]> git.ipfire.org Git - thirdparty/systemd.git/blame - src/journal/journald-server.c
projects / thirdparty / systemd.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
tree-wide: define iterator inside of the macro
[thirdparty/systemd.git] / src / journal / journald-server.c
CommitLineData
53e1b683 1/* SPDX-License-Identifier: LGPL-2.1+ */
d025f1e4 2
349cc4a5 3#if HAVE_SELINUX
24882e06
LP		 4#include <selinux/selinux.h>
5#endif
8580d1f7
LP		 6#include <sys/ioctl.h>
7#include <sys/mman.h>
8#include <sys/signalfd.h>
9#include <sys/statvfs.h>
07630cea 10#include <linux/sockios.h>
24882e06 11
8580d1f7 12#include "sd-daemon.h"
74df0fca
LP		 13#include "sd-journal.h"
14#include "sd-messages.h"
8580d1f7
LP		 15
16#include "acl-util.h"
b5efdb8a 17#include "alloc-util.h"
430f0182 18#include "audit-util.h"
d025f1e4 19#include "cgroup-util.h"
d025f1e4 20#include "conf-parser.h"
a0956174 21#include "dirent-util.h"
0dec689b 22#include "extract-word.h"
3ffd4af2 23#include "fd-util.h"
33d52ab9 24#include "fileio.h"
f97b34a6 25#include "format-util.h"
f4f15635 26#include "fs-util.h"
8580d1f7 27#include "hashmap.h"
958b66ea 28#include "hostname-util.h"
4b58153d 29#include "id128-util.h"
afc5dbf3 30#include "io-util.h"
8580d1f7
LP		 31#include "journal-authenticate.h"
32#include "journal-file.h"
d025f1e4
ZJS		 33#include "journal-internal.h"
34#include "journal-vacuum.h"
8580d1f7 35#include "journald-audit.h"
22e3a02b 36#include "journald-context.h"
d025f1e4 37#include "journald-kmsg.h"
d025f1e4 38#include "journald-native.h"
8580d1f7 39#include "journald-rate-limit.h"
3ffd4af2 40#include "journald-server.h"
8580d1f7
LP		 41#include "journald-stream.h"
42#include "journald-syslog.h"
4b58153d 43#include "log.h"
f5947a5e 44#include "missing_audit.h"
07630cea 45#include "mkdir.h"
6bedfcbb 46#include "parse-util.h"
b1852c48 47#include "path-util.h"
4e731273 48#include "proc-cmdline.h"
07630cea
LP		 49#include "process-util.h"
50#include "rm-rf.h"
51#include "selinux-util.h"
52#include "signal-util.h"
53#include "socket-util.h"
32917e33 54#include "stdio-util.h"
8b43440b 55#include "string-table.h"
07630cea 56#include "string-util.h"
863a5610 57#include "syslog-util.h"
22e3a02b 58#include "user-util.h"
d025f1e4 59
d025f1e4
ZJS		 60#define USER_JOURNALS_MAX 1024
61
26687bf8 62#define DEFAULT_SYNC_INTERVAL_USEC (5*USEC_PER_MINUTE)
7f1ad696 63#define DEFAULT_RATE_LIMIT_INTERVAL (30*USEC_PER_SEC)
3de8ff5a 64#define DEFAULT_RATE_LIMIT_BURST 10000
e150e820 65#define DEFAULT_MAX_FILE_USEC USEC_PER_MONTH
d025f1e4 66
8580d1f7 67#define RECHECK_SPACE_USEC (30*USEC_PER_SEC)
d025f1e4 68
e22aa3d3
LP		 69#define NOTIFY_SNDBUF_SIZE (8*1024*1024)
70
7a24f3bf
VC		 71/* The period to insert between posting changes for coalescing */
72#define POST_CHANGE_TIMER_INTERVAL_USEC (250*USEC_PER_MSEC)
73
ec20fe5f
LP		 74/* Pick a good default that is likely to fit into AF_UNIX and AF_INET SOCK_DGRAM datagrams, and even leaves some room
75 * for a bit of additional metadata. */
76#define DEFAULT_LINE_MAX (48*1024)
77
a33687b7
LP		 78#define DEFERRED_CLOSES_MAX (4096)
79
65c398c0
LP		 80#define IDLE_TIMEOUT_USEC (30*USEC_PER_SEC)
81
4f603103
LP		 82static int determine_path_usage(
83 Server *s,
84 const char *path,
85 uint64_t *ret_used,
86 uint64_t *ret_free) {
87
e0ed6db9
FB		 88 _cleanup_closedir_ DIR *d = NULL;
89 struct dirent *de;
90 struct statvfs ss;
e0ed6db9 91
4f603103
LP		 92 assert(s);
93 assert(path);
e0ed6db9
FB		 94 assert(ret_used);
95 assert(ret_free);
96
266a4700 97 d = opendir(path);
e0ed6db9
FB		 98 if (!d)
99 return log_full_errno(errno == ENOENT ? LOG_DEBUG : LOG_ERR,
266a4700 100 errno, "Failed to open %s: %m", path);
e0ed6db9
FB		 101
102 if (fstatvfs(dirfd(d), &ss) < 0)
266a4700 103 return log_error_errno(errno, "Failed to fstatvfs(%s): %m", path);
e0ed6db9
FB		 104
105 *ret_free = ss.f_bsize * ss.f_bavail;
106 *ret_used = 0;
107 FOREACH_DIRENT_ALL(de, d, break) {
108 struct stat st;
109
110 if (!endswith(de->d_name, ".journal") &&
111 !endswith(de->d_name, ".journal~"))
112 continue;
113
114 if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0) {
266a4700 115 log_debug_errno(errno, "Failed to stat %s/%s, ignoring: %m", path, de->d_name);
e0ed6db9
FB		 116 continue;
117 }
118
119 if (!S_ISREG(st.st_mode))
120 continue;
121
122 *ret_used += (uint64_t) st.st_blocks * 512UL;
123 }
124
125 return 0;
126}
127
a0edc477 128static void cache_space_invalidate(JournalStorageSpace *space) {
67319249 129 zero(*space);
a0edc477
FB		 130}
131
57f443a6 132static int cache_space_refresh(Server *s, JournalStorage *storage) {
23aba343 133 JournalStorageSpace *space;
266a4700 134 JournalMetrics *metrics;
23aba343 135 uint64_t vfs_used, vfs_avail, avail;
d025f1e4 136 usec_t ts;
e0ed6db9 137 int r;
d025f1e4 138
8580d1f7 139 assert(s);
266a4700 140
266a4700 141 metrics = &storage->metrics;
23aba343 142 space = &storage->space;
d025f1e4 143
8580d1f7 144 ts = now(CLOCK_MONOTONIC);
d025f1e4 145
3099caf2 146 if (space->timestamp != 0 && space->timestamp + RECHECK_SPACE_USEC > ts)
d025f1e4
ZJS		 147 return 0;
148
23aba343 149 r = determine_path_usage(s, storage->path, &vfs_used, &vfs_avail);
e0ed6db9
FB		 150 if (r < 0)
151 return r;
d025f1e4 152
23aba343
FB		 153 space->vfs_used = vfs_used;
154 space->vfs_available = vfs_avail;
155
156 avail = LESS_BY(vfs_avail, metrics->keep_free);
157
23aba343
FB		 158 space->limit = MIN(MAX(vfs_used + avail, metrics->min_use), metrics->max_use);
159 space->available = LESS_BY(space->limit, vfs_used);
160 space->timestamp = ts;
8580d1f7
LP		 161 return 1;
162}
163
3a19f215
FB		 164static void patch_min_use(JournalStorage *storage) {
165 assert(storage);
166
167 /* Let's bump the min_use limit to the current usage on disk. We do
168 * this when starting up and first opening the journal files. This way
169 * sudden spikes in disk usage will not cause journald to vacuum files
170 * without bounds. Note that this means that only a restart of journald
171 * will make it reset this value. */
172
173 storage->metrics.min_use = MAX(storage->metrics.min_use, storage->space.vfs_used);
174}
175
b42b9479
LP		 176static JournalStorage* server_current_storage(Server *s) {
177 assert(s);
178
179 return s->system_journal ? &s->system_storage : &s->runtime_storage;
180}
181
3a19f215 182static int determine_space(Server *s, uint64_t *available, uint64_t *limit) {
266a4700 183 JournalStorage *js;
57f443a6 184 int r;
8580d1f7
LP		 185
186 assert(s);
187
b42b9479 188 js = server_current_storage(s);
57f443a6
FB		 189
190 r = cache_space_refresh(s, js);
191 if (r >= 0) {
192 if (available)
193 *available = js->space.available;
194 if (limit)
195 *limit = js->space.limit;
196 }
197 return r;
d025f1e4
ZJS		 198}
199
cba5629e
FB		 200void server_space_usage_message(Server *s, JournalStorage *storage) {
201 char fb1[FORMAT_BYTES_MAX], fb2[FORMAT_BYTES_MAX], fb3[FORMAT_BYTES_MAX],
202 fb4[FORMAT_BYTES_MAX], fb5[FORMAT_BYTES_MAX], fb6[FORMAT_BYTES_MAX];
203 JournalMetrics *metrics;
cba5629e
FB		 204
205 assert(s);
206
207 if (!storage)
b42b9479 208 storage = server_current_storage(s);
cba5629e 209
57f443a6 210 if (cache_space_refresh(s, storage) < 0)
cba5629e
FB		 211 return;
212
213 metrics = &storage->metrics;
23aba343 214 format_bytes(fb1, sizeof(fb1), storage->space.vfs_used);
cba5629e
FB		 215 format_bytes(fb2, sizeof(fb2), metrics->max_use);
216 format_bytes(fb3, sizeof(fb3), metrics->keep_free);
23aba343 217 format_bytes(fb4, sizeof(fb4), storage->space.vfs_available);
cba5629e
FB		 218 format_bytes(fb5, sizeof(fb5), storage->space.limit);
219 format_bytes(fb6, sizeof(fb6), storage->space.available);
220
13181942
LP		 221 server_driver_message(s, 0,
222 "MESSAGE_ID=" SD_MESSAGE_JOURNAL_USAGE_STR,
cba5629e
FB		 223 LOG_MESSAGE("%s (%s) is %s, max %s, %s free.",
224 storage->name, storage->path, fb1, fb5, fb6),
225 "JOURNAL_NAME=%s", storage->name,
226 "JOURNAL_PATH=%s", storage->path,
23aba343 227 "CURRENT_USE=%"PRIu64, storage->space.vfs_used,
cba5629e
FB		 228 "CURRENT_USE_PRETTY=%s", fb1,
229 "MAX_USE=%"PRIu64, metrics->max_use,
230 "MAX_USE_PRETTY=%s", fb2,
231 "DISK_KEEP_FREE=%"PRIu64, metrics->keep_free,
232 "DISK_KEEP_FREE_PRETTY=%s", fb3,
23aba343 233 "DISK_AVAILABLE=%"PRIu64, storage->space.vfs_available,
cba5629e
FB		 234 "DISK_AVAILABLE_PRETTY=%s", fb4,
235 "LIMIT=%"PRIu64, storage->space.limit,
236 "LIMIT_PRETTY=%s", fb5,
237 "AVAILABLE=%"PRIu64, storage->space.available,
238 "AVAILABLE_PRETTY=%s", fb6,
239 NULL);
240}
241
2fce06b0
LP		 242static bool uid_for_system_journal(uid_t uid) {
243
244 /* Returns true if the specified UID shall get its data stored in the system journal*/
245
246 return uid_is_system(uid) || uid_is_dynamic(uid) || uid == UID_NOBODY;
247}
248
5c3bde3f 249static void server_add_acls(JournalFile *f, uid_t uid) {
d025f1e4
ZJS		 250 assert(f);
251
349cc4a5 252#if HAVE_ACL
567aeb58
ZJS		 253 int r;
254
2fce06b0 255 if (uid_for_system_journal(uid))
d025f1e4
ZJS		 256 return;
257
567aeb58 258 r = fd_add_uid_acl_permission(f->fd, uid, ACL_READ);
5c3bde3f
ZJS		 259 if (r < 0)
260 log_warning_errno(r, "Failed to set ACL on %s, ignoring: %m", f->path);
d025f1e4
ZJS		 261#endif
262}
263
7a24f3bf
VC		 264static int open_journal(
265 Server *s,
266 bool reliably,
267 const char *fname,
268 int flags,
269 bool seal,
270 JournalMetrics *metrics,
7a24f3bf 271 JournalFile **ret) {
e8591544 272
627df1dc 273 _cleanup_(journal_file_closep) JournalFile *f = NULL;
e8591544 274 int r;
7a24f3bf
VC		 275
276 assert(s);
277 assert(fname);
278 assert(ret);
279
280 if (reliably)
1b7cf0e5
AG		 281 r = journal_file_open_reliably(fname, flags, 0640, s->compress.enabled, s->compress.threshold_bytes,
282 seal, metrics, s->mmap, s->deferred_closes, NULL, &f);
7a24f3bf 283 else
1b7cf0e5
AG		 284 r = journal_file_open(-1, fname, flags, 0640, s->compress.enabled, s->compress.threshold_bytes, seal,
285 metrics, s->mmap, s->deferred_closes, NULL, &f);
286
7a24f3bf
VC		 287 if (r < 0)
288 return r;
289
e167d7fd 290 r = journal_file_enable_post_change_timer(f, s->event, POST_CHANGE_TIMER_INTERVAL_USEC);
627df1dc 291 if (r < 0)
7a24f3bf 292 return r;
7a24f3bf 293
627df1dc 294 *ret = TAKE_PTR(f);
7a24f3bf
VC		 295 return r;
296}
297
b1852c48
LP		 298static bool flushed_flag_is_set(Server *s) {
299 const char *fn;
300
301 assert(s);
302
303 /* We don't support the "flushing" concept for namespace instances, we assume them to always have
304 * access to /var */
305 if (s->namespace)
306 return true;
307
308 fn = strjoina(s->runtime_directory, "/flushed");
309 return access(fn, F_OK) >= 0;
6431c7e2
VC		 310}
311
b4e26d1d 312static int system_journal_open(Server *s, bool flush_requested, bool relinquish_requested) {
105bdb46
VC		 313 const char *fn;
314 int r = 0;
315
316 if (!s->system_journal &&
f78273c8 317 IN_SET(s->storage, STORAGE_PERSISTENT, STORAGE_AUTO) &&
b1852c48 318 (flush_requested || flushed_flag_is_set(s)) &&
b4e26d1d 319 !relinquish_requested) {
105bdb46 320
d6f46470 321 /* If in auto mode: first try to create the machine path, but not the prefix.
105bdb46 322 *
d6f46470 323 * If in persistent mode: create /var/log/journal and the machine path */
105bdb46
VC		 324
325 if (s->storage == STORAGE_PERSISTENT)
d6f46470 326 (void) mkdir_parents(s->system_storage.path, 0755);
105bdb46 327
266a4700 328 (void) mkdir(s->system_storage.path, 0755);
105bdb46 329
266a4700
FB		 330 fn = strjoina(s->system_storage.path, "/system.journal");
331 r = open_journal(s, true, fn, O_RDWR|O_CREAT, s->seal, &s->system_storage.metrics, &s->system_journal);
105bdb46
VC		 332 if (r >= 0) {
333 server_add_acls(s->system_journal, 0);
57f443a6 334 (void) cache_space_refresh(s, &s->system_storage);
3a19f215 335 patch_min_use(&s->system_storage);
29bfb683 336 } else {
4c701096 337 if (!IN_SET(r, -ENOENT, -EROFS))
105bdb46
VC		 338 log_warning_errno(r, "Failed to open system journal: %m");
339
340 r = 0;
341 }
929eeb54 342
d6f46470
LP		 343 /* If the runtime journal is open, and we're post-flush, we're recovering from a failed
344 * system journal rotate (ENOSPC) for which the runtime journal was reopened.
929eeb54 345 *
d6f46470
LP		 346 * Perform an implicit flush to var, leaving the runtime journal closed, now that the system
347 * journal is back.
929eeb54 348 */
f78273c8
LP		 349 if (!flush_requested)
350 (void) server_flush_to_var(s, true);
105bdb46
VC		 351 }
352
353 if (!s->runtime_journal &&
354 (s->storage != STORAGE_NONE)) {
355
266a4700 356 fn = strjoina(s->runtime_storage.path, "/system.journal");
105bdb46 357
b4e26d1d 358 if (s->system_journal && !relinquish_requested) {
105bdb46
VC		 359
360 /* Try to open the runtime journal, but only
361 * if it already exists, so that we can flush
362 * it into the system journal */
363
266a4700 364 r = open_journal(s, false, fn, O_RDWR, false, &s->runtime_storage.metrics, &s->runtime_journal);
105bdb46
VC		 365 if (r < 0) {
366 if (r != -ENOENT)
367 log_warning_errno(r, "Failed to open runtime journal: %m");
368
369 r = 0;
370 }
371
372 } else {
373
d6f46470 374 /* OK, we really need the runtime journal, so create it if necessary. */
105bdb46 375
d6f46470
LP		 376 (void) mkdir_parents(s->runtime_storage.path, 0755);
377 (void) mkdir(s->runtime_storage.path, 0750);
105bdb46 378
266a4700 379 r = open_journal(s, true, fn, O_RDWR|O_CREAT, false, &s->runtime_storage.metrics, &s->runtime_journal);
105bdb46
VC		 380 if (r < 0)
381 return log_error_errno(r, "Failed to open runtime journal: %m");
382 }
383
384 if (s->runtime_journal) {
385 server_add_acls(s->runtime_journal, 0);
57f443a6 386 (void) cache_space_refresh(s, &s->runtime_storage);
3a19f215 387 patch_min_use(&s->runtime_storage);
105bdb46
VC		 388 }
389 }
390
391 return r;
392}
393
d025f1e4 394static JournalFile* find_journal(Server *s, uid_t uid) {
ed375beb 395 _cleanup_free_ char *p = NULL;
d025f1e4 396 JournalFile *f;
46e2348a 397 int r;
d025f1e4
ZJS		 398
399 assert(s);
400
46e2348a
LP		 401 /* A rotate that fails to create the new journal (ENOSPC) leaves the rotated journal as NULL. Unless
402 * we revisit opening, even after space is made available we'll continue to return NULL indefinitely.
105bdb46 403 *
46e2348a
LP		 404 * system_journal_open() is a noop if the journals are already open, so we can just call it here to
405 * recover from failed rotates (or anything else that's left the journals as NULL).
105bdb46
VC		 406 *
407 * Fixes https://github.com/systemd/systemd/issues/3968 */
b4e26d1d 408 (void) system_journal_open(s, false, false);
105bdb46 409
46e2348a
LP		 410 /* We split up user logs only on /var, not on /run. If the runtime file is open, we write to it
411 * exclusively, in order to guarantee proper order as soon as we flush /run to /var and close the
412 * runtime file. */
d025f1e4
ZJS		 413
414 if (s->runtime_journal)
415 return s->runtime_journal;
416
2fce06b0 417 if (uid_for_system_journal(uid))
d025f1e4
ZJS		 418 return s->system_journal;
419
4a0b58c4 420 f = ordered_hashmap_get(s->user_journals, UID_TO_PTR(uid));
d025f1e4
ZJS		 421 if (f)
422 return f;
423
46e2348a 424 if (asprintf(&p, "%s/user-" UID_FMT ".journal", s->system_storage.path, uid) < 0) {
d0307775 425 log_oom();
d025f1e4 426 return s->system_journal;
d0307775 427 }
d025f1e4 428
46e2348a 429 /* Too many open? Then let's close one (or more) */
43cf8388 430 while (ordered_hashmap_size(s->user_journals) >= USER_JOURNALS_MAX) {
46e2348a 431 assert_se(f = ordered_hashmap_steal_first(s->user_journals));
69a3a6fd 432 (void) journal_file_close(f);
d025f1e4
ZJS		 433 }
434
266a4700 435 r = open_journal(s, true, p, O_RDWR|O_CREAT, s->seal, &s->system_storage.metrics, &f);
d025f1e4
ZJS		 436 if (r < 0)
437 return s->system_journal;
438
4a0b58c4 439 r = ordered_hashmap_put(s->user_journals, UID_TO_PTR(uid), f);
d025f1e4 440 if (r < 0) {
69a3a6fd 441 (void) journal_file_close(f);
d025f1e4
ZJS		 442 return s->system_journal;
443 }
444
46e2348a 445 server_add_acls(f, uid);
d025f1e4
ZJS		 446 return f;
447}
448
ea69bd41
LP		 449static int do_rotate(
450 Server *s,
451 JournalFile **f,
452 const char* name,
453 bool seal,
454 uint32_t uid) {
455
fc55baee
ZJS		 456 int r;
457 assert(s);
458
459 if (!*f)
460 return -EINVAL;
461
1b7cf0e5 462 r = journal_file_rotate(f, s->compress.enabled, s->compress.threshold_bytes, seal, s->deferred_closes);
bb6b922f 463 if (r < 0) {
fc55baee 464 if (*f)
bb6b922f 465 return log_error_errno(r, "Failed to rotate %s: %m", (*f)->path);
fc55baee 466 else
bb6b922f
YW		 467 return log_error_errno(r, "Failed to create new %s journal: %m", name);
468 }
469
470 server_add_acls(*f, uid);
fc55baee
ZJS		 471 return r;
472}
473
f760d8a8
LP		 474static void server_process_deferred_closes(Server *s) {
475 JournalFile *f;
f760d8a8
LP		 476
477 /* Perform any deferred closes which aren't still offlining. */
90e74a66 478 SET_FOREACH(f, s->deferred_closes) {
a33687b7
LP		 479 if (journal_file_is_offlining(f))
480 continue;
481
482 (void) set_remove(s->deferred_closes, f);
483 (void) journal_file_close(f);
484 }
485}
486
487static void server_vacuum_deferred_closes(Server *s) {
488 assert(s);
489
490 /* Make some room in the deferred closes list, so that it doesn't grow without bounds */
491 if (set_size(s->deferred_closes) < DEFERRED_CLOSES_MAX)
492 return;
493
494 /* Let's first remove all journal files that might already have completed closing */
495 server_process_deferred_closes(s);
496
497 /* And now, let's close some more until we reach the limit again. */
498 while (set_size(s->deferred_closes) >= DEFERRED_CLOSES_MAX) {
499 JournalFile *f;
500
501 assert_se(f = set_steal_first(s->deferred_closes));
502 journal_file_close(f);
503 }
504}
505
4e00337b
LP		 506static int vacuum_offline_user_journals(Server *s) {
507 _cleanup_closedir_ DIR *d = NULL;
a33687b7
LP		 508 int r;
509
510 assert(s);
511
4e00337b
LP		 512 d = opendir(s->system_storage.path);
513 if (!d) {
514 if (errno == ENOENT)
515 return 0;
516
517 return log_error_errno(errno, "Failed to open %s: %m", s->system_storage.path);
518 }
519
520 for (;;) {
521 _cleanup_free_ char *u = NULL, *full = NULL;
522 _cleanup_close_ int fd = -1;
523 const char *a, *b;
524 struct dirent *de;
525 JournalFile *f;
526 uid_t uid;
527
528 errno = 0;
529 de = readdir_no_dot(d);
530 if (!de) {
531 if (errno != 0)
532 log_warning_errno(errno, "Failed to enumerate %s, ignoring: %m", s->system_storage.path);
533
534 break;
535 }
536
537 a = startswith(de->d_name, "user-");
538 if (!a)
539 continue;
540 b = endswith(de->d_name, ".journal");
541 if (!b)
542 continue;
543
544 u = strndup(a, b-a);
545 if (!u)
546 return log_oom();
a33687b7 547
4e00337b
LP		 548 r = parse_uid(u, &uid);
549 if (r < 0) {
550 log_debug_errno(r, "Failed to parse UID from file name '%s', ignoring: %m", de->d_name);
551 continue;
552 }
553
554 /* Already rotated in the above loop? i.e. is it an open user journal? */
555 if (ordered_hashmap_contains(s->user_journals, UID_TO_PTR(uid)))
556 continue;
557
558 full = path_join(s->system_storage.path, de->d_name);
559 if (!full)
560 return log_oom();
561
562 fd = openat(dirfd(d), de->d_name, O_RDWR|O_CLOEXEC|O_NOCTTY|O_NOFOLLOW|O_NONBLOCK);
563 if (fd < 0) {
564 log_full_errno(IN_SET(errno, ELOOP, ENOENT) ? LOG_DEBUG : LOG_WARNING, errno,
565 "Failed to open journal file '%s' for rotation: %m", full);
566 continue;
567 }
a33687b7 568
4e00337b
LP		 569 /* Make some room in the set of deferred close()s */
570 server_vacuum_deferred_closes(s);
571
572 /* Open the file briefly, so that we can archive it */
573 r = journal_file_open(fd,
574 full,
575 O_RDWR,
576 0640,
577 s->compress.enabled,
578 s->compress.threshold_bytes,
579 s->seal,
580 &s->system_storage.metrics,
581 s->mmap,
582 s->deferred_closes,
583 NULL,
584 &f);
585 if (r < 0) {
586 log_warning_errno(r, "Failed to read journal file %s for rotation, trying to move it out of the way: %m", full);
587
588 r = journal_file_dispose(dirfd(d), de->d_name);
589 if (r < 0)
590 log_warning_errno(r, "Failed to move %s out of the way, ignoring: %m", full);
591 else
592 log_debug("Successfully moved %s out of the way.", full);
a33687b7 593
4e00337b
LP		 594 continue;
595 }
596
597 TAKE_FD(fd); /* Donated to journal_file_open() */
598
599 r = journal_file_archive(f);
600 if (r < 0)
601 log_debug_errno(r, "Failed to archive journal file '%s', ignoring: %m", full);
602
603 f = journal_initiate_close(f, s->deferred_closes);
604 }
a33687b7
LP		 605
606 return 0;
f760d8a8
LP		 607}
608
d025f1e4
ZJS		 609void server_rotate(Server *s) {
610 JournalFile *f;
a33687b7 611 void *k;
d025f1e4
ZJS		 612 int r;
613
614 log_debug("Rotating...");
615
a33687b7 616 /* First, rotate the system journal (either in its runtime flavour or in its runtime flavour) */
8580d1f7
LP		 617 (void) do_rotate(s, &s->runtime_journal, "runtime", false, 0);
618 (void) do_rotate(s, &s->system_journal, "system", s->seal, 0);
d025f1e4 619
a33687b7 620 /* Then, rotate all user journals we have open (keeping them open) */
90e74a66 621 ORDERED_HASHMAP_FOREACH_KEY(f, k, s->user_journals) {
4a0b58c4 622 r = do_rotate(s, &f, "user", s->seal, PTR_TO_UID(k));
fc55baee 623 if (r >= 0)
43cf8388 624 ordered_hashmap_replace(s->user_journals, k, f);
fc55baee
ZJS		 625 else if (!f)
626 /* Old file has been closed and deallocated */
43cf8388 627 ordered_hashmap_remove(s->user_journals, k);
d025f1e4 628 }
b58c888f 629
4e00337b
LP		 630 /* Finally, also rotate all user journals we currently do not have open. (But do so only if we
631 * actually have access to /var, i.e. are not in the log-to-runtime-journal mode). */
632 if (!s->runtime_journal)
633 (void) vacuum_offline_user_journals(s);
a33687b7 634
f760d8a8 635 server_process_deferred_closes(s);
d025f1e4
ZJS		 636}
637
26687bf8
OS		 638void server_sync(Server *s) {
639 JournalFile *f;
26687bf8
OS		 640 int r;
641
26687bf8 642 if (s->system_journal) {
ac2e41f5 643 r = journal_file_set_offline(s->system_journal, false);
26687bf8 644 if (r < 0)
65089b82 645 log_warning_errno(r, "Failed to sync system journal, ignoring: %m");
26687bf8
OS		 646 }
647
90e74a66 648 ORDERED_HASHMAP_FOREACH(f, s->user_journals) {
ac2e41f5 649 r = journal_file_set_offline(f, false);
26687bf8 650 if (r < 0)
65089b82 651 log_warning_errno(r, "Failed to sync user journal, ignoring: %m");
26687bf8
OS		 652 }
653
f9a810be
LP		 654 if (s->sync_event_source) {
655 r = sd_event_source_set_enabled(s->sync_event_source, SD_EVENT_OFF);
656 if (r < 0)
da927ba9 657 log_error_errno(r, "Failed to disable sync timer source: %m");
f9a810be 658 }
26687bf8
OS		 659
660 s->sync_scheduled = false;
661}
662
3a19f215 663static void do_vacuum(Server *s, JournalStorage *storage, bool verbose) {
ea69bd41 664
63c8666b
ZJS		 665 int r;
666
8580d1f7 667 assert(s);
266a4700 668 assert(storage);
8580d1f7 669
57f443a6 670 (void) cache_space_refresh(s, storage);
18e758bf
FB		 671
672 if (verbose)
673 server_space_usage_message(s, storage);
8580d1f7 674
57f443a6
FB		 675 r = journal_directory_vacuum(storage->path, storage->space.limit,
676 storage->metrics.n_max_files, s->max_retention_usec,
677 &s->oldest_file_usec, verbose);
63c8666b 678 if (r < 0 && r != -ENOENT)
266a4700
FB		 679 log_warning_errno(r, "Failed to vacuum %s, ignoring: %m", storage->path);
680
a0edc477 681 cache_space_invalidate(&storage->space);
63c8666b
ZJS		 682}
683
3a19f215 684int server_vacuum(Server *s, bool verbose) {
8580d1f7 685 assert(s);
d025f1e4
ZJS		 686
687 log_debug("Vacuuming...");
688
689 s->oldest_file_usec = 0;
690
266a4700 691 if (s->system_journal)
3a19f215 692 do_vacuum(s, &s->system_storage, verbose);
266a4700 693 if (s->runtime_journal)
3a19f215 694 do_vacuum(s, &s->runtime_storage, verbose);
d025f1e4 695
8580d1f7 696 return 0;
d025f1e4
ZJS		 697}
698
0c24bb23
LP		 699static void server_cache_machine_id(Server *s) {
700 sd_id128_t id;
701 int r;
702
703 assert(s);
704
705 r = sd_id128_get_machine(&id);
706 if (r < 0)
707 return;
708
709 sd_id128_to_string(id, stpcpy(s->machine_id_field, "_MACHINE_ID="));
710}
711
712static void server_cache_boot_id(Server *s) {
713 sd_id128_t id;
714 int r;
715
716 assert(s);
717
718 r = sd_id128_get_boot(&id);
719 if (r < 0)
720 return;
721
722 sd_id128_to_string(id, stpcpy(s->boot_id_field, "_BOOT_ID="));
723}
724
725static void server_cache_hostname(Server *s) {
726 _cleanup_free_ char *t = NULL;
727 char *x;
728
729 assert(s);
730
731 t = gethostname_malloc();
732 if (!t)
733 return;
734
b910cc72 735 x = strjoin("_HOSTNAME=", t);
0c24bb23
LP		 736 if (!x)
737 return;
738
99d0d05a 739 free_and_replace(s->hostname_field, x);
0c24bb23
LP		 740}
741
8531ae70 742static bool shall_try_append_again(JournalFile *f, int r) {
6e1045e5 743 switch(r) {
ae739cc1 744
6e1045e5
ZJS		 745 case -E2BIG: /* Hit configured limit */
746 case -EFBIG: /* Hit fs limit */
747 case -EDQUOT: /* Quota limit hit */
748 case -ENOSPC: /* Disk full */
d025f1e4 749 log_debug("%s: Allocation limit reached, rotating.", f->path);
6e1045e5 750 return true;
ae739cc1 751
6e1045e5
ZJS		 752 case -EIO: /* I/O error of some kind (mmap) */
753 log_warning("%s: IO error, rotating.", f->path);
754 return true;
ae739cc1 755
6e1045e5 756 case -EHOSTDOWN: /* Other machine */
d025f1e4 757 log_info("%s: Journal file from other machine, rotating.", f->path);
6e1045e5 758 return true;
ae739cc1 759
6e1045e5 760 case -EBUSY: /* Unclean shutdown */
d025f1e4 761 log_info("%s: Unclean shutdown, rotating.", f->path);
6e1045e5 762 return true;
ae739cc1 763
6e1045e5 764 case -EPROTONOSUPPORT: /* Unsupported feature */
d025f1e4 765 log_info("%s: Unsupported feature, rotating.", f->path);
6e1045e5 766 return true;
ae739cc1 767
6e1045e5
ZJS		 768 case -EBADMSG: /* Corrupted */
769 case -ENODATA: /* Truncated */
770 case -ESHUTDOWN: /* Already archived */
d025f1e4 771 log_warning("%s: Journal file corrupted, rotating.", f->path);
6e1045e5 772 return true;
ae739cc1 773
6e1045e5 774 case -EIDRM: /* Journal file has been deleted */
2678031a 775 log_warning("%s: Journal file has been deleted, rotating.", f->path);
6e1045e5 776 return true;
ae739cc1
LP		 777
778 case -ETXTBSY: /* Journal file is from the future */
c1a9199e 779 log_warning("%s: Journal file is from the future, rotating.", f->path);
ae739cc1
LP		 780 return true;
781
5087825e
LP		 782 case -EAFNOSUPPORT:
783 log_warning("%s: underlying file system does not support memory mapping or another required file system feature.", f->path);
784 return false;
785
6e1045e5 786 default:
d025f1e4 787 return false;
6e1045e5 788 }
d025f1e4
ZJS		 789}
790
da6053d0 791static void write_to_journal(Server *s, uid_t uid, struct iovec *iovec, size_t n, int priority) {
7c070017 792 bool vacuumed = false, rotate = false;
0f972d66 793 struct dual_timestamp ts;
d025f1e4 794 JournalFile *f;
d025f1e4
ZJS		 795 int r;
796
797 assert(s);
798 assert(iovec);
799 assert(n > 0);
800
0f972d66
LP		 801 /* Get the closest, linearized time we have for this log event from the event loop. (Note that we do not use
802 * the source time, and not even the time the event was originally seen, but instead simply the time we started
803 * processing it, as we want strictly linear ordering in what we write out.) */
804 assert_se(sd_event_now(s->event, CLOCK_REALTIME, &ts.realtime) >= 0);
805 assert_se(sd_event_now(s->event, CLOCK_MONOTONIC, &ts.monotonic) >= 0);
806
7c070017
LP		 807 if (ts.realtime < s->last_realtime_clock) {
808 /* When the time jumps backwards, let's immediately rotate. Of course, this should not happen during
809 * regular operation. However, when it does happen, then we should make sure that we start fresh files
810 * to ensure that the entries in the journal files are strictly ordered by time, in order to ensure
811 * bisection works correctly. */
d025f1e4 812
7c070017
LP		 813 log_debug("Time jumped backwards, rotating.");
814 rotate = true;
815 } else {
816
817 f = find_journal(s, uid);
818 if (!f)
819 return;
820
821 if (journal_file_rotate_suggested(f, s->max_file_usec)) {
822 log_debug("%s: Journal header limits reached or header out-of-date, rotating.", f->path);
823 rotate = true;
824 }
825 }
d025f1e4 826
7c070017 827 if (rotate) {
d025f1e4 828 server_rotate(s);
3a19f215 829 server_vacuum(s, false);
d025f1e4
ZJS		 830 vacuumed = true;
831
832 f = find_journal(s, uid);
833 if (!f)
834 return;
835 }
836
7c070017
LP		 837 s->last_realtime_clock = ts.realtime;
838
d180c349 839 r = journal_file_append_entry(f, &ts, NULL, iovec, n, &s->seqnum, NULL, NULL);
26687bf8 840 if (r >= 0) {
d07f7b9e 841 server_schedule_sync(s, priority);
d025f1e4 842 return;
26687bf8 843 }
d025f1e4
ZJS		 844
845 if (vacuumed || !shall_try_append_again(f, r)) {
da6053d0 846 log_error_errno(r, "Failed to write entry (%zu items, %zu bytes), ignoring: %m", n, IOVEC_TOTAL_SIZE(iovec, n));
d025f1e4
ZJS		 847 return;
848 }
849
850 server_rotate(s);
3a19f215 851 server_vacuum(s, false);
d025f1e4
ZJS		 852
853 f = find_journal(s, uid);
854 if (!f)
855 return;
856
857 log_debug("Retrying write.");
d180c349 858 r = journal_file_append_entry(f, &ts, NULL, iovec, n, &s->seqnum, NULL, NULL);
8266e1c0 859 if (r < 0)
da6053d0 860 log_error_errno(r, "Failed to write entry (%zu items, %zu bytes) despite vacuuming, ignoring: %m", n, IOVEC_TOTAL_SIZE(iovec, n));
8266e1c0 861 else
d07f7b9e 862 server_schedule_sync(s, priority);
d025f1e4
ZJS		 863}
864
22e3a02b
LP		 865#define IOVEC_ADD_NUMERIC_FIELD(iovec, n, value, type, isset, format, field) \
866 if (isset(value)) { \
867 char *k; \
fbd0b64f 868 k = newa(char, STRLEN(field "=") + DECIMAL_STR_MAX(type) + 1); \
22e3a02b 869 sprintf(k, field "=" format, value); \
e6a7ec4b 870 iovec[n++] = IOVEC_MAKE_STRING(k); \
22e3a02b 871 }
4b58153d 872
22e3a02b
LP		 873#define IOVEC_ADD_STRING_FIELD(iovec, n, value, field) \
874 if (!isempty(value)) { \
875 char *k; \
876 k = strjoina(field "=", value); \
e6a7ec4b 877 iovec[n++] = IOVEC_MAKE_STRING(k); \
22e3a02b 878 }
4b58153d 879
22e3a02b
LP		 880#define IOVEC_ADD_ID128_FIELD(iovec, n, value, field) \
881 if (!sd_id128_is_null(value)) { \
882 char *k; \
fbd0b64f 883 k = newa(char, STRLEN(field "=") + SD_ID128_STRING_MAX); \
22e3a02b 884 sd_id128_to_string(value, stpcpy(k, field "=")); \
e6a7ec4b 885 iovec[n++] = IOVEC_MAKE_STRING(k); \
22e3a02b 886 }
4b58153d 887
22e3a02b
LP		 888#define IOVEC_ADD_SIZED_FIELD(iovec, n, value, value_size, field) \
889 if (value_size > 0) { \
890 char *k; \
fbd0b64f 891 k = newa(char, STRLEN(field "=") + value_size + 1); \
22e3a02b 892 *((char*) mempcpy(stpcpy(k, field "="), value, value_size)) = 0; \
e6a7ec4b 893 iovec[n++] = IOVEC_MAKE_STRING(k); \
22e3a02b 894 } \
4b58153d 895
d025f1e4
ZJS		 896static void dispatch_message_real(
897 Server *s,
d3070fbd 898 struct iovec *iovec, size_t n, size_t m,
22e3a02b 899 const ClientContext *c,
3b3154df 900 const struct timeval *tv,
d07f7b9e 901 int priority,
22e3a02b
LP		 902 pid_t object_pid) {
903
904 char source_time[sizeof("_SOURCE_REALTIME_TIMESTAMP=") + DECIMAL_STR_MAX(usec_t)];
084eeb86 905 _cleanup_free_ char *cmdline1 = NULL, *cmdline2 = NULL;
22e3a02b
LP		 906 uid_t journal_uid;
907 ClientContext *o;
d025f1e4
ZJS		 908
909 assert(s);
910 assert(iovec);
911 assert(n > 0);
d3070fbd
LP		 912 assert(n +
913 N_IOVEC_META_FIELDS +
914 (pid_is_valid(object_pid) ? N_IOVEC_OBJECT_FIELDS : 0) +
915 client_context_extra_fields_n_iovec(c) <= m);
19cace37 916
22e3a02b
LP		 917 if (c) {
918 IOVEC_ADD_NUMERIC_FIELD(iovec, n, c->pid, pid_t, pid_is_valid, PID_FMT, "_PID");
919 IOVEC_ADD_NUMERIC_FIELD(iovec, n, c->uid, uid_t, uid_is_valid, UID_FMT, "_UID");
920 IOVEC_ADD_NUMERIC_FIELD(iovec, n, c->gid, gid_t, gid_is_valid, GID_FMT, "_GID");
4b58153d 921
084eeb86
ZJS		 922 IOVEC_ADD_STRING_FIELD(iovec, n, c->comm, "_COMM"); /* At most TASK_COMM_LENGTH (16 bytes) */
923 IOVEC_ADD_STRING_FIELD(iovec, n, c->exe, "_EXE"); /* A path, so at most PATH_MAX (4096 bytes) */
d025f1e4 924
084eeb86
ZJS		 925 if (c->cmdline)
926 /* At most _SC_ARG_MAX (2MB usually), which is too much to put on stack.
927 * Let's use a heap allocation for this one. */
928 cmdline1 = set_iovec_string_field(iovec, &n, "_CMDLINE=", c->cmdline);
ae018d9b 929
084eeb86
ZJS		 930 IOVEC_ADD_STRING_FIELD(iovec, n, c->capeff, "_CAP_EFFECTIVE"); /* Read from /proc/.../status */
931 IOVEC_ADD_SIZED_FIELD(iovec, n, c->label, c->label_size, "_SELINUX_CONTEXT");
22e3a02b
LP		 932 IOVEC_ADD_NUMERIC_FIELD(iovec, n, c->auditid, uint32_t, audit_session_is_valid, "%" PRIu32, "_AUDIT_SESSION");
933 IOVEC_ADD_NUMERIC_FIELD(iovec, n, c->loginuid, uid_t, uid_is_valid, UID_FMT, "_AUDIT_LOGINUID");
d025f1e4 934
084eeb86 935 IOVEC_ADD_STRING_FIELD(iovec, n, c->cgroup, "_SYSTEMD_CGROUP"); /* A path */
22e3a02b
LP		 936 IOVEC_ADD_STRING_FIELD(iovec, n, c->session, "_SYSTEMD_SESSION");
937 IOVEC_ADD_NUMERIC_FIELD(iovec, n, c->owner_uid, uid_t, uid_is_valid, UID_FMT, "_SYSTEMD_OWNER_UID");
084eeb86 938 IOVEC_ADD_STRING_FIELD(iovec, n, c->unit, "_SYSTEMD_UNIT"); /* Unit names are bounded by UNIT_NAME_MAX */
22e3a02b
LP		 939 IOVEC_ADD_STRING_FIELD(iovec, n, c->user_unit, "_SYSTEMD_USER_UNIT");
940 IOVEC_ADD_STRING_FIELD(iovec, n, c->slice, "_SYSTEMD_SLICE");
941 IOVEC_ADD_STRING_FIELD(iovec, n, c->user_slice, "_SYSTEMD_USER_SLICE");
e7ff4e7f 942
22e3a02b 943 IOVEC_ADD_ID128_FIELD(iovec, n, c->invocation_id, "_SYSTEMD_INVOCATION_ID");
d3070fbd
LP		 944
945 if (c->extra_fields_n_iovec > 0) {
946 memcpy(iovec + n, c->extra_fields_iovec, c->extra_fields_n_iovec * sizeof(struct iovec));
947 n += c->extra_fields_n_iovec;
948 }
d025f1e4 949 }
968f3196 950
22e3a02b 951 assert(n <= m);
968f3196 952
22e3a02b 953 if (pid_is_valid(object_pid) && client_context_get(s, object_pid, NULL, NULL, 0, NULL, &o) >= 0) {
968f3196 954
22e3a02b
LP		 955 IOVEC_ADD_NUMERIC_FIELD(iovec, n, o->pid, pid_t, pid_is_valid, PID_FMT, "OBJECT_PID");
956 IOVEC_ADD_NUMERIC_FIELD(iovec, n, o->uid, uid_t, uid_is_valid, UID_FMT, "OBJECT_UID");
957 IOVEC_ADD_NUMERIC_FIELD(iovec, n, o->gid, gid_t, gid_is_valid, GID_FMT, "OBJECT_GID");
968f3196 958
084eeb86 959 /* See above for size limits, only ->cmdline may be large, so use a heap allocation for it. */
22e3a02b
LP		 960 IOVEC_ADD_STRING_FIELD(iovec, n, o->comm, "OBJECT_COMM");
961 IOVEC_ADD_STRING_FIELD(iovec, n, o->exe, "OBJECT_EXE");
084eeb86
ZJS		 962 if (o->cmdline)
963 cmdline2 = set_iovec_string_field(iovec, &n, "OBJECT_CMDLINE=", o->cmdline);
968f3196 964
084eeb86 965 IOVEC_ADD_STRING_FIELD(iovec, n, o->capeff, "OBJECT_CAP_EFFECTIVE");
22e3a02b 966 IOVEC_ADD_SIZED_FIELD(iovec, n, o->label, o->label_size, "OBJECT_SELINUX_CONTEXT");
22e3a02b
LP		 967 IOVEC_ADD_NUMERIC_FIELD(iovec, n, o->auditid, uint32_t, audit_session_is_valid, "%" PRIu32, "OBJECT_AUDIT_SESSION");
968 IOVEC_ADD_NUMERIC_FIELD(iovec, n, o->loginuid, uid_t, uid_is_valid, UID_FMT, "OBJECT_AUDIT_LOGINUID");
d473176a 969
22e3a02b
LP		 970 IOVEC_ADD_STRING_FIELD(iovec, n, o->cgroup, "OBJECT_SYSTEMD_CGROUP");
971 IOVEC_ADD_STRING_FIELD(iovec, n, o->session, "OBJECT_SYSTEMD_SESSION");
972 IOVEC_ADD_NUMERIC_FIELD(iovec, n, o->owner_uid, uid_t, uid_is_valid, UID_FMT, "OBJECT_SYSTEMD_OWNER_UID");
973 IOVEC_ADD_STRING_FIELD(iovec, n, o->unit, "OBJECT_SYSTEMD_UNIT");
974 IOVEC_ADD_STRING_FIELD(iovec, n, o->user_unit, "OBJECT_SYSTEMD_USER_UNIT");
975 IOVEC_ADD_STRING_FIELD(iovec, n, o->slice, "OBJECT_SYSTEMD_SLICE");
976 IOVEC_ADD_STRING_FIELD(iovec, n, o->user_slice, "OBJECT_SYSTEMD_USER_SLICE");
d473176a 977
22e3a02b 978 IOVEC_ADD_ID128_FIELD(iovec, n, o->invocation_id, "OBJECT_SYSTEMD_INVOCATION_ID=");
968f3196 979 }
22e3a02b 980
968f3196 981 assert(n <= m);
d025f1e4
ZJS		 982
983 if (tv) {
398a50cd 984 sprintf(source_time, "_SOURCE_REALTIME_TIMESTAMP=" USEC_FMT, timeval_load(tv));
e6a7ec4b 985 iovec[n++] = IOVEC_MAKE_STRING(source_time);
d025f1e4
ZJS		 986 }
987
988 /* Note that strictly speaking storing the boot id here is
989 * redundant since the entry includes this in-line
990 * anyway. However, we need this indexed, too. */
0c24bb23 991 if (!isempty(s->boot_id_field))
e6a7ec4b 992 iovec[n++] = IOVEC_MAKE_STRING(s->boot_id_field);
d025f1e4 993
0c24bb23 994 if (!isempty(s->machine_id_field))
e6a7ec4b 995 iovec[n++] = IOVEC_MAKE_STRING(s->machine_id_field);
d025f1e4 996
0c24bb23 997 if (!isempty(s->hostname_field))
e6a7ec4b 998 iovec[n++] = IOVEC_MAKE_STRING(s->hostname_field);
d025f1e4 999
b1852c48
LP		 1000 if (!isempty(s->namespace_field))
1001 iovec[n++] = IOVEC_MAKE_STRING(s->namespace_field);
1002
d025f1e4
ZJS		 1003 assert(n <= m);
1004
22e3a02b
LP		 1005 if (s->split_mode == SPLIT_UID && c && uid_is_valid(c->uid))
1006 /* Split up strictly by (non-root) UID */
1007 journal_uid = c->uid;
1008 else if (s->split_mode == SPLIT_LOGIN && c && c->uid > 0 && uid_is_valid(c->owner_uid))
edc3797f
LP		 1009 /* Split up by login UIDs. We do this only if the
1010 * realuid is not root, in order not to accidentally
1011 * leak privileged information to the user that is
1012 * logged by a privileged process that is part of an
7517e174 1013 * unprivileged session. */
22e3a02b 1014 journal_uid = c->owner_uid;
da499392
KS		 1015 else
1016 journal_uid = 0;
759c945a 1017
d07f7b9e 1018 write_to_journal(s, journal_uid, iovec, n, priority);
d025f1e4
ZJS		 1019}
1020
13181942 1021void server_driver_message(Server *s, pid_t object_pid, const char *message_id, const char *format, ...) {
22e3a02b 1022
d3070fbd
LP		 1023 struct iovec *iovec;
1024 size_t n = 0, k, m;
d025f1e4 1025 va_list ap;
22e3a02b 1026 int r;
d025f1e4
ZJS		 1027
1028 assert(s);
1029 assert(format);
1030
f643ae71 1031 m = N_IOVEC_META_FIELDS + 5 + N_IOVEC_PAYLOAD_FIELDS + client_context_extra_fields_n_iovec(s->my_context) + N_IOVEC_OBJECT_FIELDS;
d3070fbd
LP		 1032 iovec = newa(struct iovec, m);
1033
4850d39a 1034 assert_cc(3 == LOG_FAC(LOG_DAEMON));
e6a7ec4b
LP		 1035 iovec[n++] = IOVEC_MAKE_STRING("SYSLOG_FACILITY=3");
1036 iovec[n++] = IOVEC_MAKE_STRING("SYSLOG_IDENTIFIER=systemd-journald");
b6fa2555 1037
e6a7ec4b 1038 iovec[n++] = IOVEC_MAKE_STRING("_TRANSPORT=driver");
4850d39a 1039 assert_cc(6 == LOG_INFO);
e6a7ec4b 1040 iovec[n++] = IOVEC_MAKE_STRING("PRIORITY=6");
d025f1e4 1041
2b044526 1042 if (message_id)
e6a7ec4b 1043 iovec[n++] = IOVEC_MAKE_STRING(message_id);
d3070fbd 1044 k = n;
8a03c9ef
ZJS		 1045
1046 va_start(ap, format);
d3070fbd 1047 r = log_format_iovec(iovec, m, &n, false, 0, format, ap);
32917e33 1048 /* Error handling below */
8a03c9ef
ZJS		 1049 va_end(ap);
1050
32917e33 1051 if (r >= 0)
d3070fbd 1052 dispatch_message_real(s, iovec, n, m, s->my_context, NULL, LOG_INFO, object_pid);
8a03c9ef 1053
d3070fbd
LP		 1054 while (k < n)
1055 free(iovec[k++].iov_base);
32917e33
ZJS		 1056
1057 if (r < 0) {
1058 /* We failed to format the message. Emit a warning instead. */
1059 char buf[LINE_MAX];
1060
4bbccb02 1061 xsprintf(buf, "MESSAGE=Entry printing failed: %s", strerror_safe(r));
32917e33
ZJS		 1062
1063 n = 3;
e6a7ec4b
LP		 1064 iovec[n++] = IOVEC_MAKE_STRING("PRIORITY=4");
1065 iovec[n++] = IOVEC_MAKE_STRING(buf);
d3070fbd 1066 dispatch_message_real(s, iovec, n, m, s->my_context, NULL, LOG_INFO, object_pid);
32917e33 1067 }
d025f1e4
ZJS		 1068}
1069
1070void server_dispatch_message(
1071 Server *s,
d3070fbd 1072 struct iovec *iovec, size_t n, size_t m,
22e3a02b 1073 ClientContext *c,
3b3154df 1074 const struct timeval *tv,
968f3196
ZJS		 1075 int priority,
1076 pid_t object_pid) {
d025f1e4 1077
8580d1f7 1078 uint64_t available = 0;
22e3a02b 1079 int rl;
d025f1e4
ZJS		 1080
1081 assert(s);
1082 assert(iovec || n == 0);
1083
1084 if (n == 0)
1085 return;
1086
1087 if (LOG_PRI(priority) > s->max_level_store)
1088 return;
1089
2f5df74a
HHPF		 1090 /* Stop early in case the information will not be stored
1091 * in a journal. */
1092 if (s->storage == STORAGE_NONE)
1093 return;
1094
22e3a02b
LP		 1095 if (c && c->unit) {
1096 (void) determine_space(s, &available, NULL);
d025f1e4 1097
5ac1530e 1098 rl = journal_ratelimit_test(s->ratelimit, c->unit, c->log_ratelimit_interval, c->log_ratelimit_burst, priority & LOG_PRIMASK, available);
22e3a02b
LP		 1099 if (rl == 0)
1100 return;
d025f1e4 1101
22e3a02b
LP		 1102 /* Write a suppression message if we suppressed something */
1103 if (rl > 1)
13181942
LP		 1104 server_driver_message(s, c->pid,
1105 "MESSAGE_ID=" SD_MESSAGE_JOURNAL_DROPPED_STR,
1106 LOG_MESSAGE("Suppressed %i messages from %s", rl - 1, c->unit),
5908ff1c 1107 "N_DROPPED=%i", rl - 1,
22e3a02b 1108 NULL);
d025f1e4
ZJS		 1109 }
1110
22e3a02b 1111 dispatch_message_real(s, iovec, n, m, c, tv, priority, object_pid);
d025f1e4
ZJS		 1112}
1113
f78273c8 1114int server_flush_to_var(Server *s, bool require_flag_file) {
fbb63411 1115 char ts[FORMAT_TIMESPAN_MAX];
b1852c48
LP		 1116 sd_journal *j = NULL;
1117 const char *fn;
fbb63411 1118 unsigned n = 0;
b1852c48 1119 usec_t start;
b4e26d1d 1120 int r, k;
d025f1e4
ZJS		 1121
1122 assert(s);
1123
f78273c8 1124 if (!IN_SET(s->storage, STORAGE_AUTO, STORAGE_PERSISTENT))
d025f1e4
ZJS		 1125 return 0;
1126
b1852c48
LP		 1127 if (s->namespace) /* Flushing concept does not exist for namespace instances */
1128 return 0;
1129
1130 if (!s->runtime_journal) /* Nothing to flush? */
d025f1e4
ZJS		 1131 return 0;
1132
b1852c48 1133 if (require_flag_file && !flushed_flag_is_set(s))
f78273c8
LP		 1134 return 0;
1135
b4e26d1d 1136 (void) system_journal_open(s, true, false);
d025f1e4
ZJS		 1137
1138 if (!s->system_journal)
1139 return 0;
1140
b1852c48 1141 log_debug("Flushing to %s...", s->system_storage.path);
d025f1e4 1142
fbb63411
LP		 1143 start = now(CLOCK_MONOTONIC);
1144
d025f1e4 1145 r = sd_journal_open(&j, SD_JOURNAL_RUNTIME_ONLY);
23bbb0de
MS		 1146 if (r < 0)
1147 return log_error_errno(r, "Failed to read runtime journal: %m");
d025f1e4 1148
93b73b06
LP		 1149 sd_journal_set_data_threshold(j, 0);
1150
d025f1e4
ZJS		 1151 SD_JOURNAL_FOREACH(j) {
1152 Object *o = NULL;
1153 JournalFile *f;
1154
1155 f = j->current_file;
1156 assert(f && f->current_offset > 0);
1157
fbb63411
LP		 1158 n++;
1159
d025f1e4
ZJS		 1160 r = journal_file_move_to_object(f, OBJECT_ENTRY, f->current_offset, &o);
1161 if (r < 0) {
da927ba9 1162 log_error_errno(r, "Can't read entry: %m");
d025f1e4
ZJS		 1163 goto finish;
1164 }
1165
5a271b08 1166 r = journal_file_copy_entry(f, s->system_journal, o, f->current_offset);
d025f1e4
ZJS		 1167 if (r >= 0)
1168 continue;
1169
1170 if (!shall_try_append_again(s->system_journal, r)) {
da927ba9 1171 log_error_errno(r, "Can't write entry: %m");
d025f1e4
ZJS		 1172 goto finish;
1173 }
1174
1175 server_rotate(s);
3a19f215 1176 server_vacuum(s, false);
d025f1e4 1177
253f59df
LP		 1178 if (!s->system_journal) {
1179 log_notice("Didn't flush runtime journal since rotation of system journal wasn't successful.");
1180 r = -EIO;
1181 goto finish;
1182 }
1183
d025f1e4 1184 log_debug("Retrying write.");
5a271b08 1185 r = journal_file_copy_entry(f, s->system_journal, o, f->current_offset);
d025f1e4 1186 if (r < 0) {
da927ba9 1187 log_error_errno(r, "Can't write entry: %m");
d025f1e4
ZJS		 1188 goto finish;
1189 }
1190 }
1191
804ae586
LP		 1192 r = 0;
1193
d025f1e4 1194finish:
fd790d6f
RM		 1195 if (s->system_journal)
1196 journal_file_post_change(s->system_journal);
d025f1e4 1197
804ae586 1198 s->runtime_journal = journal_file_close(s->runtime_journal);
d025f1e4
ZJS		 1199
1200 if (r >= 0)
b1852c48 1201 (void) rm_rf(s->runtime_storage.path, REMOVE_ROOT);
d025f1e4 1202
763c7aa2 1203 sd_journal_close(j);
d025f1e4 1204
13181942 1205 server_driver_message(s, 0, NULL,
b1852c48
LP		 1206 LOG_MESSAGE("Time spent on flushing to %s is %s for %u entries.",
1207 s->system_storage.path,
8a03c9ef
ZJS		 1208 format_timespan(ts, sizeof(ts), now(CLOCK_MONOTONIC) - start, 0),
1209 n),
1210 NULL);
fbb63411 1211
b1852c48
LP		 1212 fn = strjoina(s->runtime_directory, "/flushed");
1213 k = touch(fn);
b4e26d1d 1214 if (k < 0)
b1852c48 1215 log_warning_errno(k, "Failed to touch %s, ignoring: %m", fn);
b4e26d1d 1216
65c398c0 1217 server_refresh_idle_timer(s);
d025f1e4
ZJS		 1218 return r;
1219}
1220
b4e26d1d 1221static int server_relinquish_var(Server *s) {
b1852c48 1222 const char *fn;
b4e26d1d
LP		 1223 assert(s);
1224
1225 if (s->storage == STORAGE_NONE)
1226 return 0;
1227
b1852c48
LP		 1228 if (s->namespace) /* Concept does not exist for namespaced instances */
1229 return -EOPNOTSUPP;
1230
b4e26d1d
LP		 1231 if (s->runtime_journal && !s->system_journal)
1232 return 0;
1233
b1852c48 1234 log_debug("Relinquishing %s...", s->system_storage.path);
b4e26d1d
LP		 1235
1236 (void) system_journal_open(s, false, true);
1237
1238 s->system_journal = journal_file_close(s->system_journal);
1239 ordered_hashmap_clear_with_destructor(s->user_journals, journal_file_close);
1240 set_clear_with_destructor(s->deferred_closes, journal_file_close);
1241
b1852c48
LP		 1242 fn = strjoina(s->runtime_directory, "/flushed");
1243 if (unlink(fn) < 0 && errno != ENOENT)
1244 log_warning_errno(errno, "Failed to unlink %s, ignoring: %m", fn);
b4e26d1d 1245
65c398c0 1246 server_refresh_idle_timer(s);
b4e26d1d
LP		 1247 return 0;
1248}
1249
65c398c0
LP		 1250int server_process_datagram(
1251 sd_event_source *es,
1252 int fd,
1253 uint32_t revents,
1254 void *userdata) {
1255
f9a810be 1256 Server *s = userdata;
a315ac4e
LP		 1257 struct ucred *ucred = NULL;
1258 struct timeval *tv = NULL;
1259 struct cmsghdr *cmsg;
1260 char *label = NULL;
1261 size_t label_len = 0, m;
1262 struct iovec iovec;
1263 ssize_t n;
1264 int *fds = NULL, v = 0;
da6053d0 1265 size_t n_fds = 0;
a315ac4e 1266
fb29cdbe
LP		 1267 /* We use NAME_MAX space for the SELinux label here. The kernel currently enforces no limit, but
1268 * according to suggestions from the SELinux people this will change and it will probably be
1269 * identical to NAME_MAX. For now we use that, but this should be updated one day when the final
1270 * limit is known. */
1271 CMSG_BUFFER_TYPE(CMSG_SPACE(sizeof(struct ucred)) +
1272 CMSG_SPACE(sizeof(struct timeval)) +
1273 CMSG_SPACE(sizeof(int)) + /* fd */
1274 CMSG_SPACE(NAME_MAX) /* selinux label */) control;
a315ac4e
LP		 1275
1276 union sockaddr_union sa = {};
1277
1278 struct msghdr msghdr = {
1279 .msg_iov = &iovec,
1280 .msg_iovlen = 1,
1281 .msg_control = &control,
1282 .msg_controllen = sizeof(control),
1283 .msg_name = &sa,
1284 .msg_namelen = sizeof(sa),
1285 };
f9a810be 1286
d025f1e4 1287 assert(s);
875c2e22 1288 assert(fd == s->native_fd || fd == s->syslog_fd || fd == s->audit_fd);
f9a810be 1289
baaa35ad
ZJS		 1290 if (revents != EPOLLIN)
1291 return log_error_errno(SYNTHETIC_ERRNO(EIO),
1292 "Got invalid event from epoll for datagram fd: %" PRIx32,
1293 revents);
f9a810be 1294
22e3a02b
LP		 1295 /* Try to get the right size, if we can. (Not all sockets support SIOCINQ, hence we just try, but don't rely on
1296 * it.) */
a315ac4e 1297 (void) ioctl(fd, SIOCINQ, &v);
d025f1e4 1298
a315ac4e
LP		 1299 /* Fix it up, if it is too small. We use the same fixed value as auditd here. Awful! */
1300 m = PAGE_ALIGN(MAX3((size_t) v + 1,
1301 (size_t) LINE_MAX,
1302 ALIGN(sizeof(struct nlmsghdr)) + ALIGN((size_t) MAX_AUDIT_MESSAGE_LENGTH)) + 1);
d025f1e4 1303
a315ac4e
LP		 1304 if (!GREEDY_REALLOC(s->buffer, s->buffer_size, m))
1305 return log_oom();
875c2e22 1306
5cfa2c3d 1307 iovec = IOVEC_MAKE(s->buffer, s->buffer_size - 1); /* Leave room for trailing NUL we add later */
d025f1e4 1308
3691bcf3
LP		 1309 n = recvmsg_safe(fd, &msghdr, MSG_DONTWAIT|MSG_CMSG_CLOEXEC);
1310 if (IN_SET(n, -EINTR, -EAGAIN))
1311 return 0;
1312 if (n == -EXFULL) {
1313 log_warning("Got message with truncated control data (too many fds sent?), ignoring.");
1314 return 0;
a315ac4e 1315 }
3691bcf3
LP		 1316 if (n < 0)
1317 return log_error_errno(n, "recvmsg() failed: %m");
875c2e22 1318
bc2762a3 1319 CMSG_FOREACH(cmsg, &msghdr)
a315ac4e
LP		 1320 if (cmsg->cmsg_level == SOL_SOCKET &&
1321 cmsg->cmsg_type == SCM_CREDENTIALS &&
3691bcf3
LP		 1322 cmsg->cmsg_len == CMSG_LEN(sizeof(struct ucred))) {
1323 assert(!ucred);
a315ac4e 1324 ucred = (struct ucred*) CMSG_DATA(cmsg);
3691bcf3 1325 } else if (cmsg->cmsg_level == SOL_SOCKET &&
a315ac4e 1326 cmsg->cmsg_type == SCM_SECURITY) {
3691bcf3 1327 assert(!label);
a315ac4e
LP		 1328 label = (char*) CMSG_DATA(cmsg);
1329 label_len = cmsg->cmsg_len - CMSG_LEN(0);
1330 } else if (cmsg->cmsg_level == SOL_SOCKET &&
1331 cmsg->cmsg_type == SO_TIMESTAMP &&
3691bcf3
LP		 1332 cmsg->cmsg_len == CMSG_LEN(sizeof(struct timeval))) {
1333 assert(!tv);
a315ac4e 1334 tv = (struct timeval*) CMSG_DATA(cmsg);
3691bcf3 1335 } else if (cmsg->cmsg_level == SOL_SOCKET &&
a315ac4e 1336 cmsg->cmsg_type == SCM_RIGHTS) {
3691bcf3 1337 assert(!fds);
a315ac4e
LP		 1338 fds = (int*) CMSG_DATA(cmsg);
1339 n_fds = (cmsg->cmsg_len - CMSG_LEN(0)) / sizeof(int);
d025f1e4
ZJS		 1340 }
1341
a315ac4e
LP		 1342 /* And a trailing NUL, just in case */
1343 s->buffer[n] = 0;
1344
1345 if (fd == s->syslog_fd) {
1346 if (n > 0 && n_fds == 0)
bb3ff70a 1347 server_process_syslog_message(s, s->buffer, n, ucred, tv, label, label_len);
a315ac4e
LP		 1348 else if (n_fds > 0)
1349 log_warning("Got file descriptors via syslog socket. Ignoring.");
1350
1351 } else if (fd == s->native_fd) {
1352 if (n > 0 && n_fds == 0)
1353 server_process_native_message(s, s->buffer, n, ucred, tv, label, label_len);
1354 else if (n == 0 && n_fds == 1)
1355 server_process_native_file(s, fds[0], ucred, tv, label, label_len);
1356 else if (n_fds > 0)
1357 log_warning("Got too many file descriptors via native socket. Ignoring.");
1358
1359 } else {
1360 assert(fd == s->audit_fd);
1361
1362 if (n > 0 && n_fds == 0)
1363 server_process_audit_message(s, s->buffer, n, ucred, &sa, msghdr.msg_namelen);
1364 else if (n_fds > 0)
1365 log_warning("Got file descriptors via audit socket. Ignoring.");
f9a810be 1366 }
a315ac4e
LP		 1367
1368 close_many(fds, n_fds);
65c398c0
LP		 1369
1370 server_refresh_idle_timer(s);
a315ac4e 1371 return 0;
f9a810be 1372}
d025f1e4 1373
1ec23479 1374static void server_full_flush(Server *s) {
f9a810be 1375 assert(s);
d025f1e4 1376
f78273c8 1377 (void) server_flush_to_var(s, false);
f9a810be 1378 server_sync(s);
3a19f215 1379 server_vacuum(s, false);
d025f1e4 1380
18e758bf 1381 server_space_usage_message(s, NULL);
65c398c0
LP		 1382
1383 server_refresh_idle_timer(s);
f9a810be 1384}
d025f1e4 1385
1ec23479 1386static int dispatch_sigusr1(sd_event_source *es, const struct signalfd_siginfo *si, void *userdata) {
f9a810be 1387 Server *s = userdata;
1ec23479
LP		 1388
1389 assert(s);
1390
b1852c48
LP		 1391 if (s->namespace) {
1392 log_error("Received SIGUSR1 signal from PID " PID_FMT ", but flushing runtime journals not supported for namespaced instances.", si->ssi_pid);
1393 return 0;
1394 }
1395
b4e26d1d 1396 log_info("Received SIGUSR1 signal from PID " PID_FMT ", as request to flush runtime journal.", si->ssi_pid);
1ec23479
LP		 1397 server_full_flush(s);
1398
1399 return 0;
1400}
1401
1402static void server_full_rotate(Server *s) {
b1852c48 1403 const char *fn;
33d52ab9 1404 int r;
d025f1e4 1405
f9a810be 1406 assert(s);
d025f1e4 1407
f9a810be 1408 server_rotate(s);
3a19f215
FB		 1409 server_vacuum(s, true);
1410
1411 if (s->system_journal)
1412 patch_min_use(&s->system_storage);
1413 if (s->runtime_journal)
1414 patch_min_use(&s->runtime_storage);
d025f1e4 1415
dbd6e31c 1416 /* Let clients know when the most recent rotation happened. */
b1852c48
LP		 1417 fn = strjoina(s->runtime_directory, "/rotated");
1418 r = write_timestamp_file_atomic(fn, now(CLOCK_MONOTONIC));
33d52ab9 1419 if (r < 0)
b1852c48 1420 log_warning_errno(r, "Failed to write %s, ignoring: %m", fn);
1ec23479
LP		 1421}
1422
1423static int dispatch_sigusr2(sd_event_source *es, const struct signalfd_siginfo *si, void *userdata) {
1424 Server *s = userdata;
1425
1426 assert(s);
1427
b4e26d1d 1428 log_info("Received SIGUSR2 signal from PID " PID_FMT ", as request to rotate journal.", si->ssi_pid);
1ec23479 1429 server_full_rotate(s);
dbd6e31c 1430
f9a810be
LP		 1431 return 0;
1432}
d025f1e4 1433
f9a810be
LP		 1434static int dispatch_sigterm(sd_event_source *es, const struct signalfd_siginfo *si, void *userdata) {
1435 Server *s = userdata;
d025f1e4 1436
f9a810be 1437 assert(s);
d025f1e4 1438
4daf54a8 1439 log_received_signal(LOG_INFO, si);
d025f1e4 1440
6203e07a 1441 sd_event_exit(s->event, 0);
d025f1e4
ZJS		 1442 return 0;
1443}
1444
1ec23479 1445static void server_full_sync(Server *s) {
b1852c48 1446 const char *fn;
33d52ab9 1447 int r;
94b65516
LP		 1448
1449 assert(s);
1450
94b65516
LP		 1451 server_sync(s);
1452
1453 /* Let clients know when the most recent sync happened. */
b1852c48
LP		 1454 fn = strjoina(s->runtime_directory, "/synced");
1455 r = write_timestamp_file_atomic(fn, now(CLOCK_MONOTONIC));
33d52ab9 1456 if (r < 0)
b1852c48 1457 log_warning_errno(r, "Failed to write %s, ignoring: %m", fn);
94b65516 1458
1ec23479
LP		 1459 return;
1460}
1461
1462static int dispatch_sigrtmin1(sd_event_source *es, const struct signalfd_siginfo *si, void *userdata) {
1463 Server *s = userdata;
1464
1465 assert(s);
1466
b4e26d1d 1467 log_debug("Received SIGRTMIN1 signal from PID " PID_FMT ", as request to sync.", si->ssi_pid );
1ec23479
LP		 1468 server_full_sync(s);
1469
94b65516
LP		 1470 return 0;
1471}
1472
f9a810be 1473static int setup_signals(Server *s) {
f9a810be 1474 int r;
d025f1e4
ZJS		 1475
1476 assert(s);
1477
9bab3b65 1478 assert_se(sigprocmask_many(SIG_SETMASK, NULL, SIGINT, SIGTERM, SIGUSR1, SIGUSR2, SIGRTMIN+1, -1) >= 0);
d025f1e4 1479
151b9b96 1480 r = sd_event_add_signal(s->event, &s->sigusr1_event_source, SIGUSR1, dispatch_sigusr1, s);
f9a810be
LP		 1481 if (r < 0)
1482 return r;
1483
151b9b96 1484 r = sd_event_add_signal(s->event, &s->sigusr2_event_source, SIGUSR2, dispatch_sigusr2, s);
f9a810be
LP		 1485 if (r < 0)
1486 return r;
d025f1e4 1487
151b9b96 1488 r = sd_event_add_signal(s->event, &s->sigterm_event_source, SIGTERM, dispatch_sigterm, s);
f9a810be
LP		 1489 if (r < 0)
1490 return r;
d025f1e4 1491
337fabf7 1492 /* Let's process SIGTERM late, so that we flush all queued messages to disk before we exit */
b374689c
LP		 1493 r = sd_event_source_set_priority(s->sigterm_event_source, SD_EVENT_PRIORITY_NORMAL+20);
1494 if (r < 0)
1495 return r;
1496
337fabf7
LP		 1497 /* When journald is invoked on the terminal (when debugging), it's useful if C-c is handled
1498 * equivalent to SIGTERM. */
151b9b96 1499 r = sd_event_add_signal(s->event, &s->sigint_event_source, SIGINT, dispatch_sigterm, s);
f9a810be
LP		 1500 if (r < 0)
1501 return r;
d025f1e4 1502
b374689c
LP		 1503 r = sd_event_source_set_priority(s->sigint_event_source, SD_EVENT_PRIORITY_NORMAL+20);
1504 if (r < 0)
1505 return r;
1506
337fabf7
LP		 1507 /* SIGRTMIN+1 causes an immediate sync. We process this very late, so that everything else queued at
1508 * this point is really written to disk. Clients can watch /run/systemd/journal/synced with inotify
1509 * until its mtime changes to see when a sync happened. */
94b65516
LP		 1510 r = sd_event_add_signal(s->event, &s->sigrtmin1_event_source, SIGRTMIN+1, dispatch_sigrtmin1, s);
1511 if (r < 0)
1512 return r;
1513
1514 r = sd_event_source_set_priority(s->sigrtmin1_event_source, SD_EVENT_PRIORITY_NORMAL+15);
1515 if (r < 0)
1516 return r;
1517
d025f1e4
ZJS		 1518 return 0;
1519}
1520
5707ecf3
ZJS		 1521static int parse_proc_cmdline_item(const char *key, const char *value, void *data) {
1522 Server *s = data;
74df0fca 1523 int r;
d025f1e4 1524
5707ecf3 1525 assert(s);
d025f1e4 1526
1d84ad94
LP		 1527 if (proc_cmdline_key_streq(key, "systemd.journald.forward_to_syslog")) {
1528
5707ecf3 1529 r = value ? parse_boolean(value) : true;
d581d9d9 1530 if (r < 0)
5707ecf3
ZJS		 1531 log_warning("Failed to parse forward to syslog switch \"%s\". Ignoring.", value);
1532 else
1533 s->forward_to_syslog = r;
1d84ad94
LP		 1534
1535 } else if (proc_cmdline_key_streq(key, "systemd.journald.forward_to_kmsg")) {
1536
5707ecf3
ZJS		 1537 r = value ? parse_boolean(value) : true;
1538 if (r < 0)
1539 log_warning("Failed to parse forward to kmsg switch \"%s\". Ignoring.", value);
1540 else
1541 s->forward_to_kmsg = r;
1d84ad94
LP		 1542
1543 } else if (proc_cmdline_key_streq(key, "systemd.journald.forward_to_console")) {
1544
5707ecf3
ZJS		 1545 r = value ? parse_boolean(value) : true;
1546 if (r < 0)
1547 log_warning("Failed to parse forward to console switch \"%s\". Ignoring.", value);
1548 else
1549 s->forward_to_console = r;
1d84ad94
LP		 1550
1551 } else if (proc_cmdline_key_streq(key, "systemd.journald.forward_to_wall")) {
1552
5707ecf3
ZJS		 1553 r = value ? parse_boolean(value) : true;
1554 if (r < 0)
1555 log_warning("Failed to parse forward to wall switch \"%s\". Ignoring.", value);
1556 else
1557 s->forward_to_wall = r;
1d84ad94
LP		 1558
1559 } else if (proc_cmdline_key_streq(key, "systemd.journald.max_level_console")) {
1560
1561 if (proc_cmdline_value_missing(key, value))
1562 return 0;
1563
5707ecf3
ZJS		 1564 r = log_level_from_string(value);
1565 if (r < 0)
1566 log_warning("Failed to parse max level console value \"%s\". Ignoring.", value);
1567 else
1568 s->max_level_console = r;
1d84ad94
LP		 1569
1570 } else if (proc_cmdline_key_streq(key, "systemd.journald.max_level_store")) {
1571
1572 if (proc_cmdline_value_missing(key, value))
1573 return 0;
1574
5707ecf3
ZJS		 1575 r = log_level_from_string(value);
1576 if (r < 0)
1577 log_warning("Failed to parse max level store value \"%s\". Ignoring.", value);
1578 else
1579 s->max_level_store = r;
1d84ad94
LP		 1580
1581 } else if (proc_cmdline_key_streq(key, "systemd.journald.max_level_syslog")) {
1582
1583 if (proc_cmdline_value_missing(key, value))
1584 return 0;
1585
5707ecf3
ZJS		 1586 r = log_level_from_string(value);
1587 if (r < 0)
1588 log_warning("Failed to parse max level syslog value \"%s\". Ignoring.", value);
1589 else
1590 s->max_level_syslog = r;
1d84ad94
LP		 1591
1592 } else if (proc_cmdline_key_streq(key, "systemd.journald.max_level_kmsg")) {
1593
1594 if (proc_cmdline_value_missing(key, value))
1595 return 0;
1596
5707ecf3
ZJS		 1597 r = log_level_from_string(value);
1598 if (r < 0)
1599 log_warning("Failed to parse max level kmsg value \"%s\". Ignoring.", value);
1600 else
1601 s->max_level_kmsg = r;
1d84ad94
LP		 1602
1603 } else if (proc_cmdline_key_streq(key, "systemd.journald.max_level_wall")) {
1604
1605 if (proc_cmdline_value_missing(key, value))
1606 return 0;
1607
5707ecf3
ZJS		 1608 r = log_level_from_string(value);
1609 if (r < 0)
1610 log_warning("Failed to parse max level wall value \"%s\". Ignoring.", value);
1611 else
1612 s->max_level_wall = r;
1d84ad94 1613
5707ecf3
ZJS		 1614 } else if (startswith(key, "systemd.journald"))
1615 log_warning("Unknown journald kernel command line option \"%s\". Ignoring.", key);
d025f1e4 1616
804ae586 1617 /* do not warn about state here, since probably systemd already did */
db91ea32 1618 return 0;
d025f1e4
ZJS		 1619}
1620
1621static int server_parse_config_file(Server *s) {
b1852c48
LP		 1622 int r;
1623
d025f1e4
ZJS		 1624 assert(s);
1625
b1852c48
LP		 1626 if (s->namespace) {
1627 const char *namespaced;
1628
1629 /* If we are running in namespace mode, load the namespace specific configuration file, and nothing else */
1630 namespaced = strjoina(PKGSYSCONFDIR "/journald@", s->namespace, ".conf");
1631
4f9ff96a
LP		 1632 r = config_parse(NULL,
1633 namespaced, NULL,
1634 "Journal\0",
1635 config_item_perf_lookup, journald_gperf_lookup,
1636 CONFIG_PARSE_WARN, s,
1637 NULL);
b1852c48
LP		 1638 if (r < 0)
1639 return r;
1640
1641 return 0;
1642 }
1643
4f9ff96a
LP		 1644 return config_parse_many_nulstr(
1645 PKGSYSCONFDIR "/journald.conf",
1646 CONF_PATHS_NULSTR("systemd/journald.conf.d"),
1647 "Journal\0",
1648 config_item_perf_lookup, journald_gperf_lookup,
1649 CONFIG_PARSE_WARN, s, NULL);
d025f1e4
ZJS		 1650}
1651
f9a810be
LP		 1652static int server_dispatch_sync(sd_event_source *es, usec_t t, void *userdata) {
1653 Server *s = userdata;
26687bf8
OS		 1654
1655 assert(s);
1656
f9a810be 1657 server_sync(s);
26687bf8
OS		 1658 return 0;
1659}
1660
d07f7b9e 1661int server_schedule_sync(Server *s, int priority) {
26687bf8
OS		 1662 int r;
1663
26687bf8
OS		 1664 assert(s);
1665
d07f7b9e
LP		 1666 if (priority <= LOG_CRIT) {
1667 /* Immediately sync to disk when this is of priority CRIT, ALERT, EMERG */
1668 server_sync(s);
1669 return 0;
1670 }
1671
26687bf8
OS		 1672 if (s->sync_scheduled)
1673 return 0;
1674
f9a810be 1675 if (s->sync_interval_usec > 0) {
f9a810be
LP		 1676
1677 if (!s->sync_event_source) {
39cf0351 1678 r = sd_event_add_time_relative(
6a0f1f6d
LP		 1679 s->event,
1680 &s->sync_event_source,
1681 CLOCK_MONOTONIC,
39cf0351 1682 s->sync_interval_usec, 0,
6a0f1f6d 1683 server_dispatch_sync, s);
f9a810be
LP		 1684 if (r < 0)
1685 return r;
1686
1687 r = sd_event_source_set_priority(s->sync_event_source, SD_EVENT_PRIORITY_IMPORTANT);
1688 } else {
39cf0351 1689 r = sd_event_source_set_time_relative(s->sync_event_source, s->sync_interval_usec);
f9a810be
LP		 1690 if (r < 0)
1691 return r;
1692
1693 r = sd_event_source_set_enabled(s->sync_event_source, SD_EVENT_ONESHOT);
1694 }
26687bf8 1695 if (r < 0)
f9a810be 1696 return r;
26687bf8 1697
f9a810be
LP		 1698 s->sync_scheduled = true;
1699 }
26687bf8
OS		 1700
1701 return 0;
1702}
1703
0c24bb23
LP		 1704static int dispatch_hostname_change(sd_event_source *es, int fd, uint32_t revents, void *userdata) {
1705 Server *s = userdata;
1706
1707 assert(s);
1708
1709 server_cache_hostname(s);
1710 return 0;
1711}
1712
1713static int server_open_hostname(Server *s) {
1714 int r;
1715
1716 assert(s);
1717
db4a47e9
LP		 1718 s->hostname_fd = open("/proc/sys/kernel/hostname",
1719 O_RDONLY|O_CLOEXEC|O_NONBLOCK|O_NOCTTY);
4a62c710
MS		 1720 if (s->hostname_fd < 0)
1721 return log_error_errno(errno, "Failed to open /proc/sys/kernel/hostname: %m");
0c24bb23 1722
151b9b96 1723 r = sd_event_add_io(s->event, &s->hostname_event_source, s->hostname_fd, 0, dispatch_hostname_change, s);
0c24bb23 1724 if (r < 0) {
28def94c
DR		 1725 /* kernels prior to 3.2 don't support polling this file. Ignore
1726 * the failure. */
1727 if (r == -EPERM) {
e53fc357 1728 log_warning_errno(r, "Failed to register hostname fd in event loop, ignoring: %m");
03e334a1 1729 s->hostname_fd = safe_close(s->hostname_fd);
28def94c
DR		 1730 return 0;
1731 }
1732
23bbb0de 1733 return log_error_errno(r, "Failed to register hostname fd in event loop: %m");
0c24bb23
LP		 1734 }
1735
1736 r = sd_event_source_set_priority(s->hostname_event_source, SD_EVENT_PRIORITY_IMPORTANT-10);
23bbb0de 1737 if (r < 0)
38b38500 1738 return log_error_errno(r, "Failed to adjust priority of hostname event source: %m");
0c24bb23
LP		 1739
1740 return 0;
1741}
1742
e22aa3d3
LP		 1743static int dispatch_notify_event(sd_event_source *es, int fd, uint32_t revents, void *userdata) {
1744 Server *s = userdata;
1745 int r;
1746
1747 assert(s);
1748 assert(s->notify_event_source == es);
1749 assert(s->notify_fd == fd);
1750
e22aa3d3 1751 /* The $NOTIFY_SOCKET is writable again, now send exactly one
dd835265 1752 * message on it. Either it's the watchdog event, the initial
119e9655
LP		 1753 * READY=1 event or an stdout stream event. If there's nothing
1754 * to write anymore, turn our event source off. The next time
1755 * there's something to send it will be turned on again. */
e22aa3d3
LP		 1756
1757 if (!s->sent_notify_ready) {
1758 static const char p[] =
1759 "READY=1\n"
1760 "STATUS=Processing requests...";
1761 ssize_t l;
1762
1763 l = send(s->notify_fd, p, strlen(p), MSG_DONTWAIT);
1764 if (l < 0) {
1765 if (errno == EAGAIN)
1766 return 0;
1767
1768 return log_error_errno(errno, "Failed to send READY=1 notification message: %m");
1769 }
1770
1771 s->sent_notify_ready = true;
1772 log_debug("Sent READY=1 notification.");
1773
119e9655
LP		 1774 } else if (s->send_watchdog) {
1775
1776 static const char p[] =
1777 "WATCHDOG=1";
1778
1779 ssize_t l;
1780
1781 l = send(s->notify_fd, p, strlen(p), MSG_DONTWAIT);
1782 if (l < 0) {
1783 if (errno == EAGAIN)
1784 return 0;
1785
1786 return log_error_errno(errno, "Failed to send WATCHDOG=1 notification message: %m");
1787 }
1788
1789 s->send_watchdog = false;
1790 log_debug("Sent WATCHDOG=1 notification.");
1791
e22aa3d3
LP		 1792 } else if (s->stdout_streams_notify_queue)
1793 /* Dispatch one stream notification event */
1794 stdout_stream_send_notify(s->stdout_streams_notify_queue);
1795
61233823 1796 /* Leave us enabled if there's still more to do. */
119e9655 1797 if (s->send_watchdog || s->stdout_streams_notify_queue)
e22aa3d3
LP		 1798 return 0;
1799
1800 /* There was nothing to do anymore, let's turn ourselves off. */
1801 r = sd_event_source_set_enabled(es, SD_EVENT_OFF);
1802 if (r < 0)
1803 return log_error_errno(r, "Failed to turn off notify event source: %m");
1804
1805 return 0;
1806}
1807
119e9655
LP		 1808static int dispatch_watchdog(sd_event_source *es, uint64_t usec, void *userdata) {
1809 Server *s = userdata;
1810 int r;
1811
1812 assert(s);
1813
1814 s->send_watchdog = true;
1815
1816 r = sd_event_source_set_enabled(s->notify_event_source, SD_EVENT_ON);
1817 if (r < 0)
1818 log_warning_errno(r, "Failed to turn on notify event source: %m");
1819
1820 r = sd_event_source_set_time(s->watchdog_event_source, usec + s->watchdog_usec / 2);
1821 if (r < 0)
1822 return log_error_errno(r, "Failed to restart watchdog event source: %m");
1823
1824 r = sd_event_source_set_enabled(s->watchdog_event_source, SD_EVENT_ON);
1825 if (r < 0)
1826 return log_error_errno(r, "Failed to enable watchdog event source: %m");
1827
1828 return 0;
1829}
1830
e22aa3d3 1831static int server_connect_notify(Server *s) {
f36a9d59
ZJS		 1832 union sockaddr_union sa;
1833 socklen_t sa_len;
e22aa3d3 1834 const char *e;
f36a9d59 1835 int r;
e22aa3d3
LP		 1836
1837 assert(s);
1838 assert(s->notify_fd < 0);
1839 assert(!s->notify_event_source);
1840
1841 /*
337fabf7
LP		 1842 * So here's the problem: we'd like to send notification messages to PID 1, but we cannot do that via
1843 * sd_notify(), since that's synchronous, and we might end up blocking on it. Specifically: given
1844 * that PID 1 might block on dbus-daemon during IPC, and dbus-daemon is logging to us, and might
1845 * hence block on us, we might end up in a deadlock if we block on sending PID 1 notification
1846 * messages — by generating a full blocking circle. To avoid this, let's create a non-blocking
1847 * socket, and connect it to the notification socket, and then wait for POLLOUT before we send
1848 * anything. This should efficiently avoid any deadlocks, as we'll never block on PID 1, hence PID 1
1849 * can safely block on dbus-daemon which can safely block on us again.
1850 *
1851 * Don't think that this issue is real? It is, see: https://github.com/systemd/systemd/issues/1505
1852 */
e22aa3d3
LP		 1853
1854 e = getenv("NOTIFY_SOCKET");
1855 if (!e)
1856 return 0;
1857
f36a9d59
ZJS		 1858 r = sockaddr_un_set_path(&sa.un, e);
1859 if (r < 0)
1860 return log_error_errno(r, "NOTIFY_SOCKET set to invalid value '%s': %m", e);
1861 sa_len = r;
e22aa3d3
LP		 1862
1863 s->notify_fd = socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0);
1864 if (s->notify_fd < 0)
1865 return log_error_errno(errno, "Failed to create notify socket: %m");
1866
1867 (void) fd_inc_sndbuf(s->notify_fd, NOTIFY_SNDBUF_SIZE);
1868
f36a9d59 1869 r = connect(s->notify_fd, &sa.sa, sa_len);
e22aa3d3
LP		 1870 if (r < 0)
1871 return log_error_errno(errno, "Failed to connect to notify socket: %m");
1872
1873 r = sd_event_add_io(s->event, &s->notify_event_source, s->notify_fd, EPOLLOUT, dispatch_notify_event, s);
1874 if (r < 0)
1875 return log_error_errno(r, "Failed to watch notification socket: %m");
1876
119e9655
LP		 1877 if (sd_watchdog_enabled(false, &s->watchdog_usec) > 0) {
1878 s->send_watchdog = true;
1879
39cf0351 1880 r = sd_event_add_time_relative(s->event, &s->watchdog_event_source, CLOCK_MONOTONIC, s->watchdog_usec/2, s->watchdog_usec/4, dispatch_watchdog, s);
119e9655
LP		 1881 if (r < 0)
1882 return log_error_errno(r, "Failed to add watchdog time event: %m");
1883 }
1884
337fabf7 1885 /* This should fire pretty soon, which we'll use to send the READY=1 event. */
e22aa3d3
LP		 1886
1887 return 0;
1888}
1889
4f413af2
LP		 1890static int synchronize_second_half(sd_event_source *event_source, void *userdata) {
1891 Varlink *link = userdata;
1892 Server *s;
1893 int r;
1894
1895 assert(link);
1896 assert_se(s = varlink_get_userdata(link));
1897
1898 /* This is the "second half" of the Synchronize() varlink method. This function is called as deferred
1899 * event source at a low priority to ensure the synchronization completes after all queued log
1900 * messages are processed. */
1901 server_full_sync(s);
1902
1903 /* Let's get rid of the event source now, by marking it as non-floating again. It then has no ref
1904 * anymore and is immediately destroyed after we return from this function, i.e. from this event
1905 * source handler at the end. */
1906 r = sd_event_source_set_floating(event_source, false);
1907 if (r < 0)
1908 return log_error_errno(r, "Failed to mark event source as non-floating: %m");
1909
1910 return varlink_reply(link, NULL);
1911}
1912
1913static void synchronize_destroy(void *userdata) {
1914 varlink_unref(userdata);
1915}
1916
1ec23479 1917static int vl_method_synchronize(Varlink *link, JsonVariant *parameters, VarlinkMethodFlags flags, void *userdata) {
4f413af2 1918 _cleanup_(sd_event_source_unrefp) sd_event_source *event_source = NULL;
1ec23479 1919 Server *s = userdata;
4f413af2 1920 int r;
1ec23479
LP		 1921
1922 assert(link);
1923 assert(s);
1924
1925 if (json_variant_elements(parameters) > 0)
1926 return varlink_error_invalid_parameter(link, parameters);
1927
1928 log_info("Received client request to rotate journal.");
1ec23479 1929
4f413af2
LP		 1930 /* We don't do the main work now, but instead enqueue a deferred event loop job which will do
1931 * it. That job is scheduled at low priority, so that we return from this method call only after all
1932 * queued but not processed log messages are written to disk, so that this method call returning can
1933 * be used as nice synchronization point. */
1934 r = sd_event_add_defer(s->event, &event_source, synchronize_second_half, link);
1935 if (r < 0)
1936 return log_error_errno(r, "Failed to allocate defer event source: %m");
1937
1938 r = sd_event_source_set_destroy_callback(event_source, synchronize_destroy);
1939 if (r < 0)
1940 return log_error_errno(r, "Failed to set event source destroy callback: %m");
1941
162392b7 1942 varlink_ref(link); /* The varlink object is now left to the destroy callback to unref */
4f413af2
LP		 1943
1944 r = sd_event_source_set_priority(event_source, SD_EVENT_PRIORITY_NORMAL+15);
1945 if (r < 0)
1946 return log_error_errno(r, "Failed to set defer event source priority: %m");
1947
1948 /* Give up ownership of this event source. It will now be destroyed along with event loop itself,
1949 * unless it destroys itself earlier. */
1950 r = sd_event_source_set_floating(event_source, true);
1951 if (r < 0)
1952 return log_error_errno(r, "Failed to mark event source as floating: %m");
1953
1954 (void) sd_event_source_set_description(event_source, "deferred-sync");
1955
1956 return 0;
1ec23479
LP		 1957}
1958
1959static int vl_method_rotate(Varlink *link, JsonVariant *parameters, VarlinkMethodFlags flags, void *userdata) {
1960 Server *s = userdata;
1961
1962 assert(link);
1963 assert(s);
1964
1965 if (json_variant_elements(parameters) > 0)
1966 return varlink_error_invalid_parameter(link, parameters);
1967
1968 log_info("Received client request to rotate journal.");
1969 server_full_rotate(s);
1970
1971 return varlink_reply(link, NULL);
1972}
1973
1974static int vl_method_flush_to_var(Varlink *link, JsonVariant *parameters, VarlinkMethodFlags flags, void *userdata) {
1975 Server *s = userdata;
1976
1977 assert(link);
1978 assert(s);
1979
1980 if (json_variant_elements(parameters) > 0)
1981 return varlink_error_invalid_parameter(link, parameters);
b1852c48
LP		 1982 if (s->namespace)
1983 return varlink_error(link, "io.systemd.Journal.NotSupportedByNamespaces", NULL);
1ec23479
LP		 1984
1985 log_info("Received client request to flush runtime journal.");
1986 server_full_flush(s);
1987
1988 return varlink_reply(link, NULL);
1989}
1990
b4e26d1d
LP		 1991static int vl_method_relinquish_var(Varlink *link, JsonVariant *parameters, VarlinkMethodFlags flags, void *userdata) {
1992 Server *s = userdata;
1993
1994 assert(link);
1995 assert(s);
1996
1997 if (json_variant_elements(parameters) > 0)
1998 return varlink_error_invalid_parameter(link, parameters);
b1852c48
LP		 1999 if (s->namespace)
2000 return varlink_error(link, "io.systemd.Journal.NotSupportedByNamespaces", NULL);
b4e26d1d 2001
b1852c48 2002 log_info("Received client request to relinquish %s access.", s->system_storage.path);
b4e26d1d
LP		 2003 server_relinquish_var(s);
2004
2005 return varlink_reply(link, NULL);
2006}
2007
65c398c0
LP		 2008static int vl_connect(VarlinkServer *server, Varlink *link, void *userdata) {
2009 Server *s = userdata;
2010
2011 assert(server);
2012 assert(link);
2013 assert(s);
2014
2015 (void) server_start_or_stop_idle_timer(s); /* maybe we are no longer idle */
2016
2017 return 0;
2018}
2019
2020static void vl_disconnect(VarlinkServer *server, Varlink *link, void *userdata) {
2021 Server *s = userdata;
2022
2023 assert(server);
2024 assert(link);
2025 assert(s);
2026
2027 (void) server_start_or_stop_idle_timer(s); /* maybe we are idle now */
2028}
2029
dc5437c7 2030static int server_open_varlink(Server *s, const char *socket, int fd) {
1ec23479
LP		 2031 int r;
2032
2033 assert(s);
2034
2035 r = varlink_server_new(&s->varlink_server, VARLINK_SERVER_ROOT_ONLY);
2036 if (r < 0)
2037 return r;
2038
2039 varlink_server_set_userdata(s->varlink_server, s);
2040
2041 r = varlink_server_bind_method_many(
2042 s->varlink_server,
b4e26d1d
LP		 2043 "io.systemd.Journal.Synchronize", vl_method_synchronize,
2044 "io.systemd.Journal.Rotate", vl_method_rotate,
2045 "io.systemd.Journal.FlushToVar", vl_method_flush_to_var,
2046 "io.systemd.Journal.RelinquishVar", vl_method_relinquish_var);
1ec23479
LP		 2047 if (r < 0)
2048 return r;
2049
65c398c0
LP		 2050 r = varlink_server_bind_connect(s->varlink_server, vl_connect);
2051 if (r < 0)
2052 return r;
2053
2054 r = varlink_server_bind_disconnect(s->varlink_server, vl_disconnect);
2055 if (r < 0)
2056 return r;
2057
dc5437c7
LP		 2058 if (fd < 0)
2059 r = varlink_server_listen_address(s->varlink_server, socket, 0600);
2060 else
2061 r = varlink_server_listen_fd(s->varlink_server, fd);
1ec23479
LP		 2062 if (r < 0)
2063 return r;
2064
2065 r = varlink_server_attach_event(s->varlink_server, s->event, SD_EVENT_PRIORITY_NORMAL);
2066 if (r < 0)
2067 return r;
2068
2069 return 0;
2070}
2071
65c398c0
LP		 2072static bool server_is_idle(Server *s) {
2073 assert(s);
2074
2075 /* The server for the main namespace is never idle */
2076 if (!s->namespace)
2077 return false;
2078
2079 /* If a retention maximum is set larger than the idle time we need to be running to enforce it, hence
2080 * turn off the idle logic. */
2081 if (s->max_retention_usec > IDLE_TIMEOUT_USEC)
2082 return false;
2083
2084 /* We aren't idle if we have a varlink client */
2085 if (varlink_server_current_connections(s->varlink_server) > 0)
2086 return false;
2087
2088 /* If we have stdout streams we aren't idle */
2089 if (s->n_stdout_streams > 0)
2090 return false;
2091
2092 return true;
2093}
2094
2095static int server_idle_handler(sd_event_source *source, uint64_t usec, void *userdata) {
2096 Server *s = userdata;
2097
2098 assert(source);
2099 assert(s);
2100
2101 log_debug("Server is idle, exiting.");
2102 sd_event_exit(s->event, 0);
2103 return 0;
2104}
2105
2106int server_start_or_stop_idle_timer(Server *s) {
2107 _cleanup_(sd_event_source_unrefp) sd_event_source *source = NULL;
65c398c0
LP		 2108 int r;
2109
2110 assert(s);
2111
2112 if (!server_is_idle(s)) {
2113 s->idle_event_source = sd_event_source_disable_unref(s->idle_event_source);
2114 return 0;
2115 }
2116
2117 if (s->idle_event_source)
2118 return 1;
2119
39cf0351 2120 r = sd_event_add_time_relative(s->event, &source, CLOCK_MONOTONIC, IDLE_TIMEOUT_USEC, 0, server_idle_handler, s);
65c398c0
LP		 2121 if (r < 0)
2122 return log_error_errno(r, "Failed to allocate idle timer: %m");
2123
2124 r = sd_event_source_set_priority(source, SD_EVENT_PRIORITY_IDLE);
2125 if (r < 0)
2126 return log_error_errno(r, "Failed to set idle timer priority: %m");
2127
2128 (void) sd_event_source_set_description(source, "idle-timer");
2129
2130 s->idle_event_source = TAKE_PTR(source);
2131 return 1;
2132}
2133
2134int server_refresh_idle_timer(Server *s) {
65c398c0
LP		 2135 int r;
2136
2137 assert(s);
2138
2139 if (!s->idle_event_source)
2140 return 0;
2141
39cf0351 2142 r = sd_event_source_set_time_relative(s->idle_event_source, IDLE_TIMEOUT_USEC);
65c398c0
LP		 2143 if (r < 0)
2144 return log_error_errno(r, "Failed to refresh idle timer: %m");
2145
2146 return 1;
2147}
2148
b1852c48
LP		 2149static int set_namespace(Server *s, const char *namespace) {
2150 assert(s);
2151
2152 if (!namespace)
2153 return 0;
2154
2155 if (!log_namespace_name_valid(namespace))
2156 return log_error_errno(SYNTHETIC_ERRNO(EINVAL), "Specified namespace name not valid, refusing: %s", namespace);
2157
2158 s->namespace = strdup(namespace);
2159 if (!s->namespace)
2160 return log_oom();
2161
2162 s->namespace_field = strjoin("_NAMESPACE=", namespace);
2163 if (!s->namespace_field)
2164 return log_oom();
2165
2166 return 1;
2167}
2168
2169int server_init(Server *s, const char *namespace) {
dc5437c7 2170 const char *native_socket, *syslog_socket, *stdout_socket, *varlink_socket, *e;
13790add 2171 _cleanup_fdset_free_ FDSet *fds = NULL;
dc5437c7 2172 int n, r, fd, varlink_fd = -1;
7d18d348 2173 bool no_sockets;
d025f1e4
ZJS		 2174
2175 assert(s);
2176
e4d9c985
LP		 2177 *s = (Server) {
2178 .syslog_fd = -1,
2179 .native_fd = -1,
2180 .stdout_fd = -1,
2181 .dev_kmsg_fd = -1,
2182 .audit_fd = -1,
2183 .hostname_fd = -1,
2184 .notify_fd = -1,
d025f1e4 2185
e4d9c985
LP		 2186 .compress.enabled = true,
2187 .compress.threshold_bytes = (uint64_t) -1,
2188 .seal = true,
119e9655 2189
511e03a3
LP		 2190 .set_audit = true,
2191
e4d9c985
LP		 2192 .watchdog_usec = USEC_INFINITY,
2193
2194 .sync_interval_usec = DEFAULT_SYNC_INTERVAL_USEC,
2195 .sync_scheduled = false,
26687bf8 2196
5ac1530e
ZJS		 2197 .ratelimit_interval = DEFAULT_RATE_LIMIT_INTERVAL,
2198 .ratelimit_burst = DEFAULT_RATE_LIMIT_BURST,
d025f1e4 2199
e4d9c985 2200 .forward_to_wall = true,
d025f1e4 2201
e4d9c985 2202 .max_file_usec = DEFAULT_MAX_FILE_USEC,
e150e820 2203
e4d9c985
LP		 2204 .max_level_store = LOG_DEBUG,
2205 .max_level_syslog = LOG_DEBUG,
2206 .max_level_kmsg = LOG_NOTICE,
2207 .max_level_console = LOG_INFO,
2208 .max_level_wall = LOG_EMERG,
d025f1e4 2209
e4d9c985
LP		 2210 .line_max = DEFAULT_LINE_MAX,
2211
2212 .runtime_storage.name = "Runtime Journal",
2213 .system_storage.name = "System Journal",
2214 };
ec20fe5f 2215
b1852c48
LP		 2216 r = set_namespace(s, namespace);
2217 if (r < 0)
2218 return r;
2219
2220 /* By default, only read from /dev/kmsg if are the main namespace */
2221 s->read_kmsg = !s->namespace;
2222 s->storage = s->namespace ? STORAGE_PERSISTENT : STORAGE_AUTO;
2223
266a4700
FB		 2224 journal_reset_metrics(&s->system_storage.metrics);
2225 journal_reset_metrics(&s->runtime_storage.metrics);
d025f1e4
ZJS		 2226
2227 server_parse_config_file(s);
1d84ad94 2228
b1852c48
LP		 2229 if (!s->namespace) {
2230 /* Parse kernel command line, but only if we are not a namespace instance */
2231 r = proc_cmdline_parse(parse_proc_cmdline_item, s, PROC_CMDLINE_STRIP_RD_PREFIX);
2232 if (r < 0)
2233 log_warning_errno(r, "Failed to parse kernel command line, ignoring: %m");
2234 }
8580d1f7 2235
d83f7e4c 2236 if (!!s->ratelimit_interval != !!s->ratelimit_burst) { /* One set to 0 and the other not? */
b1389b0d 2237 log_debug("Setting both rate limit interval and burst from "USEC_FMT",%u to 0,0",
5ac1530e
ZJS		 2238 s->ratelimit_interval, s->ratelimit_burst);
2239 s->ratelimit_interval = s->ratelimit_burst = 0;
d288f79f 2240 }
d025f1e4 2241
b1852c48
LP		 2242 e = getenv("RUNTIME_DIRECTORY");
2243 if (e)
2244 s->runtime_directory = strdup(e);
2245 else if (s->namespace)
2246 s->runtime_directory = strjoin("/run/systemd/journal.", s->namespace);
2247 else
2248 s->runtime_directory = strdup("/run/systemd/journal");
2249 if (!s->runtime_directory)
2250 return log_oom();
2251
2252 (void) mkdir_p(s->runtime_directory, 0755);
d025f1e4 2253
43cf8388 2254 s->user_journals = ordered_hashmap_new(NULL);
d025f1e4
ZJS		 2255 if (!s->user_journals)
2256 return log_oom();
2257
2258 s->mmap = mmap_cache_new();
2259 if (!s->mmap)
2260 return log_oom();
2261
b58c888f
VC		 2262 s->deferred_closes = set_new(NULL);
2263 if (!s->deferred_closes)
2264 return log_oom();
2265
f9a810be 2266 r = sd_event_default(&s->event);
23bbb0de
MS		 2267 if (r < 0)
2268 return log_error_errno(r, "Failed to create event loop: %m");
d025f1e4
ZJS		 2269
2270 n = sd_listen_fds(true);
23bbb0de
MS		 2271 if (n < 0)
2272 return log_error_errno(n, "Failed to read listening file descriptors from environment: %m");
d025f1e4 2273
b1852c48
LP		 2274 native_socket = strjoina(s->runtime_directory, "/socket");
2275 stdout_socket = strjoina(s->runtime_directory, "/stdout");
2276 syslog_socket = strjoina(s->runtime_directory, "/dev-log");
dc5437c7 2277 varlink_socket = strjoina(s->runtime_directory, "/io.systemd.journal");
b1852c48 2278
d025f1e4
ZJS		 2279 for (fd = SD_LISTEN_FDS_START; fd < SD_LISTEN_FDS_START + n; fd++) {
2280
b1852c48 2281 if (sd_is_socket_unix(fd, SOCK_DGRAM, -1, native_socket, 0) > 0) {
d025f1e4 2282
baaa35ad
ZJS		 2283 if (s->native_fd >= 0)
2284 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
2285 "Too many native sockets passed.");
d025f1e4
ZJS		 2286
2287 s->native_fd = fd;
2288
b1852c48 2289 } else if (sd_is_socket_unix(fd, SOCK_STREAM, 1, stdout_socket, 0) > 0) {
d025f1e4 2290
baaa35ad
ZJS		 2291 if (s->stdout_fd >= 0)
2292 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
2293 "Too many stdout sockets passed.");
d025f1e4
ZJS		 2294
2295 s->stdout_fd = fd;
2296
b1852c48 2297 } else if (sd_is_socket_unix(fd, SOCK_DGRAM, -1, syslog_socket, 0) > 0) {
d025f1e4 2298
baaa35ad
ZJS		 2299 if (s->syslog_fd >= 0)
2300 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
2301 "Too many /dev/log sockets passed.");
d025f1e4
ZJS		 2302
2303 s->syslog_fd = fd;
2304
dc5437c7
LP		 2305 } else if (sd_is_socket_unix(fd, SOCK_STREAM, 1, varlink_socket, 0) > 0) {
2306
2307 if (varlink_fd >= 0)
2308 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
2309 "Too many varlink sockets passed.");
2310
2311 varlink_fd = fd;
875c2e22
LP		 2312 } else if (sd_is_socket(fd, AF_NETLINK, SOCK_RAW, -1) > 0) {
2313
baaa35ad
ZJS		 2314 if (s->audit_fd >= 0)
2315 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
2316 "Too many audit sockets passed.");
875c2e22
LP		 2317
2318 s->audit_fd = fd;
2319
4ec3cd73 2320 } else {
4ec3cd73 2321
13790add
LP		 2322 if (!fds) {
2323 fds = fdset_new();
2324 if (!fds)
2325 return log_oom();
2326 }
4ec3cd73 2327
13790add
LP		 2328 r = fdset_put(fds, fd);
2329 if (r < 0)
2330 return log_oom();
4ec3cd73 2331 }
d025f1e4
ZJS		 2332 }
2333
15d91bff
ZJS		 2334 /* Try to restore streams, but don't bother if this fails */
2335 (void) server_restore_streams(s, fds);
d025f1e4 2336
13790add
LP		 2337 if (fdset_size(fds) > 0) {
2338 log_warning("%u unknown file descriptors passed, closing.", fdset_size(fds));
2339 fds = fdset_free(fds);
2340 }
2341
dc5437c7 2342 no_sockets = s->native_fd < 0 && s->stdout_fd < 0 && s->syslog_fd < 0 && s->audit_fd < 0 && varlink_fd < 0;
7d18d348
ZJS		 2343
2344 /* always open stdout, syslog, native, and kmsg sockets */
37b7affe
ZJS		 2345
2346 /* systemd-journald.socket: /run/systemd/journal/stdout */
b1852c48 2347 r = server_open_stdout_socket(s, stdout_socket);
15d91bff
ZJS		 2348 if (r < 0)
2349 return r;
2350
37b7affe 2351 /* systemd-journald-dev-log.socket: /run/systemd/journal/dev-log */
b1852c48 2352 r = server_open_syslog_socket(s, syslog_socket);
d025f1e4
ZJS		 2353 if (r < 0)
2354 return r;
2355
37b7affe 2356 /* systemd-journald.socket: /run/systemd/journal/socket */
b1852c48 2357 r = server_open_native_socket(s, native_socket);
d025f1e4
ZJS		 2358 if (r < 0)
2359 return r;
2360
b2392ff3 2361 /* /dev/kmsg */
d025f1e4
ZJS		 2362 r = server_open_dev_kmsg(s);
2363 if (r < 0)
2364 return r;
2365
7d18d348
ZJS		 2366 /* Unless we got *some* sockets and not audit, open audit socket */
2367 if (s->audit_fd >= 0 || no_sockets) {
2368 r = server_open_audit(s);
2369 if (r < 0)
2370 return r;
2371 }
875c2e22 2372
dc5437c7 2373 r = server_open_varlink(s, varlink_socket, varlink_fd);
1ec23479
LP		 2374 if (r < 0)
2375 return r;
2376
d025f1e4
ZJS		 2377 r = server_open_kernel_seqnum(s);
2378 if (r < 0)
2379 return r;
2380
0c24bb23
LP		 2381 r = server_open_hostname(s);
2382 if (r < 0)
2383 return r;
2384
f9a810be 2385 r = setup_signals(s);
d025f1e4
ZJS		 2386 if (r < 0)
2387 return r;
2388
5ac1530e
ZJS		 2389 s->ratelimit = journal_ratelimit_new();
2390 if (!s->ratelimit)
659a77be 2391 return log_oom();
d025f1e4 2392
e9174f29
LP		 2393 r = cg_get_root_path(&s->cgroup_root);
2394 if (r < 0)
659a77be 2395 return log_error_errno(r, "Failed to acquire cgroup root path: %m");
e9174f29 2396
0c24bb23
LP		 2397 server_cache_hostname(s);
2398 server_cache_boot_id(s);
2399 server_cache_machine_id(s);
2400
b1852c48
LP		 2401 if (s->namespace)
2402 s->runtime_storage.path = strjoin("/run/log/journal/", SERVER_MACHINE_ID(s), ".", s->namespace);
2403 else
2404 s->runtime_storage.path = strjoin("/run/log/journal/", SERVER_MACHINE_ID(s));
2405 if (!s->runtime_storage.path)
2406 return log_oom();
2407
2408 e = getenv("LOGS_DIRECTORY");
2409 if (e)
2410 s->system_storage.path = strdup(e);
2411 else if (s->namespace)
2412 s->system_storage.path = strjoin("/var/log/journal/", SERVER_MACHINE_ID(s), ".", s->namespace);
2413 else
2414 s->system_storage.path = strjoin("/var/log/journal/", SERVER_MACHINE_ID(s));
2415 if (!s->system_storage.path)
659a77be 2416 return log_oom();
266a4700 2417
e22aa3d3
LP		 2418 (void) server_connect_notify(s);
2419
22e3a02b
LP		 2420 (void) client_context_acquire_default(s);
2421
65c398c0
LP		 2422 r = system_journal_open(s, false, false);
2423 if (r < 0)
2424 return r;
2425
2426 server_start_or_stop_idle_timer(s);
2427 return 0;
d025f1e4
ZJS		 2428}
2429
2430void server_maybe_append_tags(Server *s) {
349cc4a5 2431#if HAVE_GCRYPT
d025f1e4 2432 JournalFile *f;
d025f1e4
ZJS		 2433 usec_t n;
2434
2435 n = now(CLOCK_REALTIME);
2436
2437 if (s->system_journal)
2438 journal_file_maybe_append_tag(s->system_journal, n);
2439
90e74a66 2440 ORDERED_HASHMAP_FOREACH(f, s->user_journals)
d025f1e4
ZJS		 2441 journal_file_maybe_append_tag(f, n);
2442#endif
2443}
2444
2445void server_done(Server *s) {
d025f1e4
ZJS		 2446 assert(s);
2447
b1852c48
LP		 2448 free(s->namespace);
2449 free(s->namespace_field);
2450
f9168190 2451 set_free_with_destructor(s->deferred_closes, journal_file_close);
b58c888f 2452
d025f1e4
ZJS		 2453 while (s->stdout_streams)
2454 stdout_stream_free(s->stdout_streams);
2455
22e3a02b
LP		 2456 client_context_flush_all(s);
2457
c377a6f3
YW		 2458 (void) journal_file_close(s->system_journal);
2459 (void) journal_file_close(s->runtime_journal);
d025f1e4 2460
f9168190 2461 ordered_hashmap_free_with_destructor(s->user_journals, journal_file_close);
d025f1e4 2462
1ec23479
LP		 2463 varlink_server_unref(s->varlink_server);
2464
f9a810be
LP		 2465 sd_event_source_unref(s->syslog_event_source);
2466 sd_event_source_unref(s->native_event_source);
2467 sd_event_source_unref(s->stdout_event_source);
2468 sd_event_source_unref(s->dev_kmsg_event_source);
875c2e22 2469 sd_event_source_unref(s->audit_event_source);
f9a810be
LP		 2470 sd_event_source_unref(s->sync_event_source);
2471 sd_event_source_unref(s->sigusr1_event_source);
2472 sd_event_source_unref(s->sigusr2_event_source);
2473 sd_event_source_unref(s->sigterm_event_source);
2474 sd_event_source_unref(s->sigint_event_source);
94b65516 2475 sd_event_source_unref(s->sigrtmin1_event_source);
0c24bb23 2476 sd_event_source_unref(s->hostname_event_source);
e22aa3d3 2477 sd_event_source_unref(s->notify_event_source);
119e9655 2478 sd_event_source_unref(s->watchdog_event_source);
65c398c0 2479 sd_event_source_unref(s->idle_event_source);
f9a810be 2480 sd_event_unref(s->event);
d025f1e4 2481
03e334a1
LP		 2482 safe_close(s->syslog_fd);
2483 safe_close(s->native_fd);
2484 safe_close(s->stdout_fd);
2485 safe_close(s->dev_kmsg_fd);
875c2e22 2486 safe_close(s->audit_fd);
03e334a1 2487 safe_close(s->hostname_fd);
e22aa3d3 2488 safe_close(s->notify_fd);
0c24bb23 2489
5ac1530e
ZJS		 2490 if (s->ratelimit)
2491 journal_ratelimit_free(s->ratelimit);
d025f1e4
ZJS		 2492
2493 if (s->kernel_seqnum)
2494 munmap(s->kernel_seqnum, sizeof(uint64_t));
2495
2496 free(s->buffer);
2497 free(s->tty_path);
e9174f29 2498 free(s->cgroup_root);
99d0966e 2499 free(s->hostname_field);
c6e9e16f
ZJS		 2500 free(s->runtime_storage.path);
2501 free(s->system_storage.path);
b1852c48 2502 free(s->runtime_directory);
d025f1e4 2503
e3d78cb1 2504 mmap_cache_unref(s->mmap);
d025f1e4 2505}
8580d1f7
LP		 2506
2507static const char* const storage_table[_STORAGE_MAX] = {
2508 [STORAGE_AUTO] = "auto",
2509 [STORAGE_VOLATILE] = "volatile",
2510 [STORAGE_PERSISTENT] = "persistent",
2511 [STORAGE_NONE] = "none"
2512};
2513
2514DEFINE_STRING_TABLE_LOOKUP(storage, Storage);
2515DEFINE_CONFIG_PARSE_ENUM(config_parse_storage, storage, Storage, "Failed to parse storage setting");
2516
2517static const char* const split_mode_table[_SPLIT_MAX] = {
2518 [SPLIT_LOGIN] = "login",
2519 [SPLIT_UID] = "uid",
2520 [SPLIT_NONE] = "none",
2521};
2522
2523DEFINE_STRING_TABLE_LOOKUP(split_mode, SplitMode);
2524DEFINE_CONFIG_PARSE_ENUM(config_parse_split_mode, split_mode, SplitMode, "Failed to parse split mode setting");
ec20fe5f
LP		 2525
2526int config_parse_line_max(
2527 const char* unit,
2528 const char *filename,
2529 unsigned line,
2530 const char *section,
2531 unsigned section_line,
2532 const char *lvalue,
2533 int ltype,
2534 const char *rvalue,
2535 void *data,
2536 void *userdata) {
2537
2538 size_t *sz = data;
2539 int r;
2540
2541 assert(filename);
2542 assert(lvalue);
2543 assert(rvalue);
2544 assert(data);
2545
2546 if (isempty(rvalue))
2547 /* Empty assignment means default */
2548 *sz = DEFAULT_LINE_MAX;
2549 else {
2550 uint64_t v;
2551
2552 r = parse_size(rvalue, 1024, &v);
2553 if (r < 0) {
2554 log_syntax(unit, LOG_ERR, filename, line, r, "Failed to parse LineMax= value, ignoring: %s", rvalue);
2555 return 0;
2556 }
2557
2558 if (v < 79) {
2559 /* Why specify 79 here as minimum line length? Simply, because the most common traditional
2560 * terminal size is 80ch, and it might make sense to break one character before the natural
2561 * line break would occur on that. */
2562 log_syntax(unit, LOG_WARNING, filename, line, 0, "LineMax= too small, clamping to 79: %s", rvalue);
2563 *sz = 79;
2564 } else if (v > (uint64_t) (SSIZE_MAX-1)) {
2565 /* So, why specify SSIZE_MAX-1 here? Because that's one below the largest size value read()
2566 * can return, and we need one extra byte for the trailing NUL byte. Of course IRL such large
2567 * memory allocations will fail anyway, hence this limit is mostly theoretical anyway, as we'll
2568 * fail much earlier anyway. */
2569 log_syntax(unit, LOG_WARNING, filename, line, 0, "LineMax= too large, clamping to %" PRIu64 ": %s", (uint64_t) (SSIZE_MAX-1), rvalue);
2570 *sz = SSIZE_MAX-1;
2571 } else
2572 *sz = (size_t) v;
2573 }
2574
2575 return 0;
2576}
1b7cf0e5 2577
e3d36a8d
LP		 2578int config_parse_compress(
2579 const char* unit,
2580 const char *filename,
2581 unsigned line,
2582 const char *section,
2583 unsigned section_line,
2584 const char *lvalue,
2585 int ltype,
2586 const char *rvalue,
2587 void *data,
2588 void *userdata) {
2589
1b7cf0e5
AG		 2590 JournalCompressOptions* compress = data;
2591 int r;
2592
e3d36a8d
LP		 2593 if (isempty(rvalue)) {
2594 compress->enabled = true;
2595 compress->threshold_bytes = (uint64_t) -1;
2596 } else if (streq(rvalue, "1")) {
1b7cf0e5
AG		 2597 log_syntax(unit, LOG_WARNING, filename, line, 0,
2598 "Compress= ambiguously specified as 1, enabling compression with default threshold");
2599 compress->enabled = true;
2600 } else if (streq(rvalue, "0")) {
2601 log_syntax(unit, LOG_WARNING, filename, line, 0,
2602 "Compress= ambiguously specified as 0, disabling compression");
2603 compress->enabled = false;
e3d36a8d
LP		 2604 } else {
2605 r = parse_boolean(rvalue);
2606 if (r < 0) {
2607 r = parse_size(rvalue, 1024, &compress->threshold_bytes);
2608 if (r < 0)
2609 log_syntax(unit, LOG_ERR, filename, line, r,
2610 "Failed to parse Compress= value, ignoring: %s", rvalue);
2611 else
2612 compress->enabled = true;
2613 } else
2614 compress->enabled = r;
2615 }
1b7cf0e5
AG		 2616
2617 return 0;
2618}
Unnamed repository; edit this file 'description' to name the repository.