1 /* SPDX-License-Identifier: LGPL-2.1-or-later */
3 Copyright © 2013 Simon Peeters
14 #include "alloc-util.h"
15 #include "analyze-condition.h"
16 #include "analyze-security.h"
17 #include "analyze-verify.h"
18 #include "bus-error.h"
19 #include "bus-locator.h"
20 #include "bus-map-properties.h"
21 #include "bus-unit-util.h"
22 #include "calendarspec.h"
24 #include "capability-util.h"
25 #include "conf-files.h"
28 #include "exit-status.h"
31 #include "filesystems.h"
32 #include "format-table.h"
33 #include "glob-util.h"
35 #include "locale-util.h"
37 #include "main-func.h"
38 #include "mount-util.h"
39 #include "nulstr-util.h"
41 #include "parse-argument.h"
42 #include "parse-util.h"
43 #include "path-util.h"
44 #include "pretty-print.h"
46 # include "seccomp-util.h"
48 #include "sort-util.h"
50 #include "stat-util.h"
51 #include "string-table.h"
54 #include "terminal-util.h"
55 #include "time-util.h"
56 #include "unit-name.h"
58 #include "verb-log-control.h"
62 #define SCALE_X (0.1 / 1000.0) /* pixels per us */
63 #define SCALE_Y (20.0)
65 #define svg(...) printf(__VA_ARGS__)
67 #define svg_bar(class, x1, x2, y) \
68 svg(" <rect class=\"%s\" x=\"%.03f\" y=\"%.03f\" width=\"%.03f\" height=\"%.03f\" />\n", \
70 SCALE_X * (x1), SCALE_Y * (y), \
71 SCALE_X * ((x2) - (x1)), SCALE_Y - 1.0)
73 #define svg_text(b, x, y, format, ...) \
75 svg(" <text class=\"%s\" x=\"%.03f\" y=\"%.03f\">", (b) ? "left" : "right", SCALE_X * (x) + (b ? 5.0 : -5.0), SCALE_Y * (y) + 14.0); \
76 svg(format, ## __VA_ARGS__); \
85 static char **arg_dot_from_patterns
= NULL
;
86 static char **arg_dot_to_patterns
= NULL
;
87 static usec_t arg_fuzz
= 0;
88 static PagerFlags arg_pager_flags
= 0;
89 static BusTransport arg_transport
= BUS_TRANSPORT_LOCAL
;
90 static const char *arg_host
= NULL
;
91 static UnitFileScope arg_scope
= UNIT_FILE_SYSTEM
;
92 static RecursiveErrors arg_recursive_errors
= RECURSIVE_ERRORS_YES
;
93 static bool arg_man
= true;
94 static bool arg_generators
= false;
95 static char *arg_root
= NULL
;
96 static char *arg_image
= NULL
;
97 static char *arg_security_policy
= NULL
;
98 static bool arg_offline
= false;
99 static unsigned arg_threshold
= 100;
100 static unsigned arg_iterations
= 1;
101 static usec_t arg_base_time
= USEC_INFINITY
;
102 static char *arg_unit
= NULL
;
103 static JsonFormatFlags arg_json_format_flags
= JSON_FORMAT_OFF
;
105 STATIC_DESTRUCTOR_REGISTER(arg_dot_from_patterns
, strv_freep
);
106 STATIC_DESTRUCTOR_REGISTER(arg_dot_to_patterns
, strv_freep
);
107 STATIC_DESTRUCTOR_REGISTER(arg_root
, freep
);
108 STATIC_DESTRUCTOR_REGISTER(arg_image
, freep
);
109 STATIC_DESTRUCTOR_REGISTER(arg_security_policy
, freep
);
110 STATIC_DESTRUCTOR_REGISTER(arg_unit
, freep
);
112 typedef struct BootTimes
{
113 usec_t firmware_time
;
116 usec_t kernel_done_time
;
118 usec_t userspace_time
;
120 usec_t security_start_time
;
121 usec_t security_finish_time
;
122 usec_t generators_start_time
;
123 usec_t generators_finish_time
;
124 usec_t unitsload_start_time
;
125 usec_t unitsload_finish_time
;
126 usec_t initrd_security_start_time
;
127 usec_t initrd_security_finish_time
;
128 usec_t initrd_generators_start_time
;
129 usec_t initrd_generators_finish_time
;
130 usec_t initrd_unitsload_start_time
;
131 usec_t initrd_unitsload_finish_time
;
134 * If we're analyzing the user instance, all timestamps will be offset
135 * by its own start-up timestamp, which may be arbitrarily big.
136 * With "plot", this causes arbitrarily wide output SVG files which almost
137 * completely consist of empty space. Thus we cancel out this offset.
139 * This offset is subtracted from times above by acquire_boot_times(),
140 * but it still needs to be subtracted from unit-specific timestamps
141 * (so it is stored here for reference).
143 usec_t reverse_offset
;
146 typedef struct UnitTimes
{
156 typedef struct HostInfo
{
159 char *kernel_release
;
160 char *kernel_version
;
161 char *os_pretty_name
;
162 char *virtualization
;
166 static int acquire_bus(sd_bus
**bus
, bool *use_full_bus
) {
167 bool user
= arg_scope
!= UNIT_FILE_SYSTEM
;
170 if (use_full_bus
&& *use_full_bus
) {
171 r
= bus_connect_transport(arg_transport
, arg_host
, user
, bus
);
172 if (IN_SET(r
, 0, -EHOSTDOWN
))
175 *use_full_bus
= false;
178 return bus_connect_transport_systemd(arg_transport
, arg_host
, user
, bus
);
181 static int bus_get_uint64_property(sd_bus
*bus
, const char *path
, const char *interface
, const char *property
, uint64_t *val
) {
182 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
191 r
= sd_bus_get_property_trivial(
193 "org.freedesktop.systemd1",
201 return log_error_errno(r
, "Failed to parse reply: %s", bus_error_message(&error
, r
));
206 static int bus_get_unit_property_strv(sd_bus
*bus
, const char *path
, const char *property
, char ***strv
) {
207 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
215 r
= sd_bus_get_property_strv(
217 "org.freedesktop.systemd1",
219 "org.freedesktop.systemd1.Unit",
224 return log_error_errno(r
, "Failed to get unit property %s: %s", property
, bus_error_message(&error
, r
));
229 static int compare_unit_start(const UnitTimes
*a
, const UnitTimes
*b
) {
230 return CMP(a
->activating
, b
->activating
);
233 static UnitTimes
* unit_times_free_array(UnitTimes
*t
) {
234 for (UnitTimes
*p
= t
; p
&& p
->has_data
; p
++)
238 DEFINE_TRIVIAL_CLEANUP_FUNC(UnitTimes
*, unit_times_free_array
);
240 static void subtract_timestamp(usec_t
*a
, usec_t b
) {
249 static int acquire_boot_times(sd_bus
*bus
, BootTimes
**bt
) {
250 static const struct bus_properties_map property_map
[] = {
251 { "FirmwareTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, firmware_time
) },
252 { "LoaderTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, loader_time
) },
253 { "KernelTimestamp", "t", NULL
, offsetof(BootTimes
, kernel_time
) },
254 { "InitRDTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, initrd_time
) },
255 { "UserspaceTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, userspace_time
) },
256 { "FinishTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, finish_time
) },
257 { "SecurityStartTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, security_start_time
) },
258 { "SecurityFinishTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, security_finish_time
) },
259 { "GeneratorsStartTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, generators_start_time
) },
260 { "GeneratorsFinishTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, generators_finish_time
) },
261 { "UnitsLoadStartTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, unitsload_start_time
) },
262 { "UnitsLoadFinishTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, unitsload_finish_time
) },
263 { "InitRDSecurityStartTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, initrd_security_start_time
) },
264 { "InitRDSecurityFinishTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, initrd_security_finish_time
) },
265 { "InitRDGeneratorsStartTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, initrd_generators_start_time
) },
266 { "InitRDGeneratorsFinishTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, initrd_generators_finish_time
) },
267 { "InitRDUnitsLoadStartTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, initrd_unitsload_start_time
) },
268 { "InitRDUnitsLoadFinishTimestampMonotonic", "t", NULL
, offsetof(BootTimes
, initrd_unitsload_finish_time
) },
271 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
272 static BootTimes times
;
273 static bool cached
= false;
279 assert_cc(sizeof(usec_t
) == sizeof(uint64_t));
281 r
= bus_map_all_properties(
283 "org.freedesktop.systemd1",
284 "/org/freedesktop/systemd1",
291 return log_error_errno(r
, "Failed to get timestamp properties: %s", bus_error_message(&error
, r
));
293 if (times
.finish_time
<= 0)
294 return log_error_errno(SYNTHETIC_ERRNO(EINPROGRESS
),
295 "Bootup is not yet finished (org.freedesktop.systemd1.Manager.FinishTimestampMonotonic=%"PRIu64
").\n"
296 "Please try again later.\n"
297 "Hint: Use 'systemctl%s list-jobs' to see active jobs",
299 arg_scope
== UNIT_FILE_SYSTEM
? "" : " --user");
301 if (arg_scope
== UNIT_FILE_SYSTEM
&& times
.security_start_time
> 0) {
302 /* security_start_time is set when systemd is not running under container environment. */
303 if (times
.initrd_time
> 0)
304 times
.kernel_done_time
= times
.initrd_time
;
306 times
.kernel_done_time
= times
.userspace_time
;
309 * User-instance-specific or container-system-specific timestamps processing
310 * (see comment to reverse_offset in BootTimes).
312 times
.reverse_offset
= times
.userspace_time
;
314 times
.firmware_time
= times
.loader_time
= times
.kernel_time
= times
.initrd_time
=
315 times
.userspace_time
= times
.security_start_time
= times
.security_finish_time
= 0;
317 subtract_timestamp(×
.finish_time
, times
.reverse_offset
);
319 subtract_timestamp(×
.generators_start_time
, times
.reverse_offset
);
320 subtract_timestamp(×
.generators_finish_time
, times
.reverse_offset
);
322 subtract_timestamp(×
.unitsload_start_time
, times
.reverse_offset
);
323 subtract_timestamp(×
.unitsload_finish_time
, times
.reverse_offset
);
333 static HostInfo
* free_host_info(HostInfo
*hi
) {
338 free(hi
->kernel_name
);
339 free(hi
->kernel_release
);
340 free(hi
->kernel_version
);
341 free(hi
->os_pretty_name
);
342 free(hi
->virtualization
);
343 free(hi
->architecture
);
347 DEFINE_TRIVIAL_CLEANUP_FUNC(HostInfo
*, free_host_info
);
349 static int acquire_time_data(sd_bus
*bus
, UnitTimes
**out
) {
350 static const struct bus_properties_map property_map
[] = {
351 { "InactiveExitTimestampMonotonic", "t", NULL
, offsetof(UnitTimes
, activating
) },
352 { "ActiveEnterTimestampMonotonic", "t", NULL
, offsetof(UnitTimes
, activated
) },
353 { "ActiveExitTimestampMonotonic", "t", NULL
, offsetof(UnitTimes
, deactivating
) },
354 { "InactiveEnterTimestampMonotonic", "t", NULL
, offsetof(UnitTimes
, deactivated
) },
357 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
*reply
= NULL
;
358 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
359 _cleanup_(unit_times_free_arrayp
) UnitTimes
*unit_times
= NULL
;
360 BootTimes
*boot_times
= NULL
;
365 r
= acquire_boot_times(bus
, &boot_times
);
369 r
= bus_call_method(bus
, bus_systemd_mgr
, "ListUnits", &error
, &reply
, NULL
);
371 return log_error_errno(r
, "Failed to list units: %s", bus_error_message(&error
, r
));
373 r
= sd_bus_message_enter_container(reply
, SD_BUS_TYPE_ARRAY
, "(ssssssouso)");
375 return bus_log_parse_error(r
);
377 while ((r
= bus_parse_unit_info(reply
, &u
)) > 0) {
380 if (!GREEDY_REALLOC(unit_times
, c
+ 2))
383 unit_times
[c
+ 1].has_data
= false;
387 assert_cc(sizeof(usec_t
) == sizeof(uint64_t));
389 r
= bus_map_all_properties(
391 "org.freedesktop.systemd1",
399 return log_error_errno(r
, "Failed to get timestamp properties of unit %s: %s",
400 u
.id
, bus_error_message(&error
, r
));
402 subtract_timestamp(&t
->activating
, boot_times
->reverse_offset
);
403 subtract_timestamp(&t
->activated
, boot_times
->reverse_offset
);
404 subtract_timestamp(&t
->deactivating
, boot_times
->reverse_offset
);
405 subtract_timestamp(&t
->deactivated
, boot_times
->reverse_offset
);
407 if (t
->activated
>= t
->activating
)
408 t
->time
= t
->activated
- t
->activating
;
409 else if (t
->deactivated
>= t
->activating
)
410 t
->time
= t
->deactivated
- t
->activating
;
414 if (t
->activating
== 0)
417 t
->name
= strdup(u
.id
);
425 return bus_log_parse_error(r
);
427 *out
= TAKE_PTR(unit_times
);
431 static int acquire_host_info(sd_bus
*bus
, HostInfo
**hi
) {
432 static const struct bus_properties_map hostname_map
[] = {
433 { "Hostname", "s", NULL
, offsetof(HostInfo
, hostname
) },
434 { "KernelName", "s", NULL
, offsetof(HostInfo
, kernel_name
) },
435 { "KernelRelease", "s", NULL
, offsetof(HostInfo
, kernel_release
) },
436 { "KernelVersion", "s", NULL
, offsetof(HostInfo
, kernel_version
) },
437 { "OperatingSystemPrettyName", "s", NULL
, offsetof(HostInfo
, os_pretty_name
) },
441 static const struct bus_properties_map manager_map
[] = {
442 { "Virtualization", "s", NULL
, offsetof(HostInfo
, virtualization
) },
443 { "Architecture", "s", NULL
, offsetof(HostInfo
, architecture
) },
447 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
448 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*system_bus
= NULL
;
449 _cleanup_(free_host_infop
) HostInfo
*host
= NULL
;
452 host
= new0(HostInfo
, 1);
456 if (arg_scope
!= UNIT_FILE_SYSTEM
) {
457 r
= bus_connect_transport(arg_transport
, arg_host
, false, &system_bus
);
459 log_debug_errno(r
, "Failed to connect to system bus, ignoring: %m");
464 r
= bus_map_all_properties(
466 "org.freedesktop.hostname1",
467 "/org/freedesktop/hostname1",
474 log_debug_errno(r
, "Failed to get host information from systemd-hostnamed, ignoring: %s",
475 bus_error_message(&error
, r
));
476 sd_bus_error_free(&error
);
480 r
= bus_map_all_properties(
482 "org.freedesktop.systemd1",
483 "/org/freedesktop/systemd1",
490 return log_error_errno(r
, "Failed to get host information from systemd: %s",
491 bus_error_message(&error
, r
));
493 *hi
= TAKE_PTR(host
);
497 static int pretty_boot_time(sd_bus
*bus
, char **_buf
) {
499 static char buf
[4096];
503 usec_t activated_time
= USEC_INFINITY
;
504 _cleanup_free_
char *path
= NULL
, *unit_id
= NULL
;
505 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
507 r
= acquire_boot_times(bus
, &t
);
511 path
= unit_dbus_path_from_name(SPECIAL_DEFAULT_TARGET
);
515 r
= sd_bus_get_property_string(
517 "org.freedesktop.systemd1",
519 "org.freedesktop.systemd1.Unit",
524 log_error_errno(r
, "default.target doesn't seem to exist: %s", bus_error_message(&error
, r
));
528 r
= bus_get_uint64_property(bus
, path
,
529 "org.freedesktop.systemd1.Unit",
530 "ActiveEnterTimestampMonotonic",
533 log_info_errno(r
, "Could not get time to reach default.target, ignoring: %m");
534 activated_time
= USEC_INFINITY
;
540 size
= strpcpyf(&ptr
, size
, "Startup finished in ");
541 if (t
->firmware_time
> 0)
542 size
= strpcpyf(&ptr
, size
, "%s (firmware) + ", FORMAT_TIMESPAN(t
->firmware_time
- t
->loader_time
, USEC_PER_MSEC
));
543 if (t
->loader_time
> 0)
544 size
= strpcpyf(&ptr
, size
, "%s (loader) + ", FORMAT_TIMESPAN(t
->loader_time
, USEC_PER_MSEC
));
545 if (t
->kernel_done_time
> 0)
546 size
= strpcpyf(&ptr
, size
, "%s (kernel) + ", FORMAT_TIMESPAN(t
->kernel_done_time
, USEC_PER_MSEC
));
547 if (t
->initrd_time
> 0)
548 size
= strpcpyf(&ptr
, size
, "%s (initrd) + ", FORMAT_TIMESPAN(t
->userspace_time
- t
->initrd_time
, USEC_PER_MSEC
));
550 size
= strpcpyf(&ptr
, size
, "%s (userspace) ", FORMAT_TIMESPAN(t
->finish_time
- t
->userspace_time
, USEC_PER_MSEC
));
551 if (t
->kernel_done_time
> 0)
552 strpcpyf(&ptr
, size
, "= %s ", FORMAT_TIMESPAN(t
->firmware_time
+ t
->finish_time
, USEC_PER_MSEC
));
554 if (unit_id
&& timestamp_is_set(activated_time
)) {
555 usec_t base
= t
->userspace_time
> 0 ? t
->userspace_time
: t
->reverse_offset
;
557 size
= strpcpyf(&ptr
, size
, "\n%s reached after %s in userspace", unit_id
,
558 FORMAT_TIMESPAN(activated_time
- base
, USEC_PER_MSEC
));
559 } else if (unit_id
&& activated_time
== 0)
560 size
= strpcpyf(&ptr
, size
, "\n%s was never reached", unit_id
);
561 else if (unit_id
&& activated_time
== USEC_INFINITY
)
562 size
= strpcpyf(&ptr
, size
, "\nCould not get time to reach %s.", unit_id
);
564 size
= strpcpyf(&ptr
, size
, "\ncould not find default.target");
574 static void svg_graph_box(double height
, double begin
, double end
) {
575 /* outside box, fill */
576 svg("<rect class=\"box\" x=\"0\" y=\"0\" width=\"%.03f\" height=\"%.03f\" />\n",
577 SCALE_X
* (end
- begin
),
580 for (long long i
= ((long long) (begin
/ 100000)) * 100000; i
<= end
; i
+= 100000) {
581 /* lines for each second */
582 if (i
% 5000000 == 0)
583 svg(" <line class=\"sec5\" x1=\"%.03f\" y1=\"0\" x2=\"%.03f\" y2=\"%.03f\" />\n"
584 " <text class=\"sec\" x=\"%.03f\" y=\"%.03f\" >%.01fs</text>\n",
591 else if (i
% 1000000 == 0)
592 svg(" <line class=\"sec1\" x1=\"%.03f\" y1=\"0\" x2=\"%.03f\" y2=\"%.03f\" />\n"
593 " <text class=\"sec\" x=\"%.03f\" y=\"%.03f\" >%.01fs</text>\n",
601 svg(" <line class=\"sec01\" x1=\"%.03f\" y1=\"0\" x2=\"%.03f\" y2=\"%.03f\" />\n",
608 static int plot_unit_times(UnitTimes
*u
, double width
, int y
) {
614 svg_bar("activating", u
->activating
, u
->activated
, y
);
615 svg_bar("active", u
->activated
, u
->deactivating
, y
);
616 svg_bar("deactivating", u
->deactivating
, u
->deactivated
, y
);
618 /* place the text on the left if we have passed the half of the svg width */
619 b
= u
->activating
* SCALE_X
< width
/ 2;
621 svg_text(b
, u
->activating
, y
, "%s (%s)",
622 u
->name
, FORMAT_TIMESPAN(u
->time
, USEC_PER_MSEC
));
624 svg_text(b
, u
->activating
, y
, "%s", u
->name
);
629 static int analyze_plot(int argc
, char *argv
[], void *userdata
) {
630 _cleanup_(free_host_infop
) HostInfo
*host
= NULL
;
631 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
632 _cleanup_(unit_times_free_arrayp
) UnitTimes
*times
= NULL
;
633 _cleanup_free_
char *pretty_times
= NULL
;
634 bool use_full_bus
= arg_scope
== UNIT_FILE_SYSTEM
;
637 int n
, m
= 1, y
= 0, r
;
640 r
= acquire_bus(&bus
, &use_full_bus
);
642 return bus_log_connect_error(r
);
644 n
= acquire_boot_times(bus
, &boot
);
648 n
= pretty_boot_time(bus
, &pretty_times
);
652 if (use_full_bus
|| arg_scope
!= UNIT_FILE_SYSTEM
) {
653 n
= acquire_host_info(bus
, &host
);
658 n
= acquire_time_data(bus
, ×
);
662 typesafe_qsort(times
, n
, compare_unit_start
);
664 width
= SCALE_X
* (boot
->firmware_time
+ boot
->finish_time
);
668 if (boot
->firmware_time
> boot
->loader_time
)
670 if (boot
->loader_time
> 0) {
675 if (boot
->initrd_time
> 0)
677 if (boot
->kernel_done_time
> 0)
680 for (u
= times
; u
->has_data
; u
++) {
681 double text_start
, text_width
;
683 if (u
->activating
> boot
->finish_time
) {
684 u
->name
= mfree(u
->name
);
688 /* If the text cannot fit on the left side then
689 * increase the svg width so it fits on the right.
690 * TODO: calculate the text width more accurately */
691 text_width
= 8.0 * strlen(u
->name
);
692 text_start
= (boot
->firmware_time
+ u
->activating
) * SCALE_X
;
693 if (text_width
> text_start
&& text_width
+ text_start
> width
)
694 width
= text_width
+ text_start
;
696 if (u
->deactivated
> u
->activating
&&
697 u
->deactivated
<= boot
->finish_time
&&
698 u
->activated
== 0 && u
->deactivating
== 0)
699 u
->activated
= u
->deactivating
= u
->deactivated
;
700 if (u
->activated
< u
->activating
|| u
->activated
> boot
->finish_time
)
701 u
->activated
= boot
->finish_time
;
702 if (u
->deactivating
< u
->activated
|| u
->deactivating
> boot
->finish_time
)
703 u
->deactivating
= boot
->finish_time
;
704 if (u
->deactivated
< u
->deactivating
|| u
->deactivated
> boot
->finish_time
)
705 u
->deactivated
= boot
->finish_time
;
709 svg("<?xml version=\"1.0\" standalone=\"no\"?>\n"
710 "<!DOCTYPE svg PUBLIC \"-//W3C//DTD SVG 1.1//EN\" "
711 "\"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd\">\n");
713 svg("<svg width=\"%.0fpx\" height=\"%.0fpx\" version=\"1.1\" "
714 "xmlns=\"http://www.w3.org/2000/svg\">\n\n",
715 80.0 + width
, 150.0 + (m
* SCALE_Y
) +
716 5 * SCALE_Y
/* legend */);
718 /* write some basic info as a comment, including some help */
719 svg("<!-- This file is a systemd-analyze SVG file. It is best rendered in a -->\n"
720 "<!-- browser such as Chrome, Chromium or Firefox. Other applications -->\n"
721 "<!-- that render these files properly but much slower are ImageMagick, -->\n"
722 "<!-- gimp, inkscape, etc. To display the files on your system, just -->\n"
723 "<!-- point your browser to this file. -->\n\n"
724 "<!-- This plot was generated by systemd-analyze version %-16.16s -->\n\n", GIT_VERSION
);
727 svg("<defs>\n <style type=\"text/css\">\n <![CDATA[\n"
728 " rect { stroke-width: 1; stroke-opacity: 0; }\n"
729 " rect.background { fill: rgb(255,255,255); }\n"
730 " rect.activating { fill: rgb(255,0,0); fill-opacity: 0.7; }\n"
731 " rect.active { fill: rgb(200,150,150); fill-opacity: 0.7; }\n"
732 " rect.deactivating { fill: rgb(150,100,100); fill-opacity: 0.7; }\n"
733 " rect.kernel { fill: rgb(150,150,150); fill-opacity: 0.7; }\n"
734 " rect.initrd { fill: rgb(150,150,150); fill-opacity: 0.7; }\n"
735 " rect.firmware { fill: rgb(150,150,150); fill-opacity: 0.7; }\n"
736 " rect.loader { fill: rgb(150,150,150); fill-opacity: 0.7; }\n"
737 " rect.userspace { fill: rgb(150,150,150); fill-opacity: 0.7; }\n"
738 " rect.security { fill: rgb(144,238,144); fill-opacity: 0.7; }\n"
739 " rect.generators { fill: rgb(102,204,255); fill-opacity: 0.7; }\n"
740 " rect.unitsload { fill: rgb( 82,184,255); fill-opacity: 0.7; }\n"
741 " rect.box { fill: rgb(240,240,240); stroke: rgb(192,192,192); }\n"
742 " line { stroke: rgb(64,64,64); stroke-width: 1; }\n"
744 " line.sec5 { stroke-width: 2; }\n"
745 " line.sec01 { stroke: rgb(224,224,224); stroke-width: 1; }\n"
746 " text { font-family: Verdana, Helvetica; font-size: 14px; }\n"
747 " text.left { font-family: Verdana, Helvetica; font-size: 14px; text-anchor: start; }\n"
748 " text.right { font-family: Verdana, Helvetica; font-size: 14px; text-anchor: end; }\n"
749 " text.sec { font-size: 10px; }\n"
750 " ]]>\n </style>\n</defs>\n\n");
752 svg("<rect class=\"background\" width=\"100%%\" height=\"100%%\" />\n");
753 svg("<text x=\"20\" y=\"50\">%s</text>", pretty_times
);
755 svg("<text x=\"20\" y=\"30\">%s %s (%s %s %s) %s %s</text>",
756 isempty(host
->os_pretty_name
) ? "Linux" : host
->os_pretty_name
,
757 strempty(host
->hostname
),
758 strempty(host
->kernel_name
),
759 strempty(host
->kernel_release
),
760 strempty(host
->kernel_version
),
761 strempty(host
->architecture
),
762 strempty(host
->virtualization
));
764 svg("<g transform=\"translate(%.3f,100)\">\n", 20.0 + (SCALE_X
* boot
->firmware_time
));
765 svg_graph_box(m
, -(double) boot
->firmware_time
, boot
->finish_time
);
767 if (boot
->firmware_time
> 0) {
768 svg_bar("firmware", -(double) boot
->firmware_time
, -(double) boot
->loader_time
, y
);
769 svg_text(true, -(double) boot
->firmware_time
, y
, "firmware");
772 if (boot
->loader_time
> 0) {
773 svg_bar("loader", -(double) boot
->loader_time
, 0, y
);
774 svg_text(true, -(double) boot
->loader_time
, y
, "loader");
777 if (boot
->kernel_done_time
> 0) {
778 svg_bar("kernel", 0, boot
->kernel_done_time
, y
);
779 svg_text(true, 0, y
, "kernel");
782 if (boot
->initrd_time
> 0) {
783 svg_bar("initrd", boot
->initrd_time
, boot
->userspace_time
, y
);
784 if (boot
->initrd_security_start_time
< boot
->initrd_security_finish_time
)
785 svg_bar("security", boot
->initrd_security_start_time
, boot
->initrd_security_finish_time
, y
);
786 if (boot
->initrd_generators_start_time
< boot
->initrd_generators_finish_time
)
787 svg_bar("generators", boot
->initrd_generators_start_time
, boot
->initrd_generators_finish_time
, y
);
788 if (boot
->initrd_unitsload_start_time
< boot
->initrd_unitsload_finish_time
)
789 svg_bar("unitsload", boot
->initrd_unitsload_start_time
, boot
->initrd_unitsload_finish_time
, y
);
790 svg_text(true, boot
->initrd_time
, y
, "initrd");
794 for (u
= times
; u
->has_data
; u
++) {
795 if (u
->activating
>= boot
->userspace_time
)
798 y
+= plot_unit_times(u
, width
, y
);
801 svg_bar("active", boot
->userspace_time
, boot
->finish_time
, y
);
802 if (boot
->security_start_time
> 0)
803 svg_bar("security", boot
->security_start_time
, boot
->security_finish_time
, y
);
804 svg_bar("generators", boot
->generators_start_time
, boot
->generators_finish_time
, y
);
805 svg_bar("unitsload", boot
->unitsload_start_time
, boot
->unitsload_finish_time
, y
);
806 svg_text(true, boot
->userspace_time
, y
, "systemd");
809 for (; u
->has_data
; u
++)
810 y
+= plot_unit_times(u
, width
, y
);
815 svg("<g transform=\"translate(20,100)\">\n");
817 svg_bar("activating", 0, 300000, y
);
818 svg_text(true, 400000, y
, "Activating");
820 svg_bar("active", 0, 300000, y
);
821 svg_text(true, 400000, y
, "Active");
823 svg_bar("deactivating", 0, 300000, y
);
824 svg_text(true, 400000, y
, "Deactivating");
826 if (boot
->security_start_time
> 0) {
827 svg_bar("security", 0, 300000, y
);
828 svg_text(true, 400000, y
, "Setting up security module");
831 svg_bar("generators", 0, 300000, y
);
832 svg_text(true, 400000, y
, "Generators");
834 svg_bar("unitsload", 0, 300000, y
);
835 svg_text(true, 400000, y
, "Loading unit files");
845 static int list_dependencies_print(
853 for (unsigned i
= level
; i
!= 0; i
--)
854 printf("%s", special_glyph(branches
& (1 << (i
-1)) ? SPECIAL_GLYPH_TREE_VERTICAL
: SPECIAL_GLYPH_TREE_SPACE
));
856 printf("%s", special_glyph(last
? SPECIAL_GLYPH_TREE_RIGHT
: SPECIAL_GLYPH_TREE_BRANCH
));
860 printf("%s%s @%s +%s%s", ansi_highlight_red(), name
,
861 FORMAT_TIMESPAN(times
->activating
- boot
->userspace_time
, USEC_PER_MSEC
),
862 FORMAT_TIMESPAN(times
->time
, USEC_PER_MSEC
), ansi_normal());
863 else if (times
->activated
> boot
->userspace_time
)
864 printf("%s @%s", name
, FORMAT_TIMESPAN(times
->activated
- boot
->userspace_time
, USEC_PER_MSEC
));
874 static int list_dependencies_get_dependencies(sd_bus
*bus
, const char *name
, char ***deps
) {
875 _cleanup_free_
char *path
= NULL
;
881 path
= unit_dbus_path_from_name(name
);
885 return bus_get_unit_property_strv(bus
, path
, "After", deps
);
888 static Hashmap
*unit_times_hashmap
;
890 static int list_dependencies_compare(char *const *a
, char *const *b
) {
891 usec_t usa
= 0, usb
= 0;
894 times
= hashmap_get(unit_times_hashmap
, *a
);
896 usa
= times
->activated
;
897 times
= hashmap_get(unit_times_hashmap
, *b
);
899 usb
= times
->activated
;
901 return CMP(usb
, usa
);
904 static bool times_in_range(const UnitTimes
*times
, const BootTimes
*boot
) {
905 return times
&& times
->activated
> 0 && times
->activated
<= boot
->finish_time
;
908 static int list_dependencies_one(sd_bus
*bus
, const char *name
, unsigned level
, char ***units
, unsigned branches
) {
909 _cleanup_strv_free_
char **deps
= NULL
;
912 usec_t service_longest
= 0;
917 if (strv_extend(units
, name
))
920 r
= list_dependencies_get_dependencies(bus
, name
, &deps
);
924 typesafe_qsort(deps
, strv_length(deps
), list_dependencies_compare
);
926 r
= acquire_boot_times(bus
, &boot
);
930 STRV_FOREACH(c
, deps
) {
931 times
= hashmap_get(unit_times_hashmap
, *c
);
932 if (times_in_range(times
, boot
) && times
->activated
>= service_longest
)
933 service_longest
= times
->activated
;
936 if (service_longest
== 0)
939 STRV_FOREACH(c
, deps
) {
940 times
= hashmap_get(unit_times_hashmap
, *c
);
941 if (times_in_range(times
, boot
) && service_longest
- times
->activated
<= arg_fuzz
)
948 STRV_FOREACH(c
, deps
) {
949 times
= hashmap_get(unit_times_hashmap
, *c
);
950 if (!times_in_range(times
, boot
) || service_longest
- times
->activated
> arg_fuzz
)
955 r
= list_dependencies_print(*c
, level
, branches
, to_print
== 0, times
, boot
);
959 if (strv_contains(*units
, *c
)) {
960 r
= list_dependencies_print("...", level
+ 1, (branches
<< 1) | (to_print
? 1 : 0),
967 r
= list_dependencies_one(bus
, *c
, level
+ 1, units
, (branches
<< 1) | (to_print
? 1 : 0));
977 static int list_dependencies(sd_bus
*bus
, const char *name
) {
978 _cleanup_strv_free_
char **units
= NULL
;
982 _cleanup_free_
char *path
= NULL
;
983 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
*reply
= NULL
;
984 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
989 path
= unit_dbus_path_from_name(name
);
993 r
= sd_bus_get_property(
995 "org.freedesktop.systemd1",
997 "org.freedesktop.systemd1.Unit",
1003 return log_error_errno(r
, "Failed to get ID: %s", bus_error_message(&error
, r
));
1005 r
= sd_bus_message_read(reply
, "s", &id
);
1007 return bus_log_parse_error(r
);
1009 times
= hashmap_get(unit_times_hashmap
, id
);
1011 r
= acquire_boot_times(bus
, &boot
);
1017 printf("%s%s +%s%s\n", ansi_highlight_red(), id
,
1018 FORMAT_TIMESPAN(times
->time
, USEC_PER_MSEC
), ansi_normal());
1019 else if (times
->activated
> boot
->userspace_time
)
1020 printf("%s @%s\n", id
,
1021 FORMAT_TIMESPAN(times
->activated
- boot
->userspace_time
, USEC_PER_MSEC
));
1026 return list_dependencies_one(bus
, name
, 0, &units
, 0);
1029 static int analyze_critical_chain(int argc
, char *argv
[], void *userdata
) {
1030 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
1031 _cleanup_(unit_times_free_arrayp
) UnitTimes
*times
= NULL
;
1035 r
= acquire_bus(&bus
, NULL
);
1037 return bus_log_connect_error(r
);
1039 n
= acquire_time_data(bus
, ×
);
1043 h
= hashmap_new(&string_hash_ops
);
1047 for (UnitTimes
*u
= times
; u
->has_data
; u
++) {
1048 r
= hashmap_put(h
, u
->name
, u
);
1050 return log_error_errno(r
, "Failed to add entry to hashmap: %m");
1052 unit_times_hashmap
= h
;
1054 (void) pager_open(arg_pager_flags
);
1056 puts("The time when unit became active or started is printed after the \"@\" character.\n"
1057 "The time the unit took to start is printed after the \"+\" character.\n");
1061 STRV_FOREACH(name
, strv_skip(argv
, 1))
1062 list_dependencies(bus
, *name
);
1064 list_dependencies(bus
, SPECIAL_DEFAULT_TARGET
);
1066 h
= hashmap_free(h
);
1070 static int analyze_blame(int argc
, char *argv
[], void *userdata
) {
1071 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
1072 _cleanup_(unit_times_free_arrayp
) UnitTimes
*times
= NULL
;
1073 _cleanup_(table_unrefp
) Table
*table
= NULL
;
1077 r
= acquire_bus(&bus
, NULL
);
1079 return bus_log_connect_error(r
);
1081 n
= acquire_time_data(bus
, ×
);
1085 table
= table_new("time", "unit");
1089 table_set_header(table
, false);
1091 assert_se(cell
= table_get_cell(table
, 0, 0));
1092 r
= table_set_ellipsize_percent(table
, cell
, 100);
1096 r
= table_set_align_percent(table
, cell
, 100);
1100 assert_se(cell
= table_get_cell(table
, 0, 1));
1101 r
= table_set_ellipsize_percent(table
, cell
, 100);
1105 r
= table_set_sort(table
, (size_t) 0);
1109 r
= table_set_reverse(table
, 0, true);
1113 for (UnitTimes
*u
= times
; u
->has_data
; u
++) {
1117 r
= table_add_many(table
,
1118 TABLE_TIMESPAN_MSEC
, u
->time
,
1119 TABLE_STRING
, u
->name
);
1121 return table_log_add_error(r
);
1124 (void) pager_open(arg_pager_flags
);
1126 return table_print(table
, NULL
);
1129 static int analyze_time(int argc
, char *argv
[], void *userdata
) {
1130 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
1131 _cleanup_free_
char *buf
= NULL
;
1134 r
= acquire_bus(&bus
, NULL
);
1136 return bus_log_connect_error(r
);
1138 r
= pretty_boot_time(bus
, &buf
);
1146 static int graph_one_property(
1152 char *from_patterns
[],
1153 char *to_patterns
[]) {
1155 _cleanup_strv_free_
char **units
= NULL
;
1158 bool match_patterns
;
1164 match_patterns
= strv_fnmatch(patterns
, u
->id
);
1166 if (!strv_isempty(from_patterns
) && !match_patterns
&& !strv_fnmatch(from_patterns
, u
->id
))
1169 r
= bus_get_unit_property_strv(bus
, u
->unit_path
, prop
, &units
);
1173 STRV_FOREACH(unit
, units
) {
1174 bool match_patterns2
;
1176 match_patterns2
= strv_fnmatch(patterns
, *unit
);
1178 if (!strv_isempty(to_patterns
) && !match_patterns2
&& !strv_fnmatch(to_patterns
, *unit
))
1181 if (!strv_isempty(patterns
) && !match_patterns
&& !match_patterns2
)
1184 printf("\t\"%s\"->\"%s\" [color=\"%s\"];\n", u
->id
, *unit
, color
);
1190 static int graph_one(sd_bus
*bus
, const UnitInfo
*u
, char *patterns
[], char *from_patterns
[], char *to_patterns
[]) {
1196 if (IN_SET(arg_dot
, DEP_ORDER
, DEP_ALL
)) {
1197 r
= graph_one_property(bus
, u
, "After", "green", patterns
, from_patterns
, to_patterns
);
1202 if (IN_SET(arg_dot
, DEP_REQUIRE
, DEP_ALL
)) {
1203 r
= graph_one_property(bus
, u
, "Requires", "black", patterns
, from_patterns
, to_patterns
);
1206 r
= graph_one_property(bus
, u
, "Requisite", "darkblue", patterns
, from_patterns
, to_patterns
);
1209 r
= graph_one_property(bus
, u
, "Wants", "grey66", patterns
, from_patterns
, to_patterns
);
1212 r
= graph_one_property(bus
, u
, "Conflicts", "red", patterns
, from_patterns
, to_patterns
);
1220 static int expand_patterns(sd_bus
*bus
, char **patterns
, char ***ret
) {
1221 _cleanup_strv_free_
char **expanded_patterns
= NULL
;
1225 STRV_FOREACH(pattern
, patterns
) {
1226 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
1227 _cleanup_free_
char *unit
= NULL
, *unit_id
= NULL
;
1229 if (strv_extend(&expanded_patterns
, *pattern
) < 0)
1232 if (string_is_glob(*pattern
))
1235 unit
= unit_dbus_path_from_name(*pattern
);
1239 r
= sd_bus_get_property_string(
1241 "org.freedesktop.systemd1",
1243 "org.freedesktop.systemd1.Unit",
1248 return log_error_errno(r
, "Failed to get ID: %s", bus_error_message(&error
, r
));
1250 if (!streq(*pattern
, unit_id
)) {
1251 if (strv_extend(&expanded_patterns
, unit_id
) < 0)
1256 *ret
= TAKE_PTR(expanded_patterns
); /* do not free */
1261 static int dot(int argc
, char *argv
[], void *userdata
) {
1262 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
*reply
= NULL
;
1263 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
1264 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
1265 _cleanup_strv_free_
char **expanded_patterns
= NULL
;
1266 _cleanup_strv_free_
char **expanded_from_patterns
= NULL
;
1267 _cleanup_strv_free_
char **expanded_to_patterns
= NULL
;
1271 r
= acquire_bus(&bus
, NULL
);
1273 return bus_log_connect_error(r
);
1275 r
= expand_patterns(bus
, strv_skip(argv
, 1), &expanded_patterns
);
1279 r
= expand_patterns(bus
, arg_dot_from_patterns
, &expanded_from_patterns
);
1283 r
= expand_patterns(bus
, arg_dot_to_patterns
, &expanded_to_patterns
);
1287 r
= bus_call_method(bus
, bus_systemd_mgr
, "ListUnits", &error
, &reply
, NULL
);
1289 log_error_errno(r
, "Failed to list units: %s", bus_error_message(&error
, r
));
1291 r
= sd_bus_message_enter_container(reply
, SD_BUS_TYPE_ARRAY
, "(ssssssouso)");
1293 return bus_log_parse_error(r
);
1295 printf("digraph systemd {\n");
1297 while ((r
= bus_parse_unit_info(reply
, &u
)) > 0) {
1299 r
= graph_one(bus
, &u
, expanded_patterns
, expanded_from_patterns
, expanded_to_patterns
);
1304 return bus_log_parse_error(r
);
1308 log_info(" Color legend: black = Requires\n"
1309 " dark blue = Requisite\n"
1310 " dark grey = Wants\n"
1311 " red = Conflicts\n"
1312 " green = After\n");
1315 log_notice("-- You probably want to process this output with graphviz' dot tool.\n"
1316 "-- Try a shell pipeline like 'systemd-analyze dot | dot -Tsvg > systemd.svg'!\n");
1321 static int dump_fallback(sd_bus
*bus
) {
1322 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
1323 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
*reply
= NULL
;
1324 const char *text
= NULL
;
1329 r
= bus_call_method(bus
, bus_systemd_mgr
, "Dump", &error
, &reply
, NULL
);
1331 return log_error_errno(r
, "Failed to issue method call Dump: %s", bus_error_message(&error
, r
));
1333 r
= sd_bus_message_read(reply
, "s", &text
);
1335 return bus_log_parse_error(r
);
1337 fputs(text
, stdout
);
1341 static int dump(int argc
, char *argv
[], void *userdata
) {
1342 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
1343 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
*reply
= NULL
;
1344 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
1348 r
= acquire_bus(&bus
, NULL
);
1350 return bus_log_connect_error(r
);
1352 (void) pager_open(arg_pager_flags
);
1354 if (!sd_bus_can_send(bus
, SD_BUS_TYPE_UNIX_FD
))
1355 return dump_fallback(bus
);
1357 r
= bus_call_method(bus
, bus_systemd_mgr
, "DumpByFileDescriptor", &error
, &reply
, NULL
);
1359 /* fall back to Dump if DumpByFileDescriptor is not supported */
1360 if (!IN_SET(r
, -EACCES
, -EBADR
))
1361 return log_error_errno(r
, "Failed to issue method call DumpByFileDescriptor: %s",
1362 bus_error_message(&error
, r
));
1364 return dump_fallback(bus
);
1367 r
= sd_bus_message_read(reply
, "h", &fd
);
1369 return bus_log_parse_error(r
);
1372 return copy_bytes(fd
, STDOUT_FILENO
, UINT64_MAX
, 0);
1375 static int cat_config(int argc
, char *argv
[], void *userdata
) {
1379 (void) pager_open(arg_pager_flags
);
1381 list
= strv_skip(argv
, 1);
1382 STRV_FOREACH(arg
, list
) {
1383 const char *t
= NULL
;
1388 if (path_is_absolute(*arg
)) {
1391 NULSTR_FOREACH(dir
, CONF_PATHS_NULSTR("")) {
1392 t
= path_startswith(*arg
, dir
);
1398 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
1399 "Path %s does not start with any known prefix.", *arg
);
1403 r
= conf_files_cat(arg_root
, t
);
1411 static int verb_log_control(int argc
, char *argv
[], void *userdata
) {
1412 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
1415 assert(IN_SET(argc
, 1, 2));
1417 r
= acquire_bus(&bus
, NULL
);
1419 return bus_log_connect_error(r
);
1421 return verb_log_control_common(bus
, "org.freedesktop.systemd1", argv
[0], argc
== 2 ? argv
[1] : NULL
);
1424 static bool strv_fnmatch_strv_or_empty(char* const* patterns
, char **strv
, int flags
) {
1426 STRV_FOREACH(s
, strv
)
1427 if (strv_fnmatch_or_empty(patterns
, *s
, flags
))
1433 static int do_unit_files(int argc
, char *argv
[], void *userdata
) {
1434 _cleanup_(lookup_paths_free
) LookupPaths lp
= {};
1435 _cleanup_hashmap_free_ Hashmap
*unit_ids
= NULL
;
1436 _cleanup_hashmap_free_ Hashmap
*unit_names
= NULL
;
1437 char **patterns
= strv_skip(argv
, 1);
1438 const char *k
, *dst
;
1442 r
= lookup_paths_init(&lp
, arg_scope
, 0, NULL
);
1444 return log_error_errno(r
, "lookup_paths_init() failed: %m");
1446 r
= unit_file_build_name_map(&lp
, NULL
, &unit_ids
, &unit_names
, NULL
);
1448 return log_error_errno(r
, "unit_file_build_name_map() failed: %m");
1450 HASHMAP_FOREACH_KEY(dst
, k
, unit_ids
) {
1451 if (!strv_fnmatch_or_empty(patterns
, k
, FNM_NOESCAPE
) &&
1452 !strv_fnmatch_or_empty(patterns
, dst
, FNM_NOESCAPE
))
1455 printf("ids: %s → %s\n", k
, dst
);
1458 HASHMAP_FOREACH_KEY(v
, k
, unit_names
) {
1459 if (!strv_fnmatch_or_empty(patterns
, k
, FNM_NOESCAPE
) &&
1460 !strv_fnmatch_strv_or_empty(patterns
, v
, FNM_NOESCAPE
))
1463 _cleanup_free_
char *j
= strv_join(v
, ", ");
1464 printf("aliases: %s ← %s\n", k
, j
);
1470 static int dump_unit_paths(int argc
, char *argv
[], void *userdata
) {
1471 _cleanup_(lookup_paths_free
) LookupPaths paths
= {};
1475 r
= lookup_paths_init(&paths
, arg_scope
, 0, NULL
);
1477 return log_error_errno(r
, "lookup_paths_init() failed: %m");
1479 STRV_FOREACH(p
, paths
.search_path
)
1485 static int dump_exit_status(int argc
, char *argv
[], void *userdata
) {
1486 _cleanup_(table_unrefp
) Table
*table
= NULL
;
1489 table
= table_new("name", "status", "class");
1493 r
= table_set_align_percent(table
, table_get_cell(table
, 0, 1), 100);
1495 return log_error_errno(r
, "Failed to right-align status: %m");
1497 if (strv_isempty(strv_skip(argv
, 1)))
1498 for (size_t i
= 0; i
< ELEMENTSOF(exit_status_mappings
); i
++) {
1499 if (!exit_status_mappings
[i
].name
)
1502 r
= table_add_many(table
,
1503 TABLE_STRING
, exit_status_mappings
[i
].name
,
1505 TABLE_STRING
, exit_status_class(i
));
1507 return table_log_add_error(r
);
1510 for (int i
= 1; i
< argc
; i
++) {
1513 status
= exit_status_from_string(argv
[i
]);
1515 return log_error_errno(status
, "Invalid exit status \"%s\".", argv
[i
]);
1517 assert(status
>= 0 && (size_t) status
< ELEMENTSOF(exit_status_mappings
));
1518 r
= table_add_many(table
,
1519 TABLE_STRING
, exit_status_mappings
[status
].name
?: "-",
1521 TABLE_STRING
, exit_status_class(status
) ?: "-");
1523 return table_log_add_error(r
);
1526 (void) pager_open(arg_pager_flags
);
1528 return table_print(table
, NULL
);
1531 static int dump_capabilities(int argc
, char *argv
[], void *userdata
) {
1532 _cleanup_(table_unrefp
) Table
*table
= NULL
;
1536 table
= table_new("name", "number");
1540 (void) table_set_align_percent(table
, table_get_cell(table
, 0, 1), 100);
1542 /* Determine the maximum of the last cap known by the kernel and by us */
1543 last_cap
= MAX((unsigned) CAP_LAST_CAP
, cap_last_cap());
1545 if (strv_isempty(strv_skip(argv
, 1)))
1546 for (unsigned c
= 0; c
<= last_cap
; c
++) {
1547 r
= table_add_many(table
,
1548 TABLE_STRING
, capability_to_name(c
) ?: "cap_???",
1551 return table_log_add_error(r
);
1554 for (int i
= 1; i
< argc
; i
++) {
1557 c
= capability_from_name(argv
[i
]);
1558 if (c
< 0 || (unsigned) c
> last_cap
)
1559 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
), "Capability \"%s\" not known.", argv
[i
]);
1561 r
= table_add_many(table
,
1562 TABLE_STRING
, capability_to_name(c
) ?: "cap_???",
1563 TABLE_UINT
, (unsigned) c
);
1565 return table_log_add_error(r
);
1568 (void) table_set_sort(table
, (size_t) 1);
1571 (void) pager_open(arg_pager_flags
);
1573 return table_print(table
, NULL
);
1578 static int load_kernel_syscalls(Set
**ret
) {
1579 _cleanup_set_free_ Set
*syscalls
= NULL
;
1580 _cleanup_fclose_
FILE *f
= NULL
;
1583 /* Let's read the available system calls from the list of available tracing events. Slightly dirty,
1584 * but good enough for analysis purposes. */
1586 f
= fopen("/sys/kernel/tracing/available_events", "re");
1588 /* We tried the non-debugfs mount point and that didn't work. If it wasn't mounted, maybe the
1589 * old debugfs mount point works? */
1590 f
= fopen("/sys/kernel/debug/tracing/available_events", "re");
1592 return log_full_errno(IN_SET(errno
, EPERM
, EACCES
, ENOENT
) ? LOG_DEBUG
: LOG_WARNING
, errno
,
1593 "Can't read open tracefs' available_events file: %m");
1597 _cleanup_free_
char *line
= NULL
;
1600 r
= read_line(f
, LONG_LINE_MAX
, &line
);
1602 return log_error_errno(r
, "Failed to read system call list: %m");
1606 e
= startswith(line
, "syscalls:sys_enter_");
1610 /* These are named differently inside the kernel than their external name for historical
1611 * reasons. Let's hide them here. */
1612 if (STR_IN_SET(e
, "newuname", "newfstat", "newstat", "newlstat", "sysctl"))
1615 r
= set_put_strdup(&syscalls
, e
);
1617 return log_error_errno(r
, "Failed to add system call to list: %m");
1620 *ret
= TAKE_PTR(syscalls
);
1624 static void syscall_set_remove(Set
*s
, const SyscallFilterSet
*set
) {
1625 const char *syscall
;
1630 NULSTR_FOREACH(syscall
, set
->value
) {
1631 if (syscall
[0] == '@')
1634 free(set_remove(s
, syscall
));
1638 static void dump_syscall_filter(const SyscallFilterSet
*set
) {
1639 const char *syscall
;
1648 NULSTR_FOREACH(syscall
, set
->value
)
1649 printf(" %s%s%s\n", syscall
[0] == '@' ? ansi_underline() : "", syscall
, ansi_normal());
1652 static int dump_syscall_filters(int argc
, char *argv
[], void *userdata
) {
1655 (void) pager_open(arg_pager_flags
);
1657 if (strv_isempty(strv_skip(argv
, 1))) {
1658 _cleanup_set_free_ Set
*kernel
= NULL
, *known
= NULL
;
1662 NULSTR_FOREACH(sys
, syscall_filter_sets
[SYSCALL_FILTER_SET_KNOWN
].value
)
1663 if (set_put_strdup(&known
, sys
) < 0)
1666 k
= load_kernel_syscalls(&kernel
);
1668 for (int i
= 0; i
< _SYSCALL_FILTER_SET_MAX
; i
++) {
1669 const SyscallFilterSet
*set
= syscall_filter_sets
+ i
;
1673 dump_syscall_filter(set
);
1674 syscall_set_remove(kernel
, set
);
1675 if (i
!= SYSCALL_FILTER_SET_KNOWN
)
1676 syscall_set_remove(known
, set
);
1680 if (!set_isempty(known
)) {
1681 _cleanup_free_
char **l
= NULL
;
1685 "# %sUngrouped System Calls%s (known but not included in any of the groups except @known):\n",
1686 ansi_highlight(), ansi_normal());
1688 l
= set_get_strv(known
);
1694 STRV_FOREACH(syscall
, l
)
1695 printf("# %s\n", *syscall
);
1699 fputc('\n', stdout
);
1701 log_notice_errno(k
, "# Not showing unlisted system calls, couldn't retrieve kernel system call list: %m");
1702 } else if (!set_isempty(kernel
)) {
1703 _cleanup_free_
char **l
= NULL
;
1707 "# %sUnlisted System Calls%s (supported by the local kernel, but not included in any of the groups listed above):\n",
1708 ansi_highlight(), ansi_normal());
1710 l
= set_get_strv(kernel
);
1716 STRV_FOREACH(syscall
, l
)
1717 printf("# %s\n", *syscall
);
1722 STRV_FOREACH(name
, strv_skip(argv
, 1)) {
1723 const SyscallFilterSet
*set
;
1728 set
= syscall_filter_set_find(*name
);
1730 /* make sure the error appears below normal output */
1733 return log_error_errno(SYNTHETIC_ERRNO(ENOENT
),
1734 "Filter set \"%s\" not found.", *name
);
1737 dump_syscall_filter(set
);
1746 static int dump_syscall_filters(int argc
, char *argv
[], void *userdata
) {
1747 return log_error_errno(SYNTHETIC_ERRNO(EOPNOTSUPP
), "Not compiled with syscall filters, sorry.");
1751 static int load_available_kernel_filesystems(Set
**ret
) {
1752 _cleanup_set_free_ Set
*filesystems
= NULL
;
1758 /* Let's read the available filesystems */
1760 r
= read_virtual_file("/proc/filesystems", SIZE_MAX
, &t
, NULL
);
1765 _cleanup_free_
char *line
= NULL
;
1768 r
= string_extract_line(t
, i
++, &line
);
1777 p
= strchr(line
, '\t');
1781 p
+= strspn(p
, WHITESPACE
);
1783 r
= set_put_strdup(&filesystems
, p
);
1785 return log_error_errno(r
, "Failed to add filesystem to list: %m");
1788 *ret
= TAKE_PTR(filesystems
);
1792 static void filesystem_set_remove(Set
*s
, const FilesystemSet
*set
) {
1793 const char *filesystem
;
1795 NULSTR_FOREACH(filesystem
, set
->value
) {
1796 if (filesystem
[0] == '@')
1799 free(set_remove(s
, filesystem
));
1803 static void dump_filesystem(const FilesystemSet
*set
) {
1804 const char *filesystem
;
1816 NULSTR_FOREACH(filesystem
, set
->value
)
1817 printf(" %s%s%s\n", filesystem
[0] == '@' ? ansi_underline() : "", filesystem
, ansi_normal());
1820 static int dump_filesystems(int argc
, char *argv
[], void *userdata
) {
1824 return log_error_errno(SYNTHETIC_ERRNO(EOPNOTSUPP
), "Not compiled with libbpf support, sorry.");
1827 (void) pager_open(arg_pager_flags
);
1829 if (strv_isempty(strv_skip(argv
, 1))) {
1830 _cleanup_set_free_ Set
*kernel
= NULL
, *known
= NULL
;
1834 NULSTR_FOREACH(fs
, filesystem_sets
[FILESYSTEM_SET_KNOWN
].value
)
1835 if (set_put_strdup(&known
, fs
) < 0)
1838 k
= load_available_kernel_filesystems(&kernel
);
1840 for (FilesystemGroups i
= 0; i
< _FILESYSTEM_SET_MAX
; i
++) {
1841 const FilesystemSet
*set
= filesystem_sets
+ i
;
1845 dump_filesystem(set
);
1846 filesystem_set_remove(kernel
, set
);
1847 if (i
!= FILESYSTEM_SET_KNOWN
)
1848 filesystem_set_remove(known
, set
);
1852 if (!set_isempty(known
)) {
1853 _cleanup_free_
char **l
= NULL
;
1857 "# %sUngrouped filesystems%s (known but not included in any of the groups except @known):\n",
1858 ansi_highlight(), ansi_normal());
1860 l
= set_get_strv(known
);
1866 STRV_FOREACH(filesystem
, l
)
1867 printf("# %s\n", *filesystem
);
1871 fputc('\n', stdout
);
1873 log_notice_errno(k
, "# Not showing unlisted filesystems, couldn't retrieve kernel filesystem list: %m");
1874 } else if (!set_isempty(kernel
)) {
1875 _cleanup_free_
char **l
= NULL
;
1879 "# %sUnlisted filesystems%s (available to the local kernel, but not included in any of the groups listed above):\n",
1880 ansi_highlight(), ansi_normal());
1882 l
= set_get_strv(kernel
);
1888 STRV_FOREACH(filesystem
, l
)
1889 printf("# %s\n", *filesystem
);
1894 STRV_FOREACH(name
, strv_skip(argv
, 1)) {
1895 const FilesystemSet
*set
;
1900 set
= filesystem_set_find(*name
);
1902 /* make sure the error appears below normal output */
1905 return log_error_errno(SYNTHETIC_ERRNO(ENOENT
),
1906 "Filesystem set \"%s\" not found.", *name
);
1909 dump_filesystem(set
);
1917 static void parsing_hint(const char *p
, bool calendar
, bool timestamp
, bool timespan
) {
1918 if (calendar
&& calendar_spec_from_string(p
, NULL
) >= 0)
1919 log_notice("Hint: this expression is a valid calendar specification. "
1920 "Use 'systemd-analyze calendar \"%s\"' instead?", p
);
1921 if (timestamp
&& parse_timestamp(p
, NULL
) >= 0)
1922 log_notice("Hint: this expression is a valid timestamp. "
1923 "Use 'systemd-analyze timestamp \"%s\"' instead?", p
);
1924 if (timespan
&& parse_time(p
, NULL
, USEC_PER_SEC
) >= 0)
1925 log_notice("Hint: this expression is a valid timespan. "
1926 "Use 'systemd-analyze timespan \"%s\"' instead?", p
);
1929 static int dump_timespan(int argc
, char *argv
[], void *userdata
) {
1930 char **input_timespan
;
1932 STRV_FOREACH(input_timespan
, strv_skip(argv
, 1)) {
1933 _cleanup_(table_unrefp
) Table
*table
= NULL
;
1934 usec_t output_usecs
;
1938 r
= parse_time(*input_timespan
, &output_usecs
, USEC_PER_SEC
);
1940 log_error_errno(r
, "Failed to parse time span '%s': %m", *input_timespan
);
1941 parsing_hint(*input_timespan
, true, true, false);
1945 table
= table_new("name", "value");
1949 table_set_header(table
, false);
1951 assert_se(cell
= table_get_cell(table
, 0, 0));
1952 r
= table_set_ellipsize_percent(table
, cell
, 100);
1956 r
= table_set_align_percent(table
, cell
, 100);
1960 assert_se(cell
= table_get_cell(table
, 0, 1));
1961 r
= table_set_ellipsize_percent(table
, cell
, 100);
1965 r
= table_add_many(table
,
1966 TABLE_STRING
, "Original:",
1967 TABLE_STRING
, *input_timespan
);
1969 return table_log_add_error(r
);
1971 r
= table_add_cell_stringf(table
, NULL
, "%ss:", special_glyph(SPECIAL_GLYPH_MU
));
1973 return table_log_add_error(r
);
1975 r
= table_add_many(table
,
1976 TABLE_UINT64
, output_usecs
,
1977 TABLE_STRING
, "Human:",
1978 TABLE_TIMESPAN
, output_usecs
,
1979 TABLE_SET_COLOR
, ansi_highlight());
1981 return table_log_add_error(r
);
1983 r
= table_print(table
, NULL
);
1987 if (input_timespan
[1])
1991 return EXIT_SUCCESS
;
1994 static int test_timestamp_one(const char *p
) {
1995 _cleanup_(table_unrefp
) Table
*table
= NULL
;
2000 r
= parse_timestamp(p
, &usec
);
2002 log_error_errno(r
, "Failed to parse \"%s\": %m", p
);
2003 parsing_hint(p
, true, false, true);
2007 table
= table_new("name", "value");
2011 table_set_header(table
, false);
2013 assert_se(cell
= table_get_cell(table
, 0, 0));
2014 r
= table_set_ellipsize_percent(table
, cell
, 100);
2018 r
= table_set_align_percent(table
, cell
, 100);
2022 assert_se(cell
= table_get_cell(table
, 0, 1));
2023 r
= table_set_ellipsize_percent(table
, cell
, 100);
2027 r
= table_add_many(table
,
2028 TABLE_STRING
, "Original form:",
2030 TABLE_STRING
, "Normalized form:",
2031 TABLE_TIMESTAMP
, usec
,
2032 TABLE_SET_COLOR
, ansi_highlight_blue());
2034 return table_log_add_error(r
);
2036 if (!in_utc_timezone()) {
2037 r
= table_add_many(table
,
2038 TABLE_STRING
, "(in UTC):",
2039 TABLE_TIMESTAMP_UTC
, usec
);
2041 return table_log_add_error(r
);
2044 r
= table_add_cell(table
, NULL
, TABLE_STRING
, "UNIX seconds:");
2046 return table_log_add_error(r
);
2048 if (usec
% USEC_PER_SEC
== 0)
2049 r
= table_add_cell_stringf(table
, NULL
, "@%"PRI_USEC
,
2050 usec
/ USEC_PER_SEC
);
2052 r
= table_add_cell_stringf(table
, NULL
, "@%"PRI_USEC
".%06"PRI_USEC
"",
2053 usec
/ USEC_PER_SEC
,
2054 usec
% USEC_PER_SEC
);
2058 r
= table_add_many(table
,
2059 TABLE_STRING
, "From now:",
2060 TABLE_TIMESTAMP_RELATIVE
, usec
);
2062 return table_log_add_error(r
);
2064 return table_print(table
, NULL
);
2067 static int test_timestamp(int argc
, char *argv
[], void *userdata
) {
2071 STRV_FOREACH(p
, strv_skip(argv
, 1)) {
2072 r
= test_timestamp_one(*p
);
2073 if (ret
== 0 && r
< 0)
2083 static int test_calendar_one(usec_t n
, const char *p
) {
2084 _cleanup_(calendar_spec_freep
) CalendarSpec
*spec
= NULL
;
2085 _cleanup_(table_unrefp
) Table
*table
= NULL
;
2086 _cleanup_free_
char *t
= NULL
;
2090 r
= calendar_spec_from_string(p
, &spec
);
2092 log_error_errno(r
, "Failed to parse calendar specification '%s': %m", p
);
2093 parsing_hint(p
, false, true, true);
2097 r
= calendar_spec_to_string(spec
, &t
);
2099 return log_error_errno(r
, "Failed to format calendar specification '%s': %m", p
);
2101 table
= table_new("name", "value");
2105 table_set_header(table
, false);
2107 assert_se(cell
= table_get_cell(table
, 0, 0));
2108 r
= table_set_ellipsize_percent(table
, cell
, 100);
2112 r
= table_set_align_percent(table
, cell
, 100);
2116 assert_se(cell
= table_get_cell(table
, 0, 1));
2117 r
= table_set_ellipsize_percent(table
, cell
, 100);
2122 r
= table_add_many(table
,
2123 TABLE_STRING
, "Original form:",
2126 return table_log_add_error(r
);
2129 r
= table_add_many(table
,
2130 TABLE_STRING
, "Normalized form:",
2133 return table_log_add_error(r
);
2135 for (unsigned i
= 0; i
< arg_iterations
; i
++) {
2138 r
= calendar_spec_next_usec(spec
, n
, &next
);
2141 r
= table_add_many(table
,
2142 TABLE_STRING
, "Next elapse:",
2143 TABLE_STRING
, "never",
2144 TABLE_SET_COLOR
, ansi_highlight_yellow());
2146 return table_log_add_error(r
);
2151 return log_error_errno(r
, "Failed to determine next elapse for '%s': %m", p
);
2154 r
= table_add_many(table
,
2155 TABLE_STRING
, "Next elapse:",
2156 TABLE_TIMESTAMP
, next
,
2157 TABLE_SET_COLOR
, ansi_highlight_blue());
2159 return table_log_add_error(r
);
2161 int k
= DECIMAL_STR_WIDTH(i
+ 1);
2168 r
= table_add_cell_stringf(table
, NULL
, "Iter. #%u:", i
+1);
2170 return table_log_add_error(r
);
2172 r
= table_add_many(table
,
2173 TABLE_TIMESTAMP
, next
,
2174 TABLE_SET_COLOR
, ansi_highlight_blue());
2176 return table_log_add_error(r
);
2179 if (!in_utc_timezone()) {
2180 r
= table_add_many(table
,
2181 TABLE_STRING
, "(in UTC):",
2182 TABLE_TIMESTAMP_UTC
, next
);
2184 return table_log_add_error(r
);
2187 r
= table_add_many(table
,
2188 TABLE_STRING
, "From now:",
2189 TABLE_TIMESTAMP_RELATIVE
, next
);
2191 return table_log_add_error(r
);
2196 return table_print(table
, NULL
);
2199 static int test_calendar(int argc
, char *argv
[], void *userdata
) {
2204 if (arg_base_time
!= USEC_INFINITY
)
2207 n
= now(CLOCK_REALTIME
); /* We want to use the same "base" for all expressions */
2209 STRV_FOREACH(p
, strv_skip(argv
, 1)) {
2210 r
= test_calendar_one(n
, *p
);
2211 if (ret
== 0 && r
< 0)
2221 static int service_watchdogs(int argc
, char *argv
[], void *userdata
) {
2222 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
2223 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
2226 assert(IN_SET(argc
, 1, 2));
2229 r
= acquire_bus(&bus
, NULL
);
2231 return bus_log_connect_error(r
);
2234 /* get ServiceWatchdogs */
2235 r
= bus_get_property_trivial(bus
, bus_systemd_mgr
, "ServiceWatchdogs", &error
, 'b', &b
);
2237 return log_error_errno(r
, "Failed to get service-watchdog state: %s", bus_error_message(&error
, r
));
2239 printf("%s\n", yes_no(!!b
));
2242 /* set ServiceWatchdogs */
2243 b
= parse_boolean(argv
[1]);
2245 return log_error_errno(b
, "Failed to parse service-watchdogs argument: %m");
2247 r
= bus_set_property(bus
, bus_systemd_mgr
, "ServiceWatchdogs", &error
, "b", b
);
2249 return log_error_errno(r
, "Failed to set service-watchdog state: %s", bus_error_message(&error
, r
));
2255 static int do_condition(int argc
, char *argv
[], void *userdata
) {
2256 return verify_conditions(strv_skip(argv
, 1), arg_scope
, arg_unit
, arg_root
);
2259 static int do_verify(int argc
, char *argv
[], void *userdata
) {
2260 return verify_units(strv_skip(argv
, 1), arg_scope
, arg_man
, arg_generators
, arg_recursive_errors
, arg_root
);
2263 static int do_security(int argc
, char *argv
[], void *userdata
) {
2264 _cleanup_(sd_bus_flush_close_unrefp
) sd_bus
*bus
= NULL
;
2265 _cleanup_(json_variant_unrefp
) JsonVariant
*policy
= NULL
;
2267 unsigned line
, column
;
2269 r
= acquire_bus(&bus
, NULL
);
2271 return bus_log_connect_error(r
);
2273 (void) pager_open(arg_pager_flags
);
2275 if (arg_security_policy
) {
2276 r
= json_parse_file(/*f=*/ NULL
, arg_security_policy
, /*flags=*/ 0, &policy
, &line
, &column
);
2278 return log_error_errno(r
, "Failed to parse '%s' at %u:%u: %m", arg_security_policy
, line
, column
);
2280 _cleanup_fclose_
FILE *f
= NULL
;
2281 _cleanup_free_
char *pp
= NULL
;
2283 r
= search_and_fopen_nulstr("systemd-analyze-security.policy", "re", /*root=*/ NULL
, CONF_PATHS_NULSTR("systemd"), &f
, &pp
);
2284 if (r
< 0 && r
!= -ENOENT
)
2288 r
= json_parse_file(f
, pp
, /*flags=*/ 0, &policy
, &line
, &column
);
2290 return log_error_errno(r
, "[%s:%u:%u] Failed to parse JSON policy: %m", pp
, line
, column
);
2294 return analyze_security(bus
,
2303 arg_json_format_flags
,
2308 static int help(int argc
, char *argv
[], void *userdata
) {
2309 _cleanup_free_
char *link
= NULL
, *dot_link
= NULL
;
2312 (void) pager_open(arg_pager_flags
);
2314 r
= terminal_urlify_man("systemd-analyze", "1", &link
);
2318 /* Not using terminal_urlify_man() for this, since we don't want the "man page" text suffix in this case. */
2319 r
= terminal_urlify("man:dot(1)", "dot(1)", &dot_link
);
2323 printf("%s [OPTIONS...] COMMAND ...\n\n"
2324 "%sProfile systemd, show unit dependencies, check unit files.%s\n"
2326 " [time] Print time required to boot the machine\n"
2327 " blame Print list of running units ordered by\n"
2329 " critical-chain [UNIT...] Print a tree of the time critical chain\n"
2331 " plot Output SVG graphic showing service\n"
2333 " dot [UNIT...] Output dependency graph in %s format\n"
2334 " dump Output state serialization of service\n"
2336 " cat-config Show configuration file and drop-ins\n"
2337 " unit-files List files and symlinks for units\n"
2338 " unit-paths List load directories for units\n"
2339 " exit-status [STATUS...] List exit status definitions\n"
2340 " capability [CAP...] List capability definitions\n"
2341 " syscall-filter [NAME...] Print list of syscalls in seccomp\n"
2343 " filesystems [NAME...] Print list of filesystems\n"
2344 " condition CONDITION... Evaluate conditions and asserts\n"
2345 " verify FILE... Check unit files for correctness\n"
2346 " calendar SPEC... Validate repetitive calendar time\n"
2348 " timestamp TIMESTAMP... Validate a timestamp\n"
2349 " timespan SPAN... Validate a time span\n"
2350 " security [UNIT...] Analyze security of unit\n"
2352 " -h --help Show this help\n"
2353 " --recursive-errors=MODE Control which units are verified\n"
2354 " --offline=BOOL Perform a security review on unit file(s)\n"
2355 " --threshold=N Exit with a non-zero status when overall\n"
2356 " exposure level is over threshold value\n"
2357 " --version Show package version\n"
2358 " --security-policy=PATH Use custom JSON security policy instead\n"
2359 " of built-in one\n"
2360 " --json=pretty|short|off Generate JSON output of the security\n"
2362 " --no-pager Do not pipe output into a pager\n"
2363 " --system Operate on system systemd instance\n"
2364 " --user Operate on user systemd instance\n"
2365 " --global Operate on global user configuration\n"
2366 " -H --host=[USER@]HOST Operate on remote host\n"
2367 " -M --machine=CONTAINER Operate on local container\n"
2368 " --order Show only order in the graph\n"
2369 " --require Show only requirement in the graph\n"
2370 " --from-pattern=GLOB Show only origins in the graph\n"
2371 " --to-pattern=GLOB Show only destinations in the graph\n"
2372 " --fuzz=SECONDS Also print services which finished SECONDS\n"
2373 " earlier than the latest in the branch\n"
2374 " --man[=BOOL] Do [not] check for existence of man pages\n"
2375 " --generators[=BOOL] Do [not] run unit generators\n"
2376 " (requires privileges)\n"
2377 " --iterations=N Show the specified number of iterations\n"
2378 " --base-time=TIMESTAMP Calculate calendar times relative to\n"
2380 "\nSee the %s for details.\n",
2381 program_invocation_short_name
,
2387 /* When updating this list, including descriptions, apply changes to
2388 * shell-completion/bash/systemd-analyze and shell-completion/zsh/_systemd-analyze too. */
2393 static int parse_argv(int argc
, char *argv
[]) {
2395 ARG_VERSION
= 0x100,
2403 ARG_DOT_FROM_PATTERN
,
2411 ARG_RECURSIVE_ERRORS
,
2414 ARG_SECURITY_POLICY
,
2418 static const struct option options
[] = {
2419 { "help", no_argument
, NULL
, 'h' },
2420 { "version", no_argument
, NULL
, ARG_VERSION
},
2421 { "order", no_argument
, NULL
, ARG_ORDER
},
2422 { "require", no_argument
, NULL
, ARG_REQUIRE
},
2423 { "root", required_argument
, NULL
, ARG_ROOT
},
2424 { "image", required_argument
, NULL
, ARG_IMAGE
},
2425 { "recursive-errors", required_argument
, NULL
, ARG_RECURSIVE_ERRORS
},
2426 { "offline", required_argument
, NULL
, ARG_OFFLINE
},
2427 { "threshold", required_argument
, NULL
, ARG_THRESHOLD
},
2428 { "security-policy", required_argument
, NULL
, ARG_SECURITY_POLICY
},
2429 { "system", no_argument
, NULL
, ARG_SYSTEM
},
2430 { "user", no_argument
, NULL
, ARG_USER
},
2431 { "global", no_argument
, NULL
, ARG_GLOBAL
},
2432 { "from-pattern", required_argument
, NULL
, ARG_DOT_FROM_PATTERN
},
2433 { "to-pattern", required_argument
, NULL
, ARG_DOT_TO_PATTERN
},
2434 { "fuzz", required_argument
, NULL
, ARG_FUZZ
},
2435 { "no-pager", no_argument
, NULL
, ARG_NO_PAGER
},
2436 { "man", optional_argument
, NULL
, ARG_MAN
},
2437 { "generators", optional_argument
, NULL
, ARG_GENERATORS
},
2438 { "host", required_argument
, NULL
, 'H' },
2439 { "machine", required_argument
, NULL
, 'M' },
2440 { "iterations", required_argument
, NULL
, ARG_ITERATIONS
},
2441 { "base-time", required_argument
, NULL
, ARG_BASE_TIME
},
2442 { "unit", required_argument
, NULL
, 'U' },
2443 { "json", required_argument
, NULL
, ARG_JSON
},
2452 while ((c
= getopt_long(argc
, argv
, "hH:M:U:", options
, NULL
)) >= 0)
2456 return help(0, NULL
, NULL
);
2458 case ARG_RECURSIVE_ERRORS
:
2459 if (streq(optarg
, "help")) {
2460 DUMP_STRING_TABLE(recursive_errors
, RecursiveErrors
, _RECURSIVE_ERRORS_MAX
);
2463 r
= recursive_errors_from_string(optarg
);
2465 return log_error_errno(r
, "Unknown mode passed to --recursive-errors='%s'.", optarg
);
2467 arg_recursive_errors
= r
;
2474 r
= parse_path_argument(optarg
, /* suppress_root= */ true, &arg_root
);
2480 r
= parse_path_argument(optarg
, /* suppress_root= */ false, &arg_image
);
2486 arg_scope
= UNIT_FILE_SYSTEM
;
2490 arg_scope
= UNIT_FILE_USER
;
2494 arg_scope
= UNIT_FILE_GLOBAL
;
2498 arg_dot
= DEP_ORDER
;
2502 arg_dot
= DEP_REQUIRE
;
2505 case ARG_DOT_FROM_PATTERN
:
2506 if (strv_extend(&arg_dot_from_patterns
, optarg
) < 0)
2511 case ARG_DOT_TO_PATTERN
:
2512 if (strv_extend(&arg_dot_to_patterns
, optarg
) < 0)
2518 r
= parse_sec(optarg
, &arg_fuzz
);
2524 arg_pager_flags
|= PAGER_DISABLE
;
2528 arg_transport
= BUS_TRANSPORT_REMOTE
;
2533 arg_transport
= BUS_TRANSPORT_MACHINE
;
2538 r
= parse_boolean_argument("--man", optarg
, &arg_man
);
2543 case ARG_GENERATORS
:
2544 r
= parse_boolean_argument("--generators", optarg
, &arg_generators
);
2550 r
= parse_boolean_argument("--offline", optarg
, &arg_offline
);
2556 r
= safe_atou(optarg
, &arg_threshold
);
2557 if (r
< 0 || arg_threshold
> 100)
2558 return log_error_errno(r
< 0 ? r
: SYNTHETIC_ERRNO(EINVAL
), "Failed to parse threshold: %s", optarg
);
2562 case ARG_SECURITY_POLICY
:
2563 r
= parse_path_argument(optarg
, /* suppress_root= */ false, &arg_security_policy
);
2569 r
= parse_json_argument(optarg
, &arg_json_format_flags
);
2574 case ARG_ITERATIONS
:
2575 r
= safe_atou(optarg
, &arg_iterations
);
2577 return log_error_errno(r
, "Failed to parse iterations: %s", optarg
);
2582 r
= parse_timestamp(optarg
, &arg_base_time
);
2584 return log_error_errno(r
, "Failed to parse --base-time= parameter: %s", optarg
);
2589 _cleanup_free_
char *mangled
= NULL
;
2591 r
= unit_name_mangle(optarg
, UNIT_NAME_MANGLE_WARN
, &mangled
);
2593 return log_error_errno(r
, "Failed to mangle unit name %s: %m", optarg
);
2595 free_and_replace(arg_unit
, mangled
);
2602 assert_not_reached();
2605 if (arg_offline
&& !streq_ptr(argv
[optind
], "security"))
2606 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
2607 "Option --offline= is only supported for security right now.");
2609 if (arg_json_format_flags
!= JSON_FORMAT_OFF
&& !streq_ptr(argv
[optind
], "security"))
2610 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
2611 "Option --json= is only supported for security right now.");
2613 if (arg_threshold
!= 100 && !streq_ptr(argv
[optind
], "security"))
2614 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
2615 "Option --threshold= is only supported for security right now.");
2617 if (arg_scope
== UNIT_FILE_GLOBAL
&&
2618 !STR_IN_SET(argv
[optind
] ?: "time", "dot", "unit-paths", "verify"))
2619 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
2620 "Option --global only makes sense with verbs dot, unit-paths, verify.");
2622 if (streq_ptr(argv
[optind
], "cat-config") && arg_scope
== UNIT_FILE_USER
)
2623 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
2624 "Option --user is not supported for cat-config right now.");
2626 if (arg_security_policy
&& !streq_ptr(argv
[optind
], "security"))
2627 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
2628 "Option --security-policy= is only supported for security.");
2630 if ((arg_root
|| arg_image
) && (!STRPTR_IN_SET(argv
[optind
], "cat-config", "verify", "condition")) &&
2631 (!(streq_ptr(argv
[optind
], "security") && arg_offline
)))
2632 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
2633 "Options --root= and --image= are only supported for cat-config, verify, condition and security when used with --offline= right now.");
2635 /* Having both an image and a root is not supported by the code */
2636 if (arg_root
&& arg_image
)
2637 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
), "Please specify either --root= or --image=, the combination of both is not supported.");
2639 if (arg_unit
&& !streq_ptr(argv
[optind
], "condition"))
2640 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
), "Option --unit= is only supported for condition");
2642 if (streq_ptr(argv
[optind
], "condition") && !arg_unit
&& optind
>= argc
- 1)
2643 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
), "Too few arguments for condition");
2645 if (streq_ptr(argv
[optind
], "condition") && arg_unit
&& optind
< argc
- 1)
2646 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
), "No conditions can be passed if --unit= is used.");
2648 return 1; /* work to do */
2651 static int run(int argc
, char *argv
[]) {
2652 _cleanup_(loop_device_unrefp
) LoopDevice
*loop_device
= NULL
;
2653 _cleanup_(decrypted_image_unrefp
) DecryptedImage
*decrypted_image
= NULL
;
2654 _cleanup_(umount_and_rmdir_and_freep
) char *unlink_dir
= NULL
;
2656 static const Verb verbs
[] = {
2657 { "help", VERB_ANY
, VERB_ANY
, 0, help
},
2658 { "time", VERB_ANY
, 1, VERB_DEFAULT
, analyze_time
},
2659 { "blame", VERB_ANY
, 1, 0, analyze_blame
},
2660 { "critical-chain", VERB_ANY
, VERB_ANY
, 0, analyze_critical_chain
},
2661 { "plot", VERB_ANY
, 1, 0, analyze_plot
},
2662 { "dot", VERB_ANY
, VERB_ANY
, 0, dot
},
2663 /* The following seven verbs are deprecated */
2664 { "log-level", VERB_ANY
, 2, 0, verb_log_control
},
2665 { "log-target", VERB_ANY
, 2, 0, verb_log_control
},
2666 { "set-log-level", 2, 2, 0, verb_log_control
},
2667 { "get-log-level", VERB_ANY
, 1, 0, verb_log_control
},
2668 { "set-log-target", 2, 2, 0, verb_log_control
},
2669 { "get-log-target", VERB_ANY
, 1, 0, verb_log_control
},
2670 { "service-watchdogs", VERB_ANY
, 2, 0, service_watchdogs
},
2671 { "dump", VERB_ANY
, 1, 0, dump
},
2672 { "cat-config", 2, VERB_ANY
, 0, cat_config
},
2673 { "unit-files", VERB_ANY
, VERB_ANY
, 0, do_unit_files
},
2674 { "unit-paths", 1, 1, 0, dump_unit_paths
},
2675 { "exit-status", VERB_ANY
, VERB_ANY
, 0, dump_exit_status
},
2676 { "syscall-filter", VERB_ANY
, VERB_ANY
, 0, dump_syscall_filters
},
2677 { "capability", VERB_ANY
, VERB_ANY
, 0, dump_capabilities
},
2678 { "filesystems", VERB_ANY
, VERB_ANY
, 0, dump_filesystems
},
2679 { "condition", VERB_ANY
, VERB_ANY
, 0, do_condition
},
2680 { "verify", 2, VERB_ANY
, 0, do_verify
},
2681 { "calendar", 2, VERB_ANY
, 0, test_calendar
},
2682 { "timestamp", 2, VERB_ANY
, 0, test_timestamp
},
2683 { "timespan", 2, VERB_ANY
, 0, dump_timespan
},
2684 { "security", VERB_ANY
, VERB_ANY
, 0, do_security
},
2690 setlocale(LC_ALL
, "");
2691 setlocale(LC_NUMERIC
, "C"); /* we want to format/parse floats in C style */
2695 r
= parse_argv(argc
, argv
);
2699 /* Open up and mount the image */
2703 r
= mount_image_privately_interactively(
2705 DISSECT_IMAGE_GENERIC_ROOT
|
2706 DISSECT_IMAGE_RELAX_VAR_CHECK
|
2707 DISSECT_IMAGE_READ_ONLY
,
2714 arg_root
= strdup(unlink_dir
);
2719 return dispatch_verb(argc
, argv
, verbs
, NULL
);
2722 DEFINE_MAIN_FUNCTION(run
);