projects / thirdparty / systemd.git / blame
| Commit | Line | Data |
|---|---|---|
| 53e1b683 | 1 | /* SPDX-License-Identifier: LGPL-2.1+ */ |
| 1a14a53c LP |
2 | /*** |
| 3 | This file is part of systemd. | |
| 4 | ||
| 5 | Copyright 2013 Lennart Poettering | |
| 1a14a53c LP |
6 | ***/ |
| 7 | ||
| 6b5cf3ea | 8 | #include <blkid.h> |
| 1a14a53c | 9 | #include <stdlib.h> |
| 1a14a53c | 10 | #include <sys/statfs.h> |
| cf0fbc49 | 11 | #include <unistd.h> |
| 1a14a53c | 12 | |
| b4bbcaa9 | 13 | #include "libudev.h" |
| 07630cea LP |
14 | #include "sd-id128.h" |
| 15 | ||
| b5efdb8a | 16 | #include "alloc-util.h" |
| 07630cea | 17 | #include "blkid-util.h" |
| 18c528e9 | 18 | #include "blockdev-util.h" |
| 07630cea | 19 | #include "btrfs-util.h" |
| a0956174 | 20 | #include "dirent-util.h" |
| 72e18a98 | 21 | #include "dissect-image.h" |
| 07630cea | 22 | #include "efivars.h" |
| 3ffd4af2 | 23 | #include "fd-util.h" |
| 07630cea LP |
24 | #include "fileio.h" |
| 25 | #include "fstab-util.h" | |
| 26 | #include "generator.h" | |
| 27 | #include "gpt.h" | |
| 1a14a53c | 28 | #include "missing.h" |
| 07630cea | 29 | #include "mkdir.h" |
| 4349cd7c | 30 | #include "mount-util.h" |
| 6bedfcbb | 31 | #include "parse-util.h" |
| 07630cea | 32 | #include "path-util.h" |
| 4e731273 | 33 | #include "proc-cmdline.h" |
| 1a14a53c | 34 | #include "special.h" |
| 98bad05e | 35 | #include "specifier.h" |
| 8fcde012 | 36 | #include "stat-util.h" |
| 07630cea LP |
37 | #include "string-util.h" |
| 38 | #include "udev-util.h" | |
| 1a14a53c | 39 | #include "unit-name.h" |
| 07630cea | 40 | #include "util.h" |
| 9a5cb137 | 41 | #include "virt.h" |
| 1a14a53c | 42 | |
| 1a14a53c | 43 | static const char *arg_dest = "/tmp"; |
| 73b80ec2 LP |
44 | static bool arg_enabled = true; |
| 45 | static bool arg_root_enabled = true; | |
| 46 | static bool arg_root_rw = false; | |
| 1a14a53c | 47 | |
| 01af8c01 | 48 | static int add_cryptsetup(const char *id, const char *what, bool rw, bool require, char **device) { |
| 2aa2860b | 49 | _cleanup_free_ char *e = NULL, *n = NULL, *d = NULL, *id_escaped = NULL, *what_escaped = NULL; |
| 1af72119 | 50 | _cleanup_fclose_ FILE *f = NULL; |
| 2aa2860b | 51 | const char *p; |
| 1af72119 LP |
52 | int r; |
| 53 | ||
| 54 | assert(id); | |
| 55 | assert(what); | |
| 1af72119 | 56 | |
| 7410616c LP |
57 | r = unit_name_from_path(what, ".device", &d); |
| 58 | if (r < 0) | |
| 59 | return log_error_errno(r, "Failed to generate unit name: %m"); | |
| 1af72119 LP |
60 | |
| 61 | e = unit_name_escape(id); | |
| 62 | if (!e) | |
| 63 | return log_oom(); | |
| 64 | ||
| 7410616c LP |
65 | r = unit_name_build("systemd-cryptsetup", e, ".service", &n); |
| 66 | if (r < 0) | |
| 67 | return log_error_errno(r, "Failed to generate unit name: %m"); | |
| 1af72119 | 68 | |
| 98bad05e LP |
69 | id_escaped = specifier_escape(id); |
| 70 | if (!id_escaped) | |
| 71 | return log_oom(); | |
| 72 | ||
| 73 | what_escaped = specifier_escape(what); | |
| 74 | if (!what_escaped) | |
| 75 | return log_oom(); | |
| 76 | ||
| 2aa2860b | 77 | p = strjoina(arg_dest, "/", n); |
| 1af72119 | 78 | f = fopen(p, "wxe"); |
| 4a62c710 MS |
79 | if (!f) |
| 80 | return log_error_errno(errno, "Failed to create unit file %s: %m", p); | |
| 1af72119 LP |
81 | |
| 82 | fprintf(f, | |
| 83 | "# Automatically generated by systemd-gpt-auto-generator\n\n" | |
| 84 | "[Unit]\n" | |
| 85 | "Description=Cryptography Setup for %%I\n" | |
| c3834f9b | 86 | "Documentation=man:systemd-gpt-auto-generator(8) man:systemd-cryptsetup@.service(8)\n" |
| 1af72119 LP |
87 | "DefaultDependencies=no\n" |
| 88 | "Conflicts=umount.target\n" | |
| 89 | "BindsTo=dev-mapper-%%i.device %s\n" | |
| 90 | "Before=umount.target cryptsetup.target\n" | |
| 91 | "After=%s\n" | |
| 92 | "IgnoreOnIsolate=true\n" | |
| 1af72119 LP |
93 | "[Service]\n" |
| 94 | "Type=oneshot\n" | |
| 95 | "RemainAfterExit=yes\n" | |
| 96 | "TimeoutSec=0\n" /* the binary handles timeouts anyway */ | |
| 0b1f68ac | 97 | "KeyringMode=shared\n" /* make sure we can share cached keys among instances */ |
| cca1dfdd | 98 | "ExecStart=" SYSTEMD_CRYPTSETUP_PATH " attach '%s' '%s' '' '%s'\n" |
| 1af72119 LP |
99 | "ExecStop=" SYSTEMD_CRYPTSETUP_PATH " detach '%s'\n", |
| 100 | d, d, | |
| 98bad05e LP |
101 | id_escaped, what_escaped, rw ? "" : "read-only", |
| 102 | id_escaped); | |
| 1af72119 | 103 | |
| dacd6cee LP |
104 | r = fflush_and_check(f); |
| 105 | if (r < 0) | |
| 106 | return log_error_errno(r, "Failed to write file %s: %m", p); | |
| 1af72119 | 107 | |
| 9cdcf368 ZJS |
108 | r = generator_add_symlink(arg_dest, d, "wants", n); |
| 109 | if (r < 0) | |
| 110 | return r; | |
| 1af72119 | 111 | |
| 01af8c01 | 112 | if (require) { |
| 9cdcf368 | 113 | const char *dmname; |
| 1af72119 | 114 | |
| 9cdcf368 ZJS |
115 | r = generator_add_symlink(arg_dest, "cryptsetup.target", "requires", n); |
| 116 | if (r < 0) | |
| 117 | return r; | |
| 01af8c01 | 118 | |
| 9cdcf368 ZJS |
119 | dmname = strjoina("dev-mapper-", e, ".device"); |
| 120 | r = generator_add_symlink(arg_dest, dmname, "requires", n); | |
| 121 | if (r < 0) | |
| 122 | return r; | |
| 01af8c01 | 123 | } |
| 1af72119 | 124 | |
| 2aa2860b | 125 | p = strjoina(arg_dest, "/dev-mapper-", e, ".device.d/50-job-timeout-sec-0.conf"); |
| 1af72119 LP |
126 | mkdir_parents_label(p, 0755); |
| 127 | r = write_string_file(p, | |
| 128 | "# Automatically generated by systemd-gpt-auto-generator\n\n" | |
| 129 | "[Unit]\n" | |
| 4c1fc3e4 DM |
130 | "JobTimeoutSec=0\n", |
| 131 | WRITE_STRING_FILE_CREATE); /* the binary handles timeouts anyway */ | |
| 23bbb0de MS |
132 | if (r < 0) |
| 133 | return log_error_errno(r, "Failed to write device drop-in: %m"); | |
| 1af72119 | 134 | |
| 2aa2860b ZJS |
135 | if (device) { |
| 136 | char *ret; | |
| 137 | ||
| 138 | ret = strappend("/dev/mapper/", id); | |
| 139 | if (!ret) | |
| 140 | return log_oom(); | |
| 1af72119 | 141 | |
| 01af8c01 | 142 | *device = ret; |
| 2aa2860b ZJS |
143 | } |
| 144 | ||
| 1af72119 LP |
145 | return 0; |
| 146 | } | |
| 147 | ||
| 73b80ec2 LP |
148 | static int add_mount( |
| 149 | const char *id, | |
| 150 | const char *what, | |
| 151 | const char *where, | |
| 152 | const char *fstype, | |
| cca1dfdd | 153 | bool rw, |
| 59512f21 | 154 | const char *options, |
| 73b80ec2 LP |
155 | const char *description, |
| 156 | const char *post) { | |
| 157 | ||
| 9cdcf368 | 158 | _cleanup_free_ char *unit = NULL, *crypto_what = NULL, *p = NULL; |
| 1a14a53c | 159 | _cleanup_fclose_ FILE *f = NULL; |
| e48fdd84 | 160 | int r; |
| 1a14a53c | 161 | |
| 98bad05e LP |
162 | /* Note that we don't apply specifier escaping on the input strings here, since we know they are not configured |
| 163 | * externally, but all originate from our own sources here, and hence we know they contain no % characters that | |
| 164 | * could potentially be understood as specifiers. */ | |
| 165 | ||
| 1af72119 LP |
166 | assert(id); |
| 167 | assert(what); | |
| 168 | assert(where); | |
| 1af72119 LP |
169 | assert(description); |
| 170 | ||
| 73b80ec2 | 171 | log_debug("Adding %s: %s %s", where, what, strna(fstype)); |
| 1a14a53c | 172 | |
| 73b80ec2 | 173 | if (streq_ptr(fstype, "crypto_LUKS")) { |
| 1af72119 | 174 | |
| 01af8c01 | 175 | r = add_cryptsetup(id, what, rw, true, &crypto_what); |
| 1af72119 LP |
176 | if (r < 0) |
| 177 | return r; | |
| 178 | ||
| 179 | what = crypto_what; | |
| 180 | fstype = NULL; | |
| 181 | } | |
| 182 | ||
| 7410616c LP |
183 | r = unit_name_from_path(where, ".mount", &unit); |
| 184 | if (r < 0) | |
| 185 | return log_error_errno(r, "Failed to generate unit name: %m"); | |
| 1a14a53c | 186 | |
| 605405c6 | 187 | p = strjoin(arg_dest, "/", unit); |
| e48fdd84 LP |
188 | if (!p) |
| 189 | return log_oom(); | |
| 190 | ||
| 191 | f = fopen(p, "wxe"); | |
| 4a62c710 MS |
192 | if (!f) |
| 193 | return log_error_errno(errno, "Failed to create unit file %s: %m", unit); | |
| 1a14a53c LP |
194 | |
| 195 | fprintf(f, | |
| 196 | "# Automatically generated by systemd-gpt-auto-generator\n\n" | |
| 197 | "[Unit]\n" | |
| c3834f9b LP |
198 | "Description=%s\n" |
| 199 | "Documentation=man:systemd-gpt-auto-generator(8)\n", | |
| e48fdd84 LP |
200 | description); |
| 201 | ||
| 73b80ec2 LP |
202 | if (post) |
| 203 | fprintf(f, "Before=%s\n", post); | |
| 204 | ||
| e48fdd84 LP |
205 | r = generator_write_fsck_deps(f, arg_dest, what, where, fstype); |
| 206 | if (r < 0) | |
| 207 | return r; | |
| 208 | ||
| 209 | fprintf(f, | |
| 210 | "\n" | |
| 1a14a53c LP |
211 | "[Mount]\n" |
| 212 | "What=%s\n" | |
| 1af72119 LP |
213 | "Where=%s\n", |
| 214 | what, where); | |
| 215 | ||
| 73b80ec2 LP |
216 | if (fstype) |
| 217 | fprintf(f, "Type=%s\n", fstype); | |
| 218 | ||
| 59512f21 KS |
219 | if (options) |
| 220 | fprintf(f, "Options=%s,%s\n", options, rw ? "rw" : "ro"); | |
| 221 | else | |
| 222 | fprintf(f, "Options=%s\n", rw ? "rw" : "ro"); | |
| 1a14a53c | 223 | |
| dacd6cee LP |
224 | r = fflush_and_check(f); |
| 225 | if (r < 0) | |
| 226 | return log_error_errno(r, "Failed to write unit file %s: %m", p); | |
| 1a14a53c | 227 | |
| 9cdcf368 ZJS |
228 | if (post) |
| 229 | return generator_add_symlink(arg_dest, post, "requires", unit); | |
| 1a14a53c LP |
230 | return 0; |
| 231 | } | |
| 232 | ||
| e137880b | 233 | static int path_is_busy(const char *where) { |
| 59512f21 KS |
234 | int r; |
| 235 | ||
| 236 | /* already a mountpoint; generators run during reload */ | |
| e1873695 | 237 | r = path_is_mount_point(where, NULL, AT_SYMLINK_FOLLOW); |
| 59512f21 KS |
238 | if (r > 0) |
| 239 | return false; | |
| 240 | ||
| 241 | /* the directory might not exist on a stateless system */ | |
| 242 | if (r == -ENOENT) | |
| 243 | return false; | |
| 244 | ||
| 245 | if (r < 0) | |
| e137880b | 246 | return log_warning_errno(r, "Cannot check if \"%s\" is a mount point: %m", where); |
| 59512f21 KS |
247 | |
| 248 | /* not a mountpoint but it contains files */ | |
| e137880b ZJS |
249 | r = dir_is_empty(where); |
| 250 | if (r < 0) | |
| 251 | return log_warning_errno(r, "Cannot check if \"%s\" is empty: %m", where); | |
| 252 | if (r > 0) | |
| 253 | return false; | |
| 59512f21 | 254 | |
| e137880b ZJS |
255 | log_debug("\"%s\" already populated, ignoring.", where); |
| 256 | return true; | |
| 59512f21 KS |
257 | } |
| 258 | ||
| 72e18a98 LP |
259 | static int add_partition_mount( |
| 260 | DissectedPartition *p, | |
| 61331eab | 261 | const char *id, |
| 61331eab | 262 | const char *where, |
| 72e18a98 | 263 | const char *description) { |
| 61331eab | 264 | |
| e137880b | 265 | int r; |
| 72e18a98 | 266 | assert(p); |
| 61331eab | 267 | |
| e137880b ZJS |
268 | r = path_is_busy(where); |
| 269 | if (r != 0) | |
| 270 | return r < 0 ? r : 0; | |
| 61331eab | 271 | |
| 61331eab LP |
272 | return add_mount( |
| 273 | id, | |
| 72e18a98 | 274 | p->node, |
| 61331eab | 275 | where, |
| 72e18a98 LP |
276 | p->fstype, |
| 277 | p->rw, | |
| 59512f21 | 278 | NULL, |
| 61331eab | 279 | description, |
| 72e18a98 | 280 | SPECIAL_LOCAL_FS_TARGET); |
| 61331eab LP |
281 | } |
| 282 | ||
| 59512f21 | 283 | static int add_swap(const char *path) { |
| 9cdcf368 | 284 | _cleanup_free_ char *name = NULL, *unit = NULL; |
| 59512f21 KS |
285 | _cleanup_fclose_ FILE *f = NULL; |
| 286 | int r; | |
| 287 | ||
| 288 | assert(path); | |
| 289 | ||
| fc5bc384 FB |
290 | /* Disable the swap auto logic if at least one swap is defined in /etc/fstab, see #6192. */ |
| 291 | r = fstab_has_fstype("swap"); | |
| 292 | if (r < 0) | |
| 293 | return log_error_errno(r, "Failed to parse fstab: %m"); | |
| 1a680ae3 | 294 | if (r > 0) { |
| fc5bc384 FB |
295 | log_debug("swap specified in fstab, ignoring."); |
| 296 | return 0; | |
| 297 | } | |
| 298 | ||
| 59512f21 KS |
299 | log_debug("Adding swap: %s", path); |
| 300 | ||
| 301 | r = unit_name_from_path(path, ".swap", &name); | |
| 302 | if (r < 0) | |
| 303 | return log_error_errno(r, "Failed to generate unit name: %m"); | |
| 304 | ||
| 605405c6 | 305 | unit = strjoin(arg_dest, "/", name); |
| 59512f21 KS |
306 | if (!unit) |
| 307 | return log_oom(); | |
| 308 | ||
| 309 | f = fopen(unit, "wxe"); | |
| 310 | if (!f) | |
| 311 | return log_error_errno(errno, "Failed to create unit file %s: %m", unit); | |
| 312 | ||
| 313 | fprintf(f, | |
| 314 | "# Automatically generated by systemd-gpt-auto-generator\n\n" | |
| 315 | "[Unit]\n" | |
| 316 | "Description=Swap Partition\n" | |
| 317 | "Documentation=man:systemd-gpt-auto-generator(8)\n\n" | |
| 318 | "[Swap]\n" | |
| 319 | "What=%s\n", | |
| 320 | path); | |
| 321 | ||
| dacd6cee LP |
322 | r = fflush_and_check(f); |
| 323 | if (r < 0) | |
| 324 | return log_error_errno(r, "Failed to write unit file %s: %m", unit); | |
| 59512f21 | 325 | |
| 9cdcf368 | 326 | return generator_add_symlink(arg_dest, SPECIAL_SWAP_TARGET, "wants", name); |
| 59512f21 KS |
327 | } |
| 328 | ||
| 349cc4a5 | 329 | #if ENABLE_EFI |
| 7a1494aa TG |
330 | static int add_automount( |
| 331 | const char *id, | |
| 332 | const char *what, | |
| 333 | const char *where, | |
| 334 | const char *fstype, | |
| 335 | bool rw, | |
| 336 | const char *options, | |
| 337 | const char *description, | |
| 338 | usec_t timeout) { | |
| 339 | ||
| 9cdcf368 | 340 | _cleanup_free_ char *unit = NULL; |
| 7a1494aa | 341 | _cleanup_fclose_ FILE *f = NULL; |
| 2aa2860b | 342 | const char *opt = "noauto", *p; |
| 7a1494aa TG |
343 | int r; |
| 344 | ||
| 345 | assert(id); | |
| 346 | assert(where); | |
| 347 | assert(description); | |
| 348 | ||
| 349 | if (options) | |
| 2aa2860b | 350 | opt = strjoina(options, ",", opt); |
| 7a1494aa TG |
351 | |
| 352 | r = add_mount(id, | |
| 353 | what, | |
| 354 | where, | |
| 355 | fstype, | |
| 356 | rw, | |
| 357 | opt, | |
| 358 | description, | |
| 359 | NULL); | |
| 360 | if (r < 0) | |
| 361 | return r; | |
| 362 | ||
| 363 | r = unit_name_from_path(where, ".automount", &unit); | |
| 364 | if (r < 0) | |
| 365 | return log_error_errno(r, "Failed to generate unit name: %m"); | |
| 366 | ||
| 2aa2860b | 367 | p = strjoina(arg_dest, "/", unit); |
| 7a1494aa TG |
368 | f = fopen(p, "wxe"); |
| 369 | if (!f) | |
| 370 | return log_error_errno(errno, "Failed to create unit file %s: %m", unit); | |
| 371 | ||
| 372 | fprintf(f, | |
| 373 | "# Automatically generated by systemd-gpt-auto-generator\n\n" | |
| 374 | "[Unit]\n" | |
| 375 | "Description=%s\n" | |
| 376 | "Documentation=man:systemd-gpt-auto-generator(8)\n" | |
| 377 | "[Automount]\n" | |
| 378 | "Where=%s\n" | |
| 70887c5f | 379 | "TimeoutIdleSec="USEC_FMT"\n", |
| 7a1494aa TG |
380 | description, |
| 381 | where, | |
| 70887c5f | 382 | timeout / USEC_PER_SEC); |
| 7a1494aa TG |
383 | |
| 384 | r = fflush_and_check(f); | |
| 385 | if (r < 0) | |
| 386 | return log_error_errno(r, "Failed to write unit file %s: %m", p); | |
| 387 | ||
| 9cdcf368 | 388 | return generator_add_symlink(arg_dest, SPECIAL_LOCAL_FS_TARGET, "wants", unit); |
| 7a1494aa TG |
389 | } |
| 390 | ||
| 72e18a98 | 391 | static int add_esp(DissectedPartition *p) { |
| b52a109a | 392 | const char *esp; |
| 59512f21 KS |
393 | int r; |
| 394 | ||
| 72e18a98 | 395 | assert(p); |
| 59512f21 | 396 | |
| 59512f21 | 397 | if (in_initrd()) { |
| b52a109a | 398 | log_debug("In initrd, ignoring the ESP."); |
| 59512f21 KS |
399 | return 0; |
| 400 | } | |
| 401 | ||
| b52a109a LP |
402 | /* If /efi exists we'll use that. Otherwise we'll use /boot, as that's usually the better choice */ |
| 403 | esp = access("/efi/", F_OK) >= 0 ? "/efi" : "/boot"; | |
| 59512f21 | 404 | |
| 0b6b6787 | 405 | /* We create an .automount which is not overridden by the .mount from the fstab generator. */ |
| b9088048 FB |
406 | r = fstab_is_mount_point(esp); |
| 407 | if (r < 0) | |
| 408 | return log_error_errno(r, "Failed to parse fstab: %m"); | |
| 39b6a511 | 409 | if (r > 0) { |
| b52a109a | 410 | log_debug("%s specified in fstab, ignoring.", esp); |
| 59512f21 KS |
411 | return 0; |
| 412 | } | |
| 413 | ||
| e137880b ZJS |
414 | r = path_is_busy(esp); |
| 415 | if (r != 0) | |
| 416 | return r < 0 ? r : 0; | |
| 59512f21 | 417 | |
| 7ba25ab5 | 418 | if (is_efi_boot()) { |
| 72e18a98 | 419 | sd_id128_t loader_uuid; |
| 59512f21 | 420 | |
| 7ba25ab5 | 421 | /* If this is an EFI boot, be extra careful, and only mount the ESP if it was the ESP used for booting. */ |
| 59512f21 | 422 | |
| 7ba25ab5 LP |
423 | r = efi_loader_get_device_part_uuid(&loader_uuid); |
| 424 | if (r == -ENOENT) { | |
| 425 | log_debug("EFI loader partition unknown."); | |
| 426 | return 0; | |
| 427 | } | |
| e28973ee ZJS |
428 | if (r < 0) |
| 429 | return log_error_errno(r, "Failed to read ESP partition UUID: %m"); | |
| 7ba25ab5 | 430 | |
| 72e18a98 | 431 | if (!sd_id128_equal(p->uuid, loader_uuid)) { |
| 7ba25ab5 LP |
432 | log_debug("Partition for %s does not appear to be the partition we are booted from.", esp); |
| 433 | return 0; | |
| 434 | } | |
| 435 | } else | |
| 436 | log_debug("Not an EFI boot, skipping ESP check."); | |
| 437 | ||
| 438 | return add_automount("boot", | |
| 72e18a98 LP |
439 | p->node, |
| 440 | esp, | |
| 441 | p->fstype, | |
| 442 | true, | |
| 443 | "umask=0077", | |
| 444 | "EFI System Partition Automount", | |
| 445 | 120 * USEC_PER_SEC); | |
| 7a1494aa | 446 | } |
| 59512f21 | 447 | #else |
| d97beb0e | 448 | static int add_esp(DissectedPartition *p) { |
| 59512f21 | 449 | return 0; |
| 59512f21 | 450 | } |
| 7a1494aa | 451 | #endif |
| 59512f21 | 452 | |
| 72e18a98 | 453 | static int open_parent(dev_t devnum, int *ret) { |
| 8e766630 LP |
454 | _cleanup_(udev_device_unrefp) struct udev_device *d = NULL; |
| 455 | _cleanup_(udev_unrefp) struct udev *udev = NULL; | |
| 72e18a98 LP |
456 | const char *name, *devtype, *node; |
| 457 | struct udev_device *parent; | |
| 61331eab | 458 | dev_t pn; |
| 72e18a98 LP |
459 | int fd; |
| 460 | ||
| 461 | assert(ret); | |
| 1a14a53c | 462 | |
| 61331eab LP |
463 | udev = udev_new(); |
| 464 | if (!udev) | |
| b47d419c | 465 | return log_oom(); |
| 1a14a53c | 466 | |
| 61331eab | 467 | d = udev_device_new_from_devnum(udev, 'b', devnum); |
| 1ca208fb ZJS |
468 | if (!d) |
| 469 | return log_oom(); | |
| 1a14a53c | 470 | |
| d2a62382 ZJS |
471 | name = udev_device_get_devnode(d); |
| 472 | if (!name) | |
| 473 | name = udev_device_get_syspath(d); | |
| 474 | if (!name) { | |
| 72e18a98 LP |
475 | log_debug("Device %u:%u does not have a name, ignoring.", major(devnum), minor(devnum)); |
| 476 | goto not_found; | |
| d2a62382 ZJS |
477 | } |
| 478 | ||
| 1a14a53c | 479 | parent = udev_device_get_parent(d); |
| fa041593 | 480 | if (!parent) { |
| d2a62382 | 481 | log_debug("%s: not a partitioned device, ignoring.", name); |
| 72e18a98 | 482 | goto not_found; |
| fa041593 | 483 | } |
| 1a14a53c | 484 | |
| 61331eab LP |
485 | /* Does it have a devtype? */ |
| 486 | devtype = udev_device_get_devtype(parent); | |
| fa041593 | 487 | if (!devtype) { |
| d2a62382 | 488 | log_debug("%s: parent doesn't have a device type, ignoring.", name); |
| 72e18a98 | 489 | goto not_found; |
| fa041593 | 490 | } |
| 61331eab LP |
491 | |
| 492 | /* Is this a disk or a partition? We only care for disks... */ | |
| fa041593 | 493 | if (!streq(devtype, "disk")) { |
| d2a62382 | 494 | log_debug("%s: parent isn't a raw disk, ignoring.", name); |
| 72e18a98 | 495 | goto not_found; |
| fa041593 | 496 | } |
| 61331eab LP |
497 | |
| 498 | /* Does it have a device node? */ | |
| 499 | node = udev_device_get_devnode(parent); | |
| fa041593 | 500 | if (!node) { |
| d2a62382 | 501 | log_debug("%s: parent device does not have device node, ignoring.", name); |
| 72e18a98 | 502 | goto not_found; |
| fa041593 | 503 | } |
| 61331eab | 504 | |
| d2a62382 | 505 | log_debug("%s: root device %s.", name, node); |
| 61331eab LP |
506 | |
| 507 | pn = udev_device_get_devnum(parent); | |
| 72e18a98 LP |
508 | if (major(pn) == 0) { |
| 509 | log_debug("%s: parent device is not a proper block device, ignoring.", name); | |
| 510 | goto not_found; | |
| 61331eab LP |
511 | } |
| 512 | ||
| 72e18a98 LP |
513 | fd = open(node, O_RDONLY|O_CLOEXEC|O_NOCTTY); |
| 514 | if (fd < 0) | |
| 515 | return log_error_errno(errno, "Failed to open %s: %m", node); | |
| 61331eab | 516 | |
| 72e18a98 LP |
517 | *ret = fd; |
| 518 | return 1; | |
| 61331eab | 519 | |
| 72e18a98 LP |
520 | not_found: |
| 521 | *ret = -1; | |
| 522 | return 0; | |
| 523 | } | |
| cb971249 | 524 | |
| 72e18a98 | 525 | static int enumerate_partitions(dev_t devnum) { |
| 61331eab | 526 | |
| 72e18a98 LP |
527 | _cleanup_close_ int fd = -1; |
| 528 | _cleanup_(dissected_image_unrefp) DissectedImage *m = NULL; | |
| 529 | int r, k; | |
| 61331eab | 530 | |
| 72e18a98 LP |
531 | r = open_parent(devnum, &fd); |
| 532 | if (r <= 0) | |
| 533 | return r; | |
| 61331eab | 534 | |
| 72e18a98 LP |
535 | r = dissect_image(fd, NULL, 0, DISSECT_IMAGE_GPT_ONLY, &m); |
| 536 | if (r == -ENOPKG) { | |
| 537 | log_debug_errno(r, "No suitable partition table found, ignoring."); | |
| 538 | return 0; | |
| 61331eab | 539 | } |
| 23bbb0de | 540 | if (r < 0) |
| 72e18a98 | 541 | return log_error_errno(r, "Failed to dissect: %m"); |
| 0238d4c6 | 542 | |
| 72e18a98 LP |
543 | if (m->partitions[PARTITION_SWAP].found) { |
| 544 | k = add_swap(m->partitions[PARTITION_SWAP].node); | |
| 545 | if (k < 0) | |
| 546 | r = k; | |
| 1a14a53c LP |
547 | } |
| 548 | ||
| 72e18a98 LP |
549 | if (m->partitions[PARTITION_ESP].found) { |
| 550 | k = add_esp(m->partitions + PARTITION_ESP); | |
| 59512f21 KS |
551 | if (k < 0) |
| 552 | r = k; | |
| 553 | } | |
| 554 | ||
| 72e18a98 LP |
555 | if (m->partitions[PARTITION_HOME].found) { |
| 556 | k = add_partition_mount(m->partitions + PARTITION_HOME, "home", "/home", "Home Partition"); | |
| 73b80ec2 LP |
557 | if (k < 0) |
| 558 | r = k; | |
| 559 | } | |
| e48fdd84 | 560 | |
| 72e18a98 LP |
561 | if (m->partitions[PARTITION_SRV].found) { |
| 562 | k = add_partition_mount(m->partitions + PARTITION_SRV, "srv", "/srv", "Server Data Partition"); | |
| 73b80ec2 LP |
563 | if (k < 0) |
| 564 | r = k; | |
| 565 | } | |
| 1a14a53c | 566 | |
| 1a14a53c LP |
567 | return r; |
| 568 | } | |
| 569 | ||
| 96287a49 | 570 | static int parse_proc_cmdline_item(const char *key, const char *value, void *data) { |
| 73b80ec2 | 571 | int r; |
| 1a14a53c | 572 | |
| 73b80ec2 | 573 | assert(key); |
| 1a14a53c | 574 | |
| 1d84ad94 | 575 | if (STR_IN_SET(key, "systemd.gpt_auto", "rd.systemd.gpt_auto")) { |
| 1a14a53c | 576 | |
| 1d84ad94 | 577 | r = value ? parse_boolean(value) : 1; |
| 73b80ec2 | 578 | if (r < 0) |
| d2a62382 | 579 | log_warning("Failed to parse gpt-auto switch \"%s\". Ignoring.", value); |
| 8086ffac ZJS |
580 | else |
| 581 | arg_enabled = r; | |
| 1a14a53c | 582 | |
| 1d84ad94 LP |
583 | } else if (streq(key, "root")) { |
| 584 | ||
| 585 | if (proc_cmdline_value_missing(key, value)) | |
| 586 | return 0; | |
| 73b80ec2 LP |
587 | |
| 588 | /* Disable root disk logic if there's a root= value | |
| 589 | * specified (unless it happens to be "gpt-auto") */ | |
| 590 | ||
| 591 | arg_root_enabled = streq(value, "gpt-auto"); | |
| 592 | ||
| 2f3dfc6f LP |
593 | } else if (streq(key, "roothash")) { |
| 594 | ||
| 595 | if (proc_cmdline_value_missing(key, value)) | |
| 596 | return 0; | |
| 597 | ||
| 598 | /* Disable root disk logic if there's roothash= defined (i.e. verity enabled) */ | |
| 599 | ||
| 600 | arg_root_enabled = false; | |
| 601 | ||
| 73b80ec2 LP |
602 | } else if (streq(key, "rw") && !value) |
| 603 | arg_root_rw = true; | |
| 604 | else if (streq(key, "ro") && !value) | |
| 605 | arg_root_rw = false; | |
| 73b80ec2 LP |
606 | |
| 607 | return 0; | |
| 608 | } | |
| 609 | ||
| 349cc4a5 | 610 | #if ENABLE_EFI |
| 01af8c01 LP |
611 | static int add_root_cryptsetup(void) { |
| 612 | ||
| 613 | /* If a device /dev/gpt-auto-root-luks appears, then make it pull in systemd-cryptsetup-root.service, which | |
| 614 | * sets it up, and causes /dev/gpt-auto-root to appear which is all we are looking for. */ | |
| 615 | ||
| 616 | return add_cryptsetup("root", "/dev/gpt-auto-root-luks", true, false, NULL); | |
| 617 | } | |
| 618 | #endif | |
| 619 | ||
| 73b80ec2 LP |
620 | static int add_root_mount(void) { |
| 621 | ||
| 349cc4a5 | 622 | #if ENABLE_EFI |
| 73b80ec2 LP |
623 | int r; |
| 624 | ||
| 625 | if (!is_efi_boot()) { | |
| 626 | log_debug("Not a EFI boot, not creating root mount."); | |
| 627 | return 0; | |
| 9a5cb137 ZJS |
628 | } |
| 629 | ||
| 73b80ec2 LP |
630 | r = efi_loader_get_device_part_uuid(NULL); |
| 631 | if (r == -ENOENT) { | |
| 632 | log_debug("EFI loader partition unknown, exiting."); | |
| 633 | return 0; | |
| 23bbb0de MS |
634 | } else if (r < 0) |
| 635 | return log_error_errno(r, "Failed to read ESP partition UUID: %m"); | |
| 1a14a53c | 636 | |
| 73b80ec2 LP |
637 | /* OK, we have an ESP partition, this is fantastic, so let's |
| 638 | * wait for a root device to show up. A udev rule will create | |
| 639 | * the link for us under the right name. */ | |
| 640 | ||
| 7163e1ca DD |
641 | if (in_initrd()) { |
| 642 | r = generator_write_initrd_root_device_deps(arg_dest, "/dev/gpt-auto-root"); | |
| 643 | if (r < 0) | |
| 644 | return 0; | |
| 01af8c01 LP |
645 | |
| 646 | r = add_root_cryptsetup(); | |
| 647 | if (r < 0) | |
| 648 | return r; | |
| 7163e1ca DD |
649 | } |
| 650 | ||
| 73b80ec2 LP |
651 | return add_mount( |
| 652 | "root", | |
| 98b2f766 | 653 | "/dev/gpt-auto-root", |
| 73b80ec2 LP |
654 | in_initrd() ? "/sysroot" : "/", |
| 655 | NULL, | |
| cca1dfdd | 656 | arg_root_rw, |
| 59512f21 | 657 | NULL, |
| 73b80ec2 LP |
658 | "Root Partition", |
| 659 | in_initrd() ? SPECIAL_INITRD_ROOT_FS_TARGET : SPECIAL_LOCAL_FS_TARGET); | |
| 660 | #else | |
| 661 | return 0; | |
| 662 | #endif | |
| 663 | } | |
| 664 | ||
| 665 | static int add_mounts(void) { | |
| 73b80ec2 LP |
666 | dev_t devno; |
| 667 | int r; | |
| 668 | ||
| c6ba0c18 | 669 | r = get_block_device_harder("/", &devno); |
| 23bbb0de MS |
670 | if (r < 0) |
| 671 | return log_error_errno(r, "Failed to determine block device of root file system: %m"); | |
| 57ab9f89 | 672 | if (r == 0) { |
| c6ba0c18 | 673 | r = get_block_device_harder("/usr", &devno); |
| eafe88e3 TH |
674 | if (r < 0) |
| 675 | return log_error_errno(r, "Failed to determine block device of /usr file system: %m"); | |
| 57ab9f89 | 676 | if (r == 0) { |
| eafe88e3 TH |
677 | log_debug("Neither root nor /usr file system are on a (single) block device."); |
| 678 | return 0; | |
| 679 | } | |
| 3db604b9 LP |
680 | } |
| 681 | ||
| 61331eab | 682 | return enumerate_partitions(devno); |
| 73b80ec2 LP |
683 | } |
| 684 | ||
| 685 | int main(int argc, char *argv[]) { | |
| 8f50e86a | 686 | int r, k; |
| 73b80ec2 LP |
687 | |
| 688 | if (argc > 1 && argc != 4) { | |
| 689 | log_error("This program takes three or no arguments."); | |
| 690 | return EXIT_FAILURE; | |
| 691 | } | |
| 692 | ||
| 693 | if (argc > 1) | |
| 694 | arg_dest = argv[3]; | |
| 695 | ||
| 6c347d50 LP |
696 | log_set_prohibit_ipc(true); |
| 697 | log_set_target(LOG_TARGET_AUTO); | |
| 73b80ec2 LP |
698 | log_parse_environment(); |
| 699 | log_open(); | |
| 700 | ||
| 701 | umask(0022); | |
| 702 | ||
| 75f86906 | 703 | if (detect_container() > 0) { |
| 73b80ec2 | 704 | log_debug("In a container, exiting."); |
| e48fdd84 | 705 | return EXIT_SUCCESS; |
| 1a14a53c | 706 | } |
| 3db604b9 | 707 | |
| 1d84ad94 | 708 | r = proc_cmdline_parse(parse_proc_cmdline_item, NULL, 0); |
| b5884878 | 709 | if (r < 0) |
| da927ba9 | 710 | log_warning_errno(r, "Failed to parse kernel command line, ignoring: %m"); |
| 1a14a53c | 711 | |
| 73b80ec2 LP |
712 | if (!arg_enabled) { |
| 713 | log_debug("Disabled, exiting."); | |
| 714 | return EXIT_SUCCESS; | |
| 715 | } | |
| 716 | ||
| 717 | if (arg_root_enabled) | |
| 718 | r = add_root_mount(); | |
| 8f50e86a LP |
719 | else |
| 720 | r = 0; | |
| 73b80ec2 LP |
721 | |
| 722 | if (!in_initrd()) { | |
| 73b80ec2 LP |
723 | k = add_mounts(); |
| 724 | if (k < 0) | |
| 725 | r = k; | |
| 726 | } | |
| 727 | ||
| 728 | return r < 0 ? EXIT_FAILURE : EXIT_SUCCESS; | |
| 1a14a53c | 729 | } |