1 /* SPDX-License-Identifier: LGPL-2.1+ */
3 This file is part of systemd.
5 Copyright 2010 Lennart Poettering
6 Copyright 2012 Holger Hans Peter Freyther
12 #include <linux/oom.h>
18 #include <sys/resource.h>
22 #include "alloc-util.h"
23 #include "all-units.h"
24 #include "bus-error.h"
25 #include "bus-internal.h"
28 #include "capability-util.h"
30 #include "conf-parser.h"
31 #include "cpu-set-util.h"
33 #include "errno-list.h"
37 #include "hexdecoct.h"
40 #include "journal-util.h"
41 #include "load-fragment.h"
44 #include "mount-util.h"
45 #include "parse-util.h"
46 #include "path-util.h"
47 #include "process-util.h"
49 #include "seccomp-util.h"
51 #include "securebits.h"
52 #include "securebits-util.h"
53 #include "signal-util.h"
54 #include "socket-protocol-list.h"
55 #include "stat-util.h"
56 #include "string-util.h"
58 #include "unit-name.h"
59 #include "unit-printf.h"
60 #include "user-util.h"
64 DEFINE_CONFIG_PARSE_ENUM(config_parse_collect_mode
, collect_mode
, CollectMode
, "Failed to parse garbage collection mode");
66 int config_parse_unit_deps(
71 unsigned section_line
,
78 UnitDependency d
= ltype
;
88 _cleanup_free_
char *word
= NULL
, *k
= NULL
;
91 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_RETAIN_ESCAPE
);
97 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid syntax, ignoring: %s", rvalue
);
101 r
= unit_name_printf(u
, word
, &k
);
103 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", word
);
107 r
= unit_add_dependency_by_name(u
, d
, k
, NULL
, true, UNIT_DEPENDENCY_FILE
);
109 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to add dependency on %s, ignoring: %m", k
);
115 int config_parse_obsolete_unit_deps(
117 const char *filename
,
120 unsigned section_line
,
127 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
128 "Unit dependency type %s= is obsolete, replacing by %s=, please update your unit file", lvalue
, unit_dependency_to_string(ltype
));
130 return config_parse_unit_deps(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
, rvalue
, data
, userdata
);
133 int config_parse_unit_string_printf(
135 const char *filename
,
138 unsigned section_line
,
145 _cleanup_free_
char *k
= NULL
;
154 r
= unit_full_printf(u
, rvalue
, &k
);
156 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", rvalue
);
160 return config_parse_string(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
, k
, data
, userdata
);
163 int config_parse_unit_strv_printf(
165 const char *filename
,
168 unsigned section_line
,
176 _cleanup_free_
char *k
= NULL
;
184 r
= unit_full_printf(u
, rvalue
, &k
);
186 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", rvalue
);
190 return config_parse_strv(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
, k
, data
, userdata
);
193 int config_parse_unit_path_printf(
195 const char *filename
,
198 unsigned section_line
,
205 _cleanup_free_
char *k
= NULL
;
215 /* Let's not bother with anything that is too long */
216 if (strlen(rvalue
) >= PATH_MAX
) {
217 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
218 "%s value too long%s.",
219 lvalue
, fatal
? "" : ", ignoring");
220 return fatal
? -ENAMETOOLONG
: 0;
223 r
= unit_full_printf(u
, rvalue
, &k
);
225 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
226 "Failed to resolve unit specifiers in '%s'%s: %m",
227 rvalue
, fatal
? "" : ", ignoring");
228 return fatal
? -ENOEXEC
: 0;
231 return config_parse_path(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
, k
, data
, userdata
);
234 int config_parse_unit_path_strv_printf(
236 const char *filename
,
239 unsigned section_line
,
256 if (isempty(rvalue
)) {
262 _cleanup_free_
char *word
= NULL
, *k
= NULL
;
264 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_QUOTES
);
270 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
271 "Invalid syntax, ignoring: %s", rvalue
);
275 r
= unit_full_printf(u
, word
, &k
);
277 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
278 "Failed to resolve unit specifiers in '%s', ignoring: %m", word
);
282 if (!utf8_is_valid(k
)) {
283 log_syntax_invalid_utf8(unit
, LOG_ERR
, filename
, line
, rvalue
);
287 if (!path_is_absolute(k
)) {
288 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
289 "Symlink path is not absolute: %s", k
);
293 path_kill_slashes(k
);
302 int config_parse_socket_listen(const char *unit
,
303 const char *filename
,
306 unsigned section_line
,
313 _cleanup_free_ SocketPort
*p
= NULL
;
325 if (isempty(rvalue
)) {
326 /* An empty assignment removes all ports */
327 socket_free_ports(s
);
331 p
= new0(SocketPort
, 1);
335 if (ltype
!= SOCKET_SOCKET
) {
338 r
= unit_full_printf(UNIT(s
), rvalue
, &p
->path
);
340 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", rvalue
);
344 path_kill_slashes(p
->path
);
346 } else if (streq(lvalue
, "ListenNetlink")) {
347 _cleanup_free_
char *k
= NULL
;
349 p
->type
= SOCKET_SOCKET
;
350 r
= unit_full_printf(UNIT(s
), rvalue
, &k
);
352 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", rvalue
);
356 r
= socket_address_parse_netlink(&p
->address
, k
);
358 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse address value in '%s', ignoring: %m", k
);
363 _cleanup_free_
char *k
= NULL
;
365 p
->type
= SOCKET_SOCKET
;
366 r
= unit_full_printf(UNIT(s
), rvalue
, &k
);
368 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", rvalue
);
372 r
= socket_address_parse_and_warn(&p
->address
, k
);
374 if (r
!= -EAFNOSUPPORT
)
375 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse address value in '%s', ignoring: %m", k
);
379 if (streq(lvalue
, "ListenStream"))
380 p
->address
.type
= SOCK_STREAM
;
381 else if (streq(lvalue
, "ListenDatagram"))
382 p
->address
.type
= SOCK_DGRAM
;
384 assert(streq(lvalue
, "ListenSequentialPacket"));
385 p
->address
.type
= SOCK_SEQPACKET
;
388 if (socket_address_family(&p
->address
) != AF_LOCAL
&& p
->address
.type
== SOCK_SEQPACKET
) {
389 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Address family not supported, ignoring: %s", rvalue
);
395 p
->auxiliary_fds
= NULL
;
396 p
->n_auxiliary_fds
= 0;
399 LIST_FIND_TAIL(port
, s
->ports
, tail
);
400 LIST_INSERT_AFTER(port
, s
->ports
, tail
, p
);
407 int config_parse_socket_protocol(const char *unit
,
408 const char *filename
,
411 unsigned section_line
,
427 r
= socket_protocol_from_name(rvalue
);
429 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid socket protocol '%s', ignoring: %m", rvalue
);
431 } else if (!IN_SET(r
, IPPROTO_UDPLITE
, IPPROTO_SCTP
)) {
432 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Socket protocol not supported, ignoring: %s", rvalue
);
436 s
->socket_protocol
= r
;
441 int config_parse_socket_bind(const char *unit
,
442 const char *filename
,
445 unsigned section_line
,
453 SocketAddressBindIPv6Only b
;
462 b
= parse_socket_address_bind_ipv6_only_or_bool(rvalue
);
464 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse bind IPv6 only value, ignoring: %s", rvalue
);
468 s
->bind_ipv6_only
= b
;
473 int config_parse_exec_nice(
475 const char *filename
,
478 unsigned section_line
,
485 ExecContext
*c
= data
;
493 if (isempty(rvalue
)) {
498 r
= parse_nice(rvalue
, &priority
);
501 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Nice priority out of range, ignoring: %s", rvalue
);
503 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse nice priority '%s', ignoring: %m", rvalue
);
513 int config_parse_exec_oom_score_adjust(
515 const char *filename
,
518 unsigned section_line
,
525 ExecContext
*c
= data
;
533 if (isempty(rvalue
)) {
534 c
->oom_score_adjust_set
= false;
538 r
= parse_oom_score_adjust(rvalue
, &oa
);
541 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "OOM score adjust value out of range, ignoring: %s", rvalue
);
543 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse the OOM score adjust value '%s', ignoring: %m", rvalue
);
547 c
->oom_score_adjust
= oa
;
548 c
->oom_score_adjust_set
= true;
553 int config_parse_exec(
555 const char *filename
,
558 unsigned section_line
,
565 ExecCommand
**e
= data
;
577 rvalue
+= strspn(rvalue
, WHITESPACE
);
579 if (isempty(rvalue
)) {
580 /* An empty assignment resets the list */
581 *e
= exec_command_free_list(*e
);
587 _cleanup_free_
char *path
= NULL
, *firstword
= NULL
;
588 ExecCommandFlags flags
= 0;
589 bool ignore
= false, separate_argv0
= false;
590 _cleanup_free_ ExecCommand
*nce
= NULL
;
591 _cleanup_strv_free_
char **n
= NULL
;
592 size_t nlen
= 0, nbufsize
= 0;
597 r
= extract_first_word_and_warn(&p
, &firstword
, NULL
, EXTRACT_QUOTES
|EXTRACT_CUNESCAPE
, unit
, filename
, line
, rvalue
);
603 /* We accept an absolute path as first argument. If it's prefixed with - and the path doesn't
604 * exist, we ignore it instead of erroring out; if it's prefixed with @, we allow overriding of
605 * argv[0]; if it's prefixed with +, it will be run with full privileges and no sandboxing; if
606 * it's prefixed with '!' we apply sandboxing, but do not change user/group credentials; if
607 * it's prefixed with '!!', then we apply user/group credentials if the kernel supports ambient
608 * capabilities -- if it doesn't we don't apply the credentials themselves, but do apply most
609 * other sandboxing, with some special exceptions for changing UID.
611 * The idea is that '!!' may be used to write services that can take benefit of systemd's
612 * UID/GID dropping if the kernel supports ambient creds, but provide an automatic fallback to
613 * privilege dropping within the daemon if the kernel does not offer that. */
615 if (*f
== '-' && !(flags
& EXEC_COMMAND_IGNORE_FAILURE
)) {
616 flags
|= EXEC_COMMAND_IGNORE_FAILURE
;
618 } else if (*f
== '@' && !separate_argv0
)
619 separate_argv0
= true;
620 else if (*f
== '+' && !(flags
& (EXEC_COMMAND_FULLY_PRIVILEGED
|EXEC_COMMAND_NO_SETUID
|EXEC_COMMAND_AMBIENT_MAGIC
)))
621 flags
|= EXEC_COMMAND_FULLY_PRIVILEGED
;
622 else if (*f
== '!' && !(flags
& (EXEC_COMMAND_FULLY_PRIVILEGED
|EXEC_COMMAND_NO_SETUID
|EXEC_COMMAND_AMBIENT_MAGIC
)))
623 flags
|= EXEC_COMMAND_NO_SETUID
;
624 else if (*f
== '!' && !(flags
& (EXEC_COMMAND_FULLY_PRIVILEGED
|EXEC_COMMAND_AMBIENT_MAGIC
))) {
625 flags
&= ~EXEC_COMMAND_NO_SETUID
;
626 flags
|= EXEC_COMMAND_AMBIENT_MAGIC
;
632 r
= unit_full_printf(u
, f
, &path
);
634 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
635 "Failed to resolve unit specifiers in '%s'%s: %m",
636 f
, ignore
? ", ignoring" : "");
637 return ignore
? 0 : -ENOEXEC
;
641 /* First word is either "-" or "@" with no command. */
642 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
643 "Empty path in command line%s: '%s'",
644 ignore
? ", ignoring" : "", rvalue
);
645 return ignore
? 0 : -ENOEXEC
;
647 if (!string_is_safe(path
)) {
648 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
649 "Executable name contains special characters%s: %s",
650 ignore
? ", ignoring" : "", path
);
651 return ignore
? 0 : -ENOEXEC
;
653 if (endswith(path
, "/")) {
654 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
655 "Executable path specifies a directory%s: %s",
656 ignore
? ", ignoring" : "", path
);
657 return ignore
? 0 : -ENOEXEC
;
660 if (!path_is_absolute(path
)) {
664 if (!filename_is_valid(path
)) {
665 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
666 "Neither a valid executable name nor an absolute path%s: %s",
667 ignore
? ", ignoring" : "", path
);
668 return ignore
? 0 : -ENOEXEC
;
671 /* Resolve a single-component name to a full path */
672 NULSTR_FOREACH(prefix
, DEFAULT_PATH_NULSTR
) {
673 _cleanup_free_
char *fullpath
= NULL
;
675 fullpath
= strjoin(prefix
, "/", path
);
679 if (access(fullpath
, F_OK
) >= 0) {
680 free_and_replace(path
, fullpath
);
687 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
688 "Executable \"%s\" not found in path \"%s\"%s",
689 path
, DEFAULT_PATH
, ignore
? ", ignoring" : "");
690 return ignore
? 0 : -ENOEXEC
;
694 if (!separate_argv0
) {
697 if (!GREEDY_REALLOC(n
, nbufsize
, nlen
+ 2))
707 path_kill_slashes(path
);
709 while (!isempty(p
)) {
710 _cleanup_free_
char *word
= NULL
, *resolved
= NULL
;
712 /* Check explicitly for an unquoted semicolon as
713 * command separator token. */
714 if (p
[0] == ';' && (!p
[1] || strchr(WHITESPACE
, p
[1]))) {
716 p
+= strspn(p
, WHITESPACE
);
721 /* Check for \; explicitly, to not confuse it with \\; or "\;" or "\\;" etc.
722 * extract_first_word() would return the same for all of those. */
723 if (p
[0] == '\\' && p
[1] == ';' && (!p
[2] || strchr(WHITESPACE
, p
[2]))) {
727 p
+= strspn(p
, WHITESPACE
);
729 if (!GREEDY_REALLOC(n
, nbufsize
, nlen
+ 2))
740 r
= extract_first_word_and_warn(&p
, &word
, NULL
, EXTRACT_QUOTES
|EXTRACT_CUNESCAPE
, unit
, filename
, line
, rvalue
);
744 return ignore
? 0 : -ENOEXEC
;
746 r
= unit_full_printf(u
, word
, &resolved
);
748 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
749 "Failed to resolve unit specifiers in %s%s: %m",
750 word
, ignore
? ", ignoring" : "");
751 return ignore
? 0 : -ENOEXEC
;
754 if (!GREEDY_REALLOC(n
, nbufsize
, nlen
+ 2))
757 n
[nlen
++] = TAKE_PTR(resolved
);
762 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
763 "Empty executable name or zeroeth argument%s: %s",
764 ignore
? ", ignoring" : "", rvalue
);
765 return ignore
? 0 : -ENOEXEC
;
768 nce
= new0(ExecCommand
, 1);
772 nce
->argv
= TAKE_PTR(n
);
773 nce
->path
= TAKE_PTR(path
);
776 exec_command_append_list(e
, nce
);
778 /* Do not _cleanup_free_ these. */
787 DEFINE_CONFIG_PARSE_ENUM(config_parse_service_type
, service_type
, ServiceType
, "Failed to parse service type");
788 DEFINE_CONFIG_PARSE_ENUM(config_parse_service_restart
, service_restart
, ServiceRestart
, "Failed to parse service restart specifier");
790 int config_parse_socket_bindtodevice(
792 const char *filename
,
795 unsigned section_line
,
809 if (isempty(rvalue
) || streq(rvalue
, "*")) {
810 s
->bind_to_device
= mfree(s
->bind_to_device
);
814 if (!ifname_valid(rvalue
)) {
815 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid interface name, ignoring: %s", rvalue
);
819 free_and_strdup(&s
->bind_to_device
, rvalue
);
824 int config_parse_exec_input(
826 const char *filename
,
829 unsigned section_line
,
836 ExecContext
*c
= data
;
847 n
= startswith(rvalue
, "fd:");
849 _cleanup_free_
char *resolved
= NULL
;
851 r
= unit_full_printf(u
, n
, &resolved
);
853 return log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s': %m", n
);
855 if (isempty(resolved
))
856 resolved
= mfree(resolved
);
857 else if (!fdname_is_valid(resolved
)) {
858 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid file descriptor name: %s", resolved
);
862 free_and_replace(c
->stdio_fdname
[STDIN_FILENO
], resolved
);
864 ei
= EXEC_INPUT_NAMED_FD
;
866 } else if ((n
= startswith(rvalue
, "file:"))) {
867 _cleanup_free_
char *resolved
= NULL
;
869 r
= unit_full_printf(u
, n
, &resolved
);
871 return log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s': %m", n
);
873 if (!path_is_absolute(resolved
)) {
874 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "file: requires an absolute path name: %s", resolved
);
878 if (!path_is_normalized(resolved
)) {
879 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "file: requires a normalized path name: %s", resolved
);
883 free_and_replace(c
->stdio_file
[STDIN_FILENO
], resolved
);
885 ei
= EXEC_INPUT_FILE
;
888 ei
= exec_input_from_string(rvalue
);
890 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse input specifier, ignoring: %s", rvalue
);
899 int config_parse_exec_input_text(
901 const char *filename
,
904 unsigned section_line
,
911 _cleanup_free_
char *unescaped
= NULL
, *resolved
= NULL
;
912 ExecContext
*c
= data
;
923 if (isempty(rvalue
)) {
924 /* Reset if the empty string is assigned */
925 c
->stdin_data
= mfree(c
->stdin_data
);
926 c
->stdin_data_size
= 0;
930 r
= cunescape(rvalue
, 0, &unescaped
);
932 return log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to decode C escaped text '%s': %m", rvalue
);
934 r
= unit_full_printf(u
, unescaped
, &resolved
);
936 return log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s': %m", unescaped
);
938 sz
= strlen(resolved
);
939 if (c
->stdin_data_size
+ sz
+ 1 < c
->stdin_data_size
|| /* check for overflow */
940 c
->stdin_data_size
+ sz
+ 1 > EXEC_STDIN_DATA_MAX
) {
941 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Standard input data too large (%zu), maximum of %zu permitted, ignoring.", c
->stdin_data_size
+ sz
, (size_t) EXEC_STDIN_DATA_MAX
);
945 p
= realloc(c
->stdin_data
, c
->stdin_data_size
+ sz
+ 1);
949 *((char*) mempcpy((char*) p
+ c
->stdin_data_size
, resolved
, sz
)) = '\n';
952 c
->stdin_data_size
+= sz
+ 1;
957 int config_parse_exec_input_data(
959 const char *filename
,
962 unsigned section_line
,
969 _cleanup_free_
void *p
= NULL
;
970 ExecContext
*c
= data
;
980 if (isempty(rvalue
)) {
981 /* Reset if the empty string is assigned */
982 c
->stdin_data
= mfree(c
->stdin_data
);
983 c
->stdin_data_size
= 0;
987 r
= unbase64mem(rvalue
, (size_t) -1, &p
, &sz
);
989 return log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to decode base64 data, ignoring: %s", rvalue
);
993 if (c
->stdin_data_size
+ sz
< c
->stdin_data_size
|| /* check for overflow */
994 c
->stdin_data_size
+ sz
> EXEC_STDIN_DATA_MAX
) {
995 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Standard input data too large (%zu), maximum of %zu permitted, ignoring.", c
->stdin_data_size
+ sz
, (size_t) EXEC_STDIN_DATA_MAX
);
999 q
= realloc(c
->stdin_data
, c
->stdin_data_size
+ sz
);
1003 memcpy((uint8_t*) q
+ c
->stdin_data_size
, p
, sz
);
1006 c
->stdin_data_size
+= sz
;
1011 int config_parse_exec_output(
1013 const char *filename
,
1015 const char *section
,
1016 unsigned section_line
,
1023 _cleanup_free_
char *resolved
= NULL
;
1025 ExecContext
*c
= data
;
1036 n
= startswith(rvalue
, "fd:");
1038 r
= unit_full_printf(u
, n
, &resolved
);
1040 return log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s: %m", n
);
1042 if (isempty(resolved
))
1043 resolved
= mfree(resolved
);
1044 else if (!fdname_is_valid(resolved
)) {
1045 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid file descriptor name: %s", resolved
);
1049 eo
= EXEC_OUTPUT_NAMED_FD
;
1051 } else if ((n
= startswith(rvalue
, "file:"))) {
1053 r
= unit_full_printf(u
, n
, &resolved
);
1055 return log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s: %m", n
);
1057 if (!path_is_absolute(resolved
)) {
1058 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "file: requires an absolute path name: %s", resolved
);
1062 if (!path_is_normalized(resolved
)) {
1063 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "file: requires a normalized path name, ignoring: %s", resolved
);
1067 eo
= EXEC_OUTPUT_FILE
;
1070 eo
= exec_output_from_string(rvalue
);
1072 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse output specifier, ignoring: %s", rvalue
);
1077 if (streq(lvalue
, "StandardOutput")) {
1078 if (eo
== EXEC_OUTPUT_NAMED_FD
)
1079 free_and_replace(c
->stdio_fdname
[STDOUT_FILENO
], resolved
);
1081 free_and_replace(c
->stdio_file
[STDOUT_FILENO
], resolved
);
1086 assert(streq(lvalue
, "StandardError"));
1088 if (eo
== EXEC_OUTPUT_NAMED_FD
)
1089 free_and_replace(c
->stdio_fdname
[STDERR_FILENO
], resolved
);
1091 free_and_replace(c
->stdio_file
[STDERR_FILENO
], resolved
);
1099 int config_parse_exec_io_class(const char *unit
,
1100 const char *filename
,
1102 const char *section
,
1103 unsigned section_line
,
1110 ExecContext
*c
= data
;
1118 if (isempty(rvalue
)) {
1119 c
->ioprio_set
= false;
1120 c
->ioprio
= IOPRIO_PRIO_VALUE(IOPRIO_CLASS_BE
, 0);
1124 x
= ioprio_class_from_string(rvalue
);
1126 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse IO scheduling class, ignoring: %s", rvalue
);
1130 c
->ioprio
= IOPRIO_PRIO_VALUE(x
, IOPRIO_PRIO_DATA(c
->ioprio
));
1131 c
->ioprio_set
= true;
1136 int config_parse_exec_io_priority(const char *unit
,
1137 const char *filename
,
1139 const char *section
,
1140 unsigned section_line
,
1147 ExecContext
*c
= data
;
1155 if (isempty(rvalue
)) {
1156 c
->ioprio_set
= false;
1157 c
->ioprio
= IOPRIO_PRIO_VALUE(IOPRIO_CLASS_BE
, 0);
1161 r
= ioprio_parse_priority(rvalue
, &i
);
1163 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse IO priority, ignoring: %s", rvalue
);
1167 c
->ioprio
= IOPRIO_PRIO_VALUE(IOPRIO_PRIO_CLASS(c
->ioprio
), i
);
1168 c
->ioprio_set
= true;
1173 int config_parse_exec_cpu_sched_policy(const char *unit
,
1174 const char *filename
,
1176 const char *section
,
1177 unsigned section_line
,
1184 ExecContext
*c
= data
;
1192 if (isempty(rvalue
)) {
1193 c
->cpu_sched_set
= false;
1194 c
->cpu_sched_policy
= SCHED_OTHER
;
1195 c
->cpu_sched_priority
= 0;
1199 x
= sched_policy_from_string(rvalue
);
1201 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse CPU scheduling policy, ignoring: %s", rvalue
);
1205 c
->cpu_sched_policy
= x
;
1206 /* Moving to or from real-time policy? We need to adjust the priority */
1207 c
->cpu_sched_priority
= CLAMP(c
->cpu_sched_priority
, sched_get_priority_min(x
), sched_get_priority_max(x
));
1208 c
->cpu_sched_set
= true;
1213 int config_parse_exec_cpu_sched_prio(const char *unit
,
1214 const char *filename
,
1216 const char *section
,
1217 unsigned section_line
,
1224 ExecContext
*c
= data
;
1232 r
= safe_atoi(rvalue
, &i
);
1234 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse CPU scheduling priority, ignoring: %s", rvalue
);
1238 /* On Linux RR/FIFO range from 1 to 99 and OTHER/BATCH may only be 0 */
1239 min
= sched_get_priority_min(c
->cpu_sched_policy
);
1240 max
= sched_get_priority_max(c
->cpu_sched_policy
);
1242 if (i
< min
|| i
> max
) {
1243 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "CPU scheduling priority is out of range, ignoring: %s", rvalue
);
1247 c
->cpu_sched_priority
= i
;
1248 c
->cpu_sched_set
= true;
1253 int config_parse_exec_cpu_affinity(const char *unit
,
1254 const char *filename
,
1256 const char *section
,
1257 unsigned section_line
,
1264 ExecContext
*c
= data
;
1265 _cleanup_cpu_free_ cpu_set_t
*cpuset
= NULL
;
1273 ncpus
= parse_cpu_set_and_warn(rvalue
, &cpuset
, unit
, filename
, line
, lvalue
);
1278 /* An empty assignment resets the CPU list */
1279 c
->cpuset
= cpu_set_mfree(c
->cpuset
);
1280 c
->cpuset_ncpus
= 0;
1285 c
->cpuset
= TAKE_PTR(cpuset
);
1286 c
->cpuset_ncpus
= (unsigned) ncpus
;
1290 if (c
->cpuset_ncpus
< (unsigned) ncpus
) {
1291 CPU_OR_S(CPU_ALLOC_SIZE(c
->cpuset_ncpus
), cpuset
, c
->cpuset
, cpuset
);
1292 CPU_FREE(c
->cpuset
);
1293 c
->cpuset
= TAKE_PTR(cpuset
);
1294 c
->cpuset_ncpus
= (unsigned) ncpus
;
1298 CPU_OR_S(CPU_ALLOC_SIZE((unsigned) ncpus
), c
->cpuset
, c
->cpuset
, cpuset
);
1303 int config_parse_exec_secure_bits(const char *unit
,
1304 const char *filename
,
1306 const char *section
,
1307 unsigned section_line
,
1314 ExecContext
*c
= data
;
1322 if (isempty(rvalue
)) {
1323 /* An empty assignment resets the field */
1328 r
= secure_bits_from_string(rvalue
);
1330 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
1331 "Failed to parse secure bits, ignoring: %s", rvalue
);
1340 int config_parse_capability_set(
1342 const char *filename
,
1344 const char *section
,
1345 unsigned section_line
,
1352 uint64_t *capability_set
= data
;
1353 uint64_t sum
= 0, initial
= 0;
1354 bool invert
= false;
1362 if (rvalue
[0] == '~') {
1367 if (streq(lvalue
, "CapabilityBoundingSet"))
1368 initial
= CAP_ALL
; /* initialized to all bits on */
1369 /* else "AmbientCapabilities" initialized to all bits off */
1371 r
= capability_set_from_string(rvalue
, &sum
);
1373 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse %s= specifier '%s', ignoring: %m", lvalue
, rvalue
);
1377 if (sum
== 0 || *capability_set
== initial
)
1378 /* "", "~" or uninitialized data -> replace */
1379 *capability_set
= invert
? ~sum
: sum
;
1381 /* previous data -> merge */
1383 *capability_set
&= ~sum
;
1385 *capability_set
|= sum
;
1391 DEFINE_CONFIG_PARSE_ENUM(config_parse_exec_utmp_mode
, exec_utmp_mode
, ExecUtmpMode
, "Failed to parse utmp mode");
1392 DEFINE_CONFIG_PARSE_ENUM(config_parse_kill_mode
, kill_mode
, KillMode
, "Failed to parse kill mode");
1394 int config_parse_exec_mount_flags(
1396 const char *filename
,
1398 const char *section
,
1399 unsigned section_line
,
1406 ExecContext
*c
= data
;
1414 r
= mount_propagation_flags_from_string(rvalue
, &c
->mount_flags
);
1416 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse mount flag %s, ignoring: %m", rvalue
);
1421 int config_parse_exec_selinux_context(
1423 const char *filename
,
1425 const char *section
,
1426 unsigned section_line
,
1433 ExecContext
*c
= data
;
1444 if (isempty(rvalue
)) {
1445 c
->selinux_context
= mfree(c
->selinux_context
);
1446 c
->selinux_context_ignore
= false;
1450 if (rvalue
[0] == '-') {
1456 r
= unit_full_printf(u
, rvalue
, &k
);
1458 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1459 "Failed to resolve unit specifiers in '%s'%s: %m",
1460 rvalue
, ignore
? ", ignoring" : "");
1461 return ignore
? 0 : -ENOEXEC
;
1464 free_and_replace(c
->selinux_context
, k
);
1465 c
->selinux_context_ignore
= ignore
;
1470 int config_parse_exec_apparmor_profile(
1472 const char *filename
,
1474 const char *section
,
1475 unsigned section_line
,
1482 ExecContext
*c
= data
;
1493 if (isempty(rvalue
)) {
1494 c
->apparmor_profile
= mfree(c
->apparmor_profile
);
1495 c
->apparmor_profile_ignore
= false;
1499 if (rvalue
[0] == '-') {
1505 r
= unit_full_printf(u
, rvalue
, &k
);
1507 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1508 "Failed to resolve unit specifiers in '%s'%s: %m",
1509 rvalue
, ignore
? ", ignoring" : "");
1510 return ignore
? 0 : -ENOEXEC
;
1513 free_and_replace(c
->apparmor_profile
, k
);
1514 c
->apparmor_profile_ignore
= ignore
;
1519 int config_parse_exec_smack_process_label(
1521 const char *filename
,
1523 const char *section
,
1524 unsigned section_line
,
1531 ExecContext
*c
= data
;
1542 if (isempty(rvalue
)) {
1543 c
->smack_process_label
= mfree(c
->smack_process_label
);
1544 c
->smack_process_label_ignore
= false;
1548 if (rvalue
[0] == '-') {
1554 r
= unit_full_printf(u
, rvalue
, &k
);
1556 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1557 "Failed to resolve unit specifiers in '%s'%s: %m",
1558 rvalue
, ignore
? ", ignoring" : "");
1559 return ignore
? 0 : -ENOEXEC
;
1562 free_and_replace(c
->smack_process_label
, k
);
1563 c
->smack_process_label_ignore
= ignore
;
1568 int config_parse_timer(const char *unit
,
1569 const char *filename
,
1571 const char *section
,
1572 unsigned section_line
,
1583 _cleanup_(calendar_spec_freep
) CalendarSpec
*c
= NULL
;
1585 _cleanup_free_
char *k
= NULL
;
1593 if (isempty(rvalue
)) {
1594 /* Empty assignment resets list */
1595 timer_free_values(t
);
1599 b
= timer_base_from_string(lvalue
);
1601 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse timer base, ignoring: %s", lvalue
);
1605 r
= unit_full_printf(u
, rvalue
, &k
);
1607 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", rvalue
);
1611 if (b
== TIMER_CALENDAR
) {
1612 if (calendar_spec_from_string(k
, &c
) < 0) {
1613 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse calendar specification, ignoring: %s", k
);
1617 if (parse_sec(k
, &usec
) < 0) {
1618 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse timer value, ignoring: %s", k
);
1622 v
= new0(TimerValue
, 1);
1628 v
->calendar_spec
= TAKE_PTR(c
);
1630 LIST_PREPEND(value
, t
->values
, v
);
1635 int config_parse_trigger_unit(
1637 const char *filename
,
1639 const char *section
,
1640 unsigned section_line
,
1647 _cleanup_free_
char *p
= NULL
;
1657 if (!hashmap_isempty(u
->dependencies
[UNIT_TRIGGERS
])) {
1658 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Multiple units to trigger specified, ignoring: %s", rvalue
);
1662 r
= unit_name_printf(u
, rvalue
, &p
);
1664 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s, ignoring: %m", rvalue
);
1668 type
= unit_name_to_type(p
);
1670 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Unit type not valid, ignoring: %s", rvalue
);
1673 if (unit_has_name(u
, p
)) {
1674 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Units cannot trigger themselves, ignoring: %s", rvalue
);
1678 r
= unit_add_two_dependencies_by_name(u
, UNIT_BEFORE
, UNIT_TRIGGERS
, p
, NULL
, true, UNIT_DEPENDENCY_FILE
);
1680 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to add trigger on %s, ignoring: %m", p
);
1687 int config_parse_path_spec(const char *unit
,
1688 const char *filename
,
1690 const char *section
,
1691 unsigned section_line
,
1701 _cleanup_free_
char *k
= NULL
;
1709 if (isempty(rvalue
)) {
1710 /* Empty assignment clears list */
1715 b
= path_type_from_string(lvalue
);
1717 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse path type, ignoring: %s", lvalue
);
1721 r
= unit_full_printf(UNIT(p
), rvalue
, &k
);
1723 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s, ignoring: %m", rvalue
);
1727 path_kill_slashes(k
);
1729 if (!path_is_absolute(k
)) {
1730 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Path is not absolute, ignoring: %s", k
);
1734 s
= new0(PathSpec
, 1);
1739 s
->path
= TAKE_PTR(k
);
1743 LIST_PREPEND(spec
, p
->specs
, s
);
1748 int config_parse_socket_service(
1750 const char *filename
,
1752 const char *section
,
1753 unsigned section_line
,
1760 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
1761 _cleanup_free_
char *p
= NULL
;
1771 r
= unit_name_printf(UNIT(s
), rvalue
, &p
);
1773 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s: %m", rvalue
);
1777 if (!endswith(p
, ".service")) {
1778 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Unit must be of type service: %s", rvalue
);
1782 r
= manager_load_unit(UNIT(s
)->manager
, p
, NULL
, &error
, &x
);
1784 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to load unit %s: %s", rvalue
, bus_error_message(&error
, r
));
1788 unit_ref_set(&s
->service
, UNIT(s
), x
);
1793 int config_parse_fdname(
1795 const char *filename
,
1797 const char *section
,
1798 unsigned section_line
,
1805 _cleanup_free_
char *p
= NULL
;
1814 if (isempty(rvalue
)) {
1815 s
->fdname
= mfree(s
->fdname
);
1819 r
= unit_full_printf(UNIT(s
), rvalue
, &p
);
1821 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", rvalue
);
1825 if (!fdname_is_valid(p
)) {
1826 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid file descriptor name, ignoring: %s", p
);
1830 return free_and_replace(s
->fdname
, p
);
1833 int config_parse_service_sockets(
1835 const char *filename
,
1837 const char *section
,
1838 unsigned section_line
,
1856 _cleanup_free_
char *word
= NULL
, *k
= NULL
;
1858 r
= extract_first_word(&p
, &word
, NULL
, 0);
1864 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Trailing garbage in sockets, ignoring: %s", rvalue
);
1868 r
= unit_name_printf(UNIT(s
), word
, &k
);
1870 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", word
);
1874 if (!endswith(k
, ".socket")) {
1875 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Unit must be of type socket, ignoring: %s", k
);
1879 r
= unit_add_two_dependencies_by_name(UNIT(s
), UNIT_WANTS
, UNIT_AFTER
, k
, NULL
, true, UNIT_DEPENDENCY_FILE
);
1881 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to add dependency on %s, ignoring: %m", k
);
1883 r
= unit_add_dependency_by_name(UNIT(s
), UNIT_TRIGGERED_BY
, k
, NULL
, true, UNIT_DEPENDENCY_FILE
);
1885 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to add dependency on %s, ignoring: %m", k
);
1891 int config_parse_bus_name(
1893 const char *filename
,
1895 const char *section
,
1896 unsigned section_line
,
1903 _cleanup_free_
char *k
= NULL
;
1912 r
= unit_full_printf(u
, rvalue
, &k
);
1914 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s, ignoring: %m", rvalue
);
1918 if (!service_name_is_valid(k
)) {
1919 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid bus name, ignoring: %s", k
);
1923 return config_parse_string(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
, k
, data
, userdata
);
1926 int config_parse_service_timeout(
1928 const char *filename
,
1930 const char *section
,
1931 unsigned section_line
,
1938 Service
*s
= userdata
;
1947 /* This is called for two cases: TimeoutSec= and TimeoutStartSec=. */
1949 /* Traditionally, these options accepted 0 to disable the timeouts. However, a timeout of 0 suggests it happens
1950 * immediately, hence fix this to become USEC_INFINITY instead. This is in-line with how we internally handle
1951 * all other timeouts. */
1952 r
= parse_sec_fix_0(rvalue
, &usec
);
1954 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse %s= parameter, ignoring: %s", lvalue
, rvalue
);
1958 s
->start_timeout_defined
= true;
1959 s
->timeout_start_usec
= usec
;
1961 if (streq(lvalue
, "TimeoutSec"))
1962 s
->timeout_stop_usec
= usec
;
1967 int config_parse_sec_fix_0(
1969 const char *filename
,
1971 const char *section
,
1972 unsigned section_line
,
1979 usec_t
*usec
= data
;
1987 /* This is pretty much like config_parse_sec(), except that this treats a time of 0 as infinity, for
1988 * compatibility with older versions of systemd where 0 instead of infinity was used as indicator to turn off a
1991 r
= parse_sec_fix_0(rvalue
, usec
);
1993 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse %s= parameter, ignoring: %s", lvalue
, rvalue
);
2000 int config_parse_user_group(
2002 const char *filename
,
2004 const char *section
,
2005 unsigned section_line
,
2012 _cleanup_free_
char *k
= NULL
;
2022 if (isempty(rvalue
)) {
2023 *user
= mfree(*user
);
2027 r
= unit_full_printf(u
, rvalue
, &k
);
2029 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s: %m", rvalue
);
2033 if (!valid_user_group_name_or_id(k
)) {
2034 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid user/group name or numeric ID: %s", k
);
2038 return free_and_replace(*user
, k
);
2041 int config_parse_user_group_strv(
2043 const char *filename
,
2045 const char *section
,
2046 unsigned section_line
,
2053 char ***users
= data
;
2055 const char *p
= rvalue
;
2063 if (isempty(rvalue
)) {
2064 *users
= strv_free(*users
);
2069 _cleanup_free_
char *word
= NULL
, *k
= NULL
;
2071 r
= extract_first_word(&p
, &word
, NULL
, 0);
2077 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid syntax: %s", rvalue
);
2081 r
= unit_full_printf(u
, word
, &k
);
2083 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s: %m", word
);
2087 if (!valid_user_group_name_or_id(k
)) {
2088 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid user/group name or numeric ID: %s", k
);
2092 r
= strv_push(users
, k
);
2102 int config_parse_working_directory(
2104 const char *filename
,
2106 const char *section
,
2107 unsigned section_line
,
2114 ExecContext
*c
= data
;
2125 if (isempty(rvalue
)) {
2126 c
->working_directory_home
= false;
2127 c
->working_directory
= mfree(c
->working_directory
);
2131 if (rvalue
[0] == '-') {
2137 if (streq(rvalue
, "~")) {
2138 c
->working_directory_home
= true;
2139 c
->working_directory
= mfree(c
->working_directory
);
2141 _cleanup_free_
char *k
= NULL
;
2143 r
= unit_full_printf(u
, rvalue
, &k
);
2145 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
2146 "Failed to resolve unit specifiers in working directory path '%s'%s: %m",
2147 rvalue
, missing_ok
? ", ignoring" : "");
2148 return missing_ok
? 0 : -ENOEXEC
;
2151 path_kill_slashes(k
);
2153 if (!utf8_is_valid(k
)) {
2154 log_syntax_invalid_utf8(unit
, LOG_ERR
, filename
, line
, rvalue
);
2155 return missing_ok
? 0 : -ENOEXEC
;
2158 if (!path_is_absolute(k
)) {
2159 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
2160 "Working directory path '%s' is not absolute%s.",
2161 rvalue
, missing_ok
? ", ignoring" : "");
2162 return missing_ok
? 0 : -ENOEXEC
;
2165 c
->working_directory_home
= false;
2166 free_and_replace(c
->working_directory
, k
);
2169 c
->working_directory_missing_ok
= missing_ok
;
2173 int config_parse_unit_env_file(const char *unit
,
2174 const char *filename
,
2176 const char *section
,
2177 unsigned section_line
,
2186 _cleanup_free_
char *n
= NULL
;
2194 if (isempty(rvalue
)) {
2195 /* Empty assignment frees the list */
2196 *env
= strv_free(*env
);
2200 r
= unit_full_printf(u
, rvalue
, &n
);
2202 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", rvalue
);
2206 if (!path_is_absolute(n
[0] == '-' ? n
+ 1 : n
)) {
2207 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Path '%s' is not absolute, ignoring.", n
);
2211 r
= strv_extend(env
, n
);
2218 int config_parse_environ(
2220 const char *filename
,
2222 const char *section
,
2223 unsigned section_line
,
2240 if (isempty(rvalue
)) {
2241 /* Empty assignment resets the list */
2242 *env
= strv_free(*env
);
2246 for (p
= rvalue
;; ) {
2247 _cleanup_free_
char *word
= NULL
, *k
= NULL
;
2249 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_CUNESCAPE
|EXTRACT_QUOTES
);
2255 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
2256 "Invalid syntax, ignoring: %s", rvalue
);
2261 r
= unit_full_printf(u
, word
, &k
);
2263 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
2264 "Failed to resolve unit specifiers in %s, ignoring: %m", word
);
2270 if (!env_assignment_is_valid(k
)) {
2271 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
2272 "Invalid environment assignment, ignoring: %s", k
);
2276 r
= strv_env_replace(env
, k
);
2284 int config_parse_pass_environ(
2286 const char *filename
,
2288 const char *section
,
2289 unsigned section_line
,
2296 _cleanup_strv_free_
char **n
= NULL
;
2297 size_t nlen
= 0, nbufsize
= 0;
2298 char*** passenv
= data
;
2299 const char *p
= rvalue
;
2308 if (isempty(rvalue
)) {
2309 /* Empty assignment resets the list */
2310 *passenv
= strv_free(*passenv
);
2315 _cleanup_free_
char *word
= NULL
, *k
= NULL
;
2317 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_QUOTES
);
2323 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
2324 "Trailing garbage in %s, ignoring: %s", lvalue
, rvalue
);
2329 r
= unit_full_printf(u
, word
, &k
);
2331 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
2332 "Failed to resolve specifiers in %s, ignoring: %m", word
);
2338 if (!env_name_is_valid(k
)) {
2339 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
2340 "Invalid environment name for %s, ignoring: %s", lvalue
, k
);
2344 if (!GREEDY_REALLOC(n
, nbufsize
, nlen
+ 2))
2347 n
[nlen
++] = TAKE_PTR(k
);
2352 r
= strv_extend_strv(passenv
, n
, true);
2360 int config_parse_unset_environ(
2362 const char *filename
,
2364 const char *section
,
2365 unsigned section_line
,
2372 _cleanup_strv_free_
char **n
= NULL
;
2373 size_t nlen
= 0, nbufsize
= 0;
2374 char*** unsetenv
= data
;
2375 const char *p
= rvalue
;
2384 if (isempty(rvalue
)) {
2385 /* Empty assignment resets the list */
2386 *unsetenv
= strv_free(*unsetenv
);
2391 _cleanup_free_
char *word
= NULL
, *k
= NULL
;
2393 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_CUNESCAPE
|EXTRACT_QUOTES
);
2399 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
2400 "Trailing garbage in %s, ignoring: %s", lvalue
, rvalue
);
2405 r
= unit_full_printf(u
, word
, &k
);
2407 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
2408 "Failed to resolve unit specifiers in %s, ignoring: %m", word
);
2414 if (!env_assignment_is_valid(k
) && !env_name_is_valid(k
)) {
2415 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
2416 "Invalid environment name or assignment %s, ignoring: %s", lvalue
, k
);
2420 if (!GREEDY_REALLOC(n
, nbufsize
, nlen
+ 2))
2423 n
[nlen
++] = TAKE_PTR(k
);
2428 r
= strv_extend_strv(unsetenv
, n
, true);
2436 int config_parse_log_extra_fields(
2438 const char *filename
,
2440 const char *section
,
2441 unsigned section_line
,
2448 ExecContext
*c
= data
;
2450 const char *p
= rvalue
;
2458 if (isempty(rvalue
)) {
2459 exec_context_free_log_extra_fields(c
);
2464 _cleanup_free_
char *word
= NULL
, *k
= NULL
;
2468 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_CUNESCAPE
|EXTRACT_QUOTES
);
2474 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
, "Invalid syntax, ignoring: %s", rvalue
);
2478 r
= unit_full_printf(u
, word
, &k
);
2480 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s, ignoring: %m", word
);
2484 eq
= strchr(k
, '=');
2486 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Log field lacks '=' character, ignoring: %s", k
);
2490 if (!journal_field_valid(k
, eq
-k
, false)) {
2491 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Log field name is invalid, ignoring: %s", k
);
2495 t
= reallocarray(c
->log_extra_fields
, c
->n_log_extra_fields
+1, sizeof(struct iovec
));
2499 c
->log_extra_fields
= t
;
2500 c
->log_extra_fields
[c
->n_log_extra_fields
++] = IOVEC_MAKE_STRING(k
);
2506 int config_parse_ip_tos(const char *unit
,
2507 const char *filename
,
2509 const char *section
,
2510 unsigned section_line
,
2517 int *ip_tos
= data
, x
;
2524 x
= ip_tos_from_string(rvalue
);
2526 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse IP TOS value, ignoring: %s", rvalue
);
2534 int config_parse_unit_condition_path(
2536 const char *filename
,
2538 const char *section
,
2539 unsigned section_line
,
2546 _cleanup_free_
char *p
= NULL
;
2547 Condition
**list
= data
, *c
;
2548 ConditionType t
= ltype
;
2549 bool trigger
, negate
;
2558 if (isempty(rvalue
)) {
2559 /* Empty assignment resets the list */
2560 *list
= condition_free_list(*list
);
2564 trigger
= rvalue
[0] == '|';
2568 negate
= rvalue
[0] == '!';
2572 r
= unit_full_printf(u
, rvalue
, &p
);
2574 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s, ignoring: %m", rvalue
);
2578 if (!path_is_absolute(p
)) {
2579 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Path in condition not absolute, ignoring: %s", p
);
2583 c
= condition_new(t
, p
, trigger
, negate
);
2587 LIST_PREPEND(conditions
, *list
, c
);
2591 int config_parse_unit_condition_string(
2593 const char *filename
,
2595 const char *section
,
2596 unsigned section_line
,
2603 _cleanup_free_
char *s
= NULL
;
2604 Condition
**list
= data
, *c
;
2605 ConditionType t
= ltype
;
2606 bool trigger
, negate
;
2615 if (isempty(rvalue
)) {
2616 /* Empty assignment resets the list */
2617 *list
= condition_free_list(*list
);
2621 trigger
= rvalue
[0] == '|';
2625 negate
= rvalue
[0] == '!';
2629 r
= unit_full_printf(u
, rvalue
, &s
);
2631 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", rvalue
);
2635 c
= condition_new(t
, s
, trigger
, negate
);
2639 LIST_PREPEND(conditions
, *list
, c
);
2643 int config_parse_unit_condition_null(
2645 const char *filename
,
2647 const char *section
,
2648 unsigned section_line
,
2655 Condition
**list
= data
, *c
;
2656 bool trigger
, negate
;
2664 if (isempty(rvalue
)) {
2665 /* Empty assignment resets the list */
2666 *list
= condition_free_list(*list
);
2670 trigger
= rvalue
[0] == '|';
2674 negate
= rvalue
[0] == '!';
2678 b
= parse_boolean(rvalue
);
2680 log_syntax(unit
, LOG_ERR
, filename
, line
, b
, "Failed to parse boolean value in condition, ignoring: %s", rvalue
);
2687 c
= condition_new(CONDITION_NULL
, NULL
, trigger
, negate
);
2691 LIST_PREPEND(conditions
, *list
, c
);
2695 DEFINE_CONFIG_PARSE_ENUM(config_parse_notify_access
, notify_access
, NotifyAccess
, "Failed to parse notify access specifier");
2696 DEFINE_CONFIG_PARSE_ENUM(config_parse_emergency_action
, emergency_action
, EmergencyAction
, "Failed to parse failure action specifier");
2698 int config_parse_unit_requires_mounts_for(
2700 const char *filename
,
2702 const char *section
,
2703 unsigned section_line
,
2710 const char *p
= rvalue
;
2720 _cleanup_free_
char *word
= NULL
, *resolved
= NULL
;
2722 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_QUOTES
);
2728 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
2729 "Invalid syntax, ignoring: %s", rvalue
);
2733 if (!utf8_is_valid(word
)) {
2734 log_syntax_invalid_utf8(unit
, LOG_ERR
, filename
, line
, rvalue
);
2738 r
= unit_full_printf(u
, word
, &resolved
);
2740 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in '%s', ignoring: %m", word
);
2744 r
= unit_require_mounts_for(u
, resolved
, UNIT_DEPENDENCY_FILE
);
2746 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to add required mount '%s', ignoring: %m", resolved
);
2752 int config_parse_documentation(const char *unit
,
2753 const char *filename
,
2755 const char *section
,
2756 unsigned section_line
,
2772 if (isempty(rvalue
)) {
2773 /* Empty assignment resets the list */
2774 u
->documentation
= strv_free(u
->documentation
);
2778 r
= config_parse_unit_strv_printf(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
,
2779 rvalue
, data
, userdata
);
2783 for (a
= b
= u
->documentation
; a
&& *a
; a
++) {
2785 if (documentation_url_is_valid(*a
))
2788 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid URL, ignoring: %s", *a
);
2799 int config_parse_syscall_filter(
2801 const char *filename
,
2803 const char *section
,
2804 unsigned section_line
,
2811 ExecContext
*c
= data
;
2813 bool invert
= false;
2822 if (isempty(rvalue
)) {
2823 /* Empty assignment resets the list */
2824 c
->syscall_filter
= hashmap_free(c
->syscall_filter
);
2825 c
->syscall_whitelist
= false;
2829 if (rvalue
[0] == '~') {
2834 if (!c
->syscall_filter
) {
2835 c
->syscall_filter
= hashmap_new(NULL
);
2836 if (!c
->syscall_filter
)
2840 /* Allow everything but the ones listed */
2841 c
->syscall_whitelist
= false;
2843 /* Allow nothing but the ones listed */
2844 c
->syscall_whitelist
= true;
2846 /* Accept default syscalls if we are on a whitelist */
2847 r
= seccomp_parse_syscall_filter("@default", -1, c
->syscall_filter
, SECCOMP_PARSE_WHITELIST
);
2855 _cleanup_free_
char *word
= NULL
, *name
= NULL
;
2858 r
= extract_first_word(&p
, &word
, NULL
, 0);
2864 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
, "Invalid syntax, ignoring: %s", rvalue
);
2868 r
= parse_syscall_and_errno(word
, &name
, &num
);
2870 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
, "Failed to parse syscall:errno, ignoring: %s", word
);
2874 r
= seccomp_parse_syscall_filter_full(name
, num
, c
->syscall_filter
,
2875 SECCOMP_PARSE_LOG
|SECCOMP_PARSE_PERMISSIVE
|(invert
? SECCOMP_PARSE_INVERT
: 0)|(c
->syscall_whitelist
? SECCOMP_PARSE_WHITELIST
: 0),
2876 unit
, filename
, line
);
2882 int config_parse_syscall_archs(
2884 const char *filename
,
2886 const char *section
,
2887 unsigned section_line
,
2894 const char *p
= rvalue
;
2898 if (isempty(rvalue
)) {
2899 *archs
= set_free(*archs
);
2903 r
= set_ensure_allocated(archs
, NULL
);
2908 _cleanup_free_
char *word
= NULL
;
2911 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_QUOTES
);
2917 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
2918 "Invalid syntax, ignoring: %s", rvalue
);
2922 r
= seccomp_arch_from_string(word
, &a
);
2924 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
2925 "Failed to parse system call architecture \"%s\", ignoring: %m", word
);
2929 r
= set_put(*archs
, UINT32_TO_PTR(a
+ 1));
2935 int config_parse_syscall_errno(
2937 const char *filename
,
2939 const char *section
,
2940 unsigned section_line
,
2947 ExecContext
*c
= data
;
2954 if (isempty(rvalue
)) {
2955 /* Empty assignment resets to KILL */
2956 c
->syscall_errno
= 0;
2960 e
= parse_errno(rvalue
);
2962 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse error number, ignoring: %s", rvalue
);
2966 c
->syscall_errno
= e
;
2970 int config_parse_address_families(
2972 const char *filename
,
2974 const char *section
,
2975 unsigned section_line
,
2982 ExecContext
*c
= data
;
2983 bool invert
= false;
2991 if (isempty(rvalue
)) {
2992 /* Empty assignment resets the list */
2993 c
->address_families
= set_free(c
->address_families
);
2994 c
->address_families_whitelist
= false;
2998 if (rvalue
[0] == '~') {
3003 if (!c
->address_families
) {
3004 c
->address_families
= set_new(NULL
);
3005 if (!c
->address_families
)
3008 c
->address_families_whitelist
= !invert
;
3011 for (p
= rvalue
;;) {
3012 _cleanup_free_
char *word
= NULL
;
3015 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_QUOTES
);
3021 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3022 "Invalid syntax, ignoring: %s", rvalue
);
3026 af
= af_from_name(word
);
3028 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
3029 "Failed to parse address family, ignoring: %s", word
);
3033 /* If we previously wanted to forbid an address family and now
3034 * we want to allow it, then just remove it from the list.
3036 if (!invert
== c
->address_families_whitelist
) {
3037 r
= set_put(c
->address_families
, INT_TO_PTR(af
));
3041 set_remove(c
->address_families
, INT_TO_PTR(af
));
3045 int config_parse_restrict_namespaces(
3047 const char *filename
,
3049 const char *section
,
3050 unsigned section_line
,
3057 ExecContext
*c
= data
;
3058 unsigned long flags
;
3059 bool invert
= false;
3062 if (isempty(rvalue
)) {
3063 /* Reset to the default. */
3064 c
->restrict_namespaces
= NAMESPACE_FLAGS_INITIAL
;
3068 /* Boolean parameter ignores the previous settings */
3069 r
= parse_boolean(rvalue
);
3071 c
->restrict_namespaces
= 0;
3073 } else if (r
== 0) {
3074 c
->restrict_namespaces
= NAMESPACE_FLAGS_ALL
;
3078 if (rvalue
[0] == '~') {
3083 /* Not a boolean argument, in this case it's a list of namespace types. */
3084 r
= namespace_flags_from_string(rvalue
, &flags
);
3086 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse namespace type string, ignoring: %s", rvalue
);
3090 if (c
->restrict_namespaces
== NAMESPACE_FLAGS_INITIAL
)
3091 /* Initial assignment. Just set the value. */
3092 c
->restrict_namespaces
= invert
? (~flags
) & NAMESPACE_FLAGS_ALL
: flags
;
3094 /* Merge the value with the previous one. */
3095 SET_FLAG(c
->restrict_namespaces
, flags
, !invert
);
3101 int config_parse_unit_slice(
3103 const char *filename
,
3105 const char *section
,
3106 unsigned section_line
,
3113 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
3114 _cleanup_free_
char *k
= NULL
;
3115 Unit
*u
= userdata
, *slice
= NULL
;
3123 r
= unit_name_printf(u
, rvalue
, &k
);
3125 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s, ignoring: %m", rvalue
);
3129 r
= manager_load_unit(u
->manager
, k
, NULL
, &error
, &slice
);
3131 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to load slice unit %s, ignoring: %s", k
, bus_error_message(&error
, r
));
3135 r
= unit_set_slice(u
, slice
);
3137 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to assign slice %s to unit %s, ignoring: %m", slice
->id
, u
->id
);
3144 DEFINE_CONFIG_PARSE_ENUM(config_parse_device_policy
, cgroup_device_policy
, CGroupDevicePolicy
, "Failed to parse device policy");
3146 int config_parse_cpu_weight(
3148 const char *filename
,
3150 const char *section
,
3151 unsigned section_line
,
3158 uint64_t *weight
= data
;
3165 r
= cg_weight_parse(rvalue
, weight
);
3167 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid CPU weight '%s', ignoring: %m", rvalue
);
3174 int config_parse_cpu_shares(
3176 const char *filename
,
3178 const char *section
,
3179 unsigned section_line
,
3186 uint64_t *shares
= data
;
3193 r
= cg_cpu_shares_parse(rvalue
, shares
);
3195 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid CPU shares '%s', ignoring: %m", rvalue
);
3202 int config_parse_cpu_quota(
3204 const char *filename
,
3206 const char *section
,
3207 unsigned section_line
,
3214 CGroupContext
*c
= data
;
3221 if (isempty(rvalue
)) {
3222 c
->cpu_quota_per_sec_usec
= USEC_INFINITY
;
3226 r
= parse_percent_unbounded(rvalue
);
3228 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid CPU quota '%s', ignoring.", rvalue
);
3232 c
->cpu_quota_per_sec_usec
= ((usec_t
) r
* USEC_PER_SEC
) / 100U;
3236 int config_parse_memory_limit(
3238 const char *filename
,
3240 const char *section
,
3241 unsigned section_line
,
3248 CGroupContext
*c
= data
;
3249 uint64_t bytes
= CGROUP_LIMIT_MAX
;
3252 if (!isempty(rvalue
) && !streq(rvalue
, "infinity")) {
3254 r
= parse_percent(rvalue
);
3256 r
= parse_size(rvalue
, 1024, &bytes
);
3258 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid memory limit '%s', ignoring: %m", rvalue
);
3262 bytes
= physical_memory_scale(r
, 100U);
3264 if (bytes
>= UINT64_MAX
||
3265 (bytes
<= 0 && !streq(lvalue
, "MemorySwapMax"))) {
3266 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Memory limit '%s' out of range, ignoring.", rvalue
);
3271 if (streq(lvalue
, "MemoryLow"))
3272 c
->memory_low
= bytes
;
3273 else if (streq(lvalue
, "MemoryHigh"))
3274 c
->memory_high
= bytes
;
3275 else if (streq(lvalue
, "MemoryMax"))
3276 c
->memory_max
= bytes
;
3277 else if (streq(lvalue
, "MemorySwapMax"))
3278 c
->memory_swap_max
= bytes
;
3279 else if (streq(lvalue
, "MemoryLimit"))
3280 c
->memory_limit
= bytes
;
3287 int config_parse_tasks_max(
3289 const char *filename
,
3291 const char *section
,
3292 unsigned section_line
,
3299 uint64_t *tasks_max
= data
, v
;
3303 if (isempty(rvalue
)) {
3304 *tasks_max
= u
->manager
->default_tasks_max
;
3308 if (streq(rvalue
, "infinity")) {
3309 *tasks_max
= CGROUP_LIMIT_MAX
;
3313 r
= parse_percent(rvalue
);
3315 r
= safe_atou64(rvalue
, &v
);
3317 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid maximum tasks value '%s', ignoring: %m", rvalue
);
3321 v
= system_tasks_max_scale(r
, 100U);
3323 if (v
<= 0 || v
>= UINT64_MAX
) {
3324 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Maximum tasks value '%s' out of range, ignoring.", rvalue
);
3332 int config_parse_delegate(
3334 const char *filename
,
3336 const char *section
,
3337 unsigned section_line
,
3344 CGroupContext
*c
= data
;
3348 t
= unit_name_to_type(unit
);
3349 assert(t
!= _UNIT_TYPE_INVALID
);
3351 if (!unit_vtable
[t
]->can_delegate
) {
3352 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Delegate= setting not supported for this unit type, ignoring.");
3356 /* We either accept a boolean value, which may be used to turn on delegation for all controllers, or turn it
3357 * off for all. Or it takes a list of controller names, in which case we add the specified controllers to the
3358 * mask to delegate. */
3360 if (isempty(rvalue
)) {
3361 /* An empty string resets controllers and set Delegate=yes. */
3363 c
->delegate_controllers
= 0;
3367 r
= parse_boolean(rvalue
);
3369 const char *p
= rvalue
;
3370 CGroupMask mask
= 0;
3373 _cleanup_free_
char *word
= NULL
;
3374 CGroupController cc
;
3376 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_QUOTES
);
3382 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid syntax, ignoring: %s", rvalue
);
3386 cc
= cgroup_controller_from_string(word
);
3388 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid controller name '%s', ignoring", word
);
3392 mask
|= CGROUP_CONTROLLER_TO_MASK(cc
);
3396 c
->delegate_controllers
|= mask
;
3400 c
->delegate_controllers
= _CGROUP_MASK_ALL
;
3402 c
->delegate
= false;
3403 c
->delegate_controllers
= 0;
3409 int config_parse_device_allow(
3411 const char *filename
,
3413 const char *section
,
3414 unsigned section_line
,
3421 _cleanup_free_
char *path
= NULL
, *resolved
= NULL
;
3422 CGroupContext
*c
= data
;
3423 CGroupDeviceAllow
*a
;
3424 const char *p
= rvalue
;
3427 if (isempty(rvalue
)) {
3428 while (c
->device_allow
)
3429 cgroup_context_free_device_allow(c
, c
->device_allow
);
3434 r
= extract_first_word(&p
, &path
, NULL
, EXTRACT_QUOTES
);
3438 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3439 "Invalid syntax, ignoring: %s", rvalue
);
3443 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
3444 "Failed to extract device path and rights from '%s', ignoring.", rvalue
);
3448 r
= unit_full_printf(userdata
, path
, &resolved
);
3450 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3451 "Failed to resolve unit specifiers in '%s', ignoring: %m", path
);
3455 if (!is_deviceallow_pattern(resolved
) &&
3456 !path_startswith(resolved
, "/run/systemd/inaccessible/")) {
3457 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid device node path '%s', ignoring.", resolved
);
3461 if (!isempty(p
) && !in_charset(p
, "rwm")) {
3462 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid device rights '%s', ignoring.", p
);
3466 a
= new0(CGroupDeviceAllow
, 1);
3470 a
->path
= TAKE_PTR(resolved
);
3471 a
->r
= isempty(p
) || !!strchr(p
, 'r');
3472 a
->w
= isempty(p
) || !!strchr(p
, 'w');
3473 a
->m
= isempty(p
) || !!strchr(p
, 'm');
3475 LIST_PREPEND(device_allow
, c
->device_allow
, a
);
3479 int config_parse_io_weight(
3481 const char *filename
,
3483 const char *section
,
3484 unsigned section_line
,
3491 uint64_t *weight
= data
;
3498 r
= cg_weight_parse(rvalue
, weight
);
3500 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid IO weight '%s', ignoring.", rvalue
);
3507 int config_parse_io_device_weight(
3509 const char *filename
,
3511 const char *section
,
3512 unsigned section_line
,
3519 _cleanup_free_
char *path
= NULL
, *resolved
= NULL
;
3520 CGroupIODeviceWeight
*w
;
3521 CGroupContext
*c
= data
;
3522 const char *p
= rvalue
;
3530 if (isempty(rvalue
)) {
3531 while (c
->io_device_weights
)
3532 cgroup_context_free_io_device_weight(c
, c
->io_device_weights
);
3537 r
= extract_first_word(&p
, &path
, NULL
, EXTRACT_QUOTES
);
3541 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3542 "Invalid syntax, ignoring: %s", rvalue
);
3545 if (r
== 0 || isempty(p
)) {
3546 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
3547 "Failed to extract device path and weight from '%s', ignoring.", rvalue
);
3551 r
= unit_full_printf(userdata
, path
, &resolved
);
3553 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3554 "Failed to resolve unit specifiers in '%s', ignoring: %m", path
);
3558 if (!path_startswith(resolved
, "/dev") &&
3559 !path_startswith(resolved
, "/run/systemd/inaccessible/")) {
3560 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid device node path '%s', ignoring.", resolved
);
3564 r
= cg_weight_parse(p
, &u
);
3566 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "IO weight '%s' invalid, ignoring: %m", p
);
3570 assert(u
!= CGROUP_WEIGHT_INVALID
);
3572 w
= new0(CGroupIODeviceWeight
, 1);
3576 w
->path
= TAKE_PTR(resolved
);
3579 LIST_PREPEND(device_weights
, c
->io_device_weights
, w
);
3583 int config_parse_io_limit(
3585 const char *filename
,
3587 const char *section
,
3588 unsigned section_line
,
3595 _cleanup_free_
char *path
= NULL
, *resolved
= NULL
;
3596 CGroupIODeviceLimit
*l
= NULL
, *t
;
3597 CGroupContext
*c
= data
;
3598 CGroupIOLimitType type
;
3599 const char *p
= rvalue
;
3607 type
= cgroup_io_limit_type_from_string(lvalue
);
3610 if (isempty(rvalue
)) {
3611 LIST_FOREACH(device_limits
, l
, c
->io_device_limits
)
3612 l
->limits
[type
] = cgroup_io_limit_defaults
[type
];
3616 r
= extract_first_word(&p
, &path
, NULL
, EXTRACT_QUOTES
);
3620 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3621 "Invalid syntax, ignoring: %s", rvalue
);
3624 if (r
== 0 || isempty(p
)) {
3625 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
3626 "Failed to extract device node and bandwidth from '%s', ignoring.", rvalue
);
3630 r
= unit_full_printf(userdata
, path
, &resolved
);
3632 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3633 "Failed to resolve unit specifiers in '%s', ignoring: %m", path
);
3637 if (!path_startswith(resolved
, "/dev") &&
3638 !path_startswith(resolved
, "/run/systemd/inaccessible/")) {
3639 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid device node path '%s', ignoring.", resolved
);
3643 if (streq("infinity", p
)) {
3644 num
= CGROUP_LIMIT_MAX
;
3646 r
= parse_size(p
, 1000, &num
);
3647 if (r
< 0 || num
<= 0) {
3648 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid IO limit '%s', ignoring.", p
);
3653 LIST_FOREACH(device_limits
, t
, c
->io_device_limits
) {
3654 if (path_equal(resolved
, t
->path
)) {
3661 CGroupIOLimitType ttype
;
3663 l
= new0(CGroupIODeviceLimit
, 1);
3667 l
->path
= TAKE_PTR(resolved
);
3668 for (ttype
= 0; ttype
< _CGROUP_IO_LIMIT_TYPE_MAX
; ttype
++)
3669 l
->limits
[ttype
] = cgroup_io_limit_defaults
[ttype
];
3671 LIST_PREPEND(device_limits
, c
->io_device_limits
, l
);
3674 l
->limits
[type
] = num
;
3679 int config_parse_blockio_weight(
3681 const char *filename
,
3683 const char *section
,
3684 unsigned section_line
,
3691 uint64_t *weight
= data
;
3698 r
= cg_blkio_weight_parse(rvalue
, weight
);
3700 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid block IO weight '%s', ignoring: %m", rvalue
);
3707 int config_parse_blockio_device_weight(
3709 const char *filename
,
3711 const char *section
,
3712 unsigned section_line
,
3719 _cleanup_free_
char *path
= NULL
, *resolved
= NULL
;
3720 CGroupBlockIODeviceWeight
*w
;
3721 CGroupContext
*c
= data
;
3722 const char *p
= rvalue
;
3730 if (isempty(rvalue
)) {
3731 while (c
->blockio_device_weights
)
3732 cgroup_context_free_blockio_device_weight(c
, c
->blockio_device_weights
);
3737 r
= extract_first_word(&p
, &path
, NULL
, EXTRACT_QUOTES
);
3741 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3742 "Invalid syntax, ignoring: %s", rvalue
);
3745 if (r
== 0 || isempty(p
)) {
3746 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
3747 "Failed to extract device node and weight from '%s', ignoring.", rvalue
);
3751 r
= unit_full_printf(userdata
, path
, &resolved
);
3753 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3754 "Failed to resolve unit specifiers in '%s', ignoring: %m", path
);
3758 if (!path_startswith(resolved
, "/dev") &&
3759 !path_startswith(resolved
, "/run/systemd/inaccessible/")) {
3760 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid device node path '%s'. Ignoring.", resolved
);
3764 r
= cg_blkio_weight_parse(p
, &u
);
3766 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid block IO weight '%s', ignoring: %m", p
);
3770 assert(u
!= CGROUP_BLKIO_WEIGHT_INVALID
);
3772 w
= new0(CGroupBlockIODeviceWeight
, 1);
3776 w
->path
= TAKE_PTR(resolved
);
3779 LIST_PREPEND(device_weights
, c
->blockio_device_weights
, w
);
3783 int config_parse_blockio_bandwidth(
3785 const char *filename
,
3787 const char *section
,
3788 unsigned section_line
,
3795 _cleanup_free_
char *path
= NULL
, *resolved
= NULL
;
3796 CGroupBlockIODeviceBandwidth
*b
= NULL
, *t
;
3797 CGroupContext
*c
= data
;
3798 const char *p
= rvalue
;
3807 read
= streq("BlockIOReadBandwidth", lvalue
);
3809 if (isempty(rvalue
)) {
3810 LIST_FOREACH(device_bandwidths
, b
, c
->blockio_device_bandwidths
) {
3811 b
->rbps
= CGROUP_LIMIT_MAX
;
3812 b
->wbps
= CGROUP_LIMIT_MAX
;
3817 r
= extract_first_word(&p
, &path
, NULL
, EXTRACT_QUOTES
);
3821 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3822 "Invalid syntax, ignoring: %s", rvalue
);
3825 if (r
== 0 || isempty(p
)) {
3826 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
3827 "Failed to extract device node and bandwidth from '%s', ignoring.", rvalue
);
3831 r
= unit_full_printf(userdata
, path
, &resolved
);
3833 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3834 "Failed to resolve unit specifiers in '%s', ignoring: %m", path
);
3838 if (!path_startswith(resolved
, "/dev") &&
3839 !path_startswith(resolved
, "/run/systemd/inaccessible/")) {
3840 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid device node path '%s', ignoring.", resolved
);
3844 r
= parse_size(p
, 1000, &bytes
);
3845 if (r
< 0 || bytes
<= 0) {
3846 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Invalid Block IO Bandwidth '%s', ignoring.", p
);
3850 LIST_FOREACH(device_bandwidths
, t
, c
->blockio_device_bandwidths
) {
3851 if (path_equal(resolved
, t
->path
)) {
3858 b
= new0(CGroupBlockIODeviceBandwidth
, 1);
3862 b
->path
= TAKE_PTR(resolved
);
3863 b
->rbps
= CGROUP_LIMIT_MAX
;
3864 b
->wbps
= CGROUP_LIMIT_MAX
;
3866 LIST_PREPEND(device_bandwidths
, c
->blockio_device_bandwidths
, b
);
3877 DEFINE_CONFIG_PARSE_ENUM(config_parse_job_mode
, job_mode
, JobMode
, "Failed to parse job mode");
3879 int config_parse_job_mode_isolate(
3881 const char *filename
,
3883 const char *section
,
3884 unsigned section_line
,
3898 r
= parse_boolean(rvalue
);
3900 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse boolean, ignoring: %s", rvalue
);
3904 log_notice("%s is deprecated. Please use OnFailureJobMode= instead", lvalue
);
3906 *m
= r
? JOB_ISOLATE
: JOB_REPLACE
;
3910 DEFINE_CONFIG_PARSE_ENUM(config_parse_runtime_preserve_mode
, exec_preserve_mode
, ExecPreserveMode
, "Failed to parse runtime directory preserve mode");
3912 int config_parse_exec_directories(
3914 const char *filename
,
3916 const char *section
,
3917 unsigned section_line
,
3934 if (isempty(rvalue
)) {
3935 /* Empty assignment resets the list */
3936 *rt
= strv_free(*rt
);
3940 for (p
= rvalue
;;) {
3941 _cleanup_free_
char *word
= NULL
, *k
= NULL
;
3943 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_QUOTES
);
3947 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
3948 "Invalid syntax, ignoring: %s", rvalue
);
3954 r
= unit_full_printf(u
, word
, &k
);
3956 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
3957 "Failed to resolve unit specifiers in \"%s\", ignoring: %m", word
);
3961 if (!path_is_normalized(k
)) {
3962 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
3963 "%s= path is not normalized, ignoring assignment: %s", lvalue
, rvalue
);
3967 if (path_is_absolute(k
)) {
3968 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
3969 "%s= path is absolute, ignoring assignment: %s", lvalue
, rvalue
);
3973 if (path_startswith(k
, "private")) {
3974 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
3975 "%s= path can't be 'private', ingoring assignment: %s", lvalue
, rvalue
);
3979 r
= strv_push(rt
, k
);
3986 int config_parse_set_status(
3988 const char *filename
,
3990 const char *section
,
3991 unsigned section_line
,
3999 const char *word
, *state
;
4001 ExitStatusSet
*status_set
= data
;
4008 /* Empty assignment resets the list */
4009 if (isempty(rvalue
)) {
4010 exit_status_set_free(status_set
);
4014 FOREACH_WORD(word
, l
, rvalue
, state
) {
4015 _cleanup_free_
char *temp
;
4019 temp
= strndup(word
, l
);
4023 r
= safe_atoi(temp
, &val
);
4025 val
= signal_from_string(temp
);
4028 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse value, ignoring: %s", word
);
4031 set
= &status_set
->signal
;
4033 if (val
< 0 || val
> 255) {
4034 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Value %d is outside range 0-255, ignoring", val
);
4037 set
= &status_set
->status
;
4040 r
= set_ensure_allocated(set
, NULL
);
4044 r
= set_put(*set
, INT_TO_PTR(val
));
4048 if (!isempty(state
))
4049 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Trailing garbage, ignoring.");
4054 int config_parse_namespace_path_strv(
4056 const char *filename
,
4058 const char *section
,
4059 unsigned section_line
,
4068 const char *p
= rvalue
;
4076 if (isempty(rvalue
)) {
4077 /* Empty assignment resets the list */
4078 *sv
= strv_free(*sv
);
4083 _cleanup_free_
char *word
= NULL
, *resolved
= NULL
, *joined
= NULL
;
4085 bool ignore_enoent
= false, shall_prefix
= false;
4087 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_QUOTES
);
4093 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to extract first word, ignoring: %s", rvalue
);
4097 if (!utf8_is_valid(word
)) {
4098 log_syntax_invalid_utf8(unit
, LOG_ERR
, filename
, line
, word
);
4103 if (startswith(w
, "-")) {
4104 ignore_enoent
= true;
4107 if (startswith(w
, "+")) {
4108 shall_prefix
= true;
4112 r
= unit_full_printf(u
, w
, &resolved
);
4114 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s: %m", w
);
4118 if (!path_is_absolute(resolved
)) {
4119 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Not an absolute path, ignoring: %s", resolved
);
4123 path_kill_slashes(resolved
);
4125 joined
= strjoin(ignore_enoent
? "-" : "",
4126 shall_prefix
? "+" : "",
4129 r
= strv_push(sv
, joined
);
4139 int config_parse_temporary_filesystems(
4141 const char *filename
,
4143 const char *section
,
4144 unsigned section_line
,
4152 ExecContext
*c
= data
;
4153 const char *p
= rvalue
;
4161 if (isempty(rvalue
)) {
4162 /* Empty assignment resets the list */
4163 temporary_filesystem_free_many(c
->temporary_filesystems
, c
->n_temporary_filesystems
);
4164 c
->temporary_filesystems
= NULL
;
4165 c
->n_temporary_filesystems
= 0;
4170 _cleanup_free_
char *word
= NULL
, *path
= NULL
, *resolved
= NULL
;
4173 r
= extract_first_word(&p
, &word
, NULL
, EXTRACT_QUOTES
);
4179 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to extract first word, ignoring: %s", rvalue
);
4184 r
= extract_first_word(&w
, &path
, ":", EXTRACT_DONT_COALESCE_SEPARATORS
);
4188 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to extract first word, ignoring: %s", word
);
4192 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid syntax, ignoring: %s", word
);
4196 r
= unit_full_printf(u
, path
, &resolved
);
4198 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to resolve unit specifiers in %s, ignoring: %m", path
);
4202 if (!path_is_absolute(resolved
)) {
4203 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Not an absolute path, ignoring: %s", resolved
);
4207 path_kill_slashes(resolved
);
4209 r
= temporary_filesystem_add(&c
->temporary_filesystems
, &c
->n_temporary_filesystems
, path
, w
);
4213 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse mount options, ignoring: %s", word
);
4219 int config_parse_bind_paths(
4221 const char *filename
,
4223 const char *section
,
4224 unsigned section_line
,
4231 ExecContext
*c
= data
;
4241 if (isempty(rvalue
)) {
4242 /* Empty assignment resets the list */
4243 bind_mount_free_many(c
->bind_mounts
, c
->n_bind_mounts
);
4244 c
->bind_mounts
= NULL
;
4245 c
->n_bind_mounts
= 0;
4251 _cleanup_free_
char *source
= NULL
, *destination
= NULL
;
4252 _cleanup_free_
char *sresolved
= NULL
, *dresolved
= NULL
;
4253 char *s
= NULL
, *d
= NULL
;
4254 bool rbind
= true, ignore_enoent
= false;
4256 r
= extract_first_word(&p
, &source
, ":" WHITESPACE
, EXTRACT_QUOTES
|EXTRACT_DONT_COALESCE_SEPARATORS
);
4262 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse %s: %s", lvalue
, rvalue
);
4266 r
= unit_full_printf(u
, source
, &sresolved
);
4268 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
4269 "Failed to resolved unit specifiers in \"%s\", ignoring: %m", source
);
4275 ignore_enoent
= true;
4279 if (!utf8_is_valid(s
)) {
4280 log_syntax_invalid_utf8(unit
, LOG_ERR
, filename
, line
, s
);
4283 if (!path_is_absolute(s
)) {
4284 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Not an absolute source path, ignoring: %s", s
);
4288 path_kill_slashes(s
);
4290 /* Optionally, the destination is specified. */
4291 if (p
&& p
[-1] == ':') {
4292 r
= extract_first_word(&p
, &destination
, ":" WHITESPACE
, EXTRACT_QUOTES
|EXTRACT_DONT_COALESCE_SEPARATORS
);
4296 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse %s: %s", lvalue
, rvalue
);
4300 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Missing argument after ':': %s", rvalue
);
4304 r
= unit_full_printf(u
, destination
, &dresolved
);
4306 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
4307 "Failed to resolved specifiers in \"%s\", ignoring: %m", destination
);
4311 if (!utf8_is_valid(dresolved
)) {
4312 log_syntax_invalid_utf8(unit
, LOG_ERR
, filename
, line
, dresolved
);
4315 if (!path_is_absolute(dresolved
)) {
4316 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Not an absolute destination path, ignoring: %s", dresolved
);
4320 d
= path_kill_slashes(dresolved
);
4322 /* Optionally, there's also a short option string specified */
4323 if (p
&& p
[-1] == ':') {
4324 _cleanup_free_
char *options
= NULL
;
4326 r
= extract_first_word(&p
, &options
, NULL
, EXTRACT_QUOTES
);
4330 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse %s: %s", lvalue
, rvalue
);
4334 if (isempty(options
) || streq(options
, "rbind"))
4336 else if (streq(options
, "norbind"))
4339 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid option string, ignoring setting: %s", options
);
4346 r
= bind_mount_add(&c
->bind_mounts
, &c
->n_bind_mounts
,
4350 .read_only
= !!strstr(lvalue
, "ReadOnly"),
4352 .ignore_enoent
= ignore_enoent
,
4361 int config_parse_no_new_privileges(
4363 const char *filename
,
4365 const char *section
,
4366 unsigned section_line
,
4373 ExecContext
*c
= data
;
4381 r
= parse_boolean(rvalue
);
4383 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse boolean value, ignoring: %s", rvalue
);
4387 c
->no_new_privileges
= r
;
4392 int config_parse_protect_home(
4394 const char *filename
,
4396 const char *section
,
4397 unsigned section_line
,
4404 ExecContext
*c
= data
;
4412 /* Our enum shall be a superset of booleans, hence first try
4413 * to parse as boolean, and then as enum */
4415 h
= parse_protect_home_or_bool(rvalue
);
4417 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse protect home value, ignoring: %s", rvalue
);
4421 c
->protect_home
= h
;
4426 int config_parse_protect_system(
4428 const char *filename
,
4430 const char *section
,
4431 unsigned section_line
,
4438 ExecContext
*c
= data
;
4446 s
= parse_protect_system_or_bool(rvalue
);
4448 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse protect system value, ignoring: %s", rvalue
);
4452 c
->protect_system
= s
;
4457 DEFINE_CONFIG_PARSE_ENUM(config_parse_exec_keyring_mode
, exec_keyring_mode
, ExecKeyringMode
, "Failed to parse keyring mode");
4459 int config_parse_job_timeout_sec(
4461 const char *filename
,
4463 const char *section
,
4464 unsigned section_line
,
4480 r
= parse_sec_fix_0(rvalue
, &usec
);
4482 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse JobTimeoutSec= parameter, ignoring: %s", rvalue
);
4486 /* If the user explicitly changed JobTimeoutSec= also change JobRunningTimeoutSec=, for compatibility with old
4487 * versions. If JobRunningTimeoutSec= was explicitly set, avoid this however as whatever the user picked should
4490 if (!u
->job_running_timeout_set
)
4491 u
->job_running_timeout
= usec
;
4493 u
->job_timeout
= usec
;
4498 int config_parse_job_running_timeout_sec(
4500 const char *filename
,
4502 const char *section
,
4503 unsigned section_line
,
4519 r
= parse_sec_fix_0(rvalue
, &usec
);
4521 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse JobRunningTimeoutSec= parameter, ignoring: %s", rvalue
);
4525 u
->job_running_timeout
= usec
;
4526 u
->job_running_timeout_set
= true;
4531 #define FOLLOW_MAX 8
4533 static int open_follow(char **filename
, FILE **_f
, Set
*names
, char **_final
) {
4544 /* This will update the filename pointer if the loaded file is
4545 * reached by a symlink. The old string will be freed. */
4548 char *target
, *name
;
4550 if (c
++ >= FOLLOW_MAX
)
4553 path_kill_slashes(*filename
);
4555 /* Add the file name we are currently looking at to
4556 * the names of this unit, but only if it is a valid
4558 name
= basename(*filename
);
4559 if (unit_name_is_valid(name
, UNIT_NAME_ANY
)) {
4561 id
= set_get(names
, name
);
4567 r
= set_consume(names
, id
);
4573 /* Try to open the file name, but don't if its a symlink */
4574 fd
= open(*filename
, O_RDONLY
|O_CLOEXEC
|O_NOCTTY
|O_NOFOLLOW
);
4581 /* Hmm, so this is a symlink. Let's read the name, and follow it manually */
4582 r
= readlink_and_make_absolute(*filename
, &target
);
4590 f
= fdopen(fd
, "re");
4602 static int merge_by_names(Unit
**u
, Set
*names
, const char *id
) {
4610 /* Let's try to add in all symlink names we found */
4611 while ((k
= set_steal_first(names
))) {
4613 /* First try to merge in the other name into our
4615 r
= unit_merge_by_name(*u
, k
);
4619 /* Hmm, we couldn't merge the other unit into
4620 * ours? Then let's try it the other way
4623 /* If the symlink name we are looking at is unit template, then
4624 we must search for instance of this template */
4625 if (unit_name_is_valid(k
, UNIT_NAME_TEMPLATE
) && (*u
)->instance
) {
4626 _cleanup_free_
char *instance
= NULL
;
4628 r
= unit_name_replace_instance(k
, (*u
)->instance
, &instance
);
4632 other
= manager_get_unit((*u
)->manager
, instance
);
4634 other
= manager_get_unit((*u
)->manager
, k
);
4639 r
= unit_merge(other
, *u
);
4642 return merge_by_names(u
, names
, NULL
);
4650 unit_choose_id(*u
, id
);
4658 static int load_from_path(Unit
*u
, const char *path
) {
4659 _cleanup_set_free_free_ Set
*symlink_names
= NULL
;
4660 _cleanup_fclose_
FILE *f
= NULL
;
4661 _cleanup_free_
char *filename
= NULL
;
4670 symlink_names
= set_new(&string_hash_ops
);
4674 if (path_is_absolute(path
)) {
4676 filename
= strdup(path
);
4680 r
= open_follow(&filename
, &f
, symlink_names
, &id
);
4682 filename
= mfree(filename
);
4690 STRV_FOREACH(p
, u
->manager
->lookup_paths
.search_path
) {
4692 /* Instead of opening the path right away, we manually
4693 * follow all symlinks and add their name to our unit
4694 * name set while doing so */
4695 filename
= path_make_absolute(path
, *p
);
4699 if (u
->manager
->unit_path_cache
&&
4700 !set_get(u
->manager
->unit_path_cache
, filename
))
4703 r
= open_follow(&filename
, &f
, symlink_names
, &id
);
4706 filename
= mfree(filename
);
4708 /* ENOENT means that the file is missing or is a dangling symlink.
4709 * ENOTDIR means that one of paths we expect to be is a directory
4710 * is not a directory, we should just ignore that.
4711 * EACCES means that the directory or file permissions are wrong.
4714 log_debug_errno(r
, "Cannot access \"%s\": %m", filename
);
4715 else if (!IN_SET(r
, -ENOENT
, -ENOTDIR
))
4718 /* Empty the symlink names for the next run */
4719 set_clear_free(symlink_names
);
4724 /* Hmm, no suitable file found? */
4727 if (!unit_type_may_alias(u
->type
) && set_size(symlink_names
) > 1) {
4728 log_unit_warning(u
, "Unit type of %s does not support alias names, refusing loading via symlink.", u
->id
);
4733 r
= merge_by_names(&merged
, symlink_names
, id
);
4738 u
->load_state
= UNIT_MERGED
;
4742 if (fstat(fileno(f
), &st
) < 0)
4745 if (null_or_empty(&st
)) {
4746 u
->load_state
= UNIT_MASKED
;
4747 u
->fragment_mtime
= 0;
4749 u
->load_state
= UNIT_LOADED
;
4750 u
->fragment_mtime
= timespec_load(&st
.st_mtim
);
4752 /* Now, parse the file contents */
4753 r
= config_parse(u
->id
, filename
, f
,
4754 UNIT_VTABLE(u
)->sections
,
4755 config_item_perf_lookup
, load_fragment_gperf_lookup
,
4756 CONFIG_PARSE_ALLOW_INCLUDE
, u
);
4761 free_and_replace(u
->fragment_path
, filename
);
4763 if (u
->source_path
) {
4764 if (stat(u
->source_path
, &st
) >= 0)
4765 u
->source_mtime
= timespec_load(&st
.st_mtim
);
4767 u
->source_mtime
= 0;
4773 int unit_load_fragment(Unit
*u
) {
4779 assert(u
->load_state
== UNIT_STUB
);
4783 u
->load_state
= UNIT_LOADED
;
4787 /* First, try to find the unit under its id. We always look
4788 * for unit files in the default directories, to make it easy
4789 * to override things by placing things in /etc/systemd/system */
4790 r
= load_from_path(u
, u
->id
);
4794 /* Try to find an alias we can load this with */
4795 if (u
->load_state
== UNIT_STUB
) {
4796 SET_FOREACH(t
, u
->names
, i
) {
4801 r
= load_from_path(u
, t
);
4805 if (u
->load_state
!= UNIT_STUB
)
4810 /* And now, try looking for it under the suggested (originally linked) path */
4811 if (u
->load_state
== UNIT_STUB
&& u
->fragment_path
) {
4813 r
= load_from_path(u
, u
->fragment_path
);
4817 if (u
->load_state
== UNIT_STUB
)
4818 /* Hmm, this didn't work? Then let's get rid
4819 * of the fragment path stored for us, so that
4820 * we don't point to an invalid location. */
4821 u
->fragment_path
= mfree(u
->fragment_path
);
4824 /* Look for a template */
4825 if (u
->load_state
== UNIT_STUB
&& u
->instance
) {
4826 _cleanup_free_
char *k
= NULL
;
4828 r
= unit_name_template(u
->id
, &k
);
4832 r
= load_from_path(u
, k
);
4835 log_unit_notice(u
, "Unit configuration has fatal error, unit will not be started.");
4839 if (u
->load_state
== UNIT_STUB
) {
4840 SET_FOREACH(t
, u
->names
, i
) {
4841 _cleanup_free_
char *z
= NULL
;
4846 r
= unit_name_template(t
, &z
);
4850 r
= load_from_path(u
, z
);
4854 if (u
->load_state
!= UNIT_STUB
)
4863 void unit_dump_config_items(FILE *f
) {
4864 static const struct {
4865 const ConfigParserCallback callback
;
4868 { config_parse_warn_compat
, "NOTSUPPORTED" },
4869 { config_parse_int
, "INTEGER" },
4870 { config_parse_unsigned
, "UNSIGNED" },
4871 { config_parse_iec_size
, "SIZE" },
4872 { config_parse_iec_uint64
, "SIZE" },
4873 { config_parse_si_size
, "SIZE" },
4874 { config_parse_bool
, "BOOLEAN" },
4875 { config_parse_string
, "STRING" },
4876 { config_parse_path
, "PATH" },
4877 { config_parse_unit_path_printf
, "PATH" },
4878 { config_parse_strv
, "STRING [...]" },
4879 { config_parse_exec_nice
, "NICE" },
4880 { config_parse_exec_oom_score_adjust
, "OOMSCOREADJUST" },
4881 { config_parse_exec_io_class
, "IOCLASS" },
4882 { config_parse_exec_io_priority
, "IOPRIORITY" },
4883 { config_parse_exec_cpu_sched_policy
, "CPUSCHEDPOLICY" },
4884 { config_parse_exec_cpu_sched_prio
, "CPUSCHEDPRIO" },
4885 { config_parse_exec_cpu_affinity
, "CPUAFFINITY" },
4886 { config_parse_mode
, "MODE" },
4887 { config_parse_unit_env_file
, "FILE" },
4888 { config_parse_exec_output
, "OUTPUT" },
4889 { config_parse_exec_input
, "INPUT" },
4890 { config_parse_log_facility
, "FACILITY" },
4891 { config_parse_log_level
, "LEVEL" },
4892 { config_parse_exec_secure_bits
, "SECUREBITS" },
4893 { config_parse_capability_set
, "BOUNDINGSET" },
4894 { config_parse_rlimit
, "LIMIT" },
4895 { config_parse_unit_deps
, "UNIT [...]" },
4896 { config_parse_exec
, "PATH [ARGUMENT [...]]" },
4897 { config_parse_service_type
, "SERVICETYPE" },
4898 { config_parse_service_restart
, "SERVICERESTART" },
4899 { config_parse_kill_mode
, "KILLMODE" },
4900 { config_parse_signal
, "SIGNAL" },
4901 { config_parse_socket_listen
, "SOCKET [...]" },
4902 { config_parse_socket_bind
, "SOCKETBIND" },
4903 { config_parse_socket_bindtodevice
, "NETWORKINTERFACE" },
4904 { config_parse_sec
, "SECONDS" },
4905 { config_parse_nsec
, "NANOSECONDS" },
4906 { config_parse_namespace_path_strv
, "PATH [...]" },
4907 { config_parse_bind_paths
, "PATH[:PATH[:OPTIONS]] [...]" },
4908 { config_parse_unit_requires_mounts_for
, "PATH [...]" },
4909 { config_parse_exec_mount_flags
, "MOUNTFLAG [...]" },
4910 { config_parse_unit_string_printf
, "STRING" },
4911 { config_parse_trigger_unit
, "UNIT" },
4912 { config_parse_timer
, "TIMER" },
4913 { config_parse_path_spec
, "PATH" },
4914 { config_parse_notify_access
, "ACCESS" },
4915 { config_parse_ip_tos
, "TOS" },
4916 { config_parse_unit_condition_path
, "CONDITION" },
4917 { config_parse_unit_condition_string
, "CONDITION" },
4918 { config_parse_unit_condition_null
, "CONDITION" },
4919 { config_parse_unit_slice
, "SLICE" },
4920 { config_parse_documentation
, "URL" },
4921 { config_parse_service_timeout
, "SECONDS" },
4922 { config_parse_emergency_action
, "ACTION" },
4923 { config_parse_set_status
, "STATUS" },
4924 { config_parse_service_sockets
, "SOCKETS" },
4925 { config_parse_environ
, "ENVIRON" },
4927 { config_parse_syscall_filter
, "SYSCALLS" },
4928 { config_parse_syscall_archs
, "ARCHS" },
4929 { config_parse_syscall_errno
, "ERRNO" },
4930 { config_parse_address_families
, "FAMILIES" },
4931 { config_parse_restrict_namespaces
, "NAMESPACES" },
4933 { config_parse_cpu_shares
, "SHARES" },
4934 { config_parse_cpu_weight
, "WEIGHT" },
4935 { config_parse_memory_limit
, "LIMIT" },
4936 { config_parse_device_allow
, "DEVICE" },
4937 { config_parse_device_policy
, "POLICY" },
4938 { config_parse_io_limit
, "LIMIT" },
4939 { config_parse_io_weight
, "WEIGHT" },
4940 { config_parse_io_device_weight
, "DEVICEWEIGHT" },
4941 { config_parse_blockio_bandwidth
, "BANDWIDTH" },
4942 { config_parse_blockio_weight
, "WEIGHT" },
4943 { config_parse_blockio_device_weight
, "DEVICEWEIGHT" },
4944 { config_parse_long
, "LONG" },
4945 { config_parse_socket_service
, "SERVICE" },
4947 { config_parse_exec_selinux_context
, "LABEL" },
4949 { config_parse_job_mode
, "MODE" },
4950 { config_parse_job_mode_isolate
, "BOOLEAN" },
4951 { config_parse_personality
, "PERSONALITY" },
4954 const char *prev
= NULL
;
4959 NULSTR_FOREACH(i
, load_fragment_gperf_nulstr
) {
4960 const char *rvalue
= "OTHER", *lvalue
;
4961 const ConfigPerfItem
*p
;
4966 assert_se(p
= load_fragment_gperf_lookup(i
, strlen(i
)));
4968 /* Hide legacy settings */
4969 if (p
->parse
== config_parse_warn_compat
&&
4970 p
->ltype
== DISABLED_LEGACY
)
4973 for (j
= 0; j
< ELEMENTSOF(table
); j
++)
4974 if (p
->parse
== table
[j
].callback
) {
4975 rvalue
= table
[j
].rvalue
;
4979 dot
= strchr(i
, '.');
4980 lvalue
= dot
? dot
+ 1 : i
;
4984 if (!prev
|| !strneq(prev
, i
, prefix_len
+1)) {
4988 fprintf(f
, "[%.*s]\n", (int) prefix_len
, i
);
4991 fprintf(f
, "%s=%s\n", lvalue
, rvalue
);