]>
Commit | Line | Data |
---|---|---|
db9ecf05 | 1 | /* SPDX-License-Identifier: LGPL-2.1-or-later */ |
6c12b52e | 2 | |
b5efdb8a | 3 | #include "alloc-util.h" |
96aad8d1 | 4 | #include "bus-common-errors.h" |
40af3d02 | 5 | #include "bus-get-properties.h" |
1d22e906 LP |
6 | #include "dbus-cgroup.h" |
7 | #include "dbus-kill.h" | |
8 | #include "dbus-scope.h" | |
b5efdb8a | 9 | #include "dbus-unit.h" |
0fb0fffa | 10 | #include "dbus-util.h" |
b5efdb8a LP |
11 | #include "dbus.h" |
12 | #include "scope.h" | |
13 | #include "selinux-access.h" | |
14 | #include "unit.h" | |
6c12b52e | 15 | |
c20076a8 | 16 | int bus_scope_method_abandon(sd_bus_message *message, void *userdata, sd_bus_error *error) { |
a911bb9a | 17 | Scope *s = userdata; |
4e2f8d27 | 18 | int r; |
a911bb9a | 19 | |
a911bb9a LP |
20 | assert(message); |
21 | assert(s); | |
22 | ||
1d22e906 LP |
23 | r = mac_selinux_unit_access_check(UNIT(s), message, "stop", error); |
24 | if (r < 0) | |
25 | return r; | |
26 | ||
27 | r = bus_verify_manage_units_async(UNIT(s)->manager, message, error); | |
283868e1 SW |
28 | if (r < 0) |
29 | return r; | |
30 | if (r == 0) | |
31 | return 1; /* No authorization for now, but the async polkit stuff will call us again when it has it */ | |
32 | ||
4e2f8d27 | 33 | r = scope_abandon(s); |
4e2f8d27 LP |
34 | if (r == -ESTALE) |
35 | return sd_bus_error_setf(error, BUS_ERROR_SCOPE_NOT_RUNNING, "Scope %s is not running, cannot abandon.", UNIT(s)->id); | |
1d22e906 LP |
36 | if (r < 0) |
37 | return r; | |
4e2f8d27 LP |
38 | |
39 | return sd_bus_reply_method_return(message, NULL); | |
a911bb9a LP |
40 | } |
41 | ||
718db961 | 42 | static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_result, scope_result, ScopeResult); |
6c12b52e | 43 | |
718db961 LP |
44 | const sd_bus_vtable bus_scope_vtable[] = { |
45 | SD_BUS_VTABLE_START(0), | |
371c0b79 | 46 | SD_BUS_PROPERTY("Controller", "s", NULL, offsetof(Scope, controller), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE), |
556089dc | 47 | SD_BUS_PROPERTY("TimeoutStopUSec", "t", bus_property_get_usec, offsetof(Scope, timeout_stop_usec), SD_BUS_VTABLE_PROPERTY_CONST), |
718db961 | 48 | SD_BUS_PROPERTY("Result", "s", property_get_result, offsetof(Scope, result), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE), |
9ed7de60 | 49 | SD_BUS_PROPERTY("RuntimeMaxUSec", "t", bus_property_get_usec, offsetof(Scope, runtime_max_usec), SD_BUS_VTABLE_PROPERTY_CONST), |
2d4a39e7 | 50 | SD_BUS_SIGNAL("RequestStop", NULL, 0), |
c20076a8 | 51 | SD_BUS_METHOD("Abandon", NULL, NULL, bus_scope_method_abandon, SD_BUS_VTABLE_UNPRIVILEGED), |
718db961 LP |
52 | SD_BUS_VTABLE_END |
53 | }; | |
6c12b52e | 54 | |
9f2e86af | 55 | static int bus_scope_set_transient_property( |
6c12b52e LP |
56 | Scope *s, |
57 | const char *name, | |
718db961 | 58 | sd_bus_message *message, |
2e59b241 | 59 | UnitWriteFlags flags, |
718db961 | 60 | sd_bus_error *error) { |
6c12b52e | 61 | |
ef71cc77 | 62 | Unit *u = UNIT(s); |
6c12b52e LP |
63 | int r; |
64 | ||
6c12b52e | 65 | assert(s); |
718db961 LP |
66 | assert(name); |
67 | assert(message); | |
6c12b52e | 68 | |
2e59b241 LP |
69 | flags |= UNIT_PRIVATE; |
70 | ||
0fb0fffa | 71 | if (streq(name, "TimeoutStopUSec")) |
ef71cc77 | 72 | return bus_set_transient_usec(u, name, &s->timeout_stop_usec, message, flags, error); |
0fb0fffa | 73 | |
9ed7de60 PW |
74 | if (streq(name, "RuntimeMaxUSec")) |
75 | return bus_set_transient_usec(u, name, &s->runtime_max_usec, message, flags, error); | |
76 | ||
6c12b52e | 77 | if (streq(name, "PIDs")) { |
6592b975 | 78 | _cleanup_(sd_bus_creds_unrefp) sd_bus_creds *creds = NULL; |
294a90cc | 79 | unsigned n = 0; |
6c12b52e | 80 | |
718db961 LP |
81 | r = sd_bus_message_enter_container(message, 'a', "u"); |
82 | if (r < 0) | |
83 | return r; | |
6c12b52e | 84 | |
6592b975 LP |
85 | for (;;) { |
86 | uint32_t upid; | |
87 | pid_t pid; | |
88 | ||
89 | r = sd_bus_message_read(message, "u", &upid); | |
90 | if (r < 0) | |
91 | return r; | |
92 | if (r == 0) | |
93 | break; | |
94 | ||
95 | if (upid == 0) { | |
96 | if (!creds) { | |
97 | r = sd_bus_query_sender_creds(message, SD_BUS_CREDS_PID, &creds); | |
98 | if (r < 0) | |
99 | return r; | |
100 | } | |
101 | ||
102 | r = sd_bus_creds_get_pid(creds, &pid); | |
103 | if (r < 0) | |
104 | return r; | |
105 | } else | |
106 | pid = (uid_t) upid; | |
6c12b52e | 107 | |
ef71cc77 | 108 | r = unit_pid_attachable(u, pid, error); |
6592b975 LP |
109 | if (r < 0) |
110 | return r; | |
6c12b52e | 111 | |
2e59b241 | 112 | if (!UNIT_WRITE_FLAGS_NOOP(flags)) { |
ef71cc77 | 113 | r = unit_watch_pid(u, pid, false); |
adb3a45d LP |
114 | if (r < 0 && r != -EEXIST) |
115 | return r; | |
116 | } | |
6c12b52e | 117 | |
adb3a45d | 118 | n++; |
6c12b52e | 119 | } |
718db961 LP |
120 | |
121 | r = sd_bus_message_exit_container(message); | |
122 | if (r < 0) | |
123 | return r; | |
6c12b52e | 124 | |
adb3a45d | 125 | if (n <= 0) |
6c12b52e LP |
126 | return -EINVAL; |
127 | ||
128 | return 1; | |
cc23f9f1 | 129 | |
2d4a39e7 LP |
130 | } else if (streq(name, "Controller")) { |
131 | const char *controller; | |
2d4a39e7 | 132 | |
f2c49c86 LP |
133 | /* We can't support direct connections with this, as direct connections know no service or unique name |
134 | * concept, but the Controller field stores exactly that. */ | |
ef71cc77 | 135 | if (sd_bus_message_get_bus(message) != u->manager->api_bus) |
1b09b81c | 136 | return sd_bus_error_set(error, SD_BUS_ERROR_NOT_SUPPORTED, "Sorry, Controller= logic only supported via the bus."); |
f2c49c86 | 137 | |
2d4a39e7 LP |
138 | r = sd_bus_message_read(message, "s", &controller); |
139 | if (r < 0) | |
140 | return r; | |
141 | ||
5453a4b1 | 142 | if (!isempty(controller) && !sd_bus_service_name_is_valid(controller)) |
2d4a39e7 LP |
143 | return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Controller '%s' is not a valid bus name.", controller); |
144 | ||
2e59b241 LP |
145 | if (!UNIT_WRITE_FLAGS_NOOP(flags)) { |
146 | r = free_and_strdup(&s->controller, empty_to_null(controller)); | |
147 | if (r < 0) | |
148 | return r; | |
2d4a39e7 LP |
149 | } |
150 | ||
cc23f9f1 | 151 | return 1; |
6c12b52e LP |
152 | } |
153 | ||
154 | return 0; | |
155 | } | |
156 | ||
157 | int bus_scope_set_property( | |
158 | Unit *u, | |
159 | const char *name, | |
718db961 | 160 | sd_bus_message *message, |
2e59b241 | 161 | UnitWriteFlags flags, |
718db961 | 162 | sd_bus_error *error) { |
6c12b52e LP |
163 | |
164 | Scope *s = SCOPE(u); | |
165 | int r; | |
166 | ||
718db961 | 167 | assert(s); |
6c12b52e | 168 | assert(name); |
718db961 | 169 | assert(message); |
6c12b52e | 170 | |
2e59b241 | 171 | r = bus_cgroup_set_property(u, &s->cgroup_context, name, message, flags, error); |
6c12b52e LP |
172 | if (r != 0) |
173 | return r; | |
174 | ||
175 | if (u->load_state == UNIT_STUB) { | |
176 | /* While we are created we still accept PIDs */ | |
177 | ||
2e59b241 | 178 | r = bus_scope_set_transient_property(s, name, message, flags, error); |
6c12b52e LP |
179 | if (r != 0) |
180 | return r; | |
a6c0353b | 181 | |
2e59b241 | 182 | r = bus_kill_context_set_transient_property(u, &s->kill_context, name, message, flags, error); |
a6c0353b LP |
183 | if (r != 0) |
184 | return r; | |
6c12b52e LP |
185 | } |
186 | ||
187 | return 0; | |
188 | } | |
189 | ||
190 | int bus_scope_commit_properties(Unit *u) { | |
191 | assert(u); | |
192 | ||
193 | unit_realize_cgroup(u); | |
bc432dc7 | 194 | |
6c12b52e LP |
195 | return 0; |
196 | } | |
2d4a39e7 LP |
197 | |
198 | int bus_scope_send_request_stop(Scope *s) { | |
4afd3348 | 199 | _cleanup_(sd_bus_message_unrefp) sd_bus_message *m = NULL; |
2d4a39e7 LP |
200 | _cleanup_free_ char *p = NULL; |
201 | int r; | |
202 | ||
203 | assert(s); | |
204 | ||
205 | if (!s->controller) | |
206 | return 0; | |
207 | ||
208 | p = unit_dbus_path(UNIT(s)); | |
209 | if (!p) | |
210 | return -ENOMEM; | |
211 | ||
212 | r = sd_bus_message_new_signal( | |
213 | UNIT(s)->manager->api_bus, | |
151b9b96 | 214 | &m, |
2d4a39e7 LP |
215 | p, |
216 | "org.freedesktop.systemd1.Scope", | |
151b9b96 | 217 | "RequestStop"); |
2d4a39e7 LP |
218 | if (r < 0) |
219 | return r; | |
220 | ||
f4b0fb23 | 221 | return sd_bus_send_to(UNIT(s)->manager->api_bus, m, s->controller, NULL); |
2d4a39e7 | 222 | } |
371c0b79 LP |
223 | |
224 | static int on_controller_gone(sd_bus_track *track, void *userdata) { | |
225 | Scope *s = userdata; | |
226 | ||
227 | assert(track); | |
228 | ||
229 | if (s->controller) { | |
230 | log_unit_debug(UNIT(s), "Controller %s disappeared from bus.", s->controller); | |
231 | unit_add_to_dbus_queue(UNIT(s)); | |
232 | s->controller = mfree(s->controller); | |
233 | } | |
234 | ||
235 | s->controller_track = sd_bus_track_unref(s->controller_track); | |
236 | ||
237 | return 0; | |
238 | } | |
239 | ||
240 | int bus_scope_track_controller(Scope *s) { | |
241 | int r; | |
242 | ||
243 | assert(s); | |
244 | ||
245 | if (!s->controller || s->controller_track) | |
246 | return 0; | |
247 | ||
248 | r = sd_bus_track_new(UNIT(s)->manager->api_bus, &s->controller_track, on_controller_gone, s); | |
249 | if (r < 0) | |
250 | return r; | |
251 | ||
252 | r = sd_bus_track_add_name(s->controller_track, s->controller); | |
253 | if (r < 0) { | |
254 | s->controller_track = sd_bus_track_unref(s->controller_track); | |
255 | return r; | |
256 | } | |
257 | ||
258 | return 0; | |
259 | } |