1 /* SPDX-License-Identifier: LGPL-2.1-or-later */
12 #include "sd-messages.h"
14 #include "alloc-util.h"
15 #include "audit-util.h"
16 #include "bus-error.h"
18 #include "daemon-util.h"
19 #include "devnum-util.h"
24 #include "format-util.h"
27 #include "logind-dbus.h"
28 #include "logind-seat-dbus.h"
29 #include "logind-session-dbus.h"
30 #include "logind-session.h"
31 #include "logind-user-dbus.h"
32 #include "mkdir-label.h"
33 #include "parse-util.h"
34 #include "path-util.h"
35 #include "process-util.h"
36 #include "serialize.h"
37 #include "string-table.h"
39 #include "terminal-util.h"
40 #include "tmpfile-util.h"
41 #include "uid-classification.h"
42 #include "user-util.h"
44 #define RELEASE_USEC (20*USEC_PER_SEC)
46 static void session_remove_fifo(Session
*s
);
47 static void session_restore_vt(Session
*s
);
49 int session_new(Manager
*m
, const char *id
, Session
**ret
) {
50 _cleanup_(session_freep
) Session
*s
= NULL
;
57 if (!session_id_valid(id
))
67 .state_file
= path_join("/run/systemd/sessions/", id
),
70 .audit_id
= AUDIT_SESSION_INVALID
,
71 .tty_validity
= _TTY_VALIDITY_INVALID
,
72 .leader
= PIDREF_NULL
,
74 if (!s
->id
|| !s
->state_file
)
77 s
->devices
= hashmap_new(&devt_hash_ops
);
81 r
= hashmap_put(m
->sessions
, s
->id
, s
);
89 static int session_dispatch_leader_pidfd(sd_event_source
*es
, int fd
, uint32_t revents
, void *userdata
) {
90 Session
*s
= ASSERT_PTR(userdata
);
92 assert(s
->leader
.fd
== fd
);
93 session_stop(s
, /* force= */ false);
98 static int session_watch_pidfd(Session
*s
) {
103 assert(pidref_is_set(&s
->leader
));
105 if (s
->leader
.fd
< 0)
108 r
= sd_event_add_io(s
->manager
->event
, &s
->leader_pidfd_event_source
, s
->leader
.fd
, EPOLLIN
, session_dispatch_leader_pidfd
, s
);
112 r
= sd_event_source_set_priority(s
->leader_pidfd_event_source
, SD_EVENT_PRIORITY_IMPORTANT
);
116 (void) sd_event_source_set_description(s
->leader_pidfd_event_source
, "session-pidfd");
121 static void session_reset_leader(Session
*s
, bool keep_fdstore
) {
125 /* Clear fdstore if we're asked to, no matter if s->leader is set or not, so that when
126 * initially deserializing leader fd we clear the old fd too. */
127 (void) notify_remove_fd_warnf("session-%s-leader-fd", s
->id
);
128 s
->leader_fd_saved
= false;
131 if (!pidref_is_set(&s
->leader
))
134 s
->leader_pidfd_event_source
= sd_event_source_disable_unref(s
->leader_pidfd_event_source
);
136 (void) hashmap_remove_value(s
->manager
->sessions_by_leader
, &s
->leader
, s
);
138 return pidref_done(&s
->leader
);
141 Session
* session_free(Session
*s
) {
147 sd_event_source_unref(s
->stop_on_idle_event_source
);
150 LIST_REMOVE(gc_queue
, s
->manager
->session_gc_queue
, s
);
152 sd_event_source_unref(s
->timer_event_source
);
154 session_drop_controller(s
);
156 while ((sd
= hashmap_first(s
->devices
)))
157 session_device_free(sd
);
159 hashmap_free(s
->devices
);
162 LIST_REMOVE(sessions_by_user
, s
->user
->sessions
, s
);
164 if (s
->user
->display
== s
)
165 s
->user
->display
= NULL
;
167 user_update_last_session_timer(s
->user
);
171 if (s
->seat
->active
== s
)
172 s
->seat
->active
= NULL
;
173 if (s
->seat
->pending_switch
== s
)
174 s
->seat
->pending_switch
= NULL
;
176 seat_evict_position(s
->seat
, s
);
177 LIST_REMOVE(sessions_by_seat
, s
->seat
->sessions
, s
);
181 hashmap_remove(s
->manager
->session_units
, s
->scope
);
187 session_reset_leader(s
, /* keep_fdstore = */ true);
189 sd_bus_message_unref(s
->create_message
);
190 sd_bus_message_unref(s
->upgrade_message
);
194 free(s
->remote_host
);
195 free(s
->remote_user
);
199 hashmap_remove(s
->manager
->sessions
, s
->id
);
201 sd_event_source_unref(s
->fifo_event_source
);
202 safe_close(s
->fifo_fd
);
204 /* Note that we remove neither the state file nor the fifo path here, since we want both to survive
213 void session_set_user(Session
*s
, User
*u
) {
218 LIST_PREPEND(sessions_by_user
, u
->sessions
, s
);
220 user_update_last_session_timer(u
);
223 int session_set_leader_consume(Session
*s
, PidRef _leader
) {
224 _cleanup_(pidref_done
) PidRef pidref
= _leader
;
228 assert(pidref_is_set(&pidref
));
230 if (pidref_equal(&s
->leader
, &pidref
))
233 session_reset_leader(s
, /* keep_fdstore = */ false);
235 s
->leader
= TAKE_PIDREF(pidref
);
237 r
= session_watch_pidfd(s
);
239 return log_error_errno(r
, "Failed to watch leader pidfd for session '%s': %m", s
->id
);
241 r
= hashmap_ensure_put(&s
->manager
->sessions_by_leader
, &pidref_hash_ops
, &s
->leader
, s
);
246 if (s
->leader
.fd
>= 0) {
247 r
= notify_push_fdf(s
->leader
.fd
, "session-%s-leader-fd", s
->id
);
249 log_warning_errno(r
, "Failed to push leader pidfd for session '%s', ignoring: %m", s
->id
);
251 s
->leader_fd_saved
= true;
254 (void) audit_session_from_pid(s
->leader
.pid
, &s
->audit_id
);
259 static void session_save_devices(Session
*s
, FILE *f
) {
262 if (!hashmap_isempty(s
->devices
)) {
263 fprintf(f
, "DEVICES=");
264 HASHMAP_FOREACH(sd
, s
->devices
)
265 fprintf(f
, DEVNUM_FORMAT_STR
" ", DEVNUM_FORMAT_VAL(sd
->dev
));
270 int session_save(Session
*s
) {
271 _cleanup_(unlink_and_freep
) char *temp_path
= NULL
;
272 _cleanup_fclose_
FILE *f
= NULL
;
283 r
= mkdir_safe_label("/run/systemd/sessions", 0755, 0, 0, MKDIR_WARN_MODE
);
287 r
= fopen_temporary(s
->state_file
, &f
, &temp_path
);
291 (void) fchmod(fileno(f
), 0644);
294 "# This is private data. Do not parse.\n"
301 "LEADER_FD_SAVED=%s\n",
302 s
->user
->user_record
->uid
,
303 s
->user
->user_record
->user_name
,
304 one_zero(session_is_active(s
)),
305 one_zero(s
->user
->display
== s
),
306 session_state_to_string(session_get_state(s
)),
308 one_zero(s
->leader_fd_saved
));
311 fprintf(f
, "TYPE=%s\n", session_type_to_string(s
->type
));
313 if (s
->original_type
>= 0)
314 fprintf(f
, "ORIGINAL_TYPE=%s\n", session_type_to_string(s
->original_type
));
317 fprintf(f
, "CLASS=%s\n", session_class_to_string(s
->class));
320 fprintf(f
, "SCOPE=%s\n", s
->scope
);
322 fprintf(f
, "SCOPE_JOB=%s\n", s
->scope_job
);
325 fprintf(f
, "FIFO=%s\n", s
->fifo_path
);
328 fprintf(f
, "SEAT=%s\n", s
->seat
->id
);
331 fprintf(f
, "TTY=%s\n", s
->tty
);
333 if (s
->tty_validity
>= 0)
334 fprintf(f
, "TTY_VALIDITY=%s\n", tty_validity_to_string(s
->tty_validity
));
337 fprintf(f
, "DISPLAY=%s\n", s
->display
);
339 if (s
->remote_host
) {
340 _cleanup_free_
char *escaped
= NULL
;
342 escaped
= cescape(s
->remote_host
);
348 fprintf(f
, "REMOTE_HOST=%s\n", escaped
);
351 if (s
->remote_user
) {
352 _cleanup_free_
char *escaped
= NULL
;
354 escaped
= cescape(s
->remote_user
);
360 fprintf(f
, "REMOTE_USER=%s\n", escaped
);
364 _cleanup_free_
char *escaped
= NULL
;
366 escaped
= cescape(s
->service
);
372 fprintf(f
, "SERVICE=%s\n", escaped
);
376 _cleanup_free_
char *escaped
= NULL
;
378 escaped
= cescape(s
->desktop
);
384 fprintf(f
, "DESKTOP=%s\n", escaped
);
387 if (s
->seat
&& seat_has_vts(s
->seat
))
388 fprintf(f
, "VTNR=%u\n", s
->vtnr
);
391 fprintf(f
, "POSITION=%u\n", s
->position
);
393 if (pidref_is_set(&s
->leader
))
394 fprintf(f
, "LEADER="PID_FMT
"\n", s
->leader
.pid
);
396 if (audit_session_is_valid(s
->audit_id
))
397 fprintf(f
, "AUDIT=%"PRIu32
"\n", s
->audit_id
);
399 if (dual_timestamp_is_set(&s
->timestamp
))
401 "REALTIME="USEC_FMT
"\n"
402 "MONOTONIC="USEC_FMT
"\n",
403 s
->timestamp
.realtime
,
404 s
->timestamp
.monotonic
);
407 fprintf(f
, "CONTROLLER=%s\n", s
->controller
);
408 session_save_devices(s
, f
);
411 r
= fflush_and_check(f
);
415 if (rename(temp_path
, s
->state_file
) < 0) {
420 temp_path
= mfree(temp_path
);
424 (void) unlink(s
->state_file
);
426 return log_error_errno(r
, "Failed to save session data %s: %m", s
->state_file
);
429 static int session_load_devices(Session
*s
, const char *devices
) {
434 for (const char *p
= devices
;;) {
435 _cleanup_free_
char *word
= NULL
;
439 k
= extract_first_word(&p
, &word
, NULL
, 0);
445 k
= parse_devnum(word
, &dev
);
451 /* The file descriptors for loaded devices will be reattached later. */
452 RET_GATHER(r
, session_device_new(s
, dev
, /* open_device = */ false, /* ret = */ NULL
));
456 log_error_errno(r
, "Failed to load some session devices for session '%s': %m", s
->id
);
460 int session_load(Session
*s
) {
461 _cleanup_free_
char *remote
= NULL
,
463 *tty_validity
= NULL
,
468 *leader_fd_saved
= NULL
,
470 *original_type
= NULL
,
484 r
= parse_env_file(NULL
, s
->state_file
,
487 "SCOPE_JOB", &s
->scope_job
,
488 "FIFO", &s
->fifo_path
,
491 "TTY_VALIDITY", &tty_validity
,
492 "DISPLAY", &s
->display
,
493 "REMOTE_HOST", &s
->remote_host
,
494 "REMOTE_USER", &s
->remote_user
,
495 "SERVICE", &s
->service
,
496 "DESKTOP", &s
->desktop
,
499 "POSITION", &position
,
500 "LEADER", &leader_pid
,
501 "LEADER_FD_SAVED", &leader_fd_saved
,
503 "ORIGINAL_TYPE", &original_type
,
506 "REALTIME", &realtime
,
507 "MONOTONIC", &monotonic
,
508 "CONTROLLER", &controller
,
511 "IS_DISPLAY", &is_display
);
513 return log_error_errno(r
, "Failed to read %s: %m", s
->state_file
);
520 return log_error_errno(SYNTHETIC_ERRNO(ENOENT
),
521 "UID not specified for session %s",
524 r
= parse_uid(uid
, &u
);
526 log_error("Failed to parse UID value %s for session %s.", uid
, s
->id
);
530 user
= hashmap_get(s
->manager
->users
, UID_TO_PTR(u
));
532 return log_error_errno(SYNTHETIC_ERRNO(ENOENT
),
533 "User of session %s not known.",
536 session_set_user(s
, user
);
540 k
= parse_boolean(remote
);
546 safe_atou(vtnr
, &s
->vtnr
);
548 if (seat
&& !s
->seat
) {
551 o
= hashmap_get(s
->manager
->seats
, seat
);
553 r
= seat_attach_session(o
, s
);
555 log_error("Cannot attach session %s to seat %s", s
->id
, seat
);
558 if (!s
->seat
|| !seat_has_vts(s
->seat
))
561 if (position
&& s
->seat
) {
564 safe_atou(position
, &npos
);
565 seat_claim_position(s
->seat
, s
, npos
);
571 v
= tty_validity_from_string(tty_validity
);
573 log_debug("Failed to parse TTY validity: %s", tty_validity
);
581 t
= session_type_from_string(type
);
589 ot
= session_type_from_string(original_type
);
591 s
->original_type
= ot
;
593 /* Pre-v246 compat: initialize original_type if not set in the state file */
594 s
->original_type
= s
->type
;
599 c
= session_class_from_string(class);
604 if (streq_ptr(state
, "closing"))
610 /* If we open an unopened pipe for reading we will not
611 get an EOF. to trigger an EOF we hence open it for
612 writing, but close it right away which then will
613 trigger the EOF. This will happen immediately if no
614 other process has the FIFO open for writing, i. e.
615 when the session died before logind (re)started. */
617 fd
= session_create_fifo(s
);
622 (void) deserialize_usec(realtime
, &s
->timestamp
.realtime
);
624 (void) deserialize_usec(monotonic
, &s
->timestamp
.monotonic
);
627 k
= parse_boolean(active
);
633 /* Note that when enumerating users are loaded before sessions, hence the display session to use is
634 * something we have to store along with the session and not the user, as in that case we couldn't
635 * apply it at the time we load the user. */
637 k
= parse_boolean(is_display
);
639 log_warning_errno(k
, "Failed to parse IS_DISPLAY session property: %m");
641 s
->user
->display
= s
;
645 if (bus_name_has_owner(s
->manager
->bus
, controller
, NULL
) > 0) {
646 session_set_controller(s
, controller
, false, false);
647 session_load_devices(s
, devices
);
649 session_restore_vt(s
);
653 assert(!pidref_is_set(&s
->leader
));
655 r
= parse_pid(leader_pid
, &s
->deserialized_pid
);
657 return log_error_errno(r
, "Failed to parse LEADER=%s: %m", leader_pid
);
659 if (leader_fd_saved
) {
660 r
= parse_boolean(leader_fd_saved
);
662 return log_error_errno(r
, "Failed to parse LEADER_FD_SAVED=%s: %m", leader_fd_saved
);
663 s
->leader_fd_saved
= r
> 0;
665 if (s
->leader_fd_saved
)
666 /* The leader fd will be acquired from fdstore later */
670 _cleanup_(pidref_done
) PidRef p
= PIDREF_NULL
;
672 r
= pidref_set_pid(&p
, s
->deserialized_pid
);
674 r
= session_set_leader_consume(s
, TAKE_PIDREF(p
));
676 log_warning_errno(r
, "Failed to set leader PID for session '%s': %m", s
->id
);
682 int session_activate(Session
*s
) {
683 unsigned num_pending
;
691 if (s
->seat
->active
== s
)
694 /* on seats with VTs, we let VTs manage session-switching */
695 if (seat_has_vts(s
->seat
)) {
699 return chvt(s
->vtnr
);
702 /* On seats without VTs, we implement session-switching in logind. We
703 * try to pause all session-devices and wait until the session
704 * controller acknowledged them. Once all devices are asleep, we simply
705 * switch the active session and be done.
706 * We save the session we want to switch to in seat->pending_switch and
707 * seat_complete_switch() will perform the final switch. */
709 s
->seat
->pending_switch
= s
;
711 /* if no devices are running, immediately perform the session switch */
712 num_pending
= session_device_try_pause_all(s
);
714 seat_complete_switch(s
->seat
);
719 static int session_start_scope(Session
*s
, sd_bus_message
*properties
, sd_bus_error
*error
) {
720 _cleanup_free_
char *scope
= NULL
;
721 const char *description
;
727 if (!SESSION_CLASS_WANTS_SCOPE(s
->class))
733 s
->scope_job
= mfree(s
->scope_job
);
735 scope
= strjoin("session-", s
->id
, ".scope");
739 description
= strjoina("Session ", s
->id
, " of User ", s
->user
->user_record
->user_name
);
741 r
= manager_start_scope(
747 /* These should have been pulled in explicitly in user_start(). Just to be sure. */
748 STRV_MAKE_CONST(s
->user
->runtime_dir_unit
,
749 SESSION_CLASS_WANTS_SERVICE_MANAGER(s
->class) ? s
->user
->service_manager_unit
: NULL
),
750 /* We usually want to order session scopes after systemd-user-sessions.service
751 * since the unit is used as login session barrier for unprivileged users. However
752 * the barrier doesn't apply for root as sysadmin should always be able to log in
753 * (and without waiting for any timeout to expire) in case something goes wrong
754 * during the boot process. */
755 STRV_MAKE_CONST("systemd-logind.service",
756 SESSION_CLASS_IS_EARLY(s
->class) ? NULL
: "systemd-user-sessions.service"),
757 user_record_home_directory(s
->user
->user_record
),
762 return log_error_errno(r
, "Failed to start session scope %s: %s",
763 scope
, bus_error_message(error
, r
));
765 s
->scope
= TAKE_PTR(scope
);
768 (void) hashmap_put(s
->manager
->session_units
, s
->scope
, s
);
772 static int session_dispatch_stop_on_idle(sd_event_source
*source
, uint64_t t
, void *userdata
) {
773 Session
*s
= userdata
;
782 idle
= session_get_idle_hint(s
, &ts
);
784 log_info("Session \"%s\" of user \"%s\" is idle, stopping.", s
->id
, s
->user
->user_record
->user_name
);
786 return session_stop(s
, /* force */ true);
789 r
= sd_event_source_set_time(
791 usec_add(dual_timestamp_is_set(&ts
) ? ts
.monotonic
: now(CLOCK_MONOTONIC
),
792 s
->manager
->stop_idle_session_usec
));
794 return log_error_errno(r
, "Failed to configure stop on idle session event source: %m");
796 r
= sd_event_source_set_enabled(source
, SD_EVENT_ONESHOT
);
798 return log_error_errno(r
, "Failed to enable stop on idle session event source: %m");
803 static int session_setup_stop_on_idle_timer(Session
*s
) {
808 if (s
->manager
->stop_idle_session_usec
== USEC_INFINITY
|| !SESSION_CLASS_CAN_STOP_ON_IDLE(s
->class))
811 r
= sd_event_add_time_relative(
813 &s
->stop_on_idle_event_source
,
815 s
->manager
->stop_idle_session_usec
,
817 session_dispatch_stop_on_idle
, s
);
819 return log_error_errno(r
, "Failed to add stop on idle session event source: %m");
824 int session_start(Session
*s
, sd_bus_message
*properties
, sd_bus_error
*error
) {
838 r
= user_start(s
->user
);
842 r
= session_start_scope(s
, properties
, error
);
846 r
= session_setup_stop_on_idle_timer(s
);
850 log_struct(s
->class == SESSION_BACKGROUND
? LOG_DEBUG
: LOG_INFO
,
851 "MESSAGE_ID=" SD_MESSAGE_SESSION_START_STR
,
852 "SESSION_ID=%s", s
->id
,
853 "USER_ID=%s", s
->user
->user_record
->user_name
,
854 "LEADER="PID_FMT
, s
->leader
.pid
,
855 LOG_MESSAGE("New session %s of user %s.", s
->id
, s
->user
->user_record
->user_name
));
857 if (!dual_timestamp_is_set(&s
->timestamp
))
858 dual_timestamp_now(&s
->timestamp
);
861 seat_read_active_vt(s
->seat
);
865 user_elect_display(s
->user
);
868 (void) session_save(s
);
869 (void) user_save(s
->user
);
871 (void) seat_save(s
->seat
);
874 session_send_signal(s
, true);
875 user_send_changed(s
->user
, "Display", NULL
);
877 if (s
->seat
&& s
->seat
->active
== s
)
878 (void) seat_send_changed(s
->seat
, "ActiveSession", NULL
);
883 static int session_stop_scope(Session
*s
, bool force
) {
884 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
892 /* Let's always abandon the scope first. This tells systemd that we are not interested anymore, and everything
893 * that is left in the scope is "left-over". Informing systemd about this has the benefit that it will log
894 * when killing any processes left after this point. */
895 r
= manager_abandon_scope(s
->manager
, s
->scope
, &error
);
897 log_warning_errno(r
, "Failed to abandon session scope, ignoring: %s", bus_error_message(&error
, r
));
898 sd_bus_error_free(&error
);
901 s
->scope_job
= mfree(s
->scope_job
);
903 /* Optionally, let's kill everything that's left now. */
905 (s
->user
->user_record
->kill_processes
!= 0 &&
906 (s
->user
->user_record
->kill_processes
> 0 ||
907 manager_shall_kill(s
->manager
, s
->user
->user_record
->user_name
)))) {
909 r
= manager_stop_unit(s
->manager
, s
->scope
, force
? "replace" : "fail", &error
, &s
->scope_job
);
912 return log_error_errno(r
, "Failed to stop session scope: %s", bus_error_message(&error
, r
));
914 log_warning_errno(r
, "Failed to stop session scope, ignoring: %s", bus_error_message(&error
, r
));
918 /* With no killing, this session is allowed to persist in "closing" state indefinitely.
919 * Therefore session stop and session removal may be two distinct events.
920 * Session stop is quite significant on its own, let's log it. */
921 log_struct(s
->class == SESSION_BACKGROUND
? LOG_DEBUG
: LOG_INFO
,
922 "SESSION_ID=%s", s
->id
,
923 "USER_ID=%s", s
->user
->user_record
->user_name
,
924 "LEADER="PID_FMT
, s
->leader
.pid
,
925 LOG_MESSAGE("Session %s logged out. Waiting for processes to exit.", s
->id
));
931 int session_stop(Session
*s
, bool force
) {
936 /* This is called whenever we begin with tearing down a session record. It's called in four cases: explicit API
937 * request via the bus (either directly for the session object or for the seat or user object this session
938 * belongs to; 'force' is true), or due to automatic GC (i.e. scope vanished; 'force' is false), or because the
939 * session FIFO saw an EOF ('force' is false), or because the release timer hit ('force' is false). */
948 s
->timer_event_source
= sd_event_source_unref(s
->timer_event_source
);
949 s
->leader_pidfd_event_source
= sd_event_source_unref(s
->leader_pidfd_event_source
);
952 seat_evict_position(s
->seat
, s
);
954 /* We are going down, don't care about FIFOs anymore */
955 session_remove_fifo(s
);
958 r
= session_stop_scope(s
, force
);
962 user_elect_display(s
->user
);
964 (void) session_save(s
);
965 (void) user_save(s
->user
);
970 int session_finalize(Session
*s
) {
979 log_struct(s
->class == SESSION_BACKGROUND
? LOG_DEBUG
: LOG_INFO
,
980 "MESSAGE_ID=" SD_MESSAGE_SESSION_STOP_STR
,
981 "SESSION_ID=%s", s
->id
,
982 "USER_ID=%s", s
->user
->user_record
->user_name
,
983 "LEADER="PID_FMT
, s
->leader
.pid
,
984 LOG_MESSAGE("Removed session %s.", s
->id
));
986 s
->timer_event_source
= sd_event_source_unref(s
->timer_event_source
);
989 seat_evict_position(s
->seat
, s
);
991 /* Kill session devices */
992 while ((sd
= hashmap_first(s
->devices
)))
993 session_device_free(sd
);
995 (void) unlink(s
->state_file
);
996 session_add_to_gc_queue(s
);
997 user_add_to_gc_queue(s
->user
);
1000 session_send_signal(s
, false);
1005 if (s
->seat
->active
== s
)
1006 seat_set_active(s
->seat
, NULL
);
1011 session_reset_leader(s
, /* keep_fdstore = */ false);
1013 (void) user_save(s
->user
);
1014 (void) user_send_changed(s
->user
, "Display", NULL
);
1019 static int release_timeout_callback(sd_event_source
*es
, uint64_t usec
, void *userdata
) {
1020 Session
*s
= ASSERT_PTR(userdata
);
1024 session_stop(s
, /* force = */ false);
1028 int session_release(Session
*s
) {
1031 if (!s
->started
|| s
->stopping
)
1034 if (s
->timer_event_source
)
1037 return sd_event_add_time_relative(
1039 &s
->timer_event_source
,
1042 release_timeout_callback
, s
);
1045 bool session_is_active(Session
*s
) {
1051 return s
->seat
->active
== s
;
1054 static int get_tty_atime(const char *tty
, usec_t
*atime
) {
1055 _cleanup_free_
char *p
= NULL
;
1061 if (!path_is_absolute(tty
)) {
1062 p
= path_join("/dev", tty
);
1067 } else if (!path_startswith(tty
, "/dev/"))
1070 if (lstat(tty
, &st
) < 0)
1073 *atime
= timespec_load(&st
.st_atim
);
1077 static int get_process_ctty_atime(pid_t pid
, usec_t
*atime
) {
1078 _cleanup_free_
char *p
= NULL
;
1084 r
= get_ctty(pid
, NULL
, &p
);
1088 return get_tty_atime(p
, atime
);
1091 int session_get_idle_hint(Session
*s
, dual_timestamp
*t
) {
1092 usec_t atime
= 0, dtime
= 0;
1097 /* Graphical sessions have an explicit idle hint */
1098 if (SESSION_TYPE_IS_GRAPHICAL(s
->type
)) {
1100 *t
= s
->idle_hint_timestamp
;
1102 return s
->idle_hint
;
1105 if (s
->type
== SESSION_TTY
) {
1106 /* For sessions with an explicitly configured tty, let's check its atime */
1108 r
= get_tty_atime(s
->tty
, &atime
);
1113 /* For sessions with a leader but no explicitly configured tty, let's check the controlling tty of
1115 if (pidref_is_set(&s
->leader
)) {
1116 r
= get_process_ctty_atime(s
->leader
.pid
, &atime
);
1123 *t
= DUAL_TIMESTAMP_NULL
;
1129 dual_timestamp_from_realtime(t
, atime
);
1131 if (s
->manager
->idle_action_usec
> 0 && s
->manager
->stop_idle_session_usec
!= USEC_INFINITY
)
1132 dtime
= MIN(s
->manager
->idle_action_usec
, s
->manager
->stop_idle_session_usec
);
1133 else if (s
->manager
->idle_action_usec
> 0)
1134 dtime
= s
->manager
->idle_action_usec
;
1135 else if (s
->manager
->stop_idle_session_usec
!= USEC_INFINITY
)
1136 dtime
= s
->manager
->stop_idle_session_usec
;
1140 return usec_add(atime
, dtime
) <= now(CLOCK_REALTIME
);
1143 int session_set_idle_hint(Session
*s
, bool b
) {
1146 if (!SESSION_CLASS_CAN_IDLE(s
->class)) /* Only some session classes know the idle concept at all */
1148 if (!SESSION_TYPE_IS_GRAPHICAL(s
->type
)) /* And only graphical session types can set the field explicitly */
1151 if (s
->idle_hint
== b
)
1155 dual_timestamp_now(&s
->idle_hint_timestamp
);
1157 session_send_changed(s
, "IdleHint", "IdleSinceHint", "IdleSinceHintMonotonic", NULL
);
1160 seat_send_changed(s
->seat
, "IdleHint", "IdleSinceHint", "IdleSinceHintMonotonic", NULL
);
1162 user_send_changed(s
->user
, "IdleHint", "IdleSinceHint", "IdleSinceHintMonotonic", NULL
);
1163 manager_send_changed(s
->manager
, "IdleHint", "IdleSinceHint", "IdleSinceHintMonotonic", NULL
);
1168 int session_get_locked_hint(Session
*s
) {
1171 return s
->locked_hint
;
1174 int session_set_locked_hint(Session
*s
, bool b
) {
1177 if (!SESSION_CLASS_CAN_LOCK(s
->class))
1180 if (s
->locked_hint
== b
)
1184 (void) session_save(s
);
1185 (void) session_send_changed(s
, "LockedHint", NULL
);
1190 void session_set_type(Session
*s
, SessionType t
) {
1197 (void) session_save(s
);
1198 (void) session_send_changed(s
, "Type", NULL
);
1201 void session_set_class(Session
*s
, SessionClass c
) {
1208 (void) session_save(s
);
1209 (void) session_send_changed(s
, "Class", NULL
);
1211 /* This class change might mean we need the per-user session manager now. Try to start it. */
1212 (void) user_start_service_manager(s
->user
);
1215 int session_set_display(Session
*s
, const char *display
) {
1221 r
= free_and_strdup(&s
->display
, display
);
1222 if (r
<= 0) /* 0 means the strings were equal */
1225 (void) session_save(s
);
1226 (void) session_send_changed(s
, "Display", NULL
);
1231 int session_set_tty(Session
*s
, const char *tty
) {
1237 r
= free_and_strdup(&s
->tty
, tty
);
1238 if (r
<= 0) /* 0 means the strings were equal */
1241 (void) session_save(s
);
1242 (void) session_send_changed(s
, "TTY", NULL
);
1247 static int session_dispatch_fifo(sd_event_source
*es
, int fd
, uint32_t revents
, void *userdata
) {
1248 Session
*s
= ASSERT_PTR(userdata
);
1250 assert(s
->fifo_fd
== fd
);
1252 /* EOF on the FIFO means the session died abnormally. */
1254 session_remove_fifo(s
);
1255 session_stop(s
, /* force = */ false);
1260 int session_create_fifo(Session
*s
) {
1266 if (!s
->fifo_path
) {
1267 r
= mkdir_safe_label("/run/systemd/sessions", 0755, 0, 0, MKDIR_WARN_MODE
);
1271 s
->fifo_path
= strjoin("/run/systemd/sessions/", s
->id
, ".ref");
1275 if (mkfifo(s
->fifo_path
, 0600) < 0 && errno
!= EEXIST
)
1279 /* Open reading side */
1280 if (s
->fifo_fd
< 0) {
1281 s
->fifo_fd
= open(s
->fifo_path
, O_RDONLY
|O_CLOEXEC
|O_NONBLOCK
);
1286 if (!s
->fifo_event_source
) {
1287 r
= sd_event_add_io(s
->manager
->event
, &s
->fifo_event_source
, s
->fifo_fd
, 0, session_dispatch_fifo
, s
);
1291 /* Let's make sure we noticed dead sessions before we process new bus requests (which might
1292 * create new sessions). */
1293 r
= sd_event_source_set_priority(s
->fifo_event_source
, SD_EVENT_PRIORITY_NORMAL
-10);
1298 /* Open writing side */
1299 return RET_NERRNO(open(s
->fifo_path
, O_WRONLY
|O_CLOEXEC
|O_NONBLOCK
));
1302 static void session_remove_fifo(Session
*s
) {
1305 s
->fifo_event_source
= sd_event_source_unref(s
->fifo_event_source
);
1306 s
->fifo_fd
= safe_close(s
->fifo_fd
);
1307 s
->fifo_path
= unlink_and_free(s
->fifo_path
);
1310 bool session_may_gc(Session
*s
, bool drop_not_started
) {
1315 if (drop_not_started
&& !s
->started
)
1321 r
= pidref_is_alive(&s
->leader
);
1323 /* Session has no leader. This is probably because the leader vanished before deserializing
1324 * pidfd from FD store. */
1327 log_debug_errno(r
, "Unable to determine if leader PID " PID_FMT
" is still alive, assuming not: %m", s
->leader
.pid
);
1331 if (s
->fifo_fd
>= 0 && pipe_eof(s
->fifo_fd
) <= 0)
1335 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
1337 r
= manager_job_is_active(s
->manager
, s
->scope_job
, &error
);
1339 log_debug_errno(r
, "Failed to determine whether job '%s' is pending, ignoring: %s", s
->scope_job
, bus_error_message(&error
, r
));
1345 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
1347 r
= manager_unit_is_active(s
->manager
, s
->scope
, &error
);
1349 log_debug_errno(r
, "Failed to determine whether unit '%s' is active, ignoring: %s", s
->scope
, bus_error_message(&error
, r
));
1357 void session_add_to_gc_queue(Session
*s
) {
1363 LIST_PREPEND(gc_queue
, s
->manager
->session_gc_queue
, s
);
1364 s
->in_gc_queue
= true;
1367 SessionState
session_get_state(Session
*s
) {
1370 /* always check closing first */
1371 if (s
->stopping
|| s
->timer_event_source
)
1372 return SESSION_CLOSING
;
1374 if (s
->scope_job
|| (!pidref_is_set(&s
->leader
) && s
->fifo_fd
< 0))
1375 return SESSION_OPENING
;
1377 if (session_is_active(s
))
1378 return SESSION_ACTIVE
;
1380 return SESSION_ONLINE
;
1383 int session_kill(Session
*s
, KillWho who
, int signo
) {
1389 return manager_kill_unit(s
->manager
, s
->scope
, who
, signo
, NULL
);
1392 static int session_open_vt(Session
*s
, bool reopen
) {
1393 _cleanup_close_
int fd
= -EBADF
;
1394 char path
[sizeof("/dev/tty") + DECIMAL_STR_MAX(s
->vtnr
)];
1401 if (!reopen
&& s
->vtfd
>= 0)
1404 sprintf(path
, "/dev/tty%u", s
->vtnr
);
1406 fd
= open_terminal(path
, O_RDWR
| O_CLOEXEC
| O_NONBLOCK
| O_NOCTTY
);
1408 return log_error_errno(fd
, "Cannot open VT %s of session %s: %m", path
, s
->id
);
1410 close_and_replace(s
->vtfd
, fd
);
1414 static int session_prepare_vt(Session
*s
) {
1416 struct vt_mode mode
= {};
1423 vt
= session_open_vt(s
, /* reopen = */ false);
1427 r
= fchown(vt
, s
->user
->user_record
->uid
, -1);
1429 r
= log_error_errno(errno
,
1430 "Cannot change owner of /dev/tty%u: %m",
1435 r
= ioctl(vt
, KDSKBMODE
, K_OFF
);
1437 r
= log_error_errno(errno
,
1438 "Cannot set K_OFF on /dev/tty%u: %m",
1443 r
= ioctl(vt
, KDSETMODE
, KD_GRAPHICS
);
1445 r
= log_error_errno(errno
,
1446 "Cannot set KD_GRAPHICS on /dev/tty%u: %m",
1451 /* Oh, thanks to the VT layer, VT_AUTO does not work with KD_GRAPHICS.
1452 * So we need a dummy handler here which just acknowledges *all* VT
1453 * switch requests. */
1454 mode
.mode
= VT_PROCESS
;
1455 mode
.relsig
= SIGRTMIN
;
1456 mode
.acqsig
= SIGRTMIN
+ 1;
1457 r
= ioctl(vt
, VT_SETMODE
, &mode
);
1459 r
= log_error_errno(errno
,
1460 "Cannot set VT_PROCESS on /dev/tty%u: %m",
1468 session_restore_vt(s
);
1472 static void session_restore_vt(Session
*s
) {
1480 r
= vt_restore(s
->vtfd
);
1482 /* It might happen if the controlling process exited before or while we were
1483 * restoring the VT as it would leave the old file-descriptor in a hung-up
1484 * state. In this case let's retry with a fresh handle to the virtual terminal. */
1486 /* We do a little dance to avoid having the terminal be available
1487 * for reuse before we've cleaned it up. */
1489 int fd
= session_open_vt(s
, /* reopen = */ true);
1494 log_warning_errno(r
, "Failed to restore VT, ignoring: %m");
1496 s
->vtfd
= safe_close(s
->vtfd
);
1499 void session_leave_vt(Session
*s
) {
1504 /* This is called whenever we get a VT-switch signal from the kernel.
1505 * We acknowledge all of them unconditionally. Note that session are
1506 * free to overwrite those handlers and we only register them for
1507 * sessions with controllers. Legacy sessions are not affected.
1508 * However, if we switch from a non-legacy to a legacy session, we must
1509 * make sure to pause all device before acknowledging the switch. We
1510 * process the real switch only after we are notified via sysfs, so the
1511 * legacy session might have already started using the devices. If we
1512 * don't pause the devices before the switch, we might confuse the
1513 * session we switch to. */
1518 session_device_pause_all(s
);
1519 r
= vt_release(s
->vtfd
, /* restore = */ false);
1521 /* Handle the same VT hung-up case as in session_restore_vt */
1523 int fd
= session_open_vt(s
, /* reopen = */ true);
1525 r
= vt_release(fd
, /* restore = */ false);
1528 log_debug_errno(r
, "Cannot release VT of session %s: %m", s
->id
);
1531 bool session_is_controller(Session
*s
, const char *sender
) {
1532 return streq_ptr(ASSERT_PTR(s
)->controller
, sender
);
1535 static void session_release_controller(Session
*s
, bool notify
) {
1536 _unused_ _cleanup_free_
char *name
= NULL
;
1544 name
= s
->controller
;
1546 /* By resetting the controller before releasing the devices, we won't send notification signals.
1547 * This avoids sending useless notifications if the controller is released on disconnects. */
1549 s
->controller
= NULL
;
1551 while ((sd
= hashmap_first(s
->devices
)))
1552 session_device_free(sd
);
1554 s
->controller
= NULL
;
1555 s
->track
= sd_bus_track_unref(s
->track
);
1558 static int on_bus_track(sd_bus_track
*track
, void *userdata
) {
1559 Session
*s
= ASSERT_PTR(userdata
);
1563 session_drop_controller(s
);
1568 int session_set_controller(Session
*s
, const char *sender
, bool force
, bool prepare
) {
1569 _cleanup_free_
char *name
= NULL
;
1575 if (session_is_controller(s
, sender
))
1577 if (s
->controller
&& !force
)
1580 name
= strdup(sender
);
1584 s
->track
= sd_bus_track_unref(s
->track
);
1585 r
= sd_bus_track_new(s
->manager
->bus
, &s
->track
, on_bus_track
, s
);
1589 r
= sd_bus_track_add_name(s
->track
, name
);
1593 /* When setting a session controller, we forcibly mute the VT and set
1594 * it into graphics-mode. Applications can override that by changing
1595 * VT state after calling TakeControl(). However, this serves as a good
1596 * default and well-behaving controllers can now ignore VTs entirely.
1597 * Note that we reset the VT on ReleaseControl() and if the controller
1599 * If logind crashes/restarts, we restore the controller during restart
1600 * (without preparing the VT since the controller has probably overridden
1601 * VT state by now) or reset the VT in case it crashed/exited, too. */
1603 r
= session_prepare_vt(s
);
1605 s
->track
= sd_bus_track_unref(s
->track
);
1610 session_release_controller(s
, true);
1611 s
->controller
= TAKE_PTR(name
);
1612 (void) session_save(s
);
1617 void session_drop_controller(Session
*s
) {
1623 s
->track
= sd_bus_track_unref(s
->track
);
1624 session_set_type(s
, s
->original_type
);
1625 session_release_controller(s
, false);
1626 (void) session_save(s
);
1627 session_restore_vt(s
);
1630 static const char* const session_state_table
[_SESSION_STATE_MAX
] = {
1631 [SESSION_OPENING
] = "opening",
1632 [SESSION_ONLINE
] = "online",
1633 [SESSION_ACTIVE
] = "active",
1634 [SESSION_CLOSING
] = "closing",
1637 DEFINE_STRING_TABLE_LOOKUP(session_state
, SessionState
);
1639 static const char* const session_type_table
[_SESSION_TYPE_MAX
] = {
1640 [SESSION_UNSPECIFIED
] = "unspecified",
1641 [SESSION_TTY
] = "tty",
1642 [SESSION_X11
] = "x11",
1643 [SESSION_WAYLAND
] = "wayland",
1644 [SESSION_MIR
] = "mir",
1645 [SESSION_WEB
] = "web",
1648 DEFINE_STRING_TABLE_LOOKUP(session_type
, SessionType
);
1650 static const char* const session_class_table
[_SESSION_CLASS_MAX
] = {
1651 [SESSION_USER
] = "user",
1652 [SESSION_USER_EARLY
] = "user-early",
1653 [SESSION_USER_INCOMPLETE
] = "user-incomplete",
1654 [SESSION_GREETER
] = "greeter",
1655 [SESSION_LOCK_SCREEN
] = "lock-screen",
1656 [SESSION_BACKGROUND
] = "background",
1657 [SESSION_BACKGROUND_LIGHT
] = "background-light",
1658 [SESSION_MANAGER
] = "manager",
1659 [SESSION_MANAGER_EARLY
] = "manager-early",
1662 DEFINE_STRING_TABLE_LOOKUP(session_class
, SessionClass
);
1664 static const char* const kill_who_table
[_KILL_WHO_MAX
] = {
1665 [KILL_LEADER
] = "leader",
1669 DEFINE_STRING_TABLE_LOOKUP(kill_who
, KillWho
);
1671 static const char* const tty_validity_table
[_TTY_VALIDITY_MAX
] = {
1672 [TTY_FROM_PAM
] = "from-pam",
1673 [TTY_FROM_UTMP
] = "from-utmp",
1674 [TTY_UTMP_INCONSISTENT
] = "utmp-inconsistent",
1677 DEFINE_STRING_TABLE_LOOKUP(tty_validity
, TTYValidity
);