[thirdparty/chrony.git] / main.c

/*
  chronyd/chronyc - Programs for keeping computer clocks accurate.

 **********************************************************************
 * Copyright (C) Richard P. Curnow  1997-2003
 * Copyright (C) John G. Hasler  2009
 * Copyright (C) Miroslav Lichvar  2012-2017
 * 
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of version 2 of the GNU General Public License as
 * published by the Free Software Foundation.
 * 
 * This program is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * General Public License for more details.
 * 
 * You should have received a copy of the GNU General Public License along
 * with this program; if not, write to the Free Software Foundation, Inc.,
 * 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 * 
 **********************************************************************

  =======================================================================

  The main program
  */

#include "config.h"

#include "sysincl.h"

#include "main.h"
#include "sched.h"
#include "local.h"
#include "sys.h"
#include "ntp_io.h"
#include "ntp_signd.h"
#include "ntp_sources.h"
#include "ntp_core.h"
#include "sources.h"
#include "sourcestats.h"
#include "reference.h"
#include "logging.h"
#include "conf.h"
#include "cmdmon.h"
#include "keys.h"
#include "manual.h"
#include "rtc.h"
#include "refclock.h"
#include "clientlog.h"
#include "nameserv.h"
#include "privops.h"
#include "smooth.h"
#include "tempcomp.h"
#include "util.h"

/* ================================================== */

/* Set when the initialisation chain has been completed.  Prevents finalisation
 * chain being run if a fatal error happened early. */

static int initialised = 0;

static int exit_status = 0;

static int reload = 0;

static REF_Mode ref_mode = REF_ModeNormal;

/* ================================================== */

static void
do_platform_checks(void)
{
  /* Require at least 32-bit integers, two's complement representation and
     the usual implementation of conversion of unsigned integers */
  assert(sizeof (int) >= 4);
  assert(-1 == ~0);
  assert((int32_t)4294967295U == (int32_t)-1);
}

/* ================================================== */

static void
delete_pidfile(void)
{
  const char *pidfile = CNF_GetPidFile();

  if (!pidfile[0])
    return;

  /* Don't care if this fails, there's not a lot we can do */
  unlink(pidfile);
}

/* ================================================== */

void
MAI_CleanupAndExit(void)
{
  if (!initialised) exit(exit_status);
  
  if (CNF_GetDumpDir()[0] != '\0') {
    SRC_DumpSources();
  }

  /* Don't update clock when removing sources */
  REF_SetMode(REF_ModeIgnore);

  SMT_Finalise();
  TMC_Finalise();
  MNL_Finalise();
  CLG_Finalise();
  NSD_Finalise();
  NSR_Finalise();
  SST_Finalise();
  NCR_Finalise();
  NIO_Finalise();
  CAM_Finalise();
  KEY_Finalise();
  RCL_Finalise();
  SRC_Finalise();
  REF_Finalise();
  RTC_Finalise();
  SYS_Finalise();
  SCH_Finalise();
  LCL_Finalise();
  PRV_Finalise();

  delete_pidfile();
  
  CNF_Finalise();
  HSH_Finalise();
  LOG_Finalise();

  exit(exit_status);
}

/* ================================================== */

static void
signal_cleanup(int x)
{
  if (!initialised) exit(0);
  SCH_QuitProgram();
}

/* ================================================== */

static void
quit_timeout(void *arg)
{
  /* Return with non-zero status if the clock is not synchronised */
  exit_status = REF_GetOurStratum() >= NTP_MAX_STRATUM;
  SCH_QuitProgram();
}

/* ================================================== */

static void
ntp_source_resolving_end(void)
{
  NSR_SetSourceResolvingEndHandler(NULL);

  if (reload) {
    /* Note, we want reload to come well after the initialisation from
       the real time clock - this gives us a fighting chance that the
       system-clock scale for the reloaded samples still has a
       semblence of validity about it. */
    SRC_ReloadSources();
  }

  SRC_RemoveDumpFiles();
  RTC_StartMeasurements();
  RCL_StartRefclocks();
  NSR_StartSources();
  NSR_AutoStartSources();

  /* Special modes can end only when sources update their reachability.
     Give up immediatelly if there are no active sources. */
  if (ref_mode != REF_ModeNormal && !SRC_ActiveSources()) {
    REF_SetUnsynchronised();
  }
}

/* ================================================== */

static void
post_init_ntp_hook(void *anything)
{
  if (ref_mode == REF_ModeInitStepSlew) {
    /* Remove the initstepslew sources and set normal mode */
    NSR_RemoveAllSources();
    ref_mode = REF_ModeNormal;
    REF_SetMode(ref_mode);
  }

  /* Close the pipe to the foreground process so it can exit */
  LOG_CloseParentFd();

  CNF_AddSources();
  CNF_AddBroadcasts();

  NSR_SetSourceResolvingEndHandler(ntp_source_resolving_end);
  NSR_ResolveSources();
}

/* ================================================== */

static void
reference_mode_end(int result)
{
  switch (ref_mode) {
    case REF_ModeNormal:
    case REF_ModeUpdateOnce:
    case REF_ModePrintOnce:
      exit_status = !result;
      SCH_QuitProgram();
      break;
    case REF_ModeInitStepSlew:
      /* Switch to the normal mode, the delay is used to prevent polling
         interval shorter than the burst interval if some configured servers
         were used also for initstepslew */
      SCH_AddTimeoutByDelay(2.0, post_init_ntp_hook, NULL);
      break;
    default:
      assert(0);
  }
}

/* ================================================== */

static void
post_init_rtc_hook(void *anything)
{
  if (CNF_GetInitSources() > 0) {
    CNF_AddInitSources();
    NSR_StartSources();
    assert(REF_GetMode() != REF_ModeNormal);
    /* Wait for mode end notification */
  } else {
    (post_init_ntp_hook)(NULL);
  }
}

/* ================================================== */

static void
check_pidfile(void)
{
  const char *pidfile = CNF_GetPidFile();
  FILE *in;
  int pid, count;
  
  in = fopen(pidfile, "r");
  if (!in)
    return;

  count = fscanf(in, "%d", &pid);
  fclose(in);
  
  if (count != 1)
    return;

  if (getsid(pid) < 0)
    return;

  LOG_FATAL("Another chronyd may already be running (pid=%d), check %s",
            pid, pidfile);
}

/* ================================================== */

static void
write_pidfile(void)
{
  const char *pidfile = CNF_GetPidFile();
  FILE *out;

  if (!pidfile[0])
    return;

  out = fopen(pidfile, "w");
  if (!out) {
    LOG_FATAL("Could not open %s : %s", pidfile, strerror(errno));
  } else {
    fprintf(out, "%d\n", (int)getpid());
    fclose(out);
  }
}

/* ================================================== */

static void
go_daemon(void)
{
  int pid, fd, pipefd[2];

  /* Create pipe which will the daemon use to notify the grandparent
     when it's initialised or send an error message */
  if (pipe(pipefd)) {
    LOG_FATAL("pipe() failed : %s", strerror(errno));
  }

  /* Does this preserve existing signal handlers? */
  pid = fork();

  if (pid < 0) {
    LOG_FATAL("fork() failed : %s", strerror(errno));
  } else if (pid > 0) {
    /* In the 'grandparent' */
    char message[1024];
    int r;

    close(pipefd[1]);
    r = read(pipefd[0], message, sizeof (message));
    if (r) {
      if (r > 0) {
        /* Print the error message from the child */
        message[sizeof (message) - 1] = '\0';
        fprintf(stderr, "%s\n", message);
      }
      exit(1);
    } else
      exit(0);
  } else {
    close(pipefd[0]);

    setsid();

    /* Do 2nd fork, as-per recommended practice for launching daemons. */
    pid = fork();

    if (pid < 0) {
      LOG_FATAL("fork() failed : %s", strerror(errno));
    } else if (pid > 0) {
      exit(0); /* In the 'parent' */
    } else {
      /* In the child we want to leave running as the daemon */

      /* Change current directory to / */
      if (chdir("/") < 0) {
        LOG_FATAL("chdir() failed : %s", strerror(errno));
      }

      /* Don't keep stdin/out/err from before. But don't close
         the parent pipe yet. */
      for (fd=0; fd<1024; fd++) {
        if (fd != pipefd[1])
          close(fd);
      }

      LOG_SetParentFd(pipefd[1]);
    }
  }
}

/* ================================================== */

static void
print_help(const char *progname)
{
      printf("Usage: %s [-4|-6] [-n|-d] [-q|-Q] [-r] [-R] [-s] [-t TIMEOUT] [-f FILE|COMMAND...]\n",
             progname);
}

/* ================================================== */

static void
print_version(void)
{
  printf("chronyd (chrony) version %s (%s)\n", CHRONY_VERSION, CHRONYD_FEATURES);
}

/* ================================================== */

static int
parse_int_arg(const char *arg)
{
  int i;

  if (sscanf(arg, "%d", &i) != 1)
    LOG_FATAL("Invalid argument %s", arg);
  return i;
}

/* ================================================== */

int main
(int argc, char **argv)
{
  const char *conf_file = DEFAULT_CONF_FILE;
  const char *progname = argv[0];
  char *user = NULL, *log_file = NULL;
  struct passwd *pw;
  int opt, debug = 0, nofork = 0, address_family = IPADDR_UNSPEC;
  int do_init_rtc = 0, restarted = 0, client_only = 0, timeout = 0;
  int scfilter_level = 0, lock_memory = 0, sched_priority = 0;
  int clock_control = 1, system_log = 1;
  int config_args = 0;

  do_platform_checks();

  LOG_Initialise();

  /* Parse (undocumented) long command-line options */
  for (optind = 1; optind < argc; optind++) {
    if (!strcmp("--help", argv[optind])) {
      print_help(progname);
      return 0;
    } else if (!strcmp("--version", argv[optind])) {
      print_version();
      return 0;
    }
  }

  optind = 1;

  /* Parse short command-line options */
  while ((opt = getopt(argc, argv, "46df:F:hl:mnP:qQrRst:u:vx")) != -1) {
    switch (opt) {
      case '4':
      case '6':
        address_family = opt == '4' ? IPADDR_INET4 : IPADDR_INET6;
        break;
      case 'd':
        debug++;
        nofork = 1;
        system_log = 0;
        break;
      case 'f':
        conf_file = optarg;
        break;
      case 'F':
        scfilter_level = parse_int_arg(optarg);
        break;
      case 'l':
        log_file = optarg;
        break;
      case 'm':
        lock_memory = 1;
        break;
      case 'n':
        nofork = 1;
        break;
      case 'P':
        sched_priority = parse_int_arg(optarg);
        break;
      case 'q':
        ref_mode = REF_ModeUpdateOnce;
        nofork = 1;
        client_only = 0;
        system_log = 0;
        break;
      case 'Q':
        ref_mode = REF_ModePrintOnce;
        nofork = 1;
        client_only = 1;
        clock_control = 0;
        system_log = 0;
        break;
      case 'r':
        reload = 1;
        break;
      case 'R':
        restarted = 1;
        break;
      case 's':
        do_init_rtc = 1;
        break;
      case 't':
        timeout = parse_int_arg(optarg);
        break;
      case 'u':
        user = optarg;
        break;
      case 'v':
        print_version();
        return 0;
      case 'x':
        clock_control = 0;
        break;
      default:
        print_help(progname);
        return opt != 'h';
    }
  }

  if (getuid() && !client_only)
    LOG_FATAL("Not superuser");

  /* Turn into a daemon */
  if (!nofork) {
    go_daemon();
  }

  if (log_file) {
    LOG_OpenFileLog(log_file);
  } else if (system_log) {
    LOG_OpenSystemLog();
  }
  
  LOG_SetDebugLevel(debug);
  
  LOG(LOGS_INFO, "chronyd version %s starting (%s)", CHRONY_VERSION, CHRONYD_FEATURES);

  DNS_SetAddressFamily(address_family);

  CNF_Initialise(restarted, client_only);

  /* Parse the config file or the remaining command line arguments */
  config_args = argc - optind;
  if (!config_args) {
    CNF_ReadFile(conf_file);
  } else {
    for (; optind < argc; optind++)
      CNF_ParseLine(NULL, config_args + optind - argc + 1, argv[optind]);
  }

  /* Check whether another chronyd may already be running */
  check_pidfile();

  /* Write our pidfile to prevent other chronyds running */
  write_pidfile();

  PRV_Initialise();
  LCL_Initialise();
  SCH_Initialise();
  SYS_Initialise(clock_control);
  RTC_Initialise(do_init_rtc);
  SRC_Initialise();
  RCL_Initialise();
  KEY_Initialise();

  /* Open privileged ports before dropping root */
  CAM_Initialise(address_family);
  NIO_Initialise(address_family);
  NCR_Initialise();
  CNF_SetupAccessRestrictions();

  /* Command-line switch must have priority */
  if (!sched_priority) {
    sched_priority = CNF_GetSchedPriority();
  }
  if (sched_priority) {
    SYS_SetScheduler(sched_priority);
  }

  if (lock_memory || CNF_GetLockMemory()) {
    SYS_LockMemory();
  }

  if (!user) {
    user = CNF_GetUser();
  }

  if ((pw = getpwnam(user)) == NULL)
    LOG_FATAL("Could not get user/group ID of %s", user);

  /* Create all directories before dropping root */
  CNF_CreateDirs(pw->pw_uid, pw->pw_gid);

  /* Drop root privileges if the specified user has a non-zero UID */
  if (!geteuid() && (pw->pw_uid || pw->pw_gid))
    SYS_DropRoot(pw->pw_uid, pw->pw_gid);

  REF_Initialise();
  SST_Initialise();
  NSR_Initialise();
  NSD_Initialise();
  CLG_Initialise();
  MNL_Initialise();
  TMC_Initialise();
  SMT_Initialise();

  /* From now on, it is safe to do finalisation on exit */
  initialised = 1;

  UTI_SetQuitSignalsHandler(signal_cleanup);

  CAM_OpenUnixSocket();

  if (scfilter_level)
    SYS_EnableSystemCallFilter(scfilter_level);

  if (ref_mode == REF_ModeNormal && CNF_GetInitSources() > 0) {
    ref_mode = REF_ModeInitStepSlew;
  }

  REF_SetModeEndHandler(reference_mode_end);
  REF_SetMode(ref_mode);

  if (timeout > 0)
    SCH_AddTimeoutByDelay(timeout, quit_timeout, NULL);

  if (do_init_rtc) {
    RTC_TimeInit(post_init_rtc_hook, NULL);
  } else {
    post_init_rtc_hook(NULL);
  }

  /* The program normally runs under control of the main loop in
     the scheduler. */
  SCH_MainLoop();

  LOG(LOGS_INFO, "chronyd exiting");

  MAI_CleanupAndExit();

  return 0;
}

/* ================================================== */
Commit	Line	Data
88840341	1	/*
88840341 RC	2	chronyd/chronyc - Programs for keeping computer clocks accurate.
	3
	4	**********************************************************************
6672f045	5	* Copyright (C) Richard P. Curnow 1997-2003
f7e08d0c	6	* Copyright (C) John G. Hasler 2009
c9f50fc6	7	* Copyright (C) Miroslav Lichvar 2012-2017
88840341 RC	8	*
	9	* This program is free software; you can redistribute it and/or modify
	10	* it under the terms of version 2 of the GNU General Public License as
	11	* published by the Free Software Foundation.
	12	*
	13	* This program is distributed in the hope that it will be useful, but
	14	* WITHOUT ANY WARRANTY; without even the implied warranty of
	15	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	16	* General Public License for more details.
	17	*
	18	* You should have received a copy of the GNU General Public License along
	19	* with this program; if not, write to the Free Software Foundation, Inc.,
8e23110a	20	* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
88840341 RC	21	*
	22	**********************************************************************
	23
	24	=======================================================================
	25
	26	The main program
	27	*/
	28
da2c8d90 ML	29	#include "config.h"
da2c8d90 ML	30
88840341 RC	31	#include "sysincl.h"
	32
	33	#include "main.h"
	34	#include "sched.h"
	35	#include "local.h"
	36	#include "sys.h"
	37	#include "ntp_io.h"
577aed48	38	#include "ntp_signd.h"
88840341 RC	39	#include "ntp_sources.h"
	40	#include "ntp_core.h"
	41	#include "sources.h"
	42	#include "sourcestats.h"
	43	#include "reference.h"
	44	#include "logging.h"
	45	#include "conf.h"
	46	#include "cmdmon.h"
	47	#include "keys.h"
88840341	48	#include "manual.h"
88840341	49	#include "rtc.h"
ac30bb06	50	#include "refclock.h"
88840341	51	#include "clientlog.h"
fbd20c42	52	#include "nameserv.h"
610f2340	53	#include "privops.h"
7f45eb79	54	#include "smooth.h"
c386d117	55	#include "tempcomp.h"
ceef8ad2	56	#include "util.h"
88840341 RC	57
	58	/* ================================================== */
	59
	60	/* Set when the initialisation chain has been completed. Prevents finalisation
	61	* chain being run if a fatal error happened early. */
	62
	63	static int initialised = 0;
	64
93b66ac1	65	static int exit_status = 0;
88840341 RC	66
	67	static int reload = 0;
	68
e176587e	69	static REF_Mode ref_mode = REF_ModeNormal;
7fda9c67	70
88840341 RC	71	/* ================================================== */
88840341 RC	72
bafb434f ML	73	static void
	74	do_platform_checks(void)
	75	{
	76	/* Require at least 32-bit integers, two's complement representation and
	77	the usual implementation of conversion of unsigned integers */
	78	assert(sizeof (int) >= 4);
	79	assert(-1 == ~0);
fe502128	80	assert((int32_t)4294967295U == (int32_t)-1);
bafb434f ML	81	}
	82
	83	/* ================================================== */
	84
88840341 RC	85	static void
	86	delete_pidfile(void)
	87	{
	88	const char *pidfile = CNF_GetPidFile();
778fce40 ML	89
	90	if (!pidfile[0])
	91	return;
	92
88840341 RC	93	/* Don't care if this fails, there's not a lot we can do */
	94	unlink(pidfile);
	95	}
	96
	97	/* ================================================== */
	98
1e7e7d32	99	void
88840341 RC	100	MAI_CleanupAndExit(void)
88840341 RC	101	{
93b66ac1	102	if (!initialised) exit(exit_status);
88840341	103
f3a16383	104	if (CNF_GetDumpDir()[0] != '\0') {
88840341 RC	105	SRC_DumpSources();
	106	}
	107
f6ed7844 ML	108	/* Don't update clock when removing sources */
	109	REF_SetMode(REF_ModeIgnore);
	110
7f45eb79	111	SMT_Finalise();
c386d117	112	TMC_Finalise();
88840341	113	MNL_Finalise();
88840341	114	CLG_Finalise();
577aed48	115	NSD_Finalise();
88840341	116	NSR_Finalise();
8854c00d	117	SST_Finalise();
88840341	118	NCR_Finalise();
4e54770f	119	NIO_Finalise();
8854c00d	120	CAM_Finalise();
1c901b82	121	KEY_Finalise();
ac30bb06	122	RCL_Finalise();
3a222336	123	SRC_Finalise();
f6ed7844	124	REF_Finalise();
be42b4ee	125	RTC_Finalise();
88840341 RC	126	SYS_Finalise();
	127	SCH_Finalise();
	128	LCL_Finalise();
334ac061	129	PRV_Finalise();
88840341 RC	130
	131	delete_pidfile();
	132
f6ed7844	133	CNF_Finalise();
f6ed7844	134	HSH_Finalise();
b712c100	135	LOG_Finalise();
f6ed7844	136
93b66ac1	137	exit(exit_status);
88840341 RC	138	}
	139
	140	/* ================================================== */
	141
	142	static void
	143	signal_cleanup(int x)
	144	{
9416a24f ML	145	if (!initialised) exit(0);
9416a24f ML	146	SCH_QuitProgram();
88840341 RC	147	}
	148
	149	/* ================================================== */
	150
35134848 ML	151	static void
	152	quit_timeout(void *arg)
	153	{
	154	/* Return with non-zero status if the clock is not synchronised */
	155	exit_status = REF_GetOurStratum() >= NTP_MAX_STRATUM;
	156	SCH_QuitProgram();
	157	}
	158
	159	/* ================================================== */
	160
88840341	161	static void
6ee357d2	162	ntp_source_resolving_end(void)
88840341	163	{
6ee357d2	164	NSR_SetSourceResolvingEndHandler(NULL);
88840341	165
88840341 RC	166	if (reload) {
	167	/* Note, we want reload to come well after the initialisation from
	168	the real time clock - this gives us a fighting chance that the
	169	system-clock scale for the reloaded samples still has a
	170	semblence of validity about it. */
	171	SRC_ReloadSources();
	172	}
88840341	173
a06a5f1b	174	SRC_RemoveDumpFiles();
88840341	175	RTC_StartMeasurements();
ac30bb06	176	RCL_StartRefclocks();
779e40ed ML	177	NSR_StartSources();
779e40ed ML	178	NSR_AutoStartSources();
70feea48 ML	179
70feea48 ML	180	/* Special modes can end only when sources update their reachability.
7fa22d4c ML	181	Give up immediatelly if there are no active sources. */
7fa22d4c ML	182	if (ref_mode != REF_ModeNormal && !SRC_ActiveSources()) {
70feea48 ML	183	REF_SetUnsynchronised();
70feea48 ML	184	}
88840341 RC	185	}
	186
	187	/* ================================================== */
	188
6ee357d2 ML	189	static void
	190	post_init_ntp_hook(void *anything)
	191	{
	192	if (ref_mode == REF_ModeInitStepSlew) {
	193	/* Remove the initstepslew sources and set normal mode */
	194	NSR_RemoveAllSources();
	195	ref_mode = REF_ModeNormal;
	196	REF_SetMode(ref_mode);
	197	}
	198
	199	/* Close the pipe to the foreground process so it can exit */
	200	LOG_CloseParentFd();
	201
	202	CNF_AddSources();
	203	CNF_AddBroadcasts();
	204
	205	NSR_SetSourceResolvingEndHandler(ntp_source_resolving_end);
	206	NSR_ResolveSources();
	207	}
	208
	209	/* ================================================== */
	210
7fda9c67 ML	211	static void
	212	reference_mode_end(int result)
	213	{
	214	switch (ref_mode) {
	215	case REF_ModeNormal:
70feea48 ML	216	case REF_ModeUpdateOnce:
70feea48 ML	217	case REF_ModePrintOnce:
93b66ac1 ML	218	exit_status = !result;
93b66ac1 ML	219	SCH_QuitProgram();
7fda9c67 ML	220	break;
7fda9c67 ML	221	case REF_ModeInitStepSlew:
ead3ca14 ML	222	/* Switch to the normal mode, the delay is used to prevent polling
	223	interval shorter than the burst interval if some configured servers
	224	were used also for initstepslew */
	225	SCH_AddTimeoutByDelay(2.0, post_init_ntp_hook, NULL);
7fda9c67 ML	226	break;
	227	default:
	228	assert(0);
	229	}
	230	}
	231
	232	/* ================================================== */
	233
88840341 RC	234	static void
	235	post_init_rtc_hook(void *anything)
	236	{
7fda9c67 ML	237	if (CNF_GetInitSources() > 0) {
7fda9c67 ML	238	CNF_AddInitSources();
779e40ed	239	NSR_StartSources();
7fda9c67 ML	240	assert(REF_GetMode() != REF_ModeNormal);
	241	/* Wait for mode end notification */
	242	} else {
	243	(post_init_ntp_hook)(NULL);
	244	}
88840341 RC	245	}
	246
	247	/* ================================================== */
88840341	248
7bd1c027 ML	249	static void
7bd1c027 ML	250	check_pidfile(void)
88840341 RC	251	{
	252	const char *pidfile = CNF_GetPidFile();
	253	FILE *in;
	254	int pid, count;
	255
88840341	256	in = fopen(pidfile, "r");
7bd1c027 ML	257	if (!in)
7bd1c027 ML	258	return;
88840341 RC	259
	260	count = fscanf(in, "%d", &pid);
	261	fclose(in);
	262
7bd1c027 ML	263	if (count != 1)
7bd1c027 ML	264	return;
88840341	265
7bd1c027 ML	266	if (getsid(pid) < 0)
	267	return;
	268
	269	LOG_FATAL("Another chronyd may already be running (pid=%d), check %s",
	270	pid, pidfile);
88840341 RC	271	}
	272
	273	/* ================================================== */
	274
	275	static void
7bd1c027	276	write_pidfile(void)
88840341 RC	277	{
	278	const char *pidfile = CNF_GetPidFile();
	279	FILE *out;
	280
778fce40 ML	281	if (!pidfile[0])
	282	return;
	283
88840341 RC	284	out = fopen(pidfile, "w");
88840341 RC	285	if (!out) {
539ef3f7	286	LOG_FATAL("Could not open %s : %s", pidfile, strerror(errno));
88840341	287	} else {
f444561a	288	fprintf(out, "%d\n", (int)getpid());
88840341 RC	289	fclose(out);
	290	}
	291	}
	292
	293	/* ================================================== */
	294
fe4b661f ML	295	static void
	296	go_daemon(void)
	297	{
1d2a0856 ML	298	int pid, fd, pipefd[2];
	299
	300	/* Create pipe which will the daemon use to notify the grandparent
	301	when it's initialised or send an error message */
	302	if (pipe(pipefd)) {
539ef3f7	303	LOG_FATAL("pipe() failed : %s", strerror(errno));
1d2a0856	304	}
fe4b661f ML	305
	306	/* Does this preserve existing signal handlers? */
	307	pid = fork();
	308
	309	if (pid < 0) {
539ef3f7	310	LOG_FATAL("fork() failed : %s", strerror(errno));
fe4b661f	311	} else if (pid > 0) {
1d2a0856 ML	312	/* In the 'grandparent' */
	313	char message[1024];
	314	int r;
	315
	316	close(pipefd[1]);
	317	r = read(pipefd[0], message, sizeof (message));
	318	if (r) {
	319	if (r > 0) {
	320	/* Print the error message from the child */
a7802e9a ML	321	message[sizeof (message) - 1] = '\0';
a7802e9a ML	322	fprintf(stderr, "%s\n", message);
1d2a0856 ML	323	}
	324	exit(1);
	325	} else
	326	exit(0);
fe4b661f	327	} else {
1d2a0856	328	close(pipefd[0]);
fe4b661f ML	329
	330	setsid();
	331
	332	/* Do 2nd fork, as-per recommended practice for launching daemons. */
	333	pid = fork();
	334
	335	if (pid < 0) {
539ef3f7	336	LOG_FATAL("fork() failed : %s", strerror(errno));
fe4b661f ML	337	} else if (pid > 0) {
	338	exit(0); /* In the 'parent' */
	339	} else {
	340	/* In the child we want to leave running as the daemon */
	341
2a305d8e ML	342	/* Change current directory to / */
2a305d8e ML	343	if (chdir("/") < 0) {
539ef3f7	344	LOG_FATAL("chdir() failed : %s", strerror(errno));
2a305d8e ML	345	}
2a305d8e ML	346
1d2a0856 ML	347	/* Don't keep stdin/out/err from before. But don't close
1d2a0856 ML	348	the parent pipe yet. */
fe4b661f	349	for (fd=0; fd<1024; fd++) {
1d2a0856 ML	350	if (fd != pipefd[1])
1d2a0856 ML	351	close(fd);
fe4b661f	352	}
919b5b5a	353
1d2a0856	354	LOG_SetParentFd(pipefd[1]);
fe4b661f ML	355	}
fe4b661f ML	356	}
fe4b661f ML	357	}
	358
	359	/* ================================================== */
	360
ae0c3bbb ML	361	static void
	362	print_help(const char *progname)
	363	{
	364	printf("Usage: %s [-4\|-6] [-n\|-d] [-q\|-Q] [-r] [-R] [-s] [-t TIMEOUT] [-f FILE\|COMMAND...]\n",
	365	progname);
	366	}
	367
	368	/* ================================================== */
	369
	370	static void
	371	print_version(void)
	372	{
	373	printf("chronyd (chrony) version %s (%s)\n", CHRONY_VERSION, CHRONYD_FEATURES);
	374	}
	375
	376	/* ================================================== */
	377
	378	static int
	379	parse_int_arg(const char *arg)
	380	{
	381	int i;
	382
	383	if (sscanf(arg, "%d", &i) != 1)
	384	LOG_FATAL("Invalid argument %s", arg);
	385	return i;
	386	}
	387
	388	/* ================================================== */
	389
88840341 RC	390	int main
	391	(int argc, char **argv)
	392	{
0f8def4c	393	const char *conf_file = DEFAULT_CONF_FILE;
1cda2db4	394	const char *progname = argv[0];
a1cbd4eb	395	char user = NULL, log_file = NULL;
6402350c	396	struct passwd *pw;
ae0c3bbb	397	int opt, debug = 0, nofork = 0, address_family = IPADDR_UNSPEC;
778fce40	398	int do_init_rtc = 0, restarted = 0, client_only = 0, timeout = 0;
434faeec	399	int scfilter_level = 0, lock_memory = 0, sched_priority = 0;
c4434609	400	int clock_control = 1, system_log = 1;
3edd3fe5	401	int config_args = 0;
35e662d8	402
bafb434f ML	403	do_platform_checks();
bafb434f ML	404
88840341 RC	405	LOG_Initialise();
88840341 RC	406
ae0c3bbb ML	407	/* Parse (undocumented) long command-line options */
	408	for (optind = 1; optind < argc; optind++) {
	409	if (!strcmp("--help", argv[optind])) {
	410	print_help(progname);
1769b8ea	411	return 0;
ae0c3bbb ML	412	} else if (!strcmp("--version", argv[optind])) {
ae0c3bbb ML	413	print_version();
1769b8ea	414	return 0;
ae0c3bbb ML	415	}
	416	}
	417
	418	optind = 1;
	419
	420	/* Parse short command-line options */
	421	while ((opt = getopt(argc, argv, "46df:F:hl:mnP:qQrRst:u:vx")) != -1) {
	422	switch (opt) {
	423	case '4':
	424	case '6':
	425	address_family = opt == '4' ? IPADDR_INET4 : IPADDR_INET6;
	426	break;
	427	case 'd':
	428	debug++;
	429	nofork = 1;
	430	system_log = 0;
	431	break;
	432	case 'f':
	433	conf_file = optarg;
	434	break;
	435	case 'F':
	436	scfilter_level = parse_int_arg(optarg);
	437	break;
	438	case 'l':
	439	log_file = optarg;
	440	break;
	441	case 'm':
	442	lock_memory = 1;
	443	break;
	444	case 'n':
	445	nofork = 1;
	446	break;
	447	case 'P':
	448	sched_priority = parse_int_arg(optarg);
	449	break;
	450	case 'q':
4f1fc1ee BC	451	ref_mode = REF_ModeUpdateOnce;
	452	nofork = 1;
	453	client_only = 0;
	454	system_log = 0;
	455	break;
ae0c3bbb	456	case 'Q':
4f1fc1ee	457	ref_mode = REF_ModePrintOnce;
ae0c3bbb	458	nofork = 1;
778fce40 ML	459	client_only = 1;
778fce40 ML	460	clock_control = 0;
ae0c3bbb ML	461	system_log = 0;
	462	break;
	463	case 'r':
	464	reload = 1;
	465	break;
	466	case 'R':
	467	restarted = 1;
	468	break;
	469	case 's':
	470	do_init_rtc = 1;
	471	break;
	472	case 't':
	473	timeout = parse_int_arg(optarg);
	474	break;
	475	case 'u':
	476	user = optarg;
	477	break;
	478	case 'v':
	479	print_version();
	480	return 0;
	481	case 'x':
	482	clock_control = 0;
	483	break;
	484	default:
	485	print_help(progname);
	486	return opt != 'h';
88840341 RC	487	}
	488	}
	489
778fce40	490	if (getuid() && !client_only)
3a5566c6	491	LOG_FATAL("Not superuser");
88840341	492
88840341	493	/* Turn into a daemon */
fe4b661f ML	494	if (!nofork) {
	495	go_daemon();
	496	}
	497
a1cbd4eb ML	498	if (log_file) {
	499	LOG_OpenFileLog(log_file);
	500	} else if (system_log) {
fe4b661f	501	LOG_OpenSystemLog();
88840341 RC	502	}
88840341 RC	503
788e7fcd	504	LOG_SetDebugLevel(debug);
4bbc5520	505
f282856c	506	LOG(LOGS_INFO, "chronyd version %s starting (%s)", CHRONY_VERSION, CHRONYD_FEATURES);
cb905507	507
72d0b3c9 ML	508	DNS_SetAddressFamily(address_family);
72d0b3c9 ML	509
778fce40	510	CNF_Initialise(restarted, client_only);
3edd3fe5 ML	511
3edd3fe5 ML	512	/* Parse the config file or the remaining command line arguments */
ae0c3bbb	513	config_args = argc - optind;
3edd3fe5 ML	514	if (!config_args) {
	515	CNF_ReadFile(conf_file);
	516	} else {
ae0c3bbb ML	517	for (; optind < argc; optind++)
ae0c3bbb ML	518	CNF_ParseLine(NULL, config_args + optind - argc + 1, argv[optind]);
3edd3fe5	519	}
1e35b268	520
7bd1c027 ML	521	/* Check whether another chronyd may already be running */
7bd1c027 ML	522	check_pidfile();
88840341	523
7bd1c027 ML	524	/* Write our pidfile to prevent other chronyds running */
7bd1c027 ML	525	write_pidfile();
88840341	526
334ac061	527	PRV_Initialise();
88840341 RC	528	LCL_Initialise();
88840341 RC	529	SCH_Initialise();
c4434609	530	SYS_Initialise(clock_control);
c6e06420	531	RTC_Initialise(do_init_rtc);
3a222336	532	SRC_Initialise();
ac30bb06	533	RCL_Initialise();
1c901b82	534	KEY_Initialise();
be42b4ee	535
8854c00d ML	536	/* Open privileged ports before dropping root */
	537	CAM_Initialise(address_family);
	538	NIO_Initialise(address_family);
	539	NCR_Initialise();
	540	CNF_SetupAccessRestrictions();
	541
e3234465 ML	542	/* Command-line switch must have priority */
	543	if (!sched_priority) {
	544	sched_priority = CNF_GetSchedPriority();
	545	}
	546	if (sched_priority) {
	547	SYS_SetScheduler(sched_priority);
96759116 ML	548	}
96759116 ML	549
e3234465 ML	550	if (lock_memory \|\| CNF_GetLockMemory()) {
e3234465 ML	551	SYS_LockMemory();
96759116 ML	552	}
96759116 ML	553
edda0c60 ML	554	if (!user) {
	555	user = CNF_GetUser();
	556	}
6402350c	557
e7100e10	558	if ((pw = getpwnam(user)) == NULL)
0ce15a84	559	LOG_FATAL("Could not get user/group ID of %s", user);
6402350c	560
6d42dd86 ML	561	/* Create all directories before dropping root */
	562	CNF_CreateDirs(pw->pw_uid, pw->pw_gid);
	563
778fce40 ML	564	/* Drop root privileges if the specified user has a non-zero UID */
778fce40 ML	565	if (!geteuid() && (pw->pw_uid \|\| pw->pw_gid))
6402350c	566	SYS_DropRoot(pw->pw_uid, pw->pw_gid);
be42b4ee	567
88840341 RC	568	REF_Initialise();
88840341 RC	569	SST_Initialise();
88840341	570	NSR_Initialise();
577aed48	571	NSD_Initialise();
88840341	572	CLG_Initialise();
88840341	573	MNL_Initialise();
c386d117	574	TMC_Initialise();
7f45eb79	575	SMT_Initialise();
88840341 RC	576
	577	/* From now on, it is safe to do finalisation on exit */
	578	initialised = 1;
	579
ea2858b3 ML	580	UTI_SetQuitSignalsHandler(signal_cleanup);
ea2858b3 ML	581
8854c00d	582	CAM_OpenUnixSocket();
46951b85	583
434faeec ML	584	if (scfilter_level)
	585	SYS_EnableSystemCallFilter(scfilter_level);
	586
70feea48	587	if (ref_mode == REF_ModeNormal && CNF_GetInitSources() > 0) {
7fda9c67 ML	588	ref_mode = REF_ModeInitStepSlew;
	589	}
	590
	591	REF_SetModeEndHandler(reference_mode_end);
	592	REF_SetMode(ref_mode);
	593
ae0c3bbb	594	if (timeout > 0)
35134848 ML	595	SCH_AddTimeoutByDelay(timeout, quit_timeout, NULL);
35134848 ML	596
88840341 RC	597	if (do_init_rtc) {
	598	RTC_TimeInit(post_init_rtc_hook, NULL);
	599	} else {
	600	post_init_rtc_hook(NULL);
	601	}
	602
88840341 RC	603	/* The program normally runs under control of the main loop in
	604	the scheduler. */
	605	SCH_MainLoop();
	606
f282856c	607	LOG(LOGS_INFO, "chronyd exiting");
0fc9b555	608
88840341 RC	609	MAI_CleanupAndExit();
	610
	611	return 0;
	612	}
	613
	614	/* ================================================== */