]>
Commit | Line | Data |
---|---|---|
53e1b683 | 1 | /* SPDX-License-Identifier: LGPL-2.1+ */ |
a7334b09 LP |
2 | /*** |
3 | This file is part of systemd. | |
4 | ||
5 | Copyright 2010 Lennart Poettering | |
6 | ||
7 | systemd is free software; you can redistribute it and/or modify it | |
5430f7f2 LP |
8 | under the terms of the GNU Lesser General Public License as published by |
9 | the Free Software Foundation; either version 2.1 of the License, or | |
a7334b09 LP |
10 | (at your option) any later version. |
11 | ||
12 | systemd is distributed in the hope that it will be useful, but | |
13 | WITHOUT ANY WARRANTY; without even the implied warranty of | |
14 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU | |
5430f7f2 | 15 | Lesser General Public License for more details. |
a7334b09 | 16 | |
5430f7f2 | 17 | You should have received a copy of the GNU Lesser General Public License |
a7334b09 LP |
18 | along with systemd; If not, see <http://www.gnu.org/licenses/>. |
19 | ***/ | |
20 | ||
5cb5a6ff | 21 | #include <errno.h> |
034c6ed7 | 22 | #include <signal.h> |
2c4104f0 | 23 | #include <unistd.h> |
5cb5a6ff | 24 | |
7a0019d3 LP |
25 | #include "sd-messages.h" |
26 | ||
b5efdb8a | 27 | #include "alloc-util.h" |
574634bc | 28 | #include "async.h" |
4f5dd394 LP |
29 | #include "bus-error.h" |
30 | #include "bus-kernel.h" | |
31 | #include "bus-util.h" | |
4139c1b2 | 32 | #include "dbus-service.h" |
f6a6225e | 33 | #include "def.h" |
4d1a6904 | 34 | #include "env-util.h" |
4f5dd394 LP |
35 | #include "escape.h" |
36 | #include "exit-status.h" | |
3ffd4af2 | 37 | #include "fd-util.h" |
a5c32cff | 38 | #include "fileio.h" |
f97b34a6 | 39 | #include "format-util.h" |
f4f15635 | 40 | #include "fs-util.h" |
4f5dd394 LP |
41 | #include "load-dropin.h" |
42 | #include "load-fragment.h" | |
43 | #include "log.h" | |
44 | #include "manager.h" | |
6bedfcbb | 45 | #include "parse-util.h" |
4f5dd394 | 46 | #include "path-util.h" |
0b452006 | 47 | #include "process-util.h" |
3ffd4af2 | 48 | #include "service.h" |
24882e06 | 49 | #include "signal-util.h" |
4f5dd394 | 50 | #include "special.h" |
e266c068 | 51 | #include "stdio-util.h" |
8b43440b | 52 | #include "string-table.h" |
07630cea | 53 | #include "string-util.h" |
4f5dd394 LP |
54 | #include "strv.h" |
55 | #include "unit-name.h" | |
4f5dd394 LP |
56 | #include "unit.h" |
57 | #include "utf8.h" | |
58 | #include "util.h" | |
034c6ed7 | 59 | |
acbb0225 | 60 | static const UnitActiveState state_translation_table[_SERVICE_STATE_MAX] = { |
87f0e418 LP |
61 | [SERVICE_DEAD] = UNIT_INACTIVE, |
62 | [SERVICE_START_PRE] = UNIT_ACTIVATING, | |
63 | [SERVICE_START] = UNIT_ACTIVATING, | |
64 | [SERVICE_START_POST] = UNIT_ACTIVATING, | |
65 | [SERVICE_RUNNING] = UNIT_ACTIVE, | |
80876c20 | 66 | [SERVICE_EXITED] = UNIT_ACTIVE, |
032ff4af | 67 | [SERVICE_RELOAD] = UNIT_RELOADING, |
87f0e418 | 68 | [SERVICE_STOP] = UNIT_DEACTIVATING, |
db2cb23b | 69 | [SERVICE_STOP_SIGABRT] = UNIT_DEACTIVATING, |
87f0e418 LP |
70 | [SERVICE_STOP_SIGTERM] = UNIT_DEACTIVATING, |
71 | [SERVICE_STOP_SIGKILL] = UNIT_DEACTIVATING, | |
72 | [SERVICE_STOP_POST] = UNIT_DEACTIVATING, | |
73 | [SERVICE_FINAL_SIGTERM] = UNIT_DEACTIVATING, | |
74 | [SERVICE_FINAL_SIGKILL] = UNIT_DEACTIVATING, | |
fdf20a31 | 75 | [SERVICE_FAILED] = UNIT_FAILED, |
6124958c | 76 | [SERVICE_AUTO_RESTART] = UNIT_ACTIVATING |
034c6ed7 | 77 | }; |
5cb5a6ff | 78 | |
e056b01d LP |
79 | /* For Type=idle we never want to delay any other jobs, hence we |
80 | * consider idle jobs active as soon as we start working on them */ | |
81 | static const UnitActiveState state_translation_table_idle[_SERVICE_STATE_MAX] = { | |
82 | [SERVICE_DEAD] = UNIT_INACTIVE, | |
83 | [SERVICE_START_PRE] = UNIT_ACTIVE, | |
84 | [SERVICE_START] = UNIT_ACTIVE, | |
85 | [SERVICE_START_POST] = UNIT_ACTIVE, | |
86 | [SERVICE_RUNNING] = UNIT_ACTIVE, | |
87 | [SERVICE_EXITED] = UNIT_ACTIVE, | |
88 | [SERVICE_RELOAD] = UNIT_RELOADING, | |
89 | [SERVICE_STOP] = UNIT_DEACTIVATING, | |
db2cb23b | 90 | [SERVICE_STOP_SIGABRT] = UNIT_DEACTIVATING, |
e056b01d LP |
91 | [SERVICE_STOP_SIGTERM] = UNIT_DEACTIVATING, |
92 | [SERVICE_STOP_SIGKILL] = UNIT_DEACTIVATING, | |
93 | [SERVICE_STOP_POST] = UNIT_DEACTIVATING, | |
94 | [SERVICE_FINAL_SIGTERM] = UNIT_DEACTIVATING, | |
95 | [SERVICE_FINAL_SIGKILL] = UNIT_DEACTIVATING, | |
96 | [SERVICE_FAILED] = UNIT_FAILED, | |
97 | [SERVICE_AUTO_RESTART] = UNIT_ACTIVATING | |
98 | }; | |
99 | ||
718db961 LP |
100 | static int service_dispatch_io(sd_event_source *source, int fd, uint32_t events, void *userdata); |
101 | static int service_dispatch_timer(sd_event_source *source, usec_t usec, void *userdata); | |
102 | static int service_dispatch_watchdog(sd_event_source *source, usec_t usec, void *userdata); | |
103 | ||
842129f5 | 104 | static void service_enter_signal(Service *s, ServiceState state, ServiceResult f); |
308d72dc | 105 | static void service_enter_reload_by_notify(Service *s); |
842129f5 | 106 | |
a16e1123 LP |
107 | static void service_init(Unit *u) { |
108 | Service *s = SERVICE(u); | |
109 | ||
110 | assert(u); | |
ac155bb8 | 111 | assert(u->load_state == UNIT_STUB); |
a16e1123 | 112 | |
1f19a534 OS |
113 | s->timeout_start_usec = u->manager->default_timeout_start_usec; |
114 | s->timeout_stop_usec = u->manager->default_timeout_stop_usec; | |
115 | s->restart_usec = u->manager->default_restart_usec; | |
36c16a7c | 116 | s->runtime_max_usec = USEC_INFINITY; |
0b86feac | 117 | s->type = _SERVICE_TYPE_INVALID; |
a16e1123 | 118 | s->socket_fd = -1; |
a34ceba6 | 119 | s->stdin_fd = s->stdout_fd = s->stderr_fd = -1; |
3185a36b | 120 | s->guess_main_pid = true; |
a16e1123 | 121 | |
a16e1123 | 122 | s->control_command_id = _SERVICE_EXEC_COMMAND_INVALID; |
00f5ad93 LP |
123 | |
124 | s->exec_context.keyring_mode = MANAGER_IS_SYSTEM(u->manager) ? | |
125 | EXEC_KEYRING_PRIVATE : EXEC_KEYRING_INHERIT; | |
a16e1123 LP |
126 | } |
127 | ||
5e94833f LP |
128 | static void service_unwatch_control_pid(Service *s) { |
129 | assert(s); | |
130 | ||
131 | if (s->control_pid <= 0) | |
132 | return; | |
133 | ||
134 | unit_unwatch_pid(UNIT(s), s->control_pid); | |
135 | s->control_pid = 0; | |
136 | } | |
137 | ||
138 | static void service_unwatch_main_pid(Service *s) { | |
139 | assert(s); | |
140 | ||
141 | if (s->main_pid <= 0) | |
142 | return; | |
143 | ||
144 | unit_unwatch_pid(UNIT(s), s->main_pid); | |
145 | s->main_pid = 0; | |
146 | } | |
147 | ||
3e52541e MS |
148 | static void service_unwatch_pid_file(Service *s) { |
149 | if (!s->pid_file_pathspec) | |
150 | return; | |
151 | ||
f2341e0a | 152 | log_unit_debug(UNIT(s), "Stopping watch for PID file %s", s->pid_file_pathspec->path); |
718db961 | 153 | path_spec_unwatch(s->pid_file_pathspec); |
3e52541e | 154 | path_spec_done(s->pid_file_pathspec); |
a1e58e8e | 155 | s->pid_file_pathspec = mfree(s->pid_file_pathspec); |
3e52541e MS |
156 | } |
157 | ||
5925dd3c | 158 | static int service_set_main_pid(Service *s, pid_t pid) { |
e55224ca LP |
159 | pid_t ppid; |
160 | ||
5925dd3c LP |
161 | assert(s); |
162 | ||
163 | if (pid <= 1) | |
164 | return -EINVAL; | |
165 | ||
df0ff127 | 166 | if (pid == getpid_cached()) |
5925dd3c LP |
167 | return -EINVAL; |
168 | ||
7400b9d2 LP |
169 | if (s->main_pid == pid && s->main_pid_known) |
170 | return 0; | |
171 | ||
172 | if (s->main_pid != pid) { | |
173 | service_unwatch_main_pid(s); | |
174 | exec_status_start(&s->main_exec_status, pid); | |
175 | } | |
41efeaec | 176 | |
6dfa5494 LP |
177 | s->main_pid = pid; |
178 | s->main_pid_known = true; | |
179 | ||
df0ff127 | 180 | if (get_process_ppid(pid, &ppid) >= 0 && ppid != getpid_cached()) { |
f2341e0a | 181 | log_unit_warning(UNIT(s), "Supervising process "PID_FMT" which is not our child. We'll most likely not notice when it exits.", pid); |
6dfa5494 LP |
182 | s->main_pid_alien = true; |
183 | } else | |
184 | s->main_pid_alien = false; | |
5925dd3c LP |
185 | |
186 | return 0; | |
187 | } | |
188 | ||
3e7a1f50 | 189 | void service_close_socket_fd(Service *s) { |
4f2d528d LP |
190 | assert(s); |
191 | ||
5cc3985e | 192 | /* Undo the effect of service_set_socket_fd(). */ |
4f2d528d | 193 | |
5cc3985e | 194 | s->socket_fd = asynchronous_close(s->socket_fd); |
6cf6bbc2 | 195 | |
5cc3985e LP |
196 | if (UNIT_ISSET(s->accept_socket)) { |
197 | socket_connection_unref(SOCKET(UNIT_DEREF(s->accept_socket))); | |
198 | unit_ref_unset(&s->accept_socket); | |
199 | } | |
6cf6bbc2 LP |
200 | } |
201 | ||
a6927d7f MO |
202 | static void service_stop_watchdog(Service *s) { |
203 | assert(s); | |
204 | ||
718db961 | 205 | s->watchdog_event_source = sd_event_source_unref(s->watchdog_event_source); |
842129f5 | 206 | s->watchdog_timestamp = DUAL_TIMESTAMP_NULL; |
a6927d7f MO |
207 | } |
208 | ||
2787d83c M |
209 | static usec_t service_get_watchdog_usec(Service *s) { |
210 | assert(s); | |
211 | ||
212 | if (s->watchdog_override_enable) | |
213 | return s->watchdog_override_usec; | |
214 | else | |
215 | return s->watchdog_usec; | |
216 | } | |
217 | ||
842129f5 | 218 | static void service_start_watchdog(Service *s) { |
bb242b7b | 219 | int r; |
2787d83c | 220 | usec_t watchdog_usec; |
bb242b7b MO |
221 | |
222 | assert(s); | |
223 | ||
2787d83c | 224 | watchdog_usec = service_get_watchdog_usec(s); |
4c701096 | 225 | if (IN_SET(watchdog_usec, 0, USEC_INFINITY)) |
bb242b7b MO |
226 | return; |
227 | ||
718db961 | 228 | if (s->watchdog_event_source) { |
2787d83c | 229 | r = sd_event_source_set_time(s->watchdog_event_source, usec_add(s->watchdog_timestamp.monotonic, watchdog_usec)); |
718db961 | 230 | if (r < 0) { |
f2341e0a | 231 | log_unit_warning_errno(UNIT(s), r, "Failed to reset watchdog timer: %m"); |
718db961 LP |
232 | return; |
233 | } | |
234 | ||
842129f5 | 235 | r = sd_event_source_set_enabled(s->watchdog_event_source, SD_EVENT_ONESHOT); |
c4ef3317 | 236 | } else { |
6a0f1f6d LP |
237 | r = sd_event_add_time( |
238 | UNIT(s)->manager->event, | |
239 | &s->watchdog_event_source, | |
240 | CLOCK_MONOTONIC, | |
2787d83c | 241 | usec_add(s->watchdog_timestamp.monotonic, watchdog_usec), 0, |
6a0f1f6d | 242 | service_dispatch_watchdog, s); |
c4ef3317 | 243 | if (r < 0) { |
f2341e0a | 244 | log_unit_warning_errno(UNIT(s), r, "Failed to add watchdog timer: %m"); |
c4ef3317 LP |
245 | return; |
246 | } | |
247 | ||
7dfbe2e3 TG |
248 | (void) sd_event_source_set_description(s->watchdog_event_source, "service-watchdog"); |
249 | ||
c4ef3317 LP |
250 | /* Let's process everything else which might be a sign |
251 | * of living before we consider a service died. */ | |
252 | r = sd_event_source_set_priority(s->watchdog_event_source, SD_EVENT_PRIORITY_IDLE); | |
253 | } | |
718db961 | 254 | |
bb242b7b | 255 | if (r < 0) |
f2341e0a | 256 | log_unit_warning_errno(UNIT(s), r, "Failed to install watchdog timer: %m"); |
bb242b7b MO |
257 | } |
258 | ||
a327431b DB |
259 | static void service_extend_timeout(Service *s, usec_t extend_timeout_usec) { |
260 | assert(s); | |
261 | ||
262 | if (s->timer_event_source) { | |
263 | uint64_t current = 0, extended = 0; | |
264 | int r; | |
265 | ||
266 | if (IN_SET(extend_timeout_usec, 0, USEC_INFINITY)) | |
267 | return; | |
268 | ||
269 | extended = usec_add(now(CLOCK_MONOTONIC), extend_timeout_usec); | |
270 | ||
271 | r = sd_event_source_get_time(s->timer_event_source, ¤t); | |
272 | if (r < 0) | |
273 | log_unit_error_errno(UNIT(s), r, "Failed to retrieve timeout timer: %m"); | |
274 | else if (extended > current) { | |
275 | r = sd_event_source_set_time(s->timer_event_source, extended); | |
276 | if (r < 0) | |
277 | log_unit_warning_errno(UNIT(s), r, "Failed to set timeout timer: %m"); | |
278 | } | |
279 | ||
280 | if (s->watchdog_event_source) { | |
281 | /* extend watchdog if necessary. We've asked for an extended timeout so we | |
282 | * shouldn't expect a watchdog timeout in the interval in between */ | |
283 | r = sd_event_source_get_time(s->watchdog_event_source, ¤t); | |
284 | if (r < 0) { | |
285 | log_unit_error_errno(UNIT(s), r, "Failed to retrieve watchdog timer: %m"); | |
286 | return; | |
287 | } | |
288 | ||
289 | if (extended > current) { | |
290 | r = sd_event_source_set_time(s->watchdog_event_source, extended); | |
291 | if (r < 0) | |
292 | log_unit_warning_errno(UNIT(s), r, "Failed to set watchdog timer: %m"); | |
293 | } | |
294 | } | |
295 | } | |
296 | } | |
297 | ||
a6927d7f MO |
298 | static void service_reset_watchdog(Service *s) { |
299 | assert(s); | |
300 | ||
301 | dual_timestamp_get(&s->watchdog_timestamp); | |
842129f5 | 302 | service_start_watchdog(s); |
a6927d7f MO |
303 | } |
304 | ||
2787d83c M |
305 | static void service_reset_watchdog_timeout(Service *s, usec_t watchdog_override_usec) { |
306 | assert(s); | |
307 | ||
308 | s->watchdog_override_enable = true; | |
309 | s->watchdog_override_usec = watchdog_override_usec; | |
310 | service_reset_watchdog(s); | |
311 | ||
312 | log_unit_debug(UNIT(s), "watchdog_usec="USEC_FMT, s->watchdog_usec); | |
313 | log_unit_debug(UNIT(s), "watchdog_override_usec="USEC_FMT, s->watchdog_override_usec); | |
314 | } | |
315 | ||
a354329f LP |
316 | static void service_fd_store_unlink(ServiceFDStore *fs) { |
317 | ||
318 | if (!fs) | |
319 | return; | |
320 | ||
321 | if (fs->service) { | |
322 | assert(fs->service->n_fd_store > 0); | |
323 | LIST_REMOVE(fd_store, fs->service->fd_store, fs); | |
324 | fs->service->n_fd_store--; | |
325 | } | |
326 | ||
327 | if (fs->event_source) { | |
328 | sd_event_source_set_enabled(fs->event_source, SD_EVENT_OFF); | |
329 | sd_event_source_unref(fs->event_source); | |
330 | } | |
331 | ||
8dd4c05b | 332 | free(fs->fdname); |
a354329f LP |
333 | safe_close(fs->fd); |
334 | free(fs); | |
335 | } | |
336 | ||
f0bfbfac ZJS |
337 | static void service_release_fd_store(Service *s) { |
338 | assert(s); | |
339 | ||
7eb2a8a1 LP |
340 | if (s->n_keep_fd_store > 0) |
341 | return; | |
342 | ||
f0bfbfac ZJS |
343 | log_unit_debug(UNIT(s), "Releasing all stored fds"); |
344 | while (s->fd_store) | |
345 | service_fd_store_unlink(s->fd_store); | |
346 | ||
347 | assert(s->n_fd_store == 0); | |
348 | } | |
349 | ||
7eb2a8a1 | 350 | static void service_release_resources(Unit *u) { |
a354329f LP |
351 | Service *s = SERVICE(u); |
352 | ||
353 | assert(s); | |
354 | ||
a34ceba6 | 355 | if (!s->fd_store && s->stdin_fd < 0 && s->stdout_fd < 0 && s->stderr_fd < 0) |
a354329f LP |
356 | return; |
357 | ||
f0bfbfac | 358 | log_unit_debug(u, "Releasing resources."); |
a354329f | 359 | |
a34ceba6 LP |
360 | s->stdin_fd = safe_close(s->stdin_fd); |
361 | s->stdout_fd = safe_close(s->stdout_fd); | |
362 | s->stderr_fd = safe_close(s->stderr_fd); | |
363 | ||
7eb2a8a1 | 364 | service_release_fd_store(s); |
a354329f LP |
365 | } |
366 | ||
87f0e418 LP |
367 | static void service_done(Unit *u) { |
368 | Service *s = SERVICE(u); | |
44d8db9e LP |
369 | |
370 | assert(s); | |
371 | ||
a1e58e8e LP |
372 | s->pid_file = mfree(s->pid_file); |
373 | s->status_text = mfree(s->status_text); | |
efe6e7d3 | 374 | |
e8a565cb | 375 | s->exec_runtime = exec_runtime_unref(s->exec_runtime, false); |
e537352b | 376 | exec_command_free_array(s->exec_command, _SERVICE_EXEC_COMMAND_MAX); |
44d8db9e | 377 | s->control_command = NULL; |
867b3b7d | 378 | s->main_command = NULL; |
44d8db9e | 379 | |
29206d46 LP |
380 | dynamic_creds_unref(&s->dynamic_creds); |
381 | ||
37520c1b LP |
382 | exit_status_set_free(&s->restart_prevent_status); |
383 | exit_status_set_free(&s->restart_force_status); | |
384 | exit_status_set_free(&s->success_status); | |
96342de6 | 385 | |
44d8db9e LP |
386 | /* This will leak a process, but at least no memory or any of |
387 | * our resources */ | |
5e94833f LP |
388 | service_unwatch_main_pid(s); |
389 | service_unwatch_control_pid(s); | |
3e52541e | 390 | service_unwatch_pid_file(s); |
44d8db9e | 391 | |
05e343b7 | 392 | if (s->bus_name) { |
ac155bb8 | 393 | unit_unwatch_bus_name(u, s->bus_name); |
a1e58e8e | 394 | s->bus_name = mfree(s->bus_name); |
05e343b7 LP |
395 | } |
396 | ||
d8ccf5fd DM |
397 | s->bus_name_owner = mfree(s->bus_name_owner); |
398 | ||
064c5938 ZJS |
399 | s->usb_function_descriptors = mfree(s->usb_function_descriptors); |
400 | s->usb_function_strings = mfree(s->usb_function_strings); | |
401 | ||
4f2d528d | 402 | service_close_socket_fd(s); |
9d565427 | 403 | s->peer = socket_peer_unref(s->peer); |
4f2d528d | 404 | |
57020a3a | 405 | unit_ref_unset(&s->accept_socket); |
f976f3f6 | 406 | |
bb242b7b MO |
407 | service_stop_watchdog(s); |
408 | ||
718db961 | 409 | s->timer_event_source = sd_event_source_unref(s->timer_event_source); |
a354329f | 410 | |
7eb2a8a1 | 411 | service_release_resources(u); |
718db961 LP |
412 | } |
413 | ||
2339fc93 LP |
414 | static int on_fd_store_io(sd_event_source *e, int fd, uint32_t revents, void *userdata) { |
415 | ServiceFDStore *fs = userdata; | |
416 | ||
417 | assert(e); | |
418 | assert(fs); | |
419 | ||
420 | /* If we get either EPOLLHUP or EPOLLERR, it's time to remove this entry from the fd store */ | |
16f70d63 ZJS |
421 | log_unit_debug(UNIT(fs->service), |
422 | "Received %s on stored fd %d (%s), closing.", | |
423 | revents & EPOLLERR ? "EPOLLERR" : "EPOLLHUP", | |
424 | fs->fd, strna(fs->fdname)); | |
2339fc93 LP |
425 | service_fd_store_unlink(fs); |
426 | return 0; | |
427 | } | |
428 | ||
8dd4c05b | 429 | static int service_add_fd_store(Service *s, int fd, const char *name) { |
2339fc93 LP |
430 | ServiceFDStore *fs; |
431 | int r; | |
432 | ||
9021ff17 ZJS |
433 | /* fd is always consumed if we return >= 0 */ |
434 | ||
2339fc93 LP |
435 | assert(s); |
436 | assert(fd >= 0); | |
437 | ||
438 | if (s->n_fd_store >= s->n_fd_store_max) | |
b0924635 ZJS |
439 | return -EXFULL; /* Our store is full. |
440 | * Use this errno rather than E[NM]FILE to distinguish from | |
441 | * the case where systemd itself hits the file limit. */ | |
2339fc93 LP |
442 | |
443 | LIST_FOREACH(fd_store, fs, s->fd_store) { | |
444 | r = same_fd(fs->fd, fd); | |
445 | if (r < 0) | |
446 | return r; | |
447 | if (r > 0) { | |
2339fc93 | 448 | safe_close(fd); |
9021ff17 | 449 | return 0; /* fd already included */ |
2339fc93 LP |
450 | } |
451 | } | |
452 | ||
453 | fs = new0(ServiceFDStore, 1); | |
454 | if (!fs) | |
455 | return -ENOMEM; | |
456 | ||
457 | fs->fd = fd; | |
458 | fs->service = s; | |
8dd4c05b | 459 | fs->fdname = strdup(name ?: "stored"); |
17dec0f7 | 460 | if (!fs->fdname) { |
461 | free(fs); | |
8dd4c05b | 462 | return -ENOMEM; |
17dec0f7 | 463 | } |
2339fc93 LP |
464 | |
465 | r = sd_event_add_io(UNIT(s)->manager->event, &fs->event_source, fd, 0, on_fd_store_io, fs); | |
3ceb72e5 | 466 | if (r < 0 && r != -EPERM) { /* EPERM indicates fds that aren't pollable, which is OK */ |
8dd4c05b | 467 | free(fs->fdname); |
2339fc93 LP |
468 | free(fs); |
469 | return r; | |
3ceb72e5 LP |
470 | } else if (r >= 0) |
471 | (void) sd_event_source_set_description(fs->event_source, "service-fd-store"); | |
7dfbe2e3 | 472 | |
2339fc93 LP |
473 | LIST_PREPEND(fd_store, s->fd_store, fs); |
474 | s->n_fd_store++; | |
475 | ||
9021ff17 | 476 | return 1; /* fd newly stored */ |
2339fc93 LP |
477 | } |
478 | ||
8dd4c05b | 479 | static int service_add_fd_store_set(Service *s, FDSet *fds, const char *name) { |
2339fc93 LP |
480 | int r; |
481 | ||
482 | assert(s); | |
483 | ||
b0924635 | 484 | while (fdset_size(fds) > 0) { |
2339fc93 LP |
485 | _cleanup_close_ int fd = -1; |
486 | ||
487 | fd = fdset_steal_first(fds); | |
488 | if (fd < 0) | |
489 | break; | |
490 | ||
8dd4c05b | 491 | r = service_add_fd_store(s, fd, name); |
b0924635 ZJS |
492 | if (r == -EXFULL) |
493 | return log_unit_warning_errno(UNIT(s), r, | |
494 | "Cannot store more fds than FileDescriptorStoreMax=%u, closing remaining.", | |
495 | s->n_fd_store_max); | |
2339fc93 | 496 | if (r < 0) |
b0924635 | 497 | return log_unit_error_errno(UNIT(s), r, "Failed to add fd to store: %m"); |
9021ff17 | 498 | if (r > 0) |
16f70d63 | 499 | log_unit_debug(UNIT(s), "Added fd %u (%s) to fd store.", fd, strna(name)); |
9021ff17 | 500 | fd = -1; |
2339fc93 LP |
501 | } |
502 | ||
2339fc93 LP |
503 | return 0; |
504 | } | |
505 | ||
e78ee06d LP |
506 | static void service_remove_fd_store(Service *s, const char *name) { |
507 | ServiceFDStore *fs, *n; | |
508 | ||
509 | assert(s); | |
510 | assert(name); | |
511 | ||
512 | LIST_FOREACH_SAFE(fd_store, fs, n, s->fd_store) { | |
513 | if (!streq(fs->fdname, name)) | |
514 | continue; | |
515 | ||
516 | log_unit_debug(UNIT(s), "Got explicit request to remove fd %i (%s), closing.", fs->fd, name); | |
517 | service_fd_store_unlink(fs); | |
518 | } | |
519 | } | |
520 | ||
718db961 LP |
521 | static int service_arm_timer(Service *s, usec_t usec) { |
522 | int r; | |
523 | ||
524 | assert(s); | |
525 | ||
718db961 | 526 | if (s->timer_event_source) { |
36c16a7c | 527 | r = sd_event_source_set_time(s->timer_event_source, usec); |
718db961 LP |
528 | if (r < 0) |
529 | return r; | |
530 | ||
531 | return sd_event_source_set_enabled(s->timer_event_source, SD_EVENT_ONESHOT); | |
532 | } | |
533 | ||
36c16a7c LP |
534 | if (usec == USEC_INFINITY) |
535 | return 0; | |
536 | ||
7dfbe2e3 | 537 | r = sd_event_add_time( |
6a0f1f6d LP |
538 | UNIT(s)->manager->event, |
539 | &s->timer_event_source, | |
540 | CLOCK_MONOTONIC, | |
36c16a7c | 541 | usec, 0, |
6a0f1f6d | 542 | service_dispatch_timer, s); |
7dfbe2e3 TG |
543 | if (r < 0) |
544 | return r; | |
545 | ||
546 | (void) sd_event_source_set_description(s->timer_event_source, "service-timer"); | |
547 | ||
548 | return 0; | |
44d8db9e LP |
549 | } |
550 | ||
243b1432 LP |
551 | static int service_verify(Service *s) { |
552 | assert(s); | |
553 | ||
1124fe6f | 554 | if (UNIT(s)->load_state != UNIT_LOADED) |
243b1432 LP |
555 | return 0; |
556 | ||
96fb8242 | 557 | if (!s->exec_command[SERVICE_EXEC_START] && !s->exec_command[SERVICE_EXEC_STOP]) { |
f2341e0a | 558 | log_unit_error(UNIT(s), "Service lacks both ExecStart= and ExecStop= setting. Refusing."); |
243b1432 LP |
559 | return -EINVAL; |
560 | } | |
561 | ||
96fb8242 | 562 | if (s->type != SERVICE_ONESHOT && !s->exec_command[SERVICE_EXEC_START]) { |
f2341e0a | 563 | log_unit_error(UNIT(s), "Service has no ExecStart= setting, which is only allowed for Type=oneshot services. Refusing."); |
96fb8242 LP |
564 | return -EINVAL; |
565 | } | |
566 | ||
567 | if (!s->remain_after_exit && !s->exec_command[SERVICE_EXEC_START]) { | |
f2341e0a | 568 | log_unit_error(UNIT(s), "Service has no ExecStart= setting, which is only allowed for RemainAfterExit=yes services. Refusing."); |
96fb8242 LP |
569 | return -EINVAL; |
570 | } | |
571 | ||
572 | if (s->type != SERVICE_ONESHOT && s->exec_command[SERVICE_EXEC_START]->command_next) { | |
f2341e0a | 573 | log_unit_error(UNIT(s), "Service has more than one ExecStart= setting, which is only allowed for Type=oneshot services. Refusing."); |
6cf6bbc2 LP |
574 | return -EINVAL; |
575 | } | |
576 | ||
b0693d30 | 577 | if (s->type == SERVICE_ONESHOT && s->restart != SERVICE_RESTART_NO) { |
f2341e0a | 578 | log_unit_error(UNIT(s), "Service has Restart= setting other than no, which isn't allowed for Type=oneshot services. Refusing."); |
37520c1b LP |
579 | return -EINVAL; |
580 | } | |
581 | ||
55ebf98c | 582 | if (s->type == SERVICE_ONESHOT && !exit_status_set_is_empty(&s->restart_force_status)) { |
f2341e0a | 583 | log_unit_error(UNIT(s), "Service has RestartForceStatus= set, which isn't allowed for Type=oneshot services. Refusing."); |
b0693d30 MW |
584 | return -EINVAL; |
585 | } | |
586 | ||
05e343b7 | 587 | if (s->type == SERVICE_DBUS && !s->bus_name) { |
f2341e0a | 588 | log_unit_error(UNIT(s), "Service is of type D-Bus but no D-Bus service name has been specified. Refusing."); |
4d0e5dbd LP |
589 | return -EINVAL; |
590 | } | |
591 | ||
7e2668c6 | 592 | if (s->bus_name && s->type != SERVICE_DBUS) |
f2341e0a | 593 | log_unit_warning(UNIT(s), "Service has a D-Bus service name specified, but is not of type dbus. Ignoring."); |
7e2668c6 | 594 | |
3742095b | 595 | if (s->exec_context.pam_name && !IN_SET(s->kill_context.kill_mode, KILL_CONTROL_GROUP, KILL_MIXED)) { |
f2341e0a | 596 | log_unit_error(UNIT(s), "Service has PAM enabled. Kill mode must be set to 'control-group' or 'mixed'. Refusing."); |
05e343b7 LP |
597 | return -EINVAL; |
598 | } | |
599 | ||
6b7e5923 PS |
600 | if (s->usb_function_descriptors && !s->usb_function_strings) |
601 | log_unit_warning(UNIT(s), "Service has USBFunctionDescriptors= setting, but no USBFunctionStrings=. Ignoring."); | |
602 | ||
603 | if (!s->usb_function_descriptors && s->usb_function_strings) | |
604 | log_unit_warning(UNIT(s), "Service has USBFunctionStrings= setting, but no USBFunctionDescriptors=. Ignoring."); | |
605 | ||
36c16a7c LP |
606 | if (s->runtime_max_usec != USEC_INFINITY && s->type == SERVICE_ONESHOT) |
607 | log_unit_warning(UNIT(s), "MaxRuntimeSec= has no effect in combination with Type=oneshot. Ignoring."); | |
608 | ||
243b1432 LP |
609 | return 0; |
610 | } | |
611 | ||
a40eb732 LP |
612 | static int service_add_default_dependencies(Service *s) { |
613 | int r; | |
614 | ||
615 | assert(s); | |
616 | ||
45f06b34 LP |
617 | if (!UNIT(s)->default_dependencies) |
618 | return 0; | |
619 | ||
a40eb732 LP |
620 | /* Add a number of automatic dependencies useful for the |
621 | * majority of services. */ | |
622 | ||
463d0d15 | 623 | if (MANAGER_IS_SYSTEM(UNIT(s)->manager)) { |
cb4c247d LP |
624 | /* First, pull in the really early boot stuff, and |
625 | * require it, so that we fail if we can't acquire | |
626 | * it. */ | |
627 | ||
eef85c4a | 628 | r = unit_add_two_dependencies_by_name(UNIT(s), UNIT_AFTER, UNIT_REQUIRES, SPECIAL_SYSINIT_TARGET, NULL, true, UNIT_DEPENDENCY_DEFAULT); |
cb4c247d LP |
629 | if (r < 0) |
630 | return r; | |
631 | } else { | |
632 | ||
633 | /* In the --user instance there's no sysinit.target, | |
634 | * in that case require basic.target instead. */ | |
635 | ||
eef85c4a | 636 | r = unit_add_dependency_by_name(UNIT(s), UNIT_REQUIRES, SPECIAL_BASIC_TARGET, NULL, true, UNIT_DEPENDENCY_DEFAULT); |
cb4c247d LP |
637 | if (r < 0) |
638 | return r; | |
639 | } | |
640 | ||
641 | /* Second, if the rest of the base system is in the same | |
642 | * transaction, order us after it, but do not pull it in or | |
643 | * even require it. */ | |
eef85c4a | 644 | r = unit_add_dependency_by_name(UNIT(s), UNIT_AFTER, SPECIAL_BASIC_TARGET, NULL, true, UNIT_DEPENDENCY_DEFAULT); |
fccd44ec KS |
645 | if (r < 0) |
646 | return r; | |
a40eb732 | 647 | |
cb4c247d | 648 | /* Third, add us in for normal shutdown. */ |
eef85c4a | 649 | return unit_add_two_dependencies_by_name(UNIT(s), UNIT_BEFORE, UNIT_CONFLICTS, SPECIAL_SHUTDOWN_TARGET, NULL, true, UNIT_DEPENDENCY_DEFAULT); |
a40eb732 LP |
650 | } |
651 | ||
4dfc092a LP |
652 | static void service_fix_output(Service *s) { |
653 | assert(s); | |
654 | ||
08f3be7a LP |
655 | /* If nothing has been explicitly configured, patch default output in. If input is socket/tty we avoid this |
656 | * however, since in that case we want output to default to the same place as we read input from. */ | |
4dfc092a LP |
657 | |
658 | if (s->exec_context.std_error == EXEC_OUTPUT_INHERIT && | |
659 | s->exec_context.std_output == EXEC_OUTPUT_INHERIT && | |
660 | s->exec_context.std_input == EXEC_INPUT_NULL) | |
1124fe6f | 661 | s->exec_context.std_error = UNIT(s)->manager->default_std_error; |
4dfc092a LP |
662 | |
663 | if (s->exec_context.std_output == EXEC_OUTPUT_INHERIT && | |
664 | s->exec_context.std_input == EXEC_INPUT_NULL) | |
1124fe6f | 665 | s->exec_context.std_output = UNIT(s)->manager->default_std_output; |
08f3be7a LP |
666 | |
667 | if (s->exec_context.std_input == EXEC_INPUT_NULL && | |
668 | s->exec_context.stdin_data_size > 0) | |
669 | s->exec_context.std_input = EXEC_INPUT_DATA; | |
4dfc092a LP |
670 | } |
671 | ||
45f06b34 LP |
672 | static int service_setup_bus_name(Service *s) { |
673 | int r; | |
674 | ||
675 | assert(s); | |
676 | ||
677 | if (!s->bus_name) | |
678 | return 0; | |
679 | ||
eef85c4a | 680 | r = unit_add_dependency_by_name(UNIT(s), UNIT_REQUIRES, SPECIAL_DBUS_SOCKET, NULL, true, UNIT_DEPENDENCY_FILE); |
222953e8 DR |
681 | if (r < 0) |
682 | return log_unit_error_errno(UNIT(s), r, "Failed to add dependency on " SPECIAL_DBUS_SOCKET ": %m"); | |
45f06b34 | 683 | |
a132bef0 | 684 | /* We always want to be ordered against dbus.socket if both are in the transaction. */ |
eef85c4a | 685 | r = unit_add_dependency_by_name(UNIT(s), UNIT_AFTER, SPECIAL_DBUS_SOCKET, NULL, true, UNIT_DEPENDENCY_FILE); |
45f06b34 | 686 | if (r < 0) |
92bed462 | 687 | return log_unit_error_errno(UNIT(s), r, "Failed to add dependency on " SPECIAL_DBUS_SOCKET ": %m"); |
45f06b34 LP |
688 | |
689 | r = unit_watch_bus_name(UNIT(s), s->bus_name); | |
690 | if (r == -EEXIST) | |
691 | return log_unit_error_errno(UNIT(s), r, "Two services allocated for the same bus name %s, refusing operation.", s->bus_name); | |
692 | if (r < 0) | |
693 | return log_unit_error_errno(UNIT(s), r, "Cannot watch bus name %s: %m", s->bus_name); | |
694 | ||
695 | return 0; | |
696 | } | |
697 | ||
8545f7ce LP |
698 | static int service_add_extras(Service *s) { |
699 | int r; | |
700 | ||
701 | assert(s); | |
702 | ||
703 | if (s->type == _SERVICE_TYPE_INVALID) { | |
704 | /* Figure out a type automatically */ | |
705 | if (s->bus_name) | |
706 | s->type = SERVICE_DBUS; | |
707 | else if (s->exec_command[SERVICE_EXEC_START]) | |
708 | s->type = SERVICE_SIMPLE; | |
709 | else | |
710 | s->type = SERVICE_ONESHOT; | |
711 | } | |
712 | ||
713 | /* Oneshot services have disabled start timeout by default */ | |
714 | if (s->type == SERVICE_ONESHOT && !s->start_timeout_defined) | |
36c16a7c | 715 | s->timeout_start_usec = USEC_INFINITY; |
8545f7ce LP |
716 | |
717 | service_fix_output(s); | |
718 | ||
719 | r = unit_patch_contexts(UNIT(s)); | |
720 | if (r < 0) | |
721 | return r; | |
722 | ||
723 | r = unit_add_exec_dependencies(UNIT(s), &s->exec_context); | |
724 | if (r < 0) | |
725 | return r; | |
726 | ||
d79200e2 | 727 | r = unit_set_default_slice(UNIT(s)); |
8545f7ce LP |
728 | if (r < 0) |
729 | return r; | |
730 | ||
731 | if (s->type == SERVICE_NOTIFY && s->notify_access == NOTIFY_NONE) | |
732 | s->notify_access = NOTIFY_MAIN; | |
733 | ||
734 | if (s->watchdog_usec > 0 && s->notify_access == NOTIFY_NONE) | |
735 | s->notify_access = NOTIFY_MAIN; | |
736 | ||
45f06b34 LP |
737 | r = service_add_default_dependencies(s); |
738 | if (r < 0) | |
739 | return r; | |
8545f7ce | 740 | |
45f06b34 LP |
741 | r = service_setup_bus_name(s); |
742 | if (r < 0) | |
743 | return r; | |
8545f7ce LP |
744 | |
745 | return 0; | |
746 | } | |
747 | ||
e537352b | 748 | static int service_load(Unit *u) { |
e537352b | 749 | Service *s = SERVICE(u); |
8bb2d17d | 750 | int r; |
e537352b LP |
751 | |
752 | assert(s); | |
1e2e8133 | 753 | |
5cb5a6ff | 754 | /* Load a .service file */ |
c2756a68 LP |
755 | r = unit_load_fragment(u); |
756 | if (r < 0) | |
5cb5a6ff LP |
757 | return r; |
758 | ||
23a177ef | 759 | /* Still nothing found? Then let's give up */ |
ac155bb8 | 760 | if (u->load_state == UNIT_STUB) |
23a177ef | 761 | return -ENOENT; |
034c6ed7 | 762 | |
23a177ef | 763 | /* This is a new unit? Then let's add in some extras */ |
ac155bb8 | 764 | if (u->load_state == UNIT_LOADED) { |
c2756a68 LP |
765 | |
766 | /* We were able to load something, then let's add in | |
767 | * the dropin directories. */ | |
768 | r = unit_load_dropin(u); | |
769 | if (r < 0) | |
770 | return r; | |
771 | ||
8545f7ce LP |
772 | /* This is a new unit? Then let's add in some |
773 | * extras */ | |
774 | r = service_add_extras(s); | |
598459ce LP |
775 | if (r < 0) |
776 | return r; | |
8e274523 LP |
777 | } |
778 | ||
243b1432 | 779 | return service_verify(s); |
034c6ed7 LP |
780 | } |
781 | ||
87f0e418 | 782 | static void service_dump(Unit *u, FILE *f, const char *prefix) { |
f2e18ef1 YW |
783 | char buf_restart[FORMAT_TIMESPAN_MAX], buf_start[FORMAT_TIMESPAN_MAX], buf_stop[FORMAT_TIMESPAN_MAX]; |
784 | char buf_runtime[FORMAT_TIMESPAN_MAX], buf_watchdog[FORMAT_TIMESPAN_MAX]; | |
5cb5a6ff | 785 | ServiceExecCommand c; |
87f0e418 | 786 | Service *s = SERVICE(u); |
47be870b | 787 | const char *prefix2; |
5cb5a6ff LP |
788 | |
789 | assert(s); | |
790 | ||
4c940960 | 791 | prefix = strempty(prefix); |
63c372cb | 792 | prefix2 = strjoina(prefix, "\t"); |
44d8db9e | 793 | |
5cb5a6ff | 794 | fprintf(f, |
81a2b7ce | 795 | "%sService State: %s\n" |
f42806df LP |
796 | "%sResult: %s\n" |
797 | "%sReload Result: %s\n" | |
81a2b7ce | 798 | "%sPermissionsStartOnly: %s\n" |
8e274523 | 799 | "%sRootDirectoryStartOnly: %s\n" |
02ee865a | 800 | "%sRemainAfterExit: %s\n" |
3185a36b | 801 | "%sGuessMainPID: %s\n" |
c952c6ec | 802 | "%sType: %s\n" |
2cf3143a | 803 | "%sRestart: %s\n" |
308d72dc LP |
804 | "%sNotifyAccess: %s\n" |
805 | "%sNotifyState: %s\n", | |
81a2b7ce | 806 | prefix, service_state_to_string(s->state), |
f42806df LP |
807 | prefix, service_result_to_string(s->result), |
808 | prefix, service_result_to_string(s->reload_result), | |
81a2b7ce | 809 | prefix, yes_no(s->permissions_start_only), |
8e274523 | 810 | prefix, yes_no(s->root_directory_start_only), |
02ee865a | 811 | prefix, yes_no(s->remain_after_exit), |
3185a36b | 812 | prefix, yes_no(s->guess_main_pid), |
c952c6ec | 813 | prefix, service_type_to_string(s->type), |
2cf3143a | 814 | prefix, service_restart_to_string(s->restart), |
308d72dc LP |
815 | prefix, notify_access_to_string(s->notify_access), |
816 | prefix, notify_state_to_string(s->notify_state)); | |
5cb5a6ff | 817 | |
70123e68 LP |
818 | if (s->control_pid > 0) |
819 | fprintf(f, | |
ccd06097 ZJS |
820 | "%sControl PID: "PID_FMT"\n", |
821 | prefix, s->control_pid); | |
70123e68 LP |
822 | |
823 | if (s->main_pid > 0) | |
824 | fprintf(f, | |
ccd06097 | 825 | "%sMain PID: "PID_FMT"\n" |
6dfa5494 LP |
826 | "%sMain PID Known: %s\n" |
827 | "%sMain PID Alien: %s\n", | |
ccd06097 | 828 | prefix, s->main_pid, |
6dfa5494 LP |
829 | prefix, yes_no(s->main_pid_known), |
830 | prefix, yes_no(s->main_pid_alien)); | |
70123e68 | 831 | |
034c6ed7 LP |
832 | if (s->pid_file) |
833 | fprintf(f, | |
834 | "%sPIDFile: %s\n", | |
835 | prefix, s->pid_file); | |
836 | ||
05e343b7 LP |
837 | if (s->bus_name) |
838 | fprintf(f, | |
839 | "%sBusName: %s\n" | |
840 | "%sBus Name Good: %s\n", | |
841 | prefix, s->bus_name, | |
842 | prefix, yes_no(s->bus_name_good)); | |
843 | ||
9dfb64f8 ZJS |
844 | if (UNIT_ISSET(s->accept_socket)) |
845 | fprintf(f, | |
846 | "%sAccept Socket: %s\n", | |
847 | prefix, UNIT_DEREF(s->accept_socket)->id); | |
848 | ||
c9d41699 YW |
849 | fprintf(f, |
850 | "%sRestartSec: %s\n" | |
851 | "%sTimeoutStartSec: %s\n" | |
852 | "%sTimeoutStopSec: %s\n" | |
853 | "%sRuntimeMaxSec: %s\n" | |
854 | "%sWatchdogSec: %s\n", | |
855 | prefix, format_timespan(buf_restart, sizeof(buf_restart), s->restart_usec, USEC_PER_SEC), | |
856 | prefix, format_timespan(buf_start, sizeof(buf_start), s->timeout_start_usec, USEC_PER_SEC), | |
857 | prefix, format_timespan(buf_stop, sizeof(buf_stop), s->timeout_stop_usec, USEC_PER_SEC), | |
858 | prefix, format_timespan(buf_runtime, sizeof(buf_runtime), s->runtime_max_usec, USEC_PER_SEC), | |
859 | prefix, format_timespan(buf_watchdog, sizeof(buf_watchdog), s->watchdog_usec, USEC_PER_SEC)); | |
860 | ||
4819ff03 | 861 | kill_context_dump(&s->kill_context, f, prefix); |
5cb5a6ff LP |
862 | exec_context_dump(&s->exec_context, f, prefix); |
863 | ||
e537352b | 864 | for (c = 0; c < _SERVICE_EXEC_COMMAND_MAX; c++) { |
5cb5a6ff | 865 | |
44d8db9e LP |
866 | if (!s->exec_command[c]) |
867 | continue; | |
868 | ||
40d50879 | 869 | fprintf(f, "%s-> %s:\n", |
94f04347 | 870 | prefix, service_exec_command_to_string(c)); |
44d8db9e LP |
871 | |
872 | exec_command_dump_list(s->exec_command[c], f, prefix2); | |
5cb5a6ff | 873 | } |
44d8db9e | 874 | |
8c47c732 LP |
875 | if (s->status_text) |
876 | fprintf(f, "%sStatus Text: %s\n", | |
877 | prefix, s->status_text); | |
a354329f | 878 | |
ece174c5 | 879 | if (s->n_fd_store_max > 0) |
a354329f LP |
880 | fprintf(f, |
881 | "%sFile Descriptor Store Max: %u\n" | |
882 | "%sFile Descriptor Store Current: %u\n", | |
883 | prefix, s->n_fd_store_max, | |
884 | prefix, s->n_fd_store); | |
18f573aa LP |
885 | |
886 | cgroup_context_dump(&s->cgroup_context, f, prefix); | |
5cb5a6ff LP |
887 | } |
888 | ||
db256aab LP |
889 | static int service_is_suitable_main_pid(Service *s, pid_t pid, int prio) { |
890 | Unit *owner; | |
891 | ||
892 | assert(s); | |
893 | assert(pid_is_valid(pid)); | |
894 | ||
895 | /* Checks whether the specified PID is suitable as main PID for this service. returns negative if not, 0 if the | |
896 | * PID is questionnable but should be accepted if the source of configuration is trusted. > 0 if the PID is | |
897 | * good */ | |
898 | ||
899 | if (pid == getpid_cached() || pid == 1) { | |
900 | log_unit_full(UNIT(s), prio, 0, "New main PID "PID_FMT" is the manager, refusing.", pid); | |
901 | return -EPERM; | |
902 | } | |
903 | ||
904 | if (pid == s->control_pid) { | |
905 | log_unit_full(UNIT(s), prio, 0, "New main PID "PID_FMT" is the control process, refusing.", pid); | |
906 | return -EPERM; | |
907 | } | |
908 | ||
909 | if (!pid_is_alive(pid)) { | |
910 | log_unit_full(UNIT(s), prio, 0, "New main PID "PID_FMT" does not exist or is a zombie.", pid); | |
911 | return -ESRCH; | |
912 | } | |
913 | ||
914 | owner = manager_get_unit_by_pid(UNIT(s)->manager, pid); | |
915 | if (owner == UNIT(s)) { | |
916 | log_unit_debug(UNIT(s), "New main PID "PID_FMT" belongs to service, we are happy.", pid); | |
917 | return 1; /* Yay, it's definitely a good PID */ | |
918 | } | |
919 | ||
920 | return 0; /* Hmm it's a suspicious PID, let's accept it if configuration source is trusted */ | |
921 | } | |
922 | ||
c5419d42 | 923 | static int service_load_pid_file(Service *s, bool may_warn) { |
db256aab | 924 | char procfs[STRLEN("/proc/self/fd/") + DECIMAL_STR_MAX(int)]; |
73969ab6 | 925 | bool questionable_pid_file = false; |
7fd1b19b | 926 | _cleanup_free_ char *k = NULL; |
db256aab LP |
927 | _cleanup_close_ int fd = -1; |
928 | int r, prio; | |
5925dd3c | 929 | pid_t pid; |
034c6ed7 LP |
930 | |
931 | assert(s); | |
932 | ||
034c6ed7 | 933 | if (!s->pid_file) |
13230d5d | 934 | return -ENOENT; |
034c6ed7 | 935 | |
db256aab LP |
936 | prio = may_warn ? LOG_INFO : LOG_DEBUG; |
937 | ||
938 | fd = chase_symlinks(s->pid_file, NULL, CHASE_OPEN|CHASE_SAFE, NULL); | |
73969ab6 LP |
939 | if (fd == -EPERM) { |
940 | log_unit_full(UNIT(s), LOG_DEBUG, fd, "Permission denied while opening PID file or potentially unsafe symlink chain, will now retry with relaxed checks: %s", s->pid_file); | |
941 | ||
942 | questionable_pid_file = true; | |
943 | ||
944 | fd = chase_symlinks(s->pid_file, NULL, CHASE_OPEN, NULL); | |
945 | } | |
db256aab LP |
946 | if (fd < 0) |
947 | return log_unit_full(UNIT(s), prio, fd, "Can't open PID file %s (yet?) after %s: %m", s->pid_file, service_state_to_string(s->state)); | |
948 | ||
949 | /* Let's read the PID file now that we chased it down. But we need to convert the O_PATH fd chase_symlinks() returned us into a proper fd first. */ | |
950 | xsprintf(procfs, "/proc/self/fd/%i", fd); | |
951 | r = read_one_line_file(procfs, &k); | |
952 | if (r < 0) | |
953 | return log_unit_error_errno(UNIT(s), r, "Can't convert PID files %s O_PATH file descriptor to proper file descriptor: %m", s->pid_file); | |
034c6ed7 | 954 | |
5925dd3c | 955 | r = parse_pid(k, &pid); |
db256aab LP |
956 | if (r < 0) |
957 | return log_unit_full(UNIT(s), prio, r, "Failed to parse PID from file %s: %m", s->pid_file); | |
958 | ||
959 | if (s->main_pid_known && pid == s->main_pid) | |
960 | return 0; | |
961 | ||
962 | r = service_is_suitable_main_pid(s, pid, prio); | |
963 | if (r < 0) | |
5925dd3c | 964 | return r; |
db256aab LP |
965 | if (r == 0) { |
966 | struct stat st; | |
406eaf93 | 967 | |
73969ab6 LP |
968 | if (questionable_pid_file) { |
969 | log_unit_error(UNIT(s), "Refusing to accept PID outside of service control group, acquired through unsafe symlink chain: %s", s->pid_file); | |
970 | return -EPERM; | |
971 | } | |
972 | ||
db256aab LP |
973 | /* Hmm, it's not clear if the new main PID is safe. Let's allow this if the PID file is owned by root */ |
974 | ||
975 | if (fstat(fd, &st) < 0) | |
976 | return log_unit_error_errno(UNIT(s), errno, "Failed to fstat() PID file O_PATH fd: %m"); | |
977 | ||
978 | if (st.st_uid != 0) { | |
979 | log_unit_error(UNIT(s), "New main PID "PID_FMT" does not belong to service, and PID file is not owned by root. Refusing.", pid); | |
980 | return -EPERM; | |
981 | } | |
982 | ||
983 | log_unit_debug(UNIT(s), "New main PID "PID_FMT" does not belong to service, but we'll accept it since PID file is owned by root.", pid); | |
e10c9985 YS |
984 | } |
985 | ||
db01f8b3 | 986 | if (s->main_pid_known) { |
f2341e0a | 987 | log_unit_debug(UNIT(s), "Main PID changing: "PID_FMT" -> "PID_FMT, s->main_pid, pid); |
8bb2d17d | 988 | |
db01f8b3 MS |
989 | service_unwatch_main_pid(s); |
990 | s->main_pid_known = false; | |
3a111838 | 991 | } else |
f2341e0a | 992 | log_unit_debug(UNIT(s), "Main PID loaded: "PID_FMT, pid); |
db01f8b3 | 993 | |
117dcc57 ZJS |
994 | r = service_set_main_pid(s, pid); |
995 | if (r < 0) | |
16f6025e LP |
996 | return r; |
997 | ||
117dcc57 | 998 | r = unit_watch_pid(UNIT(s), pid); |
e8b509d3 LP |
999 | if (r < 0) /* FIXME: we need to do something here */ |
1000 | return log_unit_warning_errno(UNIT(s), r, "Failed to watch PID "PID_FMT" for service: %m", pid); | |
034c6ed7 | 1001 | |
db256aab | 1002 | return 1; |
034c6ed7 LP |
1003 | } |
1004 | ||
783e05d6 | 1005 | static void service_search_main_pid(Service *s) { |
efdb0237 | 1006 | pid_t pid = 0; |
4fbf50b3 LP |
1007 | int r; |
1008 | ||
1009 | assert(s); | |
1010 | ||
3185a36b LP |
1011 | /* If we know it anyway, don't ever fallback to unreliable |
1012 | * heuristics */ | |
4fbf50b3 | 1013 | if (s->main_pid_known) |
783e05d6 | 1014 | return; |
4fbf50b3 | 1015 | |
3185a36b | 1016 | if (!s->guess_main_pid) |
783e05d6 | 1017 | return; |
3185a36b | 1018 | |
4fbf50b3 LP |
1019 | assert(s->main_pid <= 0); |
1020 | ||
783e05d6 ZJS |
1021 | if (unit_search_main_pid(UNIT(s), &pid) < 0) |
1022 | return; | |
4fbf50b3 | 1023 | |
f2341e0a | 1024 | log_unit_debug(UNIT(s), "Main PID guessed: "PID_FMT, pid); |
783e05d6 ZJS |
1025 | if (service_set_main_pid(s, pid) < 0) |
1026 | return; | |
4fbf50b3 | 1027 | |
117dcc57 | 1028 | r = unit_watch_pid(UNIT(s), pid); |
783e05d6 | 1029 | if (r < 0) |
4fbf50b3 | 1030 | /* FIXME: we need to do something here */ |
f2341e0a | 1031 | log_unit_warning_errno(UNIT(s), r, "Failed to watch PID "PID_FMT" from: %m", pid); |
4fbf50b3 LP |
1032 | } |
1033 | ||
034c6ed7 LP |
1034 | static void service_set_state(Service *s, ServiceState state) { |
1035 | ServiceState old_state; | |
e056b01d | 1036 | const UnitActiveState *table; |
842129f5 | 1037 | |
5cb5a6ff LP |
1038 | assert(s); |
1039 | ||
e056b01d LP |
1040 | table = s->type == SERVICE_IDLE ? state_translation_table_idle : state_translation_table; |
1041 | ||
034c6ed7 | 1042 | old_state = s->state; |
5cb5a6ff | 1043 | s->state = state; |
034c6ed7 | 1044 | |
3a111838 MS |
1045 | service_unwatch_pid_file(s); |
1046 | ||
842129f5 LP |
1047 | if (!IN_SET(state, |
1048 | SERVICE_START_PRE, SERVICE_START, SERVICE_START_POST, | |
36c16a7c | 1049 | SERVICE_RUNNING, |
842129f5 | 1050 | SERVICE_RELOAD, |
57614eb1 | 1051 | SERVICE_STOP, SERVICE_STOP_SIGABRT, SERVICE_STOP_SIGTERM, SERVICE_STOP_SIGKILL, SERVICE_STOP_POST, |
842129f5 LP |
1052 | SERVICE_FINAL_SIGTERM, SERVICE_FINAL_SIGKILL, |
1053 | SERVICE_AUTO_RESTART)) | |
718db961 | 1054 | s->timer_event_source = sd_event_source_unref(s->timer_event_source); |
034c6ed7 | 1055 | |
842129f5 LP |
1056 | if (!IN_SET(state, |
1057 | SERVICE_START, SERVICE_START_POST, | |
1058 | SERVICE_RUNNING, SERVICE_RELOAD, | |
57614eb1 | 1059 | SERVICE_STOP, SERVICE_STOP_SIGABRT, SERVICE_STOP_SIGTERM, SERVICE_STOP_SIGKILL, SERVICE_STOP_POST, |
bf108e55 | 1060 | SERVICE_FINAL_SIGTERM, SERVICE_FINAL_SIGKILL)) { |
5e94833f | 1061 | service_unwatch_main_pid(s); |
867b3b7d LP |
1062 | s->main_command = NULL; |
1063 | } | |
034c6ed7 | 1064 | |
842129f5 LP |
1065 | if (!IN_SET(state, |
1066 | SERVICE_START_PRE, SERVICE_START, SERVICE_START_POST, | |
1067 | SERVICE_RELOAD, | |
57614eb1 | 1068 | SERVICE_STOP, SERVICE_STOP_SIGABRT, SERVICE_STOP_SIGTERM, SERVICE_STOP_SIGKILL, SERVICE_STOP_POST, |
842129f5 | 1069 | SERVICE_FINAL_SIGTERM, SERVICE_FINAL_SIGKILL)) { |
5e94833f | 1070 | service_unwatch_control_pid(s); |
034c6ed7 | 1071 | s->control_command = NULL; |
a16e1123 | 1072 | s->control_command_id = _SERVICE_EXEC_COMMAND_INVALID; |
e537352b | 1073 | } |
034c6ed7 | 1074 | |
a911bb9a LP |
1075 | if (IN_SET(state, SERVICE_DEAD, SERVICE_FAILED, SERVICE_AUTO_RESTART)) |
1076 | unit_unwatch_all_pids(UNIT(s)); | |
1077 | ||
842129f5 LP |
1078 | if (!IN_SET(state, |
1079 | SERVICE_START_PRE, SERVICE_START, SERVICE_START_POST, | |
1080 | SERVICE_RUNNING, SERVICE_RELOAD, | |
57614eb1 LP |
1081 | SERVICE_STOP, SERVICE_STOP_SIGABRT, SERVICE_STOP_SIGTERM, SERVICE_STOP_SIGKILL, SERVICE_STOP_POST, |
1082 | SERVICE_FINAL_SIGTERM, SERVICE_FINAL_SIGKILL) && | |
5cc3985e | 1083 | !(state == SERVICE_DEAD && UNIT(s)->job)) |
4f2d528d LP |
1084 | service_close_socket_fd(s); |
1085 | ||
7596e9e1 | 1086 | if (!IN_SET(state, SERVICE_START_POST, SERVICE_RUNNING, SERVICE_RELOAD)) |
a6927d7f MO |
1087 | service_stop_watchdog(s); |
1088 | ||
f6023656 LP |
1089 | /* For the inactive states unit_notify() will trim the cgroup, |
1090 | * but for exit we have to do that ourselves... */ | |
2c289ea8 | 1091 | if (state == SERVICE_EXITED && !MANAGER_IS_RELOADING(UNIT(s)->manager)) |
efdb0237 | 1092 | unit_prune_cgroup(UNIT(s)); |
f6023656 | 1093 | |
e537352b | 1094 | if (old_state != state) |
f2341e0a | 1095 | log_unit_debug(UNIT(s), "Changed %s -> %s", service_state_to_string(old_state), service_state_to_string(state)); |
acbb0225 | 1096 | |
e056b01d | 1097 | unit_notify(UNIT(s), table[old_state], table[state], s->reload_result == SERVICE_SUCCESS); |
034c6ed7 LP |
1098 | } |
1099 | ||
36c16a7c LP |
1100 | static usec_t service_coldplug_timeout(Service *s) { |
1101 | assert(s); | |
1102 | ||
1103 | switch (s->deserialized_state) { | |
1104 | ||
1105 | case SERVICE_START_PRE: | |
1106 | case SERVICE_START: | |
1107 | case SERVICE_START_POST: | |
1108 | case SERVICE_RELOAD: | |
1109 | return usec_add(UNIT(s)->state_change_timestamp.monotonic, s->timeout_start_usec); | |
1110 | ||
1111 | case SERVICE_RUNNING: | |
1112 | return usec_add(UNIT(s)->active_enter_timestamp.monotonic, s->runtime_max_usec); | |
1113 | ||
1114 | case SERVICE_STOP: | |
1115 | case SERVICE_STOP_SIGABRT: | |
1116 | case SERVICE_STOP_SIGTERM: | |
1117 | case SERVICE_STOP_SIGKILL: | |
1118 | case SERVICE_STOP_POST: | |
1119 | case SERVICE_FINAL_SIGTERM: | |
1120 | case SERVICE_FINAL_SIGKILL: | |
1121 | return usec_add(UNIT(s)->state_change_timestamp.monotonic, s->timeout_stop_usec); | |
1122 | ||
1123 | case SERVICE_AUTO_RESTART: | |
1124 | return usec_add(UNIT(s)->inactive_enter_timestamp.monotonic, s->restart_usec); | |
1125 | ||
1126 | default: | |
1127 | return USEC_INFINITY; | |
1128 | } | |
1129 | } | |
1130 | ||
be847e82 | 1131 | static int service_coldplug(Unit *u) { |
a16e1123 LP |
1132 | Service *s = SERVICE(u); |
1133 | int r; | |
1134 | ||
1135 | assert(s); | |
1136 | assert(s->state == SERVICE_DEAD); | |
1137 | ||
930d2838 LP |
1138 | if (s->deserialized_state == s->state) |
1139 | return 0; | |
6c12b52e | 1140 | |
36c16a7c LP |
1141 | r = service_arm_timer(s, service_coldplug_timeout(s)); |
1142 | if (r < 0) | |
1143 | return r; | |
a911bb9a | 1144 | |
930d2838 LP |
1145 | if (s->main_pid > 0 && |
1146 | pid_is_unwaited(s->main_pid) && | |
9acac212 | 1147 | (IN_SET(s->deserialized_state, |
930d2838 LP |
1148 | SERVICE_START, SERVICE_START_POST, |
1149 | SERVICE_RUNNING, SERVICE_RELOAD, | |
1150 | SERVICE_STOP, SERVICE_STOP_SIGABRT, SERVICE_STOP_SIGTERM, SERVICE_STOP_SIGKILL, SERVICE_STOP_POST, | |
1151 | SERVICE_FINAL_SIGTERM, SERVICE_FINAL_SIGKILL))) { | |
1152 | r = unit_watch_pid(UNIT(s), s->main_pid); | |
1153 | if (r < 0) | |
1154 | return r; | |
1155 | } | |
bb242b7b | 1156 | |
930d2838 LP |
1157 | if (s->control_pid > 0 && |
1158 | pid_is_unwaited(s->control_pid) && | |
1159 | IN_SET(s->deserialized_state, | |
1160 | SERVICE_START_PRE, SERVICE_START, SERVICE_START_POST, | |
1161 | SERVICE_RELOAD, | |
1162 | SERVICE_STOP, SERVICE_STOP_SIGABRT, SERVICE_STOP_SIGTERM, SERVICE_STOP_SIGKILL, SERVICE_STOP_POST, | |
1163 | SERVICE_FINAL_SIGTERM, SERVICE_FINAL_SIGKILL)) { | |
1164 | r = unit_watch_pid(UNIT(s), s->control_pid); | |
1165 | if (r < 0) | |
1166 | return r; | |
a16e1123 | 1167 | } |
92c1622e | 1168 | |
930d2838 LP |
1169 | if (!IN_SET(s->deserialized_state, SERVICE_DEAD, SERVICE_FAILED, SERVICE_AUTO_RESTART)) |
1170 | unit_watch_all_pids(UNIT(s)); | |
1171 | ||
1172 | if (IN_SET(s->deserialized_state, SERVICE_START_POST, SERVICE_RUNNING, SERVICE_RELOAD)) | |
1173 | service_start_watchdog(s); | |
1174 | ||
e8a565cb | 1175 | if (!IN_SET(s->deserialized_state, SERVICE_DEAD, SERVICE_FAILED, SERVICE_AUTO_RESTART)) { |
29206d46 | 1176 | (void) unit_setup_dynamic_creds(u); |
e8a565cb YW |
1177 | (void) unit_setup_exec_runtime(u); |
1178 | } | |
29206d46 | 1179 | |
3ebcd323 ZJS |
1180 | if (UNIT_ISSET(s->accept_socket)) { |
1181 | Socket* socket = SOCKET(UNIT_DEREF(s->accept_socket)); | |
1182 | ||
1183 | if (socket->max_connections_per_source > 0) { | |
1184 | SocketPeer *peer; | |
1185 | ||
1186 | /* Make a best-effort attempt at bumping the connection count */ | |
1187 | if (socket_acquire_peer(socket, s->socket_fd, &peer) > 0) { | |
1188 | socket_peer_unref(s->peer); | |
1189 | s->peer = peer; | |
1190 | } | |
1191 | } | |
1192 | } | |
1193 | ||
930d2838 | 1194 | service_set_state(s, s->deserialized_state); |
a16e1123 LP |
1195 | return 0; |
1196 | } | |
1197 | ||
4c47affc FB |
1198 | static int service_collect_fds(Service *s, |
1199 | int **fds, | |
1200 | char ***fd_names, | |
1201 | unsigned *n_storage_fds, | |
1202 | unsigned *n_socket_fds) { | |
1203 | ||
8dd4c05b | 1204 | _cleanup_strv_free_ char **rfd_names = NULL; |
a354329f | 1205 | _cleanup_free_ int *rfds = NULL; |
4c47affc FB |
1206 | unsigned rn_socket_fds = 0, rn_storage_fds = 0; |
1207 | int r; | |
44d8db9e LP |
1208 | |
1209 | assert(s); | |
1210 | assert(fds); | |
8dd4c05b | 1211 | assert(fd_names); |
9b141911 | 1212 | assert(n_socket_fds); |
44d8db9e | 1213 | |
8dd4c05b | 1214 | if (s->socket_fd >= 0) { |
6cf6bbc2 | 1215 | |
8dd4c05b | 1216 | /* Pass the per-connection socket */ |
57020a3a | 1217 | |
8dd4c05b LP |
1218 | rfds = new(int, 1); |
1219 | if (!rfds) | |
1220 | return -ENOMEM; | |
1221 | rfds[0] = s->socket_fd; | |
57020a3a | 1222 | |
8dd4c05b LP |
1223 | rfd_names = strv_new("connection", NULL); |
1224 | if (!rfd_names) | |
1225 | return -ENOMEM; | |
44d8db9e | 1226 | |
4c47affc | 1227 | rn_socket_fds = 1; |
8dd4c05b LP |
1228 | } else { |
1229 | Iterator i; | |
eef85c4a | 1230 | void *v; |
8dd4c05b | 1231 | Unit *u; |
44d8db9e | 1232 | |
8dd4c05b | 1233 | /* Pass all our configured sockets for singleton services */ |
44d8db9e | 1234 | |
eef85c4a | 1235 | HASHMAP_FOREACH_KEY(v, u, UNIT(s)->dependencies[UNIT_TRIGGERED_BY], i) { |
8dd4c05b LP |
1236 | _cleanup_free_ int *cfds = NULL; |
1237 | Socket *sock; | |
1238 | int cn_fds; | |
44d8db9e | 1239 | |
8dd4c05b LP |
1240 | if (u->type != UNIT_SOCKET) |
1241 | continue; | |
44d8db9e | 1242 | |
8dd4c05b | 1243 | sock = SOCKET(u); |
a354329f | 1244 | |
8dd4c05b LP |
1245 | cn_fds = socket_collect_fds(sock, &cfds); |
1246 | if (cn_fds < 0) | |
1247 | return cn_fds; | |
44d8db9e | 1248 | |
8dd4c05b LP |
1249 | if (cn_fds <= 0) |
1250 | continue; | |
79c7626d | 1251 | |
8dd4c05b LP |
1252 | if (!rfds) { |
1253 | rfds = cfds; | |
4c47affc | 1254 | rn_socket_fds = cn_fds; |
8dd4c05b LP |
1255 | |
1256 | cfds = NULL; | |
1257 | } else { | |
1258 | int *t; | |
1259 | ||
62d74c78 | 1260 | t = reallocarray(rfds, rn_socket_fds + cn_fds, sizeof(int)); |
8dd4c05b LP |
1261 | if (!t) |
1262 | return -ENOMEM; | |
1263 | ||
4c47affc | 1264 | memcpy(t + rn_socket_fds, cfds, cn_fds * sizeof(int)); |
8dd4c05b LP |
1265 | |
1266 | rfds = t; | |
4c47affc | 1267 | rn_socket_fds += cn_fds; |
8dd4c05b LP |
1268 | } |
1269 | ||
1270 | r = strv_extend_n(&rfd_names, socket_fdname(sock), cn_fds); | |
1271 | if (r < 0) | |
1272 | return r; | |
44d8db9e LP |
1273 | } |
1274 | } | |
1275 | ||
a354329f LP |
1276 | if (s->n_fd_store > 0) { |
1277 | ServiceFDStore *fs; | |
4c47affc | 1278 | unsigned n_fds; |
8dd4c05b | 1279 | char **nl; |
a354329f LP |
1280 | int *t; |
1281 | ||
62d74c78 | 1282 | t = reallocarray(rfds, rn_socket_fds + s->n_fd_store, sizeof(int)); |
a354329f LP |
1283 | if (!t) |
1284 | return -ENOMEM; | |
1285 | ||
1286 | rfds = t; | |
8dd4c05b | 1287 | |
62d74c78 | 1288 | nl = reallocarray(rfd_names, rn_socket_fds + s->n_fd_store + 1, sizeof(char *)); |
8dd4c05b LP |
1289 | if (!nl) |
1290 | return -ENOMEM; | |
1291 | ||
1292 | rfd_names = nl; | |
4c47affc | 1293 | n_fds = rn_socket_fds; |
8dd4c05b LP |
1294 | |
1295 | LIST_FOREACH(fd_store, fs, s->fd_store) { | |
4c47affc FB |
1296 | rfds[n_fds] = fs->fd; |
1297 | rfd_names[n_fds] = strdup(strempty(fs->fdname)); | |
1298 | if (!rfd_names[n_fds]) | |
8dd4c05b LP |
1299 | return -ENOMEM; |
1300 | ||
4c47affc FB |
1301 | rn_storage_fds++; |
1302 | n_fds++; | |
8dd4c05b LP |
1303 | } |
1304 | ||
4c47affc | 1305 | rfd_names[n_fds] = NULL; |
a354329f LP |
1306 | } |
1307 | ||
44d8db9e | 1308 | *fds = rfds; |
8dd4c05b | 1309 | *fd_names = rfd_names; |
9b141911 | 1310 | *n_socket_fds = rn_socket_fds; |
4c47affc | 1311 | *n_storage_fds = rn_storage_fds; |
3e33402a | 1312 | |
a354329f | 1313 | rfds = NULL; |
8dd4c05b | 1314 | rfd_names = NULL; |
79c7626d | 1315 | |
4c47affc | 1316 | return 0; |
44d8db9e LP |
1317 | } |
1318 | ||
6375bd20 JW |
1319 | static bool service_exec_needs_notify_socket(Service *s, ExecFlags flags) { |
1320 | assert(s); | |
1321 | ||
1322 | /* Notifications are accepted depending on the process and | |
1323 | * the access setting of the service: | |
1324 | * process: \ access: NONE MAIN EXEC ALL | |
1325 | * main no yes yes yes | |
1326 | * control no no yes yes | |
1327 | * other (forked) no no no yes */ | |
1328 | ||
1329 | if (flags & EXEC_IS_CONTROL) | |
1330 | /* A control process */ | |
1331 | return IN_SET(s->notify_access, NOTIFY_EXEC, NOTIFY_ALL); | |
1332 | ||
1333 | /* We only spawn main processes and control processes, so any | |
1334 | * process that is not a control process is a main process */ | |
1335 | return s->notify_access != NOTIFY_NONE; | |
1336 | } | |
1337 | ||
81a2b7ce LP |
1338 | static int service_spawn( |
1339 | Service *s, | |
1340 | ExecCommand *c, | |
21b2ce39 | 1341 | usec_t timeout, |
c39f1ce2 | 1342 | ExecFlags flags, |
81a2b7ce LP |
1343 | pid_t *_pid) { |
1344 | ||
9fa95f85 | 1345 | ExecParameters exec_params = { |
c39f1ce2 LP |
1346 | .flags = flags, |
1347 | .stdin_fd = -1, | |
1348 | .stdout_fd = -1, | |
1349 | .stderr_fd = -1, | |
9fa95f85 | 1350 | }; |
3c7416b6 LP |
1351 | _cleanup_strv_free_ char **final_env = NULL, **our_env = NULL, **fd_names = NULL; |
1352 | unsigned n_storage_fds = 0, n_socket_fds = 0, n_env = 0; | |
1353 | _cleanup_free_ int *fds = NULL; | |
1354 | pid_t pid; | |
8dd4c05b LP |
1355 | int r; |
1356 | ||
034c6ed7 LP |
1357 | assert(s); |
1358 | assert(c); | |
1359 | assert(_pid); | |
1360 | ||
3c7416b6 LP |
1361 | r = unit_prepare_exec(UNIT(s)); |
1362 | if (r < 0) | |
1363 | return r; | |
1364 | ||
9c1a61ad LP |
1365 | if (flags & EXEC_IS_CONTROL) { |
1366 | /* If this is a control process, mask the permissions/chroot application if this is requested. */ | |
1367 | if (s->permissions_start_only) | |
1703fa41 | 1368 | exec_params.flags &= ~EXEC_APPLY_SANDBOXING; |
9c1a61ad LP |
1369 | if (s->root_directory_start_only) |
1370 | exec_params.flags &= ~EXEC_APPLY_CHROOT; | |
1371 | } | |
1372 | ||
c39f1ce2 | 1373 | if ((flags & EXEC_PASS_FDS) || |
6cf6bbc2 LP |
1374 | s->exec_context.std_input == EXEC_INPUT_SOCKET || |
1375 | s->exec_context.std_output == EXEC_OUTPUT_SOCKET || | |
1376 | s->exec_context.std_error == EXEC_OUTPUT_SOCKET) { | |
1377 | ||
4c47affc | 1378 | r = service_collect_fds(s, &fds, &fd_names, &n_storage_fds, &n_socket_fds); |
8dd4c05b | 1379 | if (r < 0) |
36c16a7c | 1380 | return r; |
6cf6bbc2 | 1381 | |
4c47affc | 1382 | log_unit_debug(UNIT(s), "Passing %i fds to service", n_storage_fds + n_socket_fds); |
4f2d528d | 1383 | } |
44d8db9e | 1384 | |
36c16a7c LP |
1385 | r = service_arm_timer(s, usec_add(now(CLOCK_MONOTONIC), timeout)); |
1386 | if (r < 0) | |
1387 | return r; | |
034c6ed7 | 1388 | |
136dc4c4 | 1389 | our_env = new0(char*, 9); |
36c16a7c LP |
1390 | if (!our_env) |
1391 | return -ENOMEM; | |
c952c6ec | 1392 | |
6375bd20 | 1393 | if (service_exec_needs_notify_socket(s, flags)) |
36c16a7c LP |
1394 | if (asprintf(our_env + n_env++, "NOTIFY_SOCKET=%s", UNIT(s)->manager->notify_socket) < 0) |
1395 | return -ENOMEM; | |
c952c6ec | 1396 | |
2105e76a | 1397 | if (s->main_pid > 0) |
36c16a7c LP |
1398 | if (asprintf(our_env + n_env++, "MAINPID="PID_FMT, s->main_pid) < 0) |
1399 | return -ENOMEM; | |
2105e76a | 1400 | |
c39f1ce2 | 1401 | if (MANAGER_IS_USER(UNIT(s)->manager)) |
df0ff127 | 1402 | if (asprintf(our_env + n_env++, "MANAGERPID="PID_FMT, getpid_cached()) < 0) |
36c16a7c | 1403 | return -ENOMEM; |
97ae63e2 | 1404 | |
8dd4c05b | 1405 | if (s->socket_fd >= 0) { |
3b1c5241 SL |
1406 | union sockaddr_union sa; |
1407 | socklen_t salen = sizeof(sa); | |
1408 | ||
f56e7bfe LP |
1409 | /* If this is a per-connection service instance, let's set $REMOTE_ADDR and $REMOTE_PORT to something |
1410 | * useful. Note that we do this only when we are still connected at this point in time, which we might | |
1411 | * very well not be. Hence we ignore all errors when retrieving peer information (as that might result | |
1412 | * in ENOTCONN), and just use whate we can use. */ | |
f2dbd059 | 1413 | |
f56e7bfe LP |
1414 | if (getpeername(s->socket_fd, &sa.sa, &salen) >= 0 && |
1415 | IN_SET(sa.sa.sa_family, AF_INET, AF_INET6, AF_VSOCK)) { | |
3b1c5241 | 1416 | |
3b1c5241 SL |
1417 | _cleanup_free_ char *addr = NULL; |
1418 | char *t; | |
882ac6e7 | 1419 | unsigned port; |
3b1c5241 SL |
1420 | |
1421 | r = sockaddr_pretty(&sa.sa, salen, true, false, &addr); | |
1422 | if (r < 0) | |
36c16a7c | 1423 | return r; |
3b1c5241 SL |
1424 | |
1425 | t = strappend("REMOTE_ADDR=", addr); | |
36c16a7c LP |
1426 | if (!t) |
1427 | return -ENOMEM; | |
3b1c5241 SL |
1428 | our_env[n_env++] = t; |
1429 | ||
882ac6e7 SH |
1430 | r = sockaddr_port(&sa.sa, &port); |
1431 | if (r < 0) | |
1432 | return r; | |
3b1c5241 | 1433 | |
36c16a7c LP |
1434 | if (asprintf(&t, "REMOTE_PORT=%u", port) < 0) |
1435 | return -ENOMEM; | |
3b1c5241 SL |
1436 | our_env[n_env++] = t; |
1437 | } | |
1438 | } | |
1439 | ||
136dc4c4 LP |
1440 | if (flags & EXEC_SETENV_RESULT) { |
1441 | if (asprintf(our_env + n_env++, "SERVICE_RESULT=%s", service_result_to_string(s->result)) < 0) | |
1442 | return -ENOMEM; | |
1443 | ||
1444 | if (s->main_exec_status.pid > 0 && | |
1445 | dual_timestamp_is_set(&s->main_exec_status.exit_timestamp)) { | |
1446 | if (asprintf(our_env + n_env++, "EXIT_CODE=%s", sigchld_code_to_string(s->main_exec_status.code)) < 0) | |
1447 | return -ENOMEM; | |
1448 | ||
1449 | if (s->main_exec_status.code == CLD_EXITED) | |
1450 | r = asprintf(our_env + n_env++, "EXIT_STATUS=%i", s->main_exec_status.status); | |
1451 | else | |
1452 | r = asprintf(our_env + n_env++, "EXIT_STATUS=%s", signal_to_string(s->main_exec_status.status)); | |
1453 | if (r < 0) | |
1454 | return -ENOMEM; | |
1455 | } | |
1456 | } | |
1457 | ||
f0d47797 | 1458 | unit_set_exec_params(UNIT(s), &exec_params); |
3536f49e YW |
1459 | |
1460 | final_env = strv_env_merge(2, exec_params.environment, our_env, NULL); | |
36c16a7c LP |
1461 | if (!final_env) |
1462 | return -ENOMEM; | |
c952c6ec | 1463 | |
5bf7569c LP |
1464 | /* System services should get a new keyring by default. */ |
1465 | SET_FLAG(exec_params.flags, EXEC_NEW_KEYRING, MANAGER_IS_SYSTEM(UNIT(s)->manager)); | |
ac647978 LP |
1466 | |
1467 | /* System D-Bus needs nss-systemd disabled, so that we don't deadlock */ | |
1468 | SET_FLAG(exec_params.flags, EXEC_NSS_BYPASS_BUS, | |
1469 | MANAGER_IS_SYSTEM(UNIT(s)->manager) && unit_has_name(UNIT(s), SPECIAL_DBUS_SERVICE)); | |
4ad49000 | 1470 | |
5125e762 | 1471 | exec_params.argv = c->argv; |
c39f1ce2 | 1472 | exec_params.environment = final_env; |
9fa95f85 | 1473 | exec_params.fds = fds; |
8dd4c05b | 1474 | exec_params.fd_names = fd_names; |
4c47affc | 1475 | exec_params.n_storage_fds = n_storage_fds; |
9b141911 | 1476 | exec_params.n_socket_fds = n_socket_fds; |
9fa95f85 | 1477 | exec_params.watchdog_usec = s->watchdog_usec; |
a34ceba6 | 1478 | exec_params.selinux_context_net = s->socket_fd_selinux_context_net; |
9fa95f85 DM |
1479 | if (s->type == SERVICE_IDLE) |
1480 | exec_params.idle_pipe = UNIT(s)->manager->idle_pipe; | |
a34ceba6 LP |
1481 | exec_params.stdin_fd = s->stdin_fd; |
1482 | exec_params.stdout_fd = s->stdout_fd; | |
1483 | exec_params.stderr_fd = s->stderr_fd; | |
9fa95f85 | 1484 | |
f2341e0a LP |
1485 | r = exec_spawn(UNIT(s), |
1486 | c, | |
9e2f7c11 | 1487 | &s->exec_context, |
9fa95f85 | 1488 | &exec_params, |
613b411c | 1489 | s->exec_runtime, |
29206d46 | 1490 | &s->dynamic_creds, |
9e2f7c11 | 1491 | &pid); |
9e2f7c11 | 1492 | if (r < 0) |
36c16a7c | 1493 | return r; |
034c6ed7 | 1494 | |
117dcc57 | 1495 | r = unit_watch_pid(UNIT(s), pid); |
e8b509d3 | 1496 | if (r < 0) /* FIXME: we need to do something here */ |
36c16a7c | 1497 | return r; |
034c6ed7 LP |
1498 | |
1499 | *_pid = pid; | |
1500 | ||
5cb5a6ff | 1501 | return 0; |
034c6ed7 LP |
1502 | } |
1503 | ||
80876c20 LP |
1504 | static int main_pid_good(Service *s) { |
1505 | assert(s); | |
1506 | ||
51894d70 | 1507 | /* Returns 0 if the pid is dead, > 0 if it is good, < 0 if we don't know */ |
80876c20 | 1508 | |
fc08079e | 1509 | /* If we know the pid file, then let's just check if it is |
80876c20 | 1510 | * still valid */ |
6dfa5494 LP |
1511 | if (s->main_pid_known) { |
1512 | ||
1513 | /* If it's an alien child let's check if it is still | |
1514 | * alive ... */ | |
62220cf7 | 1515 | if (s->main_pid_alien && s->main_pid > 0) |
9f5650ae | 1516 | return pid_is_alive(s->main_pid); |
6dfa5494 LP |
1517 | |
1518 | /* .. otherwise assume we'll get a SIGCHLD for it, | |
1519 | * which we really should wait for to collect exit | |
1520 | * status and code */ | |
80876c20 | 1521 | return s->main_pid > 0; |
6dfa5494 | 1522 | } |
80876c20 LP |
1523 | |
1524 | /* We don't know the pid */ | |
1525 | return -EAGAIN; | |
1526 | } | |
1527 | ||
019be286 | 1528 | static int control_pid_good(Service *s) { |
80876c20 LP |
1529 | assert(s); |
1530 | ||
07697d7e LP |
1531 | /* Returns 0 if the control PID is dead, > 0 if it is good. We never actually return < 0 here, but in order to |
1532 | * make this function as similar as possible to main_pid_good() and cgroup_good(), we pretend that < 0 also | |
1533 | * means: we can't figure it out. */ | |
1534 | ||
80876c20 LP |
1535 | return s->control_pid > 0; |
1536 | } | |
1537 | ||
1538 | static int cgroup_good(Service *s) { | |
1539 | int r; | |
1540 | ||
1541 | assert(s); | |
1542 | ||
07697d7e LP |
1543 | /* Returns 0 if the cgroup is empty or doesn't exist, > 0 if it is exists and is populated, < 0 if we can't |
1544 | * figure it out */ | |
1545 | ||
4ad49000 LP |
1546 | if (!UNIT(s)->cgroup_path) |
1547 | return 0; | |
1548 | ||
6f883237 | 1549 | r = cg_is_empty_recursive(SYSTEMD_CGROUP_CONTROLLER, UNIT(s)->cgroup_path); |
117dcc57 | 1550 | if (r < 0) |
80876c20 LP |
1551 | return r; |
1552 | ||
b13ddbbc | 1553 | return r == 0; |
80876c20 LP |
1554 | } |
1555 | ||
a509f0e6 LP |
1556 | static bool service_shall_restart(Service *s) { |
1557 | assert(s); | |
1558 | ||
1559 | /* Don't restart after manual stops */ | |
1560 | if (s->forbid_restart) | |
1561 | return false; | |
1562 | ||
1563 | /* Never restart if this is configured as special exception */ | |
1564 | if (exit_status_set_test(&s->restart_prevent_status, s->main_exec_status.code, s->main_exec_status.status)) | |
1565 | return false; | |
1566 | ||
1567 | /* Restart if the exit code/status are configured as restart triggers */ | |
1568 | if (exit_status_set_test(&s->restart_force_status, s->main_exec_status.code, s->main_exec_status.status)) | |
1569 | return true; | |
1570 | ||
1571 | switch (s->restart) { | |
1572 | ||
1573 | case SERVICE_RESTART_NO: | |
1574 | return false; | |
1575 | ||
1576 | case SERVICE_RESTART_ALWAYS: | |
1577 | return true; | |
1578 | ||
1579 | case SERVICE_RESTART_ON_SUCCESS: | |
1580 | return s->result == SERVICE_SUCCESS; | |
1581 | ||
1582 | case SERVICE_RESTART_ON_FAILURE: | |
1583 | return s->result != SERVICE_SUCCESS; | |
1584 | ||
1585 | case SERVICE_RESTART_ON_ABNORMAL: | |
1586 | return !IN_SET(s->result, SERVICE_SUCCESS, SERVICE_FAILURE_EXIT_CODE); | |
1587 | ||
1588 | case SERVICE_RESTART_ON_WATCHDOG: | |
1589 | return s->result == SERVICE_FAILURE_WATCHDOG; | |
1590 | ||
1591 | case SERVICE_RESTART_ON_ABORT: | |
1592 | return IN_SET(s->result, SERVICE_FAILURE_SIGNAL, SERVICE_FAILURE_CORE_DUMP); | |
1593 | ||
1594 | default: | |
1595 | assert_not_reached("unknown restart setting"); | |
1596 | } | |
1597 | } | |
1598 | ||
deb4e708 MK |
1599 | static bool service_will_restart(Unit *u) { |
1600 | Service *s = SERVICE(u); | |
1601 | ||
53f47dfc YW |
1602 | assert(s); |
1603 | ||
deb4e708 MK |
1604 | if (s->will_auto_restart) |
1605 | return true; | |
53f47dfc YW |
1606 | if (s->state == SERVICE_AUTO_RESTART) |
1607 | return true; | |
1608 | if (!UNIT(s)->job) | |
1609 | return false; | |
1610 | if (UNIT(s)->job->type == JOB_START) | |
1611 | return true; | |
1612 | return false; | |
1613 | } | |
1614 | ||
f42806df | 1615 | static void service_enter_dead(Service *s, ServiceResult f, bool allow_restart) { |
034c6ed7 | 1616 | int r; |
0f52f8e5 | 1617 | |
034c6ed7 LP |
1618 | assert(s); |
1619 | ||
0f52f8e5 LP |
1620 | /* If there's a stop job queued before we enter the DEAD state, we shouldn't act on Restart=, in order to not |
1621 | * undo what has already been enqueued. */ | |
1622 | if (unit_stop_pending(UNIT(s))) | |
1623 | allow_restart = false; | |
1624 | ||
a0fef983 | 1625 | if (s->result == SERVICE_SUCCESS) |
f42806df | 1626 | s->result = f; |
034c6ed7 | 1627 | |
ed77d407 LP |
1628 | if (s->result != SERVICE_SUCCESS) |
1629 | log_unit_warning(UNIT(s), "Failed with result '%s'.", service_result_to_string(s->result)); | |
1630 | ||
deb4e708 MK |
1631 | if (allow_restart && service_shall_restart(s)) |
1632 | s->will_auto_restart = true; | |
1633 | ||
7eb2a8a1 LP |
1634 | /* Make sure service_release_resources() doesn't destroy our FD store, while we are changing through |
1635 | * SERVICE_FAILED/SERVICE_DEAD before entering into SERVICE_AUTO_RESTART. */ | |
1636 | s->n_keep_fd_store ++; | |
1637 | ||
0c7f15b3 MS |
1638 | service_set_state(s, s->result != SERVICE_SUCCESS ? SERVICE_FAILED : SERVICE_DEAD); |
1639 | ||
deb4e708 MK |
1640 | if (s->will_auto_restart) { |
1641 | s->will_auto_restart = false; | |
034c6ed7 | 1642 | |
36c16a7c | 1643 | r = service_arm_timer(s, usec_add(now(CLOCK_MONOTONIC), s->restart_usec)); |
7eb2a8a1 LP |
1644 | if (r < 0) { |
1645 | s->n_keep_fd_store--; | |
034c6ed7 | 1646 | goto fail; |
7eb2a8a1 | 1647 | } |
034c6ed7 LP |
1648 | |
1649 | service_set_state(s, SERVICE_AUTO_RESTART); | |
7a0019d3 LP |
1650 | } else |
1651 | /* If we shan't restart, then flush out the restart counter. But don't do that immediately, so that the | |
1652 | * user can still introspect the counter. Do so on the next start. */ | |
1653 | s->flush_n_restarts = true; | |
034c6ed7 | 1654 | |
7eb2a8a1 LP |
1655 | /* The new state is in effect, let's decrease the fd store ref counter again. Let's also readd us to the GC |
1656 | * queue, so that the fd store is possibly gc'ed again */ | |
1657 | s->n_keep_fd_store--; | |
1658 | unit_add_to_gc_queue(UNIT(s)); | |
1659 | ||
f2341e0a | 1660 | /* The next restart might not be a manual stop, hence reset the flag indicating manual stops */ |
47342320 LP |
1661 | s->forbid_restart = false; |
1662 | ||
e66cf1a3 | 1663 | /* We want fresh tmpdirs in case service is started again immediately */ |
e8a565cb | 1664 | s->exec_runtime = exec_runtime_unref(s->exec_runtime, true); |
c17ec25e | 1665 | |
53f47dfc | 1666 | if (s->exec_context.runtime_directory_preserve_mode == EXEC_PRESERVE_NO || |
deb4e708 | 1667 | (s->exec_context.runtime_directory_preserve_mode == EXEC_PRESERVE_RESTART && !service_will_restart(UNIT(s)))) |
53f47dfc | 1668 | /* Also, remove the runtime directory */ |
3536f49e | 1669 | exec_context_destroy_runtime_directory(&s->exec_context, UNIT(s)->manager->prefix[EXEC_DIRECTORY_RUNTIME]); |
e66cf1a3 | 1670 | |
00d9ef85 LP |
1671 | /* Get rid of the IPC bits of the user */ |
1672 | unit_unref_uid_gid(UNIT(s), true); | |
1673 | ||
29206d46 LP |
1674 | /* Release the user, and destroy it if we are the only remaining owner */ |
1675 | dynamic_creds_destroy(&s->dynamic_creds); | |
1676 | ||
9285c9ff LN |
1677 | /* Try to delete the pid file. At this point it will be |
1678 | * out-of-date, and some software might be confused by it, so | |
1679 | * let's remove it. */ | |
1680 | if (s->pid_file) | |
fabab190 | 1681 | (void) unlink(s->pid_file); |
9285c9ff | 1682 | |
034c6ed7 LP |
1683 | return; |
1684 | ||
1685 | fail: | |
f2341e0a | 1686 | log_unit_warning_errno(UNIT(s), r, "Failed to run install restart timer: %m"); |
f42806df | 1687 | service_enter_dead(s, SERVICE_FAILURE_RESOURCES, false); |
034c6ed7 LP |
1688 | } |
1689 | ||
f42806df | 1690 | static void service_enter_stop_post(Service *s, ServiceResult f) { |
034c6ed7 LP |
1691 | int r; |
1692 | assert(s); | |
1693 | ||
a0fef983 | 1694 | if (s->result == SERVICE_SUCCESS) |
f42806df | 1695 | s->result = f; |
034c6ed7 | 1696 | |
5e94833f | 1697 | service_unwatch_control_pid(s); |
a911bb9a | 1698 | unit_watch_all_pids(UNIT(s)); |
5e94833f | 1699 | |
117dcc57 ZJS |
1700 | s->control_command = s->exec_command[SERVICE_EXEC_STOP_POST]; |
1701 | if (s->control_command) { | |
867b3b7d LP |
1702 | s->control_command_id = SERVICE_EXEC_STOP_POST; |
1703 | ||
ecedd90f LP |
1704 | r = service_spawn(s, |
1705 | s->control_command, | |
21b2ce39 | 1706 | s->timeout_stop_usec, |
1703fa41 | 1707 | EXEC_APPLY_SANDBOXING|EXEC_APPLY_CHROOT|EXEC_APPLY_TTY_STDIN|EXEC_IS_CONTROL|EXEC_SETENV_RESULT, |
ecedd90f LP |
1708 | &s->control_pid); |
1709 | if (r < 0) | |
034c6ed7 LP |
1710 | goto fail; |
1711 | ||
80876c20 LP |
1712 | service_set_state(s, SERVICE_STOP_POST); |
1713 | } else | |
ac84d1fb | 1714 | service_enter_signal(s, SERVICE_FINAL_SIGTERM, SERVICE_SUCCESS); |
034c6ed7 LP |
1715 | |
1716 | return; | |
1717 | ||
1718 | fail: | |
f2341e0a | 1719 | log_unit_warning_errno(UNIT(s), r, "Failed to run 'stop-post' task: %m"); |
f42806df | 1720 | service_enter_signal(s, SERVICE_FINAL_SIGTERM, SERVICE_FAILURE_RESOURCES); |
034c6ed7 LP |
1721 | } |
1722 | ||
4940c0b0 LP |
1723 | static int state_to_kill_operation(ServiceState state) { |
1724 | switch (state) { | |
1725 | ||
1726 | case SERVICE_STOP_SIGABRT: | |
1727 | return KILL_ABORT; | |
1728 | ||
1729 | case SERVICE_STOP_SIGTERM: | |
1730 | case SERVICE_FINAL_SIGTERM: | |
1731 | return KILL_TERMINATE; | |
1732 | ||
1733 | case SERVICE_STOP_SIGKILL: | |
1734 | case SERVICE_FINAL_SIGKILL: | |
1735 | return KILL_KILL; | |
1736 | ||
1737 | default: | |
1738 | return _KILL_OPERATION_INVALID; | |
1739 | } | |
1740 | } | |
1741 | ||
f42806df | 1742 | static void service_enter_signal(Service *s, ServiceState state, ServiceResult f) { |
034c6ed7 | 1743 | int r; |
034c6ed7 LP |
1744 | |
1745 | assert(s); | |
1746 | ||
a0fef983 | 1747 | if (s->result == SERVICE_SUCCESS) |
f42806df | 1748 | s->result = f; |
034c6ed7 | 1749 | |
a911bb9a LP |
1750 | unit_watch_all_pids(UNIT(s)); |
1751 | ||
cd2086fe LP |
1752 | r = unit_kill_context( |
1753 | UNIT(s), | |
1754 | &s->kill_context, | |
4940c0b0 | 1755 | state_to_kill_operation(state), |
cd2086fe LP |
1756 | s->main_pid, |
1757 | s->control_pid, | |
1758 | s->main_pid_alien); | |
1759 | if (r < 0) | |
1760 | goto fail; | |
034c6ed7 | 1761 | |
cd2086fe | 1762 | if (r > 0) { |
36c16a7c LP |
1763 | r = service_arm_timer(s, usec_add(now(CLOCK_MONOTONIC), s->timeout_stop_usec)); |
1764 | if (r < 0) | |
1765 | goto fail; | |
d6ea93e3 | 1766 | |
80876c20 | 1767 | service_set_state(s, state); |
1db0db4b | 1768 | } else if (IN_SET(state, SERVICE_STOP_SIGABRT, SERVICE_STOP_SIGTERM) && s->kill_context.send_sigkill) |
ac84d1fb | 1769 | service_enter_signal(s, SERVICE_STOP_SIGKILL, SERVICE_SUCCESS); |
1db0db4b | 1770 | else if (IN_SET(state, SERVICE_STOP_SIGABRT, SERVICE_STOP_SIGTERM, SERVICE_STOP_SIGKILL)) |
f42806df | 1771 | service_enter_stop_post(s, SERVICE_SUCCESS); |
1db0db4b | 1772 | else if (state == SERVICE_FINAL_SIGTERM && s->kill_context.send_sigkill) |
ac84d1fb | 1773 | service_enter_signal(s, SERVICE_FINAL_SIGKILL, SERVICE_SUCCESS); |
80876c20 | 1774 | else |
f42806df | 1775 | service_enter_dead(s, SERVICE_SUCCESS, true); |
034c6ed7 LP |
1776 | |
1777 | return; | |
1778 | ||
1779 | fail: | |
f2341e0a | 1780 | log_unit_warning_errno(UNIT(s), r, "Failed to kill processes: %m"); |
034c6ed7 | 1781 | |
a00973af | 1782 | if (IN_SET(state, SERVICE_STOP_SIGABRT, SERVICE_STOP_SIGTERM, SERVICE_STOP_SIGKILL)) |
f42806df | 1783 | service_enter_stop_post(s, SERVICE_FAILURE_RESOURCES); |
034c6ed7 | 1784 | else |
f42806df | 1785 | service_enter_dead(s, SERVICE_FAILURE_RESOURCES, true); |
034c6ed7 LP |
1786 | } |
1787 | ||
308d72dc LP |
1788 | static void service_enter_stop_by_notify(Service *s) { |
1789 | assert(s); | |
1790 | ||
1791 | unit_watch_all_pids(UNIT(s)); | |
1792 | ||
36c16a7c | 1793 | service_arm_timer(s, usec_add(now(CLOCK_MONOTONIC), s->timeout_stop_usec)); |
308d72dc | 1794 | |
6041a7ee MS |
1795 | /* The service told us it's stopping, so it's as if we SIGTERM'd it. */ |
1796 | service_set_state(s, SERVICE_STOP_SIGTERM); | |
308d72dc LP |
1797 | } |
1798 | ||
f42806df | 1799 | static void service_enter_stop(Service *s, ServiceResult f) { |
034c6ed7 | 1800 | int r; |
5925dd3c | 1801 | |
034c6ed7 LP |
1802 | assert(s); |
1803 | ||
a0fef983 | 1804 | if (s->result == SERVICE_SUCCESS) |
f42806df | 1805 | s->result = f; |
034c6ed7 | 1806 | |
5e94833f | 1807 | service_unwatch_control_pid(s); |
a911bb9a | 1808 | unit_watch_all_pids(UNIT(s)); |
5e94833f | 1809 | |
117dcc57 ZJS |
1810 | s->control_command = s->exec_command[SERVICE_EXEC_STOP]; |
1811 | if (s->control_command) { | |
867b3b7d LP |
1812 | s->control_command_id = SERVICE_EXEC_STOP; |
1813 | ||
ecedd90f LP |
1814 | r = service_spawn(s, |
1815 | s->control_command, | |
21b2ce39 | 1816 | s->timeout_stop_usec, |
1703fa41 | 1817 | EXEC_APPLY_SANDBOXING|EXEC_APPLY_CHROOT|EXEC_IS_CONTROL|EXEC_SETENV_RESULT, |
ecedd90f LP |
1818 | &s->control_pid); |
1819 | if (r < 0) | |
034c6ed7 LP |
1820 | goto fail; |
1821 | ||
80876c20 LP |
1822 | service_set_state(s, SERVICE_STOP); |
1823 | } else | |
f42806df | 1824 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_SUCCESS); |
034c6ed7 LP |
1825 | |
1826 | return; | |
1827 | ||
1828 | fail: | |
f2341e0a | 1829 | log_unit_warning_errno(UNIT(s), r, "Failed to run 'stop' task: %m"); |
f42806df | 1830 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_FAILURE_RESOURCES); |
034c6ed7 LP |
1831 | } |
1832 | ||
957c3cf9 LP |
1833 | static bool service_good(Service *s) { |
1834 | int main_pid_ok; | |
1835 | assert(s); | |
1836 | ||
1837 | if (s->type == SERVICE_DBUS && !s->bus_name_good) | |
1838 | return false; | |
1839 | ||
1840 | main_pid_ok = main_pid_good(s); | |
1841 | if (main_pid_ok > 0) /* It's alive */ | |
1842 | return true; | |
1843 | if (main_pid_ok == 0) /* It's dead */ | |
1844 | return false; | |
1845 | ||
1846 | /* OK, we don't know anything about the main PID, maybe | |
1847 | * because there is none. Let's check the control group | |
1848 | * instead. */ | |
1849 | ||
1850 | return cgroup_good(s) != 0; | |
1851 | } | |
1852 | ||
f42806df | 1853 | static void service_enter_running(Service *s, ServiceResult f) { |
80876c20 LP |
1854 | assert(s); |
1855 | ||
a0fef983 | 1856 | if (s->result == SERVICE_SUCCESS) |
f42806df | 1857 | s->result = f; |
80876c20 | 1858 | |
089b64d5 LP |
1859 | service_unwatch_control_pid(s); |
1860 | ||
957c3cf9 | 1861 | if (service_good(s)) { |
308d72dc LP |
1862 | |
1863 | /* If there are any queued up sd_notify() | |
1864 | * notifications, process them now */ | |
1865 | if (s->notify_state == NOTIFY_RELOADING) | |
1866 | service_enter_reload_by_notify(s); | |
1867 | else if (s->notify_state == NOTIFY_STOPPING) | |
1868 | service_enter_stop_by_notify(s); | |
36c16a7c | 1869 | else { |
308d72dc | 1870 | service_set_state(s, SERVICE_RUNNING); |
36c16a7c LP |
1871 | service_arm_timer(s, usec_add(UNIT(s)->active_enter_timestamp.monotonic, s->runtime_max_usec)); |
1872 | } | |
308d72dc | 1873 | |
3d474ef7 | 1874 | } else if (f != SERVICE_SUCCESS) |
c3fda31d | 1875 | service_enter_signal(s, SERVICE_STOP_SIGTERM, f); |
3d474ef7 | 1876 | else if (s->remain_after_exit) |
80876c20 LP |
1877 | service_set_state(s, SERVICE_EXITED); |
1878 | else | |
f42806df | 1879 | service_enter_stop(s, SERVICE_SUCCESS); |
80876c20 LP |
1880 | } |
1881 | ||
034c6ed7 LP |
1882 | static void service_enter_start_post(Service *s) { |
1883 | int r; | |
1884 | assert(s); | |
1885 | ||
5e94833f | 1886 | service_unwatch_control_pid(s); |
842129f5 | 1887 | service_reset_watchdog(s); |
bb242b7b | 1888 | |
117dcc57 ZJS |
1889 | s->control_command = s->exec_command[SERVICE_EXEC_START_POST]; |
1890 | if (s->control_command) { | |
867b3b7d LP |
1891 | s->control_command_id = SERVICE_EXEC_START_POST; |
1892 | ||
ecedd90f LP |
1893 | r = service_spawn(s, |
1894 | s->control_command, | |
21b2ce39 | 1895 | s->timeout_start_usec, |
1703fa41 | 1896 | EXEC_APPLY_SANDBOXING|EXEC_APPLY_CHROOT|EXEC_IS_CONTROL, |
ecedd90f LP |
1897 | &s->control_pid); |
1898 | if (r < 0) | |
034c6ed7 LP |
1899 | goto fail; |
1900 | ||
80876c20 LP |
1901 | service_set_state(s, SERVICE_START_POST); |
1902 | } else | |
f42806df | 1903 | service_enter_running(s, SERVICE_SUCCESS); |
034c6ed7 LP |
1904 | |
1905 | return; | |
1906 | ||
1907 | fail: | |
f2341e0a | 1908 | log_unit_warning_errno(UNIT(s), r, "Failed to run 'start-post' task: %m"); |
f42806df | 1909 | service_enter_stop(s, SERVICE_FAILURE_RESOURCES); |
034c6ed7 LP |
1910 | } |
1911 | ||
e9a4f676 | 1912 | static void service_kill_control_process(Service *s) { |
a6951a50 | 1913 | int r; |
4ad49000 | 1914 | |
a6951a50 LP |
1915 | assert(s); |
1916 | ||
e9a4f676 LP |
1917 | if (s->control_pid <= 0) |
1918 | return; | |
4ad49000 | 1919 | |
e9a4f676 LP |
1920 | r = kill_and_sigcont(s->control_pid, SIGKILL); |
1921 | if (r < 0) { | |
1922 | _cleanup_free_ char *comm = NULL; | |
a6951a50 | 1923 | |
e9a4f676 | 1924 | (void) get_process_comm(s->control_pid, &comm); |
a6951a50 | 1925 | |
e9a4f676 LP |
1926 | log_unit_debug_errno(UNIT(s), r, "Failed to kill control process " PID_FMT " (%s), ignoring: %m", |
1927 | s->control_pid, strna(comm)); | |
a6951a50 | 1928 | } |
4ad49000 LP |
1929 | } |
1930 | ||
034c6ed7 | 1931 | static void service_enter_start(Service *s) { |
4ad49000 | 1932 | ExecCommand *c; |
36c16a7c | 1933 | usec_t timeout; |
034c6ed7 LP |
1934 | pid_t pid; |
1935 | int r; | |
1936 | ||
1937 | assert(s); | |
1938 | ||
41efeaec LP |
1939 | service_unwatch_control_pid(s); |
1940 | service_unwatch_main_pid(s); | |
80876c20 | 1941 | |
a4634b21 LP |
1942 | unit_warn_leftover_processes(UNIT(s)); |
1943 | ||
867b3b7d LP |
1944 | if (s->type == SERVICE_FORKING) { |
1945 | s->control_command_id = SERVICE_EXEC_START; | |
1946 | c = s->control_command = s->exec_command[SERVICE_EXEC_START]; | |
1947 | ||
1948 | s->main_command = NULL; | |
1949 | } else { | |
1950 | s->control_command_id = _SERVICE_EXEC_COMMAND_INVALID; | |
1951 | s->control_command = NULL; | |
1952 | ||
1953 | c = s->main_command = s->exec_command[SERVICE_EXEC_START]; | |
1954 | } | |
34e9ba66 | 1955 | |
96fb8242 | 1956 | if (!c) { |
47fffb35 LP |
1957 | if (s->type != SERVICE_ONESHOT) { |
1958 | /* There's no command line configured for the main command? Hmm, that is strange. This can only | |
1959 | * happen if the configuration changes at runtime. In this case, let's enter a failure | |
1960 | * state. */ | |
1961 | log_unit_error(UNIT(s), "There's no 'start' task anymore we could start: %m"); | |
1962 | r = -ENXIO; | |
1963 | goto fail; | |
1964 | } | |
1965 | ||
96fb8242 LP |
1966 | service_enter_start_post(s); |
1967 | return; | |
1968 | } | |
1969 | ||
36c16a7c LP |
1970 | if (IN_SET(s->type, SERVICE_SIMPLE, SERVICE_IDLE)) |
1971 | /* For simple + idle this is the main process. We don't apply any timeout here, but | |
1972 | * service_enter_running() will later apply the .runtime_max_usec timeout. */ | |
1973 | timeout = USEC_INFINITY; | |
1974 | else | |
1975 | timeout = s->timeout_start_usec; | |
1976 | ||
ecedd90f LP |
1977 | r = service_spawn(s, |
1978 | c, | |
36c16a7c | 1979 | timeout, |
1703fa41 | 1980 | EXEC_PASS_FDS|EXEC_APPLY_SANDBOXING|EXEC_APPLY_CHROOT|EXEC_APPLY_TTY_STDIN|EXEC_SET_WATCHDOG, |
ecedd90f LP |
1981 | &pid); |
1982 | if (r < 0) | |
034c6ed7 LP |
1983 | goto fail; |
1984 | ||
36c16a7c | 1985 | if (IN_SET(s->type, SERVICE_SIMPLE, SERVICE_IDLE)) { |
034c6ed7 LP |
1986 | /* For simple services we immediately start |
1987 | * the START_POST binaries. */ | |
1988 | ||
5925dd3c | 1989 | service_set_main_pid(s, pid); |
034c6ed7 LP |
1990 | service_enter_start_post(s); |
1991 | ||
1992 | } else if (s->type == SERVICE_FORKING) { | |
1993 | ||
1994 | /* For forking services we wait until the start | |
1995 | * process exited. */ | |
1996 | ||
e55224ca | 1997 | s->control_pid = pid; |
80876c20 LP |
1998 | service_set_state(s, SERVICE_START); |
1999 | ||
36c16a7c | 2000 | } else if (IN_SET(s->type, SERVICE_ONESHOT, SERVICE_DBUS, SERVICE_NOTIFY)) { |
7d55e835 | 2001 | |
34e9ba66 | 2002 | /* For oneshot services we wait until the start |
7d55e835 LP |
2003 | * process exited, too, but it is our main process. */ |
2004 | ||
05e343b7 | 2005 | /* For D-Bus services we know the main pid right away, |
8c47c732 LP |
2006 | * but wait for the bus name to appear on the |
2007 | * bus. Notify services are similar. */ | |
05e343b7 | 2008 | |
5925dd3c | 2009 | service_set_main_pid(s, pid); |
80876c20 | 2010 | service_set_state(s, SERVICE_START); |
034c6ed7 LP |
2011 | } else |
2012 | assert_not_reached("Unknown service type"); | |
2013 | ||
2014 | return; | |
2015 | ||
2016 | fail: | |
f2341e0a | 2017 | log_unit_warning_errno(UNIT(s), r, "Failed to run 'start' task: %m"); |
c3fda31d | 2018 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_FAILURE_RESOURCES); |
034c6ed7 LP |
2019 | } |
2020 | ||
2021 | static void service_enter_start_pre(Service *s) { | |
2022 | int r; | |
2023 | ||
2024 | assert(s); | |
2025 | ||
5e94833f LP |
2026 | service_unwatch_control_pid(s); |
2027 | ||
117dcc57 ZJS |
2028 | s->control_command = s->exec_command[SERVICE_EXEC_START_PRE]; |
2029 | if (s->control_command) { | |
8f53a7b8 | 2030 | |
a4634b21 LP |
2031 | unit_warn_leftover_processes(UNIT(s)); |
2032 | ||
867b3b7d LP |
2033 | s->control_command_id = SERVICE_EXEC_START_PRE; |
2034 | ||
ecedd90f LP |
2035 | r = service_spawn(s, |
2036 | s->control_command, | |
21b2ce39 | 2037 | s->timeout_start_usec, |
1703fa41 | 2038 | EXEC_APPLY_SANDBOXING|EXEC_APPLY_CHROOT|EXEC_IS_CONTROL|EXEC_APPLY_TTY_STDIN, |
ecedd90f LP |
2039 | &s->control_pid); |
2040 | if (r < 0) | |
034c6ed7 LP |
2041 | goto fail; |
2042 | ||
80876c20 LP |
2043 | service_set_state(s, SERVICE_START_PRE); |
2044 | } else | |
034c6ed7 LP |
2045 | service_enter_start(s); |
2046 | ||
2047 | return; | |
2048 | ||
2049 | fail: | |
f2341e0a | 2050 | log_unit_warning_errno(UNIT(s), r, "Failed to run 'start-pre' task: %m"); |
f42806df | 2051 | service_enter_dead(s, SERVICE_FAILURE_RESOURCES, true); |
034c6ed7 LP |
2052 | } |
2053 | ||
2054 | static void service_enter_restart(Service *s) { | |
4afd3348 | 2055 | _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL; |
034c6ed7 | 2056 | int r; |
398ef8ba | 2057 | |
034c6ed7 LP |
2058 | assert(s); |
2059 | ||
a8bb2e65 LP |
2060 | if (UNIT(s)->job && UNIT(s)->job->type == JOB_STOP) { |
2061 | /* Don't restart things if we are going down anyway */ | |
f2341e0a | 2062 | log_unit_info(UNIT(s), "Stop job pending for unit, delaying automatic restart."); |
2edfa366 | 2063 | |
36c16a7c | 2064 | r = service_arm_timer(s, usec_add(now(CLOCK_MONOTONIC), s->restart_usec)); |
a8bb2e65 | 2065 | if (r < 0) |
2edfa366 | 2066 | goto fail; |
feae8adb DW |
2067 | |
2068 | return; | |
2edfa366 LP |
2069 | } |
2070 | ||
48bb5876 DW |
2071 | /* Any units that are bound to this service must also be |
2072 | * restarted. We use JOB_RESTART (instead of the more obvious | |
2073 | * JOB_START) here so that those dependency jobs will be added | |
2074 | * as well. */ | |
4bd29fe5 | 2075 | r = manager_add_job(UNIT(s)->manager, JOB_RESTART, UNIT(s), JOB_FAIL, &error, NULL); |
48bb5876 | 2076 | if (r < 0) |
034c6ed7 LP |
2077 | goto fail; |
2078 | ||
7a0019d3 LP |
2079 | /* Count the jobs we enqueue for restarting. This counter is maintained as long as the unit isn't fully |
2080 | * stopped, i.e. as long as it remains up or remains in auto-start states. The use can reset the counter | |
2081 | * explicitly however via the usual "systemctl reset-failure" logic. */ | |
2082 | s->n_restarts ++; | |
2083 | s->flush_n_restarts = false; | |
2084 | ||
2085 | log_struct(LOG_INFO, | |
2086 | "MESSAGE_ID=" SD_MESSAGE_UNIT_RESTART_SCHEDULED_STR, | |
2087 | LOG_UNIT_ID(UNIT(s)), | |
f1c50bec | 2088 | LOG_UNIT_INVOCATION_ID(UNIT(s)), |
7a0019d3 LP |
2089 | LOG_UNIT_MESSAGE(UNIT(s), "Scheduled restart job, restart counter is at %u.", s->n_restarts), |
2090 | "N_RESTARTS=%u", s->n_restarts, | |
2091 | NULL); | |
2092 | ||
2093 | /* Notify clients about changed restart counter */ | |
2094 | unit_add_to_dbus_queue(UNIT(s)); | |
2095 | ||
a8bb2e65 LP |
2096 | /* Note that we stay in the SERVICE_AUTO_RESTART state here, |
2097 | * it will be canceled as part of the service_stop() call that | |
2098 | * is executed as part of JOB_RESTART. */ | |
2099 | ||
034c6ed7 LP |
2100 | return; |
2101 | ||
2102 | fail: | |
f2341e0a | 2103 | log_unit_warning(UNIT(s), "Failed to schedule restart job: %s", bus_error_message(&error, -r)); |
f42806df | 2104 | service_enter_dead(s, SERVICE_FAILURE_RESOURCES, false); |
034c6ed7 LP |
2105 | } |
2106 | ||
308d72dc | 2107 | static void service_enter_reload_by_notify(Service *s) { |
15d167f8 JW |
2108 | _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL; |
2109 | int r; | |
2110 | ||
308d72dc LP |
2111 | assert(s); |
2112 | ||
36c16a7c | 2113 | service_arm_timer(s, usec_add(now(CLOCK_MONOTONIC), s->timeout_start_usec)); |
308d72dc | 2114 | service_set_state(s, SERVICE_RELOAD); |
15d167f8 JW |
2115 | |
2116 | /* service_enter_reload_by_notify is never called during a reload, thus no loops are possible. */ | |
2117 | r = manager_propagate_reload(UNIT(s)->manager, UNIT(s), JOB_FAIL, &error); | |
2118 | if (r < 0) | |
2119 | log_unit_warning(UNIT(s), "Failed to schedule propagation of reload: %s", bus_error_message(&error, -r)); | |
308d72dc LP |
2120 | } |
2121 | ||
034c6ed7 LP |
2122 | static void service_enter_reload(Service *s) { |
2123 | int r; | |
2124 | ||
2125 | assert(s); | |
2126 | ||
5e94833f | 2127 | service_unwatch_control_pid(s); |
95c906ae | 2128 | s->reload_result = SERVICE_SUCCESS; |
5e94833f | 2129 | |
117dcc57 ZJS |
2130 | s->control_command = s->exec_command[SERVICE_EXEC_RELOAD]; |
2131 | if (s->control_command) { | |
867b3b7d LP |
2132 | s->control_command_id = SERVICE_EXEC_RELOAD; |
2133 | ||
ecedd90f LP |
2134 | r = service_spawn(s, |
2135 | s->control_command, | |
21b2ce39 | 2136 | s->timeout_start_usec, |
1703fa41 | 2137 | EXEC_APPLY_SANDBOXING|EXEC_APPLY_CHROOT|EXEC_IS_CONTROL, |
ecedd90f LP |
2138 | &s->control_pid); |
2139 | if (r < 0) | |
034c6ed7 LP |
2140 | goto fail; |
2141 | ||
80876c20 LP |
2142 | service_set_state(s, SERVICE_RELOAD); |
2143 | } else | |
f42806df | 2144 | service_enter_running(s, SERVICE_SUCCESS); |
034c6ed7 LP |
2145 | |
2146 | return; | |
2147 | ||
2148 | fail: | |
f2341e0a | 2149 | log_unit_warning_errno(UNIT(s), r, "Failed to run 'reload' task: %m"); |
f42806df LP |
2150 | s->reload_result = SERVICE_FAILURE_RESOURCES; |
2151 | service_enter_running(s, SERVICE_SUCCESS); | |
034c6ed7 LP |
2152 | } |
2153 | ||
f42806df | 2154 | static void service_run_next_control(Service *s) { |
36c16a7c | 2155 | usec_t timeout; |
034c6ed7 LP |
2156 | int r; |
2157 | ||
2158 | assert(s); | |
2159 | assert(s->control_command); | |
2160 | assert(s->control_command->command_next); | |
2161 | ||
34e9ba66 | 2162 | assert(s->control_command_id != SERVICE_EXEC_START); |
034c6ed7 | 2163 | |
34e9ba66 | 2164 | s->control_command = s->control_command->command_next; |
5e94833f LP |
2165 | service_unwatch_control_pid(s); |
2166 | ||
36c16a7c LP |
2167 | if (IN_SET(s->state, SERVICE_START_PRE, SERVICE_START, SERVICE_START_POST, SERVICE_RUNNING, SERVICE_RELOAD)) |
2168 | timeout = s->timeout_start_usec; | |
2169 | else | |
2170 | timeout = s->timeout_stop_usec; | |
2171 | ||
ecedd90f LP |
2172 | r = service_spawn(s, |
2173 | s->control_command, | |
36c16a7c | 2174 | timeout, |
1703fa41 | 2175 | EXEC_APPLY_SANDBOXING|EXEC_APPLY_CHROOT|EXEC_IS_CONTROL| |
136dc4c4 LP |
2176 | (IN_SET(s->control_command_id, SERVICE_EXEC_START_PRE, SERVICE_EXEC_STOP_POST) ? EXEC_APPLY_TTY_STDIN : 0)| |
2177 | (IN_SET(s->control_command_id, SERVICE_EXEC_STOP, SERVICE_EXEC_STOP_POST) ? EXEC_SETENV_RESULT : 0), | |
ecedd90f LP |
2178 | &s->control_pid); |
2179 | if (r < 0) | |
034c6ed7 LP |
2180 | goto fail; |
2181 | ||
2182 | return; | |
2183 | ||
2184 | fail: | |
f2341e0a | 2185 | log_unit_warning_errno(UNIT(s), r, "Failed to run next control task: %m"); |
034c6ed7 | 2186 | |
4cd9fa81 | 2187 | if (IN_SET(s->state, SERVICE_START_PRE, SERVICE_START_POST, SERVICE_STOP)) |
f42806df | 2188 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_FAILURE_RESOURCES); |
034c6ed7 | 2189 | else if (s->state == SERVICE_STOP_POST) |
f42806df | 2190 | service_enter_dead(s, SERVICE_FAILURE_RESOURCES, true); |
e2f3b44c | 2191 | else if (s->state == SERVICE_RELOAD) { |
f42806df LP |
2192 | s->reload_result = SERVICE_FAILURE_RESOURCES; |
2193 | service_enter_running(s, SERVICE_SUCCESS); | |
e2f3b44c | 2194 | } else |
f42806df | 2195 | service_enter_stop(s, SERVICE_FAILURE_RESOURCES); |
5cb5a6ff LP |
2196 | } |
2197 | ||
f42806df | 2198 | static void service_run_next_main(Service *s) { |
34e9ba66 LP |
2199 | pid_t pid; |
2200 | int r; | |
2201 | ||
2202 | assert(s); | |
867b3b7d LP |
2203 | assert(s->main_command); |
2204 | assert(s->main_command->command_next); | |
2205 | assert(s->type == SERVICE_ONESHOT); | |
34e9ba66 | 2206 | |
867b3b7d | 2207 | s->main_command = s->main_command->command_next; |
34e9ba66 LP |
2208 | service_unwatch_main_pid(s); |
2209 | ||
ecedd90f LP |
2210 | r = service_spawn(s, |
2211 | s->main_command, | |
21b2ce39 | 2212 | s->timeout_start_usec, |
1703fa41 | 2213 | EXEC_PASS_FDS|EXEC_APPLY_SANDBOXING|EXEC_APPLY_CHROOT|EXEC_APPLY_TTY_STDIN|EXEC_SET_WATCHDOG, |
ecedd90f LP |
2214 | &pid); |
2215 | if (r < 0) | |
34e9ba66 LP |
2216 | goto fail; |
2217 | ||
2218 | service_set_main_pid(s, pid); | |
2219 | ||
2220 | return; | |
2221 | ||
2222 | fail: | |
f2341e0a | 2223 | log_unit_warning_errno(UNIT(s), r, "Failed to run next main task: %m"); |
f42806df | 2224 | service_enter_stop(s, SERVICE_FAILURE_RESOURCES); |
34e9ba66 LP |
2225 | } |
2226 | ||
87f0e418 LP |
2227 | static int service_start(Unit *u) { |
2228 | Service *s = SERVICE(u); | |
07299350 | 2229 | int r; |
5cb5a6ff LP |
2230 | |
2231 | assert(s); | |
2232 | ||
034c6ed7 LP |
2233 | /* We cannot fulfill this request right now, try again later |
2234 | * please! */ | |
a00973af LP |
2235 | if (IN_SET(s->state, |
2236 | SERVICE_STOP, SERVICE_STOP_SIGABRT, SERVICE_STOP_SIGTERM, SERVICE_STOP_SIGKILL, SERVICE_STOP_POST, | |
2237 | SERVICE_FINAL_SIGTERM, SERVICE_FINAL_SIGKILL)) | |
5cb5a6ff LP |
2238 | return -EAGAIN; |
2239 | ||
034c6ed7 | 2240 | /* Already on it! */ |
a00973af | 2241 | if (IN_SET(s->state, SERVICE_START_PRE, SERVICE_START, SERVICE_START_POST)) |
034c6ed7 LP |
2242 | return 0; |
2243 | ||
2e9d6c12 | 2244 | /* A service that will be restarted must be stopped first to |
7f2cddae | 2245 | * trigger BindsTo and/or OnFailure dependencies. If a user |
2e9d6c12 | 2246 | * does not want to wait for the holdoff time to elapse, the |
d4943dc7 LP |
2247 | * service should be manually restarted, not started. We |
2248 | * simply return EAGAIN here, so that any start jobs stay | |
2249 | * queued, and assume that the auto restart timer will | |
2250 | * eventually trigger the restart. */ | |
2251 | if (s->state == SERVICE_AUTO_RESTART) | |
a8bb2e65 | 2252 | return -EAGAIN; |
2e9d6c12 | 2253 | |
a00973af | 2254 | assert(IN_SET(s->state, SERVICE_DEAD, SERVICE_FAILED)); |
5cb5a6ff | 2255 | |
07299350 LP |
2256 | /* Make sure we don't enter a busy loop of some kind. */ |
2257 | r = unit_start_limit_test(u); | |
2258 | if (r < 0) { | |
2259 | service_enter_dead(s, SERVICE_FAILURE_START_LIMIT_HIT, false); | |
2260 | return r; | |
2261 | } | |
2262 | ||
4b58153d LP |
2263 | r = unit_acquire_invocation_id(u); |
2264 | if (r < 0) | |
2265 | return r; | |
2266 | ||
f42806df LP |
2267 | s->result = SERVICE_SUCCESS; |
2268 | s->reload_result = SERVICE_SUCCESS; | |
034c6ed7 | 2269 | s->main_pid_known = false; |
6dfa5494 | 2270 | s->main_pid_alien = false; |
47342320 | 2271 | s->forbid_restart = false; |
3c7416b6 LP |
2272 | |
2273 | u->reset_accounting = true; | |
034c6ed7 | 2274 | |
a1e58e8e | 2275 | s->status_text = mfree(s->status_text); |
8cfdb077 LP |
2276 | s->status_errno = 0; |
2277 | ||
308d72dc LP |
2278 | s->notify_state = NOTIFY_UNKNOWN; |
2279 | ||
2787d83c M |
2280 | s->watchdog_override_enable = false; |
2281 | s->watchdog_override_usec = 0; | |
2282 | ||
7a0019d3 LP |
2283 | /* This is not an automatic restart? Flush the restart counter then */ |
2284 | if (s->flush_n_restarts) { | |
2285 | s->n_restarts = 0; | |
2286 | s->flush_n_restarts = false; | |
2287 | } | |
2288 | ||
034c6ed7 | 2289 | service_enter_start_pre(s); |
82a2b6bb | 2290 | return 1; |
5cb5a6ff LP |
2291 | } |
2292 | ||
87f0e418 LP |
2293 | static int service_stop(Unit *u) { |
2294 | Service *s = SERVICE(u); | |
5cb5a6ff LP |
2295 | |
2296 | assert(s); | |
2297 | ||
a509f0e6 | 2298 | /* Don't create restart jobs from manual stops. */ |
47342320 | 2299 | s->forbid_restart = true; |
034c6ed7 | 2300 | |
e537352b | 2301 | /* Already on it */ |
a00973af LP |
2302 | if (IN_SET(s->state, |
2303 | SERVICE_STOP, SERVICE_STOP_SIGABRT, SERVICE_STOP_SIGTERM, SERVICE_STOP_SIGKILL, SERVICE_STOP_POST, | |
2304 | SERVICE_FINAL_SIGTERM, SERVICE_FINAL_SIGKILL)) | |
e537352b LP |
2305 | return 0; |
2306 | ||
f0c7b229 | 2307 | /* A restart will be scheduled or is in progress. */ |
034c6ed7 | 2308 | if (s->state == SERVICE_AUTO_RESTART) { |
0c7f15b3 | 2309 | service_set_state(s, SERVICE_DEAD); |
034c6ed7 LP |
2310 | return 0; |
2311 | } | |
2312 | ||
3f6c78dc LP |
2313 | /* If there's already something running we go directly into |
2314 | * kill mode. */ | |
a00973af | 2315 | if (IN_SET(s->state, SERVICE_START_PRE, SERVICE_START, SERVICE_START_POST, SERVICE_RELOAD)) { |
f42806df | 2316 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_SUCCESS); |
3f6c78dc LP |
2317 | return 0; |
2318 | } | |
5cb5a6ff | 2319 | |
a00973af | 2320 | assert(IN_SET(s->state, SERVICE_RUNNING, SERVICE_EXITED)); |
3a762661 | 2321 | |
f42806df | 2322 | service_enter_stop(s, SERVICE_SUCCESS); |
82a2b6bb | 2323 | return 1; |
5cb5a6ff LP |
2324 | } |
2325 | ||
87f0e418 LP |
2326 | static int service_reload(Unit *u) { |
2327 | Service *s = SERVICE(u); | |
034c6ed7 LP |
2328 | |
2329 | assert(s); | |
2330 | ||
3742095b | 2331 | assert(IN_SET(s->state, SERVICE_RUNNING, SERVICE_EXITED)); |
034c6ed7 LP |
2332 | |
2333 | service_enter_reload(s); | |
2d018ae2 | 2334 | return 1; |
5cb5a6ff LP |
2335 | } |
2336 | ||
44a6b1b6 | 2337 | _pure_ static bool service_can_reload(Unit *u) { |
87f0e418 | 2338 | Service *s = SERVICE(u); |
034c6ed7 LP |
2339 | |
2340 | assert(s); | |
2341 | ||
2342 | return !!s->exec_command[SERVICE_EXEC_RELOAD]; | |
2343 | } | |
2344 | ||
e266c068 MS |
2345 | static unsigned service_exec_command_index(Unit *u, ServiceExecCommand id, ExecCommand *current) { |
2346 | Service *s = SERVICE(u); | |
2347 | unsigned idx = 0; | |
2348 | ExecCommand *first, *c; | |
2349 | ||
2350 | assert(s); | |
2351 | ||
2352 | first = s->exec_command[id]; | |
2353 | ||
2354 | /* Figure out where we are in the list by walking back to the beginning */ | |
2355 | for (c = current; c != first; c = c->command_prev) | |
2356 | idx++; | |
2357 | ||
2358 | return idx; | |
2359 | } | |
2360 | ||
2361 | static int service_serialize_exec_command(Unit *u, FILE *f, ExecCommand *command) { | |
2362 | Service *s = SERVICE(u); | |
2363 | ServiceExecCommand id; | |
2364 | unsigned idx; | |
2365 | const char *type; | |
2366 | char **arg; | |
e266c068 MS |
2367 | _cleanup_free_ char *args = NULL, *p = NULL; |
2368 | size_t allocated = 0, length = 0; | |
2369 | ||
2370 | assert(s); | |
2371 | assert(f); | |
2372 | ||
2373 | if (!command) | |
2374 | return 0; | |
2375 | ||
2376 | if (command == s->control_command) { | |
2377 | type = "control"; | |
2378 | id = s->control_command_id; | |
2379 | } else { | |
2380 | type = "main"; | |
2381 | id = SERVICE_EXEC_START; | |
2382 | } | |
2383 | ||
2384 | idx = service_exec_command_index(u, id, command); | |
2385 | ||
2386 | STRV_FOREACH(arg, command->argv) { | |
2387 | size_t n; | |
2388 | _cleanup_free_ char *e = NULL; | |
2389 | ||
2390 | e = xescape(*arg, WHITESPACE); | |
2391 | if (!e) | |
2392 | return -ENOMEM; | |
2393 | ||
2394 | n = strlen(e); | |
2395 | if (!GREEDY_REALLOC(args, allocated, length + 1 + n + 1)) | |
2396 | return -ENOMEM; | |
2397 | ||
2398 | if (length > 0) | |
2399 | args[length++] = ' '; | |
2400 | ||
2401 | memcpy(args + length, e, n); | |
2402 | length += n; | |
2403 | } | |
2404 | ||
2405 | if (!GREEDY_REALLOC(args, allocated, length + 1)) | |
2406 | return -ENOMEM; | |
2407 | args[length++] = 0; | |
2408 | ||
2409 | p = xescape(command->path, WHITESPACE); | |
2410 | if (!p) | |
2411 | return -ENOMEM; | |
2412 | ||
2413 | fprintf(f, "%s-command=%s %u %s %s\n", type, service_exec_command_to_string(id), idx, p, args); | |
2414 | ||
2415 | return 0; | |
2416 | } | |
2417 | ||
a16e1123 LP |
2418 | static int service_serialize(Unit *u, FILE *f, FDSet *fds) { |
2419 | Service *s = SERVICE(u); | |
2339fc93 | 2420 | ServiceFDStore *fs; |
a34ceba6 | 2421 | int r; |
a16e1123 LP |
2422 | |
2423 | assert(u); | |
2424 | assert(f); | |
2425 | assert(fds); | |
2426 | ||
2427 | unit_serialize_item(u, f, "state", service_state_to_string(s->state)); | |
f42806df LP |
2428 | unit_serialize_item(u, f, "result", service_result_to_string(s->result)); |
2429 | unit_serialize_item(u, f, "reload-result", service_result_to_string(s->reload_result)); | |
a16e1123 LP |
2430 | |
2431 | if (s->control_pid > 0) | |
f06db334 | 2432 | unit_serialize_item_format(u, f, "control-pid", PID_FMT, s->control_pid); |
a16e1123 | 2433 | |
5925dd3c | 2434 | if (s->main_pid_known && s->main_pid > 0) |
ccd06097 | 2435 | unit_serialize_item_format(u, f, "main-pid", PID_FMT, s->main_pid); |
a16e1123 LP |
2436 | |
2437 | unit_serialize_item(u, f, "main-pid-known", yes_no(s->main_pid_known)); | |
de1d4f9b | 2438 | unit_serialize_item(u, f, "bus-name-good", yes_no(s->bus_name_good)); |
d8ccf5fd | 2439 | unit_serialize_item(u, f, "bus-name-owner", s->bus_name_owner); |
a16e1123 | 2440 | |
7a0019d3 | 2441 | unit_serialize_item_format(u, f, "n-restarts", "%u", s->n_restarts); |
7f923884 | 2442 | unit_serialize_item(u, f, "flush-n-restarts", yes_no(s->flush_n_restarts)); |
7a0019d3 | 2443 | |
a34ceba6 LP |
2444 | r = unit_serialize_item_escaped(u, f, "status-text", s->status_text); |
2445 | if (r < 0) | |
2446 | return r; | |
3a2776bc | 2447 | |
e266c068 MS |
2448 | service_serialize_exec_command(u, f, s->control_command); |
2449 | service_serialize_exec_command(u, f, s->main_command); | |
a16e1123 | 2450 | |
a34ceba6 LP |
2451 | r = unit_serialize_item_fd(u, f, fds, "stdin-fd", s->stdin_fd); |
2452 | if (r < 0) | |
2453 | return r; | |
2454 | r = unit_serialize_item_fd(u, f, fds, "stdout-fd", s->stdout_fd); | |
2455 | if (r < 0) | |
2456 | return r; | |
2457 | r = unit_serialize_item_fd(u, f, fds, "stderr-fd", s->stderr_fd); | |
2458 | if (r < 0) | |
2459 | return r; | |
e44da745 | 2460 | |
9dfb64f8 ZJS |
2461 | if (UNIT_ISSET(s->accept_socket)) { |
2462 | r = unit_serialize_item(u, f, "accept-socket", UNIT_DEREF(s->accept_socket)->id); | |
2463 | if (r < 0) | |
2464 | return r; | |
2465 | } | |
2466 | ||
a34ceba6 | 2467 | r = unit_serialize_item_fd(u, f, fds, "socket-fd", s->socket_fd); |
a34ceba6 LP |
2468 | if (r < 0) |
2469 | return r; | |
e44da745 | 2470 | |
2339fc93 | 2471 | LIST_FOREACH(fd_store, fs, s->fd_store) { |
8dd4c05b | 2472 | _cleanup_free_ char *c = NULL; |
2339fc93 LP |
2473 | int copy; |
2474 | ||
2475 | copy = fdset_put_dup(fds, fs->fd); | |
2476 | if (copy < 0) | |
2477 | return copy; | |
2478 | ||
8dd4c05b LP |
2479 | c = cescape(fs->fdname); |
2480 | ||
2481 | unit_serialize_item_format(u, f, "fd-store-fd", "%i %s", copy, strempty(c)); | |
2339fc93 LP |
2482 | } |
2483 | ||
ecdbca40 | 2484 | if (s->main_exec_status.pid > 0) { |
f06db334 LP |
2485 | unit_serialize_item_format(u, f, "main-exec-status-pid", PID_FMT, s->main_exec_status.pid); |
2486 | dual_timestamp_serialize(f, "main-exec-status-start", &s->main_exec_status.start_timestamp); | |
2487 | dual_timestamp_serialize(f, "main-exec-status-exit", &s->main_exec_status.exit_timestamp); | |
ecdbca40 | 2488 | |
799fd0fd | 2489 | if (dual_timestamp_is_set(&s->main_exec_status.exit_timestamp)) { |
f06db334 LP |
2490 | unit_serialize_item_format(u, f, "main-exec-status-code", "%i", s->main_exec_status.code); |
2491 | unit_serialize_item_format(u, f, "main-exec-status-status", "%i", s->main_exec_status.status); | |
ecdbca40 LP |
2492 | } |
2493 | } | |
f06db334 | 2494 | |
36b693a6 | 2495 | dual_timestamp_serialize(f, "watchdog-timestamp", &s->watchdog_timestamp); |
ecdbca40 | 2496 | |
a34ceba6 | 2497 | unit_serialize_item(u, f, "forbid-restart", yes_no(s->forbid_restart)); |
6aca9a58 | 2498 | |
2787d83c M |
2499 | if (s->watchdog_override_enable) |
2500 | unit_serialize_item_format(u, f, "watchdog-override-usec", USEC_FMT, s->watchdog_override_usec); | |
2501 | ||
a16e1123 LP |
2502 | return 0; |
2503 | } | |
2504 | ||
e266c068 MS |
2505 | static int service_deserialize_exec_command(Unit *u, const char *key, const char *value) { |
2506 | Service *s = SERVICE(u); | |
2507 | int r; | |
2508 | unsigned idx = 0, i; | |
2509 | bool control, found = false; | |
2510 | ServiceExecCommand id = _SERVICE_EXEC_COMMAND_INVALID; | |
2511 | ExecCommand *command = NULL; | |
6eeec374 | 2512 | _cleanup_free_ char *path = NULL; |
e266c068 MS |
2513 | _cleanup_strv_free_ char **argv = NULL; |
2514 | ||
2515 | enum ExecCommandState { | |
2516 | STATE_EXEC_COMMAND_TYPE, | |
2517 | STATE_EXEC_COMMAND_INDEX, | |
2518 | STATE_EXEC_COMMAND_PATH, | |
2519 | STATE_EXEC_COMMAND_ARGS, | |
2520 | _STATE_EXEC_COMMAND_MAX, | |
2521 | _STATE_EXEC_COMMAND_INVALID = -1, | |
2522 | } state; | |
2523 | ||
2524 | assert(s); | |
2525 | assert(key); | |
2526 | assert(value); | |
2527 | ||
2528 | control = streq(key, "control-command"); | |
2529 | ||
2530 | state = STATE_EXEC_COMMAND_TYPE; | |
2531 | ||
2532 | for (;;) { | |
2533 | _cleanup_free_ char *arg = NULL; | |
2534 | ||
2535 | r = extract_first_word(&value, &arg, NULL, EXTRACT_CUNESCAPE); | |
2536 | if (r == 0) | |
2537 | break; | |
2538 | else if (r < 0) | |
2539 | return r; | |
2540 | ||
2541 | switch (state) { | |
2542 | case STATE_EXEC_COMMAND_TYPE: | |
2543 | id = service_exec_command_from_string(arg); | |
2544 | if (id < 0) | |
2545 | return -EINVAL; | |
2546 | ||
2547 | state = STATE_EXEC_COMMAND_INDEX; | |
2548 | break; | |
2549 | case STATE_EXEC_COMMAND_INDEX: | |
2550 | r = safe_atou(arg, &idx); | |
2551 | if (r < 0) | |
2552 | return -EINVAL; | |
2553 | ||
2554 | state = STATE_EXEC_COMMAND_PATH; | |
2555 | break; | |
2556 | case STATE_EXEC_COMMAND_PATH: | |
2557 | path = arg; | |
2558 | arg = NULL; | |
2559 | state = STATE_EXEC_COMMAND_ARGS; | |
2560 | ||
2561 | if (!path_is_absolute(path)) | |
2562 | return -EINVAL; | |
2563 | break; | |
2564 | case STATE_EXEC_COMMAND_ARGS: | |
2565 | r = strv_extend(&argv, arg); | |
2566 | if (r < 0) | |
2567 | return -ENOMEM; | |
2568 | break; | |
2569 | default: | |
2570 | assert_not_reached("Unknown error at deserialization of exec command"); | |
2571 | break; | |
2572 | } | |
2573 | } | |
2574 | ||
2575 | if (state != STATE_EXEC_COMMAND_ARGS) | |
2576 | return -EINVAL; | |
2577 | ||
2578 | /* Let's check whether exec command on given offset matches data that we just deserialized */ | |
2579 | for (command = s->exec_command[id], i = 0; command; command = command->command_next, i++) { | |
2580 | if (i != idx) | |
2581 | continue; | |
2582 | ||
2583 | found = strv_equal(argv, command->argv) && streq(command->path, path); | |
2584 | break; | |
2585 | } | |
2586 | ||
2587 | if (!found) { | |
2588 | /* Command at the index we serialized is different, let's look for command that exactly | |
2589 | * matches but is on different index. If there is no such command we will not resume execution. */ | |
2590 | for (command = s->exec_command[id]; command; command = command->command_next) | |
2591 | if (strv_equal(command->argv, argv) && streq(command->path, path)) | |
2592 | break; | |
2593 | } | |
2594 | ||
2595 | if (command && control) | |
2596 | s->control_command = command; | |
2597 | else if (command) | |
2598 | s->main_command = command; | |
2599 | else | |
2600 | log_unit_warning(u, "Current command vanished from the unit file, execution of the command list won't be resumed."); | |
2601 | ||
2602 | return 0; | |
2603 | } | |
2604 | ||
a16e1123 LP |
2605 | static int service_deserialize_item(Unit *u, const char *key, const char *value, FDSet *fds) { |
2606 | Service *s = SERVICE(u); | |
2339fc93 | 2607 | int r; |
a16e1123 LP |
2608 | |
2609 | assert(u); | |
2610 | assert(key); | |
2611 | assert(value); | |
2612 | assert(fds); | |
2613 | ||
2614 | if (streq(key, "state")) { | |
2615 | ServiceState state; | |
2616 | ||
117dcc57 ZJS |
2617 | state = service_state_from_string(value); |
2618 | if (state < 0) | |
f2341e0a | 2619 | log_unit_debug(u, "Failed to parse state value: %s", value); |
a16e1123 LP |
2620 | else |
2621 | s->deserialized_state = state; | |
f42806df LP |
2622 | } else if (streq(key, "result")) { |
2623 | ServiceResult f; | |
2624 | ||
2625 | f = service_result_from_string(value); | |
2626 | if (f < 0) | |
f2341e0a | 2627 | log_unit_debug(u, "Failed to parse result value: %s", value); |
f42806df LP |
2628 | else if (f != SERVICE_SUCCESS) |
2629 | s->result = f; | |
2630 | ||
2631 | } else if (streq(key, "reload-result")) { | |
2632 | ServiceResult f; | |
2633 | ||
2634 | f = service_result_from_string(value); | |
2635 | if (f < 0) | |
f2341e0a | 2636 | log_unit_debug(u, "Failed to parse reload result value: %s", value); |
f42806df LP |
2637 | else if (f != SERVICE_SUCCESS) |
2638 | s->reload_result = f; | |
a16e1123 | 2639 | |
a16e1123 | 2640 | } else if (streq(key, "control-pid")) { |
5925dd3c | 2641 | pid_t pid; |
a16e1123 | 2642 | |
e364ad06 | 2643 | if (parse_pid(value, &pid) < 0) |
f2341e0a | 2644 | log_unit_debug(u, "Failed to parse control-pid value: %s", value); |
a16e1123 | 2645 | else |
e55224ca | 2646 | s->control_pid = pid; |
a16e1123 | 2647 | } else if (streq(key, "main-pid")) { |
5925dd3c | 2648 | pid_t pid; |
a16e1123 | 2649 | |
e364ad06 | 2650 | if (parse_pid(value, &pid) < 0) |
f2341e0a | 2651 | log_unit_debug(u, "Failed to parse main-pid value: %s", value); |
eabd3e56 LP |
2652 | else |
2653 | (void) service_set_main_pid(s, pid); | |
a16e1123 LP |
2654 | } else if (streq(key, "main-pid-known")) { |
2655 | int b; | |
2656 | ||
117dcc57 ZJS |
2657 | b = parse_boolean(value); |
2658 | if (b < 0) | |
f2341e0a | 2659 | log_unit_debug(u, "Failed to parse main-pid-known value: %s", value); |
a16e1123 LP |
2660 | else |
2661 | s->main_pid_known = b; | |
de1d4f9b WF |
2662 | } else if (streq(key, "bus-name-good")) { |
2663 | int b; | |
2664 | ||
2665 | b = parse_boolean(value); | |
2666 | if (b < 0) | |
2667 | log_unit_debug(u, "Failed to parse bus-name-good value: %s", value); | |
2668 | else | |
2669 | s->bus_name_good = b; | |
d8ccf5fd DM |
2670 | } else if (streq(key, "bus-name-owner")) { |
2671 | r = free_and_strdup(&s->bus_name_owner, value); | |
2672 | if (r < 0) | |
2673 | log_unit_error_errno(u, r, "Unable to deserialize current bus owner %s: %m", value); | |
3a2776bc LP |
2674 | } else if (streq(key, "status-text")) { |
2675 | char *t; | |
2676 | ||
f2341e0a LP |
2677 | r = cunescape(value, 0, &t); |
2678 | if (r < 0) | |
2679 | log_unit_debug_errno(u, r, "Failed to unescape status text: %s", value); | |
117dcc57 | 2680 | else { |
3a2776bc LP |
2681 | free(s->status_text); |
2682 | s->status_text = t; | |
2683 | } | |
2684 | ||
9dfb64f8 ZJS |
2685 | } else if (streq(key, "accept-socket")) { |
2686 | Unit *socket; | |
2687 | ||
2688 | r = manager_load_unit(u->manager, value, NULL, NULL, &socket); | |
2689 | if (r < 0) | |
2690 | log_unit_debug_errno(u, r, "Failed to load accept-socket unit: %s", value); | |
2691 | else { | |
7f7d01ed | 2692 | unit_ref_set(&s->accept_socket, u, socket); |
9dfb64f8 ZJS |
2693 | SOCKET(socket)->n_connections++; |
2694 | } | |
2695 | ||
a16e1123 LP |
2696 | } else if (streq(key, "socket-fd")) { |
2697 | int fd; | |
2698 | ||
2699 | if (safe_atoi(value, &fd) < 0 || fd < 0 || !fdset_contains(fds, fd)) | |
f2341e0a | 2700 | log_unit_debug(u, "Failed to parse socket-fd value: %s", value); |
a16e1123 | 2701 | else { |
574634bc | 2702 | asynchronous_close(s->socket_fd); |
a16e1123 LP |
2703 | s->socket_fd = fdset_remove(fds, fd); |
2704 | } | |
2339fc93 | 2705 | } else if (streq(key, "fd-store-fd")) { |
8dd4c05b LP |
2706 | const char *fdv; |
2707 | size_t pf; | |
2339fc93 LP |
2708 | int fd; |
2709 | ||
8dd4c05b LP |
2710 | pf = strcspn(value, WHITESPACE); |
2711 | fdv = strndupa(value, pf); | |
2712 | ||
2713 | if (safe_atoi(fdv, &fd) < 0 || fd < 0 || !fdset_contains(fds, fd)) | |
f2341e0a | 2714 | log_unit_debug(u, "Failed to parse fd-store-fd value: %s", value); |
2339fc93 | 2715 | else { |
8dd4c05b LP |
2716 | _cleanup_free_ char *t = NULL; |
2717 | const char *fdn; | |
2718 | ||
2719 | fdn = value + pf; | |
2720 | fdn += strspn(fdn, WHITESPACE); | |
2721 | (void) cunescape(fdn, 0, &t); | |
2722 | ||
2723 | r = service_add_fd_store(s, fd, t); | |
2339fc93 | 2724 | if (r < 0) |
f2341e0a | 2725 | log_unit_error_errno(u, r, "Failed to add fd to store: %m"); |
9021ff17 | 2726 | else |
2339fc93 LP |
2727 | fdset_remove(fds, fd); |
2728 | } | |
2729 | ||
ecdbca40 LP |
2730 | } else if (streq(key, "main-exec-status-pid")) { |
2731 | pid_t pid; | |
2732 | ||
e364ad06 | 2733 | if (parse_pid(value, &pid) < 0) |
f2341e0a | 2734 | log_unit_debug(u, "Failed to parse main-exec-status-pid value: %s", value); |
ecdbca40 LP |
2735 | else |
2736 | s->main_exec_status.pid = pid; | |
2737 | } else if (streq(key, "main-exec-status-code")) { | |
2738 | int i; | |
2739 | ||
e364ad06 | 2740 | if (safe_atoi(value, &i) < 0) |
f2341e0a | 2741 | log_unit_debug(u, "Failed to parse main-exec-status-code value: %s", value); |
ecdbca40 LP |
2742 | else |
2743 | s->main_exec_status.code = i; | |
2744 | } else if (streq(key, "main-exec-status-status")) { | |
2745 | int i; | |
2746 | ||
e364ad06 | 2747 | if (safe_atoi(value, &i) < 0) |
f2341e0a | 2748 | log_unit_debug(u, "Failed to parse main-exec-status-status value: %s", value); |
ecdbca40 LP |
2749 | else |
2750 | s->main_exec_status.status = i; | |
799fd0fd LP |
2751 | } else if (streq(key, "main-exec-status-start")) |
2752 | dual_timestamp_deserialize(value, &s->main_exec_status.start_timestamp); | |
2753 | else if (streq(key, "main-exec-status-exit")) | |
2754 | dual_timestamp_deserialize(value, &s->main_exec_status.exit_timestamp); | |
a6927d7f MO |
2755 | else if (streq(key, "watchdog-timestamp")) |
2756 | dual_timestamp_deserialize(value, &s->watchdog_timestamp); | |
613b411c | 2757 | else if (streq(key, "forbid-restart")) { |
6aca9a58 SE |
2758 | int b; |
2759 | ||
2760 | b = parse_boolean(value); | |
2761 | if (b < 0) | |
f2341e0a | 2762 | log_unit_debug(u, "Failed to parse forbid-restart value: %s", value); |
6aca9a58 SE |
2763 | else |
2764 | s->forbid_restart = b; | |
a34ceba6 LP |
2765 | } else if (streq(key, "stdin-fd")) { |
2766 | int fd; | |
2767 | ||
2768 | if (safe_atoi(value, &fd) < 0 || fd < 0 || !fdset_contains(fds, fd)) | |
2769 | log_unit_debug(u, "Failed to parse stdin-fd value: %s", value); | |
2770 | else { | |
2771 | asynchronous_close(s->stdin_fd); | |
2772 | s->stdin_fd = fdset_remove(fds, fd); | |
1e22b5cd | 2773 | s->exec_context.stdio_as_fds = true; |
a34ceba6 LP |
2774 | } |
2775 | } else if (streq(key, "stdout-fd")) { | |
2776 | int fd; | |
2777 | ||
2778 | if (safe_atoi(value, &fd) < 0 || fd < 0 || !fdset_contains(fds, fd)) | |
2779 | log_unit_debug(u, "Failed to parse stdout-fd value: %s", value); | |
2780 | else { | |
2781 | asynchronous_close(s->stdout_fd); | |
2782 | s->stdout_fd = fdset_remove(fds, fd); | |
1e22b5cd | 2783 | s->exec_context.stdio_as_fds = true; |
a34ceba6 LP |
2784 | } |
2785 | } else if (streq(key, "stderr-fd")) { | |
2786 | int fd; | |
2787 | ||
2788 | if (safe_atoi(value, &fd) < 0 || fd < 0 || !fdset_contains(fds, fd)) | |
2789 | log_unit_debug(u, "Failed to parse stderr-fd value: %s", value); | |
2790 | else { | |
2791 | asynchronous_close(s->stderr_fd); | |
2792 | s->stderr_fd = fdset_remove(fds, fd); | |
1e22b5cd | 2793 | s->exec_context.stdio_as_fds = true; |
a34ceba6 | 2794 | } |
2787d83c M |
2795 | } else if (streq(key, "watchdog-override-usec")) { |
2796 | usec_t watchdog_override_usec; | |
2797 | if (timestamp_deserialize(value, &watchdog_override_usec) < 0) | |
2798 | log_unit_debug(u, "Failed to parse watchdog_override_usec value: %s", value); | |
2799 | else { | |
2800 | s->watchdog_override_enable = true; | |
2801 | s->watchdog_override_usec = watchdog_override_usec; | |
2802 | } | |
e266c068 MS |
2803 | } else if (STR_IN_SET(key, "main-command", "control-command")) { |
2804 | r = service_deserialize_exec_command(u, key, value); | |
2805 | if (r < 0) | |
2806 | log_unit_debug_errno(u, r, "Failed to parse serialized command \"%s\": %m", value); | |
7a0019d3 LP |
2807 | |
2808 | } else if (streq(key, "n-restarts")) { | |
2809 | r = safe_atou(value, &s->n_restarts); | |
2810 | if (r < 0) | |
2811 | log_unit_debug_errno(u, r, "Failed to parse serialized restart counter '%s': %m", value); | |
2812 | ||
2813 | } else if (streq(key, "flush-n-restarts")) { | |
2814 | r = parse_boolean(value); | |
2815 | if (r < 0) | |
2816 | log_unit_debug_errno(u, r, "Failed to parse serialized flush restart counter setting '%s': %m", value); | |
2817 | else | |
2818 | s->flush_n_restarts = r; | |
c17ec25e | 2819 | } else |
f2341e0a | 2820 | log_unit_debug(u, "Unknown serialization key: %s", key); |
a16e1123 LP |
2821 | |
2822 | return 0; | |
2823 | } | |
2824 | ||
44a6b1b6 | 2825 | _pure_ static UnitActiveState service_active_state(Unit *u) { |
e056b01d LP |
2826 | const UnitActiveState *table; |
2827 | ||
87f0e418 | 2828 | assert(u); |
5cb5a6ff | 2829 | |
e056b01d LP |
2830 | table = SERVICE(u)->type == SERVICE_IDLE ? state_translation_table_idle : state_translation_table; |
2831 | ||
2832 | return table[SERVICE(u)->state]; | |
034c6ed7 LP |
2833 | } |
2834 | ||
10a94420 LP |
2835 | static const char *service_sub_state_to_string(Unit *u) { |
2836 | assert(u); | |
2837 | ||
2838 | return service_state_to_string(SERVICE(u)->state); | |
2839 | } | |
2840 | ||
f2f725e5 | 2841 | static bool service_may_gc(Unit *u) { |
701cc384 LP |
2842 | Service *s = SERVICE(u); |
2843 | ||
2844 | assert(s); | |
2845 | ||
e98b2fbb | 2846 | /* Never clean up services that still have a process around, even if the service is formally dead. Note that |
f2f725e5 | 2847 | * unit_may_gc() already checked our cgroup for us, we just check our two additional PIDs, too, in case they |
e98b2fbb LP |
2848 | * have moved outside of the cgroup. */ |
2849 | ||
2850 | if (main_pid_good(s) > 0 || | |
6d55002a | 2851 | control_pid_good(s) > 0) |
f2f725e5 | 2852 | return false; |
6d55002a | 2853 | |
f2f725e5 | 2854 | return true; |
6d55002a LP |
2855 | } |
2856 | ||
3a111838 MS |
2857 | static int service_retry_pid_file(Service *s) { |
2858 | int r; | |
2859 | ||
2860 | assert(s->pid_file); | |
3742095b | 2861 | assert(IN_SET(s->state, SERVICE_START, SERVICE_START_POST)); |
3a111838 MS |
2862 | |
2863 | r = service_load_pid_file(s, false); | |
2864 | if (r < 0) | |
2865 | return r; | |
2866 | ||
2867 | service_unwatch_pid_file(s); | |
2868 | ||
f42806df | 2869 | service_enter_running(s, SERVICE_SUCCESS); |
3a111838 MS |
2870 | return 0; |
2871 | } | |
2872 | ||
2873 | static int service_watch_pid_file(Service *s) { | |
2874 | int r; | |
2875 | ||
f2341e0a | 2876 | log_unit_debug(UNIT(s), "Setting watch for PID file %s", s->pid_file_pathspec->path); |
8bb2d17d | 2877 | |
718db961 | 2878 | r = path_spec_watch(s->pid_file_pathspec, service_dispatch_io); |
3a111838 MS |
2879 | if (r < 0) |
2880 | goto fail; | |
2881 | ||
2882 | /* the pidfile might have appeared just before we set the watch */ | |
f2341e0a | 2883 | log_unit_debug(UNIT(s), "Trying to read PID file %s in case it changed", s->pid_file_pathspec->path); |
3a111838 MS |
2884 | service_retry_pid_file(s); |
2885 | ||
2886 | return 0; | |
2887 | fail: | |
f2341e0a | 2888 | log_unit_error_errno(UNIT(s), r, "Failed to set a watch for PID file %s: %m", s->pid_file_pathspec->path); |
3a111838 MS |
2889 | service_unwatch_pid_file(s); |
2890 | return r; | |
2891 | } | |
2892 | ||
2893 | static int service_demand_pid_file(Service *s) { | |
2894 | PathSpec *ps; | |
2895 | ||
2896 | assert(s->pid_file); | |
2897 | assert(!s->pid_file_pathspec); | |
2898 | ||
2899 | ps = new0(PathSpec, 1); | |
2900 | if (!ps) | |
2901 | return -ENOMEM; | |
2902 | ||
718db961 | 2903 | ps->unit = UNIT(s); |
3a111838 MS |
2904 | ps->path = strdup(s->pid_file); |
2905 | if (!ps->path) { | |
2906 | free(ps); | |
2907 | return -ENOMEM; | |
2908 | } | |
2909 | ||
2910 | path_kill_slashes(ps->path); | |
2911 | ||
2912 | /* PATH_CHANGED would not be enough. There are daemons (sendmail) that | |
2913 | * keep their PID file open all the time. */ | |
2914 | ps->type = PATH_MODIFIED; | |
2915 | ps->inotify_fd = -1; | |
2916 | ||
2917 | s->pid_file_pathspec = ps; | |
2918 | ||
2919 | return service_watch_pid_file(s); | |
2920 | } | |
2921 | ||
718db961 | 2922 | static int service_dispatch_io(sd_event_source *source, int fd, uint32_t events, void *userdata) { |
e14c2802 LP |
2923 | PathSpec *p = userdata; |
2924 | Service *s; | |
2925 | ||
2926 | assert(p); | |
2927 | ||
2928 | s = SERVICE(p->unit); | |
3a111838 MS |
2929 | |
2930 | assert(s); | |
2931 | assert(fd >= 0); | |
3742095b | 2932 | assert(IN_SET(s->state, SERVICE_START, SERVICE_START_POST)); |
3a111838 | 2933 | assert(s->pid_file_pathspec); |
57020a3a | 2934 | assert(path_spec_owns_inotify_fd(s->pid_file_pathspec, fd)); |
3a111838 | 2935 | |
f2341e0a | 2936 | log_unit_debug(UNIT(s), "inotify event"); |
3a111838 | 2937 | |
e14c2802 | 2938 | if (path_spec_fd_event(p, events) < 0) |
3a111838 MS |
2939 | goto fail; |
2940 | ||
2941 | if (service_retry_pid_file(s) == 0) | |
718db961 | 2942 | return 0; |
3a111838 MS |
2943 | |
2944 | if (service_watch_pid_file(s) < 0) | |
2945 | goto fail; | |
2946 | ||
718db961 LP |
2947 | return 0; |
2948 | ||
3a111838 MS |
2949 | fail: |
2950 | service_unwatch_pid_file(s); | |
f42806df | 2951 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_FAILURE_RESOURCES); |
718db961 | 2952 | return 0; |
3a111838 MS |
2953 | } |
2954 | ||
a911bb9a LP |
2955 | static void service_notify_cgroup_empty_event(Unit *u) { |
2956 | Service *s = SERVICE(u); | |
2957 | ||
2958 | assert(u); | |
2959 | ||
f2341e0a | 2960 | log_unit_debug(u, "cgroup is empty"); |
a911bb9a LP |
2961 | |
2962 | switch (s->state) { | |
2963 | ||
2964 | /* Waiting for SIGCHLD is usually more interesting, | |
2965 | * because it includes return codes/signals. Which is | |
2966 | * why we ignore the cgroup events for most cases, | |
2967 | * except when we don't know pid which to expect the | |
2968 | * SIGCHLD for. */ | |
2969 | ||
2970 | case SERVICE_START: | |
3c751b1b LP |
2971 | if (s->type == SERVICE_NOTIFY && |
2972 | main_pid_good(s) == 0 && | |
2973 | control_pid_good(s) == 0) { | |
3d474ef7 | 2974 | /* No chance of getting a ready notification anymore */ |
c3fda31d | 2975 | service_enter_stop_post(s, SERVICE_FAILURE_PROTOCOL); |
71e529fc JW |
2976 | break; |
2977 | } | |
2978 | ||
4831981d | 2979 | _fallthrough_; |
71e529fc | 2980 | case SERVICE_START_POST: |
3c751b1b LP |
2981 | if (s->pid_file_pathspec && |
2982 | main_pid_good(s) == 0 && | |
2983 | control_pid_good(s) == 0) { | |
2984 | ||
3d474ef7 | 2985 | /* Give up hoping for the daemon to write its PID file */ |
f2341e0a | 2986 | log_unit_warning(u, "Daemon never wrote its PID file. Failing."); |
8bb2d17d | 2987 | |
a911bb9a LP |
2988 | service_unwatch_pid_file(s); |
2989 | if (s->state == SERVICE_START) | |
c3fda31d | 2990 | service_enter_stop_post(s, SERVICE_FAILURE_PROTOCOL); |
a911bb9a | 2991 | else |
c35755fb | 2992 | service_enter_stop(s, SERVICE_FAILURE_PROTOCOL); |
a911bb9a LP |
2993 | } |
2994 | break; | |
2995 | ||
2996 | case SERVICE_RUNNING: | |
2997 | /* service_enter_running() will figure out what to do */ | |
2998 | service_enter_running(s, SERVICE_SUCCESS); | |
2999 | break; | |
3000 | ||
db2cb23b | 3001 | case SERVICE_STOP_SIGABRT: |
a911bb9a LP |
3002 | case SERVICE_STOP_SIGTERM: |
3003 | case SERVICE_STOP_SIGKILL: | |
3004 | ||
b13ddbbc | 3005 | if (main_pid_good(s) <= 0 && control_pid_good(s) <= 0) |
a911bb9a LP |
3006 | service_enter_stop_post(s, SERVICE_SUCCESS); |
3007 | ||
3008 | break; | |
3009 | ||
3010 | case SERVICE_STOP_POST: | |
3011 | case SERVICE_FINAL_SIGTERM: | |
3012 | case SERVICE_FINAL_SIGKILL: | |
b13ddbbc | 3013 | if (main_pid_good(s) <= 0 && control_pid_good(s) <= 0) |
a911bb9a LP |
3014 | service_enter_dead(s, SERVICE_SUCCESS, true); |
3015 | ||
3016 | break; | |
3017 | ||
3018 | default: | |
3019 | ; | |
3020 | } | |
3021 | } | |
3022 | ||
87f0e418 | 3023 | static void service_sigchld_event(Unit *u, pid_t pid, int code, int status) { |
5cdabc8d | 3024 | bool notify_dbus = true; |
87f0e418 | 3025 | Service *s = SERVICE(u); |
f42806df | 3026 | ServiceResult f; |
5cb5a6ff LP |
3027 | |
3028 | assert(s); | |
034c6ed7 LP |
3029 | assert(pid >= 0); |
3030 | ||
1f0958f6 | 3031 | if (is_clean_exit(code, status, s->type == SERVICE_ONESHOT ? EXIT_CLEAN_COMMAND : EXIT_CLEAN_DAEMON, &s->success_status)) |
f42806df LP |
3032 | f = SERVICE_SUCCESS; |
3033 | else if (code == CLD_EXITED) | |
3034 | f = SERVICE_FAILURE_EXIT_CODE; | |
3035 | else if (code == CLD_KILLED) | |
3036 | f = SERVICE_FAILURE_SIGNAL; | |
3037 | else if (code == CLD_DUMPED) | |
3038 | f = SERVICE_FAILURE_CORE_DUMP; | |
d06dacd0 | 3039 | else |
cfc4eb4c | 3040 | assert_not_reached("Unknown code"); |
034c6ed7 LP |
3041 | |
3042 | if (s->main_pid == pid) { | |
db01f8b3 MS |
3043 | /* Forking services may occasionally move to a new PID. |
3044 | * As long as they update the PID file before exiting the old | |
3045 | * PID, they're fine. */ | |
db256aab | 3046 | if (service_load_pid_file(s, false) > 0) |
db01f8b3 | 3047 | return; |
034c6ed7 | 3048 | |
034c6ed7 | 3049 | s->main_pid = 0; |
6ea832a2 | 3050 | exec_status_exit(&s->main_exec_status, &s->exec_context, pid, code, status); |
034c6ed7 | 3051 | |
867b3b7d | 3052 | if (s->main_command) { |
fbeefb45 LP |
3053 | /* If this is not a forking service than the |
3054 | * main process got started and hence we copy | |
3055 | * the exit status so that it is recorded both | |
3056 | * as main and as control process exit | |
3057 | * status */ | |
3058 | ||
867b3b7d | 3059 | s->main_command->exec_status = s->main_exec_status; |
b708e7ce | 3060 | |
3ed0cd26 | 3061 | if (s->main_command->flags & EXEC_COMMAND_IGNORE_FAILURE) |
f42806df | 3062 | f = SERVICE_SUCCESS; |
fbeefb45 LP |
3063 | } else if (s->exec_command[SERVICE_EXEC_START]) { |
3064 | ||
3065 | /* If this is a forked process, then we should | |
3066 | * ignore the return value if this was | |
3067 | * configured for the starter process */ | |
3068 | ||
3ed0cd26 | 3069 | if (s->exec_command[SERVICE_EXEC_START]->flags & EXEC_COMMAND_IGNORE_FAILURE) |
fbeefb45 | 3070 | f = SERVICE_SUCCESS; |
034c6ed7 LP |
3071 | } |
3072 | ||
5368222d LP |
3073 | /* When this is a successful exit, let's log about the exit code on DEBUG level. If this is a failure |
3074 | * and the process exited on its own via exit(), then let's make this a NOTICE, under the assumption | |
3075 | * that the service already logged the reason at a higher log level on its own. However, if the service | |
3076 | * died due to a signal, then it most likely didn't say anything about any reason, hence let's raise | |
3077 | * our log level to WARNING then. */ | |
3078 | ||
3079 | log_struct(f == SERVICE_SUCCESS ? LOG_DEBUG : | |
3080 | (code == CLD_EXITED ? LOG_NOTICE : LOG_WARNING), | |
f2341e0a LP |
3081 | LOG_UNIT_MESSAGE(u, "Main process exited, code=%s, status=%i/%s", |
3082 | sigchld_code_to_string(code), status, | |
e2cc6eca LP |
3083 | strna(code == CLD_EXITED |
3084 | ? exit_status_to_string(status, EXIT_STATUS_FULL) | |
3085 | : signal_to_string(status))), | |
f2341e0a LP |
3086 | "EXIT_CODE=%s", sigchld_code_to_string(code), |
3087 | "EXIT_STATUS=%i", status, | |
ba360bb0 | 3088 | LOG_UNIT_ID(u), |
f1c50bec | 3089 | LOG_UNIT_INVOCATION_ID(u), |
f2341e0a | 3090 | NULL); |
f42806df | 3091 | |
a0fef983 | 3092 | if (s->result == SERVICE_SUCCESS) |
f42806df | 3093 | s->result = f; |
034c6ed7 | 3094 | |
867b3b7d LP |
3095 | if (s->main_command && |
3096 | s->main_command->command_next && | |
b58aeb70 | 3097 | s->type == SERVICE_ONESHOT && |
f42806df | 3098 | f == SERVICE_SUCCESS) { |
034c6ed7 | 3099 | |
34e9ba66 LP |
3100 | /* There is another command to * |
3101 | * execute, so let's do that. */ | |
034c6ed7 | 3102 | |
f2341e0a | 3103 | log_unit_debug(u, "Running next main command for state %s.", service_state_to_string(s->state)); |
f42806df | 3104 | service_run_next_main(s); |
034c6ed7 | 3105 | |
34e9ba66 LP |
3106 | } else { |
3107 | ||
3108 | /* The service exited, so the service is officially | |
3109 | * gone. */ | |
867b3b7d | 3110 | s->main_command = NULL; |
34e9ba66 LP |
3111 | |
3112 | switch (s->state) { | |
3113 | ||
3114 | case SERVICE_START_POST: | |
3115 | case SERVICE_RELOAD: | |
3116 | case SERVICE_STOP: | |
3117 | /* Need to wait until the operation is | |
3118 | * done */ | |
c4653a4d | 3119 | break; |
7d55e835 | 3120 | |
34e9ba66 LP |
3121 | case SERVICE_START: |
3122 | if (s->type == SERVICE_ONESHOT) { | |
3123 | /* This was our main goal, so let's go on */ | |
f42806df | 3124 | if (f == SERVICE_SUCCESS) |
34e9ba66 LP |
3125 | service_enter_start_post(s); |
3126 | else | |
c3fda31d | 3127 | service_enter_signal(s, SERVICE_STOP_SIGTERM, f); |
34e9ba66 | 3128 | break; |
3d474ef7 JW |
3129 | } else if (s->type == SERVICE_NOTIFY) { |
3130 | /* Only enter running through a notification, so that the | |
3131 | * SERVICE_START state signifies that no ready notification | |
3132 | * has been received */ | |
3133 | if (f != SERVICE_SUCCESS) | |
c3fda31d | 3134 | service_enter_signal(s, SERVICE_STOP_SIGTERM, f); |
df66b93f JW |
3135 | else if (!s->remain_after_exit || s->notify_access == NOTIFY_MAIN) |
3136 | /* The service has never been and will never be active */ | |
c3fda31d | 3137 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_FAILURE_PROTOCOL); |
3d474ef7 | 3138 | break; |
34e9ba66 | 3139 | } |
034c6ed7 | 3140 | |
4831981d | 3141 | _fallthrough_; |
34e9ba66 | 3142 | case SERVICE_RUNNING: |
f42806df | 3143 | service_enter_running(s, f); |
34e9ba66 | 3144 | break; |
034c6ed7 | 3145 | |
db2cb23b | 3146 | case SERVICE_STOP_SIGABRT: |
34e9ba66 LP |
3147 | case SERVICE_STOP_SIGTERM: |
3148 | case SERVICE_STOP_SIGKILL: | |
5cb5a6ff | 3149 | |
b13ddbbc | 3150 | if (control_pid_good(s) <= 0) |
f42806df | 3151 | service_enter_stop_post(s, f); |
5cb5a6ff | 3152 | |
34e9ba66 LP |
3153 | /* If there is still a control process, wait for that first */ |
3154 | break; | |
3155 | ||
bf108e55 LP |
3156 | case SERVICE_STOP_POST: |
3157 | case SERVICE_FINAL_SIGTERM: | |
3158 | case SERVICE_FINAL_SIGKILL: | |
3159 | ||
b13ddbbc | 3160 | if (control_pid_good(s) <= 0) |
bf108e55 LP |
3161 | service_enter_dead(s, f, true); |
3162 | break; | |
3163 | ||
34e9ba66 LP |
3164 | default: |
3165 | assert_not_reached("Uh, main process died at wrong time."); | |
3166 | } | |
034c6ed7 | 3167 | } |
5cb5a6ff | 3168 | |
034c6ed7 | 3169 | } else if (s->control_pid == pid) { |
34e9ba66 LP |
3170 | s->control_pid = 0; |
3171 | ||
b708e7ce | 3172 | if (s->control_command) { |
8bb2d17d | 3173 | exec_status_exit(&s->control_command->exec_status, &s->exec_context, pid, code, status); |
a16e1123 | 3174 | |
3ed0cd26 | 3175 | if (s->control_command->flags & EXEC_COMMAND_IGNORE_FAILURE) |
f42806df | 3176 | f = SERVICE_SUCCESS; |
b708e7ce LP |
3177 | } |
3178 | ||
f2341e0a LP |
3179 | log_unit_full(u, f == SERVICE_SUCCESS ? LOG_DEBUG : LOG_NOTICE, 0, |
3180 | "Control process exited, code=%s status=%i", | |
3181 | sigchld_code_to_string(code), status); | |
f42806df | 3182 | |
a0fef983 | 3183 | if (s->result == SERVICE_SUCCESS) |
f42806df | 3184 | s->result = f; |
034c6ed7 | 3185 | |
34e9ba66 LP |
3186 | if (s->control_command && |
3187 | s->control_command->command_next && | |
f42806df | 3188 | f == SERVICE_SUCCESS) { |
034c6ed7 LP |
3189 | |
3190 | /* There is another command to * | |
3191 | * execute, so let's do that. */ | |
3192 | ||
f2341e0a | 3193 | log_unit_debug(u, "Running next control command for state %s.", service_state_to_string(s->state)); |
f42806df | 3194 | service_run_next_control(s); |
034c6ed7 | 3195 | |
80876c20 | 3196 | } else { |
034c6ed7 LP |
3197 | /* No further commands for this step, so let's |
3198 | * figure out what to do next */ | |
3199 | ||
a16e1123 LP |
3200 | s->control_command = NULL; |
3201 | s->control_command_id = _SERVICE_EXEC_COMMAND_INVALID; | |
3202 | ||
f2341e0a | 3203 | log_unit_debug(u, "Got final SIGCHLD for state %s.", service_state_to_string(s->state)); |
bd982a8b | 3204 | |
034c6ed7 LP |
3205 | switch (s->state) { |
3206 | ||
3207 | case SERVICE_START_PRE: | |
f42806df | 3208 | if (f == SERVICE_SUCCESS) |
034c6ed7 LP |
3209 | service_enter_start(s); |
3210 | else | |
c3fda31d | 3211 | service_enter_signal(s, SERVICE_STOP_SIGTERM, f); |
034c6ed7 LP |
3212 | break; |
3213 | ||
3214 | case SERVICE_START: | |
bfba3256 LP |
3215 | if (s->type != SERVICE_FORKING) |
3216 | /* Maybe spurious event due to a reload that changed the type? */ | |
3217 | break; | |
034c6ed7 | 3218 | |
f42806df | 3219 | if (f != SERVICE_SUCCESS) { |
c3fda31d | 3220 | service_enter_signal(s, SERVICE_STOP_SIGTERM, f); |
3a111838 MS |
3221 | break; |
3222 | } | |
034c6ed7 | 3223 | |
3a111838 | 3224 | if (s->pid_file) { |
f42806df LP |
3225 | bool has_start_post; |
3226 | int r; | |
3227 | ||
3a111838 MS |
3228 | /* Let's try to load the pid file here if we can. |
3229 | * The PID file might actually be created by a START_POST | |
3230 | * script. In that case don't worry if the loading fails. */ | |
f42806df LP |
3231 | |
3232 | has_start_post = !!s->exec_command[SERVICE_EXEC_START_POST]; | |
3233 | r = service_load_pid_file(s, !has_start_post); | |
3a111838 MS |
3234 | if (!has_start_post && r < 0) { |
3235 | r = service_demand_pid_file(s); | |
b13ddbbc | 3236 | if (r < 0 || cgroup_good(s) == 0) |
c3fda31d | 3237 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_FAILURE_PROTOCOL); |
3a111838 MS |
3238 | break; |
3239 | } | |
034c6ed7 | 3240 | } else |
783e05d6 | 3241 | service_search_main_pid(s); |
034c6ed7 | 3242 | |
3a111838 | 3243 | service_enter_start_post(s); |
034c6ed7 LP |
3244 | break; |
3245 | ||
3246 | case SERVICE_START_POST: | |
f42806df | 3247 | if (f != SERVICE_SUCCESS) { |
ce359e98 | 3248 | service_enter_signal(s, SERVICE_STOP_SIGTERM, f); |
2096e009 | 3249 | break; |
034c6ed7 LP |
3250 | } |
3251 | ||
2096e009 | 3252 | if (s->pid_file) { |
f42806df LP |
3253 | int r; |
3254 | ||
3255 | r = service_load_pid_file(s, true); | |
2096e009 MS |
3256 | if (r < 0) { |
3257 | r = service_demand_pid_file(s); | |
b13ddbbc | 3258 | if (r < 0 || cgroup_good(s) == 0) |
c35755fb | 3259 | service_enter_stop(s, SERVICE_FAILURE_PROTOCOL); |
2096e009 MS |
3260 | break; |
3261 | } | |
3262 | } else | |
783e05d6 | 3263 | service_search_main_pid(s); |
2096e009 | 3264 | |
f42806df | 3265 | service_enter_running(s, SERVICE_SUCCESS); |
3185a36b | 3266 | break; |
034c6ed7 LP |
3267 | |
3268 | case SERVICE_RELOAD: | |
7236ce6e ZJS |
3269 | if (f == SERVICE_SUCCESS) |
3270 | if (service_load_pid_file(s, true) < 0) | |
3271 | service_search_main_pid(s); | |
3185a36b | 3272 | |
f42806df LP |
3273 | s->reload_result = f; |
3274 | service_enter_running(s, SERVICE_SUCCESS); | |
034c6ed7 LP |
3275 | break; |
3276 | ||
3277 | case SERVICE_STOP: | |
f42806df | 3278 | service_enter_signal(s, SERVICE_STOP_SIGTERM, f); |
034c6ed7 LP |
3279 | break; |
3280 | ||
db2cb23b | 3281 | case SERVICE_STOP_SIGABRT: |
034c6ed7 LP |
3282 | case SERVICE_STOP_SIGTERM: |
3283 | case SERVICE_STOP_SIGKILL: | |
3284 | if (main_pid_good(s) <= 0) | |
f42806df | 3285 | service_enter_stop_post(s, f); |
034c6ed7 LP |
3286 | |
3287 | /* If there is still a service | |
3288 | * process around, wait until | |
3289 | * that one quit, too */ | |
3290 | break; | |
3291 | ||
3292 | case SERVICE_STOP_POST: | |
3293 | case SERVICE_FINAL_SIGTERM: | |
3294 | case SERVICE_FINAL_SIGKILL: | |
bf108e55 LP |
3295 | if (main_pid_good(s) <= 0) |
3296 | service_enter_dead(s, f, true); | |
034c6ed7 LP |
3297 | break; |
3298 | ||
3299 | default: | |
3300 | assert_not_reached("Uh, control process died at wrong time."); | |
3301 | } | |
3302 | } | |
5cdabc8d LP |
3303 | } else /* Neither control nor main PID? If so, don't notify about anything */ |
3304 | notify_dbus = false; | |
c4e2ceae LP |
3305 | |
3306 | /* Notify clients about changed exit status */ | |
5cdabc8d LP |
3307 | if (notify_dbus) |
3308 | unit_add_to_dbus_queue(u); | |
a911bb9a | 3309 | |
11aef522 LP |
3310 | /* If we get a SIGCHLD event for one of the processes we were interested in, then we look for others to watch, |
3311 | * under the assumption that we'll sooner or later get a SIGCHLD for them, as the original process we watched | |
3312 | * was probably the parent of them, and they are hence now our children. */ | |
a911bb9a LP |
3313 | unit_tidy_watch_pids(u, s->main_pid, s->control_pid); |
3314 | unit_watch_all_pids(u); | |
3315 | ||
11aef522 LP |
3316 | /* If the PID set is empty now, then let's check if the cgroup is empty too and finish off the unit. */ |
3317 | unit_synthesize_cgroup_empty_event(u); | |
034c6ed7 LP |
3318 | } |
3319 | ||
718db961 LP |
3320 | static int service_dispatch_timer(sd_event_source *source, usec_t usec, void *userdata) { |
3321 | Service *s = SERVICE(userdata); | |
034c6ed7 LP |
3322 | |
3323 | assert(s); | |
718db961 | 3324 | assert(source == s->timer_event_source); |
034c6ed7 LP |
3325 | |
3326 | switch (s->state) { | |
3327 | ||
3328 | case SERVICE_START_PRE: | |
3329 | case SERVICE_START: | |
f2341e0a | 3330 | log_unit_warning(UNIT(s), "%s operation timed out. Terminating.", s->state == SERVICE_START ? "Start" : "Start-pre"); |
c3fda31d | 3331 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_FAILURE_TIMEOUT); |
80876c20 LP |
3332 | break; |
3333 | ||
034c6ed7 | 3334 | case SERVICE_START_POST: |
f2341e0a | 3335 | log_unit_warning(UNIT(s), "Start-post operation timed out. Stopping."); |
ce359e98 | 3336 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_FAILURE_TIMEOUT); |
034c6ed7 LP |
3337 | break; |
3338 | ||
36c16a7c LP |
3339 | case SERVICE_RUNNING: |
3340 | log_unit_warning(UNIT(s), "Service reached runtime time limit. Stopping."); | |
3341 | service_enter_stop(s, SERVICE_FAILURE_TIMEOUT); | |
3342 | break; | |
3343 | ||
e2f3b44c | 3344 | case SERVICE_RELOAD: |
089b64d5 | 3345 | log_unit_warning(UNIT(s), "Reload operation timed out. Killing reload process."); |
e9a4f676 | 3346 | service_kill_control_process(s); |
f42806df LP |
3347 | s->reload_result = SERVICE_FAILURE_TIMEOUT; |
3348 | service_enter_running(s, SERVICE_SUCCESS); | |
e2f3b44c LP |
3349 | break; |
3350 | ||
034c6ed7 | 3351 | case SERVICE_STOP: |
f2341e0a | 3352 | log_unit_warning(UNIT(s), "Stopping timed out. Terminating."); |
f42806df | 3353 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_FAILURE_TIMEOUT); |
034c6ed7 LP |
3354 | break; |
3355 | ||
db2cb23b | 3356 | case SERVICE_STOP_SIGABRT: |
f2341e0a | 3357 | log_unit_warning(UNIT(s), "State 'stop-sigabrt' timed out. Terminating."); |
2ab2ab7b | 3358 | service_enter_signal(s, SERVICE_STOP_SIGTERM, SERVICE_FAILURE_TIMEOUT); |
db2cb23b UTL |
3359 | break; |
3360 | ||
034c6ed7 | 3361 | case SERVICE_STOP_SIGTERM: |
4819ff03 | 3362 | if (s->kill_context.send_sigkill) { |
f2341e0a | 3363 | log_unit_warning(UNIT(s), "State 'stop-sigterm' timed out. Killing."); |
f42806df | 3364 | service_enter_signal(s, SERVICE_STOP_SIGKILL, SERVICE_FAILURE_TIMEOUT); |
ba035df2 | 3365 | } else { |
f2341e0a | 3366 | log_unit_warning(UNIT(s), "State 'stop-sigterm' timed out. Skipping SIGKILL."); |
f42806df | 3367 | service_enter_stop_post(s, SERVICE_FAILURE_TIMEOUT); |
ba035df2 LP |
3368 | } |
3369 | ||
034c6ed7 LP |
3370 | break; |
3371 | ||
3372 | case SERVICE_STOP_SIGKILL: | |
35b8ca3a | 3373 | /* Uh, we sent a SIGKILL and it is still not gone? |
034c6ed7 LP |
3374 | * Must be something we cannot kill, so let's just be |
3375 | * weirded out and continue */ | |
3376 | ||
f2341e0a | 3377 | log_unit_warning(UNIT(s), "Processes still around after SIGKILL. Ignoring."); |
f42806df | 3378 | service_enter_stop_post(s, SERVICE_FAILURE_TIMEOUT); |
034c6ed7 LP |
3379 | break; |
3380 | ||
3381 | case SERVICE_STOP_POST: | |
f2341e0a | 3382 | log_unit_warning(UNIT(s), "State 'stop-post' timed out. Terminating."); |
f42806df | 3383 | service_enter_signal(s, SERVICE_FINAL_SIGTERM, SERVICE_FAILURE_TIMEOUT); |
034c6ed7 LP |
3384 | break; |
3385 | ||
3386 | case SERVICE_FINAL_SIGTERM: | |
4819ff03 | 3387 | if (s->kill_context.send_sigkill) { |
f2341e0a | 3388 | log_unit_warning(UNIT(s), "State 'stop-final-sigterm' timed out. Killing."); |
f42806df | 3389 | service_enter_signal(s, SERVICE_FINAL_SIGKILL, SERVICE_FAILURE_TIMEOUT); |
ba035df2 | 3390 | } else { |
f2341e0a | 3391 | log_unit_warning(UNIT(s), "State 'stop-final-sigterm' timed out. Skipping SIGKILL. Entering failed mode."); |
f42806df | 3392 | service_enter_dead(s, SERVICE_FAILURE_TIMEOUT, false); |
ba035df2 LP |
3393 | } |
3394 | ||
034c6ed7 LP |
3395 | break; |
3396 | ||
3397 | case SERVICE_FINAL_SIGKILL: | |
f2341e0a | 3398 | log_unit_warning(UNIT(s), "Processes still around after final SIGKILL. Entering failed mode."); |
f42806df | 3399 | service_enter_dead(s, SERVICE_FAILURE_TIMEOUT, true); |
034c6ed7 LP |
3400 | break; |
3401 | ||
3402 | case SERVICE_AUTO_RESTART: | |
f2341e0a | 3403 | log_unit_info(UNIT(s), |
ef417cfd | 3404 | s->restart_usec > 0 ? |
f2341e0a LP |
3405 | "Service hold-off time over, scheduling restart." : |
3406 | "Service has no hold-off time, scheduling restart."); | |
034c6ed7 LP |
3407 | service_enter_restart(s); |
3408 | break; | |
3409 | ||
3410 | default: | |
3411 | assert_not_reached("Timeout at wrong time."); | |
3412 | } | |
718db961 LP |
3413 | |
3414 | return 0; | |
3415 | } | |
3416 | ||
3417 | static int service_dispatch_watchdog(sd_event_source *source, usec_t usec, void *userdata) { | |
3418 | Service *s = SERVICE(userdata); | |
a7850c7d | 3419 | char t[FORMAT_TIMESPAN_MAX]; |
2787d83c | 3420 | usec_t watchdog_usec; |
718db961 LP |
3421 | |
3422 | assert(s); | |
3423 | assert(source == s->watchdog_event_source); | |
3424 | ||
2787d83c M |
3425 | watchdog_usec = service_get_watchdog_usec(s); |
3426 | ||
2a12e32e JK |
3427 | if (UNIT(s)->manager->service_watchdogs) { |
3428 | log_unit_error(UNIT(s), "Watchdog timeout (limit %s)!", | |
3429 | format_timespan(t, sizeof(t), watchdog_usec, 1)); | |
8bb2d17d | 3430 | |
2a12e32e JK |
3431 | service_enter_signal(s, SERVICE_STOP_SIGABRT, SERVICE_FAILURE_WATCHDOG); |
3432 | } else | |
3433 | log_unit_warning(UNIT(s), "Watchdog disabled! Ignoring watchdog timeout (limit %s)!", | |
3434 | format_timespan(t, sizeof(t), watchdog_usec, 1)); | |
842129f5 | 3435 | |
718db961 | 3436 | return 0; |
5cb5a6ff LP |
3437 | } |
3438 | ||
e3285237 LP |
3439 | static bool service_notify_message_authorized(Service *s, pid_t pid, char **tags, FDSet *fds) { |
3440 | assert(s); | |
8c47c732 | 3441 | |
c952c6ec | 3442 | if (s->notify_access == NOTIFY_NONE) { |
e3285237 LP |
3443 | log_unit_warning(UNIT(s), "Got notification message from PID "PID_FMT", but reception is disabled.", pid); |
3444 | return false; | |
3445 | } | |
3446 | ||
3447 | if (s->notify_access == NOTIFY_MAIN && pid != s->main_pid) { | |
336c6e46 | 3448 | if (s->main_pid != 0) |
e3285237 | 3449 | log_unit_warning(UNIT(s), "Got notification message from PID "PID_FMT", but reception only permitted for main PID "PID_FMT, pid, s->main_pid); |
336c6e46 | 3450 | else |
e3285237 LP |
3451 | log_unit_warning(UNIT(s), "Got notification message from PID "PID_FMT", but reception only permitted for main PID which is currently not known", pid); |
3452 | ||
3453 | return false; | |
3454 | } | |
3455 | ||
3456 | if (s->notify_access == NOTIFY_EXEC && pid != s->main_pid && pid != s->control_pid) { | |
6375bd20 | 3457 | if (s->main_pid != 0 && s->control_pid != 0) |
e3285237 | 3458 | log_unit_warning(UNIT(s), "Got notification message from PID "PID_FMT", but reception only permitted for main PID "PID_FMT" and control PID "PID_FMT, |
6375bd20 JW |
3459 | pid, s->main_pid, s->control_pid); |
3460 | else if (s->main_pid != 0) | |
e3285237 | 3461 | log_unit_warning(UNIT(s), "Got notification message from PID "PID_FMT", but reception only permitted for main PID "PID_FMT, pid, s->main_pid); |
6375bd20 | 3462 | else if (s->control_pid != 0) |
e3285237 | 3463 | log_unit_warning(UNIT(s), "Got notification message from PID "PID_FMT", but reception only permitted for control PID "PID_FMT, pid, s->control_pid); |
6375bd20 | 3464 | else |
e3285237 LP |
3465 | log_unit_warning(UNIT(s), "Got notification message from PID "PID_FMT", but reception only permitted for main PID and control PID which are currently not known", pid); |
3466 | ||
3467 | return false; | |
9711848f LP |
3468 | } |
3469 | ||
e3285237 LP |
3470 | return true; |
3471 | } | |
3472 | ||
db256aab LP |
3473 | static void service_notify_message( |
3474 | Unit *u, | |
3475 | const struct ucred *ucred, | |
3476 | char **tags, | |
3477 | FDSet *fds) { | |
3478 | ||
e3285237 LP |
3479 | Service *s = SERVICE(u); |
3480 | bool notify_dbus = false; | |
3481 | const char *e; | |
cc2b7b11 | 3482 | char **i; |
db256aab | 3483 | int r; |
e3285237 LP |
3484 | |
3485 | assert(u); | |
db256aab | 3486 | assert(ucred); |
e3285237 | 3487 | |
db256aab | 3488 | if (!service_notify_message_authorized(SERVICE(u), ucred->pid, tags, fds)) |
e3285237 LP |
3489 | return; |
3490 | ||
f1d34068 | 3491 | if (DEBUG_LOGGING) { |
9711848f LP |
3492 | _cleanup_free_ char *cc = NULL; |
3493 | ||
3494 | cc = strv_join(tags, ", "); | |
db256aab | 3495 | log_unit_debug(u, "Got notification message from PID "PID_FMT" (%s)", ucred->pid, isempty(cc) ? "n/a" : cc); |
9711848f | 3496 | } |
c952c6ec | 3497 | |
8c47c732 | 3498 | /* Interpret MAINPID= */ |
28849dba | 3499 | e = strv_find_startswith(tags, "MAINPID="); |
5e56b378 | 3500 | if (e && IN_SET(s->state, SERVICE_START, SERVICE_START_POST, SERVICE_RUNNING, SERVICE_RELOAD)) { |
db256aab LP |
3501 | pid_t new_main_pid; |
3502 | ||
3503 | if (parse_pid(e, &new_main_pid) < 0) | |
3504 | log_unit_warning(u, "Failed to parse MAINPID= field in notification message, ignoring: %s", e); | |
3505 | else if (!s->main_pid_known || new_main_pid != s->main_pid) { | |
3506 | ||
3507 | r = service_is_suitable_main_pid(s, new_main_pid, LOG_WARNING); | |
3508 | if (r == 0) { | |
3509 | /* The new main PID is a bit suspicous, which is OK if the sender is privileged. */ | |
3510 | ||
3511 | if (ucred->uid == 0) { | |
3512 | log_unit_debug(u, "New main PID "PID_FMT" does not belong to service, but we'll accept it as the request to change it came from a privileged process.", new_main_pid); | |
3513 | r = 1; | |
3514 | } else | |
3515 | log_unit_debug(u, "New main PID "PID_FMT" does not belong to service, refusing.", new_main_pid); | |
3516 | } | |
3517 | if (r > 0) { | |
3518 | service_set_main_pid(s, new_main_pid); | |
3519 | unit_watch_pid(UNIT(s), new_main_pid); | |
3520 | notify_dbus = true; | |
3521 | } | |
8c47c732 LP |
3522 | } |
3523 | } | |
3524 | ||
cc2b7b11 LP |
3525 | /* Interpret READY=/STOPPING=/RELOADING=. Last one wins. */ |
3526 | STRV_FOREACH_BACKWARDS(i, tags) { | |
308d72dc | 3527 | |
cc2b7b11 LP |
3528 | if (streq(*i, "READY=1")) { |
3529 | s->notify_state = NOTIFY_READY; | |
308d72dc | 3530 | |
cc2b7b11 LP |
3531 | /* Type=notify services inform us about completed |
3532 | * initialization with READY=1 */ | |
3533 | if (s->type == SERVICE_NOTIFY && s->state == SERVICE_START) | |
3534 | service_enter_start_post(s); | |
308d72dc | 3535 | |
cc2b7b11 LP |
3536 | /* Sending READY=1 while we are reloading informs us |
3537 | * that the reloading is complete */ | |
3538 | if (s->state == SERVICE_RELOAD && s->control_pid == 0) | |
3539 | service_enter_running(s, SERVICE_SUCCESS); | |
308d72dc | 3540 | |
cc2b7b11 LP |
3541 | notify_dbus = true; |
3542 | break; | |
308d72dc | 3543 | |
cc2b7b11 LP |
3544 | } else if (streq(*i, "RELOADING=1")) { |
3545 | s->notify_state = NOTIFY_RELOADING; | |
308d72dc | 3546 | |
cc2b7b11 LP |
3547 | if (s->state == SERVICE_RUNNING) |
3548 | service_enter_reload_by_notify(s); | |
308d72dc | 3549 | |
cc2b7b11 LP |
3550 | notify_dbus = true; |
3551 | break; | |
308d72dc | 3552 | |
cc2b7b11 LP |
3553 | } else if (streq(*i, "STOPPING=1")) { |
3554 | s->notify_state = NOTIFY_STOPPING; | |
308d72dc | 3555 | |
cc2b7b11 LP |
3556 | if (s->state == SERVICE_RUNNING) |
3557 | service_enter_stop_by_notify(s); | |
308d72dc | 3558 | |
cc2b7b11 LP |
3559 | notify_dbus = true; |
3560 | break; | |
3561 | } | |
8c47c732 LP |
3562 | } |
3563 | ||
3564 | /* Interpret STATUS= */ | |
28849dba | 3565 | e = strv_find_startswith(tags, "STATUS="); |
7f110ff9 | 3566 | if (e) { |
28849dba | 3567 | _cleanup_free_ char *t = NULL; |
8c47c732 | 3568 | |
28849dba LP |
3569 | if (!isempty(e)) { |
3570 | if (!utf8_is_valid(e)) | |
f2341e0a | 3571 | log_unit_warning(u, "Status message in notification message is not UTF-8 clean."); |
28849dba | 3572 | else { |
28849dba LP |
3573 | t = strdup(e); |
3574 | if (!t) | |
3575 | log_oom(); | |
3a2776bc | 3576 | } |
28849dba | 3577 | } |
8c47c732 | 3578 | |
30b5275a | 3579 | if (!streq_ptr(s->status_text, t)) { |
3b319885 | 3580 | free_and_replace(s->status_text, t); |
30b5275a | 3581 | notify_dbus = true; |
28849dba | 3582 | } |
8c47c732 | 3583 | } |
842129f5 | 3584 | |
4774e357 | 3585 | /* Interpret ERRNO= */ |
28849dba | 3586 | e = strv_find_startswith(tags, "ERRNO="); |
4774e357 MAA |
3587 | if (e) { |
3588 | int status_errno; | |
3589 | ||
2fa40742 LP |
3590 | status_errno = parse_errno(e); |
3591 | if (status_errno < 0) | |
3592 | log_unit_warning_errno(u, status_errno, | |
3593 | "Failed to parse ERRNO= field in notification message: %s", e); | |
3594 | else if (s->status_errno != status_errno) { | |
3595 | s->status_errno = status_errno; | |
3596 | notify_dbus = true; | |
4774e357 MAA |
3597 | } |
3598 | } | |
3599 | ||
a327431b DB |
3600 | /* Interpret EXTEND_TIMEOUT= */ |
3601 | e = strv_find_startswith(tags, "EXTEND_TIMEOUT_USEC="); | |
3602 | if (e) { | |
3603 | usec_t extend_timeout_usec; | |
3604 | if (safe_atou64(e, &extend_timeout_usec) < 0) | |
3605 | log_unit_warning(u, "Failed to parse EXTEND_TIMEOUT_USEC=%s", e); | |
3606 | else | |
3607 | service_extend_timeout(s, extend_timeout_usec); | |
3608 | } | |
3609 | ||
6f285378 | 3610 | /* Interpret WATCHDOG= */ |
1f6b4113 | 3611 | if (strv_find(tags, "WATCHDOG=1")) |
842129f5 | 3612 | service_reset_watchdog(s); |
c4e2ceae | 3613 | |
c45d11cb LP |
3614 | e = strv_find_startswith(tags, "WATCHDOG_USEC="); |
3615 | if (e) { | |
3616 | usec_t watchdog_override_usec; | |
3617 | if (safe_atou64(e, &watchdog_override_usec) < 0) | |
3618 | log_unit_warning(u, "Failed to parse WATCHDOG_USEC=%s", e); | |
3619 | else | |
3620 | service_reset_watchdog_timeout(s, watchdog_override_usec); | |
3621 | } | |
3622 | ||
e78ee06d LP |
3623 | /* Process FD store messages. Either FDSTOREREMOVE=1 for removal, or FDSTORE=1 for addition. In both cases, |
3624 | * process FDNAME= for picking the file descriptor name to use. Note that FDNAME= is required when removing | |
3625 | * fds, but optional when pushing in new fds, for compatibility reasons. */ | |
3626 | if (strv_find(tags, "FDSTOREREMOVE=1")) { | |
3627 | const char *name; | |
3628 | ||
3629 | name = strv_find_startswith(tags, "FDNAME="); | |
3630 | if (!name || !fdname_is_valid(name)) | |
3631 | log_unit_warning(u, "FDSTOREREMOVE=1 requested, but no valid file descriptor name passed, ignoring."); | |
3632 | else | |
3633 | service_remove_fd_store(s, name); | |
3634 | ||
3635 | } else if (strv_find(tags, "FDSTORE=1")) { | |
8dd4c05b LP |
3636 | const char *name; |
3637 | ||
3638 | name = strv_find_startswith(tags, "FDNAME="); | |
3639 | if (name && !fdname_is_valid(name)) { | |
3640 | log_unit_warning(u, "Passed FDNAME= name is invalid, ignoring."); | |
3641 | name = NULL; | |
3642 | } | |
3643 | ||
e78ee06d | 3644 | (void) service_add_fd_store_set(s, fds, name); |
8dd4c05b | 3645 | } |
a354329f | 3646 | |
c4e2ceae | 3647 | /* Notify clients about changed status or main pid */ |
30b5275a LP |
3648 | if (notify_dbus) |
3649 | unit_add_to_dbus_queue(u); | |
8c47c732 LP |
3650 | } |
3651 | ||
7a7821c8 | 3652 | static int service_get_timeout(Unit *u, usec_t *timeout) { |
68db7a3b | 3653 | Service *s = SERVICE(u); |
7a7821c8 | 3654 | uint64_t t; |
68db7a3b ZJS |
3655 | int r; |
3656 | ||
3657 | if (!s->timer_event_source) | |
3658 | return 0; | |
3659 | ||
7a7821c8 | 3660 | r = sd_event_source_get_time(s->timer_event_source, &t); |
68db7a3b ZJS |
3661 | if (r < 0) |
3662 | return r; | |
7a7821c8 LP |
3663 | if (t == USEC_INFINITY) |
3664 | return 0; | |
68db7a3b | 3665 | |
7a7821c8 | 3666 | *timeout = t; |
68db7a3b ZJS |
3667 | return 1; |
3668 | } | |
3669 | ||
05e343b7 LP |
3670 | static void service_bus_name_owner_change( |
3671 | Unit *u, | |
3672 | const char *name, | |
3673 | const char *old_owner, | |
3674 | const char *new_owner) { | |
3675 | ||
3676 | Service *s = SERVICE(u); | |
718db961 | 3677 | int r; |
05e343b7 LP |
3678 | |
3679 | assert(s); | |
3680 | assert(name); | |
3681 | ||
3682 | assert(streq(s->bus_name, name)); | |
3683 | assert(old_owner || new_owner); | |
3684 | ||
3685 | if (old_owner && new_owner) | |
f2341e0a | 3686 | log_unit_debug(u, "D-Bus name %s changed owner from %s to %s", name, old_owner, new_owner); |
05e343b7 | 3687 | else if (old_owner) |
f2341e0a | 3688 | log_unit_debug(u, "D-Bus name %s no longer registered by %s", name, old_owner); |
05e343b7 | 3689 | else |
f2341e0a | 3690 | log_unit_debug(u, "D-Bus name %s now registered by %s", name, new_owner); |
05e343b7 LP |
3691 | |
3692 | s->bus_name_good = !!new_owner; | |
3693 | ||
d8ccf5fd DM |
3694 | /* Track the current owner, so we can reconstruct changes after a daemon reload */ |
3695 | r = free_and_strdup(&s->bus_name_owner, new_owner); | |
3696 | if (r < 0) { | |
3697 | log_unit_error_errno(u, r, "Unable to set new bus name owner %s: %m", new_owner); | |
3698 | return; | |
3699 | } | |
3700 | ||
05e343b7 LP |
3701 | if (s->type == SERVICE_DBUS) { |
3702 | ||
3703 | /* service_enter_running() will figure out what to | |
3704 | * do */ | |
3705 | if (s->state == SERVICE_RUNNING) | |
f42806df | 3706 | service_enter_running(s, SERVICE_SUCCESS); |
05e343b7 LP |
3707 | else if (s->state == SERVICE_START && new_owner) |
3708 | service_enter_start_post(s); | |
3709 | ||
3710 | } else if (new_owner && | |
3711 | s->main_pid <= 0 && | |
a6951a50 LP |
3712 | IN_SET(s->state, |
3713 | SERVICE_START, | |
3714 | SERVICE_START_POST, | |
3715 | SERVICE_RUNNING, | |
3716 | SERVICE_RELOAD)) { | |
05e343b7 | 3717 | |
4afd3348 | 3718 | _cleanup_(sd_bus_creds_unrefp) sd_bus_creds *creds = NULL; |
718db961 | 3719 | pid_t pid; |
05e343b7 | 3720 | |
718db961 | 3721 | /* Try to acquire PID from bus service */ |
05e343b7 | 3722 | |
056f95d0 | 3723 | r = sd_bus_get_name_creds(u->manager->api_bus, name, SD_BUS_CREDS_PID, &creds); |
5b12334d LP |
3724 | if (r >= 0) |
3725 | r = sd_bus_creds_get_pid(creds, &pid); | |
718db961 | 3726 | if (r >= 0) { |
7c102d60 | 3727 | log_unit_debug(u, "D-Bus name %s is now owned by process " PID_FMT, name, pid); |
05e343b7 | 3728 | |
718db961 LP |
3729 | service_set_main_pid(s, pid); |
3730 | unit_watch_pid(UNIT(s), pid); | |
3731 | } | |
7400b9d2 | 3732 | } |
05e343b7 LP |
3733 | } |
3734 | ||
16115b0a | 3735 | int service_set_socket_fd(Service *s, int fd, Socket *sock, bool selinux_context_net) { |
79a98c60 LP |
3736 | _cleanup_free_ char *peer = NULL; |
3737 | int r; | |
57020a3a | 3738 | |
4f2d528d LP |
3739 | assert(s); |
3740 | assert(fd >= 0); | |
3741 | ||
7f2fbbff LP |
3742 | /* This is called by the socket code when instantiating a new service for a stream socket and the socket needs |
3743 | * to be configured. We take ownership of the passed fd on success. */ | |
4f2d528d | 3744 | |
1124fe6f | 3745 | if (UNIT(s)->load_state != UNIT_LOADED) |
4f2d528d LP |
3746 | return -EINVAL; |
3747 | ||
3748 | if (s->socket_fd >= 0) | |
3749 | return -EBUSY; | |
3750 | ||
3751 | if (s->state != SERVICE_DEAD) | |
3752 | return -EAGAIN; | |
3753 | ||
366b7db4 | 3754 | if (getpeername_pretty(fd, true, &peer) >= 0) { |
79a98c60 LP |
3755 | |
3756 | if (UNIT(s)->description) { | |
3757 | _cleanup_free_ char *a; | |
3758 | ||
605405c6 | 3759 | a = strjoin(UNIT(s)->description, " (", peer, ")"); |
79a98c60 LP |
3760 | if (!a) |
3761 | return -ENOMEM; | |
3762 | ||
3763 | r = unit_set_description(UNIT(s), a); | |
3764 | } else | |
3765 | r = unit_set_description(UNIT(s), peer); | |
3766 | ||
3767 | if (r < 0) | |
3768 | return r; | |
3769 | } | |
3770 | ||
eef85c4a | 3771 | r = unit_add_two_dependencies(UNIT(sock), UNIT_BEFORE, UNIT_TRIGGERS, UNIT(s), false, UNIT_DEPENDENCY_IMPLICIT); |
7f2fbbff LP |
3772 | if (r < 0) |
3773 | return r; | |
3774 | ||
4f2d528d | 3775 | s->socket_fd = fd; |
16115b0a | 3776 | s->socket_fd_selinux_context_net = selinux_context_net; |
6cf6bbc2 | 3777 | |
7f7d01ed | 3778 | unit_ref_set(&s->accept_socket, UNIT(s), UNIT(sock)); |
7f2fbbff | 3779 | return 0; |
4f2d528d LP |
3780 | } |
3781 | ||
fdf20a31 | 3782 | static void service_reset_failed(Unit *u) { |
5632e374 LP |
3783 | Service *s = SERVICE(u); |
3784 | ||
3785 | assert(s); | |
3786 | ||
fdf20a31 | 3787 | if (s->state == SERVICE_FAILED) |
5632e374 LP |
3788 | service_set_state(s, SERVICE_DEAD); |
3789 | ||
f42806df LP |
3790 | s->result = SERVICE_SUCCESS; |
3791 | s->reload_result = SERVICE_SUCCESS; | |
7a0019d3 LP |
3792 | s->n_restarts = 0; |
3793 | s->flush_n_restarts = false; | |
5632e374 LP |
3794 | } |
3795 | ||
718db961 | 3796 | static int service_kill(Unit *u, KillWho who, int signo, sd_bus_error *error) { |
8a0867d6 | 3797 | Service *s = SERVICE(u); |
41efeaec | 3798 | |
a6951a50 LP |
3799 | assert(s); |
3800 | ||
814cc562 | 3801 | return unit_kill_common(u, who, signo, s->main_pid, s->control_pid, error); |
8a0867d6 LP |
3802 | } |
3803 | ||
291d565a LP |
3804 | static int service_main_pid(Unit *u) { |
3805 | Service *s = SERVICE(u); | |
3806 | ||
3807 | assert(s); | |
3808 | ||
3809 | return s->main_pid; | |
3810 | } | |
3811 | ||
3812 | static int service_control_pid(Unit *u) { | |
3813 | Service *s = SERVICE(u); | |
3814 | ||
3815 | assert(s); | |
3816 | ||
3817 | return s->control_pid; | |
3818 | } | |
3819 | ||
bb2c7685 LP |
3820 | static bool service_needs_console(Unit *u) { |
3821 | Service *s = SERVICE(u); | |
3822 | ||
3823 | assert(s); | |
3824 | ||
3825 | /* We provide our own implementation of this here, instead of relying of the generic implementation | |
3826 | * unit_needs_console() provides, since we want to return false if we are in SERVICE_EXITED state. */ | |
3827 | ||
3828 | if (!exec_context_may_touch_console(&s->exec_context)) | |
3829 | return false; | |
3830 | ||
3831 | return IN_SET(s->state, | |
3832 | SERVICE_START_PRE, | |
3833 | SERVICE_START, | |
3834 | SERVICE_START_POST, | |
3835 | SERVICE_RUNNING, | |
3836 | SERVICE_RELOAD, | |
3837 | SERVICE_STOP, | |
3838 | SERVICE_STOP_SIGABRT, | |
3839 | SERVICE_STOP_SIGTERM, | |
3840 | SERVICE_STOP_SIGKILL, | |
3841 | SERVICE_STOP_POST, | |
3842 | SERVICE_FINAL_SIGTERM, | |
3843 | SERVICE_FINAL_SIGKILL); | |
3844 | } | |
3845 | ||
94f04347 | 3846 | static const char* const service_restart_table[_SERVICE_RESTART_MAX] = { |
525ee6f4 LP |
3847 | [SERVICE_RESTART_NO] = "no", |
3848 | [SERVICE_RESTART_ON_SUCCESS] = "on-success", | |
50caaedb | 3849 | [SERVICE_RESTART_ON_FAILURE] = "on-failure", |
6cfe2fde | 3850 | [SERVICE_RESTART_ON_ABNORMAL] = "on-abnormal", |
dc99a976 | 3851 | [SERVICE_RESTART_ON_WATCHDOG] = "on-watchdog", |
50caaedb | 3852 | [SERVICE_RESTART_ON_ABORT] = "on-abort", |
6cfe2fde | 3853 | [SERVICE_RESTART_ALWAYS] = "always", |
94f04347 LP |
3854 | }; |
3855 | ||
3856 | DEFINE_STRING_TABLE_LOOKUP(service_restart, ServiceRestart); | |
3857 | ||
3858 | static const char* const service_type_table[_SERVICE_TYPE_MAX] = { | |
94f04347 | 3859 | [SERVICE_SIMPLE] = "simple", |
0d624a78 | 3860 | [SERVICE_FORKING] = "forking", |
34e9ba66 | 3861 | [SERVICE_ONESHOT] = "oneshot", |
8c47c732 | 3862 | [SERVICE_DBUS] = "dbus", |
f2b68789 LP |
3863 | [SERVICE_NOTIFY] = "notify", |
3864 | [SERVICE_IDLE] = "idle" | |
94f04347 LP |
3865 | }; |
3866 | ||
3867 | DEFINE_STRING_TABLE_LOOKUP(service_type, ServiceType); | |
3868 | ||
e537352b | 3869 | static const char* const service_exec_command_table[_SERVICE_EXEC_COMMAND_MAX] = { |
94f04347 LP |
3870 | [SERVICE_EXEC_START_PRE] = "ExecStartPre", |
3871 | [SERVICE_EXEC_START] = "ExecStart", | |
3872 | [SERVICE_EXEC_START_POST] = "ExecStartPost", | |
3873 | [SERVICE_EXEC_RELOAD] = "ExecReload", | |
3874 | [SERVICE_EXEC_STOP] = "ExecStop", | |
3875 | [SERVICE_EXEC_STOP_POST] = "ExecStopPost", | |
3876 | }; | |
3877 | ||
3878 | DEFINE_STRING_TABLE_LOOKUP(service_exec_command, ServiceExecCommand); | |
3879 | ||
308d72dc LP |
3880 | static const char* const notify_state_table[_NOTIFY_STATE_MAX] = { |
3881 | [NOTIFY_UNKNOWN] = "unknown", | |
3882 | [NOTIFY_READY] = "ready", | |
3883 | [NOTIFY_RELOADING] = "reloading", | |
3884 | [NOTIFY_STOPPING] = "stopping", | |
3885 | }; | |
3886 | ||
3887 | DEFINE_STRING_TABLE_LOOKUP(notify_state, NotifyState); | |
3888 | ||
f42806df LP |
3889 | static const char* const service_result_table[_SERVICE_RESULT_MAX] = { |
3890 | [SERVICE_SUCCESS] = "success", | |
3891 | [SERVICE_FAILURE_RESOURCES] = "resources", | |
c35755fb | 3892 | [SERVICE_FAILURE_PROTOCOL] = "protocol", |
f42806df LP |
3893 | [SERVICE_FAILURE_TIMEOUT] = "timeout", |
3894 | [SERVICE_FAILURE_EXIT_CODE] = "exit-code", | |
3895 | [SERVICE_FAILURE_SIGNAL] = "signal", | |
bb242b7b | 3896 | [SERVICE_FAILURE_CORE_DUMP] = "core-dump", |
8d1b002a | 3897 | [SERVICE_FAILURE_WATCHDOG] = "watchdog", |
07299350 | 3898 | [SERVICE_FAILURE_START_LIMIT_HIT] = "start-limit-hit", |
f42806df LP |
3899 | }; |
3900 | ||
3901 | DEFINE_STRING_TABLE_LOOKUP(service_result, ServiceResult); | |
3902 | ||
87f0e418 | 3903 | const UnitVTable service_vtable = { |
7d17cfbc | 3904 | .object_size = sizeof(Service), |
718db961 LP |
3905 | .exec_context_offset = offsetof(Service, exec_context), |
3906 | .cgroup_context_offset = offsetof(Service, cgroup_context), | |
3907 | .kill_context_offset = offsetof(Service, kill_context), | |
613b411c | 3908 | .exec_runtime_offset = offsetof(Service, exec_runtime), |
29206d46 | 3909 | .dynamic_creds_offset = offsetof(Service, dynamic_creds), |
3ef63c31 | 3910 | |
f975e971 LP |
3911 | .sections = |
3912 | "Unit\0" | |
3913 | "Service\0" | |
3914 | "Install\0", | |
4ad49000 | 3915 | .private_section = "Service", |
71645aca | 3916 | |
1d9cc876 LP |
3917 | .can_transient = true, |
3918 | .can_delegate = true, | |
3919 | ||
034c6ed7 LP |
3920 | .init = service_init, |
3921 | .done = service_done, | |
a16e1123 | 3922 | .load = service_load, |
a354329f | 3923 | .release_resources = service_release_resources, |
a16e1123 LP |
3924 | |
3925 | .coldplug = service_coldplug, | |
034c6ed7 | 3926 | |
5cb5a6ff LP |
3927 | .dump = service_dump, |
3928 | ||
3929 | .start = service_start, | |
3930 | .stop = service_stop, | |
3931 | .reload = service_reload, | |
3932 | ||
034c6ed7 LP |
3933 | .can_reload = service_can_reload, |
3934 | ||
8a0867d6 LP |
3935 | .kill = service_kill, |
3936 | ||
a16e1123 LP |
3937 | .serialize = service_serialize, |
3938 | .deserialize_item = service_deserialize_item, | |
3939 | ||
5cb5a6ff | 3940 | .active_state = service_active_state, |
10a94420 | 3941 | .sub_state_to_string = service_sub_state_to_string, |
5cb5a6ff | 3942 | |
deb4e708 MK |
3943 | .will_restart = service_will_restart, |
3944 | ||
f2f725e5 | 3945 | .may_gc = service_may_gc, |
701cc384 | 3946 | |
034c6ed7 | 3947 | .sigchld_event = service_sigchld_event, |
2c4104f0 | 3948 | |
fdf20a31 | 3949 | .reset_failed = service_reset_failed, |
5632e374 | 3950 | |
4ad49000 | 3951 | .notify_cgroup_empty = service_notify_cgroup_empty_event, |
8c47c732 | 3952 | .notify_message = service_notify_message, |
8e274523 | 3953 | |
291d565a LP |
3954 | .main_pid = service_main_pid, |
3955 | .control_pid = service_control_pid, | |
3956 | ||
05e343b7 | 3957 | .bus_name_owner_change = service_bus_name_owner_change, |
05e343b7 | 3958 | |
718db961 | 3959 | .bus_vtable = bus_service_vtable, |
74c964d3 LP |
3960 | .bus_set_property = bus_service_set_property, |
3961 | .bus_commit_properties = bus_service_commit_properties, | |
4139c1b2 | 3962 | |
68db7a3b | 3963 | .get_timeout = service_get_timeout, |
bb2c7685 | 3964 | .needs_console = service_needs_console, |
718db961 | 3965 | |
c6918296 MS |
3966 | .status_message_formats = { |
3967 | .starting_stopping = { | |
3968 | [0] = "Starting %s...", | |
3969 | [1] = "Stopping %s...", | |
3970 | }, | |
3971 | .finished_start_job = { | |
3972 | [JOB_DONE] = "Started %s.", | |
3973 | [JOB_FAILED] = "Failed to start %s.", | |
c6918296 MS |
3974 | }, |
3975 | .finished_stop_job = { | |
3976 | [JOB_DONE] = "Stopped %s.", | |
3977 | [JOB_FAILED] = "Stopped (with error) %s.", | |
c6918296 MS |
3978 | }, |
3979 | }, | |
5cb5a6ff | 3980 | }; |