1 /* SPDX-License-Identifier: LGPL-2.1+ */
3 This file is part of systemd.
5 Copyright 2010 Lennart Poettering
7 systemd is free software; you can redistribute it and/or modify it
8 under the terms of the GNU Lesser General Public License as published by
9 the Free Software Foundation; either version 2.1 of the License, or
10 (at your option) any later version.
12 systemd is distributed in the hope that it will be useful, but
13 WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 Lesser General Public License for more details.
17 You should have received a copy of the GNU Lesser General Public License
18 along with systemd; If not, see <http://www.gnu.org/licenses/>.
24 #include <sys/prctl.h>
29 #include "sd-messages.h"
31 #include "alloc-util.h"
32 #include "bus-common-errors.h"
34 #include "cgroup-util.h"
35 #include "dbus-unit.h"
41 #include "fileio-label.h"
42 #include "format-util.h"
44 #include "id128-util.h"
46 #include "load-dropin.h"
47 #include "load-fragment.h"
52 #include "parse-util.h"
53 #include "path-util.h"
54 #include "process-util.h"
56 #include "signal-util.h"
57 #include "sparse-endian.h"
59 #include "specifier.h"
60 #include "stat-util.h"
61 #include "stdio-util.h"
62 #include "string-table.h"
63 #include "string-util.h"
65 #include "umask-util.h"
66 #include "unit-name.h"
68 #include "user-util.h"
71 const UnitVTable
* const unit_vtable
[_UNIT_TYPE_MAX
] = {
72 [UNIT_SERVICE
] = &service_vtable
,
73 [UNIT_SOCKET
] = &socket_vtable
,
74 [UNIT_TARGET
] = &target_vtable
,
75 [UNIT_DEVICE
] = &device_vtable
,
76 [UNIT_MOUNT
] = &mount_vtable
,
77 [UNIT_AUTOMOUNT
] = &automount_vtable
,
78 [UNIT_SWAP
] = &swap_vtable
,
79 [UNIT_TIMER
] = &timer_vtable
,
80 [UNIT_PATH
] = &path_vtable
,
81 [UNIT_SLICE
] = &slice_vtable
,
82 [UNIT_SCOPE
] = &scope_vtable
,
85 static void maybe_warn_about_dependency(Unit
*u
, const char *other
, UnitDependency dependency
);
87 Unit
*unit_new(Manager
*m
, size_t size
) {
91 assert(size
>= sizeof(Unit
));
97 u
->names
= set_new(&string_hash_ops
);
102 u
->type
= _UNIT_TYPE_INVALID
;
103 u
->default_dependencies
= true;
104 u
->unit_file_state
= _UNIT_FILE_STATE_INVALID
;
105 u
->unit_file_preset
= -1;
106 u
->on_failure_job_mode
= JOB_REPLACE
;
107 u
->cgroup_inotify_wd
= -1;
108 u
->job_timeout
= USEC_INFINITY
;
109 u
->job_running_timeout
= USEC_INFINITY
;
110 u
->ref_uid
= UID_INVALID
;
111 u
->ref_gid
= GID_INVALID
;
112 u
->cpu_usage_last
= NSEC_INFINITY
;
113 u
->cgroup_bpf_state
= UNIT_CGROUP_BPF_INVALIDATED
;
115 u
->ip_accounting_ingress_map_fd
= -1;
116 u
->ip_accounting_egress_map_fd
= -1;
117 u
->ipv4_allow_map_fd
= -1;
118 u
->ipv6_allow_map_fd
= -1;
119 u
->ipv4_deny_map_fd
= -1;
120 u
->ipv6_deny_map_fd
= -1;
122 u
->last_section_private
= -1;
124 RATELIMIT_INIT(u
->start_limit
, m
->default_start_limit_interval
, m
->default_start_limit_burst
);
125 RATELIMIT_INIT(u
->auto_stop_ratelimit
, 10 * USEC_PER_SEC
, 16);
130 int unit_new_for_name(Manager
*m
, size_t size
, const char *name
, Unit
**ret
) {
131 _cleanup_(unit_freep
) Unit
*u
= NULL
;
134 u
= unit_new(m
, size
);
138 r
= unit_add_name(u
, name
);
147 bool unit_has_name(Unit
*u
, const char *name
) {
151 return set_contains(u
->names
, (char*) name
);
154 static void unit_init(Unit
*u
) {
161 assert(u
->type
>= 0);
163 cc
= unit_get_cgroup_context(u
);
165 cgroup_context_init(cc
);
167 /* Copy in the manager defaults into the cgroup
168 * context, _before_ the rest of the settings have
169 * been initialized */
171 cc
->cpu_accounting
= u
->manager
->default_cpu_accounting
;
172 cc
->io_accounting
= u
->manager
->default_io_accounting
;
173 cc
->ip_accounting
= u
->manager
->default_ip_accounting
;
174 cc
->blockio_accounting
= u
->manager
->default_blockio_accounting
;
175 cc
->memory_accounting
= u
->manager
->default_memory_accounting
;
176 cc
->tasks_accounting
= u
->manager
->default_tasks_accounting
;
177 cc
->ip_accounting
= u
->manager
->default_ip_accounting
;
179 if (u
->type
!= UNIT_SLICE
)
180 cc
->tasks_max
= u
->manager
->default_tasks_max
;
183 ec
= unit_get_exec_context(u
);
185 exec_context_init(ec
);
187 ec
->keyring_mode
= MANAGER_IS_SYSTEM(u
->manager
) ?
188 EXEC_KEYRING_SHARED
: EXEC_KEYRING_INHERIT
;
191 kc
= unit_get_kill_context(u
);
193 kill_context_init(kc
);
195 if (UNIT_VTABLE(u
)->init
)
196 UNIT_VTABLE(u
)->init(u
);
199 int unit_add_name(Unit
*u
, const char *text
) {
200 _cleanup_free_
char *s
= NULL
, *i
= NULL
;
207 if (unit_name_is_valid(text
, UNIT_NAME_TEMPLATE
)) {
212 r
= unit_name_replace_instance(text
, u
->instance
, &s
);
221 if (set_contains(u
->names
, s
))
223 if (hashmap_contains(u
->manager
->units
, s
))
226 if (!unit_name_is_valid(s
, UNIT_NAME_PLAIN
|UNIT_NAME_INSTANCE
))
229 t
= unit_name_to_type(s
);
233 if (u
->type
!= _UNIT_TYPE_INVALID
&& t
!= u
->type
)
236 r
= unit_name_to_instance(s
, &i
);
240 if (i
&& !unit_type_may_template(t
))
243 /* Ensure that this unit is either instanced or not instanced,
244 * but not both. Note that we do allow names with different
245 * instance names however! */
246 if (u
->type
!= _UNIT_TYPE_INVALID
&& !u
->instance
!= !i
)
249 if (!unit_type_may_alias(t
) && !set_isempty(u
->names
))
252 if (hashmap_size(u
->manager
->units
) >= MANAGER_MAX_NAMES
)
255 r
= set_put(u
->names
, s
);
260 r
= hashmap_put(u
->manager
->units
, s
, u
);
262 (void) set_remove(u
->names
, s
);
266 if (u
->type
== _UNIT_TYPE_INVALID
) {
271 LIST_PREPEND(units_by_type
, u
->manager
->units_by_type
[t
], u
);
280 unit_add_to_dbus_queue(u
);
284 int unit_choose_id(Unit
*u
, const char *name
) {
285 _cleanup_free_
char *t
= NULL
;
292 if (unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
297 r
= unit_name_replace_instance(name
, u
->instance
, &t
);
304 /* Selects one of the names of this unit as the id */
305 s
= set_get(u
->names
, (char*) name
);
309 /* Determine the new instance from the new id */
310 r
= unit_name_to_instance(s
, &i
);
319 unit_add_to_dbus_queue(u
);
324 int unit_set_description(Unit
*u
, const char *description
) {
329 r
= free_and_strdup(&u
->description
, empty_to_null(description
));
333 unit_add_to_dbus_queue(u
);
338 bool unit_may_gc(Unit
*u
) {
339 UnitActiveState state
;
344 /* Checks whether the unit is ready to be unloaded for garbage collection.
345 * Returns true when the unit may be collected, and false if there's some
346 * reason to keep it loaded.
348 * References from other units are *not* checked here. Instead, this is done
349 * in unit_gc_sweep(), but using markers to properly collect dependency loops.
358 state
= unit_active_state(u
);
360 /* If the unit is inactive and failed and no job is queued for it, then release its runtime resources */
361 if (UNIT_IS_INACTIVE_OR_FAILED(state
) &&
362 UNIT_VTABLE(u
)->release_resources
)
363 UNIT_VTABLE(u
)->release_resources(u
);
368 if (sd_bus_track_count(u
->bus_track
) > 0)
371 /* But we keep the unit object around for longer when it is referenced or configured to not be gc'ed */
372 switch (u
->collect_mode
) {
374 case COLLECT_INACTIVE
:
375 if (state
!= UNIT_INACTIVE
)
380 case COLLECT_INACTIVE_OR_FAILED
:
381 if (!IN_SET(state
, UNIT_INACTIVE
, UNIT_FAILED
))
387 assert_not_reached("Unknown garbage collection mode");
390 if (u
->cgroup_path
) {
391 /* If the unit has a cgroup, then check whether there's anything in it. If so, we should stay
392 * around. Units with active processes should never be collected. */
394 r
= cg_is_empty_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
);
396 log_unit_debug_errno(u
, r
, "Failed to determine whether cgroup %s is empty: %m", u
->cgroup_path
);
401 if (UNIT_VTABLE(u
)->may_gc
&& !UNIT_VTABLE(u
)->may_gc(u
))
407 void unit_add_to_load_queue(Unit
*u
) {
409 assert(u
->type
!= _UNIT_TYPE_INVALID
);
411 if (u
->load_state
!= UNIT_STUB
|| u
->in_load_queue
)
414 LIST_PREPEND(load_queue
, u
->manager
->load_queue
, u
);
415 u
->in_load_queue
= true;
418 void unit_add_to_cleanup_queue(Unit
*u
) {
421 if (u
->in_cleanup_queue
)
424 LIST_PREPEND(cleanup_queue
, u
->manager
->cleanup_queue
, u
);
425 u
->in_cleanup_queue
= true;
428 void unit_add_to_gc_queue(Unit
*u
) {
431 if (u
->in_gc_queue
|| u
->in_cleanup_queue
)
437 LIST_PREPEND(gc_queue
, u
->manager
->gc_unit_queue
, u
);
438 u
->in_gc_queue
= true;
441 void unit_add_to_dbus_queue(Unit
*u
) {
443 assert(u
->type
!= _UNIT_TYPE_INVALID
);
445 if (u
->load_state
== UNIT_STUB
|| u
->in_dbus_queue
)
448 /* Shortcut things if nobody cares */
449 if (sd_bus_track_count(u
->manager
->subscribed
) <= 0 &&
450 sd_bus_track_count(u
->bus_track
) <= 0 &&
451 set_isempty(u
->manager
->private_buses
)) {
452 u
->sent_dbus_new_signal
= true;
456 LIST_PREPEND(dbus_queue
, u
->manager
->dbus_unit_queue
, u
);
457 u
->in_dbus_queue
= true;
460 static void bidi_set_free(Unit
*u
, Hashmap
*h
) {
467 /* Frees the hashmap and makes sure we are dropped from the inverse pointers */
469 HASHMAP_FOREACH_KEY(v
, other
, h
, i
) {
472 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
473 hashmap_remove(other
->dependencies
[d
], u
);
475 unit_add_to_gc_queue(other
);
481 static void unit_remove_transient(Unit
*u
) {
489 if (u
->fragment_path
)
490 (void) unlink(u
->fragment_path
);
492 STRV_FOREACH(i
, u
->dropin_paths
) {
493 _cleanup_free_
char *p
= NULL
, *pp
= NULL
;
495 p
= dirname_malloc(*i
); /* Get the drop-in directory from the drop-in file */
499 pp
= dirname_malloc(p
); /* Get the config directory from the drop-in directory */
503 /* Only drop transient drop-ins */
504 if (!path_equal(u
->manager
->lookup_paths
.transient
, pp
))
512 static void unit_free_requires_mounts_for(Unit
*u
) {
516 _cleanup_free_
char *path
;
518 path
= hashmap_steal_first_key(u
->requires_mounts_for
);
522 char s
[strlen(path
) + 1];
524 PATH_FOREACH_PREFIX_MORE(s
, path
) {
528 x
= hashmap_get2(u
->manager
->units_requiring_mounts_for
, s
, (void**) &y
);
532 (void) set_remove(x
, u
);
534 if (set_isempty(x
)) {
535 (void) hashmap_remove(u
->manager
->units_requiring_mounts_for
, y
);
543 u
->requires_mounts_for
= hashmap_free(u
->requires_mounts_for
);
546 static void unit_done(Unit
*u
) {
555 if (UNIT_VTABLE(u
)->done
)
556 UNIT_VTABLE(u
)->done(u
);
558 ec
= unit_get_exec_context(u
);
560 exec_context_done(ec
);
562 cc
= unit_get_cgroup_context(u
);
564 cgroup_context_done(cc
);
567 void unit_free(Unit
*u
) {
575 u
->transient_file
= safe_fclose(u
->transient_file
);
577 if (!MANAGER_IS_RELOADING(u
->manager
))
578 unit_remove_transient(u
);
580 bus_unit_send_removed_signal(u
);
584 sd_bus_slot_unref(u
->match_bus_slot
);
586 sd_bus_track_unref(u
->bus_track
);
587 u
->deserialized_refs
= strv_free(u
->deserialized_refs
);
589 unit_free_requires_mounts_for(u
);
591 SET_FOREACH(t
, u
->names
, i
)
592 hashmap_remove_value(u
->manager
->units
, t
, u
);
594 if (!sd_id128_is_null(u
->invocation_id
))
595 hashmap_remove_value(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
609 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
610 bidi_set_free(u
, u
->dependencies
[d
]);
613 manager_unref_console(u
->manager
);
615 unit_release_cgroup(u
);
617 if (!MANAGER_IS_RELOADING(u
->manager
))
618 unit_unlink_state_files(u
);
620 unit_unref_uid_gid(u
, false);
622 (void) manager_update_failed_units(u
->manager
, u
, false);
623 set_remove(u
->manager
->startup_units
, u
);
625 unit_unwatch_all_pids(u
);
627 unit_ref_unset(&u
->slice
);
628 while (u
->refs_by_target
)
629 unit_ref_unset(u
->refs_by_target
);
631 if (u
->type
!= _UNIT_TYPE_INVALID
)
632 LIST_REMOVE(units_by_type
, u
->manager
->units_by_type
[u
->type
], u
);
634 if (u
->in_load_queue
)
635 LIST_REMOVE(load_queue
, u
->manager
->load_queue
, u
);
637 if (u
->in_dbus_queue
)
638 LIST_REMOVE(dbus_queue
, u
->manager
->dbus_unit_queue
, u
);
641 LIST_REMOVE(gc_queue
, u
->manager
->gc_unit_queue
, u
);
643 if (u
->in_cgroup_realize_queue
)
644 LIST_REMOVE(cgroup_realize_queue
, u
->manager
->cgroup_realize_queue
, u
);
646 if (u
->in_cgroup_empty_queue
)
647 LIST_REMOVE(cgroup_empty_queue
, u
->manager
->cgroup_empty_queue
, u
);
649 if (u
->in_cleanup_queue
)
650 LIST_REMOVE(cleanup_queue
, u
->manager
->cleanup_queue
, u
);
652 safe_close(u
->ip_accounting_ingress_map_fd
);
653 safe_close(u
->ip_accounting_egress_map_fd
);
655 safe_close(u
->ipv4_allow_map_fd
);
656 safe_close(u
->ipv6_allow_map_fd
);
657 safe_close(u
->ipv4_deny_map_fd
);
658 safe_close(u
->ipv6_deny_map_fd
);
660 bpf_program_unref(u
->ip_bpf_ingress
);
661 bpf_program_unref(u
->ip_bpf_ingress_installed
);
662 bpf_program_unref(u
->ip_bpf_egress
);
663 bpf_program_unref(u
->ip_bpf_egress_installed
);
665 condition_free_list(u
->conditions
);
666 condition_free_list(u
->asserts
);
668 free(u
->description
);
669 strv_free(u
->documentation
);
670 free(u
->fragment_path
);
671 free(u
->source_path
);
672 strv_free(u
->dropin_paths
);
675 free(u
->job_timeout_reboot_arg
);
677 set_free_free(u
->names
);
684 UnitActiveState
unit_active_state(Unit
*u
) {
687 if (u
->load_state
== UNIT_MERGED
)
688 return unit_active_state(unit_follow_merge(u
));
690 /* After a reload it might happen that a unit is not correctly
691 * loaded but still has a process around. That's why we won't
692 * shortcut failed loading to UNIT_INACTIVE_FAILED. */
694 return UNIT_VTABLE(u
)->active_state(u
);
697 const char* unit_sub_state_to_string(Unit
*u
) {
700 return UNIT_VTABLE(u
)->sub_state_to_string(u
);
703 static int set_complete_move(Set
**s
, Set
**other
) {
711 return set_move(*s
, *other
);
713 *s
= TAKE_PTR(*other
);
718 static int hashmap_complete_move(Hashmap
**s
, Hashmap
**other
) {
726 return hashmap_move(*s
, *other
);
728 *s
= TAKE_PTR(*other
);
733 static int merge_names(Unit
*u
, Unit
*other
) {
741 r
= set_complete_move(&u
->names
, &other
->names
);
745 set_free_free(other
->names
);
749 SET_FOREACH(t
, u
->names
, i
)
750 assert_se(hashmap_replace(u
->manager
->units
, t
, u
) == 0);
755 static int reserve_dependencies(Unit
*u
, Unit
*other
, UnitDependency d
) {
760 assert(d
< _UNIT_DEPENDENCY_MAX
);
763 * If u does not have this dependency set allocated, there is no need
764 * to reserve anything. In that case other's set will be transferred
765 * as a whole to u by complete_move().
767 if (!u
->dependencies
[d
])
770 /* merge_dependencies() will skip a u-on-u dependency */
771 n_reserve
= hashmap_size(other
->dependencies
[d
]) - !!hashmap_get(other
->dependencies
[d
], u
);
773 return hashmap_reserve(u
->dependencies
[d
], n_reserve
);
776 static void merge_dependencies(Unit
*u
, Unit
*other
, const char *other_id
, UnitDependency d
) {
782 /* Merges all dependencies of type 'd' of the unit 'other' into the deps of the unit 'u' */
786 assert(d
< _UNIT_DEPENDENCY_MAX
);
788 /* Fix backwards pointers. Let's iterate through all dependendent units of the other unit. */
789 HASHMAP_FOREACH_KEY(v
, back
, other
->dependencies
[d
], i
) {
792 /* Let's now iterate through the dependencies of that dependencies of the other units, looking for
793 * pointers back, and let's fix them up, to instead point to 'u'. */
795 for (k
= 0; k
< _UNIT_DEPENDENCY_MAX
; k
++) {
797 /* Do not add dependencies between u and itself. */
798 if (hashmap_remove(back
->dependencies
[k
], other
))
799 maybe_warn_about_dependency(u
, other_id
, k
);
801 UnitDependencyInfo di_u
, di_other
, di_merged
;
803 /* Let's drop this dependency between "back" and "other", and let's create it between
804 * "back" and "u" instead. Let's merge the bit masks of the dependency we are moving,
805 * and any such dependency which might already exist */
807 di_other
.data
= hashmap_get(back
->dependencies
[k
], other
);
809 continue; /* dependency isn't set, let's try the next one */
811 di_u
.data
= hashmap_get(back
->dependencies
[k
], u
);
813 di_merged
= (UnitDependencyInfo
) {
814 .origin_mask
= di_u
.origin_mask
| di_other
.origin_mask
,
815 .destination_mask
= di_u
.destination_mask
| di_other
.destination_mask
,
818 r
= hashmap_remove_and_replace(back
->dependencies
[k
], other
, u
, di_merged
.data
);
820 log_warning_errno(r
, "Failed to remove/replace: back=%s other=%s u=%s: %m", back
->id
, other_id
, u
->id
);
823 /* assert_se(hashmap_remove_and_replace(back->dependencies[k], other, u, di_merged.data) >= 0); */
829 /* Also do not move dependencies on u to itself */
830 back
= hashmap_remove(other
->dependencies
[d
], u
);
832 maybe_warn_about_dependency(u
, other_id
, d
);
834 /* The move cannot fail. The caller must have performed a reservation. */
835 assert_se(hashmap_complete_move(&u
->dependencies
[d
], &other
->dependencies
[d
]) == 0);
837 other
->dependencies
[d
] = hashmap_free(other
->dependencies
[d
]);
840 int unit_merge(Unit
*u
, Unit
*other
) {
842 const char *other_id
= NULL
;
847 assert(u
->manager
== other
->manager
);
848 assert(u
->type
!= _UNIT_TYPE_INVALID
);
850 other
= unit_follow_merge(other
);
855 if (u
->type
!= other
->type
)
858 if (!u
->instance
!= !other
->instance
)
861 if (!unit_type_may_alias(u
->type
)) /* Merging only applies to unit names that support aliases */
864 if (!IN_SET(other
->load_state
, UNIT_STUB
, UNIT_NOT_FOUND
))
873 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
877 other_id
= strdupa(other
->id
);
879 /* Make reservations to ensure merge_dependencies() won't fail */
880 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
881 r
= reserve_dependencies(u
, other
, d
);
883 * We don't rollback reservations if we fail. We don't have
884 * a way to undo reservations. A reservation is not a leak.
891 r
= merge_names(u
, other
);
895 /* Redirect all references */
896 while (other
->refs_by_target
)
897 unit_ref_set(other
->refs_by_target
, other
->refs_by_target
->source
, u
);
899 /* Merge dependencies */
900 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
901 merge_dependencies(u
, other
, other_id
, d
);
903 other
->load_state
= UNIT_MERGED
;
904 other
->merged_into
= u
;
906 /* If there is still some data attached to the other node, we
907 * don't need it anymore, and can free it. */
908 if (other
->load_state
!= UNIT_STUB
)
909 if (UNIT_VTABLE(other
)->done
)
910 UNIT_VTABLE(other
)->done(other
);
912 unit_add_to_dbus_queue(u
);
913 unit_add_to_cleanup_queue(other
);
918 int unit_merge_by_name(Unit
*u
, const char *name
) {
919 _cleanup_free_
char *s
= NULL
;
926 if (unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
930 r
= unit_name_replace_instance(name
, u
->instance
, &s
);
937 other
= manager_get_unit(u
->manager
, name
);
939 return unit_merge(u
, other
);
941 return unit_add_name(u
, name
);
944 Unit
* unit_follow_merge(Unit
*u
) {
947 while (u
->load_state
== UNIT_MERGED
)
948 assert_se(u
= u
->merged_into
);
953 int unit_add_exec_dependencies(Unit
*u
, ExecContext
*c
) {
954 ExecDirectoryType dt
;
961 if (c
->working_directory
) {
962 r
= unit_require_mounts_for(u
, c
->working_directory
, UNIT_DEPENDENCY_FILE
);
967 if (c
->root_directory
) {
968 r
= unit_require_mounts_for(u
, c
->root_directory
, UNIT_DEPENDENCY_FILE
);
974 r
= unit_require_mounts_for(u
, c
->root_image
, UNIT_DEPENDENCY_FILE
);
979 for (dt
= 0; dt
< _EXEC_DIRECTORY_TYPE_MAX
; dt
++) {
980 if (!u
->manager
->prefix
[dt
])
983 STRV_FOREACH(dp
, c
->directories
[dt
].paths
) {
984 _cleanup_free_
char *p
;
986 p
= strjoin(u
->manager
->prefix
[dt
], "/", *dp
);
990 r
= unit_require_mounts_for(u
, p
, UNIT_DEPENDENCY_FILE
);
996 if (!MANAGER_IS_SYSTEM(u
->manager
))
999 if (c
->private_tmp
) {
1002 FOREACH_STRING(p
, "/tmp", "/var/tmp") {
1003 r
= unit_require_mounts_for(u
, p
, UNIT_DEPENDENCY_FILE
);
1008 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_TMPFILES_SETUP_SERVICE
, NULL
, true, UNIT_DEPENDENCY_FILE
);
1013 if (!IN_SET(c
->std_output
,
1014 EXEC_OUTPUT_JOURNAL
, EXEC_OUTPUT_JOURNAL_AND_CONSOLE
,
1015 EXEC_OUTPUT_KMSG
, EXEC_OUTPUT_KMSG_AND_CONSOLE
,
1016 EXEC_OUTPUT_SYSLOG
, EXEC_OUTPUT_SYSLOG_AND_CONSOLE
) &&
1017 !IN_SET(c
->std_error
,
1018 EXEC_OUTPUT_JOURNAL
, EXEC_OUTPUT_JOURNAL_AND_CONSOLE
,
1019 EXEC_OUTPUT_KMSG
, EXEC_OUTPUT_KMSG_AND_CONSOLE
,
1020 EXEC_OUTPUT_SYSLOG
, EXEC_OUTPUT_SYSLOG_AND_CONSOLE
))
1023 /* If syslog or kernel logging is requested, make sure our own
1024 * logging daemon is run first. */
1026 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_JOURNALD_SOCKET
, NULL
, true, UNIT_DEPENDENCY_FILE
);
1033 const char *unit_description(Unit
*u
) {
1037 return u
->description
;
1039 return strna(u
->id
);
1042 static void print_unit_dependency_mask(FILE *f
, const char *kind
, UnitDependencyMask mask
, bool *space
) {
1044 UnitDependencyMask mask
;
1047 { UNIT_DEPENDENCY_FILE
, "file" },
1048 { UNIT_DEPENDENCY_IMPLICIT
, "implicit" },
1049 { UNIT_DEPENDENCY_DEFAULT
, "default" },
1050 { UNIT_DEPENDENCY_UDEV
, "udev" },
1051 { UNIT_DEPENDENCY_PATH
, "path" },
1052 { UNIT_DEPENDENCY_MOUNTINFO_IMPLICIT
, "mountinfo-implicit" },
1053 { UNIT_DEPENDENCY_MOUNTINFO_DEFAULT
, "mountinfo-default" },
1054 { UNIT_DEPENDENCY_PROC_SWAP
, "proc-swap" },
1062 for (i
= 0; i
< ELEMENTSOF(table
); i
++) {
1067 if ((mask
& table
[i
].mask
) == table
[i
].mask
) {
1075 fputs(table
[i
].name
, f
);
1077 mask
&= ~table
[i
].mask
;
1084 void unit_dump(Unit
*u
, FILE *f
, const char *prefix
) {
1088 const char *prefix2
;
1090 timestamp0
[FORMAT_TIMESTAMP_MAX
],
1091 timestamp1
[FORMAT_TIMESTAMP_MAX
],
1092 timestamp2
[FORMAT_TIMESTAMP_MAX
],
1093 timestamp3
[FORMAT_TIMESTAMP_MAX
],
1094 timestamp4
[FORMAT_TIMESTAMP_MAX
],
1095 timespan
[FORMAT_TIMESPAN_MAX
];
1097 _cleanup_set_free_ Set
*following_set
= NULL
;
1103 assert(u
->type
>= 0);
1105 prefix
= strempty(prefix
);
1106 prefix2
= strjoina(prefix
, "\t");
1110 "%s\tDescription: %s\n"
1111 "%s\tInstance: %s\n"
1112 "%s\tUnit Load State: %s\n"
1113 "%s\tUnit Active State: %s\n"
1114 "%s\tState Change Timestamp: %s\n"
1115 "%s\tInactive Exit Timestamp: %s\n"
1116 "%s\tActive Enter Timestamp: %s\n"
1117 "%s\tActive Exit Timestamp: %s\n"
1118 "%s\tInactive Enter Timestamp: %s\n"
1120 "%s\tNeed Daemon Reload: %s\n"
1121 "%s\tTransient: %s\n"
1122 "%s\tPerpetual: %s\n"
1123 "%s\tGarbage Collection Mode: %s\n"
1126 "%s\tCGroup realized: %s\n",
1128 prefix
, unit_description(u
),
1129 prefix
, strna(u
->instance
),
1130 prefix
, unit_load_state_to_string(u
->load_state
),
1131 prefix
, unit_active_state_to_string(unit_active_state(u
)),
1132 prefix
, strna(format_timestamp(timestamp0
, sizeof(timestamp0
), u
->state_change_timestamp
.realtime
)),
1133 prefix
, strna(format_timestamp(timestamp1
, sizeof(timestamp1
), u
->inactive_exit_timestamp
.realtime
)),
1134 prefix
, strna(format_timestamp(timestamp2
, sizeof(timestamp2
), u
->active_enter_timestamp
.realtime
)),
1135 prefix
, strna(format_timestamp(timestamp3
, sizeof(timestamp3
), u
->active_exit_timestamp
.realtime
)),
1136 prefix
, strna(format_timestamp(timestamp4
, sizeof(timestamp4
), u
->inactive_enter_timestamp
.realtime
)),
1137 prefix
, yes_no(unit_may_gc(u
)),
1138 prefix
, yes_no(unit_need_daemon_reload(u
)),
1139 prefix
, yes_no(u
->transient
),
1140 prefix
, yes_no(u
->perpetual
),
1141 prefix
, collect_mode_to_string(u
->collect_mode
),
1142 prefix
, strna(unit_slice_name(u
)),
1143 prefix
, strna(u
->cgroup_path
),
1144 prefix
, yes_no(u
->cgroup_realized
));
1146 if (u
->cgroup_realized_mask
!= 0) {
1147 _cleanup_free_
char *s
= NULL
;
1148 (void) cg_mask_to_string(u
->cgroup_realized_mask
, &s
);
1149 fprintf(f
, "%s\tCGroup realized mask: %s\n", prefix
, strnull(s
));
1151 if (u
->cgroup_enabled_mask
!= 0) {
1152 _cleanup_free_
char *s
= NULL
;
1153 (void) cg_mask_to_string(u
->cgroup_enabled_mask
, &s
);
1154 fprintf(f
, "%s\tCGroup enabled mask: %s\n", prefix
, strnull(s
));
1156 m
= unit_get_own_mask(u
);
1158 _cleanup_free_
char *s
= NULL
;
1159 (void) cg_mask_to_string(m
, &s
);
1160 fprintf(f
, "%s\tCGroup own mask: %s\n", prefix
, strnull(s
));
1162 m
= unit_get_members_mask(u
);
1164 _cleanup_free_
char *s
= NULL
;
1165 (void) cg_mask_to_string(m
, &s
);
1166 fprintf(f
, "%s\tCGroup members mask: %s\n", prefix
, strnull(s
));
1169 SET_FOREACH(t
, u
->names
, i
)
1170 fprintf(f
, "%s\tName: %s\n", prefix
, t
);
1172 if (!sd_id128_is_null(u
->invocation_id
))
1173 fprintf(f
, "%s\tInvocation ID: " SD_ID128_FORMAT_STR
"\n",
1174 prefix
, SD_ID128_FORMAT_VAL(u
->invocation_id
));
1176 STRV_FOREACH(j
, u
->documentation
)
1177 fprintf(f
, "%s\tDocumentation: %s\n", prefix
, *j
);
1179 following
= unit_following(u
);
1181 fprintf(f
, "%s\tFollowing: %s\n", prefix
, following
->id
);
1183 r
= unit_following_set(u
, &following_set
);
1187 SET_FOREACH(other
, following_set
, i
)
1188 fprintf(f
, "%s\tFollowing Set Member: %s\n", prefix
, other
->id
);
1191 if (u
->fragment_path
)
1192 fprintf(f
, "%s\tFragment Path: %s\n", prefix
, u
->fragment_path
);
1195 fprintf(f
, "%s\tSource Path: %s\n", prefix
, u
->source_path
);
1197 STRV_FOREACH(j
, u
->dropin_paths
)
1198 fprintf(f
, "%s\tDropIn Path: %s\n", prefix
, *j
);
1200 if (u
->failure_action
!= EMERGENCY_ACTION_NONE
)
1201 fprintf(f
, "%s\tFailure Action: %s\n", prefix
, emergency_action_to_string(u
->failure_action
));
1202 if (u
->success_action
!= EMERGENCY_ACTION_NONE
)
1203 fprintf(f
, "%s\tSuccess Action: %s\n", prefix
, emergency_action_to_string(u
->success_action
));
1205 if (u
->job_timeout
!= USEC_INFINITY
)
1206 fprintf(f
, "%s\tJob Timeout: %s\n", prefix
, format_timespan(timespan
, sizeof(timespan
), u
->job_timeout
, 0));
1208 if (u
->job_timeout_action
!= EMERGENCY_ACTION_NONE
)
1209 fprintf(f
, "%s\tJob Timeout Action: %s\n", prefix
, emergency_action_to_string(u
->job_timeout_action
));
1211 if (u
->job_timeout_reboot_arg
)
1212 fprintf(f
, "%s\tJob Timeout Reboot Argument: %s\n", prefix
, u
->job_timeout_reboot_arg
);
1214 condition_dump_list(u
->conditions
, f
, prefix
, condition_type_to_string
);
1215 condition_dump_list(u
->asserts
, f
, prefix
, assert_type_to_string
);
1217 if (dual_timestamp_is_set(&u
->condition_timestamp
))
1219 "%s\tCondition Timestamp: %s\n"
1220 "%s\tCondition Result: %s\n",
1221 prefix
, strna(format_timestamp(timestamp1
, sizeof(timestamp1
), u
->condition_timestamp
.realtime
)),
1222 prefix
, yes_no(u
->condition_result
));
1224 if (dual_timestamp_is_set(&u
->assert_timestamp
))
1226 "%s\tAssert Timestamp: %s\n"
1227 "%s\tAssert Result: %s\n",
1228 prefix
, strna(format_timestamp(timestamp1
, sizeof(timestamp1
), u
->assert_timestamp
.realtime
)),
1229 prefix
, yes_no(u
->assert_result
));
1231 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
1232 UnitDependencyInfo di
;
1235 HASHMAP_FOREACH_KEY(di
.data
, other
, u
->dependencies
[d
], i
) {
1238 fprintf(f
, "%s\t%s: %s (", prefix
, unit_dependency_to_string(d
), other
->id
);
1240 print_unit_dependency_mask(f
, "origin", di
.origin_mask
, &space
);
1241 print_unit_dependency_mask(f
, "destination", di
.destination_mask
, &space
);
1247 if (!hashmap_isempty(u
->requires_mounts_for
)) {
1248 UnitDependencyInfo di
;
1251 HASHMAP_FOREACH_KEY(di
.data
, path
, u
->requires_mounts_for
, i
) {
1254 fprintf(f
, "%s\tRequiresMountsFor: %s (", prefix
, path
);
1256 print_unit_dependency_mask(f
, "origin", di
.origin_mask
, &space
);
1257 print_unit_dependency_mask(f
, "destination", di
.destination_mask
, &space
);
1263 if (u
->load_state
== UNIT_LOADED
) {
1266 "%s\tStopWhenUnneeded: %s\n"
1267 "%s\tRefuseManualStart: %s\n"
1268 "%s\tRefuseManualStop: %s\n"
1269 "%s\tDefaultDependencies: %s\n"
1270 "%s\tOnFailureJobMode: %s\n"
1271 "%s\tIgnoreOnIsolate: %s\n",
1272 prefix
, yes_no(u
->stop_when_unneeded
),
1273 prefix
, yes_no(u
->refuse_manual_start
),
1274 prefix
, yes_no(u
->refuse_manual_stop
),
1275 prefix
, yes_no(u
->default_dependencies
),
1276 prefix
, job_mode_to_string(u
->on_failure_job_mode
),
1277 prefix
, yes_no(u
->ignore_on_isolate
));
1279 if (UNIT_VTABLE(u
)->dump
)
1280 UNIT_VTABLE(u
)->dump(u
, f
, prefix2
);
1282 } else if (u
->load_state
== UNIT_MERGED
)
1284 "%s\tMerged into: %s\n",
1285 prefix
, u
->merged_into
->id
);
1286 else if (u
->load_state
== UNIT_ERROR
)
1287 fprintf(f
, "%s\tLoad Error Code: %s\n", prefix
, strerror(-u
->load_error
));
1289 for (n
= sd_bus_track_first(u
->bus_track
); n
; n
= sd_bus_track_next(u
->bus_track
))
1290 fprintf(f
, "%s\tBus Ref: %s\n", prefix
, n
);
1293 job_dump(u
->job
, f
, prefix2
);
1296 job_dump(u
->nop_job
, f
, prefix2
);
1299 /* Common implementation for multiple backends */
1300 int unit_load_fragment_and_dropin(Unit
*u
) {
1305 /* Load a .{service,socket,...} file */
1306 r
= unit_load_fragment(u
);
1310 if (u
->load_state
== UNIT_STUB
)
1313 /* Load drop-in directory data. If u is an alias, we might be reloading the
1314 * target unit needlessly. But we cannot be sure which drops-ins have already
1315 * been loaded and which not, at least without doing complicated book-keeping,
1316 * so let's always reread all drop-ins. */
1317 return unit_load_dropin(unit_follow_merge(u
));
1320 /* Common implementation for multiple backends */
1321 int unit_load_fragment_and_dropin_optional(Unit
*u
) {
1326 /* Same as unit_load_fragment_and_dropin(), but whether
1327 * something can be loaded or not doesn't matter. */
1329 /* Load a .service file */
1330 r
= unit_load_fragment(u
);
1334 if (u
->load_state
== UNIT_STUB
)
1335 u
->load_state
= UNIT_LOADED
;
1337 /* Load drop-in directory data */
1338 return unit_load_dropin(unit_follow_merge(u
));
1341 int unit_add_default_target_dependency(Unit
*u
, Unit
*target
) {
1345 if (target
->type
!= UNIT_TARGET
)
1348 /* Only add the dependency if both units are loaded, so that
1349 * that loop check below is reliable */
1350 if (u
->load_state
!= UNIT_LOADED
||
1351 target
->load_state
!= UNIT_LOADED
)
1354 /* If either side wants no automatic dependencies, then let's
1356 if (!u
->default_dependencies
||
1357 !target
->default_dependencies
)
1360 /* Don't create loops */
1361 if (hashmap_get(target
->dependencies
[UNIT_BEFORE
], u
))
1364 return unit_add_dependency(target
, UNIT_AFTER
, u
, true, UNIT_DEPENDENCY_DEFAULT
);
1367 static int unit_add_target_dependencies(Unit
*u
) {
1369 static const UnitDependency deps
[] = {
1381 for (k
= 0; k
< ELEMENTSOF(deps
); k
++) {
1386 HASHMAP_FOREACH_KEY(v
, target
, u
->dependencies
[deps
[k
]], i
) {
1387 r
= unit_add_default_target_dependency(u
, target
);
1396 static int unit_add_slice_dependencies(Unit
*u
) {
1397 UnitDependencyMask mask
;
1400 if (!UNIT_HAS_CGROUP_CONTEXT(u
))
1403 /* Slice units are implicitly ordered against their parent slices (as this relationship is encoded in the
1404 name), while all other units are ordered based on configuration (as in their case Slice= configures the
1406 mask
= u
->type
== UNIT_SLICE
? UNIT_DEPENDENCY_IMPLICIT
: UNIT_DEPENDENCY_FILE
;
1408 if (UNIT_ISSET(u
->slice
))
1409 return unit_add_two_dependencies(u
, UNIT_AFTER
, UNIT_REQUIRES
, UNIT_DEREF(u
->slice
), true, mask
);
1411 if (unit_has_name(u
, SPECIAL_ROOT_SLICE
))
1414 return unit_add_two_dependencies_by_name(u
, UNIT_AFTER
, UNIT_REQUIRES
, SPECIAL_ROOT_SLICE
, NULL
, true, mask
);
1417 static int unit_add_mount_dependencies(Unit
*u
) {
1418 UnitDependencyInfo di
;
1425 HASHMAP_FOREACH_KEY(di
.data
, path
, u
->requires_mounts_for
, i
) {
1426 char prefix
[strlen(path
) + 1];
1428 PATH_FOREACH_PREFIX_MORE(prefix
, path
) {
1429 _cleanup_free_
char *p
= NULL
;
1432 r
= unit_name_from_path(prefix
, ".mount", &p
);
1436 m
= manager_get_unit(u
->manager
, p
);
1438 /* Make sure to load the mount unit if
1439 * it exists. If so the dependencies
1440 * on this unit will be added later
1441 * during the loading of the mount
1443 (void) manager_load_unit_prepare(u
->manager
, p
, NULL
, NULL
, &m
);
1449 if (m
->load_state
!= UNIT_LOADED
)
1452 r
= unit_add_dependency(u
, UNIT_AFTER
, m
, true, di
.origin_mask
);
1456 if (m
->fragment_path
) {
1457 r
= unit_add_dependency(u
, UNIT_REQUIRES
, m
, true, di
.origin_mask
);
1467 static int unit_add_startup_units(Unit
*u
) {
1471 c
= unit_get_cgroup_context(u
);
1475 if (c
->startup_cpu_shares
== CGROUP_CPU_SHARES_INVALID
&&
1476 c
->startup_io_weight
== CGROUP_WEIGHT_INVALID
&&
1477 c
->startup_blockio_weight
== CGROUP_BLKIO_WEIGHT_INVALID
)
1480 r
= set_ensure_allocated(&u
->manager
->startup_units
, NULL
);
1484 return set_put(u
->manager
->startup_units
, u
);
1487 int unit_load(Unit
*u
) {
1492 if (u
->in_load_queue
) {
1493 LIST_REMOVE(load_queue
, u
->manager
->load_queue
, u
);
1494 u
->in_load_queue
= false;
1497 if (u
->type
== _UNIT_TYPE_INVALID
)
1500 if (u
->load_state
!= UNIT_STUB
)
1503 if (u
->transient_file
) {
1504 r
= fflush_and_check(u
->transient_file
);
1508 u
->transient_file
= safe_fclose(u
->transient_file
);
1509 u
->fragment_mtime
= now(CLOCK_REALTIME
);
1512 if (UNIT_VTABLE(u
)->load
) {
1513 r
= UNIT_VTABLE(u
)->load(u
);
1518 if (u
->load_state
== UNIT_STUB
) {
1523 if (u
->load_state
== UNIT_LOADED
) {
1525 r
= unit_add_target_dependencies(u
);
1529 r
= unit_add_slice_dependencies(u
);
1533 r
= unit_add_mount_dependencies(u
);
1537 r
= unit_add_startup_units(u
);
1541 if (u
->on_failure_job_mode
== JOB_ISOLATE
&& hashmap_size(u
->dependencies
[UNIT_ON_FAILURE
]) > 1) {
1542 log_unit_error(u
, "More than one OnFailure= dependencies specified but OnFailureJobMode=isolate set. Refusing.");
1547 if (u
->job_running_timeout
!= USEC_INFINITY
&& u
->job_running_timeout
> u
->job_timeout
)
1548 log_unit_warning(u
, "JobRunningTimeoutSec= is greater than JobTimeoutSec=, it has no effect.");
1550 unit_update_cgroup_members_masks(u
);
1553 assert((u
->load_state
!= UNIT_MERGED
) == !u
->merged_into
);
1555 unit_add_to_dbus_queue(unit_follow_merge(u
));
1556 unit_add_to_gc_queue(u
);
1561 u
->load_state
= u
->load_state
== UNIT_STUB
? UNIT_NOT_FOUND
: UNIT_ERROR
;
1563 unit_add_to_dbus_queue(u
);
1564 unit_add_to_gc_queue(u
);
1566 log_unit_debug_errno(u
, r
, "Failed to load configuration: %m");
1571 static bool unit_condition_test_list(Unit
*u
, Condition
*first
, const char *(*to_string
)(ConditionType t
)) {
1578 /* If the condition list is empty, then it is true */
1582 /* Otherwise, if all of the non-trigger conditions apply and
1583 * if any of the trigger conditions apply (unless there are
1584 * none) we return true */
1585 LIST_FOREACH(conditions
, c
, first
) {
1588 r
= condition_test(c
);
1591 "Couldn't determine result for %s=%s%s%s, assuming failed: %m",
1593 c
->trigger
? "|" : "",
1594 c
->negate
? "!" : "",
1600 c
->trigger
? "|" : "",
1601 c
->negate
? "!" : "",
1603 condition_result_to_string(c
->result
));
1605 if (!c
->trigger
&& r
<= 0)
1608 if (c
->trigger
&& triggered
<= 0)
1612 return triggered
!= 0;
1615 static bool unit_condition_test(Unit
*u
) {
1618 dual_timestamp_get(&u
->condition_timestamp
);
1619 u
->condition_result
= unit_condition_test_list(u
, u
->conditions
, condition_type_to_string
);
1621 return u
->condition_result
;
1624 static bool unit_assert_test(Unit
*u
) {
1627 dual_timestamp_get(&u
->assert_timestamp
);
1628 u
->assert_result
= unit_condition_test_list(u
, u
->asserts
, assert_type_to_string
);
1630 return u
->assert_result
;
1633 void unit_status_printf(Unit
*u
, const char *status
, const char *unit_status_msg_format
) {
1634 DISABLE_WARNING_FORMAT_NONLITERAL
;
1635 manager_status_printf(u
->manager
, STATUS_TYPE_NORMAL
, status
, unit_status_msg_format
, unit_description(u
));
1639 _pure_
static const char* unit_get_status_message_format(Unit
*u
, JobType t
) {
1641 const UnitStatusMessageFormats
*format_table
;
1644 assert(IN_SET(t
, JOB_START
, JOB_STOP
, JOB_RELOAD
));
1646 if (t
!= JOB_RELOAD
) {
1647 format_table
= &UNIT_VTABLE(u
)->status_message_formats
;
1649 format
= format_table
->starting_stopping
[t
== JOB_STOP
];
1655 /* Return generic strings */
1657 return "Starting %s.";
1658 else if (t
== JOB_STOP
)
1659 return "Stopping %s.";
1661 return "Reloading %s.";
1664 static void unit_status_print_starting_stopping(Unit
*u
, JobType t
) {
1669 /* Reload status messages have traditionally not been printed to console. */
1670 if (!IN_SET(t
, JOB_START
, JOB_STOP
))
1673 format
= unit_get_status_message_format(u
, t
);
1675 DISABLE_WARNING_FORMAT_NONLITERAL
;
1676 unit_status_printf(u
, "", format
);
1680 static void unit_status_log_starting_stopping_reloading(Unit
*u
, JobType t
) {
1681 const char *format
, *mid
;
1686 if (!IN_SET(t
, JOB_START
, JOB_STOP
, JOB_RELOAD
))
1689 if (log_on_console())
1692 /* We log status messages for all units and all operations. */
1694 format
= unit_get_status_message_format(u
, t
);
1696 DISABLE_WARNING_FORMAT_NONLITERAL
;
1697 (void) snprintf(buf
, sizeof buf
, format
, unit_description(u
));
1700 mid
= t
== JOB_START
? "MESSAGE_ID=" SD_MESSAGE_UNIT_STARTING_STR
:
1701 t
== JOB_STOP
? "MESSAGE_ID=" SD_MESSAGE_UNIT_STOPPING_STR
:
1702 "MESSAGE_ID=" SD_MESSAGE_UNIT_RELOADING_STR
;
1704 /* Note that we deliberately use LOG_MESSAGE() instead of
1705 * LOG_UNIT_MESSAGE() here, since this is supposed to mimic
1706 * closely what is written to screen using the status output,
1707 * which is supposed the highest level, friendliest output
1708 * possible, which means we should avoid the low-level unit
1710 log_struct(LOG_INFO
,
1711 LOG_MESSAGE("%s", buf
),
1713 LOG_UNIT_INVOCATION_ID(u
),
1718 void unit_status_emit_starting_stopping_reloading(Unit
*u
, JobType t
) {
1721 assert(t
< _JOB_TYPE_MAX
);
1723 unit_status_log_starting_stopping_reloading(u
, t
);
1724 unit_status_print_starting_stopping(u
, t
);
1727 int unit_start_limit_test(Unit
*u
) {
1730 if (ratelimit_test(&u
->start_limit
)) {
1731 u
->start_limit_hit
= false;
1735 log_unit_warning(u
, "Start request repeated too quickly.");
1736 u
->start_limit_hit
= true;
1738 return emergency_action(u
->manager
, u
->start_limit_action
, u
->reboot_arg
, "unit failed");
1741 bool unit_shall_confirm_spawn(Unit
*u
) {
1744 if (manager_is_confirm_spawn_disabled(u
->manager
))
1747 /* For some reasons units remaining in the same process group
1748 * as PID 1 fail to acquire the console even if it's not used
1749 * by any process. So skip the confirmation question for them. */
1750 return !unit_get_exec_context(u
)->same_pgrp
;
1753 static bool unit_verify_deps(Unit
*u
) {
1760 /* Checks whether all BindsTo= dependencies of this unit are fulfilled — if they are also combined with
1761 * After=. We do not check Requires= or Requisite= here as they only should have an effect on the job
1762 * processing, but do not have any effect afterwards. We don't check BindsTo= dependencies that are not used in
1763 * conjunction with After= as for them any such check would make things entirely racy. */
1765 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], j
) {
1767 if (!hashmap_contains(u
->dependencies
[UNIT_AFTER
], other
))
1770 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(other
))) {
1771 log_unit_notice(u
, "Bound to unit %s, but unit isn't active.", other
->id
);
1780 * -EBADR: This unit type does not support starting.
1781 * -EALREADY: Unit is already started.
1782 * -EAGAIN: An operation is already in progress. Retry later.
1783 * -ECANCELED: Too many requests for now.
1784 * -EPROTO: Assert failed
1785 * -EINVAL: Unit not loaded
1786 * -EOPNOTSUPP: Unit type not supported
1787 * -ENOLINK: The necessary dependencies are not fulfilled.
1789 int unit_start(Unit
*u
) {
1790 UnitActiveState state
;
1795 /* If this is already started, then this will succeed. Note
1796 * that this will even succeed if this unit is not startable
1797 * by the user. This is relied on to detect when we need to
1798 * wait for units and when waiting is finished. */
1799 state
= unit_active_state(u
);
1800 if (UNIT_IS_ACTIVE_OR_RELOADING(state
))
1803 /* Units that aren't loaded cannot be started */
1804 if (u
->load_state
!= UNIT_LOADED
)
1807 /* If the conditions failed, don't do anything at all. If we
1808 * already are activating this call might still be useful to
1809 * speed up activation in case there is some hold-off time,
1810 * but we don't want to recheck the condition in that case. */
1811 if (state
!= UNIT_ACTIVATING
&&
1812 !unit_condition_test(u
)) {
1813 log_unit_debug(u
, "Starting requested but condition failed. Not starting unit.");
1817 /* If the asserts failed, fail the entire job */
1818 if (state
!= UNIT_ACTIVATING
&&
1819 !unit_assert_test(u
)) {
1820 log_unit_notice(u
, "Starting requested but asserts failed.");
1824 /* Units of types that aren't supported cannot be
1825 * started. Note that we do this test only after the condition
1826 * checks, so that we rather return condition check errors
1827 * (which are usually not considered a true failure) than "not
1828 * supported" errors (which are considered a failure).
1830 if (!unit_supported(u
))
1833 /* Let's make sure that the deps really are in order before we start this. Normally the job engine should have
1834 * taken care of this already, but let's check this here again. After all, our dependencies might not be in
1835 * effect anymore, due to a reload or due to a failed condition. */
1836 if (!unit_verify_deps(u
))
1839 /* Forward to the main object, if we aren't it. */
1840 following
= unit_following(u
);
1842 log_unit_debug(u
, "Redirecting start request from %s to %s.", u
->id
, following
->id
);
1843 return unit_start(following
);
1846 /* If it is stopped, but we cannot start it, then fail */
1847 if (!UNIT_VTABLE(u
)->start
)
1850 /* We don't suppress calls to ->start() here when we are
1851 * already starting, to allow this request to be used as a
1852 * "hurry up" call, for example when the unit is in some "auto
1853 * restart" state where it waits for a holdoff timer to elapse
1854 * before it will start again. */
1856 unit_add_to_dbus_queue(u
);
1858 return UNIT_VTABLE(u
)->start(u
);
1861 bool unit_can_start(Unit
*u
) {
1864 if (u
->load_state
!= UNIT_LOADED
)
1867 if (!unit_supported(u
))
1870 return !!UNIT_VTABLE(u
)->start
;
1873 bool unit_can_isolate(Unit
*u
) {
1876 return unit_can_start(u
) &&
1881 * -EBADR: This unit type does not support stopping.
1882 * -EALREADY: Unit is already stopped.
1883 * -EAGAIN: An operation is already in progress. Retry later.
1885 int unit_stop(Unit
*u
) {
1886 UnitActiveState state
;
1891 state
= unit_active_state(u
);
1892 if (UNIT_IS_INACTIVE_OR_FAILED(state
))
1895 following
= unit_following(u
);
1897 log_unit_debug(u
, "Redirecting stop request from %s to %s.", u
->id
, following
->id
);
1898 return unit_stop(following
);
1901 if (!UNIT_VTABLE(u
)->stop
)
1904 unit_add_to_dbus_queue(u
);
1906 return UNIT_VTABLE(u
)->stop(u
);
1909 bool unit_can_stop(Unit
*u
) {
1912 if (!unit_supported(u
))
1918 return !!UNIT_VTABLE(u
)->stop
;
1922 * -EBADR: This unit type does not support reloading.
1923 * -ENOEXEC: Unit is not started.
1924 * -EAGAIN: An operation is already in progress. Retry later.
1926 int unit_reload(Unit
*u
) {
1927 UnitActiveState state
;
1932 if (u
->load_state
!= UNIT_LOADED
)
1935 if (!unit_can_reload(u
))
1938 state
= unit_active_state(u
);
1939 if (state
== UNIT_RELOADING
)
1942 if (state
!= UNIT_ACTIVE
) {
1943 log_unit_warning(u
, "Unit cannot be reloaded because it is inactive.");
1947 following
= unit_following(u
);
1949 log_unit_debug(u
, "Redirecting reload request from %s to %s.", u
->id
, following
->id
);
1950 return unit_reload(following
);
1953 unit_add_to_dbus_queue(u
);
1955 if (!UNIT_VTABLE(u
)->reload
) {
1956 /* Unit doesn't have a reload function, but we need to propagate the reload anyway */
1957 unit_notify(u
, unit_active_state(u
), unit_active_state(u
), true);
1961 return UNIT_VTABLE(u
)->reload(u
);
1964 bool unit_can_reload(Unit
*u
) {
1967 if (UNIT_VTABLE(u
)->can_reload
)
1968 return UNIT_VTABLE(u
)->can_reload(u
);
1970 if (!hashmap_isempty(u
->dependencies
[UNIT_PROPAGATES_RELOAD_TO
]))
1973 return UNIT_VTABLE(u
)->reload
;
1976 static void unit_check_unneeded(Unit
*u
) {
1978 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
1980 static const UnitDependency needed_dependencies
[] = {
1992 /* If this service shall be shut down when unneeded then do
1995 if (!u
->stop_when_unneeded
)
1998 if (!UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)))
2001 for (j
= 0; j
< ELEMENTSOF(needed_dependencies
); j
++) {
2006 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[needed_dependencies
[j
]], i
)
2007 if (unit_active_or_pending(other
) || unit_will_restart(other
))
2011 /* If stopping a unit fails continuously we might enter a stop
2012 * loop here, hence stop acting on the service being
2013 * unnecessary after a while. */
2014 if (!ratelimit_test(&u
->auto_stop_ratelimit
)) {
2015 log_unit_warning(u
, "Unit not needed anymore, but not stopping since we tried this too often recently.");
2019 log_unit_info(u
, "Unit not needed anymore. Stopping.");
2021 /* Ok, nobody needs us anymore. Sniff. Then let's commit suicide */
2022 r
= manager_add_job(u
->manager
, JOB_STOP
, u
, JOB_FAIL
, &error
, NULL
);
2024 log_unit_warning_errno(u
, r
, "Failed to enqueue stop job, ignoring: %s", bus_error_message(&error
, r
));
2027 static void unit_check_binds_to(Unit
*u
) {
2028 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
2040 if (unit_active_state(u
) != UNIT_ACTIVE
)
2043 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
) {
2047 if (!other
->coldplugged
)
2048 /* We might yet create a job for the other unit… */
2051 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
2061 /* If stopping a unit fails continuously we might enter a stop
2062 * loop here, hence stop acting on the service being
2063 * unnecessary after a while. */
2064 if (!ratelimit_test(&u
->auto_stop_ratelimit
)) {
2065 log_unit_warning(u
, "Unit is bound to inactive unit %s, but not stopping since we tried this too often recently.", other
->id
);
2070 log_unit_info(u
, "Unit is bound to inactive unit %s. Stopping, too.", other
->id
);
2072 /* A unit we need to run is gone. Sniff. Let's stop this. */
2073 r
= manager_add_job(u
->manager
, JOB_STOP
, u
, JOB_FAIL
, &error
, NULL
);
2075 log_unit_warning_errno(u
, r
, "Failed to enqueue stop job, ignoring: %s", bus_error_message(&error
, r
));
2078 static void retroactively_start_dependencies(Unit
*u
) {
2084 assert(UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)));
2086 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_REQUIRES
], i
)
2087 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2088 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2089 manager_add_job(u
->manager
, JOB_START
, other
, JOB_REPLACE
, NULL
, NULL
);
2091 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
)
2092 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2093 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2094 manager_add_job(u
->manager
, JOB_START
, other
, JOB_REPLACE
, NULL
, NULL
);
2096 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_WANTS
], i
)
2097 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2098 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2099 manager_add_job(u
->manager
, JOB_START
, other
, JOB_FAIL
, NULL
, NULL
);
2101 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_CONFLICTS
], i
)
2102 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2103 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
);
2105 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_CONFLICTED_BY
], i
)
2106 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2107 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
);
2110 static void retroactively_stop_dependencies(Unit
*u
) {
2116 assert(UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)));
2118 /* Pull down units which are bound to us recursively if enabled */
2119 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BOUND_BY
], i
)
2120 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2121 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
);
2124 static void check_unneeded_dependencies(Unit
*u
) {
2130 assert(UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)));
2132 /* Garbage collect services that might not be needed anymore, if enabled */
2133 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_REQUIRES
], i
)
2134 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2135 unit_check_unneeded(other
);
2136 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_WANTS
], i
)
2137 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2138 unit_check_unneeded(other
);
2139 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_REQUISITE
], i
)
2140 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2141 unit_check_unneeded(other
);
2142 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
)
2143 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2144 unit_check_unneeded(other
);
2147 void unit_start_on_failure(Unit
*u
) {
2154 if (hashmap_size(u
->dependencies
[UNIT_ON_FAILURE
]) <= 0)
2157 log_unit_info(u
, "Triggering OnFailure= dependencies.");
2159 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_ON_FAILURE
], i
) {
2162 r
= manager_add_job(u
->manager
, JOB_START
, other
, u
->on_failure_job_mode
, NULL
, NULL
);
2164 log_unit_error_errno(u
, r
, "Failed to enqueue OnFailure= job: %m");
2168 void unit_trigger_notify(Unit
*u
) {
2175 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_TRIGGERED_BY
], i
)
2176 if (UNIT_VTABLE(other
)->trigger_notify
)
2177 UNIT_VTABLE(other
)->trigger_notify(other
, u
);
2180 static int unit_log_resources(Unit
*u
) {
2182 struct iovec iovec
[1 + _CGROUP_IP_ACCOUNTING_METRIC_MAX
+ 4];
2183 size_t n_message_parts
= 0, n_iovec
= 0;
2184 char* message_parts
[3 + 1], *t
;
2185 nsec_t nsec
= NSEC_INFINITY
;
2186 CGroupIPAccountingMetric m
;
2189 const char* const ip_fields
[_CGROUP_IP_ACCOUNTING_METRIC_MAX
] = {
2190 [CGROUP_IP_INGRESS_BYTES
] = "IP_METRIC_INGRESS_BYTES",
2191 [CGROUP_IP_INGRESS_PACKETS
] = "IP_METRIC_INGRESS_PACKETS",
2192 [CGROUP_IP_EGRESS_BYTES
] = "IP_METRIC_EGRESS_BYTES",
2193 [CGROUP_IP_EGRESS_PACKETS
] = "IP_METRIC_EGRESS_PACKETS",
2198 /* Invoked whenever a unit enters failed or dead state. Logs information about consumed resources if resource
2199 * accounting was enabled for a unit. It does this in two ways: a friendly human readable string with reduced
2200 * information and the complete data in structured fields. */
2202 (void) unit_get_cpu_usage(u
, &nsec
);
2203 if (nsec
!= NSEC_INFINITY
) {
2204 char buf
[FORMAT_TIMESPAN_MAX
] = "";
2206 /* Format the CPU time for inclusion in the structured log message */
2207 if (asprintf(&t
, "CPU_USAGE_NSEC=%" PRIu64
, nsec
) < 0) {
2211 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2213 /* Format the CPU time for inclusion in the human language message string */
2214 format_timespan(buf
, sizeof(buf
), nsec
/ NSEC_PER_USEC
, USEC_PER_MSEC
);
2215 t
= strjoin(n_message_parts
> 0 ? "consumed " : "Consumed ", buf
, " CPU time");
2221 message_parts
[n_message_parts
++] = t
;
2224 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++) {
2225 char buf
[FORMAT_BYTES_MAX
] = "";
2226 uint64_t value
= UINT64_MAX
;
2228 assert(ip_fields
[m
]);
2230 (void) unit_get_ip_accounting(u
, m
, &value
);
2231 if (value
== UINT64_MAX
)
2234 /* Format IP accounting data for inclusion in the structured log message */
2235 if (asprintf(&t
, "%s=%" PRIu64
, ip_fields
[m
], value
) < 0) {
2239 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2241 /* Format the IP accounting data for inclusion in the human language message string, but only for the
2242 * bytes counters (and not for the packets counters) */
2243 if (m
== CGROUP_IP_INGRESS_BYTES
)
2244 t
= strjoin(n_message_parts
> 0 ? "received " : "Received ",
2245 format_bytes(buf
, sizeof(buf
), value
),
2247 else if (m
== CGROUP_IP_EGRESS_BYTES
)
2248 t
= strjoin(n_message_parts
> 0 ? "sent " : "Sent ",
2249 format_bytes(buf
, sizeof(buf
), value
),
2258 message_parts
[n_message_parts
++] = t
;
2261 /* Is there any accounting data available at all? */
2267 if (n_message_parts
== 0)
2268 t
= strjoina("MESSAGE=", u
->id
, ": Completed");
2270 _cleanup_free_
char *joined
;
2272 message_parts
[n_message_parts
] = NULL
;
2274 joined
= strv_join(message_parts
, ", ");
2280 t
= strjoina("MESSAGE=", u
->id
, ": ", joined
);
2283 /* The following four fields we allocate on the stack or are static strings, we hence don't want to free them,
2284 * and hence don't increase n_iovec for them */
2285 iovec
[n_iovec
] = IOVEC_MAKE_STRING(t
);
2286 iovec
[n_iovec
+ 1] = IOVEC_MAKE_STRING("MESSAGE_ID=" SD_MESSAGE_UNIT_RESOURCES_STR
);
2288 t
= strjoina(u
->manager
->unit_log_field
, u
->id
);
2289 iovec
[n_iovec
+ 2] = IOVEC_MAKE_STRING(t
);
2291 t
= strjoina(u
->manager
->invocation_log_field
, u
->invocation_id_string
);
2292 iovec
[n_iovec
+ 3] = IOVEC_MAKE_STRING(t
);
2294 log_struct_iovec(LOG_INFO
, iovec
, n_iovec
+ 4);
2298 for (i
= 0; i
< n_message_parts
; i
++)
2299 free(message_parts
[i
]);
2301 for (i
= 0; i
< n_iovec
; i
++)
2302 free(iovec
[i
].iov_base
);
2308 static void unit_update_on_console(Unit
*u
) {
2313 b
= unit_needs_console(u
);
2314 if (u
->on_console
== b
)
2319 manager_ref_console(u
->manager
);
2321 manager_unref_console(u
->manager
);
2325 void unit_notify(Unit
*u
, UnitActiveState os
, UnitActiveState ns
, bool reload_success
) {
2330 assert(os
< _UNIT_ACTIVE_STATE_MAX
);
2331 assert(ns
< _UNIT_ACTIVE_STATE_MAX
);
2333 /* Note that this is called for all low-level state changes, even if they might map to the same high-level
2334 * UnitActiveState! That means that ns == os is an expected behavior here. For example: if a mount point is
2335 * remounted this function will be called too! */
2339 /* Update timestamps for state changes */
2340 if (!MANAGER_IS_RELOADING(m
)) {
2341 dual_timestamp_get(&u
->state_change_timestamp
);
2343 if (UNIT_IS_INACTIVE_OR_FAILED(os
) && !UNIT_IS_INACTIVE_OR_FAILED(ns
))
2344 u
->inactive_exit_timestamp
= u
->state_change_timestamp
;
2345 else if (!UNIT_IS_INACTIVE_OR_FAILED(os
) && UNIT_IS_INACTIVE_OR_FAILED(ns
))
2346 u
->inactive_enter_timestamp
= u
->state_change_timestamp
;
2348 if (!UNIT_IS_ACTIVE_OR_RELOADING(os
) && UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2349 u
->active_enter_timestamp
= u
->state_change_timestamp
;
2350 else if (UNIT_IS_ACTIVE_OR_RELOADING(os
) && !UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2351 u
->active_exit_timestamp
= u
->state_change_timestamp
;
2354 /* Keep track of failed units */
2355 (void) manager_update_failed_units(u
->manager
, u
, ns
== UNIT_FAILED
);
2357 /* Make sure the cgroup and state files are always removed when we become inactive */
2358 if (UNIT_IS_INACTIVE_OR_FAILED(ns
)) {
2359 unit_prune_cgroup(u
);
2360 unit_unlink_state_files(u
);
2363 unit_update_on_console(u
);
2368 if (u
->job
->state
== JOB_WAITING
)
2370 /* So we reached a different state for this
2371 * job. Let's see if we can run it now if it
2372 * failed previously due to EAGAIN. */
2373 job_add_to_run_queue(u
->job
);
2375 /* Let's check whether this state change constitutes a
2376 * finished job, or maybe contradicts a running job and
2377 * hence needs to invalidate jobs. */
2379 switch (u
->job
->type
) {
2382 case JOB_VERIFY_ACTIVE
:
2384 if (UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2385 job_finish_and_invalidate(u
->job
, JOB_DONE
, true, false);
2386 else if (u
->job
->state
== JOB_RUNNING
&& ns
!= UNIT_ACTIVATING
) {
2389 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2390 job_finish_and_invalidate(u
->job
, ns
== UNIT_FAILED
? JOB_FAILED
: JOB_DONE
, true, false);
2396 case JOB_RELOAD_OR_START
:
2397 case JOB_TRY_RELOAD
:
2399 if (u
->job
->state
== JOB_RUNNING
) {
2400 if (ns
== UNIT_ACTIVE
)
2401 job_finish_and_invalidate(u
->job
, reload_success
? JOB_DONE
: JOB_FAILED
, true, false);
2402 else if (!IN_SET(ns
, UNIT_ACTIVATING
, UNIT_RELOADING
)) {
2405 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2406 job_finish_and_invalidate(u
->job
, ns
== UNIT_FAILED
? JOB_FAILED
: JOB_DONE
, true, false);
2414 case JOB_TRY_RESTART
:
2416 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2417 job_finish_and_invalidate(u
->job
, JOB_DONE
, true, false);
2418 else if (u
->job
->state
== JOB_RUNNING
&& ns
!= UNIT_DEACTIVATING
) {
2420 job_finish_and_invalidate(u
->job
, JOB_FAILED
, true, false);
2426 assert_not_reached("Job type unknown");
2432 if (!MANAGER_IS_RELOADING(m
)) {
2434 /* If this state change happened without being
2435 * requested by a job, then let's retroactively start
2436 * or stop dependencies. We skip that step when
2437 * deserializing, since we don't want to create any
2438 * additional jobs just because something is already
2442 if (UNIT_IS_INACTIVE_OR_FAILED(os
) && UNIT_IS_ACTIVE_OR_ACTIVATING(ns
))
2443 retroactively_start_dependencies(u
);
2444 else if (UNIT_IS_ACTIVE_OR_ACTIVATING(os
) && UNIT_IS_INACTIVE_OR_DEACTIVATING(ns
))
2445 retroactively_stop_dependencies(u
);
2448 /* stop unneeded units regardless if going down was expected or not */
2449 if (UNIT_IS_INACTIVE_OR_DEACTIVATING(ns
))
2450 check_unneeded_dependencies(u
);
2452 if (ns
!= os
&& ns
== UNIT_FAILED
) {
2453 log_unit_debug(u
, "Unit entered failed state.");
2454 unit_start_on_failure(u
);
2458 if (UNIT_IS_ACTIVE_OR_RELOADING(ns
)) {
2460 if (u
->type
== UNIT_SERVICE
&&
2461 !UNIT_IS_ACTIVE_OR_RELOADING(os
) &&
2462 !MANAGER_IS_RELOADING(m
)) {
2463 /* Write audit record if we have just finished starting up */
2464 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_START
, true);
2468 if (!UNIT_IS_ACTIVE_OR_RELOADING(os
))
2469 manager_send_unit_plymouth(m
, u
);
2473 if (UNIT_IS_INACTIVE_OR_FAILED(ns
) &&
2474 !UNIT_IS_INACTIVE_OR_FAILED(os
)
2475 && !MANAGER_IS_RELOADING(m
)) {
2477 /* This unit just stopped/failed. */
2478 if (u
->type
== UNIT_SERVICE
) {
2480 /* Hmm, if there was no start record written
2481 * write it now, so that we always have a nice
2484 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_START
, ns
== UNIT_INACTIVE
);
2486 if (ns
== UNIT_INACTIVE
)
2487 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_STOP
, true);
2489 /* Write audit record if we have just finished shutting down */
2490 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_STOP
, ns
== UNIT_INACTIVE
);
2492 u
->in_audit
= false;
2495 /* Write a log message about consumed resources */
2496 unit_log_resources(u
);
2500 manager_recheck_journal(m
);
2501 manager_recheck_dbus(m
);
2503 unit_trigger_notify(u
);
2505 if (!MANAGER_IS_RELOADING(u
->manager
)) {
2506 /* Maybe we finished startup and are now ready for being stopped because unneeded? */
2507 unit_check_unneeded(u
);
2509 /* Maybe we finished startup, but something we needed has vanished? Let's die then. (This happens when
2510 * something BindsTo= to a Type=oneshot unit, as these units go directly from starting to inactive,
2511 * without ever entering started.) */
2512 unit_check_binds_to(u
);
2514 if (os
!= UNIT_FAILED
&& ns
== UNIT_FAILED
)
2515 (void) emergency_action(u
->manager
, u
->failure_action
, u
->reboot_arg
, "unit failed");
2516 else if (!UNIT_IS_INACTIVE_OR_FAILED(os
) && ns
== UNIT_INACTIVE
)
2517 (void) emergency_action(u
->manager
, u
->success_action
, u
->reboot_arg
, "unit succeeded");
2520 unit_add_to_dbus_queue(u
);
2521 unit_add_to_gc_queue(u
);
2524 int unit_watch_pid(Unit
*u
, pid_t pid
) {
2528 assert(pid_is_valid(pid
));
2530 /* Watch a specific PID */
2532 r
= set_ensure_allocated(&u
->pids
, NULL
);
2536 r
= hashmap_ensure_allocated(&u
->manager
->watch_pids
, NULL
);
2540 /* First try, let's add the unit keyed by "pid". */
2541 r
= hashmap_put(u
->manager
->watch_pids
, PID_TO_PTR(pid
), u
);
2547 /* OK, the "pid" key is already assigned to a different unit. Let's see if the "-pid" key (which points
2548 * to an array of Units rather than just a Unit), lists us already. */
2550 array
= hashmap_get(u
->manager
->watch_pids
, PID_TO_PTR(-pid
));
2552 for (; array
[n
]; n
++)
2556 if (found
) /* Found it already? if so, do nothing */
2561 /* Allocate a new array */
2562 new_array
= new(Unit
*, n
+ 2);
2566 memcpy_safe(new_array
, array
, sizeof(Unit
*) * n
);
2568 new_array
[n
+1] = NULL
;
2570 /* Add or replace the old array */
2571 r
= hashmap_replace(u
->manager
->watch_pids
, PID_TO_PTR(-pid
), new_array
);
2582 r
= set_put(u
->pids
, PID_TO_PTR(pid
));
2589 void unit_unwatch_pid(Unit
*u
, pid_t pid
) {
2593 assert(pid_is_valid(pid
));
2595 /* First let's drop the unit in case it's keyed as "pid". */
2596 (void) hashmap_remove_value(u
->manager
->watch_pids
, PID_TO_PTR(pid
), u
);
2598 /* Then, let's also drop the unit, in case it's in the array keyed by -pid */
2599 array
= hashmap_get(u
->manager
->watch_pids
, PID_TO_PTR(-pid
));
2603 /* Let's iterate through the array, dropping our own entry */
2604 for (n
= 0; array
[n
]; n
++)
2606 array
[m
++] = array
[n
];
2610 /* The array is now empty, remove the entire entry */
2611 assert(hashmap_remove(u
->manager
->watch_pids
, PID_TO_PTR(-pid
)) == array
);
2616 (void) set_remove(u
->pids
, PID_TO_PTR(pid
));
2619 void unit_unwatch_all_pids(Unit
*u
) {
2622 while (!set_isempty(u
->pids
))
2623 unit_unwatch_pid(u
, PTR_TO_PID(set_first(u
->pids
)));
2625 u
->pids
= set_free(u
->pids
);
2628 void unit_tidy_watch_pids(Unit
*u
, pid_t except1
, pid_t except2
) {
2634 /* Cleans dead PIDs from our list */
2636 SET_FOREACH(e
, u
->pids
, i
) {
2637 pid_t pid
= PTR_TO_PID(e
);
2639 if (pid
== except1
|| pid
== except2
)
2642 if (!pid_is_unwaited(pid
))
2643 unit_unwatch_pid(u
, pid
);
2647 bool unit_job_is_applicable(Unit
*u
, JobType j
) {
2649 assert(j
>= 0 && j
< _JOB_TYPE_MAX
);
2653 case JOB_VERIFY_ACTIVE
:
2656 /* Note that we don't check unit_can_start() here. That's because .device units and suchlike are not
2657 * startable by us but may appear due to external events, and it thus makes sense to permit enqueing
2662 /* Similar as above. However, perpetual units can never be stopped (neither explicitly nor due to
2663 * external events), hence it makes no sense to permit enqueing such a request either. */
2664 return !u
->perpetual
;
2667 case JOB_TRY_RESTART
:
2668 return unit_can_stop(u
) && unit_can_start(u
);
2671 case JOB_TRY_RELOAD
:
2672 return unit_can_reload(u
);
2674 case JOB_RELOAD_OR_START
:
2675 return unit_can_reload(u
) && unit_can_start(u
);
2678 assert_not_reached("Invalid job type");
2682 static void maybe_warn_about_dependency(Unit
*u
, const char *other
, UnitDependency dependency
) {
2685 /* Only warn about some unit types */
2686 if (!IN_SET(dependency
, UNIT_CONFLICTS
, UNIT_CONFLICTED_BY
, UNIT_BEFORE
, UNIT_AFTER
, UNIT_ON_FAILURE
, UNIT_TRIGGERS
, UNIT_TRIGGERED_BY
))
2689 if (streq_ptr(u
->id
, other
))
2690 log_unit_warning(u
, "Dependency %s=%s dropped", unit_dependency_to_string(dependency
), u
->id
);
2692 log_unit_warning(u
, "Dependency %s=%s dropped, merged into %s", unit_dependency_to_string(dependency
), strna(other
), u
->id
);
2695 static int unit_add_dependency_hashmap(
2698 UnitDependencyMask origin_mask
,
2699 UnitDependencyMask destination_mask
) {
2701 UnitDependencyInfo info
;
2706 assert(origin_mask
< _UNIT_DEPENDENCY_MASK_FULL
);
2707 assert(destination_mask
< _UNIT_DEPENDENCY_MASK_FULL
);
2708 assert(origin_mask
> 0 || destination_mask
> 0);
2710 r
= hashmap_ensure_allocated(h
, NULL
);
2714 assert_cc(sizeof(void*) == sizeof(info
));
2716 info
.data
= hashmap_get(*h
, other
);
2718 /* Entry already exists. Add in our mask. */
2720 if ((info
.origin_mask
& origin_mask
) == info
.origin_mask
&&
2721 (info
.destination_mask
& destination_mask
) == info
.destination_mask
)
2724 info
.origin_mask
|= origin_mask
;
2725 info
.destination_mask
|= destination_mask
;
2727 r
= hashmap_update(*h
, other
, info
.data
);
2729 info
= (UnitDependencyInfo
) {
2730 .origin_mask
= origin_mask
,
2731 .destination_mask
= destination_mask
,
2734 r
= hashmap_put(*h
, other
, info
.data
);
2742 int unit_add_dependency(
2747 UnitDependencyMask mask
) {
2749 static const UnitDependency inverse_table
[_UNIT_DEPENDENCY_MAX
] = {
2750 [UNIT_REQUIRES
] = UNIT_REQUIRED_BY
,
2751 [UNIT_WANTS
] = UNIT_WANTED_BY
,
2752 [UNIT_REQUISITE
] = UNIT_REQUISITE_OF
,
2753 [UNIT_BINDS_TO
] = UNIT_BOUND_BY
,
2754 [UNIT_PART_OF
] = UNIT_CONSISTS_OF
,
2755 [UNIT_REQUIRED_BY
] = UNIT_REQUIRES
,
2756 [UNIT_REQUISITE_OF
] = UNIT_REQUISITE
,
2757 [UNIT_WANTED_BY
] = UNIT_WANTS
,
2758 [UNIT_BOUND_BY
] = UNIT_BINDS_TO
,
2759 [UNIT_CONSISTS_OF
] = UNIT_PART_OF
,
2760 [UNIT_CONFLICTS
] = UNIT_CONFLICTED_BY
,
2761 [UNIT_CONFLICTED_BY
] = UNIT_CONFLICTS
,
2762 [UNIT_BEFORE
] = UNIT_AFTER
,
2763 [UNIT_AFTER
] = UNIT_BEFORE
,
2764 [UNIT_ON_FAILURE
] = _UNIT_DEPENDENCY_INVALID
,
2765 [UNIT_REFERENCES
] = UNIT_REFERENCED_BY
,
2766 [UNIT_REFERENCED_BY
] = UNIT_REFERENCES
,
2767 [UNIT_TRIGGERS
] = UNIT_TRIGGERED_BY
,
2768 [UNIT_TRIGGERED_BY
] = UNIT_TRIGGERS
,
2769 [UNIT_PROPAGATES_RELOAD_TO
] = UNIT_RELOAD_PROPAGATED_FROM
,
2770 [UNIT_RELOAD_PROPAGATED_FROM
] = UNIT_PROPAGATES_RELOAD_TO
,
2771 [UNIT_JOINS_NAMESPACE_OF
] = UNIT_JOINS_NAMESPACE_OF
,
2773 Unit
*original_u
= u
, *original_other
= other
;
2777 assert(d
>= 0 && d
< _UNIT_DEPENDENCY_MAX
);
2780 u
= unit_follow_merge(u
);
2781 other
= unit_follow_merge(other
);
2783 /* We won't allow dependencies on ourselves. We will not
2784 * consider them an error however. */
2786 maybe_warn_about_dependency(original_u
, original_other
->id
, d
);
2790 if ((d
== UNIT_BEFORE
&& other
->type
== UNIT_DEVICE
) ||
2791 (d
== UNIT_AFTER
&& u
->type
== UNIT_DEVICE
)) {
2792 log_unit_warning(u
, "Dependency Before=%s ignored (.device units cannot be delayed)", other
->id
);
2796 r
= unit_add_dependency_hashmap(u
->dependencies
+ d
, other
, mask
, 0);
2800 if (inverse_table
[d
] != _UNIT_DEPENDENCY_INVALID
&& inverse_table
[d
] != d
) {
2801 r
= unit_add_dependency_hashmap(other
->dependencies
+ inverse_table
[d
], u
, 0, mask
);
2806 if (add_reference
) {
2807 r
= unit_add_dependency_hashmap(u
->dependencies
+ UNIT_REFERENCES
, other
, mask
, 0);
2811 r
= unit_add_dependency_hashmap(other
->dependencies
+ UNIT_REFERENCED_BY
, u
, 0, mask
);
2816 unit_add_to_dbus_queue(u
);
2820 int unit_add_two_dependencies(Unit
*u
, UnitDependency d
, UnitDependency e
, Unit
*other
, bool add_reference
, UnitDependencyMask mask
) {
2825 r
= unit_add_dependency(u
, d
, other
, add_reference
, mask
);
2829 return unit_add_dependency(u
, e
, other
, add_reference
, mask
);
2832 static int resolve_template(Unit
*u
, const char *name
, const char*path
, char **buf
, const char **ret
) {
2836 assert(name
|| path
);
2841 name
= basename(path
);
2843 if (!unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
2850 r
= unit_name_replace_instance(name
, u
->instance
, buf
);
2852 _cleanup_free_
char *i
= NULL
;
2854 r
= unit_name_to_prefix(u
->id
, &i
);
2858 r
= unit_name_replace_instance(name
, i
, buf
);
2867 int unit_add_dependency_by_name(Unit
*u
, UnitDependency d
, const char *name
, const char *path
, bool add_reference
, UnitDependencyMask mask
) {
2868 _cleanup_free_
char *buf
= NULL
;
2873 assert(name
|| path
);
2875 r
= resolve_template(u
, name
, path
, &buf
, &name
);
2879 r
= manager_load_unit(u
->manager
, name
, path
, NULL
, &other
);
2883 return unit_add_dependency(u
, d
, other
, add_reference
, mask
);
2886 int unit_add_two_dependencies_by_name(Unit
*u
, UnitDependency d
, UnitDependency e
, const char *name
, const char *path
, bool add_reference
, UnitDependencyMask mask
) {
2887 _cleanup_free_
char *buf
= NULL
;
2892 assert(name
|| path
);
2894 r
= resolve_template(u
, name
, path
, &buf
, &name
);
2898 r
= manager_load_unit(u
->manager
, name
, path
, NULL
, &other
);
2902 return unit_add_two_dependencies(u
, d
, e
, other
, add_reference
, mask
);
2905 int set_unit_path(const char *p
) {
2906 /* This is mostly for debug purposes */
2907 if (setenv("SYSTEMD_UNIT_PATH", p
, 1) < 0)
2913 char *unit_dbus_path(Unit
*u
) {
2919 return unit_dbus_path_from_name(u
->id
);
2922 char *unit_dbus_path_invocation_id(Unit
*u
) {
2925 if (sd_id128_is_null(u
->invocation_id
))
2928 return unit_dbus_path_from_name(u
->invocation_id_string
);
2931 int unit_set_slice(Unit
*u
, Unit
*slice
) {
2935 /* Sets the unit slice if it has not been set before. Is extra
2936 * careful, to only allow this for units that actually have a
2937 * cgroup context. Also, we don't allow to set this for slices
2938 * (since the parent slice is derived from the name). Make
2939 * sure the unit we set is actually a slice. */
2941 if (!UNIT_HAS_CGROUP_CONTEXT(u
))
2944 if (u
->type
== UNIT_SLICE
)
2947 if (unit_active_state(u
) != UNIT_INACTIVE
)
2950 if (slice
->type
!= UNIT_SLICE
)
2953 if (unit_has_name(u
, SPECIAL_INIT_SCOPE
) &&
2954 !unit_has_name(slice
, SPECIAL_ROOT_SLICE
))
2957 if (UNIT_DEREF(u
->slice
) == slice
)
2960 /* Disallow slice changes if @u is already bound to cgroups */
2961 if (UNIT_ISSET(u
->slice
) && u
->cgroup_realized
)
2964 unit_ref_set(&u
->slice
, u
, slice
);
2968 int unit_set_default_slice(Unit
*u
) {
2969 _cleanup_free_
char *b
= NULL
;
2970 const char *slice_name
;
2976 if (UNIT_ISSET(u
->slice
))
2980 _cleanup_free_
char *prefix
= NULL
, *escaped
= NULL
;
2982 /* Implicitly place all instantiated units in their
2983 * own per-template slice */
2985 r
= unit_name_to_prefix(u
->id
, &prefix
);
2989 /* The prefix is already escaped, but it might include
2990 * "-" which has a special meaning for slice units,
2991 * hence escape it here extra. */
2992 escaped
= unit_name_escape(prefix
);
2996 if (MANAGER_IS_SYSTEM(u
->manager
))
2997 b
= strjoin("system-", escaped
, ".slice");
2999 b
= strappend(escaped
, ".slice");
3006 MANAGER_IS_SYSTEM(u
->manager
) && !unit_has_name(u
, SPECIAL_INIT_SCOPE
)
3007 ? SPECIAL_SYSTEM_SLICE
3008 : SPECIAL_ROOT_SLICE
;
3010 r
= manager_load_unit(u
->manager
, slice_name
, NULL
, NULL
, &slice
);
3014 return unit_set_slice(u
, slice
);
3017 const char *unit_slice_name(Unit
*u
) {
3020 if (!UNIT_ISSET(u
->slice
))
3023 return UNIT_DEREF(u
->slice
)->id
;
3026 int unit_load_related_unit(Unit
*u
, const char *type
, Unit
**_found
) {
3027 _cleanup_free_
char *t
= NULL
;
3034 r
= unit_name_change_suffix(u
->id
, type
, &t
);
3037 if (unit_has_name(u
, t
))
3040 r
= manager_load_unit(u
->manager
, t
, NULL
, NULL
, _found
);
3041 assert(r
< 0 || *_found
!= u
);
3045 static int signal_name_owner_changed(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
3046 const char *name
, *old_owner
, *new_owner
;
3053 r
= sd_bus_message_read(message
, "sss", &name
, &old_owner
, &new_owner
);
3055 bus_log_parse_error(r
);
3059 old_owner
= empty_to_null(old_owner
);
3060 new_owner
= empty_to_null(new_owner
);
3062 if (UNIT_VTABLE(u
)->bus_name_owner_change
)
3063 UNIT_VTABLE(u
)->bus_name_owner_change(u
, name
, old_owner
, new_owner
);
3068 int unit_install_bus_match(Unit
*u
, sd_bus
*bus
, const char *name
) {
3075 if (u
->match_bus_slot
)
3078 match
= strjoina("type='signal',"
3079 "sender='org.freedesktop.DBus',"
3080 "path='/org/freedesktop/DBus',"
3081 "interface='org.freedesktop.DBus',"
3082 "member='NameOwnerChanged',"
3083 "arg0='", name
, "'");
3085 return sd_bus_add_match_async(bus
, &u
->match_bus_slot
, match
, signal_name_owner_changed
, NULL
, u
);
3088 int unit_watch_bus_name(Unit
*u
, const char *name
) {
3094 /* Watch a specific name on the bus. We only support one unit
3095 * watching each name for now. */
3097 if (u
->manager
->api_bus
) {
3098 /* If the bus is already available, install the match directly.
3099 * Otherwise, just put the name in the list. bus_setup_api() will take care later. */
3100 r
= unit_install_bus_match(u
, u
->manager
->api_bus
, name
);
3102 return log_warning_errno(r
, "Failed to subscribe to NameOwnerChanged signal for '%s': %m", name
);
3105 r
= hashmap_put(u
->manager
->watch_bus
, name
, u
);
3107 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3108 return log_warning_errno(r
, "Failed to put bus name to hashmap: %m");
3114 void unit_unwatch_bus_name(Unit
*u
, const char *name
) {
3118 (void) hashmap_remove_value(u
->manager
->watch_bus
, name
, u
);
3119 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3122 bool unit_can_serialize(Unit
*u
) {
3125 return UNIT_VTABLE(u
)->serialize
&& UNIT_VTABLE(u
)->deserialize_item
;
3128 static int unit_serialize_cgroup_mask(FILE *f
, const char *key
, CGroupMask mask
) {
3129 _cleanup_free_
char *s
= NULL
;
3136 r
= cg_mask_to_string(mask
, &s
);
3147 static const char *ip_accounting_metric_field
[_CGROUP_IP_ACCOUNTING_METRIC_MAX
] = {
3148 [CGROUP_IP_INGRESS_BYTES
] = "ip-accounting-ingress-bytes",
3149 [CGROUP_IP_INGRESS_PACKETS
] = "ip-accounting-ingress-packets",
3150 [CGROUP_IP_EGRESS_BYTES
] = "ip-accounting-egress-bytes",
3151 [CGROUP_IP_EGRESS_PACKETS
] = "ip-accounting-egress-packets",
3154 int unit_serialize(Unit
*u
, FILE *f
, FDSet
*fds
, bool serialize_jobs
) {
3155 CGroupIPAccountingMetric m
;
3162 if (unit_can_serialize(u
)) {
3163 r
= UNIT_VTABLE(u
)->serialize(u
, f
, fds
);
3168 dual_timestamp_serialize(f
, "state-change-timestamp", &u
->state_change_timestamp
);
3170 dual_timestamp_serialize(f
, "inactive-exit-timestamp", &u
->inactive_exit_timestamp
);
3171 dual_timestamp_serialize(f
, "active-enter-timestamp", &u
->active_enter_timestamp
);
3172 dual_timestamp_serialize(f
, "active-exit-timestamp", &u
->active_exit_timestamp
);
3173 dual_timestamp_serialize(f
, "inactive-enter-timestamp", &u
->inactive_enter_timestamp
);
3175 dual_timestamp_serialize(f
, "condition-timestamp", &u
->condition_timestamp
);
3176 dual_timestamp_serialize(f
, "assert-timestamp", &u
->assert_timestamp
);
3178 if (dual_timestamp_is_set(&u
->condition_timestamp
))
3179 unit_serialize_item(u
, f
, "condition-result", yes_no(u
->condition_result
));
3181 if (dual_timestamp_is_set(&u
->assert_timestamp
))
3182 unit_serialize_item(u
, f
, "assert-result", yes_no(u
->assert_result
));
3184 unit_serialize_item(u
, f
, "transient", yes_no(u
->transient
));
3186 unit_serialize_item(u
, f
, "exported-invocation-id", yes_no(u
->exported_invocation_id
));
3187 unit_serialize_item(u
, f
, "exported-log-level-max", yes_no(u
->exported_log_level_max
));
3188 unit_serialize_item(u
, f
, "exported-log-extra-fields", yes_no(u
->exported_log_extra_fields
));
3190 unit_serialize_item_format(u
, f
, "cpu-usage-base", "%" PRIu64
, u
->cpu_usage_base
);
3191 if (u
->cpu_usage_last
!= NSEC_INFINITY
)
3192 unit_serialize_item_format(u
, f
, "cpu-usage-last", "%" PRIu64
, u
->cpu_usage_last
);
3195 unit_serialize_item(u
, f
, "cgroup", u
->cgroup_path
);
3196 unit_serialize_item(u
, f
, "cgroup-realized", yes_no(u
->cgroup_realized
));
3197 (void) unit_serialize_cgroup_mask(f
, "cgroup-realized-mask", u
->cgroup_realized_mask
);
3198 (void) unit_serialize_cgroup_mask(f
, "cgroup-enabled-mask", u
->cgroup_enabled_mask
);
3199 unit_serialize_item_format(u
, f
, "cgroup-bpf-realized", "%i", u
->cgroup_bpf_state
);
3201 if (uid_is_valid(u
->ref_uid
))
3202 unit_serialize_item_format(u
, f
, "ref-uid", UID_FMT
, u
->ref_uid
);
3203 if (gid_is_valid(u
->ref_gid
))
3204 unit_serialize_item_format(u
, f
, "ref-gid", GID_FMT
, u
->ref_gid
);
3206 if (!sd_id128_is_null(u
->invocation_id
))
3207 unit_serialize_item_format(u
, f
, "invocation-id", SD_ID128_FORMAT_STR
, SD_ID128_FORMAT_VAL(u
->invocation_id
));
3209 bus_track_serialize(u
->bus_track
, f
, "ref");
3211 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++) {
3214 r
= unit_get_ip_accounting(u
, m
, &v
);
3216 unit_serialize_item_format(u
, f
, ip_accounting_metric_field
[m
], "%" PRIu64
, v
);
3219 if (serialize_jobs
) {
3221 fprintf(f
, "job\n");
3222 job_serialize(u
->job
, f
);
3226 fprintf(f
, "job\n");
3227 job_serialize(u
->nop_job
, f
);
3236 int unit_serialize_item(Unit
*u
, FILE *f
, const char *key
, const char *value
) {
3252 int unit_serialize_item_escaped(Unit
*u
, FILE *f
, const char *key
, const char *value
) {
3253 _cleanup_free_
char *c
= NULL
;
3274 int unit_serialize_item_fd(Unit
*u
, FILE *f
, FDSet
*fds
, const char *key
, int fd
) {
3284 copy
= fdset_put_dup(fds
, fd
);
3288 fprintf(f
, "%s=%i\n", key
, copy
);
3292 void unit_serialize_item_format(Unit
*u
, FILE *f
, const char *key
, const char *format
, ...) {
3303 va_start(ap
, format
);
3304 vfprintf(f
, format
, ap
);
3310 int unit_deserialize(Unit
*u
, FILE *f
, FDSet
*fds
) {
3318 char line
[LINE_MAX
], *l
, *v
;
3319 CGroupIPAccountingMetric m
;
3322 if (!fgets(line
, sizeof(line
), f
)) {
3335 k
= strcspn(l
, "=");
3343 if (streq(l
, "job")) {
3345 /* new-style serialized job */
3352 r
= job_deserialize(j
, f
);
3358 r
= hashmap_put(u
->manager
->jobs
, UINT32_TO_PTR(j
->id
), j
);
3364 r
= job_install_deserialized(j
);
3366 hashmap_remove(u
->manager
->jobs
, UINT32_TO_PTR(j
->id
));
3370 } else /* legacy for pre-44 */
3371 log_unit_warning(u
, "Update from too old systemd versions are unsupported, cannot deserialize job: %s", v
);
3373 } else if (streq(l
, "state-change-timestamp")) {
3374 dual_timestamp_deserialize(v
, &u
->state_change_timestamp
);
3376 } else if (streq(l
, "inactive-exit-timestamp")) {
3377 dual_timestamp_deserialize(v
, &u
->inactive_exit_timestamp
);
3379 } else if (streq(l
, "active-enter-timestamp")) {
3380 dual_timestamp_deserialize(v
, &u
->active_enter_timestamp
);
3382 } else if (streq(l
, "active-exit-timestamp")) {
3383 dual_timestamp_deserialize(v
, &u
->active_exit_timestamp
);
3385 } else if (streq(l
, "inactive-enter-timestamp")) {
3386 dual_timestamp_deserialize(v
, &u
->inactive_enter_timestamp
);
3388 } else if (streq(l
, "condition-timestamp")) {
3389 dual_timestamp_deserialize(v
, &u
->condition_timestamp
);
3391 } else if (streq(l
, "assert-timestamp")) {
3392 dual_timestamp_deserialize(v
, &u
->assert_timestamp
);
3394 } else if (streq(l
, "condition-result")) {
3396 r
= parse_boolean(v
);
3398 log_unit_debug(u
, "Failed to parse condition result value %s, ignoring.", v
);
3400 u
->condition_result
= r
;
3404 } else if (streq(l
, "assert-result")) {
3406 r
= parse_boolean(v
);
3408 log_unit_debug(u
, "Failed to parse assert result value %s, ignoring.", v
);
3410 u
->assert_result
= r
;
3414 } else if (streq(l
, "transient")) {
3416 r
= parse_boolean(v
);
3418 log_unit_debug(u
, "Failed to parse transient bool %s, ignoring.", v
);
3424 } else if (streq(l
, "exported-invocation-id")) {
3426 r
= parse_boolean(v
);
3428 log_unit_debug(u
, "Failed to parse exported invocation ID bool %s, ignoring.", v
);
3430 u
->exported_invocation_id
= r
;
3434 } else if (streq(l
, "exported-log-level-max")) {
3436 r
= parse_boolean(v
);
3438 log_unit_debug(u
, "Failed to parse exported log level max bool %s, ignoring.", v
);
3440 u
->exported_log_level_max
= r
;
3444 } else if (streq(l
, "exported-log-extra-fields")) {
3446 r
= parse_boolean(v
);
3448 log_unit_debug(u
, "Failed to parse exported log extra fields bool %s, ignoring.", v
);
3450 u
->exported_log_extra_fields
= r
;
3454 } else if (STR_IN_SET(l
, "cpu-usage-base", "cpuacct-usage-base")) {
3456 r
= safe_atou64(v
, &u
->cpu_usage_base
);
3458 log_unit_debug(u
, "Failed to parse CPU usage base %s, ignoring.", v
);
3462 } else if (streq(l
, "cpu-usage-last")) {
3464 r
= safe_atou64(v
, &u
->cpu_usage_last
);
3466 log_unit_debug(u
, "Failed to read CPU usage last %s, ignoring.", v
);
3470 } else if (streq(l
, "cgroup")) {
3472 r
= unit_set_cgroup_path(u
, v
);
3474 log_unit_debug_errno(u
, r
, "Failed to set cgroup path %s, ignoring: %m", v
);
3476 (void) unit_watch_cgroup(u
);
3479 } else if (streq(l
, "cgroup-realized")) {
3482 b
= parse_boolean(v
);
3484 log_unit_debug(u
, "Failed to parse cgroup-realized bool %s, ignoring.", v
);
3486 u
->cgroup_realized
= b
;
3490 } else if (streq(l
, "cgroup-realized-mask")) {
3492 r
= cg_mask_from_string(v
, &u
->cgroup_realized_mask
);
3494 log_unit_debug(u
, "Failed to parse cgroup-realized-mask %s, ignoring.", v
);
3497 } else if (streq(l
, "cgroup-enabled-mask")) {
3499 r
= cg_mask_from_string(v
, &u
->cgroup_enabled_mask
);
3501 log_unit_debug(u
, "Failed to parse cgroup-enabled-mask %s, ignoring.", v
);
3504 } else if (streq(l
, "cgroup-bpf-realized")) {
3507 r
= safe_atoi(v
, &i
);
3509 log_unit_debug(u
, "Failed to parse cgroup BPF state %s, ignoring.", v
);
3511 u
->cgroup_bpf_state
=
3512 i
< 0 ? UNIT_CGROUP_BPF_INVALIDATED
:
3513 i
> 0 ? UNIT_CGROUP_BPF_ON
:
3514 UNIT_CGROUP_BPF_OFF
;
3518 } else if (streq(l
, "ref-uid")) {
3521 r
= parse_uid(v
, &uid
);
3523 log_unit_debug(u
, "Failed to parse referenced UID %s, ignoring.", v
);
3525 unit_ref_uid_gid(u
, uid
, GID_INVALID
);
3529 } else if (streq(l
, "ref-gid")) {
3532 r
= parse_gid(v
, &gid
);
3534 log_unit_debug(u
, "Failed to parse referenced GID %s, ignoring.", v
);
3536 unit_ref_uid_gid(u
, UID_INVALID
, gid
);
3538 } else if (streq(l
, "ref")) {
3540 r
= strv_extend(&u
->deserialized_refs
, v
);
3545 } else if (streq(l
, "invocation-id")) {
3548 r
= sd_id128_from_string(v
, &id
);
3550 log_unit_debug(u
, "Failed to parse invocation id %s, ignoring.", v
);
3552 r
= unit_set_invocation_id(u
, id
);
3554 log_unit_warning_errno(u
, r
, "Failed to set invocation ID for unit: %m");
3560 /* Check if this is an IP accounting metric serialization field */
3561 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++)
3562 if (streq(l
, ip_accounting_metric_field
[m
]))
3564 if (m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
) {
3567 r
= safe_atou64(v
, &c
);
3569 log_unit_debug(u
, "Failed to parse IP accounting value %s, ignoring.", v
);
3571 u
->ip_accounting_extra
[m
] = c
;
3575 if (unit_can_serialize(u
)) {
3576 r
= exec_runtime_deserialize_compat(u
, l
, v
, fds
);
3578 log_unit_warning(u
, "Failed to deserialize runtime parameter '%s', ignoring.", l
);
3582 /* Returns positive if key was handled by the call */
3586 r
= UNIT_VTABLE(u
)->deserialize_item(u
, l
, v
, fds
);
3588 log_unit_warning(u
, "Failed to deserialize unit parameter '%s', ignoring.", l
);
3592 /* Versions before 228 did not carry a state change timestamp. In this case, take the current time. This is
3593 * useful, so that timeouts based on this timestamp don't trigger too early, and is in-line with the logic from
3594 * before 228 where the base for timeouts was not persistent across reboots. */
3596 if (!dual_timestamp_is_set(&u
->state_change_timestamp
))
3597 dual_timestamp_get(&u
->state_change_timestamp
);
3599 /* Let's make sure that everything that is deserialized also gets any potential new cgroup settings applied
3600 * after we are done. For that we invalidate anything already realized, so that we can realize it again. */
3601 unit_invalidate_cgroup(u
, _CGROUP_MASK_ALL
);
3602 unit_invalidate_cgroup_bpf(u
);
3607 void unit_deserialize_skip(FILE *f
) {
3610 /* Skip serialized data for this unit. We don't know what it is. */
3613 char line
[LINE_MAX
], *l
;
3615 if (!fgets(line
, sizeof line
, f
))
3628 int unit_add_node_dependency(Unit
*u
, const char *what
, bool wants
, UnitDependency dep
, UnitDependencyMask mask
) {
3630 _cleanup_free_
char *e
= NULL
;
3635 /* Adds in links to the device node that this unit is based on */
3639 if (!is_device_path(what
))
3642 /* When device units aren't supported (such as in a
3643 * container), don't create dependencies on them. */
3644 if (!unit_type_supported(UNIT_DEVICE
))
3647 r
= unit_name_from_path(what
, ".device", &e
);
3651 r
= manager_load_unit(u
->manager
, e
, NULL
, NULL
, &device
);
3655 if (dep
== UNIT_REQUIRES
&& device_shall_be_bound_by(device
, u
))
3656 dep
= UNIT_BINDS_TO
;
3658 r
= unit_add_two_dependencies(u
, UNIT_AFTER
,
3659 MANAGER_IS_SYSTEM(u
->manager
) ? dep
: UNIT_WANTS
,
3660 device
, true, mask
);
3665 r
= unit_add_dependency(device
, UNIT_WANTS
, u
, false, mask
);
3673 int unit_coldplug(Unit
*u
) {
3679 /* Make sure we don't enter a loop, when coldplugging
3684 u
->coldplugged
= true;
3686 STRV_FOREACH(i
, u
->deserialized_refs
) {
3687 q
= bus_unit_track_add_name(u
, *i
);
3688 if (q
< 0 && r
>= 0)
3691 u
->deserialized_refs
= strv_free(u
->deserialized_refs
);
3693 if (UNIT_VTABLE(u
)->coldplug
) {
3694 q
= UNIT_VTABLE(u
)->coldplug(u
);
3695 if (q
< 0 && r
>= 0)
3700 q
= job_coldplug(u
->job
);
3701 if (q
< 0 && r
>= 0)
3708 static bool fragment_mtime_newer(const char *path
, usec_t mtime
, bool path_masked
) {
3714 /* If the source is some virtual kernel file system, then we assume we watch it anyway, and hence pretend we
3715 * are never out-of-date. */
3716 if (PATH_STARTSWITH_SET(path
, "/proc", "/sys"))
3719 if (stat(path
, &st
) < 0)
3720 /* What, cannot access this anymore? */
3724 /* For masked files check if they are still so */
3725 return !null_or_empty(&st
);
3727 /* For non-empty files check the mtime */
3728 return timespec_load(&st
.st_mtim
) > mtime
;
3733 bool unit_need_daemon_reload(Unit
*u
) {
3734 _cleanup_strv_free_
char **t
= NULL
;
3739 /* For unit files, we allow masking… */
3740 if (fragment_mtime_newer(u
->fragment_path
, u
->fragment_mtime
,
3741 u
->load_state
== UNIT_MASKED
))
3744 /* Source paths should not be masked… */
3745 if (fragment_mtime_newer(u
->source_path
, u
->source_mtime
, false))
3748 if (u
->load_state
== UNIT_LOADED
)
3749 (void) unit_find_dropin_paths(u
, &t
);
3750 if (!strv_equal(u
->dropin_paths
, t
))
3753 /* … any drop-ins that are masked are simply omitted from the list. */
3754 STRV_FOREACH(path
, u
->dropin_paths
)
3755 if (fragment_mtime_newer(*path
, u
->dropin_mtime
, false))
3761 void unit_reset_failed(Unit
*u
) {
3764 if (UNIT_VTABLE(u
)->reset_failed
)
3765 UNIT_VTABLE(u
)->reset_failed(u
);
3767 RATELIMIT_RESET(u
->start_limit
);
3768 u
->start_limit_hit
= false;
3771 Unit
*unit_following(Unit
*u
) {
3774 if (UNIT_VTABLE(u
)->following
)
3775 return UNIT_VTABLE(u
)->following(u
);
3780 bool unit_stop_pending(Unit
*u
) {
3783 /* This call does check the current state of the unit. It's
3784 * hence useful to be called from state change calls of the
3785 * unit itself, where the state isn't updated yet. This is
3786 * different from unit_inactive_or_pending() which checks both
3787 * the current state and for a queued job. */
3789 return u
->job
&& u
->job
->type
== JOB_STOP
;
3792 bool unit_inactive_or_pending(Unit
*u
) {
3795 /* Returns true if the unit is inactive or going down */
3797 if (UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)))
3800 if (unit_stop_pending(u
))
3806 bool unit_active_or_pending(Unit
*u
) {
3809 /* Returns true if the unit is active or going up */
3811 if (UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)))
3815 IN_SET(u
->job
->type
, JOB_START
, JOB_RELOAD_OR_START
, JOB_RESTART
))
3821 bool unit_will_restart(Unit
*u
) {
3824 if (!UNIT_VTABLE(u
)->will_restart
)
3827 return UNIT_VTABLE(u
)->will_restart(u
);
3830 int unit_kill(Unit
*u
, KillWho w
, int signo
, sd_bus_error
*error
) {
3832 assert(w
>= 0 && w
< _KILL_WHO_MAX
);
3833 assert(SIGNAL_VALID(signo
));
3835 if (!UNIT_VTABLE(u
)->kill
)
3838 return UNIT_VTABLE(u
)->kill(u
, w
, signo
, error
);
3841 static Set
*unit_pid_set(pid_t main_pid
, pid_t control_pid
) {
3845 pid_set
= set_new(NULL
);
3849 /* Exclude the main/control pids from being killed via the cgroup */
3851 r
= set_put(pid_set
, PID_TO_PTR(main_pid
));
3856 if (control_pid
> 0) {
3857 r
= set_put(pid_set
, PID_TO_PTR(control_pid
));
3869 int unit_kill_common(
3875 sd_bus_error
*error
) {
3878 bool killed
= false;
3880 if (IN_SET(who
, KILL_MAIN
, KILL_MAIN_FAIL
)) {
3882 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_PROCESS
, "%s units have no main processes", unit_type_to_string(u
->type
));
3883 else if (main_pid
== 0)
3884 return sd_bus_error_set_const(error
, BUS_ERROR_NO_SUCH_PROCESS
, "No main process to kill");
3887 if (IN_SET(who
, KILL_CONTROL
, KILL_CONTROL_FAIL
)) {
3888 if (control_pid
< 0)
3889 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_PROCESS
, "%s units have no control processes", unit_type_to_string(u
->type
));
3890 else if (control_pid
== 0)
3891 return sd_bus_error_set_const(error
, BUS_ERROR_NO_SUCH_PROCESS
, "No control process to kill");
3894 if (IN_SET(who
, KILL_CONTROL
, KILL_CONTROL_FAIL
, KILL_ALL
, KILL_ALL_FAIL
))
3895 if (control_pid
> 0) {
3896 if (kill(control_pid
, signo
) < 0)
3902 if (IN_SET(who
, KILL_MAIN
, KILL_MAIN_FAIL
, KILL_ALL
, KILL_ALL_FAIL
))
3904 if (kill(main_pid
, signo
) < 0)
3910 if (IN_SET(who
, KILL_ALL
, KILL_ALL_FAIL
) && u
->cgroup_path
) {
3911 _cleanup_set_free_ Set
*pid_set
= NULL
;
3914 /* Exclude the main/control pids from being killed via the cgroup */
3915 pid_set
= unit_pid_set(main_pid
, control_pid
);
3919 q
= cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
, signo
, 0, pid_set
, NULL
, NULL
);
3920 if (q
< 0 && !IN_SET(q
, -EAGAIN
, -ESRCH
, -ENOENT
))
3926 if (r
== 0 && !killed
&& IN_SET(who
, KILL_ALL_FAIL
, KILL_CONTROL_FAIL
))
3932 int unit_following_set(Unit
*u
, Set
**s
) {
3936 if (UNIT_VTABLE(u
)->following_set
)
3937 return UNIT_VTABLE(u
)->following_set(u
, s
);
3943 UnitFileState
unit_get_unit_file_state(Unit
*u
) {
3948 if (u
->unit_file_state
< 0 && u
->fragment_path
) {
3949 r
= unit_file_get_state(
3950 u
->manager
->unit_file_scope
,
3953 &u
->unit_file_state
);
3955 u
->unit_file_state
= UNIT_FILE_BAD
;
3958 return u
->unit_file_state
;
3961 int unit_get_unit_file_preset(Unit
*u
) {
3964 if (u
->unit_file_preset
< 0 && u
->fragment_path
)
3965 u
->unit_file_preset
= unit_file_query_preset(
3966 u
->manager
->unit_file_scope
,
3968 basename(u
->fragment_path
));
3970 return u
->unit_file_preset
;
3973 Unit
* unit_ref_set(UnitRef
*ref
, Unit
*source
, Unit
*target
) {
3979 unit_ref_unset(ref
);
3981 ref
->source
= source
;
3982 ref
->target
= target
;
3983 LIST_PREPEND(refs_by_target
, target
->refs_by_target
, ref
);
3987 void unit_ref_unset(UnitRef
*ref
) {
3993 /* We are about to drop a reference to the unit, make sure the garbage collection has a look at it as it might
3994 * be unreferenced now. */
3995 unit_add_to_gc_queue(ref
->target
);
3997 LIST_REMOVE(refs_by_target
, ref
->target
->refs_by_target
, ref
);
3998 ref
->source
= ref
->target
= NULL
;
4001 static int user_from_unit_name(Unit
*u
, char **ret
) {
4003 static const uint8_t hash_key
[] = {
4004 0x58, 0x1a, 0xaf, 0xe6, 0x28, 0x58, 0x4e, 0x96,
4005 0xb4, 0x4e, 0xf5, 0x3b, 0x8c, 0x92, 0x07, 0xec
4008 _cleanup_free_
char *n
= NULL
;
4011 r
= unit_name_to_prefix(u
->id
, &n
);
4015 if (valid_user_group_name(n
)) {
4020 /* If we can't use the unit name as a user name, then let's hash it and use that */
4021 if (asprintf(ret
, "_du%016" PRIx64
, siphash24(n
, strlen(n
), hash_key
)) < 0)
4027 int unit_patch_contexts(Unit
*u
) {
4035 /* Patch in the manager defaults into the exec and cgroup
4036 * contexts, _after_ the rest of the settings have been
4039 ec
= unit_get_exec_context(u
);
4041 /* This only copies in the ones that need memory */
4042 for (i
= 0; i
< _RLIMIT_MAX
; i
++)
4043 if (u
->manager
->rlimit
[i
] && !ec
->rlimit
[i
]) {
4044 ec
->rlimit
[i
] = newdup(struct rlimit
, u
->manager
->rlimit
[i
], 1);
4049 if (MANAGER_IS_USER(u
->manager
) &&
4050 !ec
->working_directory
) {
4052 r
= get_home_dir(&ec
->working_directory
);
4056 /* Allow user services to run, even if the
4057 * home directory is missing */
4058 ec
->working_directory_missing_ok
= true;
4061 if (ec
->private_devices
)
4062 ec
->capability_bounding_set
&= ~((UINT64_C(1) << CAP_MKNOD
) | (UINT64_C(1) << CAP_SYS_RAWIO
));
4064 if (ec
->protect_kernel_modules
)
4065 ec
->capability_bounding_set
&= ~(UINT64_C(1) << CAP_SYS_MODULE
);
4067 if (ec
->dynamic_user
) {
4069 r
= user_from_unit_name(u
, &ec
->user
);
4075 ec
->group
= strdup(ec
->user
);
4080 /* If the dynamic user option is on, let's make sure that the unit can't leave its UID/GID
4081 * around in the file system or on IPC objects. Hence enforce a strict sandbox. */
4083 ec
->private_tmp
= true;
4084 ec
->remove_ipc
= true;
4085 ec
->protect_system
= PROTECT_SYSTEM_STRICT
;
4086 if (ec
->protect_home
== PROTECT_HOME_NO
)
4087 ec
->protect_home
= PROTECT_HOME_READ_ONLY
;
4091 cc
= unit_get_cgroup_context(u
);
4095 ec
->private_devices
&&
4096 cc
->device_policy
== CGROUP_AUTO
)
4097 cc
->device_policy
= CGROUP_CLOSED
;
4103 ExecContext
*unit_get_exec_context(Unit
*u
) {
4110 offset
= UNIT_VTABLE(u
)->exec_context_offset
;
4114 return (ExecContext
*) ((uint8_t*) u
+ offset
);
4117 KillContext
*unit_get_kill_context(Unit
*u
) {
4124 offset
= UNIT_VTABLE(u
)->kill_context_offset
;
4128 return (KillContext
*) ((uint8_t*) u
+ offset
);
4131 CGroupContext
*unit_get_cgroup_context(Unit
*u
) {
4137 offset
= UNIT_VTABLE(u
)->cgroup_context_offset
;
4141 return (CGroupContext
*) ((uint8_t*) u
+ offset
);
4144 ExecRuntime
*unit_get_exec_runtime(Unit
*u
) {
4150 offset
= UNIT_VTABLE(u
)->exec_runtime_offset
;
4154 return *(ExecRuntime
**) ((uint8_t*) u
+ offset
);
4157 static const char* unit_drop_in_dir(Unit
*u
, UnitWriteFlags flags
) {
4160 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4163 if (u
->transient
) /* Redirect drop-ins for transient units always into the transient directory. */
4164 return u
->manager
->lookup_paths
.transient
;
4166 if (flags
& UNIT_PERSISTENT
)
4167 return u
->manager
->lookup_paths
.persistent_control
;
4169 if (flags
& UNIT_RUNTIME
)
4170 return u
->manager
->lookup_paths
.runtime_control
;
4175 char* unit_escape_setting(const char *s
, UnitWriteFlags flags
, char **buf
) {
4181 /* Escapes the input string as requested. Returns the escaped string. If 'buf' is specified then the allocated
4182 * return buffer pointer is also written to *buf, except if no escaping was necessary, in which case *buf is
4183 * set to NULL, and the input pointer is returned as-is. This means the return value always contains a properly
4184 * escaped version, but *buf when passed only contains a pointer if an allocation was necessary. If *buf is
4185 * not specified, then the return value always needs to be freed. Callers can use this to optimize memory
4188 if (flags
& UNIT_ESCAPE_SPECIFIERS
) {
4189 ret
= specifier_escape(s
);
4196 if (flags
& UNIT_ESCAPE_C
) {
4209 return ret
?: (char*) s
;
4212 return ret
?: strdup(s
);
4215 char* unit_concat_strv(char **l
, UnitWriteFlags flags
) {
4216 _cleanup_free_
char *result
= NULL
;
4217 size_t n
= 0, allocated
= 0;
4220 /* Takes a list of strings, escapes them, and concatenates them. This may be used to format command lines in a
4221 * way suitable for ExecStart= stanzas */
4223 STRV_FOREACH(i
, l
) {
4224 _cleanup_free_
char *buf
= NULL
;
4229 p
= unit_escape_setting(*i
, flags
, &buf
);
4233 a
= (n
> 0) + 1 + strlen(p
) + 1; /* separating space + " + entry + " */
4234 if (!GREEDY_REALLOC(result
, allocated
, n
+ a
+ 1))
4248 if (!GREEDY_REALLOC(result
, allocated
, n
+ 1))
4253 return TAKE_PTR(result
);
4256 int unit_write_setting(Unit
*u
, UnitWriteFlags flags
, const char *name
, const char *data
) {
4257 _cleanup_free_
char *p
= NULL
, *q
= NULL
, *escaped
= NULL
;
4258 const char *dir
, *wrapped
;
4265 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4268 data
= unit_escape_setting(data
, flags
, &escaped
);
4272 /* Prefix the section header. If we are writing this out as transient file, then let's suppress this if the
4273 * previous section header is the same */
4275 if (flags
& UNIT_PRIVATE
) {
4276 if (!UNIT_VTABLE(u
)->private_section
)
4279 if (!u
->transient_file
|| u
->last_section_private
< 0)
4280 data
= strjoina("[", UNIT_VTABLE(u
)->private_section
, "]\n", data
);
4281 else if (u
->last_section_private
== 0)
4282 data
= strjoina("\n[", UNIT_VTABLE(u
)->private_section
, "]\n", data
);
4284 if (!u
->transient_file
|| u
->last_section_private
< 0)
4285 data
= strjoina("[Unit]\n", data
);
4286 else if (u
->last_section_private
> 0)
4287 data
= strjoina("\n[Unit]\n", data
);
4290 if (u
->transient_file
) {
4291 /* When this is a transient unit file in creation, then let's not create a new drop-in but instead
4292 * write to the transient unit file. */
4293 fputs(data
, u
->transient_file
);
4295 if (!endswith(data
, "\n"))
4296 fputc('\n', u
->transient_file
);
4298 /* Remember which section we wrote this entry to */
4299 u
->last_section_private
= !!(flags
& UNIT_PRIVATE
);
4303 dir
= unit_drop_in_dir(u
, flags
);
4307 wrapped
= strjoina("# This is a drop-in unit file extension, created via \"systemctl set-property\"\n"
4308 "# or an equivalent operation. Do not edit.\n",
4312 r
= drop_in_file(dir
, u
->id
, 50, name
, &p
, &q
);
4316 (void) mkdir_p_label(p
, 0755);
4317 r
= write_string_file_atomic_label(q
, wrapped
);
4321 r
= strv_push(&u
->dropin_paths
, q
);
4326 strv_uniq(u
->dropin_paths
);
4328 u
->dropin_mtime
= now(CLOCK_REALTIME
);
4333 int unit_write_settingf(Unit
*u
, UnitWriteFlags flags
, const char *name
, const char *format
, ...) {
4334 _cleanup_free_
char *p
= NULL
;
4342 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4345 va_start(ap
, format
);
4346 r
= vasprintf(&p
, format
, ap
);
4352 return unit_write_setting(u
, flags
, name
, p
);
4355 int unit_make_transient(Unit
*u
) {
4356 _cleanup_free_
char *path
= NULL
;
4361 if (!UNIT_VTABLE(u
)->can_transient
)
4364 (void) mkdir_p_label(u
->manager
->lookup_paths
.transient
, 0755);
4366 path
= strjoin(u
->manager
->lookup_paths
.transient
, "/", u
->id
);
4370 /* Let's open the file we'll write the transient settings into. This file is kept open as long as we are
4371 * creating the transient, and is closed in unit_load(), as soon as we start loading the file. */
4373 RUN_WITH_UMASK(0022) {
4374 f
= fopen(path
, "we");
4379 safe_fclose(u
->transient_file
);
4380 u
->transient_file
= f
;
4382 free_and_replace(u
->fragment_path
, path
);
4384 u
->source_path
= mfree(u
->source_path
);
4385 u
->dropin_paths
= strv_free(u
->dropin_paths
);
4386 u
->fragment_mtime
= u
->source_mtime
= u
->dropin_mtime
= 0;
4388 u
->load_state
= UNIT_STUB
;
4390 u
->transient
= true;
4392 unit_add_to_dbus_queue(u
);
4393 unit_add_to_gc_queue(u
);
4395 fputs("# This is a transient unit file, created programmatically via the systemd API. Do not edit.\n",
4401 static void log_kill(pid_t pid
, int sig
, void *userdata
) {
4402 _cleanup_free_
char *comm
= NULL
;
4404 (void) get_process_comm(pid
, &comm
);
4406 /* Don't log about processes marked with brackets, under the assumption that these are temporary processes
4407 only, like for example systemd's own PAM stub process. */
4408 if (comm
&& comm
[0] == '(')
4411 log_unit_notice(userdata
,
4412 "Killing process " PID_FMT
" (%s) with signal SIG%s.",
4415 signal_to_string(sig
));
4418 static int operation_to_signal(KillContext
*c
, KillOperation k
) {
4423 case KILL_TERMINATE
:
4424 case KILL_TERMINATE_AND_LOG
:
4425 return c
->kill_signal
;
4434 assert_not_reached("KillOperation unknown");
4438 int unit_kill_context(
4444 bool main_pid_alien
) {
4446 bool wait_for_exit
= false, send_sighup
;
4447 cg_kill_log_func_t log_func
= NULL
;
4453 /* Kill the processes belonging to this unit, in preparation for shutting the unit down.
4454 * Returns > 0 if we killed something worth waiting for, 0 otherwise. */
4456 if (c
->kill_mode
== KILL_NONE
)
4459 sig
= operation_to_signal(c
, k
);
4463 IN_SET(k
, KILL_TERMINATE
, KILL_TERMINATE_AND_LOG
) &&
4466 if (k
!= KILL_TERMINATE
|| IN_SET(sig
, SIGKILL
, SIGABRT
))
4467 log_func
= log_kill
;
4471 log_func(main_pid
, sig
, u
);
4473 r
= kill_and_sigcont(main_pid
, sig
);
4474 if (r
< 0 && r
!= -ESRCH
) {
4475 _cleanup_free_
char *comm
= NULL
;
4476 (void) get_process_comm(main_pid
, &comm
);
4478 log_unit_warning_errno(u
, r
, "Failed to kill main process " PID_FMT
" (%s), ignoring: %m", main_pid
, strna(comm
));
4480 if (!main_pid_alien
)
4481 wait_for_exit
= true;
4483 if (r
!= -ESRCH
&& send_sighup
)
4484 (void) kill(main_pid
, SIGHUP
);
4488 if (control_pid
> 0) {
4490 log_func(control_pid
, sig
, u
);
4492 r
= kill_and_sigcont(control_pid
, sig
);
4493 if (r
< 0 && r
!= -ESRCH
) {
4494 _cleanup_free_
char *comm
= NULL
;
4495 (void) get_process_comm(control_pid
, &comm
);
4497 log_unit_warning_errno(u
, r
, "Failed to kill control process " PID_FMT
" (%s), ignoring: %m", control_pid
, strna(comm
));
4499 wait_for_exit
= true;
4501 if (r
!= -ESRCH
&& send_sighup
)
4502 (void) kill(control_pid
, SIGHUP
);
4506 if (u
->cgroup_path
&&
4507 (c
->kill_mode
== KILL_CONTROL_GROUP
|| (c
->kill_mode
== KILL_MIXED
&& k
== KILL_KILL
))) {
4508 _cleanup_set_free_ Set
*pid_set
= NULL
;
4510 /* Exclude the main/control pids from being killed via the cgroup */
4511 pid_set
= unit_pid_set(main_pid
, control_pid
);
4515 r
= cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
,
4517 CGROUP_SIGCONT
|CGROUP_IGNORE_SELF
,
4521 if (!IN_SET(r
, -EAGAIN
, -ESRCH
, -ENOENT
))
4522 log_unit_warning_errno(u
, r
, "Failed to kill control group %s, ignoring: %m", u
->cgroup_path
);
4526 /* FIXME: For now, on the legacy hierarchy, we will not wait for the cgroup members to die if
4527 * we are running in a container or if this is a delegation unit, simply because cgroup
4528 * notification is unreliable in these cases. It doesn't work at all in containers, and outside
4529 * of containers it can be confused easily by left-over directories in the cgroup — which
4530 * however should not exist in non-delegated units. On the unified hierarchy that's different,
4531 * there we get proper events. Hence rely on them. */
4533 if (cg_unified_controller(SYSTEMD_CGROUP_CONTROLLER
) > 0 ||
4534 (detect_container() == 0 && !unit_cgroup_delegate(u
)))
4535 wait_for_exit
= true;
4540 pid_set
= unit_pid_set(main_pid
, control_pid
);
4544 cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
,
4553 return wait_for_exit
;
4556 int unit_require_mounts_for(Unit
*u
, const char *path
, UnitDependencyMask mask
) {
4557 _cleanup_free_
char *p
= NULL
;
4559 UnitDependencyInfo di
;
4565 /* Registers a unit for requiring a certain path and all its prefixes. We keep a hashtable of these paths in
4566 * the unit (from the path to the UnitDependencyInfo structure indicating how to the dependency came to
4567 * be). However, we build a prefix table for all possible prefixes so that new appearing mount units can easily
4568 * determine which units to make themselves a dependency of. */
4570 if (!path_is_absolute(path
))
4573 r
= hashmap_ensure_allocated(&u
->requires_mounts_for
, &path_hash_ops
);
4581 path
= path_kill_slashes(p
);
4583 if (!path_is_normalized(path
))
4586 if (hashmap_contains(u
->requires_mounts_for
, path
))
4589 di
= (UnitDependencyInfo
) {
4593 r
= hashmap_put(u
->requires_mounts_for
, path
, di
.data
);
4598 prefix
= alloca(strlen(path
) + 1);
4599 PATH_FOREACH_PREFIX_MORE(prefix
, path
) {
4602 x
= hashmap_get(u
->manager
->units_requiring_mounts_for
, prefix
);
4604 _cleanup_free_
char *q
= NULL
;
4606 r
= hashmap_ensure_allocated(&u
->manager
->units_requiring_mounts_for
, &path_hash_ops
);
4618 r
= hashmap_put(u
->manager
->units_requiring_mounts_for
, q
, x
);
4634 int unit_setup_exec_runtime(Unit
*u
) {
4642 offset
= UNIT_VTABLE(u
)->exec_runtime_offset
;
4645 /* Check if there already is an ExecRuntime for this unit? */
4646 rt
= (ExecRuntime
**) ((uint8_t*) u
+ offset
);
4650 /* Try to get it from somebody else */
4651 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_JOINS_NAMESPACE_OF
], i
) {
4652 r
= exec_runtime_acquire(u
->manager
, NULL
, other
->id
, false, rt
);
4657 return exec_runtime_acquire(u
->manager
, unit_get_exec_context(u
), u
->id
, true, rt
);
4660 int unit_setup_dynamic_creds(Unit
*u
) {
4662 DynamicCreds
*dcreds
;
4667 offset
= UNIT_VTABLE(u
)->dynamic_creds_offset
;
4669 dcreds
= (DynamicCreds
*) ((uint8_t*) u
+ offset
);
4671 ec
= unit_get_exec_context(u
);
4674 if (!ec
->dynamic_user
)
4677 return dynamic_creds_acquire(dcreds
, u
->manager
, ec
->user
, ec
->group
);
4680 bool unit_type_supported(UnitType t
) {
4681 if (_unlikely_(t
< 0))
4683 if (_unlikely_(t
>= _UNIT_TYPE_MAX
))
4686 if (!unit_vtable
[t
]->supported
)
4689 return unit_vtable
[t
]->supported();
4692 void unit_warn_if_dir_nonempty(Unit
*u
, const char* where
) {
4698 r
= dir_is_empty(where
);
4699 if (r
> 0 || r
== -ENOTDIR
)
4702 log_unit_warning_errno(u
, r
, "Failed to check directory %s: %m", where
);
4706 log_struct(LOG_NOTICE
,
4707 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR
,
4709 LOG_UNIT_INVOCATION_ID(u
),
4710 LOG_UNIT_MESSAGE(u
, "Directory %s to mount over is not empty, mounting anyway.", where
),
4715 int unit_fail_if_noncanonical(Unit
*u
, const char* where
) {
4716 _cleanup_free_
char *canonical_where
;
4722 r
= chase_symlinks(where
, NULL
, CHASE_NONEXISTENT
, &canonical_where
);
4724 log_unit_debug_errno(u
, r
, "Failed to check %s for symlinks, ignoring: %m", where
);
4728 /* We will happily ignore a trailing slash (or any redundant slashes) */
4729 if (path_equal(where
, canonical_where
))
4732 /* No need to mention "." or "..", they would already have been rejected by unit_name_from_path() */
4734 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR
,
4736 LOG_UNIT_INVOCATION_ID(u
),
4737 LOG_UNIT_MESSAGE(u
, "Mount path %s is not canonical (contains a symlink).", where
),
4744 bool unit_is_pristine(Unit
*u
) {
4747 /* Check if the unit already exists or is already around,
4748 * in a number of different ways. Note that to cater for unit
4749 * types such as slice, we are generally fine with units that
4750 * are marked UNIT_LOADED even though nothing was
4751 * actually loaded, as those unit types don't require a file
4752 * on disk to validly load. */
4754 return !(!IN_SET(u
->load_state
, UNIT_NOT_FOUND
, UNIT_LOADED
) ||
4757 !strv_isempty(u
->dropin_paths
) ||
4762 pid_t
unit_control_pid(Unit
*u
) {
4765 if (UNIT_VTABLE(u
)->control_pid
)
4766 return UNIT_VTABLE(u
)->control_pid(u
);
4771 pid_t
unit_main_pid(Unit
*u
) {
4774 if (UNIT_VTABLE(u
)->main_pid
)
4775 return UNIT_VTABLE(u
)->main_pid(u
);
4780 static void unit_unref_uid_internal(
4784 void (*_manager_unref_uid
)(Manager
*m
, uid_t uid
, bool destroy_now
)) {
4788 assert(_manager_unref_uid
);
4790 /* Generic implementation of both unit_unref_uid() and unit_unref_gid(), under the assumption that uid_t and
4791 * gid_t are actually the same time, with the same validity rules.
4793 * Drops a reference to UID/GID from a unit. */
4795 assert_cc(sizeof(uid_t
) == sizeof(gid_t
));
4796 assert_cc(UID_INVALID
== (uid_t
) GID_INVALID
);
4798 if (!uid_is_valid(*ref_uid
))
4801 _manager_unref_uid(u
->manager
, *ref_uid
, destroy_now
);
4802 *ref_uid
= UID_INVALID
;
4805 void unit_unref_uid(Unit
*u
, bool destroy_now
) {
4806 unit_unref_uid_internal(u
, &u
->ref_uid
, destroy_now
, manager_unref_uid
);
4809 void unit_unref_gid(Unit
*u
, bool destroy_now
) {
4810 unit_unref_uid_internal(u
, (uid_t
*) &u
->ref_gid
, destroy_now
, manager_unref_gid
);
4813 static int unit_ref_uid_internal(
4818 int (*_manager_ref_uid
)(Manager
*m
, uid_t uid
, bool clean_ipc
)) {
4824 assert(uid_is_valid(uid
));
4825 assert(_manager_ref_uid
);
4827 /* Generic implementation of both unit_ref_uid() and unit_ref_guid(), under the assumption that uid_t and gid_t
4828 * are actually the same type, and have the same validity rules.
4830 * Adds a reference on a specific UID/GID to this unit. Each unit referencing the same UID/GID maintains a
4831 * reference so that we can destroy the UID/GID's IPC resources as soon as this is requested and the counter
4834 assert_cc(sizeof(uid_t
) == sizeof(gid_t
));
4835 assert_cc(UID_INVALID
== (uid_t
) GID_INVALID
);
4837 if (*ref_uid
== uid
)
4840 if (uid_is_valid(*ref_uid
)) /* Already set? */
4843 r
= _manager_ref_uid(u
->manager
, uid
, clean_ipc
);
4851 int unit_ref_uid(Unit
*u
, uid_t uid
, bool clean_ipc
) {
4852 return unit_ref_uid_internal(u
, &u
->ref_uid
, uid
, clean_ipc
, manager_ref_uid
);
4855 int unit_ref_gid(Unit
*u
, gid_t gid
, bool clean_ipc
) {
4856 return unit_ref_uid_internal(u
, (uid_t
*) &u
->ref_gid
, (uid_t
) gid
, clean_ipc
, manager_ref_gid
);
4859 static int unit_ref_uid_gid_internal(Unit
*u
, uid_t uid
, gid_t gid
, bool clean_ipc
) {
4864 /* Reference both a UID and a GID in one go. Either references both, or neither. */
4866 if (uid_is_valid(uid
)) {
4867 r
= unit_ref_uid(u
, uid
, clean_ipc
);
4872 if (gid_is_valid(gid
)) {
4873 q
= unit_ref_gid(u
, gid
, clean_ipc
);
4876 unit_unref_uid(u
, false);
4882 return r
> 0 || q
> 0;
4885 int unit_ref_uid_gid(Unit
*u
, uid_t uid
, gid_t gid
) {
4891 c
= unit_get_exec_context(u
);
4893 r
= unit_ref_uid_gid_internal(u
, uid
, gid
, c
? c
->remove_ipc
: false);
4895 return log_unit_warning_errno(u
, r
, "Couldn't add UID/GID reference to unit, proceeding without: %m");
4900 void unit_unref_uid_gid(Unit
*u
, bool destroy_now
) {
4903 unit_unref_uid(u
, destroy_now
);
4904 unit_unref_gid(u
, destroy_now
);
4907 void unit_notify_user_lookup(Unit
*u
, uid_t uid
, gid_t gid
) {
4912 /* This is invoked whenever one of the forked off processes let's us know the UID/GID its user name/group names
4913 * resolved to. We keep track of which UID/GID is currently assigned in order to be able to destroy its IPC
4914 * objects when no service references the UID/GID anymore. */
4916 r
= unit_ref_uid_gid(u
, uid
, gid
);
4918 bus_unit_send_change_signal(u
);
4921 int unit_set_invocation_id(Unit
*u
, sd_id128_t id
) {
4926 /* Set the invocation ID for this unit. If we cannot, this will not roll back, but reset the whole thing. */
4928 if (sd_id128_equal(u
->invocation_id
, id
))
4931 if (!sd_id128_is_null(u
->invocation_id
))
4932 (void) hashmap_remove_value(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
4934 if (sd_id128_is_null(id
)) {
4939 r
= hashmap_ensure_allocated(&u
->manager
->units_by_invocation_id
, &id128_hash_ops
);
4943 u
->invocation_id
= id
;
4944 sd_id128_to_string(id
, u
->invocation_id_string
);
4946 r
= hashmap_put(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
4953 u
->invocation_id
= SD_ID128_NULL
;
4954 u
->invocation_id_string
[0] = 0;
4958 int unit_acquire_invocation_id(Unit
*u
) {
4964 r
= sd_id128_randomize(&id
);
4966 return log_unit_error_errno(u
, r
, "Failed to generate invocation ID for unit: %m");
4968 r
= unit_set_invocation_id(u
, id
);
4970 return log_unit_error_errno(u
, r
, "Failed to set invocation ID for unit: %m");
4975 void unit_set_exec_params(Unit
*u
, ExecParameters
*p
) {
4979 /* Copy parameters from manager */
4980 p
->environment
= u
->manager
->environment
;
4981 p
->confirm_spawn
= manager_get_confirm_spawn(u
->manager
);
4982 p
->cgroup_supported
= u
->manager
->cgroup_supported
;
4983 p
->prefix
= u
->manager
->prefix
;
4984 SET_FLAG(p
->flags
, EXEC_PASS_LOG_UNIT
|EXEC_CHOWN_DIRECTORIES
, MANAGER_IS_SYSTEM(u
->manager
));
4986 /* Copy paramaters from unit */
4987 p
->cgroup_path
= u
->cgroup_path
;
4988 SET_FLAG(p
->flags
, EXEC_CGROUP_DELEGATE
, unit_cgroup_delegate(u
));
4991 int unit_fork_helper_process(Unit
*u
, const char *name
, pid_t
*ret
) {
4997 /* Forks off a helper process and makes sure it is a member of the unit's cgroup. Returns == 0 in the child,
4998 * and > 0 in the parent. The pid parameter is always filled in with the child's PID. */
5000 (void) unit_realize_cgroup(u
);
5002 r
= safe_fork(name
, FORK_REOPEN_LOG
, ret
);
5006 (void) default_signals(SIGNALS_CRASH_HANDLER
, SIGNALS_IGNORE
, -1);
5007 (void) ignore_signals(SIGPIPE
, -1);
5009 (void) prctl(PR_SET_PDEATHSIG
, SIGTERM
);
5011 if (u
->cgroup_path
) {
5012 r
= cg_attach_everywhere(u
->manager
->cgroup_supported
, u
->cgroup_path
, 0, NULL
, NULL
);
5014 log_unit_error_errno(u
, r
, "Failed to join unit cgroup %s: %m", u
->cgroup_path
);
5022 static void unit_update_dependency_mask(Unit
*u
, UnitDependency d
, Unit
*other
, UnitDependencyInfo di
) {
5025 assert(d
< _UNIT_DEPENDENCY_MAX
);
5028 if (di
.origin_mask
== 0 && di
.destination_mask
== 0) {
5029 /* No bit set anymore, let's drop the whole entry */
5030 assert_se(hashmap_remove(u
->dependencies
[d
], other
));
5031 log_unit_debug(u
, "%s lost dependency %s=%s", u
->id
, unit_dependency_to_string(d
), other
->id
);
5033 /* Mask was reduced, let's update the entry */
5034 assert_se(hashmap_update(u
->dependencies
[d
], other
, di
.data
) == 0);
5037 void unit_remove_dependencies(Unit
*u
, UnitDependencyMask mask
) {
5042 /* Removes all dependencies u has on other units marked for ownership by 'mask'. */
5047 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
5051 UnitDependencyInfo di
;
5057 HASHMAP_FOREACH_KEY(di
.data
, other
, u
->dependencies
[d
], i
) {
5060 if ((di
.origin_mask
& ~mask
) == di
.origin_mask
)
5062 di
.origin_mask
&= ~mask
;
5063 unit_update_dependency_mask(u
, d
, other
, di
);
5065 /* We updated the dependency from our unit to the other unit now. But most dependencies
5066 * imply a reverse dependency. Hence, let's delete that one too. For that we go through
5067 * all dependency types on the other unit and delete all those which point to us and
5068 * have the right mask set. */
5070 for (q
= 0; q
< _UNIT_DEPENDENCY_MAX
; q
++) {
5071 UnitDependencyInfo dj
;
5073 dj
.data
= hashmap_get(other
->dependencies
[q
], u
);
5074 if ((dj
.destination_mask
& ~mask
) == dj
.destination_mask
)
5076 dj
.destination_mask
&= ~mask
;
5078 unit_update_dependency_mask(other
, q
, u
, dj
);
5081 unit_add_to_gc_queue(other
);
5091 static int unit_export_invocation_id(Unit
*u
) {
5097 if (u
->exported_invocation_id
)
5100 if (sd_id128_is_null(u
->invocation_id
))
5103 p
= strjoina("/run/systemd/units/invocation:", u
->id
);
5104 r
= symlink_atomic(u
->invocation_id_string
, p
);
5106 return log_unit_debug_errno(u
, r
, "Failed to create invocation ID symlink %s: %m", p
);
5108 u
->exported_invocation_id
= true;
5112 static int unit_export_log_level_max(Unit
*u
, const ExecContext
*c
) {
5120 if (u
->exported_log_level_max
)
5123 if (c
->log_level_max
< 0)
5126 assert(c
->log_level_max
<= 7);
5128 buf
[0] = '0' + c
->log_level_max
;
5131 p
= strjoina("/run/systemd/units/log-level-max:", u
->id
);
5132 r
= symlink_atomic(buf
, p
);
5134 return log_unit_debug_errno(u
, r
, "Failed to create maximum log level symlink %s: %m", p
);
5136 u
->exported_log_level_max
= true;
5140 static int unit_export_log_extra_fields(Unit
*u
, const ExecContext
*c
) {
5141 _cleanup_close_
int fd
= -1;
5142 struct iovec
*iovec
;
5150 if (u
->exported_log_extra_fields
)
5153 if (c
->n_log_extra_fields
<= 0)
5156 sizes
= newa(le64_t
, c
->n_log_extra_fields
);
5157 iovec
= newa(struct iovec
, c
->n_log_extra_fields
* 2);
5159 for (i
= 0; i
< c
->n_log_extra_fields
; i
++) {
5160 sizes
[i
] = htole64(c
->log_extra_fields
[i
].iov_len
);
5162 iovec
[i
*2] = IOVEC_MAKE(sizes
+ i
, sizeof(le64_t
));
5163 iovec
[i
*2+1] = c
->log_extra_fields
[i
];
5166 p
= strjoina("/run/systemd/units/log-extra-fields:", u
->id
);
5167 pattern
= strjoina(p
, ".XXXXXX");
5169 fd
= mkostemp_safe(pattern
);
5171 return log_unit_debug_errno(u
, fd
, "Failed to create extra fields file %s: %m", p
);
5173 n
= writev(fd
, iovec
, c
->n_log_extra_fields
*2);
5175 r
= log_unit_debug_errno(u
, errno
, "Failed to write extra fields: %m");
5179 (void) fchmod(fd
, 0644);
5181 if (rename(pattern
, p
) < 0) {
5182 r
= log_unit_debug_errno(u
, errno
, "Failed to rename extra fields file: %m");
5186 u
->exported_log_extra_fields
= true;
5190 (void) unlink(pattern
);
5194 void unit_export_state_files(Unit
*u
) {
5195 const ExecContext
*c
;
5202 if (!MANAGER_IS_SYSTEM(u
->manager
))
5205 /* Exports a couple of unit properties to /run/systemd/units/, so that journald can quickly query this data
5206 * from there. Ideally, journald would use IPC to query this, like everybody else, but that's hard, as long as
5207 * the IPC system itself and PID 1 also log to the journal.
5209 * Note that these files really shouldn't be considered API for anyone else, as use a runtime file system as
5210 * IPC replacement is not compatible with today's world of file system namespaces. However, this doesn't really
5211 * apply to communication between the journal and systemd, as we assume that these two daemons live in the same
5212 * namespace at least.
5214 * Note that some of the "files" exported here are actually symlinks and not regular files. Symlinks work
5215 * better for storing small bits of data, in particular as we can write them with two system calls, and read
5218 (void) unit_export_invocation_id(u
);
5220 c
= unit_get_exec_context(u
);
5222 (void) unit_export_log_level_max(u
, c
);
5223 (void) unit_export_log_extra_fields(u
, c
);
5227 void unit_unlink_state_files(Unit
*u
) {
5235 if (!MANAGER_IS_SYSTEM(u
->manager
))
5238 /* Undoes the effect of unit_export_state() */
5240 if (u
->exported_invocation_id
) {
5241 p
= strjoina("/run/systemd/units/invocation:", u
->id
);
5244 u
->exported_invocation_id
= false;
5247 if (u
->exported_log_level_max
) {
5248 p
= strjoina("/run/systemd/units/log-level-max:", u
->id
);
5251 u
->exported_log_level_max
= false;
5254 if (u
->exported_log_extra_fields
) {
5255 p
= strjoina("/run/systemd/units/extra-fields:", u
->id
);
5258 u
->exported_log_extra_fields
= false;
5262 int unit_prepare_exec(Unit
*u
) {
5267 /* Prepares everything so that we can fork of a process for this unit */
5269 (void) unit_realize_cgroup(u
);
5271 if (u
->reset_accounting
) {
5272 (void) unit_reset_cpu_accounting(u
);
5273 (void) unit_reset_ip_accounting(u
);
5274 u
->reset_accounting
= false;
5277 unit_export_state_files(u
);
5279 r
= unit_setup_exec_runtime(u
);
5283 r
= unit_setup_dynamic_creds(u
);
5290 static void log_leftover(pid_t pid
, int sig
, void *userdata
) {
5291 _cleanup_free_
char *comm
= NULL
;
5293 (void) get_process_comm(pid
, &comm
);
5295 if (comm
&& comm
[0] == '(') /* Most likely our own helper process (PAM?), ignore */
5298 log_unit_warning(userdata
,
5299 "Found left-over process " PID_FMT
" (%s) in control group while starting unit. Ignoring.\n"
5300 "This usually indicates unclean termination of a previous run, or service implementation deficiencies.",
5304 void unit_warn_leftover_processes(Unit
*u
) {
5307 (void) unit_pick_cgroup_path(u
);
5309 if (!u
->cgroup_path
)
5312 (void) cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
, 0, 0, NULL
, log_leftover
, u
);
5315 bool unit_needs_console(Unit
*u
) {
5317 UnitActiveState state
;
5321 state
= unit_active_state(u
);
5323 if (UNIT_IS_INACTIVE_OR_FAILED(state
))
5326 if (UNIT_VTABLE(u
)->needs_console
)
5327 return UNIT_VTABLE(u
)->needs_console(u
);
5329 /* If this unit type doesn't implement this call, let's use a generic fallback implementation: */
5330 ec
= unit_get_exec_context(u
);
5334 return exec_context_may_touch_console(ec
);
5337 const char *unit_label_path(Unit
*u
) {
5340 /* Returns the file system path to use for MAC access decisions, i.e. the file to read the SELinux label off
5341 * when validating access checks. */
5343 p
= u
->source_path
?: u
->fragment_path
;
5347 /* If a unit is masked, then don't read the SELinux label of /dev/null, as that really makes no sense */
5348 if (path_equal(p
, "/dev/null"))
5354 int unit_pid_attachable(Unit
*u
, pid_t pid
, sd_bus_error
*error
) {
5359 /* Checks whether the specified PID is generally good for attaching, i.e. a valid PID, not our manager itself,
5360 * and not a kernel thread either */
5362 /* First, a simple range check */
5363 if (!pid_is_valid(pid
))
5364 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process identifier " PID_FMT
" is not valid.", pid
);
5366 /* Some extra safety check */
5367 if (pid
== 1 || pid
== getpid_cached())
5368 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process " PID_FMT
" is a manager processs, refusing.", pid
);
5370 /* Don't even begin to bother with kernel threads */
5371 r
= is_kernel_thread(pid
);
5373 return sd_bus_error_setf(error
, SD_BUS_ERROR_UNIX_PROCESS_ID_UNKNOWN
, "Process with ID " PID_FMT
" does not exist.", pid
);
5375 return sd_bus_error_set_errnof(error
, r
, "Failed to determine whether process " PID_FMT
" is a kernel thread: %m", pid
);
5377 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process " PID_FMT
" is a kernel thread, refusing.", pid
);
5382 static const char* const collect_mode_table
[_COLLECT_MODE_MAX
] = {
5383 [COLLECT_INACTIVE
] = "inactive",
5384 [COLLECT_INACTIVE_OR_FAILED
] = "inactive-or-failed",
5387 DEFINE_STRING_TABLE_LOOKUP(collect_mode
, CollectMode
);