]> git.ipfire.org Git - thirdparty/systemd.git/blob - src/import/pull.c
projects / thirdparty / systemd.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge pull request #12508 from keszybz/no-root-checks
[thirdparty/systemd.git] / src / import / pull.c
1 /* SPDX-License-Identifier: LGPL-2.1+ */
2
3 #include <getopt.h>
4 #include <locale.h>
5
6 #include "sd-event.h"
7 #include "sd-id128.h"
8
9 #include "alloc-util.h"
10 #include "hostname-util.h"
11 #include "import-util.h"
12 #include "machine-image.h"
13 #include "main-func.h"
14 #include "parse-util.h"
15 #include "pull-raw.h"
16 #include "pull-tar.h"
17 #include "signal-util.h"
18 #include "string-util.h"
19 #include "verbs.h"
20 #include "web-util.h"
21
22 static bool arg_force = false;
23 static const char *arg_image_root = "/var/lib/machines";
24 static ImportVerify arg_verify = IMPORT_VERIFY_SIGNATURE;
25 static bool arg_settings = true;
26 static bool arg_roothash = true;
27
28 static int interrupt_signal_handler(sd_event_source *s, const struct signalfd_siginfo *si, void *userdata) {
29 log_notice("Transfer aborted.");
30 sd_event_exit(sd_event_source_get_event(s), EINTR);
31 return 0;
32 }
33
34 static void on_tar_finished(TarPull *pull, int error, void *userdata) {
35 sd_event *event = userdata;
36 assert(pull);
37
38 if (error == 0)
39 log_info("Operation completed successfully.");
40
41 sd_event_exit(event, abs(error));
42 }
43
44 static int pull_tar(int argc, char *argv[], void *userdata) {
45 _cleanup_(tar_pull_unrefp) TarPull *pull = NULL;
46 _cleanup_(sd_event_unrefp) sd_event *event = NULL;
47 const char *url, *local;
48 _cleanup_free_ char *l = NULL, *ll = NULL;
49 int r;
50
51 url = argv[1];
52 if (!http_url_is_valid(url)) {
53 log_error("URL '%s' is not valid.", url);
54 return -EINVAL;
55 }
56
57 if (argc >= 3)
58 local = argv[2];
59 else {
60 r = import_url_last_component(url, &l);
61 if (r < 0)
62 return log_error_errno(r, "Failed get final component of URL: %m");
63
64 local = l;
65 }
66
67 local = empty_or_dash_to_null(local);
68
69 if (local) {
70 r = tar_strip_suffixes(local, &ll);
71 if (r < 0)
72 return log_oom();
73
74 local = ll;
75
76 if (!machine_name_is_valid(local)) {
77 log_error("Local image name '%s' is not valid.", local);
78 return -EINVAL;
79 }
80
81 if (!arg_force) {
82 r = image_find(IMAGE_MACHINE, local, NULL);
83 if (r < 0) {
84 if (r != -ENOENT)
85 return log_error_errno(r, "Failed to check whether image '%s' exists: %m", local);
86 } else {
87 log_error("Image '%s' already exists.", local);
88 return -EEXIST;
89 }
90 }
91
92 log_info("Pulling '%s', saving as '%s'.", url, local);
93 } else
94 log_info("Pulling '%s'.", url);
95
96 r = sd_event_default(&event);
97 if (r < 0)
98 return log_error_errno(r, "Failed to allocate event loop: %m");
99
100 assert_se(sigprocmask_many(SIG_BLOCK, NULL, SIGTERM, SIGINT, -1) >= 0);
101 (void) sd_event_add_signal(event, NULL, SIGTERM, interrupt_signal_handler, NULL);
102 (void) sd_event_add_signal(event, NULL, SIGINT, interrupt_signal_handler, NULL);
103
104 r = tar_pull_new(&pull, event, arg_image_root, on_tar_finished, event);
105 if (r < 0)
106 return log_error_errno(r, "Failed to allocate puller: %m");
107
108 r = tar_pull_start(pull, url, local, arg_force, arg_verify, arg_settings);
109 if (r < 0)
110 return log_error_errno(r, "Failed to pull image: %m");
111
112 r = sd_event_loop(event);
113 if (r < 0)
114 return log_error_errno(r, "Failed to run event loop: %m");
115
116 log_info("Exiting.");
117 return -r;
118 }
119
120 static void on_raw_finished(RawPull *pull, int error, void *userdata) {
121 sd_event *event = userdata;
122 assert(pull);
123
124 if (error == 0)
125 log_info("Operation completed successfully.");
126
127 sd_event_exit(event, abs(error));
128 }
129
130 static int pull_raw(int argc, char *argv[], void *userdata) {
131 _cleanup_(raw_pull_unrefp) RawPull *pull = NULL;
132 _cleanup_(sd_event_unrefp) sd_event *event = NULL;
133 const char *url, *local;
134 _cleanup_free_ char *l = NULL, *ll = NULL;
135 int r;
136
137 url = argv[1];
138 if (!http_url_is_valid(url)) {
139 log_error("URL '%s' is not valid.", url);
140 return -EINVAL;
141 }
142
143 if (argc >= 3)
144 local = argv[2];
145 else {
146 r = import_url_last_component(url, &l);
147 if (r < 0)
148 return log_error_errno(r, "Failed get final component of URL: %m");
149
150 local = l;
151 }
152
153 local = empty_or_dash_to_null(local);
154
155 if (local) {
156 r = raw_strip_suffixes(local, &ll);
157 if (r < 0)
158 return log_oom();
159
160 local = ll;
161
162 if (!machine_name_is_valid(local)) {
163 log_error("Local image name '%s' is not valid.", local);
164 return -EINVAL;
165 }
166
167 if (!arg_force) {
168 r = image_find(IMAGE_MACHINE, local, NULL);
169 if (r < 0) {
170 if (r != -ENOENT)
171 return log_error_errno(r, "Failed to check whether image '%s' exists: %m", local);
172 } else {
173 log_error("Image '%s' already exists.", local);
174 return -EEXIST;
175 }
176 }
177
178 log_info("Pulling '%s', saving as '%s'.", url, local);
179 } else
180 log_info("Pulling '%s'.", url);
181
182 r = sd_event_default(&event);
183 if (r < 0)
184 return log_error_errno(r, "Failed to allocate event loop: %m");
185
186 assert_se(sigprocmask_many(SIG_BLOCK, NULL, SIGTERM, SIGINT, -1) >= 0);
187 (void) sd_event_add_signal(event, NULL, SIGTERM, interrupt_signal_handler, NULL);
188 (void) sd_event_add_signal(event, NULL, SIGINT, interrupt_signal_handler, NULL);
189
190 r = raw_pull_new(&pull, event, arg_image_root, on_raw_finished, event);
191 if (r < 0)
192 return log_error_errno(r, "Failed to allocate puller: %m");
193
194 r = raw_pull_start(pull, url, local, arg_force, arg_verify, arg_settings, arg_roothash);
195 if (r < 0)
196 return log_error_errno(r, "Failed to pull image: %m");
197
198 r = sd_event_loop(event);
199 if (r < 0)
200 return log_error_errno(r, "Failed to run event loop: %m");
201
202 log_info("Exiting.");
203 return -r;
204 }
205
206 static int help(int argc, char *argv[], void *userdata) {
207
208 printf("%s [OPTIONS...] {COMMAND} ...\n\n"
209 "Download container or virtual machine images.\n\n"
210 " -h --help Show this help\n"
211 " --version Show package version\n"
212 " --force Force creation of image\n"
213 " --verify=MODE Verify downloaded image, one of: 'no',\n"
214 " 'checksum', 'signature'\n"
215 " --settings=BOOL Download settings file with image\n"
216 " --roothash=BOOL Download root hash file with image\n"
217 " --image-root=PATH Image root directory\n\n"
218 "Commands:\n"
219 " tar URL [NAME] Download a TAR image\n"
220 " raw URL [NAME] Download a RAW image\n",
221 program_invocation_short_name);
222
223 return 0;
224 }
225
226 static int parse_argv(int argc, char *argv[]) {
227
228 enum {
229 ARG_VERSION = 0x100,
230 ARG_FORCE,
231 ARG_IMAGE_ROOT,
232 ARG_VERIFY,
233 ARG_SETTINGS,
234 ARG_ROOTHASH,
235 };
236
237 static const struct option options[] = {
238 { "help", no_argument, NULL, 'h' },
239 { "version", no_argument, NULL, ARG_VERSION },
240 { "force", no_argument, NULL, ARG_FORCE },
241 { "image-root", required_argument, NULL, ARG_IMAGE_ROOT },
242 { "verify", required_argument, NULL, ARG_VERIFY },
243 { "settings", required_argument, NULL, ARG_SETTINGS },
244 { "roothash", required_argument, NULL, ARG_ROOTHASH },
245 {}
246 };
247
248 int c, r;
249
250 assert(argc >= 0);
251 assert(argv);
252
253 while ((c = getopt_long(argc, argv, "h", options, NULL)) >= 0)
254
255 switch (c) {
256
257 case 'h':
258 return help(0, NULL, NULL);
259
260 case ARG_VERSION:
261 return version();
262
263 case ARG_FORCE:
264 arg_force = true;
265 break;
266
267 case ARG_IMAGE_ROOT:
268 arg_image_root = optarg;
269 break;
270
271 case ARG_VERIFY:
272 arg_verify = import_verify_from_string(optarg);
273 if (arg_verify < 0)
274 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
275 "Invalid verification setting '%s'", optarg);
276
277 break;
278
279 case ARG_SETTINGS:
280 r = parse_boolean(optarg);
281 if (r < 0)
282 return log_error_errno(r, "Failed to parse --settings= parameter '%s': %m", optarg);
283
284 arg_settings = r;
285 break;
286
287 case ARG_ROOTHASH:
288 r = parse_boolean(optarg);
289 if (r < 0)
290 return log_error_errno(r, "Failed to parse --roothash= parameter '%s': %m", optarg);
291
292 arg_roothash = r;
293 break;
294
295 case '?':
296 return -EINVAL;
297
298 default:
299 assert_not_reached("Unhandled option");
300 }
301
302 return 1;
303 }
304
305 static int pull_main(int argc, char *argv[]) {
306 static const Verb verbs[] = {
307 { "help", VERB_ANY, VERB_ANY, 0, help },
308 { "tar", 2, 3, 0, pull_tar },
309 { "raw", 2, 3, 0, pull_raw },
310 {}
311 };
312
313 return dispatch_verb(argc, argv, verbs, NULL);
314 }
315
316 static int run(int argc, char *argv[]) {
317 int r;
318
319 setlocale(LC_ALL, "");
320 log_parse_environment();
321 log_open();
322
323 r = parse_argv(argc, argv);
324 if (r <= 0)
325 return r;
326
327 (void) ignore_signals(SIGPIPE, -1);
328
329 return pull_main(argc, argv);
330 }
331
332 DEFINE_MAIN_FUNCTION(run);
Unnamed repository; edit this file 'description' to name the repository.