2 This file is part of systemd.
4 Copyright 2010 Lennart Poettering
6 systemd is free software; you can redistribute it and/or modify it
7 under the terms of the GNU Lesser General Public License as published by
8 the Free Software Foundation; either version 2.1 of the License, or
9 (at your option) any later version.
11 systemd is distributed in the hope that it will be useful, but
12 WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 Lesser General Public License for more details.
16 You should have received a copy of the GNU Lesser General Public License
17 along with systemd; If not, see <http://www.gnu.org/licenses/>.
20 #include <sys/prctl.h>
27 #include "alloc-util.h"
30 #include "capability-util.h"
31 #include "dbus-execute.h"
33 #include "errno-list.h"
37 #include "hexdecoct.h"
40 #include "journal-util.h"
42 #include "mount-util.h"
43 #include "namespace.h"
44 #include "parse-util.h"
45 #include "path-util.h"
46 #include "process-util.h"
47 #include "rlimit-util.h"
49 #include "seccomp-util.h"
51 #include "securebits-util.h"
53 #include "syslog-util.h"
54 #include "unit-printf.h"
55 #include "user-util.h"
58 BUS_DEFINE_PROPERTY_GET_ENUM(bus_property_get_exec_output
, exec_output
, ExecOutput
);
59 static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_exec_input
, exec_input
, ExecInput
);
61 static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_exec_utmp_mode
, exec_utmp_mode
, ExecUtmpMode
);
62 static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_exec_preserve_mode
, exec_preserve_mode
, ExecPreserveMode
);
63 static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_exec_keyring_mode
, exec_keyring_mode
, ExecKeyringMode
);
65 static BUS_DEFINE_PROPERTY_GET_ENUM(bus_property_get_protect_home
, protect_home
, ProtectHome
);
66 static BUS_DEFINE_PROPERTY_GET_ENUM(bus_property_get_protect_system
, protect_system
, ProtectSystem
);
68 static int property_get_environment_files(
71 const char *interface
,
73 sd_bus_message
*reply
,
75 sd_bus_error
*error
) {
77 ExecContext
*c
= userdata
;
85 r
= sd_bus_message_open_container(reply
, 'a', "(sb)");
89 STRV_FOREACH(j
, c
->environment_files
) {
92 r
= sd_bus_message_append(reply
, "(sb)", fn
[0] == '-' ? fn
+ 1 : fn
, fn
[0] == '-');
97 return sd_bus_message_close_container(reply
);
100 static int property_get_oom_score_adjust(
103 const char *interface
,
104 const char *property
,
105 sd_bus_message
*reply
,
107 sd_bus_error
*error
) {
110 ExecContext
*c
= userdata
;
117 if (c
->oom_score_adjust_set
)
118 n
= c
->oom_score_adjust
;
120 _cleanup_free_
char *t
= NULL
;
123 if (read_one_line_file("/proc/self/oom_score_adj", &t
) >= 0)
127 return sd_bus_message_append(reply
, "i", n
);
130 static int property_get_nice(
133 const char *interface
,
134 const char *property
,
135 sd_bus_message
*reply
,
137 sd_bus_error
*error
) {
140 ExecContext
*c
= userdata
;
151 n
= getpriority(PRIO_PROCESS
, 0);
156 return sd_bus_message_append(reply
, "i", n
);
159 static int property_get_ioprio(
162 const char *interface
,
163 const char *property
,
164 sd_bus_message
*reply
,
166 sd_bus_error
*error
) {
169 ExecContext
*c
= userdata
;
175 return sd_bus_message_append(reply
, "i", exec_context_get_effective_ioprio(c
));
178 static int property_get_ioprio_class(
181 const char *interface
,
182 const char *property
,
183 sd_bus_message
*reply
,
185 sd_bus_error
*error
) {
188 ExecContext
*c
= userdata
;
194 return sd_bus_message_append(reply
, "i", IOPRIO_PRIO_CLASS(exec_context_get_effective_ioprio(c
)));
197 static int property_get_ioprio_priority(
200 const char *interface
,
201 const char *property
,
202 sd_bus_message
*reply
,
204 sd_bus_error
*error
) {
207 ExecContext
*c
= userdata
;
213 return sd_bus_message_append(reply
, "i", IOPRIO_PRIO_DATA(exec_context_get_effective_ioprio(c
)));
216 static int property_get_cpu_sched_policy(
219 const char *interface
,
220 const char *property
,
221 sd_bus_message
*reply
,
223 sd_bus_error
*error
) {
225 ExecContext
*c
= userdata
;
232 if (c
->cpu_sched_set
)
233 n
= c
->cpu_sched_policy
;
235 n
= sched_getscheduler(0);
240 return sd_bus_message_append(reply
, "i", n
);
243 static int property_get_cpu_sched_priority(
246 const char *interface
,
247 const char *property
,
248 sd_bus_message
*reply
,
250 sd_bus_error
*error
) {
252 ExecContext
*c
= userdata
;
259 if (c
->cpu_sched_set
)
260 n
= c
->cpu_sched_priority
;
262 struct sched_param p
= {};
264 if (sched_getparam(0, &p
) >= 0)
265 n
= p
.sched_priority
;
270 return sd_bus_message_append(reply
, "i", n
);
273 static int property_get_cpu_affinity(
276 const char *interface
,
277 const char *property
,
278 sd_bus_message
*reply
,
280 sd_bus_error
*error
) {
282 ExecContext
*c
= userdata
;
289 return sd_bus_message_append_array(reply
, 'y', c
->cpuset
, CPU_ALLOC_SIZE(c
->cpuset_ncpus
));
291 return sd_bus_message_append_array(reply
, 'y', NULL
, 0);
294 static int property_get_timer_slack_nsec(
297 const char *interface
,
298 const char *property
,
299 sd_bus_message
*reply
,
301 sd_bus_error
*error
) {
303 ExecContext
*c
= userdata
;
310 if (c
->timer_slack_nsec
!= NSEC_INFINITY
)
311 u
= (uint64_t) c
->timer_slack_nsec
;
313 u
= (uint64_t) prctl(PR_GET_TIMERSLACK
);
315 return sd_bus_message_append(reply
, "t", u
);
318 static int property_get_capability_bounding_set(
321 const char *interface
,
322 const char *property
,
323 sd_bus_message
*reply
,
325 sd_bus_error
*error
) {
327 ExecContext
*c
= userdata
;
333 return sd_bus_message_append(reply
, "t", c
->capability_bounding_set
);
336 static int property_get_ambient_capabilities(
339 const char *interface
,
340 const char *property
,
341 sd_bus_message
*reply
,
343 sd_bus_error
*error
) {
345 ExecContext
*c
= userdata
;
351 return sd_bus_message_append(reply
, "t", c
->capability_ambient_set
);
354 static int property_get_empty_string(
357 const char *interface
,
358 const char *property
,
359 sd_bus_message
*reply
,
361 sd_bus_error
*error
) {
366 return sd_bus_message_append(reply
, "s", "");
369 static int property_get_syscall_filter(
372 const char *interface
,
373 const char *property
,
374 sd_bus_message
*reply
,
376 sd_bus_error
*error
) {
378 ExecContext
*c
= userdata
;
379 _cleanup_strv_free_
char **l
= NULL
;
391 r
= sd_bus_message_open_container(reply
, 'r', "bas");
395 r
= sd_bus_message_append(reply
, "b", c
->syscall_whitelist
);
400 HASHMAP_FOREACH_KEY(val
, id
, c
->syscall_filter
, i
) {
401 _cleanup_free_
char *name
= NULL
;
402 const char *e
= NULL
;
404 int num
= PTR_TO_INT(val
);
406 name
= seccomp_syscall_resolve_num_arch(SCMP_ARCH_NATIVE
, PTR_TO_INT(id
) - 1);
411 e
= errno_to_name(num
);
413 s
= strjoin(name
, ":", e
);
417 r
= asprintf(&s
, "%s:%d", name
, num
);
426 r
= strv_consume(&l
, s
);
434 r
= sd_bus_message_append_strv(reply
, l
);
438 return sd_bus_message_close_container(reply
);
441 static int property_get_syscall_archs(
444 const char *interface
,
445 const char *property
,
446 sd_bus_message
*reply
,
448 sd_bus_error
*error
) {
450 ExecContext
*c
= userdata
;
451 _cleanup_strv_free_
char **l
= NULL
;
464 SET_FOREACH(id
, c
->syscall_archs
, i
) {
467 name
= seccomp_arch_to_string(PTR_TO_UINT32(id
) - 1);
471 r
= strv_extend(&l
, name
);
479 r
= sd_bus_message_append_strv(reply
, l
);
486 static int property_get_syscall_errno(
489 const char *interface
,
490 const char *property
,
491 sd_bus_message
*reply
,
493 sd_bus_error
*error
) {
495 ExecContext
*c
= userdata
;
501 return sd_bus_message_append(reply
, "i", (int32_t) c
->syscall_errno
);
504 static int property_get_selinux_context(
507 const char *interface
,
508 const char *property
,
509 sd_bus_message
*reply
,
511 sd_bus_error
*error
) {
513 ExecContext
*c
= userdata
;
519 return sd_bus_message_append(reply
, "(bs)", c
->selinux_context_ignore
, c
->selinux_context
);
522 static int property_get_apparmor_profile(
525 const char *interface
,
526 const char *property
,
527 sd_bus_message
*reply
,
529 sd_bus_error
*error
) {
531 ExecContext
*c
= userdata
;
537 return sd_bus_message_append(reply
, "(bs)", c
->apparmor_profile_ignore
, c
->apparmor_profile
);
540 static int property_get_smack_process_label(
543 const char *interface
,
544 const char *property
,
545 sd_bus_message
*reply
,
547 sd_bus_error
*error
) {
549 ExecContext
*c
= userdata
;
555 return sd_bus_message_append(reply
, "(bs)", c
->smack_process_label_ignore
, c
->smack_process_label
);
558 static int property_get_personality(
561 const char *interface
,
562 const char *property
,
563 sd_bus_message
*reply
,
565 sd_bus_error
*error
) {
567 ExecContext
*c
= userdata
;
573 return sd_bus_message_append(reply
, "s", personality_to_string(c
->personality
));
576 static int property_get_address_families(
579 const char *interface
,
580 const char *property
,
581 sd_bus_message
*reply
,
583 sd_bus_error
*error
) {
585 ExecContext
*c
= userdata
;
586 _cleanup_strv_free_
char **l
= NULL
;
595 r
= sd_bus_message_open_container(reply
, 'r', "bas");
599 r
= sd_bus_message_append(reply
, "b", c
->address_families_whitelist
);
603 SET_FOREACH(af
, c
->address_families
, i
) {
606 name
= af_to_name(PTR_TO_INT(af
));
610 r
= strv_extend(&l
, name
);
617 r
= sd_bus_message_append_strv(reply
, l
);
621 return sd_bus_message_close_container(reply
);
624 static int property_get_working_directory(
627 const char *interface
,
628 const char *property
,
629 sd_bus_message
*reply
,
631 sd_bus_error
*error
) {
633 ExecContext
*c
= userdata
;
640 if (c
->working_directory_home
)
643 wd
= c
->working_directory
;
645 if (c
->working_directory_missing_ok
)
646 wd
= strjoina("!", wd
);
648 return sd_bus_message_append(reply
, "s", wd
);
651 static int property_get_syslog_level(
654 const char *interface
,
655 const char *property
,
656 sd_bus_message
*reply
,
658 sd_bus_error
*error
) {
660 ExecContext
*c
= userdata
;
666 return sd_bus_message_append(reply
, "i", LOG_PRI(c
->syslog_priority
));
669 static int property_get_syslog_facility(
672 const char *interface
,
673 const char *property
,
674 sd_bus_message
*reply
,
676 sd_bus_error
*error
) {
678 ExecContext
*c
= userdata
;
684 return sd_bus_message_append(reply
, "i", LOG_FAC(c
->syslog_priority
));
687 static int property_get_stdio_fdname(
690 const char *interface
,
691 const char *property
,
692 sd_bus_message
*reply
,
694 sd_bus_error
*error
) {
696 ExecContext
*c
= userdata
;
704 if (streq(property
, "StandardInputFileDescriptorName"))
705 fileno
= STDIN_FILENO
;
706 else if (streq(property
, "StandardOutputFileDescriptorName"))
707 fileno
= STDOUT_FILENO
;
709 assert(streq(property
, "StandardErrorFileDescriptorName"));
710 fileno
= STDERR_FILENO
;
713 return sd_bus_message_append(reply
, "s", exec_context_fdname(c
, fileno
));
716 static int property_get_input_data(
719 const char *interface
,
720 const char *property
,
721 sd_bus_message
*reply
,
723 sd_bus_error
*error
) {
725 ExecContext
*c
= userdata
;
732 return sd_bus_message_append_array(reply
, 'y', c
->stdin_data
, c
->stdin_data_size
);
735 static int property_get_bind_paths(
738 const char *interface
,
739 const char *property
,
740 sd_bus_message
*reply
,
742 sd_bus_error
*error
) {
744 ExecContext
*c
= userdata
;
754 ro
= !!strstr(property
, "ReadOnly");
756 r
= sd_bus_message_open_container(reply
, 'a', "(ssbt)");
760 for (i
= 0; i
< c
->n_bind_mounts
; i
++) {
762 if (ro
!= c
->bind_mounts
[i
].read_only
)
765 r
= sd_bus_message_append(
767 c
->bind_mounts
[i
].source
,
768 c
->bind_mounts
[i
].destination
,
769 c
->bind_mounts
[i
].ignore_enoent
,
770 c
->bind_mounts
[i
].recursive
? (uint64_t) MS_REC
: (uint64_t) 0);
775 return sd_bus_message_close_container(reply
);
778 static int property_get_log_extra_fields(
781 const char *interface
,
782 const char *property
,
783 sd_bus_message
*reply
,
785 sd_bus_error
*error
) {
787 ExecContext
*c
= userdata
;
796 r
= sd_bus_message_open_container(reply
, 'a', "ay");
800 for (i
= 0; i
< c
->n_log_extra_fields
; i
++) {
801 r
= sd_bus_message_append_array(reply
, 'y', c
->log_extra_fields
[i
].iov_base
, c
->log_extra_fields
[i
].iov_len
);
806 return sd_bus_message_close_container(reply
);
809 const sd_bus_vtable bus_exec_vtable
[] = {
810 SD_BUS_VTABLE_START(0),
811 SD_BUS_PROPERTY("Environment", "as", NULL
, offsetof(ExecContext
, environment
), SD_BUS_VTABLE_PROPERTY_CONST
),
812 SD_BUS_PROPERTY("EnvironmentFiles", "a(sb)", property_get_environment_files
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
813 SD_BUS_PROPERTY("PassEnvironment", "as", NULL
, offsetof(ExecContext
, pass_environment
), SD_BUS_VTABLE_PROPERTY_CONST
),
814 SD_BUS_PROPERTY("UnsetEnvironment", "as", NULL
, offsetof(ExecContext
, unset_environment
), SD_BUS_VTABLE_PROPERTY_CONST
),
815 SD_BUS_PROPERTY("UMask", "u", bus_property_get_mode
, offsetof(ExecContext
, umask
), SD_BUS_VTABLE_PROPERTY_CONST
),
816 SD_BUS_PROPERTY("LimitCPU", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_CPU
]), SD_BUS_VTABLE_PROPERTY_CONST
),
817 SD_BUS_PROPERTY("LimitCPUSoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_CPU
]), SD_BUS_VTABLE_PROPERTY_CONST
),
818 SD_BUS_PROPERTY("LimitFSIZE", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_FSIZE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
819 SD_BUS_PROPERTY("LimitFSIZESoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_FSIZE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
820 SD_BUS_PROPERTY("LimitDATA", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_DATA
]), SD_BUS_VTABLE_PROPERTY_CONST
),
821 SD_BUS_PROPERTY("LimitDATASoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_DATA
]), SD_BUS_VTABLE_PROPERTY_CONST
),
822 SD_BUS_PROPERTY("LimitSTACK", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_STACK
]), SD_BUS_VTABLE_PROPERTY_CONST
),
823 SD_BUS_PROPERTY("LimitSTACKSoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_STACK
]), SD_BUS_VTABLE_PROPERTY_CONST
),
824 SD_BUS_PROPERTY("LimitCORE", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_CORE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
825 SD_BUS_PROPERTY("LimitCORESoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_CORE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
826 SD_BUS_PROPERTY("LimitRSS", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_RSS
]), SD_BUS_VTABLE_PROPERTY_CONST
),
827 SD_BUS_PROPERTY("LimitRSSSoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_RSS
]), SD_BUS_VTABLE_PROPERTY_CONST
),
828 SD_BUS_PROPERTY("LimitNOFILE", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_NOFILE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
829 SD_BUS_PROPERTY("LimitNOFILESoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_NOFILE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
830 SD_BUS_PROPERTY("LimitAS", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_AS
]), SD_BUS_VTABLE_PROPERTY_CONST
),
831 SD_BUS_PROPERTY("LimitASSoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_AS
]), SD_BUS_VTABLE_PROPERTY_CONST
),
832 SD_BUS_PROPERTY("LimitNPROC", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_NPROC
]), SD_BUS_VTABLE_PROPERTY_CONST
),
833 SD_BUS_PROPERTY("LimitNPROCSoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_NPROC
]), SD_BUS_VTABLE_PROPERTY_CONST
),
834 SD_BUS_PROPERTY("LimitMEMLOCK", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_MEMLOCK
]), SD_BUS_VTABLE_PROPERTY_CONST
),
835 SD_BUS_PROPERTY("LimitMEMLOCKSoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_MEMLOCK
]), SD_BUS_VTABLE_PROPERTY_CONST
),
836 SD_BUS_PROPERTY("LimitLOCKS", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_LOCKS
]), SD_BUS_VTABLE_PROPERTY_CONST
),
837 SD_BUS_PROPERTY("LimitLOCKSSoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_LOCKS
]), SD_BUS_VTABLE_PROPERTY_CONST
),
838 SD_BUS_PROPERTY("LimitSIGPENDING", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_SIGPENDING
]), SD_BUS_VTABLE_PROPERTY_CONST
),
839 SD_BUS_PROPERTY("LimitSIGPENDINGSoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_SIGPENDING
]), SD_BUS_VTABLE_PROPERTY_CONST
),
840 SD_BUS_PROPERTY("LimitMSGQUEUE", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_MSGQUEUE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
841 SD_BUS_PROPERTY("LimitMSGQUEUESoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_MSGQUEUE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
842 SD_BUS_PROPERTY("LimitNICE", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_NICE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
843 SD_BUS_PROPERTY("LimitNICESoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_NICE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
844 SD_BUS_PROPERTY("LimitRTPRIO", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_RTPRIO
]), SD_BUS_VTABLE_PROPERTY_CONST
),
845 SD_BUS_PROPERTY("LimitRTPRIOSoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_RTPRIO
]), SD_BUS_VTABLE_PROPERTY_CONST
),
846 SD_BUS_PROPERTY("LimitRTTIME", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_RTTIME
]), SD_BUS_VTABLE_PROPERTY_CONST
),
847 SD_BUS_PROPERTY("LimitRTTIMESoft", "t", bus_property_get_rlimit
, offsetof(ExecContext
, rlimit
[RLIMIT_RTTIME
]), SD_BUS_VTABLE_PROPERTY_CONST
),
848 SD_BUS_PROPERTY("WorkingDirectory", "s", property_get_working_directory
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
849 SD_BUS_PROPERTY("RootDirectory", "s", NULL
, offsetof(ExecContext
, root_directory
), SD_BUS_VTABLE_PROPERTY_CONST
),
850 SD_BUS_PROPERTY("RootImage", "s", NULL
, offsetof(ExecContext
, root_image
), SD_BUS_VTABLE_PROPERTY_CONST
),
851 SD_BUS_PROPERTY("OOMScoreAdjust", "i", property_get_oom_score_adjust
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
852 SD_BUS_PROPERTY("Nice", "i", property_get_nice
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
853 SD_BUS_PROPERTY("IOSchedulingClass", "i", property_get_ioprio_class
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
854 SD_BUS_PROPERTY("IOSchedulingPriority", "i", property_get_ioprio_priority
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
855 SD_BUS_PROPERTY("CPUSchedulingPolicy", "i", property_get_cpu_sched_policy
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
856 SD_BUS_PROPERTY("CPUSchedulingPriority", "i", property_get_cpu_sched_priority
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
857 SD_BUS_PROPERTY("CPUAffinity", "ay", property_get_cpu_affinity
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
858 SD_BUS_PROPERTY("TimerSlackNSec", "t", property_get_timer_slack_nsec
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
859 SD_BUS_PROPERTY("CPUSchedulingResetOnFork", "b", bus_property_get_bool
, offsetof(ExecContext
, cpu_sched_reset_on_fork
), SD_BUS_VTABLE_PROPERTY_CONST
),
860 SD_BUS_PROPERTY("NonBlocking", "b", bus_property_get_bool
, offsetof(ExecContext
, non_blocking
), SD_BUS_VTABLE_PROPERTY_CONST
),
861 SD_BUS_PROPERTY("StandardInput", "s", property_get_exec_input
, offsetof(ExecContext
, std_input
), SD_BUS_VTABLE_PROPERTY_CONST
),
862 SD_BUS_PROPERTY("StandardInputFileDescriptorName", "s", property_get_stdio_fdname
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
863 SD_BUS_PROPERTY("StandardInputData", "ay", property_get_input_data
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
864 SD_BUS_PROPERTY("StandardOutput", "s", bus_property_get_exec_output
, offsetof(ExecContext
, std_output
), SD_BUS_VTABLE_PROPERTY_CONST
),
865 SD_BUS_PROPERTY("StandardOutputFileDescriptorName", "s", property_get_stdio_fdname
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
866 SD_BUS_PROPERTY("StandardError", "s", bus_property_get_exec_output
, offsetof(ExecContext
, std_error
), SD_BUS_VTABLE_PROPERTY_CONST
),
867 SD_BUS_PROPERTY("StandardErrorFileDescriptorName", "s", property_get_stdio_fdname
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
868 SD_BUS_PROPERTY("TTYPath", "s", NULL
, offsetof(ExecContext
, tty_path
), SD_BUS_VTABLE_PROPERTY_CONST
),
869 SD_BUS_PROPERTY("TTYReset", "b", bus_property_get_bool
, offsetof(ExecContext
, tty_reset
), SD_BUS_VTABLE_PROPERTY_CONST
),
870 SD_BUS_PROPERTY("TTYVHangup", "b", bus_property_get_bool
, offsetof(ExecContext
, tty_vhangup
), SD_BUS_VTABLE_PROPERTY_CONST
),
871 SD_BUS_PROPERTY("TTYVTDisallocate", "b", bus_property_get_bool
, offsetof(ExecContext
, tty_vt_disallocate
), SD_BUS_VTABLE_PROPERTY_CONST
),
872 SD_BUS_PROPERTY("SyslogPriority", "i", bus_property_get_int
, offsetof(ExecContext
, syslog_priority
), SD_BUS_VTABLE_PROPERTY_CONST
),
873 SD_BUS_PROPERTY("SyslogIdentifier", "s", NULL
, offsetof(ExecContext
, syslog_identifier
), SD_BUS_VTABLE_PROPERTY_CONST
),
874 SD_BUS_PROPERTY("SyslogLevelPrefix", "b", bus_property_get_bool
, offsetof(ExecContext
, syslog_level_prefix
), SD_BUS_VTABLE_PROPERTY_CONST
),
875 SD_BUS_PROPERTY("SyslogLevel", "i", property_get_syslog_level
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
876 SD_BUS_PROPERTY("SyslogFacility", "i", property_get_syslog_facility
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
877 SD_BUS_PROPERTY("LogLevelMax", "i", bus_property_get_int
, offsetof(ExecContext
, log_level_max
), SD_BUS_VTABLE_PROPERTY_CONST
),
878 SD_BUS_PROPERTY("LogExtraFields", "aay", property_get_log_extra_fields
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
879 SD_BUS_PROPERTY("SecureBits", "i", bus_property_get_int
, offsetof(ExecContext
, secure_bits
), SD_BUS_VTABLE_PROPERTY_CONST
),
880 SD_BUS_PROPERTY("CapabilityBoundingSet", "t", property_get_capability_bounding_set
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
881 SD_BUS_PROPERTY("AmbientCapabilities", "t", property_get_ambient_capabilities
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
882 SD_BUS_PROPERTY("User", "s", NULL
, offsetof(ExecContext
, user
), SD_BUS_VTABLE_PROPERTY_CONST
),
883 SD_BUS_PROPERTY("Group", "s", NULL
, offsetof(ExecContext
, group
), SD_BUS_VTABLE_PROPERTY_CONST
),
884 SD_BUS_PROPERTY("DynamicUser", "b", bus_property_get_bool
, offsetof(ExecContext
, dynamic_user
), SD_BUS_VTABLE_PROPERTY_CONST
),
885 SD_BUS_PROPERTY("RemoveIPC", "b", bus_property_get_bool
, offsetof(ExecContext
, remove_ipc
), SD_BUS_VTABLE_PROPERTY_CONST
),
886 SD_BUS_PROPERTY("SupplementaryGroups", "as", NULL
, offsetof(ExecContext
, supplementary_groups
), SD_BUS_VTABLE_PROPERTY_CONST
),
887 SD_BUS_PROPERTY("PAMName", "s", NULL
, offsetof(ExecContext
, pam_name
), SD_BUS_VTABLE_PROPERTY_CONST
),
888 SD_BUS_PROPERTY("ReadWritePaths", "as", NULL
, offsetof(ExecContext
, read_write_paths
), SD_BUS_VTABLE_PROPERTY_CONST
),
889 SD_BUS_PROPERTY("ReadOnlyPaths", "as", NULL
, offsetof(ExecContext
, read_only_paths
), SD_BUS_VTABLE_PROPERTY_CONST
),
890 SD_BUS_PROPERTY("InaccessiblePaths", "as", NULL
, offsetof(ExecContext
, inaccessible_paths
), SD_BUS_VTABLE_PROPERTY_CONST
),
891 SD_BUS_PROPERTY("MountFlags", "t", bus_property_get_ulong
, offsetof(ExecContext
, mount_flags
), SD_BUS_VTABLE_PROPERTY_CONST
),
892 SD_BUS_PROPERTY("PrivateTmp", "b", bus_property_get_bool
, offsetof(ExecContext
, private_tmp
), SD_BUS_VTABLE_PROPERTY_CONST
),
893 SD_BUS_PROPERTY("PrivateDevices", "b", bus_property_get_bool
, offsetof(ExecContext
, private_devices
), SD_BUS_VTABLE_PROPERTY_CONST
),
894 SD_BUS_PROPERTY("ProtectKernelTunables", "b", bus_property_get_bool
, offsetof(ExecContext
, protect_kernel_tunables
), SD_BUS_VTABLE_PROPERTY_CONST
),
895 SD_BUS_PROPERTY("ProtectKernelModules", "b", bus_property_get_bool
, offsetof(ExecContext
, protect_kernel_modules
), SD_BUS_VTABLE_PROPERTY_CONST
),
896 SD_BUS_PROPERTY("ProtectControlGroups", "b", bus_property_get_bool
, offsetof(ExecContext
, protect_control_groups
), SD_BUS_VTABLE_PROPERTY_CONST
),
897 SD_BUS_PROPERTY("PrivateNetwork", "b", bus_property_get_bool
, offsetof(ExecContext
, private_network
), SD_BUS_VTABLE_PROPERTY_CONST
),
898 SD_BUS_PROPERTY("PrivateUsers", "b", bus_property_get_bool
, offsetof(ExecContext
, private_users
), SD_BUS_VTABLE_PROPERTY_CONST
),
899 SD_BUS_PROPERTY("ProtectHome", "s", bus_property_get_protect_home
, offsetof(ExecContext
, protect_home
), SD_BUS_VTABLE_PROPERTY_CONST
),
900 SD_BUS_PROPERTY("ProtectSystem", "s", bus_property_get_protect_system
, offsetof(ExecContext
, protect_system
), SD_BUS_VTABLE_PROPERTY_CONST
),
901 SD_BUS_PROPERTY("SameProcessGroup", "b", bus_property_get_bool
, offsetof(ExecContext
, same_pgrp
), SD_BUS_VTABLE_PROPERTY_CONST
),
902 SD_BUS_PROPERTY("UtmpIdentifier", "s", NULL
, offsetof(ExecContext
, utmp_id
), SD_BUS_VTABLE_PROPERTY_CONST
),
903 SD_BUS_PROPERTY("UtmpMode", "s", property_get_exec_utmp_mode
, offsetof(ExecContext
, utmp_mode
), SD_BUS_VTABLE_PROPERTY_CONST
),
904 SD_BUS_PROPERTY("SELinuxContext", "(bs)", property_get_selinux_context
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
905 SD_BUS_PROPERTY("AppArmorProfile", "(bs)", property_get_apparmor_profile
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
906 SD_BUS_PROPERTY("SmackProcessLabel", "(bs)", property_get_smack_process_label
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
907 SD_BUS_PROPERTY("IgnoreSIGPIPE", "b", bus_property_get_bool
, offsetof(ExecContext
, ignore_sigpipe
), SD_BUS_VTABLE_PROPERTY_CONST
),
908 SD_BUS_PROPERTY("NoNewPrivileges", "b", bus_property_get_bool
, offsetof(ExecContext
, no_new_privileges
), SD_BUS_VTABLE_PROPERTY_CONST
),
909 SD_BUS_PROPERTY("SystemCallFilter", "(bas)", property_get_syscall_filter
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
910 SD_BUS_PROPERTY("SystemCallArchitectures", "as", property_get_syscall_archs
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
911 SD_BUS_PROPERTY("SystemCallErrorNumber", "i", property_get_syscall_errno
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
912 SD_BUS_PROPERTY("Personality", "s", property_get_personality
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
913 SD_BUS_PROPERTY("LockPersonality", "b", bus_property_get_bool
, offsetof(ExecContext
, lock_personality
), SD_BUS_VTABLE_PROPERTY_CONST
),
914 SD_BUS_PROPERTY("RestrictAddressFamilies", "(bas)", property_get_address_families
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
915 SD_BUS_PROPERTY("RuntimeDirectoryPreserve", "s", property_get_exec_preserve_mode
, offsetof(ExecContext
, runtime_directory_preserve_mode
), SD_BUS_VTABLE_PROPERTY_CONST
),
916 SD_BUS_PROPERTY("RuntimeDirectoryMode", "u", bus_property_get_mode
, offsetof(ExecContext
, directories
[EXEC_DIRECTORY_RUNTIME
].mode
), SD_BUS_VTABLE_PROPERTY_CONST
),
917 SD_BUS_PROPERTY("RuntimeDirectory", "as", NULL
, offsetof(ExecContext
, directories
[EXEC_DIRECTORY_RUNTIME
].paths
), SD_BUS_VTABLE_PROPERTY_CONST
),
918 SD_BUS_PROPERTY("StateDirectoryMode", "u", bus_property_get_mode
, offsetof(ExecContext
, directories
[EXEC_DIRECTORY_STATE
].mode
), SD_BUS_VTABLE_PROPERTY_CONST
),
919 SD_BUS_PROPERTY("StateDirectory", "as", NULL
, offsetof(ExecContext
, directories
[EXEC_DIRECTORY_STATE
].paths
), SD_BUS_VTABLE_PROPERTY_CONST
),
920 SD_BUS_PROPERTY("CacheDirectoryMode", "u", bus_property_get_mode
, offsetof(ExecContext
, directories
[EXEC_DIRECTORY_CACHE
].mode
), SD_BUS_VTABLE_PROPERTY_CONST
),
921 SD_BUS_PROPERTY("CacheDirectory", "as", NULL
, offsetof(ExecContext
, directories
[EXEC_DIRECTORY_CACHE
].paths
), SD_BUS_VTABLE_PROPERTY_CONST
),
922 SD_BUS_PROPERTY("LogsDirectoryMode", "u", bus_property_get_mode
, offsetof(ExecContext
, directories
[EXEC_DIRECTORY_LOGS
].mode
), SD_BUS_VTABLE_PROPERTY_CONST
),
923 SD_BUS_PROPERTY("LogsDirectory", "as", NULL
, offsetof(ExecContext
, directories
[EXEC_DIRECTORY_LOGS
].paths
), SD_BUS_VTABLE_PROPERTY_CONST
),
924 SD_BUS_PROPERTY("ConfigurationDirectoryMode", "u", bus_property_get_mode
, offsetof(ExecContext
, directories
[EXEC_DIRECTORY_CONFIGURATION
].mode
), SD_BUS_VTABLE_PROPERTY_CONST
),
925 SD_BUS_PROPERTY("ConfigurationDirectory", "as", NULL
, offsetof(ExecContext
, directories
[EXEC_DIRECTORY_CONFIGURATION
].paths
), SD_BUS_VTABLE_PROPERTY_CONST
),
926 SD_BUS_PROPERTY("MemoryDenyWriteExecute", "b", bus_property_get_bool
, offsetof(ExecContext
, memory_deny_write_execute
), SD_BUS_VTABLE_PROPERTY_CONST
),
927 SD_BUS_PROPERTY("RestrictRealtime", "b", bus_property_get_bool
, offsetof(ExecContext
, restrict_realtime
), SD_BUS_VTABLE_PROPERTY_CONST
),
928 SD_BUS_PROPERTY("RestrictNamespaces", "t", bus_property_get_ulong
, offsetof(ExecContext
, restrict_namespaces
), SD_BUS_VTABLE_PROPERTY_CONST
),
929 SD_BUS_PROPERTY("BindPaths", "a(ssbt)", property_get_bind_paths
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
930 SD_BUS_PROPERTY("BindReadOnlyPaths", "a(ssbt)", property_get_bind_paths
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
931 SD_BUS_PROPERTY("MountAPIVFS", "b", bus_property_get_bool
, offsetof(ExecContext
, mount_apivfs
), SD_BUS_VTABLE_PROPERTY_CONST
),
932 SD_BUS_PROPERTY("KeyringMode", "s", property_get_exec_keyring_mode
, offsetof(ExecContext
, keyring_mode
), SD_BUS_VTABLE_PROPERTY_CONST
),
934 /* Obsolete/redundant properties: */
935 SD_BUS_PROPERTY("Capabilities", "s", property_get_empty_string
, 0, SD_BUS_VTABLE_PROPERTY_CONST
|SD_BUS_VTABLE_HIDDEN
),
936 SD_BUS_PROPERTY("ReadWriteDirectories", "as", NULL
, offsetof(ExecContext
, read_write_paths
), SD_BUS_VTABLE_PROPERTY_CONST
|SD_BUS_VTABLE_HIDDEN
),
937 SD_BUS_PROPERTY("ReadOnlyDirectories", "as", NULL
, offsetof(ExecContext
, read_only_paths
), SD_BUS_VTABLE_PROPERTY_CONST
|SD_BUS_VTABLE_HIDDEN
),
938 SD_BUS_PROPERTY("InaccessibleDirectories", "as", NULL
, offsetof(ExecContext
, inaccessible_paths
), SD_BUS_VTABLE_PROPERTY_CONST
|SD_BUS_VTABLE_HIDDEN
),
939 SD_BUS_PROPERTY("IOScheduling", "i", property_get_ioprio
, 0, SD_BUS_VTABLE_PROPERTY_CONST
|SD_BUS_VTABLE_HIDDEN
),
944 static int append_exec_command(sd_bus_message
*reply
, ExecCommand
*c
) {
953 r
= sd_bus_message_open_container(reply
, 'r', "sasbttttuii");
957 r
= sd_bus_message_append(reply
, "s", c
->path
);
961 r
= sd_bus_message_append_strv(reply
, c
->argv
);
965 r
= sd_bus_message_append(reply
, "bttttuii",
966 !!(c
->flags
& EXEC_COMMAND_IGNORE_FAILURE
),
967 c
->exec_status
.start_timestamp
.realtime
,
968 c
->exec_status
.start_timestamp
.monotonic
,
969 c
->exec_status
.exit_timestamp
.realtime
,
970 c
->exec_status
.exit_timestamp
.monotonic
,
971 (uint32_t) c
->exec_status
.pid
,
972 (int32_t) c
->exec_status
.code
,
973 (int32_t) c
->exec_status
.status
);
977 return sd_bus_message_close_container(reply
);
980 int bus_property_get_exec_command(
983 const char *interface
,
984 const char *property
,
985 sd_bus_message
*reply
,
987 sd_bus_error
*ret_error
) {
989 ExecCommand
*c
= (ExecCommand
*) userdata
;
995 r
= sd_bus_message_open_container(reply
, 'a', "(sasbttttuii)");
999 r
= append_exec_command(reply
, c
);
1003 return sd_bus_message_close_container(reply
);
1006 int bus_property_get_exec_command_list(
1009 const char *interface
,
1010 const char *property
,
1011 sd_bus_message
*reply
,
1013 sd_bus_error
*ret_error
) {
1015 ExecCommand
*c
= *(ExecCommand
**) userdata
;
1021 r
= sd_bus_message_open_container(reply
, 'a', "(sasbttttuii)");
1025 LIST_FOREACH(command
, c
, c
) {
1026 r
= append_exec_command(reply
, c
);
1031 return sd_bus_message_close_container(reply
);
1034 int bus_exec_context_set_transient_property(
1038 sd_bus_message
*message
,
1039 UnitSetPropertiesMode mode
,
1040 sd_bus_error
*error
) {
1042 const char *soft
= NULL
;
1050 if (streq(name
, "User")) {
1053 r
= sd_bus_message_read(message
, "s", &uu
);
1057 if (!isempty(uu
) && !valid_user_group_name_or_id(uu
))
1058 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid user name: %s", uu
);
1060 if (mode
!= UNIT_CHECK
) {
1063 c
->user
= mfree(c
->user
);
1064 else if (free_and_strdup(&c
->user
, uu
) < 0)
1067 unit_write_drop_in_private_format(u
, mode
, name
, "User=%s", uu
);
1072 } else if (streq(name
, "Group")) {
1075 r
= sd_bus_message_read(message
, "s", &gg
);
1079 if (!isempty(gg
) && !valid_user_group_name_or_id(gg
))
1080 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid group name: %s", gg
);
1082 if (mode
!= UNIT_CHECK
) {
1085 c
->group
= mfree(c
->group
);
1086 else if (free_and_strdup(&c
->group
, gg
) < 0)
1089 unit_write_drop_in_private_format(u
, mode
, name
, "Group=%s", gg
);
1094 } else if (streq(name
, "SupplementaryGroups")) {
1095 _cleanup_strv_free_
char **l
= NULL
;
1098 r
= sd_bus_message_read_strv(message
, &l
);
1102 STRV_FOREACH(p
, l
) {
1103 if (!isempty(*p
) && !valid_user_group_name_or_id(*p
))
1104 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid supplementary group names");
1107 if (mode
!= UNIT_CHECK
) {
1108 if (strv_length(l
) == 0) {
1109 c
->supplementary_groups
= strv_free(c
->supplementary_groups
);
1110 unit_write_drop_in_private_format(u
, mode
, name
, "%s=", name
);
1112 _cleanup_free_
char *joined
= NULL
;
1114 r
= strv_extend_strv(&c
->supplementary_groups
, l
, true);
1118 joined
= strv_join(c
->supplementary_groups
, " ");
1122 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, joined
);
1128 } else if (streq(name
, "SyslogIdentifier")) {
1131 r
= sd_bus_message_read(message
, "s", &id
);
1135 if (mode
!= UNIT_CHECK
) {
1138 c
->syslog_identifier
= mfree(c
->syslog_identifier
);
1139 else if (free_and_strdup(&c
->syslog_identifier
, id
) < 0)
1142 unit_write_drop_in_private_format(u
, mode
, name
, "SyslogIdentifier=%s", id
);
1146 } else if (streq(name
, "SyslogLevel")) {
1149 r
= sd_bus_message_read(message
, "i", &level
);
1153 if (!log_level_is_valid(level
))
1154 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Log level value out of range");
1156 if (mode
!= UNIT_CHECK
) {
1157 c
->syslog_priority
= (c
->syslog_priority
& LOG_FACMASK
) | level
;
1158 unit_write_drop_in_private_format(u
, mode
, name
, "SyslogLevel=%i", level
);
1162 } else if (streq(name
, "SyslogFacility")) {
1165 r
= sd_bus_message_read(message
, "i", &facility
);
1169 if (!log_facility_unshifted_is_valid(facility
))
1170 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Log facility value out of range");
1172 if (mode
!= UNIT_CHECK
) {
1173 c
->syslog_priority
= (facility
<< 3) | LOG_PRI(c
->syslog_priority
);
1174 unit_write_drop_in_private_format(u
, mode
, name
, "SyslogFacility=%i", facility
);
1179 } else if (streq(name
, "LogLevelMax")) {
1182 r
= sd_bus_message_read(message
, "i", &level
);
1186 if (!log_level_is_valid(level
))
1187 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Maximum log level value out of range");
1189 if (mode
!= UNIT_CHECK
) {
1190 c
->log_level_max
= level
;
1191 unit_write_drop_in_private_format(u
, mode
, name
, "LogLevelMax=%i", level
);
1196 } else if (streq(name
, "LogExtraFields")) {
1199 r
= sd_bus_message_enter_container(message
, 'a', "ay");
1204 _cleanup_free_
void *copy
= NULL
;
1210 /* Note that we expect a byte array for each field, instead of a string. That's because on the
1211 * lower-level journal fields can actually contain binary data and are not restricted to text,
1212 * and we should not "lose precision" in our types on the way. That said, I am pretty sure
1213 * actually encoding binary data as unit metadata is not a good idea. Hence we actually refuse
1214 * any actual binary data, and only accept UTF-8. This allows us to eventually lift this
1215 * limitation, should a good, valid usecase arise. */
1217 r
= sd_bus_message_read_array(message
, 'y', &p
, &sz
);
1223 if (memchr(p
, 0, sz
))
1224 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Journal field contains zero byte");
1226 eq
= memchr(p
, '=', sz
);
1228 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Journal field contains no '=' character");
1229 if (!journal_field_valid(p
, eq
- (const char*) p
, false))
1230 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Journal field invalid");
1232 if (mode
!= UNIT_CHECK
) {
1233 t
= realloc_multiply(c
->log_extra_fields
, sizeof(struct iovec
), c
->n_log_extra_fields
+1);
1236 c
->log_extra_fields
= t
;
1239 copy
= malloc(sz
+ 1);
1243 memcpy(copy
, p
, sz
);
1244 ((uint8_t*) copy
)[sz
] = 0;
1246 if (!utf8_is_valid(copy
))
1247 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Journal field is not valid UTF-8");
1249 if (mode
!= UNIT_CHECK
) {
1250 c
->log_extra_fields
[c
->n_log_extra_fields
++] = IOVEC_MAKE(copy
, sz
);
1251 unit_write_drop_in_private_format(u
, mode
, name
, "LogExtraFields=%s", (char*) copy
);
1259 r
= sd_bus_message_exit_container(message
);
1263 if (mode
!= UNIT_CHECK
&& n
== 0) {
1264 exec_context_free_log_extra_fields(c
);
1265 unit_write_drop_in_private(u
, mode
, name
, "LogExtraFields=");
1270 } else if (streq(name
, "SecureBits")) {
1273 r
= sd_bus_message_read(message
, "i", &n
);
1277 if (!secure_bits_is_valid(n
))
1278 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid secure bits");
1280 if (mode
!= UNIT_CHECK
) {
1281 _cleanup_free_
char *str
= NULL
;
1284 r
= secure_bits_to_string_alloc(n
, &str
);
1288 unit_write_drop_in_private_format(u
, mode
, name
, "SecureBits=%s", str
);
1292 } else if (STR_IN_SET(name
, "CapabilityBoundingSet", "AmbientCapabilities")) {
1295 r
= sd_bus_message_read(message
, "t", &n
);
1299 if (mode
!= UNIT_CHECK
) {
1300 _cleanup_free_
char *str
= NULL
;
1302 if (streq(name
, "CapabilityBoundingSet"))
1303 c
->capability_bounding_set
= n
;
1304 else /* "AmbientCapabilities" */
1305 c
->capability_ambient_set
= n
;
1307 r
= capability_set_to_string_alloc(n
, &str
);
1311 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, str
);
1316 } else if (streq(name
, "Personality")) {
1320 r
= sd_bus_message_read(message
, "s", &s
);
1324 p
= personality_from_string(s
);
1325 if (p
== PERSONALITY_INVALID
)
1326 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid personality");
1328 if (mode
!= UNIT_CHECK
) {
1330 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, s
);
1337 } else if (streq(name
, "SystemCallFilter")) {
1339 _cleanup_strv_free_
char **l
= NULL
;
1341 r
= sd_bus_message_enter_container(message
, 'r', "bas");
1345 r
= sd_bus_message_read(message
, "b", &whitelist
);
1349 r
= sd_bus_message_read_strv(message
, &l
);
1353 r
= sd_bus_message_exit_container(message
);
1357 if (mode
!= UNIT_CHECK
) {
1358 _cleanup_free_
char *joined
= NULL
;
1360 if (strv_length(l
) == 0) {
1361 c
->syscall_whitelist
= false;
1362 c
->syscall_filter
= hashmap_free(c
->syscall_filter
);
1366 c
->syscall_whitelist
= whitelist
;
1368 r
= hashmap_ensure_allocated(&c
->syscall_filter
, NULL
);
1372 STRV_FOREACH(s
, l
) {
1373 _cleanup_free_
char *n
= NULL
;
1376 r
= parse_syscall_and_errno(*s
, &n
, &e
);
1381 const SyscallFilterSet
*set
;
1384 set
= syscall_filter_set_find(n
);
1388 NULSTR_FOREACH(i
, set
->value
) {
1391 id
= seccomp_syscall_resolve_name(i
);
1392 if (id
== __NR_SCMP_ERROR
)
1395 r
= hashmap_put(c
->syscall_filter
, INT_TO_PTR(id
+ 1), INT_TO_PTR(e
));
1403 id
= seccomp_syscall_resolve_name(n
);
1404 if (id
== __NR_SCMP_ERROR
)
1407 r
= hashmap_put(c
->syscall_filter
, INT_TO_PTR(id
+ 1), INT_TO_PTR(e
));
1414 joined
= strv_join(l
, " ");
1418 unit_write_drop_in_private_format(u
, mode
, name
, "SystemCallFilter=%s%s", whitelist
? "" : "~", joined
);
1423 } else if (streq(name
, "SystemCallArchitectures")) {
1424 _cleanup_strv_free_
char **l
= NULL
;
1426 r
= sd_bus_message_read_strv(message
, &l
);
1430 if (mode
!= UNIT_CHECK
) {
1431 _cleanup_free_
char *joined
= NULL
;
1433 if (strv_length(l
) == 0)
1434 c
->syscall_archs
= set_free(c
->syscall_archs
);
1438 r
= set_ensure_allocated(&c
->syscall_archs
, NULL
);
1442 STRV_FOREACH(s
, l
) {
1445 r
= seccomp_arch_from_string(*s
, &a
);
1449 r
= set_put(c
->syscall_archs
, UINT32_TO_PTR(a
+ 1));
1456 joined
= strv_join(l
, " ");
1460 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, joined
);
1465 } else if (streq(name
, "SystemCallErrorNumber")) {
1468 r
= sd_bus_message_read(message
, "i", &n
);
1472 if (n
<= 0 || n
> ERRNO_MAX
)
1473 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid SystemCallErrorNumber");
1475 if (mode
!= UNIT_CHECK
) {
1476 c
->syscall_errno
= n
;
1478 unit_write_drop_in_private_format(u
, mode
, name
, "SystemCallErrorNumber=%d", n
);
1483 } else if (streq(name
, "RestrictAddressFamilies")) {
1485 _cleanup_strv_free_
char **l
= NULL
;
1487 r
= sd_bus_message_enter_container(message
, 'r', "bas");
1491 r
= sd_bus_message_read(message
, "b", &whitelist
);
1495 r
= sd_bus_message_read_strv(message
, &l
);
1499 r
= sd_bus_message_exit_container(message
);
1503 if (mode
!= UNIT_CHECK
) {
1504 _cleanup_free_
char *joined
= NULL
;
1506 if (strv_length(l
) == 0) {
1507 c
->address_families_whitelist
= false;
1508 c
->address_families
= set_free(c
->address_families
);
1512 c
->address_families_whitelist
= whitelist
;
1514 r
= set_ensure_allocated(&c
->address_families
, NULL
);
1518 STRV_FOREACH(s
, l
) {
1521 af
= af_from_name(*s
);
1525 r
= set_put(c
->address_families
, INT_TO_PTR(af
));
1531 joined
= strv_join(l
, " ");
1535 unit_write_drop_in_private_format(u
, mode
, name
, "RestrictAddressFamilies=%s%s", whitelist
? "" : "~", joined
);
1541 } else if (streq(name
, "CPUSchedulingPolicy")) {
1544 r
= sd_bus_message_read(message
, "i", &n
);
1548 if (!sched_policy_is_valid(n
))
1549 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid CPU scheduling policy");
1551 if (mode
!= UNIT_CHECK
) {
1552 _cleanup_free_
char *str
= NULL
;
1554 c
->cpu_sched_policy
= n
;
1555 r
= sched_policy_to_string_alloc(n
, &str
);
1559 unit_write_drop_in_private_format(u
, mode
, name
, "CPUSchedulingPolicy=%s", str
);
1564 } else if (streq(name
, "CPUSchedulingPriority")) {
1567 r
= sd_bus_message_read(message
, "i", &n
);
1571 if (!ioprio_priority_is_valid(n
))
1572 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid CPU scheduling priority");
1574 if (mode
!= UNIT_CHECK
) {
1575 c
->cpu_sched_priority
= n
;
1576 unit_write_drop_in_private_format(u
, mode
, name
, "CPUSchedulingPriority=%i", n
);
1581 } else if (streq(name
, "CPUAffinity")) {
1585 r
= sd_bus_message_read_array(message
, 'y', &a
, &n
);
1589 if (mode
!= UNIT_CHECK
) {
1591 c
->cpuset
= mfree(c
->cpuset
);
1592 unit_write_drop_in_private_format(u
, mode
, name
, "%s=", name
);
1594 _cleanup_free_
char *str
= NULL
;
1596 size_t allocated
= 0, len
= 0, i
;
1598 c
->cpuset
= (cpu_set_t
*) memdup(a
, sizeof(cpu_set_t
) * n
);
1603 for (i
= 0; i
< n
; i
++) {
1604 _cleanup_free_
char *p
= NULL
;
1607 r
= asprintf(&p
, "%hhi", l
[i
]);
1613 if (GREEDY_REALLOC(str
, allocated
, len
+ add
+ 2))
1616 strcpy(mempcpy(str
+ len
, p
, add
), " ");
1621 str
[len
- 1] = '\0';
1623 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, str
);
1628 } else if (streq(name
, "Nice")) {
1631 r
= sd_bus_message_read(message
, "i", &n
);
1635 if (!nice_is_valid(n
))
1636 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Nice value out of range");
1638 if (mode
!= UNIT_CHECK
) {
1640 unit_write_drop_in_private_format(u
, mode
, name
, "Nice=%i", n
);
1645 } else if (streq(name
, "IOSchedulingClass")) {
1648 r
= sd_bus_message_read(message
, "i", &q
);
1652 if (!ioprio_class_is_valid(q
))
1653 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid IO scheduling class: %i", q
);
1655 if (mode
!= UNIT_CHECK
) {
1656 _cleanup_free_
char *s
= NULL
;
1658 r
= ioprio_class_to_string_alloc(q
, &s
);
1662 c
->ioprio
= IOPRIO_PRIO_VALUE(q
, IOPRIO_PRIO_DATA(c
->ioprio
));
1663 c
->ioprio_set
= true;
1665 unit_write_drop_in_private_format(u
, mode
, name
, "IOSchedulingClass=%s", s
);
1670 } else if (streq(name
, "IOSchedulingPriority")) {
1673 r
= sd_bus_message_read(message
, "i", &p
);
1677 if (!ioprio_priority_is_valid(p
))
1678 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid IO scheduling priority: %i", p
);
1680 if (mode
!= UNIT_CHECK
) {
1681 c
->ioprio
= IOPRIO_PRIO_VALUE(IOPRIO_PRIO_CLASS(c
->ioprio
), p
);
1682 c
->ioprio_set
= true;
1684 unit_write_drop_in_private_format(u
, mode
, name
, "IOSchedulingPriority=%i", p
);
1689 } else if (STR_IN_SET(name
, "TTYPath", "RootDirectory", "RootImage")) {
1692 r
= sd_bus_message_read(message
, "s", &s
);
1696 if (!path_is_absolute(s
))
1697 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "%s takes an absolute path", name
);
1699 if (mode
!= UNIT_CHECK
) {
1700 if (streq(name
, "TTYPath"))
1701 r
= free_and_strdup(&c
->tty_path
, s
);
1702 else if (streq(name
, "RootImage"))
1703 r
= free_and_strdup(&c
->root_image
, s
);
1705 assert(streq(name
, "RootDirectory"));
1706 r
= free_and_strdup(&c
->root_directory
, s
);
1711 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, s
);
1716 } else if (streq(name
, "WorkingDirectory")) {
1720 r
= sd_bus_message_read(message
, "s", &s
);
1730 if (!streq(s
, "~") && !path_is_absolute(s
))
1731 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "WorkingDirectory= expects an absolute path or '~'");
1733 if (mode
!= UNIT_CHECK
) {
1734 if (streq(s
, "~")) {
1735 c
->working_directory
= mfree(c
->working_directory
);
1736 c
->working_directory_home
= true;
1738 r
= free_and_strdup(&c
->working_directory
, s
);
1742 c
->working_directory_home
= false;
1745 c
->working_directory_missing_ok
= missing_ok
;
1746 unit_write_drop_in_private_format(u
, mode
, name
, "WorkingDirectory=%s%s", missing_ok
? "-" : "", s
);
1751 } else if (streq(name
, "StandardInput")) {
1755 r
= sd_bus_message_read(message
, "s", &s
);
1759 p
= exec_input_from_string(s
);
1761 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid standard input name");
1763 if (mode
!= UNIT_CHECK
) {
1766 unit_write_drop_in_private_format(u
, mode
, name
, "StandardInput=%s", exec_input_to_string(p
));
1771 } else if (streq(name
, "StandardOutput")) {
1775 r
= sd_bus_message_read(message
, "s", &s
);
1779 p
= exec_output_from_string(s
);
1781 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid standard output name");
1783 if (mode
!= UNIT_CHECK
) {
1786 unit_write_drop_in_private_format(u
, mode
, name
, "StandardOutput=%s", exec_output_to_string(p
));
1791 } else if (streq(name
, "StandardError")) {
1795 r
= sd_bus_message_read(message
, "s", &s
);
1799 p
= exec_output_from_string(s
);
1801 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid standard error name");
1803 if (mode
!= UNIT_CHECK
) {
1806 unit_write_drop_in_private_format(u
, mode
, name
, "StandardError=%s", exec_output_to_string(p
));
1811 } else if (STR_IN_SET(name
,
1812 "StandardInputFileDescriptorName", "StandardOutputFileDescriptorName", "StandardErrorFileDescriptorName")) {
1815 r
= sd_bus_message_read(message
, "s", &s
);
1821 else if (!fdname_is_valid(s
))
1822 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid file descriptor name");
1824 if (mode
!= UNIT_CHECK
) {
1826 if (streq(name
, "StandardInputFileDescriptorName")) {
1827 r
= free_and_strdup(c
->stdio_fdname
+ STDIN_FILENO
, s
);
1831 c
->std_input
= EXEC_INPUT_NAMED_FD
;
1832 unit_write_drop_in_private_format(u
, mode
, name
, "StandardInput=fd:%s", exec_context_fdname(c
, STDIN_FILENO
));
1834 } else if (streq(name
, "StandardOutputFileDescriptorName")) {
1835 r
= free_and_strdup(c
->stdio_fdname
+ STDOUT_FILENO
, s
);
1839 c
->std_output
= EXEC_OUTPUT_NAMED_FD
;
1840 unit_write_drop_in_private_format(u
, mode
, name
, "StandardOutput=fd:%s", exec_context_fdname(c
, STDOUT_FILENO
));
1843 assert(streq(name
, "StandardErrorFileDescriptorName"));
1845 r
= free_and_strdup(&c
->stdio_fdname
[STDERR_FILENO
], s
);
1849 c
->std_error
= EXEC_OUTPUT_NAMED_FD
;
1850 unit_write_drop_in_private_format(u
, mode
, name
, "StandardError=fd:%s", exec_context_fdname(c
, STDERR_FILENO
));
1856 } else if (streq(name
, "StandardInputData")) {
1860 r
= sd_bus_message_read_array(message
, 'y', &p
, &sz
);
1864 if (mode
!= UNIT_CHECK
) {
1865 _cleanup_free_
char *encoded
= NULL
;
1868 c
->stdin_data
= mfree(c
->stdin_data
);
1869 c
->stdin_data_size
= 0;
1871 unit_write_drop_in_private(u
, mode
, name
, "StandardInputData=");
1876 if (c
->stdin_data_size
+ sz
< c
->stdin_data_size
|| /* check for overflow */
1877 c
->stdin_data_size
+ sz
> EXEC_STDIN_DATA_MAX
)
1880 n
= base64mem(p
, sz
, &encoded
);
1884 q
= realloc(c
->stdin_data
, c
->stdin_data_size
+ sz
);
1888 memcpy((uint8_t*) q
+ c
->stdin_data_size
, p
, sz
);
1891 c
->stdin_data_size
+= sz
;
1893 unit_write_drop_in_private_format(u
, mode
, name
, "StandardInputData=%s", encoded
);
1899 } else if (STR_IN_SET(name
,
1900 "IgnoreSIGPIPE", "TTYVHangup", "TTYReset", "TTYVTDisallocate",
1901 "PrivateTmp", "PrivateDevices", "PrivateNetwork", "PrivateUsers",
1902 "NoNewPrivileges", "SyslogLevelPrefix", "MemoryDenyWriteExecute",
1903 "RestrictRealtime", "DynamicUser", "RemoveIPC", "ProtectKernelTunables",
1904 "ProtectKernelModules", "ProtectControlGroups", "MountAPIVFS",
1905 "CPUSchedulingResetOnFork", "NonBlocking", "LockPersonality")) {
1908 r
= sd_bus_message_read(message
, "b", &b
);
1912 if (mode
!= UNIT_CHECK
) {
1913 if (streq(name
, "IgnoreSIGPIPE"))
1914 c
->ignore_sigpipe
= b
;
1915 else if (streq(name
, "TTYVHangup"))
1917 else if (streq(name
, "TTYReset"))
1919 else if (streq(name
, "TTYVTDisallocate"))
1920 c
->tty_vt_disallocate
= b
;
1921 else if (streq(name
, "PrivateTmp"))
1923 else if (streq(name
, "PrivateDevices"))
1924 c
->private_devices
= b
;
1925 else if (streq(name
, "PrivateNetwork"))
1926 c
->private_network
= b
;
1927 else if (streq(name
, "PrivateUsers"))
1928 c
->private_users
= b
;
1929 else if (streq(name
, "NoNewPrivileges"))
1930 c
->no_new_privileges
= b
;
1931 else if (streq(name
, "SyslogLevelPrefix"))
1932 c
->syslog_level_prefix
= b
;
1933 else if (streq(name
, "MemoryDenyWriteExecute"))
1934 c
->memory_deny_write_execute
= b
;
1935 else if (streq(name
, "RestrictRealtime"))
1936 c
->restrict_realtime
= b
;
1937 else if (streq(name
, "DynamicUser"))
1938 c
->dynamic_user
= b
;
1939 else if (streq(name
, "RemoveIPC"))
1941 else if (streq(name
, "ProtectKernelTunables"))
1942 c
->protect_kernel_tunables
= b
;
1943 else if (streq(name
, "ProtectKernelModules"))
1944 c
->protect_kernel_modules
= b
;
1945 else if (streq(name
, "ProtectControlGroups"))
1946 c
->protect_control_groups
= b
;
1947 else if (streq(name
, "MountAPIVFS"))
1948 c
->mount_apivfs
= b
;
1949 else if (streq(name
, "CPUSchedulingResetOnFork"))
1950 c
->cpu_sched_reset_on_fork
= b
;
1951 else if (streq(name
, "NonBlocking"))
1952 c
->non_blocking
= b
;
1953 else if (streq(name
, "LockPersonality"))
1954 c
->lock_personality
= b
;
1956 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, yes_no(b
));
1961 } else if (streq(name
, "UtmpIdentifier")) {
1964 r
= sd_bus_message_read(message
, "s", &id
);
1968 if (mode
!= UNIT_CHECK
) {
1970 c
->utmp_id
= mfree(c
->utmp_id
);
1971 else if (free_and_strdup(&c
->utmp_id
, id
) < 0)
1974 unit_write_drop_in_private_format(u
, mode
, name
, "UtmpIdentifier=%s", strempty(id
));
1979 } else if (streq(name
, "UtmpMode")) {
1983 r
= sd_bus_message_read(message
, "s", &s
);
1987 m
= exec_utmp_mode_from_string(s
);
1989 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid utmp mode");
1991 if (mode
!= UNIT_CHECK
) {
1994 unit_write_drop_in_private_format(u
, mode
, name
, "UtmpMode=%s", exec_utmp_mode_to_string(m
));
1999 } else if (streq(name
, "PAMName")) {
2002 r
= sd_bus_message_read(message
, "s", &n
);
2006 if (mode
!= UNIT_CHECK
) {
2008 c
->pam_name
= mfree(c
->pam_name
);
2009 else if (free_and_strdup(&c
->pam_name
, n
) < 0)
2012 unit_write_drop_in_private_format(u
, mode
, name
, "PAMName=%s", strempty(n
));
2017 } else if (streq(name
, "Environment")) {
2019 _cleanup_strv_free_
char **l
= NULL
, **q
= NULL
;
2021 r
= sd_bus_message_read_strv(message
, &l
);
2025 r
= unit_full_printf_strv(u
, l
, &q
);
2029 if (!strv_env_is_valid(q
))
2030 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid environment block.");
2032 if (mode
!= UNIT_CHECK
) {
2033 if (strv_length(q
) == 0) {
2034 c
->environment
= strv_free(c
->environment
);
2035 unit_write_drop_in_private_format(u
, mode
, name
, "Environment=");
2037 _cleanup_free_
char *joined
= NULL
;
2040 e
= strv_env_merge(2, c
->environment
, q
);
2044 strv_free(c
->environment
);
2047 /* We write just the new settings out to file, with unresolved specifiers */
2048 joined
= strv_join_quoted(l
);
2052 unit_write_drop_in_private_format(u
, mode
, name
, "Environment=%s", joined
);
2058 } else if (streq(name
, "UnsetEnvironment")) {
2060 _cleanup_strv_free_
char **l
= NULL
, **q
= NULL
;
2062 r
= sd_bus_message_read_strv(message
, &l
);
2066 r
= unit_full_printf_strv(u
, l
, &q
);
2070 if (!strv_env_name_or_assignment_is_valid(q
))
2071 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid UnsetEnvironment= list.");
2073 if (mode
!= UNIT_CHECK
) {
2074 if (strv_length(q
) == 0) {
2075 c
->unset_environment
= strv_free(c
->unset_environment
);
2076 unit_write_drop_in_private_format(u
, mode
, name
, "UnsetEnvironment=");
2078 _cleanup_free_
char *joined
= NULL
;
2081 e
= strv_env_merge(2, c
->unset_environment
, q
);
2085 strv_free(c
->unset_environment
);
2086 c
->unset_environment
= e
;
2088 /* We write just the new settings out to file, with unresolved specifiers */
2089 joined
= strv_join_quoted(l
);
2093 unit_write_drop_in_private_format(u
, mode
, name
, "UnsetEnvironment=%s", joined
);
2099 } else if (streq(name
, "TimerSlackNSec")) {
2103 r
= sd_bus_message_read(message
, "t", &n
);
2107 if (mode
!= UNIT_CHECK
) {
2108 c
->timer_slack_nsec
= n
;
2109 unit_write_drop_in_private_format(u
, mode
, name
, "TimerSlackNSec=" NSEC_FMT
, n
);
2114 } else if (streq(name
, "OOMScoreAdjust")) {
2117 r
= sd_bus_message_read(message
, "i", &oa
);
2121 if (!oom_score_adjust_is_valid(oa
))
2122 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "OOM score adjust value out of range");
2124 if (mode
!= UNIT_CHECK
) {
2125 c
->oom_score_adjust
= oa
;
2126 c
->oom_score_adjust_set
= true;
2127 unit_write_drop_in_private_format(u
, mode
, name
, "OOMScoreAdjust=%i", oa
);
2132 } else if (streq(name
, "EnvironmentFiles")) {
2134 _cleanup_free_
char *joined
= NULL
;
2135 _cleanup_fclose_
FILE *f
= NULL
;
2136 _cleanup_strv_free_
char **l
= NULL
;
2140 r
= sd_bus_message_enter_container(message
, 'a', "(sb)");
2144 f
= open_memstream(&joined
, &size
);
2148 STRV_FOREACH(i
, c
->environment_files
)
2149 fprintf(f
, "EnvironmentFile=%s", *i
);
2151 while ((r
= sd_bus_message_enter_container(message
, 'r', "sb")) > 0) {
2155 r
= sd_bus_message_read(message
, "sb", &path
, &b
);
2159 r
= sd_bus_message_exit_container(message
);
2163 if (!path_is_absolute(path
))
2164 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Path %s is not absolute.", path
);
2166 if (mode
!= UNIT_CHECK
) {
2169 buf
= strjoin(b
? "-" : "", path
);
2173 fprintf(f
, "EnvironmentFile=%s", buf
);
2175 r
= strv_consume(&l
, buf
);
2183 r
= sd_bus_message_exit_container(message
);
2187 r
= fflush_and_check(f
);
2191 if (mode
!= UNIT_CHECK
) {
2192 if (strv_isempty(l
)) {
2193 c
->environment_files
= strv_free(c
->environment_files
);
2194 unit_write_drop_in_private(u
, mode
, name
, "EnvironmentFile=");
2196 r
= strv_extend_strv(&c
->environment_files
, l
, true);
2200 unit_write_drop_in_private(u
, mode
, name
, joined
);
2206 } else if (streq(name
, "PassEnvironment")) {
2208 _cleanup_strv_free_
char **l
= NULL
, **q
= NULL
;
2210 r
= sd_bus_message_read_strv(message
, &l
);
2214 r
= unit_full_printf_strv(u
, l
, &q
);
2218 if (!strv_env_name_is_valid(q
))
2219 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid PassEnvironment= block.");
2221 if (mode
!= UNIT_CHECK
) {
2222 if (strv_isempty(l
)) {
2223 c
->pass_environment
= strv_free(c
->pass_environment
);
2224 unit_write_drop_in_private_format(u
, mode
, name
, "PassEnvironment=");
2226 _cleanup_free_
char *joined
= NULL
;
2228 r
= strv_extend_strv(&c
->pass_environment
, q
, true);
2232 /* We write just the new settings out to file, with unresolved specifiers. */
2233 joined
= strv_join_quoted(l
);
2237 unit_write_drop_in_private_format(u
, mode
, name
, "PassEnvironment=%s", joined
);
2243 } else if (STR_IN_SET(name
, "ReadWriteDirectories", "ReadOnlyDirectories", "InaccessibleDirectories",
2244 "ReadWritePaths", "ReadOnlyPaths", "InaccessiblePaths")) {
2245 _cleanup_strv_free_
char **l
= NULL
;
2249 r
= sd_bus_message_read_strv(message
, &l
);
2253 STRV_FOREACH(p
, l
) {
2257 if (!utf8_is_valid(i
))
2258 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid %s", name
);
2260 offset
= i
[0] == '-';
2261 offset
+= i
[offset
] == '+';
2262 if (!path_is_absolute(i
+ offset
))
2263 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid %s", name
);
2266 if (mode
!= UNIT_CHECK
) {
2267 _cleanup_free_
char *joined
= NULL
;
2269 if (STR_IN_SET(name
, "ReadWriteDirectories", "ReadWritePaths"))
2270 dirs
= &c
->read_write_paths
;
2271 else if (STR_IN_SET(name
, "ReadOnlyDirectories", "ReadOnlyPaths"))
2272 dirs
= &c
->read_only_paths
;
2273 else /* "InaccessiblePaths" */
2274 dirs
= &c
->inaccessible_paths
;
2276 if (strv_length(l
) == 0) {
2277 *dirs
= strv_free(*dirs
);
2278 unit_write_drop_in_private_format(u
, mode
, name
, "%s=", name
);
2280 r
= strv_extend_strv(dirs
, l
, true);
2284 joined
= strv_join_quoted(*dirs
);
2288 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, joined
);
2295 } else if (streq(name
, "ProtectSystem")) {
2299 r
= sd_bus_message_read(message
, "s", &s
);
2303 r
= parse_boolean(s
);
2305 ps
= PROTECT_SYSTEM_YES
;
2307 ps
= PROTECT_SYSTEM_NO
;
2309 ps
= protect_system_from_string(s
);
2311 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Failed to parse protect system value");
2314 if (mode
!= UNIT_CHECK
) {
2315 c
->protect_system
= ps
;
2316 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, s
);
2321 } else if (streq(name
, "ProtectHome")) {
2325 r
= sd_bus_message_read(message
, "s", &s
);
2329 r
= parse_boolean(s
);
2331 ph
= PROTECT_HOME_YES
;
2333 ph
= PROTECT_HOME_NO
;
2335 ph
= protect_home_from_string(s
);
2337 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Failed to parse protect home value");
2340 if (mode
!= UNIT_CHECK
) {
2341 c
->protect_home
= ph
;
2342 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, s
);
2347 } else if (streq(name
, "KeyringMode")) {
2352 r
= sd_bus_message_read(message
, "s", &s
);
2356 m
= exec_keyring_mode_from_string(s
);
2358 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid keyring mode");
2360 if (mode
!= UNIT_CHECK
) {
2361 c
->keyring_mode
= m
;
2363 unit_write_drop_in_private_format(u
, mode
, name
, "KeyringMode=%s", exec_keyring_mode_to_string(m
));
2368 } else if (streq(name
, "RuntimeDirectoryPreserve")) {
2372 r
= sd_bus_message_read(message
, "s", &s
);
2376 m
= exec_preserve_mode_from_string(s
);
2378 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid preserve mode");
2380 if (mode
!= UNIT_CHECK
) {
2381 c
->runtime_directory_preserve_mode
= m
;
2383 unit_write_drop_in_private_format(u
, mode
, name
, "RuntimeDirectoryPreserve=%s", exec_preserve_mode_to_string(m
));
2388 } else if (STR_IN_SET(name
, "RuntimeDirectoryMode", "StateDirectoryMode", "CacheDirectoryMode", "LogsDirectoryMode", "ConfigurationDirectoryMode", "UMask")) {
2391 r
= sd_bus_message_read(message
, "u", &m
);
2395 if (mode
!= UNIT_CHECK
) {
2396 ExecDirectoryType i
;
2398 if (streq(name
, "UMask"))
2401 for (i
= 0; i
< _EXEC_DIRECTORY_TYPE_MAX
; i
++)
2402 if (startswith(name
, exec_directory_type_to_string(i
))) {
2403 c
->directories
[i
].mode
= m
;
2407 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%040o", name
, m
);
2412 } else if (STR_IN_SET(name
, "RuntimeDirectory", "StateDirectory", "CacheDirectory", "LogsDirectory", "ConfigurationDirectory")) {
2413 _cleanup_strv_free_
char **l
= NULL
;
2416 r
= sd_bus_message_read_strv(message
, &l
);
2420 STRV_FOREACH(p
, l
) {
2421 if (!path_is_safe(*p
) || path_is_absolute(*p
))
2422 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "%s= path is not valid: %s", name
, *p
);
2425 if (mode
!= UNIT_CHECK
) {
2426 _cleanup_free_
char *joined
= NULL
;
2427 char ***dirs
= NULL
;
2428 ExecDirectoryType i
;
2430 for (i
= 0; i
< _EXEC_DIRECTORY_TYPE_MAX
; i
++)
2431 if (streq(name
, exec_directory_type_to_string(i
))) {
2432 dirs
= &c
->directories
[i
].paths
;
2438 if (strv_isempty(l
)) {
2439 *dirs
= strv_free(*dirs
);
2440 unit_write_drop_in_private_format(u
, mode
, name
, "%s=", name
);
2442 r
= strv_extend_strv(dirs
, l
, true);
2446 joined
= strv_join_quoted(*dirs
);
2450 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, joined
);
2456 } else if (streq(name
, "SELinuxContext")) {
2458 r
= sd_bus_message_read(message
, "s", &s
);
2462 if (mode
!= UNIT_CHECK
) {
2464 c
->selinux_context
= mfree(c
->selinux_context
);
2465 else if (free_and_strdup(&c
->selinux_context
, s
) < 0)
2468 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, strempty(s
));
2473 } else if (STR_IN_SET(name
, "AppArmorProfile", "SmackProcessLabel")) {
2477 r
= sd_bus_message_enter_container(message
, 'r', "bs");
2481 r
= sd_bus_message_read(message
, "bs", &ignore
, &s
);
2485 if (mode
!= UNIT_CHECK
) {
2489 if (streq(name
, "AppArmorProfile")) {
2490 p
= &c
->apparmor_profile
;
2491 b
= &c
->apparmor_profile_ignore
;
2492 } else { /* "SmackProcessLabel" */
2493 p
= &c
->smack_process_label
;
2494 b
= &c
->smack_process_label_ignore
;
2501 if (free_and_strdup(p
, s
) < 0)
2506 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s%s", name
, ignore
? "-" : "", strempty(s
));
2511 } else if (streq(name
, "RestrictNamespaces")) {
2514 r
= sd_bus_message_read(message
, "t", &flags
);
2517 if ((flags
& NAMESPACE_FLAGS_ALL
) != flags
)
2518 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Unknown namespace types");
2520 if (mode
!= UNIT_CHECK
) {
2521 _cleanup_free_
char *s
= NULL
;
2523 r
= namespace_flag_to_string_many(flags
, &s
);
2527 c
->restrict_namespaces
= flags
;
2528 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, s
);
2532 } else if (streq(name
, "MountFlags")) {
2535 r
= sd_bus_message_read(message
, "t", &flags
);
2538 if (!IN_SET(flags
, 0, MS_SHARED
, MS_PRIVATE
, MS_SLAVE
))
2539 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Unknown mount propagation flags");
2541 if (mode
!= UNIT_CHECK
) {
2542 c
->mount_flags
= flags
;
2544 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, mount_propagation_flags_to_string(flags
));
2548 } else if (STR_IN_SET(name
, "BindPaths", "BindReadOnlyPaths")) {
2549 unsigned empty
= true;
2551 r
= sd_bus_message_enter_container(message
, 'a', "(ssbt)");
2555 while ((r
= sd_bus_message_enter_container(message
, 'r', "ssbt")) > 0) {
2556 const char *source
, *destination
;
2558 uint64_t mount_flags
;
2560 r
= sd_bus_message_read(message
, "ssbt", &source
, &destination
, &ignore_enoent
, &mount_flags
);
2564 r
= sd_bus_message_exit_container(message
);
2568 if (!path_is_absolute(source
))
2569 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Source path %s is not absolute.", source
);
2570 if (!path_is_absolute(destination
))
2571 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Destination path %s is not absolute.", destination
);
2572 if (!IN_SET(mount_flags
, 0, MS_REC
))
2573 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Unknown mount flags.");
2575 if (mode
!= UNIT_CHECK
) {
2576 r
= bind_mount_add(&c
->bind_mounts
, &c
->n_bind_mounts
,
2578 .source
= strdup(source
),
2579 .destination
= strdup(destination
),
2580 .read_only
= !!strstr(name
, "ReadOnly"),
2581 .recursive
= !!(mount_flags
& MS_REC
),
2582 .ignore_enoent
= ignore_enoent
,
2587 unit_write_drop_in_private_format(
2591 ignore_enoent
? "-" : "",
2594 (mount_flags
& MS_REC
) ? "rbind" : "norbind");
2602 r
= sd_bus_message_exit_container(message
);
2607 bind_mount_free_many(c
->bind_mounts
, c
->n_bind_mounts
);
2608 c
->bind_mounts
= NULL
;
2609 c
->n_bind_mounts
= 0;
2615 ri
= rlimit_from_string(name
);
2617 soft
= endswith(name
, "Soft");
2621 n
= strndupa(name
, soft
- name
);
2622 ri
= rlimit_from_string(n
);
2633 r
= sd_bus_message_read(message
, "t", &rl
);
2637 if (rl
== (uint64_t) -1)
2642 if ((uint64_t) x
!= rl
)
2646 if (mode
!= UNIT_CHECK
) {
2647 _cleanup_free_
char *f
= NULL
;
2650 if (c
->rlimit
[ri
]) {
2651 nl
= *c
->rlimit
[ri
];
2658 /* When the resource limit is not initialized yet, then assign the value to both fields */
2659 nl
= (struct rlimit
) {
2664 r
= rlimit_format(&nl
, &f
);
2669 *c
->rlimit
[ri
] = nl
;
2671 c
->rlimit
[ri
] = newdup(struct rlimit
, &nl
, 1);
2676 unit_write_drop_in_private_format(u
, mode
, name
, "%s=%s", name
, f
);