1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <linux/magic.h>
61 #include <sys/personality.h>
65 #ifdef HAVE_SYS_AUXV_H
76 #include "path-util.h"
77 #include "exit-status.h"
81 #include "device-nodes.h"
89 char **saved_argv = NULL;
91 static volatile unsigned cached_columns = 0;
92 static volatile unsigned cached_lines = 0;
94 size_t page_size(void) {
95 static thread_local size_t pgsz = 0;
98 if (_likely_(pgsz > 0))
101 r = sysconf(_SC_PAGESIZE);
108 bool streq_ptr(const char *a, const char *b) {
110 /* Like streq(), but tries to make sense of NULL pointers */
121 char* endswith(const char *s, const char *postfix) {
128 pl = strlen(postfix);
131 return (char*) s + sl;
136 if (memcmp(s + sl - pl, postfix, pl) != 0)
139 return (char*) s + sl - pl;
142 bool first_word(const char *s, const char *word) {
157 if (memcmp(s, word, wl) != 0)
161 strchr(WHITESPACE, s[wl]);
164 int close_nointr(int fd) {
170 /* Just ignore EINTR; a retry loop is the wrong
171 * thing to do on Linux.
173 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
174 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
175 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
176 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
178 if (_unlikely_(r < 0 && errno == EINTR))
186 int safe_close(int fd) {
189 * Like close_nointr() but cannot fail. Guarantees errno is
190 * unchanged. Is a NOP with negative fds passed, and returns
191 * -1, so that it can be used in this syntax:
193 * fd = safe_close(fd);
198 assert_se(close_nointr(fd) == 0);
204 void close_many(const int fds[], unsigned n_fd) {
207 assert(fds || n_fd <= 0);
209 for (i = 0; i < n_fd; i++)
213 int unlink_noerrno(const char *path) {
224 int parse_boolean(const char *v) {
227 if (streq(v, "1") || v[0] == 'y' || v[0] == 'Y' || v[0] == 't' || v[0] == 'T' || strcaseeq(v, "on"))
229 else if (streq(v, "0") || v[0] == 'n' || v[0] == 'N' || v[0] == 'f' || v[0] == 'F' || strcaseeq(v, "off"))
235 int parse_pid(const char *s, pid_t* ret_pid) {
236 unsigned long ul = 0;
243 r = safe_atolu(s, &ul);
249 if ((unsigned long) pid != ul)
259 int parse_uid(const char *s, uid_t* ret_uid) {
260 unsigned long ul = 0;
267 r = safe_atolu(s, &ul);
273 if ((unsigned long) uid != ul)
280 int safe_atou(const char *s, unsigned *ret_u) {
288 l = strtoul(s, &x, 0);
290 if (!x || x == s || *x || errno)
291 return errno > 0 ? -errno : -EINVAL;
293 if ((unsigned long) (unsigned) l != l)
296 *ret_u = (unsigned) l;
300 int safe_atoi(const char *s, int *ret_i) {
308 l = strtol(s, &x, 0);
310 if (!x || x == s || *x || errno)
311 return errno > 0 ? -errno : -EINVAL;
313 if ((long) (int) l != l)
320 int safe_atollu(const char *s, long long unsigned *ret_llu) {
322 unsigned long long l;
328 l = strtoull(s, &x, 0);
330 if (!x || x == s || *x || errno)
331 return errno ? -errno : -EINVAL;
337 int safe_atolli(const char *s, long long int *ret_lli) {
345 l = strtoll(s, &x, 0);
347 if (!x || x == s || *x || errno)
348 return errno ? -errno : -EINVAL;
354 int safe_atod(const char *s, double *ret_d) {
361 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
366 if (!x || x == s || *x || errno)
367 return errno ? -errno : -EINVAL;
373 static size_t strcspn_escaped(const char *s, const char *reject) {
374 bool escaped = false;
377 for (n=0; s[n]; n++) {
380 else if (s[n] == '\\')
382 else if (strchr(reject, s[n]))
388 /* Split a string into words. */
389 char *split(const char *c, size_t *l, const char *separator, bool quoted, char **state) {
392 current = *state ? *state : (char*) c;
394 if (!*current || *c == 0)
397 current += strspn(current, separator);
401 if (quoted && strchr("\'\"", *current)) {
402 char quotechar = *(current++);
403 *l = strcspn_escaped(current, (char[]){quotechar, '\0'});
404 *state = current+*l+1;
406 *l = strcspn_escaped(current, separator);
409 *l = strcspn(current, separator);
413 return (char*) current;
416 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
418 _cleanup_free_ char *line = NULL;
430 p = procfs_file_alloca(pid, "stat");
431 r = read_one_line_file(p, &line);
435 /* Let's skip the pid and comm fields. The latter is enclosed
436 * in () but does not escape any () in its value, so let's
437 * skip over it manually */
439 p = strrchr(line, ')');
451 if ((long unsigned) (pid_t) ppid != ppid)
454 *_ppid = (pid_t) ppid;
459 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
461 _cleanup_free_ char *line = NULL;
467 p = procfs_file_alloca(pid, "stat");
468 r = read_one_line_file(p, &line);
472 /* Let's skip the pid and comm fields. The latter is enclosed
473 * in () but does not escape any () in its value, so let's
474 * skip over it manually */
476 p = strrchr(line, ')');
498 "%*d " /* priority */
500 "%*d " /* num_threads */
501 "%*d " /* itrealvalue */
502 "%llu " /* starttime */,
509 int fchmod_umask(int fd, mode_t m) {
514 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
520 char *truncate_nl(char *s) {
523 s[strcspn(s, NEWLINE)] = 0;
527 int get_process_state(pid_t pid) {
531 _cleanup_free_ char *line = NULL;
535 p = procfs_file_alloca(pid, "stat");
536 r = read_one_line_file(p, &line);
540 p = strrchr(line, ')');
546 if (sscanf(p, " %c", &state) != 1)
549 return (unsigned char) state;
552 int get_process_comm(pid_t pid, char **name) {
559 p = procfs_file_alloca(pid, "comm");
561 r = read_one_line_file(p, name);
568 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
569 _cleanup_fclose_ FILE *f = NULL;
577 p = procfs_file_alloca(pid, "cmdline");
583 if (max_length == 0) {
584 size_t len = 0, allocated = 0;
586 while ((c = getc(f)) != EOF) {
588 if (!GREEDY_REALLOC(r, allocated, len+2)) {
593 r[len++] = isprint(c) ? c : ' ';
603 r = new(char, max_length);
609 while ((c = getc(f)) != EOF) {
631 size_t n = MIN(left-1, 3U);
638 /* Kernel threads have no argv[] */
639 if (r == NULL || r[0] == 0) {
640 _cleanup_free_ char *t = NULL;
648 h = get_process_comm(pid, &t);
652 r = strjoin("[", t, "]", NULL);
661 int is_kernel_thread(pid_t pid) {
673 p = procfs_file_alloca(pid, "cmdline");
678 count = fread(&c, 1, 1, f);
682 /* Kernel threads have an empty cmdline */
685 return eof ? 1 : -errno;
690 int get_process_capeff(pid_t pid, char **capeff) {
696 p = procfs_file_alloca(pid, "status");
698 return get_status_field(p, "\nCapEff:", capeff);
701 int get_process_exe(pid_t pid, char **name) {
709 p = procfs_file_alloca(pid, "exe");
711 r = readlink_malloc(p, name);
713 return r == -ENOENT ? -ESRCH : r;
715 d = endswith(*name, " (deleted)");
722 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
723 _cleanup_fclose_ FILE *f = NULL;
733 p = procfs_file_alloca(pid, "status");
738 FOREACH_LINE(line, f, return -errno) {
743 if (startswith(l, field)) {
745 l += strspn(l, WHITESPACE);
747 l[strcspn(l, WHITESPACE)] = 0;
749 return parse_uid(l, uid);
756 int get_process_uid(pid_t pid, uid_t *uid) {
757 return get_process_id(pid, "Uid:", uid);
760 int get_process_gid(pid_t pid, gid_t *gid) {
761 assert_cc(sizeof(uid_t) == sizeof(gid_t));
762 return get_process_id(pid, "Gid:", gid);
765 char *strnappend(const char *s, const char *suffix, size_t b) {
773 return strndup(suffix, b);
782 if (b > ((size_t) -1) - a)
785 r = new(char, a+b+1);
790 memcpy(r+a, suffix, b);
796 char *strappend(const char *s, const char *suffix) {
797 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
800 int readlink_malloc(const char *p, char **ret) {
815 n = readlink(p, c, l-1);
822 if ((size_t) n < l-1) {
833 int readlink_and_make_absolute(const char *p, char **r) {
834 _cleanup_free_ char *target = NULL;
841 j = readlink_malloc(p, &target);
845 k = file_in_same_dir(p, target);
853 int readlink_and_canonicalize(const char *p, char **r) {
860 j = readlink_and_make_absolute(p, &t);
864 s = canonicalize_file_name(t);
871 path_kill_slashes(*r);
876 int reset_all_signal_handlers(void) {
879 for (sig = 1; sig < _NSIG; sig++) {
880 struct sigaction sa = {
881 .sa_handler = SIG_DFL,
882 .sa_flags = SA_RESTART,
885 if (sig == SIGKILL || sig == SIGSTOP)
888 /* On Linux the first two RT signals are reserved by
889 * glibc, and sigaction() will return EINVAL for them. */
890 if ((sigaction(sig, &sa, NULL) < 0))
898 char *strstrip(char *s) {
901 /* Drops trailing whitespace. Modifies the string in
902 * place. Returns pointer to first non-space character */
904 s += strspn(s, WHITESPACE);
906 for (e = strchr(s, 0); e > s; e --)
907 if (!strchr(WHITESPACE, e[-1]))
915 char *delete_chars(char *s, const char *bad) {
918 /* Drops all whitespace, regardless where in the string */
920 for (f = s, t = s; *f; f++) {
932 char *file_in_same_dir(const char *path, const char *filename) {
939 /* This removes the last component of path and appends
940 * filename, unless the latter is absolute anyway or the
943 if (path_is_absolute(filename))
944 return strdup(filename);
946 if (!(e = strrchr(path, '/')))
947 return strdup(filename);
949 k = strlen(filename);
950 if (!(r = new(char, e-path+1+k+1)))
953 memcpy(r, path, e-path+1);
954 memcpy(r+(e-path)+1, filename, k+1);
959 int rmdir_parents(const char *path, const char *stop) {
968 /* Skip trailing slashes */
969 while (l > 0 && path[l-1] == '/')
975 /* Skip last component */
976 while (l > 0 && path[l-1] != '/')
979 /* Skip trailing slashes */
980 while (l > 0 && path[l-1] == '/')
986 if (!(t = strndup(path, l)))
989 if (path_startswith(stop, t)) {
1005 char hexchar(int x) {
1006 static const char table[16] = "0123456789abcdef";
1008 return table[x & 15];
1011 int unhexchar(char c) {
1013 if (c >= '0' && c <= '9')
1016 if (c >= 'a' && c <= 'f')
1017 return c - 'a' + 10;
1019 if (c >= 'A' && c <= 'F')
1020 return c - 'A' + 10;
1025 char *hexmem(const void *p, size_t l) {
1029 z = r = malloc(l * 2 + 1);
1033 for (x = p; x < (const uint8_t*) p + l; x++) {
1034 *(z++) = hexchar(*x >> 4);
1035 *(z++) = hexchar(*x & 15);
1042 void *unhexmem(const char *p, size_t l) {
1048 z = r = malloc((l + 1) / 2 + 1);
1052 for (x = p; x < p + l; x += 2) {
1055 a = unhexchar(x[0]);
1057 b = unhexchar(x[1]);
1061 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1068 char octchar(int x) {
1069 return '0' + (x & 7);
1072 int unoctchar(char c) {
1074 if (c >= '0' && c <= '7')
1080 char decchar(int x) {
1081 return '0' + (x % 10);
1084 int undecchar(char c) {
1086 if (c >= '0' && c <= '9')
1092 char *cescape(const char *s) {
1098 /* Does C style string escaping. */
1100 r = new(char, strlen(s)*4 + 1);
1104 for (f = s, t = r; *f; f++)
1150 /* For special chars we prefer octal over
1151 * hexadecimal encoding, simply because glib's
1152 * g_strescape() does the same */
1153 if ((*f < ' ') || (*f >= 127)) {
1155 *(t++) = octchar((unsigned char) *f >> 6);
1156 *(t++) = octchar((unsigned char) *f >> 3);
1157 *(t++) = octchar((unsigned char) *f);
1168 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1175 /* Undoes C style string escaping, and optionally prefixes it. */
1177 pl = prefix ? strlen(prefix) : 0;
1179 r = new(char, pl+length+1);
1184 memcpy(r, prefix, pl);
1186 for (f = s, t = r + pl; f < s + length; f++) {
1229 /* This is an extension of the XDG syntax files */
1234 /* hexadecimal encoding */
1237 a = unhexchar(f[1]);
1238 b = unhexchar(f[2]);
1240 if (a < 0 || b < 0) {
1241 /* Invalid escape code, let's take it literal then */
1245 *(t++) = (char) ((a << 4) | b);
1260 /* octal encoding */
1263 a = unoctchar(f[0]);
1264 b = unoctchar(f[1]);
1265 c = unoctchar(f[2]);
1267 if (a < 0 || b < 0 || c < 0) {
1268 /* Invalid escape code, let's take it literal then */
1272 *(t++) = (char) ((a << 6) | (b << 3) | c);
1280 /* premature end of string.*/
1285 /* Invalid escape code, let's take it literal then */
1297 char *cunescape_length(const char *s, size_t length) {
1298 return cunescape_length_with_prefix(s, length, NULL);
1301 char *cunescape(const char *s) {
1304 return cunescape_length(s, strlen(s));
1307 char *xescape(const char *s, const char *bad) {
1311 /* Escapes all chars in bad, in addition to \ and all special
1312 * chars, in \xFF style escaping. May be reversed with
1315 r = new(char, strlen(s) * 4 + 1);
1319 for (f = s, t = r; *f; f++) {
1321 if ((*f < ' ') || (*f >= 127) ||
1322 (*f == '\\') || strchr(bad, *f)) {
1325 *(t++) = hexchar(*f >> 4);
1326 *(t++) = hexchar(*f);
1336 char *ascii_strlower(char *t) {
1341 for (p = t; *p; p++)
1342 if (*p >= 'A' && *p <= 'Z')
1343 *p = *p - 'A' + 'a';
1348 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1352 filename[0] == '.' ||
1353 streq(filename, "lost+found") ||
1354 streq(filename, "aquota.user") ||
1355 streq(filename, "aquota.group") ||
1356 endswith(filename, ".rpmnew") ||
1357 endswith(filename, ".rpmsave") ||
1358 endswith(filename, ".rpmorig") ||
1359 endswith(filename, ".dpkg-old") ||
1360 endswith(filename, ".dpkg-new") ||
1361 endswith(filename, ".swp");
1364 bool ignore_file(const char *filename) {
1367 if (endswith(filename, "~"))
1370 return ignore_file_allow_backup(filename);
1373 int fd_nonblock(int fd, bool nonblock) {
1378 if ((flags = fcntl(fd, F_GETFL, 0)) < 0)
1382 flags |= O_NONBLOCK;
1384 flags &= ~O_NONBLOCK;
1386 if (fcntl(fd, F_SETFL, flags) < 0)
1392 int fd_cloexec(int fd, bool cloexec) {
1397 if ((flags = fcntl(fd, F_GETFD, 0)) < 0)
1401 flags |= FD_CLOEXEC;
1403 flags &= ~FD_CLOEXEC;
1405 if (fcntl(fd, F_SETFD, flags) < 0)
1411 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1414 assert(n_fdset == 0 || fdset);
1416 for (i = 0; i < n_fdset; i++)
1423 int close_all_fds(const int except[], unsigned n_except) {
1428 assert(n_except == 0 || except);
1430 d = opendir("/proc/self/fd");
1435 /* When /proc isn't available (for example in chroots)
1436 * the fallback is brute forcing through the fd
1439 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1440 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1442 if (fd_in_set(fd, except, n_except))
1445 if (close_nointr(fd) < 0)
1446 if (errno != EBADF && r == 0)
1453 while ((de = readdir(d))) {
1456 if (ignore_file(de->d_name))
1459 if (safe_atoi(de->d_name, &fd) < 0)
1460 /* Let's better ignore this, just in case */
1469 if (fd_in_set(fd, except, n_except))
1472 if (close_nointr(fd) < 0) {
1473 /* Valgrind has its own FD and doesn't want to have it closed */
1474 if (errno != EBADF && r == 0)
1483 bool chars_intersect(const char *a, const char *b) {
1486 /* Returns true if any of the chars in a are in b. */
1487 for (p = a; *p; p++)
1494 bool fstype_is_network(const char *fstype) {
1495 static const char table[] =
1505 return nulstr_contains(table, fstype);
1509 _cleanup_close_ int fd;
1511 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1517 TIOCL_GETKMSGREDIRECT,
1521 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1524 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1527 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1533 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1534 struct termios old_termios, new_termios;
1536 char line[LINE_MAX];
1541 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1542 new_termios = old_termios;
1544 new_termios.c_lflag &= ~ICANON;
1545 new_termios.c_cc[VMIN] = 1;
1546 new_termios.c_cc[VTIME] = 0;
1548 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1551 if (t != (usec_t) -1) {
1552 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1553 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1558 k = fread(&c, 1, 1, f);
1560 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1566 *need_nl = c != '\n';
1573 if (t != (usec_t) -1)
1574 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1577 if (!fgets(line, sizeof(line), f))
1582 if (strlen(line) != 1)
1592 int ask(char *ret, const char *replies, const char *text, ...) {
1602 bool need_nl = true;
1605 fputs(ANSI_HIGHLIGHT_ON, stdout);
1612 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1616 r = read_one_char(stdin, &c, (usec_t) -1, &need_nl);
1619 if (r == -EBADMSG) {
1620 puts("Bad input, please try again.");
1631 if (strchr(replies, c)) {
1636 puts("Read unexpected character, please try again.");
1640 int reset_terminal_fd(int fd, bool switch_to_text) {
1641 struct termios termios;
1644 /* Set terminal to some sane defaults */
1648 /* We leave locked terminal attributes untouched, so that
1649 * Plymouth may set whatever it wants to set, and we don't
1650 * interfere with that. */
1652 /* Disable exclusive mode, just in case */
1653 ioctl(fd, TIOCNXCL);
1655 /* Switch to text mode */
1657 ioctl(fd, KDSETMODE, KD_TEXT);
1659 /* Enable console unicode mode */
1660 ioctl(fd, KDSKBMODE, K_UNICODE);
1662 if (tcgetattr(fd, &termios) < 0) {
1667 /* We only reset the stuff that matters to the software. How
1668 * hardware is set up we don't touch assuming that somebody
1669 * else will do that for us */
1671 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1672 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1673 termios.c_oflag |= ONLCR;
1674 termios.c_cflag |= CREAD;
1675 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1677 termios.c_cc[VINTR] = 03; /* ^C */
1678 termios.c_cc[VQUIT] = 034; /* ^\ */
1679 termios.c_cc[VERASE] = 0177;
1680 termios.c_cc[VKILL] = 025; /* ^X */
1681 termios.c_cc[VEOF] = 04; /* ^D */
1682 termios.c_cc[VSTART] = 021; /* ^Q */
1683 termios.c_cc[VSTOP] = 023; /* ^S */
1684 termios.c_cc[VSUSP] = 032; /* ^Z */
1685 termios.c_cc[VLNEXT] = 026; /* ^V */
1686 termios.c_cc[VWERASE] = 027; /* ^W */
1687 termios.c_cc[VREPRINT] = 022; /* ^R */
1688 termios.c_cc[VEOL] = 0;
1689 termios.c_cc[VEOL2] = 0;
1691 termios.c_cc[VTIME] = 0;
1692 termios.c_cc[VMIN] = 1;
1694 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1698 /* Just in case, flush all crap out */
1699 tcflush(fd, TCIOFLUSH);
1704 int reset_terminal(const char *name) {
1705 _cleanup_close_ int fd = -1;
1707 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1711 return reset_terminal_fd(fd, true);
1714 int open_terminal(const char *name, int mode) {
1719 * If a TTY is in the process of being closed opening it might
1720 * cause EIO. This is horribly awful, but unlikely to be
1721 * changed in the kernel. Hence we work around this problem by
1722 * retrying a couple of times.
1724 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1727 assert(!(mode & O_CREAT));
1730 fd = open(name, mode, 0);
1737 /* Max 1s in total */
1741 usleep(50 * USEC_PER_MSEC);
1762 int flush_fd(int fd) {
1763 struct pollfd pollfd = {
1773 r = poll(&pollfd, 1, 0);
1783 l = read(fd, buf, sizeof(buf));
1789 if (errno == EAGAIN)
1798 int acquire_terminal(
1802 bool ignore_tiocstty_eperm,
1805 int fd = -1, notify = -1, r = 0, wd = -1;
1810 /* We use inotify to be notified when the tty is closed. We
1811 * create the watch before checking if we can actually acquire
1812 * it, so that we don't lose any event.
1814 * Note: strictly speaking this actually watches for the
1815 * device being closed, it does *not* really watch whether a
1816 * tty loses its controlling process. However, unless some
1817 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
1818 * its tty otherwise this will not become a problem. As long
1819 * as the administrator makes sure not configure any service
1820 * on the same tty as an untrusted user this should not be a
1821 * problem. (Which he probably should not do anyway.) */
1823 if (timeout != (usec_t) -1)
1824 ts = now(CLOCK_MONOTONIC);
1826 if (!fail && !force) {
1827 notify = inotify_init1(IN_CLOEXEC | (timeout != (usec_t) -1 ? IN_NONBLOCK : 0));
1833 wd = inotify_add_watch(notify, name, IN_CLOSE);
1841 struct sigaction sa_old, sa_new = {
1842 .sa_handler = SIG_IGN,
1843 .sa_flags = SA_RESTART,
1847 r = flush_fd(notify);
1852 /* We pass here O_NOCTTY only so that we can check the return
1853 * value TIOCSCTTY and have a reliable way to figure out if we
1854 * successfully became the controlling process of the tty */
1855 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1859 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1860 * if we already own the tty. */
1861 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1863 /* First, try to get the tty */
1864 if (ioctl(fd, TIOCSCTTY, force) < 0)
1867 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1869 /* Sometimes it makes sense to ignore TIOCSCTTY
1870 * returning EPERM, i.e. when very likely we already
1871 * are have this controlling terminal. */
1872 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
1875 if (r < 0 && (force || fail || r != -EPERM)) {
1884 assert(notify >= 0);
1887 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
1889 struct inotify_event *e;
1891 if (timeout != (usec_t) -1) {
1894 n = now(CLOCK_MONOTONIC);
1895 if (ts + timeout < n) {
1900 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
1910 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
1913 if (errno == EINTR || errno == EAGAIN)
1920 e = (struct inotify_event*) inotify_buffer;
1925 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
1930 step = sizeof(struct inotify_event) + e->len;
1931 assert(step <= (size_t) l);
1933 e = (struct inotify_event*) ((uint8_t*) e + step);
1940 /* We close the tty fd here since if the old session
1941 * ended our handle will be dead. It's important that
1942 * we do this after sleeping, so that we don't enter
1943 * an endless loop. */
1949 r = reset_terminal_fd(fd, true);
1951 log_warning("Failed to reset terminal: %s", strerror(-r));
1962 int release_terminal(void) {
1964 struct sigaction sa_old, sa_new = {
1965 .sa_handler = SIG_IGN,
1966 .sa_flags = SA_RESTART,
1968 _cleanup_close_ int fd;
1970 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
1974 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
1975 * by our own TIOCNOTTY */
1976 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
1978 if (ioctl(fd, TIOCNOTTY) < 0)
1981 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
1986 int sigaction_many(const struct sigaction *sa, ...) {
1991 while ((sig = va_arg(ap, int)) > 0)
1992 if (sigaction(sig, sa, NULL) < 0)
1999 int ignore_signals(int sig, ...) {
2000 struct sigaction sa = {
2001 .sa_handler = SIG_IGN,
2002 .sa_flags = SA_RESTART,
2008 if (sigaction(sig, &sa, NULL) < 0)
2012 while ((sig = va_arg(ap, int)) > 0)
2013 if (sigaction(sig, &sa, NULL) < 0)
2020 int default_signals(int sig, ...) {
2021 struct sigaction sa = {
2022 .sa_handler = SIG_DFL,
2023 .sa_flags = SA_RESTART,
2028 if (sigaction(sig, &sa, NULL) < 0)
2032 while ((sig = va_arg(ap, int)) > 0)
2033 if (sigaction(sig, &sa, NULL) < 0)
2040 void safe_close_pair(int p[]) {
2044 /* Special case pairs which use the same fd in both
2046 p[0] = p[1] = safe_close(p[0]);
2050 p[0] = safe_close(p[0]);
2051 p[1] = safe_close(p[1]);
2054 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2061 while (nbytes > 0) {
2064 k = read(fd, p, nbytes);
2065 if (k < 0 && errno == EINTR)
2068 if (k < 0 && errno == EAGAIN && do_poll) {
2070 /* We knowingly ignore any return value here,
2071 * and expect that any error/EOF is reported
2074 fd_wait_for_event(fd, POLLIN, (usec_t) -1);
2079 return n > 0 ? n : (k < 0 ? -errno : 0);
2089 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2090 const uint8_t *p = buf;
2096 while (nbytes > 0) {
2099 k = write(fd, p, nbytes);
2100 if (k < 0 && errno == EINTR)
2103 if (k < 0 && errno == EAGAIN && do_poll) {
2105 /* We knowingly ignore any return value here,
2106 * and expect that any error/EOF is reported
2109 fd_wait_for_event(fd, POLLOUT, (usec_t) -1);
2114 return n > 0 ? n : (k < 0 ? -errno : 0);
2124 int parse_size(const char *t, off_t base, off_t *size) {
2126 /* Soo, sometimes we want to parse IEC binary suffxies, and
2127 * sometimes SI decimal suffixes. This function can parse
2128 * both. Which one is the right way depends on the
2129 * context. Wikipedia suggests that SI is customary for
2130 * hardrware metrics and network speeds, while IEC is
2131 * customary for most data sizes used by software and volatile
2132 * (RAM) memory. Hence be careful which one you pick!
2134 * In either case we use just K, M, G as suffix, and not Ki,
2135 * Mi, Gi or so (as IEC would suggest). That's because that's
2136 * frickin' ugly. But this means you really need to make sure
2137 * to document which base you are parsing when you use this
2142 unsigned long long factor;
2145 static const struct table iec[] = {
2146 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2147 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2148 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2149 { "G", 1024ULL*1024ULL*1024ULL },
2150 { "M", 1024ULL*1024ULL },
2156 static const struct table si[] = {
2157 { "E", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2158 { "P", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2159 { "T", 1000ULL*1000ULL*1000ULL*1000ULL },
2160 { "G", 1000ULL*1000ULL*1000ULL },
2161 { "M", 1000ULL*1000ULL },
2167 const struct table *table;
2169 unsigned long long r = 0;
2170 unsigned n_entries, start_pos = 0;
2173 assert(base == 1000 || base == 1024);
2178 n_entries = ELEMENTSOF(si);
2181 n_entries = ELEMENTSOF(iec);
2187 unsigned long long l2;
2193 l = strtoll(p, &e, 10);
2206 if (*e >= '0' && *e <= '9') {
2209 /* strotoull itself would accept space/+/- */
2210 l2 = strtoull(e, &e2, 10);
2212 if (errno == ERANGE)
2215 /* Ignore failure. E.g. 10.M is valid */
2222 e += strspn(e, WHITESPACE);
2224 for (i = start_pos; i < n_entries; i++)
2225 if (startswith(e, table[i].suffix)) {
2226 unsigned long long tmp;
2227 if ((unsigned long long) l + (frac > 0) > ULLONG_MAX / table[i].factor)
2229 tmp = l * table[i].factor + (unsigned long long) (frac * table[i].factor);
2230 if (tmp > ULLONG_MAX - r)
2234 if ((unsigned long long) (off_t) r != r)
2237 p = e + strlen(table[i].suffix);
2253 int make_stdio(int fd) {
2258 r = dup3(fd, STDIN_FILENO, 0);
2259 s = dup3(fd, STDOUT_FILENO, 0);
2260 t = dup3(fd, STDERR_FILENO, 0);
2265 if (r < 0 || s < 0 || t < 0)
2268 /* We rely here that the new fd has O_CLOEXEC not set */
2273 int make_null_stdio(void) {
2276 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2280 return make_stdio(null_fd);
2283 bool is_device_path(const char *path) {
2285 /* Returns true on paths that refer to a device, either in
2286 * sysfs or in /dev */
2289 path_startswith(path, "/dev/") ||
2290 path_startswith(path, "/sys/");
2293 int dir_is_empty(const char *path) {
2294 _cleanup_closedir_ DIR *d;
2305 if (!de && errno != 0)
2311 if (!ignore_file(de->d_name))
2316 char* dirname_malloc(const char *path) {
2317 char *d, *dir, *dir2;
2334 int dev_urandom(void *p, size_t n) {
2335 _cleanup_close_ int fd;
2338 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2340 return errno == ENOENT ? -ENOSYS : -errno;
2342 k = loop_read(fd, p, n, true);
2345 if ((size_t) k != n)
2351 void random_bytes(void *p, size_t n) {
2352 static bool srand_called = false;
2356 r = dev_urandom(p, n);
2360 /* If some idiot made /dev/urandom unavailable to us, he'll
2361 * get a PRNG instead. */
2363 if (!srand_called) {
2366 #ifdef HAVE_SYS_AUXV_H
2367 /* The kernel provides us with a bit of entropy in
2368 * auxv, so let's try to make use of that to seed the
2369 * pseudo-random generator. It's better than
2374 auxv = (void*) getauxval(AT_RANDOM);
2376 x ^= *(unsigned*) auxv;
2379 x ^= (unsigned) now(CLOCK_REALTIME);
2380 x ^= (unsigned) gettid();
2383 srand_called = true;
2386 for (q = p; q < (uint8_t*) p + n; q ++)
2390 void rename_process(const char name[8]) {
2393 /* This is a like a poor man's setproctitle(). It changes the
2394 * comm field, argv[0], and also the glibc's internally used
2395 * name of the process. For the first one a limit of 16 chars
2396 * applies, to the second one usually one of 10 (i.e. length
2397 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2398 * "systemd"). If you pass a longer string it will be
2401 prctl(PR_SET_NAME, name);
2403 if (program_invocation_name)
2404 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2406 if (saved_argc > 0) {
2410 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2412 for (i = 1; i < saved_argc; i++) {
2416 memzero(saved_argv[i], strlen(saved_argv[i]));
2421 void sigset_add_many(sigset_t *ss, ...) {
2428 while ((sig = va_arg(ap, int)) > 0)
2429 assert_se(sigaddset(ss, sig) == 0);
2433 char* gethostname_malloc(void) {
2436 assert_se(uname(&u) >= 0);
2438 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2439 return strdup(u.nodename);
2441 return strdup(u.sysname);
2444 bool hostname_is_set(void) {
2447 assert_se(uname(&u) >= 0);
2449 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2452 static char *lookup_uid(uid_t uid) {
2455 _cleanup_free_ char *buf = NULL;
2456 struct passwd pwbuf, *pw = NULL;
2458 /* Shortcut things to avoid NSS lookups */
2460 return strdup("root");
2462 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2466 buf = malloc(bufsize);
2470 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2471 return strdup(pw->pw_name);
2473 if (asprintf(&name, "%lu", (unsigned long) uid) < 0)
2479 char* getlogname_malloc(void) {
2483 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2488 return lookup_uid(uid);
2491 char *getusername_malloc(void) {
2498 return lookup_uid(getuid());
2501 int getttyname_malloc(int fd, char **r) {
2502 char path[PATH_MAX], *c;
2507 k = ttyname_r(fd, path, sizeof(path));
2513 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2521 int getttyname_harder(int fd, char **r) {
2525 k = getttyname_malloc(fd, &s);
2529 if (streq(s, "tty")) {
2531 return get_ctty(0, NULL, r);
2538 int get_ctty_devnr(pid_t pid, dev_t *d) {
2540 _cleanup_free_ char *line = NULL;
2542 unsigned long ttynr;
2546 p = procfs_file_alloca(pid, "stat");
2547 r = read_one_line_file(p, &line);
2551 p = strrchr(line, ')');
2561 "%*d " /* session */
2566 if (major(ttynr) == 0 && minor(ttynr) == 0)
2575 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2576 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *b = NULL;
2577 _cleanup_free_ char *s = NULL;
2584 k = get_ctty_devnr(pid, &devnr);
2588 snprintf(fn, sizeof(fn), "/dev/char/%u:%u", major(devnr), minor(devnr));
2590 k = readlink_malloc(fn, &s);
2596 /* This is an ugly hack */
2597 if (major(devnr) == 136) {
2598 asprintf(&b, "pts/%lu", (unsigned long) minor(devnr));
2602 /* Probably something like the ptys which have no
2603 * symlink in /dev/char. Let's return something
2604 * vaguely useful. */
2610 if (startswith(s, "/dev/"))
2612 else if (startswith(s, "../"))
2630 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2636 /* This returns the first error we run into, but nevertheless
2637 * tries to go on. This closes the passed fd. */
2643 return errno == ENOENT ? 0 : -errno;
2648 bool is_dir, keep_around;
2654 if (!de && errno != 0) {
2663 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2666 if (de->d_type == DT_UNKNOWN ||
2668 (de->d_type == DT_DIR && root_dev)) {
2669 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2670 if (ret == 0 && errno != ENOENT)
2675 is_dir = S_ISDIR(st.st_mode);
2678 (st.st_uid == 0 || st.st_uid == getuid()) &&
2679 (st.st_mode & S_ISVTX);
2681 is_dir = de->d_type == DT_DIR;
2682 keep_around = false;
2688 /* if root_dev is set, remove subdirectories only, if device is same as dir */
2689 if (root_dev && st.st_dev != root_dev->st_dev)
2692 subdir_fd = openat(fd, de->d_name,
2693 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2694 if (subdir_fd < 0) {
2695 if (ret == 0 && errno != ENOENT)
2700 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
2701 if (r < 0 && ret == 0)
2705 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
2706 if (ret == 0 && errno != ENOENT)
2710 } else if (!only_dirs && !keep_around) {
2712 if (unlinkat(fd, de->d_name, 0) < 0) {
2713 if (ret == 0 && errno != ENOENT)
2724 _pure_ static int is_temporary_fs(struct statfs *s) {
2727 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
2728 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
2731 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2736 if (fstatfs(fd, &s) < 0) {
2741 /* We refuse to clean disk file systems with this call. This
2742 * is extra paranoia just to be sure we never ever remove
2744 if (!is_temporary_fs(&s)) {
2745 log_error("Attempted to remove disk file system, and we can't allow that.");
2750 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
2753 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
2759 /* We refuse to clean the root file system with this
2760 * call. This is extra paranoia to never cause a really
2761 * seriously broken system. */
2762 if (path_equal(path, "/")) {
2763 log_error("Attempted to remove entire root file system, and we can't allow that.");
2767 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
2770 if (errno != ENOTDIR)
2774 if (statfs(path, &s) < 0)
2777 if (!is_temporary_fs(&s)) {
2778 log_error("Attempted to remove disk file system, and we can't allow that.");
2783 if (delete_root && !only_dirs)
2784 if (unlink(path) < 0 && errno != ENOENT)
2791 if (fstatfs(fd, &s) < 0) {
2796 if (!is_temporary_fs(&s)) {
2797 log_error("Attempted to remove disk file system, and we can't allow that.");
2803 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
2806 if (honour_sticky && file_is_priv_sticky(path) > 0)
2809 if (rmdir(path) < 0 && errno != ENOENT) {
2818 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2819 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
2822 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
2823 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
2826 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
2829 /* Under the assumption that we are running privileged we
2830 * first change the access mode and only then hand out
2831 * ownership to avoid a window where access is too open. */
2833 if (mode != (mode_t) -1)
2834 if (chmod(path, mode) < 0)
2837 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2838 if (chown(path, uid, gid) < 0)
2844 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
2847 /* Under the assumption that we are running privileged we
2848 * first change the access mode and only then hand out
2849 * ownership to avoid a window where access is too open. */
2851 if (mode != (mode_t) -1)
2852 if (fchmod(fd, mode) < 0)
2855 if (uid != (uid_t) -1 || gid != (gid_t) -1)
2856 if (fchown(fd, uid, gid) < 0)
2862 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
2866 /* Allocates the cpuset in the right size */
2869 if (!(r = CPU_ALLOC(n)))
2872 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
2873 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
2883 if (errno != EINVAL)
2890 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
2891 static const char status_indent[] = " "; /* "[" STATUS "] " */
2892 _cleanup_free_ char *s = NULL;
2893 _cleanup_close_ int fd = -1;
2894 struct iovec iovec[6] = {};
2896 static bool prev_ephemeral;
2900 /* This is independent of logging, as status messages are
2901 * optional and go exclusively to the console. */
2903 if (vasprintf(&s, format, ap) < 0)
2906 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
2919 sl = status ? sizeof(status_indent)-1 : 0;
2925 e = ellipsize(s, emax, 75);
2933 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
2934 prev_ephemeral = ephemeral;
2937 if (!isempty(status)) {
2938 IOVEC_SET_STRING(iovec[n++], "[");
2939 IOVEC_SET_STRING(iovec[n++], status);
2940 IOVEC_SET_STRING(iovec[n++], "] ");
2942 IOVEC_SET_STRING(iovec[n++], status_indent);
2945 IOVEC_SET_STRING(iovec[n++], s);
2947 IOVEC_SET_STRING(iovec[n++], "\n");
2949 if (writev(fd, iovec, n) < 0)
2955 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
2961 va_start(ap, format);
2962 r = status_vprintf(status, ellipse, ephemeral, format, ap);
2968 char *replace_env(const char *format, char **env) {
2975 const char *e, *word = format;
2980 for (e = format; *e; e ++) {
2991 if (!(k = strnappend(r, word, e-word-1)))
3000 } else if (*e == '$') {
3001 if (!(k = strnappend(r, word, e-word)))
3017 t = strempty(strv_env_get_n(env, word+2, e-word-2));
3019 k = strappend(r, t);
3033 if (!(k = strnappend(r, word, e-word)))
3044 char **replace_env_argv(char **argv, char **env) {
3046 unsigned k = 0, l = 0;
3048 l = strv_length(argv);
3050 if (!(r = new(char*, l+1)))
3053 STRV_FOREACH(i, argv) {
3055 /* If $FOO appears as single word, replace it by the split up variable */
3056 if ((*i)[0] == '$' && (*i)[1] != '{') {
3061 e = strv_env_get(env, *i+1);
3064 if (!(m = strv_split_quoted(e))) {
3075 if (!(w = realloc(r, sizeof(char*) * (l+1)))) {
3084 memcpy(r + k, m, q * sizeof(char*));
3092 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3093 if (!(r[k++] = replace_env(*i, env))) {
3103 int fd_columns(int fd) {
3104 struct winsize ws = {};
3106 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3115 unsigned columns(void) {
3119 if (_likely_(cached_columns > 0))
3120 return cached_columns;
3123 e = getenv("COLUMNS");
3128 c = fd_columns(STDOUT_FILENO);
3137 int fd_lines(int fd) {
3138 struct winsize ws = {};
3140 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3149 unsigned lines(void) {
3153 if (_likely_(cached_lines > 0))
3154 return cached_lines;
3157 e = getenv("LINES");
3162 l = fd_lines(STDOUT_FILENO);
3168 return cached_lines;
3171 /* intended to be used as a SIGWINCH sighandler */
3172 void columns_lines_cache_reset(int signum) {
3178 static int cached_on_tty = -1;
3180 if (_unlikely_(cached_on_tty < 0))
3181 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3183 return cached_on_tty;
3186 int files_same(const char *filea, const char *fileb) {
3189 if (stat(filea, &a) < 0)
3192 if (stat(fileb, &b) < 0)
3195 return a.st_dev == b.st_dev &&
3196 a.st_ino == b.st_ino;
3199 int running_in_chroot(void) {
3202 ret = files_same("/proc/1/root", "/");
3209 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3214 assert(percent <= 100);
3215 assert(new_length >= 3);
3217 if (old_length <= 3 || old_length <= new_length)
3218 return strndup(s, old_length);
3220 r = new0(char, new_length+1);
3224 x = (new_length * percent) / 100;
3226 if (x > new_length - 3)
3234 s + old_length - (new_length - x - 3),
3235 new_length - x - 3);
3240 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3244 unsigned k, len, len2;
3247 assert(percent <= 100);
3248 assert(new_length >= 3);
3250 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3251 if (ascii_is_valid(s))
3252 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3254 if (old_length <= 3 || old_length <= new_length)
3255 return strndup(s, old_length);
3257 x = (new_length * percent) / 100;
3259 if (x > new_length - 3)
3263 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3266 c = utf8_encoded_to_unichar(i);
3269 k += unichar_iswide(c) ? 2 : 1;
3272 if (k > x) /* last character was wide and went over quota */
3275 for (j = s + old_length; k < new_length && j > i; ) {
3278 j = utf8_prev_char(j);
3279 c = utf8_encoded_to_unichar(j);
3282 k += unichar_iswide(c) ? 2 : 1;
3286 /* we don't actually need to ellipsize */
3288 return memdup(s, old_length + 1);
3290 /* make space for ellipsis */
3291 j = utf8_next_char(j);
3294 len2 = s + old_length - j;
3295 e = new(char, len + 3 + len2 + 1);
3300 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3301 old_length, new_length, x, len, len2, k);
3305 e[len] = 0xe2; /* tri-dot ellipsis: … */
3309 memcpy(e + len + 3, j, len2 + 1);
3314 char *ellipsize(const char *s, size_t length, unsigned percent) {
3315 return ellipsize_mem(s, strlen(s), length, percent);
3318 int touch(const char *path) {
3319 _cleanup_close_ int fd;
3323 /* This just opens the file for writing, ensuring it
3324 * exists. It doesn't call utimensat() the way /usr/bin/touch
3327 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
3334 char *unquote(const char *s, const char* quotes) {
3338 /* This is rather stupid, simply removes the heading and
3339 * trailing quotes if there is one. Doesn't care about
3340 * escaping or anything. We should make this smarter one
3347 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3348 return strndup(s+1, l-2);
3353 char *normalize_env_assignment(const char *s) {
3354 _cleanup_free_ char *name = NULL, *value = NULL, *p = NULL;
3357 eq = strchr(s, '=');
3369 memmove(r, t, strlen(t) + 1);
3373 name = strndup(s, eq - s);
3381 value = unquote(strstrip(p), QUOTES);
3385 if (asprintf(&r, "%s=%s", strstrip(name), value) < 0)
3391 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3402 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3414 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3421 r = wait_for_terminate(pid, &status);
3423 log_warning("Failed to wait for %s: %s", name, strerror(-r));
3427 if (status.si_code == CLD_EXITED) {
3428 if (status.si_status != 0) {
3429 log_warning("%s failed with error code %i.", name, status.si_status);
3430 return status.si_status;
3433 log_debug("%s succeeded.", name);
3436 } else if (status.si_code == CLD_KILLED ||
3437 status.si_code == CLD_DUMPED) {
3439 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3443 log_warning("%s failed due to unknown reason.", name);
3447 noreturn void freeze(void) {
3449 /* Make sure nobody waits for us on a socket anymore */
3450 close_all_fds(NULL, 0);
3458 bool null_or_empty(struct stat *st) {
3461 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3464 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3470 int null_or_empty_path(const char *fn) {
3475 if (stat(fn, &st) < 0)
3478 return null_or_empty(&st);
3481 DIR *xopendirat(int fd, const char *name, int flags) {
3485 assert(!(flags & O_CREAT));
3487 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3500 int signal_from_string_try_harder(const char *s) {
3504 signo = signal_from_string(s);
3506 if (startswith(s, "SIG"))
3507 return signal_from_string(s+3);
3512 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3513 _cleanup_free_ char *t = NULL, *u = NULL;
3516 u = unquote(tagvalue, "\"\'");
3520 enc_len = strlen(u) * 4 + 1;
3521 t = new(char, enc_len);
3525 if (encode_devnode_name(u, t, enc_len) < 0)
3528 return strjoin("/dev/disk/by-", by, "/", t, NULL);
3531 char *fstab_node_to_udev_node(const char *p) {
3534 if (startswith(p, "LABEL="))
3535 return tag_to_udev_node(p+6, "label");
3537 if (startswith(p, "UUID="))
3538 return tag_to_udev_node(p+5, "uuid");
3540 if (startswith(p, "PARTUUID="))
3541 return tag_to_udev_node(p+9, "partuuid");
3543 if (startswith(p, "PARTLABEL="))
3544 return tag_to_udev_node(p+10, "partlabel");
3549 bool tty_is_vc(const char *tty) {
3552 if (startswith(tty, "/dev/"))
3555 return vtnr_from_tty(tty) >= 0;
3558 bool tty_is_console(const char *tty) {
3561 if (startswith(tty, "/dev/"))
3564 return streq(tty, "console");
3567 int vtnr_from_tty(const char *tty) {
3572 if (startswith(tty, "/dev/"))
3575 if (!startswith(tty, "tty") )
3578 if (tty[3] < '0' || tty[3] > '9')
3581 r = safe_atoi(tty+3, &i);
3585 if (i < 0 || i > 63)
3591 char *resolve_dev_console(char **active) {
3594 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3595 * (i.e. not read-only-mounted which is a sign for container setups) */
3597 if (path_is_read_only_fs("/sys") > 0)
3600 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3603 /* If multiple log outputs are configured the last one is what
3604 * /dev/console points to */
3605 tty = strrchr(*active, ' ');
3611 if (streq(tty, "tty0")) {
3614 /* Get the active VC (e.g. tty1) */
3615 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3617 tty = *active = tmp;
3624 bool tty_is_vc_resolve(const char *tty) {
3625 _cleanup_free_ char *active = NULL;
3629 if (startswith(tty, "/dev/"))
3632 if (streq(tty, "console")) {
3633 tty = resolve_dev_console(&active);
3638 return tty_is_vc(tty);
3641 const char *default_term_for_tty(const char *tty) {
3644 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
3647 bool dirent_is_file(const struct dirent *de) {
3650 if (ignore_file(de->d_name))
3653 if (de->d_type != DT_REG &&
3654 de->d_type != DT_LNK &&
3655 de->d_type != DT_UNKNOWN)
3661 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
3664 if (de->d_type != DT_REG &&
3665 de->d_type != DT_LNK &&
3666 de->d_type != DT_UNKNOWN)
3669 if (ignore_file_allow_backup(de->d_name))
3672 return endswith(de->d_name, suffix);
3675 void execute_directory(const char *directory, DIR *d, usec_t timeout, char *argv[]) {
3681 /* Executes all binaries in a directory in parallel and waits
3682 * for them to finish. Optionally a timeout is applied. */
3684 executor_pid = fork();
3685 if (executor_pid < 0) {
3686 log_error("Failed to fork: %m");
3689 } else if (executor_pid == 0) {
3690 _cleanup_hashmap_free_free_ Hashmap *pids = NULL;
3691 _cleanup_closedir_ DIR *_d = NULL;
3695 /* We fork this all off from a child process so that
3696 * we can somewhat cleanly make use of SIGALRM to set
3699 reset_all_signal_handlers();
3701 assert_se(sigemptyset(&ss) == 0);
3702 assert_se(sigprocmask(SIG_SETMASK, &ss, NULL) == 0);
3704 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3707 d = _d = opendir(directory);
3709 if (errno == ENOENT)
3710 _exit(EXIT_SUCCESS);
3712 log_error("Failed to enumerate directory %s: %m", directory);
3713 _exit(EXIT_FAILURE);
3717 pids = hashmap_new(NULL, NULL);
3720 _exit(EXIT_FAILURE);
3723 FOREACH_DIRENT(de, d, break) {
3724 _cleanup_free_ char *path = NULL;
3727 if (!dirent_is_file(de))
3730 if (asprintf(&path, "%s/%s", directory, de->d_name) < 0) {
3732 _exit(EXIT_FAILURE);
3737 log_error("Failed to fork: %m");
3739 } else if (pid == 0) {
3742 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
3752 log_error("Failed to execute %s: %m", path);
3753 _exit(EXIT_FAILURE);
3757 log_debug("Spawned %s as " PID_FMT ".", path, pid);
3759 r = hashmap_put(pids, UINT_TO_PTR(pid), path);
3762 _exit(EXIT_FAILURE);
3768 /* Abort execution of this process after the
3769 * timout. We simply rely on SIGALRM as default action
3770 * terminating the process, and turn on alarm(). */
3772 if (timeout != (usec_t) -1)
3773 alarm((timeout + USEC_PER_SEC - 1) / USEC_PER_SEC);
3775 while (!hashmap_isempty(pids)) {
3776 _cleanup_free_ char *path = NULL;
3779 pid = PTR_TO_UINT(hashmap_first_key(pids));
3782 path = hashmap_remove(pids, UINT_TO_PTR(pid));
3785 wait_for_terminate_and_warn(path, pid);
3788 _exit(EXIT_SUCCESS);
3791 wait_for_terminate_and_warn(directory, executor_pid);
3794 int kill_and_sigcont(pid_t pid, int sig) {
3797 r = kill(pid, sig) < 0 ? -errno : 0;
3805 bool nulstr_contains(const char*nulstr, const char *needle) {
3811 NULSTR_FOREACH(i, nulstr)
3812 if (streq(i, needle))
3818 bool plymouth_running(void) {
3819 return access("/run/plymouth/pid", F_OK) >= 0;
3822 char* strshorten(char *s, size_t l) {
3831 static bool hostname_valid_char(char c) {
3833 (c >= 'a' && c <= 'z') ||
3834 (c >= 'A' && c <= 'Z') ||
3835 (c >= '0' && c <= '9') ||
3841 bool hostname_is_valid(const char *s) {
3848 for (p = s, dot = true; *p; p++) {
3855 if (!hostname_valid_char(*p))
3865 if (p-s > HOST_NAME_MAX)
3871 char* hostname_cleanup(char *s, bool lowercase) {
3875 for (p = s, d = s, dot = true; *p; p++) {
3882 } else if (hostname_valid_char(*p)) {
3883 *(d++) = lowercase ? tolower(*p) : *p;
3894 strshorten(s, HOST_NAME_MAX);
3899 int pipe_eof(int fd) {
3900 struct pollfd pollfd = {
3902 .events = POLLIN|POLLHUP,
3907 r = poll(&pollfd, 1, 0);
3914 return pollfd.revents & POLLHUP;
3917 int fd_wait_for_event(int fd, int event, usec_t t) {
3919 struct pollfd pollfd = {
3927 r = ppoll(&pollfd, 1, t == (usec_t) -1 ? NULL : timespec_store(&ts, t), NULL);
3934 return pollfd.revents;
3937 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
3948 t = new(char, strlen(path) + 1 + 6 + 1);
3952 fn = basename(path);
3956 stpcpy(stpcpy(t+k+1, fn), "XXXXXX");
3958 fd = mkostemp_safe(t, O_WRONLY|O_CLOEXEC);
3964 f = fdopen(fd, "we");
3977 int terminal_vhangup_fd(int fd) {
3980 if (ioctl(fd, TIOCVHANGUP) < 0)
3986 int terminal_vhangup(const char *name) {
3987 _cleanup_close_ int fd;
3989 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
3993 return terminal_vhangup_fd(fd);
3996 int vt_disallocate(const char *name) {
4000 /* Deallocate the VT if possible. If not possible
4001 * (i.e. because it is the active one), at least clear it
4002 * entirely (including the scrollback buffer) */
4004 if (!startswith(name, "/dev/"))
4007 if (!tty_is_vc(name)) {
4008 /* So this is not a VT. I guess we cannot deallocate
4009 * it then. But let's at least clear the screen */
4011 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4016 "\033[r" /* clear scrolling region */
4017 "\033[H" /* move home */
4018 "\033[2J", /* clear screen */
4025 if (!startswith(name, "/dev/tty"))
4028 r = safe_atou(name+8, &u);
4035 /* Try to deallocate */
4036 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
4040 r = ioctl(fd, VT_DISALLOCATE, u);
4049 /* Couldn't deallocate, so let's clear it fully with
4051 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4056 "\033[r" /* clear scrolling region */
4057 "\033[H" /* move home */
4058 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4065 int copy_file(const char *from, const char *to, int flags) {
4066 _cleanup_close_ int fdf = -1;
4072 fdf = open(from, O_RDONLY|O_CLOEXEC|O_NOCTTY);
4076 fdt = open(to, flags|O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, 0644);
4084 n = read(fdf, buf, sizeof(buf));
4098 k = loop_write(fdt, buf, n, false);
4100 r = k < 0 ? k : (errno ? -errno : -EIO);
4109 r = close_nointr(fdt);
4119 int symlink_atomic(const char *from, const char *to) {
4121 _cleanup_free_ char *t;
4131 t = new(char, strlen(to) + 1 + 16 + 1);
4139 x = stpcpy(t+k+1, fn);
4142 for (i = 0; i < 16; i++) {
4143 *(x++) = hexchar(u & 0xF);
4149 if (symlink(from, t) < 0)
4152 if (rename(t, to) < 0) {
4161 bool display_is_local(const char *display) {
4165 display[0] == ':' &&
4166 display[1] >= '0' &&
4170 int socket_from_display(const char *display, char **path) {
4177 if (!display_is_local(display))
4180 k = strspn(display+1, "0123456789");
4182 f = new(char, strlen("/tmp/.X11-unix/X") + k + 1);
4186 c = stpcpy(f, "/tmp/.X11-unix/X");
4187 memcpy(c, display+1, k);
4196 const char **username,
4197 uid_t *uid, gid_t *gid,
4199 const char **shell) {
4207 /* We enforce some special rules for uid=0: in order to avoid
4208 * NSS lookups for root we hardcode its data. */
4210 if (streq(*username, "root") || streq(*username, "0")) {
4228 if (parse_uid(*username, &u) >= 0) {
4232 /* If there are multiple users with the same id, make
4233 * sure to leave $USER to the configured value instead
4234 * of the first occurrence in the database. However if
4235 * the uid was configured by a numeric uid, then let's
4236 * pick the real username from /etc/passwd. */
4238 *username = p->pw_name;
4241 p = getpwnam(*username);
4245 return errno > 0 ? -errno : -ESRCH;
4257 *shell = p->pw_shell;
4262 char* uid_to_name(uid_t uid) {
4267 return strdup("root");
4271 return strdup(p->pw_name);
4273 if (asprintf(&r, "%lu", (unsigned long) uid) < 0)
4279 char* gid_to_name(gid_t gid) {
4284 return strdup("root");
4288 return strdup(p->gr_name);
4290 if (asprintf(&r, "%lu", (unsigned long) gid) < 0)
4296 int get_group_creds(const char **groupname, gid_t *gid) {
4302 /* We enforce some special rules for gid=0: in order to avoid
4303 * NSS lookups for root we hardcode its data. */
4305 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4306 *groupname = "root";
4314 if (parse_gid(*groupname, &id) >= 0) {
4319 *groupname = g->gr_name;
4322 g = getgrnam(*groupname);
4326 return errno > 0 ? -errno : -ESRCH;
4334 int in_gid(gid_t gid) {
4336 int ngroups_max, r, i;
4338 if (getgid() == gid)
4341 if (getegid() == gid)
4344 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4345 assert(ngroups_max > 0);
4347 gids = alloca(sizeof(gid_t) * ngroups_max);
4349 r = getgroups(ngroups_max, gids);
4353 for (i = 0; i < r; i++)
4360 int in_group(const char *name) {
4364 r = get_group_creds(&name, &gid);
4371 int glob_exists(const char *path) {
4372 _cleanup_globfree_ glob_t g = {};
4378 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4380 if (k == GLOB_NOMATCH)
4382 else if (k == GLOB_NOSPACE)
4385 return !strv_isempty(g.gl_pathv);
4387 return errno ? -errno : -EIO;
4390 int glob_extend(char ***strv, const char *path) {
4391 _cleanup_globfree_ glob_t g = {};
4396 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4398 if (k == GLOB_NOMATCH)
4400 else if (k == GLOB_NOSPACE)
4402 else if (k != 0 || strv_isempty(g.gl_pathv))
4403 return errno ? -errno : -EIO;
4405 STRV_FOREACH(p, g.gl_pathv) {
4406 k = strv_extend(strv, *p);
4414 int dirent_ensure_type(DIR *d, struct dirent *de) {
4420 if (de->d_type != DT_UNKNOWN)
4423 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4427 S_ISREG(st.st_mode) ? DT_REG :
4428 S_ISDIR(st.st_mode) ? DT_DIR :
4429 S_ISLNK(st.st_mode) ? DT_LNK :
4430 S_ISFIFO(st.st_mode) ? DT_FIFO :
4431 S_ISSOCK(st.st_mode) ? DT_SOCK :
4432 S_ISCHR(st.st_mode) ? DT_CHR :
4433 S_ISBLK(st.st_mode) ? DT_BLK :
4439 int in_search_path(const char *path, char **search) {
4441 _cleanup_free_ char *parent = NULL;
4444 r = path_get_parent(path, &parent);
4448 STRV_FOREACH(i, search)
4449 if (path_equal(parent, *i))
4455 int get_files_in_directory(const char *path, char ***list) {
4456 _cleanup_closedir_ DIR *d = NULL;
4457 size_t bufsize = 0, n = 0;
4458 _cleanup_strv_free_ char **l = NULL;
4462 /* Returns all files in a directory in *list, and the number
4463 * of files as return value. If list is NULL returns only the
4475 if (!de && errno != 0)
4480 dirent_ensure_type(d, de);
4482 if (!dirent_is_file(de))
4486 /* one extra slot is needed for the terminating NULL */
4487 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4490 l[n] = strdup(de->d_name);
4501 l = NULL; /* avoid freeing */
4507 char *strjoin(const char *x, ...) {
4521 t = va_arg(ap, const char *);
4526 if (n > ((size_t) -1) - l) {
4550 t = va_arg(ap, const char *);
4564 bool is_main_thread(void) {
4565 static thread_local int cached = 0;
4567 if (_unlikely_(cached == 0))
4568 cached = getpid() == gettid() ? 1 : -1;
4573 int block_get_whole_disk(dev_t d, dev_t *ret) {
4580 /* If it has a queue this is good enough for us */
4581 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4584 r = access(p, F_OK);
4592 /* If it is a partition find the originating device */
4593 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4596 r = access(p, F_OK);
4602 /* Get parent dev_t */
4603 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4606 r = read_one_line_file(p, &s);
4612 r = sscanf(s, "%u:%u", &m, &n);
4618 /* Only return this if it is really good enough for us. */
4619 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4622 r = access(p, F_OK);
4626 *ret = makedev(m, n);
4633 int file_is_priv_sticky(const char *p) {
4638 if (lstat(p, &st) < 0)
4642 (st.st_uid == 0 || st.st_uid == getuid()) &&
4643 (st.st_mode & S_ISVTX);
4646 static const char *const ioprio_class_table[] = {
4647 [IOPRIO_CLASS_NONE] = "none",
4648 [IOPRIO_CLASS_RT] = "realtime",
4649 [IOPRIO_CLASS_BE] = "best-effort",
4650 [IOPRIO_CLASS_IDLE] = "idle"
4653 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4655 static const char *const sigchld_code_table[] = {
4656 [CLD_EXITED] = "exited",
4657 [CLD_KILLED] = "killed",
4658 [CLD_DUMPED] = "dumped",
4659 [CLD_TRAPPED] = "trapped",
4660 [CLD_STOPPED] = "stopped",
4661 [CLD_CONTINUED] = "continued",
4664 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4666 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4667 [LOG_FAC(LOG_KERN)] = "kern",
4668 [LOG_FAC(LOG_USER)] = "user",
4669 [LOG_FAC(LOG_MAIL)] = "mail",
4670 [LOG_FAC(LOG_DAEMON)] = "daemon",
4671 [LOG_FAC(LOG_AUTH)] = "auth",
4672 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4673 [LOG_FAC(LOG_LPR)] = "lpr",
4674 [LOG_FAC(LOG_NEWS)] = "news",
4675 [LOG_FAC(LOG_UUCP)] = "uucp",
4676 [LOG_FAC(LOG_CRON)] = "cron",
4677 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
4678 [LOG_FAC(LOG_FTP)] = "ftp",
4679 [LOG_FAC(LOG_LOCAL0)] = "local0",
4680 [LOG_FAC(LOG_LOCAL1)] = "local1",
4681 [LOG_FAC(LOG_LOCAL2)] = "local2",
4682 [LOG_FAC(LOG_LOCAL3)] = "local3",
4683 [LOG_FAC(LOG_LOCAL4)] = "local4",
4684 [LOG_FAC(LOG_LOCAL5)] = "local5",
4685 [LOG_FAC(LOG_LOCAL6)] = "local6",
4686 [LOG_FAC(LOG_LOCAL7)] = "local7"
4689 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
4691 static const char *const log_level_table[] = {
4692 [LOG_EMERG] = "emerg",
4693 [LOG_ALERT] = "alert",
4694 [LOG_CRIT] = "crit",
4696 [LOG_WARNING] = "warning",
4697 [LOG_NOTICE] = "notice",
4698 [LOG_INFO] = "info",
4699 [LOG_DEBUG] = "debug"
4702 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
4704 static const char* const sched_policy_table[] = {
4705 [SCHED_OTHER] = "other",
4706 [SCHED_BATCH] = "batch",
4707 [SCHED_IDLE] = "idle",
4708 [SCHED_FIFO] = "fifo",
4712 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
4714 static const char* const rlimit_table[_RLIMIT_MAX] = {
4715 [RLIMIT_CPU] = "LimitCPU",
4716 [RLIMIT_FSIZE] = "LimitFSIZE",
4717 [RLIMIT_DATA] = "LimitDATA",
4718 [RLIMIT_STACK] = "LimitSTACK",
4719 [RLIMIT_CORE] = "LimitCORE",
4720 [RLIMIT_RSS] = "LimitRSS",
4721 [RLIMIT_NOFILE] = "LimitNOFILE",
4722 [RLIMIT_AS] = "LimitAS",
4723 [RLIMIT_NPROC] = "LimitNPROC",
4724 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
4725 [RLIMIT_LOCKS] = "LimitLOCKS",
4726 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
4727 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
4728 [RLIMIT_NICE] = "LimitNICE",
4729 [RLIMIT_RTPRIO] = "LimitRTPRIO",
4730 [RLIMIT_RTTIME] = "LimitRTTIME"
4733 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
4735 static const char* const ip_tos_table[] = {
4736 [IPTOS_LOWDELAY] = "low-delay",
4737 [IPTOS_THROUGHPUT] = "throughput",
4738 [IPTOS_RELIABILITY] = "reliability",
4739 [IPTOS_LOWCOST] = "low-cost",
4742 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
4744 static const char *const __signal_table[] = {
4761 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
4772 [SIGVTALRM] = "VTALRM",
4774 [SIGWINCH] = "WINCH",
4780 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
4782 const char *signal_to_string(int signo) {
4783 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
4786 name = __signal_to_string(signo);
4790 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
4791 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
4793 snprintf(buf, sizeof(buf), "%d", signo);
4798 int signal_from_string(const char *s) {
4803 signo = __signal_from_string(s);
4807 if (startswith(s, "RTMIN+")) {
4811 if (safe_atou(s, &u) >= 0) {
4812 signo = (int) u + offset;
4813 if (signo > 0 && signo < _NSIG)
4819 bool kexec_loaded(void) {
4820 bool loaded = false;
4823 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
4831 int strdup_or_null(const char *a, char **b) {
4849 int prot_from_flags(int flags) {
4851 switch (flags & O_ACCMODE) {
4860 return PROT_READ|PROT_WRITE;
4867 char *format_bytes(char *buf, size_t l, off_t t) {
4870 static const struct {
4874 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4875 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
4876 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
4877 { "G", 1024ULL*1024ULL*1024ULL },
4878 { "M", 1024ULL*1024ULL },
4882 for (i = 0; i < ELEMENTSOF(table); i++) {
4884 if (t >= table[i].factor) {
4887 (unsigned long long) (t / table[i].factor),
4888 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
4895 snprintf(buf, l, "%lluB", (unsigned long long) t);
4903 void* memdup(const void *p, size_t l) {
4916 int fd_inc_sndbuf(int fd, size_t n) {
4918 socklen_t l = sizeof(value);
4920 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
4921 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4924 /* If we have the privileges we will ignore the kernel limit. */
4927 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
4928 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
4934 int fd_inc_rcvbuf(int fd, size_t n) {
4936 socklen_t l = sizeof(value);
4938 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
4939 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
4942 /* If we have the privileges we will ignore the kernel limit. */
4945 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
4946 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
4951 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
4952 pid_t parent_pid, agent_pid;
4954 bool stdout_is_tty, stderr_is_tty;
4962 parent_pid = getpid();
4964 /* Spawns a temporary TTY agent, making sure it goes away when
4971 if (agent_pid != 0) {
4978 * Make sure the agent goes away when the parent dies */
4979 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
4980 _exit(EXIT_FAILURE);
4982 /* Check whether our parent died before we were able
4983 * to set the death signal */
4984 if (getppid() != parent_pid)
4985 _exit(EXIT_SUCCESS);
4987 /* Don't leak fds to the agent */
4988 close_all_fds(except, n_except);
4990 stdout_is_tty = isatty(STDOUT_FILENO);
4991 stderr_is_tty = isatty(STDERR_FILENO);
4993 if (!stdout_is_tty || !stderr_is_tty) {
4994 /* Detach from stdout/stderr. and reopen
4995 * /dev/tty for them. This is important to
4996 * ensure that when systemctl is started via
4997 * popen() or a similar call that expects to
4998 * read EOF we actually do generate EOF and
4999 * not delay this indefinitely by because we
5000 * keep an unused copy of stdin around. */
5001 fd = open("/dev/tty", O_WRONLY);
5003 log_error("Failed to open /dev/tty: %m");
5004 _exit(EXIT_FAILURE);
5008 dup2(fd, STDOUT_FILENO);
5011 dup2(fd, STDERR_FILENO);
5017 /* Count arguments */
5019 for (n = 0; va_arg(ap, char*); n++)
5024 l = alloca(sizeof(char *) * (n + 1));
5026 /* Fill in arguments */
5028 for (i = 0; i <= n; i++)
5029 l[i] = va_arg(ap, char*);
5033 _exit(EXIT_FAILURE);
5036 int setrlimit_closest(int resource, const struct rlimit *rlim) {
5037 struct rlimit highest, fixed;
5041 if (setrlimit(resource, rlim) >= 0)
5047 /* So we failed to set the desired setrlimit, then let's try
5048 * to get as close as we can */
5049 assert_se(getrlimit(resource, &highest) == 0);
5051 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
5052 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
5054 if (setrlimit(resource, &fixed) < 0)
5060 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5061 _cleanup_fclose_ FILE *f = NULL;
5072 path = procfs_file_alloca(pid, "environ");
5074 f = fopen(path, "re");
5082 char line[LINE_MAX];
5085 for (i = 0; i < sizeof(line)-1; i++) {
5089 if (_unlikely_(c == EOF)) {
5099 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5100 value = strdup(line + l + 1);
5114 bool is_valid_documentation_url(const char *url) {
5117 if (startswith(url, "http://") && url[7])
5120 if (startswith(url, "https://") && url[8])
5123 if (startswith(url, "file:") && url[5])
5126 if (startswith(url, "info:") && url[5])
5129 if (startswith(url, "man:") && url[4])
5135 bool in_initrd(void) {
5136 static int saved = -1;
5142 /* We make two checks here:
5144 * 1. the flag file /etc/initrd-release must exist
5145 * 2. the root file system must be a memory file system
5147 * The second check is extra paranoia, since misdetecting an
5148 * initrd can have bad bad consequences due the initrd
5149 * emptying when transititioning to the main systemd.
5152 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5153 statfs("/", &s) >= 0 &&
5154 is_temporary_fs(&s);
5159 void warn_melody(void) {
5160 _cleanup_close_ int fd = -1;
5162 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5166 /* Yeah, this is synchronous. Kinda sucks. But well... */
5168 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5169 usleep(125*USEC_PER_MSEC);
5171 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5172 usleep(125*USEC_PER_MSEC);
5174 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5175 usleep(125*USEC_PER_MSEC);
5177 ioctl(fd, KIOCSOUND, 0);
5180 int make_console_stdio(void) {
5183 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5185 fd = acquire_terminal("/dev/console", false, true, true, (usec_t) -1);
5187 log_error("Failed to acquire terminal: %s", strerror(-fd));
5193 log_error("Failed to duplicate terminal fd: %s", strerror(-r));
5200 int get_home_dir(char **_h) {
5208 /* Take the user specified one */
5219 /* Hardcode home directory for root to avoid NSS */
5222 h = strdup("/root");
5230 /* Check the database... */
5234 return errno > 0 ? -errno : -ESRCH;
5236 if (!path_is_absolute(p->pw_dir))
5239 h = strdup(p->pw_dir);
5247 int get_shell(char **_s) {
5255 /* Take the user specified one */
5256 e = getenv("SHELL");
5266 /* Hardcode home directory for root to avoid NSS */
5269 s = strdup("/bin/sh");
5277 /* Check the database... */
5281 return errno > 0 ? -errno : -ESRCH;
5283 if (!path_is_absolute(p->pw_shell))
5286 s = strdup(p->pw_shell);
5294 bool filename_is_safe(const char *p) {
5308 if (strlen(p) > FILENAME_MAX)
5314 bool string_is_safe(const char *p) {
5319 for (t = p; *t; t++) {
5320 if (*t > 0 && *t < ' ')
5323 if (strchr("\\\"\'", *t))
5331 * Check if a string contains control characters.
5332 * Spaces and tabs are not considered control characters.
5334 bool string_has_cc(const char *p) {
5339 for (t = p; *t; t++)
5340 if (*t > 0 && *t < ' ' && *t != '\t')
5346 bool path_is_safe(const char *p) {
5351 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5354 if (strlen(p) > PATH_MAX)
5357 /* The following two checks are not really dangerous, but hey, they still are confusing */
5358 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5361 if (strstr(p, "//"))
5367 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5368 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5369 int (*compar) (const void *, const void *, void *), void *arg) {
5378 p = (void *)(((const char *) base) + (idx * size));
5379 comparison = compar(key, p, arg);
5382 else if (comparison > 0)
5390 bool is_locale_utf8(void) {
5392 static int cached_answer = -1;
5394 if (cached_answer >= 0)
5397 if (!setlocale(LC_ALL, "")) {
5398 cached_answer = true;
5402 set = nl_langinfo(CODESET);
5404 cached_answer = true;
5408 if (streq(set, "UTF-8")) {
5409 cached_answer = true;
5413 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5414 * unset and everything can do to UTF-8 nowadays. */
5415 set = setlocale(LC_CTYPE, NULL);
5417 cached_answer = true;
5421 /* Check result, but ignore the result if C was set
5425 !getenv("LC_ALL") &&
5426 !getenv("LC_CTYPE") &&
5430 return (bool) cached_answer;
5433 const char *draw_special_char(DrawSpecialChar ch) {
5434 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5436 [DRAW_TREE_VERT] = "\342\224\202 ", /* │ */
5437 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5438 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5439 [DRAW_TREE_SPACE] = " ", /* */
5440 [DRAW_TRIANGULAR_BULLET] = "\342\200\243 ", /* ‣ */
5441 [DRAW_BLACK_CIRCLE] = "\342\227\217 ", /* ● */
5443 /* ASCII fallback */ {
5444 [DRAW_TREE_VERT] = "| ",
5445 [DRAW_TREE_BRANCH] = "|-",
5446 [DRAW_TREE_RIGHT] = "`-",
5447 [DRAW_TREE_SPACE] = " ",
5448 [DRAW_TRIANGULAR_BULLET] = "> ",
5449 [DRAW_BLACK_CIRCLE] = "* ",
5453 return draw_table[!is_locale_utf8()][ch];
5456 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5459 size_t l, old_len, new_len;
5465 old_len = strlen(old_string);
5466 new_len = strlen(new_string);
5479 if (!startswith(f, old_string)) {
5485 nl = l - old_len + new_len;
5486 a = realloc(r, nl + 1);
5494 t = stpcpy(t, new_string);
5506 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5507 const char *i, *begin = NULL;
5512 } state = STATE_OTHER;
5514 size_t osz = 0, isz;
5520 /* Strips ANSI color and replaces TABs by 8 spaces */
5522 isz = _isz ? *_isz : strlen(*ibuf);
5524 f = open_memstream(&obuf, &osz);
5528 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5533 if (i >= *ibuf + isz) /* EOT */
5535 else if (*i == '\x1B')
5536 state = STATE_ESCAPE;
5537 else if (*i == '\t')
5544 if (i >= *ibuf + isz) { /* EOT */
5547 } else if (*i == '[') {
5548 state = STATE_BRACKET;
5553 state = STATE_OTHER;
5560 if (i >= *ibuf + isz || /* EOT */
5561 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5564 state = STATE_OTHER;
5566 } else if (*i == 'm')
5567 state = STATE_OTHER;
5589 int on_ac_power(void) {
5590 bool found_offline = false, found_online = false;
5591 _cleanup_closedir_ DIR *d = NULL;
5593 d = opendir("/sys/class/power_supply");
5599 _cleanup_close_ int fd = -1, device = -1;
5605 if (!de && errno != 0)
5611 if (ignore_file(de->d_name))
5614 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5616 if (errno == ENOENT || errno == ENOTDIR)
5622 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5624 if (errno == ENOENT)
5630 n = read(fd, contents, sizeof(contents));
5634 if (n != 6 || memcmp(contents, "Mains\n", 6))
5638 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5640 if (errno == ENOENT)
5646 n = read(fd, contents, sizeof(contents));
5650 if (n != 2 || contents[1] != '\n')
5653 if (contents[0] == '1') {
5654 found_online = true;
5656 } else if (contents[0] == '0')
5657 found_offline = true;
5662 return found_online || !found_offline;
5665 static int search_and_fopen_internal(const char *path, const char *mode, const char *root, char **search, FILE **_f) {
5672 if (!path_strv_canonicalize_absolute_uniq(search, root))
5675 STRV_FOREACH(i, search) {
5676 _cleanup_free_ char *p = NULL;
5679 p = strjoin(*i, "/", path, NULL);
5689 if (errno != ENOENT)
5696 int search_and_fopen(const char *path, const char *mode, const char *root, const char **search, FILE **_f) {
5697 _cleanup_strv_free_ char **copy = NULL;
5703 if (path_is_absolute(path)) {
5706 f = fopen(path, mode);
5715 copy = strv_copy((char**) search);
5719 return search_and_fopen_internal(path, mode, root, copy, _f);
5722 int search_and_fopen_nulstr(const char *path, const char *mode, const char *root, const char *search, FILE **_f) {
5723 _cleanup_strv_free_ char **s = NULL;
5725 if (path_is_absolute(path)) {
5728 f = fopen(path, mode);
5737 s = strv_split_nulstr(search);
5741 return search_and_fopen_internal(path, mode, root, s, _f);
5744 char *strextend(char **x, ...) {
5751 l = f = *x ? strlen(*x) : 0;
5758 t = va_arg(ap, const char *);
5763 if (n > ((size_t) -1) - l) {
5772 r = realloc(*x, l+1);
5782 t = va_arg(ap, const char *);
5796 char *strrep(const char *s, unsigned n) {
5804 p = r = malloc(l * n + 1);
5808 for (i = 0; i < n; i++)
5815 void* greedy_realloc(void **p, size_t *allocated, size_t need) {
5822 if (*allocated >= need)
5825 a = MAX(64u, need * 2);
5827 /* check for overflows */
5840 void* greedy_realloc0(void **p, size_t *allocated, size_t need) {
5849 q = greedy_realloc(p, allocated, need);
5853 if (*allocated > prev)
5854 memzero(&q[prev], *allocated - prev);
5859 bool id128_is_valid(const char *s) {
5865 /* Simple formatted 128bit hex string */
5867 for (i = 0; i < l; i++) {
5870 if (!(c >= '0' && c <= '9') &&
5871 !(c >= 'a' && c <= 'z') &&
5872 !(c >= 'A' && c <= 'Z'))
5876 } else if (l == 36) {
5878 /* Formatted UUID */
5880 for (i = 0; i < l; i++) {
5883 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
5887 if (!(c >= '0' && c <= '9') &&
5888 !(c >= 'a' && c <= 'z') &&
5889 !(c >= 'A' && c <= 'Z'))
5900 int split_pair(const char *s, const char *sep, char **l, char **r) {
5915 a = strndup(s, x - s);
5919 b = strdup(x + strlen(sep));
5931 int shall_restore_state(void) {
5932 _cleanup_free_ char *line = NULL;
5937 r = proc_cmdline(&line);
5940 if (r == 0) /* Container ... */
5945 FOREACH_WORD_QUOTED(w, l, line, state) {
5953 e = startswith(n, "systemd.restore_state=");
5957 k = parse_boolean(e);
5965 int proc_cmdline(char **ret) {
5968 if (detect_container(NULL) > 0) {
5969 char *buf = NULL, *p;
5972 r = read_full_file("/proc/1/cmdline", &buf, &sz);
5976 for (p = buf; p + 1 < buf + sz; p++)
5985 r = read_one_line_file("/proc/cmdline", ret);
5992 int parse_proc_cmdline(int (*parse_item)(const char *key, const char *value)) {
5993 _cleanup_free_ char *line = NULL;
6000 r = proc_cmdline(&line);
6002 log_warning("Failed to read /proc/cmdline, ignoring: %s", strerror(-r));
6006 FOREACH_WORD_QUOTED(w, l, line, state) {
6007 char word[l+1], *value;
6012 /* Filter out arguments that are intended only for the
6014 if (!in_initrd() && startswith(word, "rd."))
6017 value = strchr(word, '=');
6021 r = parse_item(word, value);
6029 int container_get_leader(const char *machine, pid_t *pid) {
6030 _cleanup_free_ char *s = NULL, *class = NULL;
6038 p = strappenda("/run/systemd/machines/", machine);
6039 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
6047 if (!streq_ptr(class, "container"))
6050 r = parse_pid(s, &leader);
6060 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *root_fd) {
6061 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1;
6062 const char *pidns, *mntns, *root;
6070 mntns = procfs_file_alloca(pid, "ns/mnt");
6071 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6075 pidns = procfs_file_alloca(pid, "ns/pid");
6076 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6080 root = procfs_file_alloca(pid, "root");
6081 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
6085 *pidns_fd = pidnsfd;
6086 *mntns_fd = mntnsfd;
6094 int namespace_enter(int pidns_fd, int mntns_fd, int root_fd) {
6095 assert(pidns_fd >= 0);
6096 assert(mntns_fd >= 0);
6097 assert(root_fd >= 0);
6099 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6102 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6105 if (fchdir(root_fd) < 0)
6108 if (chroot(".") < 0)
6111 if (setresgid(0, 0, 0) < 0)
6114 if (setresuid(0, 0, 0) < 0)
6120 bool pid_is_unwaited(pid_t pid) {
6121 /* Checks whether a PID is still valid at all, including a zombie */
6126 if (kill(pid, 0) >= 0)
6129 return errno != ESRCH;
6132 bool pid_is_alive(pid_t pid) {
6135 /* Checks whether a PID is still valid and not a zombie */
6140 r = get_process_state(pid);
6141 if (r == -ENOENT || r == 'Z')
6147 int getpeercred(int fd, struct ucred *ucred) {
6148 socklen_t n = sizeof(struct ucred);
6155 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6159 if (n != sizeof(struct ucred))
6162 /* Check if the data is actually useful and not suppressed due
6163 * to namespacing issues */
6171 int getpeersec(int fd, char **ret) {
6183 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6187 if (errno != ERANGE)
6194 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6210 /* This is much like like mkostemp() but is subject to umask(). */
6211 int mkostemp_safe(char *pattern, int flags) {
6212 _cleanup_umask_ mode_t u;
6219 fd = mkostemp(pattern, flags);
6226 int open_tmpfile(const char *path, int flags) {
6233 /* Try O_TMPFILE first, if it is supported */
6234 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6239 /* Fall back to unguessable name + unlinking */
6240 p = strappenda(path, "/systemd-tmp-XXXXXX");
6242 fd = mkostemp_safe(p, flags);
6250 int fd_warn_permissions(const char *path, int fd) {
6253 if (fstat(fd, &st) < 0)
6256 if (st.st_mode & 0111)
6257 log_warning("Configuration file %s is marked executable. Please remove executable permission bits. Proceeding anyway.", path);
6259 if (st.st_mode & 0002)
6260 log_warning("Configuration file %s is marked world-writable. Please remove world writability permission bits. Proceeding anyway.", path);
6262 if (getpid() == 1 && (st.st_mode & 0044) != 0044)
6263 log_warning("Configuration file %s is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.", path);
6268 unsigned long personality_from_string(const char *p) {
6270 /* Parse a personality specifier. We introduce our own
6271 * identifiers that indicate specific ABIs, rather than just
6272 * hints regarding the register size, since we want to keep
6273 * things open for multiple locally supported ABIs for the
6274 * same register size. We try to reuse the ABI identifiers
6275 * used by libseccomp. */
6277 #if defined(__x86_64__)
6279 if (streq(p, "x86"))
6282 if (streq(p, "x86-64"))
6285 #elif defined(__i386__)
6287 if (streq(p, "x86"))
6291 /* personality(7) documents that 0xffffffffUL is used for
6292 * querying the current personality, hence let's use that here
6293 * as error indicator. */
6294 return 0xffffffffUL;
6297 const char* personality_to_string(unsigned long p) {
6299 #if defined(__x86_64__)
6301 if (p == PER_LINUX32)
6307 #elif defined(__i386__)
6316 uint64_t physical_memory(void) {
6319 /* We return this as uint64_t in case we are running as 32bit
6320 * process on a 64bit kernel with huge amounts of memory */
6322 mem = sysconf(_SC_PHYS_PAGES);
6325 return (uint64_t) mem * (uint64_t) page_size();
6328 char* mount_test_option(const char *haystack, const char *needle) {
6330 struct mntent me = {
6331 .mnt_opts = (char*) haystack
6336 /* Like glibc's hasmntopt(), but works on a string, not a
6342 return hasmntopt(&me, needle);
6345 void hexdump(FILE *f, const void *p, size_t s) {
6346 const uint8_t *b = p;
6349 assert(s == 0 || b);
6354 fprintf(f, "%04x ", n);
6356 for (i = 0; i < 16; i++) {
6361 fprintf(f, "%02x ", b[i]);
6369 for (i = 0; i < 16; i++) {
6374 fputc(isprint(b[i]) ? (char) b[i] : '.', f);
~ianmdlvl / elogind.git / blob