]> git.ipfire.org Git - thirdparty/systemd.git/blob - src/core/unit.c
projects / thirdparty / systemd.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge pull request #15935 from poettering/cache-more-efi-vars
[thirdparty/systemd.git] / src / core / unit.c
1 /* SPDX-License-Identifier: LGPL-2.1+ */
2
3 #include <errno.h>
4 #include <stdlib.h>
5 #include <sys/prctl.h>
6 #include <unistd.h>
7
8 #include "sd-id128.h"
9 #include "sd-messages.h"
10
11 #include "all-units.h"
12 #include "alloc-util.h"
13 #include "bpf-firewall.h"
14 #include "bus-common-errors.h"
15 #include "bus-util.h"
16 #include "cgroup-setup.h"
17 #include "cgroup-util.h"
18 #include "dbus-unit.h"
19 #include "dbus.h"
20 #include "dropin.h"
21 #include "escape.h"
22 #include "execute.h"
23 #include "fd-util.h"
24 #include "fileio-label.h"
25 #include "fileio.h"
26 #include "format-util.h"
27 #include "fs-util.h"
28 #include "id128-util.h"
29 #include "io-util.h"
30 #include "install.h"
31 #include "load-dropin.h"
32 #include "load-fragment.h"
33 #include "log.h"
34 #include "macro.h"
35 #include "missing_audit.h"
36 #include "mkdir.h"
37 #include "parse-util.h"
38 #include "path-util.h"
39 #include "process-util.h"
40 #include "rm-rf.h"
41 #include "serialize.h"
42 #include "set.h"
43 #include "signal-util.h"
44 #include "sparse-endian.h"
45 #include "special.h"
46 #include "specifier.h"
47 #include "stat-util.h"
48 #include "stdio-util.h"
49 #include "string-table.h"
50 #include "string-util.h"
51 #include "strv.h"
52 #include "terminal-util.h"
53 #include "tmpfile-util.h"
54 #include "umask-util.h"
55 #include "unit-name.h"
56 #include "unit.h"
57 #include "user-util.h"
58 #include "virt.h"
59
60 /* Thresholds for logging at INFO level about resource consumption */
61 #define MENTIONWORTHY_CPU_NSEC (1 * NSEC_PER_SEC)
62 #define MENTIONWORTHY_IO_BYTES (1024 * 1024ULL)
63 #define MENTIONWORTHY_IP_BYTES (0ULL)
64
65 /* Thresholds for logging at INFO level about resource consumption */
66 #define NOTICEWORTHY_CPU_NSEC (10*60 * NSEC_PER_SEC) /* 10 minutes */
67 #define NOTICEWORTHY_IO_BYTES (10 * 1024 * 1024ULL) /* 10 MB */
68 #define NOTICEWORTHY_IP_BYTES (128 * 1024 * 1024ULL) /* 128 MB */
69
70 const UnitVTable * const unit_vtable[_UNIT_TYPE_MAX] = {
71 [UNIT_SERVICE] = &service_vtable,
72 [UNIT_SOCKET] = &socket_vtable,
73 [UNIT_TARGET] = &target_vtable,
74 [UNIT_DEVICE] = &device_vtable,
75 [UNIT_MOUNT] = &mount_vtable,
76 [UNIT_AUTOMOUNT] = &automount_vtable,
77 [UNIT_SWAP] = &swap_vtable,
78 [UNIT_TIMER] = &timer_vtable,
79 [UNIT_PATH] = &path_vtable,
80 [UNIT_SLICE] = &slice_vtable,
81 [UNIT_SCOPE] = &scope_vtable,
82 };
83
84 static void maybe_warn_about_dependency(Unit *u, const char *other, UnitDependency dependency);
85
86 Unit *unit_new(Manager *m, size_t size) {
87 Unit *u;
88
89 assert(m);
90 assert(size >= sizeof(Unit));
91
92 u = malloc0(size);
93 if (!u)
94 return NULL;
95
96 u->names = set_new(&string_hash_ops);
97 if (!u->names)
98 return mfree(u);
99
100 u->manager = m;
101 u->type = _UNIT_TYPE_INVALID;
102 u->default_dependencies = true;
103 u->unit_file_state = _UNIT_FILE_STATE_INVALID;
104 u->unit_file_preset = -1;
105 u->on_failure_job_mode = JOB_REPLACE;
106 u->cgroup_control_inotify_wd = -1;
107 u->cgroup_memory_inotify_wd = -1;
108 u->job_timeout = USEC_INFINITY;
109 u->job_running_timeout = USEC_INFINITY;
110 u->ref_uid = UID_INVALID;
111 u->ref_gid = GID_INVALID;
112 u->cpu_usage_last = NSEC_INFINITY;
113 u->cgroup_invalidated_mask |= CGROUP_MASK_BPF_FIREWALL;
114 u->failure_action_exit_status = u->success_action_exit_status = -1;
115
116 u->ip_accounting_ingress_map_fd = -1;
117 u->ip_accounting_egress_map_fd = -1;
118 u->ipv4_allow_map_fd = -1;
119 u->ipv6_allow_map_fd = -1;
120 u->ipv4_deny_map_fd = -1;
121 u->ipv6_deny_map_fd = -1;
122
123 u->last_section_private = -1;
124
125 u->start_ratelimit = (RateLimit) { m->default_start_limit_interval, m->default_start_limit_burst };
126 u->auto_stop_ratelimit = (RateLimit) { 10 * USEC_PER_SEC, 16 };
127
128 for (CGroupIOAccountingMetric i = 0; i < _CGROUP_IO_ACCOUNTING_METRIC_MAX; i++)
129 u->io_accounting_last[i] = UINT64_MAX;
130
131 return u;
132 }
133
134 int unit_new_for_name(Manager *m, size_t size, const char *name, Unit **ret) {
135 _cleanup_(unit_freep) Unit *u = NULL;
136 int r;
137
138 u = unit_new(m, size);
139 if (!u)
140 return -ENOMEM;
141
142 r = unit_add_name(u, name);
143 if (r < 0)
144 return r;
145
146 *ret = TAKE_PTR(u);
147
148 return r;
149 }
150
151 bool unit_has_name(const Unit *u, const char *name) {
152 assert(u);
153 assert(name);
154
155 return set_contains(u->names, (char*) name);
156 }
157
158 static void unit_init(Unit *u) {
159 CGroupContext *cc;
160 ExecContext *ec;
161 KillContext *kc;
162
163 assert(u);
164 assert(u->manager);
165 assert(u->type >= 0);
166
167 cc = unit_get_cgroup_context(u);
168 if (cc) {
169 cgroup_context_init(cc);
170
171 /* Copy in the manager defaults into the cgroup
172 * context, _before_ the rest of the settings have
173 * been initialized */
174
175 cc->cpu_accounting = u->manager->default_cpu_accounting;
176 cc->io_accounting = u->manager->default_io_accounting;
177 cc->blockio_accounting = u->manager->default_blockio_accounting;
178 cc->memory_accounting = u->manager->default_memory_accounting;
179 cc->tasks_accounting = u->manager->default_tasks_accounting;
180 cc->ip_accounting = u->manager->default_ip_accounting;
181
182 if (u->type != UNIT_SLICE)
183 cc->tasks_max = u->manager->default_tasks_max;
184 }
185
186 ec = unit_get_exec_context(u);
187 if (ec) {
188 exec_context_init(ec);
189
190 if (MANAGER_IS_SYSTEM(u->manager))
191 ec->keyring_mode = EXEC_KEYRING_SHARED;
192 else {
193 ec->keyring_mode = EXEC_KEYRING_INHERIT;
194
195 /* User manager might have its umask redefined by PAM or UMask=. In this
196 * case let the units it manages inherit this value by default. They can
197 * still tune this value through their own unit file */
198 (void) get_process_umask(getpid_cached(), &ec->umask);
199 }
200 }
201
202 kc = unit_get_kill_context(u);
203 if (kc)
204 kill_context_init(kc);
205
206 if (UNIT_VTABLE(u)->init)
207 UNIT_VTABLE(u)->init(u);
208 }
209
210 int unit_add_name(Unit *u, const char *text) {
211 _cleanup_free_ char *s = NULL, *i = NULL;
212 UnitType t;
213 int r;
214
215 assert(u);
216 assert(text);
217
218 if (unit_name_is_valid(text, UNIT_NAME_TEMPLATE)) {
219
220 if (!u->instance)
221 return log_unit_debug_errno(u, SYNTHETIC_ERRNO(EINVAL),
222 "instance is not set when adding name '%s': %m", text);
223
224 r = unit_name_replace_instance(text, u->instance, &s);
225 if (r < 0)
226 return log_unit_debug_errno(u, r,
227 "failed to build instance name from '%s': %m", text);
228 } else {
229 s = strdup(text);
230 if (!s)
231 return -ENOMEM;
232 }
233
234 if (set_contains(u->names, s))
235 return 0;
236 if (hashmap_contains(u->manager->units, s))
237 return log_unit_debug_errno(u, SYNTHETIC_ERRNO(EEXIST),
238 "unit already exist when adding name '%s': %m", text);
239
240 if (!unit_name_is_valid(s, UNIT_NAME_PLAIN|UNIT_NAME_INSTANCE))
241 return log_unit_debug_errno(u, SYNTHETIC_ERRNO(EINVAL),
242 "name '%s' is invalid: %m", text);
243
244 t = unit_name_to_type(s);
245 if (t < 0)
246 return log_unit_debug_errno(u, SYNTHETIC_ERRNO(EINVAL),
247 "failed to to derive unit type from name '%s': %m", text);
248
249 if (u->type != _UNIT_TYPE_INVALID && t != u->type)
250 return log_unit_debug_errno(u, SYNTHETIC_ERRNO(EINVAL),
251 "unit type is illegal: u->type(%d) and t(%d) for name '%s': %m",
252 u->type, t, text);
253
254 r = unit_name_to_instance(s, &i);
255 if (r < 0)
256 return log_unit_debug_errno(u, r, "failed to extract instance from name '%s': %m", text);
257
258 if (i && !unit_type_may_template(t))
259 return log_unit_debug_errno(u, SYNTHETIC_ERRNO(EINVAL), "templates are not allowed for name '%s': %m", text);
260
261 /* Ensure that this unit is either instanced or not instanced,
262 * but not both. Note that we do allow names with different
263 * instance names however! */
264 if (u->type != _UNIT_TYPE_INVALID && !u->instance != !i)
265 return log_unit_debug_errno(u, SYNTHETIC_ERRNO(EINVAL),
266 "instance is illegal: u->type(%d), u->instance(%s) and i(%s) for name '%s': %m",
267 u->type, u->instance, i, text);
268
269 if (!unit_type_may_alias(t) && !set_isempty(u->names))
270 return log_unit_debug_errno(u, SYNTHETIC_ERRNO(EEXIST), "symlinks are not allowed for name '%s': %m", text);
271
272 if (hashmap_size(u->manager->units) >= MANAGER_MAX_NAMES)
273 return log_unit_debug_errno(u, SYNTHETIC_ERRNO(E2BIG), "too many units: %m");
274
275 r = set_put(u->names, s);
276 if (r < 0)
277 return r;
278 assert(r > 0);
279
280 r = hashmap_put(u->manager->units, s, u);
281 if (r < 0) {
282 (void) set_remove(u->names, s);
283 return log_unit_debug_errno(u, r, "add unit to hashmap failed for name '%s': %m", text);
284 }
285
286 if (u->type == _UNIT_TYPE_INVALID) {
287 u->type = t;
288 u->id = s;
289 u->instance = TAKE_PTR(i);
290
291 LIST_PREPEND(units_by_type, u->manager->units_by_type[t], u);
292
293 unit_init(u);
294 }
295
296 s = NULL;
297
298 unit_add_to_dbus_queue(u);
299 return 0;
300 }
301
302 int unit_choose_id(Unit *u, const char *name) {
303 _cleanup_free_ char *t = NULL;
304 char *s, *i;
305 int r;
306
307 assert(u);
308 assert(name);
309
310 if (unit_name_is_valid(name, UNIT_NAME_TEMPLATE)) {
311
312 if (!u->instance)
313 return -EINVAL;
314
315 r = unit_name_replace_instance(name, u->instance, &t);
316 if (r < 0)
317 return r;
318
319 name = t;
320 }
321
322 /* Selects one of the names of this unit as the id */
323 s = set_get(u->names, (char*) name);
324 if (!s)
325 return -ENOENT;
326
327 /* Determine the new instance from the new id */
328 r = unit_name_to_instance(s, &i);
329 if (r < 0)
330 return r;
331
332 u->id = s;
333
334 free(u->instance);
335 u->instance = i;
336
337 unit_add_to_dbus_queue(u);
338
339 return 0;
340 }
341
342 int unit_set_description(Unit *u, const char *description) {
343 int r;
344
345 assert(u);
346
347 r = free_and_strdup(&u->description, empty_to_null(description));
348 if (r < 0)
349 return r;
350 if (r > 0)
351 unit_add_to_dbus_queue(u);
352
353 return 0;
354 }
355
356 bool unit_may_gc(Unit *u) {
357 UnitActiveState state;
358 int r;
359
360 assert(u);
361
362 /* Checks whether the unit is ready to be unloaded for garbage collection.
363 * Returns true when the unit may be collected, and false if there's some
364 * reason to keep it loaded.
365 *
366 * References from other units are *not* checked here. Instead, this is done
367 * in unit_gc_sweep(), but using markers to properly collect dependency loops.
368 */
369
370 if (u->job)
371 return false;
372
373 if (u->nop_job)
374 return false;
375
376 state = unit_active_state(u);
377
378 /* If the unit is inactive and failed and no job is queued for it, then release its runtime resources */
379 if (UNIT_IS_INACTIVE_OR_FAILED(state) &&
380 UNIT_VTABLE(u)->release_resources)
381 UNIT_VTABLE(u)->release_resources(u);
382
383 if (u->perpetual)
384 return false;
385
386 if (sd_bus_track_count(u->bus_track) > 0)
387 return false;
388
389 /* But we keep the unit object around for longer when it is referenced or configured to not be gc'ed */
390 switch (u->collect_mode) {
391
392 case COLLECT_INACTIVE:
393 if (state != UNIT_INACTIVE)
394 return false;
395
396 break;
397
398 case COLLECT_INACTIVE_OR_FAILED:
399 if (!IN_SET(state, UNIT_INACTIVE, UNIT_FAILED))
400 return false;
401
402 break;
403
404 default:
405 assert_not_reached("Unknown garbage collection mode");
406 }
407
408 if (u->cgroup_path) {
409 /* If the unit has a cgroup, then check whether there's anything in it. If so, we should stay
410 * around. Units with active processes should never be collected. */
411
412 r = cg_is_empty_recursive(SYSTEMD_CGROUP_CONTROLLER, u->cgroup_path);
413 if (r < 0)
414 log_unit_debug_errno(u, r, "Failed to determine whether cgroup %s is empty: %m", u->cgroup_path);
415 if (r <= 0)
416 return false;
417 }
418
419 if (UNIT_VTABLE(u)->may_gc && !UNIT_VTABLE(u)->may_gc(u))
420 return false;
421
422 return true;
423 }
424
425 void unit_add_to_load_queue(Unit *u) {
426 assert(u);
427 assert(u->type != _UNIT_TYPE_INVALID);
428
429 if (u->load_state != UNIT_STUB || u->in_load_queue)
430 return;
431
432 LIST_PREPEND(load_queue, u->manager->load_queue, u);
433 u->in_load_queue = true;
434 }
435
436 void unit_add_to_cleanup_queue(Unit *u) {
437 assert(u);
438
439 if (u->in_cleanup_queue)
440 return;
441
442 LIST_PREPEND(cleanup_queue, u->manager->cleanup_queue, u);
443 u->in_cleanup_queue = true;
444 }
445
446 void unit_add_to_gc_queue(Unit *u) {
447 assert(u);
448
449 if (u->in_gc_queue || u->in_cleanup_queue)
450 return;
451
452 if (!unit_may_gc(u))
453 return;
454
455 LIST_PREPEND(gc_queue, u->manager->gc_unit_queue, u);
456 u->in_gc_queue = true;
457 }
458
459 void unit_add_to_dbus_queue(Unit *u) {
460 assert(u);
461 assert(u->type != _UNIT_TYPE_INVALID);
462
463 if (u->load_state == UNIT_STUB || u->in_dbus_queue)
464 return;
465
466 /* Shortcut things if nobody cares */
467 if (sd_bus_track_count(u->manager->subscribed) <= 0 &&
468 sd_bus_track_count(u->bus_track) <= 0 &&
469 set_isempty(u->manager->private_buses)) {
470 u->sent_dbus_new_signal = true;
471 return;
472 }
473
474 LIST_PREPEND(dbus_queue, u->manager->dbus_unit_queue, u);
475 u->in_dbus_queue = true;
476 }
477
478 void unit_submit_to_stop_when_unneeded_queue(Unit *u) {
479 assert(u);
480
481 if (u->in_stop_when_unneeded_queue)
482 return;
483
484 if (!u->stop_when_unneeded)
485 return;
486
487 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(u)))
488 return;
489
490 LIST_PREPEND(stop_when_unneeded_queue, u->manager->stop_when_unneeded_queue, u);
491 u->in_stop_when_unneeded_queue = true;
492 }
493
494 static void bidi_set_free(Unit *u, Hashmap *h) {
495 Unit *other;
496 Iterator i;
497 void *v;
498
499 assert(u);
500
501 /* Frees the hashmap and makes sure we are dropped from the inverse pointers */
502
503 HASHMAP_FOREACH_KEY(v, other, h, i) {
504 for (UnitDependency d = 0; d < _UNIT_DEPENDENCY_MAX; d++)
505 hashmap_remove(other->dependencies[d], u);
506
507 unit_add_to_gc_queue(other);
508 }
509
510 hashmap_free(h);
511 }
512
513 static void unit_remove_transient(Unit *u) {
514 char **i;
515
516 assert(u);
517
518 if (!u->transient)
519 return;
520
521 if (u->fragment_path)
522 (void) unlink(u->fragment_path);
523
524 STRV_FOREACH(i, u->dropin_paths) {
525 _cleanup_free_ char *p = NULL, *pp = NULL;
526
527 p = dirname_malloc(*i); /* Get the drop-in directory from the drop-in file */
528 if (!p)
529 continue;
530
531 pp = dirname_malloc(p); /* Get the config directory from the drop-in directory */
532 if (!pp)
533 continue;
534
535 /* Only drop transient drop-ins */
536 if (!path_equal(u->manager->lookup_paths.transient, pp))
537 continue;
538
539 (void) unlink(*i);
540 (void) rmdir(p);
541 }
542 }
543
544 static void unit_free_requires_mounts_for(Unit *u) {
545 assert(u);
546
547 for (;;) {
548 _cleanup_free_ char *path;
549
550 path = hashmap_steal_first_key(u->requires_mounts_for);
551 if (!path)
552 break;
553 else {
554 char s[strlen(path) + 1];
555
556 PATH_FOREACH_PREFIX_MORE(s, path) {
557 char *y;
558 Set *x;
559
560 x = hashmap_get2(u->manager->units_requiring_mounts_for, s, (void**) &y);
561 if (!x)
562 continue;
563
564 (void) set_remove(x, u);
565
566 if (set_isempty(x)) {
567 (void) hashmap_remove(u->manager->units_requiring_mounts_for, y);
568 free(y);
569 set_free(x);
570 }
571 }
572 }
573 }
574
575 u->requires_mounts_for = hashmap_free(u->requires_mounts_for);
576 }
577
578 static void unit_done(Unit *u) {
579 ExecContext *ec;
580 CGroupContext *cc;
581
582 assert(u);
583
584 if (u->type < 0)
585 return;
586
587 if (UNIT_VTABLE(u)->done)
588 UNIT_VTABLE(u)->done(u);
589
590 ec = unit_get_exec_context(u);
591 if (ec)
592 exec_context_done(ec);
593
594 cc = unit_get_cgroup_context(u);
595 if (cc)
596 cgroup_context_done(cc);
597 }
598
599 void unit_free(Unit *u) {
600 Iterator i;
601 char *t;
602
603 if (!u)
604 return;
605
606 if (UNIT_ISSET(u->slice)) {
607 /* A unit is being dropped from the tree, make sure our parent slice recalculates the member mask */
608 unit_invalidate_cgroup_members_masks(UNIT_DEREF(u->slice));
609
610 /* And make sure the parent is realized again, updating cgroup memberships */
611 unit_add_to_cgroup_realize_queue(UNIT_DEREF(u->slice));
612 }
613
614 u->transient_file = safe_fclose(u->transient_file);
615
616 if (!MANAGER_IS_RELOADING(u->manager))
617 unit_remove_transient(u);
618
619 bus_unit_send_removed_signal(u);
620
621 unit_done(u);
622
623 unit_dequeue_rewatch_pids(u);
624
625 sd_bus_slot_unref(u->match_bus_slot);
626 sd_bus_track_unref(u->bus_track);
627 u->deserialized_refs = strv_free(u->deserialized_refs);
628 u->pending_freezer_message = sd_bus_message_unref(u->pending_freezer_message);
629
630 unit_free_requires_mounts_for(u);
631
632 SET_FOREACH(t, u->names, i)
633 hashmap_remove_value(u->manager->units, t, u);
634
635 if (!sd_id128_is_null(u->invocation_id))
636 hashmap_remove_value(u->manager->units_by_invocation_id, &u->invocation_id, u);
637
638 if (u->job) {
639 Job *j = u->job;
640 job_uninstall(j);
641 job_free(j);
642 }
643
644 if (u->nop_job) {
645 Job *j = u->nop_job;
646 job_uninstall(j);
647 job_free(j);
648 }
649
650 for (UnitDependency d = 0; d < _UNIT_DEPENDENCY_MAX; d++)
651 bidi_set_free(u, u->dependencies[d]);
652
653 if (u->on_console)
654 manager_unref_console(u->manager);
655
656 unit_release_cgroup(u);
657
658 if (!MANAGER_IS_RELOADING(u->manager))
659 unit_unlink_state_files(u);
660
661 unit_unref_uid_gid(u, false);
662
663 (void) manager_update_failed_units(u->manager, u, false);
664 set_remove(u->manager->startup_units, u);
665
666 unit_unwatch_all_pids(u);
667
668 unit_ref_unset(&u->slice);
669 while (u->refs_by_target)
670 unit_ref_unset(u->refs_by_target);
671
672 if (u->type != _UNIT_TYPE_INVALID)
673 LIST_REMOVE(units_by_type, u->manager->units_by_type[u->type], u);
674
675 if (u->in_load_queue)
676 LIST_REMOVE(load_queue, u->manager->load_queue, u);
677
678 if (u->in_dbus_queue)
679 LIST_REMOVE(dbus_queue, u->manager->dbus_unit_queue, u);
680
681 if (u->in_gc_queue)
682 LIST_REMOVE(gc_queue, u->manager->gc_unit_queue, u);
683
684 if (u->in_cgroup_realize_queue)
685 LIST_REMOVE(cgroup_realize_queue, u->manager->cgroup_realize_queue, u);
686
687 if (u->in_cgroup_empty_queue)
688 LIST_REMOVE(cgroup_empty_queue, u->manager->cgroup_empty_queue, u);
689
690 if (u->in_cleanup_queue)
691 LIST_REMOVE(cleanup_queue, u->manager->cleanup_queue, u);
692
693 if (u->in_target_deps_queue)
694 LIST_REMOVE(target_deps_queue, u->manager->target_deps_queue, u);
695
696 if (u->in_stop_when_unneeded_queue)
697 LIST_REMOVE(stop_when_unneeded_queue, u->manager->stop_when_unneeded_queue, u);
698
699 safe_close(u->ip_accounting_ingress_map_fd);
700 safe_close(u->ip_accounting_egress_map_fd);
701
702 safe_close(u->ipv4_allow_map_fd);
703 safe_close(u->ipv6_allow_map_fd);
704 safe_close(u->ipv4_deny_map_fd);
705 safe_close(u->ipv6_deny_map_fd);
706
707 bpf_program_unref(u->ip_bpf_ingress);
708 bpf_program_unref(u->ip_bpf_ingress_installed);
709 bpf_program_unref(u->ip_bpf_egress);
710 bpf_program_unref(u->ip_bpf_egress_installed);
711
712 set_free(u->ip_bpf_custom_ingress);
713 set_free(u->ip_bpf_custom_egress);
714 set_free(u->ip_bpf_custom_ingress_installed);
715 set_free(u->ip_bpf_custom_egress_installed);
716
717 bpf_program_unref(u->bpf_device_control_installed);
718
719 condition_free_list(u->conditions);
720 condition_free_list(u->asserts);
721
722 free(u->description);
723 strv_free(u->documentation);
724 free(u->fragment_path);
725 free(u->source_path);
726 strv_free(u->dropin_paths);
727 free(u->instance);
728
729 free(u->job_timeout_reboot_arg);
730
731 set_free_free(u->names);
732
733 free(u->reboot_arg);
734
735 free(u);
736 }
737
738 FreezerState unit_freezer_state(Unit *u) {
739 assert(u);
740
741 return u->freezer_state;
742 }
743
744 int unit_freezer_state_kernel(Unit *u, FreezerState *ret) {
745 char *values[1] = {};
746 int r;
747
748 assert(u);
749
750 r = cg_get_keyed_attribute(SYSTEMD_CGROUP_CONTROLLER, u->cgroup_path, "cgroup.events",
751 STRV_MAKE("frozen"), values);
752 if (r < 0)
753 return r;
754
755 r = _FREEZER_STATE_INVALID;
756
757 if (values[0]) {
758 if (streq(values[0], "0"))
759 r = FREEZER_RUNNING;
760 else if (streq(values[0], "1"))
761 r = FREEZER_FROZEN;
762 }
763
764 free(values[0]);
765 *ret = r;
766
767 return 0;
768 }
769
770 UnitActiveState unit_active_state(Unit *u) {
771 assert(u);
772
773 if (u->load_state == UNIT_MERGED)
774 return unit_active_state(unit_follow_merge(u));
775
776 /* After a reload it might happen that a unit is not correctly
777 * loaded but still has a process around. That's why we won't
778 * shortcut failed loading to UNIT_INACTIVE_FAILED. */
779
780 return UNIT_VTABLE(u)->active_state(u);
781 }
782
783 const char* unit_sub_state_to_string(Unit *u) {
784 assert(u);
785
786 return UNIT_VTABLE(u)->sub_state_to_string(u);
787 }
788
789 static int set_complete_move(Set **s, Set **other) {
790 assert(s);
791 assert(other);
792
793 if (!other)
794 return 0;
795
796 if (*s)
797 return set_move(*s, *other);
798 else
799 *s = TAKE_PTR(*other);
800
801 return 0;
802 }
803
804 static int hashmap_complete_move(Hashmap **s, Hashmap **other) {
805 assert(s);
806 assert(other);
807
808 if (!*other)
809 return 0;
810
811 if (*s)
812 return hashmap_move(*s, *other);
813 else
814 *s = TAKE_PTR(*other);
815
816 return 0;
817 }
818
819 static int merge_names(Unit *u, Unit *other) {
820 char *t;
821 Iterator i;
822 int r;
823
824 assert(u);
825 assert(other);
826
827 r = set_complete_move(&u->names, &other->names);
828 if (r < 0)
829 return r;
830
831 set_free_free(other->names);
832 other->names = NULL;
833 other->id = NULL;
834
835 SET_FOREACH(t, u->names, i)
836 assert_se(hashmap_replace(u->manager->units, t, u) == 0);
837
838 return 0;
839 }
840
841 static int reserve_dependencies(Unit *u, Unit *other, UnitDependency d) {
842 unsigned n_reserve;
843
844 assert(u);
845 assert(other);
846 assert(d < _UNIT_DEPENDENCY_MAX);
847
848 /*
849 * If u does not have this dependency set allocated, there is no need
850 * to reserve anything. In that case other's set will be transferred
851 * as a whole to u by complete_move().
852 */
853 if (!u->dependencies[d])
854 return 0;
855
856 /* merge_dependencies() will skip a u-on-u dependency */
857 n_reserve = hashmap_size(other->dependencies[d]) - !!hashmap_get(other->dependencies[d], u);
858
859 return hashmap_reserve(u->dependencies[d], n_reserve);
860 }
861
862 static void merge_dependencies(Unit *u, Unit *other, const char *other_id, UnitDependency d) {
863 Iterator i;
864 Unit *back;
865 void *v;
866 int r;
867
868 /* Merges all dependencies of type 'd' of the unit 'other' into the deps of the unit 'u' */
869
870 assert(u);
871 assert(other);
872 assert(d < _UNIT_DEPENDENCY_MAX);
873
874 /* Fix backwards pointers. Let's iterate through all dependent units of the other unit. */
875 HASHMAP_FOREACH_KEY(v, back, other->dependencies[d], i)
876
877 /* Let's now iterate through the dependencies of that dependencies of the other units,
878 * looking for pointers back, and let's fix them up, to instead point to 'u'. */
879 for (UnitDependency k = 0; k < _UNIT_DEPENDENCY_MAX; k++)
880 if (back == u) {
881 /* Do not add dependencies between u and itself. */
882 if (hashmap_remove(back->dependencies[k], other))
883 maybe_warn_about_dependency(u, other_id, k);
884 } else {
885 UnitDependencyInfo di_u, di_other;
886
887 /* Let's drop this dependency between "back" and "other", and let's create it between
888 * "back" and "u" instead. Let's merge the bit masks of the dependency we are moving,
889 * and any such dependency which might already exist */
890
891 di_other.data = hashmap_get(back->dependencies[k], other);
892 if (!di_other.data)
893 continue; /* dependency isn't set, let's try the next one */
894
895 di_u.data = hashmap_get(back->dependencies[k], u);
896
897 UnitDependencyInfo di_merged = {
898 .origin_mask = di_u.origin_mask | di_other.origin_mask,
899 .destination_mask = di_u.destination_mask | di_other.destination_mask,
900 };
901
902 r = hashmap_remove_and_replace(back->dependencies[k], other, u, di_merged.data);
903 if (r < 0)
904 log_warning_errno(r, "Failed to remove/replace: back=%s other=%s u=%s: %m", back->id, other_id, u->id);
905 assert(r >= 0);
906
907 /* assert_se(hashmap_remove_and_replace(back->dependencies[k], other, u, di_merged.data) >= 0); */
908 }
909
910 /* Also do not move dependencies on u to itself */
911 back = hashmap_remove(other->dependencies[d], u);
912 if (back)
913 maybe_warn_about_dependency(u, other_id, d);
914
915 /* The move cannot fail. The caller must have performed a reservation. */
916 assert_se(hashmap_complete_move(&u->dependencies[d], &other->dependencies[d]) == 0);
917
918 other->dependencies[d] = hashmap_free(other->dependencies[d]);
919 }
920
921 int unit_merge(Unit *u, Unit *other) {
922 const char *other_id = NULL;
923 int r;
924
925 assert(u);
926 assert(other);
927 assert(u->manager == other->manager);
928 assert(u->type != _UNIT_TYPE_INVALID);
929
930 other = unit_follow_merge(other);
931
932 if (other == u)
933 return 0;
934
935 if (u->type != other->type)
936 return -EINVAL;
937
938 if (!u->instance != !other->instance)
939 return -EINVAL;
940
941 if (!unit_type_may_alias(u->type)) /* Merging only applies to unit names that support aliases */
942 return -EEXIST;
943
944 if (!IN_SET(other->load_state, UNIT_STUB, UNIT_NOT_FOUND))
945 return -EEXIST;
946
947 if (other->job)
948 return -EEXIST;
949
950 if (other->nop_job)
951 return -EEXIST;
952
953 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other)))
954 return -EEXIST;
955
956 if (other->id)
957 other_id = strdupa(other->id);
958
959 /* Make reservations to ensure merge_dependencies() won't fail */
960 for (UnitDependency d = 0; d < _UNIT_DEPENDENCY_MAX; d++) {
961 r = reserve_dependencies(u, other, d);
962 /*
963 * We don't rollback reservations if we fail. We don't have
964 * a way to undo reservations. A reservation is not a leak.
965 */
966 if (r < 0)
967 return r;
968 }
969
970 /* Merge names */
971 r = merge_names(u, other);
972 if (r < 0)
973 return r;
974
975 /* Redirect all references */
976 while (other->refs_by_target)
977 unit_ref_set(other->refs_by_target, other->refs_by_target->source, u);
978
979 /* Merge dependencies */
980 for (UnitDependency d = 0; d < _UNIT_DEPENDENCY_MAX; d++)
981 merge_dependencies(u, other, other_id, d);
982
983 other->load_state = UNIT_MERGED;
984 other->merged_into = u;
985
986 /* If there is still some data attached to the other node, we
987 * don't need it anymore, and can free it. */
988 if (other->load_state != UNIT_STUB)
989 if (UNIT_VTABLE(other)->done)
990 UNIT_VTABLE(other)->done(other);
991
992 unit_add_to_dbus_queue(u);
993 unit_add_to_cleanup_queue(other);
994
995 return 0;
996 }
997
998 int unit_merge_by_name(Unit *u, const char *name) {
999 _cleanup_free_ char *s = NULL;
1000 Unit *other;
1001 int r;
1002
1003 /* Either add name to u, or if a unit with name already exists, merge it with u.
1004 * If name is a template, do the same for name@instance, where instance is u's instance. */
1005
1006 assert(u);
1007 assert(name);
1008
1009 if (unit_name_is_valid(name, UNIT_NAME_TEMPLATE)) {
1010 if (!u->instance)
1011 return -EINVAL;
1012
1013 r = unit_name_replace_instance(name, u->instance, &s);
1014 if (r < 0)
1015 return r;
1016
1017 name = s;
1018 }
1019
1020 other = manager_get_unit(u->manager, name);
1021 if (other)
1022 return unit_merge(u, other);
1023
1024 return unit_add_name(u, name);
1025 }
1026
1027 Unit* unit_follow_merge(Unit *u) {
1028 assert(u);
1029
1030 while (u->load_state == UNIT_MERGED)
1031 assert_se(u = u->merged_into);
1032
1033 return u;
1034 }
1035
1036 int unit_add_exec_dependencies(Unit *u, ExecContext *c) {
1037 ExecDirectoryType dt;
1038 char **dp;
1039 int r;
1040
1041 assert(u);
1042 assert(c);
1043
1044 if (c->working_directory && !c->working_directory_missing_ok) {
1045 r = unit_require_mounts_for(u, c->working_directory, UNIT_DEPENDENCY_FILE);
1046 if (r < 0)
1047 return r;
1048 }
1049
1050 if (c->root_directory) {
1051 r = unit_require_mounts_for(u, c->root_directory, UNIT_DEPENDENCY_FILE);
1052 if (r < 0)
1053 return r;
1054 }
1055
1056 if (c->root_image) {
1057 r = unit_require_mounts_for(u, c->root_image, UNIT_DEPENDENCY_FILE);
1058 if (r < 0)
1059 return r;
1060 }
1061
1062 for (dt = 0; dt < _EXEC_DIRECTORY_TYPE_MAX; dt++) {
1063 if (!u->manager->prefix[dt])
1064 continue;
1065
1066 STRV_FOREACH(dp, c->directories[dt].paths) {
1067 _cleanup_free_ char *p;
1068
1069 p = path_join(u->manager->prefix[dt], *dp);
1070 if (!p)
1071 return -ENOMEM;
1072
1073 r = unit_require_mounts_for(u, p, UNIT_DEPENDENCY_FILE);
1074 if (r < 0)
1075 return r;
1076 }
1077 }
1078
1079 if (!MANAGER_IS_SYSTEM(u->manager))
1080 return 0;
1081
1082 /* For the following three directory types we need write access, and /var/ is possibly on the root
1083 * fs. Hence order after systemd-remount-fs.service, to ensure things are writable. */
1084 if (!strv_isempty(c->directories[EXEC_DIRECTORY_STATE].paths) ||
1085 !strv_isempty(c->directories[EXEC_DIRECTORY_CACHE].paths) ||
1086 !strv_isempty(c->directories[EXEC_DIRECTORY_LOGS].paths)) {
1087 r = unit_add_dependency_by_name(u, UNIT_AFTER, SPECIAL_REMOUNT_FS_SERVICE, true, UNIT_DEPENDENCY_FILE);
1088 if (r < 0)
1089 return r;
1090 }
1091
1092 if (c->private_tmp) {
1093 const char *p;
1094
1095 FOREACH_STRING(p, "/tmp", "/var/tmp") {
1096 r = unit_require_mounts_for(u, p, UNIT_DEPENDENCY_FILE);
1097 if (r < 0)
1098 return r;
1099 }
1100
1101 r = unit_add_dependency_by_name(u, UNIT_AFTER, SPECIAL_TMPFILES_SETUP_SERVICE, true, UNIT_DEPENDENCY_FILE);
1102 if (r < 0)
1103 return r;
1104 }
1105
1106 if (c->root_image) {
1107 /* We need to wait for /dev/loopX to appear when doing RootImage=, hence let's add an
1108 * implicit dependency on udev */
1109
1110 r = unit_add_dependency_by_name(u, UNIT_AFTER, SPECIAL_UDEVD_SERVICE, true, UNIT_DEPENDENCY_FILE);
1111 if (r < 0)
1112 return r;
1113 }
1114
1115 if (!IN_SET(c->std_output,
1116 EXEC_OUTPUT_JOURNAL, EXEC_OUTPUT_JOURNAL_AND_CONSOLE,
1117 EXEC_OUTPUT_KMSG, EXEC_OUTPUT_KMSG_AND_CONSOLE) &&
1118 !IN_SET(c->std_error,
1119 EXEC_OUTPUT_JOURNAL, EXEC_OUTPUT_JOURNAL_AND_CONSOLE,
1120 EXEC_OUTPUT_KMSG, EXEC_OUTPUT_KMSG_AND_CONSOLE) &&
1121 !c->log_namespace)
1122 return 0;
1123
1124 /* If syslog or kernel logging is requested (or log namespacing is), make sure our own logging daemon
1125 * is run first. */
1126
1127 if (c->log_namespace) {
1128 _cleanup_free_ char *socket_unit = NULL, *varlink_socket_unit = NULL;
1129
1130 r = unit_name_build_from_type("systemd-journald", c->log_namespace, UNIT_SOCKET, &socket_unit);
1131 if (r < 0)
1132 return r;
1133
1134 r = unit_add_two_dependencies_by_name(u, UNIT_AFTER, UNIT_REQUIRES, socket_unit, true, UNIT_DEPENDENCY_FILE);
1135 if (r < 0)
1136 return r;
1137
1138 r = unit_name_build_from_type("systemd-journald-varlink", c->log_namespace, UNIT_SOCKET, &varlink_socket_unit);
1139 if (r < 0)
1140 return r;
1141
1142 r = unit_add_two_dependencies_by_name(u, UNIT_AFTER, UNIT_REQUIRES, varlink_socket_unit, true, UNIT_DEPENDENCY_FILE);
1143 if (r < 0)
1144 return r;
1145 } else
1146 r = unit_add_dependency_by_name(u, UNIT_AFTER, SPECIAL_JOURNALD_SOCKET, true, UNIT_DEPENDENCY_FILE);
1147 if (r < 0)
1148 return r;
1149
1150 return 0;
1151 }
1152
1153 const char *unit_description(Unit *u) {
1154 assert(u);
1155
1156 if (u->description)
1157 return u->description;
1158
1159 return strna(u->id);
1160 }
1161
1162 const char *unit_status_string(Unit *u) {
1163 assert(u);
1164
1165 if (u->manager->status_unit_format == STATUS_UNIT_FORMAT_NAME && u->id)
1166 return u->id;
1167
1168 return unit_description(u);
1169 }
1170
1171 static void print_unit_dependency_mask(FILE *f, const char *kind, UnitDependencyMask mask, bool *space) {
1172 const struct {
1173 UnitDependencyMask mask;
1174 const char *name;
1175 } table[] = {
1176 { UNIT_DEPENDENCY_FILE, "file" },
1177 { UNIT_DEPENDENCY_IMPLICIT, "implicit" },
1178 { UNIT_DEPENDENCY_DEFAULT, "default" },
1179 { UNIT_DEPENDENCY_UDEV, "udev" },
1180 { UNIT_DEPENDENCY_PATH, "path" },
1181 { UNIT_DEPENDENCY_MOUNTINFO_IMPLICIT, "mountinfo-implicit" },
1182 { UNIT_DEPENDENCY_MOUNTINFO_DEFAULT, "mountinfo-default" },
1183 { UNIT_DEPENDENCY_PROC_SWAP, "proc-swap" },
1184 };
1185 size_t i;
1186
1187 assert(f);
1188 assert(kind);
1189 assert(space);
1190
1191 for (i = 0; i < ELEMENTSOF(table); i++) {
1192
1193 if (mask == 0)
1194 break;
1195
1196 if (FLAGS_SET(mask, table[i].mask)) {
1197 if (*space)
1198 fputc(' ', f);
1199 else
1200 *space = true;
1201
1202 fputs(kind, f);
1203 fputs("-", f);
1204 fputs(table[i].name, f);
1205
1206 mask &= ~table[i].mask;
1207 }
1208 }
1209
1210 assert(mask == 0);
1211 }
1212
1213 void unit_dump(Unit *u, FILE *f, const char *prefix) {
1214 char *t, **j;
1215 Iterator i;
1216 const char *prefix2;
1217 char timestamp[5][FORMAT_TIMESTAMP_MAX], timespan[FORMAT_TIMESPAN_MAX];
1218 Unit *following;
1219 _cleanup_set_free_ Set *following_set = NULL;
1220 const char *n;
1221 CGroupMask m;
1222 int r;
1223
1224 assert(u);
1225 assert(u->type >= 0);
1226
1227 prefix = strempty(prefix);
1228 prefix2 = strjoina(prefix, "\t");
1229
1230 fprintf(f,
1231 "%s-> Unit %s:\n",
1232 prefix, u->id);
1233
1234 SET_FOREACH(t, u->names, i)
1235 if (!streq(t, u->id))
1236 fprintf(f, "%s\tAlias: %s\n", prefix, t);
1237
1238 fprintf(f,
1239 "%s\tDescription: %s\n"
1240 "%s\tInstance: %s\n"
1241 "%s\tUnit Load State: %s\n"
1242 "%s\tUnit Active State: %s\n"
1243 "%s\tState Change Timestamp: %s\n"
1244 "%s\tInactive Exit Timestamp: %s\n"
1245 "%s\tActive Enter Timestamp: %s\n"
1246 "%s\tActive Exit Timestamp: %s\n"
1247 "%s\tInactive Enter Timestamp: %s\n"
1248 "%s\tMay GC: %s\n"
1249 "%s\tNeed Daemon Reload: %s\n"
1250 "%s\tTransient: %s\n"
1251 "%s\tPerpetual: %s\n"
1252 "%s\tGarbage Collection Mode: %s\n"
1253 "%s\tSlice: %s\n"
1254 "%s\tCGroup: %s\n"
1255 "%s\tCGroup realized: %s\n",
1256 prefix, unit_description(u),
1257 prefix, strna(u->instance),
1258 prefix, unit_load_state_to_string(u->load_state),
1259 prefix, unit_active_state_to_string(unit_active_state(u)),
1260 prefix, strna(format_timestamp(timestamp[0], sizeof(timestamp[0]), u->state_change_timestamp.realtime)),
1261 prefix, strna(format_timestamp(timestamp[1], sizeof(timestamp[1]), u->inactive_exit_timestamp.realtime)),
1262 prefix, strna(format_timestamp(timestamp[2], sizeof(timestamp[2]), u->active_enter_timestamp.realtime)),
1263 prefix, strna(format_timestamp(timestamp[3], sizeof(timestamp[3]), u->active_exit_timestamp.realtime)),
1264 prefix, strna(format_timestamp(timestamp[4], sizeof(timestamp[4]), u->inactive_enter_timestamp.realtime)),
1265 prefix, yes_no(unit_may_gc(u)),
1266 prefix, yes_no(unit_need_daemon_reload(u)),
1267 prefix, yes_no(u->transient),
1268 prefix, yes_no(u->perpetual),
1269 prefix, collect_mode_to_string(u->collect_mode),
1270 prefix, strna(unit_slice_name(u)),
1271 prefix, strna(u->cgroup_path),
1272 prefix, yes_no(u->cgroup_realized));
1273
1274 if (u->cgroup_realized_mask != 0) {
1275 _cleanup_free_ char *s = NULL;
1276 (void) cg_mask_to_string(u->cgroup_realized_mask, &s);
1277 fprintf(f, "%s\tCGroup realized mask: %s\n", prefix, strnull(s));
1278 }
1279
1280 if (u->cgroup_enabled_mask != 0) {
1281 _cleanup_free_ char *s = NULL;
1282 (void) cg_mask_to_string(u->cgroup_enabled_mask, &s);
1283 fprintf(f, "%s\tCGroup enabled mask: %s\n", prefix, strnull(s));
1284 }
1285
1286 m = unit_get_own_mask(u);
1287 if (m != 0) {
1288 _cleanup_free_ char *s = NULL;
1289 (void) cg_mask_to_string(m, &s);
1290 fprintf(f, "%s\tCGroup own mask: %s\n", prefix, strnull(s));
1291 }
1292
1293 m = unit_get_members_mask(u);
1294 if (m != 0) {
1295 _cleanup_free_ char *s = NULL;
1296 (void) cg_mask_to_string(m, &s);
1297 fprintf(f, "%s\tCGroup members mask: %s\n", prefix, strnull(s));
1298 }
1299
1300 m = unit_get_delegate_mask(u);
1301 if (m != 0) {
1302 _cleanup_free_ char *s = NULL;
1303 (void) cg_mask_to_string(m, &s);
1304 fprintf(f, "%s\tCGroup delegate mask: %s\n", prefix, strnull(s));
1305 }
1306
1307 if (!sd_id128_is_null(u->invocation_id))
1308 fprintf(f, "%s\tInvocation ID: " SD_ID128_FORMAT_STR "\n",
1309 prefix, SD_ID128_FORMAT_VAL(u->invocation_id));
1310
1311 STRV_FOREACH(j, u->documentation)
1312 fprintf(f, "%s\tDocumentation: %s\n", prefix, *j);
1313
1314 following = unit_following(u);
1315 if (following)
1316 fprintf(f, "%s\tFollowing: %s\n", prefix, following->id);
1317
1318 r = unit_following_set(u, &following_set);
1319 if (r >= 0) {
1320 Unit *other;
1321
1322 SET_FOREACH(other, following_set, i)
1323 fprintf(f, "%s\tFollowing Set Member: %s\n", prefix, other->id);
1324 }
1325
1326 if (u->fragment_path)
1327 fprintf(f, "%s\tFragment Path: %s\n", prefix, u->fragment_path);
1328
1329 if (u->source_path)
1330 fprintf(f, "%s\tSource Path: %s\n", prefix, u->source_path);
1331
1332 STRV_FOREACH(j, u->dropin_paths)
1333 fprintf(f, "%s\tDropIn Path: %s\n", prefix, *j);
1334
1335 if (u->failure_action != EMERGENCY_ACTION_NONE)
1336 fprintf(f, "%s\tFailure Action: %s\n", prefix, emergency_action_to_string(u->failure_action));
1337 if (u->failure_action_exit_status >= 0)
1338 fprintf(f, "%s\tFailure Action Exit Status: %i\n", prefix, u->failure_action_exit_status);
1339 if (u->success_action != EMERGENCY_ACTION_NONE)
1340 fprintf(f, "%s\tSuccess Action: %s\n", prefix, emergency_action_to_string(u->success_action));
1341 if (u->success_action_exit_status >= 0)
1342 fprintf(f, "%s\tSuccess Action Exit Status: %i\n", prefix, u->success_action_exit_status);
1343
1344 if (u->job_timeout != USEC_INFINITY)
1345 fprintf(f, "%s\tJob Timeout: %s\n", prefix, format_timespan(timespan, sizeof(timespan), u->job_timeout, 0));
1346
1347 if (u->job_timeout_action != EMERGENCY_ACTION_NONE)
1348 fprintf(f, "%s\tJob Timeout Action: %s\n", prefix, emergency_action_to_string(u->job_timeout_action));
1349
1350 if (u->job_timeout_reboot_arg)
1351 fprintf(f, "%s\tJob Timeout Reboot Argument: %s\n", prefix, u->job_timeout_reboot_arg);
1352
1353 condition_dump_list(u->conditions, f, prefix, condition_type_to_string);
1354 condition_dump_list(u->asserts, f, prefix, assert_type_to_string);
1355
1356 if (dual_timestamp_is_set(&u->condition_timestamp))
1357 fprintf(f,
1358 "%s\tCondition Timestamp: %s\n"
1359 "%s\tCondition Result: %s\n",
1360 prefix, strna(format_timestamp(timestamp[0], sizeof(timestamp[0]), u->condition_timestamp.realtime)),
1361 prefix, yes_no(u->condition_result));
1362
1363 if (dual_timestamp_is_set(&u->assert_timestamp))
1364 fprintf(f,
1365 "%s\tAssert Timestamp: %s\n"
1366 "%s\tAssert Result: %s\n",
1367 prefix, strna(format_timestamp(timestamp[0], sizeof(timestamp[0]), u->assert_timestamp.realtime)),
1368 prefix, yes_no(u->assert_result));
1369
1370 for (UnitDependency d = 0; d < _UNIT_DEPENDENCY_MAX; d++) {
1371 UnitDependencyInfo di;
1372 Unit *other;
1373
1374 HASHMAP_FOREACH_KEY(di.data, other, u->dependencies[d], i) {
1375 bool space = false;
1376
1377 fprintf(f, "%s\t%s: %s (", prefix, unit_dependency_to_string(d), other->id);
1378
1379 print_unit_dependency_mask(f, "origin", di.origin_mask, &space);
1380 print_unit_dependency_mask(f, "destination", di.destination_mask, &space);
1381
1382 fputs(")\n", f);
1383 }
1384 }
1385
1386 if (!hashmap_isempty(u->requires_mounts_for)) {
1387 UnitDependencyInfo di;
1388 const char *path;
1389
1390 HASHMAP_FOREACH_KEY(di.data, path, u->requires_mounts_for, i) {
1391 bool space = false;
1392
1393 fprintf(f, "%s\tRequiresMountsFor: %s (", prefix, path);
1394
1395 print_unit_dependency_mask(f, "origin", di.origin_mask, &space);
1396 print_unit_dependency_mask(f, "destination", di.destination_mask, &space);
1397
1398 fputs(")\n", f);
1399 }
1400 }
1401
1402 if (u->load_state == UNIT_LOADED) {
1403
1404 fprintf(f,
1405 "%s\tStopWhenUnneeded: %s\n"
1406 "%s\tRefuseManualStart: %s\n"
1407 "%s\tRefuseManualStop: %s\n"
1408 "%s\tDefaultDependencies: %s\n"
1409 "%s\tOnFailureJobMode: %s\n"
1410 "%s\tIgnoreOnIsolate: %s\n",
1411 prefix, yes_no(u->stop_when_unneeded),
1412 prefix, yes_no(u->refuse_manual_start),
1413 prefix, yes_no(u->refuse_manual_stop),
1414 prefix, yes_no(u->default_dependencies),
1415 prefix, job_mode_to_string(u->on_failure_job_mode),
1416 prefix, yes_no(u->ignore_on_isolate));
1417
1418 if (UNIT_VTABLE(u)->dump)
1419 UNIT_VTABLE(u)->dump(u, f, prefix2);
1420
1421 } else if (u->load_state == UNIT_MERGED)
1422 fprintf(f,
1423 "%s\tMerged into: %s\n",
1424 prefix, u->merged_into->id);
1425 else if (u->load_state == UNIT_ERROR)
1426 fprintf(f, "%s\tLoad Error Code: %s\n", prefix, strerror_safe(u->load_error));
1427
1428 for (n = sd_bus_track_first(u->bus_track); n; n = sd_bus_track_next(u->bus_track))
1429 fprintf(f, "%s\tBus Ref: %s\n", prefix, n);
1430
1431 if (u->job)
1432 job_dump(u->job, f, prefix2);
1433
1434 if (u->nop_job)
1435 job_dump(u->nop_job, f, prefix2);
1436 }
1437
1438 /* Common implementation for multiple backends */
1439 int unit_load_fragment_and_dropin(Unit *u, bool fragment_required) {
1440 int r;
1441
1442 assert(u);
1443
1444 /* Load a .{service,socket,...} file */
1445 r = unit_load_fragment(u);
1446 if (r < 0)
1447 return r;
1448
1449 if (u->load_state == UNIT_STUB) {
1450 if (fragment_required)
1451 return -ENOENT;
1452
1453 u->load_state = UNIT_LOADED;
1454 }
1455
1456 /* Load drop-in directory data. If u is an alias, we might be reloading the
1457 * target unit needlessly. But we cannot be sure which drops-ins have already
1458 * been loaded and which not, at least without doing complicated book-keeping,
1459 * so let's always reread all drop-ins. */
1460 return unit_load_dropin(unit_follow_merge(u));
1461 }
1462
1463 void unit_add_to_target_deps_queue(Unit *u) {
1464 Manager *m = u->manager;
1465
1466 assert(u);
1467
1468 if (u->in_target_deps_queue)
1469 return;
1470
1471 LIST_PREPEND(target_deps_queue, m->target_deps_queue, u);
1472 u->in_target_deps_queue = true;
1473 }
1474
1475 int unit_add_default_target_dependency(Unit *u, Unit *target) {
1476 assert(u);
1477 assert(target);
1478
1479 if (target->type != UNIT_TARGET)
1480 return 0;
1481
1482 /* Only add the dependency if both units are loaded, so that
1483 * that loop check below is reliable */
1484 if (u->load_state != UNIT_LOADED ||
1485 target->load_state != UNIT_LOADED)
1486 return 0;
1487
1488 /* If either side wants no automatic dependencies, then let's
1489 * skip this */
1490 if (!u->default_dependencies ||
1491 !target->default_dependencies)
1492 return 0;
1493
1494 /* Don't create loops */
1495 if (hashmap_get(target->dependencies[UNIT_BEFORE], u))
1496 return 0;
1497
1498 return unit_add_dependency(target, UNIT_AFTER, u, true, UNIT_DEPENDENCY_DEFAULT);
1499 }
1500
1501 static int unit_add_slice_dependencies(Unit *u) {
1502 assert(u);
1503
1504 if (!UNIT_HAS_CGROUP_CONTEXT(u))
1505 return 0;
1506
1507 /* Slice units are implicitly ordered against their parent slices (as this relationship is encoded in the
1508 name), while all other units are ordered based on configuration (as in their case Slice= configures the
1509 relationship). */
1510 UnitDependencyMask mask = u->type == UNIT_SLICE ? UNIT_DEPENDENCY_IMPLICIT : UNIT_DEPENDENCY_FILE;
1511
1512 if (UNIT_ISSET(u->slice))
1513 return unit_add_two_dependencies(u, UNIT_AFTER, UNIT_REQUIRES, UNIT_DEREF(u->slice), true, mask);
1514
1515 if (unit_has_name(u, SPECIAL_ROOT_SLICE))
1516 return 0;
1517
1518 return unit_add_two_dependencies_by_name(u, UNIT_AFTER, UNIT_REQUIRES, SPECIAL_ROOT_SLICE, true, mask);
1519 }
1520
1521 static int unit_add_mount_dependencies(Unit *u) {
1522 UnitDependencyInfo di;
1523 const char *path;
1524 Iterator i;
1525 int r;
1526
1527 assert(u);
1528
1529 HASHMAP_FOREACH_KEY(di.data, path, u->requires_mounts_for, i) {
1530 char prefix[strlen(path) + 1];
1531
1532 PATH_FOREACH_PREFIX_MORE(prefix, path) {
1533 _cleanup_free_ char *p = NULL;
1534 Unit *m;
1535
1536 r = unit_name_from_path(prefix, ".mount", &p);
1537 if (r < 0)
1538 return r;
1539
1540 m = manager_get_unit(u->manager, p);
1541 if (!m) {
1542 /* Make sure to load the mount unit if
1543 * it exists. If so the dependencies
1544 * on this unit will be added later
1545 * during the loading of the mount
1546 * unit. */
1547 (void) manager_load_unit_prepare(u->manager, p, NULL, NULL, &m);
1548 continue;
1549 }
1550 if (m == u)
1551 continue;
1552
1553 if (m->load_state != UNIT_LOADED)
1554 continue;
1555
1556 r = unit_add_dependency(u, UNIT_AFTER, m, true, di.origin_mask);
1557 if (r < 0)
1558 return r;
1559
1560 if (m->fragment_path) {
1561 r = unit_add_dependency(u, UNIT_REQUIRES, m, true, di.origin_mask);
1562 if (r < 0)
1563 return r;
1564 }
1565 }
1566 }
1567
1568 return 0;
1569 }
1570
1571 static int unit_add_startup_units(Unit *u) {
1572 CGroupContext *c;
1573 int r;
1574
1575 c = unit_get_cgroup_context(u);
1576 if (!c)
1577 return 0;
1578
1579 if (c->startup_cpu_shares == CGROUP_CPU_SHARES_INVALID &&
1580 c->startup_io_weight == CGROUP_WEIGHT_INVALID &&
1581 c->startup_blockio_weight == CGROUP_BLKIO_WEIGHT_INVALID)
1582 return 0;
1583
1584 r = set_ensure_allocated(&u->manager->startup_units, NULL);
1585 if (r < 0)
1586 return r;
1587
1588 return set_put(u->manager->startup_units, u);
1589 }
1590
1591 int unit_load(Unit *u) {
1592 int r;
1593
1594 assert(u);
1595
1596 if (u->in_load_queue) {
1597 LIST_REMOVE(load_queue, u->manager->load_queue, u);
1598 u->in_load_queue = false;
1599 }
1600
1601 if (u->type == _UNIT_TYPE_INVALID)
1602 return -EINVAL;
1603
1604 if (u->load_state != UNIT_STUB)
1605 return 0;
1606
1607 if (u->transient_file) {
1608 /* Finalize transient file: if this is a transient unit file, as soon as we reach unit_load() the setup
1609 * is complete, hence let's synchronize the unit file we just wrote to disk. */
1610
1611 r = fflush_and_check(u->transient_file);
1612 if (r < 0)
1613 goto fail;
1614
1615 u->transient_file = safe_fclose(u->transient_file);
1616 u->fragment_mtime = now(CLOCK_REALTIME);
1617 }
1618
1619 r = UNIT_VTABLE(u)->load(u);
1620 if (r < 0)
1621 goto fail;
1622
1623 assert(u->load_state != UNIT_STUB);
1624
1625 if (u->load_state == UNIT_LOADED) {
1626 unit_add_to_target_deps_queue(u);
1627
1628 r = unit_add_slice_dependencies(u);
1629 if (r < 0)
1630 goto fail;
1631
1632 r = unit_add_mount_dependencies(u);
1633 if (r < 0)
1634 goto fail;
1635
1636 r = unit_add_startup_units(u);
1637 if (r < 0)
1638 goto fail;
1639
1640 if (u->on_failure_job_mode == JOB_ISOLATE && hashmap_size(u->dependencies[UNIT_ON_FAILURE]) > 1) {
1641 log_unit_error(u, "More than one OnFailure= dependencies specified but OnFailureJobMode=isolate set. Refusing.");
1642 r = -ENOEXEC;
1643 goto fail;
1644 }
1645
1646 if (u->job_running_timeout != USEC_INFINITY && u->job_running_timeout > u->job_timeout)
1647 log_unit_warning(u, "JobRunningTimeoutSec= is greater than JobTimeoutSec=, it has no effect.");
1648
1649 /* We finished loading, let's ensure our parents recalculate the members mask */
1650 unit_invalidate_cgroup_members_masks(u);
1651 }
1652
1653 assert((u->load_state != UNIT_MERGED) == !u->merged_into);
1654
1655 unit_add_to_dbus_queue(unit_follow_merge(u));
1656 unit_add_to_gc_queue(u);
1657
1658 return 0;
1659
1660 fail:
1661 /* We convert ENOEXEC errors to the UNIT_BAD_SETTING load state here. Configuration parsing code should hence
1662 * return ENOEXEC to ensure units are placed in this state after loading */
1663
1664 u->load_state = u->load_state == UNIT_STUB ? UNIT_NOT_FOUND :
1665 r == -ENOEXEC ? UNIT_BAD_SETTING :
1666 UNIT_ERROR;
1667 u->load_error = r;
1668
1669 unit_add_to_dbus_queue(u);
1670 unit_add_to_gc_queue(u);
1671
1672 return log_unit_debug_errno(u, r, "Failed to load configuration: %m");
1673 }
1674
1675 _printf_(7, 8)
1676 static int log_unit_internal(void *userdata, int level, int error, const char *file, int line, const char *func, const char *format, ...) {
1677 Unit *u = userdata;
1678 va_list ap;
1679 int r;
1680
1681 va_start(ap, format);
1682 if (u)
1683 r = log_object_internalv(level, error, file, line, func,
1684 u->manager->unit_log_field,
1685 u->id,
1686 u->manager->invocation_log_field,
1687 u->invocation_id_string,
1688 format, ap);
1689 else
1690 r = log_internalv(level, error, file, line, func, format, ap);
1691 va_end(ap);
1692
1693 return r;
1694 }
1695
1696 static bool unit_test_condition(Unit *u) {
1697 _cleanup_strv_free_ char **env = NULL;
1698 int r;
1699
1700 assert(u);
1701
1702 dual_timestamp_get(&u->condition_timestamp);
1703
1704 r = manager_get_effective_environment(u->manager, &env);
1705 if (r < 0) {
1706 log_unit_error_errno(u, r, "Failed to determine effective environment: %m");
1707 u->condition_result = CONDITION_ERROR;
1708 } else
1709 u->condition_result = condition_test_list(
1710 u->conditions,
1711 env,
1712 condition_type_to_string,
1713 log_unit_internal,
1714 u);
1715
1716 unit_add_to_dbus_queue(u);
1717 return u->condition_result;
1718 }
1719
1720 static bool unit_test_assert(Unit *u) {
1721 _cleanup_strv_free_ char **env = NULL;
1722 int r;
1723
1724 assert(u);
1725
1726 dual_timestamp_get(&u->assert_timestamp);
1727
1728 r = manager_get_effective_environment(u->manager, &env);
1729 if (r < 0) {
1730 log_unit_error_errno(u, r, "Failed to determine effective environment: %m");
1731 u->assert_result = CONDITION_ERROR;
1732 } else
1733 u->assert_result = condition_test_list(
1734 u->asserts,
1735 env,
1736 assert_type_to_string,
1737 log_unit_internal,
1738 u);
1739
1740 unit_add_to_dbus_queue(u);
1741 return u->assert_result;
1742 }
1743
1744 void unit_status_printf(Unit *u, StatusType status_type, const char *status, const char *unit_status_msg_format) {
1745 const char *d;
1746
1747 d = unit_status_string(u);
1748 if (log_get_show_color())
1749 d = strjoina(ANSI_HIGHLIGHT, d, ANSI_NORMAL);
1750
1751 DISABLE_WARNING_FORMAT_NONLITERAL;
1752 manager_status_printf(u->manager, status_type, status, unit_status_msg_format, d);
1753 REENABLE_WARNING;
1754 }
1755
1756 int unit_test_start_limit(Unit *u) {
1757 const char *reason;
1758
1759 assert(u);
1760
1761 if (ratelimit_below(&u->start_ratelimit)) {
1762 u->start_limit_hit = false;
1763 return 0;
1764 }
1765
1766 log_unit_warning(u, "Start request repeated too quickly.");
1767 u->start_limit_hit = true;
1768
1769 reason = strjoina("unit ", u->id, " failed");
1770
1771 emergency_action(u->manager, u->start_limit_action,
1772 EMERGENCY_ACTION_IS_WATCHDOG|EMERGENCY_ACTION_WARN,
1773 u->reboot_arg, -1, reason);
1774
1775 return -ECANCELED;
1776 }
1777
1778 bool unit_shall_confirm_spawn(Unit *u) {
1779 assert(u);
1780
1781 if (manager_is_confirm_spawn_disabled(u->manager))
1782 return false;
1783
1784 /* For some reasons units remaining in the same process group
1785 * as PID 1 fail to acquire the console even if it's not used
1786 * by any process. So skip the confirmation question for them. */
1787 return !unit_get_exec_context(u)->same_pgrp;
1788 }
1789
1790 static bool unit_verify_deps(Unit *u) {
1791 Unit *other;
1792 Iterator j;
1793 void *v;
1794
1795 assert(u);
1796
1797 /* Checks whether all BindsTo= dependencies of this unit are fulfilled — if they are also combined with
1798 * After=. We do not check Requires= or Requisite= here as they only should have an effect on the job
1799 * processing, but do not have any effect afterwards. We don't check BindsTo= dependencies that are not used in
1800 * conjunction with After= as for them any such check would make things entirely racy. */
1801
1802 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_BINDS_TO], j) {
1803
1804 if (!hashmap_contains(u->dependencies[UNIT_AFTER], other))
1805 continue;
1806
1807 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(other))) {
1808 log_unit_notice(u, "Bound to unit %s, but unit isn't active.", other->id);
1809 return false;
1810 }
1811 }
1812
1813 return true;
1814 }
1815
1816 /* Errors that aren't really errors:
1817 * -EALREADY: Unit is already started.
1818 * -ECOMM: Condition failed
1819 * -EAGAIN: An operation is already in progress. Retry later.
1820 *
1821 * Errors that are real errors:
1822 * -EBADR: This unit type does not support starting.
1823 * -ECANCELED: Start limit hit, too many requests for now
1824 * -EPROTO: Assert failed
1825 * -EINVAL: Unit not loaded
1826 * -EOPNOTSUPP: Unit type not supported
1827 * -ENOLINK: The necessary dependencies are not fulfilled.
1828 * -ESTALE: This unit has been started before and can't be started a second time
1829 * -ENOENT: This is a triggering unit and unit to trigger is not loaded
1830 */
1831 int unit_start(Unit *u) {
1832 UnitActiveState state;
1833 Unit *following;
1834
1835 assert(u);
1836
1837 /* If this is already started, then this will succeed. Note that this will even succeed if this unit
1838 * is not startable by the user. This is relied on to detect when we need to wait for units and when
1839 * waiting is finished. */
1840 state = unit_active_state(u);
1841 if (UNIT_IS_ACTIVE_OR_RELOADING(state))
1842 return -EALREADY;
1843 if (state == UNIT_MAINTENANCE)
1844 return -EAGAIN;
1845
1846 /* Units that aren't loaded cannot be started */
1847 if (u->load_state != UNIT_LOADED)
1848 return -EINVAL;
1849
1850 /* Refuse starting scope units more than once */
1851 if (UNIT_VTABLE(u)->once_only && dual_timestamp_is_set(&u->inactive_enter_timestamp))
1852 return -ESTALE;
1853
1854 /* If the conditions failed, don't do anything at all. If we already are activating this call might
1855 * still be useful to speed up activation in case there is some hold-off time, but we don't want to
1856 * recheck the condition in that case. */
1857 if (state != UNIT_ACTIVATING &&
1858 !unit_test_condition(u))
1859 return log_unit_debug_errno(u, SYNTHETIC_ERRNO(ECOMM), "Starting requested but condition failed. Not starting unit.");
1860
1861 /* If the asserts failed, fail the entire job */
1862 if (state != UNIT_ACTIVATING &&
1863 !unit_test_assert(u))
1864 return log_unit_notice_errno(u, SYNTHETIC_ERRNO(EPROTO), "Starting requested but asserts failed.");
1865
1866 /* Units of types that aren't supported cannot be started. Note that we do this test only after the
1867 * condition checks, so that we rather return condition check errors (which are usually not
1868 * considered a true failure) than "not supported" errors (which are considered a failure).
1869 */
1870 if (!unit_type_supported(u->type))
1871 return -EOPNOTSUPP;
1872
1873 /* Let's make sure that the deps really are in order before we start this. Normally the job engine
1874 * should have taken care of this already, but let's check this here again. After all, our
1875 * dependencies might not be in effect anymore, due to a reload or due to a failed condition. */
1876 if (!unit_verify_deps(u))
1877 return -ENOLINK;
1878
1879 /* Forward to the main object, if we aren't it. */
1880 following = unit_following(u);
1881 if (following) {
1882 log_unit_debug(u, "Redirecting start request from %s to %s.", u->id, following->id);
1883 return unit_start(following);
1884 }
1885
1886 /* If it is stopped, but we cannot start it, then fail */
1887 if (!UNIT_VTABLE(u)->start)
1888 return -EBADR;
1889
1890 /* We don't suppress calls to ->start() here when we are already starting, to allow this request to
1891 * be used as a "hurry up" call, for example when the unit is in some "auto restart" state where it
1892 * waits for a holdoff timer to elapse before it will start again. */
1893
1894 unit_add_to_dbus_queue(u);
1895 unit_cgroup_freezer_action(u, FREEZER_THAW);
1896
1897 return UNIT_VTABLE(u)->start(u);
1898 }
1899
1900 bool unit_can_start(Unit *u) {
1901 assert(u);
1902
1903 if (u->load_state != UNIT_LOADED)
1904 return false;
1905
1906 if (!unit_type_supported(u->type))
1907 return false;
1908
1909 /* Scope units may be started only once */
1910 if (UNIT_VTABLE(u)->once_only && dual_timestamp_is_set(&u->inactive_exit_timestamp))
1911 return false;
1912
1913 return !!UNIT_VTABLE(u)->start;
1914 }
1915
1916 bool unit_can_isolate(Unit *u) {
1917 assert(u);
1918
1919 return unit_can_start(u) &&
1920 u->allow_isolate;
1921 }
1922
1923 /* Errors:
1924 * -EBADR: This unit type does not support stopping.
1925 * -EALREADY: Unit is already stopped.
1926 * -EAGAIN: An operation is already in progress. Retry later.
1927 */
1928 int unit_stop(Unit *u) {
1929 UnitActiveState state;
1930 Unit *following;
1931
1932 assert(u);
1933
1934 state = unit_active_state(u);
1935 if (UNIT_IS_INACTIVE_OR_FAILED(state))
1936 return -EALREADY;
1937
1938 following = unit_following(u);
1939 if (following) {
1940 log_unit_debug(u, "Redirecting stop request from %s to %s.", u->id, following->id);
1941 return unit_stop(following);
1942 }
1943
1944 if (!UNIT_VTABLE(u)->stop)
1945 return -EBADR;
1946
1947 unit_add_to_dbus_queue(u);
1948 unit_cgroup_freezer_action(u, FREEZER_THAW);
1949
1950 return UNIT_VTABLE(u)->stop(u);
1951 }
1952
1953 bool unit_can_stop(Unit *u) {
1954 assert(u);
1955
1956 if (!unit_type_supported(u->type))
1957 return false;
1958
1959 if (u->perpetual)
1960 return false;
1961
1962 return !!UNIT_VTABLE(u)->stop;
1963 }
1964
1965 /* Errors:
1966 * -EBADR: This unit type does not support reloading.
1967 * -ENOEXEC: Unit is not started.
1968 * -EAGAIN: An operation is already in progress. Retry later.
1969 */
1970 int unit_reload(Unit *u) {
1971 UnitActiveState state;
1972 Unit *following;
1973
1974 assert(u);
1975
1976 if (u->load_state != UNIT_LOADED)
1977 return -EINVAL;
1978
1979 if (!unit_can_reload(u))
1980 return -EBADR;
1981
1982 state = unit_active_state(u);
1983 if (state == UNIT_RELOADING)
1984 return -EAGAIN;
1985
1986 if (state != UNIT_ACTIVE) {
1987 log_unit_warning(u, "Unit cannot be reloaded because it is inactive.");
1988 return -ENOEXEC;
1989 }
1990
1991 following = unit_following(u);
1992 if (following) {
1993 log_unit_debug(u, "Redirecting reload request from %s to %s.", u->id, following->id);
1994 return unit_reload(following);
1995 }
1996
1997 unit_add_to_dbus_queue(u);
1998
1999 if (!UNIT_VTABLE(u)->reload) {
2000 /* Unit doesn't have a reload function, but we need to propagate the reload anyway */
2001 unit_notify(u, unit_active_state(u), unit_active_state(u), 0);
2002 return 0;
2003 }
2004
2005 unit_cgroup_freezer_action(u, FREEZER_THAW);
2006
2007 return UNIT_VTABLE(u)->reload(u);
2008 }
2009
2010 bool unit_can_reload(Unit *u) {
2011 assert(u);
2012
2013 if (UNIT_VTABLE(u)->can_reload)
2014 return UNIT_VTABLE(u)->can_reload(u);
2015
2016 if (!hashmap_isempty(u->dependencies[UNIT_PROPAGATES_RELOAD_TO]))
2017 return true;
2018
2019 return UNIT_VTABLE(u)->reload;
2020 }
2021
2022 bool unit_is_unneeded(Unit *u) {
2023 static const UnitDependency deps[] = {
2024 UNIT_REQUIRED_BY,
2025 UNIT_REQUISITE_OF,
2026 UNIT_WANTED_BY,
2027 UNIT_BOUND_BY,
2028 };
2029 size_t j;
2030
2031 assert(u);
2032
2033 if (!u->stop_when_unneeded)
2034 return false;
2035
2036 /* Don't clean up while the unit is transitioning or is even inactive. */
2037 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(u)))
2038 return false;
2039 if (u->job)
2040 return false;
2041
2042 for (j = 0; j < ELEMENTSOF(deps); j++) {
2043 Unit *other;
2044 Iterator i;
2045 void *v;
2046
2047 /* If a dependent unit has a job queued, is active or transitioning, or is marked for
2048 * restart, then don't clean this one up. */
2049
2050 HASHMAP_FOREACH_KEY(v, other, u->dependencies[deps[j]], i) {
2051 if (other->job)
2052 return false;
2053
2054 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other)))
2055 return false;
2056
2057 if (unit_will_restart(other))
2058 return false;
2059 }
2060 }
2061
2062 return true;
2063 }
2064
2065 static void check_unneeded_dependencies(Unit *u) {
2066
2067 static const UnitDependency deps[] = {
2068 UNIT_REQUIRES,
2069 UNIT_REQUISITE,
2070 UNIT_WANTS,
2071 UNIT_BINDS_TO,
2072 };
2073 size_t j;
2074
2075 assert(u);
2076
2077 /* Add all units this unit depends on to the queue that processes StopWhenUnneeded= behaviour. */
2078
2079 for (j = 0; j < ELEMENTSOF(deps); j++) {
2080 Unit *other;
2081 Iterator i;
2082 void *v;
2083
2084 HASHMAP_FOREACH_KEY(v, other, u->dependencies[deps[j]], i)
2085 unit_submit_to_stop_when_unneeded_queue(other);
2086 }
2087 }
2088
2089 static void unit_check_binds_to(Unit *u) {
2090 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
2091 bool stop = false;
2092 Unit *other;
2093 Iterator i;
2094 void *v;
2095 int r;
2096
2097 assert(u);
2098
2099 if (u->job)
2100 return;
2101
2102 if (unit_active_state(u) != UNIT_ACTIVE)
2103 return;
2104
2105 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_BINDS_TO], i) {
2106 if (other->job)
2107 continue;
2108
2109 if (!other->coldplugged)
2110 /* We might yet create a job for the other unit… */
2111 continue;
2112
2113 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other)))
2114 continue;
2115
2116 stop = true;
2117 break;
2118 }
2119
2120 if (!stop)
2121 return;
2122
2123 /* If stopping a unit fails continuously we might enter a stop
2124 * loop here, hence stop acting on the service being
2125 * unnecessary after a while. */
2126 if (!ratelimit_below(&u->auto_stop_ratelimit)) {
2127 log_unit_warning(u, "Unit is bound to inactive unit %s, but not stopping since we tried this too often recently.", other->id);
2128 return;
2129 }
2130
2131 assert(other);
2132 log_unit_info(u, "Unit is bound to inactive unit %s. Stopping, too.", other->id);
2133
2134 /* A unit we need to run is gone. Sniff. Let's stop this. */
2135 r = manager_add_job(u->manager, JOB_STOP, u, JOB_FAIL, NULL, &error, NULL);
2136 if (r < 0)
2137 log_unit_warning_errno(u, r, "Failed to enqueue stop job, ignoring: %s", bus_error_message(&error, r));
2138 }
2139
2140 static void retroactively_start_dependencies(Unit *u) {
2141 Iterator i;
2142 Unit *other;
2143 void *v;
2144
2145 assert(u);
2146 assert(UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u)));
2147
2148 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_REQUIRES], i)
2149 if (!hashmap_get(u->dependencies[UNIT_AFTER], other) &&
2150 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other)))
2151 manager_add_job(u->manager, JOB_START, other, JOB_REPLACE, NULL, NULL, NULL);
2152
2153 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_BINDS_TO], i)
2154 if (!hashmap_get(u->dependencies[UNIT_AFTER], other) &&
2155 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other)))
2156 manager_add_job(u->manager, JOB_START, other, JOB_REPLACE, NULL, NULL, NULL);
2157
2158 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_WANTS], i)
2159 if (!hashmap_get(u->dependencies[UNIT_AFTER], other) &&
2160 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other)))
2161 manager_add_job(u->manager, JOB_START, other, JOB_FAIL, NULL, NULL, NULL);
2162
2163 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_CONFLICTS], i)
2164 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other)))
2165 manager_add_job(u->manager, JOB_STOP, other, JOB_REPLACE, NULL, NULL, NULL);
2166
2167 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_CONFLICTED_BY], i)
2168 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other)))
2169 manager_add_job(u->manager, JOB_STOP, other, JOB_REPLACE, NULL, NULL, NULL);
2170 }
2171
2172 static void retroactively_stop_dependencies(Unit *u) {
2173 Unit *other;
2174 Iterator i;
2175 void *v;
2176
2177 assert(u);
2178 assert(UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u)));
2179
2180 /* Pull down units which are bound to us recursively if enabled */
2181 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_BOUND_BY], i)
2182 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other)))
2183 manager_add_job(u->manager, JOB_STOP, other, JOB_REPLACE, NULL, NULL, NULL);
2184 }
2185
2186 void unit_start_on_failure(Unit *u) {
2187 Unit *other;
2188 Iterator i;
2189 void *v;
2190 int r;
2191
2192 assert(u);
2193
2194 if (hashmap_size(u->dependencies[UNIT_ON_FAILURE]) <= 0)
2195 return;
2196
2197 log_unit_info(u, "Triggering OnFailure= dependencies.");
2198
2199 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_ON_FAILURE], i) {
2200 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
2201
2202 r = manager_add_job(u->manager, JOB_START, other, u->on_failure_job_mode, NULL, &error, NULL);
2203 if (r < 0)
2204 log_unit_warning_errno(u, r, "Failed to enqueue OnFailure= job, ignoring: %s", bus_error_message(&error, r));
2205 }
2206 }
2207
2208 void unit_trigger_notify(Unit *u) {
2209 Unit *other;
2210 Iterator i;
2211 void *v;
2212
2213 assert(u);
2214
2215 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_TRIGGERED_BY], i)
2216 if (UNIT_VTABLE(other)->trigger_notify)
2217 UNIT_VTABLE(other)->trigger_notify(other, u);
2218 }
2219
2220 static int raise_level(int log_level, bool condition_info, bool condition_notice) {
2221 if (condition_notice && log_level > LOG_NOTICE)
2222 return LOG_NOTICE;
2223 if (condition_info && log_level > LOG_INFO)
2224 return LOG_INFO;
2225 return log_level;
2226 }
2227
2228 static int unit_log_resources(Unit *u) {
2229 struct iovec iovec[1 + _CGROUP_IP_ACCOUNTING_METRIC_MAX + _CGROUP_IO_ACCOUNTING_METRIC_MAX + 4];
2230 bool any_traffic = false, have_ip_accounting = false, any_io = false, have_io_accounting = false;
2231 _cleanup_free_ char *igress = NULL, *egress = NULL, *rr = NULL, *wr = NULL;
2232 int log_level = LOG_DEBUG; /* May be raised if resources consumed over a threshold */
2233 size_t n_message_parts = 0, n_iovec = 0;
2234 char* message_parts[1 + 2 + 2 + 1], *t;
2235 nsec_t nsec = NSEC_INFINITY;
2236 CGroupIPAccountingMetric m;
2237 size_t i;
2238 int r;
2239 const char* const ip_fields[_CGROUP_IP_ACCOUNTING_METRIC_MAX] = {
2240 [CGROUP_IP_INGRESS_BYTES] = "IP_METRIC_INGRESS_BYTES",
2241 [CGROUP_IP_INGRESS_PACKETS] = "IP_METRIC_INGRESS_PACKETS",
2242 [CGROUP_IP_EGRESS_BYTES] = "IP_METRIC_EGRESS_BYTES",
2243 [CGROUP_IP_EGRESS_PACKETS] = "IP_METRIC_EGRESS_PACKETS",
2244 };
2245 const char* const io_fields[_CGROUP_IO_ACCOUNTING_METRIC_MAX] = {
2246 [CGROUP_IO_READ_BYTES] = "IO_METRIC_READ_BYTES",
2247 [CGROUP_IO_WRITE_BYTES] = "IO_METRIC_WRITE_BYTES",
2248 [CGROUP_IO_READ_OPERATIONS] = "IO_METRIC_READ_OPERATIONS",
2249 [CGROUP_IO_WRITE_OPERATIONS] = "IO_METRIC_WRITE_OPERATIONS",
2250 };
2251
2252 assert(u);
2253
2254 /* Invoked whenever a unit enters failed or dead state. Logs information about consumed resources if resource
2255 * accounting was enabled for a unit. It does this in two ways: a friendly human readable string with reduced
2256 * information and the complete data in structured fields. */
2257
2258 (void) unit_get_cpu_usage(u, &nsec);
2259 if (nsec != NSEC_INFINITY) {
2260 char buf[FORMAT_TIMESPAN_MAX] = "";
2261
2262 /* Format the CPU time for inclusion in the structured log message */
2263 if (asprintf(&t, "CPU_USAGE_NSEC=%" PRIu64, nsec) < 0) {
2264 r = log_oom();
2265 goto finish;
2266 }
2267 iovec[n_iovec++] = IOVEC_MAKE_STRING(t);
2268
2269 /* Format the CPU time for inclusion in the human language message string */
2270 format_timespan(buf, sizeof(buf), nsec / NSEC_PER_USEC, USEC_PER_MSEC);
2271 t = strjoin("consumed ", buf, " CPU time");
2272 if (!t) {
2273 r = log_oom();
2274 goto finish;
2275 }
2276
2277 message_parts[n_message_parts++] = t;
2278
2279 log_level = raise_level(log_level,
2280 nsec > NOTICEWORTHY_CPU_NSEC,
2281 nsec > MENTIONWORTHY_CPU_NSEC);
2282 }
2283
2284 for (CGroupIOAccountingMetric k = 0; k < _CGROUP_IO_ACCOUNTING_METRIC_MAX; k++) {
2285 char buf[FORMAT_BYTES_MAX] = "";
2286 uint64_t value = UINT64_MAX;
2287
2288 assert(io_fields[k]);
2289
2290 (void) unit_get_io_accounting(u, k, k > 0, &value);
2291 if (value == UINT64_MAX)
2292 continue;
2293
2294 have_io_accounting = true;
2295 if (value > 0)
2296 any_io = true;
2297
2298 /* Format IO accounting data for inclusion in the structured log message */
2299 if (asprintf(&t, "%s=%" PRIu64, io_fields[k], value) < 0) {
2300 r = log_oom();
2301 goto finish;
2302 }
2303 iovec[n_iovec++] = IOVEC_MAKE_STRING(t);
2304
2305 /* Format the IO accounting data for inclusion in the human language message string, but only
2306 * for the bytes counters (and not for the operations counters) */
2307 if (k == CGROUP_IO_READ_BYTES) {
2308 assert(!rr);
2309 rr = strjoin("read ", format_bytes(buf, sizeof(buf), value), " from disk");
2310 if (!rr) {
2311 r = log_oom();
2312 goto finish;
2313 }
2314 } else if (k == CGROUP_IO_WRITE_BYTES) {
2315 assert(!wr);
2316 wr = strjoin("written ", format_bytes(buf, sizeof(buf), value), " to disk");
2317 if (!wr) {
2318 r = log_oom();
2319 goto finish;
2320 }
2321 }
2322
2323 if (IN_SET(k, CGROUP_IO_READ_BYTES, CGROUP_IO_WRITE_BYTES))
2324 log_level = raise_level(log_level,
2325 value > MENTIONWORTHY_IO_BYTES,
2326 value > NOTICEWORTHY_IO_BYTES);
2327 }
2328
2329 if (have_io_accounting) {
2330 if (any_io) {
2331 if (rr)
2332 message_parts[n_message_parts++] = TAKE_PTR(rr);
2333 if (wr)
2334 message_parts[n_message_parts++] = TAKE_PTR(wr);
2335
2336 } else {
2337 char *k;
2338
2339 k = strdup("no IO");
2340 if (!k) {
2341 r = log_oom();
2342 goto finish;
2343 }
2344
2345 message_parts[n_message_parts++] = k;
2346 }
2347 }
2348
2349 for (m = 0; m < _CGROUP_IP_ACCOUNTING_METRIC_MAX; m++) {
2350 char buf[FORMAT_BYTES_MAX] = "";
2351 uint64_t value = UINT64_MAX;
2352
2353 assert(ip_fields[m]);
2354
2355 (void) unit_get_ip_accounting(u, m, &value);
2356 if (value == UINT64_MAX)
2357 continue;
2358
2359 have_ip_accounting = true;
2360 if (value > 0)
2361 any_traffic = true;
2362
2363 /* Format IP accounting data for inclusion in the structured log message */
2364 if (asprintf(&t, "%s=%" PRIu64, ip_fields[m], value) < 0) {
2365 r = log_oom();
2366 goto finish;
2367 }
2368 iovec[n_iovec++] = IOVEC_MAKE_STRING(t);
2369
2370 /* Format the IP accounting data for inclusion in the human language message string, but only for the
2371 * bytes counters (and not for the packets counters) */
2372 if (m == CGROUP_IP_INGRESS_BYTES) {
2373 assert(!igress);
2374 igress = strjoin("received ", format_bytes(buf, sizeof(buf), value), " IP traffic");
2375 if (!igress) {
2376 r = log_oom();
2377 goto finish;
2378 }
2379 } else if (m == CGROUP_IP_EGRESS_BYTES) {
2380 assert(!egress);
2381 egress = strjoin("sent ", format_bytes(buf, sizeof(buf), value), " IP traffic");
2382 if (!egress) {
2383 r = log_oom();
2384 goto finish;
2385 }
2386 }
2387
2388 if (IN_SET(m, CGROUP_IP_INGRESS_BYTES, CGROUP_IP_EGRESS_BYTES))
2389 log_level = raise_level(log_level,
2390 value > MENTIONWORTHY_IP_BYTES,
2391 value > NOTICEWORTHY_IP_BYTES);
2392 }
2393
2394 if (have_ip_accounting) {
2395 if (any_traffic) {
2396 if (igress)
2397 message_parts[n_message_parts++] = TAKE_PTR(igress);
2398 if (egress)
2399 message_parts[n_message_parts++] = TAKE_PTR(egress);
2400
2401 } else {
2402 char *k;
2403
2404 k = strdup("no IP traffic");
2405 if (!k) {
2406 r = log_oom();
2407 goto finish;
2408 }
2409
2410 message_parts[n_message_parts++] = k;
2411 }
2412 }
2413
2414 /* Is there any accounting data available at all? */
2415 if (n_iovec == 0) {
2416 r = 0;
2417 goto finish;
2418 }
2419
2420 if (n_message_parts == 0)
2421 t = strjoina("MESSAGE=", u->id, ": Completed.");
2422 else {
2423 _cleanup_free_ char *joined;
2424
2425 message_parts[n_message_parts] = NULL;
2426
2427 joined = strv_join(message_parts, ", ");
2428 if (!joined) {
2429 r = log_oom();
2430 goto finish;
2431 }
2432
2433 joined[0] = ascii_toupper(joined[0]);
2434 t = strjoina("MESSAGE=", u->id, ": ", joined, ".");
2435 }
2436
2437 /* The following four fields we allocate on the stack or are static strings, we hence don't want to free them,
2438 * and hence don't increase n_iovec for them */
2439 iovec[n_iovec] = IOVEC_MAKE_STRING(t);
2440 iovec[n_iovec + 1] = IOVEC_MAKE_STRING("MESSAGE_ID=" SD_MESSAGE_UNIT_RESOURCES_STR);
2441
2442 t = strjoina(u->manager->unit_log_field, u->id);
2443 iovec[n_iovec + 2] = IOVEC_MAKE_STRING(t);
2444
2445 t = strjoina(u->manager->invocation_log_field, u->invocation_id_string);
2446 iovec[n_iovec + 3] = IOVEC_MAKE_STRING(t);
2447
2448 log_struct_iovec(log_level, iovec, n_iovec + 4);
2449 r = 0;
2450
2451 finish:
2452 for (i = 0; i < n_message_parts; i++)
2453 free(message_parts[i]);
2454
2455 for (i = 0; i < n_iovec; i++)
2456 free(iovec[i].iov_base);
2457
2458 return r;
2459
2460 }
2461
2462 static void unit_update_on_console(Unit *u) {
2463 bool b;
2464
2465 assert(u);
2466
2467 b = unit_needs_console(u);
2468 if (u->on_console == b)
2469 return;
2470
2471 u->on_console = b;
2472 if (b)
2473 manager_ref_console(u->manager);
2474 else
2475 manager_unref_console(u->manager);
2476 }
2477
2478 static void unit_emit_audit_start(Unit *u) {
2479 assert(u);
2480
2481 if (u->type != UNIT_SERVICE)
2482 return;
2483
2484 /* Write audit record if we have just finished starting up */
2485 manager_send_unit_audit(u->manager, u, AUDIT_SERVICE_START, true);
2486 u->in_audit = true;
2487 }
2488
2489 static void unit_emit_audit_stop(Unit *u, UnitActiveState state) {
2490 assert(u);
2491
2492 if (u->type != UNIT_SERVICE)
2493 return;
2494
2495 if (u->in_audit) {
2496 /* Write audit record if we have just finished shutting down */
2497 manager_send_unit_audit(u->manager, u, AUDIT_SERVICE_STOP, state == UNIT_INACTIVE);
2498 u->in_audit = false;
2499 } else {
2500 /* Hmm, if there was no start record written write it now, so that we always have a nice pair */
2501 manager_send_unit_audit(u->manager, u, AUDIT_SERVICE_START, state == UNIT_INACTIVE);
2502
2503 if (state == UNIT_INACTIVE)
2504 manager_send_unit_audit(u->manager, u, AUDIT_SERVICE_STOP, true);
2505 }
2506 }
2507
2508 static bool unit_process_job(Job *j, UnitActiveState ns, UnitNotifyFlags flags) {
2509 bool unexpected = false;
2510 JobResult result;
2511
2512 assert(j);
2513
2514 if (j->state == JOB_WAITING)
2515
2516 /* So we reached a different state for this job. Let's see if we can run it now if it failed previously
2517 * due to EAGAIN. */
2518 job_add_to_run_queue(j);
2519
2520 /* Let's check whether the unit's new state constitutes a finished job, or maybe contradicts a running job and
2521 * hence needs to invalidate jobs. */
2522
2523 switch (j->type) {
2524
2525 case JOB_START:
2526 case JOB_VERIFY_ACTIVE:
2527
2528 if (UNIT_IS_ACTIVE_OR_RELOADING(ns))
2529 job_finish_and_invalidate(j, JOB_DONE, true, false);
2530 else if (j->state == JOB_RUNNING && ns != UNIT_ACTIVATING) {
2531 unexpected = true;
2532
2533 if (UNIT_IS_INACTIVE_OR_FAILED(ns)) {
2534 if (ns == UNIT_FAILED)
2535 result = JOB_FAILED;
2536 else if (FLAGS_SET(flags, UNIT_NOTIFY_SKIP_CONDITION))
2537 result = JOB_SKIPPED;
2538 else
2539 result = JOB_DONE;
2540
2541 job_finish_and_invalidate(j, result, true, false);
2542 }
2543 }
2544
2545 break;
2546
2547 case JOB_RELOAD:
2548 case JOB_RELOAD_OR_START:
2549 case JOB_TRY_RELOAD:
2550
2551 if (j->state == JOB_RUNNING) {
2552 if (ns == UNIT_ACTIVE)
2553 job_finish_and_invalidate(j, (flags & UNIT_NOTIFY_RELOAD_FAILURE) ? JOB_FAILED : JOB_DONE, true, false);
2554 else if (!IN_SET(ns, UNIT_ACTIVATING, UNIT_RELOADING)) {
2555 unexpected = true;
2556
2557 if (UNIT_IS_INACTIVE_OR_FAILED(ns))
2558 job_finish_and_invalidate(j, ns == UNIT_FAILED ? JOB_FAILED : JOB_DONE, true, false);
2559 }
2560 }
2561
2562 break;
2563
2564 case JOB_STOP:
2565 case JOB_RESTART:
2566 case JOB_TRY_RESTART:
2567
2568 if (UNIT_IS_INACTIVE_OR_FAILED(ns))
2569 job_finish_and_invalidate(j, JOB_DONE, true, false);
2570 else if (j->state == JOB_RUNNING && ns != UNIT_DEACTIVATING) {
2571 unexpected = true;
2572 job_finish_and_invalidate(j, JOB_FAILED, true, false);
2573 }
2574
2575 break;
2576
2577 default:
2578 assert_not_reached("Job type unknown");
2579 }
2580
2581 return unexpected;
2582 }
2583
2584 void unit_notify(Unit *u, UnitActiveState os, UnitActiveState ns, UnitNotifyFlags flags) {
2585 const char *reason;
2586 Manager *m;
2587
2588 assert(u);
2589 assert(os < _UNIT_ACTIVE_STATE_MAX);
2590 assert(ns < _UNIT_ACTIVE_STATE_MAX);
2591
2592 /* Note that this is called for all low-level state changes, even if they might map to the same high-level
2593 * UnitActiveState! That means that ns == os is an expected behavior here. For example: if a mount point is
2594 * remounted this function will be called too! */
2595
2596 m = u->manager;
2597
2598 /* Let's enqueue the change signal early. In case this unit has a job associated we want that this unit is in
2599 * the bus queue, so that any job change signal queued will force out the unit change signal first. */
2600 unit_add_to_dbus_queue(u);
2601
2602 /* Update timestamps for state changes */
2603 if (!MANAGER_IS_RELOADING(m)) {
2604 dual_timestamp_get(&u->state_change_timestamp);
2605
2606 if (UNIT_IS_INACTIVE_OR_FAILED(os) && !UNIT_IS_INACTIVE_OR_FAILED(ns))
2607 u->inactive_exit_timestamp = u->state_change_timestamp;
2608 else if (!UNIT_IS_INACTIVE_OR_FAILED(os) && UNIT_IS_INACTIVE_OR_FAILED(ns))
2609 u->inactive_enter_timestamp = u->state_change_timestamp;
2610
2611 if (!UNIT_IS_ACTIVE_OR_RELOADING(os) && UNIT_IS_ACTIVE_OR_RELOADING(ns))
2612 u->active_enter_timestamp = u->state_change_timestamp;
2613 else if (UNIT_IS_ACTIVE_OR_RELOADING(os) && !UNIT_IS_ACTIVE_OR_RELOADING(ns))
2614 u->active_exit_timestamp = u->state_change_timestamp;
2615 }
2616
2617 /* Keep track of failed units */
2618 (void) manager_update_failed_units(m, u, ns == UNIT_FAILED);
2619
2620 /* Make sure the cgroup and state files are always removed when we become inactive */
2621 if (UNIT_IS_INACTIVE_OR_FAILED(ns)) {
2622 unit_prune_cgroup(u);
2623 unit_unlink_state_files(u);
2624 }
2625
2626 unit_update_on_console(u);
2627
2628 if (!MANAGER_IS_RELOADING(m)) {
2629 bool unexpected;
2630
2631 /* Let's propagate state changes to the job */
2632 if (u->job)
2633 unexpected = unit_process_job(u->job, ns, flags);
2634 else
2635 unexpected = true;
2636
2637 /* If this state change happened without being requested by a job, then let's retroactively start or
2638 * stop dependencies. We skip that step when deserializing, since we don't want to create any
2639 * additional jobs just because something is already activated. */
2640
2641 if (unexpected) {
2642 if (UNIT_IS_INACTIVE_OR_FAILED(os) && UNIT_IS_ACTIVE_OR_ACTIVATING(ns))
2643 retroactively_start_dependencies(u);
2644 else if (UNIT_IS_ACTIVE_OR_ACTIVATING(os) && UNIT_IS_INACTIVE_OR_DEACTIVATING(ns))
2645 retroactively_stop_dependencies(u);
2646 }
2647
2648 /* stop unneeded units regardless if going down was expected or not */
2649 if (UNIT_IS_INACTIVE_OR_FAILED(ns))
2650 check_unneeded_dependencies(u);
2651
2652 if (ns != os && ns == UNIT_FAILED) {
2653 log_unit_debug(u, "Unit entered failed state.");
2654
2655 if (!(flags & UNIT_NOTIFY_WILL_AUTO_RESTART))
2656 unit_start_on_failure(u);
2657 }
2658
2659 if (UNIT_IS_ACTIVE_OR_RELOADING(ns) && !UNIT_IS_ACTIVE_OR_RELOADING(os)) {
2660 /* This unit just finished starting up */
2661
2662 unit_emit_audit_start(u);
2663 manager_send_unit_plymouth(m, u);
2664 }
2665
2666 if (UNIT_IS_INACTIVE_OR_FAILED(ns) && !UNIT_IS_INACTIVE_OR_FAILED(os)) {
2667 /* This unit just stopped/failed. */
2668
2669 unit_emit_audit_stop(u, ns);
2670 unit_log_resources(u);
2671 }
2672 }
2673
2674 manager_recheck_journal(m);
2675 manager_recheck_dbus(m);
2676
2677 unit_trigger_notify(u);
2678
2679 if (!MANAGER_IS_RELOADING(m)) {
2680 /* Maybe we finished startup and are now ready for being stopped because unneeded? */
2681 unit_submit_to_stop_when_unneeded_queue(u);
2682
2683 /* Maybe we finished startup, but something we needed has vanished? Let's die then. (This happens when
2684 * something BindsTo= to a Type=oneshot unit, as these units go directly from starting to inactive,
2685 * without ever entering started.) */
2686 unit_check_binds_to(u);
2687
2688 if (os != UNIT_FAILED && ns == UNIT_FAILED) {
2689 reason = strjoina("unit ", u->id, " failed");
2690 emergency_action(m, u->failure_action, 0, u->reboot_arg, unit_failure_action_exit_status(u), reason);
2691 } else if (!UNIT_IS_INACTIVE_OR_FAILED(os) && ns == UNIT_INACTIVE) {
2692 reason = strjoina("unit ", u->id, " succeeded");
2693 emergency_action(m, u->success_action, 0, u->reboot_arg, unit_success_action_exit_status(u), reason);
2694 }
2695 }
2696
2697 unit_add_to_gc_queue(u);
2698 }
2699
2700 int unit_watch_pid(Unit *u, pid_t pid, bool exclusive) {
2701 int r;
2702
2703 assert(u);
2704 assert(pid_is_valid(pid));
2705
2706 /* Watch a specific PID */
2707
2708 /* Caller might be sure that this PID belongs to this unit only. Let's take this
2709 * opportunity to remove any stalled references to this PID as they can be created
2710 * easily (when watching a process which is not our direct child). */
2711 if (exclusive)
2712 manager_unwatch_pid(u->manager, pid);
2713
2714 r = set_ensure_allocated(&u->pids, NULL);
2715 if (r < 0)
2716 return r;
2717
2718 r = hashmap_ensure_allocated(&u->manager->watch_pids, NULL);
2719 if (r < 0)
2720 return r;
2721
2722 /* First try, let's add the unit keyed by "pid". */
2723 r = hashmap_put(u->manager->watch_pids, PID_TO_PTR(pid), u);
2724 if (r == -EEXIST) {
2725 Unit **array;
2726 bool found = false;
2727 size_t n = 0;
2728
2729 /* OK, the "pid" key is already assigned to a different unit. Let's see if the "-pid" key (which points
2730 * to an array of Units rather than just a Unit), lists us already. */
2731
2732 array = hashmap_get(u->manager->watch_pids, PID_TO_PTR(-pid));
2733 if (array)
2734 for (; array[n]; n++)
2735 if (array[n] == u)
2736 found = true;
2737
2738 if (found) /* Found it already? if so, do nothing */
2739 r = 0;
2740 else {
2741 Unit **new_array;
2742
2743 /* Allocate a new array */
2744 new_array = new(Unit*, n + 2);
2745 if (!new_array)
2746 return -ENOMEM;
2747
2748 memcpy_safe(new_array, array, sizeof(Unit*) * n);
2749 new_array[n] = u;
2750 new_array[n+1] = NULL;
2751
2752 /* Add or replace the old array */
2753 r = hashmap_replace(u->manager->watch_pids, PID_TO_PTR(-pid), new_array);
2754 if (r < 0) {
2755 free(new_array);
2756 return r;
2757 }
2758
2759 free(array);
2760 }
2761 } else if (r < 0)
2762 return r;
2763
2764 r = set_put(u->pids, PID_TO_PTR(pid));
2765 if (r < 0)
2766 return r;
2767
2768 return 0;
2769 }
2770
2771 void unit_unwatch_pid(Unit *u, pid_t pid) {
2772 Unit **array;
2773
2774 assert(u);
2775 assert(pid_is_valid(pid));
2776
2777 /* First let's drop the unit in case it's keyed as "pid". */
2778 (void) hashmap_remove_value(u->manager->watch_pids, PID_TO_PTR(pid), u);
2779
2780 /* Then, let's also drop the unit, in case it's in the array keyed by -pid */
2781 array = hashmap_get(u->manager->watch_pids, PID_TO_PTR(-pid));
2782 if (array) {
2783 size_t n, m = 0;
2784
2785 /* Let's iterate through the array, dropping our own entry */
2786 for (n = 0; array[n]; n++)
2787 if (array[n] != u)
2788 array[m++] = array[n];
2789 array[m] = NULL;
2790
2791 if (m == 0) {
2792 /* The array is now empty, remove the entire entry */
2793 assert_se(hashmap_remove(u->manager->watch_pids, PID_TO_PTR(-pid)) == array);
2794 free(array);
2795 }
2796 }
2797
2798 (void) set_remove(u->pids, PID_TO_PTR(pid));
2799 }
2800
2801 void unit_unwatch_all_pids(Unit *u) {
2802 assert(u);
2803
2804 while (!set_isempty(u->pids))
2805 unit_unwatch_pid(u, PTR_TO_PID(set_first(u->pids)));
2806
2807 u->pids = set_free(u->pids);
2808 }
2809
2810 static void unit_tidy_watch_pids(Unit *u) {
2811 pid_t except1, except2;
2812 Iterator i;
2813 void *e;
2814
2815 assert(u);
2816
2817 /* Cleans dead PIDs from our list */
2818
2819 except1 = unit_main_pid(u);
2820 except2 = unit_control_pid(u);
2821
2822 SET_FOREACH(e, u->pids, i) {
2823 pid_t pid = PTR_TO_PID(e);
2824
2825 if (pid == except1 || pid == except2)
2826 continue;
2827
2828 if (!pid_is_unwaited(pid))
2829 unit_unwatch_pid(u, pid);
2830 }
2831 }
2832
2833 static int on_rewatch_pids_event(sd_event_source *s, void *userdata) {
2834 Unit *u = userdata;
2835
2836 assert(s);
2837 assert(u);
2838
2839 unit_tidy_watch_pids(u);
2840 unit_watch_all_pids(u);
2841
2842 /* If the PID set is empty now, then let's finish this off. */
2843 unit_synthesize_cgroup_empty_event(u);
2844
2845 return 0;
2846 }
2847
2848 int unit_enqueue_rewatch_pids(Unit *u) {
2849 int r;
2850
2851 assert(u);
2852
2853 if (!u->cgroup_path)
2854 return -ENOENT;
2855
2856 r = cg_unified_controller(SYSTEMD_CGROUP_CONTROLLER);
2857 if (r < 0)
2858 return r;
2859 if (r > 0) /* On unified we can use proper notifications */
2860 return 0;
2861
2862 /* Enqueues a low-priority job that will clean up dead PIDs from our list of PIDs to watch and subscribe to new
2863 * PIDs that might have appeared. We do this in a delayed job because the work might be quite slow, as it
2864 * involves issuing kill(pid, 0) on all processes we watch. */
2865
2866 if (!u->rewatch_pids_event_source) {
2867 _cleanup_(sd_event_source_unrefp) sd_event_source *s = NULL;
2868
2869 r = sd_event_add_defer(u->manager->event, &s, on_rewatch_pids_event, u);
2870 if (r < 0)
2871 return log_error_errno(r, "Failed to allocate event source for tidying watched PIDs: %m");
2872
2873 r = sd_event_source_set_priority(s, SD_EVENT_PRIORITY_IDLE);
2874 if (r < 0)
2875 return log_error_errno(r, "Failed to adjust priority of event source for tidying watched PIDs: %m");
2876
2877 (void) sd_event_source_set_description(s, "tidy-watch-pids");
2878
2879 u->rewatch_pids_event_source = TAKE_PTR(s);
2880 }
2881
2882 r = sd_event_source_set_enabled(u->rewatch_pids_event_source, SD_EVENT_ONESHOT);
2883 if (r < 0)
2884 return log_error_errno(r, "Failed to enable event source for tidying watched PIDs: %m");
2885
2886 return 0;
2887 }
2888
2889 void unit_dequeue_rewatch_pids(Unit *u) {
2890 int r;
2891 assert(u);
2892
2893 if (!u->rewatch_pids_event_source)
2894 return;
2895
2896 r = sd_event_source_set_enabled(u->rewatch_pids_event_source, SD_EVENT_OFF);
2897 if (r < 0)
2898 log_warning_errno(r, "Failed to disable event source for tidying watched PIDs, ignoring: %m");
2899
2900 u->rewatch_pids_event_source = sd_event_source_unref(u->rewatch_pids_event_source);
2901 }
2902
2903 bool unit_job_is_applicable(Unit *u, JobType j) {
2904 assert(u);
2905 assert(j >= 0 && j < _JOB_TYPE_MAX);
2906
2907 switch (j) {
2908
2909 case JOB_VERIFY_ACTIVE:
2910 case JOB_START:
2911 case JOB_NOP:
2912 /* Note that we don't check unit_can_start() here. That's because .device units and suchlike are not
2913 * startable by us but may appear due to external events, and it thus makes sense to permit enqueuing
2914 * jobs for it. */
2915 return true;
2916
2917 case JOB_STOP:
2918 /* Similar as above. However, perpetual units can never be stopped (neither explicitly nor due to
2919 * external events), hence it makes no sense to permit enqueuing such a request either. */
2920 return !u->perpetual;
2921
2922 case JOB_RESTART:
2923 case JOB_TRY_RESTART:
2924 return unit_can_stop(u) && unit_can_start(u);
2925
2926 case JOB_RELOAD:
2927 case JOB_TRY_RELOAD:
2928 return unit_can_reload(u);
2929
2930 case JOB_RELOAD_OR_START:
2931 return unit_can_reload(u) && unit_can_start(u);
2932
2933 default:
2934 assert_not_reached("Invalid job type");
2935 }
2936 }
2937
2938 static void maybe_warn_about_dependency(Unit *u, const char *other, UnitDependency dependency) {
2939 assert(u);
2940
2941 /* Only warn about some unit types */
2942 if (!IN_SET(dependency, UNIT_CONFLICTS, UNIT_CONFLICTED_BY, UNIT_BEFORE, UNIT_AFTER, UNIT_ON_FAILURE, UNIT_TRIGGERS, UNIT_TRIGGERED_BY))
2943 return;
2944
2945 if (streq_ptr(u->id, other))
2946 log_unit_warning(u, "Dependency %s=%s dropped", unit_dependency_to_string(dependency), u->id);
2947 else
2948 log_unit_warning(u, "Dependency %s=%s dropped, merged into %s", unit_dependency_to_string(dependency), strna(other), u->id);
2949 }
2950
2951 static int unit_add_dependency_hashmap(
2952 Hashmap **h,
2953 Unit *other,
2954 UnitDependencyMask origin_mask,
2955 UnitDependencyMask destination_mask) {
2956
2957 UnitDependencyInfo info;
2958 int r;
2959
2960 assert(h);
2961 assert(other);
2962 assert(origin_mask < _UNIT_DEPENDENCY_MASK_FULL);
2963 assert(destination_mask < _UNIT_DEPENDENCY_MASK_FULL);
2964 assert(origin_mask > 0 || destination_mask > 0);
2965
2966 r = hashmap_ensure_allocated(h, NULL);
2967 if (r < 0)
2968 return r;
2969
2970 assert_cc(sizeof(void*) == sizeof(info));
2971
2972 info.data = hashmap_get(*h, other);
2973 if (info.data) {
2974 /* Entry already exists. Add in our mask. */
2975
2976 if (FLAGS_SET(origin_mask, info.origin_mask) &&
2977 FLAGS_SET(destination_mask, info.destination_mask))
2978 return 0; /* NOP */
2979
2980 info.origin_mask |= origin_mask;
2981 info.destination_mask |= destination_mask;
2982
2983 r = hashmap_update(*h, other, info.data);
2984 } else {
2985 info = (UnitDependencyInfo) {
2986 .origin_mask = origin_mask,
2987 .destination_mask = destination_mask,
2988 };
2989
2990 r = hashmap_put(*h, other, info.data);
2991 }
2992 if (r < 0)
2993 return r;
2994
2995 return 1;
2996 }
2997
2998 int unit_add_dependency(
2999 Unit *u,
3000 UnitDependency d,
3001 Unit *other,
3002 bool add_reference,
3003 UnitDependencyMask mask) {
3004
3005 static const UnitDependency inverse_table[_UNIT_DEPENDENCY_MAX] = {
3006 [UNIT_REQUIRES] = UNIT_REQUIRED_BY,
3007 [UNIT_WANTS] = UNIT_WANTED_BY,
3008 [UNIT_REQUISITE] = UNIT_REQUISITE_OF,
3009 [UNIT_BINDS_TO] = UNIT_BOUND_BY,
3010 [UNIT_PART_OF] = UNIT_CONSISTS_OF,
3011 [UNIT_REQUIRED_BY] = UNIT_REQUIRES,
3012 [UNIT_REQUISITE_OF] = UNIT_REQUISITE,
3013 [UNIT_WANTED_BY] = UNIT_WANTS,
3014 [UNIT_BOUND_BY] = UNIT_BINDS_TO,
3015 [UNIT_CONSISTS_OF] = UNIT_PART_OF,
3016 [UNIT_CONFLICTS] = UNIT_CONFLICTED_BY,
3017 [UNIT_CONFLICTED_BY] = UNIT_CONFLICTS,
3018 [UNIT_BEFORE] = UNIT_AFTER,
3019 [UNIT_AFTER] = UNIT_BEFORE,
3020 [UNIT_ON_FAILURE] = _UNIT_DEPENDENCY_INVALID,
3021 [UNIT_REFERENCES] = UNIT_REFERENCED_BY,
3022 [UNIT_REFERENCED_BY] = UNIT_REFERENCES,
3023 [UNIT_TRIGGERS] = UNIT_TRIGGERED_BY,
3024 [UNIT_TRIGGERED_BY] = UNIT_TRIGGERS,
3025 [UNIT_PROPAGATES_RELOAD_TO] = UNIT_RELOAD_PROPAGATED_FROM,
3026 [UNIT_RELOAD_PROPAGATED_FROM] = UNIT_PROPAGATES_RELOAD_TO,
3027 [UNIT_JOINS_NAMESPACE_OF] = UNIT_JOINS_NAMESPACE_OF,
3028 };
3029 Unit *original_u = u, *original_other = other;
3030 int r;
3031
3032 assert(u);
3033 assert(d >= 0 && d < _UNIT_DEPENDENCY_MAX);
3034 assert(other);
3035
3036 u = unit_follow_merge(u);
3037 other = unit_follow_merge(other);
3038
3039 /* We won't allow dependencies on ourselves. We will not
3040 * consider them an error however. */
3041 if (u == other) {
3042 maybe_warn_about_dependency(original_u, original_other->id, d);
3043 return 0;
3044 }
3045
3046 /* Note that ordering a device unit after a unit is permitted since it
3047 * allows to start its job running timeout at a specific time. */
3048 if (d == UNIT_BEFORE && other->type == UNIT_DEVICE) {
3049 log_unit_warning(u, "Dependency Before=%s ignored (.device units cannot be delayed)", other->id);
3050 return 0;
3051 }
3052
3053 if (d == UNIT_ON_FAILURE && !UNIT_VTABLE(u)->can_fail) {
3054 log_unit_warning(u, "Requested dependency OnFailure=%s ignored (%s units cannot fail).", other->id, unit_type_to_string(u->type));
3055 return 0;
3056 }
3057
3058 if (d == UNIT_TRIGGERS && !UNIT_VTABLE(u)->can_trigger)
3059 return log_unit_error_errno(u, SYNTHETIC_ERRNO(EINVAL),
3060 "Requested dependency Triggers=%s refused (%s units cannot trigger other units).", other->id, unit_type_to_string(u->type));
3061 if (d == UNIT_TRIGGERED_BY && !UNIT_VTABLE(other)->can_trigger)
3062 return log_unit_error_errno(u, SYNTHETIC_ERRNO(EINVAL),
3063 "Requested dependency TriggeredBy=%s refused (%s units cannot trigger other units).", other->id, unit_type_to_string(other->type));
3064
3065 r = unit_add_dependency_hashmap(u->dependencies + d, other, mask, 0);
3066 if (r < 0)
3067 return r;
3068
3069 if (inverse_table[d] != _UNIT_DEPENDENCY_INVALID && inverse_table[d] != d) {
3070 r = unit_add_dependency_hashmap(other->dependencies + inverse_table[d], u, 0, mask);
3071 if (r < 0)
3072 return r;
3073 }
3074
3075 if (add_reference) {
3076 r = unit_add_dependency_hashmap(u->dependencies + UNIT_REFERENCES, other, mask, 0);
3077 if (r < 0)
3078 return r;
3079
3080 r = unit_add_dependency_hashmap(other->dependencies + UNIT_REFERENCED_BY, u, 0, mask);
3081 if (r < 0)
3082 return r;
3083 }
3084
3085 unit_add_to_dbus_queue(u);
3086 return 0;
3087 }
3088
3089 int unit_add_two_dependencies(Unit *u, UnitDependency d, UnitDependency e, Unit *other, bool add_reference, UnitDependencyMask mask) {
3090 int r;
3091
3092 assert(u);
3093
3094 r = unit_add_dependency(u, d, other, add_reference, mask);
3095 if (r < 0)
3096 return r;
3097
3098 return unit_add_dependency(u, e, other, add_reference, mask);
3099 }
3100
3101 static int resolve_template(Unit *u, const char *name, char **buf, const char **ret) {
3102 int r;
3103
3104 assert(u);
3105 assert(name);
3106 assert(buf);
3107 assert(ret);
3108
3109 if (!unit_name_is_valid(name, UNIT_NAME_TEMPLATE)) {
3110 *buf = NULL;
3111 *ret = name;
3112 return 0;
3113 }
3114
3115 if (u->instance)
3116 r = unit_name_replace_instance(name, u->instance, buf);
3117 else {
3118 _cleanup_free_ char *i = NULL;
3119
3120 r = unit_name_to_prefix(u->id, &i);
3121 if (r < 0)
3122 return r;
3123
3124 r = unit_name_replace_instance(name, i, buf);
3125 }
3126 if (r < 0)
3127 return r;
3128
3129 *ret = *buf;
3130 return 0;
3131 }
3132
3133 int unit_add_dependency_by_name(Unit *u, UnitDependency d, const char *name, bool add_reference, UnitDependencyMask mask) {
3134 _cleanup_free_ char *buf = NULL;
3135 Unit *other;
3136 int r;
3137
3138 assert(u);
3139 assert(name);
3140
3141 r = resolve_template(u, name, &buf, &name);
3142 if (r < 0)
3143 return r;
3144
3145 r = manager_load_unit(u->manager, name, NULL, NULL, &other);
3146 if (r < 0)
3147 return r;
3148
3149 return unit_add_dependency(u, d, other, add_reference, mask);
3150 }
3151
3152 int unit_add_two_dependencies_by_name(Unit *u, UnitDependency d, UnitDependency e, const char *name, bool add_reference, UnitDependencyMask mask) {
3153 _cleanup_free_ char *buf = NULL;
3154 Unit *other;
3155 int r;
3156
3157 assert(u);
3158 assert(name);
3159
3160 r = resolve_template(u, name, &buf, &name);
3161 if (r < 0)
3162 return r;
3163
3164 r = manager_load_unit(u->manager, name, NULL, NULL, &other);
3165 if (r < 0)
3166 return r;
3167
3168 return unit_add_two_dependencies(u, d, e, other, add_reference, mask);
3169 }
3170
3171 int set_unit_path(const char *p) {
3172 /* This is mostly for debug purposes */
3173 if (setenv("SYSTEMD_UNIT_PATH", p, 1) < 0)
3174 return -errno;
3175
3176 return 0;
3177 }
3178
3179 char *unit_dbus_path(Unit *u) {
3180 assert(u);
3181
3182 if (!u->id)
3183 return NULL;
3184
3185 return unit_dbus_path_from_name(u->id);
3186 }
3187
3188 char *unit_dbus_path_invocation_id(Unit *u) {
3189 assert(u);
3190
3191 if (sd_id128_is_null(u->invocation_id))
3192 return NULL;
3193
3194 return unit_dbus_path_from_name(u->invocation_id_string);
3195 }
3196
3197 static int unit_set_invocation_id(Unit *u, sd_id128_t id) {
3198 int r;
3199
3200 assert(u);
3201
3202 /* Set the invocation ID for this unit. If we cannot, this will not roll back, but reset the whole thing. */
3203
3204 if (sd_id128_equal(u->invocation_id, id))
3205 return 0;
3206
3207 if (!sd_id128_is_null(u->invocation_id))
3208 (void) hashmap_remove_value(u->manager->units_by_invocation_id, &u->invocation_id, u);
3209
3210 if (sd_id128_is_null(id)) {
3211 r = 0;
3212 goto reset;
3213 }
3214
3215 r = hashmap_ensure_allocated(&u->manager->units_by_invocation_id, &id128_hash_ops);
3216 if (r < 0)
3217 goto reset;
3218
3219 u->invocation_id = id;
3220 sd_id128_to_string(id, u->invocation_id_string);
3221
3222 r = hashmap_put(u->manager->units_by_invocation_id, &u->invocation_id, u);
3223 if (r < 0)
3224 goto reset;
3225
3226 return 0;
3227
3228 reset:
3229 u->invocation_id = SD_ID128_NULL;
3230 u->invocation_id_string[0] = 0;
3231 return r;
3232 }
3233
3234 int unit_set_slice(Unit *u, Unit *slice) {
3235 assert(u);
3236 assert(slice);
3237
3238 /* Sets the unit slice if it has not been set before. Is extra
3239 * careful, to only allow this for units that actually have a
3240 * cgroup context. Also, we don't allow to set this for slices
3241 * (since the parent slice is derived from the name). Make
3242 * sure the unit we set is actually a slice. */
3243
3244 if (!UNIT_HAS_CGROUP_CONTEXT(u))
3245 return -EOPNOTSUPP;
3246
3247 if (u->type == UNIT_SLICE)
3248 return -EINVAL;
3249
3250 if (unit_active_state(u) != UNIT_INACTIVE)
3251 return -EBUSY;
3252
3253 if (slice->type != UNIT_SLICE)
3254 return -EINVAL;
3255
3256 if (unit_has_name(u, SPECIAL_INIT_SCOPE) &&
3257 !unit_has_name(slice, SPECIAL_ROOT_SLICE))
3258 return -EPERM;
3259
3260 if (UNIT_DEREF(u->slice) == slice)
3261 return 0;
3262
3263 /* Disallow slice changes if @u is already bound to cgroups */
3264 if (UNIT_ISSET(u->slice) && u->cgroup_realized)
3265 return -EBUSY;
3266
3267 unit_ref_set(&u->slice, u, slice);
3268 return 1;
3269 }
3270
3271 int unit_set_default_slice(Unit *u) {
3272 const char *slice_name;
3273 Unit *slice;
3274 int r;
3275
3276 assert(u);
3277
3278 if (UNIT_ISSET(u->slice))
3279 return 0;
3280
3281 if (u->instance) {
3282 _cleanup_free_ char *prefix = NULL, *escaped = NULL;
3283
3284 /* Implicitly place all instantiated units in their
3285 * own per-template slice */
3286
3287 r = unit_name_to_prefix(u->id, &prefix);
3288 if (r < 0)
3289 return r;
3290
3291 /* The prefix is already escaped, but it might include
3292 * "-" which has a special meaning for slice units,
3293 * hence escape it here extra. */
3294 escaped = unit_name_escape(prefix);
3295 if (!escaped)
3296 return -ENOMEM;
3297
3298 if (MANAGER_IS_SYSTEM(u->manager))
3299 slice_name = strjoina("system-", escaped, ".slice");
3300 else
3301 slice_name = strjoina(escaped, ".slice");
3302 } else
3303 slice_name =
3304 MANAGER_IS_SYSTEM(u->manager) && !unit_has_name(u, SPECIAL_INIT_SCOPE)
3305 ? SPECIAL_SYSTEM_SLICE
3306 : SPECIAL_ROOT_SLICE;
3307
3308 r = manager_load_unit(u->manager, slice_name, NULL, NULL, &slice);
3309 if (r < 0)
3310 return r;
3311
3312 return unit_set_slice(u, slice);
3313 }
3314
3315 const char *unit_slice_name(Unit *u) {
3316 assert(u);
3317
3318 if (!UNIT_ISSET(u->slice))
3319 return NULL;
3320
3321 return UNIT_DEREF(u->slice)->id;
3322 }
3323
3324 int unit_load_related_unit(Unit *u, const char *type, Unit **_found) {
3325 _cleanup_free_ char *t = NULL;
3326 int r;
3327
3328 assert(u);
3329 assert(type);
3330 assert(_found);
3331
3332 r = unit_name_change_suffix(u->id, type, &t);
3333 if (r < 0)
3334 return r;
3335 if (unit_has_name(u, t))
3336 return -EINVAL;
3337
3338 r = manager_load_unit(u->manager, t, NULL, NULL, _found);
3339 assert(r < 0 || *_found != u);
3340 return r;
3341 }
3342
3343 static int signal_name_owner_changed(sd_bus_message *message, void *userdata, sd_bus_error *error) {
3344 const char *new_owner;
3345 Unit *u = userdata;
3346 int r;
3347
3348 assert(message);
3349 assert(u);
3350
3351 r = sd_bus_message_read(message, "sss", NULL, NULL, &new_owner);
3352 if (r < 0) {
3353 bus_log_parse_error(r);
3354 return 0;
3355 }
3356
3357 if (UNIT_VTABLE(u)->bus_name_owner_change)
3358 UNIT_VTABLE(u)->bus_name_owner_change(u, empty_to_null(new_owner));
3359
3360 return 0;
3361 }
3362
3363 static int get_name_owner_handler(sd_bus_message *message, void *userdata, sd_bus_error *error) {
3364 const sd_bus_error *e;
3365 const char *new_owner;
3366 Unit *u = userdata;
3367 int r;
3368
3369 assert(message);
3370 assert(u);
3371
3372 u->get_name_owner_slot = sd_bus_slot_unref(u->get_name_owner_slot);
3373
3374 e = sd_bus_message_get_error(message);
3375 if (e) {
3376 if (!sd_bus_error_has_name(e, "org.freedesktop.DBus.Error.NameHasNoOwner"))
3377 log_unit_error(u, "Unexpected error response from GetNameOwner(): %s", e->message);
3378
3379 new_owner = NULL;
3380 } else {
3381 r = sd_bus_message_read(message, "s", &new_owner);
3382 if (r < 0)
3383 return bus_log_parse_error(r);
3384
3385 assert(!isempty(new_owner));
3386 }
3387
3388 if (UNIT_VTABLE(u)->bus_name_owner_change)
3389 UNIT_VTABLE(u)->bus_name_owner_change(u, new_owner);
3390
3391 return 0;
3392 }
3393
3394 int unit_install_bus_match(Unit *u, sd_bus *bus, const char *name) {
3395 const char *match;
3396 int r;
3397
3398 assert(u);
3399 assert(bus);
3400 assert(name);
3401
3402 if (u->match_bus_slot || u->get_name_owner_slot)
3403 return -EBUSY;
3404
3405 match = strjoina("type='signal',"
3406 "sender='org.freedesktop.DBus',"
3407 "path='/org/freedesktop/DBus',"
3408 "interface='org.freedesktop.DBus',"
3409 "member='NameOwnerChanged',"
3410 "arg0='", name, "'");
3411
3412 r = sd_bus_add_match_async(bus, &u->match_bus_slot, match, signal_name_owner_changed, NULL, u);
3413 if (r < 0)
3414 return r;
3415
3416 r = sd_bus_call_method_async(
3417 bus,
3418 &u->get_name_owner_slot,
3419 "org.freedesktop.DBus",
3420 "/org/freedesktop/DBus",
3421 "org.freedesktop.DBus",
3422 "GetNameOwner",
3423 get_name_owner_handler,
3424 u,
3425 "s", name);
3426 if (r < 0) {
3427 u->match_bus_slot = sd_bus_slot_unref(u->match_bus_slot);
3428 return r;
3429 }
3430
3431 log_unit_debug(u, "Watching D-Bus name '%s'.", name);
3432 return 0;
3433 }
3434
3435 int unit_watch_bus_name(Unit *u, const char *name) {
3436 int r;
3437
3438 assert(u);
3439 assert(name);
3440
3441 /* Watch a specific name on the bus. We only support one unit
3442 * watching each name for now. */
3443
3444 if (u->manager->api_bus) {
3445 /* If the bus is already available, install the match directly.
3446 * Otherwise, just put the name in the list. bus_setup_api() will take care later. */
3447 r = unit_install_bus_match(u, u->manager->api_bus, name);
3448 if (r < 0)
3449 return log_warning_errno(r, "Failed to subscribe to NameOwnerChanged signal for '%s': %m", name);
3450 }
3451
3452 r = hashmap_put(u->manager->watch_bus, name, u);
3453 if (r < 0) {
3454 u->match_bus_slot = sd_bus_slot_unref(u->match_bus_slot);
3455 u->get_name_owner_slot = sd_bus_slot_unref(u->get_name_owner_slot);
3456 return log_warning_errno(r, "Failed to put bus name to hashmap: %m");
3457 }
3458
3459 return 0;
3460 }
3461
3462 void unit_unwatch_bus_name(Unit *u, const char *name) {
3463 assert(u);
3464 assert(name);
3465
3466 (void) hashmap_remove_value(u->manager->watch_bus, name, u);
3467 u->match_bus_slot = sd_bus_slot_unref(u->match_bus_slot);
3468 u->get_name_owner_slot = sd_bus_slot_unref(u->get_name_owner_slot);
3469 }
3470
3471 bool unit_can_serialize(Unit *u) {
3472 assert(u);
3473
3474 return UNIT_VTABLE(u)->serialize && UNIT_VTABLE(u)->deserialize_item;
3475 }
3476
3477 static int serialize_cgroup_mask(FILE *f, const char *key, CGroupMask mask) {
3478 _cleanup_free_ char *s = NULL;
3479 int r;
3480
3481 assert(f);
3482 assert(key);
3483
3484 if (mask == 0)
3485 return 0;
3486
3487 r = cg_mask_to_string(mask, &s);
3488 if (r < 0)
3489 return log_error_errno(r, "Failed to format cgroup mask: %m");
3490
3491 return serialize_item(f, key, s);
3492 }
3493
3494 static const char *const ip_accounting_metric_field[_CGROUP_IP_ACCOUNTING_METRIC_MAX] = {
3495 [CGROUP_IP_INGRESS_BYTES] = "ip-accounting-ingress-bytes",
3496 [CGROUP_IP_INGRESS_PACKETS] = "ip-accounting-ingress-packets",
3497 [CGROUP_IP_EGRESS_BYTES] = "ip-accounting-egress-bytes",
3498 [CGROUP_IP_EGRESS_PACKETS] = "ip-accounting-egress-packets",
3499 };
3500
3501 static const char *const io_accounting_metric_field_base[_CGROUP_IO_ACCOUNTING_METRIC_MAX] = {
3502 [CGROUP_IO_READ_BYTES] = "io-accounting-read-bytes-base",
3503 [CGROUP_IO_WRITE_BYTES] = "io-accounting-write-bytes-base",
3504 [CGROUP_IO_READ_OPERATIONS] = "io-accounting-read-operations-base",
3505 [CGROUP_IO_WRITE_OPERATIONS] = "io-accounting-write-operations-base",
3506 };
3507
3508 static const char *const io_accounting_metric_field_last[_CGROUP_IO_ACCOUNTING_METRIC_MAX] = {
3509 [CGROUP_IO_READ_BYTES] = "io-accounting-read-bytes-last",
3510 [CGROUP_IO_WRITE_BYTES] = "io-accounting-write-bytes-last",
3511 [CGROUP_IO_READ_OPERATIONS] = "io-accounting-read-operations-last",
3512 [CGROUP_IO_WRITE_OPERATIONS] = "io-accounting-write-operations-last",
3513 };
3514
3515 int unit_serialize(Unit *u, FILE *f, FDSet *fds, bool serialize_jobs) {
3516 CGroupIPAccountingMetric m;
3517 int r;
3518
3519 assert(u);
3520 assert(f);
3521 assert(fds);
3522
3523 if (unit_can_serialize(u)) {
3524 r = UNIT_VTABLE(u)->serialize(u, f, fds);
3525 if (r < 0)
3526 return r;
3527 }
3528
3529 (void) serialize_dual_timestamp(f, "state-change-timestamp", &u->state_change_timestamp);
3530
3531 (void) serialize_dual_timestamp(f, "inactive-exit-timestamp", &u->inactive_exit_timestamp);
3532 (void) serialize_dual_timestamp(f, "active-enter-timestamp", &u->active_enter_timestamp);
3533 (void) serialize_dual_timestamp(f, "active-exit-timestamp", &u->active_exit_timestamp);
3534 (void) serialize_dual_timestamp(f, "inactive-enter-timestamp", &u->inactive_enter_timestamp);
3535
3536 (void) serialize_dual_timestamp(f, "condition-timestamp", &u->condition_timestamp);
3537 (void) serialize_dual_timestamp(f, "assert-timestamp", &u->assert_timestamp);
3538
3539 if (dual_timestamp_is_set(&u->condition_timestamp))
3540 (void) serialize_bool(f, "condition-result", u->condition_result);
3541
3542 if (dual_timestamp_is_set(&u->assert_timestamp))
3543 (void) serialize_bool(f, "assert-result", u->assert_result);
3544
3545 (void) serialize_bool(f, "transient", u->transient);
3546 (void) serialize_bool(f, "in-audit", u->in_audit);
3547
3548 (void) serialize_bool(f, "exported-invocation-id", u->exported_invocation_id);
3549 (void) serialize_bool(f, "exported-log-level-max", u->exported_log_level_max);
3550 (void) serialize_bool(f, "exported-log-extra-fields", u->exported_log_extra_fields);
3551 (void) serialize_bool(f, "exported-log-rate-limit-interval", u->exported_log_ratelimit_interval);
3552 (void) serialize_bool(f, "exported-log-rate-limit-burst", u->exported_log_ratelimit_burst);
3553
3554 (void) serialize_item_format(f, "cpu-usage-base", "%" PRIu64, u->cpu_usage_base);
3555 if (u->cpu_usage_last != NSEC_INFINITY)
3556 (void) serialize_item_format(f, "cpu-usage-last", "%" PRIu64, u->cpu_usage_last);
3557
3558 if (u->oom_kill_last > 0)
3559 (void) serialize_item_format(f, "oom-kill-last", "%" PRIu64, u->oom_kill_last);
3560
3561 for (CGroupIOAccountingMetric im = 0; im < _CGROUP_IO_ACCOUNTING_METRIC_MAX; im++) {
3562 (void) serialize_item_format(f, io_accounting_metric_field_base[im], "%" PRIu64, u->io_accounting_base[im]);
3563
3564 if (u->io_accounting_last[im] != UINT64_MAX)
3565 (void) serialize_item_format(f, io_accounting_metric_field_last[im], "%" PRIu64, u->io_accounting_last[im]);
3566 }
3567
3568 if (u->cgroup_path)
3569 (void) serialize_item(f, "cgroup", u->cgroup_path);
3570
3571 (void) serialize_bool(f, "cgroup-realized", u->cgroup_realized);
3572 (void) serialize_cgroup_mask(f, "cgroup-realized-mask", u->cgroup_realized_mask);
3573 (void) serialize_cgroup_mask(f, "cgroup-enabled-mask", u->cgroup_enabled_mask);
3574 (void) serialize_cgroup_mask(f, "cgroup-invalidated-mask", u->cgroup_invalidated_mask);
3575
3576 if (uid_is_valid(u->ref_uid))
3577 (void) serialize_item_format(f, "ref-uid", UID_FMT, u->ref_uid);
3578 if (gid_is_valid(u->ref_gid))
3579 (void) serialize_item_format(f, "ref-gid", GID_FMT, u->ref_gid);
3580
3581 if (!sd_id128_is_null(u->invocation_id))
3582 (void) serialize_item_format(f, "invocation-id", SD_ID128_FORMAT_STR, SD_ID128_FORMAT_VAL(u->invocation_id));
3583
3584 (void) serialize_item_format(f, "freezer-state", "%s", freezer_state_to_string(unit_freezer_state(u)));
3585
3586 bus_track_serialize(u->bus_track, f, "ref");
3587
3588 for (m = 0; m < _CGROUP_IP_ACCOUNTING_METRIC_MAX; m++) {
3589 uint64_t v;
3590
3591 r = unit_get_ip_accounting(u, m, &v);
3592 if (r >= 0)
3593 (void) serialize_item_format(f, ip_accounting_metric_field[m], "%" PRIu64, v);
3594 }
3595
3596 if (serialize_jobs) {
3597 if (u->job) {
3598 fputs("job\n", f);
3599 job_serialize(u->job, f);
3600 }
3601
3602 if (u->nop_job) {
3603 fputs("job\n", f);
3604 job_serialize(u->nop_job, f);
3605 }
3606 }
3607
3608 /* End marker */
3609 fputc('\n', f);
3610 return 0;
3611 }
3612
3613 static int unit_deserialize_job(Unit *u, FILE *f) {
3614 _cleanup_(job_freep) Job *j = NULL;
3615 int r;
3616
3617 assert(u);
3618 assert(f);
3619
3620 j = job_new_raw(u);
3621 if (!j)
3622 return log_oom();
3623
3624 r = job_deserialize(j, f);
3625 if (r < 0)
3626 return r;
3627
3628 r = job_install_deserialized(j);
3629 if (r < 0)
3630 return r;
3631
3632 TAKE_PTR(j);
3633 return 0;
3634 }
3635
3636 int unit_deserialize(Unit *u, FILE *f, FDSet *fds) {
3637 int r;
3638
3639 assert(u);
3640 assert(f);
3641 assert(fds);
3642
3643 for (;;) {
3644 _cleanup_free_ char *line = NULL;
3645 char *l, *v;
3646 ssize_t m;
3647 size_t k;
3648
3649 r = read_line(f, LONG_LINE_MAX, &line);
3650 if (r < 0)
3651 return log_error_errno(r, "Failed to read serialization line: %m");
3652 if (r == 0) /* eof */
3653 break;
3654
3655 l = strstrip(line);
3656 if (isempty(l)) /* End marker */
3657 break;
3658
3659 k = strcspn(l, "=");
3660
3661 if (l[k] == '=') {
3662 l[k] = 0;
3663 v = l+k+1;
3664 } else
3665 v = l+k;
3666
3667 if (streq(l, "job")) {
3668 if (v[0] == '\0') {
3669 /* New-style serialized job */
3670 r = unit_deserialize_job(u, f);
3671 if (r < 0)
3672 return r;
3673 } else /* Legacy for pre-44 */
3674 log_unit_warning(u, "Update from too old systemd versions are unsupported, cannot deserialize job: %s", v);
3675 continue;
3676 } else if (streq(l, "state-change-timestamp")) {
3677 (void) deserialize_dual_timestamp(v, &u->state_change_timestamp);
3678 continue;
3679 } else if (streq(l, "inactive-exit-timestamp")) {
3680 (void) deserialize_dual_timestamp(v, &u->inactive_exit_timestamp);
3681 continue;
3682 } else if (streq(l, "active-enter-timestamp")) {
3683 (void) deserialize_dual_timestamp(v, &u->active_enter_timestamp);
3684 continue;
3685 } else if (streq(l, "active-exit-timestamp")) {
3686 (void) deserialize_dual_timestamp(v, &u->active_exit_timestamp);
3687 continue;
3688 } else if (streq(l, "inactive-enter-timestamp")) {
3689 (void) deserialize_dual_timestamp(v, &u->inactive_enter_timestamp);
3690 continue;
3691 } else if (streq(l, "condition-timestamp")) {
3692 (void) deserialize_dual_timestamp(v, &u->condition_timestamp);
3693 continue;
3694 } else if (streq(l, "assert-timestamp")) {
3695 (void) deserialize_dual_timestamp(v, &u->assert_timestamp);
3696 continue;
3697 } else if (streq(l, "condition-result")) {
3698
3699 r = parse_boolean(v);
3700 if (r < 0)
3701 log_unit_debug(u, "Failed to parse condition result value %s, ignoring.", v);
3702 else
3703 u->condition_result = r;
3704
3705 continue;
3706
3707 } else if (streq(l, "assert-result")) {
3708
3709 r = parse_boolean(v);
3710 if (r < 0)
3711 log_unit_debug(u, "Failed to parse assert result value %s, ignoring.", v);
3712 else
3713 u->assert_result = r;
3714
3715 continue;
3716
3717 } else if (streq(l, "transient")) {
3718
3719 r = parse_boolean(v);
3720 if (r < 0)
3721 log_unit_debug(u, "Failed to parse transient bool %s, ignoring.", v);
3722 else
3723 u->transient = r;
3724
3725 continue;
3726
3727 } else if (streq(l, "in-audit")) {
3728
3729 r = parse_boolean(v);
3730 if (r < 0)
3731 log_unit_debug(u, "Failed to parse in-audit bool %s, ignoring.", v);
3732 else
3733 u->in_audit = r;
3734
3735 continue;
3736
3737 } else if (streq(l, "exported-invocation-id")) {
3738
3739 r = parse_boolean(v);
3740 if (r < 0)
3741 log_unit_debug(u, "Failed to parse exported invocation ID bool %s, ignoring.", v);
3742 else
3743 u->exported_invocation_id = r;
3744
3745 continue;
3746
3747 } else if (streq(l, "exported-log-level-max")) {
3748
3749 r = parse_boolean(v);
3750 if (r < 0)
3751 log_unit_debug(u, "Failed to parse exported log level max bool %s, ignoring.", v);
3752 else
3753 u->exported_log_level_max = r;
3754
3755 continue;
3756
3757 } else if (streq(l, "exported-log-extra-fields")) {
3758
3759 r = parse_boolean(v);
3760 if (r < 0)
3761 log_unit_debug(u, "Failed to parse exported log extra fields bool %s, ignoring.", v);
3762 else
3763 u->exported_log_extra_fields = r;
3764
3765 continue;
3766
3767 } else if (streq(l, "exported-log-rate-limit-interval")) {
3768
3769 r = parse_boolean(v);
3770 if (r < 0)
3771 log_unit_debug(u, "Failed to parse exported log rate limit interval %s, ignoring.", v);
3772 else
3773 u->exported_log_ratelimit_interval = r;
3774
3775 continue;
3776
3777 } else if (streq(l, "exported-log-rate-limit-burst")) {
3778
3779 r = parse_boolean(v);
3780 if (r < 0)
3781 log_unit_debug(u, "Failed to parse exported log rate limit burst %s, ignoring.", v);
3782 else
3783 u->exported_log_ratelimit_burst = r;
3784
3785 continue;
3786
3787 } else if (STR_IN_SET(l, "cpu-usage-base", "cpuacct-usage-base")) {
3788
3789 r = safe_atou64(v, &u->cpu_usage_base);
3790 if (r < 0)
3791 log_unit_debug(u, "Failed to parse CPU usage base %s, ignoring.", v);
3792
3793 continue;
3794
3795 } else if (streq(l, "cpu-usage-last")) {
3796
3797 r = safe_atou64(v, &u->cpu_usage_last);
3798 if (r < 0)
3799 log_unit_debug(u, "Failed to read CPU usage last %s, ignoring.", v);
3800
3801 continue;
3802
3803 } else if (streq(l, "oom-kill-last")) {
3804
3805 r = safe_atou64(v, &u->oom_kill_last);
3806 if (r < 0)
3807 log_unit_debug(u, "Failed to read OOM kill last %s, ignoring.", v);
3808
3809 continue;
3810
3811 } else if (streq(l, "cgroup")) {
3812
3813 r = unit_set_cgroup_path(u, v);
3814 if (r < 0)
3815 log_unit_debug_errno(u, r, "Failed to set cgroup path %s, ignoring: %m", v);
3816
3817 (void) unit_watch_cgroup(u);
3818 (void) unit_watch_cgroup_memory(u);
3819
3820 continue;
3821 } else if (streq(l, "cgroup-realized")) {
3822 int b;
3823
3824 b = parse_boolean(v);
3825 if (b < 0)
3826 log_unit_debug(u, "Failed to parse cgroup-realized bool %s, ignoring.", v);
3827 else
3828 u->cgroup_realized = b;
3829
3830 continue;
3831
3832 } else if (streq(l, "cgroup-realized-mask")) {
3833
3834 r = cg_mask_from_string(v, &u->cgroup_realized_mask);
3835 if (r < 0)
3836 log_unit_debug(u, "Failed to parse cgroup-realized-mask %s, ignoring.", v);
3837 continue;
3838
3839 } else if (streq(l, "cgroup-enabled-mask")) {
3840
3841 r = cg_mask_from_string(v, &u->cgroup_enabled_mask);
3842 if (r < 0)
3843 log_unit_debug(u, "Failed to parse cgroup-enabled-mask %s, ignoring.", v);
3844 continue;
3845
3846 } else if (streq(l, "cgroup-invalidated-mask")) {
3847
3848 r = cg_mask_from_string(v, &u->cgroup_invalidated_mask);
3849 if (r < 0)
3850 log_unit_debug(u, "Failed to parse cgroup-invalidated-mask %s, ignoring.", v);
3851 continue;
3852
3853 } else if (streq(l, "ref-uid")) {
3854 uid_t uid;
3855
3856 r = parse_uid(v, &uid);
3857 if (r < 0)
3858 log_unit_debug(u, "Failed to parse referenced UID %s, ignoring.", v);
3859 else
3860 unit_ref_uid_gid(u, uid, GID_INVALID);
3861
3862 continue;
3863
3864 } else if (streq(l, "ref-gid")) {
3865 gid_t gid;
3866
3867 r = parse_gid(v, &gid);
3868 if (r < 0)
3869 log_unit_debug(u, "Failed to parse referenced GID %s, ignoring.", v);
3870 else
3871 unit_ref_uid_gid(u, UID_INVALID, gid);
3872
3873 continue;
3874
3875 } else if (streq(l, "ref")) {
3876
3877 r = strv_extend(&u->deserialized_refs, v);
3878 if (r < 0)
3879 return log_oom();
3880
3881 continue;
3882 } else if (streq(l, "invocation-id")) {
3883 sd_id128_t id;
3884
3885 r = sd_id128_from_string(v, &id);
3886 if (r < 0)
3887 log_unit_debug(u, "Failed to parse invocation id %s, ignoring.", v);
3888 else {
3889 r = unit_set_invocation_id(u, id);
3890 if (r < 0)
3891 log_unit_warning_errno(u, r, "Failed to set invocation ID for unit: %m");
3892 }
3893
3894 continue;
3895 } else if (streq(l, "freezer-state")) {
3896 FreezerState s;
3897
3898 s = freezer_state_from_string(v);
3899 if (s < 0)
3900 log_unit_debug(u, "Failed to deserialize freezer-state '%s', ignoring.", v);
3901 else
3902 u->freezer_state = s;
3903
3904 continue;
3905 }
3906
3907 /* Check if this is an IP accounting metric serialization field */
3908 m = string_table_lookup(ip_accounting_metric_field, ELEMENTSOF(ip_accounting_metric_field), l);
3909 if (m >= 0) {
3910 uint64_t c;
3911
3912 r = safe_atou64(v, &c);
3913 if (r < 0)
3914 log_unit_debug(u, "Failed to parse IP accounting value %s, ignoring.", v);
3915 else
3916 u->ip_accounting_extra[m] = c;
3917 continue;
3918 }
3919
3920 m = string_table_lookup(io_accounting_metric_field_base, ELEMENTSOF(io_accounting_metric_field_base), l);
3921 if (m >= 0) {
3922 uint64_t c;
3923
3924 r = safe_atou64(v, &c);
3925 if (r < 0)
3926 log_unit_debug(u, "Failed to parse IO accounting base value %s, ignoring.", v);
3927 else
3928 u->io_accounting_base[m] = c;
3929 continue;
3930 }
3931
3932 m = string_table_lookup(io_accounting_metric_field_last, ELEMENTSOF(io_accounting_metric_field_last), l);
3933 if (m >= 0) {
3934 uint64_t c;
3935
3936 r = safe_atou64(v, &c);
3937 if (r < 0)
3938 log_unit_debug(u, "Failed to parse IO accounting last value %s, ignoring.", v);
3939 else
3940 u->io_accounting_last[m] = c;
3941 continue;
3942 }
3943
3944 if (unit_can_serialize(u)) {
3945 r = exec_runtime_deserialize_compat(u, l, v, fds);
3946 if (r < 0) {
3947 log_unit_warning(u, "Failed to deserialize runtime parameter '%s', ignoring.", l);
3948 continue;
3949 }
3950
3951 /* Returns positive if key was handled by the call */
3952 if (r > 0)
3953 continue;
3954
3955 r = UNIT_VTABLE(u)->deserialize_item(u, l, v, fds);
3956 if (r < 0)
3957 log_unit_warning(u, "Failed to deserialize unit parameter '%s', ignoring.", l);
3958 }
3959 }
3960
3961 /* Versions before 228 did not carry a state change timestamp. In this case, take the current time. This is
3962 * useful, so that timeouts based on this timestamp don't trigger too early, and is in-line with the logic from
3963 * before 228 where the base for timeouts was not persistent across reboots. */
3964
3965 if (!dual_timestamp_is_set(&u->state_change_timestamp))
3966 dual_timestamp_get(&u->state_change_timestamp);
3967
3968 /* Let's make sure that everything that is deserialized also gets any potential new cgroup settings applied
3969 * after we are done. For that we invalidate anything already realized, so that we can realize it again. */
3970 unit_invalidate_cgroup(u, _CGROUP_MASK_ALL);
3971 unit_invalidate_cgroup_bpf(u);
3972
3973 return 0;
3974 }
3975
3976 int unit_deserialize_skip(FILE *f) {
3977 int r;
3978 assert(f);
3979
3980 /* Skip serialized data for this unit. We don't know what it is. */
3981
3982 for (;;) {
3983 _cleanup_free_ char *line = NULL;
3984 char *l;
3985
3986 r = read_line(f, LONG_LINE_MAX, &line);
3987 if (r < 0)
3988 return log_error_errno(r, "Failed to read serialization line: %m");
3989 if (r == 0)
3990 return 0;
3991
3992 l = strstrip(line);
3993
3994 /* End marker */
3995 if (isempty(l))
3996 return 1;
3997 }
3998 }
3999
4000 int unit_add_node_dependency(Unit *u, const char *what, UnitDependency dep, UnitDependencyMask mask) {
4001 _cleanup_free_ char *e = NULL;
4002 Unit *device;
4003 int r;
4004
4005 assert(u);
4006
4007 /* Adds in links to the device node that this unit is based on */
4008 if (isempty(what))
4009 return 0;
4010
4011 if (!is_device_path(what))
4012 return 0;
4013
4014 /* When device units aren't supported (such as in a container), don't create dependencies on them. */
4015 if (!unit_type_supported(UNIT_DEVICE))
4016 return 0;
4017
4018 r = unit_name_from_path(what, ".device", &e);
4019 if (r < 0)
4020 return r;
4021
4022 r = manager_load_unit(u->manager, e, NULL, NULL, &device);
4023 if (r < 0)
4024 return r;
4025
4026 if (dep == UNIT_REQUIRES && device_shall_be_bound_by(device, u))
4027 dep = UNIT_BINDS_TO;
4028
4029 return unit_add_two_dependencies(u, UNIT_AFTER,
4030 MANAGER_IS_SYSTEM(u->manager) ? dep : UNIT_WANTS,
4031 device, true, mask);
4032 }
4033
4034 int unit_add_blockdev_dependency(Unit *u, const char *what, UnitDependencyMask mask) {
4035 _cleanup_free_ char *escaped = NULL, *target = NULL;
4036 int r;
4037
4038 assert(u);
4039
4040 if (isempty(what))
4041 return 0;
4042
4043 if (!path_startswith(what, "/dev/"))
4044 return 0;
4045
4046 /* If we don't support devices, then also don't bother with blockdev@.target */
4047 if (!unit_type_supported(UNIT_DEVICE))
4048 return 0;
4049
4050 r = unit_name_path_escape(what, &escaped);
4051 if (r < 0)
4052 return r;
4053
4054 r = unit_name_build("blockdev", escaped, ".target", &target);
4055 if (r < 0)
4056 return r;
4057
4058 return unit_add_dependency_by_name(u, UNIT_AFTER, target, true, mask);
4059 }
4060
4061 int unit_coldplug(Unit *u) {
4062 int r = 0, q;
4063 char **i;
4064 Job *uj;
4065
4066 assert(u);
4067
4068 /* Make sure we don't enter a loop, when coldplugging recursively. */
4069 if (u->coldplugged)
4070 return 0;
4071
4072 u->coldplugged = true;
4073
4074 STRV_FOREACH(i, u->deserialized_refs) {
4075 q = bus_unit_track_add_name(u, *i);
4076 if (q < 0 && r >= 0)
4077 r = q;
4078 }
4079 u->deserialized_refs = strv_free(u->deserialized_refs);
4080
4081 if (UNIT_VTABLE(u)->coldplug) {
4082 q = UNIT_VTABLE(u)->coldplug(u);
4083 if (q < 0 && r >= 0)
4084 r = q;
4085 }
4086
4087 uj = u->job ?: u->nop_job;
4088 if (uj) {
4089 q = job_coldplug(uj);
4090 if (q < 0 && r >= 0)
4091 r = q;
4092 }
4093
4094 return r;
4095 }
4096
4097 void unit_catchup(Unit *u) {
4098 assert(u);
4099
4100 if (UNIT_VTABLE(u)->catchup)
4101 UNIT_VTABLE(u)->catchup(u);
4102 }
4103
4104 static bool fragment_mtime_newer(const char *path, usec_t mtime, bool path_masked) {
4105 struct stat st;
4106
4107 if (!path)
4108 return false;
4109
4110 /* If the source is some virtual kernel file system, then we assume we watch it anyway, and hence pretend we
4111 * are never out-of-date. */
4112 if (PATH_STARTSWITH_SET(path, "/proc", "/sys"))
4113 return false;
4114
4115 if (stat(path, &st) < 0)
4116 /* What, cannot access this anymore? */
4117 return true;
4118
4119 if (path_masked)
4120 /* For masked files check if they are still so */
4121 return !null_or_empty(&st);
4122 else
4123 /* For non-empty files check the mtime */
4124 return timespec_load(&st.st_mtim) > mtime;
4125
4126 return false;
4127 }
4128
4129 bool unit_need_daemon_reload(Unit *u) {
4130 _cleanup_strv_free_ char **t = NULL;
4131 char **path;
4132
4133 assert(u);
4134
4135 /* For unit files, we allow masking… */
4136 if (fragment_mtime_newer(u->fragment_path, u->fragment_mtime,
4137 u->load_state == UNIT_MASKED))
4138 return true;
4139
4140 /* Source paths should not be masked… */
4141 if (fragment_mtime_newer(u->source_path, u->source_mtime, false))
4142 return true;
4143
4144 if (u->load_state == UNIT_LOADED)
4145 (void) unit_find_dropin_paths(u, &t);
4146 if (!strv_equal(u->dropin_paths, t))
4147 return true;
4148
4149 /* … any drop-ins that are masked are simply omitted from the list. */
4150 STRV_FOREACH(path, u->dropin_paths)
4151 if (fragment_mtime_newer(*path, u->dropin_mtime, false))
4152 return true;
4153
4154 return false;
4155 }
4156
4157 void unit_reset_failed(Unit *u) {
4158 assert(u);
4159
4160 if (UNIT_VTABLE(u)->reset_failed)
4161 UNIT_VTABLE(u)->reset_failed(u);
4162
4163 ratelimit_reset(&u->start_ratelimit);
4164 u->start_limit_hit = false;
4165 }
4166
4167 Unit *unit_following(Unit *u) {
4168 assert(u);
4169
4170 if (UNIT_VTABLE(u)->following)
4171 return UNIT_VTABLE(u)->following(u);
4172
4173 return NULL;
4174 }
4175
4176 bool unit_stop_pending(Unit *u) {
4177 assert(u);
4178
4179 /* This call does check the current state of the unit. It's
4180 * hence useful to be called from state change calls of the
4181 * unit itself, where the state isn't updated yet. This is
4182 * different from unit_inactive_or_pending() which checks both
4183 * the current state and for a queued job. */
4184
4185 return unit_has_job_type(u, JOB_STOP);
4186 }
4187
4188 bool unit_inactive_or_pending(Unit *u) {
4189 assert(u);
4190
4191 /* Returns true if the unit is inactive or going down */
4192
4193 if (UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u)))
4194 return true;
4195
4196 if (unit_stop_pending(u))
4197 return true;
4198
4199 return false;
4200 }
4201
4202 bool unit_active_or_pending(Unit *u) {
4203 assert(u);
4204
4205 /* Returns true if the unit is active or going up */
4206
4207 if (UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u)))
4208 return true;
4209
4210 if (u->job &&
4211 IN_SET(u->job->type, JOB_START, JOB_RELOAD_OR_START, JOB_RESTART))
4212 return true;
4213
4214 return false;
4215 }
4216
4217 bool unit_will_restart_default(Unit *u) {
4218 assert(u);
4219
4220 return unit_has_job_type(u, JOB_START);
4221 }
4222
4223 bool unit_will_restart(Unit *u) {
4224 assert(u);
4225
4226 if (!UNIT_VTABLE(u)->will_restart)
4227 return false;
4228
4229 return UNIT_VTABLE(u)->will_restart(u);
4230 }
4231
4232 int unit_kill(Unit *u, KillWho w, int signo, sd_bus_error *error) {
4233 assert(u);
4234 assert(w >= 0 && w < _KILL_WHO_MAX);
4235 assert(SIGNAL_VALID(signo));
4236
4237 if (!UNIT_VTABLE(u)->kill)
4238 return -EOPNOTSUPP;
4239
4240 return UNIT_VTABLE(u)->kill(u, w, signo, error);
4241 }
4242
4243 static Set *unit_pid_set(pid_t main_pid, pid_t control_pid) {
4244 _cleanup_set_free_ Set *pid_set = NULL;
4245 int r;
4246
4247 pid_set = set_new(NULL);
4248 if (!pid_set)
4249 return NULL;
4250
4251 /* Exclude the main/control pids from being killed via the cgroup */
4252 if (main_pid > 0) {
4253 r = set_put(pid_set, PID_TO_PTR(main_pid));
4254 if (r < 0)
4255 return NULL;
4256 }
4257
4258 if (control_pid > 0) {
4259 r = set_put(pid_set, PID_TO_PTR(control_pid));
4260 if (r < 0)
4261 return NULL;
4262 }
4263
4264 return TAKE_PTR(pid_set);
4265 }
4266
4267 int unit_kill_common(
4268 Unit *u,
4269 KillWho who,
4270 int signo,
4271 pid_t main_pid,
4272 pid_t control_pid,
4273 sd_bus_error *error) {
4274
4275 int r = 0;
4276 bool killed = false;
4277
4278 if (IN_SET(who, KILL_MAIN, KILL_MAIN_FAIL)) {
4279 if (main_pid < 0)
4280 return sd_bus_error_setf(error, BUS_ERROR_NO_SUCH_PROCESS, "%s units have no main processes", unit_type_to_string(u->type));
4281 else if (main_pid == 0)
4282 return sd_bus_error_set_const(error, BUS_ERROR_NO_SUCH_PROCESS, "No main process to kill");
4283 }
4284
4285 if (IN_SET(who, KILL_CONTROL, KILL_CONTROL_FAIL)) {
4286 if (control_pid < 0)
4287 return sd_bus_error_setf(error, BUS_ERROR_NO_SUCH_PROCESS, "%s units have no control processes", unit_type_to_string(u->type));
4288 else if (control_pid == 0)
4289 return sd_bus_error_set_const(error, BUS_ERROR_NO_SUCH_PROCESS, "No control process to kill");
4290 }
4291
4292 if (IN_SET(who, KILL_CONTROL, KILL_CONTROL_FAIL, KILL_ALL, KILL_ALL_FAIL))
4293 if (control_pid > 0) {
4294 if (kill(control_pid, signo) < 0)
4295 r = -errno;
4296 else
4297 killed = true;
4298 }
4299
4300 if (IN_SET(who, KILL_MAIN, KILL_MAIN_FAIL, KILL_ALL, KILL_ALL_FAIL))
4301 if (main_pid > 0) {
4302 if (kill(main_pid, signo) < 0)
4303 r = -errno;
4304 else
4305 killed = true;
4306 }
4307
4308 if (IN_SET(who, KILL_ALL, KILL_ALL_FAIL) && u->cgroup_path) {
4309 _cleanup_set_free_ Set *pid_set = NULL;
4310 int q;
4311
4312 /* Exclude the main/control pids from being killed via the cgroup */
4313 pid_set = unit_pid_set(main_pid, control_pid);
4314 if (!pid_set)
4315 return -ENOMEM;
4316
4317 q = cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER, u->cgroup_path, signo, 0, pid_set, NULL, NULL);
4318 if (q < 0 && !IN_SET(q, -EAGAIN, -ESRCH, -ENOENT))
4319 r = q;
4320 else
4321 killed = true;
4322 }
4323
4324 if (r == 0 && !killed && IN_SET(who, KILL_ALL_FAIL, KILL_CONTROL_FAIL))
4325 return -ESRCH;
4326
4327 return r;
4328 }
4329
4330 int unit_following_set(Unit *u, Set **s) {
4331 assert(u);
4332 assert(s);
4333
4334 if (UNIT_VTABLE(u)->following_set)
4335 return UNIT_VTABLE(u)->following_set(u, s);
4336
4337 *s = NULL;
4338 return 0;
4339 }
4340
4341 UnitFileState unit_get_unit_file_state(Unit *u) {
4342 int r;
4343
4344 assert(u);
4345
4346 if (u->unit_file_state < 0 && u->fragment_path) {
4347 r = unit_file_get_state(
4348 u->manager->unit_file_scope,
4349 NULL,
4350 u->id,
4351 &u->unit_file_state);
4352 if (r < 0)
4353 u->unit_file_state = UNIT_FILE_BAD;
4354 }
4355
4356 return u->unit_file_state;
4357 }
4358
4359 int unit_get_unit_file_preset(Unit *u) {
4360 assert(u);
4361
4362 if (u->unit_file_preset < 0 && u->fragment_path)
4363 u->unit_file_preset = unit_file_query_preset(
4364 u->manager->unit_file_scope,
4365 NULL,
4366 basename(u->fragment_path),
4367 NULL);
4368
4369 return u->unit_file_preset;
4370 }
4371
4372 Unit* unit_ref_set(UnitRef *ref, Unit *source, Unit *target) {
4373 assert(ref);
4374 assert(source);
4375 assert(target);
4376
4377 if (ref->target)
4378 unit_ref_unset(ref);
4379
4380 ref->source = source;
4381 ref->target = target;
4382 LIST_PREPEND(refs_by_target, target->refs_by_target, ref);
4383 return target;
4384 }
4385
4386 void unit_ref_unset(UnitRef *ref) {
4387 assert(ref);
4388
4389 if (!ref->target)
4390 return;
4391
4392 /* We are about to drop a reference to the unit, make sure the garbage collection has a look at it as it might
4393 * be unreferenced now. */
4394 unit_add_to_gc_queue(ref->target);
4395
4396 LIST_REMOVE(refs_by_target, ref->target->refs_by_target, ref);
4397 ref->source = ref->target = NULL;
4398 }
4399
4400 static int user_from_unit_name(Unit *u, char **ret) {
4401
4402 static const uint8_t hash_key[] = {
4403 0x58, 0x1a, 0xaf, 0xe6, 0x28, 0x58, 0x4e, 0x96,
4404 0xb4, 0x4e, 0xf5, 0x3b, 0x8c, 0x92, 0x07, 0xec
4405 };
4406
4407 _cleanup_free_ char *n = NULL;
4408 int r;
4409
4410 r = unit_name_to_prefix(u->id, &n);
4411 if (r < 0)
4412 return r;
4413
4414 if (valid_user_group_name(n, 0)) {
4415 *ret = TAKE_PTR(n);
4416 return 0;
4417 }
4418
4419 /* If we can't use the unit name as a user name, then let's hash it and use that */
4420 if (asprintf(ret, "_du%016" PRIx64, siphash24(n, strlen(n), hash_key)) < 0)
4421 return -ENOMEM;
4422
4423 return 0;
4424 }
4425
4426 int unit_patch_contexts(Unit *u) {
4427 CGroupContext *cc;
4428 ExecContext *ec;
4429 unsigned i;
4430 int r;
4431
4432 assert(u);
4433
4434 /* Patch in the manager defaults into the exec and cgroup
4435 * contexts, _after_ the rest of the settings have been
4436 * initialized */
4437
4438 ec = unit_get_exec_context(u);
4439 if (ec) {
4440 /* This only copies in the ones that need memory */
4441 for (i = 0; i < _RLIMIT_MAX; i++)
4442 if (u->manager->rlimit[i] && !ec->rlimit[i]) {
4443 ec->rlimit[i] = newdup(struct rlimit, u->manager->rlimit[i], 1);
4444 if (!ec->rlimit[i])
4445 return -ENOMEM;
4446 }
4447
4448 if (MANAGER_IS_USER(u->manager) &&
4449 !ec->working_directory) {
4450
4451 r = get_home_dir(&ec->working_directory);
4452 if (r < 0)
4453 return r;
4454
4455 /* Allow user services to run, even if the
4456 * home directory is missing */
4457 ec->working_directory_missing_ok = true;
4458 }
4459
4460 if (ec->private_devices)
4461 ec->capability_bounding_set &= ~((UINT64_C(1) << CAP_MKNOD) | (UINT64_C(1) << CAP_SYS_RAWIO));
4462
4463 if (ec->protect_kernel_modules)
4464 ec->capability_bounding_set &= ~(UINT64_C(1) << CAP_SYS_MODULE);
4465
4466 if (ec->protect_kernel_logs)
4467 ec->capability_bounding_set &= ~(UINT64_C(1) << CAP_SYSLOG);
4468
4469 if (ec->protect_clock)
4470 ec->capability_bounding_set &= ~((UINT64_C(1) << CAP_SYS_TIME) | (UINT64_C(1) << CAP_WAKE_ALARM));
4471
4472 if (ec->dynamic_user) {
4473 if (!ec->user) {
4474 r = user_from_unit_name(u, &ec->user);
4475 if (r < 0)
4476 return r;
4477 }
4478
4479 if (!ec->group) {
4480 ec->group = strdup(ec->user);
4481 if (!ec->group)
4482 return -ENOMEM;
4483 }
4484
4485 /* If the dynamic user option is on, let's make sure that the unit can't leave its
4486 * UID/GID around in the file system or on IPC objects. Hence enforce a strict
4487 * sandbox. */
4488
4489 ec->private_tmp = true;
4490 ec->remove_ipc = true;
4491 ec->protect_system = PROTECT_SYSTEM_STRICT;
4492 if (ec->protect_home == PROTECT_HOME_NO)
4493 ec->protect_home = PROTECT_HOME_READ_ONLY;
4494
4495 /* Make sure this service can neither benefit from SUID/SGID binaries nor create
4496 * them. */
4497 ec->no_new_privileges = true;
4498 ec->restrict_suid_sgid = true;
4499 }
4500 }
4501
4502 cc = unit_get_cgroup_context(u);
4503 if (cc && ec) {
4504
4505 if (ec->private_devices &&
4506 cc->device_policy == CGROUP_DEVICE_POLICY_AUTO)
4507 cc->device_policy = CGROUP_DEVICE_POLICY_CLOSED;
4508
4509 if (ec->root_image &&
4510 (cc->device_policy != CGROUP_DEVICE_POLICY_AUTO || cc->device_allow)) {
4511
4512 /* When RootImage= is specified, the following devices are touched. */
4513 r = cgroup_add_device_allow(cc, "/dev/loop-control", "rw");
4514 if (r < 0)
4515 return r;
4516
4517 r = cgroup_add_device_allow(cc, "block-loop", "rwm");
4518 if (r < 0)
4519 return r;
4520
4521 r = cgroup_add_device_allow(cc, "block-blkext", "rwm");
4522 if (r < 0)
4523 return r;
4524
4525 /* Make sure "block-loop" can be resolved, i.e. make sure "loop" shows up in /proc/devices */
4526 r = unit_add_two_dependencies_by_name(u, UNIT_AFTER, UNIT_WANTS, "modprobe@loop.service", true, UNIT_DEPENDENCY_FILE);
4527 if (r < 0)
4528 return r;
4529 }
4530
4531 if (ec->protect_clock) {
4532 r = cgroup_add_device_allow(cc, "char-rtc", "r");
4533 if (r < 0)
4534 return r;
4535 }
4536 }
4537
4538 return 0;
4539 }
4540
4541 ExecContext *unit_get_exec_context(Unit *u) {
4542 size_t offset;
4543 assert(u);
4544
4545 if (u->type < 0)
4546 return NULL;
4547
4548 offset = UNIT_VTABLE(u)->exec_context_offset;
4549 if (offset <= 0)
4550 return NULL;
4551
4552 return (ExecContext*) ((uint8_t*) u + offset);
4553 }
4554
4555 KillContext *unit_get_kill_context(Unit *u) {
4556 size_t offset;
4557 assert(u);
4558
4559 if (u->type < 0)
4560 return NULL;
4561
4562 offset = UNIT_VTABLE(u)->kill_context_offset;
4563 if (offset <= 0)
4564 return NULL;
4565
4566 return (KillContext*) ((uint8_t*) u + offset);
4567 }
4568
4569 CGroupContext *unit_get_cgroup_context(Unit *u) {
4570 size_t offset;
4571
4572 if (u->type < 0)
4573 return NULL;
4574
4575 offset = UNIT_VTABLE(u)->cgroup_context_offset;
4576 if (offset <= 0)
4577 return NULL;
4578
4579 return (CGroupContext*) ((uint8_t*) u + offset);
4580 }
4581
4582 ExecRuntime *unit_get_exec_runtime(Unit *u) {
4583 size_t offset;
4584
4585 if (u->type < 0)
4586 return NULL;
4587
4588 offset = UNIT_VTABLE(u)->exec_runtime_offset;
4589 if (offset <= 0)
4590 return NULL;
4591
4592 return *(ExecRuntime**) ((uint8_t*) u + offset);
4593 }
4594
4595 static const char* unit_drop_in_dir(Unit *u, UnitWriteFlags flags) {
4596 assert(u);
4597
4598 if (UNIT_WRITE_FLAGS_NOOP(flags))
4599 return NULL;
4600
4601 if (u->transient) /* Redirect drop-ins for transient units always into the transient directory. */
4602 return u->manager->lookup_paths.transient;
4603
4604 if (flags & UNIT_PERSISTENT)
4605 return u->manager->lookup_paths.persistent_control;
4606
4607 if (flags & UNIT_RUNTIME)
4608 return u->manager->lookup_paths.runtime_control;
4609
4610 return NULL;
4611 }
4612
4613 char* unit_escape_setting(const char *s, UnitWriteFlags flags, char **buf) {
4614 char *ret = NULL;
4615
4616 if (!s)
4617 return NULL;
4618
4619 /* Escapes the input string as requested. Returns the escaped string. If 'buf' is specified then the allocated
4620 * return buffer pointer is also written to *buf, except if no escaping was necessary, in which case *buf is
4621 * set to NULL, and the input pointer is returned as-is. This means the return value always contains a properly
4622 * escaped version, but *buf when passed only contains a pointer if an allocation was necessary. If *buf is
4623 * not specified, then the return value always needs to be freed. Callers can use this to optimize memory
4624 * allocations. */
4625
4626 if (flags & UNIT_ESCAPE_SPECIFIERS) {
4627 ret = specifier_escape(s);
4628 if (!ret)
4629 return NULL;
4630
4631 s = ret;
4632 }
4633
4634 if (flags & UNIT_ESCAPE_C) {
4635 char *a;
4636
4637 a = cescape(s);
4638 free(ret);
4639 if (!a)
4640 return NULL;
4641
4642 ret = a;
4643 }
4644
4645 if (buf) {
4646 *buf = ret;
4647 return ret ?: (char*) s;
4648 }
4649
4650 return ret ?: strdup(s);
4651 }
4652
4653 char* unit_concat_strv(char **l, UnitWriteFlags flags) {
4654 _cleanup_free_ char *result = NULL;
4655 size_t n = 0, allocated = 0;
4656 char **i;
4657
4658 /* Takes a list of strings, escapes them, and concatenates them. This may be used to format command lines in a
4659 * way suitable for ExecStart= stanzas */
4660
4661 STRV_FOREACH(i, l) {
4662 _cleanup_free_ char *buf = NULL;
4663 const char *p;
4664 size_t a;
4665 char *q;
4666
4667 p = unit_escape_setting(*i, flags, &buf);
4668 if (!p)
4669 return NULL;
4670
4671 a = (n > 0) + 1 + strlen(p) + 1; /* separating space + " + entry + " */
4672 if (!GREEDY_REALLOC(result, allocated, n + a + 1))
4673 return NULL;
4674
4675 q = result + n;
4676 if (n > 0)
4677 *(q++) = ' ';
4678
4679 *(q++) = '"';
4680 q = stpcpy(q, p);
4681 *(q++) = '"';
4682
4683 n += a;
4684 }
4685
4686 if (!GREEDY_REALLOC(result, allocated, n + 1))
4687 return NULL;
4688
4689 result[n] = 0;
4690
4691 return TAKE_PTR(result);
4692 }
4693
4694 int unit_write_setting(Unit *u, UnitWriteFlags flags, const char *name, const char *data) {
4695 _cleanup_free_ char *p = NULL, *q = NULL, *escaped = NULL;
4696 const char *dir, *wrapped;
4697 int r;
4698
4699 assert(u);
4700 assert(name);
4701 assert(data);
4702
4703 if (UNIT_WRITE_FLAGS_NOOP(flags))
4704 return 0;
4705
4706 data = unit_escape_setting(data, flags, &escaped);
4707 if (!data)
4708 return -ENOMEM;
4709
4710 /* Prefix the section header. If we are writing this out as transient file, then let's suppress this if the
4711 * previous section header is the same */
4712
4713 if (flags & UNIT_PRIVATE) {
4714 if (!UNIT_VTABLE(u)->private_section)
4715 return -EINVAL;
4716
4717 if (!u->transient_file || u->last_section_private < 0)
4718 data = strjoina("[", UNIT_VTABLE(u)->private_section, "]\n", data);
4719 else if (u->last_section_private == 0)
4720 data = strjoina("\n[", UNIT_VTABLE(u)->private_section, "]\n", data);
4721 } else {
4722 if (!u->transient_file || u->last_section_private < 0)
4723 data = strjoina("[Unit]\n", data);
4724 else if (u->last_section_private > 0)
4725 data = strjoina("\n[Unit]\n", data);
4726 }
4727
4728 if (u->transient_file) {
4729 /* When this is a transient unit file in creation, then let's not create a new drop-in but instead
4730 * write to the transient unit file. */
4731 fputs(data, u->transient_file);
4732
4733 if (!endswith(data, "\n"))
4734 fputc('\n', u->transient_file);
4735
4736 /* Remember which section we wrote this entry to */
4737 u->last_section_private = !!(flags & UNIT_PRIVATE);
4738 return 0;
4739 }
4740
4741 dir = unit_drop_in_dir(u, flags);
4742 if (!dir)
4743 return -EINVAL;
4744
4745 wrapped = strjoina("# This is a drop-in unit file extension, created via \"systemctl set-property\"\n"
4746 "# or an equivalent operation. Do not edit.\n",
4747 data,
4748 "\n");
4749
4750 r = drop_in_file(dir, u->id, 50, name, &p, &q);
4751 if (r < 0)
4752 return r;
4753
4754 (void) mkdir_p_label(p, 0755);
4755
4756 /* Make sure the drop-in dir is registered in our path cache. This way we don't need to stupidly
4757 * recreate the cache after every drop-in we write. */
4758 if (u->manager->unit_path_cache) {
4759 r = set_put_strdup(&u->manager->unit_path_cache, p);
4760 if (r < 0)
4761 return r;
4762 }
4763
4764 r = write_string_file_atomic_label(q, wrapped);
4765 if (r < 0)
4766 return r;
4767
4768 r = strv_push(&u->dropin_paths, q);
4769 if (r < 0)
4770 return r;
4771 q = NULL;
4772
4773 strv_uniq(u->dropin_paths);
4774
4775 u->dropin_mtime = now(CLOCK_REALTIME);
4776
4777 return 0;
4778 }
4779
4780 int unit_write_settingf(Unit *u, UnitWriteFlags flags, const char *name, const char *format, ...) {
4781 _cleanup_free_ char *p = NULL;
4782 va_list ap;
4783 int r;
4784
4785 assert(u);
4786 assert(name);
4787 assert(format);
4788
4789 if (UNIT_WRITE_FLAGS_NOOP(flags))
4790 return 0;
4791
4792 va_start(ap, format);
4793 r = vasprintf(&p, format, ap);
4794 va_end(ap);
4795
4796 if (r < 0)
4797 return -ENOMEM;
4798
4799 return unit_write_setting(u, flags, name, p);
4800 }
4801
4802 int unit_make_transient(Unit *u) {
4803 _cleanup_free_ char *path = NULL;
4804 FILE *f;
4805
4806 assert(u);
4807
4808 if (!UNIT_VTABLE(u)->can_transient)
4809 return -EOPNOTSUPP;
4810
4811 (void) mkdir_p_label(u->manager->lookup_paths.transient, 0755);
4812
4813 path = path_join(u->manager->lookup_paths.transient, u->id);
4814 if (!path)
4815 return -ENOMEM;
4816
4817 /* Let's open the file we'll write the transient settings into. This file is kept open as long as we are
4818 * creating the transient, and is closed in unit_load(), as soon as we start loading the file. */
4819
4820 RUN_WITH_UMASK(0022) {
4821 f = fopen(path, "we");
4822 if (!f)
4823 return -errno;
4824 }
4825
4826 safe_fclose(u->transient_file);
4827 u->transient_file = f;
4828
4829 free_and_replace(u->fragment_path, path);
4830
4831 u->source_path = mfree(u->source_path);
4832 u->dropin_paths = strv_free(u->dropin_paths);
4833 u->fragment_mtime = u->source_mtime = u->dropin_mtime = 0;
4834
4835 u->load_state = UNIT_STUB;
4836 u->load_error = 0;
4837 u->transient = true;
4838
4839 unit_add_to_dbus_queue(u);
4840 unit_add_to_gc_queue(u);
4841
4842 fputs("# This is a transient unit file, created programmatically via the systemd API. Do not edit.\n",
4843 u->transient_file);
4844
4845 return 0;
4846 }
4847
4848 static int log_kill(pid_t pid, int sig, void *userdata) {
4849 _cleanup_free_ char *comm = NULL;
4850
4851 (void) get_process_comm(pid, &comm);
4852
4853 /* Don't log about processes marked with brackets, under the assumption that these are temporary processes
4854 only, like for example systemd's own PAM stub process. */
4855 if (comm && comm[0] == '(')
4856 return 0;
4857
4858 log_unit_notice(userdata,
4859 "Killing process " PID_FMT " (%s) with signal SIG%s.",
4860 pid,
4861 strna(comm),
4862 signal_to_string(sig));
4863
4864 return 1;
4865 }
4866
4867 static int operation_to_signal(const KillContext *c, KillOperation k, bool *noteworthy) {
4868 assert(c);
4869
4870 switch (k) {
4871
4872 case KILL_TERMINATE:
4873 case KILL_TERMINATE_AND_LOG:
4874 *noteworthy = false;
4875 return c->kill_signal;
4876
4877 case KILL_RESTART:
4878 *noteworthy = false;
4879 return restart_kill_signal(c);
4880
4881 case KILL_KILL:
4882 *noteworthy = true;
4883 return c->final_kill_signal;
4884
4885 case KILL_WATCHDOG:
4886 *noteworthy = true;
4887 return c->watchdog_signal;
4888
4889 default:
4890 assert_not_reached("KillOperation unknown");
4891 }
4892 }
4893
4894 int unit_kill_context(
4895 Unit *u,
4896 KillContext *c,
4897 KillOperation k,
4898 pid_t main_pid,
4899 pid_t control_pid,
4900 bool main_pid_alien) {
4901
4902 bool wait_for_exit = false, send_sighup;
4903 cg_kill_log_func_t log_func = NULL;
4904 int sig, r;
4905
4906 assert(u);
4907 assert(c);
4908
4909 /* Kill the processes belonging to this unit, in preparation for shutting the unit down.
4910 * Returns > 0 if we killed something worth waiting for, 0 otherwise. */
4911
4912 if (c->kill_mode == KILL_NONE)
4913 return 0;
4914
4915 bool noteworthy;
4916 sig = operation_to_signal(c, k, &noteworthy);
4917 if (noteworthy)
4918 log_func = log_kill;
4919
4920 send_sighup =
4921 c->send_sighup &&
4922 IN_SET(k, KILL_TERMINATE, KILL_TERMINATE_AND_LOG) &&
4923 sig != SIGHUP;
4924
4925 if (main_pid > 0) {
4926 if (log_func)
4927 log_func(main_pid, sig, u);
4928
4929 r = kill_and_sigcont(main_pid, sig);
4930 if (r < 0 && r != -ESRCH) {
4931 _cleanup_free_ char *comm = NULL;
4932 (void) get_process_comm(main_pid, &comm);
4933
4934 log_unit_warning_errno(u, r, "Failed to kill main process " PID_FMT " (%s), ignoring: %m", main_pid, strna(comm));
4935 } else {
4936 if (!main_pid_alien)
4937 wait_for_exit = true;
4938
4939 if (r != -ESRCH && send_sighup)
4940 (void) kill(main_pid, SIGHUP);
4941 }
4942 }
4943
4944 if (control_pid > 0) {
4945 if (log_func)
4946 log_func(control_pid, sig, u);
4947
4948 r = kill_and_sigcont(control_pid, sig);
4949 if (r < 0 && r != -ESRCH) {
4950 _cleanup_free_ char *comm = NULL;
4951 (void) get_process_comm(control_pid, &comm);
4952
4953 log_unit_warning_errno(u, r, "Failed to kill control process " PID_FMT " (%s), ignoring: %m", control_pid, strna(comm));
4954 } else {
4955 wait_for_exit = true;
4956
4957 if (r != -ESRCH && send_sighup)
4958 (void) kill(control_pid, SIGHUP);
4959 }
4960 }
4961
4962 if (u->cgroup_path &&
4963 (c->kill_mode == KILL_CONTROL_GROUP || (c->kill_mode == KILL_MIXED && k == KILL_KILL))) {
4964 _cleanup_set_free_ Set *pid_set = NULL;
4965
4966 /* Exclude the main/control pids from being killed via the cgroup */
4967 pid_set = unit_pid_set(main_pid, control_pid);
4968 if (!pid_set)
4969 return -ENOMEM;
4970
4971 r = cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER, u->cgroup_path,
4972 sig,
4973 CGROUP_SIGCONT|CGROUP_IGNORE_SELF,
4974 pid_set,
4975 log_func, u);
4976 if (r < 0) {
4977 if (!IN_SET(r, -EAGAIN, -ESRCH, -ENOENT))
4978 log_unit_warning_errno(u, r, "Failed to kill control group %s, ignoring: %m", u->cgroup_path);
4979
4980 } else if (r > 0) {
4981
4982 /* FIXME: For now, on the legacy hierarchy, we will not wait for the cgroup members to die if
4983 * we are running in a container or if this is a delegation unit, simply because cgroup
4984 * notification is unreliable in these cases. It doesn't work at all in containers, and outside
4985 * of containers it can be confused easily by left-over directories in the cgroup — which
4986 * however should not exist in non-delegated units. On the unified hierarchy that's different,
4987 * there we get proper events. Hence rely on them. */
4988
4989 if (cg_unified_controller(SYSTEMD_CGROUP_CONTROLLER) > 0 ||
4990 (detect_container() == 0 && !unit_cgroup_delegate(u)))
4991 wait_for_exit = true;
4992
4993 if (send_sighup) {
4994 set_free(pid_set);
4995
4996 pid_set = unit_pid_set(main_pid, control_pid);
4997 if (!pid_set)
4998 return -ENOMEM;
4999
5000 (void) cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER, u->cgroup_path,
5001 SIGHUP,
5002 CGROUP_IGNORE_SELF,
5003 pid_set,
5004 NULL, NULL);
5005 }
5006 }
5007 }
5008
5009 return wait_for_exit;
5010 }
5011
5012 int unit_require_mounts_for(Unit *u, const char *path, UnitDependencyMask mask) {
5013 _cleanup_free_ char *p = NULL;
5014 UnitDependencyInfo di;
5015 int r;
5016
5017 assert(u);
5018 assert(path);
5019
5020 /* Registers a unit for requiring a certain path and all its prefixes. We keep a hashtable of these paths in
5021 * the unit (from the path to the UnitDependencyInfo structure indicating how to the dependency came to
5022 * be). However, we build a prefix table for all possible prefixes so that new appearing mount units can easily
5023 * determine which units to make themselves a dependency of. */
5024
5025 if (!path_is_absolute(path))
5026 return -EINVAL;
5027
5028 r = hashmap_ensure_allocated(&u->requires_mounts_for, &path_hash_ops);
5029 if (r < 0)
5030 return r;
5031
5032 p = strdup(path);
5033 if (!p)
5034 return -ENOMEM;
5035
5036 path = path_simplify(p, true);
5037
5038 if (!path_is_normalized(path))
5039 return -EPERM;
5040
5041 if (hashmap_contains(u->requires_mounts_for, path))
5042 return 0;
5043
5044 di = (UnitDependencyInfo) {
5045 .origin_mask = mask
5046 };
5047
5048 r = hashmap_put(u->requires_mounts_for, path, di.data);
5049 if (r < 0)
5050 return r;
5051 p = NULL;
5052
5053 char prefix[strlen(path) + 1];
5054 PATH_FOREACH_PREFIX_MORE(prefix, path) {
5055 Set *x;
5056
5057 x = hashmap_get(u->manager->units_requiring_mounts_for, prefix);
5058 if (!x) {
5059 _cleanup_free_ char *q = NULL;
5060
5061 r = hashmap_ensure_allocated(&u->manager->units_requiring_mounts_for, &path_hash_ops);
5062 if (r < 0)
5063 return r;
5064
5065 q = strdup(prefix);
5066 if (!q)
5067 return -ENOMEM;
5068
5069 x = set_new(NULL);
5070 if (!x)
5071 return -ENOMEM;
5072
5073 r = hashmap_put(u->manager->units_requiring_mounts_for, q, x);
5074 if (r < 0) {
5075 set_free(x);
5076 return r;
5077 }
5078 q = NULL;
5079 }
5080
5081 r = set_put(x, u);
5082 if (r < 0)
5083 return r;
5084 }
5085
5086 return 0;
5087 }
5088
5089 int unit_setup_exec_runtime(Unit *u) {
5090 ExecRuntime **rt;
5091 size_t offset;
5092 Unit *other;
5093 Iterator i;
5094 void *v;
5095 int r;
5096
5097 offset = UNIT_VTABLE(u)->exec_runtime_offset;
5098 assert(offset > 0);
5099
5100 /* Check if there already is an ExecRuntime for this unit? */
5101 rt = (ExecRuntime**) ((uint8_t*) u + offset);
5102 if (*rt)
5103 return 0;
5104
5105 /* Try to get it from somebody else */
5106 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_JOINS_NAMESPACE_OF], i) {
5107 r = exec_runtime_acquire(u->manager, NULL, other->id, false, rt);
5108 if (r == 1)
5109 return 1;
5110 }
5111
5112 return exec_runtime_acquire(u->manager, unit_get_exec_context(u), u->id, true, rt);
5113 }
5114
5115 int unit_setup_dynamic_creds(Unit *u) {
5116 ExecContext *ec;
5117 DynamicCreds *dcreds;
5118 size_t offset;
5119
5120 assert(u);
5121
5122 offset = UNIT_VTABLE(u)->dynamic_creds_offset;
5123 assert(offset > 0);
5124 dcreds = (DynamicCreds*) ((uint8_t*) u + offset);
5125
5126 ec = unit_get_exec_context(u);
5127 assert(ec);
5128
5129 if (!ec->dynamic_user)
5130 return 0;
5131
5132 return dynamic_creds_acquire(dcreds, u->manager, ec->user, ec->group);
5133 }
5134
5135 bool unit_type_supported(UnitType t) {
5136 if (_unlikely_(t < 0))
5137 return false;
5138 if (_unlikely_(t >= _UNIT_TYPE_MAX))
5139 return false;
5140
5141 if (!unit_vtable[t]->supported)
5142 return true;
5143
5144 return unit_vtable[t]->supported();
5145 }
5146
5147 void unit_warn_if_dir_nonempty(Unit *u, const char* where) {
5148 int r;
5149
5150 assert(u);
5151 assert(where);
5152
5153 r = dir_is_empty(where);
5154 if (r > 0 || r == -ENOTDIR)
5155 return;
5156 if (r < 0) {
5157 log_unit_warning_errno(u, r, "Failed to check directory %s: %m", where);
5158 return;
5159 }
5160
5161 log_struct(LOG_NOTICE,
5162 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR,
5163 LOG_UNIT_ID(u),
5164 LOG_UNIT_INVOCATION_ID(u),
5165 LOG_UNIT_MESSAGE(u, "Directory %s to mount over is not empty, mounting anyway.", where),
5166 "WHERE=%s", where);
5167 }
5168
5169 int unit_fail_if_noncanonical(Unit *u, const char* where) {
5170 _cleanup_free_ char *canonical_where = NULL;
5171 int r;
5172
5173 assert(u);
5174 assert(where);
5175
5176 r = chase_symlinks(where, NULL, CHASE_NONEXISTENT, &canonical_where, NULL);
5177 if (r < 0) {
5178 log_unit_debug_errno(u, r, "Failed to check %s for symlinks, ignoring: %m", where);
5179 return 0;
5180 }
5181
5182 /* We will happily ignore a trailing slash (or any redundant slashes) */
5183 if (path_equal(where, canonical_where))
5184 return 0;
5185
5186 /* No need to mention "." or "..", they would already have been rejected by unit_name_from_path() */
5187 log_struct(LOG_ERR,
5188 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR,
5189 LOG_UNIT_ID(u),
5190 LOG_UNIT_INVOCATION_ID(u),
5191 LOG_UNIT_MESSAGE(u, "Mount path %s is not canonical (contains a symlink).", where),
5192 "WHERE=%s", where);
5193
5194 return -ELOOP;
5195 }
5196
5197 bool unit_is_pristine(Unit *u) {
5198 assert(u);
5199
5200 /* Check if the unit already exists or is already around,
5201 * in a number of different ways. Note that to cater for unit
5202 * types such as slice, we are generally fine with units that
5203 * are marked UNIT_LOADED even though nothing was actually
5204 * loaded, as those unit types don't require a file on disk. */
5205
5206 return !(!IN_SET(u->load_state, UNIT_NOT_FOUND, UNIT_LOADED) ||
5207 u->fragment_path ||
5208 u->source_path ||
5209 !strv_isempty(u->dropin_paths) ||
5210 u->job ||
5211 u->merged_into);
5212 }
5213
5214 pid_t unit_control_pid(Unit *u) {
5215 assert(u);
5216
5217 if (UNIT_VTABLE(u)->control_pid)
5218 return UNIT_VTABLE(u)->control_pid(u);
5219
5220 return 0;
5221 }
5222
5223 pid_t unit_main_pid(Unit *u) {
5224 assert(u);
5225
5226 if (UNIT_VTABLE(u)->main_pid)
5227 return UNIT_VTABLE(u)->main_pid(u);
5228
5229 return 0;
5230 }
5231
5232 static void unit_unref_uid_internal(
5233 Unit *u,
5234 uid_t *ref_uid,
5235 bool destroy_now,
5236 void (*_manager_unref_uid)(Manager *m, uid_t uid, bool destroy_now)) {
5237
5238 assert(u);
5239 assert(ref_uid);
5240 assert(_manager_unref_uid);
5241
5242 /* Generic implementation of both unit_unref_uid() and unit_unref_gid(), under the assumption that uid_t and
5243 * gid_t are actually the same time, with the same validity rules.
5244 *
5245 * Drops a reference to UID/GID from a unit. */
5246
5247 assert_cc(sizeof(uid_t) == sizeof(gid_t));
5248 assert_cc(UID_INVALID == (uid_t) GID_INVALID);
5249
5250 if (!uid_is_valid(*ref_uid))
5251 return;
5252
5253 _manager_unref_uid(u->manager, *ref_uid, destroy_now);
5254 *ref_uid = UID_INVALID;
5255 }
5256
5257 static void unit_unref_uid(Unit *u, bool destroy_now) {
5258 unit_unref_uid_internal(u, &u->ref_uid, destroy_now, manager_unref_uid);
5259 }
5260
5261 static void unit_unref_gid(Unit *u, bool destroy_now) {
5262 unit_unref_uid_internal(u, (uid_t*) &u->ref_gid, destroy_now, manager_unref_gid);
5263 }
5264
5265 void unit_unref_uid_gid(Unit *u, bool destroy_now) {
5266 assert(u);
5267
5268 unit_unref_uid(u, destroy_now);
5269 unit_unref_gid(u, destroy_now);
5270 }
5271
5272 static int unit_ref_uid_internal(
5273 Unit *u,
5274 uid_t *ref_uid,
5275 uid_t uid,
5276 bool clean_ipc,
5277 int (*_manager_ref_uid)(Manager *m, uid_t uid, bool clean_ipc)) {
5278
5279 int r;
5280
5281 assert(u);
5282 assert(ref_uid);
5283 assert(uid_is_valid(uid));
5284 assert(_manager_ref_uid);
5285
5286 /* Generic implementation of both unit_ref_uid() and unit_ref_guid(), under the assumption that uid_t and gid_t
5287 * are actually the same type, and have the same validity rules.
5288 *
5289 * Adds a reference on a specific UID/GID to this unit. Each unit referencing the same UID/GID maintains a
5290 * reference so that we can destroy the UID/GID's IPC resources as soon as this is requested and the counter
5291 * drops to zero. */
5292
5293 assert_cc(sizeof(uid_t) == sizeof(gid_t));
5294 assert_cc(UID_INVALID == (uid_t) GID_INVALID);
5295
5296 if (*ref_uid == uid)
5297 return 0;
5298
5299 if (uid_is_valid(*ref_uid)) /* Already set? */
5300 return -EBUSY;
5301
5302 r = _manager_ref_uid(u->manager, uid, clean_ipc);
5303 if (r < 0)
5304 return r;
5305
5306 *ref_uid = uid;
5307 return 1;
5308 }
5309
5310 static int unit_ref_uid(Unit *u, uid_t uid, bool clean_ipc) {
5311 return unit_ref_uid_internal(u, &u->ref_uid, uid, clean_ipc, manager_ref_uid);
5312 }
5313
5314 static int unit_ref_gid(Unit *u, gid_t gid, bool clean_ipc) {
5315 return unit_ref_uid_internal(u, (uid_t*) &u->ref_gid, (uid_t) gid, clean_ipc, manager_ref_gid);
5316 }
5317
5318 static int unit_ref_uid_gid_internal(Unit *u, uid_t uid, gid_t gid, bool clean_ipc) {
5319 int r = 0, q = 0;
5320
5321 assert(u);
5322
5323 /* Reference both a UID and a GID in one go. Either references both, or neither. */
5324
5325 if (uid_is_valid(uid)) {
5326 r = unit_ref_uid(u, uid, clean_ipc);
5327 if (r < 0)
5328 return r;
5329 }
5330
5331 if (gid_is_valid(gid)) {
5332 q = unit_ref_gid(u, gid, clean_ipc);
5333 if (q < 0) {
5334 if (r > 0)
5335 unit_unref_uid(u, false);
5336
5337 return q;
5338 }
5339 }
5340
5341 return r > 0 || q > 0;
5342 }
5343
5344 int unit_ref_uid_gid(Unit *u, uid_t uid, gid_t gid) {
5345 ExecContext *c;
5346 int r;
5347
5348 assert(u);
5349
5350 c = unit_get_exec_context(u);
5351
5352 r = unit_ref_uid_gid_internal(u, uid, gid, c ? c->remove_ipc : false);
5353 if (r < 0)
5354 return log_unit_warning_errno(u, r, "Couldn't add UID/GID reference to unit, proceeding without: %m");
5355
5356 return r;
5357 }
5358
5359 void unit_notify_user_lookup(Unit *u, uid_t uid, gid_t gid) {
5360 int r;
5361
5362 assert(u);
5363
5364 /* This is invoked whenever one of the forked off processes let's us know the UID/GID its user name/group names
5365 * resolved to. We keep track of which UID/GID is currently assigned in order to be able to destroy its IPC
5366 * objects when no service references the UID/GID anymore. */
5367
5368 r = unit_ref_uid_gid(u, uid, gid);
5369 if (r > 0)
5370 unit_add_to_dbus_queue(u);
5371 }
5372
5373 int unit_acquire_invocation_id(Unit *u) {
5374 sd_id128_t id;
5375 int r;
5376
5377 assert(u);
5378
5379 r = sd_id128_randomize(&id);
5380 if (r < 0)
5381 return log_unit_error_errno(u, r, "Failed to generate invocation ID for unit: %m");
5382
5383 r = unit_set_invocation_id(u, id);
5384 if (r < 0)
5385 return log_unit_error_errno(u, r, "Failed to set invocation ID for unit: %m");
5386
5387 unit_add_to_dbus_queue(u);
5388 return 0;
5389 }
5390
5391 int unit_set_exec_params(Unit *u, ExecParameters *p) {
5392 int r;
5393
5394 assert(u);
5395 assert(p);
5396
5397 /* Copy parameters from manager */
5398 r = manager_get_effective_environment(u->manager, &p->environment);
5399 if (r < 0)
5400 return r;
5401
5402 p->confirm_spawn = manager_get_confirm_spawn(u->manager);
5403 p->cgroup_supported = u->manager->cgroup_supported;
5404 p->prefix = u->manager->prefix;
5405 SET_FLAG(p->flags, EXEC_PASS_LOG_UNIT|EXEC_CHOWN_DIRECTORIES, MANAGER_IS_SYSTEM(u->manager));
5406
5407 /* Copy parameters from unit */
5408 p->cgroup_path = u->cgroup_path;
5409 SET_FLAG(p->flags, EXEC_CGROUP_DELEGATE, unit_cgroup_delegate(u));
5410
5411 return 0;
5412 }
5413
5414 int unit_fork_helper_process(Unit *u, const char *name, pid_t *ret) {
5415 int r;
5416
5417 assert(u);
5418 assert(ret);
5419
5420 /* Forks off a helper process and makes sure it is a member of the unit's cgroup. Returns == 0 in the child,
5421 * and > 0 in the parent. The pid parameter is always filled in with the child's PID. */
5422
5423 (void) unit_realize_cgroup(u);
5424
5425 r = safe_fork(name, FORK_REOPEN_LOG, ret);
5426 if (r != 0)
5427 return r;
5428
5429 (void) default_signals(SIGNALS_CRASH_HANDLER, SIGNALS_IGNORE, -1);
5430 (void) ignore_signals(SIGPIPE, -1);
5431
5432 (void) prctl(PR_SET_PDEATHSIG, SIGTERM);
5433
5434 if (u->cgroup_path) {
5435 r = cg_attach_everywhere(u->manager->cgroup_supported, u->cgroup_path, 0, NULL, NULL);
5436 if (r < 0) {
5437 log_unit_error_errno(u, r, "Failed to join unit cgroup %s: %m", u->cgroup_path);
5438 _exit(EXIT_CGROUP);
5439 }
5440 }
5441
5442 return 0;
5443 }
5444
5445 int unit_fork_and_watch_rm_rf(Unit *u, char **paths, pid_t *ret_pid) {
5446 pid_t pid;
5447 int r;
5448
5449 assert(u);
5450 assert(ret_pid);
5451
5452 r = unit_fork_helper_process(u, "(sd-rmrf)", &pid);
5453 if (r < 0)
5454 return r;
5455 if (r == 0) {
5456 int ret = EXIT_SUCCESS;
5457 char **i;
5458
5459 STRV_FOREACH(i, paths) {
5460 r = rm_rf(*i, REMOVE_ROOT|REMOVE_PHYSICAL|REMOVE_MISSING_OK);
5461 if (r < 0) {
5462 log_error_errno(r, "Failed to remove '%s': %m", *i);
5463 ret = EXIT_FAILURE;
5464 }
5465 }
5466
5467 _exit(ret);
5468 }
5469
5470 r = unit_watch_pid(u, pid, true);
5471 if (r < 0)
5472 return r;
5473
5474 *ret_pid = pid;
5475 return 0;
5476 }
5477
5478 static void unit_update_dependency_mask(Unit *u, UnitDependency d, Unit *other, UnitDependencyInfo di) {
5479 assert(u);
5480 assert(d >= 0);
5481 assert(d < _UNIT_DEPENDENCY_MAX);
5482 assert(other);
5483
5484 if (di.origin_mask == 0 && di.destination_mask == 0) {
5485 /* No bit set anymore, let's drop the whole entry */
5486 assert_se(hashmap_remove(u->dependencies[d], other));
5487 log_unit_debug(u, "lost dependency %s=%s", unit_dependency_to_string(d), other->id);
5488 } else
5489 /* Mask was reduced, let's update the entry */
5490 assert_se(hashmap_update(u->dependencies[d], other, di.data) == 0);
5491 }
5492
5493 void unit_remove_dependencies(Unit *u, UnitDependencyMask mask) {
5494 assert(u);
5495
5496 /* Removes all dependencies u has on other units marked for ownership by 'mask'. */
5497
5498 if (mask == 0)
5499 return;
5500
5501 for (UnitDependency d = 0; d < _UNIT_DEPENDENCY_MAX; d++) {
5502 bool done;
5503
5504 do {
5505 UnitDependencyInfo di;
5506 Unit *other;
5507 Iterator i;
5508
5509 done = true;
5510
5511 HASHMAP_FOREACH_KEY(di.data, other, u->dependencies[d], i) {
5512 if ((di.origin_mask & ~mask) == di.origin_mask)
5513 continue;
5514 di.origin_mask &= ~mask;
5515 unit_update_dependency_mask(u, d, other, di);
5516
5517 /* We updated the dependency from our unit to the other unit now. But most dependencies
5518 * imply a reverse dependency. Hence, let's delete that one too. For that we go through
5519 * all dependency types on the other unit and delete all those which point to us and
5520 * have the right mask set. */
5521
5522 for (UnitDependency q = 0; q < _UNIT_DEPENDENCY_MAX; q++) {
5523 UnitDependencyInfo dj;
5524
5525 dj.data = hashmap_get(other->dependencies[q], u);
5526 if ((dj.destination_mask & ~mask) == dj.destination_mask)
5527 continue;
5528 dj.destination_mask &= ~mask;
5529
5530 unit_update_dependency_mask(other, q, u, dj);
5531 }
5532
5533 unit_add_to_gc_queue(other);
5534
5535 done = false;
5536 break;
5537 }
5538
5539 } while (!done);
5540 }
5541 }
5542
5543 static int unit_get_invocation_path(Unit *u, char **ret) {
5544 char *p;
5545 int r;
5546
5547 assert(u);
5548 assert(ret);
5549
5550 if (MANAGER_IS_SYSTEM(u->manager))
5551 p = strjoin("/run/systemd/units/invocation:", u->id);
5552 else {
5553 _cleanup_free_ char *user_path = NULL;
5554 r = xdg_user_runtime_dir(&user_path, "/systemd/units/invocation:");
5555 if (r < 0)
5556 return r;
5557 p = strjoin(user_path, u->id);
5558 }
5559
5560 if (!p)
5561 return -ENOMEM;
5562
5563 *ret = p;
5564 return 0;
5565 }
5566
5567 static int unit_export_invocation_id(Unit *u) {
5568 _cleanup_free_ char *p = NULL;
5569 int r;
5570
5571 assert(u);
5572
5573 if (u->exported_invocation_id)
5574 return 0;
5575
5576 if (sd_id128_is_null(u->invocation_id))
5577 return 0;
5578
5579 r = unit_get_invocation_path(u, &p);
5580 if (r < 0)
5581 return log_unit_debug_errno(u, r, "Failed to get invocation path: %m");
5582
5583 r = symlink_atomic(u->invocation_id_string, p);
5584 if (r < 0)
5585 return log_unit_debug_errno(u, r, "Failed to create invocation ID symlink %s: %m", p);
5586
5587 u->exported_invocation_id = true;
5588 return 0;
5589 }
5590
5591 static int unit_export_log_level_max(Unit *u, const ExecContext *c) {
5592 const char *p;
5593 char buf[2];
5594 int r;
5595
5596 assert(u);
5597 assert(c);
5598
5599 if (u->exported_log_level_max)
5600 return 0;
5601
5602 if (c->log_level_max < 0)
5603 return 0;
5604
5605 assert(c->log_level_max <= 7);
5606
5607 buf[0] = '0' + c->log_level_max;
5608 buf[1] = 0;
5609
5610 p = strjoina("/run/systemd/units/log-level-max:", u->id);
5611 r = symlink_atomic(buf, p);
5612 if (r < 0)
5613 return log_unit_debug_errno(u, r, "Failed to create maximum log level symlink %s: %m", p);
5614
5615 u->exported_log_level_max = true;
5616 return 0;
5617 }
5618
5619 static int unit_export_log_extra_fields(Unit *u, const ExecContext *c) {
5620 _cleanup_close_ int fd = -1;
5621 struct iovec *iovec;
5622 const char *p;
5623 char *pattern;
5624 le64_t *sizes;
5625 ssize_t n;
5626 size_t i;
5627 int r;
5628
5629 if (u->exported_log_extra_fields)
5630 return 0;
5631
5632 if (c->n_log_extra_fields <= 0)
5633 return 0;
5634
5635 sizes = newa(le64_t, c->n_log_extra_fields);
5636 iovec = newa(struct iovec, c->n_log_extra_fields * 2);
5637
5638 for (i = 0; i < c->n_log_extra_fields; i++) {
5639 sizes[i] = htole64(c->log_extra_fields[i].iov_len);
5640
5641 iovec[i*2] = IOVEC_MAKE(sizes + i, sizeof(le64_t));
5642 iovec[i*2+1] = c->log_extra_fields[i];
5643 }
5644
5645 p = strjoina("/run/systemd/units/log-extra-fields:", u->id);
5646 pattern = strjoina(p, ".XXXXXX");
5647
5648 fd = mkostemp_safe(pattern);
5649 if (fd < 0)
5650 return log_unit_debug_errno(u, fd, "Failed to create extra fields file %s: %m", p);
5651
5652 n = writev(fd, iovec, c->n_log_extra_fields*2);
5653 if (n < 0) {
5654 r = log_unit_debug_errno(u, errno, "Failed to write extra fields: %m");
5655 goto fail;
5656 }
5657
5658 (void) fchmod(fd, 0644);
5659
5660 if (rename(pattern, p) < 0) {
5661 r = log_unit_debug_errno(u, errno, "Failed to rename extra fields file: %m");
5662 goto fail;
5663 }
5664
5665 u->exported_log_extra_fields = true;
5666 return 0;
5667
5668 fail:
5669 (void) unlink(pattern);
5670 return r;
5671 }
5672
5673 static int unit_export_log_ratelimit_interval(Unit *u, const ExecContext *c) {
5674 _cleanup_free_ char *buf = NULL;
5675 const char *p;
5676 int r;
5677
5678 assert(u);
5679 assert(c);
5680
5681 if (u->exported_log_ratelimit_interval)
5682 return 0;
5683
5684 if (c->log_ratelimit_interval_usec == 0)
5685 return 0;
5686
5687 p = strjoina("/run/systemd/units/log-rate-limit-interval:", u->id);
5688
5689 if (asprintf(&buf, "%" PRIu64, c->log_ratelimit_interval_usec) < 0)
5690 return log_oom();
5691
5692 r = symlink_atomic(buf, p);
5693 if (r < 0)
5694 return log_unit_debug_errno(u, r, "Failed to create log rate limit interval symlink %s: %m", p);
5695
5696 u->exported_log_ratelimit_interval = true;
5697 return 0;
5698 }
5699
5700 static int unit_export_log_ratelimit_burst(Unit *u, const ExecContext *c) {
5701 _cleanup_free_ char *buf = NULL;
5702 const char *p;
5703 int r;
5704
5705 assert(u);
5706 assert(c);
5707
5708 if (u->exported_log_ratelimit_burst)
5709 return 0;
5710
5711 if (c->log_ratelimit_burst == 0)
5712 return 0;
5713
5714 p = strjoina("/run/systemd/units/log-rate-limit-burst:", u->id);
5715
5716 if (asprintf(&buf, "%u", c->log_ratelimit_burst) < 0)
5717 return log_oom();
5718
5719 r = symlink_atomic(buf, p);
5720 if (r < 0)
5721 return log_unit_debug_errno(u, r, "Failed to create log rate limit burst symlink %s: %m", p);
5722
5723 u->exported_log_ratelimit_burst = true;
5724 return 0;
5725 }
5726
5727 void unit_export_state_files(Unit *u) {
5728 const ExecContext *c;
5729
5730 assert(u);
5731
5732 if (!u->id)
5733 return;
5734
5735 if (MANAGER_IS_TEST_RUN(u->manager))
5736 return;
5737
5738 /* Exports a couple of unit properties to /run/systemd/units/, so that journald can quickly query this data
5739 * from there. Ideally, journald would use IPC to query this, like everybody else, but that's hard, as long as
5740 * the IPC system itself and PID 1 also log to the journal.
5741 *
5742 * Note that these files really shouldn't be considered API for anyone else, as use a runtime file system as
5743 * IPC replacement is not compatible with today's world of file system namespaces. However, this doesn't really
5744 * apply to communication between the journal and systemd, as we assume that these two daemons live in the same
5745 * namespace at least.
5746 *
5747 * Note that some of the "files" exported here are actually symlinks and not regular files. Symlinks work
5748 * better for storing small bits of data, in particular as we can write them with two system calls, and read
5749 * them with one. */
5750
5751 (void) unit_export_invocation_id(u);
5752
5753 if (!MANAGER_IS_SYSTEM(u->manager))
5754 return;
5755
5756 c = unit_get_exec_context(u);
5757 if (c) {
5758 (void) unit_export_log_level_max(u, c);
5759 (void) unit_export_log_extra_fields(u, c);
5760 (void) unit_export_log_ratelimit_interval(u, c);
5761 (void) unit_export_log_ratelimit_burst(u, c);
5762 }
5763 }
5764
5765 void unit_unlink_state_files(Unit *u) {
5766 const char *p;
5767
5768 assert(u);
5769
5770 if (!u->id)
5771 return;
5772
5773 /* Undoes the effect of unit_export_state() */
5774
5775 if (u->exported_invocation_id) {
5776 _cleanup_free_ char *invocation_path = NULL;
5777 int r = unit_get_invocation_path(u, &invocation_path);
5778 if (r >= 0) {
5779 (void) unlink(invocation_path);
5780 u->exported_invocation_id = false;
5781 }
5782 }
5783
5784 if (!MANAGER_IS_SYSTEM(u->manager))
5785 return;
5786
5787 if (u->exported_log_level_max) {
5788 p = strjoina("/run/systemd/units/log-level-max:", u->id);
5789 (void) unlink(p);
5790
5791 u->exported_log_level_max = false;
5792 }
5793
5794 if (u->exported_log_extra_fields) {
5795 p = strjoina("/run/systemd/units/extra-fields:", u->id);
5796 (void) unlink(p);
5797
5798 u->exported_log_extra_fields = false;
5799 }
5800
5801 if (u->exported_log_ratelimit_interval) {
5802 p = strjoina("/run/systemd/units/log-rate-limit-interval:", u->id);
5803 (void) unlink(p);
5804
5805 u->exported_log_ratelimit_interval = false;
5806 }
5807
5808 if (u->exported_log_ratelimit_burst) {
5809 p = strjoina("/run/systemd/units/log-rate-limit-burst:", u->id);
5810 (void) unlink(p);
5811
5812 u->exported_log_ratelimit_burst = false;
5813 }
5814 }
5815
5816 int unit_prepare_exec(Unit *u) {
5817 int r;
5818
5819 assert(u);
5820
5821 /* Load any custom firewall BPF programs here once to test if they are existing and actually loadable.
5822 * Fail here early since later errors in the call chain unit_realize_cgroup to cgroup_context_apply are ignored. */
5823 r = bpf_firewall_load_custom(u);
5824 if (r < 0)
5825 return r;
5826
5827 /* Prepares everything so that we can fork of a process for this unit */
5828
5829 (void) unit_realize_cgroup(u);
5830
5831 if (u->reset_accounting) {
5832 (void) unit_reset_accounting(u);
5833 u->reset_accounting = false;
5834 }
5835
5836 unit_export_state_files(u);
5837
5838 r = unit_setup_exec_runtime(u);
5839 if (r < 0)
5840 return r;
5841
5842 r = unit_setup_dynamic_creds(u);
5843 if (r < 0)
5844 return r;
5845
5846 return 0;
5847 }
5848
5849 static bool ignore_leftover_process(const char *comm) {
5850 return comm && comm[0] == '('; /* Most likely our own helper process (PAM?), ignore */
5851 }
5852
5853 int unit_log_leftover_process_start(pid_t pid, int sig, void *userdata) {
5854 _cleanup_free_ char *comm = NULL;
5855
5856 (void) get_process_comm(pid, &comm);
5857
5858 if (ignore_leftover_process(comm))
5859 return 0;
5860
5861 /* During start we print a warning */
5862
5863 log_unit_warning(userdata,
5864 "Found left-over process " PID_FMT " (%s) in control group while starting unit. Ignoring.\n"
5865 "This usually indicates unclean termination of a previous run, or service implementation deficiencies.",
5866 pid, strna(comm));
5867
5868 return 1;
5869 }
5870
5871 int unit_log_leftover_process_stop(pid_t pid, int sig, void *userdata) {
5872 _cleanup_free_ char *comm = NULL;
5873
5874 (void) get_process_comm(pid, &comm);
5875
5876 if (ignore_leftover_process(comm))
5877 return 0;
5878
5879 /* During stop we only print an informational message */
5880
5881 log_unit_info(userdata,
5882 "Unit process " PID_FMT " (%s) remains running after unit stopped.",
5883 pid, strna(comm));
5884
5885 return 1;
5886 }
5887
5888 int unit_warn_leftover_processes(Unit *u, cg_kill_log_func_t log_func) {
5889 assert(u);
5890
5891 (void) unit_pick_cgroup_path(u);
5892
5893 if (!u->cgroup_path)
5894 return 0;
5895
5896 return cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER, u->cgroup_path, 0, 0, NULL, log_func, u);
5897 }
5898
5899 bool unit_needs_console(Unit *u) {
5900 ExecContext *ec;
5901 UnitActiveState state;
5902
5903 assert(u);
5904
5905 state = unit_active_state(u);
5906
5907 if (UNIT_IS_INACTIVE_OR_FAILED(state))
5908 return false;
5909
5910 if (UNIT_VTABLE(u)->needs_console)
5911 return UNIT_VTABLE(u)->needs_console(u);
5912
5913 /* If this unit type doesn't implement this call, let's use a generic fallback implementation: */
5914 ec = unit_get_exec_context(u);
5915 if (!ec)
5916 return false;
5917
5918 return exec_context_may_touch_console(ec);
5919 }
5920
5921 const char *unit_label_path(const Unit *u) {
5922 const char *p;
5923
5924 assert(u);
5925
5926 /* Returns the file system path to use for MAC access decisions, i.e. the file to read the SELinux label off
5927 * when validating access checks. */
5928
5929 p = u->source_path ?: u->fragment_path;
5930 if (!p)
5931 return NULL;
5932
5933 /* If a unit is masked, then don't read the SELinux label of /dev/null, as that really makes no sense */
5934 if (path_equal(p, "/dev/null"))
5935 return NULL;
5936
5937 return p;
5938 }
5939
5940 int unit_pid_attachable(Unit *u, pid_t pid, sd_bus_error *error) {
5941 int r;
5942
5943 assert(u);
5944
5945 /* Checks whether the specified PID is generally good for attaching, i.e. a valid PID, not our manager itself,
5946 * and not a kernel thread either */
5947
5948 /* First, a simple range check */
5949 if (!pid_is_valid(pid))
5950 return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Process identifier " PID_FMT " is not valid.", pid);
5951
5952 /* Some extra safety check */
5953 if (pid == 1 || pid == getpid_cached())
5954 return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Process " PID_FMT " is a manager process, refusing.", pid);
5955
5956 /* Don't even begin to bother with kernel threads */
5957 r = is_kernel_thread(pid);
5958 if (r == -ESRCH)
5959 return sd_bus_error_setf(error, SD_BUS_ERROR_UNIX_PROCESS_ID_UNKNOWN, "Process with ID " PID_FMT " does not exist.", pid);
5960 if (r < 0)
5961 return sd_bus_error_set_errnof(error, r, "Failed to determine whether process " PID_FMT " is a kernel thread: %m", pid);
5962 if (r > 0)
5963 return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Process " PID_FMT " is a kernel thread, refusing.", pid);
5964
5965 return 0;
5966 }
5967
5968 void unit_log_success(Unit *u) {
5969 assert(u);
5970
5971 log_struct(LOG_INFO,
5972 "MESSAGE_ID=" SD_MESSAGE_UNIT_SUCCESS_STR,
5973 LOG_UNIT_ID(u),
5974 LOG_UNIT_INVOCATION_ID(u),
5975 LOG_UNIT_MESSAGE(u, "Succeeded."));
5976 }
5977
5978 void unit_log_failure(Unit *u, const char *result) {
5979 assert(u);
5980 assert(result);
5981
5982 log_struct(LOG_WARNING,
5983 "MESSAGE_ID=" SD_MESSAGE_UNIT_FAILURE_RESULT_STR,
5984 LOG_UNIT_ID(u),
5985 LOG_UNIT_INVOCATION_ID(u),
5986 LOG_UNIT_MESSAGE(u, "Failed with result '%s'.", result),
5987 "UNIT_RESULT=%s", result);
5988 }
5989
5990 void unit_log_skip(Unit *u, const char *result) {
5991 assert(u);
5992 assert(result);
5993
5994 log_struct(LOG_INFO,
5995 "MESSAGE_ID=" SD_MESSAGE_UNIT_SKIPPED_STR,
5996 LOG_UNIT_ID(u),
5997 LOG_UNIT_INVOCATION_ID(u),
5998 LOG_UNIT_MESSAGE(u, "Skipped due to '%s'.", result),
5999 "UNIT_RESULT=%s", result);
6000 }
6001
6002 void unit_log_process_exit(
6003 Unit *u,
6004 const char *kind,
6005 const char *command,
6006 bool success,
6007 int code,
6008 int status) {
6009
6010 int level;
6011
6012 assert(u);
6013 assert(kind);
6014
6015 /* If this is a successful exit, let's log about the exit code on DEBUG level. If this is a failure
6016 * and the process exited on its own via exit(), then let's make this a NOTICE, under the assumption
6017 * that the service already logged the reason at a higher log level on its own. Otherwise, make it a
6018 * WARNING. */
6019 if (success)
6020 level = LOG_DEBUG;
6021 else if (code == CLD_EXITED)
6022 level = LOG_NOTICE;
6023 else
6024 level = LOG_WARNING;
6025
6026 log_struct(level,
6027 "MESSAGE_ID=" SD_MESSAGE_UNIT_PROCESS_EXIT_STR,
6028 LOG_UNIT_MESSAGE(u, "%s exited, code=%s, status=%i/%s",
6029 kind,
6030 sigchld_code_to_string(code), status,
6031 strna(code == CLD_EXITED
6032 ? exit_status_to_string(status, EXIT_STATUS_FULL)
6033 : signal_to_string(status))),
6034 "EXIT_CODE=%s", sigchld_code_to_string(code),
6035 "EXIT_STATUS=%i", status,
6036 "COMMAND=%s", strna(command),
6037 LOG_UNIT_ID(u),
6038 LOG_UNIT_INVOCATION_ID(u));
6039 }
6040
6041 int unit_exit_status(Unit *u) {
6042 assert(u);
6043
6044 /* Returns the exit status to propagate for the most recent cycle of this unit. Returns a value in the range
6045 * 0…255 if there's something to propagate. EOPNOTSUPP if the concept does not apply to this unit type, ENODATA
6046 * if no data is currently known (for example because the unit hasn't deactivated yet) and EBADE if the main
6047 * service process has exited abnormally (signal/coredump). */
6048
6049 if (!UNIT_VTABLE(u)->exit_status)
6050 return -EOPNOTSUPP;
6051
6052 return UNIT_VTABLE(u)->exit_status(u);
6053 }
6054
6055 int unit_failure_action_exit_status(Unit *u) {
6056 int r;
6057
6058 assert(u);
6059
6060 /* Returns the exit status to propagate on failure, or an error if there's nothing to propagate */
6061
6062 if (u->failure_action_exit_status >= 0)
6063 return u->failure_action_exit_status;
6064
6065 r = unit_exit_status(u);
6066 if (r == -EBADE) /* Exited, but not cleanly (i.e. by signal or such) */
6067 return 255;
6068
6069 return r;
6070 }
6071
6072 int unit_success_action_exit_status(Unit *u) {
6073 int r;
6074
6075 assert(u);
6076
6077 /* Returns the exit status to propagate on success, or an error if there's nothing to propagate */
6078
6079 if (u->success_action_exit_status >= 0)
6080 return u->success_action_exit_status;
6081
6082 r = unit_exit_status(u);
6083 if (r == -EBADE) /* Exited, but not cleanly (i.e. by signal or such) */
6084 return 255;
6085
6086 return r;
6087 }
6088
6089 int unit_test_trigger_loaded(Unit *u) {
6090 Unit *trigger;
6091
6092 /* Tests whether the unit to trigger is loaded */
6093
6094 trigger = UNIT_TRIGGER(u);
6095 if (!trigger)
6096 return log_unit_error_errno(u, SYNTHETIC_ERRNO(ENOENT),
6097 "Refusing to start, no unit to trigger.");
6098 if (trigger->load_state != UNIT_LOADED)
6099 return log_unit_error_errno(u, SYNTHETIC_ERRNO(ENOENT),
6100 "Refusing to start, unit %s to trigger not loaded.", trigger->id);
6101
6102 return 0;
6103 }
6104
6105 void unit_destroy_runtime_directory(Unit *u, const ExecContext *context) {
6106 if (context->runtime_directory_preserve_mode == EXEC_PRESERVE_NO ||
6107 (context->runtime_directory_preserve_mode == EXEC_PRESERVE_RESTART && !unit_will_restart(u)))
6108 exec_context_destroy_runtime_directory(context, u->manager->prefix[EXEC_DIRECTORY_RUNTIME]);
6109 }
6110
6111 int unit_clean(Unit *u, ExecCleanMask mask) {
6112 UnitActiveState state;
6113
6114 assert(u);
6115
6116 /* Special return values:
6117 *
6118 * -EOPNOTSUPP → cleaning not supported for this unit type
6119 * -EUNATCH → cleaning not defined for this resource type
6120 * -EBUSY → unit currently can't be cleaned since it's running or not properly loaded, or has
6121 * a job queued or similar
6122 */
6123
6124 if (!UNIT_VTABLE(u)->clean)
6125 return -EOPNOTSUPP;
6126
6127 if (mask == 0)
6128 return -EUNATCH;
6129
6130 if (u->load_state != UNIT_LOADED)
6131 return -EBUSY;
6132
6133 if (u->job)
6134 return -EBUSY;
6135
6136 state = unit_active_state(u);
6137 if (!IN_SET(state, UNIT_INACTIVE))
6138 return -EBUSY;
6139
6140 return UNIT_VTABLE(u)->clean(u, mask);
6141 }
6142
6143 int unit_can_clean(Unit *u, ExecCleanMask *ret) {
6144 assert(u);
6145
6146 if (!UNIT_VTABLE(u)->clean ||
6147 u->load_state != UNIT_LOADED) {
6148 *ret = 0;
6149 return 0;
6150 }
6151
6152 /* When the clean() method is set, can_clean() really should be set too */
6153 assert(UNIT_VTABLE(u)->can_clean);
6154
6155 return UNIT_VTABLE(u)->can_clean(u, ret);
6156 }
6157
6158 bool unit_can_freeze(Unit *u) {
6159 assert(u);
6160
6161 if (UNIT_VTABLE(u)->can_freeze)
6162 return UNIT_VTABLE(u)->can_freeze(u);
6163
6164 return UNIT_VTABLE(u)->freeze;
6165 }
6166
6167 void unit_frozen(Unit *u) {
6168 assert(u);
6169
6170 u->freezer_state = FREEZER_FROZEN;
6171
6172 bus_unit_send_pending_freezer_message(u);
6173 }
6174
6175 void unit_thawed(Unit *u) {
6176 assert(u);
6177
6178 u->freezer_state = FREEZER_RUNNING;
6179
6180 bus_unit_send_pending_freezer_message(u);
6181 }
6182
6183 static int unit_freezer_action(Unit *u, FreezerAction action) {
6184 UnitActiveState s;
6185 int (*method)(Unit*);
6186 int r;
6187
6188 assert(u);
6189 assert(IN_SET(action, FREEZER_FREEZE, FREEZER_THAW));
6190
6191 method = action == FREEZER_FREEZE ? UNIT_VTABLE(u)->freeze : UNIT_VTABLE(u)->thaw;
6192 if (!method || !cg_freezer_supported())
6193 return -EOPNOTSUPP;
6194
6195 if (u->job)
6196 return -EBUSY;
6197
6198 if (u->load_state != UNIT_LOADED)
6199 return -EHOSTDOWN;
6200
6201 s = unit_active_state(u);
6202 if (s != UNIT_ACTIVE)
6203 return -EHOSTDOWN;
6204
6205 if (IN_SET(u->freezer_state, FREEZER_FREEZING, FREEZER_THAWING))
6206 return -EALREADY;
6207
6208 r = method(u);
6209 if (r <= 0)
6210 return r;
6211
6212 return 1;
6213 }
6214
6215 int unit_freeze(Unit *u) {
6216 return unit_freezer_action(u, FREEZER_FREEZE);
6217 }
6218
6219 int unit_thaw(Unit *u) {
6220 return unit_freezer_action(u, FREEZER_THAW);
6221 }
6222
6223 /* Wrappers around low-level cgroup freezer operations common for service and scope units */
6224 int unit_freeze_vtable_common(Unit *u) {
6225 return unit_cgroup_freezer_action(u, FREEZER_FREEZE);
6226 }
6227
6228 int unit_thaw_vtable_common(Unit *u) {
6229 return unit_cgroup_freezer_action(u, FREEZER_THAW);
6230 }
6231
6232 static const char* const collect_mode_table[_COLLECT_MODE_MAX] = {
6233 [COLLECT_INACTIVE] = "inactive",
6234 [COLLECT_INACTIVE_OR_FAILED] = "inactive-or-failed",
6235 };
6236
6237 DEFINE_STRING_TABLE_LOOKUP(collect_mode, CollectMode);
Unnamed repository; edit this file 'description' to name the repository.