1 /* SPDX-License-Identifier: LGPL-2.1-or-later */
11 #include "alloc-util.h"
14 #include "errno-util.h"
19 #include "pretty-print.h"
20 #include "process-util.h"
21 #include "signal-util.h"
22 #include "socket-netlink.h"
23 #include "socket-util.h"
24 #include "string-util.h"
26 #include "terminal-util.h"
28 static char **arg_listen
= NULL
;
29 static bool arg_accept
= false;
30 static int arg_socket_type
= SOCK_STREAM
;
31 static char **arg_args
= NULL
;
32 static char **arg_setenv
= NULL
;
33 static char **arg_fdnames
= NULL
;
34 static bool arg_inetd
= false;
36 static int add_epoll(int epoll_fd
, int fd
) {
37 struct epoll_event ev
= {
42 assert(epoll_fd
>= 0);
45 if (epoll_ctl(epoll_fd
, EPOLL_CTL_ADD
, fd
, &ev
) < 0)
46 return log_error_errno(errno
, "Failed to add event on epoll fd:%d for fd:%d: %m", epoll_fd
, fd
);
51 static int open_sockets(int *epoll_fd
, bool accept
) {
54 n
= sd_listen_fds(true);
56 return log_error_errno(n
, "Failed to read listening file descriptors from environment: %m");
58 log_info("Received %i descriptors via the environment.", n
);
60 for (int fd
= SD_LISTEN_FDS_START
; fd
< SD_LISTEN_FDS_START
+ n
; fd
++) {
61 r
= fd_cloexec(fd
, arg_accept
);
69 /* Close logging and all other descriptors */
71 _cleanup_free_
int *except
= new(int, n
);
75 for (int i
= 0; i
< n
; i
++)
76 except
[i
] = SD_LISTEN_FDS_START
+ i
;
79 r
= close_all_fds(except
, n
);
81 return log_error_errno(r
, "Failed to close all file descriptors: %m");
84 /** Note: we leak some fd's on error here. I doesn't matter
85 * much, since the program will exit immediately anyway, but
86 * would be a pain to fix.
89 STRV_FOREACH(address
, arg_listen
) {
90 r
= make_socket_fd(LOG_DEBUG
, *address
, arg_socket_type
, (arg_accept
* SOCK_CLOEXEC
));
93 return log_error_errno(r
, "Failed to open '%s': %m", *address
);
96 assert(r
== SD_LISTEN_FDS_START
+ count
);
103 *epoll_fd
= epoll_create1(EPOLL_CLOEXEC
);
105 return log_error_errno(errno
, "Failed to create epoll object: %m");
107 for (int fd
= SD_LISTEN_FDS_START
; fd
< SD_LISTEN_FDS_START
+ count
; fd
++) {
108 _cleanup_free_
char *name
= NULL
;
110 getsockname_pretty(fd
, &name
);
111 log_info("Listening on %s as %i.", strna(name
), fd
);
113 r
= add_epoll(*epoll_fd
, fd
);
121 static int exec_process(const char *name
, char **argv
, int start_fd
, size_t n_fds
) {
122 _cleanup_strv_free_
char **envp
= NULL
;
125 if (arg_inetd
&& n_fds
!= 1)
126 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
127 "--inetd only supported for single file descriptors.");
129 FOREACH_STRING(var
, "TERM", "PATH", "USER", "HOME") {
132 n
= strv_find_prefix(environ
, var
);
136 r
= strv_extend(&envp
, n
);
144 r
= rearrange_stdio(start_fd
, start_fd
, STDERR_FILENO
); /* invalidates start_fd on success + error */
146 return log_error_errno(r
, "Failed to move fd to stdin+stdout: %m");
149 if (start_fd
!= SD_LISTEN_FDS_START
) {
152 if (dup2(start_fd
, SD_LISTEN_FDS_START
) < 0)
153 return log_error_errno(errno
, "Failed to dup connection: %m");
155 safe_close(start_fd
);
158 r
= strv_extendf(&envp
, "LISTEN_FDS=%zu", n_fds
);
162 r
= strv_extendf(&envp
, "LISTEN_PID=" PID_FMT
, getpid_cached());
167 _cleanup_free_
char *names
= NULL
;
170 len
= strv_length(arg_fdnames
);
172 for (size_t i
= 1; i
< n_fds
; i
++) {
173 r
= strv_extend(&arg_fdnames
, arg_fdnames
[0]);
177 else if (len
!= n_fds
)
178 log_warning("The number of fd names is different than number of fds: %zu vs %zu", len
, n_fds
);
180 names
= strv_join(arg_fdnames
, ":");
184 char *t
= strjoin("LISTEN_FDNAMES=", names
);
188 r
= strv_consume(&envp
, t
);
194 STRV_FOREACH(s
, arg_setenv
) {
195 r
= strv_env_replace_strdup(&envp
, *s
);
200 _cleanup_free_
char *joined
= strv_join(argv
, " ");
204 log_info("Execing %s (%s)", name
, joined
);
205 execvpe(name
, argv
, envp
);
207 return log_error_errno(errno
, "Failed to execp %s (%s): %m", name
, joined
);
210 static int fork_and_exec_process(const char *child
, char **argv
, int fd
) {
211 _cleanup_free_
char *joined
= NULL
;
215 joined
= strv_join(argv
, " ");
219 r
= safe_fork("(activate)",
220 FORK_RESET_SIGNALS
| FORK_DEATHSIG
| FORK_RLIMIT_NOFILE_SAFE
| FORK_LOG
,
226 exec_process(child
, argv
, fd
, 1);
230 log_info("Spawned %s (%s) as PID " PID_FMT
".", child
, joined
, child_pid
);
234 static int do_accept(const char *name
, char **argv
, int fd
) {
235 _cleanup_free_
char *local
= NULL
, *peer
= NULL
;
236 _cleanup_close_
int fd_accepted
= -EBADF
;
238 fd_accepted
= accept4(fd
, NULL
, NULL
, 0);
239 if (fd_accepted
< 0) {
240 if (ERRNO_IS_ACCEPT_AGAIN(errno
))
243 return log_error_errno(errno
, "Failed to accept connection on fd:%d: %m", fd
);
246 (void) getsockname_pretty(fd_accepted
, &local
);
247 (void) getpeername_pretty(fd_accepted
, true, &peer
);
248 log_info("Connection from %s to %s", strna(peer
), strna(local
));
250 return fork_and_exec_process(name
, argv
, fd_accepted
);
253 /* SIGCHLD handler. */
254 static void sigchld_hdl(int sig
) {
262 r
= waitid(P_ALL
, 0, &si
, WEXITED
| WNOHANG
);
265 log_error_errno(errno
, "Failed to reap children: %m");
271 log_info("Child %d died with code %d", si
.si_pid
, si
.si_status
);
275 static int install_chld_handler(void) {
276 static const struct sigaction act
= {
277 .sa_flags
= SA_NOCLDSTOP
| SA_RESTART
,
278 .sa_handler
= sigchld_hdl
,
281 if (sigaction(SIGCHLD
, &act
, 0) < 0)
282 return log_error_errno(errno
, "Failed to install SIGCHLD handler: %m");
287 static int help(void) {
288 _cleanup_free_
char *link
= NULL
;
291 r
= terminal_urlify_man("systemd-socket-activate", "1", &link
);
295 printf("%s [OPTIONS...]\n"
296 "\n%sListen on sockets and launch child on connection.%s\n"
298 " -h --help Show this help and exit\n"
299 " --version Print version string and exit\n"
300 " -l --listen=ADDR Listen for raw connections at ADDR\n"
301 " -d --datagram Listen on datagram instead of stream socket\n"
302 " --seqpacket Listen on SOCK_SEQPACKET instead of stream socket\n"
303 " -a --accept Spawn separate child for each connection\n"
304 " -E --setenv=NAME[=VALUE] Pass an environment variable to children\n"
305 " --fdname=NAME[:NAME...] Specify names for file descriptors\n"
306 " --inetd Enable inetd file descriptor passing protocol\n"
307 "\nNote: file descriptors from sd_listen_fds() will be passed through.\n"
308 "\nSee the %s for details.\n",
309 program_invocation_short_name
,
317 static int parse_argv(int argc
, char *argv
[]) {
325 static const struct option options
[] = {
326 { "help", no_argument
, NULL
, 'h' },
327 { "version", no_argument
, NULL
, ARG_VERSION
},
328 { "datagram", no_argument
, NULL
, 'd' },
329 { "seqpacket", no_argument
, NULL
, ARG_SEQPACKET
},
330 { "listen", required_argument
, NULL
, 'l' },
331 { "accept", no_argument
, NULL
, 'a' },
332 { "setenv", required_argument
, NULL
, 'E' },
333 { "environment", required_argument
, NULL
, 'E' }, /* legacy alias */
334 { "fdname", required_argument
, NULL
, ARG_FDNAME
},
335 { "inetd", no_argument
, NULL
, ARG_INETD
},
344 while ((c
= getopt_long(argc
, argv
, "+hl:aE:d", options
, NULL
)) >= 0)
353 r
= strv_extend(&arg_listen
, optarg
);
360 if (arg_socket_type
== SOCK_SEQPACKET
)
361 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
362 "--datagram may not be combined with --seqpacket.");
364 arg_socket_type
= SOCK_DGRAM
;
368 if (arg_socket_type
== SOCK_DGRAM
)
369 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
370 "--seqpacket may not be combined with --datagram.");
372 arg_socket_type
= SOCK_SEQPACKET
;
380 r
= strv_env_replace_strdup_passthrough(&arg_setenv
, optarg
);
382 return log_error_errno(r
, "Cannot assign environment variable %s: %m", optarg
);
386 _cleanup_strv_free_
char **names
= NULL
;
388 names
= strv_split(optarg
, ":");
392 STRV_FOREACH(s
, names
)
393 if (!fdname_is_valid(*s
)) {
394 _cleanup_free_
char *esc
= NULL
;
397 log_warning("File descriptor name \"%s\" is not valid.", esc
);
400 /* Empty optargs means one empty name */
401 r
= strv_extend_strv(&arg_fdnames
,
402 strv_isempty(names
) ? STRV_MAKE("") : names
,
405 return log_error_errno(r
, "strv_extend_strv: %m");
417 assert_not_reached();
421 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
422 "%s: command to execute is missing.",
423 program_invocation_short_name
);
425 if (arg_socket_type
== SOCK_DGRAM
&& arg_accept
)
426 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
427 "Datagram sockets do not accept connections. "
428 "The --datagram and --accept options may not be combined.");
430 arg_args
= argv
+ optind
;
432 return 1 /* work to do */;
435 int main(int argc
, char **argv
) {
437 int epoll_fd
= -EBADF
;
439 log_show_color(true);
440 log_parse_environment();
443 r
= parse_argv(argc
, argv
);
445 return r
== 0 ? EXIT_SUCCESS
: EXIT_FAILURE
;
447 r
= install_chld_handler();
451 n
= open_sockets(&epoll_fd
, arg_accept
);
455 log_error("No sockets to listen on specified or passed in.");
460 struct epoll_event event
;
462 if (epoll_wait(epoll_fd
, &event
, 1, -1) < 0) {
466 log_error_errno(errno
, "epoll_wait() failed: %m");
470 log_info("Communication attempt on fd %i.", event
.data
.fd
);
472 r
= do_accept(argv
[optind
], argv
+ optind
, event
.data
.fd
);
479 exec_process(argv
[optind
], argv
+ optind
, SD_LISTEN_FDS_START
, (size_t) n
);