE so that we can reset it
1162 * later when transitioning from the initrd to the main
1163 * systemd or suchlike. */
1164 if (getrlimit(RLIMIT_NOFILE, saved_rlimit) < 0) {
1165 log_error("Reading RLIMIT_NOFILE failed: %m");
1169 /* Make sure forked processes get the default kernel setting */
1170 if (!arg_default_rlimit[RLIMIT_NOFILE]) {
1173 rl = newdup(struct rlimit, saved_rlimit, 1);
1177 arg_default_rlimit[RLIMIT_NOFILE] = rl;
1180 /* Bump up the resource limit for ourselves substantially */
1181 nl.rlim_cur = nl.rlim_max = 64*1024;
1182 r = setrlimit_closest(RLIMIT_NOFILE, &nl);
1184 log_error("Setting RLIMIT_NOFILE failed: %s", strerror(-r));
1191 static struct dual_timestamp* parse_initrd_timestamp(struct dual_timestamp *t) {
1193 unsigned long long a, b;
1197 e = getenv("RD_TIMESTAMP");
1201 if (sscanf(e, "%llu %llu", &a, &b) != 2)
1204 t->realtime = (usec_t) a;
1205 t->monotonic = (usec_t) b;
1210 static void test_mtab(void) {
1213 /* Check that /etc/mtab is a symlink */
1215 if (readlink_malloc("/etc/mtab", &p) >= 0) {
1218 b = streq(p, "/proc/self/mounts") || streq(p, "/proc/mounts");
1225 log_warning("/etc/mtab is not a symlink or not pointing to /proc/self/mounts. "
1226 "This is not supported anymore. "
1227 "Please make sure to replace this file by a symlink to avoid incorrect or misleading mount(8) output.");
1230 static void test_usr(void) {
1232 /* Check that /usr is not a separate fs */
1234 if (dir_is_empty("/usr") <= 0)
1237 log_warning("/usr appears to be on its own filesytem and is not already mounted. This is not a supported setup. "
1238 "Some things will probably break (sometimes even silently) in mysterious ways. "
1239 "Consult http://freedesktop.org/wiki/Software/systemd/separate-usr-is-broken for more information.");
1242 static void test_cgroups(void) {
1244 if (access("/proc/cgroups", F_OK) >= 0)
1247 log_warning("CONFIG_CGROUPS was not set when your kernel was compiled. "
1248 "Systems without control groups are not supported. "
1249 "We will now sleep for 10s, and then continue boot-up. "
1250 "Expect breakage and please do not file bugs. "
1251 "Instead fix your kernel and enable CONFIG_CGROUPS. "
1252 "Consult http://0pointer.de/blog/projects/cgroups-vs-cgroups.html for more information.");
1257 static int initialize_join_controllers(void) {
1258 /* By default, mount "cpu" + "cpuacct" together, and "net_cls"
1259 * + "net_prio". We'd like to add "cpuset" to the mix, but
1260 * "cpuset" does't really work for groups with no initialized
1263 arg_join_controllers = new(char**, 3);
1264 if (!arg_join_controllers)
1267 arg_join_controllers[0] = strv_new("cpu", "cpuacct", NULL);
1268 if (!arg_join_controllers[0])
1271 arg_join_controllers[1] = strv_new("net_cls", "net_prio", NULL);
1272 if (!arg_join_controllers[1])
1275 arg_join_controllers[2] = NULL;
1279 int main(int argc, char *argv[]) {
1281 int r, retval = EXIT_FAILURE;
1282 usec_t before_startup, after_startup;
1283 char timespan[FORMAT_TIMESPAN_MAX];
1285 bool reexecute = false;
1286 const char *shutdown_verb = NULL;
1287 dual_timestamp initrd_timestamp = { 0ULL, 0ULL };
1288 static char systemd[] = "systemd";
1289 bool skip_setup = false;
1291 bool loaded_policy = false;
1292 bool arm_reboot_watchdog = false;
1293 bool queue_default_job = false;
1294 char *switch_root_dir = NULL, *switch_root_init = NULL;
1295 static struct rlimit saved_rlimit_nofile = { 0, 0 };
1297 #ifdef HAVE_SYSV_COMPAT
1298 if (getpid() != 1 && strstr(program_invocation_short_name, "init")) {
1299 /* This is compatibility support for SysV, where
1300 * calling init as a user is identical to telinit. */
1303 execv(SYSTEMCTL_BINARY_PATH, argv);
1304 log_error("Failed to exec " SYSTEMCTL_BINARY_PATH ": %m");
1309 /* Determine if this is a reexecution or normal bootup. We do
1310 * the full command line parsing much later, so let's just
1311 * have a quick peek here. */
1312 if (strv_find(argv+1, "--deserialize"))
1315 /* If we have switched root, do all the special setup
1317 if (strv_find(argv+1, "--switched-root"))
1320 /* If we get started via the /sbin/init symlink then we are
1321 called 'init'. After a subsequent reexecution we are then
1322 called 'systemd'. That is confusing, hence let's call us
1323 systemd right-away. */
1324 program_invocation_short_name = systemd;
1325 prctl(PR_SET_NAME, systemd);
1330 log_show_color(isatty(STDERR_FILENO) > 0);
1332 if (getpid() == 1 && detect_container(NULL) <= 0) {
1334 /* Running outside of a container as PID 1 */
1335 arg_running_as = SYSTEMD_SYSTEM;
1337 log_set_target(LOG_TARGET_KMSG);
1341 char *rd_timestamp = NULL;
1343 dual_timestamp_get(&initrd_timestamp);
1344 asprintf(&rd_timestamp, "%llu %llu",
1345 (unsigned long long) initrd_timestamp.realtime,
1346 (unsigned long long) initrd_timestamp.monotonic);
1348 setenv("RD_TIMESTAMP", rd_timestamp, 1);
1354 mount_setup_early();
1355 if (selinux_setup(&loaded_policy) < 0)
1357 if (ima_setup() < 0)
1359 if (smack_setup() < 0)
1363 if (label_init(NULL) < 0)
1367 if (hwclock_is_localtime() > 0) {
1370 /* The first-time call to settimeofday() does a time warp in the kernel */
1371 r = hwclock_set_timezone(&min);
1373 log_error("Failed to apply local time delta, ignoring: %s", strerror(-r));
1375 log_info("RTC configured in localtime, applying delta of %i minutes to system time.", min);
1376 } else if (!in_initrd()) {
1378 * Do dummy first-time call to seal the kernel's time warp magic
1380 * Do not call this this from inside the initrd. The initrd might not
1381 * carry /etc/adjtime with LOCAL, but the real system could be set up
1382 * that way. In such case, we need to delay the time-warp or the sealing
1383 * until we reach the real system.
1385 hwclock_reset_timezone();
1387 /* Tell the kernel our time zone */
1388 r = hwclock_set_timezone(NULL);
1390 log_error("Failed to set the kernel's time zone, ignoring: %s", strerror(-r));
1394 /* Set the default for later on, but don't actually
1395 * open the logs like this for now. Note that if we
1396 * are transitioning from the initrd there might still
1397 * be journal fd open, and we shouldn't attempt
1398 * opening that before we parsed /proc/cmdline which
1399 * might redirect output elsewhere. */
1400 log_set_target(LOG_TARGET_JOURNAL_OR_KMSG);
1402 } else if (getpid() == 1) {
1404 /* Running inside a container, as PID 1 */
1405 arg_running_as = SYSTEMD_SYSTEM;
1406 log_set_target(LOG_TARGET_CONSOLE);
1409 /* For the later on, see above... */
1410 log_set_target(LOG_TARGET_JOURNAL);
1414 /* Running as user instance */
1415 arg_running_as = SYSTEMD_USER;
1416 log_set_target(LOG_TARGET_AUTO);
1420 /* Initialize default unit */
1421 r = set_default_unit(SPECIAL_DEFAULT_TARGET);
1423 log_error("Failed to set default unit %s: %s", SPECIAL_DEFAULT_TARGET, strerror(-r));
1427 r = initialize_join_controllers();
1431 /* Mount /proc, /sys and friends, so that /proc/cmdline and
1432 * /proc/$PID/fd is available. */
1433 if (getpid() == 1) {
1434 r = mount_setup(loaded_policy);
1439 /* Reset all signal handlers. */
1440 assert_se(reset_all_signal_handlers() == 0);
1442 /* If we are init, we can block sigkill. Yay. */
1443 ignore_signals(SIGNALS_IGNORE, -1);
1445 if (parse_config_file() < 0)
1448 if (arg_running_as == SYSTEMD_SYSTEM)
1449 if (parse_proc_cmdline() < 0)
1452 log_parse_environment();
1454 if (parse_argv(argc, argv) < 0)
1457 if (arg_action == ACTION_TEST &&
1459 log_error("Don't run test mode as root.");
1463 if (arg_running_as == SYSTEMD_USER &&
1464 arg_action == ACTION_RUN &&
1466 log_error("Trying to run as user instance, but the system has not been booted with systemd.");
1470 if (arg_running_as == SYSTEMD_SYSTEM &&
1471 arg_action == ACTION_RUN &&
1472 running_in_chroot() > 0) {
1473 log_error("Cannot be run in a chroot() environment.");
1477 if (arg_action == ACTION_HELP) {
1480 } else if (arg_action == ACTION_VERSION) {
1483 } else if (arg_action == ACTION_DUMP_CONFIGURATION_ITEMS) {
1484 unit_dump_config_items(stdout);
1485 retval = EXIT_SUCCESS;
1487 } else if (arg_action == ACTION_DONE) {
1488 retval = EXIT_SUCCESS;
1492 assert_se(arg_action == ACTION_RUN || arg_action == ACTION_TEST);
1494 /* Close logging fds, in order not to confuse fdset below */
1497 /* Remember open file descriptors for later deserialization */
1498 r = fdset_new_fill(&fds);
1500 log_error("Failed to allocate fd set: %s", strerror(-r));
1503 fdset_cloexec(fds, true);
1506 assert_se(fdset_remove(fds, fileno(serialization)) >= 0);
1508 /* Set up PATH unless it is already set */
1510 #ifdef HAVE_SPLIT_USR
1511 "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
1513 "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin",
1515 arg_running_as == SYSTEMD_SYSTEM);
1517 if (arg_running_as == SYSTEMD_SYSTEM) {
1518 /* Parse the data passed to us. We leave this
1519 * variables set, but the manager later on will not
1520 * pass them on to our children. */
1522 parse_initrd_timestamp(&initrd_timestamp);
1524 /* Unset some environment variables passed in from the
1525 * kernel that don't really make sense for us. */
1529 /* When we are invoked by a shell, these might be set,
1530 * but make little sense to pass on */
1535 /* When we are invoked by a chroot-like tool such as
1536 * nspawn, these might be set, but make little sense
1539 unsetenv("LOGNAME");
1541 /* We suppress the socket activation env vars, as
1542 * we'll try to match *any* open fd to units if
1544 unsetenv("LISTEN_FDS");
1545 unsetenv("LISTEN_PID");
1547 /* All other variables are left as is, so that clients
1548 * can still read them via /proc/1/environ */
1551 /* Move out of the way, so that we won't block unmounts */
1552 assert_se(chdir("/") == 0);
1554 if (arg_running_as == SYSTEMD_SYSTEM) {
1555 /* Become a session leader if we aren't one yet. */
1558 /* Disable the umask logic */
1562 /* Make sure D-Bus doesn't fiddle with the SIGPIPE handlers */
1563 dbus_connection_set_change_sigpipe(FALSE);
1565 /* Reset the console, but only if this is really init and we
1566 * are freshly booted */
1567 if (arg_running_as == SYSTEMD_SYSTEM && arg_action == ACTION_RUN)
1568 console_setup(getpid() == 1 && !skip_setup);
1570 /* Open the logging devices, if possible and necessary */
1573 /* Make sure we leave a core dump without panicing the
1575 if (getpid() == 1) {
1576 install_crash_handler();
1578 r = mount_cgroup_controllers(arg_join_controllers);
1583 if (arg_running_as == SYSTEMD_SYSTEM) {
1584 const char *virtualization = NULL;
1586 log_info(PACKAGE_STRING " running in system mode. (" SYSTEMD_FEATURES ")");
1588 detect_virtualization(&virtualization);
1590 log_info("Detected virtualization '%s'.", virtualization);
1593 log_info("Running in initial RAM disk.");
1596 log_debug(PACKAGE_STRING " running in user mode. (" SYSTEMD_FEATURES ")");
1598 if (arg_running_as == SYSTEMD_SYSTEM && !skip_setup) {
1601 if (arg_show_status || plymouth_running())
1616 if (arg_running_as == SYSTEMD_SYSTEM && arg_runtime_watchdog > 0)
1617 watchdog_set_timeout(&arg_runtime_watchdog);
1619 if (arg_timer_slack_nsec != (nsec_t) -1)
1620 if (prctl(PR_SET_TIMERSLACK, arg_timer_slack_nsec) < 0)
1621 log_error("Failed to adjust timer slack: %m");
1623 if (arg_capability_bounding_set_drop) {
1624 r = capability_bounding_set_drop(arg_capability_bounding_set_drop, true);
1626 log_error("Failed to drop capability bounding set: %s", strerror(-r));
1629 r = capability_bounding_set_drop_usermode(arg_capability_bounding_set_drop);
1631 log_error("Failed to drop capability bounding set of usermode helpers: %s", strerror(-r));
1636 if (arg_running_as == SYSTEMD_USER) {
1637 /* Become reaper of our children */
1638 if (prctl(PR_SET_CHILD_SUBREAPER, 1) < 0) {
1639 log_warning("Failed to make us a subreaper: %m");
1640 if (errno == EINVAL)
1641 log_info("Perhaps the kernel version is too old (< 3.4?)");
1645 if (arg_running_as == SYSTEMD_SYSTEM)
1646 bump_rlimit_nofile(&saved_rlimit_nofile);
1648 r = manager_new(arg_running_as, &m);
1650 log_error("Failed to allocate manager object: %s", strerror(-r));
1654 m->confirm_spawn = arg_confirm_spawn;
1655 m->default_std_output = arg_default_std_output;
1656 m->default_std_error = arg_default_std_error;
1657 m->runtime_watchdog = arg_runtime_watchdog;
1658 m->shutdown_watchdog = arg_shutdown_watchdog;
1660 manager_set_default_rlimits(m, arg_default_rlimit);
1662 if (dual_timestamp_is_set(&initrd_timestamp))
1663 m->initrd_timestamp = initrd_timestamp;
1665 if (arg_default_controllers)
1666 manager_set_default_controllers(m, arg_default_controllers);
1668 manager_set_show_status(m, arg_show_status);
1670 /* Remember whether we should queue the default job */
1671 queue_default_job = !serialization || arg_switched_root;
1673 before_startup = now(CLOCK_MONOTONIC);
1675 r = manager_startup(m, serialization, fds);
1677 log_error("Failed to fully start up daemon: %s", strerror(-r));
1679 /* This will close all file descriptors that were opened, but
1680 * not claimed by any unit. */
1683 if (serialization) {
1684 fclose(serialization);
1685 serialization = NULL;
1688 if (queue_default_job) {
1690 Unit *target = NULL;
1691 Job *default_unit_job;
1693 dbus_error_init(&error);
1695 log_debug("Activating default unit: %s", arg_default_unit);
1697 r = manager_load_unit(m, arg_default_unit, NULL, &error, &target);
1699 log_error("Failed to load default target: %s", bus_error(&error, r));
1700 dbus_error_free(&error);
1701 } else if (target->load_state == UNIT_ERROR)
1702 log_error("Failed to load default target: %s", strerror(-target->load_error));
1703 else if (target->load_state == UNIT_MASKED)
1704 log_error("Default target masked.");
1706 if (!target || target->load_state != UNIT_LOADED) {
1707 log_info("Trying to load rescue target...");
1709 r = manager_load_unit(m, SPECIAL_RESCUE_TARGET, NULL, &error, &target);
1711 log_error("Failed to load rescue target: %s", bus_error(&error, r));
1712 dbus_error_free(&error);
1714 } else if (target->load_state == UNIT_ERROR) {
1715 log_error("Failed to load rescue target: %s", strerror(-target->load_error));
1717 } else if (target->load_state == UNIT_MASKED) {
1718 log_error("Rescue target masked.");
1723 assert(target->load_state == UNIT_LOADED);
1725 if (arg_action == ACTION_TEST) {
1726 printf("-> By units:\n");
1727 manager_dump_units(m, stdout, "\t");
1730 r = manager_add_job(m, JOB_START, target, JOB_ISOLATE, false, &error, &default_unit_job);
1732 log_error("Default target could not be isolated, starting instead: %s", bus_error(&error, r));
1733 dbus_error_free(&error);
1735 r = manager_add_job(m, JOB_START, target, JOB_REPLACE, false, &error, &default_unit_job);
1737 log_error("Failed to start default target: %s", bus_error(&error, r));
1738 dbus_error_free(&error);
1742 log_error("Failed to isolate default target: %s", bus_error(&error, r));
1743 dbus_error_free(&error);
1747 m->default_unit_job_id = default_unit_job->id;
1749 after_startup = now(CLOCK_MONOTONIC);
1750 log_full(arg_action == ACTION_TEST ? LOG_INFO : LOG_DEBUG,
1751 "Loaded units and determined initial transaction in %s.",
1752 format_timespan(timespan, sizeof(timespan), after_startup - before_startup, 0));
1754 if (arg_action == ACTION_TEST) {
1755 printf("-> By jobs:\n");
1756 manager_dump_jobs(m, stdout, "\t");
1757 retval = EXIT_SUCCESS;
1763 r = manager_loop(m);
1765 log_error("Failed to run mainloop: %s", strerror(-r));
1769 switch (m->exit_code) {
1772 retval = EXIT_SUCCESS;
1776 case MANAGER_RELOAD:
1777 log_info("Reloading.");
1778 r = manager_reload(m);
1780 log_error("Failed to reload: %s", strerror(-r));
1783 case MANAGER_REEXECUTE:
1785 if (prepare_reexecute(m, &serialization, &fds, true) < 0)
1789 log_notice("Reexecuting.");
1792 case MANAGER_SWITCH_ROOT:
1793 /* Steal the switch root parameters */
1794 switch_root_dir = m->switch_root;
1795 switch_root_init = m->switch_root_init;
1796 m->switch_root = m->switch_root_init = NULL;
1798 if (!switch_root_init)
1799 if (prepare_reexecute(m, &serialization, &fds, false) < 0)
1803 log_notice("Switching root.");
1806 case MANAGER_REBOOT:
1807 case MANAGER_POWEROFF:
1809 case MANAGER_KEXEC: {
1810 static const char * const table[_MANAGER_EXIT_CODE_MAX] = {
1811 [MANAGER_REBOOT] = "reboot",
1812 [MANAGER_POWEROFF] = "poweroff",
1813 [MANAGER_HALT] = "halt",
1814 [MANAGER_KEXEC] = "kexec"
1817 assert_se(shutdown_verb = table[m->exit_code]);
1818 arm_reboot_watchdog = m->exit_code == MANAGER_REBOOT;
1820 log_notice("Shutting down.");
1825 assert_not_reached("Unknown exit code.");
1833 for (j = 0; j < RLIMIT_NLIMITS; j++)
1834 free(arg_default_rlimit[j]);
1836 free(arg_default_unit);
1837 strv_free(arg_default_controllers);
1838 free_join_controllers();
1845 unsigned i, args_size;
1847 /* Close and disarm the watchdog, so that the new
1848 * instance can reinitialize it, but doesn't get
1849 * rebooted while we do that */
1850 watchdog_close(true);
1852 /* Reset the RLIMIT_NOFILE to the kernel default, so
1853 * that the new systemd can pass the kernel default to
1854 * its child processes */
1855 if (saved_rlimit_nofile.rlim_cur > 0)
1856 setrlimit(RLIMIT_NOFILE, &saved_rlimit_nofile);
1858 if (switch_root_dir) {
1859 /* Kill all remaining processes from the
1860 * initrd, but don't wait for them, so that we
1861 * can handle the SIGCHLD for them after
1863 broadcast_signal(SIGTERM, false);
1865 /* And switch root */
1866 r = switch_root(switch_root_dir);
1868 log_error("Failed to switch root, ignoring: %s", strerror(-r));
1871 args_size = MAX(6, argc+1);
1872 args = newa(const char*, args_size);
1874 if (!switch_root_init) {
1877 /* First try to spawn ourselves with the right
1878 * path, and with full serialization. We do
1879 * this only if the user didn't specify an
1880 * explicit init to spawn. */
1882 assert(serialization);
1885 snprintf(sfd, sizeof(sfd), "%i", fileno(serialization));
1889 args[i++] = SYSTEMD_BINARY_PATH;
1890 if (switch_root_dir)
1891 args[i++] = "--switched-root";
1892 args[i++] = arg_running_as == SYSTEMD_SYSTEM ? "--system" : "--user";
1893 args[i++] = "--deserialize";
1897 assert(i <= args_size);
1898 execv(args[0], (char* const*) args);
1901 /* Try the fallback, if there is any, without any
1902 * serialization. We pass the original argv[] and
1903 * envp[]. (Well, modulo the ordering changes due to
1904 * getopt() in argv[], and some cleanups in envp[],
1905 * but let's hope that doesn't matter.) */
1907 if (serialization) {
1908 fclose(serialization);
1909 serialization = NULL;
1917 /* Reopen the console */
1918 make_console_stdio();
1920 for (j = 1, i = 1; j < argc; j++)
1921 args[i++] = argv[j];
1923 assert(i <= args_size);
1925 if (switch_root_init) {
1926 args[0] = switch_root_init;
1927 execv(args[0], (char* const*) args);
1928 log_warning("Failed to execute configured init, trying fallback: %m");
1931 args[0] = "/sbin/init";
1932 execv(args[0], (char* const*) args);
1934 if (errno == ENOENT) {
1935 log_warning("No /sbin/init, trying fallback");
1937 args[0] = "/bin/sh";
1939 execv(args[0], (char* const*) args);
1940 log_error("Failed to execute /bin/sh, giving up: %m");
1942 log_warning("Failed to execute /sbin/init, giving up: %m");
1946 fclose(serialization);
1951 if (shutdown_verb) {
1952 const char * command_line[] = {
1953 SYSTEMD_SHUTDOWN_BINARY_PATH,
1959 if (arm_reboot_watchdog && arg_shutdown_watchdog > 0) {
1962 /* If we reboot let's set the shutdown
1963 * watchdog and tell the shutdown binary to
1964 * repeatedly ping it */
1965 watchdog_set_timeout(&arg_shutdown_watchdog);
1966 watchdog_close(false);
1968 /* Tell the binary how often to ping */
1969 snprintf(e, sizeof(e), "WATCHDOG_USEC=%llu", (unsigned long long) arg_shutdown_watchdog);
1972 env_block = strv_append(environ, e);
1974 env_block = strv_copy(environ);
1975 watchdog_close(true);
1978 execve(SYSTEMD_SHUTDOWN_BINARY_PATH, (char **) command_line, env_block);
1980 log_error("Failed to execute shutdown binary, freezing: %m");