1 /* SPDX-License-Identifier: LGPL-2.1+ */
3 This file is part of systemd.
5 Copyright 2010 Lennart Poettering
7 systemd is free software; you can redistribute it and/or modify it
8 under the terms of the GNU Lesser General Public License as published by
9 the Free Software Foundation; either version 2.1 of the License, or
10 (at your option) any later version.
12 systemd is distributed in the hope that it will be useful, but
13 WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 Lesser General Public License for more details.
17 You should have received a copy of the GNU Lesser General Public License
18 along with systemd; If not, see <http://www.gnu.org/licenses/>.
24 #include <sys/prctl.h>
29 #include "sd-messages.h"
31 #include "alloc-util.h"
32 #include "bus-common-errors.h"
34 #include "cgroup-util.h"
35 #include "dbus-unit.h"
41 #include "fileio-label.h"
42 #include "format-util.h"
44 #include "id128-util.h"
46 #include "load-dropin.h"
47 #include "load-fragment.h"
52 #include "parse-util.h"
53 #include "path-util.h"
54 #include "process-util.h"
56 #include "signal-util.h"
57 #include "sparse-endian.h"
59 #include "specifier.h"
60 #include "stat-util.h"
61 #include "stdio-util.h"
62 #include "string-table.h"
63 #include "string-util.h"
65 #include "umask-util.h"
66 #include "unit-name.h"
68 #include "user-util.h"
71 const UnitVTable
* const unit_vtable
[_UNIT_TYPE_MAX
] = {
72 [UNIT_SERVICE
] = &service_vtable
,
73 [UNIT_SOCKET
] = &socket_vtable
,
74 [UNIT_TARGET
] = &target_vtable
,
75 [UNIT_DEVICE
] = &device_vtable
,
76 [UNIT_MOUNT
] = &mount_vtable
,
77 [UNIT_AUTOMOUNT
] = &automount_vtable
,
78 [UNIT_SWAP
] = &swap_vtable
,
79 [UNIT_TIMER
] = &timer_vtable
,
80 [UNIT_PATH
] = &path_vtable
,
81 [UNIT_SLICE
] = &slice_vtable
,
82 [UNIT_SCOPE
] = &scope_vtable
,
85 static void maybe_warn_about_dependency(Unit
*u
, const char *other
, UnitDependency dependency
);
87 Unit
*unit_new(Manager
*m
, size_t size
) {
91 assert(size
>= sizeof(Unit
));
97 u
->names
= set_new(&string_hash_ops
);
102 u
->type
= _UNIT_TYPE_INVALID
;
103 u
->default_dependencies
= true;
104 u
->unit_file_state
= _UNIT_FILE_STATE_INVALID
;
105 u
->unit_file_preset
= -1;
106 u
->on_failure_job_mode
= JOB_REPLACE
;
107 u
->cgroup_inotify_wd
= -1;
108 u
->job_timeout
= USEC_INFINITY
;
109 u
->job_running_timeout
= USEC_INFINITY
;
110 u
->ref_uid
= UID_INVALID
;
111 u
->ref_gid
= GID_INVALID
;
112 u
->cpu_usage_last
= NSEC_INFINITY
;
113 u
->cgroup_bpf_state
= UNIT_CGROUP_BPF_INVALIDATED
;
115 u
->ip_accounting_ingress_map_fd
= -1;
116 u
->ip_accounting_egress_map_fd
= -1;
117 u
->ipv4_allow_map_fd
= -1;
118 u
->ipv6_allow_map_fd
= -1;
119 u
->ipv4_deny_map_fd
= -1;
120 u
->ipv6_deny_map_fd
= -1;
122 u
->last_section_private
= -1;
124 RATELIMIT_INIT(u
->start_limit
, m
->default_start_limit_interval
, m
->default_start_limit_burst
);
125 RATELIMIT_INIT(u
->auto_stop_ratelimit
, 10 * USEC_PER_SEC
, 16);
130 int unit_new_for_name(Manager
*m
, size_t size
, const char *name
, Unit
**ret
) {
131 _cleanup_(unit_freep
) Unit
*u
= NULL
;
134 u
= unit_new(m
, size
);
138 r
= unit_add_name(u
, name
);
147 bool unit_has_name(Unit
*u
, const char *name
) {
151 return set_contains(u
->names
, (char*) name
);
154 static void unit_init(Unit
*u
) {
161 assert(u
->type
>= 0);
163 cc
= unit_get_cgroup_context(u
);
165 cgroup_context_init(cc
);
167 /* Copy in the manager defaults into the cgroup
168 * context, _before_ the rest of the settings have
169 * been initialized */
171 cc
->cpu_accounting
= u
->manager
->default_cpu_accounting
;
172 cc
->io_accounting
= u
->manager
->default_io_accounting
;
173 cc
->ip_accounting
= u
->manager
->default_ip_accounting
;
174 cc
->blockio_accounting
= u
->manager
->default_blockio_accounting
;
175 cc
->memory_accounting
= u
->manager
->default_memory_accounting
;
176 cc
->tasks_accounting
= u
->manager
->default_tasks_accounting
;
177 cc
->ip_accounting
= u
->manager
->default_ip_accounting
;
179 if (u
->type
!= UNIT_SLICE
)
180 cc
->tasks_max
= u
->manager
->default_tasks_max
;
183 ec
= unit_get_exec_context(u
);
185 exec_context_init(ec
);
187 ec
->keyring_mode
= MANAGER_IS_SYSTEM(u
->manager
) ?
188 EXEC_KEYRING_SHARED
: EXEC_KEYRING_INHERIT
;
191 kc
= unit_get_kill_context(u
);
193 kill_context_init(kc
);
195 if (UNIT_VTABLE(u
)->init
)
196 UNIT_VTABLE(u
)->init(u
);
199 int unit_add_name(Unit
*u
, const char *text
) {
200 _cleanup_free_
char *s
= NULL
, *i
= NULL
;
207 if (unit_name_is_valid(text
, UNIT_NAME_TEMPLATE
)) {
212 r
= unit_name_replace_instance(text
, u
->instance
, &s
);
221 if (set_contains(u
->names
, s
))
223 if (hashmap_contains(u
->manager
->units
, s
))
226 if (!unit_name_is_valid(s
, UNIT_NAME_PLAIN
|UNIT_NAME_INSTANCE
))
229 t
= unit_name_to_type(s
);
233 if (u
->type
!= _UNIT_TYPE_INVALID
&& t
!= u
->type
)
236 r
= unit_name_to_instance(s
, &i
);
240 if (i
&& !unit_type_may_template(t
))
243 /* Ensure that this unit is either instanced or not instanced,
244 * but not both. Note that we do allow names with different
245 * instance names however! */
246 if (u
->type
!= _UNIT_TYPE_INVALID
&& !u
->instance
!= !i
)
249 if (!unit_type_may_alias(t
) && !set_isempty(u
->names
))
252 if (hashmap_size(u
->manager
->units
) >= MANAGER_MAX_NAMES
)
255 r
= set_put(u
->names
, s
);
260 r
= hashmap_put(u
->manager
->units
, s
, u
);
262 (void) set_remove(u
->names
, s
);
266 if (u
->type
== _UNIT_TYPE_INVALID
) {
271 LIST_PREPEND(units_by_type
, u
->manager
->units_by_type
[t
], u
);
280 unit_add_to_dbus_queue(u
);
284 int unit_choose_id(Unit
*u
, const char *name
) {
285 _cleanup_free_
char *t
= NULL
;
292 if (unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
297 r
= unit_name_replace_instance(name
, u
->instance
, &t
);
304 /* Selects one of the names of this unit as the id */
305 s
= set_get(u
->names
, (char*) name
);
309 /* Determine the new instance from the new id */
310 r
= unit_name_to_instance(s
, &i
);
319 unit_add_to_dbus_queue(u
);
324 int unit_set_description(Unit
*u
, const char *description
) {
329 r
= free_and_strdup(&u
->description
, empty_to_null(description
));
333 unit_add_to_dbus_queue(u
);
338 bool unit_may_gc(Unit
*u
) {
339 UnitActiveState state
;
344 /* Checks whether the unit is ready to be unloaded for garbage collection.
345 * Returns true when the unit may be collected, and false if there's some
346 * reason to keep it loaded.
348 * References from other units are *not* checked here. Instead, this is done
349 * in unit_gc_sweep(), but using markers to properly collect dependency loops.
358 state
= unit_active_state(u
);
360 /* If the unit is inactive and failed and no job is queued for it, then release its runtime resources */
361 if (UNIT_IS_INACTIVE_OR_FAILED(state
) &&
362 UNIT_VTABLE(u
)->release_resources
)
363 UNIT_VTABLE(u
)->release_resources(u
);
368 if (sd_bus_track_count(u
->bus_track
) > 0)
371 /* But we keep the unit object around for longer when it is referenced or configured to not be gc'ed */
372 switch (u
->collect_mode
) {
374 case COLLECT_INACTIVE
:
375 if (state
!= UNIT_INACTIVE
)
380 case COLLECT_INACTIVE_OR_FAILED
:
381 if (!IN_SET(state
, UNIT_INACTIVE
, UNIT_FAILED
))
387 assert_not_reached("Unknown garbage collection mode");
390 if (u
->cgroup_path
) {
391 /* If the unit has a cgroup, then check whether there's anything in it. If so, we should stay
392 * around. Units with active processes should never be collected. */
394 r
= cg_is_empty_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
);
396 log_unit_debug_errno(u
, r
, "Failed to determine whether cgroup %s is empty: %m", u
->cgroup_path
);
401 if (UNIT_VTABLE(u
)->may_gc
&& !UNIT_VTABLE(u
)->may_gc(u
))
407 void unit_add_to_load_queue(Unit
*u
) {
409 assert(u
->type
!= _UNIT_TYPE_INVALID
);
411 if (u
->load_state
!= UNIT_STUB
|| u
->in_load_queue
)
414 LIST_PREPEND(load_queue
, u
->manager
->load_queue
, u
);
415 u
->in_load_queue
= true;
418 void unit_add_to_cleanup_queue(Unit
*u
) {
421 if (u
->in_cleanup_queue
)
424 LIST_PREPEND(cleanup_queue
, u
->manager
->cleanup_queue
, u
);
425 u
->in_cleanup_queue
= true;
428 void unit_add_to_gc_queue(Unit
*u
) {
431 if (u
->in_gc_queue
|| u
->in_cleanup_queue
)
437 LIST_PREPEND(gc_queue
, u
->manager
->gc_unit_queue
, u
);
438 u
->in_gc_queue
= true;
441 void unit_add_to_dbus_queue(Unit
*u
) {
443 assert(u
->type
!= _UNIT_TYPE_INVALID
);
445 if (u
->load_state
== UNIT_STUB
|| u
->in_dbus_queue
)
448 /* Shortcut things if nobody cares */
449 if (sd_bus_track_count(u
->manager
->subscribed
) <= 0 &&
450 sd_bus_track_count(u
->bus_track
) <= 0 &&
451 set_isempty(u
->manager
->private_buses
)) {
452 u
->sent_dbus_new_signal
= true;
456 LIST_PREPEND(dbus_queue
, u
->manager
->dbus_unit_queue
, u
);
457 u
->in_dbus_queue
= true;
460 static void bidi_set_free(Unit
*u
, Hashmap
*h
) {
467 /* Frees the hashmap and makes sure we are dropped from the inverse pointers */
469 HASHMAP_FOREACH_KEY(v
, other
, h
, i
) {
472 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
473 hashmap_remove(other
->dependencies
[d
], u
);
475 unit_add_to_gc_queue(other
);
481 static void unit_remove_transient(Unit
*u
) {
489 if (u
->fragment_path
)
490 (void) unlink(u
->fragment_path
);
492 STRV_FOREACH(i
, u
->dropin_paths
) {
493 _cleanup_free_
char *p
= NULL
, *pp
= NULL
;
495 p
= dirname_malloc(*i
); /* Get the drop-in directory from the drop-in file */
499 pp
= dirname_malloc(p
); /* Get the config directory from the drop-in directory */
503 /* Only drop transient drop-ins */
504 if (!path_equal(u
->manager
->lookup_paths
.transient
, pp
))
512 static void unit_free_requires_mounts_for(Unit
*u
) {
516 _cleanup_free_
char *path
;
518 path
= hashmap_steal_first_key(u
->requires_mounts_for
);
522 char s
[strlen(path
) + 1];
524 PATH_FOREACH_PREFIX_MORE(s
, path
) {
528 x
= hashmap_get2(u
->manager
->units_requiring_mounts_for
, s
, (void**) &y
);
532 (void) set_remove(x
, u
);
534 if (set_isempty(x
)) {
535 (void) hashmap_remove(u
->manager
->units_requiring_mounts_for
, y
);
543 u
->requires_mounts_for
= hashmap_free(u
->requires_mounts_for
);
546 static void unit_done(Unit
*u
) {
555 if (UNIT_VTABLE(u
)->done
)
556 UNIT_VTABLE(u
)->done(u
);
558 ec
= unit_get_exec_context(u
);
560 exec_context_done(ec
);
562 cc
= unit_get_cgroup_context(u
);
564 cgroup_context_done(cc
);
567 void unit_free(Unit
*u
) {
575 u
->transient_file
= safe_fclose(u
->transient_file
);
577 if (!MANAGER_IS_RELOADING(u
->manager
))
578 unit_remove_transient(u
);
580 bus_unit_send_removed_signal(u
);
584 sd_bus_slot_unref(u
->match_bus_slot
);
586 sd_bus_track_unref(u
->bus_track
);
587 u
->deserialized_refs
= strv_free(u
->deserialized_refs
);
589 unit_free_requires_mounts_for(u
);
591 SET_FOREACH(t
, u
->names
, i
)
592 hashmap_remove_value(u
->manager
->units
, t
, u
);
594 if (!sd_id128_is_null(u
->invocation_id
))
595 hashmap_remove_value(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
609 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
610 bidi_set_free(u
, u
->dependencies
[d
]);
613 manager_unref_console(u
->manager
);
615 unit_release_cgroup(u
);
617 if (!MANAGER_IS_RELOADING(u
->manager
))
618 unit_unlink_state_files(u
);
620 unit_unref_uid_gid(u
, false);
622 (void) manager_update_failed_units(u
->manager
, u
, false);
623 set_remove(u
->manager
->startup_units
, u
);
625 unit_unwatch_all_pids(u
);
627 unit_ref_unset(&u
->slice
);
628 while (u
->refs_by_target
)
629 unit_ref_unset(u
->refs_by_target
);
631 if (u
->type
!= _UNIT_TYPE_INVALID
)
632 LIST_REMOVE(units_by_type
, u
->manager
->units_by_type
[u
->type
], u
);
634 if (u
->in_load_queue
)
635 LIST_REMOVE(load_queue
, u
->manager
->load_queue
, u
);
637 if (u
->in_dbus_queue
)
638 LIST_REMOVE(dbus_queue
, u
->manager
->dbus_unit_queue
, u
);
641 LIST_REMOVE(gc_queue
, u
->manager
->gc_unit_queue
, u
);
643 if (u
->in_cgroup_realize_queue
)
644 LIST_REMOVE(cgroup_realize_queue
, u
->manager
->cgroup_realize_queue
, u
);
646 if (u
->in_cgroup_empty_queue
)
647 LIST_REMOVE(cgroup_empty_queue
, u
->manager
->cgroup_empty_queue
, u
);
649 if (u
->in_cleanup_queue
)
650 LIST_REMOVE(cleanup_queue
, u
->manager
->cleanup_queue
, u
);
652 safe_close(u
->ip_accounting_ingress_map_fd
);
653 safe_close(u
->ip_accounting_egress_map_fd
);
655 safe_close(u
->ipv4_allow_map_fd
);
656 safe_close(u
->ipv6_allow_map_fd
);
657 safe_close(u
->ipv4_deny_map_fd
);
658 safe_close(u
->ipv6_deny_map_fd
);
660 bpf_program_unref(u
->ip_bpf_ingress
);
661 bpf_program_unref(u
->ip_bpf_ingress_installed
);
662 bpf_program_unref(u
->ip_bpf_egress
);
663 bpf_program_unref(u
->ip_bpf_egress_installed
);
665 condition_free_list(u
->conditions
);
666 condition_free_list(u
->asserts
);
668 free(u
->description
);
669 strv_free(u
->documentation
);
670 free(u
->fragment_path
);
671 free(u
->source_path
);
672 strv_free(u
->dropin_paths
);
675 free(u
->job_timeout_reboot_arg
);
677 set_free_free(u
->names
);
684 UnitActiveState
unit_active_state(Unit
*u
) {
687 if (u
->load_state
== UNIT_MERGED
)
688 return unit_active_state(unit_follow_merge(u
));
690 /* After a reload it might happen that a unit is not correctly
691 * loaded but still has a process around. That's why we won't
692 * shortcut failed loading to UNIT_INACTIVE_FAILED. */
694 return UNIT_VTABLE(u
)->active_state(u
);
697 const char* unit_sub_state_to_string(Unit
*u
) {
700 return UNIT_VTABLE(u
)->sub_state_to_string(u
);
703 static int set_complete_move(Set
**s
, Set
**other
) {
711 return set_move(*s
, *other
);
720 static int hashmap_complete_move(Hashmap
**s
, Hashmap
**other
) {
728 return hashmap_move(*s
, *other
);
737 static int merge_names(Unit
*u
, Unit
*other
) {
745 r
= set_complete_move(&u
->names
, &other
->names
);
749 set_free_free(other
->names
);
753 SET_FOREACH(t
, u
->names
, i
)
754 assert_se(hashmap_replace(u
->manager
->units
, t
, u
) == 0);
759 static int reserve_dependencies(Unit
*u
, Unit
*other
, UnitDependency d
) {
764 assert(d
< _UNIT_DEPENDENCY_MAX
);
767 * If u does not have this dependency set allocated, there is no need
768 * to reserve anything. In that case other's set will be transferred
769 * as a whole to u by complete_move().
771 if (!u
->dependencies
[d
])
774 /* merge_dependencies() will skip a u-on-u dependency */
775 n_reserve
= hashmap_size(other
->dependencies
[d
]) - !!hashmap_get(other
->dependencies
[d
], u
);
777 return hashmap_reserve(u
->dependencies
[d
], n_reserve
);
780 static void merge_dependencies(Unit
*u
, Unit
*other
, const char *other_id
, UnitDependency d
) {
786 /* Merges all dependencies of type 'd' of the unit 'other' into the deps of the unit 'u' */
790 assert(d
< _UNIT_DEPENDENCY_MAX
);
792 /* Fix backwards pointers. Let's iterate through all dependendent units of the other unit. */
793 HASHMAP_FOREACH_KEY(v
, back
, other
->dependencies
[d
], i
) {
796 /* Let's now iterate through the dependencies of that dependencies of the other units, looking for
797 * pointers back, and let's fix them up, to instead point to 'u'. */
799 for (k
= 0; k
< _UNIT_DEPENDENCY_MAX
; k
++) {
801 /* Do not add dependencies between u and itself. */
802 if (hashmap_remove(back
->dependencies
[k
], other
))
803 maybe_warn_about_dependency(u
, other_id
, k
);
805 UnitDependencyInfo di_u
, di_other
, di_merged
;
807 /* Let's drop this dependency between "back" and "other", and let's create it between
808 * "back" and "u" instead. Let's merge the bit masks of the dependency we are moving,
809 * and any such dependency which might already exist */
811 di_other
.data
= hashmap_get(back
->dependencies
[k
], other
);
813 continue; /* dependency isn't set, let's try the next one */
815 di_u
.data
= hashmap_get(back
->dependencies
[k
], u
);
817 di_merged
= (UnitDependencyInfo
) {
818 .origin_mask
= di_u
.origin_mask
| di_other
.origin_mask
,
819 .destination_mask
= di_u
.destination_mask
| di_other
.destination_mask
,
822 r
= hashmap_remove_and_replace(back
->dependencies
[k
], other
, u
, di_merged
.data
);
824 log_warning_errno(r
, "Failed to remove/replace: back=%s other=%s u=%s: %m", back
->id
, other_id
, u
->id
);
827 /* assert_se(hashmap_remove_and_replace(back->dependencies[k], other, u, di_merged.data) >= 0); */
833 /* Also do not move dependencies on u to itself */
834 back
= hashmap_remove(other
->dependencies
[d
], u
);
836 maybe_warn_about_dependency(u
, other_id
, d
);
838 /* The move cannot fail. The caller must have performed a reservation. */
839 assert_se(hashmap_complete_move(&u
->dependencies
[d
], &other
->dependencies
[d
]) == 0);
841 other
->dependencies
[d
] = hashmap_free(other
->dependencies
[d
]);
844 int unit_merge(Unit
*u
, Unit
*other
) {
846 const char *other_id
= NULL
;
851 assert(u
->manager
== other
->manager
);
852 assert(u
->type
!= _UNIT_TYPE_INVALID
);
854 other
= unit_follow_merge(other
);
859 if (u
->type
!= other
->type
)
862 if (!u
->instance
!= !other
->instance
)
865 if (!unit_type_may_alias(u
->type
)) /* Merging only applies to unit names that support aliases */
868 if (!IN_SET(other
->load_state
, UNIT_STUB
, UNIT_NOT_FOUND
))
877 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
881 other_id
= strdupa(other
->id
);
883 /* Make reservations to ensure merge_dependencies() won't fail */
884 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
885 r
= reserve_dependencies(u
, other
, d
);
887 * We don't rollback reservations if we fail. We don't have
888 * a way to undo reservations. A reservation is not a leak.
895 r
= merge_names(u
, other
);
899 /* Redirect all references */
900 while (other
->refs_by_target
)
901 unit_ref_set(other
->refs_by_target
, other
->refs_by_target
->source
, u
);
903 /* Merge dependencies */
904 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
905 merge_dependencies(u
, other
, other_id
, d
);
907 other
->load_state
= UNIT_MERGED
;
908 other
->merged_into
= u
;
910 /* If there is still some data attached to the other node, we
911 * don't need it anymore, and can free it. */
912 if (other
->load_state
!= UNIT_STUB
)
913 if (UNIT_VTABLE(other
)->done
)
914 UNIT_VTABLE(other
)->done(other
);
916 unit_add_to_dbus_queue(u
);
917 unit_add_to_cleanup_queue(other
);
922 int unit_merge_by_name(Unit
*u
, const char *name
) {
923 _cleanup_free_
char *s
= NULL
;
930 if (unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
934 r
= unit_name_replace_instance(name
, u
->instance
, &s
);
941 other
= manager_get_unit(u
->manager
, name
);
943 return unit_merge(u
, other
);
945 return unit_add_name(u
, name
);
948 Unit
* unit_follow_merge(Unit
*u
) {
951 while (u
->load_state
== UNIT_MERGED
)
952 assert_se(u
= u
->merged_into
);
957 int unit_add_exec_dependencies(Unit
*u
, ExecContext
*c
) {
958 ExecDirectoryType dt
;
965 if (c
->working_directory
) {
966 r
= unit_require_mounts_for(u
, c
->working_directory
, UNIT_DEPENDENCY_FILE
);
971 if (c
->root_directory
) {
972 r
= unit_require_mounts_for(u
, c
->root_directory
, UNIT_DEPENDENCY_FILE
);
978 r
= unit_require_mounts_for(u
, c
->root_image
, UNIT_DEPENDENCY_FILE
);
983 for (dt
= 0; dt
< _EXEC_DIRECTORY_TYPE_MAX
; dt
++) {
984 if (!u
->manager
->prefix
[dt
])
987 STRV_FOREACH(dp
, c
->directories
[dt
].paths
) {
988 _cleanup_free_
char *p
;
990 p
= strjoin(u
->manager
->prefix
[dt
], "/", *dp
);
994 r
= unit_require_mounts_for(u
, p
, UNIT_DEPENDENCY_FILE
);
1000 if (!MANAGER_IS_SYSTEM(u
->manager
))
1003 if (c
->private_tmp
) {
1006 FOREACH_STRING(p
, "/tmp", "/var/tmp") {
1007 r
= unit_require_mounts_for(u
, p
, UNIT_DEPENDENCY_FILE
);
1012 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_TMPFILES_SETUP_SERVICE
, NULL
, true, UNIT_DEPENDENCY_FILE
);
1017 if (!IN_SET(c
->std_output
,
1018 EXEC_OUTPUT_JOURNAL
, EXEC_OUTPUT_JOURNAL_AND_CONSOLE
,
1019 EXEC_OUTPUT_KMSG
, EXEC_OUTPUT_KMSG_AND_CONSOLE
,
1020 EXEC_OUTPUT_SYSLOG
, EXEC_OUTPUT_SYSLOG_AND_CONSOLE
) &&
1021 !IN_SET(c
->std_error
,
1022 EXEC_OUTPUT_JOURNAL
, EXEC_OUTPUT_JOURNAL_AND_CONSOLE
,
1023 EXEC_OUTPUT_KMSG
, EXEC_OUTPUT_KMSG_AND_CONSOLE
,
1024 EXEC_OUTPUT_SYSLOG
, EXEC_OUTPUT_SYSLOG_AND_CONSOLE
))
1027 /* If syslog or kernel logging is requested, make sure our own
1028 * logging daemon is run first. */
1030 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_JOURNALD_SOCKET
, NULL
, true, UNIT_DEPENDENCY_FILE
);
1037 const char *unit_description(Unit
*u
) {
1041 return u
->description
;
1043 return strna(u
->id
);
1046 static void print_unit_dependency_mask(FILE *f
, const char *kind
, UnitDependencyMask mask
, bool *space
) {
1048 UnitDependencyMask mask
;
1051 { UNIT_DEPENDENCY_FILE
, "file" },
1052 { UNIT_DEPENDENCY_IMPLICIT
, "implicit" },
1053 { UNIT_DEPENDENCY_DEFAULT
, "default" },
1054 { UNIT_DEPENDENCY_UDEV
, "udev" },
1055 { UNIT_DEPENDENCY_PATH
, "path" },
1056 { UNIT_DEPENDENCY_MOUNTINFO_IMPLICIT
, "mountinfo-implicit" },
1057 { UNIT_DEPENDENCY_MOUNTINFO_DEFAULT
, "mountinfo-default" },
1058 { UNIT_DEPENDENCY_PROC_SWAP
, "proc-swap" },
1066 for (i
= 0; i
< ELEMENTSOF(table
); i
++) {
1071 if ((mask
& table
[i
].mask
) == table
[i
].mask
) {
1079 fputs(table
[i
].name
, f
);
1081 mask
&= ~table
[i
].mask
;
1088 void unit_dump(Unit
*u
, FILE *f
, const char *prefix
) {
1092 const char *prefix2
;
1094 timestamp0
[FORMAT_TIMESTAMP_MAX
],
1095 timestamp1
[FORMAT_TIMESTAMP_MAX
],
1096 timestamp2
[FORMAT_TIMESTAMP_MAX
],
1097 timestamp3
[FORMAT_TIMESTAMP_MAX
],
1098 timestamp4
[FORMAT_TIMESTAMP_MAX
],
1099 timespan
[FORMAT_TIMESPAN_MAX
];
1101 _cleanup_set_free_ Set
*following_set
= NULL
;
1107 assert(u
->type
>= 0);
1109 prefix
= strempty(prefix
);
1110 prefix2
= strjoina(prefix
, "\t");
1114 "%s\tDescription: %s\n"
1115 "%s\tInstance: %s\n"
1116 "%s\tUnit Load State: %s\n"
1117 "%s\tUnit Active State: %s\n"
1118 "%s\tState Change Timestamp: %s\n"
1119 "%s\tInactive Exit Timestamp: %s\n"
1120 "%s\tActive Enter Timestamp: %s\n"
1121 "%s\tActive Exit Timestamp: %s\n"
1122 "%s\tInactive Enter Timestamp: %s\n"
1124 "%s\tNeed Daemon Reload: %s\n"
1125 "%s\tTransient: %s\n"
1126 "%s\tPerpetual: %s\n"
1127 "%s\tGarbage Collection Mode: %s\n"
1130 "%s\tCGroup realized: %s\n",
1132 prefix
, unit_description(u
),
1133 prefix
, strna(u
->instance
),
1134 prefix
, unit_load_state_to_string(u
->load_state
),
1135 prefix
, unit_active_state_to_string(unit_active_state(u
)),
1136 prefix
, strna(format_timestamp(timestamp0
, sizeof(timestamp0
), u
->state_change_timestamp
.realtime
)),
1137 prefix
, strna(format_timestamp(timestamp1
, sizeof(timestamp1
), u
->inactive_exit_timestamp
.realtime
)),
1138 prefix
, strna(format_timestamp(timestamp2
, sizeof(timestamp2
), u
->active_enter_timestamp
.realtime
)),
1139 prefix
, strna(format_timestamp(timestamp3
, sizeof(timestamp3
), u
->active_exit_timestamp
.realtime
)),
1140 prefix
, strna(format_timestamp(timestamp4
, sizeof(timestamp4
), u
->inactive_enter_timestamp
.realtime
)),
1141 prefix
, yes_no(unit_may_gc(u
)),
1142 prefix
, yes_no(unit_need_daemon_reload(u
)),
1143 prefix
, yes_no(u
->transient
),
1144 prefix
, yes_no(u
->perpetual
),
1145 prefix
, collect_mode_to_string(u
->collect_mode
),
1146 prefix
, strna(unit_slice_name(u
)),
1147 prefix
, strna(u
->cgroup_path
),
1148 prefix
, yes_no(u
->cgroup_realized
));
1150 if (u
->cgroup_realized_mask
!= 0) {
1151 _cleanup_free_
char *s
= NULL
;
1152 (void) cg_mask_to_string(u
->cgroup_realized_mask
, &s
);
1153 fprintf(f
, "%s\tCGroup realized mask: %s\n", prefix
, strnull(s
));
1155 if (u
->cgroup_enabled_mask
!= 0) {
1156 _cleanup_free_
char *s
= NULL
;
1157 (void) cg_mask_to_string(u
->cgroup_enabled_mask
, &s
);
1158 fprintf(f
, "%s\tCGroup enabled mask: %s\n", prefix
, strnull(s
));
1160 m
= unit_get_own_mask(u
);
1162 _cleanup_free_
char *s
= NULL
;
1163 (void) cg_mask_to_string(m
, &s
);
1164 fprintf(f
, "%s\tCGroup own mask: %s\n", prefix
, strnull(s
));
1166 m
= unit_get_members_mask(u
);
1168 _cleanup_free_
char *s
= NULL
;
1169 (void) cg_mask_to_string(m
, &s
);
1170 fprintf(f
, "%s\tCGroup members mask: %s\n", prefix
, strnull(s
));
1173 SET_FOREACH(t
, u
->names
, i
)
1174 fprintf(f
, "%s\tName: %s\n", prefix
, t
);
1176 if (!sd_id128_is_null(u
->invocation_id
))
1177 fprintf(f
, "%s\tInvocation ID: " SD_ID128_FORMAT_STR
"\n",
1178 prefix
, SD_ID128_FORMAT_VAL(u
->invocation_id
));
1180 STRV_FOREACH(j
, u
->documentation
)
1181 fprintf(f
, "%s\tDocumentation: %s\n", prefix
, *j
);
1183 following
= unit_following(u
);
1185 fprintf(f
, "%s\tFollowing: %s\n", prefix
, following
->id
);
1187 r
= unit_following_set(u
, &following_set
);
1191 SET_FOREACH(other
, following_set
, i
)
1192 fprintf(f
, "%s\tFollowing Set Member: %s\n", prefix
, other
->id
);
1195 if (u
->fragment_path
)
1196 fprintf(f
, "%s\tFragment Path: %s\n", prefix
, u
->fragment_path
);
1199 fprintf(f
, "%s\tSource Path: %s\n", prefix
, u
->source_path
);
1201 STRV_FOREACH(j
, u
->dropin_paths
)
1202 fprintf(f
, "%s\tDropIn Path: %s\n", prefix
, *j
);
1204 if (u
->failure_action
!= EMERGENCY_ACTION_NONE
)
1205 fprintf(f
, "%s\tFailure Action: %s\n", prefix
, emergency_action_to_string(u
->failure_action
));
1206 if (u
->success_action
!= EMERGENCY_ACTION_NONE
)
1207 fprintf(f
, "%s\tSuccess Action: %s\n", prefix
, emergency_action_to_string(u
->success_action
));
1209 if (u
->job_timeout
!= USEC_INFINITY
)
1210 fprintf(f
, "%s\tJob Timeout: %s\n", prefix
, format_timespan(timespan
, sizeof(timespan
), u
->job_timeout
, 0));
1212 if (u
->job_timeout_action
!= EMERGENCY_ACTION_NONE
)
1213 fprintf(f
, "%s\tJob Timeout Action: %s\n", prefix
, emergency_action_to_string(u
->job_timeout_action
));
1215 if (u
->job_timeout_reboot_arg
)
1216 fprintf(f
, "%s\tJob Timeout Reboot Argument: %s\n", prefix
, u
->job_timeout_reboot_arg
);
1218 condition_dump_list(u
->conditions
, f
, prefix
, condition_type_to_string
);
1219 condition_dump_list(u
->asserts
, f
, prefix
, assert_type_to_string
);
1221 if (dual_timestamp_is_set(&u
->condition_timestamp
))
1223 "%s\tCondition Timestamp: %s\n"
1224 "%s\tCondition Result: %s\n",
1225 prefix
, strna(format_timestamp(timestamp1
, sizeof(timestamp1
), u
->condition_timestamp
.realtime
)),
1226 prefix
, yes_no(u
->condition_result
));
1228 if (dual_timestamp_is_set(&u
->assert_timestamp
))
1230 "%s\tAssert Timestamp: %s\n"
1231 "%s\tAssert Result: %s\n",
1232 prefix
, strna(format_timestamp(timestamp1
, sizeof(timestamp1
), u
->assert_timestamp
.realtime
)),
1233 prefix
, yes_no(u
->assert_result
));
1235 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
1236 UnitDependencyInfo di
;
1239 HASHMAP_FOREACH_KEY(di
.data
, other
, u
->dependencies
[d
], i
) {
1242 fprintf(f
, "%s\t%s: %s (", prefix
, unit_dependency_to_string(d
), other
->id
);
1244 print_unit_dependency_mask(f
, "origin", di
.origin_mask
, &space
);
1245 print_unit_dependency_mask(f
, "destination", di
.destination_mask
, &space
);
1251 if (!hashmap_isempty(u
->requires_mounts_for
)) {
1252 UnitDependencyInfo di
;
1255 HASHMAP_FOREACH_KEY(di
.data
, path
, u
->requires_mounts_for
, i
) {
1258 fprintf(f
, "%s\tRequiresMountsFor: %s (", prefix
, path
);
1260 print_unit_dependency_mask(f
, "origin", di
.origin_mask
, &space
);
1261 print_unit_dependency_mask(f
, "destination", di
.destination_mask
, &space
);
1267 if (u
->load_state
== UNIT_LOADED
) {
1270 "%s\tStopWhenUnneeded: %s\n"
1271 "%s\tRefuseManualStart: %s\n"
1272 "%s\tRefuseManualStop: %s\n"
1273 "%s\tDefaultDependencies: %s\n"
1274 "%s\tOnFailureJobMode: %s\n"
1275 "%s\tIgnoreOnIsolate: %s\n",
1276 prefix
, yes_no(u
->stop_when_unneeded
),
1277 prefix
, yes_no(u
->refuse_manual_start
),
1278 prefix
, yes_no(u
->refuse_manual_stop
),
1279 prefix
, yes_no(u
->default_dependencies
),
1280 prefix
, job_mode_to_string(u
->on_failure_job_mode
),
1281 prefix
, yes_no(u
->ignore_on_isolate
));
1283 if (UNIT_VTABLE(u
)->dump
)
1284 UNIT_VTABLE(u
)->dump(u
, f
, prefix2
);
1286 } else if (u
->load_state
== UNIT_MERGED
)
1288 "%s\tMerged into: %s\n",
1289 prefix
, u
->merged_into
->id
);
1290 else if (u
->load_state
== UNIT_ERROR
)
1291 fprintf(f
, "%s\tLoad Error Code: %s\n", prefix
, strerror(-u
->load_error
));
1293 for (n
= sd_bus_track_first(u
->bus_track
); n
; n
= sd_bus_track_next(u
->bus_track
))
1294 fprintf(f
, "%s\tBus Ref: %s\n", prefix
, n
);
1297 job_dump(u
->job
, f
, prefix2
);
1300 job_dump(u
->nop_job
, f
, prefix2
);
1303 /* Common implementation for multiple backends */
1304 int unit_load_fragment_and_dropin(Unit
*u
) {
1309 /* Load a .{service,socket,...} file */
1310 r
= unit_load_fragment(u
);
1314 if (u
->load_state
== UNIT_STUB
)
1317 /* Load drop-in directory data. If u is an alias, we might be reloading the
1318 * target unit needlessly. But we cannot be sure which drops-ins have already
1319 * been loaded and which not, at least without doing complicated book-keeping,
1320 * so let's always reread all drop-ins. */
1321 return unit_load_dropin(unit_follow_merge(u
));
1324 /* Common implementation for multiple backends */
1325 int unit_load_fragment_and_dropin_optional(Unit
*u
) {
1330 /* Same as unit_load_fragment_and_dropin(), but whether
1331 * something can be loaded or not doesn't matter. */
1333 /* Load a .service file */
1334 r
= unit_load_fragment(u
);
1338 if (u
->load_state
== UNIT_STUB
)
1339 u
->load_state
= UNIT_LOADED
;
1341 /* Load drop-in directory data */
1342 return unit_load_dropin(unit_follow_merge(u
));
1345 int unit_add_default_target_dependency(Unit
*u
, Unit
*target
) {
1349 if (target
->type
!= UNIT_TARGET
)
1352 /* Only add the dependency if both units are loaded, so that
1353 * that loop check below is reliable */
1354 if (u
->load_state
!= UNIT_LOADED
||
1355 target
->load_state
!= UNIT_LOADED
)
1358 /* If either side wants no automatic dependencies, then let's
1360 if (!u
->default_dependencies
||
1361 !target
->default_dependencies
)
1364 /* Don't create loops */
1365 if (hashmap_get(target
->dependencies
[UNIT_BEFORE
], u
))
1368 return unit_add_dependency(target
, UNIT_AFTER
, u
, true, UNIT_DEPENDENCY_DEFAULT
);
1371 static int unit_add_target_dependencies(Unit
*u
) {
1373 static const UnitDependency deps
[] = {
1385 for (k
= 0; k
< ELEMENTSOF(deps
); k
++) {
1390 HASHMAP_FOREACH_KEY(v
, target
, u
->dependencies
[deps
[k
]], i
) {
1391 r
= unit_add_default_target_dependency(u
, target
);
1400 static int unit_add_slice_dependencies(Unit
*u
) {
1401 UnitDependencyMask mask
;
1404 if (!UNIT_HAS_CGROUP_CONTEXT(u
))
1407 /* Slice units are implicitly ordered against their parent slices (as this relationship is encoded in the
1408 name), while all other units are ordered based on configuration (as in their case Slice= configures the
1410 mask
= u
->type
== UNIT_SLICE
? UNIT_DEPENDENCY_IMPLICIT
: UNIT_DEPENDENCY_FILE
;
1412 if (UNIT_ISSET(u
->slice
))
1413 return unit_add_two_dependencies(u
, UNIT_AFTER
, UNIT_REQUIRES
, UNIT_DEREF(u
->slice
), true, mask
);
1415 if (unit_has_name(u
, SPECIAL_ROOT_SLICE
))
1418 return unit_add_two_dependencies_by_name(u
, UNIT_AFTER
, UNIT_REQUIRES
, SPECIAL_ROOT_SLICE
, NULL
, true, mask
);
1421 static int unit_add_mount_dependencies(Unit
*u
) {
1422 UnitDependencyInfo di
;
1429 HASHMAP_FOREACH_KEY(di
.data
, path
, u
->requires_mounts_for
, i
) {
1430 char prefix
[strlen(path
) + 1];
1432 PATH_FOREACH_PREFIX_MORE(prefix
, path
) {
1433 _cleanup_free_
char *p
= NULL
;
1436 r
= unit_name_from_path(prefix
, ".mount", &p
);
1440 m
= manager_get_unit(u
->manager
, p
);
1442 /* Make sure to load the mount unit if
1443 * it exists. If so the dependencies
1444 * on this unit will be added later
1445 * during the loading of the mount
1447 (void) manager_load_unit_prepare(u
->manager
, p
, NULL
, NULL
, &m
);
1453 if (m
->load_state
!= UNIT_LOADED
)
1456 r
= unit_add_dependency(u
, UNIT_AFTER
, m
, true, di
.origin_mask
);
1460 if (m
->fragment_path
) {
1461 r
= unit_add_dependency(u
, UNIT_REQUIRES
, m
, true, di
.origin_mask
);
1471 static int unit_add_startup_units(Unit
*u
) {
1475 c
= unit_get_cgroup_context(u
);
1479 if (c
->startup_cpu_shares
== CGROUP_CPU_SHARES_INVALID
&&
1480 c
->startup_io_weight
== CGROUP_WEIGHT_INVALID
&&
1481 c
->startup_blockio_weight
== CGROUP_BLKIO_WEIGHT_INVALID
)
1484 r
= set_ensure_allocated(&u
->manager
->startup_units
, NULL
);
1488 return set_put(u
->manager
->startup_units
, u
);
1491 int unit_load(Unit
*u
) {
1496 if (u
->in_load_queue
) {
1497 LIST_REMOVE(load_queue
, u
->manager
->load_queue
, u
);
1498 u
->in_load_queue
= false;
1501 if (u
->type
== _UNIT_TYPE_INVALID
)
1504 if (u
->load_state
!= UNIT_STUB
)
1507 if (u
->transient_file
) {
1508 r
= fflush_and_check(u
->transient_file
);
1512 u
->transient_file
= safe_fclose(u
->transient_file
);
1513 u
->fragment_mtime
= now(CLOCK_REALTIME
);
1516 if (UNIT_VTABLE(u
)->load
) {
1517 r
= UNIT_VTABLE(u
)->load(u
);
1522 if (u
->load_state
== UNIT_STUB
) {
1527 if (u
->load_state
== UNIT_LOADED
) {
1529 r
= unit_add_target_dependencies(u
);
1533 r
= unit_add_slice_dependencies(u
);
1537 r
= unit_add_mount_dependencies(u
);
1541 r
= unit_add_startup_units(u
);
1545 if (u
->on_failure_job_mode
== JOB_ISOLATE
&& hashmap_size(u
->dependencies
[UNIT_ON_FAILURE
]) > 1) {
1546 log_unit_error(u
, "More than one OnFailure= dependencies specified but OnFailureJobMode=isolate set. Refusing.");
1551 if (u
->job_running_timeout
!= USEC_INFINITY
&& u
->job_running_timeout
> u
->job_timeout
)
1552 log_unit_warning(u
, "JobRunningTimeoutSec= is greater than JobTimeoutSec=, it has no effect.");
1554 unit_update_cgroup_members_masks(u
);
1557 assert((u
->load_state
!= UNIT_MERGED
) == !u
->merged_into
);
1559 unit_add_to_dbus_queue(unit_follow_merge(u
));
1560 unit_add_to_gc_queue(u
);
1565 u
->load_state
= u
->load_state
== UNIT_STUB
? UNIT_NOT_FOUND
: UNIT_ERROR
;
1567 unit_add_to_dbus_queue(u
);
1568 unit_add_to_gc_queue(u
);
1570 log_unit_debug_errno(u
, r
, "Failed to load configuration: %m");
1575 static bool unit_condition_test_list(Unit
*u
, Condition
*first
, const char *(*to_string
)(ConditionType t
)) {
1582 /* If the condition list is empty, then it is true */
1586 /* Otherwise, if all of the non-trigger conditions apply and
1587 * if any of the trigger conditions apply (unless there are
1588 * none) we return true */
1589 LIST_FOREACH(conditions
, c
, first
) {
1592 r
= condition_test(c
);
1595 "Couldn't determine result for %s=%s%s%s, assuming failed: %m",
1597 c
->trigger
? "|" : "",
1598 c
->negate
? "!" : "",
1604 c
->trigger
? "|" : "",
1605 c
->negate
? "!" : "",
1607 condition_result_to_string(c
->result
));
1609 if (!c
->trigger
&& r
<= 0)
1612 if (c
->trigger
&& triggered
<= 0)
1616 return triggered
!= 0;
1619 static bool unit_condition_test(Unit
*u
) {
1622 dual_timestamp_get(&u
->condition_timestamp
);
1623 u
->condition_result
= unit_condition_test_list(u
, u
->conditions
, condition_type_to_string
);
1625 return u
->condition_result
;
1628 static bool unit_assert_test(Unit
*u
) {
1631 dual_timestamp_get(&u
->assert_timestamp
);
1632 u
->assert_result
= unit_condition_test_list(u
, u
->asserts
, assert_type_to_string
);
1634 return u
->assert_result
;
1637 void unit_status_printf(Unit
*u
, const char *status
, const char *unit_status_msg_format
) {
1638 DISABLE_WARNING_FORMAT_NONLITERAL
;
1639 manager_status_printf(u
->manager
, STATUS_TYPE_NORMAL
, status
, unit_status_msg_format
, unit_description(u
));
1643 _pure_
static const char* unit_get_status_message_format(Unit
*u
, JobType t
) {
1645 const UnitStatusMessageFormats
*format_table
;
1648 assert(IN_SET(t
, JOB_START
, JOB_STOP
, JOB_RELOAD
));
1650 if (t
!= JOB_RELOAD
) {
1651 format_table
= &UNIT_VTABLE(u
)->status_message_formats
;
1653 format
= format_table
->starting_stopping
[t
== JOB_STOP
];
1659 /* Return generic strings */
1661 return "Starting %s.";
1662 else if (t
== JOB_STOP
)
1663 return "Stopping %s.";
1665 return "Reloading %s.";
1668 static void unit_status_print_starting_stopping(Unit
*u
, JobType t
) {
1673 /* Reload status messages have traditionally not been printed to console. */
1674 if (!IN_SET(t
, JOB_START
, JOB_STOP
))
1677 format
= unit_get_status_message_format(u
, t
);
1679 DISABLE_WARNING_FORMAT_NONLITERAL
;
1680 unit_status_printf(u
, "", format
);
1684 static void unit_status_log_starting_stopping_reloading(Unit
*u
, JobType t
) {
1685 const char *format
, *mid
;
1690 if (!IN_SET(t
, JOB_START
, JOB_STOP
, JOB_RELOAD
))
1693 if (log_on_console())
1696 /* We log status messages for all units and all operations. */
1698 format
= unit_get_status_message_format(u
, t
);
1700 DISABLE_WARNING_FORMAT_NONLITERAL
;
1701 (void) snprintf(buf
, sizeof buf
, format
, unit_description(u
));
1704 mid
= t
== JOB_START
? "MESSAGE_ID=" SD_MESSAGE_UNIT_STARTING_STR
:
1705 t
== JOB_STOP
? "MESSAGE_ID=" SD_MESSAGE_UNIT_STOPPING_STR
:
1706 "MESSAGE_ID=" SD_MESSAGE_UNIT_RELOADING_STR
;
1708 /* Note that we deliberately use LOG_MESSAGE() instead of
1709 * LOG_UNIT_MESSAGE() here, since this is supposed to mimic
1710 * closely what is written to screen using the status output,
1711 * which is supposed the highest level, friendliest output
1712 * possible, which means we should avoid the low-level unit
1714 log_struct(LOG_INFO
,
1715 LOG_MESSAGE("%s", buf
),
1717 LOG_UNIT_INVOCATION_ID(u
),
1722 void unit_status_emit_starting_stopping_reloading(Unit
*u
, JobType t
) {
1725 assert(t
< _JOB_TYPE_MAX
);
1727 unit_status_log_starting_stopping_reloading(u
, t
);
1728 unit_status_print_starting_stopping(u
, t
);
1731 int unit_start_limit_test(Unit
*u
) {
1734 if (ratelimit_test(&u
->start_limit
)) {
1735 u
->start_limit_hit
= false;
1739 log_unit_warning(u
, "Start request repeated too quickly.");
1740 u
->start_limit_hit
= true;
1742 return emergency_action(u
->manager
, u
->start_limit_action
, u
->reboot_arg
, "unit failed");
1745 bool unit_shall_confirm_spawn(Unit
*u
) {
1748 if (manager_is_confirm_spawn_disabled(u
->manager
))
1751 /* For some reasons units remaining in the same process group
1752 * as PID 1 fail to acquire the console even if it's not used
1753 * by any process. So skip the confirmation question for them. */
1754 return !unit_get_exec_context(u
)->same_pgrp
;
1757 static bool unit_verify_deps(Unit
*u
) {
1764 /* Checks whether all BindsTo= dependencies of this unit are fulfilled — if they are also combined with
1765 * After=. We do not check Requires= or Requisite= here as they only should have an effect on the job
1766 * processing, but do not have any effect afterwards. We don't check BindsTo= dependencies that are not used in
1767 * conjunction with After= as for them any such check would make things entirely racy. */
1769 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], j
) {
1771 if (!hashmap_contains(u
->dependencies
[UNIT_AFTER
], other
))
1774 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(other
))) {
1775 log_unit_notice(u
, "Bound to unit %s, but unit isn't active.", other
->id
);
1784 * -EBADR: This unit type does not support starting.
1785 * -EALREADY: Unit is already started.
1786 * -EAGAIN: An operation is already in progress. Retry later.
1787 * -ECANCELED: Too many requests for now.
1788 * -EPROTO: Assert failed
1789 * -EINVAL: Unit not loaded
1790 * -EOPNOTSUPP: Unit type not supported
1791 * -ENOLINK: The necessary dependencies are not fulfilled.
1793 int unit_start(Unit
*u
) {
1794 UnitActiveState state
;
1799 /* If this is already started, then this will succeed. Note
1800 * that this will even succeed if this unit is not startable
1801 * by the user. This is relied on to detect when we need to
1802 * wait for units and when waiting is finished. */
1803 state
= unit_active_state(u
);
1804 if (UNIT_IS_ACTIVE_OR_RELOADING(state
))
1807 /* Units that aren't loaded cannot be started */
1808 if (u
->load_state
!= UNIT_LOADED
)
1811 /* If the conditions failed, don't do anything at all. If we
1812 * already are activating this call might still be useful to
1813 * speed up activation in case there is some hold-off time,
1814 * but we don't want to recheck the condition in that case. */
1815 if (state
!= UNIT_ACTIVATING
&&
1816 !unit_condition_test(u
)) {
1817 log_unit_debug(u
, "Starting requested but condition failed. Not starting unit.");
1821 /* If the asserts failed, fail the entire job */
1822 if (state
!= UNIT_ACTIVATING
&&
1823 !unit_assert_test(u
)) {
1824 log_unit_notice(u
, "Starting requested but asserts failed.");
1828 /* Units of types that aren't supported cannot be
1829 * started. Note that we do this test only after the condition
1830 * checks, so that we rather return condition check errors
1831 * (which are usually not considered a true failure) than "not
1832 * supported" errors (which are considered a failure).
1834 if (!unit_supported(u
))
1837 /* Let's make sure that the deps really are in order before we start this. Normally the job engine should have
1838 * taken care of this already, but let's check this here again. After all, our dependencies might not be in
1839 * effect anymore, due to a reload or due to a failed condition. */
1840 if (!unit_verify_deps(u
))
1843 /* Forward to the main object, if we aren't it. */
1844 following
= unit_following(u
);
1846 log_unit_debug(u
, "Redirecting start request from %s to %s.", u
->id
, following
->id
);
1847 return unit_start(following
);
1850 /* If it is stopped, but we cannot start it, then fail */
1851 if (!UNIT_VTABLE(u
)->start
)
1854 /* We don't suppress calls to ->start() here when we are
1855 * already starting, to allow this request to be used as a
1856 * "hurry up" call, for example when the unit is in some "auto
1857 * restart" state where it waits for a holdoff timer to elapse
1858 * before it will start again. */
1860 unit_add_to_dbus_queue(u
);
1862 return UNIT_VTABLE(u
)->start(u
);
1865 bool unit_can_start(Unit
*u
) {
1868 if (u
->load_state
!= UNIT_LOADED
)
1871 if (!unit_supported(u
))
1874 return !!UNIT_VTABLE(u
)->start
;
1877 bool unit_can_isolate(Unit
*u
) {
1880 return unit_can_start(u
) &&
1885 * -EBADR: This unit type does not support stopping.
1886 * -EALREADY: Unit is already stopped.
1887 * -EAGAIN: An operation is already in progress. Retry later.
1889 int unit_stop(Unit
*u
) {
1890 UnitActiveState state
;
1895 state
= unit_active_state(u
);
1896 if (UNIT_IS_INACTIVE_OR_FAILED(state
))
1899 following
= unit_following(u
);
1901 log_unit_debug(u
, "Redirecting stop request from %s to %s.", u
->id
, following
->id
);
1902 return unit_stop(following
);
1905 if (!UNIT_VTABLE(u
)->stop
)
1908 unit_add_to_dbus_queue(u
);
1910 return UNIT_VTABLE(u
)->stop(u
);
1913 bool unit_can_stop(Unit
*u
) {
1916 if (!unit_supported(u
))
1922 return !!UNIT_VTABLE(u
)->stop
;
1926 * -EBADR: This unit type does not support reloading.
1927 * -ENOEXEC: Unit is not started.
1928 * -EAGAIN: An operation is already in progress. Retry later.
1930 int unit_reload(Unit
*u
) {
1931 UnitActiveState state
;
1936 if (u
->load_state
!= UNIT_LOADED
)
1939 if (!unit_can_reload(u
))
1942 state
= unit_active_state(u
);
1943 if (state
== UNIT_RELOADING
)
1946 if (state
!= UNIT_ACTIVE
) {
1947 log_unit_warning(u
, "Unit cannot be reloaded because it is inactive.");
1951 following
= unit_following(u
);
1953 log_unit_debug(u
, "Redirecting reload request from %s to %s.", u
->id
, following
->id
);
1954 return unit_reload(following
);
1957 unit_add_to_dbus_queue(u
);
1959 if (!UNIT_VTABLE(u
)->reload
) {
1960 /* Unit doesn't have a reload function, but we need to propagate the reload anyway */
1961 unit_notify(u
, unit_active_state(u
), unit_active_state(u
), true);
1965 return UNIT_VTABLE(u
)->reload(u
);
1968 bool unit_can_reload(Unit
*u
) {
1971 if (UNIT_VTABLE(u
)->can_reload
)
1972 return UNIT_VTABLE(u
)->can_reload(u
);
1974 if (!hashmap_isempty(u
->dependencies
[UNIT_PROPAGATES_RELOAD_TO
]))
1977 return UNIT_VTABLE(u
)->reload
;
1980 static void unit_check_unneeded(Unit
*u
) {
1982 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
1984 static const UnitDependency needed_dependencies
[] = {
1996 /* If this service shall be shut down when unneeded then do
1999 if (!u
->stop_when_unneeded
)
2002 if (!UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)))
2005 for (j
= 0; j
< ELEMENTSOF(needed_dependencies
); j
++) {
2010 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[needed_dependencies
[j
]], i
)
2011 if (unit_active_or_pending(other
) || unit_will_restart(other
))
2015 /* If stopping a unit fails continuously we might enter a stop
2016 * loop here, hence stop acting on the service being
2017 * unnecessary after a while. */
2018 if (!ratelimit_test(&u
->auto_stop_ratelimit
)) {
2019 log_unit_warning(u
, "Unit not needed anymore, but not stopping since we tried this too often recently.");
2023 log_unit_info(u
, "Unit not needed anymore. Stopping.");
2025 /* Ok, nobody needs us anymore. Sniff. Then let's commit suicide */
2026 r
= manager_add_job(u
->manager
, JOB_STOP
, u
, JOB_FAIL
, &error
, NULL
);
2028 log_unit_warning_errno(u
, r
, "Failed to enqueue stop job, ignoring: %s", bus_error_message(&error
, r
));
2031 static void unit_check_binds_to(Unit
*u
) {
2032 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
2044 if (unit_active_state(u
) != UNIT_ACTIVE
)
2047 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
) {
2051 if (!other
->coldplugged
)
2052 /* We might yet create a job for the other unit… */
2055 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
2065 /* If stopping a unit fails continuously we might enter a stop
2066 * loop here, hence stop acting on the service being
2067 * unnecessary after a while. */
2068 if (!ratelimit_test(&u
->auto_stop_ratelimit
)) {
2069 log_unit_warning(u
, "Unit is bound to inactive unit %s, but not stopping since we tried this too often recently.", other
->id
);
2074 log_unit_info(u
, "Unit is bound to inactive unit %s. Stopping, too.", other
->id
);
2076 /* A unit we need to run is gone. Sniff. Let's stop this. */
2077 r
= manager_add_job(u
->manager
, JOB_STOP
, u
, JOB_FAIL
, &error
, NULL
);
2079 log_unit_warning_errno(u
, r
, "Failed to enqueue stop job, ignoring: %s", bus_error_message(&error
, r
));
2082 static void retroactively_start_dependencies(Unit
*u
) {
2088 assert(UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)));
2090 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_REQUIRES
], i
)
2091 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2092 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2093 manager_add_job(u
->manager
, JOB_START
, other
, JOB_REPLACE
, NULL
, NULL
);
2095 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
)
2096 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2097 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2098 manager_add_job(u
->manager
, JOB_START
, other
, JOB_REPLACE
, NULL
, NULL
);
2100 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_WANTS
], i
)
2101 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2102 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2103 manager_add_job(u
->manager
, JOB_START
, other
, JOB_FAIL
, NULL
, NULL
);
2105 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_CONFLICTS
], i
)
2106 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2107 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
);
2109 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_CONFLICTED_BY
], i
)
2110 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2111 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
);
2114 static void retroactively_stop_dependencies(Unit
*u
) {
2120 assert(UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)));
2122 /* Pull down units which are bound to us recursively if enabled */
2123 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BOUND_BY
], i
)
2124 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2125 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
);
2128 static void check_unneeded_dependencies(Unit
*u
) {
2134 assert(UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)));
2136 /* Garbage collect services that might not be needed anymore, if enabled */
2137 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_REQUIRES
], i
)
2138 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2139 unit_check_unneeded(other
);
2140 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_WANTS
], i
)
2141 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2142 unit_check_unneeded(other
);
2143 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_REQUISITE
], i
)
2144 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2145 unit_check_unneeded(other
);
2146 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
)
2147 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2148 unit_check_unneeded(other
);
2151 void unit_start_on_failure(Unit
*u
) {
2158 if (hashmap_size(u
->dependencies
[UNIT_ON_FAILURE
]) <= 0)
2161 log_unit_info(u
, "Triggering OnFailure= dependencies.");
2163 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_ON_FAILURE
], i
) {
2166 r
= manager_add_job(u
->manager
, JOB_START
, other
, u
->on_failure_job_mode
, NULL
, NULL
);
2168 log_unit_error_errno(u
, r
, "Failed to enqueue OnFailure= job: %m");
2172 void unit_trigger_notify(Unit
*u
) {
2179 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_TRIGGERED_BY
], i
)
2180 if (UNIT_VTABLE(other
)->trigger_notify
)
2181 UNIT_VTABLE(other
)->trigger_notify(other
, u
);
2184 static int unit_log_resources(Unit
*u
) {
2186 struct iovec iovec
[1 + _CGROUP_IP_ACCOUNTING_METRIC_MAX
+ 4];
2187 size_t n_message_parts
= 0, n_iovec
= 0;
2188 char* message_parts
[3 + 1], *t
;
2189 nsec_t nsec
= NSEC_INFINITY
;
2190 CGroupIPAccountingMetric m
;
2193 const char* const ip_fields
[_CGROUP_IP_ACCOUNTING_METRIC_MAX
] = {
2194 [CGROUP_IP_INGRESS_BYTES
] = "IP_METRIC_INGRESS_BYTES",
2195 [CGROUP_IP_INGRESS_PACKETS
] = "IP_METRIC_INGRESS_PACKETS",
2196 [CGROUP_IP_EGRESS_BYTES
] = "IP_METRIC_EGRESS_BYTES",
2197 [CGROUP_IP_EGRESS_PACKETS
] = "IP_METRIC_EGRESS_PACKETS",
2202 /* Invoked whenever a unit enters failed or dead state. Logs information about consumed resources if resource
2203 * accounting was enabled for a unit. It does this in two ways: a friendly human readable string with reduced
2204 * information and the complete data in structured fields. */
2206 (void) unit_get_cpu_usage(u
, &nsec
);
2207 if (nsec
!= NSEC_INFINITY
) {
2208 char buf
[FORMAT_TIMESPAN_MAX
] = "";
2210 /* Format the CPU time for inclusion in the structured log message */
2211 if (asprintf(&t
, "CPU_USAGE_NSEC=%" PRIu64
, nsec
) < 0) {
2215 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2217 /* Format the CPU time for inclusion in the human language message string */
2218 format_timespan(buf
, sizeof(buf
), nsec
/ NSEC_PER_USEC
, USEC_PER_MSEC
);
2219 t
= strjoin(n_message_parts
> 0 ? "consumed " : "Consumed ", buf
, " CPU time");
2225 message_parts
[n_message_parts
++] = t
;
2228 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++) {
2229 char buf
[FORMAT_BYTES_MAX
] = "";
2230 uint64_t value
= UINT64_MAX
;
2232 assert(ip_fields
[m
]);
2234 (void) unit_get_ip_accounting(u
, m
, &value
);
2235 if (value
== UINT64_MAX
)
2238 /* Format IP accounting data for inclusion in the structured log message */
2239 if (asprintf(&t
, "%s=%" PRIu64
, ip_fields
[m
], value
) < 0) {
2243 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2245 /* Format the IP accounting data for inclusion in the human language message string, but only for the
2246 * bytes counters (and not for the packets counters) */
2247 if (m
== CGROUP_IP_INGRESS_BYTES
)
2248 t
= strjoin(n_message_parts
> 0 ? "received " : "Received ",
2249 format_bytes(buf
, sizeof(buf
), value
),
2251 else if (m
== CGROUP_IP_EGRESS_BYTES
)
2252 t
= strjoin(n_message_parts
> 0 ? "sent " : "Sent ",
2253 format_bytes(buf
, sizeof(buf
), value
),
2262 message_parts
[n_message_parts
++] = t
;
2265 /* Is there any accounting data available at all? */
2271 if (n_message_parts
== 0)
2272 t
= strjoina("MESSAGE=", u
->id
, ": Completed");
2274 _cleanup_free_
char *joined
;
2276 message_parts
[n_message_parts
] = NULL
;
2278 joined
= strv_join(message_parts
, ", ");
2284 t
= strjoina("MESSAGE=", u
->id
, ": ", joined
);
2287 /* The following four fields we allocate on the stack or are static strings, we hence don't want to free them,
2288 * and hence don't increase n_iovec for them */
2289 iovec
[n_iovec
] = IOVEC_MAKE_STRING(t
);
2290 iovec
[n_iovec
+ 1] = IOVEC_MAKE_STRING("MESSAGE_ID=" SD_MESSAGE_UNIT_RESOURCES_STR
);
2292 t
= strjoina(u
->manager
->unit_log_field
, u
->id
);
2293 iovec
[n_iovec
+ 2] = IOVEC_MAKE_STRING(t
);
2295 t
= strjoina(u
->manager
->invocation_log_field
, u
->invocation_id_string
);
2296 iovec
[n_iovec
+ 3] = IOVEC_MAKE_STRING(t
);
2298 log_struct_iovec(LOG_INFO
, iovec
, n_iovec
+ 4);
2302 for (i
= 0; i
< n_message_parts
; i
++)
2303 free(message_parts
[i
]);
2305 for (i
= 0; i
< n_iovec
; i
++)
2306 free(iovec
[i
].iov_base
);
2312 static void unit_update_on_console(Unit
*u
) {
2317 b
= unit_needs_console(u
);
2318 if (u
->on_console
== b
)
2323 manager_ref_console(u
->manager
);
2325 manager_unref_console(u
->manager
);
2329 void unit_notify(Unit
*u
, UnitActiveState os
, UnitActiveState ns
, bool reload_success
) {
2334 assert(os
< _UNIT_ACTIVE_STATE_MAX
);
2335 assert(ns
< _UNIT_ACTIVE_STATE_MAX
);
2337 /* Note that this is called for all low-level state changes, even if they might map to the same high-level
2338 * UnitActiveState! That means that ns == os is an expected behavior here. For example: if a mount point is
2339 * remounted this function will be called too! */
2343 /* Update timestamps for state changes */
2344 if (!MANAGER_IS_RELOADING(m
)) {
2345 dual_timestamp_get(&u
->state_change_timestamp
);
2347 if (UNIT_IS_INACTIVE_OR_FAILED(os
) && !UNIT_IS_INACTIVE_OR_FAILED(ns
))
2348 u
->inactive_exit_timestamp
= u
->state_change_timestamp
;
2349 else if (!UNIT_IS_INACTIVE_OR_FAILED(os
) && UNIT_IS_INACTIVE_OR_FAILED(ns
))
2350 u
->inactive_enter_timestamp
= u
->state_change_timestamp
;
2352 if (!UNIT_IS_ACTIVE_OR_RELOADING(os
) && UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2353 u
->active_enter_timestamp
= u
->state_change_timestamp
;
2354 else if (UNIT_IS_ACTIVE_OR_RELOADING(os
) && !UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2355 u
->active_exit_timestamp
= u
->state_change_timestamp
;
2358 /* Keep track of failed units */
2359 (void) manager_update_failed_units(u
->manager
, u
, ns
== UNIT_FAILED
);
2361 /* Make sure the cgroup and state files are always removed when we become inactive */
2362 if (UNIT_IS_INACTIVE_OR_FAILED(ns
)) {
2363 unit_prune_cgroup(u
);
2364 unit_unlink_state_files(u
);
2367 unit_update_on_console(u
);
2372 if (u
->job
->state
== JOB_WAITING
)
2374 /* So we reached a different state for this
2375 * job. Let's see if we can run it now if it
2376 * failed previously due to EAGAIN. */
2377 job_add_to_run_queue(u
->job
);
2379 /* Let's check whether this state change constitutes a
2380 * finished job, or maybe contradicts a running job and
2381 * hence needs to invalidate jobs. */
2383 switch (u
->job
->type
) {
2386 case JOB_VERIFY_ACTIVE
:
2388 if (UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2389 job_finish_and_invalidate(u
->job
, JOB_DONE
, true, false);
2390 else if (u
->job
->state
== JOB_RUNNING
&& ns
!= UNIT_ACTIVATING
) {
2393 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2394 job_finish_and_invalidate(u
->job
, ns
== UNIT_FAILED
? JOB_FAILED
: JOB_DONE
, true, false);
2400 case JOB_RELOAD_OR_START
:
2401 case JOB_TRY_RELOAD
:
2403 if (u
->job
->state
== JOB_RUNNING
) {
2404 if (ns
== UNIT_ACTIVE
)
2405 job_finish_and_invalidate(u
->job
, reload_success
? JOB_DONE
: JOB_FAILED
, true, false);
2406 else if (!IN_SET(ns
, UNIT_ACTIVATING
, UNIT_RELOADING
)) {
2409 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2410 job_finish_and_invalidate(u
->job
, ns
== UNIT_FAILED
? JOB_FAILED
: JOB_DONE
, true, false);
2418 case JOB_TRY_RESTART
:
2420 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2421 job_finish_and_invalidate(u
->job
, JOB_DONE
, true, false);
2422 else if (u
->job
->state
== JOB_RUNNING
&& ns
!= UNIT_DEACTIVATING
) {
2424 job_finish_and_invalidate(u
->job
, JOB_FAILED
, true, false);
2430 assert_not_reached("Job type unknown");
2436 if (!MANAGER_IS_RELOADING(m
)) {
2438 /* If this state change happened without being
2439 * requested by a job, then let's retroactively start
2440 * or stop dependencies. We skip that step when
2441 * deserializing, since we don't want to create any
2442 * additional jobs just because something is already
2446 if (UNIT_IS_INACTIVE_OR_FAILED(os
) && UNIT_IS_ACTIVE_OR_ACTIVATING(ns
))
2447 retroactively_start_dependencies(u
);
2448 else if (UNIT_IS_ACTIVE_OR_ACTIVATING(os
) && UNIT_IS_INACTIVE_OR_DEACTIVATING(ns
))
2449 retroactively_stop_dependencies(u
);
2452 /* stop unneeded units regardless if going down was expected or not */
2453 if (UNIT_IS_INACTIVE_OR_DEACTIVATING(ns
))
2454 check_unneeded_dependencies(u
);
2456 if (ns
!= os
&& ns
== UNIT_FAILED
) {
2457 log_unit_debug(u
, "Unit entered failed state.");
2458 unit_start_on_failure(u
);
2462 if (UNIT_IS_ACTIVE_OR_RELOADING(ns
)) {
2464 if (u
->type
== UNIT_SERVICE
&&
2465 !UNIT_IS_ACTIVE_OR_RELOADING(os
) &&
2466 !MANAGER_IS_RELOADING(m
)) {
2467 /* Write audit record if we have just finished starting up */
2468 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_START
, true);
2472 if (!UNIT_IS_ACTIVE_OR_RELOADING(os
))
2473 manager_send_unit_plymouth(m
, u
);
2477 if (UNIT_IS_INACTIVE_OR_FAILED(ns
) &&
2478 !UNIT_IS_INACTIVE_OR_FAILED(os
)
2479 && !MANAGER_IS_RELOADING(m
)) {
2481 /* This unit just stopped/failed. */
2482 if (u
->type
== UNIT_SERVICE
) {
2484 /* Hmm, if there was no start record written
2485 * write it now, so that we always have a nice
2488 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_START
, ns
== UNIT_INACTIVE
);
2490 if (ns
== UNIT_INACTIVE
)
2491 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_STOP
, true);
2493 /* Write audit record if we have just finished shutting down */
2494 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_STOP
, ns
== UNIT_INACTIVE
);
2496 u
->in_audit
= false;
2499 /* Write a log message about consumed resources */
2500 unit_log_resources(u
);
2504 manager_recheck_journal(m
);
2505 manager_recheck_dbus(m
);
2507 unit_trigger_notify(u
);
2509 if (!MANAGER_IS_RELOADING(u
->manager
)) {
2510 /* Maybe we finished startup and are now ready for being stopped because unneeded? */
2511 unit_check_unneeded(u
);
2513 /* Maybe we finished startup, but something we needed has vanished? Let's die then. (This happens when
2514 * something BindsTo= to a Type=oneshot unit, as these units go directly from starting to inactive,
2515 * without ever entering started.) */
2516 unit_check_binds_to(u
);
2518 if (os
!= UNIT_FAILED
&& ns
== UNIT_FAILED
)
2519 (void) emergency_action(u
->manager
, u
->failure_action
, u
->reboot_arg
, "unit failed");
2520 else if (!UNIT_IS_INACTIVE_OR_FAILED(os
) && ns
== UNIT_INACTIVE
)
2521 (void) emergency_action(u
->manager
, u
->success_action
, u
->reboot_arg
, "unit succeeded");
2524 unit_add_to_dbus_queue(u
);
2525 unit_add_to_gc_queue(u
);
2528 int unit_watch_pid(Unit
*u
, pid_t pid
) {
2532 assert(pid_is_valid(pid
));
2534 /* Watch a specific PID */
2536 r
= set_ensure_allocated(&u
->pids
, NULL
);
2540 r
= hashmap_ensure_allocated(&u
->manager
->watch_pids
, NULL
);
2544 /* First try, let's add the unit keyed by "pid". */
2545 r
= hashmap_put(u
->manager
->watch_pids
, PID_TO_PTR(pid
), u
);
2551 /* OK, the "pid" key is already assigned to a different unit. Let's see if the "-pid" key (which points
2552 * to an array of Units rather than just a Unit), lists us already. */
2554 array
= hashmap_get(u
->manager
->watch_pids
, PID_TO_PTR(-pid
));
2556 for (; array
[n
]; n
++)
2560 if (found
) /* Found it already? if so, do nothing */
2565 /* Allocate a new array */
2566 new_array
= new(Unit
*, n
+ 2);
2570 memcpy_safe(new_array
, array
, sizeof(Unit
*) * n
);
2572 new_array
[n
+1] = NULL
;
2574 /* Add or replace the old array */
2575 r
= hashmap_replace(u
->manager
->watch_pids
, PID_TO_PTR(-pid
), new_array
);
2586 r
= set_put(u
->pids
, PID_TO_PTR(pid
));
2593 void unit_unwatch_pid(Unit
*u
, pid_t pid
) {
2597 assert(pid_is_valid(pid
));
2599 /* First let's drop the unit in case it's keyed as "pid". */
2600 (void) hashmap_remove_value(u
->manager
->watch_pids
, PID_TO_PTR(pid
), u
);
2602 /* Then, let's also drop the unit, in case it's in the array keyed by -pid */
2603 array
= hashmap_get(u
->manager
->watch_pids
, PID_TO_PTR(-pid
));
2607 /* Let's iterate through the array, dropping our own entry */
2608 for (n
= 0; array
[n
]; n
++)
2610 array
[m
++] = array
[n
];
2614 /* The array is now empty, remove the entire entry */
2615 assert(hashmap_remove(u
->manager
->watch_pids
, PID_TO_PTR(-pid
)) == array
);
2620 (void) set_remove(u
->pids
, PID_TO_PTR(pid
));
2623 void unit_unwatch_all_pids(Unit
*u
) {
2626 while (!set_isempty(u
->pids
))
2627 unit_unwatch_pid(u
, PTR_TO_PID(set_first(u
->pids
)));
2629 u
->pids
= set_free(u
->pids
);
2632 void unit_tidy_watch_pids(Unit
*u
, pid_t except1
, pid_t except2
) {
2638 /* Cleans dead PIDs from our list */
2640 SET_FOREACH(e
, u
->pids
, i
) {
2641 pid_t pid
= PTR_TO_PID(e
);
2643 if (pid
== except1
|| pid
== except2
)
2646 if (!pid_is_unwaited(pid
))
2647 unit_unwatch_pid(u
, pid
);
2651 bool unit_job_is_applicable(Unit
*u
, JobType j
) {
2653 assert(j
>= 0 && j
< _JOB_TYPE_MAX
);
2657 case JOB_VERIFY_ACTIVE
:
2660 /* Note that we don't check unit_can_start() here. That's because .device units and suchlike are not
2661 * startable by us but may appear due to external events, and it thus makes sense to permit enqueing
2666 /* Similar as above. However, perpetual units can never be stopped (neither explicitly nor due to
2667 * external events), hence it makes no sense to permit enqueing such a request either. */
2668 return !u
->perpetual
;
2671 case JOB_TRY_RESTART
:
2672 return unit_can_stop(u
) && unit_can_start(u
);
2675 case JOB_TRY_RELOAD
:
2676 return unit_can_reload(u
);
2678 case JOB_RELOAD_OR_START
:
2679 return unit_can_reload(u
) && unit_can_start(u
);
2682 assert_not_reached("Invalid job type");
2686 static void maybe_warn_about_dependency(Unit
*u
, const char *other
, UnitDependency dependency
) {
2689 /* Only warn about some unit types */
2690 if (!IN_SET(dependency
, UNIT_CONFLICTS
, UNIT_CONFLICTED_BY
, UNIT_BEFORE
, UNIT_AFTER
, UNIT_ON_FAILURE
, UNIT_TRIGGERS
, UNIT_TRIGGERED_BY
))
2693 if (streq_ptr(u
->id
, other
))
2694 log_unit_warning(u
, "Dependency %s=%s dropped", unit_dependency_to_string(dependency
), u
->id
);
2696 log_unit_warning(u
, "Dependency %s=%s dropped, merged into %s", unit_dependency_to_string(dependency
), strna(other
), u
->id
);
2699 static int unit_add_dependency_hashmap(
2702 UnitDependencyMask origin_mask
,
2703 UnitDependencyMask destination_mask
) {
2705 UnitDependencyInfo info
;
2710 assert(origin_mask
< _UNIT_DEPENDENCY_MASK_FULL
);
2711 assert(destination_mask
< _UNIT_DEPENDENCY_MASK_FULL
);
2712 assert(origin_mask
> 0 || destination_mask
> 0);
2714 r
= hashmap_ensure_allocated(h
, NULL
);
2718 assert_cc(sizeof(void*) == sizeof(info
));
2720 info
.data
= hashmap_get(*h
, other
);
2722 /* Entry already exists. Add in our mask. */
2724 if ((info
.origin_mask
& origin_mask
) == info
.origin_mask
&&
2725 (info
.destination_mask
& destination_mask
) == info
.destination_mask
)
2728 info
.origin_mask
|= origin_mask
;
2729 info
.destination_mask
|= destination_mask
;
2731 r
= hashmap_update(*h
, other
, info
.data
);
2733 info
= (UnitDependencyInfo
) {
2734 .origin_mask
= origin_mask
,
2735 .destination_mask
= destination_mask
,
2738 r
= hashmap_put(*h
, other
, info
.data
);
2746 int unit_add_dependency(
2751 UnitDependencyMask mask
) {
2753 static const UnitDependency inverse_table
[_UNIT_DEPENDENCY_MAX
] = {
2754 [UNIT_REQUIRES
] = UNIT_REQUIRED_BY
,
2755 [UNIT_WANTS
] = UNIT_WANTED_BY
,
2756 [UNIT_REQUISITE
] = UNIT_REQUISITE_OF
,
2757 [UNIT_BINDS_TO
] = UNIT_BOUND_BY
,
2758 [UNIT_PART_OF
] = UNIT_CONSISTS_OF
,
2759 [UNIT_REQUIRED_BY
] = UNIT_REQUIRES
,
2760 [UNIT_REQUISITE_OF
] = UNIT_REQUISITE
,
2761 [UNIT_WANTED_BY
] = UNIT_WANTS
,
2762 [UNIT_BOUND_BY
] = UNIT_BINDS_TO
,
2763 [UNIT_CONSISTS_OF
] = UNIT_PART_OF
,
2764 [UNIT_CONFLICTS
] = UNIT_CONFLICTED_BY
,
2765 [UNIT_CONFLICTED_BY
] = UNIT_CONFLICTS
,
2766 [UNIT_BEFORE
] = UNIT_AFTER
,
2767 [UNIT_AFTER
] = UNIT_BEFORE
,
2768 [UNIT_ON_FAILURE
] = _UNIT_DEPENDENCY_INVALID
,
2769 [UNIT_REFERENCES
] = UNIT_REFERENCED_BY
,
2770 [UNIT_REFERENCED_BY
] = UNIT_REFERENCES
,
2771 [UNIT_TRIGGERS
] = UNIT_TRIGGERED_BY
,
2772 [UNIT_TRIGGERED_BY
] = UNIT_TRIGGERS
,
2773 [UNIT_PROPAGATES_RELOAD_TO
] = UNIT_RELOAD_PROPAGATED_FROM
,
2774 [UNIT_RELOAD_PROPAGATED_FROM
] = UNIT_PROPAGATES_RELOAD_TO
,
2775 [UNIT_JOINS_NAMESPACE_OF
] = UNIT_JOINS_NAMESPACE_OF
,
2777 Unit
*original_u
= u
, *original_other
= other
;
2781 assert(d
>= 0 && d
< _UNIT_DEPENDENCY_MAX
);
2784 u
= unit_follow_merge(u
);
2785 other
= unit_follow_merge(other
);
2787 /* We won't allow dependencies on ourselves. We will not
2788 * consider them an error however. */
2790 maybe_warn_about_dependency(original_u
, original_other
->id
, d
);
2794 if ((d
== UNIT_BEFORE
&& other
->type
== UNIT_DEVICE
) ||
2795 (d
== UNIT_AFTER
&& u
->type
== UNIT_DEVICE
)) {
2796 log_unit_warning(u
, "Dependency Before=%s ignored (.device units cannot be delayed)", other
->id
);
2800 r
= unit_add_dependency_hashmap(u
->dependencies
+ d
, other
, mask
, 0);
2804 if (inverse_table
[d
] != _UNIT_DEPENDENCY_INVALID
&& inverse_table
[d
] != d
) {
2805 r
= unit_add_dependency_hashmap(other
->dependencies
+ inverse_table
[d
], u
, 0, mask
);
2810 if (add_reference
) {
2811 r
= unit_add_dependency_hashmap(u
->dependencies
+ UNIT_REFERENCES
, other
, mask
, 0);
2815 r
= unit_add_dependency_hashmap(other
->dependencies
+ UNIT_REFERENCED_BY
, u
, 0, mask
);
2820 unit_add_to_dbus_queue(u
);
2824 int unit_add_two_dependencies(Unit
*u
, UnitDependency d
, UnitDependency e
, Unit
*other
, bool add_reference
, UnitDependencyMask mask
) {
2829 r
= unit_add_dependency(u
, d
, other
, add_reference
, mask
);
2833 return unit_add_dependency(u
, e
, other
, add_reference
, mask
);
2836 static int resolve_template(Unit
*u
, const char *name
, const char*path
, char **buf
, const char **ret
) {
2840 assert(name
|| path
);
2845 name
= basename(path
);
2847 if (!unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
2854 r
= unit_name_replace_instance(name
, u
->instance
, buf
);
2856 _cleanup_free_
char *i
= NULL
;
2858 r
= unit_name_to_prefix(u
->id
, &i
);
2862 r
= unit_name_replace_instance(name
, i
, buf
);
2871 int unit_add_dependency_by_name(Unit
*u
, UnitDependency d
, const char *name
, const char *path
, bool add_reference
, UnitDependencyMask mask
) {
2872 _cleanup_free_
char *buf
= NULL
;
2877 assert(name
|| path
);
2879 r
= resolve_template(u
, name
, path
, &buf
, &name
);
2883 r
= manager_load_unit(u
->manager
, name
, path
, NULL
, &other
);
2887 return unit_add_dependency(u
, d
, other
, add_reference
, mask
);
2890 int unit_add_two_dependencies_by_name(Unit
*u
, UnitDependency d
, UnitDependency e
, const char *name
, const char *path
, bool add_reference
, UnitDependencyMask mask
) {
2891 _cleanup_free_
char *buf
= NULL
;
2896 assert(name
|| path
);
2898 r
= resolve_template(u
, name
, path
, &buf
, &name
);
2902 r
= manager_load_unit(u
->manager
, name
, path
, NULL
, &other
);
2906 return unit_add_two_dependencies(u
, d
, e
, other
, add_reference
, mask
);
2909 int set_unit_path(const char *p
) {
2910 /* This is mostly for debug purposes */
2911 if (setenv("SYSTEMD_UNIT_PATH", p
, 1) < 0)
2917 char *unit_dbus_path(Unit
*u
) {
2923 return unit_dbus_path_from_name(u
->id
);
2926 char *unit_dbus_path_invocation_id(Unit
*u
) {
2929 if (sd_id128_is_null(u
->invocation_id
))
2932 return unit_dbus_path_from_name(u
->invocation_id_string
);
2935 int unit_set_slice(Unit
*u
, Unit
*slice
) {
2939 /* Sets the unit slice if it has not been set before. Is extra
2940 * careful, to only allow this for units that actually have a
2941 * cgroup context. Also, we don't allow to set this for slices
2942 * (since the parent slice is derived from the name). Make
2943 * sure the unit we set is actually a slice. */
2945 if (!UNIT_HAS_CGROUP_CONTEXT(u
))
2948 if (u
->type
== UNIT_SLICE
)
2951 if (unit_active_state(u
) != UNIT_INACTIVE
)
2954 if (slice
->type
!= UNIT_SLICE
)
2957 if (unit_has_name(u
, SPECIAL_INIT_SCOPE
) &&
2958 !unit_has_name(slice
, SPECIAL_ROOT_SLICE
))
2961 if (UNIT_DEREF(u
->slice
) == slice
)
2964 /* Disallow slice changes if @u is already bound to cgroups */
2965 if (UNIT_ISSET(u
->slice
) && u
->cgroup_realized
)
2968 unit_ref_set(&u
->slice
, u
, slice
);
2972 int unit_set_default_slice(Unit
*u
) {
2973 _cleanup_free_
char *b
= NULL
;
2974 const char *slice_name
;
2980 if (UNIT_ISSET(u
->slice
))
2984 _cleanup_free_
char *prefix
= NULL
, *escaped
= NULL
;
2986 /* Implicitly place all instantiated units in their
2987 * own per-template slice */
2989 r
= unit_name_to_prefix(u
->id
, &prefix
);
2993 /* The prefix is already escaped, but it might include
2994 * "-" which has a special meaning for slice units,
2995 * hence escape it here extra. */
2996 escaped
= unit_name_escape(prefix
);
3000 if (MANAGER_IS_SYSTEM(u
->manager
))
3001 b
= strjoin("system-", escaped
, ".slice");
3003 b
= strappend(escaped
, ".slice");
3010 MANAGER_IS_SYSTEM(u
->manager
) && !unit_has_name(u
, SPECIAL_INIT_SCOPE
)
3011 ? SPECIAL_SYSTEM_SLICE
3012 : SPECIAL_ROOT_SLICE
;
3014 r
= manager_load_unit(u
->manager
, slice_name
, NULL
, NULL
, &slice
);
3018 return unit_set_slice(u
, slice
);
3021 const char *unit_slice_name(Unit
*u
) {
3024 if (!UNIT_ISSET(u
->slice
))
3027 return UNIT_DEREF(u
->slice
)->id
;
3030 int unit_load_related_unit(Unit
*u
, const char *type
, Unit
**_found
) {
3031 _cleanup_free_
char *t
= NULL
;
3038 r
= unit_name_change_suffix(u
->id
, type
, &t
);
3041 if (unit_has_name(u
, t
))
3044 r
= manager_load_unit(u
->manager
, t
, NULL
, NULL
, _found
);
3045 assert(r
< 0 || *_found
!= u
);
3049 static int signal_name_owner_changed(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
3050 const char *name
, *old_owner
, *new_owner
;
3057 r
= sd_bus_message_read(message
, "sss", &name
, &old_owner
, &new_owner
);
3059 bus_log_parse_error(r
);
3063 old_owner
= empty_to_null(old_owner
);
3064 new_owner
= empty_to_null(new_owner
);
3066 if (UNIT_VTABLE(u
)->bus_name_owner_change
)
3067 UNIT_VTABLE(u
)->bus_name_owner_change(u
, name
, old_owner
, new_owner
);
3072 int unit_install_bus_match(Unit
*u
, sd_bus
*bus
, const char *name
) {
3079 if (u
->match_bus_slot
)
3082 match
= strjoina("type='signal',"
3083 "sender='org.freedesktop.DBus',"
3084 "path='/org/freedesktop/DBus',"
3085 "interface='org.freedesktop.DBus',"
3086 "member='NameOwnerChanged',"
3087 "arg0='", name
, "'");
3089 return sd_bus_add_match_async(bus
, &u
->match_bus_slot
, match
, signal_name_owner_changed
, NULL
, u
);
3092 int unit_watch_bus_name(Unit
*u
, const char *name
) {
3098 /* Watch a specific name on the bus. We only support one unit
3099 * watching each name for now. */
3101 if (u
->manager
->api_bus
) {
3102 /* If the bus is already available, install the match directly.
3103 * Otherwise, just put the name in the list. bus_setup_api() will take care later. */
3104 r
= unit_install_bus_match(u
, u
->manager
->api_bus
, name
);
3106 return log_warning_errno(r
, "Failed to subscribe to NameOwnerChanged signal for '%s': %m", name
);
3109 r
= hashmap_put(u
->manager
->watch_bus
, name
, u
);
3111 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3112 return log_warning_errno(r
, "Failed to put bus name to hashmap: %m");
3118 void unit_unwatch_bus_name(Unit
*u
, const char *name
) {
3122 (void) hashmap_remove_value(u
->manager
->watch_bus
, name
, u
);
3123 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3126 bool unit_can_serialize(Unit
*u
) {
3129 return UNIT_VTABLE(u
)->serialize
&& UNIT_VTABLE(u
)->deserialize_item
;
3132 static int unit_serialize_cgroup_mask(FILE *f
, const char *key
, CGroupMask mask
) {
3133 _cleanup_free_
char *s
= NULL
;
3140 r
= cg_mask_to_string(mask
, &s
);
3151 static const char *ip_accounting_metric_field
[_CGROUP_IP_ACCOUNTING_METRIC_MAX
] = {
3152 [CGROUP_IP_INGRESS_BYTES
] = "ip-accounting-ingress-bytes",
3153 [CGROUP_IP_INGRESS_PACKETS
] = "ip-accounting-ingress-packets",
3154 [CGROUP_IP_EGRESS_BYTES
] = "ip-accounting-egress-bytes",
3155 [CGROUP_IP_EGRESS_PACKETS
] = "ip-accounting-egress-packets",
3158 int unit_serialize(Unit
*u
, FILE *f
, FDSet
*fds
, bool serialize_jobs
) {
3159 CGroupIPAccountingMetric m
;
3166 if (unit_can_serialize(u
)) {
3167 r
= UNIT_VTABLE(u
)->serialize(u
, f
, fds
);
3172 dual_timestamp_serialize(f
, "state-change-timestamp", &u
->state_change_timestamp
);
3174 dual_timestamp_serialize(f
, "inactive-exit-timestamp", &u
->inactive_exit_timestamp
);
3175 dual_timestamp_serialize(f
, "active-enter-timestamp", &u
->active_enter_timestamp
);
3176 dual_timestamp_serialize(f
, "active-exit-timestamp", &u
->active_exit_timestamp
);
3177 dual_timestamp_serialize(f
, "inactive-enter-timestamp", &u
->inactive_enter_timestamp
);
3179 dual_timestamp_serialize(f
, "condition-timestamp", &u
->condition_timestamp
);
3180 dual_timestamp_serialize(f
, "assert-timestamp", &u
->assert_timestamp
);
3182 if (dual_timestamp_is_set(&u
->condition_timestamp
))
3183 unit_serialize_item(u
, f
, "condition-result", yes_no(u
->condition_result
));
3185 if (dual_timestamp_is_set(&u
->assert_timestamp
))
3186 unit_serialize_item(u
, f
, "assert-result", yes_no(u
->assert_result
));
3188 unit_serialize_item(u
, f
, "transient", yes_no(u
->transient
));
3190 unit_serialize_item(u
, f
, "exported-invocation-id", yes_no(u
->exported_invocation_id
));
3191 unit_serialize_item(u
, f
, "exported-log-level-max", yes_no(u
->exported_log_level_max
));
3192 unit_serialize_item(u
, f
, "exported-log-extra-fields", yes_no(u
->exported_log_extra_fields
));
3194 unit_serialize_item_format(u
, f
, "cpu-usage-base", "%" PRIu64
, u
->cpu_usage_base
);
3195 if (u
->cpu_usage_last
!= NSEC_INFINITY
)
3196 unit_serialize_item_format(u
, f
, "cpu-usage-last", "%" PRIu64
, u
->cpu_usage_last
);
3199 unit_serialize_item(u
, f
, "cgroup", u
->cgroup_path
);
3200 unit_serialize_item(u
, f
, "cgroup-realized", yes_no(u
->cgroup_realized
));
3201 (void) unit_serialize_cgroup_mask(f
, "cgroup-realized-mask", u
->cgroup_realized_mask
);
3202 (void) unit_serialize_cgroup_mask(f
, "cgroup-enabled-mask", u
->cgroup_enabled_mask
);
3203 unit_serialize_item_format(u
, f
, "cgroup-bpf-realized", "%i", u
->cgroup_bpf_state
);
3205 if (uid_is_valid(u
->ref_uid
))
3206 unit_serialize_item_format(u
, f
, "ref-uid", UID_FMT
, u
->ref_uid
);
3207 if (gid_is_valid(u
->ref_gid
))
3208 unit_serialize_item_format(u
, f
, "ref-gid", GID_FMT
, u
->ref_gid
);
3210 if (!sd_id128_is_null(u
->invocation_id
))
3211 unit_serialize_item_format(u
, f
, "invocation-id", SD_ID128_FORMAT_STR
, SD_ID128_FORMAT_VAL(u
->invocation_id
));
3213 bus_track_serialize(u
->bus_track
, f
, "ref");
3215 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++) {
3218 r
= unit_get_ip_accounting(u
, m
, &v
);
3220 unit_serialize_item_format(u
, f
, ip_accounting_metric_field
[m
], "%" PRIu64
, v
);
3223 if (serialize_jobs
) {
3225 fprintf(f
, "job\n");
3226 job_serialize(u
->job
, f
);
3230 fprintf(f
, "job\n");
3231 job_serialize(u
->nop_job
, f
);
3240 int unit_serialize_item(Unit
*u
, FILE *f
, const char *key
, const char *value
) {
3256 int unit_serialize_item_escaped(Unit
*u
, FILE *f
, const char *key
, const char *value
) {
3257 _cleanup_free_
char *c
= NULL
;
3278 int unit_serialize_item_fd(Unit
*u
, FILE *f
, FDSet
*fds
, const char *key
, int fd
) {
3288 copy
= fdset_put_dup(fds
, fd
);
3292 fprintf(f
, "%s=%i\n", key
, copy
);
3296 void unit_serialize_item_format(Unit
*u
, FILE *f
, const char *key
, const char *format
, ...) {
3307 va_start(ap
, format
);
3308 vfprintf(f
, format
, ap
);
3314 int unit_deserialize(Unit
*u
, FILE *f
, FDSet
*fds
) {
3322 char line
[LINE_MAX
], *l
, *v
;
3323 CGroupIPAccountingMetric m
;
3326 if (!fgets(line
, sizeof(line
), f
)) {
3339 k
= strcspn(l
, "=");
3347 if (streq(l
, "job")) {
3349 /* new-style serialized job */
3356 r
= job_deserialize(j
, f
);
3362 r
= hashmap_put(u
->manager
->jobs
, UINT32_TO_PTR(j
->id
), j
);
3368 r
= job_install_deserialized(j
);
3370 hashmap_remove(u
->manager
->jobs
, UINT32_TO_PTR(j
->id
));
3374 } else /* legacy for pre-44 */
3375 log_unit_warning(u
, "Update from too old systemd versions are unsupported, cannot deserialize job: %s", v
);
3377 } else if (streq(l
, "state-change-timestamp")) {
3378 dual_timestamp_deserialize(v
, &u
->state_change_timestamp
);
3380 } else if (streq(l
, "inactive-exit-timestamp")) {
3381 dual_timestamp_deserialize(v
, &u
->inactive_exit_timestamp
);
3383 } else if (streq(l
, "active-enter-timestamp")) {
3384 dual_timestamp_deserialize(v
, &u
->active_enter_timestamp
);
3386 } else if (streq(l
, "active-exit-timestamp")) {
3387 dual_timestamp_deserialize(v
, &u
->active_exit_timestamp
);
3389 } else if (streq(l
, "inactive-enter-timestamp")) {
3390 dual_timestamp_deserialize(v
, &u
->inactive_enter_timestamp
);
3392 } else if (streq(l
, "condition-timestamp")) {
3393 dual_timestamp_deserialize(v
, &u
->condition_timestamp
);
3395 } else if (streq(l
, "assert-timestamp")) {
3396 dual_timestamp_deserialize(v
, &u
->assert_timestamp
);
3398 } else if (streq(l
, "condition-result")) {
3400 r
= parse_boolean(v
);
3402 log_unit_debug(u
, "Failed to parse condition result value %s, ignoring.", v
);
3404 u
->condition_result
= r
;
3408 } else if (streq(l
, "assert-result")) {
3410 r
= parse_boolean(v
);
3412 log_unit_debug(u
, "Failed to parse assert result value %s, ignoring.", v
);
3414 u
->assert_result
= r
;
3418 } else if (streq(l
, "transient")) {
3420 r
= parse_boolean(v
);
3422 log_unit_debug(u
, "Failed to parse transient bool %s, ignoring.", v
);
3428 } else if (streq(l
, "exported-invocation-id")) {
3430 r
= parse_boolean(v
);
3432 log_unit_debug(u
, "Failed to parse exported invocation ID bool %s, ignoring.", v
);
3434 u
->exported_invocation_id
= r
;
3438 } else if (streq(l
, "exported-log-level-max")) {
3440 r
= parse_boolean(v
);
3442 log_unit_debug(u
, "Failed to parse exported log level max bool %s, ignoring.", v
);
3444 u
->exported_log_level_max
= r
;
3448 } else if (streq(l
, "exported-log-extra-fields")) {
3450 r
= parse_boolean(v
);
3452 log_unit_debug(u
, "Failed to parse exported log extra fields bool %s, ignoring.", v
);
3454 u
->exported_log_extra_fields
= r
;
3458 } else if (STR_IN_SET(l
, "cpu-usage-base", "cpuacct-usage-base")) {
3460 r
= safe_atou64(v
, &u
->cpu_usage_base
);
3462 log_unit_debug(u
, "Failed to parse CPU usage base %s, ignoring.", v
);
3466 } else if (streq(l
, "cpu-usage-last")) {
3468 r
= safe_atou64(v
, &u
->cpu_usage_last
);
3470 log_unit_debug(u
, "Failed to read CPU usage last %s, ignoring.", v
);
3474 } else if (streq(l
, "cgroup")) {
3476 r
= unit_set_cgroup_path(u
, v
);
3478 log_unit_debug_errno(u
, r
, "Failed to set cgroup path %s, ignoring: %m", v
);
3480 (void) unit_watch_cgroup(u
);
3483 } else if (streq(l
, "cgroup-realized")) {
3486 b
= parse_boolean(v
);
3488 log_unit_debug(u
, "Failed to parse cgroup-realized bool %s, ignoring.", v
);
3490 u
->cgroup_realized
= b
;
3494 } else if (streq(l
, "cgroup-realized-mask")) {
3496 r
= cg_mask_from_string(v
, &u
->cgroup_realized_mask
);
3498 log_unit_debug(u
, "Failed to parse cgroup-realized-mask %s, ignoring.", v
);
3501 } else if (streq(l
, "cgroup-enabled-mask")) {
3503 r
= cg_mask_from_string(v
, &u
->cgroup_enabled_mask
);
3505 log_unit_debug(u
, "Failed to parse cgroup-enabled-mask %s, ignoring.", v
);
3508 } else if (streq(l
, "cgroup-bpf-realized")) {
3511 r
= safe_atoi(v
, &i
);
3513 log_unit_debug(u
, "Failed to parse cgroup BPF state %s, ignoring.", v
);
3515 u
->cgroup_bpf_state
=
3516 i
< 0 ? UNIT_CGROUP_BPF_INVALIDATED
:
3517 i
> 0 ? UNIT_CGROUP_BPF_ON
:
3518 UNIT_CGROUP_BPF_OFF
;
3522 } else if (streq(l
, "ref-uid")) {
3525 r
= parse_uid(v
, &uid
);
3527 log_unit_debug(u
, "Failed to parse referenced UID %s, ignoring.", v
);
3529 unit_ref_uid_gid(u
, uid
, GID_INVALID
);
3533 } else if (streq(l
, "ref-gid")) {
3536 r
= parse_gid(v
, &gid
);
3538 log_unit_debug(u
, "Failed to parse referenced GID %s, ignoring.", v
);
3540 unit_ref_uid_gid(u
, UID_INVALID
, gid
);
3542 } else if (streq(l
, "ref")) {
3544 r
= strv_extend(&u
->deserialized_refs
, v
);
3549 } else if (streq(l
, "invocation-id")) {
3552 r
= sd_id128_from_string(v
, &id
);
3554 log_unit_debug(u
, "Failed to parse invocation id %s, ignoring.", v
);
3556 r
= unit_set_invocation_id(u
, id
);
3558 log_unit_warning_errno(u
, r
, "Failed to set invocation ID for unit: %m");
3564 /* Check if this is an IP accounting metric serialization field */
3565 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++)
3566 if (streq(l
, ip_accounting_metric_field
[m
]))
3568 if (m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
) {
3571 r
= safe_atou64(v
, &c
);
3573 log_unit_debug(u
, "Failed to parse IP accounting value %s, ignoring.", v
);
3575 u
->ip_accounting_extra
[m
] = c
;
3579 if (unit_can_serialize(u
)) {
3580 r
= exec_runtime_deserialize_compat(u
, l
, v
, fds
);
3582 log_unit_warning(u
, "Failed to deserialize runtime parameter '%s', ignoring.", l
);
3586 /* Returns positive if key was handled by the call */
3590 r
= UNIT_VTABLE(u
)->deserialize_item(u
, l
, v
, fds
);
3592 log_unit_warning(u
, "Failed to deserialize unit parameter '%s', ignoring.", l
);
3596 /* Versions before 228 did not carry a state change timestamp. In this case, take the current time. This is
3597 * useful, so that timeouts based on this timestamp don't trigger too early, and is in-line with the logic from
3598 * before 228 where the base for timeouts was not persistent across reboots. */
3600 if (!dual_timestamp_is_set(&u
->state_change_timestamp
))
3601 dual_timestamp_get(&u
->state_change_timestamp
);
3603 /* Let's make sure that everything that is deserialized also gets any potential new cgroup settings applied
3604 * after we are done. For that we invalidate anything already realized, so that we can realize it again. */
3605 unit_invalidate_cgroup(u
, _CGROUP_MASK_ALL
);
3606 unit_invalidate_cgroup_bpf(u
);
3611 void unit_deserialize_skip(FILE *f
) {
3614 /* Skip serialized data for this unit. We don't know what it is. */
3617 char line
[LINE_MAX
], *l
;
3619 if (!fgets(line
, sizeof line
, f
))
3632 int unit_add_node_dependency(Unit
*u
, const char *what
, bool wants
, UnitDependency dep
, UnitDependencyMask mask
) {
3634 _cleanup_free_
char *e
= NULL
;
3639 /* Adds in links to the device node that this unit is based on */
3643 if (!is_device_path(what
))
3646 /* When device units aren't supported (such as in a
3647 * container), don't create dependencies on them. */
3648 if (!unit_type_supported(UNIT_DEVICE
))
3651 r
= unit_name_from_path(what
, ".device", &e
);
3655 r
= manager_load_unit(u
->manager
, e
, NULL
, NULL
, &device
);
3659 if (dep
== UNIT_REQUIRES
&& device_shall_be_bound_by(device
, u
))
3660 dep
= UNIT_BINDS_TO
;
3662 r
= unit_add_two_dependencies(u
, UNIT_AFTER
,
3663 MANAGER_IS_SYSTEM(u
->manager
) ? dep
: UNIT_WANTS
,
3664 device
, true, mask
);
3669 r
= unit_add_dependency(device
, UNIT_WANTS
, u
, false, mask
);
3677 int unit_coldplug(Unit
*u
) {
3683 /* Make sure we don't enter a loop, when coldplugging
3688 u
->coldplugged
= true;
3690 STRV_FOREACH(i
, u
->deserialized_refs
) {
3691 q
= bus_unit_track_add_name(u
, *i
);
3692 if (q
< 0 && r
>= 0)
3695 u
->deserialized_refs
= strv_free(u
->deserialized_refs
);
3697 if (UNIT_VTABLE(u
)->coldplug
) {
3698 q
= UNIT_VTABLE(u
)->coldplug(u
);
3699 if (q
< 0 && r
>= 0)
3704 q
= job_coldplug(u
->job
);
3705 if (q
< 0 && r
>= 0)
3712 static bool fragment_mtime_newer(const char *path
, usec_t mtime
, bool path_masked
) {
3718 /* If the source is some virtual kernel file system, then we assume we watch it anyway, and hence pretend we
3719 * are never out-of-date. */
3720 if (PATH_STARTSWITH_SET(path
, "/proc", "/sys"))
3723 if (stat(path
, &st
) < 0)
3724 /* What, cannot access this anymore? */
3728 /* For masked files check if they are still so */
3729 return !null_or_empty(&st
);
3731 /* For non-empty files check the mtime */
3732 return timespec_load(&st
.st_mtim
) > mtime
;
3737 bool unit_need_daemon_reload(Unit
*u
) {
3738 _cleanup_strv_free_
char **t
= NULL
;
3743 /* For unit files, we allow masking… */
3744 if (fragment_mtime_newer(u
->fragment_path
, u
->fragment_mtime
,
3745 u
->load_state
== UNIT_MASKED
))
3748 /* Source paths should not be masked… */
3749 if (fragment_mtime_newer(u
->source_path
, u
->source_mtime
, false))
3752 if (u
->load_state
== UNIT_LOADED
)
3753 (void) unit_find_dropin_paths(u
, &t
);
3754 if (!strv_equal(u
->dropin_paths
, t
))
3757 /* … any drop-ins that are masked are simply omitted from the list. */
3758 STRV_FOREACH(path
, u
->dropin_paths
)
3759 if (fragment_mtime_newer(*path
, u
->dropin_mtime
, false))
3765 void unit_reset_failed(Unit
*u
) {
3768 if (UNIT_VTABLE(u
)->reset_failed
)
3769 UNIT_VTABLE(u
)->reset_failed(u
);
3771 RATELIMIT_RESET(u
->start_limit
);
3772 u
->start_limit_hit
= false;
3775 Unit
*unit_following(Unit
*u
) {
3778 if (UNIT_VTABLE(u
)->following
)
3779 return UNIT_VTABLE(u
)->following(u
);
3784 bool unit_stop_pending(Unit
*u
) {
3787 /* This call does check the current state of the unit. It's
3788 * hence useful to be called from state change calls of the
3789 * unit itself, where the state isn't updated yet. This is
3790 * different from unit_inactive_or_pending() which checks both
3791 * the current state and for a queued job. */
3793 return u
->job
&& u
->job
->type
== JOB_STOP
;
3796 bool unit_inactive_or_pending(Unit
*u
) {
3799 /* Returns true if the unit is inactive or going down */
3801 if (UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)))
3804 if (unit_stop_pending(u
))
3810 bool unit_active_or_pending(Unit
*u
) {
3813 /* Returns true if the unit is active or going up */
3815 if (UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)))
3819 IN_SET(u
->job
->type
, JOB_START
, JOB_RELOAD_OR_START
, JOB_RESTART
))
3825 bool unit_will_restart(Unit
*u
) {
3828 if (!UNIT_VTABLE(u
)->will_restart
)
3831 return UNIT_VTABLE(u
)->will_restart(u
);
3834 int unit_kill(Unit
*u
, KillWho w
, int signo
, sd_bus_error
*error
) {
3836 assert(w
>= 0 && w
< _KILL_WHO_MAX
);
3837 assert(SIGNAL_VALID(signo
));
3839 if (!UNIT_VTABLE(u
)->kill
)
3842 return UNIT_VTABLE(u
)->kill(u
, w
, signo
, error
);
3845 static Set
*unit_pid_set(pid_t main_pid
, pid_t control_pid
) {
3849 pid_set
= set_new(NULL
);
3853 /* Exclude the main/control pids from being killed via the cgroup */
3855 r
= set_put(pid_set
, PID_TO_PTR(main_pid
));
3860 if (control_pid
> 0) {
3861 r
= set_put(pid_set
, PID_TO_PTR(control_pid
));
3873 int unit_kill_common(
3879 sd_bus_error
*error
) {
3882 bool killed
= false;
3884 if (IN_SET(who
, KILL_MAIN
, KILL_MAIN_FAIL
)) {
3886 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_PROCESS
, "%s units have no main processes", unit_type_to_string(u
->type
));
3887 else if (main_pid
== 0)
3888 return sd_bus_error_set_const(error
, BUS_ERROR_NO_SUCH_PROCESS
, "No main process to kill");
3891 if (IN_SET(who
, KILL_CONTROL
, KILL_CONTROL_FAIL
)) {
3892 if (control_pid
< 0)
3893 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_PROCESS
, "%s units have no control processes", unit_type_to_string(u
->type
));
3894 else if (control_pid
== 0)
3895 return sd_bus_error_set_const(error
, BUS_ERROR_NO_SUCH_PROCESS
, "No control process to kill");
3898 if (IN_SET(who
, KILL_CONTROL
, KILL_CONTROL_FAIL
, KILL_ALL
, KILL_ALL_FAIL
))
3899 if (control_pid
> 0) {
3900 if (kill(control_pid
, signo
) < 0)
3906 if (IN_SET(who
, KILL_MAIN
, KILL_MAIN_FAIL
, KILL_ALL
, KILL_ALL_FAIL
))
3908 if (kill(main_pid
, signo
) < 0)
3914 if (IN_SET(who
, KILL_ALL
, KILL_ALL_FAIL
) && u
->cgroup_path
) {
3915 _cleanup_set_free_ Set
*pid_set
= NULL
;
3918 /* Exclude the main/control pids from being killed via the cgroup */
3919 pid_set
= unit_pid_set(main_pid
, control_pid
);
3923 q
= cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
, signo
, 0, pid_set
, NULL
, NULL
);
3924 if (q
< 0 && !IN_SET(q
, -EAGAIN
, -ESRCH
, -ENOENT
))
3930 if (r
== 0 && !killed
&& IN_SET(who
, KILL_ALL_FAIL
, KILL_CONTROL_FAIL
))
3936 int unit_following_set(Unit
*u
, Set
**s
) {
3940 if (UNIT_VTABLE(u
)->following_set
)
3941 return UNIT_VTABLE(u
)->following_set(u
, s
);
3947 UnitFileState
unit_get_unit_file_state(Unit
*u
) {
3952 if (u
->unit_file_state
< 0 && u
->fragment_path
) {
3953 r
= unit_file_get_state(
3954 u
->manager
->unit_file_scope
,
3957 &u
->unit_file_state
);
3959 u
->unit_file_state
= UNIT_FILE_BAD
;
3962 return u
->unit_file_state
;
3965 int unit_get_unit_file_preset(Unit
*u
) {
3968 if (u
->unit_file_preset
< 0 && u
->fragment_path
)
3969 u
->unit_file_preset
= unit_file_query_preset(
3970 u
->manager
->unit_file_scope
,
3972 basename(u
->fragment_path
));
3974 return u
->unit_file_preset
;
3977 Unit
* unit_ref_set(UnitRef
*ref
, Unit
*source
, Unit
*target
) {
3983 unit_ref_unset(ref
);
3985 ref
->source
= source
;
3986 ref
->target
= target
;
3987 LIST_PREPEND(refs_by_target
, target
->refs_by_target
, ref
);
3991 void unit_ref_unset(UnitRef
*ref
) {
3997 /* We are about to drop a reference to the unit, make sure the garbage collection has a look at it as it might
3998 * be unreferenced now. */
3999 unit_add_to_gc_queue(ref
->target
);
4001 LIST_REMOVE(refs_by_target
, ref
->target
->refs_by_target
, ref
);
4002 ref
->source
= ref
->target
= NULL
;
4005 static int user_from_unit_name(Unit
*u
, char **ret
) {
4007 static const uint8_t hash_key
[] = {
4008 0x58, 0x1a, 0xaf, 0xe6, 0x28, 0x58, 0x4e, 0x96,
4009 0xb4, 0x4e, 0xf5, 0x3b, 0x8c, 0x92, 0x07, 0xec
4012 _cleanup_free_
char *n
= NULL
;
4015 r
= unit_name_to_prefix(u
->id
, &n
);
4019 if (valid_user_group_name(n
)) {
4025 /* If we can't use the unit name as a user name, then let's hash it and use that */
4026 if (asprintf(ret
, "_du%016" PRIx64
, siphash24(n
, strlen(n
), hash_key
)) < 0)
4032 int unit_patch_contexts(Unit
*u
) {
4040 /* Patch in the manager defaults into the exec and cgroup
4041 * contexts, _after_ the rest of the settings have been
4044 ec
= unit_get_exec_context(u
);
4046 /* This only copies in the ones that need memory */
4047 for (i
= 0; i
< _RLIMIT_MAX
; i
++)
4048 if (u
->manager
->rlimit
[i
] && !ec
->rlimit
[i
]) {
4049 ec
->rlimit
[i
] = newdup(struct rlimit
, u
->manager
->rlimit
[i
], 1);
4054 if (MANAGER_IS_USER(u
->manager
) &&
4055 !ec
->working_directory
) {
4057 r
= get_home_dir(&ec
->working_directory
);
4061 /* Allow user services to run, even if the
4062 * home directory is missing */
4063 ec
->working_directory_missing_ok
= true;
4066 if (ec
->private_devices
)
4067 ec
->capability_bounding_set
&= ~((UINT64_C(1) << CAP_MKNOD
) | (UINT64_C(1) << CAP_SYS_RAWIO
));
4069 if (ec
->protect_kernel_modules
)
4070 ec
->capability_bounding_set
&= ~(UINT64_C(1) << CAP_SYS_MODULE
);
4072 if (ec
->dynamic_user
) {
4074 r
= user_from_unit_name(u
, &ec
->user
);
4080 ec
->group
= strdup(ec
->user
);
4085 /* If the dynamic user option is on, let's make sure that the unit can't leave its UID/GID
4086 * around in the file system or on IPC objects. Hence enforce a strict sandbox. */
4088 ec
->private_tmp
= true;
4089 ec
->remove_ipc
= true;
4090 ec
->protect_system
= PROTECT_SYSTEM_STRICT
;
4091 if (ec
->protect_home
== PROTECT_HOME_NO
)
4092 ec
->protect_home
= PROTECT_HOME_READ_ONLY
;
4096 cc
= unit_get_cgroup_context(u
);
4100 ec
->private_devices
&&
4101 cc
->device_policy
== CGROUP_AUTO
)
4102 cc
->device_policy
= CGROUP_CLOSED
;
4108 ExecContext
*unit_get_exec_context(Unit
*u
) {
4115 offset
= UNIT_VTABLE(u
)->exec_context_offset
;
4119 return (ExecContext
*) ((uint8_t*) u
+ offset
);
4122 KillContext
*unit_get_kill_context(Unit
*u
) {
4129 offset
= UNIT_VTABLE(u
)->kill_context_offset
;
4133 return (KillContext
*) ((uint8_t*) u
+ offset
);
4136 CGroupContext
*unit_get_cgroup_context(Unit
*u
) {
4142 offset
= UNIT_VTABLE(u
)->cgroup_context_offset
;
4146 return (CGroupContext
*) ((uint8_t*) u
+ offset
);
4149 ExecRuntime
*unit_get_exec_runtime(Unit
*u
) {
4155 offset
= UNIT_VTABLE(u
)->exec_runtime_offset
;
4159 return *(ExecRuntime
**) ((uint8_t*) u
+ offset
);
4162 static const char* unit_drop_in_dir(Unit
*u
, UnitWriteFlags flags
) {
4165 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4168 if (u
->transient
) /* Redirect drop-ins for transient units always into the transient directory. */
4169 return u
->manager
->lookup_paths
.transient
;
4171 if (flags
& UNIT_PERSISTENT
)
4172 return u
->manager
->lookup_paths
.persistent_control
;
4174 if (flags
& UNIT_RUNTIME
)
4175 return u
->manager
->lookup_paths
.runtime_control
;
4180 char* unit_escape_setting(const char *s
, UnitWriteFlags flags
, char **buf
) {
4186 /* Escapes the input string as requested. Returns the escaped string. If 'buf' is specified then the allocated
4187 * return buffer pointer is also written to *buf, except if no escaping was necessary, in which case *buf is
4188 * set to NULL, and the input pointer is returned as-is. This means the return value always contains a properly
4189 * escaped version, but *buf when passed only contains a pointer if an allocation was necessary. If *buf is
4190 * not specified, then the return value always needs to be freed. Callers can use this to optimize memory
4193 if (flags
& UNIT_ESCAPE_SPECIFIERS
) {
4194 ret
= specifier_escape(s
);
4201 if (flags
& UNIT_ESCAPE_C
) {
4214 return ret
?: (char*) s
;
4217 return ret
?: strdup(s
);
4220 char* unit_concat_strv(char **l
, UnitWriteFlags flags
) {
4221 _cleanup_free_
char *result
= NULL
;
4222 size_t n
= 0, allocated
= 0;
4225 /* Takes a list of strings, escapes them, and concatenates them. This may be used to format command lines in a
4226 * way suitable for ExecStart= stanzas */
4228 STRV_FOREACH(i
, l
) {
4229 _cleanup_free_
char *buf
= NULL
;
4234 p
= unit_escape_setting(*i
, flags
, &buf
);
4238 a
= (n
> 0) + 1 + strlen(p
) + 1; /* separating space + " + entry + " */
4239 if (!GREEDY_REALLOC(result
, allocated
, n
+ a
+ 1))
4253 if (!GREEDY_REALLOC(result
, allocated
, n
+ 1))
4264 int unit_write_setting(Unit
*u
, UnitWriteFlags flags
, const char *name
, const char *data
) {
4265 _cleanup_free_
char *p
= NULL
, *q
= NULL
, *escaped
= NULL
;
4266 const char *dir
, *wrapped
;
4273 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4276 data
= unit_escape_setting(data
, flags
, &escaped
);
4280 /* Prefix the section header. If we are writing this out as transient file, then let's suppress this if the
4281 * previous section header is the same */
4283 if (flags
& UNIT_PRIVATE
) {
4284 if (!UNIT_VTABLE(u
)->private_section
)
4287 if (!u
->transient_file
|| u
->last_section_private
< 0)
4288 data
= strjoina("[", UNIT_VTABLE(u
)->private_section
, "]\n", data
);
4289 else if (u
->last_section_private
== 0)
4290 data
= strjoina("\n[", UNIT_VTABLE(u
)->private_section
, "]\n", data
);
4292 if (!u
->transient_file
|| u
->last_section_private
< 0)
4293 data
= strjoina("[Unit]\n", data
);
4294 else if (u
->last_section_private
> 0)
4295 data
= strjoina("\n[Unit]\n", data
);
4298 if (u
->transient_file
) {
4299 /* When this is a transient unit file in creation, then let's not create a new drop-in but instead
4300 * write to the transient unit file. */
4301 fputs(data
, u
->transient_file
);
4303 if (!endswith(data
, "\n"))
4304 fputc('\n', u
->transient_file
);
4306 /* Remember which section we wrote this entry to */
4307 u
->last_section_private
= !!(flags
& UNIT_PRIVATE
);
4311 dir
= unit_drop_in_dir(u
, flags
);
4315 wrapped
= strjoina("# This is a drop-in unit file extension, created via \"systemctl set-property\"\n"
4316 "# or an equivalent operation. Do not edit.\n",
4320 r
= drop_in_file(dir
, u
->id
, 50, name
, &p
, &q
);
4324 (void) mkdir_p_label(p
, 0755);
4325 r
= write_string_file_atomic_label(q
, wrapped
);
4329 r
= strv_push(&u
->dropin_paths
, q
);
4334 strv_uniq(u
->dropin_paths
);
4336 u
->dropin_mtime
= now(CLOCK_REALTIME
);
4341 int unit_write_settingf(Unit
*u
, UnitWriteFlags flags
, const char *name
, const char *format
, ...) {
4342 _cleanup_free_
char *p
= NULL
;
4350 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4353 va_start(ap
, format
);
4354 r
= vasprintf(&p
, format
, ap
);
4360 return unit_write_setting(u
, flags
, name
, p
);
4363 int unit_make_transient(Unit
*u
) {
4364 _cleanup_free_
char *path
= NULL
;
4369 if (!UNIT_VTABLE(u
)->can_transient
)
4372 (void) mkdir_p_label(u
->manager
->lookup_paths
.transient
, 0755);
4374 path
= strjoin(u
->manager
->lookup_paths
.transient
, "/", u
->id
);
4378 /* Let's open the file we'll write the transient settings into. This file is kept open as long as we are
4379 * creating the transient, and is closed in unit_load(), as soon as we start loading the file. */
4381 RUN_WITH_UMASK(0022) {
4382 f
= fopen(path
, "we");
4387 safe_fclose(u
->transient_file
);
4388 u
->transient_file
= f
;
4390 free_and_replace(u
->fragment_path
, path
);
4392 u
->source_path
= mfree(u
->source_path
);
4393 u
->dropin_paths
= strv_free(u
->dropin_paths
);
4394 u
->fragment_mtime
= u
->source_mtime
= u
->dropin_mtime
= 0;
4396 u
->load_state
= UNIT_STUB
;
4398 u
->transient
= true;
4400 unit_add_to_dbus_queue(u
);
4401 unit_add_to_gc_queue(u
);
4403 fputs("# This is a transient unit file, created programmatically via the systemd API. Do not edit.\n",
4409 static void log_kill(pid_t pid
, int sig
, void *userdata
) {
4410 _cleanup_free_
char *comm
= NULL
;
4412 (void) get_process_comm(pid
, &comm
);
4414 /* Don't log about processes marked with brackets, under the assumption that these are temporary processes
4415 only, like for example systemd's own PAM stub process. */
4416 if (comm
&& comm
[0] == '(')
4419 log_unit_notice(userdata
,
4420 "Killing process " PID_FMT
" (%s) with signal SIG%s.",
4423 signal_to_string(sig
));
4426 static int operation_to_signal(KillContext
*c
, KillOperation k
) {
4431 case KILL_TERMINATE
:
4432 case KILL_TERMINATE_AND_LOG
:
4433 return c
->kill_signal
;
4442 assert_not_reached("KillOperation unknown");
4446 int unit_kill_context(
4452 bool main_pid_alien
) {
4454 bool wait_for_exit
= false, send_sighup
;
4455 cg_kill_log_func_t log_func
= NULL
;
4461 /* Kill the processes belonging to this unit, in preparation for shutting the unit down.
4462 * Returns > 0 if we killed something worth waiting for, 0 otherwise. */
4464 if (c
->kill_mode
== KILL_NONE
)
4467 sig
= operation_to_signal(c
, k
);
4471 IN_SET(k
, KILL_TERMINATE
, KILL_TERMINATE_AND_LOG
) &&
4474 if (k
!= KILL_TERMINATE
|| IN_SET(sig
, SIGKILL
, SIGABRT
))
4475 log_func
= log_kill
;
4479 log_func(main_pid
, sig
, u
);
4481 r
= kill_and_sigcont(main_pid
, sig
);
4482 if (r
< 0 && r
!= -ESRCH
) {
4483 _cleanup_free_
char *comm
= NULL
;
4484 (void) get_process_comm(main_pid
, &comm
);
4486 log_unit_warning_errno(u
, r
, "Failed to kill main process " PID_FMT
" (%s), ignoring: %m", main_pid
, strna(comm
));
4488 if (!main_pid_alien
)
4489 wait_for_exit
= true;
4491 if (r
!= -ESRCH
&& send_sighup
)
4492 (void) kill(main_pid
, SIGHUP
);
4496 if (control_pid
> 0) {
4498 log_func(control_pid
, sig
, u
);
4500 r
= kill_and_sigcont(control_pid
, sig
);
4501 if (r
< 0 && r
!= -ESRCH
) {
4502 _cleanup_free_
char *comm
= NULL
;
4503 (void) get_process_comm(control_pid
, &comm
);
4505 log_unit_warning_errno(u
, r
, "Failed to kill control process " PID_FMT
" (%s), ignoring: %m", control_pid
, strna(comm
));
4507 wait_for_exit
= true;
4509 if (r
!= -ESRCH
&& send_sighup
)
4510 (void) kill(control_pid
, SIGHUP
);
4514 if (u
->cgroup_path
&&
4515 (c
->kill_mode
== KILL_CONTROL_GROUP
|| (c
->kill_mode
== KILL_MIXED
&& k
== KILL_KILL
))) {
4516 _cleanup_set_free_ Set
*pid_set
= NULL
;
4518 /* Exclude the main/control pids from being killed via the cgroup */
4519 pid_set
= unit_pid_set(main_pid
, control_pid
);
4523 r
= cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
,
4525 CGROUP_SIGCONT
|CGROUP_IGNORE_SELF
,
4529 if (!IN_SET(r
, -EAGAIN
, -ESRCH
, -ENOENT
))
4530 log_unit_warning_errno(u
, r
, "Failed to kill control group %s, ignoring: %m", u
->cgroup_path
);
4534 /* FIXME: For now, on the legacy hierarchy, we will not wait for the cgroup members to die if
4535 * we are running in a container or if this is a delegation unit, simply because cgroup
4536 * notification is unreliable in these cases. It doesn't work at all in containers, and outside
4537 * of containers it can be confused easily by left-over directories in the cgroup — which
4538 * however should not exist in non-delegated units. On the unified hierarchy that's different,
4539 * there we get proper events. Hence rely on them. */
4541 if (cg_unified_controller(SYSTEMD_CGROUP_CONTROLLER
) > 0 ||
4542 (detect_container() == 0 && !unit_cgroup_delegate(u
)))
4543 wait_for_exit
= true;
4548 pid_set
= unit_pid_set(main_pid
, control_pid
);
4552 cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
,
4561 return wait_for_exit
;
4564 int unit_require_mounts_for(Unit
*u
, const char *path
, UnitDependencyMask mask
) {
4565 _cleanup_free_
char *p
= NULL
;
4567 UnitDependencyInfo di
;
4573 /* Registers a unit for requiring a certain path and all its prefixes. We keep a hashtable of these paths in
4574 * the unit (from the path to the UnitDependencyInfo structure indicating how to the dependency came to
4575 * be). However, we build a prefix table for all possible prefixes so that new appearing mount units can easily
4576 * determine which units to make themselves a dependency of. */
4578 if (!path_is_absolute(path
))
4581 r
= hashmap_ensure_allocated(&u
->requires_mounts_for
, &path_hash_ops
);
4589 path
= path_kill_slashes(p
);
4591 if (!path_is_normalized(path
))
4594 if (hashmap_contains(u
->requires_mounts_for
, path
))
4597 di
= (UnitDependencyInfo
) {
4601 r
= hashmap_put(u
->requires_mounts_for
, path
, di
.data
);
4606 prefix
= alloca(strlen(path
) + 1);
4607 PATH_FOREACH_PREFIX_MORE(prefix
, path
) {
4610 x
= hashmap_get(u
->manager
->units_requiring_mounts_for
, prefix
);
4612 _cleanup_free_
char *q
= NULL
;
4614 r
= hashmap_ensure_allocated(&u
->manager
->units_requiring_mounts_for
, &path_hash_ops
);
4626 r
= hashmap_put(u
->manager
->units_requiring_mounts_for
, q
, x
);
4642 int unit_setup_exec_runtime(Unit
*u
) {
4650 offset
= UNIT_VTABLE(u
)->exec_runtime_offset
;
4653 /* Check if there already is an ExecRuntime for this unit? */
4654 rt
= (ExecRuntime
**) ((uint8_t*) u
+ offset
);
4658 /* Try to get it from somebody else */
4659 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_JOINS_NAMESPACE_OF
], i
) {
4660 r
= exec_runtime_acquire(u
->manager
, NULL
, other
->id
, false, rt
);
4665 return exec_runtime_acquire(u
->manager
, unit_get_exec_context(u
), u
->id
, true, rt
);
4668 int unit_setup_dynamic_creds(Unit
*u
) {
4670 DynamicCreds
*dcreds
;
4675 offset
= UNIT_VTABLE(u
)->dynamic_creds_offset
;
4677 dcreds
= (DynamicCreds
*) ((uint8_t*) u
+ offset
);
4679 ec
= unit_get_exec_context(u
);
4682 if (!ec
->dynamic_user
)
4685 return dynamic_creds_acquire(dcreds
, u
->manager
, ec
->user
, ec
->group
);
4688 bool unit_type_supported(UnitType t
) {
4689 if (_unlikely_(t
< 0))
4691 if (_unlikely_(t
>= _UNIT_TYPE_MAX
))
4694 if (!unit_vtable
[t
]->supported
)
4697 return unit_vtable
[t
]->supported();
4700 void unit_warn_if_dir_nonempty(Unit
*u
, const char* where
) {
4706 r
= dir_is_empty(where
);
4707 if (r
> 0 || r
== -ENOTDIR
)
4710 log_unit_warning_errno(u
, r
, "Failed to check directory %s: %m", where
);
4714 log_struct(LOG_NOTICE
,
4715 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR
,
4717 LOG_UNIT_INVOCATION_ID(u
),
4718 LOG_UNIT_MESSAGE(u
, "Directory %s to mount over is not empty, mounting anyway.", where
),
4723 int unit_fail_if_noncanonical(Unit
*u
, const char* where
) {
4724 _cleanup_free_
char *canonical_where
;
4730 r
= chase_symlinks(where
, NULL
, CHASE_NONEXISTENT
, &canonical_where
);
4732 log_unit_debug_errno(u
, r
, "Failed to check %s for symlinks, ignoring: %m", where
);
4736 /* We will happily ignore a trailing slash (or any redundant slashes) */
4737 if (path_equal(where
, canonical_where
))
4740 /* No need to mention "." or "..", they would already have been rejected by unit_name_from_path() */
4742 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR
,
4744 LOG_UNIT_INVOCATION_ID(u
),
4745 LOG_UNIT_MESSAGE(u
, "Mount path %s is not canonical (contains a symlink).", where
),
4752 bool unit_is_pristine(Unit
*u
) {
4755 /* Check if the unit already exists or is already around,
4756 * in a number of different ways. Note that to cater for unit
4757 * types such as slice, we are generally fine with units that
4758 * are marked UNIT_LOADED even though nothing was
4759 * actually loaded, as those unit types don't require a file
4760 * on disk to validly load. */
4762 return !(!IN_SET(u
->load_state
, UNIT_NOT_FOUND
, UNIT_LOADED
) ||
4765 !strv_isempty(u
->dropin_paths
) ||
4770 pid_t
unit_control_pid(Unit
*u
) {
4773 if (UNIT_VTABLE(u
)->control_pid
)
4774 return UNIT_VTABLE(u
)->control_pid(u
);
4779 pid_t
unit_main_pid(Unit
*u
) {
4782 if (UNIT_VTABLE(u
)->main_pid
)
4783 return UNIT_VTABLE(u
)->main_pid(u
);
4788 static void unit_unref_uid_internal(
4792 void (*_manager_unref_uid
)(Manager
*m
, uid_t uid
, bool destroy_now
)) {
4796 assert(_manager_unref_uid
);
4798 /* Generic implementation of both unit_unref_uid() and unit_unref_gid(), under the assumption that uid_t and
4799 * gid_t are actually the same time, with the same validity rules.
4801 * Drops a reference to UID/GID from a unit. */
4803 assert_cc(sizeof(uid_t
) == sizeof(gid_t
));
4804 assert_cc(UID_INVALID
== (uid_t
) GID_INVALID
);
4806 if (!uid_is_valid(*ref_uid
))
4809 _manager_unref_uid(u
->manager
, *ref_uid
, destroy_now
);
4810 *ref_uid
= UID_INVALID
;
4813 void unit_unref_uid(Unit
*u
, bool destroy_now
) {
4814 unit_unref_uid_internal(u
, &u
->ref_uid
, destroy_now
, manager_unref_uid
);
4817 void unit_unref_gid(Unit
*u
, bool destroy_now
) {
4818 unit_unref_uid_internal(u
, (uid_t
*) &u
->ref_gid
, destroy_now
, manager_unref_gid
);
4821 static int unit_ref_uid_internal(
4826 int (*_manager_ref_uid
)(Manager
*m
, uid_t uid
, bool clean_ipc
)) {
4832 assert(uid_is_valid(uid
));
4833 assert(_manager_ref_uid
);
4835 /* Generic implementation of both unit_ref_uid() and unit_ref_guid(), under the assumption that uid_t and gid_t
4836 * are actually the same type, and have the same validity rules.
4838 * Adds a reference on a specific UID/GID to this unit. Each unit referencing the same UID/GID maintains a
4839 * reference so that we can destroy the UID/GID's IPC resources as soon as this is requested and the counter
4842 assert_cc(sizeof(uid_t
) == sizeof(gid_t
));
4843 assert_cc(UID_INVALID
== (uid_t
) GID_INVALID
);
4845 if (*ref_uid
== uid
)
4848 if (uid_is_valid(*ref_uid
)) /* Already set? */
4851 r
= _manager_ref_uid(u
->manager
, uid
, clean_ipc
);
4859 int unit_ref_uid(Unit
*u
, uid_t uid
, bool clean_ipc
) {
4860 return unit_ref_uid_internal(u
, &u
->ref_uid
, uid
, clean_ipc
, manager_ref_uid
);
4863 int unit_ref_gid(Unit
*u
, gid_t gid
, bool clean_ipc
) {
4864 return unit_ref_uid_internal(u
, (uid_t
*) &u
->ref_gid
, (uid_t
) gid
, clean_ipc
, manager_ref_gid
);
4867 static int unit_ref_uid_gid_internal(Unit
*u
, uid_t uid
, gid_t gid
, bool clean_ipc
) {
4872 /* Reference both a UID and a GID in one go. Either references both, or neither. */
4874 if (uid_is_valid(uid
)) {
4875 r
= unit_ref_uid(u
, uid
, clean_ipc
);
4880 if (gid_is_valid(gid
)) {
4881 q
= unit_ref_gid(u
, gid
, clean_ipc
);
4884 unit_unref_uid(u
, false);
4890 return r
> 0 || q
> 0;
4893 int unit_ref_uid_gid(Unit
*u
, uid_t uid
, gid_t gid
) {
4899 c
= unit_get_exec_context(u
);
4901 r
= unit_ref_uid_gid_internal(u
, uid
, gid
, c
? c
->remove_ipc
: false);
4903 return log_unit_warning_errno(u
, r
, "Couldn't add UID/GID reference to unit, proceeding without: %m");
4908 void unit_unref_uid_gid(Unit
*u
, bool destroy_now
) {
4911 unit_unref_uid(u
, destroy_now
);
4912 unit_unref_gid(u
, destroy_now
);
4915 void unit_notify_user_lookup(Unit
*u
, uid_t uid
, gid_t gid
) {
4920 /* This is invoked whenever one of the forked off processes let's us know the UID/GID its user name/group names
4921 * resolved to. We keep track of which UID/GID is currently assigned in order to be able to destroy its IPC
4922 * objects when no service references the UID/GID anymore. */
4924 r
= unit_ref_uid_gid(u
, uid
, gid
);
4926 bus_unit_send_change_signal(u
);
4929 int unit_set_invocation_id(Unit
*u
, sd_id128_t id
) {
4934 /* Set the invocation ID for this unit. If we cannot, this will not roll back, but reset the whole thing. */
4936 if (sd_id128_equal(u
->invocation_id
, id
))
4939 if (!sd_id128_is_null(u
->invocation_id
))
4940 (void) hashmap_remove_value(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
4942 if (sd_id128_is_null(id
)) {
4947 r
= hashmap_ensure_allocated(&u
->manager
->units_by_invocation_id
, &id128_hash_ops
);
4951 u
->invocation_id
= id
;
4952 sd_id128_to_string(id
, u
->invocation_id_string
);
4954 r
= hashmap_put(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
4961 u
->invocation_id
= SD_ID128_NULL
;
4962 u
->invocation_id_string
[0] = 0;
4966 int unit_acquire_invocation_id(Unit
*u
) {
4972 r
= sd_id128_randomize(&id
);
4974 return log_unit_error_errno(u
, r
, "Failed to generate invocation ID for unit: %m");
4976 r
= unit_set_invocation_id(u
, id
);
4978 return log_unit_error_errno(u
, r
, "Failed to set invocation ID for unit: %m");
4983 void unit_set_exec_params(Unit
*u
, ExecParameters
*p
) {
4987 /* Copy parameters from manager */
4988 p
->environment
= u
->manager
->environment
;
4989 p
->confirm_spawn
= manager_get_confirm_spawn(u
->manager
);
4990 p
->cgroup_supported
= u
->manager
->cgroup_supported
;
4991 p
->prefix
= u
->manager
->prefix
;
4992 SET_FLAG(p
->flags
, EXEC_PASS_LOG_UNIT
|EXEC_CHOWN_DIRECTORIES
, MANAGER_IS_SYSTEM(u
->manager
));
4994 /* Copy paramaters from unit */
4995 p
->cgroup_path
= u
->cgroup_path
;
4996 SET_FLAG(p
->flags
, EXEC_CGROUP_DELEGATE
, unit_cgroup_delegate(u
));
4999 int unit_fork_helper_process(Unit
*u
, const char *name
, pid_t
*ret
) {
5005 /* Forks off a helper process and makes sure it is a member of the unit's cgroup. Returns == 0 in the child,
5006 * and > 0 in the parent. The pid parameter is always filled in with the child's PID. */
5008 (void) unit_realize_cgroup(u
);
5010 r
= safe_fork(name
, FORK_REOPEN_LOG
, ret
);
5014 (void) default_signals(SIGNALS_CRASH_HANDLER
, SIGNALS_IGNORE
, -1);
5015 (void) ignore_signals(SIGPIPE
, -1);
5017 (void) prctl(PR_SET_PDEATHSIG
, SIGTERM
);
5019 if (u
->cgroup_path
) {
5020 r
= cg_attach_everywhere(u
->manager
->cgroup_supported
, u
->cgroup_path
, 0, NULL
, NULL
);
5022 log_unit_error_errno(u
, r
, "Failed to join unit cgroup %s: %m", u
->cgroup_path
);
5030 static void unit_update_dependency_mask(Unit
*u
, UnitDependency d
, Unit
*other
, UnitDependencyInfo di
) {
5033 assert(d
< _UNIT_DEPENDENCY_MAX
);
5036 if (di
.origin_mask
== 0 && di
.destination_mask
== 0) {
5037 /* No bit set anymore, let's drop the whole entry */
5038 assert_se(hashmap_remove(u
->dependencies
[d
], other
));
5039 log_unit_debug(u
, "%s lost dependency %s=%s", u
->id
, unit_dependency_to_string(d
), other
->id
);
5041 /* Mask was reduced, let's update the entry */
5042 assert_se(hashmap_update(u
->dependencies
[d
], other
, di
.data
) == 0);
5045 void unit_remove_dependencies(Unit
*u
, UnitDependencyMask mask
) {
5050 /* Removes all dependencies u has on other units marked for ownership by 'mask'. */
5055 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
5059 UnitDependencyInfo di
;
5065 HASHMAP_FOREACH_KEY(di
.data
, other
, u
->dependencies
[d
], i
) {
5068 if ((di
.origin_mask
& ~mask
) == di
.origin_mask
)
5070 di
.origin_mask
&= ~mask
;
5071 unit_update_dependency_mask(u
, d
, other
, di
);
5073 /* We updated the dependency from our unit to the other unit now. But most dependencies
5074 * imply a reverse dependency. Hence, let's delete that one too. For that we go through
5075 * all dependency types on the other unit and delete all those which point to us and
5076 * have the right mask set. */
5078 for (q
= 0; q
< _UNIT_DEPENDENCY_MAX
; q
++) {
5079 UnitDependencyInfo dj
;
5081 dj
.data
= hashmap_get(other
->dependencies
[q
], u
);
5082 if ((dj
.destination_mask
& ~mask
) == dj
.destination_mask
)
5084 dj
.destination_mask
&= ~mask
;
5086 unit_update_dependency_mask(other
, q
, u
, dj
);
5089 unit_add_to_gc_queue(other
);
5099 static int unit_export_invocation_id(Unit
*u
) {
5105 if (u
->exported_invocation_id
)
5108 if (sd_id128_is_null(u
->invocation_id
))
5111 p
= strjoina("/run/systemd/units/invocation:", u
->id
);
5112 r
= symlink_atomic(u
->invocation_id_string
, p
);
5114 return log_unit_debug_errno(u
, r
, "Failed to create invocation ID symlink %s: %m", p
);
5116 u
->exported_invocation_id
= true;
5120 static int unit_export_log_level_max(Unit
*u
, const ExecContext
*c
) {
5128 if (u
->exported_log_level_max
)
5131 if (c
->log_level_max
< 0)
5134 assert(c
->log_level_max
<= 7);
5136 buf
[0] = '0' + c
->log_level_max
;
5139 p
= strjoina("/run/systemd/units/log-level-max:", u
->id
);
5140 r
= symlink_atomic(buf
, p
);
5142 return log_unit_debug_errno(u
, r
, "Failed to create maximum log level symlink %s: %m", p
);
5144 u
->exported_log_level_max
= true;
5148 static int unit_export_log_extra_fields(Unit
*u
, const ExecContext
*c
) {
5149 _cleanup_close_
int fd
= -1;
5150 struct iovec
*iovec
;
5158 if (u
->exported_log_extra_fields
)
5161 if (c
->n_log_extra_fields
<= 0)
5164 sizes
= newa(le64_t
, c
->n_log_extra_fields
);
5165 iovec
= newa(struct iovec
, c
->n_log_extra_fields
* 2);
5167 for (i
= 0; i
< c
->n_log_extra_fields
; i
++) {
5168 sizes
[i
] = htole64(c
->log_extra_fields
[i
].iov_len
);
5170 iovec
[i
*2] = IOVEC_MAKE(sizes
+ i
, sizeof(le64_t
));
5171 iovec
[i
*2+1] = c
->log_extra_fields
[i
];
5174 p
= strjoina("/run/systemd/units/log-extra-fields:", u
->id
);
5175 pattern
= strjoina(p
, ".XXXXXX");
5177 fd
= mkostemp_safe(pattern
);
5179 return log_unit_debug_errno(u
, fd
, "Failed to create extra fields file %s: %m", p
);
5181 n
= writev(fd
, iovec
, c
->n_log_extra_fields
*2);
5183 r
= log_unit_debug_errno(u
, errno
, "Failed to write extra fields: %m");
5187 (void) fchmod(fd
, 0644);
5189 if (rename(pattern
, p
) < 0) {
5190 r
= log_unit_debug_errno(u
, errno
, "Failed to rename extra fields file: %m");
5194 u
->exported_log_extra_fields
= true;
5198 (void) unlink(pattern
);
5202 void unit_export_state_files(Unit
*u
) {
5203 const ExecContext
*c
;
5210 if (!MANAGER_IS_SYSTEM(u
->manager
))
5213 /* Exports a couple of unit properties to /run/systemd/units/, so that journald can quickly query this data
5214 * from there. Ideally, journald would use IPC to query this, like everybody else, but that's hard, as long as
5215 * the IPC system itself and PID 1 also log to the journal.
5217 * Note that these files really shouldn't be considered API for anyone else, as use a runtime file system as
5218 * IPC replacement is not compatible with today's world of file system namespaces. However, this doesn't really
5219 * apply to communication between the journal and systemd, as we assume that these two daemons live in the same
5220 * namespace at least.
5222 * Note that some of the "files" exported here are actually symlinks and not regular files. Symlinks work
5223 * better for storing small bits of data, in particular as we can write them with two system calls, and read
5226 (void) unit_export_invocation_id(u
);
5228 c
= unit_get_exec_context(u
);
5230 (void) unit_export_log_level_max(u
, c
);
5231 (void) unit_export_log_extra_fields(u
, c
);
5235 void unit_unlink_state_files(Unit
*u
) {
5243 if (!MANAGER_IS_SYSTEM(u
->manager
))
5246 /* Undoes the effect of unit_export_state() */
5248 if (u
->exported_invocation_id
) {
5249 p
= strjoina("/run/systemd/units/invocation:", u
->id
);
5252 u
->exported_invocation_id
= false;
5255 if (u
->exported_log_level_max
) {
5256 p
= strjoina("/run/systemd/units/log-level-max:", u
->id
);
5259 u
->exported_log_level_max
= false;
5262 if (u
->exported_log_extra_fields
) {
5263 p
= strjoina("/run/systemd/units/extra-fields:", u
->id
);
5266 u
->exported_log_extra_fields
= false;
5270 int unit_prepare_exec(Unit
*u
) {
5275 /* Prepares everything so that we can fork of a process for this unit */
5277 (void) unit_realize_cgroup(u
);
5279 if (u
->reset_accounting
) {
5280 (void) unit_reset_cpu_accounting(u
);
5281 (void) unit_reset_ip_accounting(u
);
5282 u
->reset_accounting
= false;
5285 unit_export_state_files(u
);
5287 r
= unit_setup_exec_runtime(u
);
5291 r
= unit_setup_dynamic_creds(u
);
5298 static void log_leftover(pid_t pid
, int sig
, void *userdata
) {
5299 _cleanup_free_
char *comm
= NULL
;
5301 (void) get_process_comm(pid
, &comm
);
5303 if (comm
&& comm
[0] == '(') /* Most likely our own helper process (PAM?), ignore */
5306 log_unit_warning(userdata
,
5307 "Found left-over process " PID_FMT
" (%s) in control group while starting unit. Ignoring.\n"
5308 "This usually indicates unclean termination of a previous run, or service implementation deficiencies.",
5312 void unit_warn_leftover_processes(Unit
*u
) {
5315 (void) unit_pick_cgroup_path(u
);
5317 if (!u
->cgroup_path
)
5320 (void) cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
, 0, 0, NULL
, log_leftover
, u
);
5323 bool unit_needs_console(Unit
*u
) {
5325 UnitActiveState state
;
5329 state
= unit_active_state(u
);
5331 if (UNIT_IS_INACTIVE_OR_FAILED(state
))
5334 if (UNIT_VTABLE(u
)->needs_console
)
5335 return UNIT_VTABLE(u
)->needs_console(u
);
5337 /* If this unit type doesn't implement this call, let's use a generic fallback implementation: */
5338 ec
= unit_get_exec_context(u
);
5342 return exec_context_may_touch_console(ec
);
5345 const char *unit_label_path(Unit
*u
) {
5348 /* Returns the file system path to use for MAC access decisions, i.e. the file to read the SELinux label off
5349 * when validating access checks. */
5351 p
= u
->source_path
?: u
->fragment_path
;
5355 /* If a unit is masked, then don't read the SELinux label of /dev/null, as that really makes no sense */
5356 if (path_equal(p
, "/dev/null"))
5362 int unit_pid_attachable(Unit
*u
, pid_t pid
, sd_bus_error
*error
) {
5367 /* Checks whether the specified PID is generally good for attaching, i.e. a valid PID, not our manager itself,
5368 * and not a kernel thread either */
5370 /* First, a simple range check */
5371 if (!pid_is_valid(pid
))
5372 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process identifier " PID_FMT
" is not valid.", pid
);
5374 /* Some extra safety check */
5375 if (pid
== 1 || pid
== getpid_cached())
5376 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process " PID_FMT
" is a manager processs, refusing.", pid
);
5378 /* Don't even begin to bother with kernel threads */
5379 r
= is_kernel_thread(pid
);
5381 return sd_bus_error_setf(error
, SD_BUS_ERROR_UNIX_PROCESS_ID_UNKNOWN
, "Process with ID " PID_FMT
" does not exist.", pid
);
5383 return sd_bus_error_set_errnof(error
, r
, "Failed to determine whether process " PID_FMT
" is a kernel thread: %m", pid
);
5385 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process " PID_FMT
" is a kernel thread, refusing.", pid
);
5390 static const char* const collect_mode_table
[_COLLECT_MODE_MAX
] = {
5391 [COLLECT_INACTIVE
] = "inactive",
5392 [COLLECT_INACTIVE_OR_FAILED
] = "inactive-or-failed",
5395 DEFINE_STRING_TABLE_LOOKUP(collect_mode
, CollectMode
);