1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering, Kay Sievers
7 Copyright 2015 Zbigniew Jędrzejewski-Szmek
9 systemd is free software; you can redistribute it and/or modify it
10 under the terms of the GNU Lesser General Public License as published by
11 the Free Software Foundation; either version 2.1 of the License, or
12 (at your option) any later version.
14 systemd is distributed in the hope that it will be useful, but
15 WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
17 Lesser General Public License for more details.
19 You should have received a copy of the GNU Lesser General Public License
20 along with systemd; If not, see <http://www.gnu.org/licenses/>.
37 #include <sys/xattr.h>
42 #include "alloc-util.h"
43 #include "btrfs-util.h"
44 #include "capability-util.h"
45 #include "chattr-util.h"
46 #include "conf-files.h"
51 #include "formats-util.h"
53 #include "glob-util.h"
60 #include "parse-util.h"
61 #include "path-util.h"
63 #include "selinux-util.h"
65 #include "specifier.h"
66 #include "stat-util.h"
67 #include "stdio-util.h"
68 #include "string-table.h"
69 #include "string-util.h"
71 #include "umask-util.h"
72 #include "user-util.h"
75 /* This reads all files listed in /etc/tmpfiles.d/?*.conf and creates
76 * them in the file system. This is intended to be used to create
77 * properly owned directories beneath /tmp, /var/tmp, /run, which are
78 * volatile and hence need to be recreated on bootup. */
80 typedef enum ItemType
{
81 /* These ones take file names */
84 CREATE_DIRECTORY
= 'd',
85 TRUNCATE_DIRECTORY
= 'D',
86 CREATE_SUBVOLUME
= 'v',
87 CREATE_SUBVOLUME_INHERIT_QUOTA
= 'q',
88 CREATE_SUBVOLUME_NEW_QUOTA
= 'Q',
91 CREATE_CHAR_DEVICE
= 'c',
92 CREATE_BLOCK_DEVICE
= 'b',
95 /* These ones take globs */
98 RECURSIVE_SET_XATTR
= 'T',
100 RECURSIVE_SET_ACL
= 'A',
102 RECURSIVE_SET_ATTRIBUTE
= 'H',
104 IGNORE_DIRECTORY_PATH
= 'X',
106 RECURSIVE_REMOVE_PATH
= 'R',
108 RECURSIVE_RELABEL_PATH
= 'Z',
109 ADJUST_MODE
= 'm', /* legacy, 'z' is identical to this */
112 typedef struct Item
{
128 unsigned attribute_value
;
129 unsigned attribute_mask
;
136 bool attribute_set
:1;
138 bool keep_first_level
:1;
145 typedef struct ItemArray
{
151 static bool arg_create
= false;
152 static bool arg_clean
= false;
153 static bool arg_remove
= false;
154 static bool arg_boot
= false;
156 static char **arg_include_prefixes
= NULL
;
157 static char **arg_exclude_prefixes
= NULL
;
158 static char *arg_root
= NULL
;
160 static const char conf_file_dirs
[] = CONF_DIRS_NULSTR("tmpfiles");
162 #define MAX_DEPTH 256
164 static OrderedHashmap
*items
= NULL
, *globs
= NULL
;
165 static Set
*unix_sockets
= NULL
;
167 static const Specifier specifier_table
[] = {
168 { 'm', specifier_machine_id
, NULL
},
169 { 'b', specifier_boot_id
, NULL
},
170 { 'H', specifier_host_name
, NULL
},
171 { 'v', specifier_kernel_release
, NULL
},
175 static bool needs_glob(ItemType t
) {
179 IGNORE_DIRECTORY_PATH
,
181 RECURSIVE_REMOVE_PATH
,
184 RECURSIVE_RELABEL_PATH
,
190 RECURSIVE_SET_ATTRIBUTE
);
193 static bool takes_ownership(ItemType t
) {
200 CREATE_SUBVOLUME_INHERIT_QUOTA
,
201 CREATE_SUBVOLUME_NEW_QUOTA
,
209 IGNORE_DIRECTORY_PATH
,
211 RECURSIVE_REMOVE_PATH
);
214 static struct Item
* find_glob(OrderedHashmap
*h
, const char *match
) {
218 ORDERED_HASHMAP_FOREACH(j
, h
, i
) {
221 for (n
= 0; n
< j
->count
; n
++) {
222 Item
*item
= j
->items
+ n
;
224 if (fnmatch(item
->path
, match
, FNM_PATHNAME
|FNM_PERIOD
) == 0)
232 static void load_unix_sockets(void) {
233 _cleanup_fclose_
FILE *f
= NULL
;
239 /* We maintain a cache of the sockets we found in
240 * /proc/net/unix to speed things up a little. */
242 unix_sockets
= set_new(&string_hash_ops
);
246 f
= fopen("/proc/net/unix", "re");
251 if (!fgets(line
, sizeof(line
), f
))
258 if (!fgets(line
, sizeof(line
), f
))
263 p
= strchr(line
, ':');
271 p
+= strspn(p
, WHITESPACE
);
272 p
+= strcspn(p
, WHITESPACE
); /* skip one more word */
273 p
+= strspn(p
, WHITESPACE
);
282 path_kill_slashes(s
);
284 k
= set_consume(unix_sockets
, s
);
285 if (k
< 0 && k
!= -EEXIST
)
292 set_free_free(unix_sockets
);
296 static bool unix_socket_alive(const char *fn
) {
302 return !!set_get(unix_sockets
, (char*) fn
);
304 /* We don't know, so assume yes */
308 static int dir_is_mount_point(DIR *d
, const char *subdir
) {
310 union file_handle_union h
= FILE_HANDLE_INIT
;
311 int mount_id_parent
, mount_id
;
314 r_p
= name_to_handle_at(dirfd(d
), ".", &h
.handle
, &mount_id_parent
, 0);
318 h
.handle
.handle_bytes
= MAX_HANDLE_SZ
;
319 r
= name_to_handle_at(dirfd(d
), subdir
, &h
.handle
, &mount_id
, 0);
323 /* got no handle; make no assumptions, return error */
324 if (r_p
< 0 && r
< 0)
327 /* got both handles; if they differ, it is a mount point */
328 if (r_p
>= 0 && r
>= 0)
329 return mount_id_parent
!= mount_id
;
331 /* got only one handle; assume different mount points if one
332 * of both queries was not supported by the filesystem */
333 if (r_p
== -ENOSYS
|| r_p
== -EOPNOTSUPP
|| r
== -ENOSYS
|| r
== -EOPNOTSUPP
)
342 static DIR* xopendirat_nomod(int dirfd
, const char *path
) {
345 dir
= xopendirat(dirfd
, path
, O_NOFOLLOW
|O_NOATIME
);
349 log_debug_errno(errno
, "Cannot open %sdirectory \"%s\": %m", dirfd
== AT_FDCWD
? "" : "sub", path
);
353 dir
= xopendirat(dirfd
, path
, O_NOFOLLOW
);
355 log_debug_errno(errno
, "Cannot open %sdirectory \"%s\": %m", dirfd
== AT_FDCWD
? "" : "sub", path
);
360 static DIR* opendir_nomod(const char *path
) {
361 return xopendirat_nomod(AT_FDCWD
, path
);
364 static int dir_cleanup(
368 const struct stat
*ds
,
373 bool keep_this_level
) {
376 struct timespec times
[2];
377 bool deleted
= false;
380 while ((dent
= readdir(d
))) {
383 _cleanup_free_
char *sub_path
= NULL
;
385 if (STR_IN_SET(dent
->d_name
, ".", ".."))
388 if (fstatat(dirfd(d
), dent
->d_name
, &s
, AT_SYMLINK_NOFOLLOW
) < 0) {
392 /* FUSE, NFS mounts, SELinux might return EACCES */
394 log_debug_errno(errno
, "stat(%s/%s) failed: %m", p
, dent
->d_name
);
396 log_error_errno(errno
, "stat(%s/%s) failed: %m", p
, dent
->d_name
);
401 /* Stay on the same filesystem */
402 if (s
.st_dev
!= rootdev
) {
403 log_debug("Ignoring \"%s/%s\": different filesystem.", p
, dent
->d_name
);
407 /* Try to detect bind mounts of the same filesystem instance; they
408 * do not differ in device major/minors. This type of query is not
409 * supported on all kernels or filesystem types though. */
410 if (S_ISDIR(s
.st_mode
) && dir_is_mount_point(d
, dent
->d_name
) > 0) {
411 log_debug("Ignoring \"%s/%s\": different mount of the same filesystem.",
416 /* Do not delete read-only files owned by root */
417 if (s
.st_uid
== 0 && !(s
.st_mode
& S_IWUSR
)) {
418 log_debug("Ignoring \"%s/%s\": read-only and owner by root.", p
, dent
->d_name
);
422 sub_path
= strjoin(p
, "/", dent
->d_name
, NULL
);
428 /* Is there an item configured for this path? */
429 if (ordered_hashmap_get(items
, sub_path
)) {
430 log_debug("Ignoring \"%s\": a separate entry exists.", sub_path
);
434 if (find_glob(globs
, sub_path
)) {
435 log_debug("Ignoring \"%s\": a separate glob exists.", sub_path
);
439 if (S_ISDIR(s
.st_mode
)) {
442 streq(dent
->d_name
, "lost+found") &&
444 log_debug("Ignoring \"%s\".", sub_path
);
449 log_warning("Reached max depth on \"%s\".", sub_path
);
451 _cleanup_closedir_
DIR *sub_dir
;
454 sub_dir
= xopendirat_nomod(dirfd(d
), dent
->d_name
);
457 r
= log_error_errno(errno
, "opendir(%s) failed: %m", sub_path
);
462 q
= dir_cleanup(i
, sub_path
, sub_dir
, &s
, cutoff
, rootdev
, false, maxdepth
-1, false);
467 /* Note: if you are wondering why we don't
468 * support the sticky bit for excluding
469 * directories from cleaning like we do it for
470 * other file system objects: well, the sticky
471 * bit already has a meaning for directories,
472 * so we don't want to overload that. */
474 if (keep_this_level
) {
475 log_debug("Keeping \"%s\".", sub_path
);
479 /* Ignore ctime, we change it when deleting */
480 age
= timespec_load(&s
.st_mtim
);
482 char a
[FORMAT_TIMESTAMP_MAX
];
483 /* Follows spelling in stat(1). */
484 log_debug("Directory \"%s\": modify time %s is too new.",
486 format_timestamp_us(a
, sizeof(a
), age
));
490 age
= timespec_load(&s
.st_atim
);
492 char a
[FORMAT_TIMESTAMP_MAX
];
493 log_debug("Directory \"%s\": access time %s is too new.",
495 format_timestamp_us(a
, sizeof(a
), age
));
499 log_debug("Removing directory \"%s\".", sub_path
);
500 if (unlinkat(dirfd(d
), dent
->d_name
, AT_REMOVEDIR
) < 0)
501 if (errno
!= ENOENT
&& errno
!= ENOTEMPTY
) {
502 log_error_errno(errno
, "rmdir(%s): %m", sub_path
);
507 /* Skip files for which the sticky bit is
508 * set. These are semantics we define, and are
509 * unknown elsewhere. See XDG_RUNTIME_DIR
510 * specification for details. */
511 if (s
.st_mode
& S_ISVTX
) {
512 log_debug("Skipping \"%s\": sticky bit set.", sub_path
);
516 if (mountpoint
&& S_ISREG(s
.st_mode
))
517 if (s
.st_uid
== 0 && STR_IN_SET(dent
->d_name
,
521 log_debug("Skipping \"%s\".", sub_path
);
525 /* Ignore sockets that are listed in /proc/net/unix */
526 if (S_ISSOCK(s
.st_mode
) && unix_socket_alive(sub_path
)) {
527 log_debug("Skipping \"%s\": live socket.", sub_path
);
531 /* Ignore device nodes */
532 if (S_ISCHR(s
.st_mode
) || S_ISBLK(s
.st_mode
)) {
533 log_debug("Skipping \"%s\": a device.", sub_path
);
537 /* Keep files on this level around if this is
539 if (keep_this_level
) {
540 log_debug("Keeping \"%s\".", sub_path
);
544 age
= timespec_load(&s
.st_mtim
);
546 char a
[FORMAT_TIMESTAMP_MAX
];
547 /* Follows spelling in stat(1). */
548 log_debug("File \"%s\": modify time %s is too new.",
550 format_timestamp_us(a
, sizeof(a
), age
));
554 age
= timespec_load(&s
.st_atim
);
556 char a
[FORMAT_TIMESTAMP_MAX
];
557 log_debug("File \"%s\": access time %s is too new.",
559 format_timestamp_us(a
, sizeof(a
), age
));
563 age
= timespec_load(&s
.st_ctim
);
565 char a
[FORMAT_TIMESTAMP_MAX
];
566 log_debug("File \"%s\": change time %s is too new.",
568 format_timestamp_us(a
, sizeof(a
), age
));
572 log_debug("unlink \"%s\"", sub_path
);
574 if (unlinkat(dirfd(d
), dent
->d_name
, 0) < 0)
576 r
= log_error_errno(errno
, "unlink(%s): %m", sub_path
);
585 char a
[FORMAT_TIMESTAMP_MAX
], b
[FORMAT_TIMESTAMP_MAX
];
587 /* Restore original directory timestamps */
588 times
[0] = ds
->st_atim
;
589 times
[1] = ds
->st_mtim
;
591 age1
= timespec_load(&ds
->st_atim
);
592 age2
= timespec_load(&ds
->st_mtim
);
593 log_debug("Restoring access and modification time on \"%s\": %s, %s",
595 format_timestamp_us(a
, sizeof(a
), age1
),
596 format_timestamp_us(b
, sizeof(b
), age2
));
597 if (futimens(dirfd(d
), times
) < 0)
598 log_error_errno(errno
, "utimensat(%s): %m", p
);
604 static int path_set_perms(Item
*i
, const char *path
) {
605 _cleanup_close_
int fd
= -1;
611 /* We open the file with O_PATH here, to make the operation
612 * somewhat atomic. Also there's unfortunately no fchmodat()
613 * with AT_SYMLINK_NOFOLLOW, hence we emulate it here via
616 fd
= open(path
, O_RDONLY
|O_NOFOLLOW
|O_CLOEXEC
|O_PATH
|O_NOATIME
);
618 return log_error_errno(errno
, "Adjusting owner and mode for %s failed: %m", path
);
620 if (fstatat(fd
, "", &st
, AT_EMPTY_PATH
) < 0)
621 return log_error_errno(errno
, "Failed to fstat() file %s: %m", path
);
623 if (S_ISLNK(st
.st_mode
))
624 log_debug("Skipping mode an owner fix for symlink %s.", path
);
626 char fn
[strlen("/proc/self/fd/") + DECIMAL_STR_MAX(int)];
627 xsprintf(fn
, "/proc/self/fd/%i", fd
);
629 /* not using i->path directly because it may be a glob */
634 if (!(st
.st_mode
& 0111))
636 if (!(st
.st_mode
& 0222))
638 if (!(st
.st_mode
& 0444))
640 if (!S_ISDIR(st
.st_mode
))
641 m
&= ~07000; /* remove sticky/sgid/suid bit, unless directory */
644 if (m
== (st
.st_mode
& 07777))
645 log_debug("\"%s\" has right mode %o", path
, st
.st_mode
);
647 log_debug("chmod \"%s\" to mode %o", path
, m
);
648 if (chmod(fn
, m
) < 0)
649 return log_error_errno(errno
, "chmod(%s) failed: %m", path
);
653 if ((i
->uid
!= st
.st_uid
|| i
->gid
!= st
.st_gid
) &&
654 (i
->uid_set
|| i
->gid_set
)) {
655 log_debug("chown \"%s\" to "UID_FMT
"."GID_FMT
,
657 i
->uid_set
? i
->uid
: UID_INVALID
,
658 i
->gid_set
? i
->gid
: GID_INVALID
);
660 i
->uid_set
? i
->uid
: UID_INVALID
,
661 i
->gid_set
? i
->gid
: GID_INVALID
) < 0)
662 return log_error_errno(errno
, "chown(%s) failed: %m", path
);
668 return label_fix(path
, false, false);
671 static int parse_xattrs_from_arg(Item
*i
) {
681 _cleanup_free_
char *name
= NULL
, *value
= NULL
, *xattr
= NULL
, *xattr_replaced
= NULL
;
683 r
= extract_first_word(&p
, &xattr
, NULL
, EXTRACT_QUOTES
|EXTRACT_CUNESCAPE
);
685 log_warning_errno(r
, "Failed to parse extended attribute '%s', ignoring: %m", p
);
689 r
= specifier_printf(xattr
, specifier_table
, NULL
, &xattr_replaced
);
691 return log_error_errno(r
, "Failed to replace specifiers in extended attribute '%s': %m", xattr
);
693 r
= split_pair(xattr_replaced
, "=", &name
, &value
);
695 log_warning_errno(r
, "Failed to parse extended attribute, ignoring: %s", xattr
);
699 if (isempty(name
) || isempty(value
)) {
700 log_warning("Malformed extended attribute found, ignoring: %s", xattr
);
704 if (strv_push_pair(&i
->xattrs
, name
, value
) < 0)
713 static int path_set_xattrs(Item
*i
, const char *path
) {
714 char **name
, **value
;
719 STRV_FOREACH_PAIR(name
, value
, i
->xattrs
) {
723 log_debug("Setting extended attribute '%s=%s' on %s.", *name
, *value
, path
);
724 if (lsetxattr(path
, *name
, *value
, n
, 0) < 0) {
725 log_error("Setting extended attribute %s=%s on %s failed: %m", *name
, *value
, path
);
732 static int parse_acls_from_arg(Item
*item
) {
738 /* If force (= modify) is set, we will not modify the acl
739 * afterwards, so the mask can be added now if necessary. */
741 r
= parse_acl(item
->argument
, &item
->acl_access
, &item
->acl_default
, !item
->force
);
743 log_warning_errno(r
, "Failed to parse ACL \"%s\": %m. Ignoring", item
->argument
);
745 log_warning_errno(ENOSYS
, "ACLs are not supported. Ignoring");
752 static int path_set_acl(const char *path
, const char *pretty
, acl_type_t type
, acl_t acl
, bool modify
) {
753 _cleanup_(acl_free_charpp
) char *t
= NULL
;
754 _cleanup_(acl_freep
) acl_t dup
= NULL
;
757 /* Returns 0 for success, positive error if already warned,
758 * negative error otherwise. */
761 r
= acls_for_file(path
, type
, acl
, &dup
);
765 r
= calc_acl_mask_if_needed(&dup
);
773 /* the mask was already added earlier if needed */
776 r
= add_base_acls_if_needed(&dup
, path
);
780 t
= acl_to_any_text(dup
, NULL
, ',', TEXT_ABBREVIATE
);
781 log_debug("Setting %s ACL %s on %s.",
782 type
== ACL_TYPE_ACCESS
? "access" : "default",
785 r
= acl_set_file(path
, type
, dup
);
787 /* Return positive to indicate we already warned */
788 return -log_error_errno(errno
,
789 "Setting %s ACL \"%s\" on %s failed: %m",
790 type
== ACL_TYPE_ACCESS
? "access" : "default",
797 static int path_set_acls(Item
*item
, const char *path
) {
800 char fn
[strlen("/proc/self/fd/") + DECIMAL_STR_MAX(int)];
801 _cleanup_close_
int fd
= -1;
807 fd
= open(path
, O_RDONLY
|O_NOFOLLOW
|O_CLOEXEC
|O_PATH
|O_NOATIME
);
809 return log_error_errno(errno
, "Adjusting ACL of %s failed: %m", path
);
811 if (fstatat(fd
, "", &st
, AT_EMPTY_PATH
) < 0)
812 return log_error_errno(errno
, "Failed to fstat() file %s: %m", path
);
814 if (S_ISLNK(st
.st_mode
)) {
815 log_debug("Skipping ACL fix for symlink %s.", path
);
819 xsprintf(fn
, "/proc/self/fd/%i", fd
);
821 if (item
->acl_access
)
822 r
= path_set_acl(fn
, path
, ACL_TYPE_ACCESS
, item
->acl_access
, item
->force
);
824 if (r
== 0 && item
->acl_default
)
825 r
= path_set_acl(fn
, path
, ACL_TYPE_DEFAULT
, item
->acl_default
, item
->force
);
828 return -r
; /* already warned */
829 else if (r
== -EOPNOTSUPP
) {
830 log_debug_errno(r
, "ACLs not supported by file system at %s", path
);
833 log_error_errno(r
, "ACL operation on \"%s\" failed: %m", path
);
838 #define ATTRIBUTES_ALL \
847 FS_JOURNAL_DATA_FL | \
854 static int parse_attribute_from_arg(Item
*item
) {
856 static const struct {
860 { 'A', FS_NOATIME_FL
}, /* do not update atime */
861 { 'S', FS_SYNC_FL
}, /* Synchronous updates */
862 { 'D', FS_DIRSYNC_FL
}, /* dirsync behaviour (directories only) */
863 { 'a', FS_APPEND_FL
}, /* writes to file may only append */
864 { 'c', FS_COMPR_FL
}, /* Compress file */
865 { 'd', FS_NODUMP_FL
}, /* do not dump file */
866 { 'e', FS_EXTENT_FL
}, /* Top of directory hierarchies*/
867 { 'i', FS_IMMUTABLE_FL
}, /* Immutable file */
868 { 'j', FS_JOURNAL_DATA_FL
}, /* Reserved for ext3 */
869 { 's', FS_SECRM_FL
}, /* Secure deletion */
870 { 'u', FS_UNRM_FL
}, /* Undelete */
871 { 't', FS_NOTAIL_FL
}, /* file tail should not be merged */
872 { 'T', FS_TOPDIR_FL
}, /* Top of directory hierarchies*/
873 { 'C', FS_NOCOW_FL
}, /* Do not cow file */
882 unsigned value
= 0, mask
= 0;
892 } else if (*p
== '-') {
895 } else if (*p
== '=') {
901 if (isempty(p
) && mode
!= MODE_SET
) {
902 log_error("Setting file attribute on '%s' needs an attribute specification.", item
->path
);
906 for (; p
&& *p
; p
++) {
909 for (i
= 0; i
< ELEMENTSOF(attributes
); i
++)
910 if (*p
== attributes
[i
].character
)
913 if (i
>= ELEMENTSOF(attributes
)) {
914 log_error("Unknown file attribute '%c' on '%s'.", *p
, item
->path
);
918 v
= attributes
[i
].value
;
920 if (mode
== MODE_ADD
|| mode
== MODE_SET
)
928 if (mode
== MODE_SET
)
929 mask
|= ATTRIBUTES_ALL
;
933 item
->attribute_mask
= mask
;
934 item
->attribute_value
= value
;
935 item
->attribute_set
= true;
940 static int path_set_attribute(Item
*item
, const char *path
) {
941 _cleanup_close_
int fd
= -1;
946 if (!item
->attribute_set
|| item
->attribute_mask
== 0)
949 fd
= open(path
, O_RDONLY
|O_NONBLOCK
|O_CLOEXEC
|O_NOATIME
|O_NOFOLLOW
);
952 return log_error_errno(errno
, "Skipping file attributes adjustment on symlink %s.", path
);
954 return log_error_errno(errno
, "Cannot open '%s': %m", path
);
957 if (fstat(fd
, &st
) < 0)
958 return log_error_errno(errno
, "Cannot stat '%s': %m", path
);
960 /* Issuing the file attribute ioctls on device nodes is not
961 * safe, as that will be delivered to the drivers, not the
962 * file system containing the device node. */
963 if (!S_ISREG(st
.st_mode
) && !S_ISDIR(st
.st_mode
)) {
964 log_error("Setting file flags is only supported on regular files and directories, cannot set on '%s'.", path
);
968 f
= item
->attribute_value
& item
->attribute_mask
;
970 /* Mask away directory-specific flags */
971 if (!S_ISDIR(st
.st_mode
))
974 r
= chattr_fd(fd
, f
, item
->attribute_mask
);
976 log_full_errno(r
== -ENOTTY
? LOG_DEBUG
: LOG_WARNING
,
978 "Cannot set file attribute for '%s', value=0x%08x, mask=0x%08x: %m",
979 path
, item
->attribute_value
, item
->attribute_mask
);
984 static int write_one_file(Item
*i
, const char *path
) {
985 _cleanup_close_
int fd
= -1;
992 flags
= i
->type
== CREATE_FILE
? O_CREAT
|O_APPEND
|O_NOFOLLOW
:
993 i
->type
== TRUNCATE_FILE
? O_CREAT
|O_TRUNC
|O_NOFOLLOW
: 0;
995 RUN_WITH_UMASK(0000) {
996 mac_selinux_create_file_prepare(path
, S_IFREG
);
997 fd
= open(path
, flags
|O_NDELAY
|O_CLOEXEC
|O_WRONLY
|O_NOCTTY
, i
->mode
);
998 mac_selinux_create_file_clear();
1002 if (i
->type
== WRITE_FILE
&& errno
== ENOENT
) {
1003 log_debug_errno(errno
, "Not writing \"%s\": %m", path
);
1008 if (!i
->argument
&& errno
== EROFS
&& stat(path
, &st
) == 0 &&
1009 (i
->type
== CREATE_FILE
|| st
.st_size
== 0))
1012 return log_error_errno(r
, "Failed to create file %s: %m", path
);
1016 _cleanup_free_
char *unescaped
= NULL
, *replaced
= NULL
;
1018 log_debug("%s to \"%s\".", i
->type
== CREATE_FILE
? "Appending" : "Writing", path
);
1020 r
= cunescape(i
->argument
, 0, &unescaped
);
1022 return log_error_errno(r
, "Failed to unescape parameter to write: %s", i
->argument
);
1024 r
= specifier_printf(unescaped
, specifier_table
, NULL
, &replaced
);
1026 return log_error_errno(r
, "Failed to replace specifiers in parameter to write '%s': %m", unescaped
);
1028 r
= loop_write(fd
, replaced
, strlen(replaced
), false);
1030 return log_error_errno(r
, "Failed to write file \"%s\": %m", path
);
1032 log_debug("\"%s\" has been created.", path
);
1034 fd
= safe_close(fd
);
1036 if (stat(path
, &st
) < 0)
1037 return log_error_errno(errno
, "stat(%s) failed: %m", path
);
1040 if (!S_ISREG(st
.st_mode
)) {
1041 log_error("%s is not a file.", path
);
1045 r
= path_set_perms(i
, path
);
1052 typedef int (*action_t
)(Item
*, const char *);
1054 static int item_do_children(Item
*i
, const char *path
, action_t action
) {
1055 _cleanup_closedir_
DIR *d
;
1061 /* This returns the first error we run into, but nevertheless
1064 d
= opendir_nomod(path
);
1066 return errno
== ENOENT
|| errno
== ENOTDIR
? 0 : -errno
;
1069 _cleanup_free_
char *p
= NULL
;
1076 if (errno
!= 0 && r
== 0)
1082 if (STR_IN_SET(de
->d_name
, ".", ".."))
1085 p
= strjoin(path
, "/", de
->d_name
, NULL
);
1090 if (q
< 0 && q
!= -ENOENT
&& r
== 0)
1093 if (IN_SET(de
->d_type
, DT_UNKNOWN
, DT_DIR
)) {
1094 q
= item_do_children(i
, p
, action
);
1095 if (q
< 0 && r
== 0)
1103 static int glob_item(Item
*i
, action_t action
, bool recursive
) {
1104 _cleanup_globfree_ glob_t g
= {
1105 .gl_closedir
= (void (*)(void *)) closedir
,
1106 .gl_readdir
= (struct dirent
*(*)(void *)) readdir
,
1107 .gl_opendir
= (void *(*)(const char *)) opendir_nomod
,
1115 k
= glob(i
->path
, GLOB_NOSORT
|GLOB_BRACE
|GLOB_ALTDIRFUNC
, NULL
, &g
);
1116 if (k
!= 0 && k
!= GLOB_NOMATCH
)
1117 return log_error_errno(errno
?: EIO
, "glob(%s) failed: %m", i
->path
);
1119 STRV_FOREACH(fn
, g
.gl_pathv
) {
1121 if (k
< 0 && r
== 0)
1125 k
= item_do_children(i
, *fn
, action
);
1126 if (k
< 0 && r
== 0)
1139 _CREATION_MODE_INVALID
= -1
1142 static const char *creation_mode_verb_table
[_CREATION_MODE_MAX
] = {
1143 [CREATION_NORMAL
] = "Created",
1144 [CREATION_EXISTING
] = "Found existing",
1145 [CREATION_FORCE
] = "Created replacement",
1148 DEFINE_PRIVATE_STRING_TABLE_LOOKUP_TO_STRING(creation_mode_verb
, CreationMode
);
1150 static int create_item(Item
*i
) {
1151 _cleanup_free_
char *resolved
= NULL
;
1154 CreationMode creation
;
1158 log_debug("Running create action for entry %c %s", (char) i
->type
, i
->path
);
1163 case IGNORE_DIRECTORY_PATH
:
1165 case RECURSIVE_REMOVE_PATH
:
1170 r
= write_one_file(i
, i
->path
);
1176 r
= specifier_printf(i
->argument
, specifier_table
, NULL
, &resolved
);
1178 return log_error_errno(r
, "Failed to substitute specifiers in copy source %s: %m", i
->argument
);
1180 log_debug("Copying tree \"%s\" to \"%s\".", resolved
, i
->path
);
1181 r
= copy_tree(resolved
, i
->path
, false);
1183 if (r
== -EROFS
&& stat(i
->path
, &st
) == 0)
1190 return log_error_errno(r
, "Failed to copy files to %s: %m", i
->path
);
1192 if (stat(resolved
, &a
) < 0)
1193 return log_error_errno(errno
, "stat(%s) failed: %m", resolved
);
1195 if (stat(i
->path
, &b
) < 0)
1196 return log_error_errno(errno
, "stat(%s) failed: %m", i
->path
);
1198 if ((a
.st_mode
^ b
.st_mode
) & S_IFMT
) {
1199 log_debug("Can't copy to %s, file exists already and is of different type", i
->path
);
1204 r
= path_set_perms(i
, i
->path
);
1211 r
= glob_item(i
, write_one_file
, false);
1217 case CREATE_DIRECTORY
:
1218 case TRUNCATE_DIRECTORY
:
1219 case CREATE_SUBVOLUME
:
1220 case CREATE_SUBVOLUME_INHERIT_QUOTA
:
1221 case CREATE_SUBVOLUME_NEW_QUOTA
:
1223 RUN_WITH_UMASK(0000)
1224 mkdir_parents_label(i
->path
, 0755);
1226 if (IN_SET(i
->type
, CREATE_SUBVOLUME
, CREATE_SUBVOLUME_INHERIT_QUOTA
, CREATE_SUBVOLUME_NEW_QUOTA
)) {
1227 RUN_WITH_UMASK((~i
->mode
) & 0777)
1228 r
= btrfs_subvol_make(i
->path
);
1232 if (IN_SET(i
->type
, CREATE_DIRECTORY
, TRUNCATE_DIRECTORY
) || r
== -ENOTTY
)
1233 RUN_WITH_UMASK(0000)
1234 r
= mkdir_label(i
->path
, i
->mode
);
1239 if (r
!= -EEXIST
&& r
!= -EROFS
)
1240 return log_error_errno(r
, "Failed to create directory or subvolume \"%s\": %m", i
->path
);
1242 k
= is_dir(i
->path
, false);
1243 if (k
== -ENOENT
&& r
== -EROFS
)
1244 return log_error_errno(r
, "%s does not exist and cannot be created as the file system is read-only.", i
->path
);
1246 return log_error_errno(k
, "Failed to check if %s exists: %m", i
->path
);
1248 log_warning("\"%s\" already exists and is not a directory.", i
->path
);
1252 creation
= CREATION_EXISTING
;
1254 creation
= CREATION_NORMAL
;
1256 log_debug("%s directory \"%s\".", creation_mode_verb_to_string(creation
), i
->path
);
1258 if (IN_SET(i
->type
, CREATE_SUBVOLUME_NEW_QUOTA
, CREATE_SUBVOLUME_INHERIT_QUOTA
)) {
1259 r
= btrfs_subvol_auto_qgroup(i
->path
, 0, i
->type
== CREATE_SUBVOLUME_NEW_QUOTA
);
1261 log_debug_errno(r
, "Couldn't adjust quota for subvolume \"%s\" because of unsupported file system or because directory is not a subvolume: %m", i
->path
);
1265 log_debug_errno(r
, "Couldn't adjust quota for subvolume \"%s\" because of read-only file system: %m", i
->path
);
1269 return log_error_errno(r
, "Failed to adjust quota for subvolume \"%s\": %m", i
->path
);
1271 log_debug("Adjusted quota for subvolume \"%s\".", i
->path
);
1273 log_debug("Quota for subvolume \"%s\" already in place, no change made.", i
->path
);
1276 r
= path_set_perms(i
, i
->path
);
1284 RUN_WITH_UMASK(0000) {
1285 mac_selinux_create_file_prepare(i
->path
, S_IFIFO
);
1286 r
= mkfifo(i
->path
, i
->mode
);
1287 mac_selinux_create_file_clear();
1291 if (errno
!= EEXIST
)
1292 return log_error_errno(errno
, "Failed to create fifo %s: %m", i
->path
);
1294 if (lstat(i
->path
, &st
) < 0)
1295 return log_error_errno(errno
, "stat(%s) failed: %m", i
->path
);
1297 if (!S_ISFIFO(st
.st_mode
)) {
1300 RUN_WITH_UMASK(0000) {
1301 mac_selinux_create_file_prepare(i
->path
, S_IFIFO
);
1302 r
= mkfifo_atomic(i
->path
, i
->mode
);
1303 mac_selinux_create_file_clear();
1307 return log_error_errno(r
, "Failed to create fifo %s: %m", i
->path
);
1308 creation
= CREATION_FORCE
;
1310 log_warning("\"%s\" already exists and is not a fifo.", i
->path
);
1314 creation
= CREATION_EXISTING
;
1316 creation
= CREATION_NORMAL
;
1317 log_debug("%s fifo \"%s\".", creation_mode_verb_to_string(creation
), i
->path
);
1319 r
= path_set_perms(i
, i
->path
);
1326 case CREATE_SYMLINK
: {
1327 r
= specifier_printf(i
->argument
, specifier_table
, NULL
, &resolved
);
1329 return log_error_errno(r
, "Failed to substitute specifiers in symlink target %s: %m", i
->argument
);
1331 mac_selinux_create_file_prepare(i
->path
, S_IFLNK
);
1332 r
= symlink(resolved
, i
->path
);
1333 mac_selinux_create_file_clear();
1336 _cleanup_free_
char *x
= NULL
;
1338 if (errno
!= EEXIST
)
1339 return log_error_errno(errno
, "symlink(%s, %s) failed: %m", resolved
, i
->path
);
1341 r
= readlink_malloc(i
->path
, &x
);
1342 if (r
< 0 || !streq(resolved
, x
)) {
1345 mac_selinux_create_file_prepare(i
->path
, S_IFLNK
);
1346 r
= symlink_atomic(resolved
, i
->path
);
1347 mac_selinux_create_file_clear();
1350 return log_error_errno(r
, "symlink(%s, %s) failed: %m", resolved
, i
->path
);
1352 creation
= CREATION_FORCE
;
1354 log_debug("\"%s\" is not a symlink or does not point to the correct path.", i
->path
);
1358 creation
= CREATION_EXISTING
;
1361 creation
= CREATION_NORMAL
;
1362 log_debug("%s symlink \"%s\".", creation_mode_verb_to_string(creation
), i
->path
);
1366 case CREATE_BLOCK_DEVICE
:
1367 case CREATE_CHAR_DEVICE
: {
1370 if (have_effective_cap(CAP_MKNOD
) == 0) {
1371 /* In a container we lack CAP_MKNOD. We
1372 shouldn't attempt to create the device node in
1373 that case to avoid noise, and we don't support
1374 virtualized devices in containers anyway. */
1376 log_debug("We lack CAP_MKNOD, skipping creation of device node %s.", i
->path
);
1380 file_type
= i
->type
== CREATE_BLOCK_DEVICE
? S_IFBLK
: S_IFCHR
;
1382 RUN_WITH_UMASK(0000) {
1383 mac_selinux_create_file_prepare(i
->path
, file_type
);
1384 r
= mknod(i
->path
, i
->mode
| file_type
, i
->major_minor
);
1385 mac_selinux_create_file_clear();
1389 if (errno
== EPERM
) {
1390 log_debug("We lack permissions, possibly because of cgroup configuration; "
1391 "skipping creation of device node %s.", i
->path
);
1395 if (errno
!= EEXIST
)
1396 return log_error_errno(errno
, "Failed to create device node %s: %m", i
->path
);
1398 if (lstat(i
->path
, &st
) < 0)
1399 return log_error_errno(errno
, "stat(%s) failed: %m", i
->path
);
1401 if ((st
.st_mode
& S_IFMT
) != file_type
) {
1405 RUN_WITH_UMASK(0000) {
1406 mac_selinux_create_file_prepare(i
->path
, file_type
);
1407 r
= mknod_atomic(i
->path
, i
->mode
| file_type
, i
->major_minor
);
1408 mac_selinux_create_file_clear();
1412 return log_error_errno(r
, "Failed to create device node \"%s\": %m", i
->path
);
1413 creation
= CREATION_FORCE
;
1415 log_debug("%s is not a device node.", i
->path
);
1419 creation
= CREATION_EXISTING
;
1421 creation
= CREATION_NORMAL
;
1423 log_debug("%s %s device node \"%s\" %u:%u.",
1424 creation_mode_verb_to_string(creation
),
1425 i
->type
== CREATE_BLOCK_DEVICE
? "block" : "char",
1426 i
->path
, major(i
->mode
), minor(i
->mode
));
1428 r
= path_set_perms(i
, i
->path
);
1437 r
= glob_item(i
, path_set_perms
, false);
1442 case RECURSIVE_RELABEL_PATH
:
1443 r
= glob_item(i
, path_set_perms
, true);
1449 r
= glob_item(i
, path_set_xattrs
, false);
1454 case RECURSIVE_SET_XATTR
:
1455 r
= glob_item(i
, path_set_xattrs
, true);
1461 r
= glob_item(i
, path_set_acls
, false);
1466 case RECURSIVE_SET_ACL
:
1467 r
= glob_item(i
, path_set_acls
, true);
1473 r
= glob_item(i
, path_set_attribute
, false);
1478 case RECURSIVE_SET_ATTRIBUTE
:
1479 r
= glob_item(i
, path_set_attribute
, true);
1488 static int remove_item_instance(Item
*i
, const char *instance
) {
1496 if (remove(instance
) < 0 && errno
!= ENOENT
)
1497 return log_error_errno(errno
, "rm(%s): %m", instance
);
1501 case TRUNCATE_DIRECTORY
:
1502 case RECURSIVE_REMOVE_PATH
:
1503 /* FIXME: we probably should use dir_cleanup() here
1504 * instead of rm_rf() so that 'x' is honoured. */
1505 log_debug("rm -rf \"%s\"", instance
);
1506 r
= rm_rf(instance
, (i
->type
== RECURSIVE_REMOVE_PATH
? REMOVE_ROOT
|REMOVE_SUBVOLUME
: 0) | REMOVE_PHYSICAL
);
1507 if (r
< 0 && r
!= -ENOENT
)
1508 return log_error_errno(r
, "rm_rf(%s): %m", instance
);
1513 assert_not_reached("wut?");
1519 static int remove_item(Item
*i
) {
1524 log_debug("Running remove action for entry %c %s", (char) i
->type
, i
->path
);
1530 case CREATE_DIRECTORY
:
1531 case CREATE_SUBVOLUME
:
1532 case CREATE_SUBVOLUME_INHERIT_QUOTA
:
1533 case CREATE_SUBVOLUME_NEW_QUOTA
:
1535 case CREATE_SYMLINK
:
1536 case CREATE_CHAR_DEVICE
:
1537 case CREATE_BLOCK_DEVICE
:
1539 case IGNORE_DIRECTORY_PATH
:
1542 case RECURSIVE_RELABEL_PATH
:
1546 case RECURSIVE_SET_XATTR
:
1548 case RECURSIVE_SET_ACL
:
1550 case RECURSIVE_SET_ATTRIBUTE
:
1554 case TRUNCATE_DIRECTORY
:
1555 case RECURSIVE_REMOVE_PATH
:
1556 r
= glob_item(i
, remove_item_instance
, false);
1563 static int clean_item_instance(Item
*i
, const char* instance
) {
1564 _cleanup_closedir_
DIR *d
= NULL
;
1568 char timestamp
[FORMAT_TIMESTAMP_MAX
];
1575 n
= now(CLOCK_REALTIME
);
1579 cutoff
= n
- i
->age
;
1581 d
= opendir_nomod(instance
);
1583 if (errno
== ENOENT
|| errno
== ENOTDIR
) {
1584 log_debug_errno(errno
, "Directory \"%s\": %m", instance
);
1588 log_error_errno(errno
, "Failed to open directory %s: %m", instance
);
1592 if (fstat(dirfd(d
), &s
) < 0)
1593 return log_error_errno(errno
, "stat(%s) failed: %m", i
->path
);
1595 if (!S_ISDIR(s
.st_mode
)) {
1596 log_error("%s is not a directory.", i
->path
);
1600 if (fstatat(dirfd(d
), "..", &ps
, AT_SYMLINK_NOFOLLOW
) != 0)
1601 return log_error_errno(errno
, "stat(%s/..) failed: %m", i
->path
);
1603 mountpoint
= s
.st_dev
!= ps
.st_dev
|| s
.st_ino
== ps
.st_ino
;
1605 log_debug("Cleanup threshold for %s \"%s\" is %s",
1606 mountpoint
? "mount point" : "directory",
1608 format_timestamp_us(timestamp
, sizeof(timestamp
), cutoff
));
1610 return dir_cleanup(i
, instance
, d
, &s
, cutoff
, s
.st_dev
, mountpoint
,
1611 MAX_DEPTH
, i
->keep_first_level
);
1614 static int clean_item(Item
*i
) {
1619 log_debug("Running clean action for entry %c %s", (char) i
->type
, i
->path
);
1622 case CREATE_DIRECTORY
:
1623 case CREATE_SUBVOLUME
:
1624 case CREATE_SUBVOLUME_INHERIT_QUOTA
:
1625 case CREATE_SUBVOLUME_NEW_QUOTA
:
1626 case TRUNCATE_DIRECTORY
:
1629 clean_item_instance(i
, i
->path
);
1631 case IGNORE_DIRECTORY_PATH
:
1632 r
= glob_item(i
, clean_item_instance
, false);
1641 static int process_item_array(ItemArray
*array
);
1643 static int process_item(Item
*i
) {
1645 _cleanup_free_
char *prefix
= NULL
;
1654 prefix
= malloc(strlen(i
->path
) + 1);
1658 PATH_FOREACH_PREFIX(prefix
, i
->path
) {
1661 j
= ordered_hashmap_get(items
, prefix
);
1665 s
= process_item_array(j
);
1666 if (s
< 0 && t
== 0)
1671 r
= arg_create
? create_item(i
) : 0;
1672 q
= arg_remove
? remove_item(i
) : 0;
1673 p
= arg_clean
? clean_item(i
) : 0;
1681 static int process_item_array(ItemArray
*array
) {
1687 for (n
= 0; n
< array
->count
; n
++) {
1688 k
= process_item(array
->items
+ n
);
1689 if (k
< 0 && r
== 0)
1696 static void item_free_contents(Item
*i
) {
1700 strv_free(i
->xattrs
);
1703 acl_free(i
->acl_access
);
1704 acl_free(i
->acl_default
);
1708 static void item_array_free(ItemArray
*a
) {
1714 for (n
= 0; n
< a
->count
; n
++)
1715 item_free_contents(a
->items
+ n
);
1720 static int item_compare(const void *a
, const void *b
) {
1721 const Item
*x
= a
, *y
= b
;
1723 /* Make sure that the ownership taking item is put first, so
1724 * that we first create the node, and then can adjust it */
1726 if (takes_ownership(x
->type
) && !takes_ownership(y
->type
))
1728 if (!takes_ownership(x
->type
) && takes_ownership(y
->type
))
1731 return (int) x
->type
- (int) y
->type
;
1734 static bool item_compatible(Item
*a
, Item
*b
) {
1737 assert(streq(a
->path
, b
->path
));
1739 if (takes_ownership(a
->type
) && takes_ownership(b
->type
))
1740 /* check if the items are the same */
1741 return streq_ptr(a
->argument
, b
->argument
) &&
1743 a
->uid_set
== b
->uid_set
&&
1746 a
->gid_set
== b
->gid_set
&&
1749 a
->mode_set
== b
->mode_set
&&
1750 a
->mode
== b
->mode
&&
1752 a
->age_set
== b
->age_set
&&
1755 a
->mask_perms
== b
->mask_perms
&&
1757 a
->keep_first_level
== b
->keep_first_level
&&
1759 a
->major_minor
== b
->major_minor
;
1764 static bool should_include_path(const char *path
) {
1767 STRV_FOREACH(prefix
, arg_exclude_prefixes
)
1768 if (path_startswith(path
, *prefix
)) {
1769 log_debug("Entry \"%s\" matches exclude prefix \"%s\", skipping.",
1774 STRV_FOREACH(prefix
, arg_include_prefixes
)
1775 if (path_startswith(path
, *prefix
)) {
1776 log_debug("Entry \"%s\" matches include prefix \"%s\".", path
, *prefix
);
1780 /* no matches, so we should include this path only if we
1781 * have no whitelist at all */
1782 if (strv_length(arg_include_prefixes
) == 0)
1785 log_debug("Entry \"%s\" does not match any include prefix, skipping.", path
);
1789 static int parse_line(const char *fname
, unsigned line
, const char *buffer
) {
1791 _cleanup_free_
char *action
= NULL
, *mode
= NULL
, *user
= NULL
, *group
= NULL
, *age
= NULL
, *path
= NULL
;
1792 _cleanup_(item_free_contents
) Item i
= {};
1793 ItemArray
*existing
;
1796 bool force
= false, boot
= false;
1802 r
= extract_many_words(
1814 return log_error_errno(r
, "[%s:%u] Failed to parse line: %m", fname
, line
);
1816 log_error("[%s:%u] Syntax error.", fname
, line
);
1820 if (!isempty(buffer
) && !streq(buffer
, "-")) {
1821 i
.argument
= strdup(buffer
);
1826 if (isempty(action
)) {
1827 log_error("[%s:%u] Command too short '%s'.", fname
, line
, action
);
1831 for (pos
= 1; action
[pos
]; pos
++) {
1832 if (action
[pos
] == '!' && !boot
)
1834 else if (action
[pos
] == '+' && !force
)
1837 log_error("[%s:%u] Unknown modifiers in command '%s'",
1838 fname
, line
, action
);
1843 if (boot
&& !arg_boot
) {
1844 log_debug("Ignoring entry %s \"%s\" because --boot is not specified.",
1852 r
= specifier_printf(path
, specifier_table
, NULL
, &i
.path
);
1854 log_error("[%s:%u] Failed to replace specifiers: %s", fname
, line
, path
);
1860 case CREATE_DIRECTORY
:
1861 case CREATE_SUBVOLUME
:
1862 case CREATE_SUBVOLUME_INHERIT_QUOTA
:
1863 case CREATE_SUBVOLUME_NEW_QUOTA
:
1864 case TRUNCATE_DIRECTORY
:
1867 case IGNORE_DIRECTORY_PATH
:
1869 case RECURSIVE_REMOVE_PATH
:
1872 case RECURSIVE_RELABEL_PATH
:
1874 log_warning("[%s:%u] %c lines don't take argument fields, ignoring.", fname
, line
, i
.type
);
1882 case CREATE_SYMLINK
:
1884 i
.argument
= strappend("/usr/share/factory/", i
.path
);
1892 log_error("[%s:%u] Write file requires argument.", fname
, line
);
1899 i
.argument
= strappend("/usr/share/factory/", i
.path
);
1902 } else if (!path_is_absolute(i
.argument
)) {
1903 log_error("[%s:%u] Source path is not absolute.", fname
, line
);
1907 path_kill_slashes(i
.argument
);
1910 case CREATE_CHAR_DEVICE
:
1911 case CREATE_BLOCK_DEVICE
: {
1912 unsigned major
, minor
;
1915 log_error("[%s:%u] Device file requires argument.", fname
, line
);
1919 if (sscanf(i
.argument
, "%u:%u", &major
, &minor
) != 2) {
1920 log_error("[%s:%u] Can't parse device file major/minor '%s'.", fname
, line
, i
.argument
);
1924 i
.major_minor
= makedev(major
, minor
);
1929 case RECURSIVE_SET_XATTR
:
1931 log_error("[%s:%u] Set extended attribute requires argument.", fname
, line
);
1934 r
= parse_xattrs_from_arg(&i
);
1940 case RECURSIVE_SET_ACL
:
1942 log_error("[%s:%u] Set ACLs requires argument.", fname
, line
);
1945 r
= parse_acls_from_arg(&i
);
1951 case RECURSIVE_SET_ATTRIBUTE
:
1953 log_error("[%s:%u] Set file attribute requires argument.", fname
, line
);
1956 r
= parse_attribute_from_arg(&i
);
1962 log_error("[%s:%u] Unknown command type '%c'.", fname
, line
, (char) i
.type
);
1966 if (!path_is_absolute(i
.path
)) {
1967 log_error("[%s:%u] Path '%s' not absolute.", fname
, line
, i
.path
);
1971 path_kill_slashes(i
.path
);
1973 if (!should_include_path(i
.path
))
1979 p
= prefix_root(arg_root
, i
.path
);
1987 if (!isempty(user
) && !streq(user
, "-")) {
1988 const char *u
= user
;
1990 r
= get_user_creds(&u
, &i
.uid
, NULL
, NULL
, NULL
);
1992 log_error("[%s:%u] Unknown user '%s'.", fname
, line
, user
);
1999 if (!isempty(group
) && !streq(group
, "-")) {
2000 const char *g
= group
;
2002 r
= get_group_creds(&g
, &i
.gid
);
2004 log_error("[%s:%u] Unknown group '%s'.", fname
, line
, group
);
2011 if (!isempty(mode
) && !streq(mode
, "-")) {
2012 const char *mm
= mode
;
2016 i
.mask_perms
= true;
2020 if (parse_mode(mm
, &m
) < 0) {
2021 log_error("[%s:%u] Invalid mode '%s'.", fname
, line
, mode
);
2028 i
.mode
= IN_SET(i
.type
, CREATE_DIRECTORY
, TRUNCATE_DIRECTORY
, CREATE_SUBVOLUME
, CREATE_SUBVOLUME_INHERIT_QUOTA
, CREATE_SUBVOLUME_NEW_QUOTA
) ? 0755 : 0644;
2030 if (!isempty(age
) && !streq(age
, "-")) {
2031 const char *a
= age
;
2034 i
.keep_first_level
= true;
2038 if (parse_sec(a
, &i
.age
) < 0) {
2039 log_error("[%s:%u] Invalid age '%s'.", fname
, line
, age
);
2046 h
= needs_glob(i
.type
) ? globs
: items
;
2048 existing
= ordered_hashmap_get(h
, i
.path
);
2052 for (n
= 0; n
< existing
->count
; n
++) {
2053 if (!item_compatible(existing
->items
+ n
, &i
)) {
2054 log_warning("[%s:%u] Duplicate line for path \"%s\", ignoring.",
2055 fname
, line
, i
.path
);
2060 existing
= new0(ItemArray
, 1);
2061 r
= ordered_hashmap_put(h
, i
.path
, existing
);
2066 if (!GREEDY_REALLOC(existing
->items
, existing
->size
, existing
->count
+ 1))
2069 memcpy(existing
->items
+ existing
->count
++, &i
, sizeof(i
));
2071 /* Sort item array, to enforce stable ordering of application */
2072 qsort_safe(existing
->items
, existing
->count
, sizeof(Item
), item_compare
);
2078 static void help(void) {
2079 printf("%s [OPTIONS...] [CONFIGURATION FILE...]\n\n"
2080 "Creates, deletes and cleans up volatile and temporary files and directories.\n\n"
2081 " -h --help Show this help\n"
2082 " --version Show package version\n"
2083 " --create Create marked files/directories\n"
2084 " --clean Clean up marked directories\n"
2085 " --remove Remove marked files/directories\n"
2086 " --boot Execute actions only safe at boot\n"
2087 " --prefix=PATH Only apply rules with the specified prefix\n"
2088 " --exclude-prefix=PATH Ignore rules with the specified prefix\n"
2089 " --root=PATH Operate on an alternate filesystem root\n",
2090 program_invocation_short_name
);
2093 static int parse_argv(int argc
, char *argv
[]) {
2096 ARG_VERSION
= 0x100,
2106 static const struct option options
[] = {
2107 { "help", no_argument
, NULL
, 'h' },
2108 { "version", no_argument
, NULL
, ARG_VERSION
},
2109 { "create", no_argument
, NULL
, ARG_CREATE
},
2110 { "clean", no_argument
, NULL
, ARG_CLEAN
},
2111 { "remove", no_argument
, NULL
, ARG_REMOVE
},
2112 { "boot", no_argument
, NULL
, ARG_BOOT
},
2113 { "prefix", required_argument
, NULL
, ARG_PREFIX
},
2114 { "exclude-prefix", required_argument
, NULL
, ARG_EXCLUDE_PREFIX
},
2115 { "root", required_argument
, NULL
, ARG_ROOT
},
2124 while ((c
= getopt_long(argc
, argv
, "h", options
, NULL
)) >= 0)
2152 if (strv_push(&arg_include_prefixes
, optarg
) < 0)
2156 case ARG_EXCLUDE_PREFIX
:
2157 if (strv_push(&arg_exclude_prefixes
, optarg
) < 0)
2162 r
= parse_path_argument_and_warn(optarg
, true, &arg_root
);
2171 assert_not_reached("Unhandled option");
2174 if (!arg_clean
&& !arg_create
&& !arg_remove
) {
2175 log_error("You need to specify at least one of --clean, --create or --remove.");
2182 static int read_config_file(const char *fn
, bool ignore_enoent
) {
2183 _cleanup_fclose_
FILE *f
= NULL
;
2184 char line
[LINE_MAX
];
2192 r
= search_and_fopen_nulstr(fn
, "re", arg_root
, conf_file_dirs
, &f
);
2194 if (ignore_enoent
&& r
== -ENOENT
) {
2195 log_debug_errno(r
, "Failed to open \"%s\": %m", fn
);
2199 return log_error_errno(r
, "Failed to open '%s', ignoring: %m", fn
);
2201 log_debug("Reading config file \"%s\".", fn
);
2203 FOREACH_LINE(line
, f
, break) {
2210 if (*l
== '#' || *l
== 0)
2213 k
= parse_line(fn
, v
, l
);
2214 if (k
< 0 && r
== 0)
2218 /* we have to determine age parameter for each entry of type X */
2219 ORDERED_HASHMAP_FOREACH(i
, globs
, iterator
) {
2221 Item
*j
, *candidate_item
= NULL
;
2223 if (i
->type
!= IGNORE_DIRECTORY_PATH
)
2226 ORDERED_HASHMAP_FOREACH(j
, items
, iter
) {
2227 if (!IN_SET(j
->type
, CREATE_DIRECTORY
, TRUNCATE_DIRECTORY
, CREATE_SUBVOLUME
, CREATE_SUBVOLUME_INHERIT_QUOTA
, CREATE_SUBVOLUME_NEW_QUOTA
))
2230 if (path_equal(j
->path
, i
->path
)) {
2235 if ((!candidate_item
&& path_startswith(i
->path
, j
->path
)) ||
2236 (candidate_item
&& path_startswith(j
->path
, candidate_item
->path
) && (fnmatch(i
->path
, j
->path
, FNM_PATHNAME
| FNM_PERIOD
) == 0)))
2240 if (candidate_item
&& candidate_item
->age_set
) {
2241 i
->age
= candidate_item
->age
;
2247 log_error_errno(errno
, "Failed to read from file %s: %m", fn
);
2255 int main(int argc
, char *argv
[]) {
2260 r
= parse_argv(argc
, argv
);
2264 log_set_target(LOG_TARGET_AUTO
);
2265 log_parse_environment();
2270 mac_selinux_init(NULL
);
2272 items
= ordered_hashmap_new(&string_hash_ops
);
2273 globs
= ordered_hashmap_new(&string_hash_ops
);
2275 if (!items
|| !globs
) {
2282 if (optind
< argc
) {
2285 for (j
= optind
; j
< argc
; j
++) {
2286 k
= read_config_file(argv
[j
], false);
2287 if (k
< 0 && r
== 0)
2292 _cleanup_strv_free_
char **files
= NULL
;
2295 r
= conf_files_list_nulstr(&files
, ".conf", arg_root
, conf_file_dirs
);
2297 log_error_errno(r
, "Failed to enumerate tmpfiles.d files: %m");
2301 STRV_FOREACH(f
, files
) {
2302 k
= read_config_file(*f
, true);
2303 if (k
< 0 && r
== 0)
2308 /* The non-globbing ones usually create things, hence we apply
2310 ORDERED_HASHMAP_FOREACH(a
, items
, iterator
) {
2311 k
= process_item_array(a
);
2312 if (k
< 0 && r
== 0)
2316 /* The globbing ones usually alter things, hence we apply them
2318 ORDERED_HASHMAP_FOREACH(a
, globs
, iterator
) {
2319 k
= process_item_array(a
);
2320 if (k
< 0 && r
== 0)
2325 while ((a
= ordered_hashmap_steal_first(items
)))
2328 while ((a
= ordered_hashmap_steal_first(globs
)))
2331 ordered_hashmap_free(items
);
2332 ordered_hashmap_free(globs
);
2334 free(arg_include_prefixes
);
2335 free(arg_exclude_prefixes
);
2338 set_free_free(unix_sockets
);
2340 mac_selinux_finish();
2342 return r
< 0 ? EXIT_FAILURE
: EXIT_SUCCESS
;