1 /* SPDX-License-Identifier: LGPL-2.1+ */
9 #include "sd-messages.h"
11 #include "all-units.h"
12 #include "alloc-util.h"
13 #include "bpf-firewall.h"
14 #include "bus-common-errors.h"
16 #include "cgroup-setup.h"
17 #include "cgroup-util.h"
18 #include "dbus-unit.h"
24 #include "fileio-label.h"
26 #include "format-util.h"
28 #include "id128-util.h"
31 #include "load-dropin.h"
32 #include "load-fragment.h"
35 #include "missing_audit.h"
37 #include "parse-util.h"
38 #include "path-util.h"
39 #include "process-util.h"
41 #include "serialize.h"
43 #include "signal-util.h"
44 #include "sparse-endian.h"
46 #include "specifier.h"
47 #include "stat-util.h"
48 #include "stdio-util.h"
49 #include "string-table.h"
50 #include "string-util.h"
52 #include "terminal-util.h"
53 #include "tmpfile-util.h"
54 #include "umask-util.h"
55 #include "unit-name.h"
57 #include "user-util.h"
60 /* Thresholds for logging at INFO level about resource consumption */
61 #define MENTIONWORTHY_CPU_NSEC (1 * NSEC_PER_SEC)
62 #define MENTIONWORTHY_IO_BYTES (1024 * 1024ULL)
63 #define MENTIONWORTHY_IP_BYTES (0ULL)
65 /* Thresholds for logging at INFO level about resource consumption */
66 #define NOTICEWORTHY_CPU_NSEC (10*60 * NSEC_PER_SEC) /* 10 minutes */
67 #define NOTICEWORTHY_IO_BYTES (10 * 1024 * 1024ULL) /* 10 MB */
68 #define NOTICEWORTHY_IP_BYTES (128 * 1024 * 1024ULL) /* 128 MB */
70 const UnitVTable
* const unit_vtable
[_UNIT_TYPE_MAX
] = {
71 [UNIT_SERVICE
] = &service_vtable
,
72 [UNIT_SOCKET
] = &socket_vtable
,
73 [UNIT_TARGET
] = &target_vtable
,
74 [UNIT_DEVICE
] = &device_vtable
,
75 [UNIT_MOUNT
] = &mount_vtable
,
76 [UNIT_AUTOMOUNT
] = &automount_vtable
,
77 [UNIT_SWAP
] = &swap_vtable
,
78 [UNIT_TIMER
] = &timer_vtable
,
79 [UNIT_PATH
] = &path_vtable
,
80 [UNIT_SLICE
] = &slice_vtable
,
81 [UNIT_SCOPE
] = &scope_vtable
,
84 static void maybe_warn_about_dependency(Unit
*u
, const char *other
, UnitDependency dependency
);
86 Unit
*unit_new(Manager
*m
, size_t size
) {
90 assert(size
>= sizeof(Unit
));
96 u
->names
= set_new(&string_hash_ops
);
101 u
->type
= _UNIT_TYPE_INVALID
;
102 u
->default_dependencies
= true;
103 u
->unit_file_state
= _UNIT_FILE_STATE_INVALID
;
104 u
->unit_file_preset
= -1;
105 u
->on_failure_job_mode
= JOB_REPLACE
;
106 u
->cgroup_control_inotify_wd
= -1;
107 u
->cgroup_memory_inotify_wd
= -1;
108 u
->job_timeout
= USEC_INFINITY
;
109 u
->job_running_timeout
= USEC_INFINITY
;
110 u
->ref_uid
= UID_INVALID
;
111 u
->ref_gid
= GID_INVALID
;
112 u
->cpu_usage_last
= NSEC_INFINITY
;
113 u
->cgroup_invalidated_mask
|= CGROUP_MASK_BPF_FIREWALL
;
114 u
->failure_action_exit_status
= u
->success_action_exit_status
= -1;
116 u
->ip_accounting_ingress_map_fd
= -1;
117 u
->ip_accounting_egress_map_fd
= -1;
118 u
->ipv4_allow_map_fd
= -1;
119 u
->ipv6_allow_map_fd
= -1;
120 u
->ipv4_deny_map_fd
= -1;
121 u
->ipv6_deny_map_fd
= -1;
123 u
->last_section_private
= -1;
125 u
->start_ratelimit
= (RateLimit
) { m
->default_start_limit_interval
, m
->default_start_limit_burst
};
126 u
->auto_stop_ratelimit
= (RateLimit
) { 10 * USEC_PER_SEC
, 16 };
128 for (CGroupIOAccountingMetric i
= 0; i
< _CGROUP_IO_ACCOUNTING_METRIC_MAX
; i
++)
129 u
->io_accounting_last
[i
] = UINT64_MAX
;
134 int unit_new_for_name(Manager
*m
, size_t size
, const char *name
, Unit
**ret
) {
135 _cleanup_(unit_freep
) Unit
*u
= NULL
;
138 u
= unit_new(m
, size
);
142 r
= unit_add_name(u
, name
);
151 bool unit_has_name(const Unit
*u
, const char *name
) {
155 return set_contains(u
->names
, (char*) name
);
158 static void unit_init(Unit
*u
) {
165 assert(u
->type
>= 0);
167 cc
= unit_get_cgroup_context(u
);
169 cgroup_context_init(cc
);
171 /* Copy in the manager defaults into the cgroup
172 * context, _before_ the rest of the settings have
173 * been initialized */
175 cc
->cpu_accounting
= u
->manager
->default_cpu_accounting
;
176 cc
->io_accounting
= u
->manager
->default_io_accounting
;
177 cc
->blockio_accounting
= u
->manager
->default_blockio_accounting
;
178 cc
->memory_accounting
= u
->manager
->default_memory_accounting
;
179 cc
->tasks_accounting
= u
->manager
->default_tasks_accounting
;
180 cc
->ip_accounting
= u
->manager
->default_ip_accounting
;
182 if (u
->type
!= UNIT_SLICE
)
183 cc
->tasks_max
= u
->manager
->default_tasks_max
;
186 ec
= unit_get_exec_context(u
);
188 exec_context_init(ec
);
190 if (MANAGER_IS_SYSTEM(u
->manager
))
191 ec
->keyring_mode
= EXEC_KEYRING_SHARED
;
193 ec
->keyring_mode
= EXEC_KEYRING_INHERIT
;
195 /* User manager might have its umask redefined by PAM or UMask=. In this
196 * case let the units it manages inherit this value by default. They can
197 * still tune this value through their own unit file */
198 (void) get_process_umask(getpid_cached(), &ec
->umask
);
202 kc
= unit_get_kill_context(u
);
204 kill_context_init(kc
);
206 if (UNIT_VTABLE(u
)->init
)
207 UNIT_VTABLE(u
)->init(u
);
210 int unit_add_name(Unit
*u
, const char *text
) {
211 _cleanup_free_
char *s
= NULL
, *i
= NULL
;
218 if (unit_name_is_valid(text
, UNIT_NAME_TEMPLATE
)) {
221 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
222 "instance is not set when adding name '%s': %m", text
);
224 r
= unit_name_replace_instance(text
, u
->instance
, &s
);
226 return log_unit_debug_errno(u
, r
,
227 "failed to build instance name from '%s': %m", text
);
234 if (set_contains(u
->names
, s
))
236 if (hashmap_contains(u
->manager
->units
, s
))
237 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EEXIST
),
238 "unit already exist when adding name '%s': %m", text
);
240 if (!unit_name_is_valid(s
, UNIT_NAME_PLAIN
|UNIT_NAME_INSTANCE
))
241 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
242 "name '%s' is invalid: %m", text
);
244 t
= unit_name_to_type(s
);
246 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
247 "failed to to derive unit type from name '%s': %m", text
);
249 if (u
->type
!= _UNIT_TYPE_INVALID
&& t
!= u
->type
)
250 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
251 "unit type is illegal: u->type(%d) and t(%d) for name '%s': %m",
254 r
= unit_name_to_instance(s
, &i
);
256 return log_unit_debug_errno(u
, r
, "failed to extract instance from name '%s': %m", text
);
258 if (i
&& !unit_type_may_template(t
))
259 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
), "templates are not allowed for name '%s': %m", text
);
261 /* Ensure that this unit is either instanced or not instanced,
262 * but not both. Note that we do allow names with different
263 * instance names however! */
264 if (u
->type
!= _UNIT_TYPE_INVALID
&& !u
->instance
!= !i
)
265 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
266 "instance is illegal: u->type(%d), u->instance(%s) and i(%s) for name '%s': %m",
267 u
->type
, u
->instance
, i
, text
);
269 if (!unit_type_may_alias(t
) && !set_isempty(u
->names
))
270 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EEXIST
), "symlinks are not allowed for name '%s': %m", text
);
272 if (hashmap_size(u
->manager
->units
) >= MANAGER_MAX_NAMES
)
273 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(E2BIG
), "too many units: %m");
275 r
= set_put(u
->names
, s
);
280 r
= hashmap_put(u
->manager
->units
, s
, u
);
282 (void) set_remove(u
->names
, s
);
283 return log_unit_debug_errno(u
, r
, "add unit to hashmap failed for name '%s': %m", text
);
286 if (u
->type
== _UNIT_TYPE_INVALID
) {
289 u
->instance
= TAKE_PTR(i
);
291 LIST_PREPEND(units_by_type
, u
->manager
->units_by_type
[t
], u
);
298 unit_add_to_dbus_queue(u
);
302 int unit_choose_id(Unit
*u
, const char *name
) {
303 _cleanup_free_
char *t
= NULL
;
310 if (unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
315 r
= unit_name_replace_instance(name
, u
->instance
, &t
);
322 /* Selects one of the names of this unit as the id */
323 s
= set_get(u
->names
, (char*) name
);
327 /* Determine the new instance from the new id */
328 r
= unit_name_to_instance(s
, &i
);
337 unit_add_to_dbus_queue(u
);
342 int unit_set_description(Unit
*u
, const char *description
) {
347 r
= free_and_strdup(&u
->description
, empty_to_null(description
));
351 unit_add_to_dbus_queue(u
);
356 bool unit_may_gc(Unit
*u
) {
357 UnitActiveState state
;
362 /* Checks whether the unit is ready to be unloaded for garbage collection.
363 * Returns true when the unit may be collected, and false if there's some
364 * reason to keep it loaded.
366 * References from other units are *not* checked here. Instead, this is done
367 * in unit_gc_sweep(), but using markers to properly collect dependency loops.
376 state
= unit_active_state(u
);
378 /* If the unit is inactive and failed and no job is queued for it, then release its runtime resources */
379 if (UNIT_IS_INACTIVE_OR_FAILED(state
) &&
380 UNIT_VTABLE(u
)->release_resources
)
381 UNIT_VTABLE(u
)->release_resources(u
);
386 if (sd_bus_track_count(u
->bus_track
) > 0)
389 /* But we keep the unit object around for longer when it is referenced or configured to not be gc'ed */
390 switch (u
->collect_mode
) {
392 case COLLECT_INACTIVE
:
393 if (state
!= UNIT_INACTIVE
)
398 case COLLECT_INACTIVE_OR_FAILED
:
399 if (!IN_SET(state
, UNIT_INACTIVE
, UNIT_FAILED
))
405 assert_not_reached("Unknown garbage collection mode");
408 if (u
->cgroup_path
) {
409 /* If the unit has a cgroup, then check whether there's anything in it. If so, we should stay
410 * around. Units with active processes should never be collected. */
412 r
= cg_is_empty_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
);
414 log_unit_debug_errno(u
, r
, "Failed to determine whether cgroup %s is empty: %m", u
->cgroup_path
);
419 if (UNIT_VTABLE(u
)->may_gc
&& !UNIT_VTABLE(u
)->may_gc(u
))
425 void unit_add_to_load_queue(Unit
*u
) {
427 assert(u
->type
!= _UNIT_TYPE_INVALID
);
429 if (u
->load_state
!= UNIT_STUB
|| u
->in_load_queue
)
432 LIST_PREPEND(load_queue
, u
->manager
->load_queue
, u
);
433 u
->in_load_queue
= true;
436 void unit_add_to_cleanup_queue(Unit
*u
) {
439 if (u
->in_cleanup_queue
)
442 LIST_PREPEND(cleanup_queue
, u
->manager
->cleanup_queue
, u
);
443 u
->in_cleanup_queue
= true;
446 void unit_add_to_gc_queue(Unit
*u
) {
449 if (u
->in_gc_queue
|| u
->in_cleanup_queue
)
455 LIST_PREPEND(gc_queue
, u
->manager
->gc_unit_queue
, u
);
456 u
->in_gc_queue
= true;
459 void unit_add_to_dbus_queue(Unit
*u
) {
461 assert(u
->type
!= _UNIT_TYPE_INVALID
);
463 if (u
->load_state
== UNIT_STUB
|| u
->in_dbus_queue
)
466 /* Shortcut things if nobody cares */
467 if (sd_bus_track_count(u
->manager
->subscribed
) <= 0 &&
468 sd_bus_track_count(u
->bus_track
) <= 0 &&
469 set_isempty(u
->manager
->private_buses
)) {
470 u
->sent_dbus_new_signal
= true;
474 LIST_PREPEND(dbus_queue
, u
->manager
->dbus_unit_queue
, u
);
475 u
->in_dbus_queue
= true;
478 void unit_submit_to_stop_when_unneeded_queue(Unit
*u
) {
481 if (u
->in_stop_when_unneeded_queue
)
484 if (!u
->stop_when_unneeded
)
487 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(u
)))
490 LIST_PREPEND(stop_when_unneeded_queue
, u
->manager
->stop_when_unneeded_queue
, u
);
491 u
->in_stop_when_unneeded_queue
= true;
494 static void bidi_set_free(Unit
*u
, Hashmap
*h
) {
501 /* Frees the hashmap and makes sure we are dropped from the inverse pointers */
503 HASHMAP_FOREACH_KEY(v
, other
, h
, i
) {
506 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
507 hashmap_remove(other
->dependencies
[d
], u
);
509 unit_add_to_gc_queue(other
);
515 static void unit_remove_transient(Unit
*u
) {
523 if (u
->fragment_path
)
524 (void) unlink(u
->fragment_path
);
526 STRV_FOREACH(i
, u
->dropin_paths
) {
527 _cleanup_free_
char *p
= NULL
, *pp
= NULL
;
529 p
= dirname_malloc(*i
); /* Get the drop-in directory from the drop-in file */
533 pp
= dirname_malloc(p
); /* Get the config directory from the drop-in directory */
537 /* Only drop transient drop-ins */
538 if (!path_equal(u
->manager
->lookup_paths
.transient
, pp
))
546 static void unit_free_requires_mounts_for(Unit
*u
) {
550 _cleanup_free_
char *path
;
552 path
= hashmap_steal_first_key(u
->requires_mounts_for
);
556 char s
[strlen(path
) + 1];
558 PATH_FOREACH_PREFIX_MORE(s
, path
) {
562 x
= hashmap_get2(u
->manager
->units_requiring_mounts_for
, s
, (void**) &y
);
566 (void) set_remove(x
, u
);
568 if (set_isempty(x
)) {
569 (void) hashmap_remove(u
->manager
->units_requiring_mounts_for
, y
);
577 u
->requires_mounts_for
= hashmap_free(u
->requires_mounts_for
);
580 static void unit_done(Unit
*u
) {
589 if (UNIT_VTABLE(u
)->done
)
590 UNIT_VTABLE(u
)->done(u
);
592 ec
= unit_get_exec_context(u
);
594 exec_context_done(ec
);
596 cc
= unit_get_cgroup_context(u
);
598 cgroup_context_done(cc
);
601 void unit_free(Unit
*u
) {
609 if (UNIT_ISSET(u
->slice
)) {
610 /* A unit is being dropped from the tree, make sure our parent slice recalculates the member mask */
611 unit_invalidate_cgroup_members_masks(UNIT_DEREF(u
->slice
));
613 /* And make sure the parent is realized again, updating cgroup memberships */
614 unit_add_to_cgroup_realize_queue(UNIT_DEREF(u
->slice
));
617 u
->transient_file
= safe_fclose(u
->transient_file
);
619 if (!MANAGER_IS_RELOADING(u
->manager
))
620 unit_remove_transient(u
);
622 bus_unit_send_removed_signal(u
);
626 unit_dequeue_rewatch_pids(u
);
628 sd_bus_slot_unref(u
->match_bus_slot
);
629 sd_bus_track_unref(u
->bus_track
);
630 u
->deserialized_refs
= strv_free(u
->deserialized_refs
);
632 unit_free_requires_mounts_for(u
);
634 SET_FOREACH(t
, u
->names
, i
)
635 hashmap_remove_value(u
->manager
->units
, t
, u
);
637 if (!sd_id128_is_null(u
->invocation_id
))
638 hashmap_remove_value(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
652 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
653 bidi_set_free(u
, u
->dependencies
[d
]);
656 manager_unref_console(u
->manager
);
658 unit_release_cgroup(u
);
660 if (!MANAGER_IS_RELOADING(u
->manager
))
661 unit_unlink_state_files(u
);
663 unit_unref_uid_gid(u
, false);
665 (void) manager_update_failed_units(u
->manager
, u
, false);
666 set_remove(u
->manager
->startup_units
, u
);
668 unit_unwatch_all_pids(u
);
670 unit_ref_unset(&u
->slice
);
671 while (u
->refs_by_target
)
672 unit_ref_unset(u
->refs_by_target
);
674 if (u
->type
!= _UNIT_TYPE_INVALID
)
675 LIST_REMOVE(units_by_type
, u
->manager
->units_by_type
[u
->type
], u
);
677 if (u
->in_load_queue
)
678 LIST_REMOVE(load_queue
, u
->manager
->load_queue
, u
);
680 if (u
->in_dbus_queue
)
681 LIST_REMOVE(dbus_queue
, u
->manager
->dbus_unit_queue
, u
);
684 LIST_REMOVE(gc_queue
, u
->manager
->gc_unit_queue
, u
);
686 if (u
->in_cgroup_realize_queue
)
687 LIST_REMOVE(cgroup_realize_queue
, u
->manager
->cgroup_realize_queue
, u
);
689 if (u
->in_cgroup_empty_queue
)
690 LIST_REMOVE(cgroup_empty_queue
, u
->manager
->cgroup_empty_queue
, u
);
692 if (u
->in_cleanup_queue
)
693 LIST_REMOVE(cleanup_queue
, u
->manager
->cleanup_queue
, u
);
695 if (u
->in_target_deps_queue
)
696 LIST_REMOVE(target_deps_queue
, u
->manager
->target_deps_queue
, u
);
698 if (u
->in_stop_when_unneeded_queue
)
699 LIST_REMOVE(stop_when_unneeded_queue
, u
->manager
->stop_when_unneeded_queue
, u
);
701 safe_close(u
->ip_accounting_ingress_map_fd
);
702 safe_close(u
->ip_accounting_egress_map_fd
);
704 safe_close(u
->ipv4_allow_map_fd
);
705 safe_close(u
->ipv6_allow_map_fd
);
706 safe_close(u
->ipv4_deny_map_fd
);
707 safe_close(u
->ipv6_deny_map_fd
);
709 bpf_program_unref(u
->ip_bpf_ingress
);
710 bpf_program_unref(u
->ip_bpf_ingress_installed
);
711 bpf_program_unref(u
->ip_bpf_egress
);
712 bpf_program_unref(u
->ip_bpf_egress_installed
);
714 set_free(u
->ip_bpf_custom_ingress
);
715 set_free(u
->ip_bpf_custom_egress
);
716 set_free(u
->ip_bpf_custom_ingress_installed
);
717 set_free(u
->ip_bpf_custom_egress_installed
);
719 bpf_program_unref(u
->bpf_device_control_installed
);
721 condition_free_list(u
->conditions
);
722 condition_free_list(u
->asserts
);
724 free(u
->description
);
725 strv_free(u
->documentation
);
726 free(u
->fragment_path
);
727 free(u
->source_path
);
728 strv_free(u
->dropin_paths
);
731 free(u
->job_timeout_reboot_arg
);
733 set_free_free(u
->names
);
740 UnitActiveState
unit_active_state(Unit
*u
) {
743 if (u
->load_state
== UNIT_MERGED
)
744 return unit_active_state(unit_follow_merge(u
));
746 /* After a reload it might happen that a unit is not correctly
747 * loaded but still has a process around. That's why we won't
748 * shortcut failed loading to UNIT_INACTIVE_FAILED. */
750 return UNIT_VTABLE(u
)->active_state(u
);
753 const char* unit_sub_state_to_string(Unit
*u
) {
756 return UNIT_VTABLE(u
)->sub_state_to_string(u
);
759 static int set_complete_move(Set
**s
, Set
**other
) {
767 return set_move(*s
, *other
);
769 *s
= TAKE_PTR(*other
);
774 static int hashmap_complete_move(Hashmap
**s
, Hashmap
**other
) {
782 return hashmap_move(*s
, *other
);
784 *s
= TAKE_PTR(*other
);
789 static int merge_names(Unit
*u
, Unit
*other
) {
797 r
= set_complete_move(&u
->names
, &other
->names
);
801 set_free_free(other
->names
);
805 SET_FOREACH(t
, u
->names
, i
)
806 assert_se(hashmap_replace(u
->manager
->units
, t
, u
) == 0);
811 static int reserve_dependencies(Unit
*u
, Unit
*other
, UnitDependency d
) {
816 assert(d
< _UNIT_DEPENDENCY_MAX
);
819 * If u does not have this dependency set allocated, there is no need
820 * to reserve anything. In that case other's set will be transferred
821 * as a whole to u by complete_move().
823 if (!u
->dependencies
[d
])
826 /* merge_dependencies() will skip a u-on-u dependency */
827 n_reserve
= hashmap_size(other
->dependencies
[d
]) - !!hashmap_get(other
->dependencies
[d
], u
);
829 return hashmap_reserve(u
->dependencies
[d
], n_reserve
);
832 static void merge_dependencies(Unit
*u
, Unit
*other
, const char *other_id
, UnitDependency d
) {
838 /* Merges all dependencies of type 'd' of the unit 'other' into the deps of the unit 'u' */
842 assert(d
< _UNIT_DEPENDENCY_MAX
);
844 /* Fix backwards pointers. Let's iterate through all dependent units of the other unit. */
845 HASHMAP_FOREACH_KEY(v
, back
, other
->dependencies
[d
], i
) {
848 /* Let's now iterate through the dependencies of that dependencies of the other units, looking for
849 * pointers back, and let's fix them up, to instead point to 'u'. */
851 for (k
= 0; k
< _UNIT_DEPENDENCY_MAX
; k
++) {
853 /* Do not add dependencies between u and itself. */
854 if (hashmap_remove(back
->dependencies
[k
], other
))
855 maybe_warn_about_dependency(u
, other_id
, k
);
857 UnitDependencyInfo di_u
, di_other
, di_merged
;
859 /* Let's drop this dependency between "back" and "other", and let's create it between
860 * "back" and "u" instead. Let's merge the bit masks of the dependency we are moving,
861 * and any such dependency which might already exist */
863 di_other
.data
= hashmap_get(back
->dependencies
[k
], other
);
865 continue; /* dependency isn't set, let's try the next one */
867 di_u
.data
= hashmap_get(back
->dependencies
[k
], u
);
869 di_merged
= (UnitDependencyInfo
) {
870 .origin_mask
= di_u
.origin_mask
| di_other
.origin_mask
,
871 .destination_mask
= di_u
.destination_mask
| di_other
.destination_mask
,
874 r
= hashmap_remove_and_replace(back
->dependencies
[k
], other
, u
, di_merged
.data
);
876 log_warning_errno(r
, "Failed to remove/replace: back=%s other=%s u=%s: %m", back
->id
, other_id
, u
->id
);
879 /* assert_se(hashmap_remove_and_replace(back->dependencies[k], other, u, di_merged.data) >= 0); */
885 /* Also do not move dependencies on u to itself */
886 back
= hashmap_remove(other
->dependencies
[d
], u
);
888 maybe_warn_about_dependency(u
, other_id
, d
);
890 /* The move cannot fail. The caller must have performed a reservation. */
891 assert_se(hashmap_complete_move(&u
->dependencies
[d
], &other
->dependencies
[d
]) == 0);
893 other
->dependencies
[d
] = hashmap_free(other
->dependencies
[d
]);
896 int unit_merge(Unit
*u
, Unit
*other
) {
898 const char *other_id
= NULL
;
903 assert(u
->manager
== other
->manager
);
904 assert(u
->type
!= _UNIT_TYPE_INVALID
);
906 other
= unit_follow_merge(other
);
911 if (u
->type
!= other
->type
)
914 if (!u
->instance
!= !other
->instance
)
917 if (!unit_type_may_alias(u
->type
)) /* Merging only applies to unit names that support aliases */
920 if (!IN_SET(other
->load_state
, UNIT_STUB
, UNIT_NOT_FOUND
))
929 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
933 other_id
= strdupa(other
->id
);
935 /* Make reservations to ensure merge_dependencies() won't fail */
936 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
937 r
= reserve_dependencies(u
, other
, d
);
939 * We don't rollback reservations if we fail. We don't have
940 * a way to undo reservations. A reservation is not a leak.
947 r
= merge_names(u
, other
);
951 /* Redirect all references */
952 while (other
->refs_by_target
)
953 unit_ref_set(other
->refs_by_target
, other
->refs_by_target
->source
, u
);
955 /* Merge dependencies */
956 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
957 merge_dependencies(u
, other
, other_id
, d
);
959 other
->load_state
= UNIT_MERGED
;
960 other
->merged_into
= u
;
962 /* If there is still some data attached to the other node, we
963 * don't need it anymore, and can free it. */
964 if (other
->load_state
!= UNIT_STUB
)
965 if (UNIT_VTABLE(other
)->done
)
966 UNIT_VTABLE(other
)->done(other
);
968 unit_add_to_dbus_queue(u
);
969 unit_add_to_cleanup_queue(other
);
974 int unit_merge_by_name(Unit
*u
, const char *name
) {
975 _cleanup_free_
char *s
= NULL
;
979 /* Either add name to u, or if a unit with name already exists, merge it with u.
980 * If name is a template, do the same for name@instance, where instance is u's instance. */
985 if (unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
989 r
= unit_name_replace_instance(name
, u
->instance
, &s
);
996 other
= manager_get_unit(u
->manager
, name
);
998 return unit_merge(u
, other
);
1000 return unit_add_name(u
, name
);
1003 Unit
* unit_follow_merge(Unit
*u
) {
1006 while (u
->load_state
== UNIT_MERGED
)
1007 assert_se(u
= u
->merged_into
);
1012 int unit_add_exec_dependencies(Unit
*u
, ExecContext
*c
) {
1013 ExecDirectoryType dt
;
1020 if (c
->working_directory
&& !c
->working_directory_missing_ok
) {
1021 r
= unit_require_mounts_for(u
, c
->working_directory
, UNIT_DEPENDENCY_FILE
);
1026 if (c
->root_directory
) {
1027 r
= unit_require_mounts_for(u
, c
->root_directory
, UNIT_DEPENDENCY_FILE
);
1032 if (c
->root_image
) {
1033 r
= unit_require_mounts_for(u
, c
->root_image
, UNIT_DEPENDENCY_FILE
);
1038 for (dt
= 0; dt
< _EXEC_DIRECTORY_TYPE_MAX
; dt
++) {
1039 if (!u
->manager
->prefix
[dt
])
1042 STRV_FOREACH(dp
, c
->directories
[dt
].paths
) {
1043 _cleanup_free_
char *p
;
1045 p
= path_join(u
->manager
->prefix
[dt
], *dp
);
1049 r
= unit_require_mounts_for(u
, p
, UNIT_DEPENDENCY_FILE
);
1055 if (!MANAGER_IS_SYSTEM(u
->manager
))
1058 /* For the following three directory types we need write access, and /var/ is possibly on the root
1059 * fs. Hence order after systemd-remount-fs.service, to ensure things are writable. */
1060 if (!strv_isempty(c
->directories
[EXEC_DIRECTORY_STATE
].paths
) ||
1061 !strv_isempty(c
->directories
[EXEC_DIRECTORY_CACHE
].paths
) ||
1062 !strv_isempty(c
->directories
[EXEC_DIRECTORY_LOGS
].paths
)) {
1063 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_REMOUNT_FS_SERVICE
, true, UNIT_DEPENDENCY_FILE
);
1068 if (c
->private_tmp
) {
1071 FOREACH_STRING(p
, "/tmp", "/var/tmp") {
1072 r
= unit_require_mounts_for(u
, p
, UNIT_DEPENDENCY_FILE
);
1077 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_TMPFILES_SETUP_SERVICE
, true, UNIT_DEPENDENCY_FILE
);
1082 if (c
->root_image
) {
1083 /* We need to wait for /dev/loopX to appear when doing RootImage=, hence let's add an
1084 * implicit dependency on udev */
1086 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_UDEVD_SERVICE
, true, UNIT_DEPENDENCY_FILE
);
1091 if (!IN_SET(c
->std_output
,
1092 EXEC_OUTPUT_JOURNAL
, EXEC_OUTPUT_JOURNAL_AND_CONSOLE
,
1093 EXEC_OUTPUT_KMSG
, EXEC_OUTPUT_KMSG_AND_CONSOLE
,
1094 EXEC_OUTPUT_SYSLOG
, EXEC_OUTPUT_SYSLOG_AND_CONSOLE
) &&
1095 !IN_SET(c
->std_error
,
1096 EXEC_OUTPUT_JOURNAL
, EXEC_OUTPUT_JOURNAL_AND_CONSOLE
,
1097 EXEC_OUTPUT_KMSG
, EXEC_OUTPUT_KMSG_AND_CONSOLE
,
1098 EXEC_OUTPUT_SYSLOG
, EXEC_OUTPUT_SYSLOG_AND_CONSOLE
) &&
1102 /* If syslog or kernel logging is requested (or log namespacing is), make sure our own logging daemon
1105 if (c
->log_namespace
) {
1106 _cleanup_free_
char *socket_unit
= NULL
, *varlink_socket_unit
= NULL
;
1108 r
= unit_name_build_from_type("systemd-journald", c
->log_namespace
, UNIT_SOCKET
, &socket_unit
);
1112 r
= unit_add_two_dependencies_by_name(u
, UNIT_AFTER
, UNIT_REQUIRES
, socket_unit
, true, UNIT_DEPENDENCY_FILE
);
1116 r
= unit_name_build_from_type("systemd-journald-varlink", c
->log_namespace
, UNIT_SOCKET
, &varlink_socket_unit
);
1120 r
= unit_add_two_dependencies_by_name(u
, UNIT_AFTER
, UNIT_REQUIRES
, varlink_socket_unit
, true, UNIT_DEPENDENCY_FILE
);
1124 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_JOURNALD_SOCKET
, true, UNIT_DEPENDENCY_FILE
);
1131 const char *unit_description(Unit
*u
) {
1135 return u
->description
;
1137 return strna(u
->id
);
1140 const char *unit_status_string(Unit
*u
) {
1143 if (u
->manager
->status_unit_format
== STATUS_UNIT_FORMAT_NAME
&& u
->id
)
1146 return unit_description(u
);
1149 static void print_unit_dependency_mask(FILE *f
, const char *kind
, UnitDependencyMask mask
, bool *space
) {
1151 UnitDependencyMask mask
;
1154 { UNIT_DEPENDENCY_FILE
, "file" },
1155 { UNIT_DEPENDENCY_IMPLICIT
, "implicit" },
1156 { UNIT_DEPENDENCY_DEFAULT
, "default" },
1157 { UNIT_DEPENDENCY_UDEV
, "udev" },
1158 { UNIT_DEPENDENCY_PATH
, "path" },
1159 { UNIT_DEPENDENCY_MOUNTINFO_IMPLICIT
, "mountinfo-implicit" },
1160 { UNIT_DEPENDENCY_MOUNTINFO_DEFAULT
, "mountinfo-default" },
1161 { UNIT_DEPENDENCY_PROC_SWAP
, "proc-swap" },
1169 for (i
= 0; i
< ELEMENTSOF(table
); i
++) {
1174 if (FLAGS_SET(mask
, table
[i
].mask
)) {
1182 fputs(table
[i
].name
, f
);
1184 mask
&= ~table
[i
].mask
;
1191 void unit_dump(Unit
*u
, FILE *f
, const char *prefix
) {
1195 const char *prefix2
;
1196 char timestamp
[5][FORMAT_TIMESTAMP_MAX
], timespan
[FORMAT_TIMESPAN_MAX
];
1198 _cleanup_set_free_ Set
*following_set
= NULL
;
1204 assert(u
->type
>= 0);
1206 prefix
= strempty(prefix
);
1207 prefix2
= strjoina(prefix
, "\t");
1213 SET_FOREACH(t
, u
->names
, i
)
1214 if (!streq(t
, u
->id
))
1215 fprintf(f
, "%s\tAlias: %s\n", prefix
, t
);
1218 "%s\tDescription: %s\n"
1219 "%s\tInstance: %s\n"
1220 "%s\tUnit Load State: %s\n"
1221 "%s\tUnit Active State: %s\n"
1222 "%s\tState Change Timestamp: %s\n"
1223 "%s\tInactive Exit Timestamp: %s\n"
1224 "%s\tActive Enter Timestamp: %s\n"
1225 "%s\tActive Exit Timestamp: %s\n"
1226 "%s\tInactive Enter Timestamp: %s\n"
1228 "%s\tNeed Daemon Reload: %s\n"
1229 "%s\tTransient: %s\n"
1230 "%s\tPerpetual: %s\n"
1231 "%s\tGarbage Collection Mode: %s\n"
1234 "%s\tCGroup realized: %s\n",
1235 prefix
, unit_description(u
),
1236 prefix
, strna(u
->instance
),
1237 prefix
, unit_load_state_to_string(u
->load_state
),
1238 prefix
, unit_active_state_to_string(unit_active_state(u
)),
1239 prefix
, strna(format_timestamp(timestamp
[0], sizeof(timestamp
[0]), u
->state_change_timestamp
.realtime
)),
1240 prefix
, strna(format_timestamp(timestamp
[1], sizeof(timestamp
[1]), u
->inactive_exit_timestamp
.realtime
)),
1241 prefix
, strna(format_timestamp(timestamp
[2], sizeof(timestamp
[2]), u
->active_enter_timestamp
.realtime
)),
1242 prefix
, strna(format_timestamp(timestamp
[3], sizeof(timestamp
[3]), u
->active_exit_timestamp
.realtime
)),
1243 prefix
, strna(format_timestamp(timestamp
[4], sizeof(timestamp
[4]), u
->inactive_enter_timestamp
.realtime
)),
1244 prefix
, yes_no(unit_may_gc(u
)),
1245 prefix
, yes_no(unit_need_daemon_reload(u
)),
1246 prefix
, yes_no(u
->transient
),
1247 prefix
, yes_no(u
->perpetual
),
1248 prefix
, collect_mode_to_string(u
->collect_mode
),
1249 prefix
, strna(unit_slice_name(u
)),
1250 prefix
, strna(u
->cgroup_path
),
1251 prefix
, yes_no(u
->cgroup_realized
));
1253 if (u
->cgroup_realized_mask
!= 0) {
1254 _cleanup_free_
char *s
= NULL
;
1255 (void) cg_mask_to_string(u
->cgroup_realized_mask
, &s
);
1256 fprintf(f
, "%s\tCGroup realized mask: %s\n", prefix
, strnull(s
));
1259 if (u
->cgroup_enabled_mask
!= 0) {
1260 _cleanup_free_
char *s
= NULL
;
1261 (void) cg_mask_to_string(u
->cgroup_enabled_mask
, &s
);
1262 fprintf(f
, "%s\tCGroup enabled mask: %s\n", prefix
, strnull(s
));
1265 m
= unit_get_own_mask(u
);
1267 _cleanup_free_
char *s
= NULL
;
1268 (void) cg_mask_to_string(m
, &s
);
1269 fprintf(f
, "%s\tCGroup own mask: %s\n", prefix
, strnull(s
));
1272 m
= unit_get_members_mask(u
);
1274 _cleanup_free_
char *s
= NULL
;
1275 (void) cg_mask_to_string(m
, &s
);
1276 fprintf(f
, "%s\tCGroup members mask: %s\n", prefix
, strnull(s
));
1279 m
= unit_get_delegate_mask(u
);
1281 _cleanup_free_
char *s
= NULL
;
1282 (void) cg_mask_to_string(m
, &s
);
1283 fprintf(f
, "%s\tCGroup delegate mask: %s\n", prefix
, strnull(s
));
1286 if (!sd_id128_is_null(u
->invocation_id
))
1287 fprintf(f
, "%s\tInvocation ID: " SD_ID128_FORMAT_STR
"\n",
1288 prefix
, SD_ID128_FORMAT_VAL(u
->invocation_id
));
1290 STRV_FOREACH(j
, u
->documentation
)
1291 fprintf(f
, "%s\tDocumentation: %s\n", prefix
, *j
);
1293 following
= unit_following(u
);
1295 fprintf(f
, "%s\tFollowing: %s\n", prefix
, following
->id
);
1297 r
= unit_following_set(u
, &following_set
);
1301 SET_FOREACH(other
, following_set
, i
)
1302 fprintf(f
, "%s\tFollowing Set Member: %s\n", prefix
, other
->id
);
1305 if (u
->fragment_path
)
1306 fprintf(f
, "%s\tFragment Path: %s\n", prefix
, u
->fragment_path
);
1309 fprintf(f
, "%s\tSource Path: %s\n", prefix
, u
->source_path
);
1311 STRV_FOREACH(j
, u
->dropin_paths
)
1312 fprintf(f
, "%s\tDropIn Path: %s\n", prefix
, *j
);
1314 if (u
->failure_action
!= EMERGENCY_ACTION_NONE
)
1315 fprintf(f
, "%s\tFailure Action: %s\n", prefix
, emergency_action_to_string(u
->failure_action
));
1316 if (u
->failure_action_exit_status
>= 0)
1317 fprintf(f
, "%s\tFailure Action Exit Status: %i\n", prefix
, u
->failure_action_exit_status
);
1318 if (u
->success_action
!= EMERGENCY_ACTION_NONE
)
1319 fprintf(f
, "%s\tSuccess Action: %s\n", prefix
, emergency_action_to_string(u
->success_action
));
1320 if (u
->success_action_exit_status
>= 0)
1321 fprintf(f
, "%s\tSuccess Action Exit Status: %i\n", prefix
, u
->success_action_exit_status
);
1323 if (u
->job_timeout
!= USEC_INFINITY
)
1324 fprintf(f
, "%s\tJob Timeout: %s\n", prefix
, format_timespan(timespan
, sizeof(timespan
), u
->job_timeout
, 0));
1326 if (u
->job_timeout_action
!= EMERGENCY_ACTION_NONE
)
1327 fprintf(f
, "%s\tJob Timeout Action: %s\n", prefix
, emergency_action_to_string(u
->job_timeout_action
));
1329 if (u
->job_timeout_reboot_arg
)
1330 fprintf(f
, "%s\tJob Timeout Reboot Argument: %s\n", prefix
, u
->job_timeout_reboot_arg
);
1332 condition_dump_list(u
->conditions
, f
, prefix
, condition_type_to_string
);
1333 condition_dump_list(u
->asserts
, f
, prefix
, assert_type_to_string
);
1335 if (dual_timestamp_is_set(&u
->condition_timestamp
))
1337 "%s\tCondition Timestamp: %s\n"
1338 "%s\tCondition Result: %s\n",
1339 prefix
, strna(format_timestamp(timestamp
[0], sizeof(timestamp
[0]), u
->condition_timestamp
.realtime
)),
1340 prefix
, yes_no(u
->condition_result
));
1342 if (dual_timestamp_is_set(&u
->assert_timestamp
))
1344 "%s\tAssert Timestamp: %s\n"
1345 "%s\tAssert Result: %s\n",
1346 prefix
, strna(format_timestamp(timestamp
[0], sizeof(timestamp
[0]), u
->assert_timestamp
.realtime
)),
1347 prefix
, yes_no(u
->assert_result
));
1349 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
1350 UnitDependencyInfo di
;
1353 HASHMAP_FOREACH_KEY(di
.data
, other
, u
->dependencies
[d
], i
) {
1356 fprintf(f
, "%s\t%s: %s (", prefix
, unit_dependency_to_string(d
), other
->id
);
1358 print_unit_dependency_mask(f
, "origin", di
.origin_mask
, &space
);
1359 print_unit_dependency_mask(f
, "destination", di
.destination_mask
, &space
);
1365 if (!hashmap_isempty(u
->requires_mounts_for
)) {
1366 UnitDependencyInfo di
;
1369 HASHMAP_FOREACH_KEY(di
.data
, path
, u
->requires_mounts_for
, i
) {
1372 fprintf(f
, "%s\tRequiresMountsFor: %s (", prefix
, path
);
1374 print_unit_dependency_mask(f
, "origin", di
.origin_mask
, &space
);
1375 print_unit_dependency_mask(f
, "destination", di
.destination_mask
, &space
);
1381 if (u
->load_state
== UNIT_LOADED
) {
1384 "%s\tStopWhenUnneeded: %s\n"
1385 "%s\tRefuseManualStart: %s\n"
1386 "%s\tRefuseManualStop: %s\n"
1387 "%s\tDefaultDependencies: %s\n"
1388 "%s\tOnFailureJobMode: %s\n"
1389 "%s\tIgnoreOnIsolate: %s\n",
1390 prefix
, yes_no(u
->stop_when_unneeded
),
1391 prefix
, yes_no(u
->refuse_manual_start
),
1392 prefix
, yes_no(u
->refuse_manual_stop
),
1393 prefix
, yes_no(u
->default_dependencies
),
1394 prefix
, job_mode_to_string(u
->on_failure_job_mode
),
1395 prefix
, yes_no(u
->ignore_on_isolate
));
1397 if (UNIT_VTABLE(u
)->dump
)
1398 UNIT_VTABLE(u
)->dump(u
, f
, prefix2
);
1400 } else if (u
->load_state
== UNIT_MERGED
)
1402 "%s\tMerged into: %s\n",
1403 prefix
, u
->merged_into
->id
);
1404 else if (u
->load_state
== UNIT_ERROR
)
1405 fprintf(f
, "%s\tLoad Error Code: %s\n", prefix
, strerror_safe(u
->load_error
));
1407 for (n
= sd_bus_track_first(u
->bus_track
); n
; n
= sd_bus_track_next(u
->bus_track
))
1408 fprintf(f
, "%s\tBus Ref: %s\n", prefix
, n
);
1411 job_dump(u
->job
, f
, prefix2
);
1414 job_dump(u
->nop_job
, f
, prefix2
);
1417 /* Common implementation for multiple backends */
1418 int unit_load_fragment_and_dropin(Unit
*u
, bool fragment_required
) {
1423 /* Load a .{service,socket,...} file */
1424 r
= unit_load_fragment(u
);
1428 if (u
->load_state
== UNIT_STUB
) {
1429 if (fragment_required
)
1432 u
->load_state
= UNIT_LOADED
;
1435 /* Load drop-in directory data. If u is an alias, we might be reloading the
1436 * target unit needlessly. But we cannot be sure which drops-ins have already
1437 * been loaded and which not, at least without doing complicated book-keeping,
1438 * so let's always reread all drop-ins. */
1439 return unit_load_dropin(unit_follow_merge(u
));
1442 void unit_add_to_target_deps_queue(Unit
*u
) {
1443 Manager
*m
= u
->manager
;
1447 if (u
->in_target_deps_queue
)
1450 LIST_PREPEND(target_deps_queue
, m
->target_deps_queue
, u
);
1451 u
->in_target_deps_queue
= true;
1454 int unit_add_default_target_dependency(Unit
*u
, Unit
*target
) {
1458 if (target
->type
!= UNIT_TARGET
)
1461 /* Only add the dependency if both units are loaded, so that
1462 * that loop check below is reliable */
1463 if (u
->load_state
!= UNIT_LOADED
||
1464 target
->load_state
!= UNIT_LOADED
)
1467 /* If either side wants no automatic dependencies, then let's
1469 if (!u
->default_dependencies
||
1470 !target
->default_dependencies
)
1473 /* Don't create loops */
1474 if (hashmap_get(target
->dependencies
[UNIT_BEFORE
], u
))
1477 return unit_add_dependency(target
, UNIT_AFTER
, u
, true, UNIT_DEPENDENCY_DEFAULT
);
1480 static int unit_add_slice_dependencies(Unit
*u
) {
1481 UnitDependencyMask mask
;
1484 if (!UNIT_HAS_CGROUP_CONTEXT(u
))
1487 /* Slice units are implicitly ordered against their parent slices (as this relationship is encoded in the
1488 name), while all other units are ordered based on configuration (as in their case Slice= configures the
1490 mask
= u
->type
== UNIT_SLICE
? UNIT_DEPENDENCY_IMPLICIT
: UNIT_DEPENDENCY_FILE
;
1492 if (UNIT_ISSET(u
->slice
))
1493 return unit_add_two_dependencies(u
, UNIT_AFTER
, UNIT_REQUIRES
, UNIT_DEREF(u
->slice
), true, mask
);
1495 if (unit_has_name(u
, SPECIAL_ROOT_SLICE
))
1498 return unit_add_two_dependencies_by_name(u
, UNIT_AFTER
, UNIT_REQUIRES
, SPECIAL_ROOT_SLICE
, true, mask
);
1501 static int unit_add_mount_dependencies(Unit
*u
) {
1502 UnitDependencyInfo di
;
1509 HASHMAP_FOREACH_KEY(di
.data
, path
, u
->requires_mounts_for
, i
) {
1510 char prefix
[strlen(path
) + 1];
1512 PATH_FOREACH_PREFIX_MORE(prefix
, path
) {
1513 _cleanup_free_
char *p
= NULL
;
1516 r
= unit_name_from_path(prefix
, ".mount", &p
);
1520 m
= manager_get_unit(u
->manager
, p
);
1522 /* Make sure to load the mount unit if
1523 * it exists. If so the dependencies
1524 * on this unit will be added later
1525 * during the loading of the mount
1527 (void) manager_load_unit_prepare(u
->manager
, p
, NULL
, NULL
, &m
);
1533 if (m
->load_state
!= UNIT_LOADED
)
1536 r
= unit_add_dependency(u
, UNIT_AFTER
, m
, true, di
.origin_mask
);
1540 if (m
->fragment_path
) {
1541 r
= unit_add_dependency(u
, UNIT_REQUIRES
, m
, true, di
.origin_mask
);
1551 static int unit_add_startup_units(Unit
*u
) {
1555 c
= unit_get_cgroup_context(u
);
1559 if (c
->startup_cpu_shares
== CGROUP_CPU_SHARES_INVALID
&&
1560 c
->startup_io_weight
== CGROUP_WEIGHT_INVALID
&&
1561 c
->startup_blockio_weight
== CGROUP_BLKIO_WEIGHT_INVALID
)
1564 r
= set_ensure_allocated(&u
->manager
->startup_units
, NULL
);
1568 return set_put(u
->manager
->startup_units
, u
);
1571 int unit_load(Unit
*u
) {
1576 if (u
->in_load_queue
) {
1577 LIST_REMOVE(load_queue
, u
->manager
->load_queue
, u
);
1578 u
->in_load_queue
= false;
1581 if (u
->type
== _UNIT_TYPE_INVALID
)
1584 if (u
->load_state
!= UNIT_STUB
)
1587 if (u
->transient_file
) {
1588 /* Finalize transient file: if this is a transient unit file, as soon as we reach unit_load() the setup
1589 * is complete, hence let's synchronize the unit file we just wrote to disk. */
1591 r
= fflush_and_check(u
->transient_file
);
1595 u
->transient_file
= safe_fclose(u
->transient_file
);
1596 u
->fragment_mtime
= now(CLOCK_REALTIME
);
1599 r
= UNIT_VTABLE(u
)->load(u
);
1603 assert(u
->load_state
!= UNIT_STUB
);
1605 if (u
->load_state
== UNIT_LOADED
) {
1606 unit_add_to_target_deps_queue(u
);
1608 r
= unit_add_slice_dependencies(u
);
1612 r
= unit_add_mount_dependencies(u
);
1616 r
= unit_add_startup_units(u
);
1620 if (u
->on_failure_job_mode
== JOB_ISOLATE
&& hashmap_size(u
->dependencies
[UNIT_ON_FAILURE
]) > 1) {
1621 log_unit_error(u
, "More than one OnFailure= dependencies specified but OnFailureJobMode=isolate set. Refusing.");
1626 if (u
->job_running_timeout
!= USEC_INFINITY
&& u
->job_running_timeout
> u
->job_timeout
)
1627 log_unit_warning(u
, "JobRunningTimeoutSec= is greater than JobTimeoutSec=, it has no effect.");
1629 /* We finished loading, let's ensure our parents recalculate the members mask */
1630 unit_invalidate_cgroup_members_masks(u
);
1633 assert((u
->load_state
!= UNIT_MERGED
) == !u
->merged_into
);
1635 unit_add_to_dbus_queue(unit_follow_merge(u
));
1636 unit_add_to_gc_queue(u
);
1641 /* We convert ENOEXEC errors to the UNIT_BAD_SETTING load state here. Configuration parsing code should hence
1642 * return ENOEXEC to ensure units are placed in this state after loading */
1644 u
->load_state
= u
->load_state
== UNIT_STUB
? UNIT_NOT_FOUND
:
1645 r
== -ENOEXEC
? UNIT_BAD_SETTING
:
1649 unit_add_to_dbus_queue(u
);
1650 unit_add_to_gc_queue(u
);
1652 return log_unit_debug_errno(u
, r
, "Failed to load configuration: %m");
1656 static int log_unit_internal(void *userdata
, int level
, int error
, const char *file
, int line
, const char *func
, const char *format
, ...) {
1661 va_start(ap
, format
);
1663 r
= log_object_internalv(level
, error
, file
, line
, func
,
1664 u
->manager
->unit_log_field
,
1666 u
->manager
->invocation_log_field
,
1667 u
->invocation_id_string
,
1670 r
= log_internalv(level
, error
, file
, line
, func
, format
, ap
);
1676 static bool unit_test_condition(Unit
*u
) {
1679 dual_timestamp_get(&u
->condition_timestamp
);
1680 u
->condition_result
= condition_test_list(u
->conditions
, condition_type_to_string
, log_unit_internal
, u
);
1682 unit_add_to_dbus_queue(u
);
1684 return u
->condition_result
;
1687 static bool unit_test_assert(Unit
*u
) {
1690 dual_timestamp_get(&u
->assert_timestamp
);
1691 u
->assert_result
= condition_test_list(u
->asserts
, assert_type_to_string
, log_unit_internal
, u
);
1693 unit_add_to_dbus_queue(u
);
1695 return u
->assert_result
;
1698 void unit_status_printf(Unit
*u
, StatusType status_type
, const char *status
, const char *unit_status_msg_format
) {
1701 d
= unit_status_string(u
);
1702 if (log_get_show_color())
1703 d
= strjoina(ANSI_HIGHLIGHT
, d
, ANSI_NORMAL
);
1705 DISABLE_WARNING_FORMAT_NONLITERAL
;
1706 manager_status_printf(u
->manager
, status_type
, status
, unit_status_msg_format
, d
);
1710 int unit_test_start_limit(Unit
*u
) {
1715 if (ratelimit_below(&u
->start_ratelimit
)) {
1716 u
->start_limit_hit
= false;
1720 log_unit_warning(u
, "Start request repeated too quickly.");
1721 u
->start_limit_hit
= true;
1723 reason
= strjoina("unit ", u
->id
, " failed");
1725 emergency_action(u
->manager
, u
->start_limit_action
,
1726 EMERGENCY_ACTION_IS_WATCHDOG
|EMERGENCY_ACTION_WARN
,
1727 u
->reboot_arg
, -1, reason
);
1732 bool unit_shall_confirm_spawn(Unit
*u
) {
1735 if (manager_is_confirm_spawn_disabled(u
->manager
))
1738 /* For some reasons units remaining in the same process group
1739 * as PID 1 fail to acquire the console even if it's not used
1740 * by any process. So skip the confirmation question for them. */
1741 return !unit_get_exec_context(u
)->same_pgrp
;
1744 static bool unit_verify_deps(Unit
*u
) {
1751 /* Checks whether all BindsTo= dependencies of this unit are fulfilled — if they are also combined with
1752 * After=. We do not check Requires= or Requisite= here as they only should have an effect on the job
1753 * processing, but do not have any effect afterwards. We don't check BindsTo= dependencies that are not used in
1754 * conjunction with After= as for them any such check would make things entirely racy. */
1756 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], j
) {
1758 if (!hashmap_contains(u
->dependencies
[UNIT_AFTER
], other
))
1761 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(other
))) {
1762 log_unit_notice(u
, "Bound to unit %s, but unit isn't active.", other
->id
);
1770 /* Errors that aren't really errors:
1771 * -EALREADY: Unit is already started.
1772 * -ECOMM: Condition failed
1773 * -EAGAIN: An operation is already in progress. Retry later.
1775 * Errors that are real errors:
1776 * -EBADR: This unit type does not support starting.
1777 * -ECANCELED: Start limit hit, too many requests for now
1778 * -EPROTO: Assert failed
1779 * -EINVAL: Unit not loaded
1780 * -EOPNOTSUPP: Unit type not supported
1781 * -ENOLINK: The necessary dependencies are not fulfilled.
1782 * -ESTALE: This unit has been started before and can't be started a second time
1783 * -ENOENT: This is a triggering unit and unit to trigger is not loaded
1785 int unit_start(Unit
*u
) {
1786 UnitActiveState state
;
1791 /* If this is already started, then this will succeed. Note that this will even succeed if this unit
1792 * is not startable by the user. This is relied on to detect when we need to wait for units and when
1793 * waiting is finished. */
1794 state
= unit_active_state(u
);
1795 if (UNIT_IS_ACTIVE_OR_RELOADING(state
))
1797 if (state
== UNIT_MAINTENANCE
)
1800 /* Units that aren't loaded cannot be started */
1801 if (u
->load_state
!= UNIT_LOADED
)
1804 /* Refuse starting scope units more than once */
1805 if (UNIT_VTABLE(u
)->once_only
&& dual_timestamp_is_set(&u
->inactive_enter_timestamp
))
1808 /* If the conditions failed, don't do anything at all. If we already are activating this call might
1809 * still be useful to speed up activation in case there is some hold-off time, but we don't want to
1810 * recheck the condition in that case. */
1811 if (state
!= UNIT_ACTIVATING
&&
1812 !unit_test_condition(u
))
1813 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(ECOMM
), "Starting requested but condition failed. Not starting unit.");
1815 /* If the asserts failed, fail the entire job */
1816 if (state
!= UNIT_ACTIVATING
&&
1817 !unit_test_assert(u
))
1818 return log_unit_notice_errno(u
, SYNTHETIC_ERRNO(EPROTO
), "Starting requested but asserts failed.");
1820 /* Units of types that aren't supported cannot be started. Note that we do this test only after the
1821 * condition checks, so that we rather return condition check errors (which are usually not
1822 * considered a true failure) than "not supported" errors (which are considered a failure).
1824 if (!unit_type_supported(u
->type
))
1827 /* Let's make sure that the deps really are in order before we start this. Normally the job engine
1828 * should have taken care of this already, but let's check this here again. After all, our
1829 * dependencies might not be in effect anymore, due to a reload or due to a failed condition. */
1830 if (!unit_verify_deps(u
))
1833 /* Forward to the main object, if we aren't it. */
1834 following
= unit_following(u
);
1836 log_unit_debug(u
, "Redirecting start request from %s to %s.", u
->id
, following
->id
);
1837 return unit_start(following
);
1840 /* If it is stopped, but we cannot start it, then fail */
1841 if (!UNIT_VTABLE(u
)->start
)
1844 /* We don't suppress calls to ->start() here when we are already starting, to allow this request to
1845 * be used as a "hurry up" call, for example when the unit is in some "auto restart" state where it
1846 * waits for a holdoff timer to elapse before it will start again. */
1848 unit_add_to_dbus_queue(u
);
1850 return UNIT_VTABLE(u
)->start(u
);
1853 bool unit_can_start(Unit
*u
) {
1856 if (u
->load_state
!= UNIT_LOADED
)
1859 if (!unit_type_supported(u
->type
))
1862 /* Scope units may be started only once */
1863 if (UNIT_VTABLE(u
)->once_only
&& dual_timestamp_is_set(&u
->inactive_exit_timestamp
))
1866 return !!UNIT_VTABLE(u
)->start
;
1869 bool unit_can_isolate(Unit
*u
) {
1872 return unit_can_start(u
) &&
1877 * -EBADR: This unit type does not support stopping.
1878 * -EALREADY: Unit is already stopped.
1879 * -EAGAIN: An operation is already in progress. Retry later.
1881 int unit_stop(Unit
*u
) {
1882 UnitActiveState state
;
1887 state
= unit_active_state(u
);
1888 if (UNIT_IS_INACTIVE_OR_FAILED(state
))
1891 following
= unit_following(u
);
1893 log_unit_debug(u
, "Redirecting stop request from %s to %s.", u
->id
, following
->id
);
1894 return unit_stop(following
);
1897 if (!UNIT_VTABLE(u
)->stop
)
1900 unit_add_to_dbus_queue(u
);
1902 return UNIT_VTABLE(u
)->stop(u
);
1905 bool unit_can_stop(Unit
*u
) {
1908 if (!unit_type_supported(u
->type
))
1914 return !!UNIT_VTABLE(u
)->stop
;
1918 * -EBADR: This unit type does not support reloading.
1919 * -ENOEXEC: Unit is not started.
1920 * -EAGAIN: An operation is already in progress. Retry later.
1922 int unit_reload(Unit
*u
) {
1923 UnitActiveState state
;
1928 if (u
->load_state
!= UNIT_LOADED
)
1931 if (!unit_can_reload(u
))
1934 state
= unit_active_state(u
);
1935 if (state
== UNIT_RELOADING
)
1938 if (state
!= UNIT_ACTIVE
) {
1939 log_unit_warning(u
, "Unit cannot be reloaded because it is inactive.");
1943 following
= unit_following(u
);
1945 log_unit_debug(u
, "Redirecting reload request from %s to %s.", u
->id
, following
->id
);
1946 return unit_reload(following
);
1949 unit_add_to_dbus_queue(u
);
1951 if (!UNIT_VTABLE(u
)->reload
) {
1952 /* Unit doesn't have a reload function, but we need to propagate the reload anyway */
1953 unit_notify(u
, unit_active_state(u
), unit_active_state(u
), 0);
1957 return UNIT_VTABLE(u
)->reload(u
);
1960 bool unit_can_reload(Unit
*u
) {
1963 if (UNIT_VTABLE(u
)->can_reload
)
1964 return UNIT_VTABLE(u
)->can_reload(u
);
1966 if (!hashmap_isempty(u
->dependencies
[UNIT_PROPAGATES_RELOAD_TO
]))
1969 return UNIT_VTABLE(u
)->reload
;
1972 bool unit_is_unneeded(Unit
*u
) {
1973 static const UnitDependency deps
[] = {
1983 if (!u
->stop_when_unneeded
)
1986 /* Don't clean up while the unit is transitioning or is even inactive. */
1987 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(u
)))
1992 for (j
= 0; j
< ELEMENTSOF(deps
); j
++) {
1997 /* If a dependent unit has a job queued, is active or transitioning, or is marked for
1998 * restart, then don't clean this one up. */
2000 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[deps
[j
]], i
) {
2004 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
2007 if (unit_will_restart(other
))
2015 static void check_unneeded_dependencies(Unit
*u
) {
2017 static const UnitDependency deps
[] = {
2027 /* Add all units this unit depends on to the queue that processes StopWhenUnneeded= behaviour. */
2029 for (j
= 0; j
< ELEMENTSOF(deps
); j
++) {
2034 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[deps
[j
]], i
)
2035 unit_submit_to_stop_when_unneeded_queue(other
);
2039 static void unit_check_binds_to(Unit
*u
) {
2040 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
2052 if (unit_active_state(u
) != UNIT_ACTIVE
)
2055 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
) {
2059 if (!other
->coldplugged
)
2060 /* We might yet create a job for the other unit… */
2063 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
2073 /* If stopping a unit fails continuously we might enter a stop
2074 * loop here, hence stop acting on the service being
2075 * unnecessary after a while. */
2076 if (!ratelimit_below(&u
->auto_stop_ratelimit
)) {
2077 log_unit_warning(u
, "Unit is bound to inactive unit %s, but not stopping since we tried this too often recently.", other
->id
);
2082 log_unit_info(u
, "Unit is bound to inactive unit %s. Stopping, too.", other
->id
);
2084 /* A unit we need to run is gone. Sniff. Let's stop this. */
2085 r
= manager_add_job(u
->manager
, JOB_STOP
, u
, JOB_FAIL
, NULL
, &error
, NULL
);
2087 log_unit_warning_errno(u
, r
, "Failed to enqueue stop job, ignoring: %s", bus_error_message(&error
, r
));
2090 static void retroactively_start_dependencies(Unit
*u
) {
2096 assert(UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)));
2098 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_REQUIRES
], i
)
2099 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2100 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2101 manager_add_job(u
->manager
, JOB_START
, other
, JOB_REPLACE
, NULL
, NULL
, NULL
);
2103 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
)
2104 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2105 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2106 manager_add_job(u
->manager
, JOB_START
, other
, JOB_REPLACE
, NULL
, NULL
, NULL
);
2108 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_WANTS
], i
)
2109 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2110 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2111 manager_add_job(u
->manager
, JOB_START
, other
, JOB_FAIL
, NULL
, NULL
, NULL
);
2113 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_CONFLICTS
], i
)
2114 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2115 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
, NULL
);
2117 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_CONFLICTED_BY
], i
)
2118 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2119 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
, NULL
);
2122 static void retroactively_stop_dependencies(Unit
*u
) {
2128 assert(UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)));
2130 /* Pull down units which are bound to us recursively if enabled */
2131 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BOUND_BY
], i
)
2132 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2133 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
, NULL
);
2136 void unit_start_on_failure(Unit
*u
) {
2144 if (hashmap_size(u
->dependencies
[UNIT_ON_FAILURE
]) <= 0)
2147 log_unit_info(u
, "Triggering OnFailure= dependencies.");
2149 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_ON_FAILURE
], i
) {
2150 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
2152 r
= manager_add_job(u
->manager
, JOB_START
, other
, u
->on_failure_job_mode
, NULL
, &error
, NULL
);
2154 log_unit_warning_errno(u
, r
, "Failed to enqueue OnFailure= job, ignoring: %s", bus_error_message(&error
, r
));
2158 void unit_trigger_notify(Unit
*u
) {
2165 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_TRIGGERED_BY
], i
)
2166 if (UNIT_VTABLE(other
)->trigger_notify
)
2167 UNIT_VTABLE(other
)->trigger_notify(other
, u
);
2170 static int raise_level(int log_level
, bool condition_info
, bool condition_notice
) {
2171 if (condition_notice
&& log_level
> LOG_NOTICE
)
2173 if (condition_info
&& log_level
> LOG_INFO
)
2178 static int unit_log_resources(Unit
*u
) {
2179 struct iovec iovec
[1 + _CGROUP_IP_ACCOUNTING_METRIC_MAX
+ _CGROUP_IO_ACCOUNTING_METRIC_MAX
+ 4];
2180 bool any_traffic
= false, have_ip_accounting
= false, any_io
= false, have_io_accounting
= false;
2181 _cleanup_free_
char *igress
= NULL
, *egress
= NULL
, *rr
= NULL
, *wr
= NULL
;
2182 int log_level
= LOG_DEBUG
; /* May be raised if resources consumed over a threshold */
2183 size_t n_message_parts
= 0, n_iovec
= 0;
2184 char* message_parts
[1 + 2 + 2 + 1], *t
;
2185 nsec_t nsec
= NSEC_INFINITY
;
2186 CGroupIPAccountingMetric m
;
2189 const char* const ip_fields
[_CGROUP_IP_ACCOUNTING_METRIC_MAX
] = {
2190 [CGROUP_IP_INGRESS_BYTES
] = "IP_METRIC_INGRESS_BYTES",
2191 [CGROUP_IP_INGRESS_PACKETS
] = "IP_METRIC_INGRESS_PACKETS",
2192 [CGROUP_IP_EGRESS_BYTES
] = "IP_METRIC_EGRESS_BYTES",
2193 [CGROUP_IP_EGRESS_PACKETS
] = "IP_METRIC_EGRESS_PACKETS",
2195 const char* const io_fields
[_CGROUP_IO_ACCOUNTING_METRIC_MAX
] = {
2196 [CGROUP_IO_READ_BYTES
] = "IO_METRIC_READ_BYTES",
2197 [CGROUP_IO_WRITE_BYTES
] = "IO_METRIC_WRITE_BYTES",
2198 [CGROUP_IO_READ_OPERATIONS
] = "IO_METRIC_READ_OPERATIONS",
2199 [CGROUP_IO_WRITE_OPERATIONS
] = "IO_METRIC_WRITE_OPERATIONS",
2204 /* Invoked whenever a unit enters failed or dead state. Logs information about consumed resources if resource
2205 * accounting was enabled for a unit. It does this in two ways: a friendly human readable string with reduced
2206 * information and the complete data in structured fields. */
2208 (void) unit_get_cpu_usage(u
, &nsec
);
2209 if (nsec
!= NSEC_INFINITY
) {
2210 char buf
[FORMAT_TIMESPAN_MAX
] = "";
2212 /* Format the CPU time for inclusion in the structured log message */
2213 if (asprintf(&t
, "CPU_USAGE_NSEC=%" PRIu64
, nsec
) < 0) {
2217 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2219 /* Format the CPU time for inclusion in the human language message string */
2220 format_timespan(buf
, sizeof(buf
), nsec
/ NSEC_PER_USEC
, USEC_PER_MSEC
);
2221 t
= strjoin("consumed ", buf
, " CPU time");
2227 message_parts
[n_message_parts
++] = t
;
2229 log_level
= raise_level(log_level
,
2230 nsec
> NOTICEWORTHY_CPU_NSEC
,
2231 nsec
> MENTIONWORTHY_CPU_NSEC
);
2234 for (CGroupIOAccountingMetric k
= 0; k
< _CGROUP_IO_ACCOUNTING_METRIC_MAX
; k
++) {
2235 char buf
[FORMAT_BYTES_MAX
] = "";
2236 uint64_t value
= UINT64_MAX
;
2238 assert(io_fields
[k
]);
2240 (void) unit_get_io_accounting(u
, k
, k
> 0, &value
);
2241 if (value
== UINT64_MAX
)
2244 have_io_accounting
= true;
2248 /* Format IO accounting data for inclusion in the structured log message */
2249 if (asprintf(&t
, "%s=%" PRIu64
, io_fields
[k
], value
) < 0) {
2253 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2255 /* Format the IO accounting data for inclusion in the human language message string, but only
2256 * for the bytes counters (and not for the operations counters) */
2257 if (k
== CGROUP_IO_READ_BYTES
) {
2259 rr
= strjoin("read ", format_bytes(buf
, sizeof(buf
), value
), " from disk");
2264 } else if (k
== CGROUP_IO_WRITE_BYTES
) {
2266 wr
= strjoin("written ", format_bytes(buf
, sizeof(buf
), value
), " to disk");
2273 if (IN_SET(k
, CGROUP_IO_READ_BYTES
, CGROUP_IO_WRITE_BYTES
))
2274 log_level
= raise_level(log_level
,
2275 value
> MENTIONWORTHY_IO_BYTES
,
2276 value
> NOTICEWORTHY_IO_BYTES
);
2279 if (have_io_accounting
) {
2282 message_parts
[n_message_parts
++] = TAKE_PTR(rr
);
2284 message_parts
[n_message_parts
++] = TAKE_PTR(wr
);
2289 k
= strdup("no IO");
2295 message_parts
[n_message_parts
++] = k
;
2299 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++) {
2300 char buf
[FORMAT_BYTES_MAX
] = "";
2301 uint64_t value
= UINT64_MAX
;
2303 assert(ip_fields
[m
]);
2305 (void) unit_get_ip_accounting(u
, m
, &value
);
2306 if (value
== UINT64_MAX
)
2309 have_ip_accounting
= true;
2313 /* Format IP accounting data for inclusion in the structured log message */
2314 if (asprintf(&t
, "%s=%" PRIu64
, ip_fields
[m
], value
) < 0) {
2318 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2320 /* Format the IP accounting data for inclusion in the human language message string, but only for the
2321 * bytes counters (and not for the packets counters) */
2322 if (m
== CGROUP_IP_INGRESS_BYTES
) {
2324 igress
= strjoin("received ", format_bytes(buf
, sizeof(buf
), value
), " IP traffic");
2329 } else if (m
== CGROUP_IP_EGRESS_BYTES
) {
2331 egress
= strjoin("sent ", format_bytes(buf
, sizeof(buf
), value
), " IP traffic");
2338 if (IN_SET(m
, CGROUP_IP_INGRESS_BYTES
, CGROUP_IP_EGRESS_BYTES
))
2339 log_level
= raise_level(log_level
,
2340 value
> MENTIONWORTHY_IP_BYTES
,
2341 value
> NOTICEWORTHY_IP_BYTES
);
2344 if (have_ip_accounting
) {
2347 message_parts
[n_message_parts
++] = TAKE_PTR(igress
);
2349 message_parts
[n_message_parts
++] = TAKE_PTR(egress
);
2354 k
= strdup("no IP traffic");
2360 message_parts
[n_message_parts
++] = k
;
2364 /* Is there any accounting data available at all? */
2370 if (n_message_parts
== 0)
2371 t
= strjoina("MESSAGE=", u
->id
, ": Completed.");
2373 _cleanup_free_
char *joined
;
2375 message_parts
[n_message_parts
] = NULL
;
2377 joined
= strv_join(message_parts
, ", ");
2383 joined
[0] = ascii_toupper(joined
[0]);
2384 t
= strjoina("MESSAGE=", u
->id
, ": ", joined
, ".");
2387 /* The following four fields we allocate on the stack or are static strings, we hence don't want to free them,
2388 * and hence don't increase n_iovec for them */
2389 iovec
[n_iovec
] = IOVEC_MAKE_STRING(t
);
2390 iovec
[n_iovec
+ 1] = IOVEC_MAKE_STRING("MESSAGE_ID=" SD_MESSAGE_UNIT_RESOURCES_STR
);
2392 t
= strjoina(u
->manager
->unit_log_field
, u
->id
);
2393 iovec
[n_iovec
+ 2] = IOVEC_MAKE_STRING(t
);
2395 t
= strjoina(u
->manager
->invocation_log_field
, u
->invocation_id_string
);
2396 iovec
[n_iovec
+ 3] = IOVEC_MAKE_STRING(t
);
2398 log_struct_iovec(log_level
, iovec
, n_iovec
+ 4);
2402 for (i
= 0; i
< n_message_parts
; i
++)
2403 free(message_parts
[i
]);
2405 for (i
= 0; i
< n_iovec
; i
++)
2406 free(iovec
[i
].iov_base
);
2412 static void unit_update_on_console(Unit
*u
) {
2417 b
= unit_needs_console(u
);
2418 if (u
->on_console
== b
)
2423 manager_ref_console(u
->manager
);
2425 manager_unref_console(u
->manager
);
2428 static void unit_emit_audit_start(Unit
*u
) {
2431 if (u
->type
!= UNIT_SERVICE
)
2434 /* Write audit record if we have just finished starting up */
2435 manager_send_unit_audit(u
->manager
, u
, AUDIT_SERVICE_START
, true);
2439 static void unit_emit_audit_stop(Unit
*u
, UnitActiveState state
) {
2442 if (u
->type
!= UNIT_SERVICE
)
2446 /* Write audit record if we have just finished shutting down */
2447 manager_send_unit_audit(u
->manager
, u
, AUDIT_SERVICE_STOP
, state
== UNIT_INACTIVE
);
2448 u
->in_audit
= false;
2450 /* Hmm, if there was no start record written write it now, so that we always have a nice pair */
2451 manager_send_unit_audit(u
->manager
, u
, AUDIT_SERVICE_START
, state
== UNIT_INACTIVE
);
2453 if (state
== UNIT_INACTIVE
)
2454 manager_send_unit_audit(u
->manager
, u
, AUDIT_SERVICE_STOP
, true);
2458 static bool unit_process_job(Job
*j
, UnitActiveState ns
, UnitNotifyFlags flags
) {
2459 bool unexpected
= false;
2464 if (j
->state
== JOB_WAITING
)
2466 /* So we reached a different state for this job. Let's see if we can run it now if it failed previously
2468 job_add_to_run_queue(j
);
2470 /* Let's check whether the unit's new state constitutes a finished job, or maybe contradicts a running job and
2471 * hence needs to invalidate jobs. */
2476 case JOB_VERIFY_ACTIVE
:
2478 if (UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2479 job_finish_and_invalidate(j
, JOB_DONE
, true, false);
2480 else if (j
->state
== JOB_RUNNING
&& ns
!= UNIT_ACTIVATING
) {
2483 if (UNIT_IS_INACTIVE_OR_FAILED(ns
)) {
2484 if (ns
== UNIT_FAILED
)
2485 result
= JOB_FAILED
;
2486 else if (FLAGS_SET(flags
, UNIT_NOTIFY_SKIP_CONDITION
))
2487 result
= JOB_SKIPPED
;
2491 job_finish_and_invalidate(j
, result
, true, false);
2498 case JOB_RELOAD_OR_START
:
2499 case JOB_TRY_RELOAD
:
2501 if (j
->state
== JOB_RUNNING
) {
2502 if (ns
== UNIT_ACTIVE
)
2503 job_finish_and_invalidate(j
, (flags
& UNIT_NOTIFY_RELOAD_FAILURE
) ? JOB_FAILED
: JOB_DONE
, true, false);
2504 else if (!IN_SET(ns
, UNIT_ACTIVATING
, UNIT_RELOADING
)) {
2507 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2508 job_finish_and_invalidate(j
, ns
== UNIT_FAILED
? JOB_FAILED
: JOB_DONE
, true, false);
2516 case JOB_TRY_RESTART
:
2518 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2519 job_finish_and_invalidate(j
, JOB_DONE
, true, false);
2520 else if (j
->state
== JOB_RUNNING
&& ns
!= UNIT_DEACTIVATING
) {
2522 job_finish_and_invalidate(j
, JOB_FAILED
, true, false);
2528 assert_not_reached("Job type unknown");
2534 void unit_notify(Unit
*u
, UnitActiveState os
, UnitActiveState ns
, UnitNotifyFlags flags
) {
2539 assert(os
< _UNIT_ACTIVE_STATE_MAX
);
2540 assert(ns
< _UNIT_ACTIVE_STATE_MAX
);
2542 /* Note that this is called for all low-level state changes, even if they might map to the same high-level
2543 * UnitActiveState! That means that ns == os is an expected behavior here. For example: if a mount point is
2544 * remounted this function will be called too! */
2548 /* Let's enqueue the change signal early. In case this unit has a job associated we want that this unit is in
2549 * the bus queue, so that any job change signal queued will force out the unit change signal first. */
2550 unit_add_to_dbus_queue(u
);
2552 /* Update timestamps for state changes */
2553 if (!MANAGER_IS_RELOADING(m
)) {
2554 dual_timestamp_get(&u
->state_change_timestamp
);
2556 if (UNIT_IS_INACTIVE_OR_FAILED(os
) && !UNIT_IS_INACTIVE_OR_FAILED(ns
))
2557 u
->inactive_exit_timestamp
= u
->state_change_timestamp
;
2558 else if (!UNIT_IS_INACTIVE_OR_FAILED(os
) && UNIT_IS_INACTIVE_OR_FAILED(ns
))
2559 u
->inactive_enter_timestamp
= u
->state_change_timestamp
;
2561 if (!UNIT_IS_ACTIVE_OR_RELOADING(os
) && UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2562 u
->active_enter_timestamp
= u
->state_change_timestamp
;
2563 else if (UNIT_IS_ACTIVE_OR_RELOADING(os
) && !UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2564 u
->active_exit_timestamp
= u
->state_change_timestamp
;
2567 /* Keep track of failed units */
2568 (void) manager_update_failed_units(m
, u
, ns
== UNIT_FAILED
);
2570 /* Make sure the cgroup and state files are always removed when we become inactive */
2571 if (UNIT_IS_INACTIVE_OR_FAILED(ns
)) {
2572 unit_prune_cgroup(u
);
2573 unit_unlink_state_files(u
);
2576 unit_update_on_console(u
);
2578 if (!MANAGER_IS_RELOADING(m
)) {
2581 /* Let's propagate state changes to the job */
2583 unexpected
= unit_process_job(u
->job
, ns
, flags
);
2587 /* If this state change happened without being requested by a job, then let's retroactively start or
2588 * stop dependencies. We skip that step when deserializing, since we don't want to create any
2589 * additional jobs just because something is already activated. */
2592 if (UNIT_IS_INACTIVE_OR_FAILED(os
) && UNIT_IS_ACTIVE_OR_ACTIVATING(ns
))
2593 retroactively_start_dependencies(u
);
2594 else if (UNIT_IS_ACTIVE_OR_ACTIVATING(os
) && UNIT_IS_INACTIVE_OR_DEACTIVATING(ns
))
2595 retroactively_stop_dependencies(u
);
2598 /* stop unneeded units regardless if going down was expected or not */
2599 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2600 check_unneeded_dependencies(u
);
2602 if (ns
!= os
&& ns
== UNIT_FAILED
) {
2603 log_unit_debug(u
, "Unit entered failed state.");
2605 if (!(flags
& UNIT_NOTIFY_WILL_AUTO_RESTART
))
2606 unit_start_on_failure(u
);
2609 if (UNIT_IS_ACTIVE_OR_RELOADING(ns
) && !UNIT_IS_ACTIVE_OR_RELOADING(os
)) {
2610 /* This unit just finished starting up */
2612 unit_emit_audit_start(u
);
2613 manager_send_unit_plymouth(m
, u
);
2616 if (UNIT_IS_INACTIVE_OR_FAILED(ns
) && !UNIT_IS_INACTIVE_OR_FAILED(os
)) {
2617 /* This unit just stopped/failed. */
2619 unit_emit_audit_stop(u
, ns
);
2620 unit_log_resources(u
);
2624 manager_recheck_journal(m
);
2625 manager_recheck_dbus(m
);
2627 unit_trigger_notify(u
);
2629 if (!MANAGER_IS_RELOADING(m
)) {
2630 /* Maybe we finished startup and are now ready for being stopped because unneeded? */
2631 unit_submit_to_stop_when_unneeded_queue(u
);
2633 /* Maybe we finished startup, but something we needed has vanished? Let's die then. (This happens when
2634 * something BindsTo= to a Type=oneshot unit, as these units go directly from starting to inactive,
2635 * without ever entering started.) */
2636 unit_check_binds_to(u
);
2638 if (os
!= UNIT_FAILED
&& ns
== UNIT_FAILED
) {
2639 reason
= strjoina("unit ", u
->id
, " failed");
2640 emergency_action(m
, u
->failure_action
, 0, u
->reboot_arg
, unit_failure_action_exit_status(u
), reason
);
2641 } else if (!UNIT_IS_INACTIVE_OR_FAILED(os
) && ns
== UNIT_INACTIVE
) {
2642 reason
= strjoina("unit ", u
->id
, " succeeded");
2643 emergency_action(m
, u
->success_action
, 0, u
->reboot_arg
, unit_success_action_exit_status(u
), reason
);
2647 unit_add_to_gc_queue(u
);
2650 int unit_watch_pid(Unit
*u
, pid_t pid
, bool exclusive
) {
2654 assert(pid_is_valid(pid
));
2656 /* Watch a specific PID */
2658 /* Caller might be sure that this PID belongs to this unit only. Let's take this
2659 * opportunity to remove any stalled references to this PID as they can be created
2660 * easily (when watching a process which is not our direct child). */
2662 manager_unwatch_pid(u
->manager
, pid
);
2664 r
= set_ensure_allocated(&u
->pids
, NULL
);
2668 r
= hashmap_ensure_allocated(&u
->manager
->watch_pids
, NULL
);
2672 /* First try, let's add the unit keyed by "pid". */
2673 r
= hashmap_put(u
->manager
->watch_pids
, PID_TO_PTR(pid
), u
);
2679 /* OK, the "pid" key is already assigned to a different unit. Let's see if the "-pid" key (which points
2680 * to an array of Units rather than just a Unit), lists us already. */
2682 array
= hashmap_get(u
->manager
->watch_pids
, PID_TO_PTR(-pid
));
2684 for (; array
[n
]; n
++)
2688 if (found
) /* Found it already? if so, do nothing */
2693 /* Allocate a new array */
2694 new_array
= new(Unit
*, n
+ 2);
2698 memcpy_safe(new_array
, array
, sizeof(Unit
*) * n
);
2700 new_array
[n
+1] = NULL
;
2702 /* Add or replace the old array */
2703 r
= hashmap_replace(u
->manager
->watch_pids
, PID_TO_PTR(-pid
), new_array
);
2714 r
= set_put(u
->pids
, PID_TO_PTR(pid
));
2721 void unit_unwatch_pid(Unit
*u
, pid_t pid
) {
2725 assert(pid_is_valid(pid
));
2727 /* First let's drop the unit in case it's keyed as "pid". */
2728 (void) hashmap_remove_value(u
->manager
->watch_pids
, PID_TO_PTR(pid
), u
);
2730 /* Then, let's also drop the unit, in case it's in the array keyed by -pid */
2731 array
= hashmap_get(u
->manager
->watch_pids
, PID_TO_PTR(-pid
));
2735 /* Let's iterate through the array, dropping our own entry */
2736 for (n
= 0; array
[n
]; n
++)
2738 array
[m
++] = array
[n
];
2742 /* The array is now empty, remove the entire entry */
2743 assert(hashmap_remove(u
->manager
->watch_pids
, PID_TO_PTR(-pid
)) == array
);
2748 (void) set_remove(u
->pids
, PID_TO_PTR(pid
));
2751 void unit_unwatch_all_pids(Unit
*u
) {
2754 while (!set_isempty(u
->pids
))
2755 unit_unwatch_pid(u
, PTR_TO_PID(set_first(u
->pids
)));
2757 u
->pids
= set_free(u
->pids
);
2760 static void unit_tidy_watch_pids(Unit
*u
) {
2761 pid_t except1
, except2
;
2767 /* Cleans dead PIDs from our list */
2769 except1
= unit_main_pid(u
);
2770 except2
= unit_control_pid(u
);
2772 SET_FOREACH(e
, u
->pids
, i
) {
2773 pid_t pid
= PTR_TO_PID(e
);
2775 if (pid
== except1
|| pid
== except2
)
2778 if (!pid_is_unwaited(pid
))
2779 unit_unwatch_pid(u
, pid
);
2783 static int on_rewatch_pids_event(sd_event_source
*s
, void *userdata
) {
2789 unit_tidy_watch_pids(u
);
2790 unit_watch_all_pids(u
);
2792 /* If the PID set is empty now, then let's finish this off. */
2793 unit_synthesize_cgroup_empty_event(u
);
2798 int unit_enqueue_rewatch_pids(Unit
*u
) {
2803 if (!u
->cgroup_path
)
2806 r
= cg_unified_controller(SYSTEMD_CGROUP_CONTROLLER
);
2809 if (r
> 0) /* On unified we can use proper notifications */
2812 /* Enqueues a low-priority job that will clean up dead PIDs from our list of PIDs to watch and subscribe to new
2813 * PIDs that might have appeared. We do this in a delayed job because the work might be quite slow, as it
2814 * involves issuing kill(pid, 0) on all processes we watch. */
2816 if (!u
->rewatch_pids_event_source
) {
2817 _cleanup_(sd_event_source_unrefp
) sd_event_source
*s
= NULL
;
2819 r
= sd_event_add_defer(u
->manager
->event
, &s
, on_rewatch_pids_event
, u
);
2821 return log_error_errno(r
, "Failed to allocate event source for tidying watched PIDs: %m");
2823 r
= sd_event_source_set_priority(s
, SD_EVENT_PRIORITY_IDLE
);
2825 return log_error_errno(r
, "Failed to adjust priority of event source for tidying watched PIDs: %m");
2827 (void) sd_event_source_set_description(s
, "tidy-watch-pids");
2829 u
->rewatch_pids_event_source
= TAKE_PTR(s
);
2832 r
= sd_event_source_set_enabled(u
->rewatch_pids_event_source
, SD_EVENT_ONESHOT
);
2834 return log_error_errno(r
, "Failed to enable event source for tidying watched PIDs: %m");
2839 void unit_dequeue_rewatch_pids(Unit
*u
) {
2843 if (!u
->rewatch_pids_event_source
)
2846 r
= sd_event_source_set_enabled(u
->rewatch_pids_event_source
, SD_EVENT_OFF
);
2848 log_warning_errno(r
, "Failed to disable event source for tidying watched PIDs, ignoring: %m");
2850 u
->rewatch_pids_event_source
= sd_event_source_unref(u
->rewatch_pids_event_source
);
2853 bool unit_job_is_applicable(Unit
*u
, JobType j
) {
2855 assert(j
>= 0 && j
< _JOB_TYPE_MAX
);
2859 case JOB_VERIFY_ACTIVE
:
2862 /* Note that we don't check unit_can_start() here. That's because .device units and suchlike are not
2863 * startable by us but may appear due to external events, and it thus makes sense to permit enqueing
2868 /* Similar as above. However, perpetual units can never be stopped (neither explicitly nor due to
2869 * external events), hence it makes no sense to permit enqueing such a request either. */
2870 return !u
->perpetual
;
2873 case JOB_TRY_RESTART
:
2874 return unit_can_stop(u
) && unit_can_start(u
);
2877 case JOB_TRY_RELOAD
:
2878 return unit_can_reload(u
);
2880 case JOB_RELOAD_OR_START
:
2881 return unit_can_reload(u
) && unit_can_start(u
);
2884 assert_not_reached("Invalid job type");
2888 static void maybe_warn_about_dependency(Unit
*u
, const char *other
, UnitDependency dependency
) {
2891 /* Only warn about some unit types */
2892 if (!IN_SET(dependency
, UNIT_CONFLICTS
, UNIT_CONFLICTED_BY
, UNIT_BEFORE
, UNIT_AFTER
, UNIT_ON_FAILURE
, UNIT_TRIGGERS
, UNIT_TRIGGERED_BY
))
2895 if (streq_ptr(u
->id
, other
))
2896 log_unit_warning(u
, "Dependency %s=%s dropped", unit_dependency_to_string(dependency
), u
->id
);
2898 log_unit_warning(u
, "Dependency %s=%s dropped, merged into %s", unit_dependency_to_string(dependency
), strna(other
), u
->id
);
2901 static int unit_add_dependency_hashmap(
2904 UnitDependencyMask origin_mask
,
2905 UnitDependencyMask destination_mask
) {
2907 UnitDependencyInfo info
;
2912 assert(origin_mask
< _UNIT_DEPENDENCY_MASK_FULL
);
2913 assert(destination_mask
< _UNIT_DEPENDENCY_MASK_FULL
);
2914 assert(origin_mask
> 0 || destination_mask
> 0);
2916 r
= hashmap_ensure_allocated(h
, NULL
);
2920 assert_cc(sizeof(void*) == sizeof(info
));
2922 info
.data
= hashmap_get(*h
, other
);
2924 /* Entry already exists. Add in our mask. */
2926 if (FLAGS_SET(origin_mask
, info
.origin_mask
) &&
2927 FLAGS_SET(destination_mask
, info
.destination_mask
))
2930 info
.origin_mask
|= origin_mask
;
2931 info
.destination_mask
|= destination_mask
;
2933 r
= hashmap_update(*h
, other
, info
.data
);
2935 info
= (UnitDependencyInfo
) {
2936 .origin_mask
= origin_mask
,
2937 .destination_mask
= destination_mask
,
2940 r
= hashmap_put(*h
, other
, info
.data
);
2948 int unit_add_dependency(
2953 UnitDependencyMask mask
) {
2955 static const UnitDependency inverse_table
[_UNIT_DEPENDENCY_MAX
] = {
2956 [UNIT_REQUIRES
] = UNIT_REQUIRED_BY
,
2957 [UNIT_WANTS
] = UNIT_WANTED_BY
,
2958 [UNIT_REQUISITE
] = UNIT_REQUISITE_OF
,
2959 [UNIT_BINDS_TO
] = UNIT_BOUND_BY
,
2960 [UNIT_PART_OF
] = UNIT_CONSISTS_OF
,
2961 [UNIT_REQUIRED_BY
] = UNIT_REQUIRES
,
2962 [UNIT_REQUISITE_OF
] = UNIT_REQUISITE
,
2963 [UNIT_WANTED_BY
] = UNIT_WANTS
,
2964 [UNIT_BOUND_BY
] = UNIT_BINDS_TO
,
2965 [UNIT_CONSISTS_OF
] = UNIT_PART_OF
,
2966 [UNIT_CONFLICTS
] = UNIT_CONFLICTED_BY
,
2967 [UNIT_CONFLICTED_BY
] = UNIT_CONFLICTS
,
2968 [UNIT_BEFORE
] = UNIT_AFTER
,
2969 [UNIT_AFTER
] = UNIT_BEFORE
,
2970 [UNIT_ON_FAILURE
] = _UNIT_DEPENDENCY_INVALID
,
2971 [UNIT_REFERENCES
] = UNIT_REFERENCED_BY
,
2972 [UNIT_REFERENCED_BY
] = UNIT_REFERENCES
,
2973 [UNIT_TRIGGERS
] = UNIT_TRIGGERED_BY
,
2974 [UNIT_TRIGGERED_BY
] = UNIT_TRIGGERS
,
2975 [UNIT_PROPAGATES_RELOAD_TO
] = UNIT_RELOAD_PROPAGATED_FROM
,
2976 [UNIT_RELOAD_PROPAGATED_FROM
] = UNIT_PROPAGATES_RELOAD_TO
,
2977 [UNIT_JOINS_NAMESPACE_OF
] = UNIT_JOINS_NAMESPACE_OF
,
2979 Unit
*original_u
= u
, *original_other
= other
;
2983 assert(d
>= 0 && d
< _UNIT_DEPENDENCY_MAX
);
2986 u
= unit_follow_merge(u
);
2987 other
= unit_follow_merge(other
);
2989 /* We won't allow dependencies on ourselves. We will not
2990 * consider them an error however. */
2992 maybe_warn_about_dependency(original_u
, original_other
->id
, d
);
2996 if (d
== UNIT_AFTER
&& UNIT_VTABLE(u
)->refuse_after
) {
2997 log_unit_warning(u
, "Requested dependency After=%s ignored (%s units cannot be delayed).", other
->id
, unit_type_to_string(u
->type
));
3001 if (d
== UNIT_BEFORE
&& UNIT_VTABLE(other
)->refuse_after
) {
3002 log_unit_warning(u
, "Requested dependency Before=%s ignored (%s units cannot be delayed).", other
->id
, unit_type_to_string(other
->type
));
3006 if (d
== UNIT_ON_FAILURE
&& !UNIT_VTABLE(u
)->can_fail
) {
3007 log_unit_warning(u
, "Requested dependency OnFailure=%s ignored (%s units cannot fail).", other
->id
, unit_type_to_string(u
->type
));
3011 if (d
== UNIT_TRIGGERS
&& !UNIT_VTABLE(u
)->can_trigger
)
3012 return log_unit_error_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
3013 "Requested dependency Triggers=%s refused (%s units cannot trigger other units).", other
->id
, unit_type_to_string(u
->type
));
3014 if (d
== UNIT_TRIGGERED_BY
&& !UNIT_VTABLE(other
)->can_trigger
)
3015 return log_unit_error_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
3016 "Requested dependency TriggeredBy=%s refused (%s units cannot trigger other units).", other
->id
, unit_type_to_string(other
->type
));
3018 r
= unit_add_dependency_hashmap(u
->dependencies
+ d
, other
, mask
, 0);
3022 if (inverse_table
[d
] != _UNIT_DEPENDENCY_INVALID
&& inverse_table
[d
] != d
) {
3023 r
= unit_add_dependency_hashmap(other
->dependencies
+ inverse_table
[d
], u
, 0, mask
);
3028 if (add_reference
) {
3029 r
= unit_add_dependency_hashmap(u
->dependencies
+ UNIT_REFERENCES
, other
, mask
, 0);
3033 r
= unit_add_dependency_hashmap(other
->dependencies
+ UNIT_REFERENCED_BY
, u
, 0, mask
);
3038 unit_add_to_dbus_queue(u
);
3042 int unit_add_two_dependencies(Unit
*u
, UnitDependency d
, UnitDependency e
, Unit
*other
, bool add_reference
, UnitDependencyMask mask
) {
3047 r
= unit_add_dependency(u
, d
, other
, add_reference
, mask
);
3051 return unit_add_dependency(u
, e
, other
, add_reference
, mask
);
3054 static int resolve_template(Unit
*u
, const char *name
, char **buf
, const char **ret
) {
3062 if (!unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
3069 r
= unit_name_replace_instance(name
, u
->instance
, buf
);
3071 _cleanup_free_
char *i
= NULL
;
3073 r
= unit_name_to_prefix(u
->id
, &i
);
3077 r
= unit_name_replace_instance(name
, i
, buf
);
3086 int unit_add_dependency_by_name(Unit
*u
, UnitDependency d
, const char *name
, bool add_reference
, UnitDependencyMask mask
) {
3087 _cleanup_free_
char *buf
= NULL
;
3094 r
= resolve_template(u
, name
, &buf
, &name
);
3098 r
= manager_load_unit(u
->manager
, name
, NULL
, NULL
, &other
);
3102 return unit_add_dependency(u
, d
, other
, add_reference
, mask
);
3105 int unit_add_two_dependencies_by_name(Unit
*u
, UnitDependency d
, UnitDependency e
, const char *name
, bool add_reference
, UnitDependencyMask mask
) {
3106 _cleanup_free_
char *buf
= NULL
;
3113 r
= resolve_template(u
, name
, &buf
, &name
);
3117 r
= manager_load_unit(u
->manager
, name
, NULL
, NULL
, &other
);
3121 return unit_add_two_dependencies(u
, d
, e
, other
, add_reference
, mask
);
3124 int set_unit_path(const char *p
) {
3125 /* This is mostly for debug purposes */
3126 if (setenv("SYSTEMD_UNIT_PATH", p
, 1) < 0)
3132 char *unit_dbus_path(Unit
*u
) {
3138 return unit_dbus_path_from_name(u
->id
);
3141 char *unit_dbus_path_invocation_id(Unit
*u
) {
3144 if (sd_id128_is_null(u
->invocation_id
))
3147 return unit_dbus_path_from_name(u
->invocation_id_string
);
3150 int unit_set_slice(Unit
*u
, Unit
*slice
) {
3154 /* Sets the unit slice if it has not been set before. Is extra
3155 * careful, to only allow this for units that actually have a
3156 * cgroup context. Also, we don't allow to set this for slices
3157 * (since the parent slice is derived from the name). Make
3158 * sure the unit we set is actually a slice. */
3160 if (!UNIT_HAS_CGROUP_CONTEXT(u
))
3163 if (u
->type
== UNIT_SLICE
)
3166 if (unit_active_state(u
) != UNIT_INACTIVE
)
3169 if (slice
->type
!= UNIT_SLICE
)
3172 if (unit_has_name(u
, SPECIAL_INIT_SCOPE
) &&
3173 !unit_has_name(slice
, SPECIAL_ROOT_SLICE
))
3176 if (UNIT_DEREF(u
->slice
) == slice
)
3179 /* Disallow slice changes if @u is already bound to cgroups */
3180 if (UNIT_ISSET(u
->slice
) && u
->cgroup_realized
)
3183 unit_ref_set(&u
->slice
, u
, slice
);
3187 int unit_set_default_slice(Unit
*u
) {
3188 const char *slice_name
;
3194 if (UNIT_ISSET(u
->slice
))
3198 _cleanup_free_
char *prefix
= NULL
, *escaped
= NULL
;
3200 /* Implicitly place all instantiated units in their
3201 * own per-template slice */
3203 r
= unit_name_to_prefix(u
->id
, &prefix
);
3207 /* The prefix is already escaped, but it might include
3208 * "-" which has a special meaning for slice units,
3209 * hence escape it here extra. */
3210 escaped
= unit_name_escape(prefix
);
3214 if (MANAGER_IS_SYSTEM(u
->manager
))
3215 slice_name
= strjoina("system-", escaped
, ".slice");
3217 slice_name
= strjoina(escaped
, ".slice");
3220 MANAGER_IS_SYSTEM(u
->manager
) && !unit_has_name(u
, SPECIAL_INIT_SCOPE
)
3221 ? SPECIAL_SYSTEM_SLICE
3222 : SPECIAL_ROOT_SLICE
;
3224 r
= manager_load_unit(u
->manager
, slice_name
, NULL
, NULL
, &slice
);
3228 return unit_set_slice(u
, slice
);
3231 const char *unit_slice_name(Unit
*u
) {
3234 if (!UNIT_ISSET(u
->slice
))
3237 return UNIT_DEREF(u
->slice
)->id
;
3240 int unit_load_related_unit(Unit
*u
, const char *type
, Unit
**_found
) {
3241 _cleanup_free_
char *t
= NULL
;
3248 r
= unit_name_change_suffix(u
->id
, type
, &t
);
3251 if (unit_has_name(u
, t
))
3254 r
= manager_load_unit(u
->manager
, t
, NULL
, NULL
, _found
);
3255 assert(r
< 0 || *_found
!= u
);
3259 static int signal_name_owner_changed(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
3260 const char *new_owner
;
3267 r
= sd_bus_message_read(message
, "sss", NULL
, NULL
, &new_owner
);
3269 bus_log_parse_error(r
);
3273 if (UNIT_VTABLE(u
)->bus_name_owner_change
)
3274 UNIT_VTABLE(u
)->bus_name_owner_change(u
, empty_to_null(new_owner
));
3279 static int get_name_owner_handler(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
3280 const sd_bus_error
*e
;
3281 const char *new_owner
;
3288 u
->get_name_owner_slot
= sd_bus_slot_unref(u
->get_name_owner_slot
);
3290 e
= sd_bus_message_get_error(message
);
3292 if (!sd_bus_error_has_name(e
, "org.freedesktop.DBus.Error.NameHasNoOwner"))
3293 log_unit_error(u
, "Unexpected error response from GetNameOwner(): %s", e
->message
);
3297 r
= sd_bus_message_read(message
, "s", &new_owner
);
3299 return bus_log_parse_error(r
);
3301 assert(!isempty(new_owner
));
3304 if (UNIT_VTABLE(u
)->bus_name_owner_change
)
3305 UNIT_VTABLE(u
)->bus_name_owner_change(u
, new_owner
);
3310 int unit_install_bus_match(Unit
*u
, sd_bus
*bus
, const char *name
) {
3318 if (u
->match_bus_slot
|| u
->get_name_owner_slot
)
3321 match
= strjoina("type='signal',"
3322 "sender='org.freedesktop.DBus',"
3323 "path='/org/freedesktop/DBus',"
3324 "interface='org.freedesktop.DBus',"
3325 "member='NameOwnerChanged',"
3326 "arg0='", name
, "'");
3328 r
= sd_bus_add_match_async(bus
, &u
->match_bus_slot
, match
, signal_name_owner_changed
, NULL
, u
);
3332 r
= sd_bus_call_method_async(
3334 &u
->get_name_owner_slot
,
3335 "org.freedesktop.DBus",
3336 "/org/freedesktop/DBus",
3337 "org.freedesktop.DBus",
3339 get_name_owner_handler
,
3343 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3347 log_unit_debug(u
, "Watching D-Bus name '%s'.", name
);
3351 int unit_watch_bus_name(Unit
*u
, const char *name
) {
3357 /* Watch a specific name on the bus. We only support one unit
3358 * watching each name for now. */
3360 if (u
->manager
->api_bus
) {
3361 /* If the bus is already available, install the match directly.
3362 * Otherwise, just put the name in the list. bus_setup_api() will take care later. */
3363 r
= unit_install_bus_match(u
, u
->manager
->api_bus
, name
);
3365 return log_warning_errno(r
, "Failed to subscribe to NameOwnerChanged signal for '%s': %m", name
);
3368 r
= hashmap_put(u
->manager
->watch_bus
, name
, u
);
3370 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3371 u
->get_name_owner_slot
= sd_bus_slot_unref(u
->get_name_owner_slot
);
3372 return log_warning_errno(r
, "Failed to put bus name to hashmap: %m");
3378 void unit_unwatch_bus_name(Unit
*u
, const char *name
) {
3382 (void) hashmap_remove_value(u
->manager
->watch_bus
, name
, u
);
3383 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3384 u
->get_name_owner_slot
= sd_bus_slot_unref(u
->get_name_owner_slot
);
3387 bool unit_can_serialize(Unit
*u
) {
3390 return UNIT_VTABLE(u
)->serialize
&& UNIT_VTABLE(u
)->deserialize_item
;
3393 static int serialize_cgroup_mask(FILE *f
, const char *key
, CGroupMask mask
) {
3394 _cleanup_free_
char *s
= NULL
;
3403 r
= cg_mask_to_string(mask
, &s
);
3405 return log_error_errno(r
, "Failed to format cgroup mask: %m");
3407 return serialize_item(f
, key
, s
);
3410 static const char *const ip_accounting_metric_field
[_CGROUP_IP_ACCOUNTING_METRIC_MAX
] = {
3411 [CGROUP_IP_INGRESS_BYTES
] = "ip-accounting-ingress-bytes",
3412 [CGROUP_IP_INGRESS_PACKETS
] = "ip-accounting-ingress-packets",
3413 [CGROUP_IP_EGRESS_BYTES
] = "ip-accounting-egress-bytes",
3414 [CGROUP_IP_EGRESS_PACKETS
] = "ip-accounting-egress-packets",
3417 static const char *const io_accounting_metric_field_base
[_CGROUP_IO_ACCOUNTING_METRIC_MAX
] = {
3418 [CGROUP_IO_READ_BYTES
] = "io-accounting-read-bytes-base",
3419 [CGROUP_IO_WRITE_BYTES
] = "io-accounting-write-bytes-base",
3420 [CGROUP_IO_READ_OPERATIONS
] = "io-accounting-read-operations-base",
3421 [CGROUP_IO_WRITE_OPERATIONS
] = "io-accounting-write-operations-base",
3424 static const char *const io_accounting_metric_field_last
[_CGROUP_IO_ACCOUNTING_METRIC_MAX
] = {
3425 [CGROUP_IO_READ_BYTES
] = "io-accounting-read-bytes-last",
3426 [CGROUP_IO_WRITE_BYTES
] = "io-accounting-write-bytes-last",
3427 [CGROUP_IO_READ_OPERATIONS
] = "io-accounting-read-operations-last",
3428 [CGROUP_IO_WRITE_OPERATIONS
] = "io-accounting-write-operations-last",
3431 int unit_serialize(Unit
*u
, FILE *f
, FDSet
*fds
, bool serialize_jobs
) {
3432 CGroupIPAccountingMetric m
;
3439 if (unit_can_serialize(u
)) {
3440 r
= UNIT_VTABLE(u
)->serialize(u
, f
, fds
);
3445 (void) serialize_dual_timestamp(f
, "state-change-timestamp", &u
->state_change_timestamp
);
3447 (void) serialize_dual_timestamp(f
, "inactive-exit-timestamp", &u
->inactive_exit_timestamp
);
3448 (void) serialize_dual_timestamp(f
, "active-enter-timestamp", &u
->active_enter_timestamp
);
3449 (void) serialize_dual_timestamp(f
, "active-exit-timestamp", &u
->active_exit_timestamp
);
3450 (void) serialize_dual_timestamp(f
, "inactive-enter-timestamp", &u
->inactive_enter_timestamp
);
3452 (void) serialize_dual_timestamp(f
, "condition-timestamp", &u
->condition_timestamp
);
3453 (void) serialize_dual_timestamp(f
, "assert-timestamp", &u
->assert_timestamp
);
3455 if (dual_timestamp_is_set(&u
->condition_timestamp
))
3456 (void) serialize_bool(f
, "condition-result", u
->condition_result
);
3458 if (dual_timestamp_is_set(&u
->assert_timestamp
))
3459 (void) serialize_bool(f
, "assert-result", u
->assert_result
);
3461 (void) serialize_bool(f
, "transient", u
->transient
);
3462 (void) serialize_bool(f
, "in-audit", u
->in_audit
);
3464 (void) serialize_bool(f
, "exported-invocation-id", u
->exported_invocation_id
);
3465 (void) serialize_bool(f
, "exported-log-level-max", u
->exported_log_level_max
);
3466 (void) serialize_bool(f
, "exported-log-extra-fields", u
->exported_log_extra_fields
);
3467 (void) serialize_bool(f
, "exported-log-rate-limit-interval", u
->exported_log_ratelimit_interval
);
3468 (void) serialize_bool(f
, "exported-log-rate-limit-burst", u
->exported_log_ratelimit_burst
);
3470 (void) serialize_item_format(f
, "cpu-usage-base", "%" PRIu64
, u
->cpu_usage_base
);
3471 if (u
->cpu_usage_last
!= NSEC_INFINITY
)
3472 (void) serialize_item_format(f
, "cpu-usage-last", "%" PRIu64
, u
->cpu_usage_last
);
3474 if (u
->oom_kill_last
> 0)
3475 (void) serialize_item_format(f
, "oom-kill-last", "%" PRIu64
, u
->oom_kill_last
);
3477 for (CGroupIOAccountingMetric im
= 0; im
< _CGROUP_IO_ACCOUNTING_METRIC_MAX
; im
++) {
3478 (void) serialize_item_format(f
, io_accounting_metric_field_base
[im
], "%" PRIu64
, u
->io_accounting_base
[im
]);
3480 if (u
->io_accounting_last
[im
] != UINT64_MAX
)
3481 (void) serialize_item_format(f
, io_accounting_metric_field_last
[im
], "%" PRIu64
, u
->io_accounting_last
[im
]);
3485 (void) serialize_item(f
, "cgroup", u
->cgroup_path
);
3487 (void) serialize_bool(f
, "cgroup-realized", u
->cgroup_realized
);
3488 (void) serialize_cgroup_mask(f
, "cgroup-realized-mask", u
->cgroup_realized_mask
);
3489 (void) serialize_cgroup_mask(f
, "cgroup-enabled-mask", u
->cgroup_enabled_mask
);
3490 (void) serialize_cgroup_mask(f
, "cgroup-invalidated-mask", u
->cgroup_invalidated_mask
);
3492 if (uid_is_valid(u
->ref_uid
))
3493 (void) serialize_item_format(f
, "ref-uid", UID_FMT
, u
->ref_uid
);
3494 if (gid_is_valid(u
->ref_gid
))
3495 (void) serialize_item_format(f
, "ref-gid", GID_FMT
, u
->ref_gid
);
3497 if (!sd_id128_is_null(u
->invocation_id
))
3498 (void) serialize_item_format(f
, "invocation-id", SD_ID128_FORMAT_STR
, SD_ID128_FORMAT_VAL(u
->invocation_id
));
3500 bus_track_serialize(u
->bus_track
, f
, "ref");
3502 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++) {
3505 r
= unit_get_ip_accounting(u
, m
, &v
);
3507 (void) serialize_item_format(f
, ip_accounting_metric_field
[m
], "%" PRIu64
, v
);
3510 if (serialize_jobs
) {
3513 job_serialize(u
->job
, f
);
3518 job_serialize(u
->nop_job
, f
);
3527 static int unit_deserialize_job(Unit
*u
, FILE *f
) {
3528 _cleanup_(job_freep
) Job
*j
= NULL
;
3538 r
= job_deserialize(j
, f
);
3542 r
= job_install_deserialized(j
);
3550 int unit_deserialize(Unit
*u
, FILE *f
, FDSet
*fds
) {
3558 _cleanup_free_
char *line
= NULL
;
3563 r
= read_line(f
, LONG_LINE_MAX
, &line
);
3565 return log_error_errno(r
, "Failed to read serialization line: %m");
3566 if (r
== 0) /* eof */
3570 if (isempty(l
)) /* End marker */
3573 k
= strcspn(l
, "=");
3581 if (streq(l
, "job")) {
3583 /* New-style serialized job */
3584 r
= unit_deserialize_job(u
, f
);
3587 } else /* Legacy for pre-44 */
3588 log_unit_warning(u
, "Update from too old systemd versions are unsupported, cannot deserialize job: %s", v
);
3590 } else if (streq(l
, "state-change-timestamp")) {
3591 (void) deserialize_dual_timestamp(v
, &u
->state_change_timestamp
);
3593 } else if (streq(l
, "inactive-exit-timestamp")) {
3594 (void) deserialize_dual_timestamp(v
, &u
->inactive_exit_timestamp
);
3596 } else if (streq(l
, "active-enter-timestamp")) {
3597 (void) deserialize_dual_timestamp(v
, &u
->active_enter_timestamp
);
3599 } else if (streq(l
, "active-exit-timestamp")) {
3600 (void) deserialize_dual_timestamp(v
, &u
->active_exit_timestamp
);
3602 } else if (streq(l
, "inactive-enter-timestamp")) {
3603 (void) deserialize_dual_timestamp(v
, &u
->inactive_enter_timestamp
);
3605 } else if (streq(l
, "condition-timestamp")) {
3606 (void) deserialize_dual_timestamp(v
, &u
->condition_timestamp
);
3608 } else if (streq(l
, "assert-timestamp")) {
3609 (void) deserialize_dual_timestamp(v
, &u
->assert_timestamp
);
3611 } else if (streq(l
, "condition-result")) {
3613 r
= parse_boolean(v
);
3615 log_unit_debug(u
, "Failed to parse condition result value %s, ignoring.", v
);
3617 u
->condition_result
= r
;
3621 } else if (streq(l
, "assert-result")) {
3623 r
= parse_boolean(v
);
3625 log_unit_debug(u
, "Failed to parse assert result value %s, ignoring.", v
);
3627 u
->assert_result
= r
;
3631 } else if (streq(l
, "transient")) {
3633 r
= parse_boolean(v
);
3635 log_unit_debug(u
, "Failed to parse transient bool %s, ignoring.", v
);
3641 } else if (streq(l
, "in-audit")) {
3643 r
= parse_boolean(v
);
3645 log_unit_debug(u
, "Failed to parse in-audit bool %s, ignoring.", v
);
3651 } else if (streq(l
, "exported-invocation-id")) {
3653 r
= parse_boolean(v
);
3655 log_unit_debug(u
, "Failed to parse exported invocation ID bool %s, ignoring.", v
);
3657 u
->exported_invocation_id
= r
;
3661 } else if (streq(l
, "exported-log-level-max")) {
3663 r
= parse_boolean(v
);
3665 log_unit_debug(u
, "Failed to parse exported log level max bool %s, ignoring.", v
);
3667 u
->exported_log_level_max
= r
;
3671 } else if (streq(l
, "exported-log-extra-fields")) {
3673 r
= parse_boolean(v
);
3675 log_unit_debug(u
, "Failed to parse exported log extra fields bool %s, ignoring.", v
);
3677 u
->exported_log_extra_fields
= r
;
3681 } else if (streq(l
, "exported-log-rate-limit-interval")) {
3683 r
= parse_boolean(v
);
3685 log_unit_debug(u
, "Failed to parse exported log rate limit interval %s, ignoring.", v
);
3687 u
->exported_log_ratelimit_interval
= r
;
3691 } else if (streq(l
, "exported-log-rate-limit-burst")) {
3693 r
= parse_boolean(v
);
3695 log_unit_debug(u
, "Failed to parse exported log rate limit burst %s, ignoring.", v
);
3697 u
->exported_log_ratelimit_burst
= r
;
3701 } else if (STR_IN_SET(l
, "cpu-usage-base", "cpuacct-usage-base")) {
3703 r
= safe_atou64(v
, &u
->cpu_usage_base
);
3705 log_unit_debug(u
, "Failed to parse CPU usage base %s, ignoring.", v
);
3709 } else if (streq(l
, "cpu-usage-last")) {
3711 r
= safe_atou64(v
, &u
->cpu_usage_last
);
3713 log_unit_debug(u
, "Failed to read CPU usage last %s, ignoring.", v
);
3717 } else if (streq(l
, "oom-kill-last")) {
3719 r
= safe_atou64(v
, &u
->oom_kill_last
);
3721 log_unit_debug(u
, "Failed to read OOM kill last %s, ignoring.", v
);
3725 } else if (streq(l
, "cgroup")) {
3727 r
= unit_set_cgroup_path(u
, v
);
3729 log_unit_debug_errno(u
, r
, "Failed to set cgroup path %s, ignoring: %m", v
);
3731 (void) unit_watch_cgroup(u
);
3732 (void) unit_watch_cgroup_memory(u
);
3735 } else if (streq(l
, "cgroup-realized")) {
3738 b
= parse_boolean(v
);
3740 log_unit_debug(u
, "Failed to parse cgroup-realized bool %s, ignoring.", v
);
3742 u
->cgroup_realized
= b
;
3746 } else if (streq(l
, "cgroup-realized-mask")) {
3748 r
= cg_mask_from_string(v
, &u
->cgroup_realized_mask
);
3750 log_unit_debug(u
, "Failed to parse cgroup-realized-mask %s, ignoring.", v
);
3753 } else if (streq(l
, "cgroup-enabled-mask")) {
3755 r
= cg_mask_from_string(v
, &u
->cgroup_enabled_mask
);
3757 log_unit_debug(u
, "Failed to parse cgroup-enabled-mask %s, ignoring.", v
);
3760 } else if (streq(l
, "cgroup-invalidated-mask")) {
3762 r
= cg_mask_from_string(v
, &u
->cgroup_invalidated_mask
);
3764 log_unit_debug(u
, "Failed to parse cgroup-invalidated-mask %s, ignoring.", v
);
3767 } else if (streq(l
, "ref-uid")) {
3770 r
= parse_uid(v
, &uid
);
3772 log_unit_debug(u
, "Failed to parse referenced UID %s, ignoring.", v
);
3774 unit_ref_uid_gid(u
, uid
, GID_INVALID
);
3778 } else if (streq(l
, "ref-gid")) {
3781 r
= parse_gid(v
, &gid
);
3783 log_unit_debug(u
, "Failed to parse referenced GID %s, ignoring.", v
);
3785 unit_ref_uid_gid(u
, UID_INVALID
, gid
);
3789 } else if (streq(l
, "ref")) {
3791 r
= strv_extend(&u
->deserialized_refs
, v
);
3796 } else if (streq(l
, "invocation-id")) {
3799 r
= sd_id128_from_string(v
, &id
);
3801 log_unit_debug(u
, "Failed to parse invocation id %s, ignoring.", v
);
3803 r
= unit_set_invocation_id(u
, id
);
3805 log_unit_warning_errno(u
, r
, "Failed to set invocation ID for unit: %m");
3811 /* Check if this is an IP accounting metric serialization field */
3812 m
= string_table_lookup(ip_accounting_metric_field
, ELEMENTSOF(ip_accounting_metric_field
), l
);
3816 r
= safe_atou64(v
, &c
);
3818 log_unit_debug(u
, "Failed to parse IP accounting value %s, ignoring.", v
);
3820 u
->ip_accounting_extra
[m
] = c
;
3824 m
= string_table_lookup(io_accounting_metric_field_base
, ELEMENTSOF(io_accounting_metric_field_base
), l
);
3828 r
= safe_atou64(v
, &c
);
3830 log_unit_debug(u
, "Failed to parse IO accounting base value %s, ignoring.", v
);
3832 u
->io_accounting_base
[m
] = c
;
3836 m
= string_table_lookup(io_accounting_metric_field_last
, ELEMENTSOF(io_accounting_metric_field_last
), l
);
3840 r
= safe_atou64(v
, &c
);
3842 log_unit_debug(u
, "Failed to parse IO accounting last value %s, ignoring.", v
);
3844 u
->io_accounting_last
[m
] = c
;
3848 if (unit_can_serialize(u
)) {
3849 r
= exec_runtime_deserialize_compat(u
, l
, v
, fds
);
3851 log_unit_warning(u
, "Failed to deserialize runtime parameter '%s', ignoring.", l
);
3855 /* Returns positive if key was handled by the call */
3859 r
= UNIT_VTABLE(u
)->deserialize_item(u
, l
, v
, fds
);
3861 log_unit_warning(u
, "Failed to deserialize unit parameter '%s', ignoring.", l
);
3865 /* Versions before 228 did not carry a state change timestamp. In this case, take the current time. This is
3866 * useful, so that timeouts based on this timestamp don't trigger too early, and is in-line with the logic from
3867 * before 228 where the base for timeouts was not persistent across reboots. */
3869 if (!dual_timestamp_is_set(&u
->state_change_timestamp
))
3870 dual_timestamp_get(&u
->state_change_timestamp
);
3872 /* Let's make sure that everything that is deserialized also gets any potential new cgroup settings applied
3873 * after we are done. For that we invalidate anything already realized, so that we can realize it again. */
3874 unit_invalidate_cgroup(u
, _CGROUP_MASK_ALL
);
3875 unit_invalidate_cgroup_bpf(u
);
3880 int unit_deserialize_skip(FILE *f
) {
3884 /* Skip serialized data for this unit. We don't know what it is. */
3887 _cleanup_free_
char *line
= NULL
;
3890 r
= read_line(f
, LONG_LINE_MAX
, &line
);
3892 return log_error_errno(r
, "Failed to read serialization line: %m");
3904 int unit_add_node_dependency(Unit
*u
, const char *what
, UnitDependency dep
, UnitDependencyMask mask
) {
3905 _cleanup_free_
char *e
= NULL
;
3911 /* Adds in links to the device node that this unit is based on */
3915 if (!is_device_path(what
))
3918 /* When device units aren't supported (such as in a container), don't create dependencies on them. */
3919 if (!unit_type_supported(UNIT_DEVICE
))
3922 r
= unit_name_from_path(what
, ".device", &e
);
3926 r
= manager_load_unit(u
->manager
, e
, NULL
, NULL
, &device
);
3930 if (dep
== UNIT_REQUIRES
&& device_shall_be_bound_by(device
, u
))
3931 dep
= UNIT_BINDS_TO
;
3933 return unit_add_two_dependencies(u
, UNIT_AFTER
,
3934 MANAGER_IS_SYSTEM(u
->manager
) ? dep
: UNIT_WANTS
,
3935 device
, true, mask
);
3938 int unit_add_blockdev_dependency(Unit
*u
, const char *what
, UnitDependencyMask mask
) {
3939 _cleanup_free_
char *escaped
= NULL
, *target
= NULL
;
3947 if (!path_startswith(what
, "/dev/"))
3950 /* If we don't support devices, then also don't bother with blockdev@.target */
3951 if (!unit_type_supported(UNIT_DEVICE
))
3954 r
= unit_name_path_escape(what
, &escaped
);
3958 r
= unit_name_build("blockdev", escaped
, ".target", &target
);
3962 return unit_add_dependency_by_name(u
, UNIT_AFTER
, target
, true, mask
);
3965 int unit_coldplug(Unit
*u
) {
3972 /* Make sure we don't enter a loop, when coldplugging recursively. */
3976 u
->coldplugged
= true;
3978 STRV_FOREACH(i
, u
->deserialized_refs
) {
3979 q
= bus_unit_track_add_name(u
, *i
);
3980 if (q
< 0 && r
>= 0)
3983 u
->deserialized_refs
= strv_free(u
->deserialized_refs
);
3985 if (UNIT_VTABLE(u
)->coldplug
) {
3986 q
= UNIT_VTABLE(u
)->coldplug(u
);
3987 if (q
< 0 && r
>= 0)
3991 uj
= u
->job
?: u
->nop_job
;
3993 q
= job_coldplug(uj
);
3994 if (q
< 0 && r
>= 0)
4001 void unit_catchup(Unit
*u
) {
4004 if (UNIT_VTABLE(u
)->catchup
)
4005 UNIT_VTABLE(u
)->catchup(u
);
4008 static bool fragment_mtime_newer(const char *path
, usec_t mtime
, bool path_masked
) {
4014 /* If the source is some virtual kernel file system, then we assume we watch it anyway, and hence pretend we
4015 * are never out-of-date. */
4016 if (PATH_STARTSWITH_SET(path
, "/proc", "/sys"))
4019 if (stat(path
, &st
) < 0)
4020 /* What, cannot access this anymore? */
4024 /* For masked files check if they are still so */
4025 return !null_or_empty(&st
);
4027 /* For non-empty files check the mtime */
4028 return timespec_load(&st
.st_mtim
) > mtime
;
4033 bool unit_need_daemon_reload(Unit
*u
) {
4034 _cleanup_strv_free_
char **t
= NULL
;
4039 /* For unit files, we allow masking… */
4040 if (fragment_mtime_newer(u
->fragment_path
, u
->fragment_mtime
,
4041 u
->load_state
== UNIT_MASKED
))
4044 /* Source paths should not be masked… */
4045 if (fragment_mtime_newer(u
->source_path
, u
->source_mtime
, false))
4048 if (u
->load_state
== UNIT_LOADED
)
4049 (void) unit_find_dropin_paths(u
, &t
);
4050 if (!strv_equal(u
->dropin_paths
, t
))
4053 /* … any drop-ins that are masked are simply omitted from the list. */
4054 STRV_FOREACH(path
, u
->dropin_paths
)
4055 if (fragment_mtime_newer(*path
, u
->dropin_mtime
, false))
4061 void unit_reset_failed(Unit
*u
) {
4064 if (UNIT_VTABLE(u
)->reset_failed
)
4065 UNIT_VTABLE(u
)->reset_failed(u
);
4067 ratelimit_reset(&u
->start_ratelimit
);
4068 u
->start_limit_hit
= false;
4071 Unit
*unit_following(Unit
*u
) {
4074 if (UNIT_VTABLE(u
)->following
)
4075 return UNIT_VTABLE(u
)->following(u
);
4080 bool unit_stop_pending(Unit
*u
) {
4083 /* This call does check the current state of the unit. It's
4084 * hence useful to be called from state change calls of the
4085 * unit itself, where the state isn't updated yet. This is
4086 * different from unit_inactive_or_pending() which checks both
4087 * the current state and for a queued job. */
4089 return unit_has_job_type(u
, JOB_STOP
);
4092 bool unit_inactive_or_pending(Unit
*u
) {
4095 /* Returns true if the unit is inactive or going down */
4097 if (UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)))
4100 if (unit_stop_pending(u
))
4106 bool unit_active_or_pending(Unit
*u
) {
4109 /* Returns true if the unit is active or going up */
4111 if (UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)))
4115 IN_SET(u
->job
->type
, JOB_START
, JOB_RELOAD_OR_START
, JOB_RESTART
))
4121 bool unit_will_restart_default(Unit
*u
) {
4124 return unit_has_job_type(u
, JOB_START
);
4127 bool unit_will_restart(Unit
*u
) {
4130 if (!UNIT_VTABLE(u
)->will_restart
)
4133 return UNIT_VTABLE(u
)->will_restart(u
);
4136 int unit_kill(Unit
*u
, KillWho w
, int signo
, sd_bus_error
*error
) {
4138 assert(w
>= 0 && w
< _KILL_WHO_MAX
);
4139 assert(SIGNAL_VALID(signo
));
4141 if (!UNIT_VTABLE(u
)->kill
)
4144 return UNIT_VTABLE(u
)->kill(u
, w
, signo
, error
);
4147 static Set
*unit_pid_set(pid_t main_pid
, pid_t control_pid
) {
4148 _cleanup_set_free_ Set
*pid_set
= NULL
;
4151 pid_set
= set_new(NULL
);
4155 /* Exclude the main/control pids from being killed via the cgroup */
4157 r
= set_put(pid_set
, PID_TO_PTR(main_pid
));
4162 if (control_pid
> 0) {
4163 r
= set_put(pid_set
, PID_TO_PTR(control_pid
));
4168 return TAKE_PTR(pid_set
);
4171 int unit_kill_common(
4177 sd_bus_error
*error
) {
4180 bool killed
= false;
4182 if (IN_SET(who
, KILL_MAIN
, KILL_MAIN_FAIL
)) {
4184 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_PROCESS
, "%s units have no main processes", unit_type_to_string(u
->type
));
4185 else if (main_pid
== 0)
4186 return sd_bus_error_set_const(error
, BUS_ERROR_NO_SUCH_PROCESS
, "No main process to kill");
4189 if (IN_SET(who
, KILL_CONTROL
, KILL_CONTROL_FAIL
)) {
4190 if (control_pid
< 0)
4191 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_PROCESS
, "%s units have no control processes", unit_type_to_string(u
->type
));
4192 else if (control_pid
== 0)
4193 return sd_bus_error_set_const(error
, BUS_ERROR_NO_SUCH_PROCESS
, "No control process to kill");
4196 if (IN_SET(who
, KILL_CONTROL
, KILL_CONTROL_FAIL
, KILL_ALL
, KILL_ALL_FAIL
))
4197 if (control_pid
> 0) {
4198 if (kill(control_pid
, signo
) < 0)
4204 if (IN_SET(who
, KILL_MAIN
, KILL_MAIN_FAIL
, KILL_ALL
, KILL_ALL_FAIL
))
4206 if (kill(main_pid
, signo
) < 0)
4212 if (IN_SET(who
, KILL_ALL
, KILL_ALL_FAIL
) && u
->cgroup_path
) {
4213 _cleanup_set_free_ Set
*pid_set
= NULL
;
4216 /* Exclude the main/control pids from being killed via the cgroup */
4217 pid_set
= unit_pid_set(main_pid
, control_pid
);
4221 q
= cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
, signo
, 0, pid_set
, NULL
, NULL
);
4222 if (q
< 0 && !IN_SET(q
, -EAGAIN
, -ESRCH
, -ENOENT
))
4228 if (r
== 0 && !killed
&& IN_SET(who
, KILL_ALL_FAIL
, KILL_CONTROL_FAIL
))
4234 int unit_following_set(Unit
*u
, Set
**s
) {
4238 if (UNIT_VTABLE(u
)->following_set
)
4239 return UNIT_VTABLE(u
)->following_set(u
, s
);
4245 UnitFileState
unit_get_unit_file_state(Unit
*u
) {
4250 if (u
->unit_file_state
< 0 && u
->fragment_path
) {
4251 r
= unit_file_get_state(
4252 u
->manager
->unit_file_scope
,
4255 &u
->unit_file_state
);
4257 u
->unit_file_state
= UNIT_FILE_BAD
;
4260 return u
->unit_file_state
;
4263 int unit_get_unit_file_preset(Unit
*u
) {
4266 if (u
->unit_file_preset
< 0 && u
->fragment_path
)
4267 u
->unit_file_preset
= unit_file_query_preset(
4268 u
->manager
->unit_file_scope
,
4270 basename(u
->fragment_path
));
4272 return u
->unit_file_preset
;
4275 Unit
* unit_ref_set(UnitRef
*ref
, Unit
*source
, Unit
*target
) {
4281 unit_ref_unset(ref
);
4283 ref
->source
= source
;
4284 ref
->target
= target
;
4285 LIST_PREPEND(refs_by_target
, target
->refs_by_target
, ref
);
4289 void unit_ref_unset(UnitRef
*ref
) {
4295 /* We are about to drop a reference to the unit, make sure the garbage collection has a look at it as it might
4296 * be unreferenced now. */
4297 unit_add_to_gc_queue(ref
->target
);
4299 LIST_REMOVE(refs_by_target
, ref
->target
->refs_by_target
, ref
);
4300 ref
->source
= ref
->target
= NULL
;
4303 static int user_from_unit_name(Unit
*u
, char **ret
) {
4305 static const uint8_t hash_key
[] = {
4306 0x58, 0x1a, 0xaf, 0xe6, 0x28, 0x58, 0x4e, 0x96,
4307 0xb4, 0x4e, 0xf5, 0x3b, 0x8c, 0x92, 0x07, 0xec
4310 _cleanup_free_
char *n
= NULL
;
4313 r
= unit_name_to_prefix(u
->id
, &n
);
4317 if (valid_user_group_name(n
, 0)) {
4322 /* If we can't use the unit name as a user name, then let's hash it and use that */
4323 if (asprintf(ret
, "_du%016" PRIx64
, siphash24(n
, strlen(n
), hash_key
)) < 0)
4329 int unit_patch_contexts(Unit
*u
) {
4337 /* Patch in the manager defaults into the exec and cgroup
4338 * contexts, _after_ the rest of the settings have been
4341 ec
= unit_get_exec_context(u
);
4343 /* This only copies in the ones that need memory */
4344 for (i
= 0; i
< _RLIMIT_MAX
; i
++)
4345 if (u
->manager
->rlimit
[i
] && !ec
->rlimit
[i
]) {
4346 ec
->rlimit
[i
] = newdup(struct rlimit
, u
->manager
->rlimit
[i
], 1);
4351 if (MANAGER_IS_USER(u
->manager
) &&
4352 !ec
->working_directory
) {
4354 r
= get_home_dir(&ec
->working_directory
);
4358 /* Allow user services to run, even if the
4359 * home directory is missing */
4360 ec
->working_directory_missing_ok
= true;
4363 if (ec
->private_devices
)
4364 ec
->capability_bounding_set
&= ~((UINT64_C(1) << CAP_MKNOD
) | (UINT64_C(1) << CAP_SYS_RAWIO
));
4366 if (ec
->protect_kernel_modules
)
4367 ec
->capability_bounding_set
&= ~(UINT64_C(1) << CAP_SYS_MODULE
);
4369 if (ec
->protect_kernel_logs
)
4370 ec
->capability_bounding_set
&= ~(UINT64_C(1) << CAP_SYSLOG
);
4372 if (ec
->protect_clock
)
4373 ec
->capability_bounding_set
&= ~((UINT64_C(1) << CAP_SYS_TIME
) | (UINT64_C(1) << CAP_WAKE_ALARM
));
4375 if (ec
->dynamic_user
) {
4377 r
= user_from_unit_name(u
, &ec
->user
);
4383 ec
->group
= strdup(ec
->user
);
4388 /* If the dynamic user option is on, let's make sure that the unit can't leave its
4389 * UID/GID around in the file system or on IPC objects. Hence enforce a strict
4392 ec
->private_tmp
= true;
4393 ec
->remove_ipc
= true;
4394 ec
->protect_system
= PROTECT_SYSTEM_STRICT
;
4395 if (ec
->protect_home
== PROTECT_HOME_NO
)
4396 ec
->protect_home
= PROTECT_HOME_READ_ONLY
;
4398 /* Make sure this service can neither benefit from SUID/SGID binaries nor create
4400 ec
->no_new_privileges
= true;
4401 ec
->restrict_suid_sgid
= true;
4405 cc
= unit_get_cgroup_context(u
);
4408 if (ec
->private_devices
&&
4409 cc
->device_policy
== CGROUP_DEVICE_POLICY_AUTO
)
4410 cc
->device_policy
= CGROUP_DEVICE_POLICY_CLOSED
;
4412 if (ec
->root_image
&&
4413 (cc
->device_policy
!= CGROUP_DEVICE_POLICY_AUTO
|| cc
->device_allow
)) {
4415 /* When RootImage= is specified, the following devices are touched. */
4416 r
= cgroup_add_device_allow(cc
, "/dev/loop-control", "rw");
4420 r
= cgroup_add_device_allow(cc
, "block-loop", "rwm");
4424 r
= cgroup_add_device_allow(cc
, "block-blkext", "rwm");
4428 /* Make sure "block-loop" can be resolved, i.e. make sure "loop" shows up in /proc/devices */
4429 r
= unit_add_two_dependencies_by_name(u
, UNIT_AFTER
, UNIT_WANTS
, "modprobe@loop.service", true, UNIT_DEPENDENCY_FILE
);
4434 if (ec
->protect_clock
) {
4435 r
= cgroup_add_device_allow(cc
, "char-rtc", "r");
4444 ExecContext
*unit_get_exec_context(Unit
*u
) {
4451 offset
= UNIT_VTABLE(u
)->exec_context_offset
;
4455 return (ExecContext
*) ((uint8_t*) u
+ offset
);
4458 KillContext
*unit_get_kill_context(Unit
*u
) {
4465 offset
= UNIT_VTABLE(u
)->kill_context_offset
;
4469 return (KillContext
*) ((uint8_t*) u
+ offset
);
4472 CGroupContext
*unit_get_cgroup_context(Unit
*u
) {
4478 offset
= UNIT_VTABLE(u
)->cgroup_context_offset
;
4482 return (CGroupContext
*) ((uint8_t*) u
+ offset
);
4485 ExecRuntime
*unit_get_exec_runtime(Unit
*u
) {
4491 offset
= UNIT_VTABLE(u
)->exec_runtime_offset
;
4495 return *(ExecRuntime
**) ((uint8_t*) u
+ offset
);
4498 static const char* unit_drop_in_dir(Unit
*u
, UnitWriteFlags flags
) {
4501 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4504 if (u
->transient
) /* Redirect drop-ins for transient units always into the transient directory. */
4505 return u
->manager
->lookup_paths
.transient
;
4507 if (flags
& UNIT_PERSISTENT
)
4508 return u
->manager
->lookup_paths
.persistent_control
;
4510 if (flags
& UNIT_RUNTIME
)
4511 return u
->manager
->lookup_paths
.runtime_control
;
4516 char* unit_escape_setting(const char *s
, UnitWriteFlags flags
, char **buf
) {
4522 /* Escapes the input string as requested. Returns the escaped string. If 'buf' is specified then the allocated
4523 * return buffer pointer is also written to *buf, except if no escaping was necessary, in which case *buf is
4524 * set to NULL, and the input pointer is returned as-is. This means the return value always contains a properly
4525 * escaped version, but *buf when passed only contains a pointer if an allocation was necessary. If *buf is
4526 * not specified, then the return value always needs to be freed. Callers can use this to optimize memory
4529 if (flags
& UNIT_ESCAPE_SPECIFIERS
) {
4530 ret
= specifier_escape(s
);
4537 if (flags
& UNIT_ESCAPE_C
) {
4550 return ret
?: (char*) s
;
4553 return ret
?: strdup(s
);
4556 char* unit_concat_strv(char **l
, UnitWriteFlags flags
) {
4557 _cleanup_free_
char *result
= NULL
;
4558 size_t n
= 0, allocated
= 0;
4561 /* Takes a list of strings, escapes them, and concatenates them. This may be used to format command lines in a
4562 * way suitable for ExecStart= stanzas */
4564 STRV_FOREACH(i
, l
) {
4565 _cleanup_free_
char *buf
= NULL
;
4570 p
= unit_escape_setting(*i
, flags
, &buf
);
4574 a
= (n
> 0) + 1 + strlen(p
) + 1; /* separating space + " + entry + " */
4575 if (!GREEDY_REALLOC(result
, allocated
, n
+ a
+ 1))
4589 if (!GREEDY_REALLOC(result
, allocated
, n
+ 1))
4594 return TAKE_PTR(result
);
4597 int unit_write_setting(Unit
*u
, UnitWriteFlags flags
, const char *name
, const char *data
) {
4598 _cleanup_free_
char *p
= NULL
, *q
= NULL
, *escaped
= NULL
;
4599 const char *dir
, *wrapped
;
4606 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4609 data
= unit_escape_setting(data
, flags
, &escaped
);
4613 /* Prefix the section header. If we are writing this out as transient file, then let's suppress this if the
4614 * previous section header is the same */
4616 if (flags
& UNIT_PRIVATE
) {
4617 if (!UNIT_VTABLE(u
)->private_section
)
4620 if (!u
->transient_file
|| u
->last_section_private
< 0)
4621 data
= strjoina("[", UNIT_VTABLE(u
)->private_section
, "]\n", data
);
4622 else if (u
->last_section_private
== 0)
4623 data
= strjoina("\n[", UNIT_VTABLE(u
)->private_section
, "]\n", data
);
4625 if (!u
->transient_file
|| u
->last_section_private
< 0)
4626 data
= strjoina("[Unit]\n", data
);
4627 else if (u
->last_section_private
> 0)
4628 data
= strjoina("\n[Unit]\n", data
);
4631 if (u
->transient_file
) {
4632 /* When this is a transient unit file in creation, then let's not create a new drop-in but instead
4633 * write to the transient unit file. */
4634 fputs(data
, u
->transient_file
);
4636 if (!endswith(data
, "\n"))
4637 fputc('\n', u
->transient_file
);
4639 /* Remember which section we wrote this entry to */
4640 u
->last_section_private
= !!(flags
& UNIT_PRIVATE
);
4644 dir
= unit_drop_in_dir(u
, flags
);
4648 wrapped
= strjoina("# This is a drop-in unit file extension, created via \"systemctl set-property\"\n"
4649 "# or an equivalent operation. Do not edit.\n",
4653 r
= drop_in_file(dir
, u
->id
, 50, name
, &p
, &q
);
4657 (void) mkdir_p_label(p
, 0755);
4659 /* Make sure the drop-in dir is registered in our path cache. This way we don't need to stupidly
4660 * recreate the cache after every drop-in we write. */
4661 if (u
->manager
->unit_path_cache
) {
4662 r
= set_put_strdup(u
->manager
->unit_path_cache
, p
);
4667 r
= write_string_file_atomic_label(q
, wrapped
);
4671 r
= strv_push(&u
->dropin_paths
, q
);
4676 strv_uniq(u
->dropin_paths
);
4678 u
->dropin_mtime
= now(CLOCK_REALTIME
);
4683 int unit_write_settingf(Unit
*u
, UnitWriteFlags flags
, const char *name
, const char *format
, ...) {
4684 _cleanup_free_
char *p
= NULL
;
4692 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4695 va_start(ap
, format
);
4696 r
= vasprintf(&p
, format
, ap
);
4702 return unit_write_setting(u
, flags
, name
, p
);
4705 int unit_make_transient(Unit
*u
) {
4706 _cleanup_free_
char *path
= NULL
;
4711 if (!UNIT_VTABLE(u
)->can_transient
)
4714 (void) mkdir_p_label(u
->manager
->lookup_paths
.transient
, 0755);
4716 path
= path_join(u
->manager
->lookup_paths
.transient
, u
->id
);
4720 /* Let's open the file we'll write the transient settings into. This file is kept open as long as we are
4721 * creating the transient, and is closed in unit_load(), as soon as we start loading the file. */
4723 RUN_WITH_UMASK(0022) {
4724 f
= fopen(path
, "we");
4729 safe_fclose(u
->transient_file
);
4730 u
->transient_file
= f
;
4732 free_and_replace(u
->fragment_path
, path
);
4734 u
->source_path
= mfree(u
->source_path
);
4735 u
->dropin_paths
= strv_free(u
->dropin_paths
);
4736 u
->fragment_mtime
= u
->source_mtime
= u
->dropin_mtime
= 0;
4738 u
->load_state
= UNIT_STUB
;
4740 u
->transient
= true;
4742 unit_add_to_dbus_queue(u
);
4743 unit_add_to_gc_queue(u
);
4745 fputs("# This is a transient unit file, created programmatically via the systemd API. Do not edit.\n",
4751 static int log_kill(pid_t pid
, int sig
, void *userdata
) {
4752 _cleanup_free_
char *comm
= NULL
;
4754 (void) get_process_comm(pid
, &comm
);
4756 /* Don't log about processes marked with brackets, under the assumption that these are temporary processes
4757 only, like for example systemd's own PAM stub process. */
4758 if (comm
&& comm
[0] == '(')
4761 log_unit_notice(userdata
,
4762 "Killing process " PID_FMT
" (%s) with signal SIG%s.",
4765 signal_to_string(sig
));
4770 static int operation_to_signal(const KillContext
*c
, KillOperation k
, bool *noteworthy
) {
4775 case KILL_TERMINATE
:
4776 case KILL_TERMINATE_AND_LOG
:
4777 *noteworthy
= false;
4778 return c
->kill_signal
;
4781 *noteworthy
= false;
4782 return restart_kill_signal(c
);
4786 return c
->final_kill_signal
;
4790 return c
->watchdog_signal
;
4793 assert_not_reached("KillOperation unknown");
4797 int unit_kill_context(
4803 bool main_pid_alien
) {
4805 bool wait_for_exit
= false, send_sighup
;
4806 cg_kill_log_func_t log_func
= NULL
;
4812 /* Kill the processes belonging to this unit, in preparation for shutting the unit down.
4813 * Returns > 0 if we killed something worth waiting for, 0 otherwise. */
4815 if (c
->kill_mode
== KILL_NONE
)
4819 sig
= operation_to_signal(c
, k
, ¬eworthy
);
4821 log_func
= log_kill
;
4825 IN_SET(k
, KILL_TERMINATE
, KILL_TERMINATE_AND_LOG
) &&
4830 log_func(main_pid
, sig
, u
);
4832 r
= kill_and_sigcont(main_pid
, sig
);
4833 if (r
< 0 && r
!= -ESRCH
) {
4834 _cleanup_free_
char *comm
= NULL
;
4835 (void) get_process_comm(main_pid
, &comm
);
4837 log_unit_warning_errno(u
, r
, "Failed to kill main process " PID_FMT
" (%s), ignoring: %m", main_pid
, strna(comm
));
4839 if (!main_pid_alien
)
4840 wait_for_exit
= true;
4842 if (r
!= -ESRCH
&& send_sighup
)
4843 (void) kill(main_pid
, SIGHUP
);
4847 if (control_pid
> 0) {
4849 log_func(control_pid
, sig
, u
);
4851 r
= kill_and_sigcont(control_pid
, sig
);
4852 if (r
< 0 && r
!= -ESRCH
) {
4853 _cleanup_free_
char *comm
= NULL
;
4854 (void) get_process_comm(control_pid
, &comm
);
4856 log_unit_warning_errno(u
, r
, "Failed to kill control process " PID_FMT
" (%s), ignoring: %m", control_pid
, strna(comm
));
4858 wait_for_exit
= true;
4860 if (r
!= -ESRCH
&& send_sighup
)
4861 (void) kill(control_pid
, SIGHUP
);
4865 if (u
->cgroup_path
&&
4866 (c
->kill_mode
== KILL_CONTROL_GROUP
|| (c
->kill_mode
== KILL_MIXED
&& k
== KILL_KILL
))) {
4867 _cleanup_set_free_ Set
*pid_set
= NULL
;
4869 /* Exclude the main/control pids from being killed via the cgroup */
4870 pid_set
= unit_pid_set(main_pid
, control_pid
);
4874 r
= cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
,
4876 CGROUP_SIGCONT
|CGROUP_IGNORE_SELF
,
4880 if (!IN_SET(r
, -EAGAIN
, -ESRCH
, -ENOENT
))
4881 log_unit_warning_errno(u
, r
, "Failed to kill control group %s, ignoring: %m", u
->cgroup_path
);
4885 /* FIXME: For now, on the legacy hierarchy, we will not wait for the cgroup members to die if
4886 * we are running in a container or if this is a delegation unit, simply because cgroup
4887 * notification is unreliable in these cases. It doesn't work at all in containers, and outside
4888 * of containers it can be confused easily by left-over directories in the cgroup — which
4889 * however should not exist in non-delegated units. On the unified hierarchy that's different,
4890 * there we get proper events. Hence rely on them. */
4892 if (cg_unified_controller(SYSTEMD_CGROUP_CONTROLLER
) > 0 ||
4893 (detect_container() == 0 && !unit_cgroup_delegate(u
)))
4894 wait_for_exit
= true;
4899 pid_set
= unit_pid_set(main_pid
, control_pid
);
4903 cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
,
4912 return wait_for_exit
;
4915 int unit_require_mounts_for(Unit
*u
, const char *path
, UnitDependencyMask mask
) {
4916 _cleanup_free_
char *p
= NULL
;
4917 UnitDependencyInfo di
;
4923 /* Registers a unit for requiring a certain path and all its prefixes. We keep a hashtable of these paths in
4924 * the unit (from the path to the UnitDependencyInfo structure indicating how to the dependency came to
4925 * be). However, we build a prefix table for all possible prefixes so that new appearing mount units can easily
4926 * determine which units to make themselves a dependency of. */
4928 if (!path_is_absolute(path
))
4931 r
= hashmap_ensure_allocated(&u
->requires_mounts_for
, &path_hash_ops
);
4939 path
= path_simplify(p
, true);
4941 if (!path_is_normalized(path
))
4944 if (hashmap_contains(u
->requires_mounts_for
, path
))
4947 di
= (UnitDependencyInfo
) {
4951 r
= hashmap_put(u
->requires_mounts_for
, path
, di
.data
);
4956 char prefix
[strlen(path
) + 1];
4957 PATH_FOREACH_PREFIX_MORE(prefix
, path
) {
4960 x
= hashmap_get(u
->manager
->units_requiring_mounts_for
, prefix
);
4962 _cleanup_free_
char *q
= NULL
;
4964 r
= hashmap_ensure_allocated(&u
->manager
->units_requiring_mounts_for
, &path_hash_ops
);
4976 r
= hashmap_put(u
->manager
->units_requiring_mounts_for
, q
, x
);
4992 int unit_setup_exec_runtime(Unit
*u
) {
5000 offset
= UNIT_VTABLE(u
)->exec_runtime_offset
;
5003 /* Check if there already is an ExecRuntime for this unit? */
5004 rt
= (ExecRuntime
**) ((uint8_t*) u
+ offset
);
5008 /* Try to get it from somebody else */
5009 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_JOINS_NAMESPACE_OF
], i
) {
5010 r
= exec_runtime_acquire(u
->manager
, NULL
, other
->id
, false, rt
);
5015 return exec_runtime_acquire(u
->manager
, unit_get_exec_context(u
), u
->id
, true, rt
);
5018 int unit_setup_dynamic_creds(Unit
*u
) {
5020 DynamicCreds
*dcreds
;
5025 offset
= UNIT_VTABLE(u
)->dynamic_creds_offset
;
5027 dcreds
= (DynamicCreds
*) ((uint8_t*) u
+ offset
);
5029 ec
= unit_get_exec_context(u
);
5032 if (!ec
->dynamic_user
)
5035 return dynamic_creds_acquire(dcreds
, u
->manager
, ec
->user
, ec
->group
);
5038 bool unit_type_supported(UnitType t
) {
5039 if (_unlikely_(t
< 0))
5041 if (_unlikely_(t
>= _UNIT_TYPE_MAX
))
5044 if (!unit_vtable
[t
]->supported
)
5047 return unit_vtable
[t
]->supported();
5050 void unit_warn_if_dir_nonempty(Unit
*u
, const char* where
) {
5056 r
= dir_is_empty(where
);
5057 if (r
> 0 || r
== -ENOTDIR
)
5060 log_unit_warning_errno(u
, r
, "Failed to check directory %s: %m", where
);
5064 log_struct(LOG_NOTICE
,
5065 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR
,
5067 LOG_UNIT_INVOCATION_ID(u
),
5068 LOG_UNIT_MESSAGE(u
, "Directory %s to mount over is not empty, mounting anyway.", where
),
5072 int unit_fail_if_noncanonical(Unit
*u
, const char* where
) {
5073 _cleanup_free_
char *canonical_where
= NULL
;
5079 r
= chase_symlinks(where
, NULL
, CHASE_NONEXISTENT
, &canonical_where
, NULL
);
5081 log_unit_debug_errno(u
, r
, "Failed to check %s for symlinks, ignoring: %m", where
);
5085 /* We will happily ignore a trailing slash (or any redundant slashes) */
5086 if (path_equal(where
, canonical_where
))
5089 /* No need to mention "." or "..", they would already have been rejected by unit_name_from_path() */
5091 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR
,
5093 LOG_UNIT_INVOCATION_ID(u
),
5094 LOG_UNIT_MESSAGE(u
, "Mount path %s is not canonical (contains a symlink).", where
),
5100 bool unit_is_pristine(Unit
*u
) {
5103 /* Check if the unit already exists or is already around,
5104 * in a number of different ways. Note that to cater for unit
5105 * types such as slice, we are generally fine with units that
5106 * are marked UNIT_LOADED even though nothing was actually
5107 * loaded, as those unit types don't require a file on disk. */
5109 return !(!IN_SET(u
->load_state
, UNIT_NOT_FOUND
, UNIT_LOADED
) ||
5112 !strv_isempty(u
->dropin_paths
) ||
5117 pid_t
unit_control_pid(Unit
*u
) {
5120 if (UNIT_VTABLE(u
)->control_pid
)
5121 return UNIT_VTABLE(u
)->control_pid(u
);
5126 pid_t
unit_main_pid(Unit
*u
) {
5129 if (UNIT_VTABLE(u
)->main_pid
)
5130 return UNIT_VTABLE(u
)->main_pid(u
);
5135 static void unit_unref_uid_internal(
5139 void (*_manager_unref_uid
)(Manager
*m
, uid_t uid
, bool destroy_now
)) {
5143 assert(_manager_unref_uid
);
5145 /* Generic implementation of both unit_unref_uid() and unit_unref_gid(), under the assumption that uid_t and
5146 * gid_t are actually the same time, with the same validity rules.
5148 * Drops a reference to UID/GID from a unit. */
5150 assert_cc(sizeof(uid_t
) == sizeof(gid_t
));
5151 assert_cc(UID_INVALID
== (uid_t
) GID_INVALID
);
5153 if (!uid_is_valid(*ref_uid
))
5156 _manager_unref_uid(u
->manager
, *ref_uid
, destroy_now
);
5157 *ref_uid
= UID_INVALID
;
5160 static void unit_unref_uid(Unit
*u
, bool destroy_now
) {
5161 unit_unref_uid_internal(u
, &u
->ref_uid
, destroy_now
, manager_unref_uid
);
5164 static void unit_unref_gid(Unit
*u
, bool destroy_now
) {
5165 unit_unref_uid_internal(u
, (uid_t
*) &u
->ref_gid
, destroy_now
, manager_unref_gid
);
5168 void unit_unref_uid_gid(Unit
*u
, bool destroy_now
) {
5171 unit_unref_uid(u
, destroy_now
);
5172 unit_unref_gid(u
, destroy_now
);
5175 static int unit_ref_uid_internal(
5180 int (*_manager_ref_uid
)(Manager
*m
, uid_t uid
, bool clean_ipc
)) {
5186 assert(uid_is_valid(uid
));
5187 assert(_manager_ref_uid
);
5189 /* Generic implementation of both unit_ref_uid() and unit_ref_guid(), under the assumption that uid_t and gid_t
5190 * are actually the same type, and have the same validity rules.
5192 * Adds a reference on a specific UID/GID to this unit. Each unit referencing the same UID/GID maintains a
5193 * reference so that we can destroy the UID/GID's IPC resources as soon as this is requested and the counter
5196 assert_cc(sizeof(uid_t
) == sizeof(gid_t
));
5197 assert_cc(UID_INVALID
== (uid_t
) GID_INVALID
);
5199 if (*ref_uid
== uid
)
5202 if (uid_is_valid(*ref_uid
)) /* Already set? */
5205 r
= _manager_ref_uid(u
->manager
, uid
, clean_ipc
);
5213 static int unit_ref_uid(Unit
*u
, uid_t uid
, bool clean_ipc
) {
5214 return unit_ref_uid_internal(u
, &u
->ref_uid
, uid
, clean_ipc
, manager_ref_uid
);
5217 static int unit_ref_gid(Unit
*u
, gid_t gid
, bool clean_ipc
) {
5218 return unit_ref_uid_internal(u
, (uid_t
*) &u
->ref_gid
, (uid_t
) gid
, clean_ipc
, manager_ref_gid
);
5221 static int unit_ref_uid_gid_internal(Unit
*u
, uid_t uid
, gid_t gid
, bool clean_ipc
) {
5226 /* Reference both a UID and a GID in one go. Either references both, or neither. */
5228 if (uid_is_valid(uid
)) {
5229 r
= unit_ref_uid(u
, uid
, clean_ipc
);
5234 if (gid_is_valid(gid
)) {
5235 q
= unit_ref_gid(u
, gid
, clean_ipc
);
5238 unit_unref_uid(u
, false);
5244 return r
> 0 || q
> 0;
5247 int unit_ref_uid_gid(Unit
*u
, uid_t uid
, gid_t gid
) {
5253 c
= unit_get_exec_context(u
);
5255 r
= unit_ref_uid_gid_internal(u
, uid
, gid
, c
? c
->remove_ipc
: false);
5257 return log_unit_warning_errno(u
, r
, "Couldn't add UID/GID reference to unit, proceeding without: %m");
5262 void unit_notify_user_lookup(Unit
*u
, uid_t uid
, gid_t gid
) {
5267 /* This is invoked whenever one of the forked off processes let's us know the UID/GID its user name/group names
5268 * resolved to. We keep track of which UID/GID is currently assigned in order to be able to destroy its IPC
5269 * objects when no service references the UID/GID anymore. */
5271 r
= unit_ref_uid_gid(u
, uid
, gid
);
5273 unit_add_to_dbus_queue(u
);
5276 int unit_set_invocation_id(Unit
*u
, sd_id128_t id
) {
5281 /* Set the invocation ID for this unit. If we cannot, this will not roll back, but reset the whole thing. */
5283 if (sd_id128_equal(u
->invocation_id
, id
))
5286 if (!sd_id128_is_null(u
->invocation_id
))
5287 (void) hashmap_remove_value(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
5289 if (sd_id128_is_null(id
)) {
5294 r
= hashmap_ensure_allocated(&u
->manager
->units_by_invocation_id
, &id128_hash_ops
);
5298 u
->invocation_id
= id
;
5299 sd_id128_to_string(id
, u
->invocation_id_string
);
5301 r
= hashmap_put(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
5308 u
->invocation_id
= SD_ID128_NULL
;
5309 u
->invocation_id_string
[0] = 0;
5313 int unit_acquire_invocation_id(Unit
*u
) {
5319 r
= sd_id128_randomize(&id
);
5321 return log_unit_error_errno(u
, r
, "Failed to generate invocation ID for unit: %m");
5323 r
= unit_set_invocation_id(u
, id
);
5325 return log_unit_error_errno(u
, r
, "Failed to set invocation ID for unit: %m");
5327 unit_add_to_dbus_queue(u
);
5331 int unit_set_exec_params(Unit
*u
, ExecParameters
*p
) {
5337 /* Copy parameters from manager */
5338 r
= manager_get_effective_environment(u
->manager
, &p
->environment
);
5342 p
->confirm_spawn
= manager_get_confirm_spawn(u
->manager
);
5343 p
->cgroup_supported
= u
->manager
->cgroup_supported
;
5344 p
->prefix
= u
->manager
->prefix
;
5345 SET_FLAG(p
->flags
, EXEC_PASS_LOG_UNIT
|EXEC_CHOWN_DIRECTORIES
, MANAGER_IS_SYSTEM(u
->manager
));
5347 /* Copy parameters from unit */
5348 p
->cgroup_path
= u
->cgroup_path
;
5349 SET_FLAG(p
->flags
, EXEC_CGROUP_DELEGATE
, unit_cgroup_delegate(u
));
5354 int unit_fork_helper_process(Unit
*u
, const char *name
, pid_t
*ret
) {
5360 /* Forks off a helper process and makes sure it is a member of the unit's cgroup. Returns == 0 in the child,
5361 * and > 0 in the parent. The pid parameter is always filled in with the child's PID. */
5363 (void) unit_realize_cgroup(u
);
5365 r
= safe_fork(name
, FORK_REOPEN_LOG
, ret
);
5369 (void) default_signals(SIGNALS_CRASH_HANDLER
, SIGNALS_IGNORE
, -1);
5370 (void) ignore_signals(SIGPIPE
, -1);
5372 (void) prctl(PR_SET_PDEATHSIG
, SIGTERM
);
5374 if (u
->cgroup_path
) {
5375 r
= cg_attach_everywhere(u
->manager
->cgroup_supported
, u
->cgroup_path
, 0, NULL
, NULL
);
5377 log_unit_error_errno(u
, r
, "Failed to join unit cgroup %s: %m", u
->cgroup_path
);
5385 int unit_fork_and_watch_rm_rf(Unit
*u
, char **paths
, pid_t
*ret_pid
) {
5392 r
= unit_fork_helper_process(u
, "(sd-rmrf)", &pid
);
5396 int ret
= EXIT_SUCCESS
;
5399 STRV_FOREACH(i
, paths
) {
5400 r
= rm_rf(*i
, REMOVE_ROOT
|REMOVE_PHYSICAL
|REMOVE_MISSING_OK
);
5402 log_error_errno(r
, "Failed to remove '%s': %m", *i
);
5410 r
= unit_watch_pid(u
, pid
, true);
5418 static void unit_update_dependency_mask(Unit
*u
, UnitDependency d
, Unit
*other
, UnitDependencyInfo di
) {
5421 assert(d
< _UNIT_DEPENDENCY_MAX
);
5424 if (di
.origin_mask
== 0 && di
.destination_mask
== 0) {
5425 /* No bit set anymore, let's drop the whole entry */
5426 assert_se(hashmap_remove(u
->dependencies
[d
], other
));
5427 log_unit_debug(u
, "lost dependency %s=%s", unit_dependency_to_string(d
), other
->id
);
5429 /* Mask was reduced, let's update the entry */
5430 assert_se(hashmap_update(u
->dependencies
[d
], other
, di
.data
) == 0);
5433 void unit_remove_dependencies(Unit
*u
, UnitDependencyMask mask
) {
5438 /* Removes all dependencies u has on other units marked for ownership by 'mask'. */
5443 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
5447 UnitDependencyInfo di
;
5453 HASHMAP_FOREACH_KEY(di
.data
, other
, u
->dependencies
[d
], i
) {
5456 if ((di
.origin_mask
& ~mask
) == di
.origin_mask
)
5458 di
.origin_mask
&= ~mask
;
5459 unit_update_dependency_mask(u
, d
, other
, di
);
5461 /* We updated the dependency from our unit to the other unit now. But most dependencies
5462 * imply a reverse dependency. Hence, let's delete that one too. For that we go through
5463 * all dependency types on the other unit and delete all those which point to us and
5464 * have the right mask set. */
5466 for (q
= 0; q
< _UNIT_DEPENDENCY_MAX
; q
++) {
5467 UnitDependencyInfo dj
;
5469 dj
.data
= hashmap_get(other
->dependencies
[q
], u
);
5470 if ((dj
.destination_mask
& ~mask
) == dj
.destination_mask
)
5472 dj
.destination_mask
&= ~mask
;
5474 unit_update_dependency_mask(other
, q
, u
, dj
);
5477 unit_add_to_gc_queue(other
);
5487 static int unit_get_invocation_path(Unit
*u
, char **ret
) {
5494 if (MANAGER_IS_SYSTEM(u
->manager
))
5495 p
= strjoin("/run/systemd/units/invocation:", u
->id
);
5497 _cleanup_free_
char *user_path
= NULL
;
5498 r
= xdg_user_runtime_dir(&user_path
, "/systemd/units/invocation:");
5501 p
= strjoin(user_path
, u
->id
);
5511 static int unit_export_invocation_id(Unit
*u
) {
5512 _cleanup_free_
char *p
= NULL
;
5517 if (u
->exported_invocation_id
)
5520 if (sd_id128_is_null(u
->invocation_id
))
5523 r
= unit_get_invocation_path(u
, &p
);
5525 return log_unit_debug_errno(u
, r
, "Failed to get invocation path: %m");
5527 r
= symlink_atomic(u
->invocation_id_string
, p
);
5529 return log_unit_debug_errno(u
, r
, "Failed to create invocation ID symlink %s: %m", p
);
5531 u
->exported_invocation_id
= true;
5535 static int unit_export_log_level_max(Unit
*u
, const ExecContext
*c
) {
5543 if (u
->exported_log_level_max
)
5546 if (c
->log_level_max
< 0)
5549 assert(c
->log_level_max
<= 7);
5551 buf
[0] = '0' + c
->log_level_max
;
5554 p
= strjoina("/run/systemd/units/log-level-max:", u
->id
);
5555 r
= symlink_atomic(buf
, p
);
5557 return log_unit_debug_errno(u
, r
, "Failed to create maximum log level symlink %s: %m", p
);
5559 u
->exported_log_level_max
= true;
5563 static int unit_export_log_extra_fields(Unit
*u
, const ExecContext
*c
) {
5564 _cleanup_close_
int fd
= -1;
5565 struct iovec
*iovec
;
5573 if (u
->exported_log_extra_fields
)
5576 if (c
->n_log_extra_fields
<= 0)
5579 sizes
= newa(le64_t
, c
->n_log_extra_fields
);
5580 iovec
= newa(struct iovec
, c
->n_log_extra_fields
* 2);
5582 for (i
= 0; i
< c
->n_log_extra_fields
; i
++) {
5583 sizes
[i
] = htole64(c
->log_extra_fields
[i
].iov_len
);
5585 iovec
[i
*2] = IOVEC_MAKE(sizes
+ i
, sizeof(le64_t
));
5586 iovec
[i
*2+1] = c
->log_extra_fields
[i
];
5589 p
= strjoina("/run/systemd/units/log-extra-fields:", u
->id
);
5590 pattern
= strjoina(p
, ".XXXXXX");
5592 fd
= mkostemp_safe(pattern
);
5594 return log_unit_debug_errno(u
, fd
, "Failed to create extra fields file %s: %m", p
);
5596 n
= writev(fd
, iovec
, c
->n_log_extra_fields
*2);
5598 r
= log_unit_debug_errno(u
, errno
, "Failed to write extra fields: %m");
5602 (void) fchmod(fd
, 0644);
5604 if (rename(pattern
, p
) < 0) {
5605 r
= log_unit_debug_errno(u
, errno
, "Failed to rename extra fields file: %m");
5609 u
->exported_log_extra_fields
= true;
5613 (void) unlink(pattern
);
5617 static int unit_export_log_ratelimit_interval(Unit
*u
, const ExecContext
*c
) {
5618 _cleanup_free_
char *buf
= NULL
;
5625 if (u
->exported_log_ratelimit_interval
)
5628 if (c
->log_ratelimit_interval_usec
== 0)
5631 p
= strjoina("/run/systemd/units/log-rate-limit-interval:", u
->id
);
5633 if (asprintf(&buf
, "%" PRIu64
, c
->log_ratelimit_interval_usec
) < 0)
5636 r
= symlink_atomic(buf
, p
);
5638 return log_unit_debug_errno(u
, r
, "Failed to create log rate limit interval symlink %s: %m", p
);
5640 u
->exported_log_ratelimit_interval
= true;
5644 static int unit_export_log_ratelimit_burst(Unit
*u
, const ExecContext
*c
) {
5645 _cleanup_free_
char *buf
= NULL
;
5652 if (u
->exported_log_ratelimit_burst
)
5655 if (c
->log_ratelimit_burst
== 0)
5658 p
= strjoina("/run/systemd/units/log-rate-limit-burst:", u
->id
);
5660 if (asprintf(&buf
, "%u", c
->log_ratelimit_burst
) < 0)
5663 r
= symlink_atomic(buf
, p
);
5665 return log_unit_debug_errno(u
, r
, "Failed to create log rate limit burst symlink %s: %m", p
);
5667 u
->exported_log_ratelimit_burst
= true;
5671 void unit_export_state_files(Unit
*u
) {
5672 const ExecContext
*c
;
5679 if (MANAGER_IS_TEST_RUN(u
->manager
))
5682 /* Exports a couple of unit properties to /run/systemd/units/, so that journald can quickly query this data
5683 * from there. Ideally, journald would use IPC to query this, like everybody else, but that's hard, as long as
5684 * the IPC system itself and PID 1 also log to the journal.
5686 * Note that these files really shouldn't be considered API for anyone else, as use a runtime file system as
5687 * IPC replacement is not compatible with today's world of file system namespaces. However, this doesn't really
5688 * apply to communication between the journal and systemd, as we assume that these two daemons live in the same
5689 * namespace at least.
5691 * Note that some of the "files" exported here are actually symlinks and not regular files. Symlinks work
5692 * better for storing small bits of data, in particular as we can write them with two system calls, and read
5695 (void) unit_export_invocation_id(u
);
5697 if (!MANAGER_IS_SYSTEM(u
->manager
))
5700 c
= unit_get_exec_context(u
);
5702 (void) unit_export_log_level_max(u
, c
);
5703 (void) unit_export_log_extra_fields(u
, c
);
5704 (void) unit_export_log_ratelimit_interval(u
, c
);
5705 (void) unit_export_log_ratelimit_burst(u
, c
);
5709 void unit_unlink_state_files(Unit
*u
) {
5717 /* Undoes the effect of unit_export_state() */
5719 if (u
->exported_invocation_id
) {
5720 _cleanup_free_
char *invocation_path
= NULL
;
5721 int r
= unit_get_invocation_path(u
, &invocation_path
);
5723 (void) unlink(invocation_path
);
5724 u
->exported_invocation_id
= false;
5728 if (!MANAGER_IS_SYSTEM(u
->manager
))
5731 if (u
->exported_log_level_max
) {
5732 p
= strjoina("/run/systemd/units/log-level-max:", u
->id
);
5735 u
->exported_log_level_max
= false;
5738 if (u
->exported_log_extra_fields
) {
5739 p
= strjoina("/run/systemd/units/extra-fields:", u
->id
);
5742 u
->exported_log_extra_fields
= false;
5745 if (u
->exported_log_ratelimit_interval
) {
5746 p
= strjoina("/run/systemd/units/log-rate-limit-interval:", u
->id
);
5749 u
->exported_log_ratelimit_interval
= false;
5752 if (u
->exported_log_ratelimit_burst
) {
5753 p
= strjoina("/run/systemd/units/log-rate-limit-burst:", u
->id
);
5756 u
->exported_log_ratelimit_burst
= false;
5760 int unit_prepare_exec(Unit
*u
) {
5765 /* Load any custom firewall BPF programs here once to test if they are existing and actually loadable.
5766 * Fail here early since later errors in the call chain unit_realize_cgroup to cgroup_context_apply are ignored. */
5767 r
= bpf_firewall_load_custom(u
);
5771 /* Prepares everything so that we can fork of a process for this unit */
5773 (void) unit_realize_cgroup(u
);
5775 if (u
->reset_accounting
) {
5776 (void) unit_reset_accounting(u
);
5777 u
->reset_accounting
= false;
5780 unit_export_state_files(u
);
5782 r
= unit_setup_exec_runtime(u
);
5786 r
= unit_setup_dynamic_creds(u
);
5793 static int log_leftover(pid_t pid
, int sig
, void *userdata
) {
5794 _cleanup_free_
char *comm
= NULL
;
5796 (void) get_process_comm(pid
, &comm
);
5798 if (comm
&& comm
[0] == '(') /* Most likely our own helper process (PAM?), ignore */
5801 log_unit_warning(userdata
,
5802 "Found left-over process " PID_FMT
" (%s) in control group while starting unit. Ignoring.\n"
5803 "This usually indicates unclean termination of a previous run, or service implementation deficiencies.",
5809 int unit_warn_leftover_processes(Unit
*u
) {
5812 (void) unit_pick_cgroup_path(u
);
5814 if (!u
->cgroup_path
)
5817 return cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
, 0, 0, NULL
, log_leftover
, u
);
5820 bool unit_needs_console(Unit
*u
) {
5822 UnitActiveState state
;
5826 state
= unit_active_state(u
);
5828 if (UNIT_IS_INACTIVE_OR_FAILED(state
))
5831 if (UNIT_VTABLE(u
)->needs_console
)
5832 return UNIT_VTABLE(u
)->needs_console(u
);
5834 /* If this unit type doesn't implement this call, let's use a generic fallback implementation: */
5835 ec
= unit_get_exec_context(u
);
5839 return exec_context_may_touch_console(ec
);
5842 const char *unit_label_path(const Unit
*u
) {
5847 /* Returns the file system path to use for MAC access decisions, i.e. the file to read the SELinux label off
5848 * when validating access checks. */
5850 p
= u
->source_path
?: u
->fragment_path
;
5854 /* If a unit is masked, then don't read the SELinux label of /dev/null, as that really makes no sense */
5855 if (path_equal(p
, "/dev/null"))
5861 int unit_pid_attachable(Unit
*u
, pid_t pid
, sd_bus_error
*error
) {
5866 /* Checks whether the specified PID is generally good for attaching, i.e. a valid PID, not our manager itself,
5867 * and not a kernel thread either */
5869 /* First, a simple range check */
5870 if (!pid_is_valid(pid
))
5871 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process identifier " PID_FMT
" is not valid.", pid
);
5873 /* Some extra safety check */
5874 if (pid
== 1 || pid
== getpid_cached())
5875 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process " PID_FMT
" is a manager process, refusing.", pid
);
5877 /* Don't even begin to bother with kernel threads */
5878 r
= is_kernel_thread(pid
);
5880 return sd_bus_error_setf(error
, SD_BUS_ERROR_UNIX_PROCESS_ID_UNKNOWN
, "Process with ID " PID_FMT
" does not exist.", pid
);
5882 return sd_bus_error_set_errnof(error
, r
, "Failed to determine whether process " PID_FMT
" is a kernel thread: %m", pid
);
5884 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process " PID_FMT
" is a kernel thread, refusing.", pid
);
5889 void unit_log_success(Unit
*u
) {
5892 log_struct(LOG_INFO
,
5893 "MESSAGE_ID=" SD_MESSAGE_UNIT_SUCCESS_STR
,
5895 LOG_UNIT_INVOCATION_ID(u
),
5896 LOG_UNIT_MESSAGE(u
, "Succeeded."));
5899 void unit_log_failure(Unit
*u
, const char *result
) {
5903 log_struct(LOG_WARNING
,
5904 "MESSAGE_ID=" SD_MESSAGE_UNIT_FAILURE_RESULT_STR
,
5906 LOG_UNIT_INVOCATION_ID(u
),
5907 LOG_UNIT_MESSAGE(u
, "Failed with result '%s'.", result
),
5908 "UNIT_RESULT=%s", result
);
5911 void unit_log_skip(Unit
*u
, const char *result
) {
5915 log_struct(LOG_INFO
,
5916 "MESSAGE_ID=" SD_MESSAGE_UNIT_SKIPPED_STR
,
5918 LOG_UNIT_INVOCATION_ID(u
),
5919 LOG_UNIT_MESSAGE(u
, "Skipped due to '%s'.", result
),
5920 "UNIT_RESULT=%s", result
);
5923 void unit_log_process_exit(
5926 const char *command
,
5936 /* If this is a successful exit, let's log about the exit code on DEBUG level. If this is a failure
5937 * and the process exited on its own via exit(), then let's make this a NOTICE, under the assumption
5938 * that the service already logged the reason at a higher log level on its own. Otherwise, make it a
5942 else if (code
== CLD_EXITED
)
5945 level
= LOG_WARNING
;
5948 "MESSAGE_ID=" SD_MESSAGE_UNIT_PROCESS_EXIT_STR
,
5949 LOG_UNIT_MESSAGE(u
, "%s exited, code=%s, status=%i/%s",
5951 sigchld_code_to_string(code
), status
,
5952 strna(code
== CLD_EXITED
5953 ? exit_status_to_string(status
, EXIT_STATUS_FULL
)
5954 : signal_to_string(status
))),
5955 "EXIT_CODE=%s", sigchld_code_to_string(code
),
5956 "EXIT_STATUS=%i", status
,
5957 "COMMAND=%s", strna(command
),
5959 LOG_UNIT_INVOCATION_ID(u
));
5962 int unit_exit_status(Unit
*u
) {
5965 /* Returns the exit status to propagate for the most recent cycle of this unit. Returns a value in the range
5966 * 0…255 if there's something to propagate. EOPNOTSUPP if the concept does not apply to this unit type, ENODATA
5967 * if no data is currently known (for example because the unit hasn't deactivated yet) and EBADE if the main
5968 * service process has exited abnormally (signal/coredump). */
5970 if (!UNIT_VTABLE(u
)->exit_status
)
5973 return UNIT_VTABLE(u
)->exit_status(u
);
5976 int unit_failure_action_exit_status(Unit
*u
) {
5981 /* Returns the exit status to propagate on failure, or an error if there's nothing to propagate */
5983 if (u
->failure_action_exit_status
>= 0)
5984 return u
->failure_action_exit_status
;
5986 r
= unit_exit_status(u
);
5987 if (r
== -EBADE
) /* Exited, but not cleanly (i.e. by signal or such) */
5993 int unit_success_action_exit_status(Unit
*u
) {
5998 /* Returns the exit status to propagate on success, or an error if there's nothing to propagate */
6000 if (u
->success_action_exit_status
>= 0)
6001 return u
->success_action_exit_status
;
6003 r
= unit_exit_status(u
);
6004 if (r
== -EBADE
) /* Exited, but not cleanly (i.e. by signal or such) */
6010 int unit_test_trigger_loaded(Unit
*u
) {
6013 /* Tests whether the unit to trigger is loaded */
6015 trigger
= UNIT_TRIGGER(u
);
6017 return log_unit_error_errno(u
, SYNTHETIC_ERRNO(ENOENT
),
6018 "Refusing to start, no unit to trigger.");
6019 if (trigger
->load_state
!= UNIT_LOADED
)
6020 return log_unit_error_errno(u
, SYNTHETIC_ERRNO(ENOENT
),
6021 "Refusing to start, unit %s to trigger not loaded.", trigger
->id
);
6026 void unit_destroy_runtime_directory(Unit
*u
, const ExecContext
*context
) {
6027 if (context
->runtime_directory_preserve_mode
== EXEC_PRESERVE_NO
||
6028 (context
->runtime_directory_preserve_mode
== EXEC_PRESERVE_RESTART
&& !unit_will_restart(u
)))
6029 exec_context_destroy_runtime_directory(context
, u
->manager
->prefix
[EXEC_DIRECTORY_RUNTIME
]);
6032 int unit_clean(Unit
*u
, ExecCleanMask mask
) {
6033 UnitActiveState state
;
6037 /* Special return values:
6039 * -EOPNOTSUPP → cleaning not supported for this unit type
6040 * -EUNATCH → cleaning not defined for this resource type
6041 * -EBUSY → unit currently can't be cleaned since it's running or not properly loaded, or has
6042 * a job queued or similar
6045 if (!UNIT_VTABLE(u
)->clean
)
6051 if (u
->load_state
!= UNIT_LOADED
)
6057 state
= unit_active_state(u
);
6058 if (!IN_SET(state
, UNIT_INACTIVE
))
6061 return UNIT_VTABLE(u
)->clean(u
, mask
);
6064 int unit_can_clean(Unit
*u
, ExecCleanMask
*ret
) {
6067 if (!UNIT_VTABLE(u
)->clean
||
6068 u
->load_state
!= UNIT_LOADED
) {
6073 /* When the clean() method is set, can_clean() really should be set too */
6074 assert(UNIT_VTABLE(u
)->can_clean
);
6076 return UNIT_VTABLE(u
)->can_clean(u
, ret
);
6079 static const char* const collect_mode_table
[_COLLECT_MODE_MAX
] = {
6080 [COLLECT_INACTIVE
] = "inactive",
6081 [COLLECT_INACTIVE_OR_FAILED
] = "inactive-or-failed",
6084 DEFINE_STRING_TABLE_LOOKUP(collect_mode
, CollectMode
);