1 /* SPDX-License-Identifier: LGPL-2.1+ */
9 #include "sd-messages.h"
11 #include "all-units.h"
12 #include "alloc-util.h"
13 #include "bpf-firewall.h"
14 #include "bus-common-errors.h"
16 #include "cgroup-setup.h"
17 #include "cgroup-util.h"
18 #include "dbus-unit.h"
24 #include "fileio-label.h"
26 #include "format-util.h"
28 #include "id128-util.h"
31 #include "load-dropin.h"
32 #include "load-fragment.h"
35 #include "missing_audit.h"
37 #include "parse-util.h"
38 #include "path-util.h"
39 #include "process-util.h"
41 #include "serialize.h"
43 #include "signal-util.h"
44 #include "sparse-endian.h"
46 #include "specifier.h"
47 #include "stat-util.h"
48 #include "stdio-util.h"
49 #include "string-table.h"
50 #include "string-util.h"
52 #include "terminal-util.h"
53 #include "tmpfile-util.h"
54 #include "umask-util.h"
55 #include "unit-name.h"
57 #include "user-util.h"
60 /* Thresholds for logging at INFO level about resource consumption */
61 #define MENTIONWORTHY_CPU_NSEC (1 * NSEC_PER_SEC)
62 #define MENTIONWORTHY_IO_BYTES (1024 * 1024ULL)
63 #define MENTIONWORTHY_IP_BYTES (0ULL)
65 /* Thresholds for logging at INFO level about resource consumption */
66 #define NOTICEWORTHY_CPU_NSEC (10*60 * NSEC_PER_SEC) /* 10 minutes */
67 #define NOTICEWORTHY_IO_BYTES (10 * 1024 * 1024ULL) /* 10 MB */
68 #define NOTICEWORTHY_IP_BYTES (128 * 1024 * 1024ULL) /* 128 MB */
70 const UnitVTable
* const unit_vtable
[_UNIT_TYPE_MAX
] = {
71 [UNIT_SERVICE
] = &service_vtable
,
72 [UNIT_SOCKET
] = &socket_vtable
,
73 [UNIT_TARGET
] = &target_vtable
,
74 [UNIT_DEVICE
] = &device_vtable
,
75 [UNIT_MOUNT
] = &mount_vtable
,
76 [UNIT_AUTOMOUNT
] = &automount_vtable
,
77 [UNIT_SWAP
] = &swap_vtable
,
78 [UNIT_TIMER
] = &timer_vtable
,
79 [UNIT_PATH
] = &path_vtable
,
80 [UNIT_SLICE
] = &slice_vtable
,
81 [UNIT_SCOPE
] = &scope_vtable
,
84 static void maybe_warn_about_dependency(Unit
*u
, const char *other
, UnitDependency dependency
);
86 Unit
*unit_new(Manager
*m
, size_t size
) {
90 assert(size
>= sizeof(Unit
));
96 u
->names
= set_new(&string_hash_ops
);
101 u
->type
= _UNIT_TYPE_INVALID
;
102 u
->default_dependencies
= true;
103 u
->unit_file_state
= _UNIT_FILE_STATE_INVALID
;
104 u
->unit_file_preset
= -1;
105 u
->on_failure_job_mode
= JOB_REPLACE
;
106 u
->cgroup_control_inotify_wd
= -1;
107 u
->cgroup_memory_inotify_wd
= -1;
108 u
->job_timeout
= USEC_INFINITY
;
109 u
->job_running_timeout
= USEC_INFINITY
;
110 u
->ref_uid
= UID_INVALID
;
111 u
->ref_gid
= GID_INVALID
;
112 u
->cpu_usage_last
= NSEC_INFINITY
;
113 u
->cgroup_invalidated_mask
|= CGROUP_MASK_BPF_FIREWALL
;
114 u
->failure_action_exit_status
= u
->success_action_exit_status
= -1;
116 u
->ip_accounting_ingress_map_fd
= -1;
117 u
->ip_accounting_egress_map_fd
= -1;
118 u
->ipv4_allow_map_fd
= -1;
119 u
->ipv6_allow_map_fd
= -1;
120 u
->ipv4_deny_map_fd
= -1;
121 u
->ipv6_deny_map_fd
= -1;
123 u
->last_section_private
= -1;
125 u
->start_ratelimit
= (RateLimit
) { m
->default_start_limit_interval
, m
->default_start_limit_burst
};
126 u
->auto_stop_ratelimit
= (RateLimit
) { 10 * USEC_PER_SEC
, 16 };
128 for (CGroupIOAccountingMetric i
= 0; i
< _CGROUP_IO_ACCOUNTING_METRIC_MAX
; i
++)
129 u
->io_accounting_last
[i
] = UINT64_MAX
;
134 int unit_new_for_name(Manager
*m
, size_t size
, const char *name
, Unit
**ret
) {
135 _cleanup_(unit_freep
) Unit
*u
= NULL
;
138 u
= unit_new(m
, size
);
142 r
= unit_add_name(u
, name
);
151 bool unit_has_name(const Unit
*u
, const char *name
) {
155 return set_contains(u
->names
, (char*) name
);
158 static void unit_init(Unit
*u
) {
165 assert(u
->type
>= 0);
167 cc
= unit_get_cgroup_context(u
);
169 cgroup_context_init(cc
);
171 /* Copy in the manager defaults into the cgroup
172 * context, _before_ the rest of the settings have
173 * been initialized */
175 cc
->cpu_accounting
= u
->manager
->default_cpu_accounting
;
176 cc
->io_accounting
= u
->manager
->default_io_accounting
;
177 cc
->blockio_accounting
= u
->manager
->default_blockio_accounting
;
178 cc
->memory_accounting
= u
->manager
->default_memory_accounting
;
179 cc
->tasks_accounting
= u
->manager
->default_tasks_accounting
;
180 cc
->ip_accounting
= u
->manager
->default_ip_accounting
;
182 if (u
->type
!= UNIT_SLICE
)
183 cc
->tasks_max
= u
->manager
->default_tasks_max
;
186 ec
= unit_get_exec_context(u
);
188 exec_context_init(ec
);
190 if (MANAGER_IS_SYSTEM(u
->manager
))
191 ec
->keyring_mode
= EXEC_KEYRING_SHARED
;
193 ec
->keyring_mode
= EXEC_KEYRING_INHERIT
;
195 /* User manager might have its umask redefined by PAM or UMask=. In this
196 * case let the units it manages inherit this value by default. They can
197 * still tune this value through their own unit file */
198 (void) get_process_umask(getpid_cached(), &ec
->umask
);
202 kc
= unit_get_kill_context(u
);
204 kill_context_init(kc
);
206 if (UNIT_VTABLE(u
)->init
)
207 UNIT_VTABLE(u
)->init(u
);
210 int unit_add_name(Unit
*u
, const char *text
) {
211 _cleanup_free_
char *s
= NULL
, *i
= NULL
;
218 if (unit_name_is_valid(text
, UNIT_NAME_TEMPLATE
)) {
221 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
222 "instance is not set when adding name '%s': %m", text
);
224 r
= unit_name_replace_instance(text
, u
->instance
, &s
);
226 return log_unit_debug_errno(u
, r
,
227 "failed to build instance name from '%s': %m", text
);
234 if (set_contains(u
->names
, s
))
236 if (hashmap_contains(u
->manager
->units
, s
))
237 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EEXIST
),
238 "unit already exist when adding name '%s': %m", text
);
240 if (!unit_name_is_valid(s
, UNIT_NAME_PLAIN
|UNIT_NAME_INSTANCE
))
241 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
242 "name '%s' is invalid: %m", text
);
244 t
= unit_name_to_type(s
);
246 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
247 "failed to to derive unit type from name '%s': %m", text
);
249 if (u
->type
!= _UNIT_TYPE_INVALID
&& t
!= u
->type
)
250 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
251 "unit type is illegal: u->type(%d) and t(%d) for name '%s': %m",
254 r
= unit_name_to_instance(s
, &i
);
256 return log_unit_debug_errno(u
, r
, "failed to extract instance from name '%s': %m", text
);
258 if (i
&& !unit_type_may_template(t
))
259 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
), "templates are not allowed for name '%s': %m", text
);
261 /* Ensure that this unit is either instanced or not instanced,
262 * but not both. Note that we do allow names with different
263 * instance names however! */
264 if (u
->type
!= _UNIT_TYPE_INVALID
&& !u
->instance
!= !i
)
265 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
266 "instance is illegal: u->type(%d), u->instance(%s) and i(%s) for name '%s': %m",
267 u
->type
, u
->instance
, i
, text
);
269 if (!unit_type_may_alias(t
) && !set_isempty(u
->names
))
270 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(EEXIST
), "symlinks are not allowed for name '%s': %m", text
);
272 if (hashmap_size(u
->manager
->units
) >= MANAGER_MAX_NAMES
)
273 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(E2BIG
), "too many units: %m");
275 r
= set_put(u
->names
, s
);
280 r
= hashmap_put(u
->manager
->units
, s
, u
);
282 (void) set_remove(u
->names
, s
);
283 return log_unit_debug_errno(u
, r
, "add unit to hashmap failed for name '%s': %m", text
);
286 if (u
->type
== _UNIT_TYPE_INVALID
) {
289 u
->instance
= TAKE_PTR(i
);
291 LIST_PREPEND(units_by_type
, u
->manager
->units_by_type
[t
], u
);
298 unit_add_to_dbus_queue(u
);
302 int unit_choose_id(Unit
*u
, const char *name
) {
303 _cleanup_free_
char *t
= NULL
;
310 if (unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
315 r
= unit_name_replace_instance(name
, u
->instance
, &t
);
322 /* Selects one of the names of this unit as the id */
323 s
= set_get(u
->names
, (char*) name
);
327 /* Determine the new instance from the new id */
328 r
= unit_name_to_instance(s
, &i
);
337 unit_add_to_dbus_queue(u
);
342 int unit_set_description(Unit
*u
, const char *description
) {
347 r
= free_and_strdup(&u
->description
, empty_to_null(description
));
351 unit_add_to_dbus_queue(u
);
356 bool unit_may_gc(Unit
*u
) {
357 UnitActiveState state
;
362 /* Checks whether the unit is ready to be unloaded for garbage collection.
363 * Returns true when the unit may be collected, and false if there's some
364 * reason to keep it loaded.
366 * References from other units are *not* checked here. Instead, this is done
367 * in unit_gc_sweep(), but using markers to properly collect dependency loops.
376 state
= unit_active_state(u
);
378 /* If the unit is inactive and failed and no job is queued for it, then release its runtime resources */
379 if (UNIT_IS_INACTIVE_OR_FAILED(state
) &&
380 UNIT_VTABLE(u
)->release_resources
)
381 UNIT_VTABLE(u
)->release_resources(u
);
386 if (sd_bus_track_count(u
->bus_track
) > 0)
389 /* But we keep the unit object around for longer when it is referenced or configured to not be gc'ed */
390 switch (u
->collect_mode
) {
392 case COLLECT_INACTIVE
:
393 if (state
!= UNIT_INACTIVE
)
398 case COLLECT_INACTIVE_OR_FAILED
:
399 if (!IN_SET(state
, UNIT_INACTIVE
, UNIT_FAILED
))
405 assert_not_reached("Unknown garbage collection mode");
408 if (u
->cgroup_path
) {
409 /* If the unit has a cgroup, then check whether there's anything in it. If so, we should stay
410 * around. Units with active processes should never be collected. */
412 r
= cg_is_empty_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
);
414 log_unit_debug_errno(u
, r
, "Failed to determine whether cgroup %s is empty: %m", u
->cgroup_path
);
419 if (UNIT_VTABLE(u
)->may_gc
&& !UNIT_VTABLE(u
)->may_gc(u
))
425 void unit_add_to_load_queue(Unit
*u
) {
427 assert(u
->type
!= _UNIT_TYPE_INVALID
);
429 if (u
->load_state
!= UNIT_STUB
|| u
->in_load_queue
)
432 LIST_PREPEND(load_queue
, u
->manager
->load_queue
, u
);
433 u
->in_load_queue
= true;
436 void unit_add_to_cleanup_queue(Unit
*u
) {
439 if (u
->in_cleanup_queue
)
442 LIST_PREPEND(cleanup_queue
, u
->manager
->cleanup_queue
, u
);
443 u
->in_cleanup_queue
= true;
446 void unit_add_to_gc_queue(Unit
*u
) {
449 if (u
->in_gc_queue
|| u
->in_cleanup_queue
)
455 LIST_PREPEND(gc_queue
, u
->manager
->gc_unit_queue
, u
);
456 u
->in_gc_queue
= true;
459 void unit_add_to_dbus_queue(Unit
*u
) {
461 assert(u
->type
!= _UNIT_TYPE_INVALID
);
463 if (u
->load_state
== UNIT_STUB
|| u
->in_dbus_queue
)
466 /* Shortcut things if nobody cares */
467 if (sd_bus_track_count(u
->manager
->subscribed
) <= 0 &&
468 sd_bus_track_count(u
->bus_track
) <= 0 &&
469 set_isempty(u
->manager
->private_buses
)) {
470 u
->sent_dbus_new_signal
= true;
474 LIST_PREPEND(dbus_queue
, u
->manager
->dbus_unit_queue
, u
);
475 u
->in_dbus_queue
= true;
478 void unit_submit_to_stop_when_unneeded_queue(Unit
*u
) {
481 if (u
->in_stop_when_unneeded_queue
)
484 if (!u
->stop_when_unneeded
)
487 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(u
)))
490 LIST_PREPEND(stop_when_unneeded_queue
, u
->manager
->stop_when_unneeded_queue
, u
);
491 u
->in_stop_when_unneeded_queue
= true;
494 static void bidi_set_free(Unit
*u
, Hashmap
*h
) {
501 /* Frees the hashmap and makes sure we are dropped from the inverse pointers */
503 HASHMAP_FOREACH_KEY(v
, other
, h
, i
) {
504 for (UnitDependency d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
505 hashmap_remove(other
->dependencies
[d
], u
);
507 unit_add_to_gc_queue(other
);
513 static void unit_remove_transient(Unit
*u
) {
521 if (u
->fragment_path
)
522 (void) unlink(u
->fragment_path
);
524 STRV_FOREACH(i
, u
->dropin_paths
) {
525 _cleanup_free_
char *p
= NULL
, *pp
= NULL
;
527 p
= dirname_malloc(*i
); /* Get the drop-in directory from the drop-in file */
531 pp
= dirname_malloc(p
); /* Get the config directory from the drop-in directory */
535 /* Only drop transient drop-ins */
536 if (!path_equal(u
->manager
->lookup_paths
.transient
, pp
))
544 static void unit_free_requires_mounts_for(Unit
*u
) {
548 _cleanup_free_
char *path
;
550 path
= hashmap_steal_first_key(u
->requires_mounts_for
);
554 char s
[strlen(path
) + 1];
556 PATH_FOREACH_PREFIX_MORE(s
, path
) {
560 x
= hashmap_get2(u
->manager
->units_requiring_mounts_for
, s
, (void**) &y
);
564 (void) set_remove(x
, u
);
566 if (set_isempty(x
)) {
567 (void) hashmap_remove(u
->manager
->units_requiring_mounts_for
, y
);
575 u
->requires_mounts_for
= hashmap_free(u
->requires_mounts_for
);
578 static void unit_done(Unit
*u
) {
587 if (UNIT_VTABLE(u
)->done
)
588 UNIT_VTABLE(u
)->done(u
);
590 ec
= unit_get_exec_context(u
);
592 exec_context_done(ec
);
594 cc
= unit_get_cgroup_context(u
);
596 cgroup_context_done(cc
);
599 void unit_free(Unit
*u
) {
606 if (UNIT_ISSET(u
->slice
)) {
607 /* A unit is being dropped from the tree, make sure our parent slice recalculates the member mask */
608 unit_invalidate_cgroup_members_masks(UNIT_DEREF(u
->slice
));
610 /* And make sure the parent is realized again, updating cgroup memberships */
611 unit_add_to_cgroup_realize_queue(UNIT_DEREF(u
->slice
));
614 u
->transient_file
= safe_fclose(u
->transient_file
);
616 if (!MANAGER_IS_RELOADING(u
->manager
))
617 unit_remove_transient(u
);
619 bus_unit_send_removed_signal(u
);
623 unit_dequeue_rewatch_pids(u
);
625 sd_bus_slot_unref(u
->match_bus_slot
);
626 sd_bus_track_unref(u
->bus_track
);
627 u
->deserialized_refs
= strv_free(u
->deserialized_refs
);
628 u
->pending_freezer_message
= sd_bus_message_unref(u
->pending_freezer_message
);
630 unit_free_requires_mounts_for(u
);
632 SET_FOREACH(t
, u
->names
, i
)
633 hashmap_remove_value(u
->manager
->units
, t
, u
);
635 if (!sd_id128_is_null(u
->invocation_id
))
636 hashmap_remove_value(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
650 for (UnitDependency d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
651 bidi_set_free(u
, u
->dependencies
[d
]);
654 manager_unref_console(u
->manager
);
656 unit_release_cgroup(u
);
658 if (!MANAGER_IS_RELOADING(u
->manager
))
659 unit_unlink_state_files(u
);
661 unit_unref_uid_gid(u
, false);
663 (void) manager_update_failed_units(u
->manager
, u
, false);
664 set_remove(u
->manager
->startup_units
, u
);
666 unit_unwatch_all_pids(u
);
668 unit_ref_unset(&u
->slice
);
669 while (u
->refs_by_target
)
670 unit_ref_unset(u
->refs_by_target
);
672 if (u
->type
!= _UNIT_TYPE_INVALID
)
673 LIST_REMOVE(units_by_type
, u
->manager
->units_by_type
[u
->type
], u
);
675 if (u
->in_load_queue
)
676 LIST_REMOVE(load_queue
, u
->manager
->load_queue
, u
);
678 if (u
->in_dbus_queue
)
679 LIST_REMOVE(dbus_queue
, u
->manager
->dbus_unit_queue
, u
);
682 LIST_REMOVE(gc_queue
, u
->manager
->gc_unit_queue
, u
);
684 if (u
->in_cgroup_realize_queue
)
685 LIST_REMOVE(cgroup_realize_queue
, u
->manager
->cgroup_realize_queue
, u
);
687 if (u
->in_cgroup_empty_queue
)
688 LIST_REMOVE(cgroup_empty_queue
, u
->manager
->cgroup_empty_queue
, u
);
690 if (u
->in_cleanup_queue
)
691 LIST_REMOVE(cleanup_queue
, u
->manager
->cleanup_queue
, u
);
693 if (u
->in_target_deps_queue
)
694 LIST_REMOVE(target_deps_queue
, u
->manager
->target_deps_queue
, u
);
696 if (u
->in_stop_when_unneeded_queue
)
697 LIST_REMOVE(stop_when_unneeded_queue
, u
->manager
->stop_when_unneeded_queue
, u
);
699 safe_close(u
->ip_accounting_ingress_map_fd
);
700 safe_close(u
->ip_accounting_egress_map_fd
);
702 safe_close(u
->ipv4_allow_map_fd
);
703 safe_close(u
->ipv6_allow_map_fd
);
704 safe_close(u
->ipv4_deny_map_fd
);
705 safe_close(u
->ipv6_deny_map_fd
);
707 bpf_program_unref(u
->ip_bpf_ingress
);
708 bpf_program_unref(u
->ip_bpf_ingress_installed
);
709 bpf_program_unref(u
->ip_bpf_egress
);
710 bpf_program_unref(u
->ip_bpf_egress_installed
);
712 set_free(u
->ip_bpf_custom_ingress
);
713 set_free(u
->ip_bpf_custom_egress
);
714 set_free(u
->ip_bpf_custom_ingress_installed
);
715 set_free(u
->ip_bpf_custom_egress_installed
);
717 bpf_program_unref(u
->bpf_device_control_installed
);
719 condition_free_list(u
->conditions
);
720 condition_free_list(u
->asserts
);
722 free(u
->description
);
723 strv_free(u
->documentation
);
724 free(u
->fragment_path
);
725 free(u
->source_path
);
726 strv_free(u
->dropin_paths
);
729 free(u
->job_timeout_reboot_arg
);
731 set_free_free(u
->names
);
738 FreezerState
unit_freezer_state(Unit
*u
) {
741 return u
->freezer_state
;
744 int unit_freezer_state_kernel(Unit
*u
, FreezerState
*ret
) {
745 char *values
[1] = {};
750 r
= cg_get_keyed_attribute(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
, "cgroup.events",
751 STRV_MAKE("frozen"), values
);
755 r
= _FREEZER_STATE_INVALID
;
758 if (streq(values
[0], "0"))
760 else if (streq(values
[0], "1"))
770 UnitActiveState
unit_active_state(Unit
*u
) {
773 if (u
->load_state
== UNIT_MERGED
)
774 return unit_active_state(unit_follow_merge(u
));
776 /* After a reload it might happen that a unit is not correctly
777 * loaded but still has a process around. That's why we won't
778 * shortcut failed loading to UNIT_INACTIVE_FAILED. */
780 return UNIT_VTABLE(u
)->active_state(u
);
783 const char* unit_sub_state_to_string(Unit
*u
) {
786 return UNIT_VTABLE(u
)->sub_state_to_string(u
);
789 static int set_complete_move(Set
**s
, Set
**other
) {
797 return set_move(*s
, *other
);
799 *s
= TAKE_PTR(*other
);
804 static int hashmap_complete_move(Hashmap
**s
, Hashmap
**other
) {
812 return hashmap_move(*s
, *other
);
814 *s
= TAKE_PTR(*other
);
819 static int merge_names(Unit
*u
, Unit
*other
) {
827 r
= set_complete_move(&u
->names
, &other
->names
);
831 set_free_free(other
->names
);
835 SET_FOREACH(t
, u
->names
, i
)
836 assert_se(hashmap_replace(u
->manager
->units
, t
, u
) == 0);
841 static int reserve_dependencies(Unit
*u
, Unit
*other
, UnitDependency d
) {
846 assert(d
< _UNIT_DEPENDENCY_MAX
);
849 * If u does not have this dependency set allocated, there is no need
850 * to reserve anything. In that case other's set will be transferred
851 * as a whole to u by complete_move().
853 if (!u
->dependencies
[d
])
856 /* merge_dependencies() will skip a u-on-u dependency */
857 n_reserve
= hashmap_size(other
->dependencies
[d
]) - !!hashmap_get(other
->dependencies
[d
], u
);
859 return hashmap_reserve(u
->dependencies
[d
], n_reserve
);
862 static void merge_dependencies(Unit
*u
, Unit
*other
, const char *other_id
, UnitDependency d
) {
868 /* Merges all dependencies of type 'd' of the unit 'other' into the deps of the unit 'u' */
872 assert(d
< _UNIT_DEPENDENCY_MAX
);
874 /* Fix backwards pointers. Let's iterate through all dependent units of the other unit. */
875 HASHMAP_FOREACH_KEY(v
, back
, other
->dependencies
[d
], i
)
877 /* Let's now iterate through the dependencies of that dependencies of the other units,
878 * looking for pointers back, and let's fix them up, to instead point to 'u'. */
879 for (UnitDependency k
= 0; k
< _UNIT_DEPENDENCY_MAX
; k
++)
881 /* Do not add dependencies between u and itself. */
882 if (hashmap_remove(back
->dependencies
[k
], other
))
883 maybe_warn_about_dependency(u
, other_id
, k
);
885 UnitDependencyInfo di_u
, di_other
;
887 /* Let's drop this dependency between "back" and "other", and let's create it between
888 * "back" and "u" instead. Let's merge the bit masks of the dependency we are moving,
889 * and any such dependency which might already exist */
891 di_other
.data
= hashmap_get(back
->dependencies
[k
], other
);
893 continue; /* dependency isn't set, let's try the next one */
895 di_u
.data
= hashmap_get(back
->dependencies
[k
], u
);
897 UnitDependencyInfo di_merged
= {
898 .origin_mask
= di_u
.origin_mask
| di_other
.origin_mask
,
899 .destination_mask
= di_u
.destination_mask
| di_other
.destination_mask
,
902 r
= hashmap_remove_and_replace(back
->dependencies
[k
], other
, u
, di_merged
.data
);
904 log_warning_errno(r
, "Failed to remove/replace: back=%s other=%s u=%s: %m", back
->id
, other_id
, u
->id
);
907 /* assert_se(hashmap_remove_and_replace(back->dependencies[k], other, u, di_merged.data) >= 0); */
910 /* Also do not move dependencies on u to itself */
911 back
= hashmap_remove(other
->dependencies
[d
], u
);
913 maybe_warn_about_dependency(u
, other_id
, d
);
915 /* The move cannot fail. The caller must have performed a reservation. */
916 assert_se(hashmap_complete_move(&u
->dependencies
[d
], &other
->dependencies
[d
]) == 0);
918 other
->dependencies
[d
] = hashmap_free(other
->dependencies
[d
]);
921 int unit_merge(Unit
*u
, Unit
*other
) {
922 const char *other_id
= NULL
;
927 assert(u
->manager
== other
->manager
);
928 assert(u
->type
!= _UNIT_TYPE_INVALID
);
930 other
= unit_follow_merge(other
);
935 if (u
->type
!= other
->type
)
938 if (!u
->instance
!= !other
->instance
)
941 if (!unit_type_may_alias(u
->type
)) /* Merging only applies to unit names that support aliases */
944 if (!IN_SET(other
->load_state
, UNIT_STUB
, UNIT_NOT_FOUND
))
953 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
957 other_id
= strdupa(other
->id
);
959 /* Make reservations to ensure merge_dependencies() won't fail */
960 for (UnitDependency d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
961 r
= reserve_dependencies(u
, other
, d
);
963 * We don't rollback reservations if we fail. We don't have
964 * a way to undo reservations. A reservation is not a leak.
971 r
= merge_names(u
, other
);
975 /* Redirect all references */
976 while (other
->refs_by_target
)
977 unit_ref_set(other
->refs_by_target
, other
->refs_by_target
->source
, u
);
979 /* Merge dependencies */
980 for (UnitDependency d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
981 merge_dependencies(u
, other
, other_id
, d
);
983 other
->load_state
= UNIT_MERGED
;
984 other
->merged_into
= u
;
986 /* If there is still some data attached to the other node, we
987 * don't need it anymore, and can free it. */
988 if (other
->load_state
!= UNIT_STUB
)
989 if (UNIT_VTABLE(other
)->done
)
990 UNIT_VTABLE(other
)->done(other
);
992 unit_add_to_dbus_queue(u
);
993 unit_add_to_cleanup_queue(other
);
998 int unit_merge_by_name(Unit
*u
, const char *name
) {
999 _cleanup_free_
char *s
= NULL
;
1003 /* Either add name to u, or if a unit with name already exists, merge it with u.
1004 * If name is a template, do the same for name@instance, where instance is u's instance. */
1009 if (unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
1013 r
= unit_name_replace_instance(name
, u
->instance
, &s
);
1020 other
= manager_get_unit(u
->manager
, name
);
1022 return unit_merge(u
, other
);
1024 return unit_add_name(u
, name
);
1027 Unit
* unit_follow_merge(Unit
*u
) {
1030 while (u
->load_state
== UNIT_MERGED
)
1031 assert_se(u
= u
->merged_into
);
1036 int unit_add_exec_dependencies(Unit
*u
, ExecContext
*c
) {
1037 ExecDirectoryType dt
;
1044 if (c
->working_directory
&& !c
->working_directory_missing_ok
) {
1045 r
= unit_require_mounts_for(u
, c
->working_directory
, UNIT_DEPENDENCY_FILE
);
1050 if (c
->root_directory
) {
1051 r
= unit_require_mounts_for(u
, c
->root_directory
, UNIT_DEPENDENCY_FILE
);
1056 if (c
->root_image
) {
1057 r
= unit_require_mounts_for(u
, c
->root_image
, UNIT_DEPENDENCY_FILE
);
1062 for (dt
= 0; dt
< _EXEC_DIRECTORY_TYPE_MAX
; dt
++) {
1063 if (!u
->manager
->prefix
[dt
])
1066 STRV_FOREACH(dp
, c
->directories
[dt
].paths
) {
1067 _cleanup_free_
char *p
;
1069 p
= path_join(u
->manager
->prefix
[dt
], *dp
);
1073 r
= unit_require_mounts_for(u
, p
, UNIT_DEPENDENCY_FILE
);
1079 if (!MANAGER_IS_SYSTEM(u
->manager
))
1082 /* For the following three directory types we need write access, and /var/ is possibly on the root
1083 * fs. Hence order after systemd-remount-fs.service, to ensure things are writable. */
1084 if (!strv_isempty(c
->directories
[EXEC_DIRECTORY_STATE
].paths
) ||
1085 !strv_isempty(c
->directories
[EXEC_DIRECTORY_CACHE
].paths
) ||
1086 !strv_isempty(c
->directories
[EXEC_DIRECTORY_LOGS
].paths
)) {
1087 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_REMOUNT_FS_SERVICE
, true, UNIT_DEPENDENCY_FILE
);
1092 if (c
->private_tmp
) {
1095 FOREACH_STRING(p
, "/tmp", "/var/tmp") {
1096 r
= unit_require_mounts_for(u
, p
, UNIT_DEPENDENCY_FILE
);
1101 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_TMPFILES_SETUP_SERVICE
, true, UNIT_DEPENDENCY_FILE
);
1106 if (c
->root_image
) {
1107 /* We need to wait for /dev/loopX to appear when doing RootImage=, hence let's add an
1108 * implicit dependency on udev */
1110 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_UDEVD_SERVICE
, true, UNIT_DEPENDENCY_FILE
);
1115 if (!IN_SET(c
->std_output
,
1116 EXEC_OUTPUT_JOURNAL
, EXEC_OUTPUT_JOURNAL_AND_CONSOLE
,
1117 EXEC_OUTPUT_KMSG
, EXEC_OUTPUT_KMSG_AND_CONSOLE
) &&
1118 !IN_SET(c
->std_error
,
1119 EXEC_OUTPUT_JOURNAL
, EXEC_OUTPUT_JOURNAL_AND_CONSOLE
,
1120 EXEC_OUTPUT_KMSG
, EXEC_OUTPUT_KMSG_AND_CONSOLE
) &&
1124 /* If syslog or kernel logging is requested (or log namespacing is), make sure our own logging daemon
1127 if (c
->log_namespace
) {
1128 _cleanup_free_
char *socket_unit
= NULL
, *varlink_socket_unit
= NULL
;
1130 r
= unit_name_build_from_type("systemd-journald", c
->log_namespace
, UNIT_SOCKET
, &socket_unit
);
1134 r
= unit_add_two_dependencies_by_name(u
, UNIT_AFTER
, UNIT_REQUIRES
, socket_unit
, true, UNIT_DEPENDENCY_FILE
);
1138 r
= unit_name_build_from_type("systemd-journald-varlink", c
->log_namespace
, UNIT_SOCKET
, &varlink_socket_unit
);
1142 r
= unit_add_two_dependencies_by_name(u
, UNIT_AFTER
, UNIT_REQUIRES
, varlink_socket_unit
, true, UNIT_DEPENDENCY_FILE
);
1146 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_JOURNALD_SOCKET
, true, UNIT_DEPENDENCY_FILE
);
1153 const char *unit_description(Unit
*u
) {
1157 return u
->description
;
1159 return strna(u
->id
);
1162 const char *unit_status_string(Unit
*u
) {
1165 if (u
->manager
->status_unit_format
== STATUS_UNIT_FORMAT_NAME
&& u
->id
)
1168 return unit_description(u
);
1171 static void print_unit_dependency_mask(FILE *f
, const char *kind
, UnitDependencyMask mask
, bool *space
) {
1173 UnitDependencyMask mask
;
1176 { UNIT_DEPENDENCY_FILE
, "file" },
1177 { UNIT_DEPENDENCY_IMPLICIT
, "implicit" },
1178 { UNIT_DEPENDENCY_DEFAULT
, "default" },
1179 { UNIT_DEPENDENCY_UDEV
, "udev" },
1180 { UNIT_DEPENDENCY_PATH
, "path" },
1181 { UNIT_DEPENDENCY_MOUNTINFO_IMPLICIT
, "mountinfo-implicit" },
1182 { UNIT_DEPENDENCY_MOUNTINFO_DEFAULT
, "mountinfo-default" },
1183 { UNIT_DEPENDENCY_PROC_SWAP
, "proc-swap" },
1191 for (i
= 0; i
< ELEMENTSOF(table
); i
++) {
1196 if (FLAGS_SET(mask
, table
[i
].mask
)) {
1204 fputs(table
[i
].name
, f
);
1206 mask
&= ~table
[i
].mask
;
1213 void unit_dump(Unit
*u
, FILE *f
, const char *prefix
) {
1216 const char *prefix2
;
1217 char timestamp
[5][FORMAT_TIMESTAMP_MAX
], timespan
[FORMAT_TIMESPAN_MAX
];
1219 _cleanup_set_free_ Set
*following_set
= NULL
;
1225 assert(u
->type
>= 0);
1227 prefix
= strempty(prefix
);
1228 prefix2
= strjoina(prefix
, "\t");
1234 SET_FOREACH(t
, u
->names
, i
)
1235 if (!streq(t
, u
->id
))
1236 fprintf(f
, "%s\tAlias: %s\n", prefix
, t
);
1239 "%s\tDescription: %s\n"
1240 "%s\tInstance: %s\n"
1241 "%s\tUnit Load State: %s\n"
1242 "%s\tUnit Active State: %s\n"
1243 "%s\tState Change Timestamp: %s\n"
1244 "%s\tInactive Exit Timestamp: %s\n"
1245 "%s\tActive Enter Timestamp: %s\n"
1246 "%s\tActive Exit Timestamp: %s\n"
1247 "%s\tInactive Enter Timestamp: %s\n"
1249 "%s\tNeed Daemon Reload: %s\n"
1250 "%s\tTransient: %s\n"
1251 "%s\tPerpetual: %s\n"
1252 "%s\tGarbage Collection Mode: %s\n"
1255 "%s\tCGroup realized: %s\n",
1256 prefix
, unit_description(u
),
1257 prefix
, strna(u
->instance
),
1258 prefix
, unit_load_state_to_string(u
->load_state
),
1259 prefix
, unit_active_state_to_string(unit_active_state(u
)),
1260 prefix
, strna(format_timestamp(timestamp
[0], sizeof(timestamp
[0]), u
->state_change_timestamp
.realtime
)),
1261 prefix
, strna(format_timestamp(timestamp
[1], sizeof(timestamp
[1]), u
->inactive_exit_timestamp
.realtime
)),
1262 prefix
, strna(format_timestamp(timestamp
[2], sizeof(timestamp
[2]), u
->active_enter_timestamp
.realtime
)),
1263 prefix
, strna(format_timestamp(timestamp
[3], sizeof(timestamp
[3]), u
->active_exit_timestamp
.realtime
)),
1264 prefix
, strna(format_timestamp(timestamp
[4], sizeof(timestamp
[4]), u
->inactive_enter_timestamp
.realtime
)),
1265 prefix
, yes_no(unit_may_gc(u
)),
1266 prefix
, yes_no(unit_need_daemon_reload(u
)),
1267 prefix
, yes_no(u
->transient
),
1268 prefix
, yes_no(u
->perpetual
),
1269 prefix
, collect_mode_to_string(u
->collect_mode
),
1270 prefix
, strna(unit_slice_name(u
)),
1271 prefix
, strna(u
->cgroup_path
),
1272 prefix
, yes_no(u
->cgroup_realized
));
1274 if (u
->cgroup_realized_mask
!= 0) {
1275 _cleanup_free_
char *s
= NULL
;
1276 (void) cg_mask_to_string(u
->cgroup_realized_mask
, &s
);
1277 fprintf(f
, "%s\tCGroup realized mask: %s\n", prefix
, strnull(s
));
1280 if (u
->cgroup_enabled_mask
!= 0) {
1281 _cleanup_free_
char *s
= NULL
;
1282 (void) cg_mask_to_string(u
->cgroup_enabled_mask
, &s
);
1283 fprintf(f
, "%s\tCGroup enabled mask: %s\n", prefix
, strnull(s
));
1286 m
= unit_get_own_mask(u
);
1288 _cleanup_free_
char *s
= NULL
;
1289 (void) cg_mask_to_string(m
, &s
);
1290 fprintf(f
, "%s\tCGroup own mask: %s\n", prefix
, strnull(s
));
1293 m
= unit_get_members_mask(u
);
1295 _cleanup_free_
char *s
= NULL
;
1296 (void) cg_mask_to_string(m
, &s
);
1297 fprintf(f
, "%s\tCGroup members mask: %s\n", prefix
, strnull(s
));
1300 m
= unit_get_delegate_mask(u
);
1302 _cleanup_free_
char *s
= NULL
;
1303 (void) cg_mask_to_string(m
, &s
);
1304 fprintf(f
, "%s\tCGroup delegate mask: %s\n", prefix
, strnull(s
));
1307 if (!sd_id128_is_null(u
->invocation_id
))
1308 fprintf(f
, "%s\tInvocation ID: " SD_ID128_FORMAT_STR
"\n",
1309 prefix
, SD_ID128_FORMAT_VAL(u
->invocation_id
));
1311 STRV_FOREACH(j
, u
->documentation
)
1312 fprintf(f
, "%s\tDocumentation: %s\n", prefix
, *j
);
1314 following
= unit_following(u
);
1316 fprintf(f
, "%s\tFollowing: %s\n", prefix
, following
->id
);
1318 r
= unit_following_set(u
, &following_set
);
1322 SET_FOREACH(other
, following_set
, i
)
1323 fprintf(f
, "%s\tFollowing Set Member: %s\n", prefix
, other
->id
);
1326 if (u
->fragment_path
)
1327 fprintf(f
, "%s\tFragment Path: %s\n", prefix
, u
->fragment_path
);
1330 fprintf(f
, "%s\tSource Path: %s\n", prefix
, u
->source_path
);
1332 STRV_FOREACH(j
, u
->dropin_paths
)
1333 fprintf(f
, "%s\tDropIn Path: %s\n", prefix
, *j
);
1335 if (u
->failure_action
!= EMERGENCY_ACTION_NONE
)
1336 fprintf(f
, "%s\tFailure Action: %s\n", prefix
, emergency_action_to_string(u
->failure_action
));
1337 if (u
->failure_action_exit_status
>= 0)
1338 fprintf(f
, "%s\tFailure Action Exit Status: %i\n", prefix
, u
->failure_action_exit_status
);
1339 if (u
->success_action
!= EMERGENCY_ACTION_NONE
)
1340 fprintf(f
, "%s\tSuccess Action: %s\n", prefix
, emergency_action_to_string(u
->success_action
));
1341 if (u
->success_action_exit_status
>= 0)
1342 fprintf(f
, "%s\tSuccess Action Exit Status: %i\n", prefix
, u
->success_action_exit_status
);
1344 if (u
->job_timeout
!= USEC_INFINITY
)
1345 fprintf(f
, "%s\tJob Timeout: %s\n", prefix
, format_timespan(timespan
, sizeof(timespan
), u
->job_timeout
, 0));
1347 if (u
->job_timeout_action
!= EMERGENCY_ACTION_NONE
)
1348 fprintf(f
, "%s\tJob Timeout Action: %s\n", prefix
, emergency_action_to_string(u
->job_timeout_action
));
1350 if (u
->job_timeout_reboot_arg
)
1351 fprintf(f
, "%s\tJob Timeout Reboot Argument: %s\n", prefix
, u
->job_timeout_reboot_arg
);
1353 condition_dump_list(u
->conditions
, f
, prefix
, condition_type_to_string
);
1354 condition_dump_list(u
->asserts
, f
, prefix
, assert_type_to_string
);
1356 if (dual_timestamp_is_set(&u
->condition_timestamp
))
1358 "%s\tCondition Timestamp: %s\n"
1359 "%s\tCondition Result: %s\n",
1360 prefix
, strna(format_timestamp(timestamp
[0], sizeof(timestamp
[0]), u
->condition_timestamp
.realtime
)),
1361 prefix
, yes_no(u
->condition_result
));
1363 if (dual_timestamp_is_set(&u
->assert_timestamp
))
1365 "%s\tAssert Timestamp: %s\n"
1366 "%s\tAssert Result: %s\n",
1367 prefix
, strna(format_timestamp(timestamp
[0], sizeof(timestamp
[0]), u
->assert_timestamp
.realtime
)),
1368 prefix
, yes_no(u
->assert_result
));
1370 for (UnitDependency d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
1371 UnitDependencyInfo di
;
1374 HASHMAP_FOREACH_KEY(di
.data
, other
, u
->dependencies
[d
], i
) {
1377 fprintf(f
, "%s\t%s: %s (", prefix
, unit_dependency_to_string(d
), other
->id
);
1379 print_unit_dependency_mask(f
, "origin", di
.origin_mask
, &space
);
1380 print_unit_dependency_mask(f
, "destination", di
.destination_mask
, &space
);
1386 if (!hashmap_isempty(u
->requires_mounts_for
)) {
1387 UnitDependencyInfo di
;
1390 HASHMAP_FOREACH_KEY(di
.data
, path
, u
->requires_mounts_for
, i
) {
1393 fprintf(f
, "%s\tRequiresMountsFor: %s (", prefix
, path
);
1395 print_unit_dependency_mask(f
, "origin", di
.origin_mask
, &space
);
1396 print_unit_dependency_mask(f
, "destination", di
.destination_mask
, &space
);
1402 if (u
->load_state
== UNIT_LOADED
) {
1405 "%s\tStopWhenUnneeded: %s\n"
1406 "%s\tRefuseManualStart: %s\n"
1407 "%s\tRefuseManualStop: %s\n"
1408 "%s\tDefaultDependencies: %s\n"
1409 "%s\tOnFailureJobMode: %s\n"
1410 "%s\tIgnoreOnIsolate: %s\n",
1411 prefix
, yes_no(u
->stop_when_unneeded
),
1412 prefix
, yes_no(u
->refuse_manual_start
),
1413 prefix
, yes_no(u
->refuse_manual_stop
),
1414 prefix
, yes_no(u
->default_dependencies
),
1415 prefix
, job_mode_to_string(u
->on_failure_job_mode
),
1416 prefix
, yes_no(u
->ignore_on_isolate
));
1418 if (UNIT_VTABLE(u
)->dump
)
1419 UNIT_VTABLE(u
)->dump(u
, f
, prefix2
);
1421 } else if (u
->load_state
== UNIT_MERGED
)
1423 "%s\tMerged into: %s\n",
1424 prefix
, u
->merged_into
->id
);
1425 else if (u
->load_state
== UNIT_ERROR
)
1426 fprintf(f
, "%s\tLoad Error Code: %s\n", prefix
, strerror_safe(u
->load_error
));
1428 for (n
= sd_bus_track_first(u
->bus_track
); n
; n
= sd_bus_track_next(u
->bus_track
))
1429 fprintf(f
, "%s\tBus Ref: %s\n", prefix
, n
);
1432 job_dump(u
->job
, f
, prefix2
);
1435 job_dump(u
->nop_job
, f
, prefix2
);
1438 /* Common implementation for multiple backends */
1439 int unit_load_fragment_and_dropin(Unit
*u
, bool fragment_required
) {
1444 /* Load a .{service,socket,...} file */
1445 r
= unit_load_fragment(u
);
1449 if (u
->load_state
== UNIT_STUB
) {
1450 if (fragment_required
)
1453 u
->load_state
= UNIT_LOADED
;
1456 /* Load drop-in directory data. If u is an alias, we might be reloading the
1457 * target unit needlessly. But we cannot be sure which drops-ins have already
1458 * been loaded and which not, at least without doing complicated book-keeping,
1459 * so let's always reread all drop-ins. */
1460 return unit_load_dropin(unit_follow_merge(u
));
1463 void unit_add_to_target_deps_queue(Unit
*u
) {
1464 Manager
*m
= u
->manager
;
1468 if (u
->in_target_deps_queue
)
1471 LIST_PREPEND(target_deps_queue
, m
->target_deps_queue
, u
);
1472 u
->in_target_deps_queue
= true;
1475 int unit_add_default_target_dependency(Unit
*u
, Unit
*target
) {
1479 if (target
->type
!= UNIT_TARGET
)
1482 /* Only add the dependency if both units are loaded, so that
1483 * that loop check below is reliable */
1484 if (u
->load_state
!= UNIT_LOADED
||
1485 target
->load_state
!= UNIT_LOADED
)
1488 /* If either side wants no automatic dependencies, then let's
1490 if (!u
->default_dependencies
||
1491 !target
->default_dependencies
)
1494 /* Don't create loops */
1495 if (hashmap_get(target
->dependencies
[UNIT_BEFORE
], u
))
1498 return unit_add_dependency(target
, UNIT_AFTER
, u
, true, UNIT_DEPENDENCY_DEFAULT
);
1501 static int unit_add_slice_dependencies(Unit
*u
) {
1504 if (!UNIT_HAS_CGROUP_CONTEXT(u
))
1507 /* Slice units are implicitly ordered against their parent slices (as this relationship is encoded in the
1508 name), while all other units are ordered based on configuration (as in their case Slice= configures the
1510 UnitDependencyMask mask
= u
->type
== UNIT_SLICE
? UNIT_DEPENDENCY_IMPLICIT
: UNIT_DEPENDENCY_FILE
;
1512 if (UNIT_ISSET(u
->slice
))
1513 return unit_add_two_dependencies(u
, UNIT_AFTER
, UNIT_REQUIRES
, UNIT_DEREF(u
->slice
), true, mask
);
1515 if (unit_has_name(u
, SPECIAL_ROOT_SLICE
))
1518 return unit_add_two_dependencies_by_name(u
, UNIT_AFTER
, UNIT_REQUIRES
, SPECIAL_ROOT_SLICE
, true, mask
);
1521 static int unit_add_mount_dependencies(Unit
*u
) {
1522 UnitDependencyInfo di
;
1529 HASHMAP_FOREACH_KEY(di
.data
, path
, u
->requires_mounts_for
, i
) {
1530 char prefix
[strlen(path
) + 1];
1532 PATH_FOREACH_PREFIX_MORE(prefix
, path
) {
1533 _cleanup_free_
char *p
= NULL
;
1536 r
= unit_name_from_path(prefix
, ".mount", &p
);
1540 m
= manager_get_unit(u
->manager
, p
);
1542 /* Make sure to load the mount unit if
1543 * it exists. If so the dependencies
1544 * on this unit will be added later
1545 * during the loading of the mount
1547 (void) manager_load_unit_prepare(u
->manager
, p
, NULL
, NULL
, &m
);
1553 if (m
->load_state
!= UNIT_LOADED
)
1556 r
= unit_add_dependency(u
, UNIT_AFTER
, m
, true, di
.origin_mask
);
1560 if (m
->fragment_path
) {
1561 r
= unit_add_dependency(u
, UNIT_REQUIRES
, m
, true, di
.origin_mask
);
1571 static int unit_add_startup_units(Unit
*u
) {
1575 c
= unit_get_cgroup_context(u
);
1579 if (c
->startup_cpu_shares
== CGROUP_CPU_SHARES_INVALID
&&
1580 c
->startup_io_weight
== CGROUP_WEIGHT_INVALID
&&
1581 c
->startup_blockio_weight
== CGROUP_BLKIO_WEIGHT_INVALID
)
1584 r
= set_ensure_allocated(&u
->manager
->startup_units
, NULL
);
1588 return set_put(u
->manager
->startup_units
, u
);
1591 int unit_load(Unit
*u
) {
1596 if (u
->in_load_queue
) {
1597 LIST_REMOVE(load_queue
, u
->manager
->load_queue
, u
);
1598 u
->in_load_queue
= false;
1601 if (u
->type
== _UNIT_TYPE_INVALID
)
1604 if (u
->load_state
!= UNIT_STUB
)
1607 if (u
->transient_file
) {
1608 /* Finalize transient file: if this is a transient unit file, as soon as we reach unit_load() the setup
1609 * is complete, hence let's synchronize the unit file we just wrote to disk. */
1611 r
= fflush_and_check(u
->transient_file
);
1615 u
->transient_file
= safe_fclose(u
->transient_file
);
1616 u
->fragment_mtime
= now(CLOCK_REALTIME
);
1619 r
= UNIT_VTABLE(u
)->load(u
);
1623 assert(u
->load_state
!= UNIT_STUB
);
1625 if (u
->load_state
== UNIT_LOADED
) {
1626 unit_add_to_target_deps_queue(u
);
1628 r
= unit_add_slice_dependencies(u
);
1632 r
= unit_add_mount_dependencies(u
);
1636 r
= unit_add_startup_units(u
);
1640 if (u
->on_failure_job_mode
== JOB_ISOLATE
&& hashmap_size(u
->dependencies
[UNIT_ON_FAILURE
]) > 1) {
1641 log_unit_error(u
, "More than one OnFailure= dependencies specified but OnFailureJobMode=isolate set. Refusing.");
1646 if (u
->job_running_timeout
!= USEC_INFINITY
&& u
->job_running_timeout
> u
->job_timeout
)
1647 log_unit_warning(u
, "JobRunningTimeoutSec= is greater than JobTimeoutSec=, it has no effect.");
1649 /* We finished loading, let's ensure our parents recalculate the members mask */
1650 unit_invalidate_cgroup_members_masks(u
);
1653 assert((u
->load_state
!= UNIT_MERGED
) == !u
->merged_into
);
1655 unit_add_to_dbus_queue(unit_follow_merge(u
));
1656 unit_add_to_gc_queue(u
);
1661 /* We convert ENOEXEC errors to the UNIT_BAD_SETTING load state here. Configuration parsing code should hence
1662 * return ENOEXEC to ensure units are placed in this state after loading */
1664 u
->load_state
= u
->load_state
== UNIT_STUB
? UNIT_NOT_FOUND
:
1665 r
== -ENOEXEC
? UNIT_BAD_SETTING
:
1669 unit_add_to_dbus_queue(u
);
1670 unit_add_to_gc_queue(u
);
1672 return log_unit_debug_errno(u
, r
, "Failed to load configuration: %m");
1676 static int log_unit_internal(void *userdata
, int level
, int error
, const char *file
, int line
, const char *func
, const char *format
, ...) {
1681 va_start(ap
, format
);
1683 r
= log_object_internalv(level
, error
, file
, line
, func
,
1684 u
->manager
->unit_log_field
,
1686 u
->manager
->invocation_log_field
,
1687 u
->invocation_id_string
,
1690 r
= log_internalv(level
, error
, file
, line
, func
, format
, ap
);
1696 static bool unit_test_condition(Unit
*u
) {
1697 _cleanup_strv_free_
char **env
= NULL
;
1702 dual_timestamp_get(&u
->condition_timestamp
);
1704 r
= manager_get_effective_environment(u
->manager
, &env
);
1706 log_unit_error_errno(u
, r
, "Failed to determine effective environment: %m");
1707 u
->condition_result
= CONDITION_ERROR
;
1709 u
->condition_result
= condition_test_list(
1712 condition_type_to_string
,
1716 unit_add_to_dbus_queue(u
);
1717 return u
->condition_result
;
1720 static bool unit_test_assert(Unit
*u
) {
1721 _cleanup_strv_free_
char **env
= NULL
;
1726 dual_timestamp_get(&u
->assert_timestamp
);
1728 r
= manager_get_effective_environment(u
->manager
, &env
);
1730 log_unit_error_errno(u
, r
, "Failed to determine effective environment: %m");
1731 u
->assert_result
= CONDITION_ERROR
;
1733 u
->assert_result
= condition_test_list(
1736 assert_type_to_string
,
1740 unit_add_to_dbus_queue(u
);
1741 return u
->assert_result
;
1744 void unit_status_printf(Unit
*u
, StatusType status_type
, const char *status
, const char *unit_status_msg_format
) {
1747 d
= unit_status_string(u
);
1748 if (log_get_show_color())
1749 d
= strjoina(ANSI_HIGHLIGHT
, d
, ANSI_NORMAL
);
1751 DISABLE_WARNING_FORMAT_NONLITERAL
;
1752 manager_status_printf(u
->manager
, status_type
, status
, unit_status_msg_format
, d
);
1756 int unit_test_start_limit(Unit
*u
) {
1761 if (ratelimit_below(&u
->start_ratelimit
)) {
1762 u
->start_limit_hit
= false;
1766 log_unit_warning(u
, "Start request repeated too quickly.");
1767 u
->start_limit_hit
= true;
1769 reason
= strjoina("unit ", u
->id
, " failed");
1771 emergency_action(u
->manager
, u
->start_limit_action
,
1772 EMERGENCY_ACTION_IS_WATCHDOG
|EMERGENCY_ACTION_WARN
,
1773 u
->reboot_arg
, -1, reason
);
1778 bool unit_shall_confirm_spawn(Unit
*u
) {
1781 if (manager_is_confirm_spawn_disabled(u
->manager
))
1784 /* For some reasons units remaining in the same process group
1785 * as PID 1 fail to acquire the console even if it's not used
1786 * by any process. So skip the confirmation question for them. */
1787 return !unit_get_exec_context(u
)->same_pgrp
;
1790 static bool unit_verify_deps(Unit
*u
) {
1797 /* Checks whether all BindsTo= dependencies of this unit are fulfilled — if they are also combined with
1798 * After=. We do not check Requires= or Requisite= here as they only should have an effect on the job
1799 * processing, but do not have any effect afterwards. We don't check BindsTo= dependencies that are not used in
1800 * conjunction with After= as for them any such check would make things entirely racy. */
1802 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], j
) {
1804 if (!hashmap_contains(u
->dependencies
[UNIT_AFTER
], other
))
1807 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(other
))) {
1808 log_unit_notice(u
, "Bound to unit %s, but unit isn't active.", other
->id
);
1816 /* Errors that aren't really errors:
1817 * -EALREADY: Unit is already started.
1818 * -ECOMM: Condition failed
1819 * -EAGAIN: An operation is already in progress. Retry later.
1821 * Errors that are real errors:
1822 * -EBADR: This unit type does not support starting.
1823 * -ECANCELED: Start limit hit, too many requests for now
1824 * -EPROTO: Assert failed
1825 * -EINVAL: Unit not loaded
1826 * -EOPNOTSUPP: Unit type not supported
1827 * -ENOLINK: The necessary dependencies are not fulfilled.
1828 * -ESTALE: This unit has been started before and can't be started a second time
1829 * -ENOENT: This is a triggering unit and unit to trigger is not loaded
1831 int unit_start(Unit
*u
) {
1832 UnitActiveState state
;
1837 /* If this is already started, then this will succeed. Note that this will even succeed if this unit
1838 * is not startable by the user. This is relied on to detect when we need to wait for units and when
1839 * waiting is finished. */
1840 state
= unit_active_state(u
);
1841 if (UNIT_IS_ACTIVE_OR_RELOADING(state
))
1843 if (state
== UNIT_MAINTENANCE
)
1846 /* Units that aren't loaded cannot be started */
1847 if (u
->load_state
!= UNIT_LOADED
)
1850 /* Refuse starting scope units more than once */
1851 if (UNIT_VTABLE(u
)->once_only
&& dual_timestamp_is_set(&u
->inactive_enter_timestamp
))
1854 /* If the conditions failed, don't do anything at all. If we already are activating this call might
1855 * still be useful to speed up activation in case there is some hold-off time, but we don't want to
1856 * recheck the condition in that case. */
1857 if (state
!= UNIT_ACTIVATING
&&
1858 !unit_test_condition(u
))
1859 return log_unit_debug_errno(u
, SYNTHETIC_ERRNO(ECOMM
), "Starting requested but condition failed. Not starting unit.");
1861 /* If the asserts failed, fail the entire job */
1862 if (state
!= UNIT_ACTIVATING
&&
1863 !unit_test_assert(u
))
1864 return log_unit_notice_errno(u
, SYNTHETIC_ERRNO(EPROTO
), "Starting requested but asserts failed.");
1866 /* Units of types that aren't supported cannot be started. Note that we do this test only after the
1867 * condition checks, so that we rather return condition check errors (which are usually not
1868 * considered a true failure) than "not supported" errors (which are considered a failure).
1870 if (!unit_type_supported(u
->type
))
1873 /* Let's make sure that the deps really are in order before we start this. Normally the job engine
1874 * should have taken care of this already, but let's check this here again. After all, our
1875 * dependencies might not be in effect anymore, due to a reload or due to a failed condition. */
1876 if (!unit_verify_deps(u
))
1879 /* Forward to the main object, if we aren't it. */
1880 following
= unit_following(u
);
1882 log_unit_debug(u
, "Redirecting start request from %s to %s.", u
->id
, following
->id
);
1883 return unit_start(following
);
1886 /* If it is stopped, but we cannot start it, then fail */
1887 if (!UNIT_VTABLE(u
)->start
)
1890 /* We don't suppress calls to ->start() here when we are already starting, to allow this request to
1891 * be used as a "hurry up" call, for example when the unit is in some "auto restart" state where it
1892 * waits for a holdoff timer to elapse before it will start again. */
1894 unit_add_to_dbus_queue(u
);
1895 unit_cgroup_freezer_action(u
, FREEZER_THAW
);
1897 return UNIT_VTABLE(u
)->start(u
);
1900 bool unit_can_start(Unit
*u
) {
1903 if (u
->load_state
!= UNIT_LOADED
)
1906 if (!unit_type_supported(u
->type
))
1909 /* Scope units may be started only once */
1910 if (UNIT_VTABLE(u
)->once_only
&& dual_timestamp_is_set(&u
->inactive_exit_timestamp
))
1913 return !!UNIT_VTABLE(u
)->start
;
1916 bool unit_can_isolate(Unit
*u
) {
1919 return unit_can_start(u
) &&
1924 * -EBADR: This unit type does not support stopping.
1925 * -EALREADY: Unit is already stopped.
1926 * -EAGAIN: An operation is already in progress. Retry later.
1928 int unit_stop(Unit
*u
) {
1929 UnitActiveState state
;
1934 state
= unit_active_state(u
);
1935 if (UNIT_IS_INACTIVE_OR_FAILED(state
))
1938 following
= unit_following(u
);
1940 log_unit_debug(u
, "Redirecting stop request from %s to %s.", u
->id
, following
->id
);
1941 return unit_stop(following
);
1944 if (!UNIT_VTABLE(u
)->stop
)
1947 unit_add_to_dbus_queue(u
);
1948 unit_cgroup_freezer_action(u
, FREEZER_THAW
);
1950 return UNIT_VTABLE(u
)->stop(u
);
1953 bool unit_can_stop(Unit
*u
) {
1956 if (!unit_type_supported(u
->type
))
1962 return !!UNIT_VTABLE(u
)->stop
;
1966 * -EBADR: This unit type does not support reloading.
1967 * -ENOEXEC: Unit is not started.
1968 * -EAGAIN: An operation is already in progress. Retry later.
1970 int unit_reload(Unit
*u
) {
1971 UnitActiveState state
;
1976 if (u
->load_state
!= UNIT_LOADED
)
1979 if (!unit_can_reload(u
))
1982 state
= unit_active_state(u
);
1983 if (state
== UNIT_RELOADING
)
1986 if (state
!= UNIT_ACTIVE
) {
1987 log_unit_warning(u
, "Unit cannot be reloaded because it is inactive.");
1991 following
= unit_following(u
);
1993 log_unit_debug(u
, "Redirecting reload request from %s to %s.", u
->id
, following
->id
);
1994 return unit_reload(following
);
1997 unit_add_to_dbus_queue(u
);
1999 if (!UNIT_VTABLE(u
)->reload
) {
2000 /* Unit doesn't have a reload function, but we need to propagate the reload anyway */
2001 unit_notify(u
, unit_active_state(u
), unit_active_state(u
), 0);
2005 unit_cgroup_freezer_action(u
, FREEZER_THAW
);
2007 return UNIT_VTABLE(u
)->reload(u
);
2010 bool unit_can_reload(Unit
*u
) {
2013 if (UNIT_VTABLE(u
)->can_reload
)
2014 return UNIT_VTABLE(u
)->can_reload(u
);
2016 if (!hashmap_isempty(u
->dependencies
[UNIT_PROPAGATES_RELOAD_TO
]))
2019 return UNIT_VTABLE(u
)->reload
;
2022 bool unit_is_unneeded(Unit
*u
) {
2023 static const UnitDependency deps
[] = {
2033 if (!u
->stop_when_unneeded
)
2036 /* Don't clean up while the unit is transitioning or is even inactive. */
2037 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(u
)))
2042 for (j
= 0; j
< ELEMENTSOF(deps
); j
++) {
2047 /* If a dependent unit has a job queued, is active or transitioning, or is marked for
2048 * restart, then don't clean this one up. */
2050 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[deps
[j
]], i
) {
2054 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
2057 if (unit_will_restart(other
))
2065 static void check_unneeded_dependencies(Unit
*u
) {
2067 static const UnitDependency deps
[] = {
2077 /* Add all units this unit depends on to the queue that processes StopWhenUnneeded= behaviour. */
2079 for (j
= 0; j
< ELEMENTSOF(deps
); j
++) {
2084 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[deps
[j
]], i
)
2085 unit_submit_to_stop_when_unneeded_queue(other
);
2089 static void unit_check_binds_to(Unit
*u
) {
2090 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
2102 if (unit_active_state(u
) != UNIT_ACTIVE
)
2105 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
) {
2109 if (!other
->coldplugged
)
2110 /* We might yet create a job for the other unit… */
2113 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
2123 /* If stopping a unit fails continuously we might enter a stop
2124 * loop here, hence stop acting on the service being
2125 * unnecessary after a while. */
2126 if (!ratelimit_below(&u
->auto_stop_ratelimit
)) {
2127 log_unit_warning(u
, "Unit is bound to inactive unit %s, but not stopping since we tried this too often recently.", other
->id
);
2132 log_unit_info(u
, "Unit is bound to inactive unit %s. Stopping, too.", other
->id
);
2134 /* A unit we need to run is gone. Sniff. Let's stop this. */
2135 r
= manager_add_job(u
->manager
, JOB_STOP
, u
, JOB_FAIL
, NULL
, &error
, NULL
);
2137 log_unit_warning_errno(u
, r
, "Failed to enqueue stop job, ignoring: %s", bus_error_message(&error
, r
));
2140 static void retroactively_start_dependencies(Unit
*u
) {
2146 assert(UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)));
2148 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_REQUIRES
], i
)
2149 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2150 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2151 manager_add_job(u
->manager
, JOB_START
, other
, JOB_REPLACE
, NULL
, NULL
, NULL
);
2153 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
)
2154 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2155 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2156 manager_add_job(u
->manager
, JOB_START
, other
, JOB_REPLACE
, NULL
, NULL
, NULL
);
2158 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_WANTS
], i
)
2159 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2160 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2161 manager_add_job(u
->manager
, JOB_START
, other
, JOB_FAIL
, NULL
, NULL
, NULL
);
2163 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_CONFLICTS
], i
)
2164 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2165 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
, NULL
);
2167 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_CONFLICTED_BY
], i
)
2168 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2169 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
, NULL
);
2172 static void retroactively_stop_dependencies(Unit
*u
) {
2178 assert(UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)));
2180 /* Pull down units which are bound to us recursively if enabled */
2181 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BOUND_BY
], i
)
2182 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2183 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
, NULL
);
2186 void unit_start_on_failure(Unit
*u
) {
2194 if (hashmap_size(u
->dependencies
[UNIT_ON_FAILURE
]) <= 0)
2197 log_unit_info(u
, "Triggering OnFailure= dependencies.");
2199 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_ON_FAILURE
], i
) {
2200 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
2202 r
= manager_add_job(u
->manager
, JOB_START
, other
, u
->on_failure_job_mode
, NULL
, &error
, NULL
);
2204 log_unit_warning_errno(u
, r
, "Failed to enqueue OnFailure= job, ignoring: %s", bus_error_message(&error
, r
));
2208 void unit_trigger_notify(Unit
*u
) {
2215 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_TRIGGERED_BY
], i
)
2216 if (UNIT_VTABLE(other
)->trigger_notify
)
2217 UNIT_VTABLE(other
)->trigger_notify(other
, u
);
2220 static int raise_level(int log_level
, bool condition_info
, bool condition_notice
) {
2221 if (condition_notice
&& log_level
> LOG_NOTICE
)
2223 if (condition_info
&& log_level
> LOG_INFO
)
2228 static int unit_log_resources(Unit
*u
) {
2229 struct iovec iovec
[1 + _CGROUP_IP_ACCOUNTING_METRIC_MAX
+ _CGROUP_IO_ACCOUNTING_METRIC_MAX
+ 4];
2230 bool any_traffic
= false, have_ip_accounting
= false, any_io
= false, have_io_accounting
= false;
2231 _cleanup_free_
char *igress
= NULL
, *egress
= NULL
, *rr
= NULL
, *wr
= NULL
;
2232 int log_level
= LOG_DEBUG
; /* May be raised if resources consumed over a threshold */
2233 size_t n_message_parts
= 0, n_iovec
= 0;
2234 char* message_parts
[1 + 2 + 2 + 1], *t
;
2235 nsec_t nsec
= NSEC_INFINITY
;
2236 CGroupIPAccountingMetric m
;
2239 const char* const ip_fields
[_CGROUP_IP_ACCOUNTING_METRIC_MAX
] = {
2240 [CGROUP_IP_INGRESS_BYTES
] = "IP_METRIC_INGRESS_BYTES",
2241 [CGROUP_IP_INGRESS_PACKETS
] = "IP_METRIC_INGRESS_PACKETS",
2242 [CGROUP_IP_EGRESS_BYTES
] = "IP_METRIC_EGRESS_BYTES",
2243 [CGROUP_IP_EGRESS_PACKETS
] = "IP_METRIC_EGRESS_PACKETS",
2245 const char* const io_fields
[_CGROUP_IO_ACCOUNTING_METRIC_MAX
] = {
2246 [CGROUP_IO_READ_BYTES
] = "IO_METRIC_READ_BYTES",
2247 [CGROUP_IO_WRITE_BYTES
] = "IO_METRIC_WRITE_BYTES",
2248 [CGROUP_IO_READ_OPERATIONS
] = "IO_METRIC_READ_OPERATIONS",
2249 [CGROUP_IO_WRITE_OPERATIONS
] = "IO_METRIC_WRITE_OPERATIONS",
2254 /* Invoked whenever a unit enters failed or dead state. Logs information about consumed resources if resource
2255 * accounting was enabled for a unit. It does this in two ways: a friendly human readable string with reduced
2256 * information and the complete data in structured fields. */
2258 (void) unit_get_cpu_usage(u
, &nsec
);
2259 if (nsec
!= NSEC_INFINITY
) {
2260 char buf
[FORMAT_TIMESPAN_MAX
] = "";
2262 /* Format the CPU time for inclusion in the structured log message */
2263 if (asprintf(&t
, "CPU_USAGE_NSEC=%" PRIu64
, nsec
) < 0) {
2267 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2269 /* Format the CPU time for inclusion in the human language message string */
2270 format_timespan(buf
, sizeof(buf
), nsec
/ NSEC_PER_USEC
, USEC_PER_MSEC
);
2271 t
= strjoin("consumed ", buf
, " CPU time");
2277 message_parts
[n_message_parts
++] = t
;
2279 log_level
= raise_level(log_level
,
2280 nsec
> NOTICEWORTHY_CPU_NSEC
,
2281 nsec
> MENTIONWORTHY_CPU_NSEC
);
2284 for (CGroupIOAccountingMetric k
= 0; k
< _CGROUP_IO_ACCOUNTING_METRIC_MAX
; k
++) {
2285 char buf
[FORMAT_BYTES_MAX
] = "";
2286 uint64_t value
= UINT64_MAX
;
2288 assert(io_fields
[k
]);
2290 (void) unit_get_io_accounting(u
, k
, k
> 0, &value
);
2291 if (value
== UINT64_MAX
)
2294 have_io_accounting
= true;
2298 /* Format IO accounting data for inclusion in the structured log message */
2299 if (asprintf(&t
, "%s=%" PRIu64
, io_fields
[k
], value
) < 0) {
2303 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2305 /* Format the IO accounting data for inclusion in the human language message string, but only
2306 * for the bytes counters (and not for the operations counters) */
2307 if (k
== CGROUP_IO_READ_BYTES
) {
2309 rr
= strjoin("read ", format_bytes(buf
, sizeof(buf
), value
), " from disk");
2314 } else if (k
== CGROUP_IO_WRITE_BYTES
) {
2316 wr
= strjoin("written ", format_bytes(buf
, sizeof(buf
), value
), " to disk");
2323 if (IN_SET(k
, CGROUP_IO_READ_BYTES
, CGROUP_IO_WRITE_BYTES
))
2324 log_level
= raise_level(log_level
,
2325 value
> MENTIONWORTHY_IO_BYTES
,
2326 value
> NOTICEWORTHY_IO_BYTES
);
2329 if (have_io_accounting
) {
2332 message_parts
[n_message_parts
++] = TAKE_PTR(rr
);
2334 message_parts
[n_message_parts
++] = TAKE_PTR(wr
);
2339 k
= strdup("no IO");
2345 message_parts
[n_message_parts
++] = k
;
2349 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++) {
2350 char buf
[FORMAT_BYTES_MAX
] = "";
2351 uint64_t value
= UINT64_MAX
;
2353 assert(ip_fields
[m
]);
2355 (void) unit_get_ip_accounting(u
, m
, &value
);
2356 if (value
== UINT64_MAX
)
2359 have_ip_accounting
= true;
2363 /* Format IP accounting data for inclusion in the structured log message */
2364 if (asprintf(&t
, "%s=%" PRIu64
, ip_fields
[m
], value
) < 0) {
2368 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2370 /* Format the IP accounting data for inclusion in the human language message string, but only for the
2371 * bytes counters (and not for the packets counters) */
2372 if (m
== CGROUP_IP_INGRESS_BYTES
) {
2374 igress
= strjoin("received ", format_bytes(buf
, sizeof(buf
), value
), " IP traffic");
2379 } else if (m
== CGROUP_IP_EGRESS_BYTES
) {
2381 egress
= strjoin("sent ", format_bytes(buf
, sizeof(buf
), value
), " IP traffic");
2388 if (IN_SET(m
, CGROUP_IP_INGRESS_BYTES
, CGROUP_IP_EGRESS_BYTES
))
2389 log_level
= raise_level(log_level
,
2390 value
> MENTIONWORTHY_IP_BYTES
,
2391 value
> NOTICEWORTHY_IP_BYTES
);
2394 if (have_ip_accounting
) {
2397 message_parts
[n_message_parts
++] = TAKE_PTR(igress
);
2399 message_parts
[n_message_parts
++] = TAKE_PTR(egress
);
2404 k
= strdup("no IP traffic");
2410 message_parts
[n_message_parts
++] = k
;
2414 /* Is there any accounting data available at all? */
2420 if (n_message_parts
== 0)
2421 t
= strjoina("MESSAGE=", u
->id
, ": Completed.");
2423 _cleanup_free_
char *joined
;
2425 message_parts
[n_message_parts
] = NULL
;
2427 joined
= strv_join(message_parts
, ", ");
2433 joined
[0] = ascii_toupper(joined
[0]);
2434 t
= strjoina("MESSAGE=", u
->id
, ": ", joined
, ".");
2437 /* The following four fields we allocate on the stack or are static strings, we hence don't want to free them,
2438 * and hence don't increase n_iovec for them */
2439 iovec
[n_iovec
] = IOVEC_MAKE_STRING(t
);
2440 iovec
[n_iovec
+ 1] = IOVEC_MAKE_STRING("MESSAGE_ID=" SD_MESSAGE_UNIT_RESOURCES_STR
);
2442 t
= strjoina(u
->manager
->unit_log_field
, u
->id
);
2443 iovec
[n_iovec
+ 2] = IOVEC_MAKE_STRING(t
);
2445 t
= strjoina(u
->manager
->invocation_log_field
, u
->invocation_id_string
);
2446 iovec
[n_iovec
+ 3] = IOVEC_MAKE_STRING(t
);
2448 log_struct_iovec(log_level
, iovec
, n_iovec
+ 4);
2452 for (i
= 0; i
< n_message_parts
; i
++)
2453 free(message_parts
[i
]);
2455 for (i
= 0; i
< n_iovec
; i
++)
2456 free(iovec
[i
].iov_base
);
2462 static void unit_update_on_console(Unit
*u
) {
2467 b
= unit_needs_console(u
);
2468 if (u
->on_console
== b
)
2473 manager_ref_console(u
->manager
);
2475 manager_unref_console(u
->manager
);
2478 static void unit_emit_audit_start(Unit
*u
) {
2481 if (u
->type
!= UNIT_SERVICE
)
2484 /* Write audit record if we have just finished starting up */
2485 manager_send_unit_audit(u
->manager
, u
, AUDIT_SERVICE_START
, true);
2489 static void unit_emit_audit_stop(Unit
*u
, UnitActiveState state
) {
2492 if (u
->type
!= UNIT_SERVICE
)
2496 /* Write audit record if we have just finished shutting down */
2497 manager_send_unit_audit(u
->manager
, u
, AUDIT_SERVICE_STOP
, state
== UNIT_INACTIVE
);
2498 u
->in_audit
= false;
2500 /* Hmm, if there was no start record written write it now, so that we always have a nice pair */
2501 manager_send_unit_audit(u
->manager
, u
, AUDIT_SERVICE_START
, state
== UNIT_INACTIVE
);
2503 if (state
== UNIT_INACTIVE
)
2504 manager_send_unit_audit(u
->manager
, u
, AUDIT_SERVICE_STOP
, true);
2508 static bool unit_process_job(Job
*j
, UnitActiveState ns
, UnitNotifyFlags flags
) {
2509 bool unexpected
= false;
2514 if (j
->state
== JOB_WAITING
)
2516 /* So we reached a different state for this job. Let's see if we can run it now if it failed previously
2518 job_add_to_run_queue(j
);
2520 /* Let's check whether the unit's new state constitutes a finished job, or maybe contradicts a running job and
2521 * hence needs to invalidate jobs. */
2526 case JOB_VERIFY_ACTIVE
:
2528 if (UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2529 job_finish_and_invalidate(j
, JOB_DONE
, true, false);
2530 else if (j
->state
== JOB_RUNNING
&& ns
!= UNIT_ACTIVATING
) {
2533 if (UNIT_IS_INACTIVE_OR_FAILED(ns
)) {
2534 if (ns
== UNIT_FAILED
)
2535 result
= JOB_FAILED
;
2536 else if (FLAGS_SET(flags
, UNIT_NOTIFY_SKIP_CONDITION
))
2537 result
= JOB_SKIPPED
;
2541 job_finish_and_invalidate(j
, result
, true, false);
2548 case JOB_RELOAD_OR_START
:
2549 case JOB_TRY_RELOAD
:
2551 if (j
->state
== JOB_RUNNING
) {
2552 if (ns
== UNIT_ACTIVE
)
2553 job_finish_and_invalidate(j
, (flags
& UNIT_NOTIFY_RELOAD_FAILURE
) ? JOB_FAILED
: JOB_DONE
, true, false);
2554 else if (!IN_SET(ns
, UNIT_ACTIVATING
, UNIT_RELOADING
)) {
2557 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2558 job_finish_and_invalidate(j
, ns
== UNIT_FAILED
? JOB_FAILED
: JOB_DONE
, true, false);
2566 case JOB_TRY_RESTART
:
2568 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2569 job_finish_and_invalidate(j
, JOB_DONE
, true, false);
2570 else if (j
->state
== JOB_RUNNING
&& ns
!= UNIT_DEACTIVATING
) {
2572 job_finish_and_invalidate(j
, JOB_FAILED
, true, false);
2578 assert_not_reached("Job type unknown");
2584 void unit_notify(Unit
*u
, UnitActiveState os
, UnitActiveState ns
, UnitNotifyFlags flags
) {
2589 assert(os
< _UNIT_ACTIVE_STATE_MAX
);
2590 assert(ns
< _UNIT_ACTIVE_STATE_MAX
);
2592 /* Note that this is called for all low-level state changes, even if they might map to the same high-level
2593 * UnitActiveState! That means that ns == os is an expected behavior here. For example: if a mount point is
2594 * remounted this function will be called too! */
2598 /* Let's enqueue the change signal early. In case this unit has a job associated we want that this unit is in
2599 * the bus queue, so that any job change signal queued will force out the unit change signal first. */
2600 unit_add_to_dbus_queue(u
);
2602 /* Update timestamps for state changes */
2603 if (!MANAGER_IS_RELOADING(m
)) {
2604 dual_timestamp_get(&u
->state_change_timestamp
);
2606 if (UNIT_IS_INACTIVE_OR_FAILED(os
) && !UNIT_IS_INACTIVE_OR_FAILED(ns
))
2607 u
->inactive_exit_timestamp
= u
->state_change_timestamp
;
2608 else if (!UNIT_IS_INACTIVE_OR_FAILED(os
) && UNIT_IS_INACTIVE_OR_FAILED(ns
))
2609 u
->inactive_enter_timestamp
= u
->state_change_timestamp
;
2611 if (!UNIT_IS_ACTIVE_OR_RELOADING(os
) && UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2612 u
->active_enter_timestamp
= u
->state_change_timestamp
;
2613 else if (UNIT_IS_ACTIVE_OR_RELOADING(os
) && !UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2614 u
->active_exit_timestamp
= u
->state_change_timestamp
;
2617 /* Keep track of failed units */
2618 (void) manager_update_failed_units(m
, u
, ns
== UNIT_FAILED
);
2620 /* Make sure the cgroup and state files are always removed when we become inactive */
2621 if (UNIT_IS_INACTIVE_OR_FAILED(ns
)) {
2622 unit_prune_cgroup(u
);
2623 unit_unlink_state_files(u
);
2626 unit_update_on_console(u
);
2628 if (!MANAGER_IS_RELOADING(m
)) {
2631 /* Let's propagate state changes to the job */
2633 unexpected
= unit_process_job(u
->job
, ns
, flags
);
2637 /* If this state change happened without being requested by a job, then let's retroactively start or
2638 * stop dependencies. We skip that step when deserializing, since we don't want to create any
2639 * additional jobs just because something is already activated. */
2642 if (UNIT_IS_INACTIVE_OR_FAILED(os
) && UNIT_IS_ACTIVE_OR_ACTIVATING(ns
))
2643 retroactively_start_dependencies(u
);
2644 else if (UNIT_IS_ACTIVE_OR_ACTIVATING(os
) && UNIT_IS_INACTIVE_OR_DEACTIVATING(ns
))
2645 retroactively_stop_dependencies(u
);
2648 /* stop unneeded units regardless if going down was expected or not */
2649 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2650 check_unneeded_dependencies(u
);
2652 if (ns
!= os
&& ns
== UNIT_FAILED
) {
2653 log_unit_debug(u
, "Unit entered failed state.");
2655 if (!(flags
& UNIT_NOTIFY_WILL_AUTO_RESTART
))
2656 unit_start_on_failure(u
);
2659 if (UNIT_IS_ACTIVE_OR_RELOADING(ns
) && !UNIT_IS_ACTIVE_OR_RELOADING(os
)) {
2660 /* This unit just finished starting up */
2662 unit_emit_audit_start(u
);
2663 manager_send_unit_plymouth(m
, u
);
2666 if (UNIT_IS_INACTIVE_OR_FAILED(ns
) && !UNIT_IS_INACTIVE_OR_FAILED(os
)) {
2667 /* This unit just stopped/failed. */
2669 unit_emit_audit_stop(u
, ns
);
2670 unit_log_resources(u
);
2674 manager_recheck_journal(m
);
2675 manager_recheck_dbus(m
);
2677 unit_trigger_notify(u
);
2679 if (!MANAGER_IS_RELOADING(m
)) {
2680 /* Maybe we finished startup and are now ready for being stopped because unneeded? */
2681 unit_submit_to_stop_when_unneeded_queue(u
);
2683 /* Maybe we finished startup, but something we needed has vanished? Let's die then. (This happens when
2684 * something BindsTo= to a Type=oneshot unit, as these units go directly from starting to inactive,
2685 * without ever entering started.) */
2686 unit_check_binds_to(u
);
2688 if (os
!= UNIT_FAILED
&& ns
== UNIT_FAILED
) {
2689 reason
= strjoina("unit ", u
->id
, " failed");
2690 emergency_action(m
, u
->failure_action
, 0, u
->reboot_arg
, unit_failure_action_exit_status(u
), reason
);
2691 } else if (!UNIT_IS_INACTIVE_OR_FAILED(os
) && ns
== UNIT_INACTIVE
) {
2692 reason
= strjoina("unit ", u
->id
, " succeeded");
2693 emergency_action(m
, u
->success_action
, 0, u
->reboot_arg
, unit_success_action_exit_status(u
), reason
);
2697 unit_add_to_gc_queue(u
);
2700 int unit_watch_pid(Unit
*u
, pid_t pid
, bool exclusive
) {
2704 assert(pid_is_valid(pid
));
2706 /* Watch a specific PID */
2708 /* Caller might be sure that this PID belongs to this unit only. Let's take this
2709 * opportunity to remove any stalled references to this PID as they can be created
2710 * easily (when watching a process which is not our direct child). */
2712 manager_unwatch_pid(u
->manager
, pid
);
2714 r
= set_ensure_allocated(&u
->pids
, NULL
);
2718 r
= hashmap_ensure_allocated(&u
->manager
->watch_pids
, NULL
);
2722 /* First try, let's add the unit keyed by "pid". */
2723 r
= hashmap_put(u
->manager
->watch_pids
, PID_TO_PTR(pid
), u
);
2729 /* OK, the "pid" key is already assigned to a different unit. Let's see if the "-pid" key (which points
2730 * to an array of Units rather than just a Unit), lists us already. */
2732 array
= hashmap_get(u
->manager
->watch_pids
, PID_TO_PTR(-pid
));
2734 for (; array
[n
]; n
++)
2738 if (found
) /* Found it already? if so, do nothing */
2743 /* Allocate a new array */
2744 new_array
= new(Unit
*, n
+ 2);
2748 memcpy_safe(new_array
, array
, sizeof(Unit
*) * n
);
2750 new_array
[n
+1] = NULL
;
2752 /* Add or replace the old array */
2753 r
= hashmap_replace(u
->manager
->watch_pids
, PID_TO_PTR(-pid
), new_array
);
2764 r
= set_put(u
->pids
, PID_TO_PTR(pid
));
2771 void unit_unwatch_pid(Unit
*u
, pid_t pid
) {
2775 assert(pid_is_valid(pid
));
2777 /* First let's drop the unit in case it's keyed as "pid". */
2778 (void) hashmap_remove_value(u
->manager
->watch_pids
, PID_TO_PTR(pid
), u
);
2780 /* Then, let's also drop the unit, in case it's in the array keyed by -pid */
2781 array
= hashmap_get(u
->manager
->watch_pids
, PID_TO_PTR(-pid
));
2785 /* Let's iterate through the array, dropping our own entry */
2786 for (n
= 0; array
[n
]; n
++)
2788 array
[m
++] = array
[n
];
2792 /* The array is now empty, remove the entire entry */
2793 assert_se(hashmap_remove(u
->manager
->watch_pids
, PID_TO_PTR(-pid
)) == array
);
2798 (void) set_remove(u
->pids
, PID_TO_PTR(pid
));
2801 void unit_unwatch_all_pids(Unit
*u
) {
2804 while (!set_isempty(u
->pids
))
2805 unit_unwatch_pid(u
, PTR_TO_PID(set_first(u
->pids
)));
2807 u
->pids
= set_free(u
->pids
);
2810 static void unit_tidy_watch_pids(Unit
*u
) {
2811 pid_t except1
, except2
;
2817 /* Cleans dead PIDs from our list */
2819 except1
= unit_main_pid(u
);
2820 except2
= unit_control_pid(u
);
2822 SET_FOREACH(e
, u
->pids
, i
) {
2823 pid_t pid
= PTR_TO_PID(e
);
2825 if (pid
== except1
|| pid
== except2
)
2828 if (!pid_is_unwaited(pid
))
2829 unit_unwatch_pid(u
, pid
);
2833 static int on_rewatch_pids_event(sd_event_source
*s
, void *userdata
) {
2839 unit_tidy_watch_pids(u
);
2840 unit_watch_all_pids(u
);
2842 /* If the PID set is empty now, then let's finish this off. */
2843 unit_synthesize_cgroup_empty_event(u
);
2848 int unit_enqueue_rewatch_pids(Unit
*u
) {
2853 if (!u
->cgroup_path
)
2856 r
= cg_unified_controller(SYSTEMD_CGROUP_CONTROLLER
);
2859 if (r
> 0) /* On unified we can use proper notifications */
2862 /* Enqueues a low-priority job that will clean up dead PIDs from our list of PIDs to watch and subscribe to new
2863 * PIDs that might have appeared. We do this in a delayed job because the work might be quite slow, as it
2864 * involves issuing kill(pid, 0) on all processes we watch. */
2866 if (!u
->rewatch_pids_event_source
) {
2867 _cleanup_(sd_event_source_unrefp
) sd_event_source
*s
= NULL
;
2869 r
= sd_event_add_defer(u
->manager
->event
, &s
, on_rewatch_pids_event
, u
);
2871 return log_error_errno(r
, "Failed to allocate event source for tidying watched PIDs: %m");
2873 r
= sd_event_source_set_priority(s
, SD_EVENT_PRIORITY_IDLE
);
2875 return log_error_errno(r
, "Failed to adjust priority of event source for tidying watched PIDs: %m");
2877 (void) sd_event_source_set_description(s
, "tidy-watch-pids");
2879 u
->rewatch_pids_event_source
= TAKE_PTR(s
);
2882 r
= sd_event_source_set_enabled(u
->rewatch_pids_event_source
, SD_EVENT_ONESHOT
);
2884 return log_error_errno(r
, "Failed to enable event source for tidying watched PIDs: %m");
2889 void unit_dequeue_rewatch_pids(Unit
*u
) {
2893 if (!u
->rewatch_pids_event_source
)
2896 r
= sd_event_source_set_enabled(u
->rewatch_pids_event_source
, SD_EVENT_OFF
);
2898 log_warning_errno(r
, "Failed to disable event source for tidying watched PIDs, ignoring: %m");
2900 u
->rewatch_pids_event_source
= sd_event_source_unref(u
->rewatch_pids_event_source
);
2903 bool unit_job_is_applicable(Unit
*u
, JobType j
) {
2905 assert(j
>= 0 && j
< _JOB_TYPE_MAX
);
2909 case JOB_VERIFY_ACTIVE
:
2912 /* Note that we don't check unit_can_start() here. That's because .device units and suchlike are not
2913 * startable by us but may appear due to external events, and it thus makes sense to permit enqueuing
2918 /* Similar as above. However, perpetual units can never be stopped (neither explicitly nor due to
2919 * external events), hence it makes no sense to permit enqueuing such a request either. */
2920 return !u
->perpetual
;
2923 case JOB_TRY_RESTART
:
2924 return unit_can_stop(u
) && unit_can_start(u
);
2927 case JOB_TRY_RELOAD
:
2928 return unit_can_reload(u
);
2930 case JOB_RELOAD_OR_START
:
2931 return unit_can_reload(u
) && unit_can_start(u
);
2934 assert_not_reached("Invalid job type");
2938 static void maybe_warn_about_dependency(Unit
*u
, const char *other
, UnitDependency dependency
) {
2941 /* Only warn about some unit types */
2942 if (!IN_SET(dependency
, UNIT_CONFLICTS
, UNIT_CONFLICTED_BY
, UNIT_BEFORE
, UNIT_AFTER
, UNIT_ON_FAILURE
, UNIT_TRIGGERS
, UNIT_TRIGGERED_BY
))
2945 if (streq_ptr(u
->id
, other
))
2946 log_unit_warning(u
, "Dependency %s=%s dropped", unit_dependency_to_string(dependency
), u
->id
);
2948 log_unit_warning(u
, "Dependency %s=%s dropped, merged into %s", unit_dependency_to_string(dependency
), strna(other
), u
->id
);
2951 static int unit_add_dependency_hashmap(
2954 UnitDependencyMask origin_mask
,
2955 UnitDependencyMask destination_mask
) {
2957 UnitDependencyInfo info
;
2962 assert(origin_mask
< _UNIT_DEPENDENCY_MASK_FULL
);
2963 assert(destination_mask
< _UNIT_DEPENDENCY_MASK_FULL
);
2964 assert(origin_mask
> 0 || destination_mask
> 0);
2966 r
= hashmap_ensure_allocated(h
, NULL
);
2970 assert_cc(sizeof(void*) == sizeof(info
));
2972 info
.data
= hashmap_get(*h
, other
);
2974 /* Entry already exists. Add in our mask. */
2976 if (FLAGS_SET(origin_mask
, info
.origin_mask
) &&
2977 FLAGS_SET(destination_mask
, info
.destination_mask
))
2980 info
.origin_mask
|= origin_mask
;
2981 info
.destination_mask
|= destination_mask
;
2983 r
= hashmap_update(*h
, other
, info
.data
);
2985 info
= (UnitDependencyInfo
) {
2986 .origin_mask
= origin_mask
,
2987 .destination_mask
= destination_mask
,
2990 r
= hashmap_put(*h
, other
, info
.data
);
2998 int unit_add_dependency(
3003 UnitDependencyMask mask
) {
3005 static const UnitDependency inverse_table
[_UNIT_DEPENDENCY_MAX
] = {
3006 [UNIT_REQUIRES
] = UNIT_REQUIRED_BY
,
3007 [UNIT_WANTS
] = UNIT_WANTED_BY
,
3008 [UNIT_REQUISITE
] = UNIT_REQUISITE_OF
,
3009 [UNIT_BINDS_TO
] = UNIT_BOUND_BY
,
3010 [UNIT_PART_OF
] = UNIT_CONSISTS_OF
,
3011 [UNIT_REQUIRED_BY
] = UNIT_REQUIRES
,
3012 [UNIT_REQUISITE_OF
] = UNIT_REQUISITE
,
3013 [UNIT_WANTED_BY
] = UNIT_WANTS
,
3014 [UNIT_BOUND_BY
] = UNIT_BINDS_TO
,
3015 [UNIT_CONSISTS_OF
] = UNIT_PART_OF
,
3016 [UNIT_CONFLICTS
] = UNIT_CONFLICTED_BY
,
3017 [UNIT_CONFLICTED_BY
] = UNIT_CONFLICTS
,
3018 [UNIT_BEFORE
] = UNIT_AFTER
,
3019 [UNIT_AFTER
] = UNIT_BEFORE
,
3020 [UNIT_ON_FAILURE
] = _UNIT_DEPENDENCY_INVALID
,
3021 [UNIT_REFERENCES
] = UNIT_REFERENCED_BY
,
3022 [UNIT_REFERENCED_BY
] = UNIT_REFERENCES
,
3023 [UNIT_TRIGGERS
] = UNIT_TRIGGERED_BY
,
3024 [UNIT_TRIGGERED_BY
] = UNIT_TRIGGERS
,
3025 [UNIT_PROPAGATES_RELOAD_TO
] = UNIT_RELOAD_PROPAGATED_FROM
,
3026 [UNIT_RELOAD_PROPAGATED_FROM
] = UNIT_PROPAGATES_RELOAD_TO
,
3027 [UNIT_JOINS_NAMESPACE_OF
] = UNIT_JOINS_NAMESPACE_OF
,
3029 Unit
*original_u
= u
, *original_other
= other
;
3033 assert(d
>= 0 && d
< _UNIT_DEPENDENCY_MAX
);
3036 u
= unit_follow_merge(u
);
3037 other
= unit_follow_merge(other
);
3039 /* We won't allow dependencies on ourselves. We will not
3040 * consider them an error however. */
3042 maybe_warn_about_dependency(original_u
, original_other
->id
, d
);
3046 /* Note that ordering a device unit after a unit is permitted since it
3047 * allows to start its job running timeout at a specific time. */
3048 if (d
== UNIT_BEFORE
&& other
->type
== UNIT_DEVICE
) {
3049 log_unit_warning(u
, "Dependency Before=%s ignored (.device units cannot be delayed)", other
->id
);
3053 if (d
== UNIT_ON_FAILURE
&& !UNIT_VTABLE(u
)->can_fail
) {
3054 log_unit_warning(u
, "Requested dependency OnFailure=%s ignored (%s units cannot fail).", other
->id
, unit_type_to_string(u
->type
));
3058 if (d
== UNIT_TRIGGERS
&& !UNIT_VTABLE(u
)->can_trigger
)
3059 return log_unit_error_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
3060 "Requested dependency Triggers=%s refused (%s units cannot trigger other units).", other
->id
, unit_type_to_string(u
->type
));
3061 if (d
== UNIT_TRIGGERED_BY
&& !UNIT_VTABLE(other
)->can_trigger
)
3062 return log_unit_error_errno(u
, SYNTHETIC_ERRNO(EINVAL
),
3063 "Requested dependency TriggeredBy=%s refused (%s units cannot trigger other units).", other
->id
, unit_type_to_string(other
->type
));
3065 r
= unit_add_dependency_hashmap(u
->dependencies
+ d
, other
, mask
, 0);
3069 if (inverse_table
[d
] != _UNIT_DEPENDENCY_INVALID
&& inverse_table
[d
] != d
) {
3070 r
= unit_add_dependency_hashmap(other
->dependencies
+ inverse_table
[d
], u
, 0, mask
);
3075 if (add_reference
) {
3076 r
= unit_add_dependency_hashmap(u
->dependencies
+ UNIT_REFERENCES
, other
, mask
, 0);
3080 r
= unit_add_dependency_hashmap(other
->dependencies
+ UNIT_REFERENCED_BY
, u
, 0, mask
);
3085 unit_add_to_dbus_queue(u
);
3089 int unit_add_two_dependencies(Unit
*u
, UnitDependency d
, UnitDependency e
, Unit
*other
, bool add_reference
, UnitDependencyMask mask
) {
3094 r
= unit_add_dependency(u
, d
, other
, add_reference
, mask
);
3098 return unit_add_dependency(u
, e
, other
, add_reference
, mask
);
3101 static int resolve_template(Unit
*u
, const char *name
, char **buf
, const char **ret
) {
3109 if (!unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
3116 r
= unit_name_replace_instance(name
, u
->instance
, buf
);
3118 _cleanup_free_
char *i
= NULL
;
3120 r
= unit_name_to_prefix(u
->id
, &i
);
3124 r
= unit_name_replace_instance(name
, i
, buf
);
3133 int unit_add_dependency_by_name(Unit
*u
, UnitDependency d
, const char *name
, bool add_reference
, UnitDependencyMask mask
) {
3134 _cleanup_free_
char *buf
= NULL
;
3141 r
= resolve_template(u
, name
, &buf
, &name
);
3145 r
= manager_load_unit(u
->manager
, name
, NULL
, NULL
, &other
);
3149 return unit_add_dependency(u
, d
, other
, add_reference
, mask
);
3152 int unit_add_two_dependencies_by_name(Unit
*u
, UnitDependency d
, UnitDependency e
, const char *name
, bool add_reference
, UnitDependencyMask mask
) {
3153 _cleanup_free_
char *buf
= NULL
;
3160 r
= resolve_template(u
, name
, &buf
, &name
);
3164 r
= manager_load_unit(u
->manager
, name
, NULL
, NULL
, &other
);
3168 return unit_add_two_dependencies(u
, d
, e
, other
, add_reference
, mask
);
3171 int set_unit_path(const char *p
) {
3172 /* This is mostly for debug purposes */
3173 if (setenv("SYSTEMD_UNIT_PATH", p
, 1) < 0)
3179 char *unit_dbus_path(Unit
*u
) {
3185 return unit_dbus_path_from_name(u
->id
);
3188 char *unit_dbus_path_invocation_id(Unit
*u
) {
3191 if (sd_id128_is_null(u
->invocation_id
))
3194 return unit_dbus_path_from_name(u
->invocation_id_string
);
3197 static int unit_set_invocation_id(Unit
*u
, sd_id128_t id
) {
3202 /* Set the invocation ID for this unit. If we cannot, this will not roll back, but reset the whole thing. */
3204 if (sd_id128_equal(u
->invocation_id
, id
))
3207 if (!sd_id128_is_null(u
->invocation_id
))
3208 (void) hashmap_remove_value(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
3210 if (sd_id128_is_null(id
)) {
3215 r
= hashmap_ensure_allocated(&u
->manager
->units_by_invocation_id
, &id128_hash_ops
);
3219 u
->invocation_id
= id
;
3220 sd_id128_to_string(id
, u
->invocation_id_string
);
3222 r
= hashmap_put(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
3229 u
->invocation_id
= SD_ID128_NULL
;
3230 u
->invocation_id_string
[0] = 0;
3234 int unit_set_slice(Unit
*u
, Unit
*slice
) {
3238 /* Sets the unit slice if it has not been set before. Is extra
3239 * careful, to only allow this for units that actually have a
3240 * cgroup context. Also, we don't allow to set this for slices
3241 * (since the parent slice is derived from the name). Make
3242 * sure the unit we set is actually a slice. */
3244 if (!UNIT_HAS_CGROUP_CONTEXT(u
))
3247 if (u
->type
== UNIT_SLICE
)
3250 if (unit_active_state(u
) != UNIT_INACTIVE
)
3253 if (slice
->type
!= UNIT_SLICE
)
3256 if (unit_has_name(u
, SPECIAL_INIT_SCOPE
) &&
3257 !unit_has_name(slice
, SPECIAL_ROOT_SLICE
))
3260 if (UNIT_DEREF(u
->slice
) == slice
)
3263 /* Disallow slice changes if @u is already bound to cgroups */
3264 if (UNIT_ISSET(u
->slice
) && u
->cgroup_realized
)
3267 unit_ref_set(&u
->slice
, u
, slice
);
3271 int unit_set_default_slice(Unit
*u
) {
3272 const char *slice_name
;
3278 if (UNIT_ISSET(u
->slice
))
3282 _cleanup_free_
char *prefix
= NULL
, *escaped
= NULL
;
3284 /* Implicitly place all instantiated units in their
3285 * own per-template slice */
3287 r
= unit_name_to_prefix(u
->id
, &prefix
);
3291 /* The prefix is already escaped, but it might include
3292 * "-" which has a special meaning for slice units,
3293 * hence escape it here extra. */
3294 escaped
= unit_name_escape(prefix
);
3298 if (MANAGER_IS_SYSTEM(u
->manager
))
3299 slice_name
= strjoina("system-", escaped
, ".slice");
3301 slice_name
= strjoina(escaped
, ".slice");
3304 MANAGER_IS_SYSTEM(u
->manager
) && !unit_has_name(u
, SPECIAL_INIT_SCOPE
)
3305 ? SPECIAL_SYSTEM_SLICE
3306 : SPECIAL_ROOT_SLICE
;
3308 r
= manager_load_unit(u
->manager
, slice_name
, NULL
, NULL
, &slice
);
3312 return unit_set_slice(u
, slice
);
3315 const char *unit_slice_name(Unit
*u
) {
3318 if (!UNIT_ISSET(u
->slice
))
3321 return UNIT_DEREF(u
->slice
)->id
;
3324 int unit_load_related_unit(Unit
*u
, const char *type
, Unit
**_found
) {
3325 _cleanup_free_
char *t
= NULL
;
3332 r
= unit_name_change_suffix(u
->id
, type
, &t
);
3335 if (unit_has_name(u
, t
))
3338 r
= manager_load_unit(u
->manager
, t
, NULL
, NULL
, _found
);
3339 assert(r
< 0 || *_found
!= u
);
3343 static int signal_name_owner_changed(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
3344 const char *new_owner
;
3351 r
= sd_bus_message_read(message
, "sss", NULL
, NULL
, &new_owner
);
3353 bus_log_parse_error(r
);
3357 if (UNIT_VTABLE(u
)->bus_name_owner_change
)
3358 UNIT_VTABLE(u
)->bus_name_owner_change(u
, empty_to_null(new_owner
));
3363 static int get_name_owner_handler(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
3364 const sd_bus_error
*e
;
3365 const char *new_owner
;
3372 u
->get_name_owner_slot
= sd_bus_slot_unref(u
->get_name_owner_slot
);
3374 e
= sd_bus_message_get_error(message
);
3376 if (!sd_bus_error_has_name(e
, "org.freedesktop.DBus.Error.NameHasNoOwner"))
3377 log_unit_error(u
, "Unexpected error response from GetNameOwner(): %s", e
->message
);
3381 r
= sd_bus_message_read(message
, "s", &new_owner
);
3383 return bus_log_parse_error(r
);
3385 assert(!isempty(new_owner
));
3388 if (UNIT_VTABLE(u
)->bus_name_owner_change
)
3389 UNIT_VTABLE(u
)->bus_name_owner_change(u
, new_owner
);
3394 int unit_install_bus_match(Unit
*u
, sd_bus
*bus
, const char *name
) {
3402 if (u
->match_bus_slot
|| u
->get_name_owner_slot
)
3405 match
= strjoina("type='signal',"
3406 "sender='org.freedesktop.DBus',"
3407 "path='/org/freedesktop/DBus',"
3408 "interface='org.freedesktop.DBus',"
3409 "member='NameOwnerChanged',"
3410 "arg0='", name
, "'");
3412 r
= sd_bus_add_match_async(bus
, &u
->match_bus_slot
, match
, signal_name_owner_changed
, NULL
, u
);
3416 r
= sd_bus_call_method_async(
3418 &u
->get_name_owner_slot
,
3419 "org.freedesktop.DBus",
3420 "/org/freedesktop/DBus",
3421 "org.freedesktop.DBus",
3423 get_name_owner_handler
,
3427 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3431 log_unit_debug(u
, "Watching D-Bus name '%s'.", name
);
3435 int unit_watch_bus_name(Unit
*u
, const char *name
) {
3441 /* Watch a specific name on the bus. We only support one unit
3442 * watching each name for now. */
3444 if (u
->manager
->api_bus
) {
3445 /* If the bus is already available, install the match directly.
3446 * Otherwise, just put the name in the list. bus_setup_api() will take care later. */
3447 r
= unit_install_bus_match(u
, u
->manager
->api_bus
, name
);
3449 return log_warning_errno(r
, "Failed to subscribe to NameOwnerChanged signal for '%s': %m", name
);
3452 r
= hashmap_put(u
->manager
->watch_bus
, name
, u
);
3454 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3455 u
->get_name_owner_slot
= sd_bus_slot_unref(u
->get_name_owner_slot
);
3456 return log_warning_errno(r
, "Failed to put bus name to hashmap: %m");
3462 void unit_unwatch_bus_name(Unit
*u
, const char *name
) {
3466 (void) hashmap_remove_value(u
->manager
->watch_bus
, name
, u
);
3467 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3468 u
->get_name_owner_slot
= sd_bus_slot_unref(u
->get_name_owner_slot
);
3471 bool unit_can_serialize(Unit
*u
) {
3474 return UNIT_VTABLE(u
)->serialize
&& UNIT_VTABLE(u
)->deserialize_item
;
3477 static int serialize_cgroup_mask(FILE *f
, const char *key
, CGroupMask mask
) {
3478 _cleanup_free_
char *s
= NULL
;
3487 r
= cg_mask_to_string(mask
, &s
);
3489 return log_error_errno(r
, "Failed to format cgroup mask: %m");
3491 return serialize_item(f
, key
, s
);
3494 static const char *const ip_accounting_metric_field
[_CGROUP_IP_ACCOUNTING_METRIC_MAX
] = {
3495 [CGROUP_IP_INGRESS_BYTES
] = "ip-accounting-ingress-bytes",
3496 [CGROUP_IP_INGRESS_PACKETS
] = "ip-accounting-ingress-packets",
3497 [CGROUP_IP_EGRESS_BYTES
] = "ip-accounting-egress-bytes",
3498 [CGROUP_IP_EGRESS_PACKETS
] = "ip-accounting-egress-packets",
3501 static const char *const io_accounting_metric_field_base
[_CGROUP_IO_ACCOUNTING_METRIC_MAX
] = {
3502 [CGROUP_IO_READ_BYTES
] = "io-accounting-read-bytes-base",
3503 [CGROUP_IO_WRITE_BYTES
] = "io-accounting-write-bytes-base",
3504 [CGROUP_IO_READ_OPERATIONS
] = "io-accounting-read-operations-base",
3505 [CGROUP_IO_WRITE_OPERATIONS
] = "io-accounting-write-operations-base",
3508 static const char *const io_accounting_metric_field_last
[_CGROUP_IO_ACCOUNTING_METRIC_MAX
] = {
3509 [CGROUP_IO_READ_BYTES
] = "io-accounting-read-bytes-last",
3510 [CGROUP_IO_WRITE_BYTES
] = "io-accounting-write-bytes-last",
3511 [CGROUP_IO_READ_OPERATIONS
] = "io-accounting-read-operations-last",
3512 [CGROUP_IO_WRITE_OPERATIONS
] = "io-accounting-write-operations-last",
3515 int unit_serialize(Unit
*u
, FILE *f
, FDSet
*fds
, bool serialize_jobs
) {
3516 CGroupIPAccountingMetric m
;
3523 if (unit_can_serialize(u
)) {
3524 r
= UNIT_VTABLE(u
)->serialize(u
, f
, fds
);
3529 (void) serialize_dual_timestamp(f
, "state-change-timestamp", &u
->state_change_timestamp
);
3531 (void) serialize_dual_timestamp(f
, "inactive-exit-timestamp", &u
->inactive_exit_timestamp
);
3532 (void) serialize_dual_timestamp(f
, "active-enter-timestamp", &u
->active_enter_timestamp
);
3533 (void) serialize_dual_timestamp(f
, "active-exit-timestamp", &u
->active_exit_timestamp
);
3534 (void) serialize_dual_timestamp(f
, "inactive-enter-timestamp", &u
->inactive_enter_timestamp
);
3536 (void) serialize_dual_timestamp(f
, "condition-timestamp", &u
->condition_timestamp
);
3537 (void) serialize_dual_timestamp(f
, "assert-timestamp", &u
->assert_timestamp
);
3539 if (dual_timestamp_is_set(&u
->condition_timestamp
))
3540 (void) serialize_bool(f
, "condition-result", u
->condition_result
);
3542 if (dual_timestamp_is_set(&u
->assert_timestamp
))
3543 (void) serialize_bool(f
, "assert-result", u
->assert_result
);
3545 (void) serialize_bool(f
, "transient", u
->transient
);
3546 (void) serialize_bool(f
, "in-audit", u
->in_audit
);
3548 (void) serialize_bool(f
, "exported-invocation-id", u
->exported_invocation_id
);
3549 (void) serialize_bool(f
, "exported-log-level-max", u
->exported_log_level_max
);
3550 (void) serialize_bool(f
, "exported-log-extra-fields", u
->exported_log_extra_fields
);
3551 (void) serialize_bool(f
, "exported-log-rate-limit-interval", u
->exported_log_ratelimit_interval
);
3552 (void) serialize_bool(f
, "exported-log-rate-limit-burst", u
->exported_log_ratelimit_burst
);
3554 (void) serialize_item_format(f
, "cpu-usage-base", "%" PRIu64
, u
->cpu_usage_base
);
3555 if (u
->cpu_usage_last
!= NSEC_INFINITY
)
3556 (void) serialize_item_format(f
, "cpu-usage-last", "%" PRIu64
, u
->cpu_usage_last
);
3558 if (u
->oom_kill_last
> 0)
3559 (void) serialize_item_format(f
, "oom-kill-last", "%" PRIu64
, u
->oom_kill_last
);
3561 for (CGroupIOAccountingMetric im
= 0; im
< _CGROUP_IO_ACCOUNTING_METRIC_MAX
; im
++) {
3562 (void) serialize_item_format(f
, io_accounting_metric_field_base
[im
], "%" PRIu64
, u
->io_accounting_base
[im
]);
3564 if (u
->io_accounting_last
[im
] != UINT64_MAX
)
3565 (void) serialize_item_format(f
, io_accounting_metric_field_last
[im
], "%" PRIu64
, u
->io_accounting_last
[im
]);
3569 (void) serialize_item(f
, "cgroup", u
->cgroup_path
);
3571 (void) serialize_bool(f
, "cgroup-realized", u
->cgroup_realized
);
3572 (void) serialize_cgroup_mask(f
, "cgroup-realized-mask", u
->cgroup_realized_mask
);
3573 (void) serialize_cgroup_mask(f
, "cgroup-enabled-mask", u
->cgroup_enabled_mask
);
3574 (void) serialize_cgroup_mask(f
, "cgroup-invalidated-mask", u
->cgroup_invalidated_mask
);
3576 if (uid_is_valid(u
->ref_uid
))
3577 (void) serialize_item_format(f
, "ref-uid", UID_FMT
, u
->ref_uid
);
3578 if (gid_is_valid(u
->ref_gid
))
3579 (void) serialize_item_format(f
, "ref-gid", GID_FMT
, u
->ref_gid
);
3581 if (!sd_id128_is_null(u
->invocation_id
))
3582 (void) serialize_item_format(f
, "invocation-id", SD_ID128_FORMAT_STR
, SD_ID128_FORMAT_VAL(u
->invocation_id
));
3584 (void) serialize_item_format(f
, "freezer-state", "%s", freezer_state_to_string(unit_freezer_state(u
)));
3586 bus_track_serialize(u
->bus_track
, f
, "ref");
3588 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++) {
3591 r
= unit_get_ip_accounting(u
, m
, &v
);
3593 (void) serialize_item_format(f
, ip_accounting_metric_field
[m
], "%" PRIu64
, v
);
3596 if (serialize_jobs
) {
3599 job_serialize(u
->job
, f
);
3604 job_serialize(u
->nop_job
, f
);
3613 static int unit_deserialize_job(Unit
*u
, FILE *f
) {
3614 _cleanup_(job_freep
) Job
*j
= NULL
;
3624 r
= job_deserialize(j
, f
);
3628 r
= job_install_deserialized(j
);
3636 int unit_deserialize(Unit
*u
, FILE *f
, FDSet
*fds
) {
3644 _cleanup_free_
char *line
= NULL
;
3649 r
= read_line(f
, LONG_LINE_MAX
, &line
);
3651 return log_error_errno(r
, "Failed to read serialization line: %m");
3652 if (r
== 0) /* eof */
3656 if (isempty(l
)) /* End marker */
3659 k
= strcspn(l
, "=");
3667 if (streq(l
, "job")) {
3669 /* New-style serialized job */
3670 r
= unit_deserialize_job(u
, f
);
3673 } else /* Legacy for pre-44 */
3674 log_unit_warning(u
, "Update from too old systemd versions are unsupported, cannot deserialize job: %s", v
);
3676 } else if (streq(l
, "state-change-timestamp")) {
3677 (void) deserialize_dual_timestamp(v
, &u
->state_change_timestamp
);
3679 } else if (streq(l
, "inactive-exit-timestamp")) {
3680 (void) deserialize_dual_timestamp(v
, &u
->inactive_exit_timestamp
);
3682 } else if (streq(l
, "active-enter-timestamp")) {
3683 (void) deserialize_dual_timestamp(v
, &u
->active_enter_timestamp
);
3685 } else if (streq(l
, "active-exit-timestamp")) {
3686 (void) deserialize_dual_timestamp(v
, &u
->active_exit_timestamp
);
3688 } else if (streq(l
, "inactive-enter-timestamp")) {
3689 (void) deserialize_dual_timestamp(v
, &u
->inactive_enter_timestamp
);
3691 } else if (streq(l
, "condition-timestamp")) {
3692 (void) deserialize_dual_timestamp(v
, &u
->condition_timestamp
);
3694 } else if (streq(l
, "assert-timestamp")) {
3695 (void) deserialize_dual_timestamp(v
, &u
->assert_timestamp
);
3697 } else if (streq(l
, "condition-result")) {
3699 r
= parse_boolean(v
);
3701 log_unit_debug(u
, "Failed to parse condition result value %s, ignoring.", v
);
3703 u
->condition_result
= r
;
3707 } else if (streq(l
, "assert-result")) {
3709 r
= parse_boolean(v
);
3711 log_unit_debug(u
, "Failed to parse assert result value %s, ignoring.", v
);
3713 u
->assert_result
= r
;
3717 } else if (streq(l
, "transient")) {
3719 r
= parse_boolean(v
);
3721 log_unit_debug(u
, "Failed to parse transient bool %s, ignoring.", v
);
3727 } else if (streq(l
, "in-audit")) {
3729 r
= parse_boolean(v
);
3731 log_unit_debug(u
, "Failed to parse in-audit bool %s, ignoring.", v
);
3737 } else if (streq(l
, "exported-invocation-id")) {
3739 r
= parse_boolean(v
);
3741 log_unit_debug(u
, "Failed to parse exported invocation ID bool %s, ignoring.", v
);
3743 u
->exported_invocation_id
= r
;
3747 } else if (streq(l
, "exported-log-level-max")) {
3749 r
= parse_boolean(v
);
3751 log_unit_debug(u
, "Failed to parse exported log level max bool %s, ignoring.", v
);
3753 u
->exported_log_level_max
= r
;
3757 } else if (streq(l
, "exported-log-extra-fields")) {
3759 r
= parse_boolean(v
);
3761 log_unit_debug(u
, "Failed to parse exported log extra fields bool %s, ignoring.", v
);
3763 u
->exported_log_extra_fields
= r
;
3767 } else if (streq(l
, "exported-log-rate-limit-interval")) {
3769 r
= parse_boolean(v
);
3771 log_unit_debug(u
, "Failed to parse exported log rate limit interval %s, ignoring.", v
);
3773 u
->exported_log_ratelimit_interval
= r
;
3777 } else if (streq(l
, "exported-log-rate-limit-burst")) {
3779 r
= parse_boolean(v
);
3781 log_unit_debug(u
, "Failed to parse exported log rate limit burst %s, ignoring.", v
);
3783 u
->exported_log_ratelimit_burst
= r
;
3787 } else if (STR_IN_SET(l
, "cpu-usage-base", "cpuacct-usage-base")) {
3789 r
= safe_atou64(v
, &u
->cpu_usage_base
);
3791 log_unit_debug(u
, "Failed to parse CPU usage base %s, ignoring.", v
);
3795 } else if (streq(l
, "cpu-usage-last")) {
3797 r
= safe_atou64(v
, &u
->cpu_usage_last
);
3799 log_unit_debug(u
, "Failed to read CPU usage last %s, ignoring.", v
);
3803 } else if (streq(l
, "oom-kill-last")) {
3805 r
= safe_atou64(v
, &u
->oom_kill_last
);
3807 log_unit_debug(u
, "Failed to read OOM kill last %s, ignoring.", v
);
3811 } else if (streq(l
, "cgroup")) {
3813 r
= unit_set_cgroup_path(u
, v
);
3815 log_unit_debug_errno(u
, r
, "Failed to set cgroup path %s, ignoring: %m", v
);
3817 (void) unit_watch_cgroup(u
);
3818 (void) unit_watch_cgroup_memory(u
);
3821 } else if (streq(l
, "cgroup-realized")) {
3824 b
= parse_boolean(v
);
3826 log_unit_debug(u
, "Failed to parse cgroup-realized bool %s, ignoring.", v
);
3828 u
->cgroup_realized
= b
;
3832 } else if (streq(l
, "cgroup-realized-mask")) {
3834 r
= cg_mask_from_string(v
, &u
->cgroup_realized_mask
);
3836 log_unit_debug(u
, "Failed to parse cgroup-realized-mask %s, ignoring.", v
);
3839 } else if (streq(l
, "cgroup-enabled-mask")) {
3841 r
= cg_mask_from_string(v
, &u
->cgroup_enabled_mask
);
3843 log_unit_debug(u
, "Failed to parse cgroup-enabled-mask %s, ignoring.", v
);
3846 } else if (streq(l
, "cgroup-invalidated-mask")) {
3848 r
= cg_mask_from_string(v
, &u
->cgroup_invalidated_mask
);
3850 log_unit_debug(u
, "Failed to parse cgroup-invalidated-mask %s, ignoring.", v
);
3853 } else if (streq(l
, "ref-uid")) {
3856 r
= parse_uid(v
, &uid
);
3858 log_unit_debug(u
, "Failed to parse referenced UID %s, ignoring.", v
);
3860 unit_ref_uid_gid(u
, uid
, GID_INVALID
);
3864 } else if (streq(l
, "ref-gid")) {
3867 r
= parse_gid(v
, &gid
);
3869 log_unit_debug(u
, "Failed to parse referenced GID %s, ignoring.", v
);
3871 unit_ref_uid_gid(u
, UID_INVALID
, gid
);
3875 } else if (streq(l
, "ref")) {
3877 r
= strv_extend(&u
->deserialized_refs
, v
);
3882 } else if (streq(l
, "invocation-id")) {
3885 r
= sd_id128_from_string(v
, &id
);
3887 log_unit_debug(u
, "Failed to parse invocation id %s, ignoring.", v
);
3889 r
= unit_set_invocation_id(u
, id
);
3891 log_unit_warning_errno(u
, r
, "Failed to set invocation ID for unit: %m");
3895 } else if (streq(l
, "freezer-state")) {
3898 s
= freezer_state_from_string(v
);
3900 log_unit_debug(u
, "Failed to deserialize freezer-state '%s', ignoring.", v
);
3902 u
->freezer_state
= s
;
3907 /* Check if this is an IP accounting metric serialization field */
3908 m
= string_table_lookup(ip_accounting_metric_field
, ELEMENTSOF(ip_accounting_metric_field
), l
);
3912 r
= safe_atou64(v
, &c
);
3914 log_unit_debug(u
, "Failed to parse IP accounting value %s, ignoring.", v
);
3916 u
->ip_accounting_extra
[m
] = c
;
3920 m
= string_table_lookup(io_accounting_metric_field_base
, ELEMENTSOF(io_accounting_metric_field_base
), l
);
3924 r
= safe_atou64(v
, &c
);
3926 log_unit_debug(u
, "Failed to parse IO accounting base value %s, ignoring.", v
);
3928 u
->io_accounting_base
[m
] = c
;
3932 m
= string_table_lookup(io_accounting_metric_field_last
, ELEMENTSOF(io_accounting_metric_field_last
), l
);
3936 r
= safe_atou64(v
, &c
);
3938 log_unit_debug(u
, "Failed to parse IO accounting last value %s, ignoring.", v
);
3940 u
->io_accounting_last
[m
] = c
;
3944 if (unit_can_serialize(u
)) {
3945 r
= exec_runtime_deserialize_compat(u
, l
, v
, fds
);
3947 log_unit_warning(u
, "Failed to deserialize runtime parameter '%s', ignoring.", l
);
3951 /* Returns positive if key was handled by the call */
3955 r
= UNIT_VTABLE(u
)->deserialize_item(u
, l
, v
, fds
);
3957 log_unit_warning(u
, "Failed to deserialize unit parameter '%s', ignoring.", l
);
3961 /* Versions before 228 did not carry a state change timestamp. In this case, take the current time. This is
3962 * useful, so that timeouts based on this timestamp don't trigger too early, and is in-line with the logic from
3963 * before 228 where the base for timeouts was not persistent across reboots. */
3965 if (!dual_timestamp_is_set(&u
->state_change_timestamp
))
3966 dual_timestamp_get(&u
->state_change_timestamp
);
3968 /* Let's make sure that everything that is deserialized also gets any potential new cgroup settings applied
3969 * after we are done. For that we invalidate anything already realized, so that we can realize it again. */
3970 unit_invalidate_cgroup(u
, _CGROUP_MASK_ALL
);
3971 unit_invalidate_cgroup_bpf(u
);
3976 int unit_deserialize_skip(FILE *f
) {
3980 /* Skip serialized data for this unit. We don't know what it is. */
3983 _cleanup_free_
char *line
= NULL
;
3986 r
= read_line(f
, LONG_LINE_MAX
, &line
);
3988 return log_error_errno(r
, "Failed to read serialization line: %m");
4000 int unit_add_node_dependency(Unit
*u
, const char *what
, UnitDependency dep
, UnitDependencyMask mask
) {
4001 _cleanup_free_
char *e
= NULL
;
4007 /* Adds in links to the device node that this unit is based on */
4011 if (!is_device_path(what
))
4014 /* When device units aren't supported (such as in a container), don't create dependencies on them. */
4015 if (!unit_type_supported(UNIT_DEVICE
))
4018 r
= unit_name_from_path(what
, ".device", &e
);
4022 r
= manager_load_unit(u
->manager
, e
, NULL
, NULL
, &device
);
4026 if (dep
== UNIT_REQUIRES
&& device_shall_be_bound_by(device
, u
))
4027 dep
= UNIT_BINDS_TO
;
4029 return unit_add_two_dependencies(u
, UNIT_AFTER
,
4030 MANAGER_IS_SYSTEM(u
->manager
) ? dep
: UNIT_WANTS
,
4031 device
, true, mask
);
4034 int unit_add_blockdev_dependency(Unit
*u
, const char *what
, UnitDependencyMask mask
) {
4035 _cleanup_free_
char *escaped
= NULL
, *target
= NULL
;
4043 if (!path_startswith(what
, "/dev/"))
4046 /* If we don't support devices, then also don't bother with blockdev@.target */
4047 if (!unit_type_supported(UNIT_DEVICE
))
4050 r
= unit_name_path_escape(what
, &escaped
);
4054 r
= unit_name_build("blockdev", escaped
, ".target", &target
);
4058 return unit_add_dependency_by_name(u
, UNIT_AFTER
, target
, true, mask
);
4061 int unit_coldplug(Unit
*u
) {
4068 /* Make sure we don't enter a loop, when coldplugging recursively. */
4072 u
->coldplugged
= true;
4074 STRV_FOREACH(i
, u
->deserialized_refs
) {
4075 q
= bus_unit_track_add_name(u
, *i
);
4076 if (q
< 0 && r
>= 0)
4079 u
->deserialized_refs
= strv_free(u
->deserialized_refs
);
4081 if (UNIT_VTABLE(u
)->coldplug
) {
4082 q
= UNIT_VTABLE(u
)->coldplug(u
);
4083 if (q
< 0 && r
>= 0)
4087 uj
= u
->job
?: u
->nop_job
;
4089 q
= job_coldplug(uj
);
4090 if (q
< 0 && r
>= 0)
4097 void unit_catchup(Unit
*u
) {
4100 if (UNIT_VTABLE(u
)->catchup
)
4101 UNIT_VTABLE(u
)->catchup(u
);
4104 static bool fragment_mtime_newer(const char *path
, usec_t mtime
, bool path_masked
) {
4110 /* If the source is some virtual kernel file system, then we assume we watch it anyway, and hence pretend we
4111 * are never out-of-date. */
4112 if (PATH_STARTSWITH_SET(path
, "/proc", "/sys"))
4115 if (stat(path
, &st
) < 0)
4116 /* What, cannot access this anymore? */
4120 /* For masked files check if they are still so */
4121 return !null_or_empty(&st
);
4123 /* For non-empty files check the mtime */
4124 return timespec_load(&st
.st_mtim
) > mtime
;
4129 bool unit_need_daemon_reload(Unit
*u
) {
4130 _cleanup_strv_free_
char **t
= NULL
;
4135 /* For unit files, we allow masking… */
4136 if (fragment_mtime_newer(u
->fragment_path
, u
->fragment_mtime
,
4137 u
->load_state
== UNIT_MASKED
))
4140 /* Source paths should not be masked… */
4141 if (fragment_mtime_newer(u
->source_path
, u
->source_mtime
, false))
4144 if (u
->load_state
== UNIT_LOADED
)
4145 (void) unit_find_dropin_paths(u
, &t
);
4146 if (!strv_equal(u
->dropin_paths
, t
))
4149 /* … any drop-ins that are masked are simply omitted from the list. */
4150 STRV_FOREACH(path
, u
->dropin_paths
)
4151 if (fragment_mtime_newer(*path
, u
->dropin_mtime
, false))
4157 void unit_reset_failed(Unit
*u
) {
4160 if (UNIT_VTABLE(u
)->reset_failed
)
4161 UNIT_VTABLE(u
)->reset_failed(u
);
4163 ratelimit_reset(&u
->start_ratelimit
);
4164 u
->start_limit_hit
= false;
4167 Unit
*unit_following(Unit
*u
) {
4170 if (UNIT_VTABLE(u
)->following
)
4171 return UNIT_VTABLE(u
)->following(u
);
4176 bool unit_stop_pending(Unit
*u
) {
4179 /* This call does check the current state of the unit. It's
4180 * hence useful to be called from state change calls of the
4181 * unit itself, where the state isn't updated yet. This is
4182 * different from unit_inactive_or_pending() which checks both
4183 * the current state and for a queued job. */
4185 return unit_has_job_type(u
, JOB_STOP
);
4188 bool unit_inactive_or_pending(Unit
*u
) {
4191 /* Returns true if the unit is inactive or going down */
4193 if (UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)))
4196 if (unit_stop_pending(u
))
4202 bool unit_active_or_pending(Unit
*u
) {
4205 /* Returns true if the unit is active or going up */
4207 if (UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)))
4211 IN_SET(u
->job
->type
, JOB_START
, JOB_RELOAD_OR_START
, JOB_RESTART
))
4217 bool unit_will_restart_default(Unit
*u
) {
4220 return unit_has_job_type(u
, JOB_START
);
4223 bool unit_will_restart(Unit
*u
) {
4226 if (!UNIT_VTABLE(u
)->will_restart
)
4229 return UNIT_VTABLE(u
)->will_restart(u
);
4232 int unit_kill(Unit
*u
, KillWho w
, int signo
, sd_bus_error
*error
) {
4234 assert(w
>= 0 && w
< _KILL_WHO_MAX
);
4235 assert(SIGNAL_VALID(signo
));
4237 if (!UNIT_VTABLE(u
)->kill
)
4240 return UNIT_VTABLE(u
)->kill(u
, w
, signo
, error
);
4243 static Set
*unit_pid_set(pid_t main_pid
, pid_t control_pid
) {
4244 _cleanup_set_free_ Set
*pid_set
= NULL
;
4247 pid_set
= set_new(NULL
);
4251 /* Exclude the main/control pids from being killed via the cgroup */
4253 r
= set_put(pid_set
, PID_TO_PTR(main_pid
));
4258 if (control_pid
> 0) {
4259 r
= set_put(pid_set
, PID_TO_PTR(control_pid
));
4264 return TAKE_PTR(pid_set
);
4267 int unit_kill_common(
4273 sd_bus_error
*error
) {
4276 bool killed
= false;
4278 if (IN_SET(who
, KILL_MAIN
, KILL_MAIN_FAIL
)) {
4280 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_PROCESS
, "%s units have no main processes", unit_type_to_string(u
->type
));
4281 else if (main_pid
== 0)
4282 return sd_bus_error_set_const(error
, BUS_ERROR_NO_SUCH_PROCESS
, "No main process to kill");
4285 if (IN_SET(who
, KILL_CONTROL
, KILL_CONTROL_FAIL
)) {
4286 if (control_pid
< 0)
4287 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_PROCESS
, "%s units have no control processes", unit_type_to_string(u
->type
));
4288 else if (control_pid
== 0)
4289 return sd_bus_error_set_const(error
, BUS_ERROR_NO_SUCH_PROCESS
, "No control process to kill");
4292 if (IN_SET(who
, KILL_CONTROL
, KILL_CONTROL_FAIL
, KILL_ALL
, KILL_ALL_FAIL
))
4293 if (control_pid
> 0) {
4294 if (kill(control_pid
, signo
) < 0)
4300 if (IN_SET(who
, KILL_MAIN
, KILL_MAIN_FAIL
, KILL_ALL
, KILL_ALL_FAIL
))
4302 if (kill(main_pid
, signo
) < 0)
4308 if (IN_SET(who
, KILL_ALL
, KILL_ALL_FAIL
) && u
->cgroup_path
) {
4309 _cleanup_set_free_ Set
*pid_set
= NULL
;
4312 /* Exclude the main/control pids from being killed via the cgroup */
4313 pid_set
= unit_pid_set(main_pid
, control_pid
);
4317 q
= cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
, signo
, 0, pid_set
, NULL
, NULL
);
4318 if (q
< 0 && !IN_SET(q
, -EAGAIN
, -ESRCH
, -ENOENT
))
4324 if (r
== 0 && !killed
&& IN_SET(who
, KILL_ALL_FAIL
, KILL_CONTROL_FAIL
))
4330 int unit_following_set(Unit
*u
, Set
**s
) {
4334 if (UNIT_VTABLE(u
)->following_set
)
4335 return UNIT_VTABLE(u
)->following_set(u
, s
);
4341 UnitFileState
unit_get_unit_file_state(Unit
*u
) {
4346 if (u
->unit_file_state
< 0 && u
->fragment_path
) {
4347 r
= unit_file_get_state(
4348 u
->manager
->unit_file_scope
,
4351 &u
->unit_file_state
);
4353 u
->unit_file_state
= UNIT_FILE_BAD
;
4356 return u
->unit_file_state
;
4359 int unit_get_unit_file_preset(Unit
*u
) {
4362 if (u
->unit_file_preset
< 0 && u
->fragment_path
)
4363 u
->unit_file_preset
= unit_file_query_preset(
4364 u
->manager
->unit_file_scope
,
4366 basename(u
->fragment_path
),
4369 return u
->unit_file_preset
;
4372 Unit
* unit_ref_set(UnitRef
*ref
, Unit
*source
, Unit
*target
) {
4378 unit_ref_unset(ref
);
4380 ref
->source
= source
;
4381 ref
->target
= target
;
4382 LIST_PREPEND(refs_by_target
, target
->refs_by_target
, ref
);
4386 void unit_ref_unset(UnitRef
*ref
) {
4392 /* We are about to drop a reference to the unit, make sure the garbage collection has a look at it as it might
4393 * be unreferenced now. */
4394 unit_add_to_gc_queue(ref
->target
);
4396 LIST_REMOVE(refs_by_target
, ref
->target
->refs_by_target
, ref
);
4397 ref
->source
= ref
->target
= NULL
;
4400 static int user_from_unit_name(Unit
*u
, char **ret
) {
4402 static const uint8_t hash_key
[] = {
4403 0x58, 0x1a, 0xaf, 0xe6, 0x28, 0x58, 0x4e, 0x96,
4404 0xb4, 0x4e, 0xf5, 0x3b, 0x8c, 0x92, 0x07, 0xec
4407 _cleanup_free_
char *n
= NULL
;
4410 r
= unit_name_to_prefix(u
->id
, &n
);
4414 if (valid_user_group_name(n
, 0)) {
4419 /* If we can't use the unit name as a user name, then let's hash it and use that */
4420 if (asprintf(ret
, "_du%016" PRIx64
, siphash24(n
, strlen(n
), hash_key
)) < 0)
4426 int unit_patch_contexts(Unit
*u
) {
4434 /* Patch in the manager defaults into the exec and cgroup
4435 * contexts, _after_ the rest of the settings have been
4438 ec
= unit_get_exec_context(u
);
4440 /* This only copies in the ones that need memory */
4441 for (i
= 0; i
< _RLIMIT_MAX
; i
++)
4442 if (u
->manager
->rlimit
[i
] && !ec
->rlimit
[i
]) {
4443 ec
->rlimit
[i
] = newdup(struct rlimit
, u
->manager
->rlimit
[i
], 1);
4448 if (MANAGER_IS_USER(u
->manager
) &&
4449 !ec
->working_directory
) {
4451 r
= get_home_dir(&ec
->working_directory
);
4455 /* Allow user services to run, even if the
4456 * home directory is missing */
4457 ec
->working_directory_missing_ok
= true;
4460 if (ec
->private_devices
)
4461 ec
->capability_bounding_set
&= ~((UINT64_C(1) << CAP_MKNOD
) | (UINT64_C(1) << CAP_SYS_RAWIO
));
4463 if (ec
->protect_kernel_modules
)
4464 ec
->capability_bounding_set
&= ~(UINT64_C(1) << CAP_SYS_MODULE
);
4466 if (ec
->protect_kernel_logs
)
4467 ec
->capability_bounding_set
&= ~(UINT64_C(1) << CAP_SYSLOG
);
4469 if (ec
->protect_clock
)
4470 ec
->capability_bounding_set
&= ~((UINT64_C(1) << CAP_SYS_TIME
) | (UINT64_C(1) << CAP_WAKE_ALARM
));
4472 if (ec
->dynamic_user
) {
4474 r
= user_from_unit_name(u
, &ec
->user
);
4480 ec
->group
= strdup(ec
->user
);
4485 /* If the dynamic user option is on, let's make sure that the unit can't leave its
4486 * UID/GID around in the file system or on IPC objects. Hence enforce a strict
4489 ec
->private_tmp
= true;
4490 ec
->remove_ipc
= true;
4491 ec
->protect_system
= PROTECT_SYSTEM_STRICT
;
4492 if (ec
->protect_home
== PROTECT_HOME_NO
)
4493 ec
->protect_home
= PROTECT_HOME_READ_ONLY
;
4495 /* Make sure this service can neither benefit from SUID/SGID binaries nor create
4497 ec
->no_new_privileges
= true;
4498 ec
->restrict_suid_sgid
= true;
4502 cc
= unit_get_cgroup_context(u
);
4505 if (ec
->private_devices
&&
4506 cc
->device_policy
== CGROUP_DEVICE_POLICY_AUTO
)
4507 cc
->device_policy
= CGROUP_DEVICE_POLICY_CLOSED
;
4509 if (ec
->root_image
&&
4510 (cc
->device_policy
!= CGROUP_DEVICE_POLICY_AUTO
|| cc
->device_allow
)) {
4512 /* When RootImage= is specified, the following devices are touched. */
4513 r
= cgroup_add_device_allow(cc
, "/dev/loop-control", "rw");
4517 r
= cgroup_add_device_allow(cc
, "block-loop", "rwm");
4521 r
= cgroup_add_device_allow(cc
, "block-blkext", "rwm");
4525 /* Make sure "block-loop" can be resolved, i.e. make sure "loop" shows up in /proc/devices */
4526 r
= unit_add_two_dependencies_by_name(u
, UNIT_AFTER
, UNIT_WANTS
, "modprobe@loop.service", true, UNIT_DEPENDENCY_FILE
);
4531 if (ec
->protect_clock
) {
4532 r
= cgroup_add_device_allow(cc
, "char-rtc", "r");
4541 ExecContext
*unit_get_exec_context(Unit
*u
) {
4548 offset
= UNIT_VTABLE(u
)->exec_context_offset
;
4552 return (ExecContext
*) ((uint8_t*) u
+ offset
);
4555 KillContext
*unit_get_kill_context(Unit
*u
) {
4562 offset
= UNIT_VTABLE(u
)->kill_context_offset
;
4566 return (KillContext
*) ((uint8_t*) u
+ offset
);
4569 CGroupContext
*unit_get_cgroup_context(Unit
*u
) {
4575 offset
= UNIT_VTABLE(u
)->cgroup_context_offset
;
4579 return (CGroupContext
*) ((uint8_t*) u
+ offset
);
4582 ExecRuntime
*unit_get_exec_runtime(Unit
*u
) {
4588 offset
= UNIT_VTABLE(u
)->exec_runtime_offset
;
4592 return *(ExecRuntime
**) ((uint8_t*) u
+ offset
);
4595 static const char* unit_drop_in_dir(Unit
*u
, UnitWriteFlags flags
) {
4598 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4601 if (u
->transient
) /* Redirect drop-ins for transient units always into the transient directory. */
4602 return u
->manager
->lookup_paths
.transient
;
4604 if (flags
& UNIT_PERSISTENT
)
4605 return u
->manager
->lookup_paths
.persistent_control
;
4607 if (flags
& UNIT_RUNTIME
)
4608 return u
->manager
->lookup_paths
.runtime_control
;
4613 char* unit_escape_setting(const char *s
, UnitWriteFlags flags
, char **buf
) {
4619 /* Escapes the input string as requested. Returns the escaped string. If 'buf' is specified then the allocated
4620 * return buffer pointer is also written to *buf, except if no escaping was necessary, in which case *buf is
4621 * set to NULL, and the input pointer is returned as-is. This means the return value always contains a properly
4622 * escaped version, but *buf when passed only contains a pointer if an allocation was necessary. If *buf is
4623 * not specified, then the return value always needs to be freed. Callers can use this to optimize memory
4626 if (flags
& UNIT_ESCAPE_SPECIFIERS
) {
4627 ret
= specifier_escape(s
);
4634 if (flags
& UNIT_ESCAPE_C
) {
4647 return ret
?: (char*) s
;
4650 return ret
?: strdup(s
);
4653 char* unit_concat_strv(char **l
, UnitWriteFlags flags
) {
4654 _cleanup_free_
char *result
= NULL
;
4655 size_t n
= 0, allocated
= 0;
4658 /* Takes a list of strings, escapes them, and concatenates them. This may be used to format command lines in a
4659 * way suitable for ExecStart= stanzas */
4661 STRV_FOREACH(i
, l
) {
4662 _cleanup_free_
char *buf
= NULL
;
4667 p
= unit_escape_setting(*i
, flags
, &buf
);
4671 a
= (n
> 0) + 1 + strlen(p
) + 1; /* separating space + " + entry + " */
4672 if (!GREEDY_REALLOC(result
, allocated
, n
+ a
+ 1))
4686 if (!GREEDY_REALLOC(result
, allocated
, n
+ 1))
4691 return TAKE_PTR(result
);
4694 int unit_write_setting(Unit
*u
, UnitWriteFlags flags
, const char *name
, const char *data
) {
4695 _cleanup_free_
char *p
= NULL
, *q
= NULL
, *escaped
= NULL
;
4696 const char *dir
, *wrapped
;
4703 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4706 data
= unit_escape_setting(data
, flags
, &escaped
);
4710 /* Prefix the section header. If we are writing this out as transient file, then let's suppress this if the
4711 * previous section header is the same */
4713 if (flags
& UNIT_PRIVATE
) {
4714 if (!UNIT_VTABLE(u
)->private_section
)
4717 if (!u
->transient_file
|| u
->last_section_private
< 0)
4718 data
= strjoina("[", UNIT_VTABLE(u
)->private_section
, "]\n", data
);
4719 else if (u
->last_section_private
== 0)
4720 data
= strjoina("\n[", UNIT_VTABLE(u
)->private_section
, "]\n", data
);
4722 if (!u
->transient_file
|| u
->last_section_private
< 0)
4723 data
= strjoina("[Unit]\n", data
);
4724 else if (u
->last_section_private
> 0)
4725 data
= strjoina("\n[Unit]\n", data
);
4728 if (u
->transient_file
) {
4729 /* When this is a transient unit file in creation, then let's not create a new drop-in but instead
4730 * write to the transient unit file. */
4731 fputs(data
, u
->transient_file
);
4733 if (!endswith(data
, "\n"))
4734 fputc('\n', u
->transient_file
);
4736 /* Remember which section we wrote this entry to */
4737 u
->last_section_private
= !!(flags
& UNIT_PRIVATE
);
4741 dir
= unit_drop_in_dir(u
, flags
);
4745 wrapped
= strjoina("# This is a drop-in unit file extension, created via \"systemctl set-property\"\n"
4746 "# or an equivalent operation. Do not edit.\n",
4750 r
= drop_in_file(dir
, u
->id
, 50, name
, &p
, &q
);
4754 (void) mkdir_p_label(p
, 0755);
4756 /* Make sure the drop-in dir is registered in our path cache. This way we don't need to stupidly
4757 * recreate the cache after every drop-in we write. */
4758 if (u
->manager
->unit_path_cache
) {
4759 r
= set_put_strdup(&u
->manager
->unit_path_cache
, p
);
4764 r
= write_string_file_atomic_label(q
, wrapped
);
4768 r
= strv_push(&u
->dropin_paths
, q
);
4773 strv_uniq(u
->dropin_paths
);
4775 u
->dropin_mtime
= now(CLOCK_REALTIME
);
4780 int unit_write_settingf(Unit
*u
, UnitWriteFlags flags
, const char *name
, const char *format
, ...) {
4781 _cleanup_free_
char *p
= NULL
;
4789 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4792 va_start(ap
, format
);
4793 r
= vasprintf(&p
, format
, ap
);
4799 return unit_write_setting(u
, flags
, name
, p
);
4802 int unit_make_transient(Unit
*u
) {
4803 _cleanup_free_
char *path
= NULL
;
4808 if (!UNIT_VTABLE(u
)->can_transient
)
4811 (void) mkdir_p_label(u
->manager
->lookup_paths
.transient
, 0755);
4813 path
= path_join(u
->manager
->lookup_paths
.transient
, u
->id
);
4817 /* Let's open the file we'll write the transient settings into. This file is kept open as long as we are
4818 * creating the transient, and is closed in unit_load(), as soon as we start loading the file. */
4820 RUN_WITH_UMASK(0022) {
4821 f
= fopen(path
, "we");
4826 safe_fclose(u
->transient_file
);
4827 u
->transient_file
= f
;
4829 free_and_replace(u
->fragment_path
, path
);
4831 u
->source_path
= mfree(u
->source_path
);
4832 u
->dropin_paths
= strv_free(u
->dropin_paths
);
4833 u
->fragment_mtime
= u
->source_mtime
= u
->dropin_mtime
= 0;
4835 u
->load_state
= UNIT_STUB
;
4837 u
->transient
= true;
4839 unit_add_to_dbus_queue(u
);
4840 unit_add_to_gc_queue(u
);
4842 fputs("# This is a transient unit file, created programmatically via the systemd API. Do not edit.\n",
4848 static int log_kill(pid_t pid
, int sig
, void *userdata
) {
4849 _cleanup_free_
char *comm
= NULL
;
4851 (void) get_process_comm(pid
, &comm
);
4853 /* Don't log about processes marked with brackets, under the assumption that these are temporary processes
4854 only, like for example systemd's own PAM stub process. */
4855 if (comm
&& comm
[0] == '(')
4858 log_unit_notice(userdata
,
4859 "Killing process " PID_FMT
" (%s) with signal SIG%s.",
4862 signal_to_string(sig
));
4867 static int operation_to_signal(const KillContext
*c
, KillOperation k
, bool *noteworthy
) {
4872 case KILL_TERMINATE
:
4873 case KILL_TERMINATE_AND_LOG
:
4874 *noteworthy
= false;
4875 return c
->kill_signal
;
4878 *noteworthy
= false;
4879 return restart_kill_signal(c
);
4883 return c
->final_kill_signal
;
4887 return c
->watchdog_signal
;
4890 assert_not_reached("KillOperation unknown");
4894 int unit_kill_context(
4900 bool main_pid_alien
) {
4902 bool wait_for_exit
= false, send_sighup
;
4903 cg_kill_log_func_t log_func
= NULL
;
4909 /* Kill the processes belonging to this unit, in preparation for shutting the unit down.
4910 * Returns > 0 if we killed something worth waiting for, 0 otherwise. */
4912 if (c
->kill_mode
== KILL_NONE
)
4916 sig
= operation_to_signal(c
, k
, ¬eworthy
);
4918 log_func
= log_kill
;
4922 IN_SET(k
, KILL_TERMINATE
, KILL_TERMINATE_AND_LOG
) &&
4927 log_func(main_pid
, sig
, u
);
4929 r
= kill_and_sigcont(main_pid
, sig
);
4930 if (r
< 0 && r
!= -ESRCH
) {
4931 _cleanup_free_
char *comm
= NULL
;
4932 (void) get_process_comm(main_pid
, &comm
);
4934 log_unit_warning_errno(u
, r
, "Failed to kill main process " PID_FMT
" (%s), ignoring: %m", main_pid
, strna(comm
));
4936 if (!main_pid_alien
)
4937 wait_for_exit
= true;
4939 if (r
!= -ESRCH
&& send_sighup
)
4940 (void) kill(main_pid
, SIGHUP
);
4944 if (control_pid
> 0) {
4946 log_func(control_pid
, sig
, u
);
4948 r
= kill_and_sigcont(control_pid
, sig
);
4949 if (r
< 0 && r
!= -ESRCH
) {
4950 _cleanup_free_
char *comm
= NULL
;
4951 (void) get_process_comm(control_pid
, &comm
);
4953 log_unit_warning_errno(u
, r
, "Failed to kill control process " PID_FMT
" (%s), ignoring: %m", control_pid
, strna(comm
));
4955 wait_for_exit
= true;
4957 if (r
!= -ESRCH
&& send_sighup
)
4958 (void) kill(control_pid
, SIGHUP
);
4962 if (u
->cgroup_path
&&
4963 (c
->kill_mode
== KILL_CONTROL_GROUP
|| (c
->kill_mode
== KILL_MIXED
&& k
== KILL_KILL
))) {
4964 _cleanup_set_free_ Set
*pid_set
= NULL
;
4966 /* Exclude the main/control pids from being killed via the cgroup */
4967 pid_set
= unit_pid_set(main_pid
, control_pid
);
4971 r
= cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
,
4973 CGROUP_SIGCONT
|CGROUP_IGNORE_SELF
,
4977 if (!IN_SET(r
, -EAGAIN
, -ESRCH
, -ENOENT
))
4978 log_unit_warning_errno(u
, r
, "Failed to kill control group %s, ignoring: %m", u
->cgroup_path
);
4982 /* FIXME: For now, on the legacy hierarchy, we will not wait for the cgroup members to die if
4983 * we are running in a container or if this is a delegation unit, simply because cgroup
4984 * notification is unreliable in these cases. It doesn't work at all in containers, and outside
4985 * of containers it can be confused easily by left-over directories in the cgroup — which
4986 * however should not exist in non-delegated units. On the unified hierarchy that's different,
4987 * there we get proper events. Hence rely on them. */
4989 if (cg_unified_controller(SYSTEMD_CGROUP_CONTROLLER
) > 0 ||
4990 (detect_container() == 0 && !unit_cgroup_delegate(u
)))
4991 wait_for_exit
= true;
4996 pid_set
= unit_pid_set(main_pid
, control_pid
);
5000 (void) cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
,
5009 return wait_for_exit
;
5012 int unit_require_mounts_for(Unit
*u
, const char *path
, UnitDependencyMask mask
) {
5013 _cleanup_free_
char *p
= NULL
;
5014 UnitDependencyInfo di
;
5020 /* Registers a unit for requiring a certain path and all its prefixes. We keep a hashtable of these paths in
5021 * the unit (from the path to the UnitDependencyInfo structure indicating how to the dependency came to
5022 * be). However, we build a prefix table for all possible prefixes so that new appearing mount units can easily
5023 * determine which units to make themselves a dependency of. */
5025 if (!path_is_absolute(path
))
5028 r
= hashmap_ensure_allocated(&u
->requires_mounts_for
, &path_hash_ops
);
5036 path
= path_simplify(p
, true);
5038 if (!path_is_normalized(path
))
5041 if (hashmap_contains(u
->requires_mounts_for
, path
))
5044 di
= (UnitDependencyInfo
) {
5048 r
= hashmap_put(u
->requires_mounts_for
, path
, di
.data
);
5053 char prefix
[strlen(path
) + 1];
5054 PATH_FOREACH_PREFIX_MORE(prefix
, path
) {
5057 x
= hashmap_get(u
->manager
->units_requiring_mounts_for
, prefix
);
5059 _cleanup_free_
char *q
= NULL
;
5061 r
= hashmap_ensure_allocated(&u
->manager
->units_requiring_mounts_for
, &path_hash_ops
);
5073 r
= hashmap_put(u
->manager
->units_requiring_mounts_for
, q
, x
);
5089 int unit_setup_exec_runtime(Unit
*u
) {
5097 offset
= UNIT_VTABLE(u
)->exec_runtime_offset
;
5100 /* Check if there already is an ExecRuntime for this unit? */
5101 rt
= (ExecRuntime
**) ((uint8_t*) u
+ offset
);
5105 /* Try to get it from somebody else */
5106 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_JOINS_NAMESPACE_OF
], i
) {
5107 r
= exec_runtime_acquire(u
->manager
, NULL
, other
->id
, false, rt
);
5112 return exec_runtime_acquire(u
->manager
, unit_get_exec_context(u
), u
->id
, true, rt
);
5115 int unit_setup_dynamic_creds(Unit
*u
) {
5117 DynamicCreds
*dcreds
;
5122 offset
= UNIT_VTABLE(u
)->dynamic_creds_offset
;
5124 dcreds
= (DynamicCreds
*) ((uint8_t*) u
+ offset
);
5126 ec
= unit_get_exec_context(u
);
5129 if (!ec
->dynamic_user
)
5132 return dynamic_creds_acquire(dcreds
, u
->manager
, ec
->user
, ec
->group
);
5135 bool unit_type_supported(UnitType t
) {
5136 if (_unlikely_(t
< 0))
5138 if (_unlikely_(t
>= _UNIT_TYPE_MAX
))
5141 if (!unit_vtable
[t
]->supported
)
5144 return unit_vtable
[t
]->supported();
5147 void unit_warn_if_dir_nonempty(Unit
*u
, const char* where
) {
5153 r
= dir_is_empty(where
);
5154 if (r
> 0 || r
== -ENOTDIR
)
5157 log_unit_warning_errno(u
, r
, "Failed to check directory %s: %m", where
);
5161 log_struct(LOG_NOTICE
,
5162 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR
,
5164 LOG_UNIT_INVOCATION_ID(u
),
5165 LOG_UNIT_MESSAGE(u
, "Directory %s to mount over is not empty, mounting anyway.", where
),
5169 int unit_fail_if_noncanonical(Unit
*u
, const char* where
) {
5170 _cleanup_free_
char *canonical_where
= NULL
;
5176 r
= chase_symlinks(where
, NULL
, CHASE_NONEXISTENT
, &canonical_where
, NULL
);
5178 log_unit_debug_errno(u
, r
, "Failed to check %s for symlinks, ignoring: %m", where
);
5182 /* We will happily ignore a trailing slash (or any redundant slashes) */
5183 if (path_equal(where
, canonical_where
))
5186 /* No need to mention "." or "..", they would already have been rejected by unit_name_from_path() */
5188 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR
,
5190 LOG_UNIT_INVOCATION_ID(u
),
5191 LOG_UNIT_MESSAGE(u
, "Mount path %s is not canonical (contains a symlink).", where
),
5197 bool unit_is_pristine(Unit
*u
) {
5200 /* Check if the unit already exists or is already around,
5201 * in a number of different ways. Note that to cater for unit
5202 * types such as slice, we are generally fine with units that
5203 * are marked UNIT_LOADED even though nothing was actually
5204 * loaded, as those unit types don't require a file on disk. */
5206 return !(!IN_SET(u
->load_state
, UNIT_NOT_FOUND
, UNIT_LOADED
) ||
5209 !strv_isempty(u
->dropin_paths
) ||
5214 pid_t
unit_control_pid(Unit
*u
) {
5217 if (UNIT_VTABLE(u
)->control_pid
)
5218 return UNIT_VTABLE(u
)->control_pid(u
);
5223 pid_t
unit_main_pid(Unit
*u
) {
5226 if (UNIT_VTABLE(u
)->main_pid
)
5227 return UNIT_VTABLE(u
)->main_pid(u
);
5232 static void unit_unref_uid_internal(
5236 void (*_manager_unref_uid
)(Manager
*m
, uid_t uid
, bool destroy_now
)) {
5240 assert(_manager_unref_uid
);
5242 /* Generic implementation of both unit_unref_uid() and unit_unref_gid(), under the assumption that uid_t and
5243 * gid_t are actually the same time, with the same validity rules.
5245 * Drops a reference to UID/GID from a unit. */
5247 assert_cc(sizeof(uid_t
) == sizeof(gid_t
));
5248 assert_cc(UID_INVALID
== (uid_t
) GID_INVALID
);
5250 if (!uid_is_valid(*ref_uid
))
5253 _manager_unref_uid(u
->manager
, *ref_uid
, destroy_now
);
5254 *ref_uid
= UID_INVALID
;
5257 static void unit_unref_uid(Unit
*u
, bool destroy_now
) {
5258 unit_unref_uid_internal(u
, &u
->ref_uid
, destroy_now
, manager_unref_uid
);
5261 static void unit_unref_gid(Unit
*u
, bool destroy_now
) {
5262 unit_unref_uid_internal(u
, (uid_t
*) &u
->ref_gid
, destroy_now
, manager_unref_gid
);
5265 void unit_unref_uid_gid(Unit
*u
, bool destroy_now
) {
5268 unit_unref_uid(u
, destroy_now
);
5269 unit_unref_gid(u
, destroy_now
);
5272 static int unit_ref_uid_internal(
5277 int (*_manager_ref_uid
)(Manager
*m
, uid_t uid
, bool clean_ipc
)) {
5283 assert(uid_is_valid(uid
));
5284 assert(_manager_ref_uid
);
5286 /* Generic implementation of both unit_ref_uid() and unit_ref_guid(), under the assumption that uid_t and gid_t
5287 * are actually the same type, and have the same validity rules.
5289 * Adds a reference on a specific UID/GID to this unit. Each unit referencing the same UID/GID maintains a
5290 * reference so that we can destroy the UID/GID's IPC resources as soon as this is requested and the counter
5293 assert_cc(sizeof(uid_t
) == sizeof(gid_t
));
5294 assert_cc(UID_INVALID
== (uid_t
) GID_INVALID
);
5296 if (*ref_uid
== uid
)
5299 if (uid_is_valid(*ref_uid
)) /* Already set? */
5302 r
= _manager_ref_uid(u
->manager
, uid
, clean_ipc
);
5310 static int unit_ref_uid(Unit
*u
, uid_t uid
, bool clean_ipc
) {
5311 return unit_ref_uid_internal(u
, &u
->ref_uid
, uid
, clean_ipc
, manager_ref_uid
);
5314 static int unit_ref_gid(Unit
*u
, gid_t gid
, bool clean_ipc
) {
5315 return unit_ref_uid_internal(u
, (uid_t
*) &u
->ref_gid
, (uid_t
) gid
, clean_ipc
, manager_ref_gid
);
5318 static int unit_ref_uid_gid_internal(Unit
*u
, uid_t uid
, gid_t gid
, bool clean_ipc
) {
5323 /* Reference both a UID and a GID in one go. Either references both, or neither. */
5325 if (uid_is_valid(uid
)) {
5326 r
= unit_ref_uid(u
, uid
, clean_ipc
);
5331 if (gid_is_valid(gid
)) {
5332 q
= unit_ref_gid(u
, gid
, clean_ipc
);
5335 unit_unref_uid(u
, false);
5341 return r
> 0 || q
> 0;
5344 int unit_ref_uid_gid(Unit
*u
, uid_t uid
, gid_t gid
) {
5350 c
= unit_get_exec_context(u
);
5352 r
= unit_ref_uid_gid_internal(u
, uid
, gid
, c
? c
->remove_ipc
: false);
5354 return log_unit_warning_errno(u
, r
, "Couldn't add UID/GID reference to unit, proceeding without: %m");
5359 void unit_notify_user_lookup(Unit
*u
, uid_t uid
, gid_t gid
) {
5364 /* This is invoked whenever one of the forked off processes let's us know the UID/GID its user name/group names
5365 * resolved to. We keep track of which UID/GID is currently assigned in order to be able to destroy its IPC
5366 * objects when no service references the UID/GID anymore. */
5368 r
= unit_ref_uid_gid(u
, uid
, gid
);
5370 unit_add_to_dbus_queue(u
);
5373 int unit_acquire_invocation_id(Unit
*u
) {
5379 r
= sd_id128_randomize(&id
);
5381 return log_unit_error_errno(u
, r
, "Failed to generate invocation ID for unit: %m");
5383 r
= unit_set_invocation_id(u
, id
);
5385 return log_unit_error_errno(u
, r
, "Failed to set invocation ID for unit: %m");
5387 unit_add_to_dbus_queue(u
);
5391 int unit_set_exec_params(Unit
*u
, ExecParameters
*p
) {
5397 /* Copy parameters from manager */
5398 r
= manager_get_effective_environment(u
->manager
, &p
->environment
);
5402 p
->confirm_spawn
= manager_get_confirm_spawn(u
->manager
);
5403 p
->cgroup_supported
= u
->manager
->cgroup_supported
;
5404 p
->prefix
= u
->manager
->prefix
;
5405 SET_FLAG(p
->flags
, EXEC_PASS_LOG_UNIT
|EXEC_CHOWN_DIRECTORIES
, MANAGER_IS_SYSTEM(u
->manager
));
5407 /* Copy parameters from unit */
5408 p
->cgroup_path
= u
->cgroup_path
;
5409 SET_FLAG(p
->flags
, EXEC_CGROUP_DELEGATE
, unit_cgroup_delegate(u
));
5414 int unit_fork_helper_process(Unit
*u
, const char *name
, pid_t
*ret
) {
5420 /* Forks off a helper process and makes sure it is a member of the unit's cgroup. Returns == 0 in the child,
5421 * and > 0 in the parent. The pid parameter is always filled in with the child's PID. */
5423 (void) unit_realize_cgroup(u
);
5425 r
= safe_fork(name
, FORK_REOPEN_LOG
, ret
);
5429 (void) default_signals(SIGNALS_CRASH_HANDLER
, SIGNALS_IGNORE
, -1);
5430 (void) ignore_signals(SIGPIPE
, -1);
5432 (void) prctl(PR_SET_PDEATHSIG
, SIGTERM
);
5434 if (u
->cgroup_path
) {
5435 r
= cg_attach_everywhere(u
->manager
->cgroup_supported
, u
->cgroup_path
, 0, NULL
, NULL
);
5437 log_unit_error_errno(u
, r
, "Failed to join unit cgroup %s: %m", u
->cgroup_path
);
5445 int unit_fork_and_watch_rm_rf(Unit
*u
, char **paths
, pid_t
*ret_pid
) {
5452 r
= unit_fork_helper_process(u
, "(sd-rmrf)", &pid
);
5456 int ret
= EXIT_SUCCESS
;
5459 STRV_FOREACH(i
, paths
) {
5460 r
= rm_rf(*i
, REMOVE_ROOT
|REMOVE_PHYSICAL
|REMOVE_MISSING_OK
);
5462 log_error_errno(r
, "Failed to remove '%s': %m", *i
);
5470 r
= unit_watch_pid(u
, pid
, true);
5478 static void unit_update_dependency_mask(Unit
*u
, UnitDependency d
, Unit
*other
, UnitDependencyInfo di
) {
5481 assert(d
< _UNIT_DEPENDENCY_MAX
);
5484 if (di
.origin_mask
== 0 && di
.destination_mask
== 0) {
5485 /* No bit set anymore, let's drop the whole entry */
5486 assert_se(hashmap_remove(u
->dependencies
[d
], other
));
5487 log_unit_debug(u
, "lost dependency %s=%s", unit_dependency_to_string(d
), other
->id
);
5489 /* Mask was reduced, let's update the entry */
5490 assert_se(hashmap_update(u
->dependencies
[d
], other
, di
.data
) == 0);
5493 void unit_remove_dependencies(Unit
*u
, UnitDependencyMask mask
) {
5496 /* Removes all dependencies u has on other units marked for ownership by 'mask'. */
5501 for (UnitDependency d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
5505 UnitDependencyInfo di
;
5511 HASHMAP_FOREACH_KEY(di
.data
, other
, u
->dependencies
[d
], i
) {
5512 if ((di
.origin_mask
& ~mask
) == di
.origin_mask
)
5514 di
.origin_mask
&= ~mask
;
5515 unit_update_dependency_mask(u
, d
, other
, di
);
5517 /* We updated the dependency from our unit to the other unit now. But most dependencies
5518 * imply a reverse dependency. Hence, let's delete that one too. For that we go through
5519 * all dependency types on the other unit and delete all those which point to us and
5520 * have the right mask set. */
5522 for (UnitDependency q
= 0; q
< _UNIT_DEPENDENCY_MAX
; q
++) {
5523 UnitDependencyInfo dj
;
5525 dj
.data
= hashmap_get(other
->dependencies
[q
], u
);
5526 if ((dj
.destination_mask
& ~mask
) == dj
.destination_mask
)
5528 dj
.destination_mask
&= ~mask
;
5530 unit_update_dependency_mask(other
, q
, u
, dj
);
5533 unit_add_to_gc_queue(other
);
5543 static int unit_get_invocation_path(Unit
*u
, char **ret
) {
5550 if (MANAGER_IS_SYSTEM(u
->manager
))
5551 p
= strjoin("/run/systemd/units/invocation:", u
->id
);
5553 _cleanup_free_
char *user_path
= NULL
;
5554 r
= xdg_user_runtime_dir(&user_path
, "/systemd/units/invocation:");
5557 p
= strjoin(user_path
, u
->id
);
5567 static int unit_export_invocation_id(Unit
*u
) {
5568 _cleanup_free_
char *p
= NULL
;
5573 if (u
->exported_invocation_id
)
5576 if (sd_id128_is_null(u
->invocation_id
))
5579 r
= unit_get_invocation_path(u
, &p
);
5581 return log_unit_debug_errno(u
, r
, "Failed to get invocation path: %m");
5583 r
= symlink_atomic(u
->invocation_id_string
, p
);
5585 return log_unit_debug_errno(u
, r
, "Failed to create invocation ID symlink %s: %m", p
);
5587 u
->exported_invocation_id
= true;
5591 static int unit_export_log_level_max(Unit
*u
, const ExecContext
*c
) {
5599 if (u
->exported_log_level_max
)
5602 if (c
->log_level_max
< 0)
5605 assert(c
->log_level_max
<= 7);
5607 buf
[0] = '0' + c
->log_level_max
;
5610 p
= strjoina("/run/systemd/units/log-level-max:", u
->id
);
5611 r
= symlink_atomic(buf
, p
);
5613 return log_unit_debug_errno(u
, r
, "Failed to create maximum log level symlink %s: %m", p
);
5615 u
->exported_log_level_max
= true;
5619 static int unit_export_log_extra_fields(Unit
*u
, const ExecContext
*c
) {
5620 _cleanup_close_
int fd
= -1;
5621 struct iovec
*iovec
;
5629 if (u
->exported_log_extra_fields
)
5632 if (c
->n_log_extra_fields
<= 0)
5635 sizes
= newa(le64_t
, c
->n_log_extra_fields
);
5636 iovec
= newa(struct iovec
, c
->n_log_extra_fields
* 2);
5638 for (i
= 0; i
< c
->n_log_extra_fields
; i
++) {
5639 sizes
[i
] = htole64(c
->log_extra_fields
[i
].iov_len
);
5641 iovec
[i
*2] = IOVEC_MAKE(sizes
+ i
, sizeof(le64_t
));
5642 iovec
[i
*2+1] = c
->log_extra_fields
[i
];
5645 p
= strjoina("/run/systemd/units/log-extra-fields:", u
->id
);
5646 pattern
= strjoina(p
, ".XXXXXX");
5648 fd
= mkostemp_safe(pattern
);
5650 return log_unit_debug_errno(u
, fd
, "Failed to create extra fields file %s: %m", p
);
5652 n
= writev(fd
, iovec
, c
->n_log_extra_fields
*2);
5654 r
= log_unit_debug_errno(u
, errno
, "Failed to write extra fields: %m");
5658 (void) fchmod(fd
, 0644);
5660 if (rename(pattern
, p
) < 0) {
5661 r
= log_unit_debug_errno(u
, errno
, "Failed to rename extra fields file: %m");
5665 u
->exported_log_extra_fields
= true;
5669 (void) unlink(pattern
);
5673 static int unit_export_log_ratelimit_interval(Unit
*u
, const ExecContext
*c
) {
5674 _cleanup_free_
char *buf
= NULL
;
5681 if (u
->exported_log_ratelimit_interval
)
5684 if (c
->log_ratelimit_interval_usec
== 0)
5687 p
= strjoina("/run/systemd/units/log-rate-limit-interval:", u
->id
);
5689 if (asprintf(&buf
, "%" PRIu64
, c
->log_ratelimit_interval_usec
) < 0)
5692 r
= symlink_atomic(buf
, p
);
5694 return log_unit_debug_errno(u
, r
, "Failed to create log rate limit interval symlink %s: %m", p
);
5696 u
->exported_log_ratelimit_interval
= true;
5700 static int unit_export_log_ratelimit_burst(Unit
*u
, const ExecContext
*c
) {
5701 _cleanup_free_
char *buf
= NULL
;
5708 if (u
->exported_log_ratelimit_burst
)
5711 if (c
->log_ratelimit_burst
== 0)
5714 p
= strjoina("/run/systemd/units/log-rate-limit-burst:", u
->id
);
5716 if (asprintf(&buf
, "%u", c
->log_ratelimit_burst
) < 0)
5719 r
= symlink_atomic(buf
, p
);
5721 return log_unit_debug_errno(u
, r
, "Failed to create log rate limit burst symlink %s: %m", p
);
5723 u
->exported_log_ratelimit_burst
= true;
5727 void unit_export_state_files(Unit
*u
) {
5728 const ExecContext
*c
;
5735 if (MANAGER_IS_TEST_RUN(u
->manager
))
5738 /* Exports a couple of unit properties to /run/systemd/units/, so that journald can quickly query this data
5739 * from there. Ideally, journald would use IPC to query this, like everybody else, but that's hard, as long as
5740 * the IPC system itself and PID 1 also log to the journal.
5742 * Note that these files really shouldn't be considered API for anyone else, as use a runtime file system as
5743 * IPC replacement is not compatible with today's world of file system namespaces. However, this doesn't really
5744 * apply to communication between the journal and systemd, as we assume that these two daemons live in the same
5745 * namespace at least.
5747 * Note that some of the "files" exported here are actually symlinks and not regular files. Symlinks work
5748 * better for storing small bits of data, in particular as we can write them with two system calls, and read
5751 (void) unit_export_invocation_id(u
);
5753 if (!MANAGER_IS_SYSTEM(u
->manager
))
5756 c
= unit_get_exec_context(u
);
5758 (void) unit_export_log_level_max(u
, c
);
5759 (void) unit_export_log_extra_fields(u
, c
);
5760 (void) unit_export_log_ratelimit_interval(u
, c
);
5761 (void) unit_export_log_ratelimit_burst(u
, c
);
5765 void unit_unlink_state_files(Unit
*u
) {
5773 /* Undoes the effect of unit_export_state() */
5775 if (u
->exported_invocation_id
) {
5776 _cleanup_free_
char *invocation_path
= NULL
;
5777 int r
= unit_get_invocation_path(u
, &invocation_path
);
5779 (void) unlink(invocation_path
);
5780 u
->exported_invocation_id
= false;
5784 if (!MANAGER_IS_SYSTEM(u
->manager
))
5787 if (u
->exported_log_level_max
) {
5788 p
= strjoina("/run/systemd/units/log-level-max:", u
->id
);
5791 u
->exported_log_level_max
= false;
5794 if (u
->exported_log_extra_fields
) {
5795 p
= strjoina("/run/systemd/units/extra-fields:", u
->id
);
5798 u
->exported_log_extra_fields
= false;
5801 if (u
->exported_log_ratelimit_interval
) {
5802 p
= strjoina("/run/systemd/units/log-rate-limit-interval:", u
->id
);
5805 u
->exported_log_ratelimit_interval
= false;
5808 if (u
->exported_log_ratelimit_burst
) {
5809 p
= strjoina("/run/systemd/units/log-rate-limit-burst:", u
->id
);
5812 u
->exported_log_ratelimit_burst
= false;
5816 int unit_prepare_exec(Unit
*u
) {
5821 /* Load any custom firewall BPF programs here once to test if they are existing and actually loadable.
5822 * Fail here early since later errors in the call chain unit_realize_cgroup to cgroup_context_apply are ignored. */
5823 r
= bpf_firewall_load_custom(u
);
5827 /* Prepares everything so that we can fork of a process for this unit */
5829 (void) unit_realize_cgroup(u
);
5831 if (u
->reset_accounting
) {
5832 (void) unit_reset_accounting(u
);
5833 u
->reset_accounting
= false;
5836 unit_export_state_files(u
);
5838 r
= unit_setup_exec_runtime(u
);
5842 r
= unit_setup_dynamic_creds(u
);
5849 static bool ignore_leftover_process(const char *comm
) {
5850 return comm
&& comm
[0] == '('; /* Most likely our own helper process (PAM?), ignore */
5853 int unit_log_leftover_process_start(pid_t pid
, int sig
, void *userdata
) {
5854 _cleanup_free_
char *comm
= NULL
;
5856 (void) get_process_comm(pid
, &comm
);
5858 if (ignore_leftover_process(comm
))
5861 /* During start we print a warning */
5863 log_unit_warning(userdata
,
5864 "Found left-over process " PID_FMT
" (%s) in control group while starting unit. Ignoring.\n"
5865 "This usually indicates unclean termination of a previous run, or service implementation deficiencies.",
5871 int unit_log_leftover_process_stop(pid_t pid
, int sig
, void *userdata
) {
5872 _cleanup_free_
char *comm
= NULL
;
5874 (void) get_process_comm(pid
, &comm
);
5876 if (ignore_leftover_process(comm
))
5879 /* During stop we only print an informational message */
5881 log_unit_info(userdata
,
5882 "Unit process " PID_FMT
" (%s) remains running after unit stopped.",
5888 int unit_warn_leftover_processes(Unit
*u
, cg_kill_log_func_t log_func
) {
5891 (void) unit_pick_cgroup_path(u
);
5893 if (!u
->cgroup_path
)
5896 return cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
, 0, 0, NULL
, log_func
, u
);
5899 bool unit_needs_console(Unit
*u
) {
5901 UnitActiveState state
;
5905 state
= unit_active_state(u
);
5907 if (UNIT_IS_INACTIVE_OR_FAILED(state
))
5910 if (UNIT_VTABLE(u
)->needs_console
)
5911 return UNIT_VTABLE(u
)->needs_console(u
);
5913 /* If this unit type doesn't implement this call, let's use a generic fallback implementation: */
5914 ec
= unit_get_exec_context(u
);
5918 return exec_context_may_touch_console(ec
);
5921 const char *unit_label_path(const Unit
*u
) {
5926 /* Returns the file system path to use for MAC access decisions, i.e. the file to read the SELinux label off
5927 * when validating access checks. */
5929 p
= u
->source_path
?: u
->fragment_path
;
5933 /* If a unit is masked, then don't read the SELinux label of /dev/null, as that really makes no sense */
5934 if (path_equal(p
, "/dev/null"))
5940 int unit_pid_attachable(Unit
*u
, pid_t pid
, sd_bus_error
*error
) {
5945 /* Checks whether the specified PID is generally good for attaching, i.e. a valid PID, not our manager itself,
5946 * and not a kernel thread either */
5948 /* First, a simple range check */
5949 if (!pid_is_valid(pid
))
5950 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process identifier " PID_FMT
" is not valid.", pid
);
5952 /* Some extra safety check */
5953 if (pid
== 1 || pid
== getpid_cached())
5954 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process " PID_FMT
" is a manager process, refusing.", pid
);
5956 /* Don't even begin to bother with kernel threads */
5957 r
= is_kernel_thread(pid
);
5959 return sd_bus_error_setf(error
, SD_BUS_ERROR_UNIX_PROCESS_ID_UNKNOWN
, "Process with ID " PID_FMT
" does not exist.", pid
);
5961 return sd_bus_error_set_errnof(error
, r
, "Failed to determine whether process " PID_FMT
" is a kernel thread: %m", pid
);
5963 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process " PID_FMT
" is a kernel thread, refusing.", pid
);
5968 void unit_log_success(Unit
*u
) {
5971 log_struct(LOG_INFO
,
5972 "MESSAGE_ID=" SD_MESSAGE_UNIT_SUCCESS_STR
,
5974 LOG_UNIT_INVOCATION_ID(u
),
5975 LOG_UNIT_MESSAGE(u
, "Succeeded."));
5978 void unit_log_failure(Unit
*u
, const char *result
) {
5982 log_struct(LOG_WARNING
,
5983 "MESSAGE_ID=" SD_MESSAGE_UNIT_FAILURE_RESULT_STR
,
5985 LOG_UNIT_INVOCATION_ID(u
),
5986 LOG_UNIT_MESSAGE(u
, "Failed with result '%s'.", result
),
5987 "UNIT_RESULT=%s", result
);
5990 void unit_log_skip(Unit
*u
, const char *result
) {
5994 log_struct(LOG_INFO
,
5995 "MESSAGE_ID=" SD_MESSAGE_UNIT_SKIPPED_STR
,
5997 LOG_UNIT_INVOCATION_ID(u
),
5998 LOG_UNIT_MESSAGE(u
, "Skipped due to '%s'.", result
),
5999 "UNIT_RESULT=%s", result
);
6002 void unit_log_process_exit(
6005 const char *command
,
6015 /* If this is a successful exit, let's log about the exit code on DEBUG level. If this is a failure
6016 * and the process exited on its own via exit(), then let's make this a NOTICE, under the assumption
6017 * that the service already logged the reason at a higher log level on its own. Otherwise, make it a
6021 else if (code
== CLD_EXITED
)
6024 level
= LOG_WARNING
;
6027 "MESSAGE_ID=" SD_MESSAGE_UNIT_PROCESS_EXIT_STR
,
6028 LOG_UNIT_MESSAGE(u
, "%s exited, code=%s, status=%i/%s",
6030 sigchld_code_to_string(code
), status
,
6031 strna(code
== CLD_EXITED
6032 ? exit_status_to_string(status
, EXIT_STATUS_FULL
)
6033 : signal_to_string(status
))),
6034 "EXIT_CODE=%s", sigchld_code_to_string(code
),
6035 "EXIT_STATUS=%i", status
,
6036 "COMMAND=%s", strna(command
),
6038 LOG_UNIT_INVOCATION_ID(u
));
6041 int unit_exit_status(Unit
*u
) {
6044 /* Returns the exit status to propagate for the most recent cycle of this unit. Returns a value in the range
6045 * 0…255 if there's something to propagate. EOPNOTSUPP if the concept does not apply to this unit type, ENODATA
6046 * if no data is currently known (for example because the unit hasn't deactivated yet) and EBADE if the main
6047 * service process has exited abnormally (signal/coredump). */
6049 if (!UNIT_VTABLE(u
)->exit_status
)
6052 return UNIT_VTABLE(u
)->exit_status(u
);
6055 int unit_failure_action_exit_status(Unit
*u
) {
6060 /* Returns the exit status to propagate on failure, or an error if there's nothing to propagate */
6062 if (u
->failure_action_exit_status
>= 0)
6063 return u
->failure_action_exit_status
;
6065 r
= unit_exit_status(u
);
6066 if (r
== -EBADE
) /* Exited, but not cleanly (i.e. by signal or such) */
6072 int unit_success_action_exit_status(Unit
*u
) {
6077 /* Returns the exit status to propagate on success, or an error if there's nothing to propagate */
6079 if (u
->success_action_exit_status
>= 0)
6080 return u
->success_action_exit_status
;
6082 r
= unit_exit_status(u
);
6083 if (r
== -EBADE
) /* Exited, but not cleanly (i.e. by signal or such) */
6089 int unit_test_trigger_loaded(Unit
*u
) {
6092 /* Tests whether the unit to trigger is loaded */
6094 trigger
= UNIT_TRIGGER(u
);
6096 return log_unit_error_errno(u
, SYNTHETIC_ERRNO(ENOENT
),
6097 "Refusing to start, no unit to trigger.");
6098 if (trigger
->load_state
!= UNIT_LOADED
)
6099 return log_unit_error_errno(u
, SYNTHETIC_ERRNO(ENOENT
),
6100 "Refusing to start, unit %s to trigger not loaded.", trigger
->id
);
6105 void unit_destroy_runtime_directory(Unit
*u
, const ExecContext
*context
) {
6106 if (context
->runtime_directory_preserve_mode
== EXEC_PRESERVE_NO
||
6107 (context
->runtime_directory_preserve_mode
== EXEC_PRESERVE_RESTART
&& !unit_will_restart(u
)))
6108 exec_context_destroy_runtime_directory(context
, u
->manager
->prefix
[EXEC_DIRECTORY_RUNTIME
]);
6111 int unit_clean(Unit
*u
, ExecCleanMask mask
) {
6112 UnitActiveState state
;
6116 /* Special return values:
6118 * -EOPNOTSUPP → cleaning not supported for this unit type
6119 * -EUNATCH → cleaning not defined for this resource type
6120 * -EBUSY → unit currently can't be cleaned since it's running or not properly loaded, or has
6121 * a job queued or similar
6124 if (!UNIT_VTABLE(u
)->clean
)
6130 if (u
->load_state
!= UNIT_LOADED
)
6136 state
= unit_active_state(u
);
6137 if (!IN_SET(state
, UNIT_INACTIVE
))
6140 return UNIT_VTABLE(u
)->clean(u
, mask
);
6143 int unit_can_clean(Unit
*u
, ExecCleanMask
*ret
) {
6146 if (!UNIT_VTABLE(u
)->clean
||
6147 u
->load_state
!= UNIT_LOADED
) {
6152 /* When the clean() method is set, can_clean() really should be set too */
6153 assert(UNIT_VTABLE(u
)->can_clean
);
6155 return UNIT_VTABLE(u
)->can_clean(u
, ret
);
6158 bool unit_can_freeze(Unit
*u
) {
6161 if (UNIT_VTABLE(u
)->can_freeze
)
6162 return UNIT_VTABLE(u
)->can_freeze(u
);
6164 return UNIT_VTABLE(u
)->freeze
;
6167 void unit_frozen(Unit
*u
) {
6170 u
->freezer_state
= FREEZER_FROZEN
;
6172 bus_unit_send_pending_freezer_message(u
);
6175 void unit_thawed(Unit
*u
) {
6178 u
->freezer_state
= FREEZER_RUNNING
;
6180 bus_unit_send_pending_freezer_message(u
);
6183 static int unit_freezer_action(Unit
*u
, FreezerAction action
) {
6185 int (*method
)(Unit
*);
6189 assert(IN_SET(action
, FREEZER_FREEZE
, FREEZER_THAW
));
6191 method
= action
== FREEZER_FREEZE
? UNIT_VTABLE(u
)->freeze
: UNIT_VTABLE(u
)->thaw
;
6192 if (!method
|| !cg_freezer_supported())
6198 if (u
->load_state
!= UNIT_LOADED
)
6201 s
= unit_active_state(u
);
6202 if (s
!= UNIT_ACTIVE
)
6205 if (IN_SET(u
->freezer_state
, FREEZER_FREEZING
, FREEZER_THAWING
))
6215 int unit_freeze(Unit
*u
) {
6216 return unit_freezer_action(u
, FREEZER_FREEZE
);
6219 int unit_thaw(Unit
*u
) {
6220 return unit_freezer_action(u
, FREEZER_THAW
);
6223 /* Wrappers around low-level cgroup freezer operations common for service and scope units */
6224 int unit_freeze_vtable_common(Unit
*u
) {
6225 return unit_cgroup_freezer_action(u
, FREEZER_FREEZE
);
6228 int unit_thaw_vtable_common(Unit
*u
) {
6229 return unit_cgroup_freezer_action(u
, FREEZER_THAW
);
6232 static const char* const collect_mode_table
[_COLLECT_MODE_MAX
] = {
6233 [COLLECT_INACTIVE
] = "inactive",
6234 [COLLECT_INACTIVE_OR_FAILED
] = "inactive-or-failed",
6237 DEFINE_STRING_TABLE_LOOKUP(collect_mode
, CollectMode
);