1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
31 #include <sys/resource.h>
32 #include <linux/sched.h>
33 #include <sys/types.h>
37 #include <sys/ioctl.h>
39 #include <linux/tiocl.h>
42 #include <sys/inotify.h>
45 #include <sys/prctl.h>
46 #include <sys/utsname.h>
48 #include <netinet/ip.h>
57 #include <sys/mount.h>
58 #include <linux/magic.h>
62 #include <sys/personality.h>
66 #ifdef HAVE_SYS_AUXV_H
78 #include "path-util.h"
79 #include "exit-status.h"
83 #include "device-nodes.h"
90 char **saved_argv = NULL;
92 static volatile unsigned cached_columns = 0;
93 static volatile unsigned cached_lines = 0;
95 size_t page_size(void) {
96 static thread_local size_t pgsz = 0;
99 if (_likely_(pgsz > 0))
102 r = sysconf(_SC_PAGESIZE);
109 bool streq_ptr(const char *a, const char *b) {
111 /* Like streq(), but tries to make sense of NULL pointers */
122 char* endswith(const char *s, const char *postfix) {
129 pl = strlen(postfix);
132 return (char*) s + sl;
137 if (memcmp(s + sl - pl, postfix, pl) != 0)
140 return (char*) s + sl - pl;
143 char* first_word(const char *s, const char *word) {
150 /* Checks if the string starts with the specified word, either
151 * followed by NUL or by whitespace. Returns a pointer to the
152 * NUL or the first character after the whitespace. */
163 if (memcmp(s, word, wl) != 0)
170 if (!strchr(WHITESPACE, *p))
173 p += strspn(p, WHITESPACE);
177 static size_t cescape_char(char c, char *buf) {
178 char * buf_old = buf;
224 /* For special chars we prefer octal over
225 * hexadecimal encoding, simply because glib's
226 * g_strescape() does the same */
227 if ((c < ' ') || (c >= 127)) {
229 *(buf++) = octchar((unsigned char) c >> 6);
230 *(buf++) = octchar((unsigned char) c >> 3);
231 *(buf++) = octchar((unsigned char) c);
237 return buf - buf_old;
240 int close_nointr(int fd) {
247 * Just ignore EINTR; a retry loop is the wrong thing to do on
250 * http://lkml.indiana.edu/hypermail/linux/kernel/0509.1/0877.html
251 * https://bugzilla.gnome.org/show_bug.cgi?id=682819
252 * http://utcc.utoronto.ca/~cks/space/blog/unix/CloseEINTR
253 * https://sites.google.com/site/michaelsafyan/software-engineering/checkforeintrwheninvokingclosethinkagain
261 int safe_close(int fd) {
264 * Like close_nointr() but cannot fail. Guarantees errno is
265 * unchanged. Is a NOP with negative fds passed, and returns
266 * -1, so that it can be used in this syntax:
268 * fd = safe_close(fd);
274 /* The kernel might return pretty much any error code
275 * via close(), but the fd will be closed anyway. The
276 * only condition we want to check for here is whether
277 * the fd was invalid at all... */
279 assert_se(close_nointr(fd) != -EBADF);
285 void close_many(const int fds[], unsigned n_fd) {
288 assert(fds || n_fd <= 0);
290 for (i = 0; i < n_fd; i++)
294 int unlink_noerrno(const char *path) {
305 int parse_boolean(const char *v) {
308 if (streq(v, "1") || strcaseeq(v, "yes") || strcaseeq(v, "y") || strcaseeq(v, "true") || strcaseeq(v, "t") || strcaseeq(v, "on"))
310 else if (streq(v, "0") || strcaseeq(v, "no") || strcaseeq(v, "n") || strcaseeq(v, "false") || strcaseeq(v, "f") || strcaseeq(v, "off"))
316 int parse_pid(const char *s, pid_t* ret_pid) {
317 unsigned long ul = 0;
324 r = safe_atolu(s, &ul);
330 if ((unsigned long) pid != ul)
340 int parse_uid(const char *s, uid_t* ret_uid) {
341 unsigned long ul = 0;
348 r = safe_atolu(s, &ul);
354 if ((unsigned long) uid != ul)
357 /* Some libc APIs use UID_INVALID as special placeholder */
358 if (uid == (uid_t) 0xFFFFFFFF)
361 /* A long time ago UIDs where 16bit, hence explicitly avoid the 16bit -1 too */
362 if (uid == (uid_t) 0xFFFF)
369 int safe_atou(const char *s, unsigned *ret_u) {
377 l = strtoul(s, &x, 0);
379 if (!x || x == s || *x || errno)
380 return errno > 0 ? -errno : -EINVAL;
382 if ((unsigned long) (unsigned) l != l)
385 *ret_u = (unsigned) l;
389 int safe_atoi(const char *s, int *ret_i) {
397 l = strtol(s, &x, 0);
399 if (!x || x == s || *x || errno)
400 return errno > 0 ? -errno : -EINVAL;
402 if ((long) (int) l != l)
409 int safe_atou8(const char *s, uint8_t *ret) {
417 l = strtoul(s, &x, 0);
419 if (!x || x == s || *x || errno)
420 return errno > 0 ? -errno : -EINVAL;
422 if ((unsigned long) (uint8_t) l != l)
429 int safe_atou16(const char *s, uint16_t *ret) {
437 l = strtoul(s, &x, 0);
439 if (!x || x == s || *x || errno)
440 return errno > 0 ? -errno : -EINVAL;
442 if ((unsigned long) (uint16_t) l != l)
449 int safe_atoi16(const char *s, int16_t *ret) {
457 l = strtol(s, &x, 0);
459 if (!x || x == s || *x || errno)
460 return errno > 0 ? -errno : -EINVAL;
462 if ((long) (int16_t) l != l)
469 int safe_atollu(const char *s, long long unsigned *ret_llu) {
471 unsigned long long l;
477 l = strtoull(s, &x, 0);
479 if (!x || x == s || *x || errno)
480 return errno ? -errno : -EINVAL;
486 int safe_atolli(const char *s, long long int *ret_lli) {
494 l = strtoll(s, &x, 0);
496 if (!x || x == s || *x || errno)
497 return errno ? -errno : -EINVAL;
503 int safe_atod(const char *s, double *ret_d) {
510 RUN_WITH_LOCALE(LC_NUMERIC_MASK, "C") {
515 if (!x || x == s || *x || errno)
516 return errno ? -errno : -EINVAL;
522 static size_t strcspn_escaped(const char *s, const char *reject) {
523 bool escaped = false;
526 for (n=0; s[n]; n++) {
529 else if (s[n] == '\\')
531 else if (strchr(reject, s[n]))
534 /* if s ends in \, return index of previous char */
538 /* Split a string into words. */
539 const char* split(const char **state, size_t *l, const char *separator, bool quoted) {
545 assert(**state == '\0');
549 current += strspn(current, separator);
555 if (quoted && strchr("\'\"", *current)) {
556 char quotechars[2] = {*current, '\0'};
558 *l = strcspn_escaped(current + 1, quotechars);
559 if (current[*l + 1] == '\0' ||
560 (current[*l + 2] && !strchr(separator, current[*l + 2]))) {
561 /* right quote missing or garbage at the end*/
565 assert(current[*l + 1] == quotechars[0]);
566 *state = current++ + *l + 2;
568 *l = strcspn_escaped(current, separator);
569 *state = current + *l;
571 *l = strcspn(current, separator);
572 *state = current + *l;
578 int get_parent_of_pid(pid_t pid, pid_t *_ppid) {
580 _cleanup_free_ char *line = NULL;
592 p = procfs_file_alloca(pid, "stat");
593 r = read_one_line_file(p, &line);
597 /* Let's skip the pid and comm fields. The latter is enclosed
598 * in () but does not escape any () in its value, so let's
599 * skip over it manually */
601 p = strrchr(line, ')');
613 if ((long unsigned) (pid_t) ppid != ppid)
616 *_ppid = (pid_t) ppid;
621 int get_starttime_of_pid(pid_t pid, unsigned long long *st) {
623 _cleanup_free_ char *line = NULL;
629 p = procfs_file_alloca(pid, "stat");
630 r = read_one_line_file(p, &line);
634 /* Let's skip the pid and comm fields. The latter is enclosed
635 * in () but does not escape any () in its value, so let's
636 * skip over it manually */
638 p = strrchr(line, ')');
660 "%*d " /* priority */
662 "%*d " /* num_threads */
663 "%*d " /* itrealvalue */
664 "%llu " /* starttime */,
671 int fchmod_umask(int fd, mode_t m) {
676 r = fchmod(fd, m & (~u)) < 0 ? -errno : 0;
682 char *truncate_nl(char *s) {
685 s[strcspn(s, NEWLINE)] = 0;
689 int get_process_state(pid_t pid) {
693 _cleanup_free_ char *line = NULL;
697 p = procfs_file_alloca(pid, "stat");
698 r = read_one_line_file(p, &line);
702 p = strrchr(line, ')');
708 if (sscanf(p, " %c", &state) != 1)
711 return (unsigned char) state;
714 int get_process_comm(pid_t pid, char **name) {
721 p = procfs_file_alloca(pid, "comm");
723 r = read_one_line_file(p, name);
730 int get_process_cmdline(pid_t pid, size_t max_length, bool comm_fallback, char **line) {
731 _cleanup_fclose_ FILE *f = NULL;
739 p = procfs_file_alloca(pid, "cmdline");
745 if (max_length == 0) {
746 size_t len = 0, allocated = 0;
748 while ((c = getc(f)) != EOF) {
750 if (!GREEDY_REALLOC(r, allocated, len+2)) {
755 r[len++] = isprint(c) ? c : ' ';
765 r = new(char, max_length);
771 while ((c = getc(f)) != EOF) {
793 size_t n = MIN(left-1, 3U);
800 /* Kernel threads have no argv[] */
802 _cleanup_free_ char *t = NULL;
810 h = get_process_comm(pid, &t);
814 r = strjoin("[", t, "]", NULL);
823 int is_kernel_thread(pid_t pid) {
835 p = procfs_file_alloca(pid, "cmdline");
840 count = fread(&c, 1, 1, f);
844 /* Kernel threads have an empty cmdline */
847 return eof ? 1 : -errno;
852 int get_process_capeff(pid_t pid, char **capeff) {
858 p = procfs_file_alloca(pid, "status");
860 return get_status_field(p, "\nCapEff:", capeff);
863 static int get_process_link_contents(const char *proc_file, char **name) {
869 r = readlink_malloc(proc_file, name);
871 return r == -ENOENT ? -ESRCH : r;
876 int get_process_exe(pid_t pid, char **name) {
883 p = procfs_file_alloca(pid, "exe");
884 r = get_process_link_contents(p, name);
888 d = endswith(*name, " (deleted)");
895 static int get_process_id(pid_t pid, const char *field, uid_t *uid) {
896 _cleanup_fclose_ FILE *f = NULL;
906 p = procfs_file_alloca(pid, "status");
911 FOREACH_LINE(line, f, return -errno) {
916 if (startswith(l, field)) {
918 l += strspn(l, WHITESPACE);
920 l[strcspn(l, WHITESPACE)] = 0;
922 return parse_uid(l, uid);
929 int get_process_uid(pid_t pid, uid_t *uid) {
930 return get_process_id(pid, "Uid:", uid);
933 int get_process_gid(pid_t pid, gid_t *gid) {
934 assert_cc(sizeof(uid_t) == sizeof(gid_t));
935 return get_process_id(pid, "Gid:", gid);
938 int get_process_cwd(pid_t pid, char **cwd) {
943 p = procfs_file_alloca(pid, "cwd");
945 return get_process_link_contents(p, cwd);
948 int get_process_root(pid_t pid, char **root) {
953 p = procfs_file_alloca(pid, "root");
955 return get_process_link_contents(p, root);
958 int get_process_environ(pid_t pid, char **environ) {
959 _cleanup_fclose_ FILE *f = NULL;
960 _cleanup_free_ char *outcome = NULL;
963 size_t allocated = 0, sz = 0;
968 p = procfs_file_alloca(pid, "environ");
974 while ((c = fgetc(f)) != EOF) {
975 if (!GREEDY_REALLOC(outcome, allocated, sz + 5))
979 outcome[sz++] = '\n';
981 sz += cescape_char(c, outcome + sz);
991 char *strnappend(const char *s, const char *suffix, size_t b) {
999 return strndup(suffix, b);
1008 if (b > ((size_t) -1) - a)
1011 r = new(char, a+b+1);
1016 memcpy(r+a, suffix, b);
1022 char *strappend(const char *s, const char *suffix) {
1023 return strnappend(s, suffix, suffix ? strlen(suffix) : 0);
1026 int readlinkat_malloc(int fd, const char *p, char **ret) {
1041 n = readlinkat(fd, p, c, l-1);
1048 if ((size_t) n < l-1) {
1059 int readlink_malloc(const char *p, char **ret) {
1060 return readlinkat_malloc(AT_FDCWD, p, ret);
1063 int readlink_value(const char *p, char **ret) {
1064 _cleanup_free_ char *link = NULL;
1068 r = readlink_malloc(p, &link);
1072 value = basename(link);
1076 value = strdup(value);
1085 int readlink_and_make_absolute(const char *p, char **r) {
1086 _cleanup_free_ char *target = NULL;
1093 j = readlink_malloc(p, &target);
1097 k = file_in_same_dir(p, target);
1105 int readlink_and_canonicalize(const char *p, char **r) {
1112 j = readlink_and_make_absolute(p, &t);
1116 s = canonicalize_file_name(t);
1123 path_kill_slashes(*r);
1128 int reset_all_signal_handlers(void) {
1131 for (sig = 1; sig < _NSIG; sig++) {
1132 struct sigaction sa = {
1133 .sa_handler = SIG_DFL,
1134 .sa_flags = SA_RESTART,
1137 /* These two cannot be caught... */
1138 if (sig == SIGKILL || sig == SIGSTOP)
1141 /* On Linux the first two RT signals are reserved by
1142 * glibc, and sigaction() will return EINVAL for them. */
1143 if ((sigaction(sig, &sa, NULL) < 0))
1144 if (errno != EINVAL && r == 0)
1151 int reset_signal_mask(void) {
1154 if (sigemptyset(&ss) < 0)
1157 if (sigprocmask(SIG_SETMASK, &ss, NULL) < 0)
1163 char *strstrip(char *s) {
1166 /* Drops trailing whitespace. Modifies the string in
1167 * place. Returns pointer to first non-space character */
1169 s += strspn(s, WHITESPACE);
1171 for (e = strchr(s, 0); e > s; e --)
1172 if (!strchr(WHITESPACE, e[-1]))
1180 char *delete_chars(char *s, const char *bad) {
1183 /* Drops all whitespace, regardless where in the string */
1185 for (f = s, t = s; *f; f++) {
1186 if (strchr(bad, *f))
1197 char *file_in_same_dir(const char *path, const char *filename) {
1204 /* This removes the last component of path and appends
1205 * filename, unless the latter is absolute anyway or the
1208 if (path_is_absolute(filename))
1209 return strdup(filename);
1211 if (!(e = strrchr(path, '/')))
1212 return strdup(filename);
1214 k = strlen(filename);
1215 if (!(r = new(char, e-path+1+k+1)))
1218 memcpy(r, path, e-path+1);
1219 memcpy(r+(e-path)+1, filename, k+1);
1224 int rmdir_parents(const char *path, const char *stop) {
1233 /* Skip trailing slashes */
1234 while (l > 0 && path[l-1] == '/')
1240 /* Skip last component */
1241 while (l > 0 && path[l-1] != '/')
1244 /* Skip trailing slashes */
1245 while (l > 0 && path[l-1] == '/')
1251 if (!(t = strndup(path, l)))
1254 if (path_startswith(stop, t)) {
1263 if (errno != ENOENT)
1270 char hexchar(int x) {
1271 static const char table[16] = "0123456789abcdef";
1273 return table[x & 15];
1276 int unhexchar(char c) {
1278 if (c >= '0' && c <= '9')
1281 if (c >= 'a' && c <= 'f')
1282 return c - 'a' + 10;
1284 if (c >= 'A' && c <= 'F')
1285 return c - 'A' + 10;
1290 char *hexmem(const void *p, size_t l) {
1294 z = r = malloc(l * 2 + 1);
1298 for (x = p; x < (const uint8_t*) p + l; x++) {
1299 *(z++) = hexchar(*x >> 4);
1300 *(z++) = hexchar(*x & 15);
1307 void *unhexmem(const char *p, size_t l) {
1313 z = r = malloc((l + 1) / 2 + 1);
1317 for (x = p; x < p + l; x += 2) {
1320 a = unhexchar(x[0]);
1322 b = unhexchar(x[1]);
1326 *(z++) = (uint8_t) a << 4 | (uint8_t) b;
1333 char octchar(int x) {
1334 return '0' + (x & 7);
1337 int unoctchar(char c) {
1339 if (c >= '0' && c <= '7')
1345 char decchar(int x) {
1346 return '0' + (x % 10);
1349 int undecchar(char c) {
1351 if (c >= '0' && c <= '9')
1357 char *cescape(const char *s) {
1363 /* Does C style string escaping. */
1365 r = new(char, strlen(s)*4 + 1);
1369 for (f = s, t = r; *f; f++)
1370 t += cescape_char(*f, t);
1377 char *cunescape_length_with_prefix(const char *s, size_t length, const char *prefix) {
1384 /* Undoes C style string escaping, and optionally prefixes it. */
1386 pl = prefix ? strlen(prefix) : 0;
1388 r = new(char, pl+length+1);
1393 memcpy(r, prefix, pl);
1395 for (f = s, t = r + pl; f < s + length; f++) {
1438 /* This is an extension of the XDG syntax files */
1443 /* hexadecimal encoding */
1446 a = unhexchar(f[1]);
1447 b = unhexchar(f[2]);
1449 if (a < 0 || b < 0 || (a == 0 && b == 0)) {
1450 /* Invalid escape code, let's take it literal then */
1454 *(t++) = (char) ((a << 4) | b);
1469 /* octal encoding */
1472 a = unoctchar(f[0]);
1473 b = unoctchar(f[1]);
1474 c = unoctchar(f[2]);
1476 if (a < 0 || b < 0 || c < 0 || (a == 0 && b == 0 && c == 0)) {
1477 /* Invalid escape code, let's take it literal then */
1481 *(t++) = (char) ((a << 6) | (b << 3) | c);
1489 /* premature end of string.*/
1494 /* Invalid escape code, let's take it literal then */
1506 char *cunescape_length(const char *s, size_t length) {
1507 return cunescape_length_with_prefix(s, length, NULL);
1510 char *cunescape(const char *s) {
1513 return cunescape_length(s, strlen(s));
1516 char *xescape(const char *s, const char *bad) {
1520 /* Escapes all chars in bad, in addition to \ and all special
1521 * chars, in \xFF style escaping. May be reversed with
1524 r = new(char, strlen(s) * 4 + 1);
1528 for (f = s, t = r; *f; f++) {
1530 if ((*f < ' ') || (*f >= 127) ||
1531 (*f == '\\') || strchr(bad, *f)) {
1534 *(t++) = hexchar(*f >> 4);
1535 *(t++) = hexchar(*f);
1545 char *ascii_strlower(char *t) {
1550 for (p = t; *p; p++)
1551 if (*p >= 'A' && *p <= 'Z')
1552 *p = *p - 'A' + 'a';
1557 _pure_ static bool ignore_file_allow_backup(const char *filename) {
1561 filename[0] == '.' ||
1562 streq(filename, "lost+found") ||
1563 streq(filename, "aquota.user") ||
1564 streq(filename, "aquota.group") ||
1565 endswith(filename, ".rpmnew") ||
1566 endswith(filename, ".rpmsave") ||
1567 endswith(filename, ".rpmorig") ||
1568 endswith(filename, ".dpkg-old") ||
1569 endswith(filename, ".dpkg-new") ||
1570 endswith(filename, ".dpkg-tmp") ||
1571 endswith(filename, ".swp");
1574 bool ignore_file(const char *filename) {
1577 if (endswith(filename, "~"))
1580 return ignore_file_allow_backup(filename);
1583 int fd_nonblock(int fd, bool nonblock) {
1588 flags = fcntl(fd, F_GETFL, 0);
1593 nflags = flags | O_NONBLOCK;
1595 nflags = flags & ~O_NONBLOCK;
1597 if (nflags == flags)
1600 if (fcntl(fd, F_SETFL, nflags) < 0)
1606 int fd_cloexec(int fd, bool cloexec) {
1611 flags = fcntl(fd, F_GETFD, 0);
1616 nflags = flags | FD_CLOEXEC;
1618 nflags = flags & ~FD_CLOEXEC;
1620 if (nflags == flags)
1623 if (fcntl(fd, F_SETFD, nflags) < 0)
1629 _pure_ static bool fd_in_set(int fd, const int fdset[], unsigned n_fdset) {
1632 assert(n_fdset == 0 || fdset);
1634 for (i = 0; i < n_fdset; i++)
1641 int close_all_fds(const int except[], unsigned n_except) {
1642 _cleanup_closedir_ DIR *d = NULL;
1646 assert(n_except == 0 || except);
1648 d = opendir("/proc/self/fd");
1653 /* When /proc isn't available (for example in chroots)
1654 * the fallback is brute forcing through the fd
1657 assert_se(getrlimit(RLIMIT_NOFILE, &rl) >= 0);
1658 for (fd = 3; fd < (int) rl.rlim_max; fd ++) {
1660 if (fd_in_set(fd, except, n_except))
1663 if (close_nointr(fd) < 0)
1664 if (errno != EBADF && r == 0)
1671 while ((de = readdir(d))) {
1674 if (ignore_file(de->d_name))
1677 if (safe_atoi(de->d_name, &fd) < 0)
1678 /* Let's better ignore this, just in case */
1687 if (fd_in_set(fd, except, n_except))
1690 if (close_nointr(fd) < 0) {
1691 /* Valgrind has its own FD and doesn't want to have it closed */
1692 if (errno != EBADF && r == 0)
1700 bool chars_intersect(const char *a, const char *b) {
1703 /* Returns true if any of the chars in a are in b. */
1704 for (p = a; *p; p++)
1711 bool fstype_is_network(const char *fstype) {
1712 static const char table[] =
1726 x = startswith(fstype, "fuse.");
1730 return nulstr_contains(table, fstype);
1734 _cleanup_close_ int fd;
1736 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
1742 TIOCL_GETKMSGREDIRECT,
1746 if (ioctl(fd, TIOCLINUX, tiocl) < 0)
1749 vt = tiocl[0] <= 0 ? 1 : tiocl[0];
1752 if (ioctl(fd, VT_ACTIVATE, vt) < 0)
1758 int read_one_char(FILE *f, char *ret, usec_t t, bool *need_nl) {
1759 struct termios old_termios, new_termios;
1760 char c, line[LINE_MAX];
1765 if (tcgetattr(fileno(f), &old_termios) >= 0) {
1766 new_termios = old_termios;
1768 new_termios.c_lflag &= ~ICANON;
1769 new_termios.c_cc[VMIN] = 1;
1770 new_termios.c_cc[VTIME] = 0;
1772 if (tcsetattr(fileno(f), TCSADRAIN, &new_termios) >= 0) {
1775 if (t != USEC_INFINITY) {
1776 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0) {
1777 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1782 k = fread(&c, 1, 1, f);
1784 tcsetattr(fileno(f), TCSADRAIN, &old_termios);
1790 *need_nl = c != '\n';
1797 if (t != USEC_INFINITY) {
1798 if (fd_wait_for_event(fileno(f), POLLIN, t) <= 0)
1803 if (!fgets(line, sizeof(line), f))
1804 return errno ? -errno : -EIO;
1808 if (strlen(line) != 1)
1818 int ask_char(char *ret, const char *replies, const char *text, ...) {
1828 bool need_nl = true;
1831 fputs(ANSI_HIGHLIGHT_ON, stdout);
1838 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1842 r = read_one_char(stdin, &c, USEC_INFINITY, &need_nl);
1845 if (r == -EBADMSG) {
1846 puts("Bad input, please try again.");
1857 if (strchr(replies, c)) {
1862 puts("Read unexpected character, please try again.");
1866 int ask_string(char **ret, const char *text, ...) {
1871 char line[LINE_MAX];
1875 fputs(ANSI_HIGHLIGHT_ON, stdout);
1882 fputs(ANSI_HIGHLIGHT_OFF, stdout);
1887 if (!fgets(line, sizeof(line), stdin))
1888 return errno ? -errno : -EIO;
1890 if (!endswith(line, "\n"))
1909 int reset_terminal_fd(int fd, bool switch_to_text) {
1910 struct termios termios;
1913 /* Set terminal to some sane defaults */
1917 /* We leave locked terminal attributes untouched, so that
1918 * Plymouth may set whatever it wants to set, and we don't
1919 * interfere with that. */
1921 /* Disable exclusive mode, just in case */
1922 ioctl(fd, TIOCNXCL);
1924 /* Switch to text mode */
1926 ioctl(fd, KDSETMODE, KD_TEXT);
1928 /* Enable console unicode mode */
1929 ioctl(fd, KDSKBMODE, K_UNICODE);
1931 if (tcgetattr(fd, &termios) < 0) {
1936 /* We only reset the stuff that matters to the software. How
1937 * hardware is set up we don't touch assuming that somebody
1938 * else will do that for us */
1940 termios.c_iflag &= ~(IGNBRK | BRKINT | ISTRIP | INLCR | IGNCR | IUCLC);
1941 termios.c_iflag |= ICRNL | IMAXBEL | IUTF8;
1942 termios.c_oflag |= ONLCR;
1943 termios.c_cflag |= CREAD;
1944 termios.c_lflag = ISIG | ICANON | IEXTEN | ECHO | ECHOE | ECHOK | ECHOCTL | ECHOPRT | ECHOKE;
1946 termios.c_cc[VINTR] = 03; /* ^C */
1947 termios.c_cc[VQUIT] = 034; /* ^\ */
1948 termios.c_cc[VERASE] = 0177;
1949 termios.c_cc[VKILL] = 025; /* ^X */
1950 termios.c_cc[VEOF] = 04; /* ^D */
1951 termios.c_cc[VSTART] = 021; /* ^Q */
1952 termios.c_cc[VSTOP] = 023; /* ^S */
1953 termios.c_cc[VSUSP] = 032; /* ^Z */
1954 termios.c_cc[VLNEXT] = 026; /* ^V */
1955 termios.c_cc[VWERASE] = 027; /* ^W */
1956 termios.c_cc[VREPRINT] = 022; /* ^R */
1957 termios.c_cc[VEOL] = 0;
1958 termios.c_cc[VEOL2] = 0;
1960 termios.c_cc[VTIME] = 0;
1961 termios.c_cc[VMIN] = 1;
1963 if (tcsetattr(fd, TCSANOW, &termios) < 0)
1967 /* Just in case, flush all crap out */
1968 tcflush(fd, TCIOFLUSH);
1973 int reset_terminal(const char *name) {
1974 _cleanup_close_ int fd = -1;
1976 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
1980 return reset_terminal_fd(fd, true);
1983 int open_terminal(const char *name, int mode) {
1988 * If a TTY is in the process of being closed opening it might
1989 * cause EIO. This is horribly awful, but unlikely to be
1990 * changed in the kernel. Hence we work around this problem by
1991 * retrying a couple of times.
1993 * https://bugs.launchpad.net/ubuntu/+source/linux/+bug/554172/comments/245
1996 assert(!(mode & O_CREAT));
1999 fd = open(name, mode, 0);
2006 /* Max 1s in total */
2010 usleep(50 * USEC_PER_MSEC);
2028 int flush_fd(int fd) {
2029 struct pollfd pollfd = {
2039 r = poll(&pollfd, 1, 0);
2049 l = read(fd, buf, sizeof(buf));
2055 if (errno == EAGAIN)
2064 int acquire_terminal(
2068 bool ignore_tiocstty_eperm,
2071 int fd = -1, notify = -1, r = 0, wd = -1;
2076 /* We use inotify to be notified when the tty is closed. We
2077 * create the watch before checking if we can actually acquire
2078 * it, so that we don't lose any event.
2080 * Note: strictly speaking this actually watches for the
2081 * device being closed, it does *not* really watch whether a
2082 * tty loses its controlling process. However, unless some
2083 * rogue process uses TIOCNOTTY on /dev/tty *after* closing
2084 * its tty otherwise this will not become a problem. As long
2085 * as the administrator makes sure not configure any service
2086 * on the same tty as an untrusted user this should not be a
2087 * problem. (Which he probably should not do anyway.) */
2089 if (timeout != USEC_INFINITY)
2090 ts = now(CLOCK_MONOTONIC);
2092 if (!fail && !force) {
2093 notify = inotify_init1(IN_CLOEXEC | (timeout != USEC_INFINITY ? IN_NONBLOCK : 0));
2099 wd = inotify_add_watch(notify, name, IN_CLOSE);
2107 struct sigaction sa_old, sa_new = {
2108 .sa_handler = SIG_IGN,
2109 .sa_flags = SA_RESTART,
2113 r = flush_fd(notify);
2118 /* We pass here O_NOCTTY only so that we can check the return
2119 * value TIOCSCTTY and have a reliable way to figure out if we
2120 * successfully became the controlling process of the tty */
2121 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
2125 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
2126 * if we already own the tty. */
2127 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
2129 /* First, try to get the tty */
2130 if (ioctl(fd, TIOCSCTTY, force) < 0)
2133 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
2135 /* Sometimes it makes sense to ignore TIOCSCTTY
2136 * returning EPERM, i.e. when very likely we already
2137 * are have this controlling terminal. */
2138 if (r < 0 && r == -EPERM && ignore_tiocstty_eperm)
2141 if (r < 0 && (force || fail || r != -EPERM)) {
2150 assert(notify >= 0);
2153 uint8_t inotify_buffer[sizeof(struct inotify_event) + FILENAME_MAX];
2155 struct inotify_event *e;
2157 if (timeout != USEC_INFINITY) {
2160 n = now(CLOCK_MONOTONIC);
2161 if (ts + timeout < n) {
2166 r = fd_wait_for_event(fd, POLLIN, ts + timeout - n);
2176 l = read(notify, inotify_buffer, sizeof(inotify_buffer));
2179 if (errno == EINTR || errno == EAGAIN)
2186 e = (struct inotify_event*) inotify_buffer;
2191 if (e->wd != wd || !(e->mask & IN_CLOSE)) {
2196 step = sizeof(struct inotify_event) + e->len;
2197 assert(step <= (size_t) l);
2199 e = (struct inotify_event*) ((uint8_t*) e + step);
2206 /* We close the tty fd here since if the old session
2207 * ended our handle will be dead. It's important that
2208 * we do this after sleeping, so that we don't enter
2209 * an endless loop. */
2210 fd = safe_close(fd);
2215 r = reset_terminal_fd(fd, true);
2217 log_warning_errno(r, "Failed to reset terminal: %m");
2228 int release_terminal(void) {
2229 static const struct sigaction sa_new = {
2230 .sa_handler = SIG_IGN,
2231 .sa_flags = SA_RESTART,
2234 _cleanup_close_ int fd = -1;
2235 struct sigaction sa_old;
2238 fd = open("/dev/tty", O_RDWR|O_NOCTTY|O_NDELAY|O_CLOEXEC);
2242 /* Temporarily ignore SIGHUP, so that we don't get SIGHUP'ed
2243 * by our own TIOCNOTTY */
2244 assert_se(sigaction(SIGHUP, &sa_new, &sa_old) == 0);
2246 if (ioctl(fd, TIOCNOTTY) < 0)
2249 assert_se(sigaction(SIGHUP, &sa_old, NULL) == 0);
2254 int sigaction_many(const struct sigaction *sa, ...) {
2259 while ((sig = va_arg(ap, int)) > 0)
2260 if (sigaction(sig, sa, NULL) < 0)
2267 int ignore_signals(int sig, ...) {
2268 struct sigaction sa = {
2269 .sa_handler = SIG_IGN,
2270 .sa_flags = SA_RESTART,
2275 if (sigaction(sig, &sa, NULL) < 0)
2279 while ((sig = va_arg(ap, int)) > 0)
2280 if (sigaction(sig, &sa, NULL) < 0)
2287 int default_signals(int sig, ...) {
2288 struct sigaction sa = {
2289 .sa_handler = SIG_DFL,
2290 .sa_flags = SA_RESTART,
2295 if (sigaction(sig, &sa, NULL) < 0)
2299 while ((sig = va_arg(ap, int)) > 0)
2300 if (sigaction(sig, &sa, NULL) < 0)
2307 void safe_close_pair(int p[]) {
2311 /* Special case pairs which use the same fd in both
2313 p[0] = p[1] = safe_close(p[0]);
2317 p[0] = safe_close(p[0]);
2318 p[1] = safe_close(p[1]);
2321 ssize_t loop_read(int fd, void *buf, size_t nbytes, bool do_poll) {
2328 while (nbytes > 0) {
2331 k = read(fd, p, nbytes);
2332 if (k < 0 && errno == EINTR)
2335 if (k < 0 && errno == EAGAIN && do_poll) {
2337 /* We knowingly ignore any return value here,
2338 * and expect that any error/EOF is reported
2341 fd_wait_for_event(fd, POLLIN, USEC_INFINITY);
2346 return n > 0 ? n : (k < 0 ? -errno : 0);
2356 ssize_t loop_write(int fd, const void *buf, size_t nbytes, bool do_poll) {
2357 const uint8_t *p = buf;
2363 while (nbytes > 0) {
2366 k = write(fd, p, nbytes);
2367 if (k < 0 && errno == EINTR)
2370 if (k < 0 && errno == EAGAIN && do_poll) {
2372 /* We knowingly ignore any return value here,
2373 * and expect that any error/EOF is reported
2376 fd_wait_for_event(fd, POLLOUT, USEC_INFINITY);
2381 return n > 0 ? n : (k < 0 ? -errno : 0);
2391 int parse_size(const char *t, off_t base, off_t *size) {
2393 /* Soo, sometimes we want to parse IEC binary suffxies, and
2394 * sometimes SI decimal suffixes. This function can parse
2395 * both. Which one is the right way depends on the
2396 * context. Wikipedia suggests that SI is customary for
2397 * hardrware metrics and network speeds, while IEC is
2398 * customary for most data sizes used by software and volatile
2399 * (RAM) memory. Hence be careful which one you pick!
2401 * In either case we use just K, M, G as suffix, and not Ki,
2402 * Mi, Gi or so (as IEC would suggest). That's because that's
2403 * frickin' ugly. But this means you really need to make sure
2404 * to document which base you are parsing when you use this
2409 unsigned long long factor;
2412 static const struct table iec[] = {
2413 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2414 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
2415 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
2416 { "G", 1024ULL*1024ULL*1024ULL },
2417 { "M", 1024ULL*1024ULL },
2423 static const struct table si[] = {
2424 { "E", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2425 { "P", 1000ULL*1000ULL*1000ULL*1000ULL*1000ULL },
2426 { "T", 1000ULL*1000ULL*1000ULL*1000ULL },
2427 { "G", 1000ULL*1000ULL*1000ULL },
2428 { "M", 1000ULL*1000ULL },
2434 const struct table *table;
2436 unsigned long long r = 0;
2437 unsigned n_entries, start_pos = 0;
2440 assert(base == 1000 || base == 1024);
2445 n_entries = ELEMENTSOF(si);
2448 n_entries = ELEMENTSOF(iec);
2454 unsigned long long l2;
2460 l = strtoll(p, &e, 10);
2473 if (*e >= '0' && *e <= '9') {
2476 /* strotoull itself would accept space/+/- */
2477 l2 = strtoull(e, &e2, 10);
2479 if (errno == ERANGE)
2482 /* Ignore failure. E.g. 10.M is valid */
2489 e += strspn(e, WHITESPACE);
2491 for (i = start_pos; i < n_entries; i++)
2492 if (startswith(e, table[i].suffix)) {
2493 unsigned long long tmp;
2494 if ((unsigned long long) l + (frac > 0) > ULLONG_MAX / table[i].factor)
2496 tmp = l * table[i].factor + (unsigned long long) (frac * table[i].factor);
2497 if (tmp > ULLONG_MAX - r)
2501 if ((unsigned long long) (off_t) r != r)
2504 p = e + strlen(table[i].suffix);
2520 int make_stdio(int fd) {
2525 r = dup3(fd, STDIN_FILENO, 0);
2526 s = dup3(fd, STDOUT_FILENO, 0);
2527 t = dup3(fd, STDERR_FILENO, 0);
2532 if (r < 0 || s < 0 || t < 0)
2535 /* We rely here that the new fd has O_CLOEXEC not set */
2540 int make_null_stdio(void) {
2543 null_fd = open("/dev/null", O_RDWR|O_NOCTTY);
2547 return make_stdio(null_fd);
2550 bool is_device_path(const char *path) {
2552 /* Returns true on paths that refer to a device, either in
2553 * sysfs or in /dev */
2556 path_startswith(path, "/dev/") ||
2557 path_startswith(path, "/sys/");
2560 int dir_is_empty(const char *path) {
2561 _cleanup_closedir_ DIR *d;
2572 if (!de && errno != 0)
2578 if (!ignore_file(de->d_name))
2583 char* dirname_malloc(const char *path) {
2584 char *d, *dir, *dir2;
2601 int dev_urandom(void *p, size_t n) {
2602 static int have_syscall = -1;
2606 /* Gathers some randomness from the kernel. This call will
2607 * never block, and will always return some data from the
2608 * kernel, regardless if the random pool is fully initialized
2609 * or not. It thus makes no guarantee for the quality of the
2610 * returned entropy, but is good enough for or usual usecases
2611 * of seeding the hash functions for hashtable */
2613 /* Use the getrandom() syscall unless we know we don't have
2614 * it, or when the requested size is too large for it. */
2615 if (have_syscall != 0 || (size_t) (int) n != n) {
2616 r = getrandom(p, n, GRND_NONBLOCK);
2618 have_syscall = true;
2623 if (errno == ENOSYS)
2624 /* we lack the syscall, continue with
2625 * reading from /dev/urandom */
2626 have_syscall = false;
2627 else if (errno == EAGAIN)
2628 /* not enough entropy for now. Let's
2629 * remember to use the syscall the
2630 * next time, again, but also read
2631 * from /dev/urandom for now, which
2632 * doesn't care about the current
2633 * amount of entropy. */
2634 have_syscall = true;
2638 /* too short read? */
2642 fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC|O_NOCTTY);
2644 return errno == ENOENT ? -ENOSYS : -errno;
2646 k = loop_read(fd, p, n, true);
2651 if ((size_t) k != n)
2657 void initialize_srand(void) {
2658 static bool srand_called = false;
2660 #ifdef HAVE_SYS_AUXV_H
2669 #ifdef HAVE_SYS_AUXV_H
2670 /* The kernel provides us with a bit of entropy in auxv, so
2671 * let's try to make use of that to seed the pseudo-random
2672 * generator. It's better than nothing... */
2674 auxv = (void*) getauxval(AT_RANDOM);
2676 x ^= *(unsigned*) auxv;
2679 x ^= (unsigned) now(CLOCK_REALTIME);
2680 x ^= (unsigned) gettid();
2683 srand_called = true;
2686 void random_bytes(void *p, size_t n) {
2690 r = dev_urandom(p, n);
2694 /* If some idiot made /dev/urandom unavailable to us, he'll
2695 * get a PRNG instead. */
2699 for (q = p; q < (uint8_t*) p + n; q ++)
2703 void rename_process(const char name[8]) {
2706 /* This is a like a poor man's setproctitle(). It changes the
2707 * comm field, argv[0], and also the glibc's internally used
2708 * name of the process. For the first one a limit of 16 chars
2709 * applies, to the second one usually one of 10 (i.e. length
2710 * of "/sbin/init"), to the third one one of 7 (i.e. length of
2711 * "systemd"). If you pass a longer string it will be
2714 prctl(PR_SET_NAME, name);
2716 if (program_invocation_name)
2717 strncpy(program_invocation_name, name, strlen(program_invocation_name));
2719 if (saved_argc > 0) {
2723 strncpy(saved_argv[0], name, strlen(saved_argv[0]));
2725 for (i = 1; i < saved_argc; i++) {
2729 memzero(saved_argv[i], strlen(saved_argv[i]));
2734 void sigset_add_many(sigset_t *ss, ...) {
2741 while ((sig = va_arg(ap, int)) > 0)
2742 assert_se(sigaddset(ss, sig) == 0);
2746 int sigprocmask_many(int how, ...) {
2751 assert_se(sigemptyset(&ss) == 0);
2754 while ((sig = va_arg(ap, int)) > 0)
2755 assert_se(sigaddset(&ss, sig) == 0);
2758 if (sigprocmask(how, &ss, NULL) < 0)
2764 char* gethostname_malloc(void) {
2767 assert_se(uname(&u) >= 0);
2769 if (!isempty(u.nodename) && !streq(u.nodename, "(none)"))
2770 return strdup(u.nodename);
2772 return strdup(u.sysname);
2775 bool hostname_is_set(void) {
2778 assert_se(uname(&u) >= 0);
2780 return !isempty(u.nodename) && !streq(u.nodename, "(none)");
2783 char *lookup_uid(uid_t uid) {
2786 _cleanup_free_ char *buf = NULL;
2787 struct passwd pwbuf, *pw = NULL;
2789 /* Shortcut things to avoid NSS lookups */
2791 return strdup("root");
2793 bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
2797 buf = malloc(bufsize);
2801 if (getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0 && pw)
2802 return strdup(pw->pw_name);
2804 if (asprintf(&name, UID_FMT, uid) < 0)
2810 char* getlogname_malloc(void) {
2814 if (isatty(STDIN_FILENO) && fstat(STDIN_FILENO, &st) >= 0)
2819 return lookup_uid(uid);
2822 char *getusername_malloc(void) {
2829 return lookup_uid(getuid());
2832 int getttyname_malloc(int fd, char **r) {
2833 char path[PATH_MAX], *c;
2838 k = ttyname_r(fd, path, sizeof(path));
2844 c = strdup(startswith(path, "/dev/") ? path + 5 : path);
2852 int getttyname_harder(int fd, char **r) {
2856 k = getttyname_malloc(fd, &s);
2860 if (streq(s, "tty")) {
2862 return get_ctty(0, NULL, r);
2869 int get_ctty_devnr(pid_t pid, dev_t *d) {
2871 _cleanup_free_ char *line = NULL;
2873 unsigned long ttynr;
2877 p = procfs_file_alloca(pid, "stat");
2878 r = read_one_line_file(p, &line);
2882 p = strrchr(line, ')');
2892 "%*d " /* session */
2897 if (major(ttynr) == 0 && minor(ttynr) == 0)
2906 int get_ctty(pid_t pid, dev_t *_devnr, char **r) {
2907 char fn[sizeof("/dev/char/")-1 + 2*DECIMAL_STR_MAX(unsigned) + 1 + 1], *b = NULL;
2908 _cleanup_free_ char *s = NULL;
2915 k = get_ctty_devnr(pid, &devnr);
2919 sprintf(fn, "/dev/char/%u:%u", major(devnr), minor(devnr));
2921 k = readlink_malloc(fn, &s);
2927 /* This is an ugly hack */
2928 if (major(devnr) == 136) {
2929 asprintf(&b, "pts/%u", minor(devnr));
2933 /* Probably something like the ptys which have no
2934 * symlink in /dev/char. Let's return something
2935 * vaguely useful. */
2941 if (startswith(s, "/dev/"))
2943 else if (startswith(s, "../"))
2961 int rm_rf_children_dangerous(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
2962 _cleanup_closedir_ DIR *d = NULL;
2967 /* This returns the first error we run into, but nevertheless
2968 * tries to go on. This closes the passed fd. */
2974 return errno == ENOENT ? 0 : -errno;
2979 bool is_dir, keep_around;
2986 if (errno != 0 && ret == 0)
2991 if (streq(de->d_name, ".") || streq(de->d_name, ".."))
2994 if (de->d_type == DT_UNKNOWN ||
2996 (de->d_type == DT_DIR && root_dev)) {
2997 if (fstatat(fd, de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
2998 if (ret == 0 && errno != ENOENT)
3003 is_dir = S_ISDIR(st.st_mode);
3006 (st.st_uid == 0 || st.st_uid == getuid()) &&
3007 (st.st_mode & S_ISVTX);
3009 is_dir = de->d_type == DT_DIR;
3010 keep_around = false;
3016 /* if root_dev is set, remove subdirectories only, if device is same as dir */
3017 if (root_dev && st.st_dev != root_dev->st_dev)
3020 subdir_fd = openat(fd, de->d_name,
3021 O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
3022 if (subdir_fd < 0) {
3023 if (ret == 0 && errno != ENOENT)
3028 r = rm_rf_children_dangerous(subdir_fd, only_dirs, honour_sticky, root_dev);
3029 if (r < 0 && ret == 0)
3033 if (unlinkat(fd, de->d_name, AT_REMOVEDIR) < 0) {
3034 if (ret == 0 && errno != ENOENT)
3038 } else if (!only_dirs && !keep_around) {
3040 if (unlinkat(fd, de->d_name, 0) < 0) {
3041 if (ret == 0 && errno != ENOENT)
3048 _pure_ static int is_temporary_fs(struct statfs *s) {
3051 return F_TYPE_EQUAL(s->f_type, TMPFS_MAGIC) ||
3052 F_TYPE_EQUAL(s->f_type, RAMFS_MAGIC);
3055 int rm_rf_children(int fd, bool only_dirs, bool honour_sticky, struct stat *root_dev) {
3060 if (fstatfs(fd, &s) < 0) {
3065 /* We refuse to clean disk file systems with this call. This
3066 * is extra paranoia just to be sure we never ever remove
3068 if (!is_temporary_fs(&s)) {
3069 log_error("Attempted to remove disk file system, and we can't allow that.");
3074 return rm_rf_children_dangerous(fd, only_dirs, honour_sticky, root_dev);
3077 static int file_is_priv_sticky(const char *p) {
3082 if (lstat(p, &st) < 0)
3086 (st.st_uid == 0 || st.st_uid == getuid()) &&
3087 (st.st_mode & S_ISVTX);
3090 static int rm_rf_internal(const char *path, bool only_dirs, bool delete_root, bool honour_sticky, bool dangerous) {
3096 /* We refuse to clean the root file system with this
3097 * call. This is extra paranoia to never cause a really
3098 * seriously broken system. */
3099 if (path_equal(path, "/")) {
3100 log_error("Attempted to remove entire root file system, and we can't allow that.");
3104 fd = open(path, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|O_NOFOLLOW|O_NOATIME);
3107 if (errno != ENOTDIR)
3111 if (statfs(path, &s) < 0)
3114 if (!is_temporary_fs(&s)) {
3115 log_error("Attempted to remove disk file system, and we can't allow that.");
3120 if (delete_root && !only_dirs)
3121 if (unlink(path) < 0 && errno != ENOENT)
3128 if (fstatfs(fd, &s) < 0) {
3133 if (!is_temporary_fs(&s)) {
3134 log_error("Attempted to remove disk file system, and we can't allow that.");
3140 r = rm_rf_children_dangerous(fd, only_dirs, honour_sticky, NULL);
3143 if (honour_sticky && file_is_priv_sticky(path) > 0)
3146 if (rmdir(path) < 0 && errno != ENOENT) {
3155 int rm_rf(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
3156 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, false);
3159 int rm_rf_dangerous(const char *path, bool only_dirs, bool delete_root, bool honour_sticky) {
3160 return rm_rf_internal(path, only_dirs, delete_root, honour_sticky, true);
3163 int chmod_and_chown(const char *path, mode_t mode, uid_t uid, gid_t gid) {
3166 /* Under the assumption that we are running privileged we
3167 * first change the access mode and only then hand out
3168 * ownership to avoid a window where access is too open. */
3170 if (mode != MODE_INVALID)
3171 if (chmod(path, mode) < 0)
3174 if (uid != UID_INVALID || gid != GID_INVALID)
3175 if (chown(path, uid, gid) < 0)
3181 int fchmod_and_fchown(int fd, mode_t mode, uid_t uid, gid_t gid) {
3184 /* Under the assumption that we are running privileged we
3185 * first change the access mode and only then hand out
3186 * ownership to avoid a window where access is too open. */
3188 if (mode != MODE_INVALID)
3189 if (fchmod(fd, mode) < 0)
3192 if (uid != UID_INVALID || gid != GID_INVALID)
3193 if (fchown(fd, uid, gid) < 0)
3199 cpu_set_t* cpu_set_malloc(unsigned *ncpus) {
3203 /* Allocates the cpuset in the right size */
3206 if (!(r = CPU_ALLOC(n)))
3209 if (sched_getaffinity(0, CPU_ALLOC_SIZE(n), r) >= 0) {
3210 CPU_ZERO_S(CPU_ALLOC_SIZE(n), r);
3220 if (errno != EINVAL)
3227 int status_vprintf(const char *status, bool ellipse, bool ephemeral, const char *format, va_list ap) {
3228 static const char status_indent[] = " "; /* "[" STATUS "] " */
3229 _cleanup_free_ char *s = NULL;
3230 _cleanup_close_ int fd = -1;
3231 struct iovec iovec[6] = {};
3233 static bool prev_ephemeral;
3237 /* This is independent of logging, as status messages are
3238 * optional and go exclusively to the console. */
3240 if (vasprintf(&s, format, ap) < 0)
3243 fd = open_terminal("/dev/console", O_WRONLY|O_NOCTTY|O_CLOEXEC);
3256 sl = status ? sizeof(status_indent)-1 : 0;
3262 e = ellipsize(s, emax, 50);
3270 IOVEC_SET_STRING(iovec[n++], "\r" ANSI_ERASE_TO_END_OF_LINE);
3271 prev_ephemeral = ephemeral;
3274 if (!isempty(status)) {
3275 IOVEC_SET_STRING(iovec[n++], "[");
3276 IOVEC_SET_STRING(iovec[n++], status);
3277 IOVEC_SET_STRING(iovec[n++], "] ");
3279 IOVEC_SET_STRING(iovec[n++], status_indent);
3282 IOVEC_SET_STRING(iovec[n++], s);
3284 IOVEC_SET_STRING(iovec[n++], "\n");
3286 if (writev(fd, iovec, n) < 0)
3292 int status_printf(const char *status, bool ellipse, bool ephemeral, const char *format, ...) {
3298 va_start(ap, format);
3299 r = status_vprintf(status, ellipse, ephemeral, format, ap);
3305 char *replace_env(const char *format, char **env) {
3312 const char *e, *word = format;
3317 for (e = format; *e; e ++) {
3328 k = strnappend(r, word, e-word-1);
3338 } else if (*e == '$') {
3339 k = strnappend(r, word, e-word);
3356 t = strempty(strv_env_get_n(env, word+2, e-word-2));
3358 k = strappend(r, t);
3372 k = strnappend(r, word, e-word);
3384 char **replace_env_argv(char **argv, char **env) {
3386 unsigned k = 0, l = 0;
3388 l = strv_length(argv);
3390 ret = new(char*, l+1);
3394 STRV_FOREACH(i, argv) {
3396 /* If $FOO appears as single word, replace it by the split up variable */
3397 if ((*i)[0] == '$' && (*i)[1] != '{') {
3402 e = strv_env_get(env, *i+1);
3406 r = strv_split_quoted(&m, e, true);
3418 w = realloc(ret, sizeof(char*) * (l+1));
3428 memcpy(ret + k, m, q * sizeof(char*));
3436 /* If ${FOO} appears as part of a word, replace it by the variable as-is */
3437 ret[k] = replace_env(*i, env);
3449 int fd_columns(int fd) {
3450 struct winsize ws = {};
3452 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3461 unsigned columns(void) {
3465 if (_likely_(cached_columns > 0))
3466 return cached_columns;
3469 e = getenv("COLUMNS");
3471 (void) safe_atoi(e, &c);
3474 c = fd_columns(STDOUT_FILENO);
3483 int fd_lines(int fd) {
3484 struct winsize ws = {};
3486 if (ioctl(fd, TIOCGWINSZ, &ws) < 0)
3495 unsigned lines(void) {
3499 if (_likely_(cached_lines > 0))
3500 return cached_lines;
3503 e = getenv("LINES");
3505 (void) safe_atou(e, &l);
3508 l = fd_lines(STDOUT_FILENO);
3514 return cached_lines;
3517 /* intended to be used as a SIGWINCH sighandler */
3518 void columns_lines_cache_reset(int signum) {
3524 static int cached_on_tty = -1;
3526 if (_unlikely_(cached_on_tty < 0))
3527 cached_on_tty = isatty(STDOUT_FILENO) > 0;
3529 return cached_on_tty;
3532 int files_same(const char *filea, const char *fileb) {
3535 if (stat(filea, &a) < 0)
3538 if (stat(fileb, &b) < 0)
3541 return a.st_dev == b.st_dev &&
3542 a.st_ino == b.st_ino;
3545 int running_in_chroot(void) {
3548 ret = files_same("/proc/1/root", "/");
3555 static char *ascii_ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3560 assert(percent <= 100);
3561 assert(new_length >= 3);
3563 if (old_length <= 3 || old_length <= new_length)
3564 return strndup(s, old_length);
3566 r = new0(char, new_length+1);
3570 x = (new_length * percent) / 100;
3572 if (x > new_length - 3)
3580 s + old_length - (new_length - x - 3),
3581 new_length - x - 3);
3586 char *ellipsize_mem(const char *s, size_t old_length, size_t new_length, unsigned percent) {
3590 unsigned k, len, len2;
3593 assert(percent <= 100);
3594 assert(new_length >= 3);
3596 /* if no multibyte characters use ascii_ellipsize_mem for speed */
3597 if (ascii_is_valid(s))
3598 return ascii_ellipsize_mem(s, old_length, new_length, percent);
3600 if (old_length <= 3 || old_length <= new_length)
3601 return strndup(s, old_length);
3603 x = (new_length * percent) / 100;
3605 if (x > new_length - 3)
3609 for (i = s; k < x && i < s + old_length; i = utf8_next_char(i)) {
3612 c = utf8_encoded_to_unichar(i);
3615 k += unichar_iswide(c) ? 2 : 1;
3618 if (k > x) /* last character was wide and went over quota */
3621 for (j = s + old_length; k < new_length && j > i; ) {
3624 j = utf8_prev_char(j);
3625 c = utf8_encoded_to_unichar(j);
3628 k += unichar_iswide(c) ? 2 : 1;
3632 /* we don't actually need to ellipsize */
3634 return memdup(s, old_length + 1);
3636 /* make space for ellipsis */
3637 j = utf8_next_char(j);
3640 len2 = s + old_length - j;
3641 e = new(char, len + 3 + len2 + 1);
3646 printf("old_length=%zu new_length=%zu x=%zu len=%u len2=%u k=%u\n",
3647 old_length, new_length, x, len, len2, k);
3651 e[len] = 0xe2; /* tri-dot ellipsis: … */
3655 memcpy(e + len + 3, j, len2 + 1);
3660 char *ellipsize(const char *s, size_t length, unsigned percent) {
3661 return ellipsize_mem(s, strlen(s), length, percent);
3664 int touch_file(const char *path, bool parents, usec_t stamp, uid_t uid, gid_t gid, mode_t mode) {
3665 _cleanup_close_ int fd;
3671 mkdir_parents(path, 0755);
3673 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY, mode > 0 ? mode : 0644);
3678 r = fchmod(fd, mode);
3683 if (uid != UID_INVALID || gid != GID_INVALID) {
3684 r = fchown(fd, uid, gid);
3689 if (stamp != USEC_INFINITY) {
3690 struct timespec ts[2];
3692 timespec_store(&ts[0], stamp);
3694 r = futimens(fd, ts);
3696 r = futimens(fd, NULL);
3703 int touch(const char *path) {
3704 return touch_file(path, false, USEC_INFINITY, UID_INVALID, GID_INVALID, 0);
3707 char *unquote(const char *s, const char* quotes) {
3711 /* This is rather stupid, simply removes the heading and
3712 * trailing quotes if there is one. Doesn't care about
3713 * escaping or anything. We should make this smarter one
3720 if (strchr(quotes, s[0]) && s[l-1] == s[0])
3721 return strndup(s+1, l-2);
3726 char *normalize_env_assignment(const char *s) {
3727 _cleanup_free_ char *value = NULL;
3731 eq = strchr(s, '=');
3741 memmove(r, t, strlen(t) + 1);
3746 name = strndupa(s, eq - s);
3747 p = strdupa(eq + 1);
3749 value = unquote(strstrip(p), QUOTES);
3753 return strjoin(strstrip(name), "=", value, NULL);
3756 int wait_for_terminate(pid_t pid, siginfo_t *status) {
3767 if (waitid(P_PID, pid, status, WEXITED) < 0) {
3781 * < 0 : wait_for_terminate() failed to get the state of the
3782 * process, the process was terminated by a signal, or
3783 * failed for an unknown reason.
3784 * >=0 : The process terminated normally, and its exit code is
3787 * That is, success is indicated by a return value of zero, and an
3788 * error is indicated by a non-zero value.
3790 int wait_for_terminate_and_warn(const char *name, pid_t pid) {
3797 r = wait_for_terminate(pid, &status);
3799 return log_warning_errno(r, "Failed to wait for %s: %m", name);
3801 if (status.si_code == CLD_EXITED) {
3802 if (status.si_status != 0) {
3803 log_warning("%s failed with error code %i.", name, status.si_status);
3804 return status.si_status;
3807 log_debug("%s succeeded.", name);
3810 } else if (status.si_code == CLD_KILLED ||
3811 status.si_code == CLD_DUMPED) {
3813 log_warning("%s terminated by signal %s.", name, signal_to_string(status.si_status));
3817 log_warning("%s failed due to unknown reason.", name);
3821 noreturn void freeze(void) {
3823 /* Make sure nobody waits for us on a socket anymore */
3824 close_all_fds(NULL, 0);
3832 bool null_or_empty(struct stat *st) {
3835 if (S_ISREG(st->st_mode) && st->st_size <= 0)
3838 if (S_ISCHR(st->st_mode) || S_ISBLK(st->st_mode))
3844 int null_or_empty_path(const char *fn) {
3849 if (stat(fn, &st) < 0)
3852 return null_or_empty(&st);
3855 int null_or_empty_fd(int fd) {
3860 if (fstat(fd, &st) < 0)
3863 return null_or_empty(&st);
3866 DIR *xopendirat(int fd, const char *name, int flags) {
3870 assert(!(flags & O_CREAT));
3872 nfd = openat(fd, name, O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC|flags, 0);
3885 int signal_from_string_try_harder(const char *s) {
3889 signo = signal_from_string(s);
3891 if (startswith(s, "SIG"))
3892 return signal_from_string(s+3);
3897 static char *tag_to_udev_node(const char *tagvalue, const char *by) {
3898 _cleanup_free_ char *t = NULL, *u = NULL;
3901 u = unquote(tagvalue, "\"\'");
3905 enc_len = strlen(u) * 4 + 1;
3906 t = new(char, enc_len);
3910 if (encode_devnode_name(u, t, enc_len) < 0)
3913 return strjoin("/dev/disk/by-", by, "/", t, NULL);
3916 char *fstab_node_to_udev_node(const char *p) {
3919 if (startswith(p, "LABEL="))
3920 return tag_to_udev_node(p+6, "label");
3922 if (startswith(p, "UUID="))
3923 return tag_to_udev_node(p+5, "uuid");
3925 if (startswith(p, "PARTUUID="))
3926 return tag_to_udev_node(p+9, "partuuid");
3928 if (startswith(p, "PARTLABEL="))
3929 return tag_to_udev_node(p+10, "partlabel");
3934 bool tty_is_vc(const char *tty) {
3937 return vtnr_from_tty(tty) >= 0;
3940 bool tty_is_console(const char *tty) {
3943 if (startswith(tty, "/dev/"))
3946 return streq(tty, "console");
3949 int vtnr_from_tty(const char *tty) {
3954 if (startswith(tty, "/dev/"))
3957 if (!startswith(tty, "tty") )
3960 if (tty[3] < '0' || tty[3] > '9')
3963 r = safe_atoi(tty+3, &i);
3967 if (i < 0 || i > 63)
3973 char *resolve_dev_console(char **active) {
3976 /* Resolve where /dev/console is pointing to, if /sys is actually ours
3977 * (i.e. not read-only-mounted which is a sign for container setups) */
3979 if (path_is_read_only_fs("/sys") > 0)
3982 if (read_one_line_file("/sys/class/tty/console/active", active) < 0)
3985 /* If multiple log outputs are configured the last one is what
3986 * /dev/console points to */
3987 tty = strrchr(*active, ' ');
3993 if (streq(tty, "tty0")) {
3996 /* Get the active VC (e.g. tty1) */
3997 if (read_one_line_file("/sys/class/tty/tty0/active", &tmp) >= 0) {
3999 tty = *active = tmp;
4006 bool tty_is_vc_resolve(const char *tty) {
4007 _cleanup_free_ char *active = NULL;
4011 if (startswith(tty, "/dev/"))
4014 if (streq(tty, "console")) {
4015 tty = resolve_dev_console(&active);
4020 return tty_is_vc(tty);
4023 const char *default_term_for_tty(const char *tty) {
4026 return tty_is_vc_resolve(tty) ? "TERM=linux" : "TERM=vt102";
4029 bool dirent_is_file(const struct dirent *de) {
4032 if (ignore_file(de->d_name))
4035 if (de->d_type != DT_REG &&
4036 de->d_type != DT_LNK &&
4037 de->d_type != DT_UNKNOWN)
4043 bool dirent_is_file_with_suffix(const struct dirent *de, const char *suffix) {
4046 if (de->d_type != DT_REG &&
4047 de->d_type != DT_LNK &&
4048 de->d_type != DT_UNKNOWN)
4051 if (ignore_file_allow_backup(de->d_name))
4054 return endswith(de->d_name, suffix);
4057 void execute_directory(const char *directory, DIR *d, usec_t timeout, char *argv[]) {
4063 /* Executes all binaries in a directory in parallel and waits
4064 * for them to finish. Optionally a timeout is applied. */
4066 executor_pid = fork();
4067 if (executor_pid < 0) {
4068 log_error_errno(errno, "Failed to fork: %m");
4071 } else if (executor_pid == 0) {
4072 _cleanup_hashmap_free_free_ Hashmap *pids = NULL;
4073 _cleanup_closedir_ DIR *_d = NULL;
4076 /* We fork this all off from a child process so that
4077 * we can somewhat cleanly make use of SIGALRM to set
4080 reset_all_signal_handlers();
4081 reset_signal_mask();
4083 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
4086 d = _d = opendir(directory);
4088 if (errno == ENOENT)
4089 _exit(EXIT_SUCCESS);
4091 log_error_errno(errno, "Failed to enumerate directory %s: %m", directory);
4092 _exit(EXIT_FAILURE);
4096 pids = hashmap_new(NULL);
4099 _exit(EXIT_FAILURE);
4102 FOREACH_DIRENT(de, d, break) {
4103 _cleanup_free_ char *path = NULL;
4106 if (!dirent_is_file(de))
4109 path = strjoin(directory, "/", de->d_name, NULL);
4112 _exit(EXIT_FAILURE);
4117 log_error_errno(errno, "Failed to fork: %m");
4119 } else if (pid == 0) {
4122 assert_se(prctl(PR_SET_PDEATHSIG, SIGTERM) == 0);
4132 log_error_errno(errno, "Failed to execute %s: %m", path);
4133 _exit(EXIT_FAILURE);
4136 log_debug("Spawned %s as " PID_FMT ".", path, pid);
4138 r = hashmap_put(pids, UINT_TO_PTR(pid), path);
4141 _exit(EXIT_FAILURE);
4147 /* Abort execution of this process after the
4148 * timout. We simply rely on SIGALRM as default action
4149 * terminating the process, and turn on alarm(). */
4151 if (timeout != USEC_INFINITY)
4152 alarm((timeout + USEC_PER_SEC - 1) / USEC_PER_SEC);
4154 while (!hashmap_isempty(pids)) {
4155 _cleanup_free_ char *path = NULL;
4158 pid = PTR_TO_UINT(hashmap_first_key(pids));
4161 path = hashmap_remove(pids, UINT_TO_PTR(pid));
4164 wait_for_terminate_and_warn(path, pid);
4167 _exit(EXIT_SUCCESS);
4170 wait_for_terminate_and_warn(directory, executor_pid);
4173 int kill_and_sigcont(pid_t pid, int sig) {
4176 r = kill(pid, sig) < 0 ? -errno : 0;
4184 bool nulstr_contains(const char*nulstr, const char *needle) {
4190 NULSTR_FOREACH(i, nulstr)
4191 if (streq(i, needle))
4197 bool plymouth_running(void) {
4198 return access("/run/plymouth/pid", F_OK) >= 0;
4201 char* strshorten(char *s, size_t l) {
4210 static bool hostname_valid_char(char c) {
4212 (c >= 'a' && c <= 'z') ||
4213 (c >= 'A' && c <= 'Z') ||
4214 (c >= '0' && c <= '9') ||
4220 bool hostname_is_valid(const char *s) {
4227 for (p = s, dot = true; *p; p++) {
4234 if (!hostname_valid_char(*p))
4244 if (p-s > HOST_NAME_MAX)
4250 char* hostname_cleanup(char *s, bool lowercase) {
4254 for (p = s, d = s, dot = true; *p; p++) {
4261 } else if (hostname_valid_char(*p)) {
4262 *(d++) = lowercase ? tolower(*p) : *p;
4273 strshorten(s, HOST_NAME_MAX);
4278 bool machine_name_is_valid(const char *s) {
4280 if (!hostname_is_valid(s))
4283 /* Machine names should be useful hostnames, but also be
4284 * useful in unit names, hence we enforce a stricter length
4293 int pipe_eof(int fd) {
4294 struct pollfd pollfd = {
4296 .events = POLLIN|POLLHUP,
4301 r = poll(&pollfd, 1, 0);
4308 return pollfd.revents & POLLHUP;
4311 int fd_wait_for_event(int fd, int event, usec_t t) {
4313 struct pollfd pollfd = {
4321 r = ppoll(&pollfd, 1, t == USEC_INFINITY ? NULL : timespec_store(&ts, t), NULL);
4328 return pollfd.revents;
4331 int fopen_temporary(const char *path, FILE **_f, char **_temp_path) {
4340 t = tempfn_xxxxxx(path);
4344 fd = mkostemp_safe(t, O_WRONLY|O_CLOEXEC);
4350 f = fdopen(fd, "we");
4363 int terminal_vhangup_fd(int fd) {
4366 if (ioctl(fd, TIOCVHANGUP) < 0)
4372 int terminal_vhangup(const char *name) {
4373 _cleanup_close_ int fd;
4375 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4379 return terminal_vhangup_fd(fd);
4382 int vt_disallocate(const char *name) {
4386 /* Deallocate the VT if possible. If not possible
4387 * (i.e. because it is the active one), at least clear it
4388 * entirely (including the scrollback buffer) */
4390 if (!startswith(name, "/dev/"))
4393 if (!tty_is_vc(name)) {
4394 /* So this is not a VT. I guess we cannot deallocate
4395 * it then. But let's at least clear the screen */
4397 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4402 "\033[r" /* clear scrolling region */
4403 "\033[H" /* move home */
4404 "\033[2J", /* clear screen */
4411 if (!startswith(name, "/dev/tty"))
4414 r = safe_atou(name+8, &u);
4421 /* Try to deallocate */
4422 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
4426 r = ioctl(fd, VT_DISALLOCATE, u);
4435 /* Couldn't deallocate, so let's clear it fully with
4437 fd = open_terminal(name, O_RDWR|O_NOCTTY|O_CLOEXEC);
4442 "\033[r" /* clear scrolling region */
4443 "\033[H" /* move home */
4444 "\033[3J", /* clear screen including scrollback, requires Linux 2.6.40 */
4451 int symlink_atomic(const char *from, const char *to) {
4452 _cleanup_free_ char *t = NULL;
4457 t = tempfn_random(to);
4461 if (symlink(from, t) < 0)
4464 if (rename(t, to) < 0) {
4472 int mknod_atomic(const char *path, mode_t mode, dev_t dev) {
4473 _cleanup_free_ char *t = NULL;
4477 t = tempfn_random(path);
4481 if (mknod(t, mode, dev) < 0)
4484 if (rename(t, path) < 0) {
4492 int mkfifo_atomic(const char *path, mode_t mode) {
4493 _cleanup_free_ char *t = NULL;
4497 t = tempfn_random(path);
4501 if (mkfifo(t, mode) < 0)
4504 if (rename(t, path) < 0) {
4512 bool display_is_local(const char *display) {
4516 display[0] == ':' &&
4517 display[1] >= '0' &&
4521 int socket_from_display(const char *display, char **path) {
4528 if (!display_is_local(display))
4531 k = strspn(display+1, "0123456789");
4533 f = new(char, strlen("/tmp/.X11-unix/X") + k + 1);
4537 c = stpcpy(f, "/tmp/.X11-unix/X");
4538 memcpy(c, display+1, k);
4547 const char **username,
4548 uid_t *uid, gid_t *gid,
4550 const char **shell) {
4558 /* We enforce some special rules for uid=0: in order to avoid
4559 * NSS lookups for root we hardcode its data. */
4561 if (streq(*username, "root") || streq(*username, "0")) {
4579 if (parse_uid(*username, &u) >= 0) {
4583 /* If there are multiple users with the same id, make
4584 * sure to leave $USER to the configured value instead
4585 * of the first occurrence in the database. However if
4586 * the uid was configured by a numeric uid, then let's
4587 * pick the real username from /etc/passwd. */
4589 *username = p->pw_name;
4592 p = getpwnam(*username);
4596 return errno > 0 ? -errno : -ESRCH;
4608 *shell = p->pw_shell;
4613 char* uid_to_name(uid_t uid) {
4618 return strdup("root");
4622 return strdup(p->pw_name);
4624 if (asprintf(&r, UID_FMT, uid) < 0)
4630 char* gid_to_name(gid_t gid) {
4635 return strdup("root");
4639 return strdup(p->gr_name);
4641 if (asprintf(&r, GID_FMT, gid) < 0)
4647 int get_group_creds(const char **groupname, gid_t *gid) {
4653 /* We enforce some special rules for gid=0: in order to avoid
4654 * NSS lookups for root we hardcode its data. */
4656 if (streq(*groupname, "root") || streq(*groupname, "0")) {
4657 *groupname = "root";
4665 if (parse_gid(*groupname, &id) >= 0) {
4670 *groupname = g->gr_name;
4673 g = getgrnam(*groupname);
4677 return errno > 0 ? -errno : -ESRCH;
4685 int in_gid(gid_t gid) {
4687 int ngroups_max, r, i;
4689 if (getgid() == gid)
4692 if (getegid() == gid)
4695 ngroups_max = sysconf(_SC_NGROUPS_MAX);
4696 assert(ngroups_max > 0);
4698 gids = alloca(sizeof(gid_t) * ngroups_max);
4700 r = getgroups(ngroups_max, gids);
4704 for (i = 0; i < r; i++)
4711 int in_group(const char *name) {
4715 r = get_group_creds(&name, &gid);
4722 int glob_exists(const char *path) {
4723 _cleanup_globfree_ glob_t g = {};
4729 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4731 if (k == GLOB_NOMATCH)
4733 else if (k == GLOB_NOSPACE)
4736 return !strv_isempty(g.gl_pathv);
4738 return errno ? -errno : -EIO;
4741 int glob_extend(char ***strv, const char *path) {
4742 _cleanup_globfree_ glob_t g = {};
4747 k = glob(path, GLOB_NOSORT|GLOB_BRACE, NULL, &g);
4749 if (k == GLOB_NOMATCH)
4751 else if (k == GLOB_NOSPACE)
4753 else if (k != 0 || strv_isempty(g.gl_pathv))
4754 return errno ? -errno : -EIO;
4756 STRV_FOREACH(p, g.gl_pathv) {
4757 k = strv_extend(strv, *p);
4765 int dirent_ensure_type(DIR *d, struct dirent *de) {
4771 if (de->d_type != DT_UNKNOWN)
4774 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
4778 S_ISREG(st.st_mode) ? DT_REG :
4779 S_ISDIR(st.st_mode) ? DT_DIR :
4780 S_ISLNK(st.st_mode) ? DT_LNK :
4781 S_ISFIFO(st.st_mode) ? DT_FIFO :
4782 S_ISSOCK(st.st_mode) ? DT_SOCK :
4783 S_ISCHR(st.st_mode) ? DT_CHR :
4784 S_ISBLK(st.st_mode) ? DT_BLK :
4790 int get_files_in_directory(const char *path, char ***list) {
4791 _cleanup_closedir_ DIR *d = NULL;
4792 size_t bufsize = 0, n = 0;
4793 _cleanup_strv_free_ char **l = NULL;
4797 /* Returns all files in a directory in *list, and the number
4798 * of files as return value. If list is NULL returns only the
4810 if (!de && errno != 0)
4815 dirent_ensure_type(d, de);
4817 if (!dirent_is_file(de))
4821 /* one extra slot is needed for the terminating NULL */
4822 if (!GREEDY_REALLOC(l, bufsize, n + 2))
4825 l[n] = strdup(de->d_name);
4836 l = NULL; /* avoid freeing */
4842 char *strjoin(const char *x, ...) {
4856 t = va_arg(ap, const char *);
4861 if (n > ((size_t) -1) - l) {
4885 t = va_arg(ap, const char *);
4899 bool is_main_thread(void) {
4900 static thread_local int cached = 0;
4902 if (_unlikely_(cached == 0))
4903 cached = getpid() == gettid() ? 1 : -1;
4908 int block_get_whole_disk(dev_t d, dev_t *ret) {
4915 /* If it has a queue this is good enough for us */
4916 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", major(d), minor(d)) < 0)
4919 r = access(p, F_OK);
4927 /* If it is a partition find the originating device */
4928 if (asprintf(&p, "/sys/dev/block/%u:%u/partition", major(d), minor(d)) < 0)
4931 r = access(p, F_OK);
4937 /* Get parent dev_t */
4938 if (asprintf(&p, "/sys/dev/block/%u:%u/../dev", major(d), minor(d)) < 0)
4941 r = read_one_line_file(p, &s);
4947 r = sscanf(s, "%u:%u", &m, &n);
4953 /* Only return this if it is really good enough for us. */
4954 if (asprintf(&p, "/sys/dev/block/%u:%u/queue", m, n) < 0)
4957 r = access(p, F_OK);
4961 *ret = makedev(m, n);
4968 static const char *const ioprio_class_table[] = {
4969 [IOPRIO_CLASS_NONE] = "none",
4970 [IOPRIO_CLASS_RT] = "realtime",
4971 [IOPRIO_CLASS_BE] = "best-effort",
4972 [IOPRIO_CLASS_IDLE] = "idle"
4975 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ioprio_class, int, INT_MAX);
4977 static const char *const sigchld_code_table[] = {
4978 [CLD_EXITED] = "exited",
4979 [CLD_KILLED] = "killed",
4980 [CLD_DUMPED] = "dumped",
4981 [CLD_TRAPPED] = "trapped",
4982 [CLD_STOPPED] = "stopped",
4983 [CLD_CONTINUED] = "continued",
4986 DEFINE_STRING_TABLE_LOOKUP(sigchld_code, int);
4988 static const char *const log_facility_unshifted_table[LOG_NFACILITIES] = {
4989 [LOG_FAC(LOG_KERN)] = "kern",
4990 [LOG_FAC(LOG_USER)] = "user",
4991 [LOG_FAC(LOG_MAIL)] = "mail",
4992 [LOG_FAC(LOG_DAEMON)] = "daemon",
4993 [LOG_FAC(LOG_AUTH)] = "auth",
4994 [LOG_FAC(LOG_SYSLOG)] = "syslog",
4995 [LOG_FAC(LOG_LPR)] = "lpr",
4996 [LOG_FAC(LOG_NEWS)] = "news",
4997 [LOG_FAC(LOG_UUCP)] = "uucp",
4998 [LOG_FAC(LOG_CRON)] = "cron",
4999 [LOG_FAC(LOG_AUTHPRIV)] = "authpriv",
5000 [LOG_FAC(LOG_FTP)] = "ftp",
5001 [LOG_FAC(LOG_LOCAL0)] = "local0",
5002 [LOG_FAC(LOG_LOCAL1)] = "local1",
5003 [LOG_FAC(LOG_LOCAL2)] = "local2",
5004 [LOG_FAC(LOG_LOCAL3)] = "local3",
5005 [LOG_FAC(LOG_LOCAL4)] = "local4",
5006 [LOG_FAC(LOG_LOCAL5)] = "local5",
5007 [LOG_FAC(LOG_LOCAL6)] = "local6",
5008 [LOG_FAC(LOG_LOCAL7)] = "local7"
5011 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_facility_unshifted, int, LOG_FAC(~0));
5013 static const char *const log_level_table[] = {
5014 [LOG_EMERG] = "emerg",
5015 [LOG_ALERT] = "alert",
5016 [LOG_CRIT] = "crit",
5018 [LOG_WARNING] = "warning",
5019 [LOG_NOTICE] = "notice",
5020 [LOG_INFO] = "info",
5021 [LOG_DEBUG] = "debug"
5024 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(log_level, int, LOG_DEBUG);
5026 static const char* const sched_policy_table[] = {
5027 [SCHED_OTHER] = "other",
5028 [SCHED_BATCH] = "batch",
5029 [SCHED_IDLE] = "idle",
5030 [SCHED_FIFO] = "fifo",
5034 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(sched_policy, int, INT_MAX);
5036 static const char* const rlimit_table[_RLIMIT_MAX] = {
5037 [RLIMIT_CPU] = "LimitCPU",
5038 [RLIMIT_FSIZE] = "LimitFSIZE",
5039 [RLIMIT_DATA] = "LimitDATA",
5040 [RLIMIT_STACK] = "LimitSTACK",
5041 [RLIMIT_CORE] = "LimitCORE",
5042 [RLIMIT_RSS] = "LimitRSS",
5043 [RLIMIT_NOFILE] = "LimitNOFILE",
5044 [RLIMIT_AS] = "LimitAS",
5045 [RLIMIT_NPROC] = "LimitNPROC",
5046 [RLIMIT_MEMLOCK] = "LimitMEMLOCK",
5047 [RLIMIT_LOCKS] = "LimitLOCKS",
5048 [RLIMIT_SIGPENDING] = "LimitSIGPENDING",
5049 [RLIMIT_MSGQUEUE] = "LimitMSGQUEUE",
5050 [RLIMIT_NICE] = "LimitNICE",
5051 [RLIMIT_RTPRIO] = "LimitRTPRIO",
5052 [RLIMIT_RTTIME] = "LimitRTTIME"
5055 DEFINE_STRING_TABLE_LOOKUP(rlimit, int);
5057 static const char* const ip_tos_table[] = {
5058 [IPTOS_LOWDELAY] = "low-delay",
5059 [IPTOS_THROUGHPUT] = "throughput",
5060 [IPTOS_RELIABILITY] = "reliability",
5061 [IPTOS_LOWCOST] = "low-cost",
5064 DEFINE_STRING_TABLE_LOOKUP_WITH_FALLBACK(ip_tos, int, 0xff);
5066 static const char *const __signal_table[] = {
5083 [SIGSTKFLT] = "STKFLT", /* Linux on SPARC doesn't know SIGSTKFLT */
5094 [SIGVTALRM] = "VTALRM",
5096 [SIGWINCH] = "WINCH",
5102 DEFINE_PRIVATE_STRING_TABLE_LOOKUP(__signal, int);
5104 const char *signal_to_string(int signo) {
5105 static thread_local char buf[sizeof("RTMIN+")-1 + DECIMAL_STR_MAX(int) + 1];
5108 name = __signal_to_string(signo);
5112 if (signo >= SIGRTMIN && signo <= SIGRTMAX)
5113 snprintf(buf, sizeof(buf), "RTMIN+%d", signo - SIGRTMIN);
5115 snprintf(buf, sizeof(buf), "%d", signo);
5120 int signal_from_string(const char *s) {
5125 signo = __signal_from_string(s);
5129 if (startswith(s, "RTMIN+")) {
5133 if (safe_atou(s, &u) >= 0) {
5134 signo = (int) u + offset;
5135 if (signo > 0 && signo < _NSIG)
5141 bool kexec_loaded(void) {
5142 bool loaded = false;
5145 if (read_one_line_file("/sys/kernel/kexec_loaded", &s) >= 0) {
5153 int prot_from_flags(int flags) {
5155 switch (flags & O_ACCMODE) {
5164 return PROT_READ|PROT_WRITE;
5171 char *format_bytes(char *buf, size_t l, off_t t) {
5174 static const struct {
5178 { "E", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
5179 { "P", 1024ULL*1024ULL*1024ULL*1024ULL*1024ULL },
5180 { "T", 1024ULL*1024ULL*1024ULL*1024ULL },
5181 { "G", 1024ULL*1024ULL*1024ULL },
5182 { "M", 1024ULL*1024ULL },
5186 for (i = 0; i < ELEMENTSOF(table); i++) {
5188 if (t >= table[i].factor) {
5191 (unsigned long long) (t / table[i].factor),
5192 (unsigned long long) (((t*10ULL) / table[i].factor) % 10ULL),
5199 snprintf(buf, l, "%lluB", (unsigned long long) t);
5207 void* memdup(const void *p, size_t l) {
5220 int fd_inc_sndbuf(int fd, size_t n) {
5222 socklen_t l = sizeof(value);
5224 r = getsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, &l);
5225 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
5228 /* If we have the privileges we will ignore the kernel limit. */
5231 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUFFORCE, &value, sizeof(value)) < 0)
5232 if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, &value, sizeof(value)) < 0)
5238 int fd_inc_rcvbuf(int fd, size_t n) {
5240 socklen_t l = sizeof(value);
5242 r = getsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, &l);
5243 if (r >= 0 && l == sizeof(value) && (size_t) value >= n*2)
5246 /* If we have the privileges we will ignore the kernel limit. */
5249 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUFFORCE, &value, sizeof(value)) < 0)
5250 if (setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &value, sizeof(value)) < 0)
5255 int fork_agent(pid_t *pid, const int except[], unsigned n_except, const char *path, ...) {
5256 bool stdout_is_tty, stderr_is_tty;
5257 pid_t parent_pid, agent_pid;
5258 sigset_t ss, saved_ss;
5266 /* Spawns a temporary TTY agent, making sure it goes away when
5269 parent_pid = getpid();
5271 /* First we temporarily block all signals, so that the new
5272 * child has them blocked initially. This way, we can be sure
5273 * that SIGTERMs are not lost we might send to the agent. */
5274 assert_se(sigfillset(&ss) >= 0);
5275 assert_se(sigprocmask(SIG_SETMASK, &ss, &saved_ss) >= 0);
5278 if (agent_pid < 0) {
5279 assert_se(sigprocmask(SIG_SETMASK, &saved_ss, NULL) >= 0);
5283 if (agent_pid != 0) {
5284 assert_se(sigprocmask(SIG_SETMASK, &saved_ss, NULL) >= 0);
5291 * Make sure the agent goes away when the parent dies */
5292 if (prctl(PR_SET_PDEATHSIG, SIGTERM) < 0)
5293 _exit(EXIT_FAILURE);
5295 /* Make sure we actually can kill the agent, if we need to, in
5296 * case somebody invoked us from a shell script that trapped
5297 * SIGTERM or so... */
5298 reset_all_signal_handlers();
5299 reset_signal_mask();
5301 /* Check whether our parent died before we were able
5302 * to set the death signal and unblock the signals */
5303 if (getppid() != parent_pid)
5304 _exit(EXIT_SUCCESS);
5306 /* Don't leak fds to the agent */
5307 close_all_fds(except, n_except);
5309 stdout_is_tty = isatty(STDOUT_FILENO);
5310 stderr_is_tty = isatty(STDERR_FILENO);
5312 if (!stdout_is_tty || !stderr_is_tty) {
5315 /* Detach from stdout/stderr. and reopen
5316 * /dev/tty for them. This is important to
5317 * ensure that when systemctl is started via
5318 * popen() or a similar call that expects to
5319 * read EOF we actually do generate EOF and
5320 * not delay this indefinitely by because we
5321 * keep an unused copy of stdin around. */
5322 fd = open("/dev/tty", O_WRONLY);
5324 log_error_errno(errno, "Failed to open /dev/tty: %m");
5325 _exit(EXIT_FAILURE);
5329 dup2(fd, STDOUT_FILENO);
5332 dup2(fd, STDERR_FILENO);
5338 /* Count arguments */
5340 for (n = 0; va_arg(ap, char*); n++)
5345 l = alloca(sizeof(char *) * (n + 1));
5347 /* Fill in arguments */
5349 for (i = 0; i <= n; i++)
5350 l[i] = va_arg(ap, char*);
5354 _exit(EXIT_FAILURE);
5357 int setrlimit_closest(int resource, const struct rlimit *rlim) {
5358 struct rlimit highest, fixed;
5362 if (setrlimit(resource, rlim) >= 0)
5368 /* So we failed to set the desired setrlimit, then let's try
5369 * to get as close as we can */
5370 assert_se(getrlimit(resource, &highest) == 0);
5372 fixed.rlim_cur = MIN(rlim->rlim_cur, highest.rlim_max);
5373 fixed.rlim_max = MIN(rlim->rlim_max, highest.rlim_max);
5375 if (setrlimit(resource, &fixed) < 0)
5381 int getenv_for_pid(pid_t pid, const char *field, char **_value) {
5382 _cleanup_fclose_ FILE *f = NULL;
5393 path = procfs_file_alloca(pid, "environ");
5395 f = fopen(path, "re");
5403 char line[LINE_MAX];
5406 for (i = 0; i < sizeof(line)-1; i++) {
5410 if (_unlikely_(c == EOF)) {
5420 if (memcmp(line, field, l) == 0 && line[l] == '=') {
5421 value = strdup(line + l + 1);
5435 bool is_valid_documentation_url(const char *url) {
5438 if (startswith(url, "http://") && url[7])
5441 if (startswith(url, "https://") && url[8])
5444 if (startswith(url, "file:") && url[5])
5447 if (startswith(url, "info:") && url[5])
5450 if (startswith(url, "man:") && url[4])
5456 bool in_initrd(void) {
5457 static int saved = -1;
5463 /* We make two checks here:
5465 * 1. the flag file /etc/initrd-release must exist
5466 * 2. the root file system must be a memory file system
5468 * The second check is extra paranoia, since misdetecting an
5469 * initrd can have bad bad consequences due the initrd
5470 * emptying when transititioning to the main systemd.
5473 saved = access("/etc/initrd-release", F_OK) >= 0 &&
5474 statfs("/", &s) >= 0 &&
5475 is_temporary_fs(&s);
5480 void warn_melody(void) {
5481 _cleanup_close_ int fd = -1;
5483 fd = open("/dev/console", O_WRONLY|O_CLOEXEC|O_NOCTTY);
5487 /* Yeah, this is synchronous. Kinda sucks. But well... */
5489 ioctl(fd, KIOCSOUND, (int)(1193180/440));
5490 usleep(125*USEC_PER_MSEC);
5492 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5493 usleep(125*USEC_PER_MSEC);
5495 ioctl(fd, KIOCSOUND, (int)(1193180/220));
5496 usleep(125*USEC_PER_MSEC);
5498 ioctl(fd, KIOCSOUND, 0);
5501 int make_console_stdio(void) {
5504 /* Make /dev/console the controlling terminal and stdin/stdout/stderr */
5506 fd = acquire_terminal("/dev/console", false, true, true, USEC_INFINITY);
5508 return log_error_errno(fd, "Failed to acquire terminal: %m");
5512 return log_error_errno(r, "Failed to duplicate terminal fd: %m");
5517 int get_home_dir(char **_h) {
5525 /* Take the user specified one */
5526 e = secure_getenv("HOME");
5527 if (e && path_is_absolute(e)) {
5536 /* Hardcode home directory for root to avoid NSS */
5539 h = strdup("/root");
5547 /* Check the database... */
5551 return errno > 0 ? -errno : -ESRCH;
5553 if (!path_is_absolute(p->pw_dir))
5556 h = strdup(p->pw_dir);
5564 int get_shell(char **_s) {
5572 /* Take the user specified one */
5573 e = getenv("SHELL");
5583 /* Hardcode home directory for root to avoid NSS */
5586 s = strdup("/bin/sh");
5594 /* Check the database... */
5598 return errno > 0 ? -errno : -ESRCH;
5600 if (!path_is_absolute(p->pw_shell))
5603 s = strdup(p->pw_shell);
5611 bool filename_is_safe(const char *p) {
5625 if (strlen(p) > FILENAME_MAX)
5631 bool string_is_safe(const char *p) {
5637 for (t = p; *t; t++) {
5638 if (*t > 0 && *t < ' ')
5641 if (strchr("\\\"\'\0x7f", *t))
5649 * Check if a string contains control characters. If 'ok' is non-NULL
5650 * it may be a string containing additional CCs to be considered OK.
5652 bool string_has_cc(const char *p, const char *ok) {
5657 for (t = p; *t; t++) {
5658 if (ok && strchr(ok, *t))
5661 if (*t > 0 && *t < ' ')
5671 bool path_is_safe(const char *p) {
5676 if (streq(p, "..") || startswith(p, "../") || endswith(p, "/..") || strstr(p, "/../"))
5679 if (strlen(p) > PATH_MAX)
5682 /* The following two checks are not really dangerous, but hey, they still are confusing */
5683 if (streq(p, ".") || startswith(p, "./") || endswith(p, "/.") || strstr(p, "/./"))
5686 if (strstr(p, "//"))
5692 /* hey glibc, APIs with callbacks without a user pointer are so useless */
5693 void *xbsearch_r(const void *key, const void *base, size_t nmemb, size_t size,
5694 int (*compar) (const void *, const void *, void *), void *arg) {
5703 p = (void *)(((const char *) base) + (idx * size));
5704 comparison = compar(key, p, arg);
5707 else if (comparison > 0)
5715 bool is_locale_utf8(void) {
5717 static int cached_answer = -1;
5719 if (cached_answer >= 0)
5722 if (!setlocale(LC_ALL, "")) {
5723 cached_answer = true;
5727 set = nl_langinfo(CODESET);
5729 cached_answer = true;
5733 if (streq(set, "UTF-8")) {
5734 cached_answer = true;
5738 /* For LC_CTYPE=="C" return true, because CTYPE is effectly
5739 * unset and everything can do to UTF-8 nowadays. */
5740 set = setlocale(LC_CTYPE, NULL);
5742 cached_answer = true;
5746 /* Check result, but ignore the result if C was set
5750 !getenv("LC_ALL") &&
5751 !getenv("LC_CTYPE") &&
5755 return (bool) cached_answer;
5758 const char *draw_special_char(DrawSpecialChar ch) {
5759 static const char *draw_table[2][_DRAW_SPECIAL_CHAR_MAX] = {
5762 [DRAW_TREE_VERTICAL] = "\342\224\202 ", /* │ */
5763 [DRAW_TREE_BRANCH] = "\342\224\234\342\224\200", /* ├─ */
5764 [DRAW_TREE_RIGHT] = "\342\224\224\342\224\200", /* └─ */
5765 [DRAW_TREE_SPACE] = " ", /* */
5766 [DRAW_TRIANGULAR_BULLET] = "\342\200\243", /* ‣ */
5767 [DRAW_BLACK_CIRCLE] = "\342\227\217", /* ● */
5768 [DRAW_ARROW] = "\342\206\222", /* → */
5769 [DRAW_DASH] = "\342\200\223", /* – */
5772 /* ASCII fallback */ {
5773 [DRAW_TREE_VERTICAL] = "| ",
5774 [DRAW_TREE_BRANCH] = "|-",
5775 [DRAW_TREE_RIGHT] = "`-",
5776 [DRAW_TREE_SPACE] = " ",
5777 [DRAW_TRIANGULAR_BULLET] = ">",
5778 [DRAW_BLACK_CIRCLE] = "*",
5779 [DRAW_ARROW] = "->",
5784 return draw_table[!is_locale_utf8()][ch];
5787 char *strreplace(const char *text, const char *old_string, const char *new_string) {
5790 size_t l, old_len, new_len;
5796 old_len = strlen(old_string);
5797 new_len = strlen(new_string);
5810 if (!startswith(f, old_string)) {
5816 nl = l - old_len + new_len;
5817 a = realloc(r, nl + 1);
5825 t = stpcpy(t, new_string);
5837 char *strip_tab_ansi(char **ibuf, size_t *_isz) {
5838 const char *i, *begin = NULL;
5843 } state = STATE_OTHER;
5845 size_t osz = 0, isz;
5851 /* Strips ANSI color and replaces TABs by 8 spaces */
5853 isz = _isz ? *_isz : strlen(*ibuf);
5855 f = open_memstream(&obuf, &osz);
5859 for (i = *ibuf; i < *ibuf + isz + 1; i++) {
5864 if (i >= *ibuf + isz) /* EOT */
5866 else if (*i == '\x1B')
5867 state = STATE_ESCAPE;
5868 else if (*i == '\t')
5875 if (i >= *ibuf + isz) { /* EOT */
5878 } else if (*i == '[') {
5879 state = STATE_BRACKET;
5884 state = STATE_OTHER;
5891 if (i >= *ibuf + isz || /* EOT */
5892 (!(*i >= '0' && *i <= '9') && *i != ';' && *i != 'm')) {
5895 state = STATE_OTHER;
5897 } else if (*i == 'm')
5898 state = STATE_OTHER;
5920 int on_ac_power(void) {
5921 bool found_offline = false, found_online = false;
5922 _cleanup_closedir_ DIR *d = NULL;
5924 d = opendir("/sys/class/power_supply");
5930 _cleanup_close_ int fd = -1, device = -1;
5936 if (!de && errno != 0)
5942 if (ignore_file(de->d_name))
5945 device = openat(dirfd(d), de->d_name, O_DIRECTORY|O_RDONLY|O_CLOEXEC|O_NOCTTY);
5947 if (errno == ENOENT || errno == ENOTDIR)
5953 fd = openat(device, "type", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5955 if (errno == ENOENT)
5961 n = read(fd, contents, sizeof(contents));
5965 if (n != 6 || memcmp(contents, "Mains\n", 6))
5969 fd = openat(device, "online", O_RDONLY|O_CLOEXEC|O_NOCTTY);
5971 if (errno == ENOENT)
5977 n = read(fd, contents, sizeof(contents));
5981 if (n != 2 || contents[1] != '\n')
5984 if (contents[0] == '1') {
5985 found_online = true;
5987 } else if (contents[0] == '0')
5988 found_offline = true;
5993 return found_online || !found_offline;
5996 static int search_and_fopen_internal(const char *path, const char *mode, const char *root, char **search, FILE **_f) {
6003 if (!path_strv_resolve_uniq(search, root))
6006 STRV_FOREACH(i, search) {
6007 _cleanup_free_ char *p = NULL;
6011 p = strjoin(root, *i, "/", path, NULL);
6013 p = strjoin(*i, "/", path, NULL);
6023 if (errno != ENOENT)
6030 int search_and_fopen(const char *path, const char *mode, const char *root, const char **search, FILE **_f) {
6031 _cleanup_strv_free_ char **copy = NULL;
6037 if (path_is_absolute(path)) {
6040 f = fopen(path, mode);
6049 copy = strv_copy((char**) search);
6053 return search_and_fopen_internal(path, mode, root, copy, _f);
6056 int search_and_fopen_nulstr(const char *path, const char *mode, const char *root, const char *search, FILE **_f) {
6057 _cleanup_strv_free_ char **s = NULL;
6059 if (path_is_absolute(path)) {
6062 f = fopen(path, mode);
6071 s = strv_split_nulstr(search);
6075 return search_and_fopen_internal(path, mode, root, s, _f);
6078 char *strextend(char **x, ...) {
6085 l = f = *x ? strlen(*x) : 0;
6092 t = va_arg(ap, const char *);
6097 if (n > ((size_t) -1) - l) {
6106 r = realloc(*x, l+1);
6116 t = va_arg(ap, const char *);
6130 char *strrep(const char *s, unsigned n) {
6138 p = r = malloc(l * n + 1);
6142 for (i = 0; i < n; i++)
6149 void* greedy_realloc(void **p, size_t *allocated, size_t need, size_t size) {
6156 if (*allocated >= need)
6159 newalloc = MAX(need * 2, 64u / size);
6160 a = newalloc * size;
6162 /* check for overflows */
6163 if (a < size * need)
6171 *allocated = newalloc;
6175 void* greedy_realloc0(void **p, size_t *allocated, size_t need, size_t size) {
6184 q = greedy_realloc(p, allocated, need, size);
6188 if (*allocated > prev)
6189 memzero(q + prev * size, (*allocated - prev) * size);
6194 bool id128_is_valid(const char *s) {
6200 /* Simple formatted 128bit hex string */
6202 for (i = 0; i < l; i++) {
6205 if (!(c >= '0' && c <= '9') &&
6206 !(c >= 'a' && c <= 'z') &&
6207 !(c >= 'A' && c <= 'Z'))
6211 } else if (l == 36) {
6213 /* Formatted UUID */
6215 for (i = 0; i < l; i++) {
6218 if ((i == 8 || i == 13 || i == 18 || i == 23)) {
6222 if (!(c >= '0' && c <= '9') &&
6223 !(c >= 'a' && c <= 'z') &&
6224 !(c >= 'A' && c <= 'Z'))
6235 int split_pair(const char *s, const char *sep, char **l, char **r) {
6250 a = strndup(s, x - s);
6254 b = strdup(x + strlen(sep));
6266 int shall_restore_state(void) {
6267 _cleanup_free_ char *value = NULL;
6270 r = get_proc_cmdline_key("systemd.restore_state=", &value);
6276 return parse_boolean(value) != 0;
6279 int proc_cmdline(char **ret) {
6282 if (detect_container(NULL) > 0)
6283 return get_process_cmdline(1, 0, false, ret);
6285 return read_one_line_file("/proc/cmdline", ret);
6288 int parse_proc_cmdline(int (*parse_item)(const char *key, const char *value)) {
6289 _cleanup_free_ char *line = NULL;
6295 r = proc_cmdline(&line);
6301 _cleanup_free_ char *word = NULL;
6304 r = unquote_first_word(&p, &word, true);
6310 /* Filter out arguments that are intended only for the
6312 if (!in_initrd() && startswith(word, "rd."))
6315 value = strchr(word, '=');
6319 r = parse_item(word, value);
6327 int get_proc_cmdline_key(const char *key, char **value) {
6328 _cleanup_free_ char *line = NULL, *ret = NULL;
6335 r = proc_cmdline(&line);
6341 _cleanup_free_ char *word = NULL;
6344 r = unquote_first_word(&p, &word, true);
6350 /* Filter out arguments that are intended only for the
6352 if (!in_initrd() && startswith(word, "rd."))
6356 e = startswith(word, key);
6360 r = free_and_strdup(&ret, e);
6366 if (streq(word, key))
6380 int container_get_leader(const char *machine, pid_t *pid) {
6381 _cleanup_free_ char *s = NULL, *class = NULL;
6389 p = strappenda("/run/systemd/machines/", machine);
6390 r = parse_env_file(p, NEWLINE, "LEADER", &s, "CLASS", &class, NULL);
6398 if (!streq_ptr(class, "container"))
6401 r = parse_pid(s, &leader);
6411 int namespace_open(pid_t pid, int *pidns_fd, int *mntns_fd, int *netns_fd, int *root_fd) {
6412 _cleanup_close_ int pidnsfd = -1, mntnsfd = -1, netnsfd = -1;
6420 mntns = procfs_file_alloca(pid, "ns/mnt");
6421 mntnsfd = open(mntns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6429 pidns = procfs_file_alloca(pid, "ns/pid");
6430 pidnsfd = open(pidns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6438 netns = procfs_file_alloca(pid, "ns/net");
6439 netnsfd = open(netns, O_RDONLY|O_NOCTTY|O_CLOEXEC);
6447 root = procfs_file_alloca(pid, "root");
6448 rfd = open(root, O_RDONLY|O_NOCTTY|O_CLOEXEC|O_DIRECTORY);
6454 *pidns_fd = pidnsfd;
6457 *mntns_fd = mntnsfd;
6460 *netns_fd = netnsfd;
6465 pidnsfd = mntnsfd = netnsfd = -1;
6470 int namespace_enter(int pidns_fd, int mntns_fd, int netns_fd, int root_fd) {
6473 if (setns(pidns_fd, CLONE_NEWPID) < 0)
6477 if (setns(mntns_fd, CLONE_NEWNS) < 0)
6481 if (setns(netns_fd, CLONE_NEWNET) < 0)
6485 if (fchdir(root_fd) < 0)
6488 if (chroot(".") < 0)
6492 if (setresgid(0, 0, 0) < 0)
6495 if (setgroups(0, NULL) < 0)
6498 if (setresuid(0, 0, 0) < 0)
6504 bool pid_is_unwaited(pid_t pid) {
6505 /* Checks whether a PID is still valid at all, including a zombie */
6510 if (kill(pid, 0) >= 0)
6513 return errno != ESRCH;
6516 bool pid_is_alive(pid_t pid) {
6519 /* Checks whether a PID is still valid and not a zombie */
6524 r = get_process_state(pid);
6525 if (r == -ENOENT || r == 'Z')
6531 int getpeercred(int fd, struct ucred *ucred) {
6532 socklen_t n = sizeof(struct ucred);
6539 r = getsockopt(fd, SOL_SOCKET, SO_PEERCRED, &u, &n);
6543 if (n != sizeof(struct ucred))
6546 /* Check if the data is actually useful and not suppressed due
6547 * to namespacing issues */
6550 if (u.uid == UID_INVALID)
6552 if (u.gid == GID_INVALID)
6559 int getpeersec(int fd, char **ret) {
6571 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6575 if (errno != ERANGE)
6582 r = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, s, &n);
6598 /* This is much like like mkostemp() but is subject to umask(). */
6599 int mkostemp_safe(char *pattern, int flags) {
6600 _cleanup_umask_ mode_t u;
6607 fd = mkostemp(pattern, flags);
6614 int open_tmpfile(const char *path, int flags) {
6621 /* Try O_TMPFILE first, if it is supported */
6622 fd = open(path, flags|O_TMPFILE, S_IRUSR|S_IWUSR);
6627 /* Fall back to unguessable name + unlinking */
6628 p = strappenda(path, "/systemd-tmp-XXXXXX");
6630 fd = mkostemp_safe(p, flags);
6638 int fd_warn_permissions(const char *path, int fd) {
6641 if (fstat(fd, &st) < 0)
6644 if (st.st_mode & 0111)
6645 log_warning("Configuration file %s is marked executable. Please remove executable permission bits. Proceeding anyway.", path);
6647 if (st.st_mode & 0002)
6648 log_warning("Configuration file %s is marked world-writable. Please remove world writability permission bits. Proceeding anyway.", path);
6650 if (getpid() == 1 && (st.st_mode & 0044) != 0044)
6651 log_warning("Configuration file %s is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.", path);
6656 unsigned long personality_from_string(const char *p) {
6658 /* Parse a personality specifier. We introduce our own
6659 * identifiers that indicate specific ABIs, rather than just
6660 * hints regarding the register size, since we want to keep
6661 * things open for multiple locally supported ABIs for the
6662 * same register size. We try to reuse the ABI identifiers
6663 * used by libseccomp. */
6665 #if defined(__x86_64__)
6667 if (streq(p, "x86"))
6670 if (streq(p, "x86-64"))
6673 #elif defined(__i386__)
6675 if (streq(p, "x86"))
6679 /* personality(7) documents that 0xffffffffUL is used for
6680 * querying the current personality, hence let's use that here
6681 * as error indicator. */
6682 return 0xffffffffUL;
6685 const char* personality_to_string(unsigned long p) {
6687 #if defined(__x86_64__)
6689 if (p == PER_LINUX32)
6695 #elif defined(__i386__)
6704 uint64_t physical_memory(void) {
6707 /* We return this as uint64_t in case we are running as 32bit
6708 * process on a 64bit kernel with huge amounts of memory */
6710 mem = sysconf(_SC_PHYS_PAGES);
6713 return (uint64_t) mem * (uint64_t) page_size();
6716 char* mount_test_option(const char *haystack, const char *needle) {
6718 struct mntent me = {
6719 .mnt_opts = (char*) haystack
6724 /* Like glibc's hasmntopt(), but works on a string, not a
6730 return hasmntopt(&me, needle);
6733 void hexdump(FILE *f, const void *p, size_t s) {
6734 const uint8_t *b = p;
6737 assert(s == 0 || b);
6742 fprintf(f, "%04x ", n);
6744 for (i = 0; i < 16; i++) {
6749 fprintf(f, "%02x ", b[i]);
6757 for (i = 0; i < 16; i++) {
6762 fputc(isprint(b[i]) ? (char) b[i] : '.', f);
6776 int update_reboot_param_file(const char *param) {
6781 r = write_string_file(REBOOT_PARAM_FILE, param);
6783 log_error("Failed to write reboot param to "
6784 REBOOT_PARAM_FILE": %s", strerror(-r));
6786 unlink(REBOOT_PARAM_FILE);
6791 int umount_recursive(const char *prefix, int flags) {
6795 /* Try to umount everything recursively below a
6796 * directory. Also, take care of stacked mounts, and keep
6797 * unmounting them until they are gone. */
6800 _cleanup_fclose_ FILE *proc_self_mountinfo = NULL;
6805 proc_self_mountinfo = fopen("/proc/self/mountinfo", "re");
6806 if (!proc_self_mountinfo)
6810 _cleanup_free_ char *path = NULL, *p = NULL;
6813 k = fscanf(proc_self_mountinfo,
6814 "%*s " /* (1) mount id */
6815 "%*s " /* (2) parent id */
6816 "%*s " /* (3) major:minor */
6817 "%*s " /* (4) root */
6818 "%ms " /* (5) mount point */
6819 "%*s" /* (6) mount options */
6820 "%*[^-]" /* (7) optional fields */
6821 "- " /* (8) separator */
6822 "%*s " /* (9) file system type */
6823 "%*s" /* (10) mount source */
6824 "%*s" /* (11) mount options 2 */
6825 "%*[^\n]", /* some rubbish at the end */
6834 p = cunescape(path);
6838 if (!path_startswith(p, prefix))
6841 if (umount2(p, flags) < 0) {
6857 int bind_remount_recursive(const char *prefix, bool ro) {
6858 _cleanup_set_free_free_ Set *done = NULL;
6859 _cleanup_free_ char *cleaned = NULL;
6862 /* Recursively remount a directory (and all its submounts)
6863 * read-only or read-write. If the directory is already
6864 * mounted, we reuse the mount and simply mark it
6865 * MS_BIND|MS_RDONLY (or remove the MS_RDONLY for read-write
6866 * operation). If it isn't we first make it one. Afterwards we
6867 * apply MS_BIND|MS_RDONLY (or remove MS_RDONLY) to all
6868 * submounts we can access, too. When mounts are stacked on
6869 * the same mount point we only care for each individual
6870 * "top-level" mount on each point, as we cannot
6871 * influence/access the underlying mounts anyway. We do not
6872 * have any effect on future submounts that might get
6873 * propagated, they migt be writable. This includes future
6874 * submounts that have been triggered via autofs. */
6876 cleaned = strdup(prefix);
6880 path_kill_slashes(cleaned);
6882 done = set_new(&string_hash_ops);
6887 _cleanup_fclose_ FILE *proc_self_mountinfo = NULL;
6888 _cleanup_set_free_free_ Set *todo = NULL;
6889 bool top_autofs = false;
6892 todo = set_new(&string_hash_ops);
6896 proc_self_mountinfo = fopen("/proc/self/mountinfo", "re");
6897 if (!proc_self_mountinfo)
6901 _cleanup_free_ char *path = NULL, *p = NULL, *type = NULL;
6904 k = fscanf(proc_self_mountinfo,
6905 "%*s " /* (1) mount id */
6906 "%*s " /* (2) parent id */
6907 "%*s " /* (3) major:minor */
6908 "%*s " /* (4) root */
6909 "%ms " /* (5) mount point */
6910 "%*s" /* (6) mount options (superblock) */
6911 "%*[^-]" /* (7) optional fields */
6912 "- " /* (8) separator */
6913 "%ms " /* (9) file system type */
6914 "%*s" /* (10) mount source */
6915 "%*s" /* (11) mount options (bind mount) */
6916 "%*[^\n]", /* some rubbish at the end */
6926 p = cunescape(path);
6930 /* Let's ignore autofs mounts. If they aren't
6931 * triggered yet, we want to avoid triggering
6932 * them, as we don't make any guarantees for
6933 * future submounts anyway. If they are
6934 * already triggered, then we will find
6935 * another entry for this. */
6936 if (streq(type, "autofs")) {
6937 top_autofs = top_autofs || path_equal(cleaned, p);
6941 if (path_startswith(p, cleaned) &&
6942 !set_contains(done, p)) {
6944 r = set_consume(todo, p);
6954 /* If we have no submounts to process anymore and if
6955 * the root is either already done, or an autofs, we
6957 if (set_isempty(todo) &&
6958 (top_autofs || set_contains(done, cleaned)))
6961 if (!set_contains(done, cleaned) &&
6962 !set_contains(todo, cleaned)) {
6963 /* The prefix directory itself is not yet a
6964 * mount, make it one. */
6965 if (mount(cleaned, cleaned, NULL, MS_BIND|MS_REC, NULL) < 0)
6968 if (mount(NULL, prefix, NULL, MS_BIND|MS_REMOUNT|(ro ? MS_RDONLY : 0), NULL) < 0)
6971 x = strdup(cleaned);
6975 r = set_consume(done, x);
6980 while ((x = set_steal_first(todo))) {
6982 r = set_consume(done, x);
6988 if (mount(NULL, x, NULL, MS_BIND|MS_REMOUNT|(ro ? MS_RDONLY : 0), NULL) < 0) {
6990 /* Deal with mount points that are
6991 * obstructed by a later mount */
6993 if (errno != ENOENT)
7001 int fflush_and_check(FILE *f) {
7008 return errno ? -errno : -EIO;
7013 char *tempfn_xxxxxx(const char *p) {
7020 t = new(char, strlen(p) + 1 + 6 + 1);
7027 strcpy(stpcpy(stpcpy(mempcpy(t, p, k), "."), fn), "XXXXXX");
7032 char *tempfn_random(const char *p) {
7041 t = new(char, strlen(p) + 1 + 16 + 1);
7048 x = stpcpy(stpcpy(mempcpy(t, p, k), "."), fn);
7051 for (i = 0; i < 16; i++) {
7052 *(x++) = hexchar(u & 0xF);
7061 /* make sure the hostname is not "localhost" */
7062 bool is_localhost(const char *hostname) {
7065 /* This tries to identify local host and domain names
7066 * described in RFC6761 plus the redhatism of .localdomain */
7068 return streq(hostname, "localhost") ||
7069 streq(hostname, "localhost.") ||
7070 streq(hostname, "localdomain.") ||
7071 streq(hostname, "localdomain") ||
7072 endswith(hostname, ".localhost") ||
7073 endswith(hostname, ".localhost.") ||
7074 endswith(hostname, ".localdomain") ||
7075 endswith(hostname, ".localdomain.");
7078 int take_password_lock(const char *root) {
7080 struct flock flock = {
7082 .l_whence = SEEK_SET,
7090 /* This is roughly the same as lckpwdf(), but not as awful. We
7091 * don't want to use alarm() and signals, hence we implement
7092 * our own trivial version of this.
7094 * Note that shadow-utils also takes per-database locks in
7095 * addition to lckpwdf(). However, we don't given that they
7096 * are redundant as they they invoke lckpwdf() first and keep
7097 * it during everything they do. The per-database locks are
7098 * awfully racy, and thus we just won't do them. */
7101 path = strappenda(root, "/etc/.pwd.lock");
7103 path = "/etc/.pwd.lock";
7105 fd = open(path, O_WRONLY|O_CREAT|O_CLOEXEC|O_NOCTTY|O_NOFOLLOW, 0600);
7109 r = fcntl(fd, F_SETLKW, &flock);
7118 int is_symlink(const char *path) {
7121 if (lstat(path, &info) < 0)
7124 return !!S_ISLNK(info.st_mode);
7127 int is_dir(const char* path, bool follow) {
7132 r = stat(path, &st);
7134 r = lstat(path, &st);
7138 return !!S_ISDIR(st.st_mode);
7141 int unquote_first_word(const char **p, char **ret, bool relax) {
7142 _cleanup_free_ char *s = NULL;
7143 size_t allocated = 0, sz = 0;
7150 SINGLE_QUOTE_ESCAPE,
7152 DOUBLE_QUOTE_ESCAPE,
7160 /* Parses the first word of a string, and returns it in
7161 * *ret. Removes all quotes in the process. When parsing fails
7162 * (because of an uneven number of quotes or similar), leaves
7163 * the pointer *p at the first invalid character. */
7173 else if (strchr(WHITESPACE, c))
7183 state = SINGLE_QUOTE;
7185 state = VALUE_ESCAPE;
7187 state = DOUBLE_QUOTE;
7188 else if (strchr(WHITESPACE, c))
7191 if (!GREEDY_REALLOC(s, allocated, sz+2))
7206 if (!GREEDY_REALLOC(s, allocated, sz+2))
7219 } else if (c == '\'')
7222 state = SINGLE_QUOTE_ESCAPE;
7224 if (!GREEDY_REALLOC(s, allocated, sz+2))
7232 case SINGLE_QUOTE_ESCAPE:
7239 if (!GREEDY_REALLOC(s, allocated, sz+2))
7243 state = SINGLE_QUOTE;
7252 state = DOUBLE_QUOTE_ESCAPE;
7254 if (!GREEDY_REALLOC(s, allocated, sz+2))
7262 case DOUBLE_QUOTE_ESCAPE:
7269 if (!GREEDY_REALLOC(s, allocated, sz+2))
7273 state = DOUBLE_QUOTE;
7279 if (!strchr(WHITESPACE, c))
7301 int unquote_many_words(const char **p, ...) {
7306 /* Parses a number of words from a string, stripping any
7307 * quotes if necessary. */
7311 /* Count how many words are expected */
7314 if (!va_arg(ap, char **))
7323 /* Read all words into a temporary array */
7324 l = newa0(char*, n);
7325 for (c = 0; c < n; c++) {
7327 r = unquote_first_word(p, &l[c], false);
7331 for (j = 0; j < c; j++)
7341 /* If we managed to parse all words, return them in the passed
7344 for (i = 0; i < n; i++) {
7347 v = va_arg(ap, char **);
7357 int free_and_strdup(char **p, const char *s) {
7362 /* Replaces a string pointer with an strdup()ed new string,
7363 * possibly freeing the old one. */
7378 int sethostname_idempotent(const char *s) {
7380 char buf[HOST_NAME_MAX + 1] = {};
7384 r = gethostname(buf, sizeof(buf));
7391 r = sethostname(s, strlen(s));
~ianmdlvl / elogind.git / blob