1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <sys/mount.h>
58 #include <linux/magic.h>
62 #include <sys/personality.h>
66 #ifdef HAVE_SYS_AUXV_H
78 #include "path-util.h"
79 #include "exit-status.h"
83 #include "device-nodes.h"
90 char **saved_argv = NULL;
92 static volatile unsigned cached_columns = 0;
93 static volatile unsigned cached_lines = 0;
95 size_t page_size(void) {
96 static thread_local size_t pgsz = 0;
99 if (_likely_(pgsz > 0))
102 r = sysconf(_SC_PAGESIZE);
109 bool streq_ptr(const char *a, const char *b) {
111 /* Like streq(), but tries to make sense of NULL pointers */
122 char* endswith(const char *s, const char *postfix) {
129 pl = strlen(postfix);
132 return (char*) s + sl;
137 if (memcmp(s + sl - pl, postfix, pl) != 0)
140 return (char*) s + sl - pl;
143 bool first_word(const char *s, const char *word) {
158 if (memcmp(s, word, wl) != 0)
162 strchr(WHITESPACE, s[wl]);
165 int close_nointr(int fd) {
172 else if (errno == EINTR)
174 * Just ignore EINTR; a retry loop is the wrong
175 * thing to do on Linux.
177 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
178 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
179 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
180 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
187 int safe_close(int fd) {
190 * Like close_nointr() but cannot fail. Guarantees errno is
191 * unchanged. Is a NOP with negative fds passed, and returns
192 * -1, so that it can be used in this syntax:
194 * fd = safe_close(fd);
200 /* The kernel might return pretty much any error code
201 * via close(), but the fd will be closed anyway. The
202 * only condition we want to check for here is whether
203 * the fd was invalid at all... */
205 assert_se(close_nointr(fd) != -EBADF);
211 void close_many(const int fds[], unsigned n_fd) {
214 assert(fds || n_fd <= 0);
216 for (i = 0; i < n_fd; i++)
220 int unlink_noerrno(const char *path) {
231 int parse_boolean(const char *v) {
234 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
236 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
242 int parse_pid(const char *s, pid_t* ret_pid) {
243 unsigned long ul = 0;
250 r = safe_atolu(s, &ul);
256 if ((unsigned long) pid != ul)
266 int parse_uid(const char *s, uid_t* ret_uid) {
267 unsigned long ul = 0;
274 r = safe_atolu(s, &ul);
280 if ((unsigned long) uid != ul)
287 int safe_atou(const char *s, unsigned *ret_u) {
295 l = strtoul(s, &x, 0);
297 if (!x || x == s || *x || errno)
298 return errno > 0 ? -errno : -EINVAL;
300 if ((unsigned long) (unsigned) l != l)
303 *ret_u = (unsigned) l;
307 int safe_atoi(const char *s, int *ret_i) {
315 l = strtol(s, &x, 0);
317 if (!x || x == s || *x || errno)
318 return errno > 0 ? -errno : -EINVAL;
320 if ((long) (int) l != l)
327 int safe_atollu(const char *s, long long unsigned *ret_llu) {
329 unsigned long long l;
335 l = strtoull(s, &x, 0);
337 if (!x || x == s || *x || errno)
338 return errno ? -errno : -EINVAL;
344 int safe_atolli(const char *s, long long int *ret_lli) {
352 l = strtoll(s, &x, 0);
354 if (!x || x == s || *x || errno)
355 return errno ? -errno : -EINVAL;
361 int safe_atod(const char *s, double *ret_d) {
368 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
373 if (!x || x == s || *x || errno)
374 return errno ? -errno : -EINVAL;
380 static size_t strcspn_escaped(const char *s, const char *reject) {
381 bool escaped = false;
384 for (n=0; s[n]; n++) {
387 else if (s[n] == '\\')
389 else if (strchr(reject, s[n]))
395 /* Split a string into words. */
396 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
399 current = *state ? *state : (char*) c;
401 if (!*current || *c == 0)
404 current += strspn(current, separator);
408 if (quoted && strchr("\'\"", *current)) {
409 char quotechar = *(current++);
410 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
411 *state = current+*l+1;
413 *l = strcspn_escaped(current, separator);
416 *l = strcspn(current, separator);
420 return (char*) current;
423 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
425 _cleanup_free_ char *line = NULL;
437 p = procfs_file_alloca(pid, "stat");
438 r = read_one_line_file(p, &line);
442 /* Let's skip the pid and comm fields. The latter is enclosed
443 * in () but does not escape any () in its value, so let's
444 * skip over it manually */
446 p = strrchr(line, ')');
458 if ((long unsigned) (pid_t) ppid != ppid)
461 *_ppid = (pid_t) ppid;
466 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
468 _cleanup_free_ char *line = NULL;
474 p = procfs_file_alloca(pid, "stat");
475 r = read_one_line_file(p, &line);
479 /* Let's skip the pid and comm fields. The latter is enclosed
480 * in () but does not escape any () in its value, so let's
481 * skip over it manually */
483 p = strrchr(line, ')');
505 "%*d " /* priority */
507 "%*d " /* num_threads */
508 "%*d " /* itrealvalue */
509 "%llu " /* starttime */,
516 int fchmod_umask(int fd, mode_t m) {
521 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
527 char *truncate_nl(char *s) {
530 s[strcspn(s, NEWLINE)] = 0;
534 int get_process_state(pid_t pid) {
538 _cleanup_free_ char *line = NULL;
542 p = procfs_file_alloca(pid, "stat");
543 r = read_one_line_file(p, &line);
547 p = strrchr(line, ')');
553 if (sscanf(p, " %c", &state) != 1)
556 return (unsigned char) state;
559 int get_process_comm(pid_t pid, char **name) {
566 p = procfs_file_alloca(pid, "comm");
568 r = read_one_line_file(p, name);
575 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
576 _cleanup_fclose_ FILE *f = NULL;
584 p = procfs_file_alloca(pid, "cmdline");
590 if (max_length == 0) {
591 size_t len = 0, allocated = 0;
593 while ((c = getc(f)) != EOF) {
595 if (!GREEDY_REALLOC(r, allocated, len+2)) {
600 r[len++] = isprint(c) ? c : ' ';
610 r = new(char, max_length);
616 while ((c = getc(f)) != EOF) {
638 size_t n = MIN(left-1, 3U);
645 /* Kernel threads have no argv[] */
646 if (r == NULL || r[0] == 0) {
647 _cleanup_free_ char *t = NULL;
655 h = get_process_comm(pid, &t);
659 r = strjoin("[", t, "]", NULL);
668 int is_kernel_thread(pid_t pid) {
680 p = procfs_file_alloca(pid, "cmdline");
685 count = fread(&c, 1, 1, f);
689 /* Kernel threads have an empty cmdline */
692 return eof ? 1 : -errno;
697 int get_process_capeff(pid_t pid, char **capeff) {
703 p = procfs_file_alloca(pid, "status");
705 return get_status_field(p, "\nCapEff:", capeff);
708 int get_process_exe(pid_t pid, char **name) {
716 p = procfs_file_alloca(pid, "exe");
718 r = readlink_malloc(p, name);
720 return r == -ENOENT ? -ESRCH : r;
722 d = endswith(*name, " (deleted)");
729 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
730 _cleanup_fclose_ FILE *f = NULL;
740 p = procfs_file_alloca(pid, "status");
745 FOREACH_LINE(line, f, return -errno) {
750 if (startswith(l, field)) {
752 l += strspn(l, WHITESPACE);
754 l[strcspn(l, WHITESPACE)] = 0;
756 return parse_uid(l, uid);
763 int get_process_uid(pid_t pid, uid_t *uid) {
764 return get_process_id(pid, "Uid:", uid);
767 int get_process_gid(pid_t pid, gid_t *gid) {
768 assert_cc(sizeof(uid_t) == sizeof(gid_t));
769 return get_process_id(pid, "Gid:", gid);
772 char *strnappend(const char *s, const char *suffix, size_t b) {
780 return strndup(suffix, b);
789 if (b > ((size_t) -1) - a)
792 r = new(char, a+b+1);
797 memcpy(r+a, suffix, b);
803 char *strappend(const char *s, const char *suffix) {
804 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
807 int readlink_malloc(const char *p, char **ret) {
822 n = readlink(p, c, l-1);
829 if ((size_t) n < l-1) {
840 int readlink_and_make_absolute(const char *p, char **r) {
841 _cleanup_free_ char *target = NULL;
848 j = readlink_malloc(p, &target);
852 k = file_in_same_dir(p, target);
860 int readlink_and_canonicalize(const char *p, char **r) {
867 j = readlink_and_make_absolute(p, &t);
871 s = canonicalize_file_name(t);
878 path_kill_slashes(*r);
883 int reset_all_signal_handlers(void) {
886 for (sig = 1; sig < _NSIG; sig++) {
887 struct sigaction sa = {
888 .sa_handler = SIG_DFL,
889 .sa_flags = SA_RESTART,
892 if (sig == SIGKILL || sig == SIGSTOP)
895 /* On Linux the first two RT signals are reserved by
896 * glibc, and sigaction() will return EINVAL for them. */
897 if ((sigaction(sig, &sa, NULL) < 0))
905 char *strstrip(char *s) {
908 /* Drops trailing whitespace. Modifies the string in
909 * place. Returns pointer to first non-space character */
911 s += strspn(s, WHITESPACE);
913 for (e = strchr(s, 0); e > s; e --)
914 if (!strchr(WHITESPACE, e[-1]))
922 char *delete_chars(char *s, const char *bad) {
925 /* Drops all whitespace, regardless where in the string */
927 for (f = s, t = s; *f; f++) {
939 char *file_in_same_dir(const char *path, const char *filename) {
946 /* This removes the last component of path and appends
947 * filename, unless the latter is absolute anyway or the
950 if (path_is_absolute(filename))
951 return strdup(filename);
953 if (!(e = strrchr(path, '/')))
954 return strdup(filename);
956 k = strlen(filename);
957 if (!(r = new(char, e-path+1+k+1)))
960 memcpy(r, path, e-path+1);
961 memcpy(r+(e-path)+1, filename, k+1);
966 int rmdir_parents(const char *path, const char *stop) {
975 /* Skip trailing slashes */
976 while (l > 0 && path[l-1] == '/')
982 /* Skip last component */
983 while (l > 0 && path[l-1] != '/')
986 /* Skip trailing slashes */
987 while (l > 0 && path[l-1] == '/')
993 if (!(t = strndup(path, l)))
996 if (path_startswith(stop, t)) {
1005 if (errno != ENOENT)
1012 char hexchar(int x) {
1013 static const char table[16] = "0123456789abcdef";
1015 return table[x & 15];
1018 int unhexchar(char c) {
1020 if (c >= '0' && c <= '9')
1023 if (c >= 'a' && c <= 'f')
1024 return c - 'a' + 10;
1026 if (c >= 'A' && c <= 'F')
1027 return c - 'A' + 10;
1032 char *hexmem(const void *p, size_t l) {
1036 z = r = malloc(l * 2 + 1);
1040 for (x = p; x < (const uint8_t*) p + l; x++) {
1041 *(z++) = hexchar(*x >> 4);
1042 *(z++) = hexchar(*x & 15);
1049 void *unhexmem(const char *p, size_t l) {
1055 z = r = malloc((l + 1) / 2 + 1);
1059 for (x = p; x < p + l; x += 2) {
1062 a = unhexchar(x[0]);
1064 b = unhexchar(x[1]);
1068 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1075 char octchar(int x) {
1076 return '0' + (x & 7);
1079 int unoctchar(char c) {
1081 if (c >= '0' && c <= '7')
1087 char decchar(int x) {
1088 return '0' + (x % 10);
1091 int undecchar(char c) {
1093 if (c >= '0' && c <= '9')
1099 char *cescape(const char *s) {
1105 /* Does C style string escaping. */
1107 r = new(char, strlen(s)*4 + 1);
1111 for (f = s, t = r; *f; f++)
1157 /* For special chars we prefer octal over
1158 * hexadecimal encoding, simply because glib's
1159 * g_strescape() does the same */
1160 if ((*f < ' ') || (*f >= 127)) {
1162 *(t++) = octchar((unsigned char) *f >> 6);
1163 *(t++) = octchar((unsigned char) *f >> 3);
1164 *(t++) = octchar((unsigned char) *f);
1175 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1182 /* Undoes C style string escaping, and optionally prefixes it. */
1184 pl = prefix ? strlen(prefix) : 0;
1186 r = new(char, pl+length+1);
1191 memcpy(r, prefix, pl);
1193 for (f = s, t = r + pl; f < s + length; f++) {
1236 /* This is an extension of the XDG syntax files */
1241 /* hexadecimal encoding */
1244 a = unhexchar(f[1]);
1245 b = unhexchar(f[2]);
1247 if (a < 0 || b < 0) {
1248 /* Invalid escape code, let's take it literal then */
1252 *(t++) = (char) ((a << 4) | b);
1267 /* octal encoding */
1270 a = unoctchar(f[0]);
1271 b = unoctchar(f[1]);
1272 c = unoctchar(f[2]);
1274 if (a < 0 || b < 0 || c < 0) {
1275 /* Invalid escape code, let's take it literal then */
1279 *(t++) = (char) ((a << 6) | (b << 3) | c);
1287 /* premature end of string.*/
1292 /* Invalid escape code, let's take it literal then */
1304 char *cunescape_length(const char *s, size_t length) {
1305 return cunescape_length_with_prefix(s, length, NULL);
1308 char *cunescape(const char *s) {
1311 return cunescape_length(s, strlen(s));
1314 char *xescape(const char *s, const char *bad) {
1318 /* Escapes all chars in bad, in addition to \ and all special
1319 * chars, in \xFF style escaping. May be reversed with
1322 r = new(char, strlen(s) * 4 + 1);
1326 for (f = s, t = r; *f; f++) {
1328 if ((*f < ' ') || (*f >= 127) ||
1329 (*f == '\\') || strchr(bad, *f)) {
1332 *(t++) = hexchar(*f >> 4);
1333 *(t++) = hexchar(*f);
1343 char *ascii_strlower(char *t) {
1348 for (p = t; *p; p++)
1349 if (*p >= 'A' && *p <= 'Z')
1350 *p = *p - 'A' + 'a';
1355 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1359 filename[0] == '.' ||
1360 streq(filename, "lost+found") ||
1361 streq(filename, "aquota.user") ||
1362 streq(filename, "aquota.group") ||
1363 endswith(filename, ".rpmnew") ||
1364 endswith(filename, ".rpmsave") ||
1365 endswith(filename, ".rpmorig") ||
1366 endswith(filename, ".dpkg-old") ||
1367 endswith(filename, ".dpkg-new") ||
1368 endswith(filename, ".swp");
1371 bool ignore_file(const char *filename) {
1374 if (endswith(filename, "~"))
1377 return ignore_file_allow_backup(filename);
1380 int fd_nonblock(int fd, bool nonblock) {
1385 flags = fcntl(fd, F_GETFL, 0);
1390 nflags = flags | O_NONBLOCK;
1392 nflags = flags & ~O_NONBLOCK;
1394 if (nflags == flags)
1397 if (fcntl(fd, F_SETFL, nflags) < 0)
1403 int fd_cloexec(int fd, bool cloexec) {
1408 flags = fcntl(fd, F_GETFD, 0);
1413 nflags = flags | FD_CLOEXEC;
1415 nflags = flags & ~FD_CLOEXEC;
1417 if (nflags == flags)
1420 if (fcntl(fd, F_SETFD, nflags) < 0)
1426 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1429 assert(n_fdset == 0 || fdset);
1431 for (i = 0; i < n_fdset; i++)
1438 int close_all_fds(const int except[], unsigned n_except) {
1443 assert(n_except == 0 || except);
1445 d = opendir("/proc/self/fd");
1450 /* When /proc isn't available (for example in chroots)
1451 * the fallback is brute forcing through the fd
1454 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1455 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1457 if (fd_in_set(fd, except, n_except))
1460 if (close_nointr(fd) < 0)
1461 if (errno != EBADF && r == 0)
1468 while ((de = readdir(d))) {
1471 if (ignore_file(de->d_name))
1474 if (safe_atoi(de->d_name, &fd) < 0)
1475 /* Let's better ignore this, just in case */
1484 if (fd_in_set(fd, except, n_except))
1487 if (close_nointr(fd) < 0) {
1488 /* Valgrind has its own FD and doesn't want to have it closed */
1489 if (errno != EBADF && r == 0)
1498 bool chars_intersect(const char *a, const char *b) {
1501 /* Returns true if any of the chars in a are in b. */
1502 for (p = a; *p; p++)
1509 bool fstype_is_network(const char *fstype) {
1510 static const char table[] =
1523 x = startswith(fstype, "fuse.");
1527 return nulstr_contains(table, fstype);
1531 _cleanup_close_ int fd;
1533 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1539 TIOCL_GETKMSGREDIRECT,
1543 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1546 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1549 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1555 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1556 struct termios old_termios, new_termios;
1558 char line[LINE_MAX];
1563 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1564 new_termios = old_termios;
1566 new_termios.c_lflag &= ~ICANON;
1567 new_termios.c_cc[VMIN] = 1;
1568 new_termios.c_cc[VTIME] = 0;
1570 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1573 if (t != (usec_t) -1) {
1574 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1575 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1580 k = fread(&c, 1, 1, f);
1582 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1588 *need_nl = c != '\n';
1595 if (t != (usec_t) -1)
1596 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1599 if (!fgets(line, sizeof(line), f))
1604 if (strlen(line) != 1)
1614 int ask(char *ret, const char *replies, const char *text, ...) {
1624 bool need_nl = true;
1627 fputs(ANSI_HIGHLIGHT_ON, stdout);
1634 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1638 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1641 if (r == -EBADMSG) {
1642 puts("Bad input, please try again.");
1653 if (strchr(replies, c)) {
1658 puts("Read unexpected character, please try again.");
1662 int reset_terminal_fd(int fd, bool switch_to_text) {
1663 struct termios termios;
1666 /* Set terminal to some sane defaults */
1670 /* We leave locked terminal attributes untouched, so that
1671 * Plymouth may set whatever it wants to set, and we don't
1672 * interfere with that. */
1674 /* Disable exclusive mode, just in case */
1675 ioctl(fd, TIOCNXCL);
1677 /* Switch to text mode */
1679 ioctl(fd, KDSETMODE, KD_TEXT);
1681 /* Enable console unicode mode */
1682 ioctl(fd, KDSKBMODE, K_UNICODE);
1684 if (tcgetattr(fd, &termios) < 0) {
1689 /* We only reset the stuff that matters to the software. How
1690 * hardware is set up we don't touch assuming that somebody
1691 * else will do that for us */
1693 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1694 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1695 termios.c_oflag |= ONLCR;
1696 termios.c_cflag |= CREAD;
1697 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1699 termios.c_cc[VINTR] = 03; /* ^C */
1700 termios.c_cc[VQUIT] = 034; /* ^\ */
1701 termios.c_cc[VERASE] = 0177;
1702 termios.c_cc[VKILL] = 025; /* ^X */
1703 termios.c_cc[VEOF] = 04; /* ^D */
1704 termios.c_cc[VSTART] = 021; /* ^Q */
1705 termios.c_cc[VSTOP] = 023; /* ^S */
1706 termios.c_cc[VSUSP] = 032; /* ^Z */
1707 termios.c_cc[VLNEXT] = 026; /* ^V */
1708 termios.c_cc[VWERASE] = 027; /* ^W */
1709 termios.c_cc[VREPRINT] = 022; /* ^R */
1710 termios.c_cc[VEOL] = 0;
1711 termios.c_cc[VEOL2] = 0;
1713 termios.c_cc[VTIME] = 0;
1714 termios.c_cc[VMIN] = 1;
1716 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1720 /* Just in case, flush all crap out */
1721 tcflush(fd, TCIOFLUSH);
1726 int reset_terminal(const char *name) {
1727 _cleanup_close_ int fd = -1;
1729 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1733 return reset_terminal_fd(fd, true);
1736 int open_terminal(const char *name, int mode) {
1741 * If a TTY is in the process of being closed opening it might
1742 * cause EIO. This is horribly awful, but unlikely to be
1743 * changed in the kernel. Hence we work around this problem by
1744 * retrying a couple of times.
1746 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1749 assert(!(mode & O_CREAT));
1752 fd = open(name, mode, 0);
1759 /* Max 1s in total */
1763 usleep(50 * USEC_PER_MSEC);
1784 int flush_fd(int fd) {
1785 struct pollfd pollfd = {
1795 r = poll(&pollfd, 1, 0);
1805 l = read(fd, buf, sizeof(buf));
1811 if (errno == EAGAIN)
1820 int acquire_terminal(
1824 bool ignore_tiocstty_eperm,
1827 int fd = -1, notify = -1, r = 0, wd = -1;
1832 /* We use inotify to be notified when the tty is closed. We
1833 * create the watch before checking if we can actually acquire
1834 * it, so that we don't lose any event.
1836 * Note: strictly speaking this actually watches for the
1837 * device being closed, it does *not* really watch whether a
1838 * tty loses its controlling process. However, unless some
1839 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1840 * its tty otherwise this will not become a problem. As long
1841 * as the administrator makes sure not configure any service
1842 * on the same tty as an untrusted user this should not be a
1843 * problem. (Which he probably should not do anyway.) */
1845 if (timeout != (usec_t) -1)
1846 ts = now(CLOCK_MONOTONIC);
1848 if (!fail && !force) {
1849 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1855 wd = inotify_add_watch(notify, name, IN_CLOSE);
1863 struct sigaction sa_old, sa_new = {
1864 .sa_handler = SIG_IGN,
1865 .sa_flags = SA_RESTART,
1869 r = flush_fd(notify);
1874 /* We pass here O_NOCTTY only so that we can check the return
1875 * value TIOCSCTTY and have a reliable way to figure out if we
1876 * successfully became the controlling process of the tty */
1877 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1881 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1882 * if we already own the tty. */
1883 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1885 /* First, try to get the tty */
1886 if (ioctl(fd, TIOCSCTTY, force) < 0)
1889 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1891 /* Sometimes it makes sense to ignore TIOCSCTTY
1892 * returning EPERM, i.e. when very likely we already
1893 * are have this controlling terminal. */
1894 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1897 if (r < 0 && (force || fail || r != -EPERM)) {
1906 assert(notify >= 0);
1909 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1911 struct inotify_event *e;
1913 if (timeout != (usec_t) -1) {
1916 n = now(CLOCK_MONOTONIC);
1917 if (ts + timeout < n) {
1922 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1932 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1935 if (errno == EINTR || errno == EAGAIN)
1942 e = (struct inotify_event*) inotify_buffer;
1947 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1952 step = sizeof(struct inotify_event) + e->len;
1953 assert(step <= (size_t) l);
1955 e = (struct inotify_event*) ((uint8_t*) e + step);
1962 /* We close the tty fd here since if the old session
1963 * ended our handle will be dead. It's important that
1964 * we do this after sleeping, so that we don't enter
1965 * an endless loop. */
1971 r = reset_terminal_fd(fd, true);
1973 log_warning("Failed to reset terminal: %s", strerror(-r));
1984 int release_terminal(void) {
1986 struct sigaction sa_old, sa_new = {
1987 .sa_handler = SIG_IGN,
1988 .sa_flags = SA_RESTART,
1990 _cleanup_close_ int fd;
1992 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
1996 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1997 * by our own TIOCNOTTY */
1998 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
2000 if (ioctl(fd, TIOCNOTTY) < 0)
2003 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
2008 int sigaction_many(const struct sigaction *sa, ...) {
2013 while ((sig = va_arg(ap, int)) > 0)
2014 if (sigaction(sig, sa, NULL) < 0)
2021 int ignore_signals(int sig, ...) {
2022 struct sigaction sa = {
2023 .sa_handler = SIG_IGN,
2024 .sa_flags = SA_RESTART,
2029 if (sigaction(sig, &sa, NULL) < 0)
2033 while ((sig = va_arg(ap, int)) > 0)
2034 if (sigaction(sig, &sa, NULL) < 0)
2041 int default_signals(int sig, ...) {
2042 struct sigaction sa = {
2043 .sa_handler = SIG_DFL,
2044 .sa_flags = SA_RESTART,
2049 if (sigaction(sig, &sa, NULL) < 0)
2053 while ((sig = va_arg(ap, int)) > 0)
2054 if (sigaction(sig, &sa, NULL) < 0)
2061 void safe_close_pair(int p[]) {
2065 /* Special case pairs which use the same fd in both
2067 p[0] = p[1] = safe_close(p[0]);
2071 p[0] = safe_close(p[0]);
2072 p[1] = safe_close(p[1]);
2075 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2082 while (nbytes > 0) {
2085 k = read(fd, p, nbytes);
2086 if (k < 0 && errno == EINTR)
2089 if (k < 0 && errno == EAGAIN && do_poll) {
2091 /* We knowingly ignore any return value here,
2092 * and expect that any error/EOF is reported
2095 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2100 return n > 0 ? n : (k < 0 ? -errno : 0);
2110 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2111 const uint8_t *p = buf;
2117 while (nbytes > 0) {
2120 k = write(fd, p, nbytes);
2121 if (k < 0 && errno == EINTR)
2124 if (k < 0 && errno == EAGAIN && do_poll) {
2126 /* We knowingly ignore any return value here,
2127 * and expect that any error/EOF is reported
2130 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2135 return n > 0 ? n : (k < 0 ? -errno : 0);
2145 int parse_size(const char *t, off_t base, off_t *size) {
2147 /* Soo, sometimes we want to parse IEC binary suffxies, and
2148 * sometimes SI decimal suffixes. This function can parse
2149 * both. Which one is the right way depends on the
2150 * context. Wikipedia suggests that SI is customary for
2151 * hardrware metrics and network speeds, while IEC is
2152 * customary for most data sizes used by software and volatile
2153 * (RAM) memory. Hence be careful which one you pick!
2155 * In either case we use just K, M, G as suffix, and not Ki,
2156 * Mi, Gi or so (as IEC would suggest). That's because that's
2157 * frickin' ugly. But this means you really need to make sure
2158 * to document which base you are parsing when you use this
2163 unsigned long long factor;
2166 static const struct table iec[] = {
2167 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2168 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2169 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2170 { "G", 1024ULL*1024ULL*1024ULL },
2171 { "M", 1024ULL*1024ULL },
2177 static const struct table si[] = {
2178 { "E", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2179 { "P", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2180 { "T", 1000ULL*1000ULL*1000ULL*1000ULL },
2181 { "G", 1000ULL*1000ULL*1000ULL },
2182 { "M", 1000ULL*1000ULL },
2188 const struct table *table;
2190 unsigned long long r = 0;
2191 unsigned n_entries, start_pos = 0;
2194 assert(base == 1000 || base == 1024);
2199 n_entries = ELEMENTSOF(si);
2202 n_entries = ELEMENTSOF(iec);
2208 unsigned long long l2;
2214 l = strtoll(p, &e, 10);
2227 if (*e >= '0' && *e <= '9') {
2230 /* strotoull itself would accept space/+/- */
2231 l2 = strtoull(e, &e2, 10);
2233 if (errno == ERANGE)
2236 /* Ignore failure. E.g. 10.M is valid */
2243 e += strspn(e, WHITESPACE);
2245 for (i = start_pos; i < n_entries; i++)
2246 if (startswith(e, table[i].suffix)) {
2247 unsigned long long tmp;
2248 if ((unsigned long long) l + (frac > 0) > ULLONG_MAX / table[i].factor)
2250 tmp = l * table[i].factor + (unsigned long long) (frac * table[i].factor);
2251 if (tmp > ULLONG_MAX - r)
2255 if ((unsigned long long) (off_t) r != r)
2258 p = e + strlen(table[i].suffix);
2274 int make_stdio(int fd) {
2279 r = dup3(fd, STDIN_FILENO, 0);
2280 s = dup3(fd, STDOUT_FILENO, 0);
2281 t = dup3(fd, STDERR_FILENO, 0);
2286 if (r < 0 || s < 0 || t < 0)
2289 /* We rely here that the new fd has O_CLOEXEC not set */
2294 int make_null_stdio(void) {
2297 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2301 return make_stdio(null_fd);
2304 bool is_device_path(const char *path) {
2306 /* Returns true on paths that refer to a device, either in
2307 * sysfs or in /dev */
2310 path_startswith(path, "/dev/") ||
2311 path_startswith(path, "/sys/");
2314 int dir_is_empty(const char *path) {
2315 _cleanup_closedir_ DIR *d;
2326 if (!de && errno != 0)
2332 if (!ignore_file(de->d_name))
2337 char* dirname_malloc(const char *path) {
2338 char *d, *dir, *dir2;
2355 int dev_urandom(void *p, size_t n) {
2356 _cleanup_close_ int fd;
2359 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2361 return errno == ENOENT ? -ENOSYS : -errno;
2363 k = loop_read(fd, p, n, true);
2366 if ((size_t) k != n)
2372 void random_bytes(void *p, size_t n) {
2373 static bool srand_called = false;
2377 r = dev_urandom(p, n);
2381 /* If some idiot made /dev/urandom unavailable to us, he'll
2382 * get a PRNG instead. */
2384 if (!srand_called) {
2387 #ifdef HAVE_SYS_AUXV_H
2388 /* The kernel provides us with a bit of entropy in
2389 * auxv, so let's try to make use of that to seed the
2390 * pseudo-random generator. It's better than
2395 auxv = (void*) getauxval(AT_RANDOM);
2397 x ^= *(unsigned*) auxv;
2400 x ^= (unsigned) now(CLOCK_REALTIME);
2401 x ^= (unsigned) gettid();
2404 srand_called = true;
2407 for (q = p; q < (uint8_t*) p + n; q ++)
2411 void rename_process(const char name[8]) {
2414 /* This is a like a poor man's setproctitle(). It changes the
2415 * comm field, argv[0], and also the glibc's internally used
2416 * name of the process. For the first one a limit of 16 chars
2417 * applies, to the second one usually one of 10 (i.e. length
2418 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2419 * "systemd"). If you pass a longer string it will be
2422 prctl(PR_SET_NAME, name);
2424 if (program_invocation_name)
2425 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2427 if (saved_argc > 0) {
2431 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2433 for (i = 1; i < saved_argc; i++) {
2437 memzero(saved_argv[i], strlen(saved_argv[i]));
2442 void sigset_add_many(sigset_t *ss, ...) {
2449 while ((sig = va_arg(ap, int)) > 0)
2450 assert_se(sigaddset(ss, sig) == 0);
2454 int sigprocmask_many(int how, ...) {
2459 assert_se(sigemptyset(&ss) == 0);
2462 while ((sig = va_arg(ap, int)) > 0)
2463 assert_se(sigaddset(&ss, sig) == 0);
2466 if (sigprocmask(how, &ss, NULL) < 0)
2472 char* gethostname_malloc(void) {
2475 assert_se(uname(&u) >= 0);
2477 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2478 return strdup(u.nodename);
2480 return strdup(u.sysname);
2483 bool hostname_is_set(void) {
2486 assert_se(uname(&u) >= 0);
2488 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2491 static char *lookup_uid(uid_t uid) {
2494 _cleanup_free_ char *buf = NULL;
2495 struct passwd pwbuf, *pw = NULL;
2497 /* Shortcut things to avoid NSS lookups */
2499 return strdup("root");
2501 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2505 buf = malloc(bufsize);
2509 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2510 return strdup(pw->pw_name);
2512 if (asprintf(&name, UID_FMT, uid) < 0)
2518 char* getlogname_malloc(void) {
2522 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2527 return lookup_uid(uid);
2530 char *getusername_malloc(void) {
2537 return lookup_uid(getuid());
2540 int getttyname_malloc(int fd, char **r) {
2541 char path[PATH_MAX], *c;
2546 k = ttyname_r(fd, path, sizeof(path));
2552 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2560 int getttyname_harder(int fd, char **r) {
2564 k = getttyname_malloc(fd, &s);
2568 if (streq(s, "tty")) {
2570 return get_ctty(0, NULL, r);
2577 int get_ctty_devnr(pid_t pid, dev_t *d) {
2579 _cleanup_free_ char *line = NULL;
2581 unsigned long ttynr;
2585 p = procfs_file_alloca(pid, "stat");
2586 r = read_one_line_file(p, &line);
2590 p = strrchr(line, ')');
2600 "%*d " /* session */
2605 if (major(ttynr) == 0 && minor(ttynr) == 0)
2614 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2615 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *b = NULL;
2616 _cleanup_free_ char *s = NULL;
2623 k = get_ctty_devnr(pid, &devnr);
2627 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2629 k = readlink_malloc(fn, &s);
2635 /* This is an ugly hack */
2636 if (major(devnr) == 136) {
2637 asprintf(&b, "pts/%u", minor(devnr));
2641 /* Probably something like the ptys which have no
2642 * symlink in /dev/char. Let's return something
2643 * vaguely useful. */
2649 if (startswith(s, "/dev/"))
2651 else if (startswith(s, "../"))
2669 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2675 /* This returns the first error we run into, but nevertheless
2676 * tries to go on. This closes the passed fd. */
2682 return errno == ENOENT ? 0 : -errno;
2687 bool is_dir, keep_around;
2693 if (!de && errno != 0) {
2702 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2705 if (de->d_type == DT_UNKNOWN ||
2707 (de->d_type == DT_DIR && root_dev)) {
2708 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2709 if (ret == 0 && errno != ENOENT)
2714 is_dir = S_ISDIR(st.st_mode);
2717 (st.st_uid == 0 || st.st_uid == getuid()) &&
2718 (st.st_mode & S_ISVTX);
2720 is_dir = de->d_type == DT_DIR;
2721 keep_around = false;
2727 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2728 if (root_dev && st.st_dev != root_dev->st_dev)
2731 subdir_fd = openat(fd, de->d_name,
2732 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2733 if (subdir_fd < 0) {
2734 if (ret == 0 && errno != ENOENT)
2739 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2740 if (r < 0 && ret == 0)
2744 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2745 if (ret == 0 && errno != ENOENT)
2749 } else if (!only_dirs && !keep_around) {
2751 if (unlinkat(fd, de->d_name, 0) < 0) {
2752 if (ret == 0 && errno != ENOENT)
2763 _pure_ static int is_temporary_fs(struct statfs *s) {
2766 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2767 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2770 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2775 if (fstatfs(fd, &s) < 0) {
2780 /* We refuse to clean disk file systems with this call. This
2781 * is extra paranoia just to be sure we never ever remove
2783 if (!is_temporary_fs(&s)) {
2784 log_error("Attempted to remove disk file system, and we can't allow that.");
2789 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2792 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2798 /* We refuse to clean the root file system with this
2799 * call. This is extra paranoia to never cause a really
2800 * seriously broken system. */
2801 if (path_equal(path, "/")) {
2802 log_error("Attempted to remove entire root file system, and we can't allow that.");
2806 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2809 if (errno != ENOTDIR)
2813 if (statfs(path, &s) < 0)
2816 if (!is_temporary_fs(&s)) {
2817 log_error("Attempted to remove disk file system, and we can't allow that.");
2822 if (delete_root && !only_dirs)
2823 if (unlink(path) < 0 && errno != ENOENT)
2830 if (fstatfs(fd, &s) < 0) {
2835 if (!is_temporary_fs(&s)) {
2836 log_error("Attempted to remove disk file system, and we can't allow that.");
2842 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2845 if (honour_sticky && file_is_priv_sticky(path) > 0)
2848 if (rmdir(path) < 0 && errno != ENOENT) {
2857 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2858 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2861 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2862 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2865 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2868 /* Under the assumption that we are running privileged we
2869 * first change the access mode and only then hand out
2870 * ownership to avoid a window where access is too open. */
2872 if (mode != (mode_t) -1)
2873 if (chmod(path, mode) < 0)
2876 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2877 if (chown(path, uid, gid) < 0)
2883 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2886 /* Under the assumption that we are running privileged we
2887 * first change the access mode and only then hand out
2888 * ownership to avoid a window where access is too open. */
2890 if (mode != (mode_t) -1)
2891 if (fchmod(fd, mode) < 0)
2894 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2895 if (fchown(fd, uid, gid) < 0)
2901 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2905 /* Allocates the cpuset in the right size */
2908 if (!(r = CPU_ALLOC(n)))
2911 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2912 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2922 if (errno != EINVAL)
2929 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2930 static const char status_indent[] = " "; /* "[" STATUS "] " */
2931 _cleanup_free_ char *s = NULL;
2932 _cleanup_close_ int fd = -1;
2933 struct iovec iovec[6] = {};
2935 static bool prev_ephemeral;
2939 /* This is independent of logging, as status messages are
2940 * optional and go exclusively to the console. */
2942 if (vasprintf(&s, format, ap) < 0)
2945 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2958 sl = status ? sizeof(status_indent)-1 : 0;
2964 e = ellipsize(s, emax, 75);
2972 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2973 prev_ephemeral = ephemeral;
2976 if (!isempty(status)) {
2977 IOVEC_SET_STRING(iovec[n++], "[");
2978 IOVEC_SET_STRING(iovec[n++], status);
2979 IOVEC_SET_STRING(iovec[n++], "] ");
2981 IOVEC_SET_STRING(iovec[n++], status_indent);
2984 IOVEC_SET_STRING(iovec[n++], s);
2986 IOVEC_SET_STRING(iovec[n++], "\n");
2988 if (writev(fd, iovec, n) < 0)
2994 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
3000 va_start(ap, format);
3001 r = status_vprintf(status, ellipse, ephemeral, format, ap);
3007 char *replace_env(const char *format, char **env) {
3014 const char *e, *word = format;
3019 for (e = format; *e; e ++) {
3030 if (!(k = strnappend(r, word, e-word-1)))
3039 } else if (*e == '$') {
3040 if (!(k = strnappend(r, word, e-word)))
3056 t = strempty(strv_env_get_n(env, word+2, e-word-2));
3058 k = strappend(r, t);
3072 if (!(k = strnappend(r, word, e-word)))
3083 char **replace_env_argv(char **argv, char **env) {
3085 unsigned k = 0, l = 0;
3087 l = strv_length(argv);
3089 if (!(r = new(char*, l+1)))
3092 STRV_FOREACH(i, argv) {
3094 /* If $FOO appears as single word, replace it by the split up variable */
3095 if ((*i)[0] == '$' && (*i)[1] != '{') {
3100 e = strv_env_get(env, *i+1);
3103 if (!(m = strv_split_quoted(e))) {
3114 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3123 memcpy(r + k, m, q * sizeof(char*));
3131 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3132 if (!(r[k++] = replace_env(*i, env))) {
3142 int fd_columns(int fd) {
3143 struct winsize ws = {};
3145 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3154 unsigned columns(void) {
3158 if (_likely_(cached_columns > 0))
3159 return cached_columns;
3162 e = getenv("COLUMNS");
3167 c = fd_columns(STDOUT_FILENO);
3176 int fd_lines(int fd) {
3177 struct winsize ws = {};
3179 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3188 unsigned lines(void) {
3192 if (_likely_(cached_lines > 0))
3193 return cached_lines;
3196 e = getenv("LINES");
3201 l = fd_lines(STDOUT_FILENO);
3207 return cached_lines;
3210 /* intended to be used as a SIGWINCH sighandler */
3211 void columns_lines_cache_reset(int signum) {
3217 static int cached_on_tty = -1;
3219 if (_unlikely_(cached_on_tty < 0))
3220 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3222 return cached_on_tty;
3225 int files_same(const char *filea, const char *fileb) {
3228 if (stat(filea, &a) < 0)
3231 if (stat(fileb, &b) < 0)
3234 return a.st_dev == b.st_dev &&
3235 a.st_ino == b.st_ino;
3238 int running_in_chroot(void) {
3241 ret = files_same("/proc/1/root", "/");
3248 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3253 assert(percent <= 100);
3254 assert(new_length >= 3);
3256 if (old_length <= 3 || old_length <= new_length)
3257 return strndup(s, old_length);
3259 r = new0(char, new_length+1);
3263 x = (new_length * percent) / 100;
3265 if (x > new_length - 3)
3273 s + old_length - (new_length - x - 3),
3274 new_length - x - 3);
3279 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3283 unsigned k, len, len2;
3286 assert(percent <= 100);
3287 assert(new_length >= 3);
3289 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3290 if (ascii_is_valid(s))
3291 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3293 if (old_length <= 3 || old_length <= new_length)
3294 return strndup(s, old_length);
3296 x = (new_length * percent) / 100;
3298 if (x > new_length - 3)
3302 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3305 c = utf8_encoded_to_unichar(i);
3308 k += unichar_iswide(c) ? 2 : 1;
3311 if (k > x) /* last character was wide and went over quota */
3314 for (j = s + old_length; k < new_length && j > i; ) {
3317 j = utf8_prev_char(j);
3318 c = utf8_encoded_to_unichar(j);
3321 k += unichar_iswide(c) ? 2 : 1;
3325 /* we don't actually need to ellipsize */
3327 return memdup(s, old_length + 1);
3329 /* make space for ellipsis */
3330 j = utf8_next_char(j);
3333 len2 = s + old_length - j;
3334 e = new(char, len + 3 + len2 + 1);
3339 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3340 old_length, new_length, x, len, len2, k);
3344 e[len] = 0xe2; /* tri-dot ellipsis: … */
3348 memcpy(e + len + 3, j, len2 + 1);
3353 char *ellipsize(const char *s, size_t length, unsigned percent) {
3354 return ellipsize_mem(s, strlen(s), length, percent);
3357 int touch_file(const char *path, bool parents, usec_t stamp, uid_t uid, gid_t gid, mode_t mode) {
3358 _cleanup_close_ int fd;
3364 mkdir_parents(path, 0755);
3366 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, mode > 0 ? mode : 0644);
3371 r = fchmod(fd, mode);
3376 if (uid != (uid_t) -1 || gid != (gid_t) -1) {
3377 r = fchown(fd, uid, gid);
3382 if (stamp != (usec_t) -1) {
3383 struct timespec ts[2];
3385 timespec_store(&ts[0], stamp);
3387 r = futimens(fd, ts);
3389 r = futimens(fd, NULL);
3396 int touch(const char *path) {
3397 return touch_file(path, false, (usec_t) -1, (uid_t) -1, (gid_t) -1, 0);
3400 char *unquote(const char *s, const char* quotes) {
3404 /* This is rather stupid, simply removes the heading and
3405 * trailing quotes if there is one. Doesn't care about
3406 * escaping or anything. We should make this smarter one
3413 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3414 return strndup(s+1, l-2);
3419 char *normalize_env_assignment(const char *s) {
3420 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3423 eq = strchr(s, '=');
3435 memmove(r, t, strlen(t) + 1);
3439 name = strndup(s, eq - s);
3447 value = unquote(strstrip(p), QUOTES);
3451 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3457 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3468 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3480 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3487 r = wait_for_terminate(pid, &status);
3489 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3493 if (status.si_code == CLD_EXITED) {
3494 if (status.si_status != 0) {
3495 log_warning("%s failed with error code %i.", name, status.si_status);
3496 return status.si_status;
3499 log_debug("%s succeeded.", name);
3502 } else if (status.si_code == CLD_KILLED ||
3503 status.si_code == CLD_DUMPED) {
3505 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3509 log_warning("%s failed due to unknown reason.", name);
3513 noreturn void freeze(void) {
3515 /* Make sure nobody waits for us on a socket anymore */
3516 close_all_fds(NULL, 0);
3524 bool null_or_empty(struct stat *st) {
3527 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3530 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3536 int null_or_empty_path(const char *fn) {
3541 if (stat(fn, &st) < 0)
3544 return null_or_empty(&st);
3547 DIR *xopendirat(int fd, const char *name, int flags) {
3551 assert(!(flags & O_CREAT));
3553 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3566 int signal_from_string_try_harder(const char *s) {
3570 signo = signal_from_string(s);
3572 if (startswith(s, "SIG"))
3573 return signal_from_string(s+3);
3578 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3579 _cleanup_free_ char *t = NULL, *u = NULL;
3582 u = unquote(tagvalue, "\"\'");
3586 enc_len = strlen(u) * 4 + 1;
3587 t = new(char, enc_len);
3591 if (encode_devnode_name(u, t, enc_len) < 0)
3594 return strjoin("/dev/disk/by-", by, "/", t, NULL);
3597 char *fstab_node_to_udev_node(const char *p) {
3600 if (startswith(p, "LABEL="))
3601 return tag_to_udev_node(p+6, "label");
3603 if (startswith(p, "UUID="))
3604 return tag_to_udev_node(p+5, "uuid");
3606 if (startswith(p, "PARTUUID="))
3607 return tag_to_udev_node(p+9, "partuuid");
3609 if (startswith(p, "PARTLABEL="))
3610 return tag_to_udev_node(p+10, "partlabel");
3615 bool tty_is_vc(const char *tty) {
3618 if (startswith(tty, "/dev/"))
3621 return vtnr_from_tty(tty) >= 0;
3624 bool tty_is_console(const char *tty) {
3627 if (startswith(tty, "/dev/"))
3630 return streq(tty, "console");
3633 int vtnr_from_tty(const char *tty) {
3638 if (startswith(tty, "/dev/"))
3641 if (!startswith(tty, "tty") )
3644 if (tty[3] < '0' || tty[3] > '9')
3647 r = safe_atoi(tty+3, &i);
3651 if (i < 0 || i > 63)
3657 char *resolve_dev_console(char **active) {
3660 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3661 * (i.e. not read-only-mounted which is a sign for container setups) */
3663 if (path_is_read_only_fs("/sys") > 0)
3666 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3669 /* If multiple log outputs are configured the last one is what
3670 * /dev/console points to */
3671 tty = strrchr(*active, ' ');
3677 if (streq(tty, "tty0")) {
3680 /* Get the active VC (e.g. tty1) */
3681 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3683 tty = *active = tmp;
3690 bool tty_is_vc_resolve(const char *tty) {
3691 _cleanup_free_ char *active = NULL;
3695 if (startswith(tty, "/dev/"))
3698 if (streq(tty, "console")) {
3699 tty = resolve_dev_console(&active);
3704 return tty_is_vc(tty);
3707 const char *default_term_for_tty(const char *tty) {
3710 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3713 bool dirent_is_file(const struct dirent *de) {
3716 if (ignore_file(de->d_name))
3719 if (de->d_type != DT_REG &&
3720 de->d_type != DT_LNK &&
3721 de->d_type != DT_UNKNOWN)
3727 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3730 if (de->d_type != DT_REG &&
3731 de->d_type != DT_LNK &&
3732 de->d_type != DT_UNKNOWN)
3735 if (ignore_file_allow_backup(de->d_name))
3738 return endswith(de->d_name, suffix);
3741 void execute_directory(const char *directory, DIR *d, usec_t timeout, char *argv[]) {
3747 /* Executes all binaries in a directory in parallel and waits
3748 * for them to finish. Optionally a timeout is applied. */
3750 executor_pid = fork();
3751 if (executor_pid < 0) {
3752 log_error("Failed to fork: %m");
3755 } else if (executor_pid == 0) {
3756 _cleanup_hashmap_free_free_ Hashmap *pids = NULL;
3757 _cleanup_closedir_ DIR *_d = NULL;
3761 /* We fork this all off from a child process so that
3762 * we can somewhat cleanly make use of SIGALRM to set
3765 reset_all_signal_handlers();
3767 assert_se(sigemptyset(&ss) == 0);
3768 assert_se(sigprocmask(SIG_SETMASK, &ss, NULL) == 0);
3770 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3773 d = _d = opendir(directory);
3775 if (errno == ENOENT)
3776 _exit(EXIT_SUCCESS);
3778 log_error("Failed to enumerate directory %s: %m", directory);
3779 _exit(EXIT_FAILURE);
3783 pids = hashmap_new(NULL, NULL);
3786 _exit(EXIT_FAILURE);
3789 FOREACH_DIRENT(de, d, break) {
3790 _cleanup_free_ char *path = NULL;
3793 if (!dirent_is_file(de))
3796 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3798 _exit(EXIT_FAILURE);
3803 log_error("Failed to fork: %m");
3805 } else if (pid == 0) {
3808 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3818 log_error("Failed to execute %s: %m", path);
3819 _exit(EXIT_FAILURE);
3823 log_debug("Spawned %s as " PID_FMT ".", path, pid);
3825 r = hashmap_put(pids, UINT_TO_PTR(pid), path);
3828 _exit(EXIT_FAILURE);
3834 /* Abort execution of this process after the
3835 * timout. We simply rely on SIGALRM as default action
3836 * terminating the process, and turn on alarm(). */
3838 if (timeout != (usec_t) -1)
3839 alarm((timeout + USEC_PER_SEC - 1) / USEC_PER_SEC);
3841 while (!hashmap_isempty(pids)) {
3842 _cleanup_free_ char *path = NULL;
3845 pid = PTR_TO_UINT(hashmap_first_key(pids));
3848 path = hashmap_remove(pids, UINT_TO_PTR(pid));
3851 wait_for_terminate_and_warn(path, pid);
3854 _exit(EXIT_SUCCESS);
3857 wait_for_terminate_and_warn(directory, executor_pid);
3860 int kill_and_sigcont(pid_t pid, int sig) {
3863 r = kill(pid, sig) < 0 ? -errno : 0;
3871 bool nulstr_contains(const char*nulstr, const char *needle) {
3877 NULSTR_FOREACH(i, nulstr)
3878 if (streq(i, needle))
3884 bool plymouth_running(void) {
3885 return access("/run/plymouth/pid", F_OK) >= 0;
3888 char* strshorten(char *s, size_t l) {
3897 static bool hostname_valid_char(char c) {
3899 (c >= 'a' && c <= 'z') ||
3900 (c >= 'A' && c <= 'Z') ||
3901 (c >= '0' && c <= '9') ||
3907 bool hostname_is_valid(const char *s) {
3914 for (p = s, dot = true; *p; p++) {
3921 if (!hostname_valid_char(*p))
3931 if (p-s > HOST_NAME_MAX)
3937 char* hostname_cleanup(char *s, bool lowercase) {
3941 for (p = s, d = s, dot = true; *p; p++) {
3948 } else if (hostname_valid_char(*p)) {
3949 *(d++) = lowercase ? tolower(*p) : *p;
3960 strshorten(s, HOST_NAME_MAX);
3965 int pipe_eof(int fd) {
3966 struct pollfd pollfd = {
3968 .events = POLLIN|POLLHUP,
3973 r = poll(&pollfd, 1, 0);
3980 return pollfd.revents & POLLHUP;
3983 int fd_wait_for_event(int fd, int event, usec_t t) {
3985 struct pollfd pollfd = {
3993 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
4000 return pollfd.revents;
4003 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
4014 t = new(char, strlen(path) + 1 + 6 + 1);
4018 fn = basename(path);
4022 stpcpy(stpcpy(t+k+1, fn), "XXXXXX");
4024 fd = mkostemp_safe(t, O_WRONLY|O_CLOEXEC);
4030 f = fdopen(fd, "we");
4043 int terminal_vhangup_fd(int fd) {
4046 if (ioctl(fd, TIOCVHANGUP) < 0)
4052 int terminal_vhangup(const char *name) {
4053 _cleanup_close_ int fd;
4055 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4059 return terminal_vhangup_fd(fd);
4062 int vt_disallocate(const char *name) {
4066 /* Deallocate the VT if possible. If not possible
4067 * (i.e. because it is the active one), at least clear it
4068 * entirely (including the scrollback buffer) */
4070 if (!startswith(name, "/dev/"))
4073 if (!tty_is_vc(name)) {
4074 /* So this is not a VT. I guess we cannot deallocate
4075 * it then. But let's at least clear the screen */
4077 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4082 "\033[r" /* clear scrolling region */
4083 "\033[H" /* move home */
4084 "\033[2J", /* clear screen */
4091 if (!startswith(name, "/dev/tty"))
4094 r = safe_atou(name+8, &u);
4101 /* Try to deallocate */
4102 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
4106 r = ioctl(fd, VT_DISALLOCATE, u);
4115 /* Couldn't deallocate, so let's clear it fully with
4117 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4122 "\033[r" /* clear scrolling region */
4123 "\033[H" /* move home */
4124 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4131 int copy_file(const char *from, const char *to, int flags) {
4132 _cleanup_close_ int fdf = -1;
4138 fdf = open(from, O_RDONLY|O_CLOEXEC|O_NOCTTY);
4142 fdt = open(to, flags|O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
4150 n = read(fdf, buf, sizeof(buf));
4164 k = loop_write(fdt, buf, n, false);
4166 r = k < 0 ? k : (errno ? -errno : -EIO);
4175 r = close_nointr(fdt);
4185 int symlink_atomic(const char *from, const char *to) {
4187 _cleanup_free_ char *t;
4197 t = new(char, strlen(to) + 1 + 16 + 1);
4205 x = stpcpy(t+k+1, fn);
4208 for (i = 0; i < 16; i++) {
4209 *(x++) = hexchar(u & 0xF);
4215 if (symlink(from, t) < 0)
4218 if (rename(t, to) < 0) {
4227 bool display_is_local(const char *display) {
4231 display[0] == ':' &&
4232 display[1] >= '0' &&
4236 int socket_from_display(const char *display, char **path) {
4243 if (!display_is_local(display))
4246 k = strspn(display+1, "0123456789");
4248 f = new(char, strlen("/tmp/.X11-unix/X") + k + 1);
4252 c = stpcpy(f, "/tmp/.X11-unix/X");
4253 memcpy(c, display+1, k);
4262 const char **username,
4263 uid_t *uid, gid_t *gid,
4265 const char **shell) {
4273 /* We enforce some special rules for uid=0: in order to avoid
4274 * NSS lookups for root we hardcode its data. */
4276 if (streq(*username, "root") || streq(*username, "0")) {
4294 if (parse_uid(*username, &u) >= 0) {
4298 /* If there are multiple users with the same id, make
4299 * sure to leave $USER to the configured value instead
4300 * of the first occurrence in the database. However if
4301 * the uid was configured by a numeric uid, then let's
4302 * pick the real username from /etc/passwd. */
4304 *username = p->pw_name;
4307 p = getpwnam(*username);
4311 return errno > 0 ? -errno : -ESRCH;
4323 *shell = p->pw_shell;
4328 char* uid_to_name(uid_t uid) {
4333 return strdup("root");
4337 return strdup(p->pw_name);
4339 if (asprintf(&r, UID_FMT, uid) < 0)
4345 char* gid_to_name(gid_t gid) {
4350 return strdup("root");
4354 return strdup(p->gr_name);
4356 if (asprintf(&r, GID_FMT, gid) < 0)
4362 int get_group_creds(const char **groupname, gid_t *gid) {
4368 /* We enforce some special rules for gid=0: in order to avoid
4369 * NSS lookups for root we hardcode its data. */
4371 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4372 *groupname = "root";
4380 if (parse_gid(*groupname, &id) >= 0) {
4385 *groupname = g->gr_name;
4388 g = getgrnam(*groupname);
4392 return errno > 0 ? -errno : -ESRCH;
4400 int in_gid(gid_t gid) {
4402 int ngroups_max, r, i;
4404 if (getgid() == gid)
4407 if (getegid() == gid)
4410 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4411 assert(ngroups_max > 0);
4413 gids = alloca(sizeof(gid_t) * ngroups_max);
4415 r = getgroups(ngroups_max, gids);
4419 for (i = 0; i < r; i++)
4426 int in_group(const char *name) {
4430 r = get_group_creds(&name, &gid);
4437 int glob_exists(const char *path) {
4438 _cleanup_globfree_ glob_t g = {};
4444 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4446 if (k == GLOB_NOMATCH)
4448 else if (k == GLOB_NOSPACE)
4451 return !strv_isempty(g.gl_pathv);
4453 return errno ? -errno : -EIO;
4456 int glob_extend(char ***strv, const char *path) {
4457 _cleanup_globfree_ glob_t g = {};
4462 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4464 if (k == GLOB_NOMATCH)
4466 else if (k == GLOB_NOSPACE)
4468 else if (k != 0 || strv_isempty(g.gl_pathv))
4469 return errno ? -errno : -EIO;
4471 STRV_FOREACH(p, g.gl_pathv) {
4472 k = strv_extend(strv, *p);
4480 int dirent_ensure_type(DIR *d, struct dirent *de) {
4486 if (de->d_type != DT_UNKNOWN)
4489 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4493 S_ISREG(st.st_mode) ? DT_REG :
4494 S_ISDIR(st.st_mode) ? DT_DIR :
4495 S_ISLNK(st.st_mode) ? DT_LNK :
4496 S_ISFIFO(st.st_mode) ? DT_FIFO :
4497 S_ISSOCK(st.st_mode) ? DT_SOCK :
4498 S_ISCHR(st.st_mode) ? DT_CHR :
4499 S_ISBLK(st.st_mode) ? DT_BLK :
4505 int in_search_path(const char *path, char **search) {
4507 _cleanup_free_ char *parent = NULL;
4510 r = path_get_parent(path, &parent);
4514 STRV_FOREACH(i, search)
4515 if (path_equal(parent, *i))
4521 int get_files_in_directory(const char *path, char ***list) {
4522 _cleanup_closedir_ DIR *d = NULL;
4523 size_t bufsize = 0, n = 0;
4524 _cleanup_strv_free_ char **l = NULL;
4528 /* Returns all files in a directory in *list, and the number
4529 * of files as return value. If list is NULL returns only the
4541 if (!de && errno != 0)
4546 dirent_ensure_type(d, de);
4548 if (!dirent_is_file(de))
4552 /* one extra slot is needed for the terminating NULL */
4553 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4556 l[n] = strdup(de->d_name);
4567 l = NULL; /* avoid freeing */
4573 char *strjoin(const char *x, ...) {
4587 t = va_arg(ap, const char *);
4592 if (n > ((size_t) -1) - l) {
4616 t = va_arg(ap, const char *);
4630 bool is_main_thread(void) {
4631 static thread_local int cached = 0;
4633 if (_unlikely_(cached == 0))
4634 cached = getpid() == gettid() ? 1 : -1;
4639 int block_get_whole_disk(dev_t d, dev_t *ret) {
4646 /* If it has a queue this is good enough for us */
4647 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4650 r = access(p, F_OK);
4658 /* If it is a partition find the originating device */
4659 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4662 r = access(p, F_OK);
4668 /* Get parent dev_t */
4669 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4672 r = read_one_line_file(p, &s);
4678 r = sscanf(s, "%u:%u", &m, &n);
4684 /* Only return this if it is really good enough for us. */
4685 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4688 r = access(p, F_OK);
4692 *ret = makedev(m, n);
4699 int file_is_priv_sticky(const char *p) {
4704 if (lstat(p, &st) < 0)
4708 (st.st_uid == 0 || st.st_uid == getuid()) &&
4709 (st.st_mode & S_ISVTX);
4712 static const char *const ioprio_class_table[] = {
4713 [IOPRIO_CLASS_NONE] = "none",
4714 [IOPRIO_CLASS_RT] = "realtime",
4715 [IOPRIO_CLASS_BE] = "best-effort",
4716 [IOPRIO_CLASS_IDLE] = "idle"
4719 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4721 static const char *const sigchld_code_table[] = {
4722 [CLD_EXITED] = "exited",
4723 [CLD_KILLED] = "killed",
4724 [CLD_DUMPED] = "dumped",
4725 [CLD_TRAPPED] = "trapped",
4726 [CLD_STOPPED] = "stopped",
4727 [CLD_CONTINUED] = "continued",
4730 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4732 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4733 [LOG_FAC(LOG_KERN)] = "kern",
4734 [LOG_FAC(LOG_USER)] = "user",
4735 [LOG_FAC(LOG_MAIL)] = "mail",
4736 [LOG_FAC(LOG_DAEMON)] = "daemon",
4737 [LOG_FAC(LOG_AUTH)] = "auth",
4738 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4739 [LOG_FAC(LOG_LPR)] = "lpr",
4740 [LOG_FAC(LOG_NEWS)] = "news",
4741 [LOG_FAC(LOG_UUCP)] = "uucp",
4742 [LOG_FAC(LOG_CRON)] = "cron",
4743 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4744 [LOG_FAC(LOG_FTP)] = "ftp",
4745 [LOG_FAC(LOG_LOCAL0)] = "local0",
4746 [LOG_FAC(LOG_LOCAL1)] = "local1",
4747 [LOG_FAC(LOG_LOCAL2)] = "local2",
4748 [LOG_FAC(LOG_LOCAL3)] = "local3",
4749 [LOG_FAC(LOG_LOCAL4)] = "local4",
4750 [LOG_FAC(LOG_LOCAL5)] = "local5",
4751 [LOG_FAC(LOG_LOCAL6)] = "local6",
4752 [LOG_FAC(LOG_LOCAL7)] = "local7"
4755 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4757 static const char *const log_level_table[] = {
4758 [LOG_EMERG] = "emerg",
4759 [LOG_ALERT] = "alert",
4760 [LOG_CRIT] = "crit",
4762 [LOG_WARNING] = "warning",
4763 [LOG_NOTICE] = "notice",
4764 [LOG_INFO] = "info",
4765 [LOG_DEBUG] = "debug"
4768 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4770 static const char* const sched_policy_table[] = {
4771 [SCHED_OTHER] = "other",
4772 [SCHED_BATCH] = "batch",
4773 [SCHED_IDLE] = "idle",
4774 [SCHED_FIFO] = "fifo",
4778 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4780 static const char* const rlimit_table[_RLIMIT_MAX] = {
4781 [RLIMIT_CPU] = "LimitCPU",
4782 [RLIMIT_FSIZE] = "LimitFSIZE",
4783 [RLIMIT_DATA] = "LimitDATA",
4784 [RLIMIT_STACK] = "LimitSTACK",
4785 [RLIMIT_CORE] = "LimitCORE",
4786 [RLIMIT_RSS] = "LimitRSS",
4787 [RLIMIT_NOFILE] = "LimitNOFILE",
4788 [RLIMIT_AS] = "LimitAS",
4789 [RLIMIT_NPROC] = "LimitNPROC",
4790 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4791 [RLIMIT_LOCKS] = "LimitLOCKS",
4792 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4793 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4794 [RLIMIT_NICE] = "LimitNICE",
4795 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4796 [RLIMIT_RTTIME] = "LimitRTTIME"
4799 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4801 static const char* const ip_tos_table[] = {
4802 [IPTOS_LOWDELAY] = "low-delay",
4803 [IPTOS_THROUGHPUT] = "throughput",
4804 [IPTOS_RELIABILITY] = "reliability",
4805 [IPTOS_LOWCOST] = "low-cost",
4808 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4810 static const char *const __signal_table[] = {
4827 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4838 [SIGVTALRM] = "VTALRM",
4840 [SIGWINCH] = "WINCH",
4846 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4848 const char *signal_to_string(int signo) {
4849 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4852 name = __signal_to_string(signo);
4856 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4857 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4859 snprintf(buf, sizeof(buf), "%d", signo);
4864 int signal_from_string(const char *s) {
4869 signo = __signal_from_string(s);
4873 if (startswith(s, "RTMIN+")) {
4877 if (safe_atou(s, &u) >= 0) {
4878 signo = (int) u + offset;
4879 if (signo > 0 && signo < _NSIG)
4885 bool kexec_loaded(void) {
4886 bool loaded = false;
4889 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4897 int strdup_or_null(const char *a, char **b) {
4915 int prot_from_flags(int flags) {
4917 switch (flags & O_ACCMODE) {
4926 return PROT_READ|PROT_WRITE;
4933 char *format_bytes(char *buf, size_t l, off_t t) {
4936 static const struct {
4940 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4941 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4942 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4943 { "G", 1024ULL*1024ULL*1024ULL },
4944 { "M", 1024ULL*1024ULL },
4948 for (i = 0; i < ELEMENTSOF(table); i++) {
4950 if (t >= table[i].factor) {
4953 (unsigned long long) (t / table[i].factor),
4954 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4961 snprintf(buf, l, "%lluB", (unsigned long long) t);
4969 void* memdup(const void *p, size_t l) {
4982 int fd_inc_sndbuf(int fd, size_t n) {
4984 socklen_t l = sizeof(value);
4986 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4987 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4990 /* If we have the privileges we will ignore the kernel limit. */
4993 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4994 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
5000 int fd_inc_rcvbuf(int fd, size_t n) {
5002 socklen_t l = sizeof(value);
5004 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
5005 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
5008 /* If we have the privileges we will ignore the kernel limit. */
5011 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
5012 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
5017 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
5018 pid_t parent_pid, agent_pid;
5020 bool stdout_is_tty, stderr_is_tty;
5028 parent_pid = getpid();
5030 /* Spawns a temporary TTY agent, making sure it goes away when
5037 if (agent_pid != 0) {
5044 * Make sure the agent goes away when the parent dies */
5045 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
5046 _exit(EXIT_FAILURE);
5048 /* Check whether our parent died before we were able
5049 * to set the death signal */
5050 if (getppid() != parent_pid)
5051 _exit(EXIT_SUCCESS);
5053 /* Don't leak fds to the agent */
5054 close_all_fds(except, n_except);
5056 stdout_is_tty = isatty(STDOUT_FILENO);
5057 stderr_is_tty = isatty(STDERR_FILENO);
5059 if (!stdout_is_tty || !stderr_is_tty) {
5060 /* Detach from stdout/stderr. and reopen
5061 * /dev/tty for them. This is important to
5062 * ensure that when systemctl is started via
5063 * popen() or a similar call that expects to
5064 * read EOF we actually do generate EOF and
5065 * not delay this indefinitely by because we
5066 * keep an unused copy of stdin around. */
5067 fd = open("/dev/tty", O_WRONLY);
5069 log_error("Failed to open /dev/tty: %m");
5070 _exit(EXIT_FAILURE);
5074 dup2(fd, STDOUT_FILENO);
5077 dup2(fd, STDERR_FILENO);
5083 /* Count arguments */
5085 for (n = 0; va_arg(ap, char*); n++)
5090 l = alloca(sizeof(char *) * (n + 1));
5092 /* Fill in arguments */
5094 for (i = 0; i <= n; i++)
5095 l[i] = va_arg(ap, char*);
5099 _exit(EXIT_FAILURE);
5102 int setrlimit_closest(int resource, const struct rlimit *rlim) {
5103 struct rlimit highest, fixed;
5107 if (setrlimit(resource, rlim) >= 0)
5113 /* So we failed to set the desired setrlimit, then let's try
5114 * to get as close as we can */
5115 assert_se(getrlimit(resource, &highest) == 0);
5117 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
5118 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
5120 if (setrlimit(resource, &fixed) < 0)
5126 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5127 _cleanup_fclose_ FILE *f = NULL;
5138 path = procfs_file_alloca(pid, "environ");
5140 f = fopen(path, "re");
5148 char line[LINE_MAX];
5151 for (i = 0; i < sizeof(line)-1; i++) {
5155 if (_unlikely_(c == EOF)) {
5165 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5166 value = strdup(line + l + 1);
5180 bool is_valid_documentation_url(const char *url) {
5183 if (startswith(url, "http://") && url[7])
5186 if (startswith(url, "https://") && url[8])
5189 if (startswith(url, "file:") && url[5])
5192 if (startswith(url, "info:") && url[5])
5195 if (startswith(url, "man:") && url[4])
5201 bool in_initrd(void) {
5202 static int saved = -1;
5208 /* We make two checks here:
5210 * 1. the flag file /etc/initrd-release must exist
5211 * 2. the root file system must be a memory file system
5213 * The second check is extra paranoia, since misdetecting an
5214 * initrd can have bad bad consequences due the initrd
5215 * emptying when transititioning to the main systemd.
5218 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5219 statfs("/", &s) >= 0 &&
5220 is_temporary_fs(&s);
5225 void warn_melody(void) {
5226 _cleanup_close_ int fd = -1;
5228 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5232 /* Yeah, this is synchronous. Kinda sucks. But well... */
5234 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5235 usleep(125*USEC_PER_MSEC);
5237 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5238 usleep(125*USEC_PER_MSEC);
5240 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5241 usleep(125*USEC_PER_MSEC);
5243 ioctl(fd, KIOCSOUND, 0);
5246 int make_console_stdio(void) {
5249 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5251 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5253 log_error("Failed to acquire terminal: %s", strerror(-fd));
5259 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5266 int get_home_dir(char **_h) {
5274 /* Take the user specified one */
5285 /* Hardcode home directory for root to avoid NSS */
5288 h = strdup("/root");
5296 /* Check the database... */
5300 return errno > 0 ? -errno : -ESRCH;
5302 if (!path_is_absolute(p->pw_dir))
5305 h = strdup(p->pw_dir);
5313 int get_shell(char **_s) {
5321 /* Take the user specified one */
5322 e = getenv("SHELL");
5332 /* Hardcode home directory for root to avoid NSS */
5335 s = strdup("/bin/sh");
5343 /* Check the database... */
5347 return errno > 0 ? -errno : -ESRCH;
5349 if (!path_is_absolute(p->pw_shell))
5352 s = strdup(p->pw_shell);
5360 bool filename_is_safe(const char *p) {
5374 if (strlen(p) > FILENAME_MAX)
5380 bool string_is_safe(const char *p) {
5385 for (t = p; *t; t++) {
5386 if (*t > 0 && *t < ' ')
5389 if (strchr("\\\"\'", *t))
5397 * Check if a string contains control characters.
5398 * Spaces and tabs are not considered control characters.
5400 bool string_has_cc(const char *p) {
5405 for (t = p; *t; t++)
5406 if (*t > 0 && *t < ' ' && *t != '\t')
5412 bool path_is_safe(const char *p) {
5417 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5420 if (strlen(p) > PATH_MAX)
5423 /* The following two checks are not really dangerous, but hey, they still are confusing */
5424 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5427 if (strstr(p, "//"))
5433 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5434 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5435 int (*compar) (const void *, const void *, void *), void *arg) {
5444 p = (void *)(((const char *) base) + (idx * size));
5445 comparison = compar(key, p, arg);
5448 else if (comparison > 0)
5456 bool is_locale_utf8(void) {
5458 static int cached_answer = -1;
5460 if (cached_answer >= 0)
5463 if (!setlocale(LC_ALL, "")) {
5464 cached_answer = true;
5468 set = nl_langinfo(CODESET);
5470 cached_answer = true;
5474 if (streq(set, "UTF-8")) {
5475 cached_answer = true;
5479 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5480 * unset and everything can do to UTF-8 nowadays. */
5481 set = setlocale(LC_CTYPE, NULL);
5483 cached_answer = true;
5487 /* Check result, but ignore the result if C was set
5491 !getenv("LC_ALL") &&
5492 !getenv("LC_CTYPE") &&
5496 return (bool) cached_answer;
5499 const char *draw_special_char(DrawSpecialChar ch) {
5500 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5503 [DRAW_TREE_VERTICAL] = "\342\224\202 ", /* │ */
5504 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5505 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5506 [DRAW_TREE_SPACE] = " ", /* */
5507 [DRAW_TRIANGULAR_BULLET] = "\342\200\243", /* ‣ */
5508 [DRAW_BLACK_CIRCLE] = "\342\227\217", /* ● */
5509 [DRAW_ARROW] = "\342\206\222", /* → */
5510 [DRAW_DASH] = "\342\200\223", /* – */
5513 /* ASCII fallback */ {
5514 [DRAW_TREE_VERTICAL] = "| ",
5515 [DRAW_TREE_BRANCH] = "|-",
5516 [DRAW_TREE_RIGHT] = "`-",
5517 [DRAW_TREE_SPACE] = " ",
5518 [DRAW_TRIANGULAR_BULLET] = ">",
5519 [DRAW_BLACK_CIRCLE] = "*",
5520 [DRAW_ARROW] = "->",
5525 return draw_table[!is_locale_utf8()][ch];
5528 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5531 size_t l, old_len, new_len;
5537 old_len = strlen(old_string);
5538 new_len = strlen(new_string);
5551 if (!startswith(f, old_string)) {
5557 nl = l - old_len + new_len;
5558 a = realloc(r, nl + 1);
5566 t = stpcpy(t, new_string);
5578 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5579 const char *i, *begin = NULL;
5584 } state = STATE_OTHER;
5586 size_t osz = 0, isz;
5592 /* Strips ANSI color and replaces TABs by 8 spaces */
5594 isz = _isz ? *_isz : strlen(*ibuf);
5596 f = open_memstream(&obuf, &osz);
5600 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5605 if (i >= *ibuf + isz) /* EOT */
5607 else if (*i == '\x1B')
5608 state = STATE_ESCAPE;
5609 else if (*i == '\t')
5616 if (i >= *ibuf + isz) { /* EOT */
5619 } else if (*i == '[') {
5620 state = STATE_BRACKET;
5625 state = STATE_OTHER;
5632 if (i >= *ibuf + isz || /* EOT */
5633 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5636 state = STATE_OTHER;
5638 } else if (*i == 'm')
5639 state = STATE_OTHER;
5661 int on_ac_power(void) {
5662 bool found_offline = false, found_online = false;
5663 _cleanup_closedir_ DIR *d = NULL;
5665 d = opendir("/sys/class/power_supply");
5671 _cleanup_close_ int fd = -1, device = -1;
5677 if (!de && errno != 0)
5683 if (ignore_file(de->d_name))
5686 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5688 if (errno == ENOENT || errno == ENOTDIR)
5694 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5696 if (errno == ENOENT)
5702 n = read(fd, contents, sizeof(contents));
5706 if (n != 6 || memcmp(contents, "Mains\n", 6))
5710 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5712 if (errno == ENOENT)
5718 n = read(fd, contents, sizeof(contents));
5722 if (n != 2 || contents[1] != '\n')
5725 if (contents[0] == '1') {
5726 found_online = true;
5728 } else if (contents[0] == '0')
5729 found_offline = true;
5734 return found_online || !found_offline;
5737 static int search_and_fopen_internal(const char *path, const char *mode, const char *root, char **search, FILE **_f) {
5744 if (!path_strv_canonicalize_absolute_uniq(search, root))
5747 STRV_FOREACH(i, search) {
5748 _cleanup_free_ char *p = NULL;
5751 p = strjoin(*i, "/", path, NULL);
5761 if (errno != ENOENT)
5768 int search_and_fopen(const char *path, const char *mode, const char *root, const char **search, FILE **_f) {
5769 _cleanup_strv_free_ char **copy = NULL;
5775 if (path_is_absolute(path)) {
5778 f = fopen(path, mode);
5787 copy = strv_copy((char**) search);
5791 return search_and_fopen_internal(path, mode, root, copy, _f);
5794 int search_and_fopen_nulstr(const char *path, const char *mode, const char *root, const char *search, FILE **_f) {
5795 _cleanup_strv_free_ char **s = NULL;
5797 if (path_is_absolute(path)) {
5800 f = fopen(path, mode);
5809 s = strv_split_nulstr(search);
5813 return search_and_fopen_internal(path, mode, root, s, _f);
5816 char *strextend(char **x, ...) {
5823 l = f = *x ? strlen(*x) : 0;
5830 t = va_arg(ap, const char *);
5835 if (n > ((size_t) -1) - l) {
5844 r = realloc(*x, l+1);
5854 t = va_arg(ap, const char *);
5868 char *strrep(const char *s, unsigned n) {
5876 p = r = malloc(l * n + 1);
5880 for (i = 0; i < n; i++)
5887 void* greedy_realloc(void **p, size_t *allocated, size_t need, size_t size) {
5894 if (*allocated >= need)
5897 newalloc = MAX(need * 2, 64u / size);
5898 a = newalloc * size;
5900 /* check for overflows */
5901 if (a < size * need)
5909 *allocated = newalloc;
5913 void* greedy_realloc0(void **p, size_t *allocated, size_t need, size_t size) {
5922 q = greedy_realloc(p, allocated, need, size);
5926 if (*allocated > prev)
5927 memzero(q + prev * size, (*allocated - prev) * size);
5932 bool id128_is_valid(const char *s) {
5938 /* Simple formatted 128bit hex string */
5940 for (i = 0; i < l; i++) {
5943 if (!(c >= '0' && c <= '9') &&
5944 !(c >= 'a' && c <= 'z') &&
5945 !(c >= 'A' && c <= 'Z'))
5949 } else if (l == 36) {
5951 /* Formatted UUID */
5953 for (i = 0; i < l; i++) {
5956 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5960 if (!(c >= '0' && c <= '9') &&
5961 !(c >= 'a' && c <= 'z') &&
5962 !(c >= 'A' && c <= 'Z'))
5973 int split_pair(const char *s, const char *sep, char **l, char **r) {
5988 a = strndup(s, x - s);
5992 b = strdup(x + strlen(sep));
6004 int shall_restore_state(void) {
6005 _cleanup_free_ char *line = NULL;
6010 r = proc_cmdline(&line);
6013 if (r == 0) /* Container ... */
6018 FOREACH_WORD_QUOTED(w, l, line, state) {
6026 e = startswith(n, "systemd.restore_state=");
6030 k = parse_boolean(e);
6038 int proc_cmdline(char **ret) {
6041 if (detect_container(NULL) > 0) {
6042 char *buf = NULL, *p;
6045 r = read_full_file("/proc/1/cmdline", &buf, &sz);
6049 for (p = buf; p + 1 < buf + sz; p++)
6058 r = read_one_line_file("/proc/cmdline", ret);
6065 int parse_proc_cmdline(int (*parse_item)(const char *key, const char *value)) {
6066 _cleanup_free_ char *line = NULL;
6073 r = proc_cmdline(&line);
6075 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
6079 FOREACH_WORD_QUOTED(w, l, line, state) {
6080 char word[l+1], *value;
6085 /* Filter out arguments that are intended only for the
6087 if (!in_initrd() && startswith(word, "rd."))
6090 value = strchr(word, '=');
6094 r = parse_item(word, value);
6102 int container_get_leader(const char *machine, pid_t *pid) {
6103 _cleanup_free_ char *s = NULL, *class = NULL;
6111 p = strappenda("/run/systemd/machines/", machine);
6112 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
6120 if (!streq_ptr(class, "container"))
6123 r = parse_pid(s, &leader);
6133 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *netns_fd, int *root_fd) {
6134 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1, netnsfd = -1;
6142 mntns = procfs_file_alloca(pid, "ns/mnt");
6143 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6151 pidns = procfs_file_alloca(pid, "ns/pid");
6152 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6160 netns = procfs_file_alloca(pid, "ns/net");
6161 netnsfd = open(netns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6169 root = procfs_file_alloca(pid, "root");
6170 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
6176 *pidns_fd = pidnsfd;
6179 *mntns_fd = mntnsfd;
6182 *netns_fd = netnsfd;
6187 pidnsfd = mntnsfd = netnsfd = -1;
6192 int namespace_enter(int pidns_fd, int mntns_fd, int netns_fd, int root_fd) {
6195 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6199 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6203 if (setns(netns_fd, CLONE_NEWNET) < 0)
6207 if (fchdir(root_fd) < 0)
6210 if (chroot(".") < 0)
6214 if (setresgid(0, 0, 0) < 0)
6217 if (setgroups(0, NULL) < 0)
6220 if (setresuid(0, 0, 0) < 0)
6226 bool pid_is_unwaited(pid_t pid) {
6227 /* Checks whether a PID is still valid at all, including a zombie */
6232 if (kill(pid, 0) >= 0)
6235 return errno != ESRCH;
6238 bool pid_is_alive(pid_t pid) {
6241 /* Checks whether a PID is still valid and not a zombie */
6246 r = get_process_state(pid);
6247 if (r == -ENOENT || r == 'Z')
6253 int getpeercred(int fd, struct ucred *ucred) {
6254 socklen_t n = sizeof(struct ucred);
6261 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6265 if (n != sizeof(struct ucred))
6268 /* Check if the data is actually useful and not suppressed due
6269 * to namespacing issues */
6277 int getpeersec(int fd, char **ret) {
6289 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6293 if (errno != ERANGE)
6300 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6316 /* This is much like like mkostemp() but is subject to umask(). */
6317 int mkostemp_safe(char *pattern, int flags) {
6318 _cleanup_umask_ mode_t u;
6325 fd = mkostemp(pattern, flags);
6332 int open_tmpfile(const char *path, int flags) {
6339 /* Try O_TMPFILE first, if it is supported */
6340 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6345 /* Fall back to unguessable name + unlinking */
6346 p = strappenda(path, "/systemd-tmp-XXXXXX");
6348 fd = mkostemp_safe(p, flags);
6356 int fd_warn_permissions(const char *path, int fd) {
6359 if (fstat(fd, &st) < 0)
6362 if (st.st_mode & 0111)
6363 log_warning("Configuration file %s is marked executable. Please remove executable permission bits. Proceeding anyway.", path);
6365 if (st.st_mode & 0002)
6366 log_warning("Configuration file %s is marked world-writable. Please remove world writability permission bits. Proceeding anyway.", path);
6368 if (getpid() == 1 && (st.st_mode & 0044) != 0044)
6369 log_warning("Configuration file %s is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.", path);
6374 unsigned long personality_from_string(const char *p) {
6376 /* Parse a personality specifier. We introduce our own
6377 * identifiers that indicate specific ABIs, rather than just
6378 * hints regarding the register size, since we want to keep
6379 * things open for multiple locally supported ABIs for the
6380 * same register size. We try to reuse the ABI identifiers
6381 * used by libseccomp. */
6383 #if defined(__x86_64__)
6385 if (streq(p, "x86"))
6388 if (streq(p, "x86-64"))
6391 #elif defined(__i386__)
6393 if (streq(p, "x86"))
6397 /* personality(7) documents that 0xffffffffUL is used for
6398 * querying the current personality, hence let's use that here
6399 * as error indicator. */
6400 return 0xffffffffUL;
6403 const char* personality_to_string(unsigned long p) {
6405 #if defined(__x86_64__)
6407 if (p == PER_LINUX32)
6413 #elif defined(__i386__)
6422 uint64_t physical_memory(void) {
6425 /* We return this as uint64_t in case we are running as 32bit
6426 * process on a 64bit kernel with huge amounts of memory */
6428 mem = sysconf(_SC_PHYS_PAGES);
6431 return (uint64_t) mem * (uint64_t) page_size();
6434 char* mount_test_option(const char *haystack, const char *needle) {
6436 struct mntent me = {
6437 .mnt_opts = (char*) haystack
6442 /* Like glibc's hasmntopt(), but works on a string, not a
6448 return hasmntopt(&me, needle);
6451 void hexdump(FILE *f, const void *p, size_t s) {
6452 const uint8_t *b = p;
6455 assert(s == 0 || b);
6460 fprintf(f, "%04x ", n);
6462 for (i = 0; i < 16; i++) {
6467 fprintf(f, "%02x ", b[i]);
6475 for (i = 0; i < 16; i++) {
6480 fputc(isprint(b[i]) ? (char) b[i] : '.', f);
6494 int update_reboot_param_file(const char *param) {
6499 r = write_string_file(REBOOT_PARAM_FILE, param);
6501 log_error("Failed to write reboot param to "
6502 REBOOT_PARAM_FILE": %s", strerror(-r));
6504 unlink(REBOOT_PARAM_FILE);
6509 int umount_recursive(const char *prefix, int flags) {
6513 /* Try to umount everything recursively below a
6514 * directory. Also, take care of stacked mounts, and keep
6515 * unmounting them until they are gone. */
6518 _cleanup_fclose_ FILE *proc_self_mountinfo = NULL;
6523 proc_self_mountinfo = fopen("/proc/self/mountinfo", "re");
6524 if (!proc_self_mountinfo)
6528 _cleanup_free_ char *path = NULL, *p = NULL;
6531 k = fscanf(proc_self_mountinfo,
6532 "%*s " /* (1) mount id */
6533 "%*s " /* (2) parent id */
6534 "%*s " /* (3) major:minor */
6535 "%*s " /* (4) root */
6536 "%ms " /* (5) mount point */
6537 "%*s" /* (6) mount options */
6538 "%*[^-]" /* (7) optional fields */
6539 "- " /* (8) separator */
6540 "%*s " /* (9) file system type */
6541 "%*s" /* (10) mount source */
6542 "%*s" /* (11) mount options 2 */
6543 "%*[^\n]", /* some rubbish at the end */
6552 p = cunescape(path);
6556 if (!path_startswith(p, prefix))
6559 if (umount2(p, flags) < 0) {
6575 int bind_remount_recursive(const char *prefix, bool ro) {
6576 _cleanup_set_free_free_ Set *done = NULL;
6577 _cleanup_free_ char *cleaned = NULL;
6580 /* Recursively remount a directory (and all its submounts)
6581 * read-only or read-write. If the directory is already
6582 * mounted, we reuse the mount and simply mark it
6583 * MS_BIND|MS_RDONLY (or remove the MS_RDONLY for read-write
6584 * operation). If it isn't we first make it one. Afterwards we
6585 * apply MS_BIND|MS_RDONLY (or remove MS_RDONLY) to all
6586 * submounts we can access, too. When mounts are stacked on
6587 * the same mount point we only care for each individual
6588 * "top-level" mount on each point, as we cannot
6589 * influence/access the underlying mounts anyway. We do not
6590 * have any effect on future submounts that might get
6591 * propagated, they migt be writable. This includes future
6592 * submounts that have been triggered via autofs. */
6594 cleaned = strdup(prefix);
6598 path_kill_slashes(cleaned);
6600 done = set_new(string_hash_func, string_compare_func);
6605 _cleanup_fclose_ FILE *proc_self_mountinfo = NULL;
6606 _cleanup_set_free_free_ Set *todo = NULL;
6607 bool top_autofs = false;
6610 todo = set_new(string_hash_func, string_compare_func);
6614 proc_self_mountinfo = fopen("/proc/self/mountinfo", "re");
6615 if (!proc_self_mountinfo)
6619 _cleanup_free_ char *path = NULL, *p = NULL, *type = NULL;
6622 k = fscanf(proc_self_mountinfo,
6623 "%*s " /* (1) mount id */
6624 "%*s " /* (2) parent id */
6625 "%*s " /* (3) major:minor */
6626 "%*s " /* (4) root */
6627 "%ms " /* (5) mount point */
6628 "%*s" /* (6) mount options (superblock) */
6629 "%*[^-]" /* (7) optional fields */
6630 "- " /* (8) separator */
6631 "%ms " /* (9) file system type */
6632 "%*s" /* (10) mount source */
6633 "%*s" /* (11) mount options (bind mount) */
6634 "%*[^\n]", /* some rubbish at the end */
6644 p = cunescape(path);
6648 /* Let's ignore autofs mounts. If they aren't
6649 * triggered yet, we want to avoid triggering
6650 * them, as we don't make any guarantees for
6651 * future submounts anyway. If they are
6652 * already triggered, then we will find
6653 * another entry for this. */
6654 if (streq(type, "autofs")) {
6655 top_autofs = top_autofs || path_equal(cleaned, p);
6659 if (path_startswith(p, cleaned) &&
6660 !set_contains(done, p)) {
6662 r = set_consume(todo, p);
6672 /* If we have no submounts to process anymore and if
6673 * the root is either already done, or an autofs, we
6675 if (set_isempty(todo) &&
6676 (top_autofs || set_contains(done, cleaned)))
6679 if (!set_contains(done, cleaned) &&
6680 !set_contains(todo, cleaned)) {
6681 /* The prefix directory itself is not yet a
6682 * mount, make it one. */
6683 if (mount(cleaned, cleaned, NULL, MS_BIND|MS_REC, NULL) < 0)
6686 if (mount(NULL, prefix, NULL, MS_BIND|MS_REMOUNT|(ro ? MS_RDONLY : 0), NULL) < 0)
6689 x = strdup(cleaned);
6693 r = set_consume(done, x);
6698 while ((x = set_steal_first(todo))) {
6700 r = set_consume(done, x);
6706 if (mount(NULL, x, NULL, MS_BIND|MS_REMOUNT|(ro ? MS_RDONLY : 0), NULL) < 0) {
6708 /* Deal with mount points that are
6709 * obstructed by a later mount */
6711 if (errno != ENOENT)
~ianmdlvl / elogind.git / blob