1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2011 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
34 #include <sys/inotify.h>
39 #include "sd-journal.h"
42 #include "bus-error.h"
45 #include "chattr-util.h"
50 #include "hostname-util.h"
52 #include "journal-def.h"
53 #include "journal-internal.h"
54 #include "journal-qrcode.h"
55 #include "journal-vacuum.h"
56 #include "journal-verify.h"
58 #include "logs-show.h"
61 #include "parse-util.h"
62 #include "path-util.h"
63 #include "rlimit-util.h"
67 #include "terminal-util.h"
68 #include "unit-name.h"
69 #include "user-util.h"
71 #define DEFAULT_FSS_INTERVAL_USEC (15*USEC_PER_MINUTE)
74 /* Special values for arg_lines */
75 ARG_LINES_DEFAULT
= -2,
79 static OutputMode arg_output
= OUTPUT_SHORT
;
80 static bool arg_utc
= false;
81 static bool arg_pager_end
= false;
82 static bool arg_follow
= false;
83 static bool arg_full
= true;
84 static bool arg_all
= false;
85 static bool arg_no_pager
= false;
86 static int arg_lines
= ARG_LINES_DEFAULT
;
87 static bool arg_no_tail
= false;
88 static bool arg_quiet
= false;
89 static bool arg_merge
= false;
90 static bool arg_boot
= false;
91 static sd_id128_t arg_boot_id
= {};
92 static int arg_boot_offset
= 0;
93 static bool arg_dmesg
= false;
94 static const char *arg_cursor
= NULL
;
95 static const char *arg_after_cursor
= NULL
;
96 static bool arg_show_cursor
= false;
97 static const char *arg_directory
= NULL
;
98 static char **arg_file
= NULL
;
99 static int arg_priorities
= 0xFF;
100 static const char *arg_verify_key
= NULL
;
102 static usec_t arg_interval
= DEFAULT_FSS_INTERVAL_USEC
;
103 static bool arg_force
= false;
105 static usec_t arg_since
, arg_until
;
106 static bool arg_since_set
= false, arg_until_set
= false;
107 static char **arg_syslog_identifier
= NULL
;
108 static char **arg_system_units
= NULL
;
109 static char **arg_user_units
= NULL
;
110 static const char *arg_field
= NULL
;
111 static bool arg_catalog
= false;
112 static bool arg_reverse
= false;
113 static int arg_journal_type
= 0;
114 static char *arg_root
= NULL
;
115 static const char *arg_machine
= NULL
;
116 static uint64_t arg_vacuum_size
= 0;
117 static uint64_t arg_vacuum_n_files
= 0;
118 static usec_t arg_vacuum_time
= 0;
129 ACTION_UPDATE_CATALOG
,
134 } arg_action
= ACTION_SHOW
;
136 typedef struct BootId
{
140 LIST_FIELDS(struct BootId
, boot_list
);
143 static void pager_open_if_enabled(void) {
148 pager_open(arg_pager_end
);
151 static char *format_timestamp_maybe_utc(char *buf
, size_t l
, usec_t t
) {
154 return format_timestamp_utc(buf
, l
, t
);
156 return format_timestamp(buf
, l
, t
);
159 static int parse_boot_descriptor(const char *x
, sd_id128_t
*boot_id
, int *offset
) {
160 sd_id128_t id
= SD_ID128_NULL
;
163 if (strlen(x
) >= 32) {
167 r
= sd_id128_from_string(t
, &id
);
171 if (*x
!= '-' && *x
!= '+' && *x
!= 0)
175 r
= safe_atoi(x
, &off
);
180 r
= safe_atoi(x
, &off
);
194 static void help(void) {
196 pager_open_if_enabled();
198 printf("%s [OPTIONS...] [MATCHES...]\n\n"
199 "Query the journal.\n\n"
201 " --system Show the system journal\n"
202 " --user Show the user journal for the current user\n"
203 " -M --machine=CONTAINER Operate on local container\n"
204 " -S --since=DATE Show entries not older than the specified date\n"
205 " -U --until=DATE Show entries not newer than the specified date\n"
206 " -c --cursor=CURSOR Show entries starting at the specified cursor\n"
207 " --after-cursor=CURSOR Show entries after the specified cursor\n"
208 " --show-cursor Print the cursor after all the entries\n"
209 " -b --boot[=ID] Show current boot or the specified boot\n"
210 " --list-boots Show terse information about recorded boots\n"
211 " -k --dmesg Show kernel message log from the current boot\n"
212 " -u --unit=UNIT Show logs from the specified unit\n"
213 " --user-unit=UNIT Show logs from the specified user unit\n"
214 " -t --identifier=STRING Show entries with the specified syslog identifier\n"
215 " -p --priority=RANGE Show entries with the specified priority\n"
216 " -e --pager-end Immediately jump to the end in the pager\n"
217 " -f --follow Follow the journal\n"
218 " -n --lines[=INTEGER] Number of journal entries to show\n"
219 " --no-tail Show all lines, even in follow mode\n"
220 " -r --reverse Show the newest entries first\n"
221 " -o --output=STRING Change journal output mode (short, short-iso,\n"
222 " short-precise, short-monotonic, verbose,\n"
223 " export, json, json-pretty, json-sse, cat)\n"
224 " --utc Express time in Coordinated Universal Time (UTC)\n"
225 " -x --catalog Add message explanations where available\n"
226 " --no-full Ellipsize fields\n"
227 " -a --all Show all fields, including long and unprintable\n"
228 " -q --quiet Do not show info messages and privilege warning\n"
229 " --no-pager Do not pipe output into a pager\n"
230 " -m --merge Show entries from all available journals\n"
231 " -D --directory=PATH Show journal files from directory\n"
232 " --file=PATH Show journal file\n"
233 " --root=ROOT Operate on catalog files underneath the root ROOT\n"
235 " --interval=TIME Time interval for changing the FSS sealing key\n"
236 " --verify-key=KEY Specify FSS verification key\n"
237 " --force Override of the FSS key pair with --setup-keys\n"
240 " -h --help Show this help text\n"
241 " --version Show package version\n"
242 " -F --field=FIELD List all values that a specified field takes\n"
243 " --new-id128 Generate a new 128-bit ID\n"
244 " --disk-usage Show total disk usage of all journal files\n"
245 " --vacuum-size=BYTES Reduce disk usage below specified size\n"
246 " --vacuum-files=INT Leave only the specified number of journal files\n"
247 " --vacuum-time=TIME Remove journal files older than specified time\n"
248 " --flush Flush all journal data from /run into /var\n"
249 " --rotate Request immediate rotation of the journal files\n"
250 " --header Show journal header information\n"
251 " --list-catalog Show all message IDs in the catalog\n"
252 " --dump-catalog Show entries in the message catalog\n"
253 " --update-catalog Update the message catalog database\n"
255 " --setup-keys Generate a new FSS key pair\n"
256 " --verify Verify journal file consistency\n"
258 , program_invocation_short_name
);
261 static int parse_argv(int argc
, char *argv
[]) {
295 static const struct option options
[] = {
296 { "help", no_argument
, NULL
, 'h' },
297 { "version" , no_argument
, NULL
, ARG_VERSION
},
298 { "no-pager", no_argument
, NULL
, ARG_NO_PAGER
},
299 { "pager-end", no_argument
, NULL
, 'e' },
300 { "follow", no_argument
, NULL
, 'f' },
301 { "force", no_argument
, NULL
, ARG_FORCE
},
302 { "output", required_argument
, NULL
, 'o' },
303 { "all", no_argument
, NULL
, 'a' },
304 { "full", no_argument
, NULL
, 'l' },
305 { "no-full", no_argument
, NULL
, ARG_NO_FULL
},
306 { "lines", optional_argument
, NULL
, 'n' },
307 { "no-tail", no_argument
, NULL
, ARG_NO_TAIL
},
308 { "new-id128", no_argument
, NULL
, ARG_NEW_ID128
},
309 { "quiet", no_argument
, NULL
, 'q' },
310 { "merge", no_argument
, NULL
, 'm' },
311 { "boot", optional_argument
, NULL
, 'b' },
312 { "list-boots", no_argument
, NULL
, ARG_LIST_BOOTS
},
313 { "this-boot", optional_argument
, NULL
, 'b' }, /* deprecated */
314 { "dmesg", no_argument
, NULL
, 'k' },
315 { "system", no_argument
, NULL
, ARG_SYSTEM
},
316 { "user", no_argument
, NULL
, ARG_USER
},
317 { "directory", required_argument
, NULL
, 'D' },
318 { "file", required_argument
, NULL
, ARG_FILE
},
319 { "root", required_argument
, NULL
, ARG_ROOT
},
320 { "header", no_argument
, NULL
, ARG_HEADER
},
321 { "identifier", required_argument
, NULL
, 't' },
322 { "priority", required_argument
, NULL
, 'p' },
323 { "setup-keys", no_argument
, NULL
, ARG_SETUP_KEYS
},
324 { "interval", required_argument
, NULL
, ARG_INTERVAL
},
325 { "verify", no_argument
, NULL
, ARG_VERIFY
},
326 { "verify-key", required_argument
, NULL
, ARG_VERIFY_KEY
},
327 { "disk-usage", no_argument
, NULL
, ARG_DISK_USAGE
},
328 { "cursor", required_argument
, NULL
, 'c' },
329 { "after-cursor", required_argument
, NULL
, ARG_AFTER_CURSOR
},
330 { "show-cursor", no_argument
, NULL
, ARG_SHOW_CURSOR
},
331 { "since", required_argument
, NULL
, 'S' },
332 { "until", required_argument
, NULL
, 'U' },
333 { "unit", required_argument
, NULL
, 'u' },
334 { "user-unit", required_argument
, NULL
, ARG_USER_UNIT
},
335 { "field", required_argument
, NULL
, 'F' },
336 { "catalog", no_argument
, NULL
, 'x' },
337 { "list-catalog", no_argument
, NULL
, ARG_LIST_CATALOG
},
338 { "dump-catalog", no_argument
, NULL
, ARG_DUMP_CATALOG
},
339 { "update-catalog", no_argument
, NULL
, ARG_UPDATE_CATALOG
},
340 { "reverse", no_argument
, NULL
, 'r' },
341 { "machine", required_argument
, NULL
, 'M' },
342 { "utc", no_argument
, NULL
, ARG_UTC
},
343 { "flush", no_argument
, NULL
, ARG_FLUSH
},
344 { "rotate", no_argument
, NULL
, ARG_ROTATE
},
345 { "vacuum-size", required_argument
, NULL
, ARG_VACUUM_SIZE
},
346 { "vacuum-files", required_argument
, NULL
, ARG_VACUUM_FILES
},
347 { "vacuum-time", required_argument
, NULL
, ARG_VACUUM_TIME
},
356 while ((c
= getopt_long(argc
, argv
, "hefo:aln::qmb::kD:p:c:S:U:t:u:F:xrM:", options
, NULL
)) >= 0)
372 arg_pager_end
= true;
374 if (arg_lines
== ARG_LINES_DEFAULT
)
384 arg_output
= output_mode_from_string(optarg
);
385 if (arg_output
< 0) {
386 log_error("Unknown output format '%s'.", optarg
);
390 if (arg_output
== OUTPUT_EXPORT
||
391 arg_output
== OUTPUT_JSON
||
392 arg_output
== OUTPUT_JSON_PRETTY
||
393 arg_output
== OUTPUT_JSON_SSE
||
394 arg_output
== OUTPUT_CAT
)
413 if (streq(optarg
, "all"))
414 arg_lines
= ARG_LINES_ALL
;
416 r
= safe_atoi(optarg
, &arg_lines
);
417 if (r
< 0 || arg_lines
< 0) {
418 log_error("Failed to parse lines '%s'", optarg
);
425 /* Hmm, no argument? Maybe the next
426 * word on the command line is
427 * supposed to be the argument? Let's
428 * see if there is one, and is
432 if (streq(argv
[optind
], "all")) {
433 arg_lines
= ARG_LINES_ALL
;
435 } else if (safe_atoi(argv
[optind
], &n
) >= 0 && n
>= 0) {
449 arg_action
= ACTION_NEW_ID128
;
464 r
= parse_boot_descriptor(optarg
, &arg_boot_id
, &arg_boot_offset
);
466 log_error("Failed to parse boot descriptor '%s'", optarg
);
471 /* Hmm, no argument? Maybe the next
472 * word on the command line is
473 * supposed to be the argument? Let's
474 * see if there is one and is parsable
475 * as a boot descriptor... */
478 parse_boot_descriptor(argv
[optind
], &arg_boot_id
, &arg_boot_offset
) >= 0)
485 arg_action
= ACTION_LIST_BOOTS
;
489 arg_boot
= arg_dmesg
= true;
493 arg_journal_type
|= SD_JOURNAL_SYSTEM
;
497 arg_journal_type
|= SD_JOURNAL_CURRENT_USER
;
501 arg_machine
= optarg
;
505 arg_directory
= optarg
;
509 r
= glob_extend(&arg_file
, optarg
);
511 return log_error_errno(r
, "Failed to add paths: %m");
515 r
= parse_path_argument_and_warn(optarg
, true, &arg_root
);
524 case ARG_AFTER_CURSOR
:
525 arg_after_cursor
= optarg
;
528 case ARG_SHOW_CURSOR
:
529 arg_show_cursor
= true;
533 arg_action
= ACTION_PRINT_HEADER
;
537 arg_action
= ACTION_VERIFY
;
541 arg_action
= ACTION_DISK_USAGE
;
544 case ARG_VACUUM_SIZE
:
545 r
= parse_size(optarg
, 1024, &arg_vacuum_size
);
547 log_error("Failed to parse vacuum size: %s", optarg
);
551 arg_action
= ACTION_VACUUM
;
554 case ARG_VACUUM_FILES
:
555 r
= safe_atou64(optarg
, &arg_vacuum_n_files
);
557 log_error("Failed to parse vacuum files: %s", optarg
);
561 arg_action
= ACTION_VACUUM
;
564 case ARG_VACUUM_TIME
:
565 r
= parse_sec(optarg
, &arg_vacuum_time
);
567 log_error("Failed to parse vacuum time: %s", optarg
);
571 arg_action
= ACTION_VACUUM
;
580 arg_action
= ACTION_SETUP_KEYS
;
585 arg_action
= ACTION_VERIFY
;
586 arg_verify_key
= optarg
;
591 r
= parse_sec(optarg
, &arg_interval
);
592 if (r
< 0 || arg_interval
<= 0) {
593 log_error("Failed to parse sealing key change interval: %s", optarg
);
602 log_error("Forward-secure sealing not available.");
609 dots
= strstr(optarg
, "..");
615 a
= strndup(optarg
, dots
- optarg
);
619 from
= log_level_from_string(a
);
620 to
= log_level_from_string(dots
+ 2);
623 if (from
< 0 || to
< 0) {
624 log_error("Failed to parse log level range %s", optarg
);
631 for (i
= from
; i
<= to
; i
++)
632 arg_priorities
|= 1 << i
;
634 for (i
= to
; i
<= from
; i
++)
635 arg_priorities
|= 1 << i
;
641 p
= log_level_from_string(optarg
);
643 log_error("Unknown log level %s", optarg
);
649 for (i
= 0; i
<= p
; i
++)
650 arg_priorities
|= 1 << i
;
657 r
= parse_timestamp(optarg
, &arg_since
);
659 log_error("Failed to parse timestamp: %s", optarg
);
662 arg_since_set
= true;
666 r
= parse_timestamp(optarg
, &arg_until
);
668 log_error("Failed to parse timestamp: %s", optarg
);
671 arg_until_set
= true;
675 r
= strv_extend(&arg_syslog_identifier
, optarg
);
681 r
= strv_extend(&arg_system_units
, optarg
);
687 r
= strv_extend(&arg_user_units
, optarg
);
700 case ARG_LIST_CATALOG
:
701 arg_action
= ACTION_LIST_CATALOG
;
704 case ARG_DUMP_CATALOG
:
705 arg_action
= ACTION_DUMP_CATALOG
;
708 case ARG_UPDATE_CATALOG
:
709 arg_action
= ACTION_UPDATE_CATALOG
;
721 arg_action
= ACTION_FLUSH
;
725 arg_action
= ACTION_ROTATE
;
732 assert_not_reached("Unhandled option");
735 if (arg_follow
&& !arg_no_tail
&& !arg_since
&& arg_lines
== ARG_LINES_DEFAULT
)
738 if (!!arg_directory
+ !!arg_file
+ !!arg_machine
> 1) {
739 log_error("Please specify either -D/--directory= or --file= or -M/--machine=, not more than one.");
743 if (arg_since_set
&& arg_until_set
&& arg_since
> arg_until
) {
744 log_error("--since= must be before --until=.");
748 if (!!arg_cursor
+ !!arg_after_cursor
+ !!arg_since_set
> 1) {
749 log_error("Please specify only one of --since=, --cursor=, and --after-cursor.");
753 if (arg_follow
&& arg_reverse
) {
754 log_error("Please specify either --reverse= or --follow=, not both.");
758 if (!IN_SET(arg_action
, ACTION_SHOW
, ACTION_DUMP_CATALOG
, ACTION_LIST_CATALOG
) && optind
< argc
) {
759 log_error("Extraneous arguments starting with '%s'", argv
[optind
]);
763 if ((arg_boot
|| arg_action
== ACTION_LIST_BOOTS
) && (arg_file
|| arg_directory
|| arg_merge
)) {
764 log_error("Using --boot or --list-boots with --file, --directory or --merge is not supported.");
771 static int generate_new_id128(void) {
776 r
= sd_id128_randomize(&id
);
778 return log_error_errno(r
, "Failed to generate ID: %m");
780 printf("As string:\n"
781 SD_ID128_FORMAT_STR
"\n\n"
783 "%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x\n\n"
785 "#define MESSAGE_XYZ SD_ID128_MAKE(",
786 SD_ID128_FORMAT_VAL(id
),
787 SD_ID128_FORMAT_VAL(id
));
788 for (i
= 0; i
< 16; i
++)
789 printf("%02x%s", id
.bytes
[i
], i
!= 15 ? "," : "");
790 fputs(")\n\n", stdout
);
792 printf("As Python constant:\n"
794 ">>> MESSAGE_XYZ = uuid.UUID('" SD_ID128_FORMAT_STR
"')\n",
795 SD_ID128_FORMAT_VAL(id
));
800 static int add_matches(sd_journal
*j
, char **args
) {
802 bool have_term
= false;
806 STRV_FOREACH(i
, args
) {
809 if (streq(*i
, "+")) {
812 r
= sd_journal_add_disjunction(j
);
815 } else if (path_is_absolute(*i
)) {
816 _cleanup_free_
char *p
, *t
= NULL
, *t2
= NULL
;
818 _cleanup_free_
char *interpreter
= NULL
;
821 p
= canonicalize_file_name(*i
);
824 if (lstat(path
, &st
) < 0)
825 return log_error_errno(errno
, "Couldn't stat file: %m");
827 if (S_ISREG(st
.st_mode
) && (0111 & st
.st_mode
)) {
828 if (executable_is_script(path
, &interpreter
) > 0) {
829 _cleanup_free_
char *comm
;
831 comm
= strndup(basename(path
), 15);
835 t
= strappend("_COMM=", comm
);
837 /* Append _EXE only if the interpreter is not a link.
838 Otherwise, it might be outdated often. */
839 if (lstat(interpreter
, &st
) == 0 &&
840 !S_ISLNK(st
.st_mode
)) {
841 t2
= strappend("_EXE=", interpreter
);
846 t
= strappend("_EXE=", path
);
847 } else if (S_ISCHR(st
.st_mode
))
848 (void) asprintf(&t
, "_KERNEL_DEVICE=c%u:%u", major(st
.st_rdev
), minor(st
.st_rdev
));
849 else if (S_ISBLK(st
.st_mode
))
850 (void) asprintf(&t
, "_KERNEL_DEVICE=b%u:%u", major(st
.st_rdev
), minor(st
.st_rdev
));
852 log_error("File is neither a device node, nor regular file, nor executable: %s", *i
);
859 r
= sd_journal_add_match(j
, t
, 0);
861 r
= sd_journal_add_match(j
, t2
, 0);
865 r
= sd_journal_add_match(j
, *i
, 0);
870 return log_error_errno(r
, "Failed to add match '%s': %m", *i
);
873 if (!strv_isempty(args
) && !have_term
) {
874 log_error("\"+\" can only be used between terms");
881 static void boot_id_free_all(BootId
*l
) {
885 LIST_REMOVE(boot_list
, l
, i
);
890 static int discover_next_boot(
894 bool read_realtime
) {
897 char match
[9+32+1] = "_BOOT_ID=";
898 _cleanup_free_ BootId
*next_boot
= NULL
;
903 /* We expect the journal to be on the last position of a boot
904 * (in relation to the direction we are going), so that the next
905 * invocation of sd_journal_next/previous will be from a different
906 * boot. We then collect any information we desire and then jump
907 * to the last location of the new boot by using a _BOOT_ID match
908 * coming from the other journal direction. */
910 /* Make sure we aren't restricted by any _BOOT_ID matches, so that
911 * we can actually advance to a *different* boot. */
912 sd_journal_flush_matches(j
);
915 r
= sd_journal_previous(j
);
917 r
= sd_journal_next(j
);
921 return 0; /* End of journal, yay. */
923 next_boot
= new0(BootId
, 1);
927 r
= sd_journal_get_monotonic_usec(j
, NULL
, &next_boot
->id
);
932 r
= sd_journal_get_realtime_usec(j
, &next_boot
->first
);
937 /* Now seek to the last occurrence of this boot ID. */
938 sd_id128_to_string(next_boot
->id
, match
+ 9);
939 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
944 r
= sd_journal_seek_head(j
);
946 r
= sd_journal_seek_tail(j
);
951 r
= sd_journal_next(j
);
953 r
= sd_journal_previous(j
);
957 return -ENODATA
; /* This shouldn't happen. We just came from this very boot ID. */
960 r
= sd_journal_get_realtime_usec(j
, &next_boot
->last
);
971 static int get_boots(
974 BootId
*query_ref_boot
,
975 int ref_boot_offset
) {
979 BootId
*head
= NULL
, *tail
= NULL
;
980 const bool advance_older
= query_ref_boot
&& ref_boot_offset
<= 0;
984 /* Adjust for the asymmetry that offset 0 is
985 * the last (and current) boot, while 1 is considered the
986 * (chronological) first boot in the journal. */
987 skip_once
= query_ref_boot
&& sd_id128_is_null(query_ref_boot
->id
) && ref_boot_offset
< 0;
989 /* Advance to the earliest/latest occurrence of our reference
990 * boot ID (taking our lookup direction into account), so that
991 * discover_next_boot() can do its job.
992 * If no reference is given, the journal head/tail will do,
993 * they're "virtual" boots after all. */
994 if (query_ref_boot
&& !sd_id128_is_null(query_ref_boot
->id
)) {
995 char match
[9+32+1] = "_BOOT_ID=";
997 sd_journal_flush_matches(j
);
999 sd_id128_to_string(query_ref_boot
->id
, match
+ 9);
1000 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
1005 r
= sd_journal_seek_head(j
);
1007 r
= sd_journal_seek_tail(j
);
1012 r
= sd_journal_next(j
);
1014 r
= sd_journal_previous(j
);
1019 else if (ref_boot_offset
== 0) {
1025 r
= sd_journal_seek_tail(j
);
1027 r
= sd_journal_seek_head(j
);
1031 /* No sd_journal_next/previous here. */
1035 _cleanup_free_ BootId
*current
= NULL
;
1037 r
= discover_next_boot(j
, ¤t
, advance_older
, !query_ref_boot
);
1039 boot_id_free_all(head
);
1046 if (query_ref_boot
) {
1048 ref_boot_offset
+= advance_older
? 1 : -1;
1051 if (ref_boot_offset
== 0) {
1053 query_ref_boot
->id
= current
->id
;
1057 LIST_INSERT_AFTER(boot_list
, head
, tail
, current
);
1068 sd_journal_flush_matches(j
);
1073 static int list_boots(sd_journal
*j
) {
1075 BootId
*id
, *all_ids
;
1079 count
= get_boots(j
, &all_ids
, NULL
, 0);
1081 return log_error_errno(count
, "Failed to determine boots: %m");
1085 pager_open_if_enabled();
1087 /* numbers are one less, but we need an extra char for the sign */
1088 w
= DECIMAL_STR_WIDTH(count
- 1) + 1;
1091 LIST_FOREACH(boot_list
, id
, all_ids
) {
1092 char a
[FORMAT_TIMESTAMP_MAX
], b
[FORMAT_TIMESTAMP_MAX
];
1094 printf("% *i " SD_ID128_FORMAT_STR
" %s—%s\n",
1096 SD_ID128_FORMAT_VAL(id
->id
),
1097 format_timestamp_maybe_utc(a
, sizeof(a
), id
->first
),
1098 format_timestamp_maybe_utc(b
, sizeof(b
), id
->last
));
1102 boot_id_free_all(all_ids
);
1107 static int add_boot(sd_journal
*j
) {
1108 char match
[9+32+1] = "_BOOT_ID=";
1110 BootId ref_boot_id
= {};
1117 if (arg_boot_offset
== 0 && sd_id128_equal(arg_boot_id
, SD_ID128_NULL
))
1118 return add_match_this_boot(j
, arg_machine
);
1120 ref_boot_id
.id
= arg_boot_id
;
1121 r
= get_boots(j
, NULL
, &ref_boot_id
, arg_boot_offset
);
1124 const char *reason
= (r
== 0) ? "No such boot ID in journal" : strerror(-r
);
1126 if (sd_id128_is_null(arg_boot_id
))
1127 log_error("Failed to look up boot %+i: %s", arg_boot_offset
, reason
);
1129 log_error("Failed to look up boot ID "SD_ID128_FORMAT_STR
"%+i: %s",
1130 SD_ID128_FORMAT_VAL(arg_boot_id
), arg_boot_offset
, reason
);
1132 return r
== 0 ? -ENODATA
: r
;
1135 sd_id128_to_string(ref_boot_id
.id
, match
+ 9);
1137 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
1139 return log_error_errno(r
, "Failed to add match: %m");
1141 r
= sd_journal_add_conjunction(j
);
1143 return log_error_errno(r
, "Failed to add conjunction: %m");
1148 static int add_dmesg(sd_journal
*j
) {
1155 r
= sd_journal_add_match(j
, "_TRANSPORT=kernel", strlen("_TRANSPORT=kernel"));
1157 return log_error_errno(r
, "Failed to add match: %m");
1159 r
= sd_journal_add_conjunction(j
);
1161 return log_error_errno(r
, "Failed to add conjunction: %m");
1166 static int get_possible_units(
1172 _cleanup_set_free_free_ Set
*found
;
1176 found
= set_new(&string_hash_ops
);
1180 NULSTR_FOREACH(field
, fields
) {
1184 r
= sd_journal_query_unique(j
, field
);
1188 SD_JOURNAL_FOREACH_UNIQUE(j
, data
, size
) {
1189 char **pattern
, *eq
;
1191 _cleanup_free_
char *u
= NULL
;
1193 eq
= memchr(data
, '=', size
);
1195 prefix
= eq
- (char*) data
+ 1;
1199 u
= strndup((char*) data
+ prefix
, size
- prefix
);
1203 STRV_FOREACH(pattern
, patterns
)
1204 if (fnmatch(*pattern
, u
, FNM_NOESCAPE
) == 0) {
1205 log_debug("Matched %s with pattern %s=%s", u
, field
, *pattern
);
1207 r
= set_consume(found
, u
);
1209 if (r
< 0 && r
!= -EEXIST
)
1222 /* This list is supposed to return the superset of unit names
1223 * possibly matched by rules added with add_matches_for_unit... */
1224 #define SYSTEM_UNITS \
1228 "OBJECT_SYSTEMD_UNIT\0" \
1231 /* ... and add_matches_for_user_unit */
1232 #define USER_UNITS \
1233 "_SYSTEMD_USER_UNIT\0" \
1235 "COREDUMP_USER_UNIT\0" \
1236 "OBJECT_SYSTEMD_USER_UNIT\0"
1238 static int add_units(sd_journal
*j
) {
1239 _cleanup_strv_free_
char **patterns
= NULL
;
1245 STRV_FOREACH(i
, arg_system_units
) {
1246 _cleanup_free_
char *u
= NULL
;
1248 r
= unit_name_mangle(*i
, UNIT_NAME_GLOB
, &u
);
1252 if (string_is_glob(u
)) {
1253 r
= strv_push(&patterns
, u
);
1258 r
= add_matches_for_unit(j
, u
);
1261 r
= sd_journal_add_disjunction(j
);
1268 if (!strv_isempty(patterns
)) {
1269 _cleanup_set_free_free_ Set
*units
= NULL
;
1273 r
= get_possible_units(j
, SYSTEM_UNITS
, patterns
, &units
);
1277 SET_FOREACH(u
, units
, it
) {
1278 r
= add_matches_for_unit(j
, u
);
1281 r
= sd_journal_add_disjunction(j
);
1288 patterns
= strv_free(patterns
);
1290 STRV_FOREACH(i
, arg_user_units
) {
1291 _cleanup_free_
char *u
= NULL
;
1293 r
= unit_name_mangle(*i
, UNIT_NAME_GLOB
, &u
);
1297 if (string_is_glob(u
)) {
1298 r
= strv_push(&patterns
, u
);
1303 r
= add_matches_for_user_unit(j
, u
, getuid());
1306 r
= sd_journal_add_disjunction(j
);
1313 if (!strv_isempty(patterns
)) {
1314 _cleanup_set_free_free_ Set
*units
= NULL
;
1318 r
= get_possible_units(j
, USER_UNITS
, patterns
, &units
);
1322 SET_FOREACH(u
, units
, it
) {
1323 r
= add_matches_for_user_unit(j
, u
, getuid());
1326 r
= sd_journal_add_disjunction(j
);
1333 /* Complain if the user request matches but nothing whatsoever was
1334 * found, since otherwise everything would be matched. */
1335 if (!(strv_isempty(arg_system_units
) && strv_isempty(arg_user_units
)) && count
== 0)
1338 r
= sd_journal_add_conjunction(j
);
1345 static int add_priorities(sd_journal
*j
) {
1346 char match
[] = "PRIORITY=0";
1350 if (arg_priorities
== 0xFF)
1353 for (i
= LOG_EMERG
; i
<= LOG_DEBUG
; i
++)
1354 if (arg_priorities
& (1 << i
)) {
1355 match
[sizeof(match
)-2] = '0' + i
;
1357 r
= sd_journal_add_match(j
, match
, strlen(match
));
1359 return log_error_errno(r
, "Failed to add match: %m");
1362 r
= sd_journal_add_conjunction(j
);
1364 return log_error_errno(r
, "Failed to add conjunction: %m");
1370 static int add_syslog_identifier(sd_journal
*j
) {
1376 STRV_FOREACH(i
, arg_syslog_identifier
) {
1379 u
= strjoina("SYSLOG_IDENTIFIER=", *i
);
1380 r
= sd_journal_add_match(j
, u
, 0);
1383 r
= sd_journal_add_disjunction(j
);
1388 r
= sd_journal_add_conjunction(j
);
1395 static int setup_keys(void) {
1397 size_t mpk_size
, seed_size
, state_size
, i
;
1398 uint8_t *mpk
, *seed
, *state
;
1400 sd_id128_t machine
, boot
;
1401 char *p
= NULL
, *k
= NULL
;
1406 r
= stat("/var/log/journal", &st
);
1407 if (r
< 0 && errno
!= ENOENT
&& errno
!= ENOTDIR
)
1408 return log_error_errno(errno
, "stat(\"%s\") failed: %m", "/var/log/journal");
1410 if (r
< 0 || !S_ISDIR(st
.st_mode
)) {
1411 log_error("%s is not a directory, must be using persistent logging for FSS.",
1412 "/var/log/journal");
1413 return r
< 0 ? -errno
: -ENOTDIR
;
1416 r
= sd_id128_get_machine(&machine
);
1418 return log_error_errno(r
, "Failed to get machine ID: %m");
1420 r
= sd_id128_get_boot(&boot
);
1422 return log_error_errno(r
, "Failed to get boot ID: %m");
1424 if (asprintf(&p
, "/var/log/journal/" SD_ID128_FORMAT_STR
"/fss",
1425 SD_ID128_FORMAT_VAL(machine
)) < 0)
1430 if (r
< 0 && errno
!= ENOENT
) {
1431 r
= log_error_errno(errno
, "unlink(\"%s\") failed: %m", p
);
1434 } else if (access(p
, F_OK
) >= 0) {
1435 log_error("Sealing key file %s exists already. Use --force to recreate.", p
);
1440 if (asprintf(&k
, "/var/log/journal/" SD_ID128_FORMAT_STR
"/fss.tmp.XXXXXX",
1441 SD_ID128_FORMAT_VAL(machine
)) < 0) {
1446 mpk_size
= FSPRG_mskinbytes(FSPRG_RECOMMENDED_SECPAR
);
1447 mpk
= alloca(mpk_size
);
1449 seed_size
= FSPRG_RECOMMENDED_SEEDLEN
;
1450 seed
= alloca(seed_size
);
1452 state_size
= FSPRG_stateinbytes(FSPRG_RECOMMENDED_SECPAR
);
1453 state
= alloca(state_size
);
1455 fd
= open("/dev/random", O_RDONLY
|O_CLOEXEC
|O_NOCTTY
);
1457 r
= log_error_errno(errno
, "Failed to open /dev/random: %m");
1461 log_info("Generating seed...");
1462 r
= loop_read_exact(fd
, seed
, seed_size
, true);
1464 log_error_errno(r
, "Failed to read random seed: %m");
1468 log_info("Generating key pair...");
1469 FSPRG_GenMK(NULL
, mpk
, seed
, seed_size
, FSPRG_RECOMMENDED_SECPAR
);
1471 log_info("Generating sealing key...");
1472 FSPRG_GenState0(state
, mpk
, seed
, seed_size
);
1474 assert(arg_interval
> 0);
1476 n
= now(CLOCK_REALTIME
);
1480 fd
= mkostemp_safe(k
, O_WRONLY
|O_CLOEXEC
);
1482 r
= log_error_errno(errno
, "Failed to open %s: %m", k
);
1486 /* Enable secure remove, exclusion from dump, synchronous
1487 * writing and in-place updating */
1488 r
= chattr_fd(fd
, FS_SECRM_FL
|FS_NODUMP_FL
|FS_SYNC_FL
|FS_NOCOW_FL
, FS_SECRM_FL
|FS_NODUMP_FL
|FS_SYNC_FL
|FS_NOCOW_FL
);
1490 log_warning_errno(errno
, "Failed to set file attributes: %m");
1493 memcpy(h
.signature
, "KSHHRHLP", 8);
1494 h
.machine_id
= machine
;
1496 h
.header_size
= htole64(sizeof(h
));
1497 h
.start_usec
= htole64(n
* arg_interval
);
1498 h
.interval_usec
= htole64(arg_interval
);
1499 h
.fsprg_secpar
= htole16(FSPRG_RECOMMENDED_SECPAR
);
1500 h
.fsprg_state_size
= htole64(state_size
);
1502 r
= loop_write(fd
, &h
, sizeof(h
), false);
1504 log_error_errno(r
, "Failed to write header: %m");
1508 r
= loop_write(fd
, state
, state_size
, false);
1510 log_error_errno(r
, "Failed to write state: %m");
1514 if (link(k
, p
) < 0) {
1515 r
= log_error_errno(errno
, "Failed to link file: %m");
1522 "The new key pair has been generated. The " ANSI_HIGHLIGHT
"secret sealing key" ANSI_NORMAL
" has been written to\n"
1523 "the following local file. This key file is automatically updated when the\n"
1524 "sealing key is advanced. It should not be used on multiple hosts.\n"
1528 "Please write down the following " ANSI_HIGHLIGHT
"secret verification key" ANSI_NORMAL
". It should be stored\n"
1529 "at a safe location and should not be saved locally on disk.\n"
1530 "\n\t" ANSI_HIGHLIGHT_RED
, p
);
1533 for (i
= 0; i
< seed_size
; i
++) {
1534 if (i
> 0 && i
% 3 == 0)
1536 printf("%02x", ((uint8_t*) seed
)[i
]);
1539 printf("/%llx-%llx\n", (unsigned long long) n
, (unsigned long long) arg_interval
);
1542 char tsb
[FORMAT_TIMESPAN_MAX
], *hn
;
1546 "The sealing key is automatically changed every %s.\n",
1547 format_timespan(tsb
, sizeof(tsb
), arg_interval
, 0));
1549 hn
= gethostname_malloc();
1552 hostname_cleanup(hn
);
1553 fprintf(stderr
, "\nThe keys have been generated for host %s/" SD_ID128_FORMAT_STR
".\n", hn
, SD_ID128_FORMAT_VAL(machine
));
1555 fprintf(stderr
, "\nThe keys have been generated for host " SD_ID128_FORMAT_STR
".\n", SD_ID128_FORMAT_VAL(machine
));
1557 #ifdef HAVE_QRENCODE
1558 /* If this is not an UTF-8 system don't print any QR codes */
1559 if (is_locale_utf8()) {
1560 fputs("\nTo transfer the verification key to your phone please scan the QR code below:\n\n", stderr
);
1561 print_qr_code(stderr
, seed
, seed_size
, n
, arg_interval
, hn
, machine
);
1581 log_error("Forward-secure sealing not available.");
1586 static int verify(sd_journal
*j
) {
1593 log_show_color(true);
1595 ORDERED_HASHMAP_FOREACH(f
, j
->files
, i
) {
1597 usec_t first
= 0, validated
= 0, last
= 0;
1600 if (!arg_verify_key
&& JOURNAL_HEADER_SEALED(f
->header
))
1601 log_notice("Journal file %s has sealing enabled but verification key has not been passed using --verify-key=.", f
->path
);
1604 k
= journal_file_verify(f
, arg_verify_key
, &first
, &validated
, &last
, true);
1606 /* If the key was invalid give up right-away. */
1609 log_warning_errno(k
, "FAIL: %s (%m)", f
->path
);
1612 char a
[FORMAT_TIMESTAMP_MAX
], b
[FORMAT_TIMESTAMP_MAX
], c
[FORMAT_TIMESPAN_MAX
];
1613 log_info("PASS: %s", f
->path
);
1615 if (arg_verify_key
&& JOURNAL_HEADER_SEALED(f
->header
)) {
1616 if (validated
> 0) {
1617 log_info("=> Validated from %s to %s, final %s entries not sealed.",
1618 format_timestamp_maybe_utc(a
, sizeof(a
), first
),
1619 format_timestamp_maybe_utc(b
, sizeof(b
), validated
),
1620 format_timespan(c
, sizeof(c
), last
> validated
? last
- validated
: 0, 0));
1621 } else if (last
> 0)
1622 log_info("=> No sealing yet, %s of entries not sealed.",
1623 format_timespan(c
, sizeof(c
), last
- first
, 0));
1625 log_info("=> No sealing yet, no entries in file.");
1633 static int access_check_var_log_journal(sd_journal
*j
) {
1635 _cleanup_strv_free_
char **g
= NULL
;
1645 /* If we are root, we should have access, don't warn. */
1649 /* If we are in the 'systemd-journal' group, we should have
1651 r
= in_group("systemd-journal");
1653 return log_error_errno(r
, "Failed to check if we are in the 'systemd-journal' group: %m");
1658 if (laccess("/run/log/journal", F_OK
) >= 0)
1659 dir
= "/run/log/journal";
1661 dir
= "/var/log/journal";
1663 /* If we are in any of the groups listed in the journal ACLs,
1664 * then all is good, too. Let's enumerate all groups from the
1665 * default ACL of the directory, which generally should allow
1666 * access to most journal files too. */
1667 r
= acl_search_groups(dir
, &g
);
1669 return log_error_errno(r
, "Failed to search journal ACL: %m");
1673 /* Print a pretty list, if there were ACLs set. */
1674 if (!strv_isempty(g
)) {
1675 _cleanup_free_
char *s
= NULL
;
1677 /* Thre are groups in the ACL, let's list them */
1678 r
= strv_extend(&g
, "systemd-journal");
1685 s
= strv_join(g
, "', '");
1689 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1690 " Users in groups '%s' can see all messages.\n"
1691 " Pass -q to turn off this notice.", s
);
1696 /* If no ACLs were found, print a short version of the message. */
1697 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1698 " Users in the 'systemd-journal' group can see all messages. Pass -q to\n"
1699 " turn off this notice.");
1704 static int access_check(sd_journal
*j
) {
1711 if (set_isempty(j
->errors
)) {
1712 if (ordered_hashmap_isempty(j
->files
))
1713 log_notice("No journal files were found.");
1718 if (set_contains(j
->errors
, INT_TO_PTR(-EACCES
))) {
1719 (void) access_check_var_log_journal(j
);
1721 if (ordered_hashmap_isempty(j
->files
))
1722 r
= log_error_errno(EACCES
, "No journal files were opened due to insufficient permissions.");
1725 SET_FOREACH(code
, j
->errors
, it
) {
1728 err
= -PTR_TO_INT(code
);
1734 log_warning_errno(err
, "Error was encountered while opening journal files: %m");
1742 static int flush_to_var(void) {
1743 _cleanup_bus_error_free_ sd_bus_error error
= SD_BUS_ERROR_NULL
;
1744 _cleanup_bus_flush_close_unref_ sd_bus
*bus
= NULL
;
1745 _cleanup_close_
int watch_fd
= -1;
1749 if (access("/run/systemd/journal/flushed", F_OK
) >= 0)
1752 /* OK, let's actually do the full logic, send SIGUSR1 to the
1753 * daemon and set up inotify to wait for the flushed file to appear */
1754 r
= bus_connect_system_systemd(&bus
);
1756 return log_error_errno(r
, "Failed to get D-Bus connection: %m");
1758 r
= sd_bus_call_method(
1760 "org.freedesktop.systemd1",
1761 "/org/freedesktop/systemd1",
1762 "org.freedesktop.systemd1.Manager",
1766 "ssi", "systemd-journald.service", "main", SIGUSR1
);
1768 log_error("Failed to kill journal service: %s", bus_error_message(&error
, r
));
1772 mkdir_p("/run/systemd/journal", 0755);
1774 watch_fd
= inotify_init1(IN_NONBLOCK
|IN_CLOEXEC
);
1776 return log_error_errno(errno
, "Failed to create inotify watch: %m");
1778 r
= inotify_add_watch(watch_fd
, "/run/systemd/journal", IN_CREATE
|IN_DONT_FOLLOW
|IN_ONLYDIR
);
1780 return log_error_errno(errno
, "Failed to watch journal directory: %m");
1783 if (access("/run/systemd/journal/flushed", F_OK
) >= 0)
1786 if (errno
!= ENOENT
)
1787 return log_error_errno(errno
, "Failed to check for existence of /run/systemd/journal/flushed: %m");
1789 r
= fd_wait_for_event(watch_fd
, POLLIN
, USEC_INFINITY
);
1791 return log_error_errno(r
, "Failed to wait for event: %m");
1793 r
= flush_fd(watch_fd
);
1795 return log_error_errno(r
, "Failed to flush inotify events: %m");
1801 static int rotate(void) {
1802 _cleanup_bus_error_free_ sd_bus_error error
= SD_BUS_ERROR_NULL
;
1803 _cleanup_bus_flush_close_unref_ sd_bus
*bus
= NULL
;
1806 r
= bus_connect_system_systemd(&bus
);
1808 return log_error_errno(r
, "Failed to get D-Bus connection: %m");
1810 r
= sd_bus_call_method(
1812 "org.freedesktop.systemd1",
1813 "/org/freedesktop/systemd1",
1814 "org.freedesktop.systemd1.Manager",
1818 "ssi", "systemd-journald.service", "main", SIGUSR2
);
1820 return log_error_errno(r
, "Failed to kill journal service: %s", bus_error_message(&error
, r
));
1825 int main(int argc
, char *argv
[]) {
1827 _cleanup_journal_close_ sd_journal
*j
= NULL
;
1828 bool need_seek
= false;
1829 sd_id128_t previous_boot_id
;
1830 bool previous_boot_id_valid
= false, first_line
= true;
1832 bool ellipsized
= false;
1834 setlocale(LC_ALL
, "");
1835 log_parse_environment();
1838 r
= parse_argv(argc
, argv
);
1842 signal(SIGWINCH
, columns_lines_cache_reset
);
1845 /* Increase max number of open files to 16K if we can, we
1846 * might needs this when browsing journal files, which might
1847 * be split up into many files. */
1848 setrlimit_closest(RLIMIT_NOFILE
, &RLIMIT_MAKE_CONST(16384));
1850 if (arg_action
== ACTION_NEW_ID128
) {
1851 r
= generate_new_id128();
1855 if (arg_action
== ACTION_FLUSH
) {
1860 if (arg_action
== ACTION_ROTATE
) {
1865 if (arg_action
== ACTION_SETUP_KEYS
) {
1870 if (arg_action
== ACTION_UPDATE_CATALOG
||
1871 arg_action
== ACTION_LIST_CATALOG
||
1872 arg_action
== ACTION_DUMP_CATALOG
) {
1874 _cleanup_free_
char *database
;
1876 database
= path_join(arg_root
, CATALOG_DATABASE
, NULL
);
1882 if (arg_action
== ACTION_UPDATE_CATALOG
) {
1883 r
= catalog_update(database
, arg_root
, catalog_file_dirs
);
1885 log_error_errno(r
, "Failed to list catalog: %m");
1887 bool oneline
= arg_action
== ACTION_LIST_CATALOG
;
1889 pager_open_if_enabled();
1891 r
= catalog_list_items(stdout
, database
,
1892 oneline
, argv
+ optind
);
1894 r
= catalog_list(stdout
, database
, oneline
);
1896 log_error_errno(r
, "Failed to list catalog: %m");
1903 r
= sd_journal_open_directory(&j
, arg_directory
, arg_journal_type
);
1905 r
= sd_journal_open_files(&j
, (const char**) arg_file
, 0);
1906 else if (arg_machine
)
1907 r
= sd_journal_open_container(&j
, arg_machine
, 0);
1909 r
= sd_journal_open(&j
, !arg_merge
*SD_JOURNAL_LOCAL_ONLY
+ arg_journal_type
);
1911 log_error_errno(r
, "Failed to open %s: %m",
1912 arg_directory
? arg_directory
: arg_file
? "files" : "journal");
1916 r
= access_check(j
);
1920 if (arg_action
== ACTION_VERIFY
) {
1925 if (arg_action
== ACTION_PRINT_HEADER
) {
1926 journal_print_header(j
);
1931 if (arg_action
== ACTION_DISK_USAGE
) {
1933 char sbytes
[FORMAT_BYTES_MAX
];
1935 r
= sd_journal_get_usage(j
, &bytes
);
1939 printf("Archived and active journals take up %s on disk.\n",
1940 format_bytes(sbytes
, sizeof(sbytes
), bytes
));
1944 if (arg_action
== ACTION_VACUUM
) {
1948 HASHMAP_FOREACH(d
, j
->directories_by_path
, i
) {
1954 q
= journal_directory_vacuum(d
->path
, arg_vacuum_size
, arg_vacuum_n_files
, arg_vacuum_time
, NULL
, true);
1956 log_error_errno(q
, "Failed to vacuum %s: %m", d
->path
);
1964 if (arg_action
== ACTION_LIST_BOOTS
) {
1969 /* add_boot() must be called first!
1970 * It may need to seek the journal to find parent boot IDs. */
1981 log_error_errno(r
, "Failed to add filter for units: %m");
1985 r
= add_syslog_identifier(j
);
1987 log_error_errno(r
, "Failed to add filter for syslog identifiers: %m");
1991 r
= add_priorities(j
);
1995 r
= add_matches(j
, argv
+ optind
);
1999 if (_unlikely_(log_get_max_level() >= LOG_DEBUG
)) {
2000 _cleanup_free_
char *filter
;
2002 filter
= journal_make_match_string(j
);
2006 log_debug("Journal filter: %s", filter
);
2013 r
= sd_journal_set_data_threshold(j
, 0);
2015 log_error_errno(r
, "Failed to unset data size threshold: %m");
2019 r
= sd_journal_query_unique(j
, arg_field
);
2021 log_error_errno(r
, "Failed to query unique data objects: %m");
2025 SD_JOURNAL_FOREACH_UNIQUE(j
, data
, size
) {
2028 if (arg_lines
>= 0 && n_shown
>= arg_lines
)
2031 eq
= memchr(data
, '=', size
);
2033 printf("%.*s\n", (int) (size
- ((const uint8_t*) eq
- (const uint8_t*) data
+ 1)), (const char*) eq
+ 1);
2035 printf("%.*s\n", (int) size
, (const char*) data
);
2044 /* Opening the fd now means the first sd_journal_wait() will actually wait */
2046 r
= sd_journal_get_fd(j
);
2048 log_error_errno(r
, "Failed to get journal fd: %m");
2053 if (arg_cursor
|| arg_after_cursor
) {
2054 r
= sd_journal_seek_cursor(j
, arg_cursor
?: arg_after_cursor
);
2056 log_error_errno(r
, "Failed to seek to cursor: %m");
2061 r
= sd_journal_next_skip(j
, 1 + !!arg_after_cursor
);
2063 r
= sd_journal_previous_skip(j
, 1 + !!arg_after_cursor
);
2065 if (arg_after_cursor
&& r
< 2) {
2066 /* We couldn't find the next entry after the cursor. */
2073 } else if (arg_since_set
&& !arg_reverse
) {
2074 r
= sd_journal_seek_realtime_usec(j
, arg_since
);
2076 log_error_errno(r
, "Failed to seek to date: %m");
2079 r
= sd_journal_next(j
);
2081 } else if (arg_until_set
&& arg_reverse
) {
2082 r
= sd_journal_seek_realtime_usec(j
, arg_until
);
2084 log_error_errno(r
, "Failed to seek to date: %m");
2087 r
= sd_journal_previous(j
);
2089 } else if (arg_lines
>= 0) {
2090 r
= sd_journal_seek_tail(j
);
2092 log_error_errno(r
, "Failed to seek to tail: %m");
2096 r
= sd_journal_previous_skip(j
, arg_lines
);
2098 } else if (arg_reverse
) {
2099 r
= sd_journal_seek_tail(j
);
2101 log_error_errno(r
, "Failed to seek to tail: %m");
2105 r
= sd_journal_previous(j
);
2108 r
= sd_journal_seek_head(j
);
2110 log_error_errno(r
, "Failed to seek to head: %m");
2114 r
= sd_journal_next(j
);
2118 log_error_errno(r
, "Failed to iterate through journal: %m");
2125 printf("-- No entries --\n");
2131 pager_open_if_enabled();
2135 char start_buf
[FORMAT_TIMESTAMP_MAX
], end_buf
[FORMAT_TIMESTAMP_MAX
];
2137 r
= sd_journal_get_cutoff_realtime_usec(j
, &start
, &end
);
2139 log_error_errno(r
, "Failed to get cutoff: %m");
2145 printf("-- Logs begin at %s. --\n",
2146 format_timestamp_maybe_utc(start_buf
, sizeof(start_buf
), start
));
2148 printf("-- Logs begin at %s, end at %s. --\n",
2149 format_timestamp_maybe_utc(start_buf
, sizeof(start_buf
), start
),
2150 format_timestamp_maybe_utc(end_buf
, sizeof(end_buf
), end
));
2155 while (arg_lines
< 0 || n_shown
< arg_lines
|| (arg_follow
&& !first_line
)) {
2160 r
= sd_journal_next(j
);
2162 r
= sd_journal_previous(j
);
2164 log_error_errno(r
, "Failed to iterate through journal: %m");
2171 if (arg_until_set
&& !arg_reverse
) {
2174 r
= sd_journal_get_realtime_usec(j
, &usec
);
2176 log_error_errno(r
, "Failed to determine timestamp: %m");
2179 if (usec
> arg_until
)
2183 if (arg_since_set
&& arg_reverse
) {
2186 r
= sd_journal_get_realtime_usec(j
, &usec
);
2188 log_error_errno(r
, "Failed to determine timestamp: %m");
2191 if (usec
< arg_since
)
2195 if (!arg_merge
&& !arg_quiet
) {
2198 r
= sd_journal_get_monotonic_usec(j
, NULL
, &boot_id
);
2200 if (previous_boot_id_valid
&&
2201 !sd_id128_equal(boot_id
, previous_boot_id
))
2202 printf("%s-- Reboot --%s\n",
2203 ansi_highlight(), ansi_normal());
2205 previous_boot_id
= boot_id
;
2206 previous_boot_id_valid
= true;
2211 arg_all
* OUTPUT_SHOW_ALL
|
2212 arg_full
* OUTPUT_FULL_WIDTH
|
2213 on_tty() * OUTPUT_COLOR
|
2214 arg_catalog
* OUTPUT_CATALOG
|
2215 arg_utc
* OUTPUT_UTC
;
2217 r
= output_journal(stdout
, j
, arg_output
, 0, flags
, &ellipsized
);
2219 if (r
== -EADDRNOTAVAIL
)
2221 else if (r
< 0 || ferror(stdout
))
2228 if (arg_show_cursor
) {
2229 _cleanup_free_
char *cursor
= NULL
;
2231 r
= sd_journal_get_cursor(j
, &cursor
);
2232 if (r
< 0 && r
!= -EADDRNOTAVAIL
)
2233 log_error_errno(r
, "Failed to get cursor: %m");
2235 printf("-- cursor: %s\n", cursor
);
2241 r
= sd_journal_wait(j
, (uint64_t) -1);
2243 log_error_errno(r
, "Couldn't wait for journal event: %m");
2253 strv_free(arg_file
);
2255 strv_free(arg_syslog_identifier
);
2256 strv_free(arg_system_units
);
2257 strv_free(arg_user_units
);
2261 return r
< 0 ? EXIT_FAILURE
: EXIT_SUCCESS
;