2 # -*- mode: shell-script; indent-tabs-mode: nil; sh-basic-offset: 4; -*-
3 # SPDX-License-Identifier: LGPL-2.1-or-later
5 # shellcheck disable=SC2030,SC2031
6 # ex: ts=8 sw=4 sts=4 et filetype=sh tw=180
7 # Note: the shellcheck line above disables warning for variables which were
8 # modified in a subshell. In our case this behavior is expected, but
9 # `shellcheck` can't distinguish this because of poor variable tracking,
10 # which results in warning for every instance of such variable used
11 # throughout this file.
13 # * comment in function install_verity_minimal()
14 # * koalaman/shellcheck#280
17 # Simple wrapper to unify boolean checks.
18 # Note: this function needs to stay near the top of the file, so we can use it
19 # in code in the outermost scope.
21 # Make the value lowercase to make the regex matching simpler
24 # Consider empty value as "false"
25 if [[ -z "$_bool" ||
"$_bool" =~ ^
(0|no|false
)$
]]; then
27 elif [[ "$_bool" =~ ^
(1|
yes|true
)$
]]; then
30 echo >&2 "Value '$_bool' is not a valid boolean value"
35 PATH
=/sbin
:/bin
:/usr
/sbin
:/usr
/bin
38 os_release
=$
(test -e /etc
/os-release
&& echo /etc
/os-release ||
echo /usr
/lib
/os-release
)
39 # shellcheck source=/dev/null
41 [[ "$ID" == "debian" ||
" $ID_LIKE " == *" debian "* ]] && LOOKS_LIKE_DEBIAN
=yes || LOOKS_LIKE_DEBIAN
=no
42 [[ "$ID" == "arch" ||
" $ID_LIKE " == *" arch "* ]] && LOOKS_LIKE_ARCH
=yes || LOOKS_LIKE_ARCH
=no
43 [[ "$ID" == "fedora" ]] && LOOKS_LIKE_FEDORA
=yes || LOOKS_LIKE_FEDORA
=no
44 [[ " $ID_LIKE " == *" suse "* ]] && LOOKS_LIKE_SUSE
=yes || LOOKS_LIKE_SUSE
=no
46 KERNEL_VER
="${KERNEL_VER-$(uname -r)}"
47 QEMU_TIMEOUT
="${QEMU_TIMEOUT:-1800}"
48 NSPAWN_TIMEOUT
="${NSPAWN_TIMEOUT:-1800}"
49 TIMED_OUT
= # will be 1 after run_* if *_TIMEOUT is set and test timed out
50 get_bool
"$LOOKS_LIKE_SUSE" && FSTYPE
="${FSTYPE:-btrfs}" || FSTYPE
="${FSTYPE:-ext4}"
51 UNIFIED_CGROUP_HIERARCHY
="${UNIFIED_CGROUP_HIERARCHY:-default}"
52 EFI_MOUNT
="${EFI_MOUNT:-$(bootctl -x 2>/dev/null || echo /boot)}"
53 # Note that defining a different IMAGE_NAME in a test setup script will only result
54 # in default.img being copied and renamed. It can then be extended by defining
55 # a test_append_files() function. The $1 parameter will be the root directory.
56 # To force creating a new image from scratch (eg: to encrypt it), also define
57 # TEST_FORCE_NEWIMAGE=1 in the test setup script.
58 IMAGE_NAME
=${IMAGE_NAME:-default}
59 TEST_REQUIRE_INSTALL_TESTS
="${TEST_REQUIRE_INSTALL_TESTS:-1}"
60 TEST_PARALLELIZE
="${TEST_PARALLELIZE:-0}"
61 TEST_SUPPORTING_SERVICES_SHOULD_BE_MASKED
="${TEST_SUPPORTING_SERVICES_SHOULD_BE_MASKED:-1}"
64 # Since in Bash we can have only one handler per signal, let's overcome this
65 # limitation by having one global handler for the EXIT signal which executes
66 # all registered handlers
71 # Run the EXIT handlers in reverse order
72 for ((i
= ${#_AT_EXIT_HANDLERS[@]} - 1; i
>= 0; i--
)); do
73 ddebug
"Running EXIT handler '${_AT_EXIT_HANDLERS[$i]}'"
74 eval "${_AT_EXIT_HANDLERS[$i]}"
80 add_at_exit_handler
() {
81 _AT_EXIT_HANDLERS
+=("${1:?}")
84 # Decide if we can (and want to) run qemu with KVM acceleration.
85 # Check if nested KVM is explicitly enabled (TEST_NESTED_KVM). If not,
86 # check if it's not explicitly disabled (TEST_NO_KVM) and we're not already
87 # running under KVM. If these conditions are met, enable KVM (and possibly
88 # nested KVM), otherwise disable it.
89 if get_bool
"${TEST_NESTED_KVM:=}" ||
(! get_bool
"${TEST_NO_KVM:=}" && ! systemd-detect-virt
-qv); then
95 if ! ROOTLIBDIR
=$
(pkg-config
--variable=systemdutildir systemd
); then
96 echo "WARNING! Cannot determine libdir from pkg-config, assuming /usr/lib/systemd" >&2
97 ROOTLIBDIR
=/usr
/lib
/systemd
100 # The calling test.sh scripts have TEST_BASE_DIR set via their Makefile, but we don't need them to provide it
101 TEST_BASE_DIR
=${TEST_BASE_DIR:-$(realpath "$(dirname "${BASH_SOURCE[0]}")")}
102 TEST_UNITS_DIR
="$(realpath "$TEST_BASE_DIR/units
")"
103 SOURCE_DIR
=$
(realpath
"$TEST_BASE_DIR/..")
104 # These variables are used by test scripts
105 export TEST_BASE_DIR TEST_UNITS_DIR SOURCE_DIR
107 TOOLS_DIR
="$SOURCE_DIR/tools"
108 # note that find-build-dir.sh will return $BUILD_DIR if provided, else it will try to find it
109 if get_bool
"${NO_BUILD:=}"; then
110 BUILD_DIR
="$SOURCE_DIR"
111 elif ! BUILD_DIR
="$("$TOOLS_DIR"/find-build-dir.sh)"; then
112 echo "ERROR: no build found, please set BUILD_DIR or use NO_BUILD" >&2
116 PATH_TO_INIT
="$ROOTLIBDIR/systemd"
117 SYSTEMD_JOURNALD
="${SYSTEMD_JOURNALD:-$(command -v "$BUILD_DIR/systemd-journald" || command -v "$ROOTLIBDIR/systemd-journald")}"
118 SYSTEMD_JOURNAL_REMOTE
="${SYSTEMD_JOURNAL_REMOTE:-$(command -v "$BUILD_DIR/systemd-journal-remote" || command -v "$ROOTLIBDIR/systemd-journal-remote" || echo "")}"
119 SYSTEMD
="${SYSTEMD:-$(command -v "$BUILD_DIR/systemd" || command -v "$ROOTLIBDIR/systemd")}"
120 SYSTEMD_NSPAWN
="${SYSTEMD_NSPAWN:-$(command -v "$BUILD_DIR/systemd-nspawn" || command -v systemd-nspawn)}"
121 JOURNALCTL
="${JOURNALCTL:-$(command -v "$BUILD_DIR/journalctl" || command -v journalctl)}"
122 SYSTEMCTL
="${SYSTEMCTL:-$(command -v "$BUILD_DIR/systemctl" || command -v systemctl)}"
124 TESTFILE
="${BASH_SOURCE[1]}"
125 if [ -z "$TESTFILE" ]; then
126 echo "ERROR: test-functions must be sourced from one of the TEST-*/test.sh scripts" >&2
129 TESTNAME
="$(basename "$
(dirname "$(realpath "$TESTFILE")")")"
131 WORKDIR
="/var/tmp/systemd-tests"
132 if get_bool
"${NO_BUILD:=}"; then
133 STATEDIR
="$WORKDIR/$TESTNAME"
135 STATEDIR
="$BUILD_DIR/test/$TESTNAME"
138 STATEFILE
="$STATEDIR/.testdir"
139 IMAGESTATEDIR
="$STATEDIR/.."
140 TESTLOG
="$STATEDIR/test.log"
142 if ! [[ "$TESTNAME" =~ ^TEST\
-([0-9]+)\
-.
+$
]]; then
143 echo "ERROR: Test name '$TESTNAME' is not in the expected format: TEST-[0-9]+-*" >&2
146 TESTID
="${BASH_REMATCH[1]:?}"
148 if [[ ! -f "$TEST_UNITS_DIR/testsuite-$TESTID.service" ]]; then
149 echo "ERROR: Test '$TESTNAME' is missing its service file '$TEST_UNITS_DIR/testsuite-$TESTID.service" >&2
273 is_built_with_asan
() {
276 if ! type -P objdump
>/dev
/null
; then
277 echo "Failed to find objdump, assuming systemd hasn't been built with ASAN."
281 # Borrowed from https://github.com/google/oss-fuzz/blob/cd9acd02f9d3f6e80011cc1e9549be526ce5f270/infra/base-images/base-runner/bad_build_check#L182
283 _asan_calls
="$(objdump -dC "$_bin" | grep -E "(callq?|brasl?|bl
)\s.
+__asan
" -c)"
284 if ((_asan_calls
< 1000)); then
291 is_built_with_coverage
() {
292 if get_bool
"${NO_BUILD:=}" ||
! command -v meson
>/dev
/null
; then
296 meson configure
"${BUILD_DIR:?}" |
grep 'b_coverage' |
awk '{ print $2 }' |
grep -q 'true'
299 IS_BUILT_WITH_ASAN
=$
(is_built_with_asan
"$SYSTEMD_JOURNALD" && echo yes ||
echo no
)
300 IS_BUILT_WITH_COVERAGE
=$
(is_built_with_coverage
&& echo yes ||
echo no
)
302 if get_bool
"$IS_BUILT_WITH_ASAN"; then
303 PATH_TO_INIT
="$ROOTLIBDIR/systemd-under-asan"
304 QEMU_MEM
="${QEMU_MEM:-2G}"
305 QEMU_SMP
="${QEMU_SMP:-4}"
307 # We need to correctly distinguish between gcc's and clang's ASan DSOs.
308 if ASAN_RT_NAME
="$(awk '/libasan.so/ {x=$1; exit} END {print x; exit x==""}' < <(ldd "$SYSTEMD"))"; then
310 ASAN_RT_PATH
="$(readlink -f "$
(${CC:-gcc} --print-file-name "$ASAN_RT_NAME")")"
311 elif ASAN_RT_NAME
="$(awk '/libclang_rt.asan/ {x=$1; exit} END {print x; exit x==""}' < <(ldd "$SYSTEMD"))"; then
313 ASAN_RT_PATH
="$(readlink -f "$
(${CC:-clang} --print-file-name "$ASAN_RT_NAME")")"
315 # As clang's ASan DSO is usually in a non-standard path, let's check if
316 # the environment is set accordingly. If not, warn the user and exit.
317 # We're not setting the LD_LIBRARY_PATH automagically here, because
318 # user should encounter (and fix) the same issue when running the unit
320 if ldd
"$SYSTEMD" |
grep -q "libclang_rt.asan.*not found"; then
321 echo >&2 "clang's ASan DSO ($ASAN_RT_NAME) is not present in the runtime library path"
322 echo >&2 "Consider setting LD_LIBRARY_PATH=${ASAN_RT_PATH%/*}"
326 echo >&2 "systemd is not linked against the ASan DSO"
327 echo >&2 "gcc does this by default, for clang compile with -shared-libasan"
331 echo "Detected ASan RT '$ASAN_RT_NAME' located at '$ASAN_RT_PATH'"
338 if ! command -v "$bin" >/dev
/null
; then
339 echo "Required binary $bin not available, skipping the test"
346 QEMU_BIN
="${QEMU_BIN:-""}"
347 # SUSE and Red Hat call the binary qemu-kvm. Debian and Gentoo call it kvm.
348 if get_bool
"$QEMU_KVM"; then
349 [[ -n "$QEMU_BIN" ]] || QEMU_BIN
="$(command -v kvm qemu-kvm 2>/dev/null | grep '^/' -m1)"
352 [[ -n "$ARCH" ]] || ARCH
="$(uname -m)"
355 # QEMU's own build system calls it qemu-system-x86_64
356 [[ -n "$QEMU_BIN" ]] || QEMU_BIN
="$(command -v qemu-system-x86_64 2>/dev/null | grep '^/' -m1)"
359 # new i386 version of QEMU
360 [[ -n "$QEMU_BIN" ]] || QEMU_BIN
="$(command -v qemu-system-i386 2>/dev/null | grep '^/' -m1)"
362 # i386 version of QEMU
363 [[ -n "$QEMU_BIN" ]] || QEMU_BIN
="$(command -v qemu 2>/dev/null | grep '^/' -m1)"
366 [[ -n "$QEMU_BIN" ]] || QEMU_BIN
="$(command -v qemu-system-ppc64 2>/dev/null | grep '^/' -m1)"
370 if [[ ! -e "$QEMU_BIN" ]]; then
371 echo "Could not find a suitable qemu binary" >&2
376 qemu_setup_swtpm_socket
() {
377 local pid state_dir tpm_device
379 if ! tpm_device
="$(qemu_get_tpm_device)"; then
380 dinfo
"Found QEMU version is too old for TPM2 on ppc64le"
384 state_dir
="$(mktemp -d)"
385 swtpm socket
--tpm2 --tpmstate dir
="$state_dir" --ctrl type=unixio
,path
="$state_dir/sock" &
387 if ! kill -0 "$pid"; then
388 derror
"Failed to start swtpm"
392 if ! timeout
5 bash
-c "until [[ -S $state_dir/sock ]]; do sleep .5; done"; then
393 derror
"Failed to setup swtpm socket"
397 dinfo
"Started swtpm as PID $pid with state dir $state_dir"
399 add_at_exit_handler
"kill -TERM $pid 2>/dev/null; rm -rf '$state_dir'"
401 QEMU_OPTIONS
+=" -chardev socket,id=chrtpm,path=$state_dir/sock -tpmdev emulator,id=tpm0,chardev=chrtpm -device $tpm_device,tpmdev=tpm0"
402 dinfo
"Configured emulated TPM2 device $tpm_device"
407 qemu_get_tpm_device
() {
408 local tpm_device
="tpm-tis"
410 if [[ "$(uname -m)" == "ppc64le" ]]; then
411 # tpm-spapr support was introduced in qemu 5.0.0
412 if ! qemu_min_version
"5.0.0"; then
416 tpm_device
="tpm-spapr"
423 # Compares argument #1=X.Y.Z (X&Y&Z = numeric) to the version of the installed qemu
424 # returns 0 if newer or equal
426 # returns 2 if failing
428 find_qemu_bin ||
return 2
430 # get version from binary
432 qemu_ver
="$("$QEMU_BIN" --version | awk '/^QEMU emulator version ([0-9]*\.[0-9]*\.[0-9]*)/ {print $4}')"
434 # Check version string format
435 echo "$qemu_ver" |
grep -q '^[0-9]*\.[0-9]*\.[0-9]*$' ||
return 2
436 echo "$1" |
grep -q '^[0-9]*\.[0-9]*\.[0-9]*$' ||
return 2
438 # compare as last command to return that value
439 printf "%s\n%s\n" "$1" "$qemu_ver" |
sort -V -C
442 # Pads a file to multiple of 4 bytes
445 size
=$
(stat
-c "%s" "$1")
447 padded
=$
((((size
+ 3) / 4) * 4))
448 truncate
-s "$padded" "$1"
451 # Return 0 if qemu did run (then you must check the result state/logs for actual
452 # success), or 1 if qemu is not available.
454 if declare -F run_qemu_hook
>/dev
/null
; then
455 if ! run_qemu_hook
"${workspace}"; then
456 derror
"check_qemu_hook() returned with EC > 0"
461 # If the test provided its own initrd, use it (e.g. TEST-24)
462 if [[ -z "$INITRD" && -f "${TESTDIR:?}/initrd.img" ]]; then
463 INITRD
="$TESTDIR/initrd.img"
466 if [ -f /etc
/machine-id
]; then
467 read -r MACHINE_ID
</etc
/machine-id
468 [ -z "$INITRD" ] && [ -e "$EFI_MOUNT/$MACHINE_ID/$KERNEL_VER/initrd" ] \
469 && INITRD
="$EFI_MOUNT/$MACHINE_ID/$KERNEL_VER/initrd"
470 [ -z "$KERNEL_BIN" ] && [ -e "$EFI_MOUNT/$MACHINE_ID/$KERNEL_VER/linux" ] \
471 && KERNEL_BIN
="$EFI_MOUNT/$MACHINE_ID/$KERNEL_VER/linux"
476 # Reset the boot counter, if present
477 rm -f "${initdir:?}/var/tmp/.systemd_reboot_count"
478 rm -f "$initdir"/{testok
,failed
,skipped
}
479 # make sure the initdir is not mounted to avoid concurrent access
483 if [[ ! "$KERNEL_BIN" ]]; then
484 if get_bool
"$LOOKS_LIKE_ARCH"; then
485 KERNEL_BIN
=/boot
/vmlinuz-linux
487 [ "$ARCH" ] || ARCH
=$
(uname
-m)
490 # Ubuntu ppc64* calls the kernel binary as vmlinux-*, RHEL/CentOS
491 # uses the "standard" vmlinuz- prefix
492 [[ -e "/boot/vmlinux-$KERNEL_VER" ]] && KERNEL_BIN
="/boot/vmlinux-$KERNEL_VER" || KERNEL_BIN
="/boot/vmlinuz-$KERNEL_VER"
496 KERNEL_BIN
="/boot/vmlinuz-$KERNEL_VER"
502 local default_fedora_initrd
="/boot/initramfs-${KERNEL_VER}.img"
503 local default_debian_initrd
="/boot/initrd.img-${KERNEL_VER}"
504 local default_arch_initrd
="/boot/initramfs-linux-fallback.img"
505 local default_suse_initrd
="/boot/initrd-${KERNEL_VER}"
506 if [[ ! "$INITRD" ]]; then
507 if [[ -e "$default_fedora_initrd" ]]; then
508 INITRD
="$default_fedora_initrd"
509 elif get_bool
"$LOOKS_LIKE_DEBIAN" && [[ -e "$default_debian_initrd" ]]; then
510 INITRD
="$default_debian_initrd"
511 elif get_bool
"$LOOKS_LIKE_ARCH" && [[ -e "$default_arch_initrd" ]]; then
512 INITRD
="$default_arch_initrd"
513 elif get_bool
"$LOOKS_LIKE_SUSE" && [[ -e "$default_suse_initrd" ]]; then
514 INITRD
="$default_suse_initrd"
518 # If QEMU_SMP was not explicitly set, try to determine the value 'dynamically'
519 # i.e. use the number of online CPUs on the host machine. If the nproc utility
520 # is not installed or there's some other error when calling it, fall back
521 # to the original value (QEMU_SMP=1).
522 if [[ -z "${QEMU_SMP:=}" ]]; then
523 if ! QEMU_SMP
=$
(nproc
); then
524 dwarn
"nproc utility is not installed, falling back to QEMU_SMP=1"
529 find_qemu_bin ||
return 1
531 if get_bool
"${TEST_SETUP_SWTPM:-}"; then
532 qemu_setup_swtpm_socket ||
return 1
535 # Umount initdir to avoid concurrent access to the filesystem
536 _umount_dir
"$initdir"
538 local kernel_params
=()
539 local qemu_options
=()
540 local qemu_cmd
=("$QEMU_BIN")
542 if [[ "$UNIFIED_CGROUP_HIERARCHY" = "yes" ]]; then
543 kernel_params
+=("systemd.unified_cgroup_hierarchy=yes")
544 elif [[ "$UNIFIED_CGROUP_HIERARCHY" = "no" ]]; then
545 kernel_params
+=("systemd.unified_cgroup_hierarchy=no" "systemd.legacy_systemd_cgroup_controller=yes")
546 elif [[ "$UNIFIED_CGROUP_HIERARCHY" = "hybrid" ]]; then
547 kernel_params
+=("systemd.unified_cgroup_hierarchy=no" "systemd.legacy_systemd_cgroup_controller=no")
548 elif [[ "$UNIFIED_CGROUP_HIERARCHY" != "default" ]]; then
549 dfatal
"Unknown UNIFIED_CGROUP_HIERARCHY. Got $UNIFIED_CGROUP_HIERARCHY, expected [yes|no|hybrid|default]"
553 if get_bool
"$LOOKS_LIKE_SUSE"; then
554 kernel_params
+=("rd.hostonly=0")
557 # Debian/Ubuntu's initramfs tries to check if it can resume from hibernation
558 # and wastes a minute or so probing disks, skip that as it's not useful here
560 "root=LABEL=systemd_boot"
567 "SYSTEMD_UNIT_PATH=/usr/lib/systemd/tests/testdata/testsuite-$1.units:/usr/lib/systemd/tests/testdata/units:"
568 "systemd.unit=testsuite.target"
569 "systemd.wants=testsuite-$1.service"
572 ${TEST_MATCH_SUBTEST:+"systemd.setenv=TEST_MATCH_SUBTEST=$TEST_MATCH_SUBTEST"}
573 ${TEST_MATCH_TESTCASE:+"systemd.setenv=TEST_MATCH_TESTCASE=$TEST_MATCH_TESTCASE"}
576 if ! get_bool
"$INTERACTIVE_DEBUG" && ! get_bool
"$TEST_SKIP_SHUTDOWN"; then
580 "systemd.wants=end.service"
584 [ -e "$IMAGE_PRIVATE" ] && image
="$IMAGE_PRIVATE" || image
="$IMAGE_PUBLIC"
588 -m "${QEMU_MEM:-768M}"
590 -kernel "$KERNEL_BIN"
591 -drive "format=raw,cache=unsafe,file=$image"
592 -device "virtio-rng-pci,max-bytes=1024,period=1000"
595 if [[ -n "${QEMU_OPTIONS:=}" ]]; then
596 local user_qemu_options
597 read -ra user_qemu_options
<<< "$QEMU_OPTIONS"
598 qemu_options
+=("${user_qemu_options[@]}")
600 qemu_options
+=(${QEMU_OPTIONS_ARRAY:+"${QEMU_OPTIONS_ARRAY[@]}"})
602 if [[ -n "$INITRD" ]]; then
603 if [[ -n "$INITRD_EXTRA" ]]; then
604 # An addition initrd has been specified, let's combine it with the main one.
605 local t
="$WORKDIR"/initrd.combined.
"$RANDOM"
607 # First, show contents of additional initrd
608 echo "Additional initrd contents:"
609 cpio -tv < "$INITRD_EXTRA"
611 # Copy the main initrd
612 zstd
-d -c -f "$INITRD" > "$t"
613 add_at_exit_handler
"rm $t"
614 # Kernel requires this to be padded to multiple of 4 bytes with zeroes
617 # Copy the additional initrd
618 cat "$INITRD_EXTRA" >> "$t"
621 qemu_options
+=(-initrd "$t")
623 qemu_options
+=(-initrd "$INITRD")
627 # Let's use KVM if possible
628 if [[ -c /dev
/kvm
]] && get_bool
$QEMU_KVM; then
629 qemu_options
+=(-machine "accel=kvm" -enable-kvm -cpu host)
632 if [[ "$QEMU_TIMEOUT" != "infinity" ]]; then
633 qemu_cmd
=(timeout
--foreground "$QEMU_TIMEOUT" "$QEMU_BIN")
636 (set -x; "${qemu_cmd[@]}" "${qemu_options[@]}" -append "${kernel_params[*]} ${KERNEL_APPEND:-}" |& tee "${TESTDIR:?}/console.log")
638 if [ "$rc" -eq 124 ] && [ "$QEMU_TIMEOUT" != "infinity" ]; then
639 derror
"Test timed out after ${QEMU_TIMEOUT}s"
642 [ "$rc" != 0 ] && derror
"qemu failed with exit code $rc"
647 # Return 0 if nspawn did run (then you must check the result state/logs for actual
648 # success), or 1 if nspawn is not available.
650 [[ -d /run
/systemd
/system
]] ||
return 1
651 # Reset the boot counter, if present
652 rm -f "${initdir:?}/var/tmp/.systemd_reboot_count"
653 rm -f "${initdir:?}"/{testok
,failed
,skipped
}
656 local nspawn_options
=(
658 "--kill-signal=SIGKILL"
660 "--setenv=SYSTEMD_UNIT_PATH=/usr/lib/systemd/tests/testdata/testsuite-$2.units:/usr/lib/systemd/tests/testdata/units:"
661 "--machine=TEST-$TESTID"
663 local kernel_params
=(
665 "systemd.unit=testsuite.target"
666 "systemd.wants=testsuite-$2.service"
667 ${TEST_MATCH_SUBTEST:+"systemd.setenv=TEST_MATCH_SUBTEST=$TEST_MATCH_SUBTEST"}
668 ${TEST_MATCH_TESTCASE:+"systemd.setenv=TEST_MATCH_TESTCASE=$TEST_MATCH_TESTCASE"}
671 if get_bool
"$INTERACTIVE_DEBUG"; then
672 nspawn_options
+=("--console=interactive")
673 elif ! get_bool
"$TEST_SKIP_SHUTDOWN"; then
674 kernel_params
+=("systemd.wants=end.service")
677 if [[ -n "${NSPAWN_ARGUMENTS:=}" ]]; then
678 local user_nspawn_arguments
679 read -ra user_nspawn_arguments
<<< "$NSPAWN_ARGUMENTS"
680 nspawn_options
+=("${user_nspawn_arguments[@]}")
683 if [[ "$UNIFIED_CGROUP_HIERARCHY" = "hybrid" ]]; then
684 dwarn
"nspawn doesn't support SYSTEMD_NSPAWN_UNIFIED_HIERARCHY=hybrid, skipping"
686 elif [[ "$UNIFIED_CGROUP_HIERARCHY" = "yes" ||
"$UNIFIED_CGROUP_HIERARCHY" = "no" ]]; then
687 nspawn_cmd
+=(env
"SYSTEMD_NSPAWN_UNIFIED_HIERARCHY=$UNIFIED_CGROUP_HIERARCHY")
688 elif [[ "$UNIFIED_CGROUP_HIERARCHY" = "default" ]]; then
689 nspawn_cmd
+=(env
"--unset=UNIFIED_CGROUP_HIERARCHY" "--unset=SYSTEMD_NSPAWN_UNIFIED_HIERARCHY")
691 dfatal
"Unknown UNIFIED_CGROUP_HIERARCHY. Got $UNIFIED_CGROUP_HIERARCHY, expected [yes|no|hybrid|default]"
695 if [[ "$NSPAWN_TIMEOUT" != "infinity" ]]; then
696 nspawn_cmd
+=(timeout
--foreground "$NSPAWN_TIMEOUT" "$SYSTEMD_NSPAWN")
698 nspawn_cmd
+=("$SYSTEMD_NSPAWN")
701 # Word splitting here is intentional
702 # shellcheck disable=SC2086
703 (set -x; "${nspawn_cmd[@]}" "${nspawn_options[@]}" "${kernel_params[@]}" ${KERNEL_APPEND:-} |& tee "${TESTDIR:?}/console.log")
705 if [ "$rc" -eq 124 ] && [ "$NSPAWN_TIMEOUT" != "infinity" ]; then
706 derror
"Test timed out after ${NSPAWN_TIMEOUT}s"
709 [ "$rc" != 0 ] && derror
"nspawn failed with exit code $rc"
714 # Build two very minimal root images, with two units, one is the same and one is different across them
715 install_verity_minimal
() {
716 dinfo
"Set up a set of minimal images for verity verification"
717 if [ -e "$initdir/usr/share/minimal.raw" ]; then
720 if ! command -v mksquashfs
>/dev
/null
2>&1; then
721 dfatal
"mksquashfs not found"
724 if ! command -v veritysetup
>/dev
/null
2>&1; then
725 dfatal
"veritysetup not found"
728 # Local modifications of some global variables is intentional in this
730 # shellcheck disable=SC2030
740 oldinitdir
="$initdir"
741 rm -rfv "$TESTDIR/minimal"
742 export initdir
="$TESTDIR/minimal"
743 # app0 will use TemporaryFileSystem=/var/lib, app1 will need the mount point in the base image
744 mkdir
-p "$initdir/usr/lib/systemd/system" "$initdir/usr/lib/extension-release.d" "$initdir/etc" "$initdir/var/tmp" "$initdir/opt" "$initdir/var/lib/app1"
748 # Shellcheck treats [[ -v VAR ]] as an assignment to avoid a different
749 # issue, thus falsely triggering SC2030 in this case
750 # See: koalaman/shellcheck#1409
751 if [[ -v ASAN_RT_PATH
]]; then
752 # If we're compiled with ASan, install the ASan RT (and its dependencies)
753 # into the verity images to get rid of the annoying errors about
754 # missing $LD_PRELOAD libraries.
755 inst_libs
"$ASAN_RT_PATH"
756 inst_library
"$ASAN_RT_PATH"
758 cp "$os_release" "$initdir/usr/lib/os-release"
759 ln -s ..
/usr
/lib
/os-release
"$initdir/etc/os-release"
760 touch "$initdir/etc/machine-id" "$initdir/etc/resolv.conf"
761 touch "$initdir/opt/some_file"
762 echo MARKER
=1 >>"$initdir/usr/lib/os-release"
763 echo "PORTABLE_PREFIXES=app0 minimal minimal-app0" >>"$initdir/usr/lib/os-release"
764 cat >"$initdir/usr/lib/systemd/system/minimal-app0.service" <<EOF
766 ExecStartPre=cat /usr/lib/os-release
769 cp "$initdir/usr/lib/systemd/system/minimal-app0.service" "$initdir/usr/lib/systemd/system/minimal-app0-foo.service"
771 mksquashfs
"$initdir" "$oldinitdir/usr/share/minimal_0.raw" -noappend
772 veritysetup format
"$oldinitdir/usr/share/minimal_0.raw" "$oldinitdir/usr/share/minimal_0.verity" | \
773 grep '^Root hash:' | cut
-f2 |
tr -d '\n' >"$oldinitdir/usr/share/minimal_0.roothash"
775 sed -i "s/MARKER=1/MARKER=2/g" "$initdir/usr/lib/os-release"
776 rm "$initdir/usr/lib/systemd/system/minimal-app0-foo.service"
777 cp "$initdir/usr/lib/systemd/system/minimal-app0.service" "$initdir/usr/lib/systemd/system/minimal-app0-bar.service"
779 mksquashfs
"$initdir" "$oldinitdir/usr/share/minimal_1.raw" -noappend
780 veritysetup format
"$oldinitdir/usr/share/minimal_1.raw" "$oldinitdir/usr/share/minimal_1.verity" | \
781 grep '^Root hash:' | cut
-f2 |
tr -d '\n' >"$oldinitdir/usr/share/minimal_1.roothash"
783 # Rolling distros like Arch do not set VERSION_ID
785 if grep -q "^VERSION_ID=" "$os_release"; then
786 version_id
="$(grep "^VERSION_ID
=" "$os_release")"
789 export initdir
="$TESTDIR/app0"
790 mkdir
-p "$initdir/usr/lib/extension-release.d" "$initdir/usr/lib/systemd/system" "$initdir/opt"
791 grep "^ID=" "$os_release" >"$initdir/usr/lib/extension-release.d/extension-release.app0"
792 echo "${version_id}" >>"$initdir/usr/lib/extension-release.d/extension-release.app0"
793 ( echo "${version_id}"
794 echo "SYSEXT_IMAGE_ID=app" ) >>"$initdir/usr/lib/extension-release.d/extension-release.app0"
795 cat >"$initdir/usr/lib/systemd/system/app0.service" <<EOF
799 ExecStart=/opt/script0.sh
800 TemporaryFileSystem=/var/lib
802 RuntimeDirectory=app0
804 cat >"$initdir/opt/script0.sh" <<EOF
807 test -e /usr/lib/os-release
808 echo bar >\${STATE_DIRECTORY}/foo
809 cat /usr/lib/extension-release.d/extension-release.app0
811 chmod +x
"$initdir/opt/script0.sh"
812 echo MARKER
=1 >"$initdir/usr/lib/systemd/system/some_file"
813 mksquashfs
"$initdir" "$oldinitdir/usr/share/app0.raw" -noappend
815 export initdir
="$TESTDIR/conf0"
816 mkdir
-p "$initdir/etc/extension-release.d" "$initdir/etc/systemd/system" "$initdir/opt"
817 grep "^ID=" "$os_release" >"$initdir/etc/extension-release.d/extension-release.conf0"
818 echo "${version_id}" >>"$initdir/etc/extension-release.d/extension-release.conf0"
819 ( echo "${version_id}"
820 echo "CONFEXT_IMAGE_ID=app" ) >>"$initdir/etc/extension-release.d/extension-release.conf0"
821 echo MARKER_1
>"$initdir/etc/systemd/system/some_file"
822 mksquashfs
"$initdir" "$oldinitdir/usr/share/conf0.raw" -noappend
824 export initdir
="$TESTDIR/app1"
825 mkdir
-p "$initdir/usr/lib/extension-release.d" "$initdir/usr/lib/systemd/system" "$initdir/opt"
826 grep "^ID=" "$os_release" >"$initdir/usr/lib/extension-release.d/extension-release.app2"
827 ( echo "${version_id}"
828 echo "SYSEXT_SCOPE=portable"
829 echo "SYSEXT_IMAGE_ID=app"
830 echo "SYSEXT_IMAGE_VERSION=1"
831 echo "PORTABLE_PREFIXES=app1" ) >>"$initdir/usr/lib/extension-release.d/extension-release.app2"
832 setfattr
-n user.extension-release.strict
-v false
"$initdir/usr/lib/extension-release.d/extension-release.app2"
833 cat >"$initdir/usr/lib/systemd/system/app1.service" <<EOF
837 ExecStart=/opt/script1.sh
839 RuntimeDirectory=app1
841 cat >"$initdir/opt/script1.sh" <<EOF
844 test -e /usr/lib/os-release
845 echo baz >\${STATE_DIRECTORY}/foo
846 cat /usr/lib/extension-release.d/extension-release.app2
848 chmod +x
"$initdir/opt/script1.sh"
849 echo MARKER
=1 >"$initdir/usr/lib/systemd/system/other_file"
850 mksquashfs
"$initdir" "$oldinitdir/usr/share/app1.raw" -noappend
852 export initdir
="$TESTDIR/app-nodistro"
853 mkdir
-p "$initdir/usr/lib/extension-release.d" "$initdir/usr/lib/systemd/system"
855 echo "ARCHITECTURE=_any" ) >"$initdir/usr/lib/extension-release.d/extension-release.app-nodistro"
856 echo MARKER
=1 >"$initdir/usr/lib/systemd/system/some_file"
857 mksquashfs
"$initdir" "$oldinitdir/usr/share/app-nodistro.raw" -noappend
859 export initdir
="$TESTDIR/service-scoped-test"
860 mkdir
-p "$initdir/etc/extension-release.d" "$initdir/etc/systemd/system"
862 echo "ARCHITECTURE=_any" ) >"$initdir/etc/extension-release.d/extension-release.service-scoped-test"
863 echo MARKER_CONFEXT_123
>"$initdir/etc/systemd/system/some_file"
864 mksquashfs
"$initdir" "$oldinitdir/etc/service-scoped-test.raw" -noappend
866 # We need to create a dedicated sysext image to test the reload mechanism. If we share an image to install the
867 # 'foo.service' it will be loaded from another test run, which will impact the targeted test.
868 export initdir
="$TESTDIR/app-reload"
869 mkdir
-p "$initdir/usr/lib/extension-release.d" "$initdir/usr/lib/systemd/system"
871 echo "ARCHITECTURE=_any"
872 echo "EXTENSION_RELOAD_MANAGER=1" ) >"$initdir/usr/lib/extension-release.d/extension-release.app-reload"
873 mkdir
-p "$initdir/usr/lib/systemd/system/multi-user.target.d"
874 cat >"${initdir}/usr/lib/systemd/system/foo.service" <<EOF
881 WantedBy=multi-user.target
883 { echo "[Unit]"; echo "Upholds=foo.service"; } > "$initdir/usr/lib/systemd/system/multi-user.target.d/10-foo-service.conf"
884 mksquashfs
"$initdir" "$oldinitdir/usr/share/app-reload.raw" -noappend
888 setup_basic_environment
() {
889 # create the basic filesystem layout
893 install_missing_libraries
914 has_user_dbus_socket
&& install_user_dbus
917 generate_module_dependencies
918 if get_bool
"$IS_BUILT_WITH_ASAN"; then
921 if get_bool
"$TEST_INSTALL_VERITY_MINIMAL"; then
922 install_verity_minimal
927 dinfo
"Setup SELinux"
928 # don't forget KERNEL_APPEND='... selinux=1 ...'
929 if ! get_bool
"$SETUP_SELINUX"; then
930 dinfo
"SETUP_SELINUX != yes, skipping SELinux configuration"
934 for dir
in /etc
/selinux
/usr
/share
/selinux
; do
935 rm -rf "${initdir:?}/$dir"
936 if ! cp -ar "$dir" "$initdir/$dir"; then
937 dfatal
"Failed to copy $dir"
942 # We use a custom autorelabel service instead of the SELinux provided set
943 # of units & a generator, since the generator overrides the default target
944 # to the SELinux one when it detects /.autorelabel. However, we use
945 # systemd.unit= on the kernel command cmdline which always takes precedence,
946 # rendering all SELinux efforts useless. Also, pulling in selinux-autorelabel.service
947 # explicitly doesn't work either, as it doesn't check for the presence of /.autorelabel
948 # and does the relabeling unconditionally which always ends with a reboot, so
949 # we end up in a reboot loop (and it also spews quite a lot of errors as it
950 # wants /etc/fstab and dracut-initramfs-restore).
951 touch "$initdir/.autorelabel"
952 mkdir
-p "$initdir/usr/lib/systemd/tests/testdata/units/basic.target.wants"
953 ln -sf ..
/autorelabel.service
"$initdir/usr/lib/systemd/tests/testdata/units/basic.target.wants/"
955 # Tools requires by fixfiles
956 image_install
awk bash
cat chcon
expr egrep find grep head secon setfiles
rm sort uname
uniq
957 image_install fixfiles getenforce load_policy selinuxenabled sestatus
961 if ! type -p valgrind
; then
962 dfatal
"Failed to install valgrind"
966 local valgrind_bins valgrind_libs valgrind_supp
968 readarray
-t valgrind_bins
< <(strace
-e execve valgrind
/bin
/true
2>&1 >/dev
/null |
969 sed -r -n 's/execve\("([^"]*)".*/\1/p')
970 image_install
"${valgrind_bins[@]}"
972 readarray
-t valgrind_libs
< <(LD_DEBUG
=files valgrind
/bin
/true
2>&1 >/dev
/null |
973 sed -r -n 's|.*calling init: (/.*vgpreload_.*)|\1|p')
974 image_install
"${valgrind_libs[@]}"
976 readarray
-t valgrind_supp
< <(strace
-e open valgrind
/bin
/true
2>&1 >/dev
/null |
977 sed -r -n 's,open\("([^"]*(/debug[^"]*|\.supp))".*= [0-9].*,\1,p')
978 image_install
"${valgrind_supp[@]}"
981 create_valgrind_wrapper
() {
982 local valgrind_wrapper
="$initdir/$ROOTLIBDIR/systemd-under-valgrind"
983 ddebug
"Create $valgrind_wrapper"
984 cat >"$valgrind_wrapper" <<EOF
987 mount -t proc proc /proc
988 exec valgrind --leak-check=full --track-fds=yes --log-file=/valgrind.out $ROOTLIBDIR/systemd "\$@"
990 chmod 0755 "$valgrind_wrapper"
993 create_asan_wrapper
() {
994 local asan_wrapper default_asan_options default_ubsan_options default_environment manager_environment
996 [[ -z "$ASAN_RT_PATH" ]] && dfatal
"ASAN_RT_PATH is empty, but it shouldn't be"
998 default_asan_options
="${ASAN_OPTIONS:-strict_string_checks=1:detect_stack_use_after_return=1:check_initialization_order=1:strict_init_order=1}"
999 default_ubsan_options
="${UBSAN_OPTIONS:-print_stacktrace=1:print_summary=1:halt_on_error=1}"
1001 if [[ "$ASAN_COMPILER" == "clang" ]]; then
1002 # clang: install llvm-symbolizer to generate useful reports
1003 # See: https://clang.llvm.org/docs/AddressSanitizer.html#symbolizing-the-reports
1004 image_install
"llvm-symbolizer"
1006 # Let's add the ASan DSO's path to the dynamic linker's cache. This is pretty
1007 # unnecessary for gcc & libasan, however, for clang this is crucial, as its
1008 # runtime ASan DSO is in a non-standard (library) path.
1009 mkdir
-p "${initdir:?}/etc/ld.so.conf.d/"
1010 echo "${ASAN_RT_PATH%/*}" >"${initdir:?}/etc/ld.so.conf.d/asan-path-override.conf"
1011 ldconfig
-r "$initdir"
1014 # Create a simple environment file which can be included by systemd services
1015 # that need it (i.e. services that utilize DynamicUser=true and bash, etc.)
1016 cat >"${initdir:?}/usr/lib/systemd/systemd-asan-env" <<EOF
1017 LD_PRELOAD=$ASAN_RT_PATH
1018 ASAN_OPTIONS=$default_asan_options
1019 LSAN_OPTIONS=detect_leaks=0
1020 UBSAN_OPTIONS=$default_ubsan_options
1023 default_environment
=(
1024 "ASAN_OPTIONS='$default_asan_options'"
1025 "UBSAN_OPTIONS='$default_ubsan_options'"
1026 "ASAN_RT_PATH='$ASAN_RT_PATH'"
1028 manager_environment
=(
1029 "ASAN_OPTIONS='$default_asan_options:log_path=/systemd-pid1.asan.log:log_to_syslog=1'"
1030 "UBSAN_OPTIONS='$default_ubsan_options:log_path=/systemd-pid1.ubsan.log:log_to_syslog=1'"
1031 "ASAN_RT_PATH='$ASAN_RT_PATH'"
1034 mkdir
-p "${initdir:?}/etc/systemd/system.conf.d/"
1035 cat >"${initdir:?}/etc/systemd/system.conf.d/asan.conf" <<EOF
1037 DefaultEnvironment=${default_environment[*]}
1038 ManagerEnvironment=${manager_environment[*]}
1039 DefaultTimeoutStartSec=180s
1042 # ASAN and syscall filters aren't compatible with each other.
1043 find "${initdir:?}" -name '*.service' -type f
-print0 |
xargs -0 sed -i 's/^\(MemoryDeny\|SystemCall\)/#\1/'
1045 mkdir
-p "${initdir:?}/etc/systemd/system/systemd-journald.service.d/"
1046 cat >"${initdir:?}/etc/systemd/system/systemd-journald.service.d/asan-env.conf" <<EOF
1048 # The redirection of ASAN reports to a file prevents them from ending up in /dev/null.
1049 # But, apparently, sometimes it doesn't work: https://github.com/google/sanitizers/issues/886.
1050 Environment=ASAN_OPTIONS=$default_asan_options:log_path=/systemd-journald.asan.log UBSAN_OPTIONS=$default_ubsan_options:log_path=/systemd-journald.ubsan.log
1052 # Sometimes UBSan sends its reports to stderr regardless of what is specified in log_path
1053 # Let's try to catch them by redirecting stderr (and stdout just in case) to a file
1054 # See https://github.com/systemd/systemd/pull/12524#issuecomment-491108821
1055 StandardOutput=file:/systemd-journald.out
1058 # 90s isn't enough for some services to finish when literally everything is run
1059 # under ASan+UBSan in containers, which, in turn, are run in VMs.
1060 # Let's limit which environments such services should be executed in.
1061 mkdir
-p "${initdir:?}/etc/systemd/system/systemd-hwdb-update.service.d/"
1062 cat >"${initdir:?}/etc/systemd/system/systemd-hwdb-update.service.d/asan.conf" <<EOF
1064 ConditionVirtualization=container
1070 # Let's override another hard-coded timeout that kicks in too early
1071 mkdir
-p "${initdir:?}/etc/systemd/system/systemd-journal-flush.service.d/"
1072 cat >"${initdir:?}/etc/systemd/system/systemd-journal-flush.service.d/asan.conf" <<EOF
1077 asan_wrapper
="${initdir:?}/${PATH_TO_INIT:?}"
1078 # Sanity check to make sure we don't overwrite something we shouldn't.
1079 [[ "$asan_wrapper" =~ systemd-under-asan$
]]
1081 cat >"$asan_wrapper" <<EOF
1085 export PATH="/sbin:/bin:/usr/sbin:/usr/bin"
1086 export ${manager_environment[@]}
1087 [[ -n "\$ASAN_OPTIONS" && -n "\$UBSAN_OPTIONS" ]]
1089 exec "$ROOTLIBDIR/systemd" "\$@"
1091 chmod 0755 "$asan_wrapper"
1094 create_strace_wrapper
() {
1095 local strace_wrapper
="$initdir/$ROOTLIBDIR/systemd-under-strace"
1096 ddebug
"Create $strace_wrapper"
1097 cat >"$strace_wrapper" <<EOF
1100 exec strace -f -D -o /strace.out "$ROOTLIBDIR/systemd" "\$@"
1102 chmod 0755 "$strace_wrapper"
1105 install_fs_tools
() {
1106 dinfo
"Install fsck"
1107 image_install
/sbin
/fsck
*
1108 image_install
-o /bin
/fsck
*
1110 # fskc.reiserfs calls reiserfsck. so, install it
1111 image_install
-o reiserfsck
1113 # we use mkfs in system-repart tests
1114 image_install
/sbin
/mkfs.ext4
1115 image_install
/sbin
/mkfs.vfat
1119 dinfo
"Install modules"
1121 instmods bridge dummy ipvlan macvlan vfat veth
1122 instmods loop
=block
1123 instmods nls_ascii
=nls
1124 instmods overlay
=overlayfs
1127 if get_bool
"$LOOKS_LIKE_SUSE"; then
1128 instmods ext4 af_packet
1133 instmods dm_crypt
=crypto
1134 inst_binary dmeventd
1135 image_install
"${ROOTLIBDIR:?}"/system
/dm-event.
{service
,socket
}
1136 if get_bool
"$LOOKS_LIKE_DEBIAN"; then
1137 # dmsetup installs 55-dm and 60-persistent-storage-dm on Debian/Ubuntu
1138 # and since buster/bionic 95-dm-notify.rules
1139 # see https://gitlab.com/debian-lvm/lvm2/blob/master/debian/patches/udev.patch
1140 inst_rules
55-dm.rules
60-persistent-storage-dm.rules
95-dm-notify.rules
1142 inst_rules
10-dm.rules
13-dm-disk.rules
95-dm-notify.rules
1144 if get_bool
"$LOOKS_LIKE_SUSE"; then
1145 inst_rules
60-persistent-storage.rules
61-persistent-storage-compat.rules
99-systemd.rules
1149 install_multipath
() {
1150 instmods
"=md" multipath
1151 image_install kpartx
/lib
/udev
/kpartx_id lsmod mpathpersist multipath multipathd partx
1152 image_install
"${ROOTLIBDIR:?}"/system
/multipathd.
{service
,socket
}
1153 if get_bool
"$LOOKS_LIKE_DEBIAN"; then
1154 inst_rules
56-dm-parts.rules
56-dm-mpath.rules
60-multipath.rules
68-del-part-nodes.rules
95-kpartx.rules
1156 inst_rules
11-dm-mpath.rules
11-dm-parts.rules
62-multipath.rules
66-kpartx.rules
68-del-part-nodes.rules
1158 mkdir
-p "${initdir:?}/etc/multipath"
1161 while read -r file; do
1162 # Install libraries required by the given library
1164 # Install the library itself and create necessary symlinks
1165 inst_library
"$file"
1166 done < <(find /lib
*/multipath
-type f
)
1170 local lvm_rules rule_prefix
1173 image_install
"${ROOTLIBDIR:?}"/system
/lvm2-lvmpolld.
{service
,socket
}
1174 image_install
"${ROOTLIBDIR:?}"/system
/{blk-availability
,lvm2-monitor
}.service
1175 image_install
-o "/lib/tmpfiles.d/lvm2.conf"
1177 if get_bool
"$LOOKS_LIKE_DEBIAN"; then
1178 lvm_rules
="56-lvm.rules"
1181 lvm_rules
="11-dm-lvm.rules"
1185 # Support the new udev autoactivation introduced in lvm 2.03.14
1186 # https://sourceware.org/git/?p=lvm2.git;a=commit;h=67722b312390cdab29c076c912e14bd739c5c0f6
1187 # Static autoactivation (via lvm2-activation-generator) was dropped
1189 # https://sourceware.org/git/?p=lvm2.git;a=commit;h=ee8fb0310c53ed003a43b324c99cdfd891dd1a7c
1190 if [[ -f "/lib/udev/rules.d/69-${rule_prefix}lvm.rules" ]]; then
1191 inst_rules
"$lvm_rules" "69-${rule_prefix}lvm.rules"
1193 image_install
"${ROOTLIBDIR:?}"/system-generators
/lvm2-activation-generator
1194 image_install
"${ROOTLIBDIR:?}"/system
/lvm2-pvscan@.service
1195 inst_rules
"$lvm_rules" "69-${rule_prefix}lvm-metad.rules"
1198 mkdir
-p "${initdir:?}/etc/lvm"
1203 modprobe
-nv btrfs
&& command -v mkfs.btrfs
&& command -v btrfs ||
return $?
1208 # Not all utilities provided by btrfs-progs are listed here; extend the list
1210 image_install btrfs btrfstune mkfs.btrfs
1211 inst_rules
64-btrfs-dm.rules
1215 # Install both client and server side stuff by default
1219 # Install client-side stuff ("initiator" in iSCSI jargon) - Open-iSCSI in this case
1220 # (open-iscsi on Debian, iscsi-initiator-utils on Fedora, etc.)
1221 if [[ -z "$inst" ||
"$inst" =~
(client|initiator
) ]]; then
1222 image_install iscsi-iname iscsiadm iscsid iscsistart
1223 image_install
-o "${ROOTLIBDIR:?}"/system
/iscsi-
{init
,onboot
,shutdown
}.service
1224 image_install
"${ROOTLIBDIR:?}"/system
/iscsid.
{service
,socket
}
1225 image_install
"${ROOTLIBDIR:?}"/system
/iscsi.service
1226 mkdir
-p "${initdir:?}"/var
/lib
/iscsi
/{ifaces
,isns
,nodes
,send_targets
,slp
,static
}
1227 mkdir
-p "${initdir:?}/etc/iscsi"
1228 echo "iscsid.startup = /bin/systemctl start iscsid.socket" >"${initdir:?}/etc/iscsi/iscsid.conf"
1229 # Since open-iscsi 2.1.2 [0] the initiator name should be generated via
1230 # a one-time service instead of distro package's post-install scripts.
1231 # However, some distros still use this approach even after this patch,
1232 # so prefer the already existing initiatorname.iscsi file if it exists.
1234 # [0] https://github.com/open-iscsi/open-iscsi/commit/f37d5b653f9f251845db3f29b1a3dcb90ec89731
1235 if [[ ! -e /etc
/iscsi
/initiatorname.iscsi
]]; then
1236 image_install
"${ROOTLIBDIR:?}"/system
/iscsi-init.service
1237 if get_bool
"$IS_BUILT_WITH_ASAN"; then
1238 # The iscsi-init.service calls `sh` which might, in certain circumstances,
1239 # pull in instrumented systemd NSS modules causing `sh` to fail. Let's mitigate
1240 # this by pulling in an env file crafted by `create_asan_wrapper()` that
1241 # (among others) pre-loads ASan's DSO.
1242 mkdir
-p "${initdir:?}/etc/systemd/system/iscsi-init.service.d/"
1243 printf "[Service]\nEnvironmentFile=/usr/lib/systemd/systemd-asan-env" >"${initdir:?}/etc/systemd/system/iscsi-init.service.d/asan-env.conf"
1246 inst_simple
"/etc/iscsi/initiatorname.iscsi"
1250 # Install server-side stuff ("target" in iSCSI jargon) - TGT in this case
1251 # (tgt on Debian, scsi-target-utils on Fedora, etc.)
1252 if [[ -z "$inst" ||
"$inst" =~
(server|target
) ]]; then
1253 image_install tgt-admin tgt-setup-lun tgtadm tgtd tgtimg
1254 image_install
-o /etc
/sysconfig
/tgtd
1255 image_install
"${ROOTLIBDIR:?}"/system
/tgtd.service
1256 mkdir
-p "${initdir:?}/etc/tgt"
1257 touch "${initdir:?}"/etc
/tgt
/{tgtd
,targets
}.conf
1258 # Install perl modules required by tgt-admin
1260 # Forgive me father for I have sinned. The monstrosity below appends
1261 # a perl snippet to the `tgt-admin` perl script on the fly, which
1262 # dumps a list of files (perl modules) required by `tgt-admin` at
1263 # the runtime plus any DSOs loaded via DynaLoader. This list is then
1264 # passed to `inst_simple` which installs the necessary files into the image
1266 # shellcheck disable=SC2016
1267 while read -r file; do
1269 done < <(perl
-- <(cat "$(command -v tgt-admin)" <(echo -e 'use DynaLoader; print map { "$_\n" } values %INC; print join("\n", @DynaLoader::dl_shared_objects)')) -p |
awk '/^\// { print $1 }')
1275 command -v mdadm ||
return $?
1281 system
/mdadm-grow-continue@.service
1282 system
/mdadm-last-resort@.service
1283 system
/mdadm-last-resort@.timer
1284 system
/mdmon@.service
1285 system
/mdmonitor-oneshot.service
1286 system
/mdmonitor-oneshot.timer
1287 system
/mdmonitor.service
1288 system-shutdown
/mdadm.shutdown
1292 image_install mdadm mdmon
1293 inst_rules
01-md-raid-creating.rules
63-md-raid-arrays.rules
64-md-raid-assembly.rules
69-md-clustered-confirm-device.rules
1294 # Fedora/CentOS/RHEL ships this rule file
1295 [[ -f /lib
/udev
/rules.d
/65-md-incremental.rules
]] && inst_rules
65-md-incremental.rules
1297 for unit
in "${mdadm_units[@]}"; do
1298 image_install
"${ROOTLIBDIR:?}/$unit"
1301 # Disable the mdmonitor service, since it fails if there's no valid email address
1302 # configured in /etc/mdadm.conf, which just unnecessarily pollutes the logs
1303 "${SYSTEMCTL:?}" mask
--root "${initdir:?}" mdmonitor.service ||
:
1306 install_compiled_systemd
() {
1307 dinfo
"Install compiled systemd"
1310 ninja_bin
="$(type -P ninja || type -P ninja-build)"
1311 if [[ -z "$ninja_bin" ]]; then
1312 dfatal
"ninja was not found"
1315 (set -x; DESTDIR
="$initdir" "$ninja_bin" -C "$BUILD_DIR" install)
1317 # If we are doing coverage runs, copy over the binary notes files, as lcov expects to
1318 # find them in the same directory as the runtime data counts
1319 if get_bool
"$IS_BUILT_WITH_COVERAGE"; then
1320 mkdir
-p "${initdir}/${BUILD_DIR:?}/"
1321 rsync
-am --include='*/' --include='*.gcno' --exclude='*' "${BUILD_DIR:?}/" "${initdir}/${BUILD_DIR:?}/"
1322 # Set effective & default ACLs for the build dir so unprivileged
1323 # processes can write gcda files with coverage stats
1324 setfacl
-R -m 'd:o:rwX' -m 'o:rwX' "${initdir}/${BUILD_DIR:?}/"
1328 install_package_file
() {
1331 # Skip missing files (like /etc/machine-info)
1332 [[ ! -e "$file" ]] && return 0
1333 # Skip python unit tests, since the image_install machinery will try to pull
1334 # in the whole python stack in a very questionable state, making the tests fail.
1335 # And given we're trying to transition to mkosi-based images anyway I'm not even
1337 [[ "$file" =~
/tests
/unit-tests
/.
*.py$
]] && return 0
1338 # If the current file is a directory, create it with the original
1339 # mode; if it's a symlink to a directory, copy it as-is
1340 if [[ -d "$file" ]]; then
1347 install_debian_systemd
() {
1348 dinfo
"Install debian systemd"
1352 while read -r deb
; do
1353 ddebug
"Install debian files from package $deb"
1354 while read -r file; do
1355 install_package_file
"$file"
1356 done < <(dpkg-query
-L "$deb" 2>/dev
/null
)
1357 done < <(grep -E '^Package:' "${SOURCE_DIR}/debian/control" | cut
-d ':' -f 2)
1364 if ! rpm
-q "$rpm" >/dev
/null
; then
1365 derror
"RPM $rpm is not installed"
1369 dinfo
"Installing contents of RPM $rpm"
1370 while read -r file; do
1371 install_package_file
"$file"
1372 done < <(rpm
-ql "$rpm")
1375 install_suse_systemd
() {
1378 dinfo
"Install SUSE systemd"
1384 systemd-experimental
1386 systemd-journal-remote
1387 # Since commit fb6f25d7b979134a, systemd-resolved, which is shipped by
1388 # systemd-network sub-package on openSUSE, has its own testsuite.
1394 for p
in "${pkgs[@]}"; do
1395 rpm
-q "$p" &>/dev
/null ||
continue
1400 dinfo
"Install the data needed by the tests at runtime"
1401 inst_recursive
"${SOURCE_DIR}/testdata"
1402 inst_recursive
"${SOURCE_DIR}/unit-tests/manual"
1404 # On openSUSE, this directory is not created at package install, at least
1406 mkdir
-p "$initdir/var/log/journal/remote"
1409 install_fedora_systemd
() {
1410 local required_packages
=(
1418 local optional_packages
=(
1419 systemd-boot-unsigned
1421 systemd-journal-remote
1423 systemd-oomd-defaults
1428 for package
in "${required_packages[@]}"; do
1429 install_rpm
"$package"
1432 for package
in "${optional_packages[@]}"; do
1433 rpm
-q "$package" >/dev
/null ||
continue
1434 install_rpm
"$package"
1438 install_distro_systemd
() {
1439 dinfo
"Install distro systemd"
1441 if get_bool
"$LOOKS_LIKE_DEBIAN"; then
1442 install_debian_systemd
1443 elif get_bool
"$LOOKS_LIKE_SUSE"; then
1444 install_suse_systemd
1445 elif get_bool
"$LOOKS_LIKE_FEDORA"; then
1446 install_fedora_systemd
1448 dfatal
"NO_BUILD not supported for this distro"
1454 dinfo
"Install systemd"
1455 if get_bool
"$NO_BUILD"; then
1456 install_distro_systemd
1458 install_compiled_systemd
1461 # Remove unneeded documentation
1462 rm -fr "${initdir:?}"/usr
/share
/{man
,doc
}
1464 # Enable debug logging in PID1
1465 mkdir
-p "$initdir/etc/systemd/system.conf.d/"
1466 echo -ne "[Manager]\nLogLevel=debug\n" >"$initdir/etc/systemd/system.conf.d/10-log-level.conf"
1467 if [[ -n "$TEST_SYSTEMD_LOG_LEVEL" ]]; then
1468 echo DefaultEnvironment
=SYSTEMD_LOG_LEVEL
="$TEST_SYSTEMD_LOG_LEVEL" >>"$initdir/etc/systemd/system.conf.d/99-log-level.conf"
1470 # Enable debug logging for user instances as well
1471 mkdir
-p "$initdir/etc/systemd/user.conf.d/"
1472 echo -ne "[Manager]\nLogLevel=debug\n" >"$initdir/etc/systemd/user.conf.d/10-log-level.conf"
1473 # Store coredumps in journal
1474 mkdir
-p "$initdir/etc/systemd/coredump.conf.d/"
1475 echo -ne "[Coredump]\nStorage=journal\n" >"$initdir/etc/systemd/coredump.conf.d/10-storage-journal.conf"
1476 # Propagate SYSTEMD_UNIT_PATH to user systemd managers
1477 mkdir
-p "$initdir/etc/systemd/system/user@.service.d/"
1478 echo -ne "[Service]\nPassEnvironment=SYSTEMD_UNIT_PATH\n" >"$initdir/etc/systemd/system/user@.service.d/99-SYSTEMD_UNIT_PATH.conf"
1480 # When built with gcov, disable ProtectSystem= and ProtectHome= in the test
1481 # images, since it prevents gcov to write the coverage reports (*.gcda
1483 if get_bool
"$IS_BUILT_WITH_COVERAGE"; then
1484 mkdir
-p "$initdir/etc/systemd/system/service.d/"
1485 echo -ne "[Service]\nProtectSystem=no\nProtectHome=no\n" >"$initdir/etc/systemd/system/service.d/99-gcov-override.conf"
1486 # Similarly, set ReadWritePaths= to the $BUILD_DIR in the test image to make the coverage work with
1487 # units using DynamicUser=yes. Do this only for services with test- prefix and a couple of
1488 # known-to-use DynamicUser=yes services, as setting this system-wide has many undesirable
1489 # side-effects, as it creates its own namespace.
1490 for service
in test- systemd-journal-
{gatewayd
,upload
}; do
1491 mkdir
-p "$initdir/etc/systemd/system/$service.service.d/"
1492 echo -ne "[Service]\nReadWritePaths=${BUILD_DIR:?}\n" >"$initdir/etc/systemd/system/$service.service.d/99-gcov-rwpaths-override.conf"
1494 # Ditto, but for the user daemon
1495 mkdir
-p "$initdir/etc/systemd/user/test-.service.d/"
1496 echo -ne "[Service]\nReadWritePaths=${BUILD_DIR:?}\n" >"$initdir/etc/systemd/user/test-.service.d/99-gcov-rwpaths-override.conf"
1497 # Bind the $BUILD_DIR into nspawn containers that are executed using
1498 # machinectl. Unfortunately, the .nspawn files don't support drop-ins
1499 # so we have to inject the bind mount directly into
1500 # the systemd-nspawn@.service unit.
1501 cp "$initdir/usr/lib/systemd/system/systemd-nspawn@.service" "$initdir/etc/systemd/system/systemd-nspawn@.service"
1502 sed -ri "s/^ExecStart=.+$/& --bind=${BUILD_DIR//\//\\\/}/" "$initdir/etc/systemd/system/systemd-nspawn@.service"
1503 # Pass the $BUILD_DIR as $COVERAGE_BUILD_DIR env variable to the system
1504 # manager, similarly to what we do with $ASAN_RT_PATH during sanitized
1506 mkdir
-p "$initdir/etc/systemd/system.conf.d/"
1507 echo -ne "[Manager]\nDefaultEnvironment=COVERAGE_BUILD_DIR=$BUILD_DIR\n" >"$initdir/etc/systemd/system.conf.d/99-COVERAGE_BUILD_DIR.conf"
1510 # If we're built with -Dportabled=false, tests with systemd-analyze
1511 # --profile will fail. Since we need just the profile (text) files, let's
1512 # copy them into the image if they don't exist there.
1513 local portable_dir
="${initdir:?}${ROOTLIBDIR:?}/portable"
1514 if [[ ! -d "$portable_dir/profile/strict" ]]; then
1515 dinfo
"Couldn't find portable profiles in the test image"
1516 dinfo
"Copying them directly from the source tree"
1517 mkdir
-p "$portable_dir"
1518 cp -frv "${SOURCE_DIR:?}/src/portable/profile" "$portable_dir"
1524 rpath
="$(objdump -p "${1:?}" 2>/dev/null | awk "/R
(UN
)?PATH
/ { print
\"$initdir\" \
$2 }" | paste -sd :)"
1526 if [ -z "$rpath" ] ; then
1533 install_missing_libraries
() {
1534 dinfo
"Install missing libraries"
1535 # install possible missing libraries
1536 for i
in "${initdir:?}"{,/usr
}/{sbin
,bin
}/* "$initdir"{,/usr
}/lib
/systemd
/{,tests
/unit-tests
/{,manual
/,unsafe
/}}*; do
1537 LD_LIBRARY_PATH
="${LD_LIBRARY_PATH:+$LD_LIBRARY_PATH:}$(get_ldpath "$i")" inst_libs
"$i"
1540 # Install libgcc_s.so if available, since it's dlopen()ed by libpthread
1541 # and might cause unexpected failures during pthread_exit()/pthread_cancel()
1543 # See: https://github.com/systemd/systemd/pull/23858
1544 while read -r libgcc_s
; do
1545 [[ -e "$libgcc_s" ]] && inst_library
"$libgcc_s"
1546 done < <(ldconfig
-p |
awk '/\/libgcc_s.so.1$/ { print $4 }')
1549 # A number of dependencies is now optional via dlopen, so the install
1550 # script will not pick them up, since it looks at linkage.
1551 for lib
in libcryptsetup libidn libidn2 pwquality libqrencode tss2-esys tss2-rc tss2-mu tss2-tcti-device libfido2 libbpf libelf libdw xkbcommon p11-kit-1
; do
1552 ddebug
"Searching for $lib via pkg-config"
1553 if pkg-config
--exists "$lib"; then
1554 path
="$(pkg-config --variable=libdir "$lib")"
1555 if [ -z "${path}" ]; then
1556 ddebug
"$lib.pc does not contain a libdir variable, skipping"
1560 if ! [[ ${lib} =~ ^lib
]]; then
1563 # p11-kit-1's .so doesn't have the API level in the name
1564 if [[ ${lib} =~ p11-kit-1$
]]; then
1567 # Some pkg-config files are broken and give out the wrong paths
1568 # (eg: libcryptsetup), so just ignore them
1569 inst_libs
"${path}/${lib}.so" || true
1570 inst_library
"${path}/${lib}.so" || true
1572 if [[ "$lib" == "libxkbcommon" ]]; then
1573 install_x11_keymaps full
1576 ddebug
"$lib.pc not found, skipping"
1581 # Install extra openssl 3 stuff
1582 path
="$(pkg-config --variable=libdir libcrypto)"
1583 inst_simple
"${path}/ossl-modules/legacy.so" || true
1584 inst_simple
"${path}/ossl-modules/fips.so" || true
1585 inst_simple
"${path}/engines-3/afalg.so" || true
1586 inst_simple
"${path}/engines-3/capi.so" || true
1587 inst_simple
"${path}/engines-3/loader_attic.so" || true
1588 inst_simple
"${path}/engines-3/padlock.so" || true
1590 # Binaries from mtools depend on the gconv modules to translate between codepages. Because there's no
1591 # pkg-config file for these, we copy every gconv/ directory we can find in /usr/lib and /usr/lib64.
1592 # shellcheck disable=SC2046
1593 inst_recursive $
(find /usr
/lib
* -name gconv
2>/dev
/null
)
1597 if [ -n "${LOOPDEV:=}" ]; then
1598 ddebug
"losetup -d $LOOPDEV"
1599 losetup
-d "${LOOPDEV}"
1604 add_at_exit_handler cleanup_loopdev
1606 create_empty_image
() {
1607 if [[ -z "${IMAGE_NAME:=}" ]]; then
1608 echo "create_empty_image: \$IMAGE_NAME not set"
1612 # Partition sizes are in MiBs
1618 if ! get_bool
"$NO_BUILD"; then
1619 if meson configure
"${BUILD_DIR:?}" |
grep 'static-lib\|standalone-binaries' |
awk '{ print $2 }' |
grep -q 'true'; then
1620 root_size
=$
((root_size
+ 200))
1622 if meson configure
"${BUILD_DIR:?}" |
grep 'link-.*-shared' |
awk '{ print $2 }' |
grep -q 'false'; then
1623 root_size
=$
((root_size
+ 200))
1625 if get_bool
"$IS_BUILT_WITH_COVERAGE"; then
1626 root_size
=$
((root_size
+ 250))
1628 if get_bool
"$IS_BUILT_WITH_ASAN"; then
1629 root_size
=$
((root_size
* 2))
1633 if [[ "${IMAGE_ADDITIONAL_ROOT_SIZE:-0}" -gt 0 ]]; then
1634 root_size
=$
((root_size
+ IMAGE_ADDITIONAL_ROOT_SIZE
))
1636 if [[ "${IMAGE_ADDITIONAL_DATA_SIZE:-0}" -gt 0 ]]; then
1637 data_size
=$
((data_size
+ IMAGE_ADDITIONAL_DATA_SIZE
))
1640 total
=$
((root_size
+ data_size
+ esp_size
+ boot_size
))
1642 echo "Setting up ${IMAGE_PUBLIC:?} (${total} MB)"
1643 rm -f "${IMAGE_PRIVATE:?}" "$IMAGE_PUBLIC"
1645 # Create the blank file to use as a root filesystem
1646 truncate
-s "${total}M" "$IMAGE_PUBLIC"
1648 LOOPDEV
="$(losetup --show -P -f "$IMAGE_PUBLIC")"
1649 [[ -b "$LOOPDEV" ]] ||
return 1
1650 # Create two partitions - a root one and a data one (utilized by some tests)
1651 sfdisk
"$LOOPDEV" <<EOF
1653 type=C12A7328-F81F-11D2-BA4B-00A0C93EC93B name=esp size=${esp_size}M
1654 type=0FC63DAF-8483-4772-8E79-3D69D8477DE4 name=root size=${root_size}M bootable
1655 type=BC13C2FF-59E6-4262-A352-B275FD6F7172 name=boot size=${boot_size}M
1656 type=0FC63DAF-8483-4772-8E79-3D69D8477DE4 name=data
1661 if ! mkfs
-t vfat
"${LOOPDEV}p1"; then
1662 dfatal
"Failed to mkfs -t vfat ${LOOPDEV}p1"
1666 local label
=(-L systemd_boot
)
1667 # mkfs.reiserfs doesn't know -L. so, use --label instead
1668 [[ "$FSTYPE" == "reiserfs" ]] && label
=(--label systemd_boot
)
1669 if ! mkfs
-t "${FSTYPE}" "${label[@]}" "${LOOPDEV}p2" -q; then
1670 dfatal
"Failed to mkfs -t ${FSTYPE} ${label[*]} ${LOOPDEV}p2 -q"
1674 local label
=(-L xbootldr
)
1675 [[ "$FSTYPE" == "reiserfs" ]] && label
=(--label xbootldr
)
1676 if ! mkfs
-t "${FSTYPE}" "${label[@]}" "${LOOPDEV}p3" -q; then
1677 dfatal
"Failed to mkfs -t ${FSTYPE} ${label[*]} ${LOOPDEV}p3 -q"
1683 if [ -z "${LOOPDEV:=}" ]; then
1684 [ -e "${IMAGE_PRIVATE:?}" ] && image
="$IMAGE_PRIVATE" || image
="${IMAGE_PUBLIC:?}"
1685 LOOPDEV
="$(losetup --show -P -f "$image")"
1686 [ -b "$LOOPDEV" ] ||
return 1
1691 if ! mountpoint
-q "${initdir:?}"; then
1693 mount
"${LOOPDEV}p2" "$initdir"
1694 TEST_SETUP_CLEANUP_ROOTDIR
=1
1699 # only umount if create_empty_image_rootdir() was called to mount it
1700 if get_bool
"$TEST_SETUP_CLEANUP_ROOTDIR"; then
1701 _umount_dir
"${initdir:?}"
1706 # unmount the loopback device from all places. Otherwise we risk file
1707 # system corruption.
1708 for device
in $
(losetup
-l |
awk '$6=="'"${IMAGE_PUBLIC:?}"'" {print $1}'); do
1709 ddebug
"Unmounting all uses of $device"
1710 mount |
awk '/^'"${device}"'p/{print $1}' |
xargs --no-run-if-empty umount
-v
1714 create_empty_image_rootdir
() {
1719 check_asan_reports
() {
1724 if get_bool
"$IS_BUILT_WITH_ASAN"; then
1726 if [[ -e "$root/systemd.asan.log.1" ]]; then
1727 cat "$root/systemd.asan.log.1"
1731 for log
in pid1 journald
; do
1732 report
="$(find "$root" -name "systemd-
$log.
*san.log
*" -exec cat {} \;)"
1733 if [[ -n "$report" ]]; then
1734 printf "%s\n" "$report"
1735 # shellcheck disable=SC2015
1736 [[ "$log" == journald
]] && cat "$root/systemd-journald.out" ||
:
1741 # May 08 13:23:31 H testleak[2907148]: SUMMARY: AddressSanitizer: 4 byte(s) leaked in 1 allocation(s).
1743 "$JOURNALCTL" -D "$root/var
/log
/journal
" --grep 'SUMMARY: .*Sanitizer:' |
1744 grep -v -E 'dbus-daemon|dbus-broker-launch' |
1745 sed -r -n 's/.* .+\[([0-9]+)\]: SUMMARY:.*/\1/p'
1748 if [[ -n "$pids" ]]; then
1750 for pid
in $pids; do
1751 "$JOURNALCTL" -D "$root/var/log/journal" _PID
="$pid" --no-pager
1759 check_coverage_reports
() {
1762 if get_bool
"$NO_BUILD"; then
1765 if ! get_bool
"$IS_BUILT_WITH_COVERAGE"; then
1769 if [ -n "${ARTIFACT_DIRECTORY}" ]; then
1770 dest
="${ARTIFACT_DIRECTORY}/${testname:?}.coverage-info"
1772 dest
="${TESTDIR:?}/coverage-info"
1775 if [[ ! -e "${TESTDIR:?}/coverage-base" ]]; then
1776 # This shouldn't happen, as the report is generated during the setup
1777 # phase (test_setup()).
1778 derror
"Missing base coverage report"
1782 # Create a coverage report that will later be uploaded. Remove info about system
1783 # libraries/headers and generated files, as we don't really care about them.
1784 lcov
--directory "${root}/${BUILD_DIR:?}" --capture --output-file "${dest}.new"
1785 if [[ -f "$dest" ]]; then
1786 # If the destination report file already exists, don't overwrite it, but
1787 # merge it with the already present one - this usually happens when
1788 # running both "parts" of a test in one run (the qemu and the nspawn part).
1789 lcov
--add-tracefile "${dest}" --add-tracefile "${dest}.new" -o "${dest}"
1791 # If there's no prior coverage report, merge the new one with the base
1792 # report we did during the setup phase (see test_setup()).
1793 lcov
--add-tracefile "${TESTDIR:?}/coverage-base" --add-tracefile "${dest}.new" -o "${dest}"
1795 lcov
--remove "$dest" -o "$dest" '/usr/include/*' '/usr/lib/*' "${BUILD_DIR:?}/*"
1798 # If the test logs contain lines like:
1800 # ...systemd-resolved[735885]: profiling:/systemd-meson-build/src/shared/libsystemd-shared-250.a.p/base-filesystem.c.gcda:Cannot open
1802 # it means we're possibly missing some coverage since gcov can't write the stats,
1803 # usually due to the sandbox being too restrictive (e.g. ProtectSystem=yes,
1804 # ProtectHome=yes) or the $BUILD_DIR being inaccessible to non-root users - see
1805 # `setfacl` stuff in install_compiled_systemd().
1807 # Also, a note: some tests, like TEST-46, overmount /home with tmpfs, which
1808 # means if your build dir is under /home/your-user (which is usually the
1809 # case) you might get bogus errors and missing coverage.
1810 if ! get_bool
"${IGNORE_MISSING_COVERAGE:=}" && \
1811 "${JOURNALCTL:?}" -q --no-pager -D "${root:?}/var/log/journal" --grep "profiling:.+?gcda:[Cc]annot open"; then
1812 derror
"Detected possibly missing coverage, check the journal"
1820 local source_dir
="${1:?}"
1821 local state
="${2:?}"
1822 # Default to always saving journal
1824 local dest_dir dest_name dest
1826 if [[ "${TEST_SAVE_JOURNAL:-}" == "no" ]]; then
1828 elif [[ "${TEST_SAVE_JOURNAL:-}" == "fail" && "$state" -eq 0 ]]; then
1832 if [[ -n "${ARTIFACT_DIRECTORY:-}" ]]; then
1833 dest_dir
="$ARTIFACT_DIRECTORY"
1834 dest_name
="${testname:?}.journal"
1836 dest_dir
="${TESTDIR:?}"
1837 dest_name
="system.journal"
1840 # Show messages from the testsuite-XX.service or messages with priority "warning" and higher
1841 echo " --- $source_dir ---"
1842 "$JOURNALCTL" --no-pager --no-hostname -o short-monotonic
-D "$source_dir" \
1843 _SYSTEMD_UNIT
="testsuite-${TESTID:?}.service" + PRIORITY
=4 + PRIORITY
=3 + PRIORITY
=2 + PRIORITY
=1 + PRIORITY
=0
1845 if get_bool
"$save"; then
1846 # If we don't have systemd-journal-remote copy all journals from /var/log/journal/
1847 # to $dest_dir/journals/ as is, otherwise merge all journals into a single .journal
1849 if [[ -z "${SYSTEMD_JOURNAL_REMOTE:-}" ]]; then
1850 dest
="$dest_dir/journals"
1852 cp -a "$source_dir/*" "$dest/"
1854 dest
="$dest_dir/$dest_name"
1855 "$SYSTEMD_JOURNAL_REMOTE" -o "$dest" --getter="$JOURNALCTL -o export -D $source_dir"
1858 if [[ -n "${SUDO_USER:-}" ]]; then
1859 setfacl
-R -m "user:$SUDO_USER:r-X" "$dest"
1862 # we want to print this sometime later, so save this in a variable
1863 JOURNAL_LIST
="$(ls -lR "$dest")"
1866 rm -rf "${source_dir:?}"/*
1869 check_result_common
() {
1870 local workspace
="${1:?}"
1873 if [ -s "$workspace/failed" ]; then
1874 # Non-empty …/failed has highest priority
1875 cp -a "$workspace/failed" "${TESTDIR:?}/"
1876 if [ -n "${SUDO_USER}" ]; then
1877 setfacl
-m "user:${SUDO_USER:?}:r-X" "${TESTDIR:?}/"failed
1880 elif get_bool
"$TIMED_OUT"; then
1881 echo "(timeout)" >"${TESTDIR:?}/failed"
1883 elif [ -e "$workspace/testok" ]; then
1884 # …/testok always counts (but with lower priority than …/failed)
1886 elif [ -e "$workspace/skipped" ]; then
1887 # …/skipped always counts (a message is expected)
1888 echo "${TESTNAME:?} was skipped:"
1889 cat "$workspace/skipped"
1892 echo "(failed; see logs)" >"${TESTDIR:?}/failed"
1896 check_asan_reports
"$workspace" || ret
=4
1898 check_coverage_reports
"$workspace" || ret
=5
1900 save_journal
"$workspace/var/log/journal" $ret
1902 if [ -d "${ARTIFACT_DIRECTORY}" ] && [ -f "$workspace/strace.out" ]; then
1903 cp "$workspace/strace.out" "${ARTIFACT_DIRECTORY}/"
1906 if [ ${ret:?} != 0 ] && [ -f "$TESTDIR/failed" ]; then
1907 echo -n "${TESTNAME:?}: "
1908 cat "$TESTDIR/failed"
1910 echo "${JOURNAL_LIST:-"No journals were saved"}"
1915 check_result_nspawn
() {
1916 local workspace
="${1:?}"
1919 # Run a test-specific checks if defined by check_result_nspawn_hook()
1920 if declare -F check_result_nspawn_hook
>/dev
/null
; then
1921 if ! check_result_nspawn_hook
"${workspace}"; then
1922 derror
"check_result_nspawn_hook() returned with EC > 0"
1927 check_result_common
"${workspace}" || ret
=$?
1929 _umount_dir
"${initdir:?}"
1934 # can be overridden in specific test
1935 check_result_qemu
() {
1939 # Run a test-specific checks if defined by check_result_qemu_hook()
1940 if declare -F check_result_qemu_hook
>/dev
/null
; then
1941 if ! check_result_qemu_hook
"${initdir:?}"; then
1942 derror
"check_result_qemu_hook() returned with EC > 0"
1947 check_result_common
"${initdir:?}" || ret
=$?
1949 _umount_dir
"${initdir:?}"
1954 check_result_nspawn_unittests
() {
1955 local workspace
="${1:?}"
1958 [[ -e "$workspace/testok" ]] && ret
=0
1960 if [[ -s "$workspace/failed" ]]; then
1962 echo "=== Failed test log ==="
1963 cat "$workspace/failed"
1965 if [[ -s "$workspace/skipped" ]]; then
1966 echo "=== Skipped test log =="
1967 cat "$workspace/skipped"
1968 # We might have only skipped tests - that should not fail the job
1971 if [[ -s "$workspace/testok" ]]; then
1972 echo "=== Passed tests ==="
1973 cat "$workspace/testok"
1977 get_bool
"${TIMED_OUT:=}" && ret
=1
1978 check_coverage_reports
"$workspace" || ret
=5
1980 save_journal
"$workspace/var/log/journal" $ret
1981 echo "${JOURNAL_LIST:-"No journals were saved"}"
1983 _umount_dir
"${initdir:?}"
1988 check_result_qemu_unittests
() {
1992 [[ -e "${initdir:?}/testok" ]] && ret
=0
1994 if [[ -s "$initdir/failed" ]]; then
1996 echo "=== Failed test log ==="
1997 cat "$initdir/failed"
1999 if [[ -s "$initdir/skipped" ]]; then
2000 echo "=== Skipped test log =="
2001 cat "$initdir/skipped"
2002 # We might have only skipped tests - that should not fail the job
2005 if [[ -s "$initdir/testok" ]]; then
2006 echo "=== Passed tests ==="
2007 cat "$initdir/testok"
2011 get_bool
"${TIMED_OUT:=}" && ret
=1
2012 check_coverage_reports
"$initdir" || ret
=5
2014 save_journal
"$initdir/var/log/journal" $ret
2015 echo "${JOURNAL_LIST:-"No journals were saved"}"
2017 _umount_dir
"$initdir"
2023 dinfo
"Create rc.local"
2024 mkdir
-p "${initdir:?}/etc/rc.d"
2025 cat >"$initdir/etc/rc.d/rc.local" <<EOF
2029 chmod 0755 "$initdir/etc/rc.d/rc.local"
2033 ddebug
"Install executables from the service files"
2035 local pkg_config_path
="${BUILD_DIR:?}/src/core/"
2036 local systemunitdir userunitdir exe
2037 systemunitdir
="$(PKG_CONFIG_PATH="$pkg_config_path" pkg-config --variable=systemdsystemunitdir systemd)"
2038 userunitdir
="$(PKG_CONFIG_PATH="$pkg_config_path" pkg-config --variable=systemduserunitdir systemd)"
2039 while read -r exe
; do
2040 # some {rc,halt}.local scripts and programs are okay to not exist, the rest should
2041 # also, plymouth is pulled in by rescue.service, but even there the exit code
2042 # is ignored; as it's not present on some distros, don't fail if it doesn't exist
2043 dinfo
"Attempting to install $exe (based on unit file reference)"
2044 inst
"$exe" ||
[ "${exe%.local}" != "$exe" ] || [ "${exe%systemd-update-done}" != "$exe" ] || [ "${exe##*/}" == "plymouth" ]
2045 done < <(sed -r -n 's|^Exec[a-zA-Z]*=[@+!-]*([^ ]+).*|\1|gp' "${initdir:?}"/{"$systemunitdir","$userunitdir"}/*.service |
sort -u)
2048 generate_module_dependencies
() {
2049 dinfo
"Generate modules dependencies"
2050 if [[ -d "${initdir:?}/lib/modules/${KERNEL_VER:?}" ]] && \
2051 ! depmod
-a -b "$initdir" "$KERNEL_VER"; then
2052 dfatal
"\"depmod -a $KERNEL_VER\" failed."
2057 install_depmod_files
() {
2058 dinfo
"Install depmod files"
2059 inst
"/lib/modules/${KERNEL_VER:?}/modules.order"
2060 inst
"/lib/modules/$KERNEL_VER/modules.builtin"
2063 install_plymouth
() {
2064 dinfo
"Install plymouth"
2065 # install plymouth, if found... else remove plymouth service files
2066 # if [ -x /usr/libexec/plymouth/plymouth-populate-initrd ]; then
2067 # PLYMOUTH_POPULATE_SOURCE_FUNCTIONS="$TEST_BASE_DIR/test-functions" \
2068 # /usr/libexec/plymouth/plymouth-populate-initrd -t $initdir
2069 # image_install plymouth plymouthd
2071 rm -f "${initdir:?}"/{usr
/lib
,lib
,etc
}/systemd
/system
/plymouth
* "$initdir"/{usr
/lib
,lib
,etc
}/systemd
/system
/*/plymouth
*
2076 # If haveged is installed, it's probably included in initrd and needs to be
2077 # installed in the image too.
2078 if [ -x /usr
/sbin
/haveged
]; then
2079 dinfo
"Install haveged files"
2080 inst
/usr
/sbin
/haveged
2081 for u
in /usr
/lib
/systemd
/system
/haveged
*; do
2087 install_ld_so_conf
() {
2088 dinfo
"Install /etc/ld.so.conf*"
2089 cp -a /etc
/ld.so.conf
* "${initdir:?}/etc"
2090 ldconfig
-r "$initdir"
2093 install_testuser
() {
2094 dinfo
"Set up a test user"
2095 # create unprivileged user for user manager tests
2096 mkdir
-p "${initdir:?}/etc/sysusers.d"
2097 cat >"$initdir/etc/sysusers.d/testuser.conf" <<EOF
2098 u testuser 4711 "Test User" /home/testuser
2101 mkdir
-p "$initdir/home/testuser"
2102 chmod 0700 "$initdir/home/testuser"
2103 chown
4711:4711 "$initdir/home/testuser"
2106 install_config_files
() {
2107 dinfo
"Install config files"
2108 inst
/etc
/sysconfig
/init ||
:
2111 inst_any
/etc
/login.defs
/usr
/etc
/login.defs
2114 inst_any
/etc
/nsswitch.conf
/usr
/etc
/nsswitch.conf
2115 inst
/etc
/pam.conf ||
:
2116 inst_any
/etc
/os-release
/usr
/lib
/os-release
2118 # we want an empty environment
2119 : >"${initdir:?}/etc/environment"
2120 : >"$initdir/etc/machine-id"
2121 : >"$initdir/etc/resolv.conf"
2124 echo 'H' >"$initdir/etc/hostname"
2126 # let's set up just one image with the traditional verbose output
2127 if [ "${IMAGE_NAME:?}" != "basic" ]; then
2128 mkdir
-p "$initdir/etc/systemd/system.conf.d"
2129 echo -e '[Manager]\nStatusUnitFormat=name' >"$initdir/etc/systemd/system.conf.d/status.conf"
2133 install_basic_tools
() {
2134 dinfo
"Install basic tools"
2135 image_install
"${BASICTOOLS[@]}"
2136 image_install
-o sushell
2137 # in Debian ldconfig is just a shell script wrapper around ldconfig.real
2138 image_install
-o ldconfig.real
2141 install_debug_tools
() {
2142 dinfo
"Install debug tools"
2143 image_install
-o "${DEBUGTOOLS[@]}"
2145 if get_bool
"$INTERACTIVE_DEBUG"; then
2146 # Set default TERM from vt220 to linux, so at least basic key shortcuts work
2147 local getty_override
="${initdir:?}/etc/systemd/system/serial-getty@.service.d"
2148 mkdir
-p "$getty_override"
2149 echo -e "[Service]\nEnvironment=TERM=linux" >"$getty_override/default-TERM.conf"
2150 echo 'export TERM=linux' >>"$initdir/etc/profile"
2152 if command -v resize
>/dev
/null
; then
2153 image_install resize
2154 echo "resize" >>"$initdir/etc/profile"
2157 # Sometimes we might end up with plymouthd still running (especially
2158 # with the initrd -> asan_wrapper -> systemd transition), which will eat
2159 # our inputs and make debugging via tty impossible. Let's fix this by
2160 # killing plymouthd explicitly for the interactive sessions.
2161 # Note: we can't use pkill/pidof/etc. here due to a bug in libasan, see:
2162 # - https://github.com/llvm/llvm-project/issues/49223
2163 # - https://bugzilla.redhat.com/show_bug.cgi?id=2098125
2164 local plymouth_unit
="${initdir:?}/etc/systemd/system/kill-plymouth.service"
2165 cat >"$plymouth_unit" <<EOF
2167 After=multi-user.target
2170 ExecStart=sh -c 'killall --verbose plymouthd || :'
2173 WantedBy=multi-user.target
2175 "${SYSTEMCTL:?}" enable --root "${initdir:?}" kill-plymouth.service
2180 dinfo
"Install libnss"
2181 # install libnss_files for login
2183 mapfile
-t NSS_LIBS
< <(LD_DEBUG
=files getent passwd
2>&1 >/dev
/null |
sed -n '/calling init: .*libnss_/ {s!^.* /!/!; p}')
2184 if [[ ${#NSS_LIBS[@]} -gt 0 ]]; then
2185 image_install
"${NSS_LIBS[@]}"
2190 dinfo
"Install dbus"
2191 inst
"${ROOTLIBDIR:?}/system/dbus.socket"
2193 # Newer Fedora versions use dbus-broker by default. Let's install it if it's available.
2194 if [ -f "$ROOTLIBDIR/system/dbus-broker.service" ]; then
2195 inst
"$ROOTLIBDIR/system/dbus-broker.service"
2196 inst_symlink
/etc
/systemd
/system
/dbus.service
2197 inst
/usr
/bin
/dbus-broker
2198 inst
/usr
/bin
/dbus-broker-launch
2199 elif [ -f "$ROOTLIBDIR/system/dbus-daemon.service" ]; then
2200 # Fedora rawhide replaced dbus.service with dbus-daemon.service
2201 inst
"$ROOTLIBDIR/system/dbus-daemon.service"
2203 inst_symlink
/etc
/systemd
/system
/dbus.service
2205 inst
"$ROOTLIBDIR/system/dbus.service"
2208 while read -r file; do
2210 done < <(find /etc
/dbus-1
/usr
/share
/dbus-1
-xtype f
2>/dev
/null
)
2212 # setup policy for Type=dbus test
2213 mkdir
-p "${initdir:?}/etc/dbus-1/system.d"
2214 cat >"$initdir/etc/dbus-1/system.d/systemd.test.ExecStopPost.conf" <<EOF
2215 <?xml version="1.0"?>
2216 <!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
2217 "https://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
2219 <policy user="root">
2220 <allow own="systemd.test.ExecStopPost"/>
2225 # If we run without KVM, bump the service start timeout
2226 if ! get_bool
"$QEMU_KVM"; then
2227 cat >"$initdir/etc/dbus-1/system.d/service.timeout.conf" <<EOF
2228 <?xml version="1.0"?>
2229 <!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
2230 "https://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
2232 <limit name="service_start_timeout">120000</limit>
2235 # Bump the client-side timeout in sd-bus as well
2236 mkdir
-p "$initdir/etc/systemd/system.conf.d"
2237 echo -e '[Manager]\nDefaultEnvironment=SYSTEMD_BUS_TIMEOUT=120' >"$initdir/etc/systemd/system.conf.d/bus-timeout.conf"
2241 install_user_dbus
() {
2242 dinfo
"Install user dbus"
2244 if ! userunitdir
="$(pkg-config --variable=systemduserunitdir systemd)"; then
2245 dwarn
"WARNING! Cannot determine userunitdir from pkg-config, assuming /usr/lib/systemd/user"
2246 userunitdir
=/usr
/lib
/systemd
/user
2249 inst
"$userunitdir/dbus.socket"
2250 inst_symlink
"$userunitdir/sockets.target.wants/dbus.socket" || inst_symlink
/etc
/systemd
/user
/sockets.target.wants
/dbus.socket
2252 # Append the After= dependency on dbus in case it isn't already set up
2253 mkdir
-p "${initdir:?}/etc/systemd/system/user@.service.d/"
2254 cat >"$initdir/etc/systemd/system/user@.service.d/dbus.conf" <<EOF
2259 # Newer Fedora versions use dbus-broker by default. Let's install it if it's available.
2260 if [ -f "$userunitdir/dbus-broker.service" ]; then
2261 inst
"$userunitdir/dbus-broker.service"
2262 inst_symlink
/etc
/systemd
/user
/dbus.service
2263 elif [ -f "${ROOTLIBDIR:?}/system/dbus-daemon.service" ]; then
2264 # Fedora rawhide replaced dbus.service with dbus-daemon.service
2265 inst
"$userunitdir/dbus-daemon.service"
2267 inst_symlink
/etc
/systemd
/user
/dbus.service
2269 inst
"$userunitdir/dbus.service"
2277 if get_bool
"$LOOKS_LIKE_DEBIAN" && type -p dpkg-architecture
&>/dev
/null
; then
2278 paths
+=("/lib/$(dpkg-architecture -qDEB_HOST_MULTIARCH)/security")
2280 paths
+=(/lib
*/security
)
2283 for d
in /etc
/pam.d
/{usr
/,}etc
/security
/usr
/{etc
,lib
}/pam.d
; do
2284 [ -d "$d" ] && paths
+=("$d")
2287 while read -r file; do
2289 done < <(find "${paths[@]}" -xtype f
)
2291 # pam_unix depends on unix_chkpwd.
2292 # see http://www.linux-pam.org/Linux-PAM-html/sag-pam_unix.html
2293 image_install
-o unix_chkpwd
2295 # set empty root password for easy debugging
2296 sed -i 's/^root:x:/root::/' "${initdir:?}/etc/passwd"
2298 # And make sure pam_unix will accept it by making sure that
2299 # the PAM module has the nullok option.
2300 for d
in /etc
/pam.d
/usr
/{etc
,lib
}/pam.d
; do
2301 [ -d "$initdir/$d" ] ||
continue
2302 sed -i '/^auth.*pam_unix.so/s/$/ nullok/' "$initdir/$d"/*
2307 # install only C.UTF-8 and English locales
2308 dinfo
"Install locales"
2310 if command -v meson
>/dev
/null \
2311 && (meson configure
"${BUILD_DIR:?}" |
grep 'localegen-path */') \
2312 || get_bool
"$LOOKS_LIKE_DEBIAN"; then
2313 # locale-gen support
2314 image_install
-o locale-gen localedef
2315 inst
/etc
/locale.gen ||
:
2316 inst
/usr
/share
/i18n
/SUPPORTED ||
:
2317 inst_recursive
/usr
/share
/i18n
/charmaps
2318 inst_recursive
/usr
/share
/i18n
/locales
2319 inst_recursive
/usr
/share
/locale
/en
*
2320 inst_recursive
/usr
/share
/locale
/de
*
2321 image_install
/usr
/share
/locale
/locale.
alias
2322 # locale-gen might either generate each locale separately or merge them
2323 # into a single archive
2324 if ! (inst_recursive
/usr
/lib
/locale
/C.
*8 /usr
/lib
/locale
/en_
*8 ||
2325 image_install
/usr
/lib
/locale
/locale-archive
); then
2326 dfatal
"Failed to install required locales"
2330 inst_recursive
/usr
/lib
/locale
/C.
*8 /usr
/lib
/locale
/en_
*8
2334 # shellcheck disable=SC2120
2342 dinfo
"Install console keymaps"
2344 if (( $# == 0 )); then
2345 for p
in "${prefix[@]}"; do
2346 # The first three paths may be deprecated.
2347 # It seems now the last three paths are used by many distributions.
2349 "$p"/kbd
/keymaps
/include
/* \
2350 "$p"/kbd
/keymaps
/i386
/include
/* \
2351 "$p"/kbd
/keymaps
/i386
/qwerty
/us.
* \
2352 "$p"/kbd
/keymaps
/legacy
/include
/* \
2353 "$p"/kbd
/keymaps
/legacy
/i386
/qwerty
/us.
* \
2354 "$p"/kbd
/keymaps
/xkb
/us
*; do
2355 [[ -f "$i" ]] ||
continue
2360 # When it takes any argument, then install more keymaps.
2361 for p
in "${prefix[@]}"; do
2363 "$p"/kbd
/keymaps
/include
/* \
2364 "$p"/kbd
/keymaps
/i386
/*/* \
2365 "$p"/kbd
/keymaps
/legacy
/i386
/*/* \
2366 "$p"/kbd
/keymaps
/xkb
/*; do
2367 [[ -f "$i" ]] ||
continue
2374 install_x11_keymaps
() {
2375 dinfo
"Install x11 keymaps"
2377 if (( $# == 0 )); then
2378 # Install only keymap list.
2379 inst
/usr
/share
/X11
/xkb
/rules
/base.lst
2381 # When it takes any argument, then install all keymaps.
2382 inst_recursive
/usr
/share
/X11
/xkb
2386 install_zoneinfo
() {
2387 dinfo
"Install time zones"
2388 inst_any
/usr
/share
/zoneinfo
/Asia
/Seoul
2389 inst_any
/usr
/share
/zoneinfo
/Asia
/Vladivostok
2390 inst_any
/usr
/share
/zoneinfo
/Australia
/Sydney
2391 inst_any
/usr
/share
/zoneinfo
/Europe
/Berlin
2392 inst_any
/usr
/share
/zoneinfo
/Europe
/Dublin
2393 inst_any
/usr
/share
/zoneinfo
/Europe
/Kiev
2394 inst_any
/usr
/share
/zoneinfo
/Pacific
/Auckland
2395 inst_any
/usr
/share
/zoneinfo
/Pacific
/Honolulu
2396 inst_any
/usr
/share
/zoneinfo
/CET
2397 inst_any
/usr
/share
/zoneinfo
/EET
2398 inst_any
/usr
/share
/zoneinfo
/UTC
2402 dinfo
"Install system fonts"
2404 /usr
/{lib
,share
}/kbd
/consolefonts
/eurlatgr
* \
2405 /usr
/{lib
,share
}/kbd
/consolefonts
/latarcyrheb-sun16
*; do
2406 [[ -f "$i" ]] ||
continue
2411 install_terminfo
() {
2412 dinfo
"Install terminfo files"
2414 for terminfodir
in /lib
/terminfo
/etc
/terminfo
/usr
/share
/terminfo
; do
2415 [ -f "${terminfodir}/l/linux" ] && break
2417 image_install
-o "${terminfodir}/l/linux"
2420 has_user_dbus_socket
() {
2421 if [ -f /usr
/lib
/systemd
/user
/dbus.socket
] ||
[ -f /etc
/systemd
/user
/dbus.socket
]; then
2424 echo "Per-user instances are not supported. Skipping..."
2429 setup_nspawn_root_hook
() { :;}
2431 setup_nspawn_root
() {
2432 if [ -z "${initdir}" ]; then
2433 dfatal
"\$initdir not defined"
2437 rm -rf "${TESTDIR:?}/unprivileged-nspawn-root"
2439 if get_bool
"$RUN_IN_UNPRIVILEGED_CONTAINER"; then
2440 ddebug
"cp -ar $initdir $TESTDIR/unprivileged-nspawn-root"
2441 cp -ar "$initdir" "$TESTDIR/unprivileged-nspawn-root"
2444 setup_nspawn_root_hook
2447 setup_basic_dirs
() {
2448 mkdir
-p "${initdir:?}/run"
2449 mkdir
-p "$initdir/etc/systemd/system"
2450 mkdir
-p "$initdir/var/log/journal"
2453 for d
in usr
/bin usr
/sbin bin etc lib
"${libdir:?}" sbin tmp usr var var
/log var
/tmp dev proc sys sysroot root run run
/lock run
/initramfs
; do
2454 if [ -L "/$d" ]; then
2461 ln -sfn /run
"$initdir/var/run"
2462 ln -sfn /run
/lock
"$initdir/var/lock"
2465 mask_supporting_services
() {
2466 # mask some services that we do not want to run in these tests
2467 ln -fsv /dev
/null
"${initdir:?}/etc/systemd/system/systemd-hwdb-update.service"
2468 ln -fsv /dev
/null
"$initdir/etc/systemd/system/systemd-journal-catalog-update.service"
2469 ln -fsv /dev
/null
"$initdir/etc/systemd/system/systemd-networkd.service"
2470 ln -fsv /dev
/null
"$initdir/etc/systemd/system/systemd-networkd.socket"
2471 ln -fsv /dev
/null
"$initdir/etc/systemd/system/systemd-resolved.service"
2476 local so_regex
='([^ ]*/lib[^/]*/[^ ]*\.so[^ ]*)'
2479 while read -r line
; do
2480 [[ "$line" = 'not a dynamic executable' ]] && break
2481 # Ignore errors about our own stuff missing. This is most likely caused
2482 # by ldd attempting to use the unprefixed RPATH.
2483 [[ "$line" =~
(libsystemd|libudev
).
*\ not\ found
]] && continue
2485 if [[ "$line" =~ not\ found
]]; then
2486 dfatal
"Missing a shared library required by $bin."
2487 dfatal
"Run \"ldd $bin\" to find out what it is."
2489 dfatal
"Cannot create a test image."
2493 if [[ "$line" =~
$so_regex ]]; then
2494 file="${BASH_REMATCH[1]}"
2495 [[ -e "${initdir:?}/$file" ]] && continue
2496 inst_library
"$file"
2498 done < <(LC_ALL
=C ldd
"$bin" 2>/dev
/null
)
2502 # make sure we don't get a stale LOOPDEV value from old times
2503 local _LOOPDEV
="${LOOPDEV:=}"
2504 # We don't want shellcheck to follow & check the $STATEFILE
2505 # shellcheck source=/dev/null
2506 [[ -e "$STATEFILE" ]] && .
"$STATEFILE"
2508 if [[ ! -d "$TESTDIR" ]]; then
2509 if [[ -z "$TESTDIR" ]]; then
2510 TESTDIR
="$(mktemp --tmpdir=$WORKDIR -d -t systemd-test.XXXXXX)"
2515 cat >"$STATEFILE" <<EOF
2521 IMAGE_PRIVATE
="${TESTDIR}/${IMAGE_NAME:?}.img"
2522 IMAGE_PUBLIC
="${IMAGESTATEDIR:?}/${IMAGE_NAME}.img"
2526 initdir
="${TESTDIR:?}/root"
2531 get_cgroup_hierarchy
() {
2532 case "$(stat -c '%T' -f /sys/fs/cgroup)" in
2537 if [[ -d /sys
/fs
/cgroup
/unified
&& "$(stat -c '%T' -f /sys/fs/cgroup/unified)" == cgroup2fs
]]; then
2544 dfatal
"Failed to determine host's cgroup hierarchy"
2549 ## @brief Converts numeric logging level to the first letter of level name.
2551 # @param lvl Numeric logging level in range from 1 to 6.
2552 # @retval 1 if @a lvl is out of range.
2553 # @retval 0 if @a lvl is correct.
2554 # @result Echoes first letter of level name.
2567 ## @brief Internal helper function for _do_dlog()
2569 # @param lvl Numeric logging level.
2570 # @param msg Message.
2571 # @retval 0 It's always returned, even if logging failed.
2573 # @note This function is not supposed to be called manually. Please use
2574 # dtrace(), ddebug(), or others instead which wrap this one.
2576 # This function calls _do_dlog() either with parameter msg, or if
2577 # none is given, it will read standard input and will use every line as
2581 # dwarn "This is a warning"
2582 # echo "This is a warning" | dwarn
2583 LOG_LEVEL
="${LOG_LEVEL:-4}"
2588 [ -z "$LOG_LEVEL" ] && return 0
2590 [ "$lvl" -le "$LOG_LEVEL" ] ||
return 0
2591 lvlc
="$(_lvl2char "$lvl")" ||
return 0
2593 if [ $# -ge 1 ]; then
2596 while read -r line
; do
2597 echo "$lvlc: " "$line"
2602 ## @brief Logs message at TRACE level (6)
2604 # @param msg Message.
2605 # @retval 0 It's always returned, even if logging failed.
2609 if get_bool
"${debug:=}"; then
2614 ## @brief Logs message at DEBUG level (5)
2616 # @param msg Message.
2617 # @retval 0 It's always returned, even if logging failed.
2622 ## @brief Logs message at INFO level (4)
2624 # @param msg Message.
2625 # @retval 0 It's always returned, even if logging failed.
2629 if get_bool
"${debug:=}"; then
2634 ## @brief Logs message at WARN level (3)
2636 # @param msg Message.
2637 # @retval 0 It's always returned, even if logging failed.
2641 if get_bool
"${debug:=}"; then
2646 ## @brief Logs message at ERROR level (2)
2648 # @param msg Message.
2649 # @retval 0 It's always returned, even if logging failed.
2654 ## @brief Logs message at FATAL level (1)
2656 # @param msg Message.
2657 # @retval 0 It's always returned, even if logging failed.
2661 if get_bool
"${debug:=}"; then
2667 # Generic substring function. If $2 is in $1, return 0.
2668 strstr
() { [ "${1#*"$2"*}" != "$1" ]; }
2670 # normalize_path <path>
2671 # Prints the normalized path, where it removes any duplicated
2672 # and trailing slashes.
2674 # $ normalize_path ///test/test//
2678 set -- "${1//+(\/)//}"
2683 # convert_abs_rel <from> <to>
2684 # Prints the relative path, when creating a symlink to <to> from <from>.
2686 # $ convert_abs_rel /usr/bin/test /bin/test-2
2688 # $ ln -s $(convert_abs_rel /usr/bin/test /bin/test-2) /usr/bin/test
2690 local __current __absolute __abssize __cursize __newpath
2691 local -i __i __level
2693 set -- "$(normalize_path "${1:?}")" "$(normalize_path "${2:?}")"
2695 # corner case #1 - self looping link
2696 [[ "$1" == "$2" ]] && { echo "${1##*/}"; return; }
2698 # corner case #2 - own dir link
2699 [[ "${1%/*}" == "$2" ]] && { echo "."; return; }
2701 IFS
="/" read -ra __current
<<< "$1"
2702 IFS
="/" read -ra __absolute
<<< "$2"
2704 __abssize
=${#__absolute[@]}
2705 __cursize
=${#__current[@]}
2707 while [[ "${__absolute[__level]}" == "${__current[__level]}" ]]; do
2709 if (( __level
> __abssize || __level
> __cursize
))
2715 for ((__i
= __level
; __i
< __cursize-1
; __i
++)); do
2716 if ((__i
> __level
))
2718 __newpath
=$__newpath"/"
2720 __newpath
=$__newpath".."
2723 for ((__i
= __level
; __i
< __abssize
; __i
++)); do
2724 if [[ -n $__newpath ]]
2726 __newpath
=$__newpath"/"
2728 __newpath
=$__newpath${__absolute[__i]}
2735 # Install a directory, keeping symlinks as on the original system.
2736 # Example: if /lib points to /lib64 on the host, "inst_dir /lib/file"
2737 # will create ${initdir}/lib64, ${initdir}/lib64/file,
2738 # and a symlink ${initdir}/lib -> lib64.
2741 local part
="${dir%/*}"
2744 [[ -e "${initdir:?}/${dir}" ]] && return 0 # already there
2746 while [[ "$part" != "${part%/*}" ]] && ! [[ -e "${initdir}/${part}" ]]; do
2751 # iterate over parent directories
2752 for file in $dir; do
2753 [[ -e "${initdir}/$file" ]] && continue
2754 if [[ -L $file ]]; then
2755 inst_symlink
"$file"
2758 mkdir
-m 0755 "${initdir}/$file" ||
return 1
2759 [[ -e "$file" ]] && chmod --reference="$file" "${initdir}/$file"
2760 chmod u
+w
"${initdir}/$file"
2765 # $1 = file to copy to ramdisk
2766 # $2 (optional) Name for the file on the ramdisk
2767 # Location of the image dir is assumed to be $initdir
2768 # We never overwrite the target if it exists.
2770 [[ -f "${1:?}" ]] ||
return 1
2771 strstr
"$1" "/" ||
return 1
2774 local target
="${2:-$1}"
2775 if ! [[ -d ${initdir:?}/$target ]]; then
2776 [[ -e ${initdir}/$target ]] && return 0
2777 [[ -L ${initdir}/$target ]] && return 0
2778 [[ -d "${initdir}/${target%/*}" ]] || inst_dir "${target%/*}"
2780 # install checksum files also
2781 if [[ -e "${src%/*}/.${src##*/}.hmac" ]]; then
2782 inst
"${src%/*}/.${src##*/}.hmac" "${target%/*}/.${target##*/}.hmac"
2784 ddebug
"Installing $src"
2785 cp --sparse=always
--force --dereference --preserve=all
"$src" "${initdir}/$target"
2788 # find symlinks linked to given library file
2790 # Function searches for symlinks by stripping version numbers appended to
2791 # library filename, checks if it points to the same target and finally
2792 # prints the list of symlinks to stdout.
2795 # rev_lib_symlinks libfoo.so.8.1
2796 # output: libfoo.so.8 libfoo.so
2797 # (Only if libfoo.so.8 and libfoo.so exists on host system.)
2798 rev_lib_symlinks
() {
2802 orig
="$(readlink -f "$1")"
2804 [[ "${fn}" =~ .
*\.so\..
* ]] ||
return 1
2806 until [[ "${fn##*.}" == so
]]; do
2808 [[ -L "${fn}" && "$(readlink -f "${fn}")" == "${orig}" ]] && links+=" ${fn}"
2814 # Same as above, but specialized to handle dynamic libraries.
2815 # It handles making symlinks according to how the original library
2819 local dest
="${2:-$1}"
2820 local reallib symlink
2822 strstr
"$1" "/" ||
return 1
2823 [[ -e ${initdir:?}/$dest ]] && return 0
2824 if [[ -L $src ]]; then
2825 # install checksum files also
2826 if [[ -e "${src%/*}/.${src##*/}.hmac" ]]; then
2827 inst
"${src%/*}/.${src##*/}.hmac" "${dest%/*}/.${dest##*/}.hmac"
2829 reallib
="$(readlink -f "$src")"
2830 inst_simple
"$reallib" "$reallib"
2831 inst_dir
"${dest%/*}"
2832 [[ -d "${dest%/*}" ]] && dest="$(readlink -f "${dest%/*}")/${dest##*/}"
2833 ddebug
"Creating symlink $reallib -> $dest"
2834 ln -sfn -- "$(convert_abs_rel "${dest}" "${reallib}")" "${initdir}/${dest}"
2836 inst_simple "$src" "$dest"
2839 # Create additional symlinks. See rev_symlinks description.
2840 for symlink in $(rev_lib_symlinks "$src") ${reallib:+$(rev_lib_symlinks "$reallib")}; do
2841 if [[ ! -e "$initdir/$symlink" ]]; then
2842 ddebug "Creating extra symlink
: $symlink"
2843 inst_symlink "$symlink"
2848 # find a binary. If we were not passed the full path directly,
2849 # search in the usual places to find the binary.
2852 if [[ -z ${bin##/*} ]]; then
2853 if [[ -x "$bin" ]] || { strstr "$bin" ".so
" && ldd "$bin" &>/dev/null; }; then
2862 # Same as above, but specialized to install binary executables.
2863 # Install binary executable, and all shared library dependencies, if any.
2868 # In certain cases we might attempt to install a binary which is already
2869 # present in the test image, yet it's missing from the host system.
2870 # In such cases, let's check if the binary indeed exists in the image
2871 # before doing any other checks. If it does, immediately return with
2873 if [[ $# -eq 1 ]]; then
2874 for path in "" bin sbin usr/bin usr/sbin; do
2875 [[ -e "${initdir:?}${path:+/$path}/${bin}" ]] && return 0
2879 bin="$
(find_binary
"$bin")" || return 1
2881 [[ -e "${initdir:?}/$target" ]] && return 0
2882 [[ -L "$bin" ]] && inst_symlink "$bin" "$target" && return 0
2885 local so_regex='([^ ]*/lib[^/]*/[^ ]*\.so[^ ]*)'
2886 # DSOs provided by systemd
2887 local systemd_so_regex='/(libudev|libsystemd.*|.+[\-_]systemd([\-_].+)?|libnss_(mymachines|myhostname|resolve)).so'
2891 while read -r line; do
2892 [[ "$line" = 'not a dynamic executable' ]] && break
2894 # Ignore errors about our own stuff missing. This is most likely caused
2895 # by ldd attempting to use the unprefixed RPATH.
2896 [[ "$line" =~ libsystemd.*\ not\ found ]] && continue
2898 # We're built with ASan and the target binary loads one of the systemd's
2899 # DSOs, so we need to tweak the environment before executing the binary
2900 if get_bool "$IS_BUILT_WITH_ASAN" && [[ "$line" =~ $systemd_so_regex ]]; then
2904 if [[ "$line" =~ $so_regex ]]; then
2905 file="${BASH_REMATCH[1]}"
2906 [[ -e "${initdir}/$file" ]] && continue
2907 inst_library "$file"
2911 if [[ "$line" =~ not\ found ]]; then
2912 dfatal "Missing a shared library required by
$bin.
"
2913 dfatal "Run
\"ldd
$bin\" to
find out what it is.
"
2915 dfatal "Cannot create a
test image.
"
2918 done < <(LC_ALL=C ldd "$bin" 2>/dev/null)
2920 # Same as above, but we need to wrap certain libraries unconditionally
2922 # chgrp, chown, getent, login, setfacl, su, useradd, userdel
2923 # - dlopen() (not only) systemd's PAM modules
2924 # ls, mkfs.*, mksquashfs, mkswap, setpriv, stat
2925 # - pull in nss_systemd with certain options (like ls -l) when
2926 # nsswitch.conf uses [SUCCESS=merge] (like on Arch Linux)
2927 # delv, dig - pull in nss_resolve if `resolve` is in nsswitch.conf
2928 # tar - called by machinectl in TEST-25
2929 bin_rx='/(agetty|chgrp|chown|curl|delv|dig|getfacl|getent|id|login|ls|mkfs\.[a-z0-9]+|mksquashfs|mkswap|setfacl|setpriv|stat|su|tar|useradd|userdel)$'
2930 if get_bool "$IS_BUILT_WITH_ASAN" && [[ "$bin" =~ $bin_rx ]]; then
2932 # Ugh, so we want to disable LSan in most cases for the wrapped binaries, since
2933 # we don't care about memory leaks in such binaries. However, in certain cases
2934 # the external binary is the only interface for the systemd code, like for
2935 # the systemd NSS modules, where we want to detect memory leaks. So let's
2936 # do another check to decide if we want to enable LSan for given binary.
2937 if [[ "$bin" =~ /getent$ ]]; then
2942 # If the target binary is built with ASan support, we don't need to wrap
2943 # it, as it should handle everything by itself
2944 if get_bool "$wrap_binary" && ! is_built_with_asan "$bin"; then
2945 dinfo "Creating ASan-compatible wrapper
for binary
'$target'"
2946 # Install the target binary with a ".orig
" suffix
2947 inst_simple "$bin" "${target}.orig
"
2948 # Create a simple shell wrapper in place of the target binary, which
2949 # sets necessary ASan-related env variables and then exec()s the
2950 # suffixed target binary
2951 cat >"$initdir/$target" <<EOF
2953 # Preload the ASan runtime DSO, otherwise ASAn will complain
2954 export LD_PRELOAD="$ASAN_RT_PATH"
2955 # Disable LSan to speed things up, since we don't care about leak reports
2956 # from 'external' binaries
2957 export ASAN_OPTIONS=detect_leaks=$enable_lsan
2958 # Set argv[0] to the original binary name without the ".orig
" suffix
2959 exec -a "\
$0" -- "${target}.orig
" "\$@
"
2961 chmod +x "$initdir/$target"
2963 inst_simple "$bin" "$target"
2967 # same as above, except for shell scripts.
2968 # If your shell script does not start with shebang, it is not a shell script.
2970 local bin line shebang_regex
2971 bin="$
(find_binary
"${1:?}")" || return 1
2974 read -r -n 80 line <"$bin"
2975 # If debug is set, clean unprintable chars to prevent messing up the term
2976 get_bool "${debug:=}" && line="$
(echo -n "$line" |
tr -c -d '[:print:][:space:]')"
2977 shebang_regex='(#! *)(/[^ ]+).*'
2978 [[ "$line" =~ $shebang_regex ]] || return 1
2979 inst "${BASH_REMATCH[2]}" && inst_simple "$bin" "$@
"
2982 # same as above, but specialized for symlinks
2985 local target="${2:-$src}"
2988 strstr "$src" "/" || return 1
2989 [[ -L "$src" ]] || return 1
2990 [[ -L "${initdir:?}/$target" ]] && return 0
2991 realsrc="$
(readlink
-f "$src")"
2992 if ! [[ -e "$initdir/$realsrc" ]]; then
2993 if [[ -d "$realsrc" ]]; then
2999 [[ ! -e "$initdir/${target%/*}" ]] && inst_dir "${target%/*}"
3000 [[ -d "${target%/*}" ]] && target="$(readlink -f "${target%/*}")/${target##*/}"
3001 ln -sfn -- "$
(convert_abs_rel
"${target}" "${realsrc}")" "$initdir/$target"
3004 # attempt to install any programs specified in a udev rule
3005 inst_rule_programs() {
3009 sed -rn 's/^.*?PROGRAM==?"([^
"]+).*$/\1/p' "$rule" | while read -r prog; do
3010 if [ -x "/lib
/udev
/$prog" ]; then
3011 bin="/lib
/udev
/$prog"
3013 if ! bin="$
(find_binary
"$prog")"; then
3014 dinfo "Skipping program
$prog used
in udev rule $
(basename "$rule") as it cannot be found
"
3019 #dinfo "Installing
$_bin due to it
's use in the udev rule $(basename $1)"
3020 image_install "$bin"
3024 # udev rules always get installed in the same place, so
3025 # create a function to install them to make life simpler.
3027 local target=/etc/udev/rules.d
3030 inst_dir "/lib/udev/rules.d"
3032 for rule in "$@"; do
3033 if [ "${rule#/}" = "$rule" ]; then
3034 for r in /lib/udev/rules.d /etc/udev/rules.d; do
3035 if [[ -f "$r/$rule" ]]; then
3037 inst_simple "$found"
3038 inst_rule_programs "$found"
3043 if [[ -f "${r}${rule}" ]]; then
3045 inst_simple "$found" "$target/${found##*/}"
3046 inst_rule_programs "$found"
3049 [[ $found ]] || dinfo "Skipping udev rule: $rule"
3054 # general purpose installation function
3055 # Same args as above.
3060 [[ ! "$initdir" && -d "$2" ]] && export initdir="$2"
3061 [[ "$initdir" = "$2" ]] && set "$1"
3064 [[ -z "$initdir" ]] && export initdir="$2"
3068 dfatal "inst only takes 1 or 2 or 3 arguments"
3074 for fun in inst_symlink inst_script inst_binary inst_simple; do
3075 "$fun" "$@" && return 0
3078 dwarn "Failed to install '$1'"
3082 # install any of listed files
3084 # If first argument is '-d' and second some destination path, first accessible
3085 # source is installed into this path, otherwise it will installed in the same
3086 # path as source. If none of listed files was installed, function return 1.
3087 # On first successful installation it returns with 0 status.
3091 # inst_any -d /bin/foo /bin/bar /bin/baz
3093 # Lets assume that /bin/baz exists, so it will be installed as /bin/foo in
3098 [[ "${1:?}" = '-d' ]] && dest="${2:?}" && shift 2
3100 for file in "$@"; do
3101 if [[ -e "$file" ]]; then
3102 [[ -n "$dest" ]] && inst "$file" "$dest" && return 0
3103 inst "$file" && return 0
3114 # Make sure the source exists, as the process substitution below
3116 stat "$p" >/dev/null || return 1
3118 while read -r item; do
3119 if [[ -d "$item" ]]; then
3121 elif [[ -f "$item" ]]; then
3124 done < <(find "$p" 2>/dev/null)
3128 # image_install [-o ] <file> [<file> ... ]
3129 # Install <file> to the test image
3130 # -o optionally install the <file> and don't fail
, if it is not there
3135 if [[ "$prog" = '-o' ]]; then
3140 for prog
in "$@"; do
3141 if ! inst
"$prog" ; then
3142 if get_bool
"$optional"; then
3143 dinfo
"Skipping program $prog as it cannot be found and is" \
3144 "flagged to be optional"
3146 dfatal
"Failed to install $prog"
3153 # Install a single kernel module along with any firmware it may require.
3154 # $1 = full path to kernel module to install
3155 install_kmod_with_fw
() {
3156 local module
="${1:?}"
3157 # no need to go further if the module is already installed
3158 [[ -e "${initdir:?}/lib/modules/${KERNEL_VER:?}/${module##*"/lib/modules/$KERNEL_VER/"}" ]] && return 0
3159 [[ -e "$initdir/.kernelmodseen/${module##*/}" ]] && return 0
3161 [ -d "$initdir/.kernelmodseen" ] && : >"$initdir/.kernelmodseen/${module##*/}"
3163 inst_simple
"$module" "/lib/modules/$KERNEL_VER/${module##*"/lib/modules/$KERNEL_VER/"}" ||
return $?
3165 local modname
="${module##*/}"
3166 local fwdir found fw
3167 modname
="${modname%.ko*}"
3169 while read -r fw
; do
3171 for fwdir
in /lib
/firmware
/updates
/lib
/firmware
; do
3172 if [[ -d "$fwdir" && -f "$fwdir/$fw" ]]; then
3173 inst_simple
"$fwdir/$fw" "/lib/firmware/$fw"
3177 if ! get_bool
"$found"; then
3178 if ! grep -qe "\<${modname//-/_}\>" /proc
/modules
; then
3179 dinfo
"Possible missing firmware \"${fw}\" for kernel module" \
3182 dwarn
"Possible missing firmware \"${fw}\" for kernel module" \
3186 done < <(modinfo
-k "$KERNEL_VER" -F firmware
"$module" 2>/dev
/null
)
3190 # Do something with all the dependencies of a kernel module.
3191 # Note that kernel modules depend on themselves using the technique we use
3192 # $1 = function to call for each dependency we find
3193 # It will be passed the full path to the found kernel module
3194 # $2 = module to get dependencies for
3195 # rest of args = arguments to modprobe
3196 for_each_kmod_dep
() {
3203 while read -r cmd modpath _
; do
3204 [[ "$cmd" = insmod
]] ||
continue
3205 "$func" "$modpath" ||
return $?
3207 done < <(modprobe
"$@" --ignore-install --show-depends "$kmod")
3209 ! get_bool
"$found" && return 1
3213 # instmods [-c] <kernel module> [<kernel module> ... ]
3214 # instmods [-c] <kernel subsystem>
3215 # install kernel modules along with all their dependencies.
3216 # <kernel subsystem> can be e.g. "=block" or "=drivers/usb/storage"
3217 # FIXME(?): dracutdevs/dracut@f4e38c0da8d6bf3764c1ad753d9d52aef63050e5
3220 if [[ $# -ge 0 && "$1" = '-c' ]]; then
3228 local mod_dir
="/lib/modules/${KERNEL_VER:?}/"
3232 if [ -f "${mod_dir}/modules.${mod#=}" ]; then
3234 [[ "$mpargs" ]] && echo "$mpargs"
3235 cat "${mod_dir}/modules.${mod#=}"
3239 [[ "$mpargs" ]] && echo "$mpargs"
3240 find "$mod_dir" -path "*/${mod#=}/*" -name "*.ko*" -type f
-printf '%f\n'
3248 # Do not load this diagnostic-only module
3253 # if we are already installed, skip this module and go on
3255 [[ -f "${initdir:?}/.kernelmodseen/${mod%.ko}.ko" ]] && return
3257 # We use '-d' option in modprobe only if modules prefix path
3258 # differs from default '/'. This allows us to use Dracut with
3259 # old version of modprobe which doesn't have '-d' option.
3260 local mod_dirname
=${mod_dir%%/lib/modules/*}
3261 [[ -n ${mod_dirname} ]] && mod_dirname
="-d ${mod_dirname}/"
3263 # ok, load the module, all its dependencies, and any firmware
3265 for_each_kmod_dep install_kmod_with_fw
"$mod" \
3266 --set-version "$KERNEL_VER" \
3267 ${mod_dirname:+"$mod_dirname"} \
3268 ${mpargs:+"$mpargs"}
3277 if [[ $# -eq 0 ]]; then # filenames from stdin
3278 while read -r mod
; do
3279 if ! inst1mod
"${mod%.ko*}" && [ "$check" = "yes" ]; then
3280 dfatal
"Failed to install $mod"
3286 for mod
in "$@"; do # filenames as arguments
3287 if ! inst1mod
"${mod%.ko*}" && [ "$check" = "yes" ]; then
3288 dfatal
"Failed to install $mod"
3297 local mountpoint
="${1:?}"
3298 if mountpoint
-q "$mountpoint"; then
3299 ddebug
"umount $mountpoint"
3300 umount
"$mountpoint"
3304 # can be overridden in specific test
3305 test_setup_cleanup
() {
3310 # (post-test) cleanup should always ignore failure and cleanup as much as possible
3313 [[ -n "$initdir" ]] && _umount_dir
"$initdir"
3314 [[ -n "$IMAGE_PUBLIC" ]] && rm -vf "$IMAGE_PUBLIC"
3315 # If multiple setups/cleans are ran in parallel, this can cause a race
3316 if [[ -n "$IMAGESTATEDIR" && $TEST_PARALLELIZE -ne 1 ]]; then
3317 rm -vf "${IMAGESTATEDIR}/default.img"
3319 [[ -n "$TESTDIR" ]] && rm -vfr "$TESTDIR"
3320 [[ -n "$STATEFILE" ]] && rm -vf "$STATEFILE"
3324 # can be overridden in specific test
3329 test_cleanup_again
() {
3330 [ -n "$TESTDIR" ] ||
return
3331 rm -rf "$TESTDIR/unprivileged-nspawn-root"
3332 [[ -n "$initdir" ]] && _umount_dir
"$initdir"
3335 test_create_image
() {
3336 create_empty_image_rootdir
3338 # Create what will eventually be our root filesystem onto an overlay
3341 setup_basic_environment
3346 if ! get_bool
"$NO_BUILD" && \
3347 get_bool
"${TEST_REQUIRE_INSTALL_TESTS:?}" && \
3348 command -v meson
>/dev
/null
&& \
3349 [[ "$(meson configure "${BUILD_DIR:?}" | grep install-tests | awk '{ print $2 }')" != "true" ]]; then
3350 dfatal
"$BUILD_DIR needs to be built with -Dinstall-tests=true"
3354 if [ -e "${IMAGE_PRIVATE:?}" ]; then
3355 echo "Reusing existing image $IMAGE_PRIVATE → $(realpath "$IMAGE_PRIVATE")"
3358 if [ ! -e "${IMAGE_PUBLIC:?}" ]; then
3359 # default.img is the base that every test uses and optionally appends to
3360 if [ ! -e "${IMAGESTATEDIR:?}/default.img" ] ||
[ -n "${TEST_FORCE_NEWIMAGE:=}" ]; then
3361 # Create the backing public image, but then completely unmount
3362 # it and drop the loopback device responsible for it, since we're
3363 # going to symlink/copy the image and mount it again from
3365 local image_old
="${IMAGE_PUBLIC}"
3366 if [ -z "${TEST_FORCE_NEWIMAGE}" ]; then
3367 IMAGE_PUBLIC
="${IMAGESTATEDIR}/default.img"
3373 IMAGE_PUBLIC
="${image_old}"
3375 if [ "${IMAGE_NAME:?}" != "default" ] && ! get_bool
"${TEST_FORCE_NEWIMAGE}"; then
3376 cp -v "$(realpath "${IMAGESTATEDIR}/default.img
")" "$IMAGE_PUBLIC"
3381 declare -f -F test_append_files
>/dev
/null
&& hook_defined
=yes || hook_defined
=no
3383 echo "Reusing existing cached image $IMAGE_PUBLIC → $(realpath "$IMAGE_PUBLIC")"
3384 if get_bool
"$TEST_PARALLELIZE" || get_bool
"$hook_defined"; then
3385 cp -v -- "$(realpath "$IMAGE_PUBLIC")" "$IMAGE_PRIVATE"
3387 ln -sv -- "$(realpath "$IMAGE_PUBLIC")" "$IMAGE_PRIVATE"
3392 if get_bool
"${TEST_SUPPORTING_SERVICES_SHOULD_BE_MASKED}"; then
3393 dinfo
"Masking supporting services"
3394 mask_supporting_services
3397 if get_bool
"$IS_BUILT_WITH_COVERAGE"; then
3398 # Do an initial coverage capture, to make sure the final report includes
3399 # files that the tests didn't touch at all
3400 lcov
--initial --capture --directory "${initdir}/${BUILD_DIR:?}" --output-file "${TESTDIR:?}/coverage-base"
3403 if get_bool
"$hook_defined"; then
3404 test_append_files
"${initdir:?}"
3412 local test_id
="${1:?}"
3415 if ! get_bool
"${TEST_NO_QEMU:=}"; then
3416 if run_qemu
"$test_id"; then
3417 check_result_qemu ||
{ echo "qemu test failed"; return 1; }
3419 dwarn
"can't run qemu, skipping"
3422 if ! get_bool
"${TEST_NO_NSPAWN:=}"; then
3424 if run_nspawn
"${initdir:?}" "$test_id"; then
3425 check_result_nspawn
"$initdir" ||
{ echo "nspawn-root test failed"; return 1; }
3427 dwarn
"can't run systemd-nspawn, skipping"
3430 if get_bool
"${RUN_IN_UNPRIVILEGED_CONTAINER:=}"; then
3431 dir
="$TESTDIR/unprivileged-nspawn-root"
3432 if NSPAWN_ARGUMENTS
="-U --private-network ${NSPAWN_ARGUMENTS:-}" run_nspawn
"$dir" "$test_id"; then
3433 check_result_nspawn
"$dir" ||
{ echo "unprivileged-nspawn-root test failed"; return 1; }
3435 dwarn
"can't run systemd-nspawn, skipping"
3443 if [[ $UID != "0" ]]; then
3444 echo "TEST: $TEST_DESCRIPTION [SKIPPED]: not root" >&2
3448 if get_bool
"${TEST_NO_QEMU:=}" && get_bool
"${TEST_NO_NSPAWN:=}"; then
3449 echo "TEST: $TEST_DESCRIPTION [SKIPPED]: both qemu and nspawn disabled" >&2
3453 if get_bool
"${TEST_QEMU_ONLY:=}" && ! get_bool
"$TEST_NO_NSPAWN"; then
3454 echo "TEST: $TEST_DESCRIPTION [SKIPPED]: qemu-only tests requested" >&2
3458 if get_bool
"${TEST_PREFER_NSPAWN:=}" && ! get_bool
"$TEST_NO_NSPAWN"; then
3463 [[ "$libdir" ]] ||
for libdir
in /lib64
/lib
; do
3464 [[ -d $libdir ]] && libdirs
+=" $libdir" && break
3467 [[ "$usrlibdir" ]] ||
for usrlibdir
in /usr
/lib64
/usr
/lib
; do
3468 [[ -d $usrlibdir ]] && libdirs
+=" $usrlibdir" && break
3472 mkdir
-p "$STATEDIR"
3477 if [ -n "${SUDO_USER}" ]; then
3478 ddebug
"Making ${TESTDIR:?} readable for ${SUDO_USER} (acquired from sudo)"
3479 setfacl
-m "user:${SUDO_USER:?}:r-X" "${TESTDIR:?}"
3482 testname
="$(basename "$PWD")"
3484 while (($# > 0)); do
3487 echo "${testname} RUN: $TEST_DESCRIPTION"
3490 if [ $ret -eq 0 ]; then
3491 echo "${testname} RUN: $TEST_DESCRIPTION [OK]"
3493 echo "${testname} RUN: $TEST_DESCRIPTION [FAILED]"
3498 echo "${testname} SETUP: $TEST_DESCRIPTION"
3503 echo "${testname} CLEANUP: $TEST_DESCRIPTION"
3507 echo "${testname} CLEANUP AGAIN: $TEST_DESCRIPTION"
3512 echo -n "${testname}: $TEST_DESCRIPTION "
3513 # Do not use a subshell, otherwise cleanup variables (LOOPDEV) will be lost
3514 # and loop devices will leak
3515 test_setup
</dev
/null
>"$TESTLOG" 2>&1 || ret
=$?
3516 if [ $ret -eq 0 ]; then
3517 test_setup_cleanup
</dev
/null
>>"$TESTLOG" 2>&1 || ret
=$?
3519 if [ $ret -eq 0 ]; then
3520 test_run
"$TESTID" </dev
/null
>>"$TESTLOG" 2>&1 || ret
=$?
3523 if [ $ret -eq 0 ]; then
3524 # $TESTLOG is in $STATEDIR, so clean it up only on success
3525 [[ -n "$STATEDIR" ]] && rm -vfr "$STATEDIR"