]>
git.ipfire.org Git - thirdparty/systemd.git/blob - src/shared/pager.c
1 /* SPDX-License-Identifier: LGPL-2.1-or-later */
18 #include "locale-util.h"
22 #include "process-util.h"
23 #include "rlimit-util.h"
24 #include "signal-util.h"
25 #include "string-util.h"
27 #include "terminal-util.h"
30 static pid_t pager_pid
= 0;
32 static int stored_stdout
= -1;
33 static int stored_stderr
= -1;
34 static bool stdout_redirected
= false;
35 static bool stderr_redirected
= false;
37 _noreturn_
static void pager_fallback(void) {
40 r
= copy_bytes(STDIN_FILENO
, STDOUT_FILENO
, (uint64_t) -1, 0);
42 log_error_errno(r
, "Internal pager failed: %m");
49 static int no_quit_on_interrupt(int exe_name_fd
, const char *less_opts
) {
50 _cleanup_fclose_
FILE *file
= NULL
;
51 _cleanup_free_
char *line
= NULL
;
54 assert(exe_name_fd
>= 0);
57 /* This takes ownership of exe_name_fd */
58 file
= fdopen(exe_name_fd
, "r");
60 safe_close(exe_name_fd
);
61 return log_error_errno(errno
, "Failed to create FILE object: %m");
64 /* Find the last line */
66 _cleanup_free_
char *t
= NULL
;
68 r
= read_line(file
, LONG_LINE_MAX
, &t
);
70 return log_error_errno(r
, "Failed to read from socket: %m");
74 free_and_replace(line
, t
);
77 /* We only treat "less" specially.
78 * Return true whenever option K is *not* set. */
79 r
= streq_ptr(line
, "less") && !strchr(less_opts
, 'K');
81 log_debug("Pager executable is \"%s\", options \"%s\", quit_on_interrupt: %s",
82 strnull(line
), less_opts
, yes_no(!r
));
86 int pager_open(PagerFlags flags
) {
87 _cleanup_close_pair_
int fd
[2] = { -1, -1 }, exe_name_pipe
[2] = { -1, -1 };
88 _cleanup_strv_free_
char **pager_args
= NULL
;
89 const char *pager
, *less_opts
;
92 if (flags
& PAGER_DISABLE
)
98 if (terminal_is_dumb())
101 if (!is_main_thread())
102 return log_error_errno(SYNTHETIC_ERRNO(EPERM
), "Pager invoked from wrong thread.");
104 pager
= getenv("SYSTEMD_PAGER");
106 pager
= getenv("PAGER");
109 pager_args
= strv_split(pager
, WHITESPACE
);
113 /* If the pager is explicitly turned off, honour it */
114 if (strv_isempty(pager_args
) || strv_equal(pager_args
, STRV_MAKE("cat")))
118 /* Determine and cache number of columns/lines before we spawn the pager so that we get the value from the
123 if (pipe2(fd
, O_CLOEXEC
) < 0)
124 return log_error_errno(errno
, "Failed to create pager pipe: %m");
126 /* This is a pipe to feed the name of the executed pager binary into the parent */
127 if (pipe2(exe_name_pipe
, O_CLOEXEC
) < 0)
128 return log_error_errno(errno
, "Failed to create exe_name pipe: %m");
130 /* Initialize a good set of less options */
131 less_opts
= getenv("SYSTEMD_LESS");
133 less_opts
= "FRSXMK";
134 if (flags
& PAGER_JUMP_TO_END
)
135 less_opts
= strjoina(less_opts
, " +G");
137 /* We set SIGINT as PR_DEATHSIG signal here, to match the "K" parameter we set in $LESS, which enables SIGINT behaviour. */
138 r
= safe_fork("(pager)", FORK_RESET_SIGNALS
|FORK_DEATHSIG_SIGINT
|FORK_RLIMIT_NOFILE_SAFE
|FORK_LOG
, &pager_pid
);
142 const char *less_charset
, *exe
;
144 /* In the child start the pager */
146 if (dup2(fd
[0], STDIN_FILENO
) < 0) {
147 log_error_errno(errno
, "Failed to duplicate file descriptor to STDIN: %m");
153 if (setenv("LESS", less_opts
, 1) < 0) {
154 log_error_errno(errno
, "Failed to set environment variable LESS: %m");
158 /* Initialize a good charset for less. This is particularly important if we output UTF-8
160 less_charset
= getenv("SYSTEMD_LESSCHARSET");
161 if (!less_charset
&& is_locale_utf8())
162 less_charset
= "utf-8";
164 setenv("LESSCHARSET", less_charset
, 1) < 0) {
165 log_error_errno(errno
, "Failed to set environment variable LESSCHARSET: %m");
169 /* People might invoke us from sudo, don't needlessly allow less to be a way to shell out
170 * privileged stuff. If the user set $SYSTEMD_PAGERSECURE, trust their configuration of the
171 * pager. If they didn't, use secure mode when under euid is changed. If $SYSTEMD_PAGERSECURE
172 * wasn't explicitly set, and we autodetect the need for secure mode, only use the pager we
173 * know to be good. */
174 int use_secure_mode
= getenv_bool_secure("SYSTEMD_PAGERSECURE");
175 bool trust_pager
= use_secure_mode
>= 0;
176 if (use_secure_mode
== -ENXIO
) {
179 r
= sd_pid_get_owner_uid(0, &uid
);
181 log_debug_errno(r
, "sd_pid_get_owner_uid() failed, enabling pager secure mode: %m");
183 use_secure_mode
= r
< 0 || uid
!= geteuid();
185 } else if (use_secure_mode
< 0) {
186 log_warning_errno(use_secure_mode
, "Unable to parse $SYSTEMD_PAGERSECURE, assuming true: %m");
187 use_secure_mode
= true;
190 /* We generally always set variables used by less, even if we end up using a different pager.
191 * They shouldn't hurt in any case, and ideally other pagers would look at them too. */
192 r
= set_unset_env("LESSSECURE", use_secure_mode
? "1" : NULL
, true);
194 log_error_errno(r
, "Failed to adjust environment variable LESSSECURE: %m");
198 if (trust_pager
&& pager_args
) { /* The pager config might be set globally, and we cannot
199 * know if the user adjusted it to be appropriate for the
200 * secure mode. Thus, start the pager specified through
201 * envvars only when $SYSTEMD_PAGERSECURE was explicitly set
203 r
= loop_write(exe_name_pipe
[1], pager_args
[0], strlen(pager_args
[0]) + 1, false);
205 log_error_errno(r
, "Failed to write pager name to socket: %m");
209 execvp(pager_args
[0], pager_args
);
210 log_full_errno(errno
== ENOENT
? LOG_DEBUG
: LOG_WARNING
, errno
,
211 "Failed to execute '%s', using fallback pagers: %m", pager_args
[0]);
214 /* Debian's alternatives command for pagers is called 'pager'. Note that we do not call
215 * sensible-pagers here, since that is just a shell script that implements a logic that is
216 * similar to this one anyway, but is Debian-specific. */
217 FOREACH_STRING(exe
, "pager", "less", "more") {
218 /* Only less implements secure mode right now. */
219 if (use_secure_mode
&& !streq(exe
, "less"))
222 r
= loop_write(exe_name_pipe
[1], exe
, strlen(exe
) + 1, false);
224 log_error_errno(r
, "Failed to write pager name to socket: %m");
227 execlp(exe
, exe
, NULL
);
228 log_full_errno(errno
== ENOENT
? LOG_DEBUG
: LOG_WARNING
, errno
,
229 "Failed to execute '%s', using next fallback pager: %m", exe
);
232 /* Our builtin is also very secure. */
233 r
= loop_write(exe_name_pipe
[1], "(built-in)", strlen("(built-in)") + 1, false);
235 log_error_errno(r
, "Failed to write pager name to socket: %m");
238 /* Close pipe to signal the parent to start sending data */
239 safe_close_pair(exe_name_pipe
);
244 /* Return in the parent */
245 stored_stdout
= fcntl(STDOUT_FILENO
, F_DUPFD_CLOEXEC
, 3);
246 if (dup2(fd
[1], STDOUT_FILENO
) < 0) {
247 stored_stdout
= safe_close(stored_stdout
);
248 return log_error_errno(errno
, "Failed to duplicate pager pipe: %m");
250 stdout_redirected
= true;
252 stored_stderr
= fcntl(STDERR_FILENO
, F_DUPFD_CLOEXEC
, 3);
253 if (dup2(fd
[1], STDERR_FILENO
) < 0) {
254 stored_stderr
= safe_close(stored_stderr
);
255 return log_error_errno(errno
, "Failed to duplicate pager pipe: %m");
257 stderr_redirected
= true;
259 exe_name_pipe
[1] = safe_close(exe_name_pipe
[1]);
261 r
= no_quit_on_interrupt(TAKE_FD(exe_name_pipe
[0]), less_opts
);
265 (void) ignore_signals(SIGINT
, -1);
270 void pager_close(void) {
275 /* Inform pager that we are done */
276 (void) fflush(stdout
);
277 if (stdout_redirected
)
278 if (stored_stdout
< 0 || dup2(stored_stdout
, STDOUT_FILENO
) < 0)
279 (void) close(STDOUT_FILENO
);
280 stored_stdout
= safe_close(stored_stdout
);
281 (void) fflush(stderr
);
282 if (stderr_redirected
)
283 if (stored_stderr
< 0 || dup2(stored_stderr
, STDERR_FILENO
) < 0)
284 (void) close(STDERR_FILENO
);
285 stored_stderr
= safe_close(stored_stderr
);
286 stdout_redirected
= stderr_redirected
= false;
288 (void) kill(pager_pid
, SIGCONT
);
289 (void) wait_for_terminate(pager_pid
, NULL
);
293 bool pager_have(void) {
294 return pager_pid
> 0;
297 int show_man_page(const char *desc
, bool null_stdio
) {
298 const char *args
[4] = { "man", NULL
, NULL
, NULL
};
306 if (desc
[k
-1] == ')')
307 e
= strrchr(desc
, '(');
310 char *page
= NULL
, *section
= NULL
;
312 page
= strndupa(desc
, e
- desc
);
313 section
= strndupa(e
+ 1, desc
+ k
- e
- 2);
320 r
= safe_fork("(man)", FORK_RESET_SIGNALS
|FORK_DEATHSIG
|(null_stdio
? FORK_NULL_STDIO
: 0)|FORK_RLIMIT_NOFILE_SAFE
|FORK_LOG
, &pid
);
325 execvp(args
[0], (char**) args
);
326 log_error_errno(errno
, "Failed to execute man: %m");
330 return wait_for_terminate_and_check(NULL
, pid
, 0);