1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <linux/magic.h>
64 #ifdef HAVE_SYS_AUXV_H
75 #include "path-util.h"
76 #include "exit-status.h"
80 #include "device-nodes.h"
87 char **saved_argv = NULL;
89 static volatile unsigned cached_columns = 0;
90 static volatile unsigned cached_lines = 0;
92 size_t page_size(void) {
93 static thread_local size_t pgsz = 0;
96 if (_likely_(pgsz > 0))
99 r = sysconf(_SC_PAGESIZE);
106 bool streq_ptr(const char *a, const char *b) {
108 /* Like streq(), but tries to make sense of NULL pointers */
119 char* endswith(const char *s, const char *postfix) {
126 pl = strlen(postfix);
129 return (char*) s + sl;
134 if (memcmp(s + sl - pl, postfix, pl) != 0)
137 return (char*) s + sl - pl;
140 bool first_word(const char *s, const char *word) {
155 if (memcmp(s, word, wl) != 0)
159 strchr(WHITESPACE, s[wl]);
162 int close_nointr(int fd) {
168 /* Just ignore EINTR; a retry loop is the wrong
169 * thing to do on Linux.
171 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
172 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
173 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
174 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
176 if (_unlikely_(r < 0 && errno == EINTR))
184 void close_nointr_nofail(int fd) {
187 /* like close_nointr() but cannot fail, and guarantees errno
190 assert_se(close_nointr(fd) == 0);
193 void close_many(const int fds[], unsigned n_fd) {
196 assert(fds || n_fd <= 0);
198 for (i = 0; i < n_fd; i++)
199 close_nointr_nofail(fds[i]);
202 int unlink_noerrno(const char *path) {
213 int parse_boolean(const char *v) {
216 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
218 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
224 int parse_pid(const char *s, pid_t* ret_pid) {
225 unsigned long ul = 0;
232 r = safe_atolu(s, &ul);
238 if ((unsigned long) pid != ul)
248 int parse_uid(const char *s, uid_t* ret_uid) {
249 unsigned long ul = 0;
256 r = safe_atolu(s, &ul);
262 if ((unsigned long) uid != ul)
269 int safe_atou(const char *s, unsigned *ret_u) {
277 l = strtoul(s, &x, 0);
279 if (!x || x == s || *x || errno)
280 return errno > 0 ? -errno : -EINVAL;
282 if ((unsigned long) (unsigned) l != l)
285 *ret_u = (unsigned) l;
289 int safe_atoi(const char *s, int *ret_i) {
297 l = strtol(s, &x, 0);
299 if (!x || x == s || *x || errno)
300 return errno > 0 ? -errno : -EINVAL;
302 if ((long) (int) l != l)
309 int safe_atollu(const char *s, long long unsigned *ret_llu) {
311 unsigned long long l;
317 l = strtoull(s, &x, 0);
319 if (!x || x == s || *x || errno)
320 return errno ? -errno : -EINVAL;
326 int safe_atolli(const char *s, long long int *ret_lli) {
334 l = strtoll(s, &x, 0);
336 if (!x || x == s || *x || errno)
337 return errno ? -errno : -EINVAL;
343 int safe_atod(const char *s, double *ret_d) {
350 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
355 if (!x || x == s || *x || errno)
356 return errno ? -errno : -EINVAL;
362 static size_t strcspn_escaped(const char *s, const char *reject) {
363 bool escaped = false;
366 for (n=0; s[n]; n++) {
369 else if (s[n] == '\\')
371 else if (strchr(reject, s[n]))
377 /* Split a string into words. */
378 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
381 current = *state ? *state : (char*) c;
383 if (!*current || *c == 0)
386 current += strspn(current, separator);
390 if (quoted && strchr("\'\"", *current)) {
391 char quotechar = *(current++);
392 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
393 *state = current+*l+1;
395 *l = strcspn_escaped(current, separator);
398 *l = strcspn(current, separator);
402 return (char*) current;
405 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
407 _cleanup_free_ char *line = NULL;
419 p = procfs_file_alloca(pid, "stat");
420 r = read_one_line_file(p, &line);
424 /* Let's skip the pid and comm fields. The latter is enclosed
425 * in () but does not escape any () in its value, so let's
426 * skip over it manually */
428 p = strrchr(line, ')');
440 if ((long unsigned) (pid_t) ppid != ppid)
443 *_ppid = (pid_t) ppid;
448 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
450 _cleanup_free_ char *line = NULL;
456 p = procfs_file_alloca(pid, "stat");
457 r = read_one_line_file(p, &line);
461 /* Let's skip the pid and comm fields. The latter is enclosed
462 * in () but does not escape any () in its value, so let's
463 * skip over it manually */
465 p = strrchr(line, ')');
487 "%*d " /* priority */
489 "%*d " /* num_threads */
490 "%*d " /* itrealvalue */
491 "%llu " /* starttime */,
498 int fchmod_umask(int fd, mode_t m) {
503 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
509 char *truncate_nl(char *s) {
512 s[strcspn(s, NEWLINE)] = 0;
516 int get_process_comm(pid_t pid, char **name) {
523 p = procfs_file_alloca(pid, "comm");
525 r = read_one_line_file(p, name);
532 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
533 _cleanup_fclose_ FILE *f = NULL;
541 p = procfs_file_alloca(pid, "cmdline");
547 if (max_length == 0) {
548 size_t len = 0, allocated = 0;
550 while ((c = getc(f)) != EOF) {
552 if (!GREEDY_REALLOC(r, allocated, len+2)) {
557 r[len++] = isprint(c) ? c : ' ';
567 r = new(char, max_length);
573 while ((c = getc(f)) != EOF) {
595 size_t n = MIN(left-1, 3U);
602 /* Kernel threads have no argv[] */
603 if (r == NULL || r[0] == 0) {
604 _cleanup_free_ char *t = NULL;
612 h = get_process_comm(pid, &t);
616 r = strjoin("[", t, "]", NULL);
625 int is_kernel_thread(pid_t pid) {
637 p = procfs_file_alloca(pid, "cmdline");
642 count = fread(&c, 1, 1, f);
646 /* Kernel threads have an empty cmdline */
649 return eof ? 1 : -errno;
654 int get_process_capeff(pid_t pid, char **capeff) {
660 p = procfs_file_alloca(pid, "status");
662 return get_status_field(p, "\nCapEff:", capeff);
665 int get_process_exe(pid_t pid, char **name) {
673 p = procfs_file_alloca(pid, "exe");
675 r = readlink_malloc(p, name);
677 return r == -ENOENT ? -ESRCH : r;
679 d = endswith(*name, " (deleted)");
686 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
687 _cleanup_fclose_ FILE *f = NULL;
697 p = procfs_file_alloca(pid, "status");
702 FOREACH_LINE(line, f, return -errno) {
707 if (startswith(l, field)) {
709 l += strspn(l, WHITESPACE);
711 l[strcspn(l, WHITESPACE)] = 0;
713 return parse_uid(l, uid);
720 int get_process_uid(pid_t pid, uid_t *uid) {
721 return get_process_id(pid, "Uid:", uid);
724 int get_process_gid(pid_t pid, gid_t *gid) {
725 assert_cc(sizeof(uid_t) == sizeof(gid_t));
726 return get_process_id(pid, "Gid:", gid);
729 char *strnappend(const char *s, const char *suffix, size_t b) {
737 return strndup(suffix, b);
746 if (b > ((size_t) -1) - a)
749 r = new(char, a+b+1);
754 memcpy(r+a, suffix, b);
760 char *strappend(const char *s, const char *suffix) {
761 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
764 int readlink_malloc(const char *p, char **r) {
774 if (!(c = new(char, l)))
777 if ((n = readlink(p, c, l-1)) < 0) {
783 if ((size_t) n < l-1) {
794 int readlink_and_make_absolute(const char *p, char **r) {
795 _cleanup_free_ char *target = NULL;
802 j = readlink_malloc(p, &target);
806 k = file_in_same_dir(p, target);
814 int readlink_and_canonicalize(const char *p, char **r) {
821 j = readlink_and_make_absolute(p, &t);
825 s = canonicalize_file_name(t);
832 path_kill_slashes(*r);
837 int reset_all_signal_handlers(void) {
840 for (sig = 1; sig < _NSIG; sig++) {
841 struct sigaction sa = {
842 .sa_handler = SIG_DFL,
843 .sa_flags = SA_RESTART,
846 if (sig == SIGKILL || sig == SIGSTOP)
849 /* On Linux the first two RT signals are reserved by
850 * glibc, and sigaction() will return EINVAL for them. */
851 if ((sigaction(sig, &sa, NULL) < 0))
859 char *strstrip(char *s) {
862 /* Drops trailing whitespace. Modifies the string in
863 * place. Returns pointer to first non-space character */
865 s += strspn(s, WHITESPACE);
867 for (e = strchr(s, 0); e > s; e --)
868 if (!strchr(WHITESPACE, e[-1]))
876 char *delete_chars(char *s, const char *bad) {
879 /* Drops all whitespace, regardless where in the string */
881 for (f = s, t = s; *f; f++) {
893 bool in_charset(const char *s, const char* charset) {
900 if (!strchr(charset, *i))
906 char *file_in_same_dir(const char *path, const char *filename) {
913 /* This removes the last component of path and appends
914 * filename, unless the latter is absolute anyway or the
917 if (path_is_absolute(filename))
918 return strdup(filename);
920 if (!(e = strrchr(path, '/')))
921 return strdup(filename);
923 k = strlen(filename);
924 if (!(r = new(char, e-path+1+k+1)))
927 memcpy(r, path, e-path+1);
928 memcpy(r+(e-path)+1, filename, k+1);
933 int rmdir_parents(const char *path, const char *stop) {
942 /* Skip trailing slashes */
943 while (l > 0 && path[l-1] == '/')
949 /* Skip last component */
950 while (l > 0 && path[l-1] != '/')
953 /* Skip trailing slashes */
954 while (l > 0 && path[l-1] == '/')
960 if (!(t = strndup(path, l)))
963 if (path_startswith(stop, t)) {
979 char hexchar(int x) {
980 static const char table[16] = "0123456789abcdef";
982 return table[x & 15];
985 int unhexchar(char c) {
987 if (c >= '0' && c <= '9')
990 if (c >= 'a' && c <= 'f')
993 if (c >= 'A' && c <= 'F')
999 char *hexmem(const void *p, size_t l) {
1003 z = r = malloc(l * 2 + 1);
1007 for (x = p; x < (const uint8_t*) p + l; x++) {
1008 *(z++) = hexchar(*x >> 4);
1009 *(z++) = hexchar(*x & 15);
1016 void *unhexmem(const char *p, size_t l) {
1022 z = r = malloc((l + 1) / 2 + 1);
1026 for (x = p; x < p + l; x += 2) {
1029 a = unhexchar(x[0]);
1031 b = unhexchar(x[1]);
1035 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1042 char octchar(int x) {
1043 return '0' + (x & 7);
1046 int unoctchar(char c) {
1048 if (c >= '0' && c <= '7')
1054 char decchar(int x) {
1055 return '0' + (x % 10);
1058 int undecchar(char c) {
1060 if (c >= '0' && c <= '9')
1066 char *cescape(const char *s) {
1072 /* Does C style string escaping. */
1074 r = new(char, strlen(s)*4 + 1);
1078 for (f = s, t = r; *f; f++)
1124 /* For special chars we prefer octal over
1125 * hexadecimal encoding, simply because glib's
1126 * g_strescape() does the same */
1127 if ((*f < ' ') || (*f >= 127)) {
1129 *(t++) = octchar((unsigned char) *f >> 6);
1130 *(t++) = octchar((unsigned char) *f >> 3);
1131 *(t++) = octchar((unsigned char) *f);
1142 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1149 /* Undoes C style string escaping, and optionally prefixes it. */
1151 pl = prefix ? strlen(prefix) : 0;
1153 r = new(char, pl+length+1);
1158 memcpy(r, prefix, pl);
1160 for (f = s, t = r + pl; f < s + length; f++) {
1203 /* This is an extension of the XDG syntax files */
1208 /* hexadecimal encoding */
1211 a = unhexchar(f[1]);
1212 b = unhexchar(f[2]);
1214 if (a < 0 || b < 0) {
1215 /* Invalid escape code, let's take it literal then */
1219 *(t++) = (char) ((a << 4) | b);
1234 /* octal encoding */
1237 a = unoctchar(f[0]);
1238 b = unoctchar(f[1]);
1239 c = unoctchar(f[2]);
1241 if (a < 0 || b < 0 || c < 0) {
1242 /* Invalid escape code, let's take it literal then */
1246 *(t++) = (char) ((a << 6) | (b << 3) | c);
1254 /* premature end of string.*/
1259 /* Invalid escape code, let's take it literal then */
1271 char *cunescape_length(const char *s, size_t length) {
1272 return cunescape_length_with_prefix(s, length, NULL);
1275 char *cunescape(const char *s) {
1278 return cunescape_length(s, strlen(s));
1281 char *xescape(const char *s, const char *bad) {
1285 /* Escapes all chars in bad, in addition to \ and all special
1286 * chars, in \xFF style escaping. May be reversed with
1289 r = new(char, strlen(s) * 4 + 1);
1293 for (f = s, t = r; *f; f++) {
1295 if ((*f < ' ') || (*f >= 127) ||
1296 (*f == '\\') || strchr(bad, *f)) {
1299 *(t++) = hexchar(*f >> 4);
1300 *(t++) = hexchar(*f);
1310 char *ascii_strlower(char *t) {
1315 for (p = t; *p; p++)
1316 if (*p >= 'A' && *p <= 'Z')
1317 *p = *p - 'A' + 'a';
1322 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1326 filename[0] == '.' ||
1327 streq(filename, "lost+found") ||
1328 streq(filename, "aquota.user") ||
1329 streq(filename, "aquota.group") ||
1330 endswith(filename, ".rpmnew") ||
1331 endswith(filename, ".rpmsave") ||
1332 endswith(filename, ".rpmorig") ||
1333 endswith(filename, ".dpkg-old") ||
1334 endswith(filename, ".dpkg-new") ||
1335 endswith(filename, ".swp");
1338 bool ignore_file(const char *filename) {
1341 if (endswith(filename, "~"))
1344 return ignore_file_allow_backup(filename);
1347 int fd_nonblock(int fd, bool nonblock) {
1352 if ((flags = fcntl(fd, F_GETFL, 0)) < 0)
1356 flags |= O_NONBLOCK;
1358 flags &= ~O_NONBLOCK;
1360 if (fcntl(fd, F_SETFL, flags) < 0)
1366 int fd_cloexec(int fd, bool cloexec) {
1371 if ((flags = fcntl(fd, F_GETFD, 0)) < 0)
1375 flags |= FD_CLOEXEC;
1377 flags &= ~FD_CLOEXEC;
1379 if (fcntl(fd, F_SETFD, flags) < 0)
1385 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1388 assert(n_fdset == 0 || fdset);
1390 for (i = 0; i < n_fdset; i++)
1397 int close_all_fds(const int except[], unsigned n_except) {
1402 assert(n_except == 0 || except);
1404 d = opendir("/proc/self/fd");
1409 /* When /proc isn't available (for example in chroots)
1410 * the fallback is brute forcing through the fd
1413 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1414 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1416 if (fd_in_set(fd, except, n_except))
1419 if (close_nointr(fd) < 0)
1420 if (errno != EBADF && r == 0)
1427 while ((de = readdir(d))) {
1430 if (ignore_file(de->d_name))
1433 if (safe_atoi(de->d_name, &fd) < 0)
1434 /* Let's better ignore this, just in case */
1443 if (fd_in_set(fd, except, n_except))
1446 if (close_nointr(fd) < 0) {
1447 /* Valgrind has its own FD and doesn't want to have it closed */
1448 if (errno != EBADF && r == 0)
1457 bool chars_intersect(const char *a, const char *b) {
1460 /* Returns true if any of the chars in a are in b. */
1461 for (p = a; *p; p++)
1468 bool fstype_is_network(const char *fstype) {
1469 static const char table[] =
1479 return nulstr_contains(table, fstype);
1483 _cleanup_close_ int fd;
1485 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1491 TIOCL_GETKMSGREDIRECT,
1495 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1498 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1501 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1507 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1508 struct termios old_termios, new_termios;
1510 char line[LINE_MAX];
1515 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1516 new_termios = old_termios;
1518 new_termios.c_lflag &= ~ICANON;
1519 new_termios.c_cc[VMIN] = 1;
1520 new_termios.c_cc[VTIME] = 0;
1522 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1525 if (t != (usec_t) -1) {
1526 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1527 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1532 k = fread(&c, 1, 1, f);
1534 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1540 *need_nl = c != '\n';
1547 if (t != (usec_t) -1)
1548 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1551 if (!fgets(line, sizeof(line), f))
1556 if (strlen(line) != 1)
1566 int ask(char *ret, const char *replies, const char *text, ...) {
1576 bool need_nl = true;
1579 fputs(ANSI_HIGHLIGHT_ON, stdout);
1586 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1590 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1593 if (r == -EBADMSG) {
1594 puts("Bad input, please try again.");
1605 if (strchr(replies, c)) {
1610 puts("Read unexpected character, please try again.");
1614 int reset_terminal_fd(int fd, bool switch_to_text) {
1615 struct termios termios;
1618 /* Set terminal to some sane defaults */
1622 /* We leave locked terminal attributes untouched, so that
1623 * Plymouth may set whatever it wants to set, and we don't
1624 * interfere with that. */
1626 /* Disable exclusive mode, just in case */
1627 ioctl(fd, TIOCNXCL);
1629 /* Switch to text mode */
1631 ioctl(fd, KDSETMODE, KD_TEXT);
1633 /* Enable console unicode mode */
1634 ioctl(fd, KDSKBMODE, K_UNICODE);
1636 if (tcgetattr(fd, &termios) < 0) {
1641 /* We only reset the stuff that matters to the software. How
1642 * hardware is set up we don't touch assuming that somebody
1643 * else will do that for us */
1645 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1646 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1647 termios.c_oflag |= ONLCR;
1648 termios.c_cflag |= CREAD;
1649 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1651 termios.c_cc[VINTR] = 03; /* ^C */
1652 termios.c_cc[VQUIT] = 034; /* ^\ */
1653 termios.c_cc[VERASE] = 0177;
1654 termios.c_cc[VKILL] = 025; /* ^X */
1655 termios.c_cc[VEOF] = 04; /* ^D */
1656 termios.c_cc[VSTART] = 021; /* ^Q */
1657 termios.c_cc[VSTOP] = 023; /* ^S */
1658 termios.c_cc[VSUSP] = 032; /* ^Z */
1659 termios.c_cc[VLNEXT] = 026; /* ^V */
1660 termios.c_cc[VWERASE] = 027; /* ^W */
1661 termios.c_cc[VREPRINT] = 022; /* ^R */
1662 termios.c_cc[VEOL] = 0;
1663 termios.c_cc[VEOL2] = 0;
1665 termios.c_cc[VTIME] = 0;
1666 termios.c_cc[VMIN] = 1;
1668 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1672 /* Just in case, flush all crap out */
1673 tcflush(fd, TCIOFLUSH);
1678 int reset_terminal(const char *name) {
1681 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1685 r = reset_terminal_fd(fd, true);
1686 close_nointr_nofail(fd);
1691 int open_terminal(const char *name, int mode) {
1696 * If a TTY is in the process of being closed opening it might
1697 * cause EIO. This is horribly awful, but unlikely to be
1698 * changed in the kernel. Hence we work around this problem by
1699 * retrying a couple of times.
1701 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1704 assert(!(mode & O_CREAT));
1707 fd = open(name, mode, 0);
1714 /* Max 1s in total */
1718 usleep(50 * USEC_PER_MSEC);
1727 close_nointr_nofail(fd);
1732 close_nointr_nofail(fd);
1739 int flush_fd(int fd) {
1740 struct pollfd pollfd = {
1750 r = poll(&pollfd, 1, 0);
1760 l = read(fd, buf, sizeof(buf));
1766 if (errno == EAGAIN)
1775 int acquire_terminal(
1779 bool ignore_tiocstty_eperm,
1782 int fd = -1, notify = -1, r = 0, wd = -1;
1787 /* We use inotify to be notified when the tty is closed. We
1788 * create the watch before checking if we can actually acquire
1789 * it, so that we don't lose any event.
1791 * Note: strictly speaking this actually watches for the
1792 * device being closed, it does *not* really watch whether a
1793 * tty loses its controlling process. However, unless some
1794 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1795 * its tty otherwise this will not become a problem. As long
1796 * as the administrator makes sure not configure any service
1797 * on the same tty as an untrusted user this should not be a
1798 * problem. (Which he probably should not do anyway.) */
1800 if (timeout != (usec_t) -1)
1801 ts = now(CLOCK_MONOTONIC);
1803 if (!fail && !force) {
1804 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1810 wd = inotify_add_watch(notify, name, IN_CLOSE);
1818 struct sigaction sa_old, sa_new = {
1819 .sa_handler = SIG_IGN,
1820 .sa_flags = SA_RESTART,
1824 r = flush_fd(notify);
1829 /* We pass here O_NOCTTY only so that we can check the return
1830 * value TIOCSCTTY and have a reliable way to figure out if we
1831 * successfully became the controlling process of the tty */
1832 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1836 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1837 * if we already own the tty. */
1838 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1840 /* First, try to get the tty */
1841 if (ioctl(fd, TIOCSCTTY, force) < 0)
1844 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1846 /* Sometimes it makes sense to ignore TIOCSCTTY
1847 * returning EPERM, i.e. when very likely we already
1848 * are have this controlling terminal. */
1849 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1852 if (r < 0 && (force || fail || r != -EPERM)) {
1861 assert(notify >= 0);
1864 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1866 struct inotify_event *e;
1868 if (timeout != (usec_t) -1) {
1871 n = now(CLOCK_MONOTONIC);
1872 if (ts + timeout < n) {
1877 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1887 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1890 if (errno == EINTR || errno == EAGAIN)
1897 e = (struct inotify_event*) inotify_buffer;
1902 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1907 step = sizeof(struct inotify_event) + e->len;
1908 assert(step <= (size_t) l);
1910 e = (struct inotify_event*) ((uint8_t*) e + step);
1917 /* We close the tty fd here since if the old session
1918 * ended our handle will be dead. It's important that
1919 * we do this after sleeping, so that we don't enter
1920 * an endless loop. */
1921 close_nointr_nofail(fd);
1925 close_nointr_nofail(notify);
1927 r = reset_terminal_fd(fd, true);
1929 log_warning("Failed to reset terminal: %s", strerror(-r));
1935 close_nointr_nofail(fd);
1938 close_nointr_nofail(notify);
1943 int release_terminal(void) {
1945 struct sigaction sa_old, sa_new = {
1946 .sa_handler = SIG_IGN,
1947 .sa_flags = SA_RESTART,
1949 _cleanup_close_ int fd;
1951 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
1955 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1956 * by our own TIOCNOTTY */
1957 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1959 if (ioctl(fd, TIOCNOTTY) < 0)
1962 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1967 int sigaction_many(const struct sigaction *sa, ...) {
1972 while ((sig = va_arg(ap, int)) > 0)
1973 if (sigaction(sig, sa, NULL) < 0)
1980 int ignore_signals(int sig, ...) {
1981 struct sigaction sa = {
1982 .sa_handler = SIG_IGN,
1983 .sa_flags = SA_RESTART,
1989 if (sigaction(sig, &sa, NULL) < 0)
1993 while ((sig = va_arg(ap, int)) > 0)
1994 if (sigaction(sig, &sa, NULL) < 0)
2001 int default_signals(int sig, ...) {
2002 struct sigaction sa = {
2003 .sa_handler = SIG_DFL,
2004 .sa_flags = SA_RESTART,
2009 if (sigaction(sig, &sa, NULL) < 0)
2013 while ((sig = va_arg(ap, int)) > 0)
2014 if (sigaction(sig, &sa, NULL) < 0)
2021 int close_pipe(int p[]) {
2027 a = close_nointr(p[0]);
2032 b = close_nointr(p[1]);
2036 return a < 0 ? a : b;
2039 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2046 while (nbytes > 0) {
2049 k = read(fd, p, nbytes);
2050 if (k < 0 && errno == EINTR)
2053 if (k < 0 && errno == EAGAIN && do_poll) {
2055 /* We knowingly ignore any return value here,
2056 * and expect that any error/EOF is reported
2059 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2064 return n > 0 ? n : (k < 0 ? -errno : 0);
2074 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2075 const uint8_t *p = buf;
2081 while (nbytes > 0) {
2084 k = write(fd, p, nbytes);
2085 if (k < 0 && errno == EINTR)
2088 if (k < 0 && errno == EAGAIN && do_poll) {
2090 /* We knowingly ignore any return value here,
2091 * and expect that any error/EOF is reported
2094 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2099 return n > 0 ? n : (k < 0 ? -errno : 0);
2109 int parse_bytes(const char *t, off_t *bytes) {
2110 static const struct {
2112 unsigned long long factor;
2116 { "M", 1024ULL*1024ULL },
2117 { "G", 1024ULL*1024ULL*1024ULL },
2118 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2119 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2120 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2125 unsigned long long r = 0;
2137 l = strtoll(p, &e, 10);
2148 e += strspn(e, WHITESPACE);
2150 for (i = 0; i < ELEMENTSOF(table); i++)
2151 if (startswith(e, table[i].suffix)) {
2152 unsigned long long tmp;
2153 if ((unsigned long long) l > ULLONG_MAX / table[i].factor)
2155 tmp = l * table[i].factor;
2156 if (tmp > ULLONG_MAX - r)
2160 if ((unsigned long long) (off_t) r != r)
2163 p = e + strlen(table[i].suffix);
2167 if (i >= ELEMENTSOF(table))
2177 int make_stdio(int fd) {
2182 r = dup3(fd, STDIN_FILENO, 0);
2183 s = dup3(fd, STDOUT_FILENO, 0);
2184 t = dup3(fd, STDERR_FILENO, 0);
2187 close_nointr_nofail(fd);
2189 if (r < 0 || s < 0 || t < 0)
2192 /* We rely here that the new fd has O_CLOEXEC not set */
2197 int make_null_stdio(void) {
2200 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2204 return make_stdio(null_fd);
2207 bool is_device_path(const char *path) {
2209 /* Returns true on paths that refer to a device, either in
2210 * sysfs or in /dev */
2213 path_startswith(path, "/dev/") ||
2214 path_startswith(path, "/sys/");
2217 int dir_is_empty(const char *path) {
2218 _cleanup_closedir_ DIR *d;
2229 if (!de && errno != 0)
2235 if (!ignore_file(de->d_name))
2240 char* dirname_malloc(const char *path) {
2241 char *d, *dir, *dir2;
2258 int dev_urandom(void *p, size_t n) {
2259 _cleanup_close_ int fd;
2262 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2264 return errno == ENOENT ? -ENOSYS : -errno;
2266 k = loop_read(fd, p, n, true);
2269 if ((size_t) k != n)
2275 void random_bytes(void *p, size_t n) {
2276 static bool srand_called = false;
2280 r = dev_urandom(p, n);
2284 /* If some idiot made /dev/urandom unavailable to us, he'll
2285 * get a PRNG instead. */
2287 if (!srand_called) {
2290 #ifdef HAVE_SYS_AUXV_H
2291 /* The kernel provides us with a bit of entropy in
2292 * auxv, so let's try to make use of that to seed the
2293 * pseudo-random generator. It's better than
2298 auxv = (void*) getauxval(AT_RANDOM);
2300 x ^= *(unsigned*) auxv;
2303 x ^= (unsigned) now(CLOCK_REALTIME);
2304 x ^= (unsigned) gettid();
2307 srand_called = true;
2310 for (q = p; q < (uint8_t*) p + n; q ++)
2314 void rename_process(const char name[8]) {
2317 /* This is a like a poor man's setproctitle(). It changes the
2318 * comm field, argv[0], and also the glibc's internally used
2319 * name of the process. For the first one a limit of 16 chars
2320 * applies, to the second one usually one of 10 (i.e. length
2321 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2322 * "systemd"). If you pass a longer string it will be
2325 prctl(PR_SET_NAME, name);
2327 if (program_invocation_name)
2328 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2330 if (saved_argc > 0) {
2334 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2336 for (i = 1; i < saved_argc; i++) {
2340 memset(saved_argv[i], 0, strlen(saved_argv[i]));
2345 void sigset_add_many(sigset_t *ss, ...) {
2352 while ((sig = va_arg(ap, int)) > 0)
2353 assert_se(sigaddset(ss, sig) == 0);
2357 char* gethostname_malloc(void) {
2360 assert_se(uname(&u) >= 0);
2362 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2363 return strdup(u.nodename);
2365 return strdup(u.sysname);
2368 bool hostname_is_set(void) {
2371 assert_se(uname(&u) >= 0);
2373 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2376 static char *lookup_uid(uid_t uid) {
2379 _cleanup_free_ char *buf = NULL;
2380 struct passwd pwbuf, *pw = NULL;
2382 /* Shortcut things to avoid NSS lookups */
2384 return strdup("root");
2386 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2390 buf = malloc(bufsize);
2394 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2395 return strdup(pw->pw_name);
2397 if (asprintf(&name, "%lu", (unsigned long) uid) < 0)
2403 char* getlogname_malloc(void) {
2407 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2412 return lookup_uid(uid);
2415 char *getusername_malloc(void) {
2422 return lookup_uid(getuid());
2425 int getttyname_malloc(int fd, char **r) {
2426 char path[PATH_MAX], *c;
2431 k = ttyname_r(fd, path, sizeof(path));
2437 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2445 int getttyname_harder(int fd, char **r) {
2449 k = getttyname_malloc(fd, &s);
2453 if (streq(s, "tty")) {
2455 return get_ctty(0, NULL, r);
2462 int get_ctty_devnr(pid_t pid, dev_t *d) {
2464 _cleanup_free_ char *line = NULL;
2466 unsigned long ttynr;
2470 p = procfs_file_alloca(pid, "stat");
2471 r = read_one_line_file(p, &line);
2475 p = strrchr(line, ')');
2485 "%*d " /* session */
2490 if (major(ttynr) == 0 && minor(ttynr) == 0)
2499 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2501 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *s, *b, *p;
2506 k = get_ctty_devnr(pid, &devnr);
2510 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2512 k = readlink_malloc(fn, &s);
2518 /* This is an ugly hack */
2519 if (major(devnr) == 136) {
2520 if (asprintf(&b, "pts/%lu", (unsigned long) minor(devnr)) < 0)
2530 /* Probably something like the ptys which have no
2531 * symlink in /dev/char. Let's return something
2532 * vaguely useful. */
2545 if (startswith(s, "/dev/"))
2547 else if (startswith(s, "../"))
2565 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2571 /* This returns the first error we run into, but nevertheless
2572 * tries to go on. This closes the passed fd. */
2576 close_nointr_nofail(fd);
2578 return errno == ENOENT ? 0 : -errno;
2583 bool is_dir, keep_around;
2589 if (!de && errno != 0) {
2598 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2601 if (de->d_type == DT_UNKNOWN ||
2603 (de->d_type == DT_DIR && root_dev)) {
2604 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2605 if (ret == 0 && errno != ENOENT)
2610 is_dir = S_ISDIR(st.st_mode);
2613 (st.st_uid == 0 || st.st_uid == getuid()) &&
2614 (st.st_mode & S_ISVTX);
2616 is_dir = de->d_type == DT_DIR;
2617 keep_around = false;
2623 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2624 if (root_dev && st.st_dev != root_dev->st_dev)
2627 subdir_fd = openat(fd, de->d_name,
2628 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2629 if (subdir_fd < 0) {
2630 if (ret == 0 && errno != ENOENT)
2635 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2636 if (r < 0 && ret == 0)
2640 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2641 if (ret == 0 && errno != ENOENT)
2645 } else if (!only_dirs && !keep_around) {
2647 if (unlinkat(fd, de->d_name, 0) < 0) {
2648 if (ret == 0 && errno != ENOENT)
2659 _pure_ static int is_temporary_fs(struct statfs *s) {
2662 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2663 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2666 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2671 if (fstatfs(fd, &s) < 0) {
2672 close_nointr_nofail(fd);
2676 /* We refuse to clean disk file systems with this call. This
2677 * is extra paranoia just to be sure we never ever remove
2679 if (!is_temporary_fs(&s)) {
2680 log_error("Attempted to remove disk file system, and we can't allow that.");
2681 close_nointr_nofail(fd);
2685 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2688 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2694 /* We refuse to clean the root file system with this
2695 * call. This is extra paranoia to never cause a really
2696 * seriously broken system. */
2697 if (path_equal(path, "/")) {
2698 log_error("Attempted to remove entire root file system, and we can't allow that.");
2702 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2705 if (errno != ENOTDIR)
2709 if (statfs(path, &s) < 0)
2712 if (!is_temporary_fs(&s)) {
2713 log_error("Attempted to remove disk file system, and we can't allow that.");
2718 if (delete_root && !only_dirs)
2719 if (unlink(path) < 0 && errno != ENOENT)
2726 if (fstatfs(fd, &s) < 0) {
2727 close_nointr_nofail(fd);
2731 if (!is_temporary_fs(&s)) {
2732 log_error("Attempted to remove disk file system, and we can't allow that.");
2733 close_nointr_nofail(fd);
2738 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2741 if (honour_sticky && file_is_priv_sticky(path) > 0)
2744 if (rmdir(path) < 0 && errno != ENOENT) {
2753 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2754 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2757 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2758 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2761 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2764 /* Under the assumption that we are running privileged we
2765 * first change the access mode and only then hand out
2766 * ownership to avoid a window where access is too open. */
2768 if (mode != (mode_t) -1)
2769 if (chmod(path, mode) < 0)
2772 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2773 if (chown(path, uid, gid) < 0)
2779 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2782 /* Under the assumption that we are running privileged we
2783 * first change the access mode and only then hand out
2784 * ownership to avoid a window where access is too open. */
2786 if (mode != (mode_t) -1)
2787 if (fchmod(fd, mode) < 0)
2790 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2791 if (fchown(fd, uid, gid) < 0)
2797 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2801 /* Allocates the cpuset in the right size */
2804 if (!(r = CPU_ALLOC(n)))
2807 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2808 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2818 if (errno != EINVAL)
2825 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2826 static const char status_indent[] = " "; /* "[" STATUS "] " */
2827 _cleanup_free_ char *s = NULL;
2828 _cleanup_close_ int fd = -1;
2829 struct iovec iovec[6] = {};
2831 static bool prev_ephemeral;
2835 /* This is independent of logging, as status messages are
2836 * optional and go exclusively to the console. */
2838 if (vasprintf(&s, format, ap) < 0)
2841 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2854 sl = status ? sizeof(status_indent)-1 : 0;
2860 e = ellipsize(s, emax, 75);
2868 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2869 prev_ephemeral = ephemeral;
2872 if (!isempty(status)) {
2873 IOVEC_SET_STRING(iovec[n++], "[");
2874 IOVEC_SET_STRING(iovec[n++], status);
2875 IOVEC_SET_STRING(iovec[n++], "] ");
2877 IOVEC_SET_STRING(iovec[n++], status_indent);
2880 IOVEC_SET_STRING(iovec[n++], s);
2882 IOVEC_SET_STRING(iovec[n++], "\n");
2884 if (writev(fd, iovec, n) < 0)
2890 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
2896 va_start(ap, format);
2897 r = status_vprintf(status, ellipse, ephemeral, format, ap);
2903 int status_welcome(void) {
2904 _cleanup_free_ char *pretty_name = NULL, *ansi_color = NULL;
2907 r = parse_env_file("/etc/os-release", NEWLINE,
2908 "PRETTY_NAME", &pretty_name,
2909 "ANSI_COLOR", &ansi_color,
2912 if (r < 0 && r != -ENOENT)
2913 log_warning("Failed to read /etc/os-release: %s", strerror(-r));
2915 return status_printf(NULL, false, false,
2916 "\nWelcome to \x1B[%sm%s\x1B[0m!\n",
2917 isempty(ansi_color) ? "1" : ansi_color,
2918 isempty(pretty_name) ? "Linux" : pretty_name);
2921 char *replace_env(const char *format, char **env) {
2928 const char *e, *word = format;
2933 for (e = format; *e; e ++) {
2944 if (!(k = strnappend(r, word, e-word-1)))
2953 } else if (*e == '$') {
2954 if (!(k = strnappend(r, word, e-word)))
2970 t = strempty(strv_env_get_n(env, word+2, e-word-2));
2972 k = strappend(r, t);
2986 if (!(k = strnappend(r, word, e-word)))
2997 char **replace_env_argv(char **argv, char **env) {
2999 unsigned k = 0, l = 0;
3001 l = strv_length(argv);
3003 if (!(r = new(char*, l+1)))
3006 STRV_FOREACH(i, argv) {
3008 /* If $FOO appears as single word, replace it by the split up variable */
3009 if ((*i)[0] == '$' && (*i)[1] != '{') {
3014 e = strv_env_get(env, *i+1);
3017 if (!(m = strv_split_quoted(e))) {
3028 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3037 memcpy(r + k, m, q * sizeof(char*));
3045 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3046 if (!(r[k++] = replace_env(*i, env))) {
3056 int fd_columns(int fd) {
3057 struct winsize ws = {};
3059 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3068 unsigned columns(void) {
3072 if (_likely_(cached_columns > 0))
3073 return cached_columns;
3076 e = getenv("COLUMNS");
3081 c = fd_columns(STDOUT_FILENO);
3090 int fd_lines(int fd) {
3091 struct winsize ws = {};
3093 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3102 unsigned lines(void) {
3106 if (_likely_(cached_lines > 0))
3107 return cached_lines;
3110 e = getenv("LINES");
3115 l = fd_lines(STDOUT_FILENO);
3121 return cached_lines;
3124 /* intended to be used as a SIGWINCH sighandler */
3125 void columns_lines_cache_reset(int signum) {
3131 static int cached_on_tty = -1;
3133 if (_unlikely_(cached_on_tty < 0))
3134 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3136 return cached_on_tty;
3139 int running_in_chroot(void) {
3140 struct stat a = {}, b = {};
3142 /* Only works as root */
3143 if (stat("/proc/1/root", &a) < 0)
3146 if (stat("/", &b) < 0)
3150 a.st_dev != b.st_dev ||
3151 a.st_ino != b.st_ino;
3154 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3159 assert(percent <= 100);
3160 assert(new_length >= 3);
3162 if (old_length <= 3 || old_length <= new_length)
3163 return strndup(s, old_length);
3165 r = new0(char, new_length+1);
3169 x = (new_length * percent) / 100;
3171 if (x > new_length - 3)
3179 s + old_length - (new_length - x - 3),
3180 new_length - x - 3);
3185 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3189 unsigned k, len, len2;
3192 assert(percent <= 100);
3193 assert(new_length >= 3);
3195 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3196 if (ascii_is_valid(s))
3197 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3199 if (old_length <= 3 || old_length <= new_length)
3200 return strndup(s, old_length);
3202 x = (new_length * percent) / 100;
3204 if (x > new_length - 3)
3208 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3211 c = utf8_encoded_to_unichar(i);
3214 k += unichar_iswide(c) ? 2 : 1;
3217 if (k > x) /* last character was wide and went over quota */
3220 for (j = s + old_length; k < new_length && j > i; ) {
3223 j = utf8_prev_char(j);
3224 c = utf8_encoded_to_unichar(j);
3227 k += unichar_iswide(c) ? 2 : 1;
3231 /* we don't actually need to ellipsize */
3233 return memdup(s, old_length + 1);
3235 /* make space for ellipsis */
3236 j = utf8_next_char(j);
3239 len2 = s + old_length - j;
3240 e = new(char, len + 3 + len2 + 1);
3245 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3246 old_length, new_length, x, len, len2, k);
3250 e[len] = 0xe2; /* tri-dot ellipsis: … */
3254 memcpy(e + len + 3, j, len2 + 1);
3259 char *ellipsize(const char *s, size_t length, unsigned percent) {
3260 return ellipsize_mem(s, strlen(s), length, percent);
3263 int touch(const char *path) {
3268 /* This just opens the file for writing, ensuring it
3269 * exists. It doesn't call utimensat() the way /usr/bin/touch
3272 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
3276 close_nointr_nofail(fd);
3280 char *unquote(const char *s, const char* quotes) {
3284 /* This is rather stupid, simply removes the heading and
3285 * trailing quotes if there is one. Doesn't care about
3286 * escaping or anything. We should make this smarter one
3293 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3294 return strndup(s+1, l-2);
3299 char *normalize_env_assignment(const char *s) {
3300 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3303 eq = strchr(s, '=');
3315 memmove(r, t, strlen(t) + 1);
3319 name = strndup(s, eq - s);
3327 value = unquote(strstrip(p), QUOTES);
3331 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3337 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3348 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3360 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3367 r = wait_for_terminate(pid, &status);
3369 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3373 if (status.si_code == CLD_EXITED) {
3374 if (status.si_status != 0) {
3375 log_warning("%s failed with error code %i.", name, status.si_status);
3376 return status.si_status;
3379 log_debug("%s succeeded.", name);
3382 } else if (status.si_code == CLD_KILLED ||
3383 status.si_code == CLD_DUMPED) {
3385 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3389 log_warning("%s failed due to unknown reason.", name);
3393 noreturn void freeze(void) {
3395 /* Make sure nobody waits for us on a socket anymore */
3396 close_all_fds(NULL, 0);
3404 bool null_or_empty(struct stat *st) {
3407 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3410 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3416 int null_or_empty_path(const char *fn) {
3421 if (stat(fn, &st) < 0)
3424 return null_or_empty(&st);
3427 DIR *xopendirat(int fd, const char *name, int flags) {
3431 assert(!(flags & O_CREAT));
3433 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3439 close_nointr_nofail(nfd);
3446 int signal_from_string_try_harder(const char *s) {
3450 signo = signal_from_string(s);
3452 if (startswith(s, "SIG"))
3453 return signal_from_string(s+3);
3458 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3459 _cleanup_free_ char *t = NULL, *u = NULL;
3463 u = unquote(tagvalue, "\"\'");
3467 enc_len = strlen(u) * 4 + 1;
3468 t = new(char, enc_len);
3472 if (encode_devnode_name(u, t, enc_len) < 0)
3475 if (asprintf(&dn, "/dev/disk/by-%s/%s", by, t) < 0)
3481 char *fstab_node_to_udev_node(const char *p) {
3484 if (startswith(p, "LABEL="))
3485 return tag_to_udev_node(p+6, "label");
3487 if (startswith(p, "UUID="))
3488 return tag_to_udev_node(p+5, "uuid");
3490 if (startswith(p, "PARTUUID="))
3491 return tag_to_udev_node(p+9, "partuuid");
3493 if (startswith(p, "PARTLABEL="))
3494 return tag_to_udev_node(p+10, "partlabel");
3499 bool tty_is_vc(const char *tty) {
3502 if (startswith(tty, "/dev/"))
3505 return vtnr_from_tty(tty) >= 0;
3508 bool tty_is_console(const char *tty) {
3511 if (startswith(tty, "/dev/"))
3514 return streq(tty, "console");
3517 int vtnr_from_tty(const char *tty) {
3522 if (startswith(tty, "/dev/"))
3525 if (!startswith(tty, "tty") )
3528 if (tty[3] < '0' || tty[3] > '9')
3531 r = safe_atoi(tty+3, &i);
3535 if (i < 0 || i > 63)
3541 char *resolve_dev_console(char **active) {
3544 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3545 * (i.e. not read-only-mounted which is a sign for container setups) */
3547 if (path_is_read_only_fs("/sys") > 0)
3550 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3553 /* If multiple log outputs are configured the last one is what
3554 * /dev/console points to */
3555 tty = strrchr(*active, ' ');
3561 if (streq(tty, "tty0")) {
3564 /* Get the active VC (e.g. tty1) */
3565 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3567 tty = *active = tmp;
3574 bool tty_is_vc_resolve(const char *tty) {
3575 _cleanup_free_ char *active = NULL;
3579 if (startswith(tty, "/dev/"))
3582 if (streq(tty, "console")) {
3583 tty = resolve_dev_console(&active);
3588 return tty_is_vc(tty);
3591 const char *default_term_for_tty(const char *tty) {
3594 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3597 bool dirent_is_file(const struct dirent *de) {
3600 if (ignore_file(de->d_name))
3603 if (de->d_type != DT_REG &&
3604 de->d_type != DT_LNK &&
3605 de->d_type != DT_UNKNOWN)
3611 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3614 if (de->d_type != DT_REG &&
3615 de->d_type != DT_LNK &&
3616 de->d_type != DT_UNKNOWN)
3619 if (ignore_file_allow_backup(de->d_name))
3622 return endswith(de->d_name, suffix);
3625 void execute_directory(const char *directory, DIR *d, char *argv[]) {
3628 Hashmap *pids = NULL;
3632 /* Executes all binaries in a directory in parallel and
3633 * waits for them to finish. */
3636 if (!(_d = opendir(directory))) {
3638 if (errno == ENOENT)
3641 log_error("Failed to enumerate directory %s: %m", directory);
3648 if (!(pids = hashmap_new(trivial_hash_func, trivial_compare_func))) {
3649 log_error("Failed to allocate set.");
3653 while ((de = readdir(d))) {
3658 if (!dirent_is_file(de))
3661 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3666 if ((pid = fork()) < 0) {
3667 log_error("Failed to fork: %m");
3685 log_error("Failed to execute %s: %m", path);
3686 _exit(EXIT_FAILURE);
3689 log_debug("Spawned %s as %lu", path, (unsigned long) pid);
3691 if ((k = hashmap_put(pids, UINT_TO_PTR(pid), path)) < 0) {
3692 log_error("Failed to add PID to set: %s", strerror(-k));
3697 while (!hashmap_isempty(pids)) {
3698 pid_t pid = PTR_TO_UINT(hashmap_first_key(pids));
3702 if (waitid(P_PID, pid, &si, WEXITED) < 0) {
3707 log_error("waitid() failed: %m");
3711 if ((path = hashmap_remove(pids, UINT_TO_PTR(si.si_pid)))) {
3712 if (!is_clean_exit(si.si_code, si.si_status, NULL)) {
3713 if (si.si_code == CLD_EXITED)
3714 log_error("%s exited with exit status %i.", path, si.si_status);
3716 log_error("%s terminated by signal %s.", path, signal_to_string(si.si_status));
3718 log_debug("%s exited successfully.", path);
3729 hashmap_free_free(pids);
3732 int kill_and_sigcont(pid_t pid, int sig) {
3735 r = kill(pid, sig) < 0 ? -errno : 0;
3743 bool nulstr_contains(const char*nulstr, const char *needle) {
3749 NULSTR_FOREACH(i, nulstr)
3750 if (streq(i, needle))
3756 bool plymouth_running(void) {
3757 return access("/run/plymouth/pid", F_OK) >= 0;
3760 char* strshorten(char *s, size_t l) {
3769 static bool hostname_valid_char(char c) {
3771 (c >= 'a' && c <= 'z') ||
3772 (c >= 'A' && c <= 'Z') ||
3773 (c >= '0' && c <= '9') ||
3779 bool hostname_is_valid(const char *s) {
3786 for (p = s, dot = true; *p; p++) {
3793 if (!hostname_valid_char(*p))
3803 if (p-s > HOST_NAME_MAX)
3809 char* hostname_cleanup(char *s, bool lowercase) {
3813 for (p = s, d = s, dot = true; *p; p++) {
3820 } else if (hostname_valid_char(*p)) {
3821 *(d++) = lowercase ? tolower(*p) : *p;
3832 strshorten(s, HOST_NAME_MAX);
3837 int pipe_eof(int fd) {
3839 struct pollfd pollfd = {
3841 .events = POLLIN|POLLHUP,
3844 r = poll(&pollfd, 1, 0);
3851 return pollfd.revents & POLLHUP;
3854 int fd_wait_for_event(int fd, int event, usec_t t) {
3856 struct pollfd pollfd = {
3864 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
3871 return pollfd.revents;
3874 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
3885 t = new(char, strlen(path) + 1 + 6 + 1);
3889 fn = basename(path);
3893 stpcpy(stpcpy(t+k+1, fn), "XXXXXX");
3895 fd = mkostemp(t, O_WRONLY|O_CLOEXEC);
3901 f = fdopen(fd, "we");
3914 int terminal_vhangup_fd(int fd) {
3917 if (ioctl(fd, TIOCVHANGUP) < 0)
3923 int terminal_vhangup(const char *name) {
3926 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3930 r = terminal_vhangup_fd(fd);
3931 close_nointr_nofail(fd);
3936 int vt_disallocate(const char *name) {
3940 /* Deallocate the VT if possible. If not possible
3941 * (i.e. because it is the active one), at least clear it
3942 * entirely (including the scrollback buffer) */
3944 if (!startswith(name, "/dev/"))
3947 if (!tty_is_vc(name)) {
3948 /* So this is not a VT. I guess we cannot deallocate
3949 * it then. But let's at least clear the screen */
3951 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3956 "\033[r" /* clear scrolling region */
3957 "\033[H" /* move home */
3958 "\033[2J", /* clear screen */
3960 close_nointr_nofail(fd);
3965 if (!startswith(name, "/dev/tty"))
3968 r = safe_atou(name+8, &u);
3975 /* Try to deallocate */
3976 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
3980 r = ioctl(fd, VT_DISALLOCATE, u);
3981 close_nointr_nofail(fd);
3989 /* Couldn't deallocate, so let's clear it fully with
3991 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3996 "\033[r" /* clear scrolling region */
3997 "\033[H" /* move home */
3998 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4000 close_nointr_nofail(fd);
4005 int copy_file(const char *from, const char *to, int flags) {
4006 _cleanup_close_ int fdf = -1;
4012 fdf = open(from, O_RDONLY|O_CLOEXEC|O_NOCTTY);
4016 fdt = open(to, flags|O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
4024 n = read(fdf, buf, sizeof(buf));
4038 k = loop_write(fdt, buf, n, false);
4040 r = k < 0 ? k : (errno ? -errno : -EIO);
4049 r = close_nointr(fdt);
4059 int symlink_atomic(const char *from, const char *to) {
4061 _cleanup_free_ char *t;
4071 t = new(char, strlen(to) + 1 + 16 + 1);
4079 x = stpcpy(t+k+1, fn);
4082 for (i = 0; i < 16; i++) {
4083 *(x++) = hexchar(u & 0xF);
4089 if (symlink(from, t) < 0)
4092 if (rename(t, to) < 0) {
4101 bool display_is_local(const char *display) {
4105 display[0] == ':' &&
4106 display[1] >= '0' &&
4110 int socket_from_display(const char *display, char **path) {
4117 if (!display_is_local(display))
4120 k = strspn(display+1, "0123456789");
4122 f = new(char, sizeof("/tmp/.X11-unix/X") + k);
4126 c = stpcpy(f, "/tmp/.X11-unix/X");
4127 memcpy(c, display+1, k);
4136 const char **username,
4137 uid_t *uid, gid_t *gid,
4139 const char **shell) {
4147 /* We enforce some special rules for uid=0: in order to avoid
4148 * NSS lookups for root we hardcode its data. */
4150 if (streq(*username, "root") || streq(*username, "0")) {
4168 if (parse_uid(*username, &u) >= 0) {
4172 /* If there are multiple users with the same id, make
4173 * sure to leave $USER to the configured value instead
4174 * of the first occurrence in the database. However if
4175 * the uid was configured by a numeric uid, then let's
4176 * pick the real username from /etc/passwd. */
4178 *username = p->pw_name;
4181 p = getpwnam(*username);
4185 return errno > 0 ? -errno : -ESRCH;
4197 *shell = p->pw_shell;
4202 char* uid_to_name(uid_t uid) {
4207 return strdup("root");
4211 return strdup(p->pw_name);
4213 if (asprintf(&r, "%lu", (unsigned long) uid) < 0)
4219 char* gid_to_name(gid_t gid) {
4224 return strdup("root");
4228 return strdup(p->gr_name);
4230 if (asprintf(&r, "%lu", (unsigned long) gid) < 0)
4236 int get_group_creds(const char **groupname, gid_t *gid) {
4242 /* We enforce some special rules for gid=0: in order to avoid
4243 * NSS lookups for root we hardcode its data. */
4245 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4246 *groupname = "root";
4254 if (parse_gid(*groupname, &id) >= 0) {
4259 *groupname = g->gr_name;
4262 g = getgrnam(*groupname);
4266 return errno > 0 ? -errno : -ESRCH;
4274 int in_gid(gid_t gid) {
4276 int ngroups_max, r, i;
4278 if (getgid() == gid)
4281 if (getegid() == gid)
4284 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4285 assert(ngroups_max > 0);
4287 gids = alloca(sizeof(gid_t) * ngroups_max);
4289 r = getgroups(ngroups_max, gids);
4293 for (i = 0; i < r; i++)
4300 int in_group(const char *name) {
4304 r = get_group_creds(&name, &gid);
4311 int glob_exists(const char *path) {
4312 _cleanup_globfree_ glob_t g = {};
4318 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4320 if (k == GLOB_NOMATCH)
4322 else if (k == GLOB_NOSPACE)
4325 return !strv_isempty(g.gl_pathv);
4327 return errno ? -errno : -EIO;
4330 int glob_extend(char ***strv, const char *path) {
4331 _cleanup_globfree_ glob_t g = {};
4336 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4338 if (k == GLOB_NOMATCH)
4340 else if (k == GLOB_NOSPACE)
4342 else if (k != 0 || strv_isempty(g.gl_pathv))
4343 return errno ? -errno : -EIO;
4345 STRV_FOREACH(p, g.gl_pathv) {
4346 k = strv_extend(strv, *p);
4354 int dirent_ensure_type(DIR *d, struct dirent *de) {
4360 if (de->d_type != DT_UNKNOWN)
4363 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4367 S_ISREG(st.st_mode) ? DT_REG :
4368 S_ISDIR(st.st_mode) ? DT_DIR :
4369 S_ISLNK(st.st_mode) ? DT_LNK :
4370 S_ISFIFO(st.st_mode) ? DT_FIFO :
4371 S_ISSOCK(st.st_mode) ? DT_SOCK :
4372 S_ISCHR(st.st_mode) ? DT_CHR :
4373 S_ISBLK(st.st_mode) ? DT_BLK :
4379 int in_search_path(const char *path, char **search) {
4381 _cleanup_free_ char *parent = NULL;
4384 r = path_get_parent(path, &parent);
4388 STRV_FOREACH(i, search)
4389 if (path_equal(parent, *i))
4395 int get_files_in_directory(const char *path, char ***list) {
4396 _cleanup_closedir_ DIR *d = NULL;
4397 size_t bufsize = 0, n = 0;
4398 _cleanup_strv_free_ char **l = NULL;
4402 /* Returns all files in a directory in *list, and the number
4403 * of files as return value. If list is NULL returns only the
4415 if (!de && errno != 0)
4420 dirent_ensure_type(d, de);
4422 if (!dirent_is_file(de))
4426 /* one extra slot is needed for the terminating NULL */
4427 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4430 l[n] = strdup(de->d_name);
4441 l = NULL; /* avoid freeing */
4447 char *strjoin(const char *x, ...) {
4461 t = va_arg(ap, const char *);
4466 if (n > ((size_t) -1) - l) {
4490 t = va_arg(ap, const char *);
4504 bool is_main_thread(void) {
4505 static thread_local int cached = 0;
4507 if (_unlikely_(cached == 0))
4508 cached = getpid() == gettid() ? 1 : -1;
4513 int block_get_whole_disk(dev_t d, dev_t *ret) {
4520 /* If it has a queue this is good enough for us */
4521 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4524 r = access(p, F_OK);
4532 /* If it is a partition find the originating device */
4533 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4536 r = access(p, F_OK);
4542 /* Get parent dev_t */
4543 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4546 r = read_one_line_file(p, &s);
4552 r = sscanf(s, "%u:%u", &m, &n);
4558 /* Only return this if it is really good enough for us. */
4559 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4562 r = access(p, F_OK);
4566 *ret = makedev(m, n);
4573 int file_is_priv_sticky(const char *p) {
4578 if (lstat(p, &st) < 0)
4582 (st.st_uid == 0 || st.st_uid == getuid()) &&
4583 (st.st_mode & S_ISVTX);
4586 static const char *const ioprio_class_table[] = {
4587 [IOPRIO_CLASS_NONE] = "none",
4588 [IOPRIO_CLASS_RT] = "realtime",
4589 [IOPRIO_CLASS_BE] = "best-effort",
4590 [IOPRIO_CLASS_IDLE] = "idle"
4593 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4595 static const char *const sigchld_code_table[] = {
4596 [CLD_EXITED] = "exited",
4597 [CLD_KILLED] = "killed",
4598 [CLD_DUMPED] = "dumped",
4599 [CLD_TRAPPED] = "trapped",
4600 [CLD_STOPPED] = "stopped",
4601 [CLD_CONTINUED] = "continued",
4604 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4606 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4607 [LOG_FAC(LOG_KERN)] = "kern",
4608 [LOG_FAC(LOG_USER)] = "user",
4609 [LOG_FAC(LOG_MAIL)] = "mail",
4610 [LOG_FAC(LOG_DAEMON)] = "daemon",
4611 [LOG_FAC(LOG_AUTH)] = "auth",
4612 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4613 [LOG_FAC(LOG_LPR)] = "lpr",
4614 [LOG_FAC(LOG_NEWS)] = "news",
4615 [LOG_FAC(LOG_UUCP)] = "uucp",
4616 [LOG_FAC(LOG_CRON)] = "cron",
4617 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4618 [LOG_FAC(LOG_FTP)] = "ftp",
4619 [LOG_FAC(LOG_LOCAL0)] = "local0",
4620 [LOG_FAC(LOG_LOCAL1)] = "local1",
4621 [LOG_FAC(LOG_LOCAL2)] = "local2",
4622 [LOG_FAC(LOG_LOCAL3)] = "local3",
4623 [LOG_FAC(LOG_LOCAL4)] = "local4",
4624 [LOG_FAC(LOG_LOCAL5)] = "local5",
4625 [LOG_FAC(LOG_LOCAL6)] = "local6",
4626 [LOG_FAC(LOG_LOCAL7)] = "local7"
4629 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4631 static const char *const log_level_table[] = {
4632 [LOG_EMERG] = "emerg",
4633 [LOG_ALERT] = "alert",
4634 [LOG_CRIT] = "crit",
4636 [LOG_WARNING] = "warning",
4637 [LOG_NOTICE] = "notice",
4638 [LOG_INFO] = "info",
4639 [LOG_DEBUG] = "debug"
4642 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4644 static const char* const sched_policy_table[] = {
4645 [SCHED_OTHER] = "other",
4646 [SCHED_BATCH] = "batch",
4647 [SCHED_IDLE] = "idle",
4648 [SCHED_FIFO] = "fifo",
4652 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4654 static const char* const rlimit_table[] = {
4655 [RLIMIT_CPU] = "LimitCPU",
4656 [RLIMIT_FSIZE] = "LimitFSIZE",
4657 [RLIMIT_DATA] = "LimitDATA",
4658 [RLIMIT_STACK] = "LimitSTACK",
4659 [RLIMIT_CORE] = "LimitCORE",
4660 [RLIMIT_RSS] = "LimitRSS",
4661 [RLIMIT_NOFILE] = "LimitNOFILE",
4662 [RLIMIT_AS] = "LimitAS",
4663 [RLIMIT_NPROC] = "LimitNPROC",
4664 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4665 [RLIMIT_LOCKS] = "LimitLOCKS",
4666 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4667 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4668 [RLIMIT_NICE] = "LimitNICE",
4669 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4670 [RLIMIT_RTTIME] = "LimitRTTIME"
4673 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4675 static const char* const ip_tos_table[] = {
4676 [IPTOS_LOWDELAY] = "low-delay",
4677 [IPTOS_THROUGHPUT] = "throughput",
4678 [IPTOS_RELIABILITY] = "reliability",
4679 [IPTOS_LOWCOST] = "low-cost",
4682 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4684 static const char *const __signal_table[] = {
4701 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4712 [SIGVTALRM] = "VTALRM",
4714 [SIGWINCH] = "WINCH",
4720 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4722 const char *signal_to_string(int signo) {
4723 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4726 name = __signal_to_string(signo);
4730 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4731 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4733 snprintf(buf, sizeof(buf), "%d", signo);
4738 int signal_from_string(const char *s) {
4743 signo = __signal_from_string(s);
4747 if (startswith(s, "RTMIN+")) {
4751 if (safe_atou(s, &u) >= 0) {
4752 signo = (int) u + offset;
4753 if (signo > 0 && signo < _NSIG)
4759 bool kexec_loaded(void) {
4760 bool loaded = false;
4763 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4771 int strdup_or_null(const char *a, char **b) {
4789 int prot_from_flags(int flags) {
4791 switch (flags & O_ACCMODE) {
4800 return PROT_READ|PROT_WRITE;
4807 char *format_bytes(char *buf, size_t l, off_t t) {
4810 static const struct {
4814 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4815 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4816 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4817 { "G", 1024ULL*1024ULL*1024ULL },
4818 { "M", 1024ULL*1024ULL },
4822 for (i = 0; i < ELEMENTSOF(table); i++) {
4824 if (t >= table[i].factor) {
4827 (unsigned long long) (t / table[i].factor),
4828 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4835 snprintf(buf, l, "%lluB", (unsigned long long) t);
4843 void* memdup(const void *p, size_t l) {
4856 int fd_inc_sndbuf(int fd, size_t n) {
4858 socklen_t l = sizeof(value);
4860 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4861 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4864 /* If we have the privileges we will ignore the kernel limit. */
4867 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4868 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
4874 int fd_inc_rcvbuf(int fd, size_t n) {
4876 socklen_t l = sizeof(value);
4878 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
4879 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4882 /* If we have the privileges we will ignore the kernel limit. */
4885 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
4886 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
4891 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
4892 pid_t parent_pid, agent_pid;
4894 bool stdout_is_tty, stderr_is_tty;
4902 parent_pid = getpid();
4904 /* Spawns a temporary TTY agent, making sure it goes away when
4911 if (agent_pid != 0) {
4918 * Make sure the agent goes away when the parent dies */
4919 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
4920 _exit(EXIT_FAILURE);
4922 /* Check whether our parent died before we were able
4923 * to set the death signal */
4924 if (getppid() != parent_pid)
4925 _exit(EXIT_SUCCESS);
4927 /* Don't leak fds to the agent */
4928 close_all_fds(except, n_except);
4930 stdout_is_tty = isatty(STDOUT_FILENO);
4931 stderr_is_tty = isatty(STDERR_FILENO);
4933 if (!stdout_is_tty || !stderr_is_tty) {
4934 /* Detach from stdout/stderr. and reopen
4935 * /dev/tty for them. This is important to
4936 * ensure that when systemctl is started via
4937 * popen() or a similar call that expects to
4938 * read EOF we actually do generate EOF and
4939 * not delay this indefinitely by because we
4940 * keep an unused copy of stdin around. */
4941 fd = open("/dev/tty", O_WRONLY);
4943 log_error("Failed to open /dev/tty: %m");
4944 _exit(EXIT_FAILURE);
4948 dup2(fd, STDOUT_FILENO);
4951 dup2(fd, STDERR_FILENO);
4957 /* Count arguments */
4959 for (n = 0; va_arg(ap, char*); n++)
4964 l = alloca(sizeof(char *) * (n + 1));
4966 /* Fill in arguments */
4968 for (i = 0; i <= n; i++)
4969 l[i] = va_arg(ap, char*);
4973 _exit(EXIT_FAILURE);
4976 int setrlimit_closest(int resource, const struct rlimit *rlim) {
4977 struct rlimit highest, fixed;
4981 if (setrlimit(resource, rlim) >= 0)
4987 /* So we failed to set the desired setrlimit, then let's try
4988 * to get as close as we can */
4989 assert_se(getrlimit(resource, &highest) == 0);
4991 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
4992 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
4994 if (setrlimit(resource, &fixed) < 0)
5000 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5001 _cleanup_fclose_ FILE *f = NULL;
5012 path = procfs_file_alloca(pid, "environ");
5014 f = fopen(path, "re");
5022 char line[LINE_MAX];
5025 for (i = 0; i < sizeof(line)-1; i++) {
5029 if (_unlikely_(c == EOF)) {
5039 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5040 value = strdup(line + l + 1);
5054 bool is_valid_documentation_url(const char *url) {
5057 if (startswith(url, "http://") && url[7])
5060 if (startswith(url, "https://") && url[8])
5063 if (startswith(url, "file:") && url[5])
5066 if (startswith(url, "info:") && url[5])
5069 if (startswith(url, "man:") && url[4])
5075 bool in_initrd(void) {
5076 static int saved = -1;
5082 /* We make two checks here:
5084 * 1. the flag file /etc/initrd-release must exist
5085 * 2. the root file system must be a memory file system
5087 * The second check is extra paranoia, since misdetecting an
5088 * initrd can have bad bad consequences due the initrd
5089 * emptying when transititioning to the main systemd.
5092 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5093 statfs("/", &s) >= 0 &&
5094 is_temporary_fs(&s);
5099 void warn_melody(void) {
5100 _cleanup_close_ int fd = -1;
5102 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5106 /* Yeah, this is synchronous. Kinda sucks. But well... */
5108 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5109 usleep(125*USEC_PER_MSEC);
5111 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5112 usleep(125*USEC_PER_MSEC);
5114 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5115 usleep(125*USEC_PER_MSEC);
5117 ioctl(fd, KIOCSOUND, 0);
5120 int make_console_stdio(void) {
5123 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5125 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5127 log_error("Failed to acquire terminal: %s", strerror(-fd));
5133 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5140 int get_home_dir(char **_h) {
5148 /* Take the user specified one */
5159 /* Hardcode home directory for root to avoid NSS */
5162 h = strdup("/root");
5170 /* Check the database... */
5174 return errno > 0 ? -errno : -ESRCH;
5176 if (!path_is_absolute(p->pw_dir))
5179 h = strdup(p->pw_dir);
5187 int get_shell(char **_s) {
5195 /* Take the user specified one */
5196 e = getenv("SHELL");
5206 /* Hardcode home directory for root to avoid NSS */
5209 s = strdup("/bin/sh");
5217 /* Check the database... */
5221 return errno > 0 ? -errno : -ESRCH;
5223 if (!path_is_absolute(p->pw_shell))
5226 s = strdup(p->pw_shell);
5234 bool filename_is_safe(const char *p) {
5248 if (strlen(p) > FILENAME_MAX)
5254 bool string_is_safe(const char *p) {
5259 for (t = p; *t; t++) {
5260 if (*t > 0 && *t < ' ')
5263 if (strchr("\\\"\'", *t))
5271 * Check if a string contains control characters.
5272 * Spaces and tabs are not considered control characters.
5274 bool string_has_cc(const char *p) {
5279 for (t = p; *t; t++)
5280 if (*t > 0 && *t < ' ' && *t != '\t')
5286 bool path_is_safe(const char *p) {
5291 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5294 if (strlen(p) > PATH_MAX)
5297 /* The following two checks are not really dangerous, but hey, they still are confusing */
5298 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5301 if (strstr(p, "//"))
5307 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5308 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5309 int (*compar) (const void *, const void *, void *), void *arg) {
5318 p = (void *)(((const char *) base) + (idx * size));
5319 comparison = compar(key, p, arg);
5322 else if (comparison > 0)
5330 bool is_locale_utf8(void) {
5332 static int cached_answer = -1;
5334 if (cached_answer >= 0)
5337 if (!setlocale(LC_ALL, "")) {
5338 cached_answer = true;
5342 set = nl_langinfo(CODESET);
5344 cached_answer = true;
5348 if (streq(set, "UTF-8")) {
5349 cached_answer = true;
5353 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5354 * unset and everything can do to UTF-8 nowadays. */
5355 set = setlocale(LC_CTYPE, NULL);
5357 cached_answer = true;
5361 /* Check result, but ignore the result if C was set
5365 !getenv("LC_ALL") &&
5366 !getenv("LC_CTYPE") &&
5370 return (bool) cached_answer;
5373 const char *draw_special_char(DrawSpecialChar ch) {
5374 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5376 [DRAW_TREE_VERT] = "\342\224\202 ", /* │ */
5377 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5378 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5379 [DRAW_TREE_SPACE] = " ", /* */
5380 [DRAW_TRIANGULAR_BULLET] = "\342\200\243 ", /* ‣ */
5381 [DRAW_BLACK_CIRCLE] = "\342\227\217 ", /* ● */
5383 /* ASCII fallback */ {
5384 [DRAW_TREE_VERT] = "| ",
5385 [DRAW_TREE_BRANCH] = "|-",
5386 [DRAW_TREE_RIGHT] = "`-",
5387 [DRAW_TREE_SPACE] = " ",
5388 [DRAW_TRIANGULAR_BULLET] = "> ",
5389 [DRAW_BLACK_CIRCLE] = "* ",
5393 return draw_table[!is_locale_utf8()][ch];
5396 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5399 size_t l, old_len, new_len;
5405 old_len = strlen(old_string);
5406 new_len = strlen(new_string);
5419 if (!startswith(f, old_string)) {
5425 nl = l - old_len + new_len;
5426 a = realloc(r, nl + 1);
5434 t = stpcpy(t, new_string);
5446 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5447 const char *i, *begin = NULL;
5452 } state = STATE_OTHER;
5454 size_t osz = 0, isz;
5460 /* Strips ANSI color and replaces TABs by 8 spaces */
5462 isz = _isz ? *_isz : strlen(*ibuf);
5464 f = open_memstream(&obuf, &osz);
5468 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5473 if (i >= *ibuf + isz) /* EOT */
5475 else if (*i == '\x1B')
5476 state = STATE_ESCAPE;
5477 else if (*i == '\t')
5484 if (i >= *ibuf + isz) { /* EOT */
5487 } else if (*i == '[') {
5488 state = STATE_BRACKET;
5493 state = STATE_OTHER;
5500 if (i >= *ibuf + isz || /* EOT */
5501 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5504 state = STATE_OTHER;
5506 } else if (*i == 'm')
5507 state = STATE_OTHER;
5529 int on_ac_power(void) {
5530 bool found_offline = false, found_online = false;
5531 _cleanup_closedir_ DIR *d = NULL;
5533 d = opendir("/sys/class/power_supply");
5539 _cleanup_close_ int fd = -1, device = -1;
5545 if (!de && errno != 0)
5551 if (ignore_file(de->d_name))
5554 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5556 if (errno == ENOENT || errno == ENOTDIR)
5562 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5564 if (errno == ENOENT)
5570 n = read(fd, contents, sizeof(contents));
5574 if (n != 6 || memcmp(contents, "Mains\n", 6))
5577 close_nointr_nofail(fd);
5578 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5580 if (errno == ENOENT)
5586 n = read(fd, contents, sizeof(contents));
5590 if (n != 2 || contents[1] != '\n')
5593 if (contents[0] == '1') {
5594 found_online = true;
5596 } else if (contents[0] == '0')
5597 found_offline = true;
5602 return found_online || !found_offline;
5605 static int search_and_fopen_internal(const char *path, const char *mode, char **search, FILE **_f) {
5612 if (!path_strv_canonicalize_uniq(search))
5615 STRV_FOREACH(i, search) {
5616 _cleanup_free_ char *p = NULL;
5619 p = strjoin(*i, "/", path, NULL);
5629 if (errno != ENOENT)
5636 int search_and_fopen(const char *path, const char *mode, const char **search, FILE **_f) {
5637 _cleanup_strv_free_ char **copy = NULL;
5643 if (path_is_absolute(path)) {
5646 f = fopen(path, mode);
5655 copy = strv_copy((char**) search);
5659 return search_and_fopen_internal(path, mode, copy, _f);
5662 int search_and_fopen_nulstr(const char *path, const char *mode, const char *search, FILE **_f) {
5663 _cleanup_strv_free_ char **s = NULL;
5665 if (path_is_absolute(path)) {
5668 f = fopen(path, mode);
5677 s = strv_split_nulstr(search);
5681 return search_and_fopen_internal(path, mode, s, _f);
5684 char *strextend(char **x, ...) {
5691 l = f = *x ? strlen(*x) : 0;
5698 t = va_arg(ap, const char *);
5703 if (n > ((size_t) -1) - l) {
5712 r = realloc(*x, l+1);
5722 t = va_arg(ap, const char *);
5736 char *strrep(const char *s, unsigned n) {
5744 p = r = malloc(l * n + 1);
5748 for (i = 0; i < n; i++)
5755 void* greedy_realloc(void **p, size_t *allocated, size_t need) {
5762 if (*allocated >= need)
5765 a = MAX(64u, need * 2);
5767 /* check for overflows */
5780 void* greedy_realloc0(void **p, size_t *allocated, size_t need) {
5789 q = greedy_realloc(p, allocated, need);
5793 if (*allocated > prev)
5794 memset(&q[prev], 0, *allocated - prev);
5799 bool id128_is_valid(const char *s) {
5805 /* Simple formatted 128bit hex string */
5807 for (i = 0; i < l; i++) {
5810 if (!(c >= '0' && c <= '9') &&
5811 !(c >= 'a' && c <= 'z') &&
5812 !(c >= 'A' && c <= 'Z'))
5816 } else if (l == 36) {
5818 /* Formatted UUID */
5820 for (i = 0; i < l; i++) {
5823 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5827 if (!(c >= '0' && c <= '9') &&
5828 !(c >= 'a' && c <= 'z') &&
5829 !(c >= 'A' && c <= 'Z'))
5840 void parse_user_at_host(char *arg, char **user, char **host) {
5845 *host = strchr(arg, '@');
5854 int split_pair(const char *s, const char *sep, char **l, char **r) {
5869 a = strndup(s, x - s);
5873 b = strdup(x + strlen(sep));
5885 int shall_restore_state(void) {
5886 _cleanup_free_ char *line;
5891 r = proc_cmdline(&line);
5894 if (r == 0) /* Container ... */
5897 FOREACH_WORD_QUOTED(w, l, line, state)
5898 if (l == 23 && strneq(w, "systemd.restore_state=0", 23))
5904 int proc_cmdline(char **ret) {
5907 if (detect_container(NULL) > 0) {
5911 r = read_full_file("/proc/1/cmdline", &buf, &sz);
5915 for (p = buf; p + 1 < buf + sz; p++)
5924 r = read_one_line_file("/proc/cmdline", ret);
5931 int container_get_leader(const char *machine, pid_t *pid) {
5932 _cleanup_free_ char *s = NULL, *class = NULL;
5940 p = strappenda("/run/systemd/machines/", machine);
5941 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
5949 if (!streq_ptr(class, "container"))
5952 r = parse_pid(s, &leader);
5962 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *root_fd) {
5963 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1;
5964 const char *pidns, *mntns, *root;
5972 mntns = procfs_file_alloca(pid, "ns/mnt");
5973 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
5977 pidns = procfs_file_alloca(pid, "ns/pid");
5978 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
5982 root = procfs_file_alloca(pid, "root");
5983 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
5987 *pidns_fd = pidnsfd;
5988 *mntns_fd = mntnsfd;
5996 int namespace_enter(int pidns_fd, int mntns_fd, int root_fd) {
5997 assert(pidns_fd >= 0);
5998 assert(mntns_fd >= 0);
5999 assert(root_fd >= 0);
6001 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6004 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6007 if (fchdir(root_fd) < 0)
6010 if (chroot(".") < 0)
6013 if (setresgid(0, 0, 0) < 0)
6016 if (setresuid(0, 0, 0) < 0)
6022 bool pid_valid(pid_t pid) {
6026 if (kill(pid, 0) >= 0)
6029 return errno != ESRCH;
6032 int getpeercred(int fd, struct ucred *ucred) {
6033 socklen_t n = sizeof(struct ucred);
6040 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6044 if (n != sizeof(struct ucred))
6047 /* Check if the data is actually useful and not suppressed due
6048 * to namespacing issues */
6056 int getpeersec(int fd, char **ret) {
6068 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6072 if (errno != ERANGE)
6079 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6095 int writev_safe(int fd, const struct iovec *w, int j) {
6096 for (int i = 0; i < j; i++) {
6099 while (written < w[i].iov_len) {
6102 r = write(fd, (char*) w[i].iov_base + written, w[i].iov_len - written);
6103 if (r < 0 && errno != -EINTR)
6113 int mkostemp_safe(char *pattern, int flags) {
6114 char *s = pattern + strlen(pattern) - 6;
6115 uint64_t tries = TMP_MAX;
6118 assert(streq(s, "XXXXXX"));
6120 randfd = open("/dev/urandom", O_RDONLY);
6125 fd = read(randfd, s, 6);
6129 for (i = 0; i < 6; i++)
6130 s[i] = ALPHANUMERICAL[(unsigned) s[i] % strlen(ALPHANUMERICAL)];
6132 fd = open(pattern, flags|O_EXCL|O_CREAT, S_IRUSR|S_IWUSR);
6135 if (!IN_SET(errno, EEXIST, EINTR))
6142 int open_tmpfile(const char *path, int flags) {
6147 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6151 p = strappenda(path, "/systemd-tmp-XXXXXX");
6153 fd = mkostemp_safe(p, O_RDWR|O_CLOEXEC);