]> git.ipfire.org Git - thirdparty/systemd.git/blob - src/udev/udev-rules.c
projects / thirdparty / systemd.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge pull request #13500 from yuwata/udev-fix-static_node
[thirdparty/systemd.git] / src / udev / udev-rules.c
1 /* SPDX-License-Identifier: GPL-2.0+ */
2
3 #include <ctype.h>
4
5 #include "alloc-util.h"
6 #include "conf-files.h"
7 #include "def.h"
8 #include "device-util.h"
9 #include "dirent-util.h"
10 #include "escape.h"
11 #include "fd-util.h"
12 #include "fileio.h"
13 #include "format-util.h"
14 #include "fs-util.h"
15 #include "glob-util.h"
16 #include "libudev-util.h"
17 #include "list.h"
18 #include "mkdir.h"
19 #include "nulstr-util.h"
20 #include "parse-util.h"
21 #include "path-util.h"
22 #include "proc-cmdline.h"
23 #include "stat-util.h"
24 #include "strv.h"
25 #include "strxcpyx.h"
26 #include "sysctl-util.h"
27 #include "udev-builtin.h"
28 #include "udev-event.h"
29 #include "udev-rules.h"
30 #include "user-util.h"
31
32 #define RULES_DIRS (const char* const*) CONF_PATHS_STRV("udev/rules.d")
33
34 typedef enum {
35 OP_MATCH, /* == */
36 OP_NOMATCH, /* != */
37 OP_ADD, /* += */
38 OP_REMOVE, /* -= */
39 OP_ASSIGN, /* = */
40 OP_ASSIGN_FINAL, /* := */
41 _OP_TYPE_MAX,
42 _OP_TYPE_INVALID = -1
43 } UdevRuleOperatorType;
44
45 typedef enum {
46 MATCH_TYPE_EMPTY, /* empty string */
47 MATCH_TYPE_PLAIN, /* no special characters */
48 MATCH_TYPE_GLOB, /* shell globs ?,*,[] */
49 MATCH_TYPE_SUBSYSTEM, /* "subsystem", "bus", or "class" */
50 _MATCH_TYPE_MAX,
51 _MATCH_TYPE_INVALID = -1
52 } UdevRuleMatchType;
53
54 typedef enum {
55 SUBST_TYPE_PLAIN, /* no substitution */
56 SUBST_TYPE_FORMAT, /* % or $ */
57 SUBST_TYPE_SUBSYS, /* "[<SUBSYSTEM>/<KERNEL>]<attribute>" format */
58 _SUBST_TYPE_MAX,
59 _SUBST_TYPE_INVALID = -1
60 } UdevRuleSubstituteType;
61
62 typedef enum {
63 /* lvalues which take match or nomatch operator */
64 TK_M_ACTION, /* string, device_get_action() */
65 TK_M_DEVPATH, /* path, sd_device_get_devpath() */
66 TK_M_KERNEL, /* string, sd_device_get_sysname() */
67 TK_M_DEVLINK, /* strv, sd_device_get_devlink_first(), sd_device_get_devlink_next() */
68 TK_M_NAME, /* string, name of network interface */
69 TK_M_ENV, /* string, device property, takes key through attribute */
70 TK_M_TAG, /* strv, sd_device_get_tag_first(), sd_device_get_tag_next() */
71 TK_M_SUBSYSTEM, /* string, sd_device_get_subsystem() */
72 TK_M_DRIVER, /* string, sd_device_get_driver() */
73 TK_M_ATTR, /* string, takes filename through attribute, sd_device_get_sysattr_value(), util_resolve_subsys_kernel(), etc. */
74 TK_M_SYSCTL, /* string, takes kernel parameter through attribute */
75
76 /* matches parent paramters */
77 TK_M_PARENTS_KERNEL, /* string */
78 TK_M_PARENTS_SUBSYSTEM, /* string */
79 TK_M_PARENTS_DRIVER, /* string */
80 TK_M_PARENTS_ATTR, /* string */
81 TK_M_PARENTS_TAG, /* strv */
82
83 TK_M_TEST, /* path, optionally mode_t can be specified by attribute, test the existence of a file */
84 TK_M_PROGRAM, /* string, execute a program */
85 TK_M_IMPORT_FILE, /* path */
86 TK_M_IMPORT_PROGRAM, /* string, import properties from the result of program */
87 TK_M_IMPORT_BUILTIN, /* string, import properties from the result of built-in command */
88 TK_M_IMPORT_DB, /* string, import properties from database */
89 TK_M_IMPORT_CMDLINE, /* string, kernel command line */
90 TK_M_IMPORT_PARENT, /* string, parent property */
91 TK_M_RESULT, /* string, result of TK_M_PROGRAM */
92
93 #define _TK_M_MAX (TK_M_RESULT + 1)
94 #define _TK_A_MIN _TK_M_MAX
95
96 /* lvalues which take one of assign operators */
97 TK_A_OPTIONS_STRING_ESCAPE_NONE, /* no argument */
98 TK_A_OPTIONS_STRING_ESCAPE_REPLACE, /* no argument */
99 TK_A_OPTIONS_DB_PERSIST, /* no argument */
100 TK_A_OPTIONS_INOTIFY_WATCH, /* boolean */
101 TK_A_OPTIONS_DEVLINK_PRIORITY, /* int */
102 TK_A_OWNER, /* user name */
103 TK_A_GROUP, /* group name */
104 TK_A_MODE, /* mode string */
105 TK_A_OWNER_ID, /* uid_t */
106 TK_A_GROUP_ID, /* gid_t */
107 TK_A_MODE_ID, /* mode_t */
108 TK_A_TAG, /* string */
109 TK_A_OPTIONS_STATIC_NODE, /* device path, /dev/... */
110 TK_A_SECLABEL, /* string with attribute */
111 TK_A_ENV, /* string with attribute */
112 TK_A_NAME, /* ifname */
113 TK_A_DEVLINK, /* string */
114 TK_A_ATTR, /* string with attribute */
115 TK_A_SYSCTL, /* string with attribute */
116 TK_A_RUN_BUILTIN, /* string */
117 TK_A_RUN_PROGRAM, /* string */
118
119 _TK_TYPE_MAX,
120 _TK_TYPE_INVALID = -1,
121 } UdevRuleTokenType;
122
123 typedef enum {
124 LINE_HAS_NAME = 1 << 0, /* has NAME= */
125 LINE_HAS_DEVLINK = 1 << 1, /* has SYMLINK=, OWNER=, GROUP= or MODE= */
126 LINE_HAS_STATIC_NODE = 1 << 2, /* has OPTIONS=static_node */
127 LINE_HAS_GOTO = 1 << 3, /* has GOTO= */
128 LINE_HAS_LABEL = 1 << 4, /* has LABEL= */
129 LINE_UPDATE_SOMETHING = 1 << 5, /* has other TK_A_* or TK_M_IMPORT tokens */
130 } UdevRuleLineType;
131
132 typedef struct UdevRuleFile UdevRuleFile;
133 typedef struct UdevRuleLine UdevRuleLine;
134 typedef struct UdevRuleToken UdevRuleToken;
135
136 struct UdevRuleToken {
137 UdevRuleTokenType type:8;
138 UdevRuleOperatorType op:8;
139 UdevRuleMatchType match_type:8;
140 UdevRuleSubstituteType attr_subst_type:7;
141 bool attr_match_remove_trailing_whitespace:1;
142 const char *value;
143 void *data;
144 LIST_FIELDS(UdevRuleToken, tokens);
145 };
146
147 struct UdevRuleLine {
148 char *line;
149 unsigned line_number;
150 UdevRuleLineType type;
151
152 const char *label;
153 const char *goto_label;
154 UdevRuleLine *goto_line;
155
156 UdevRuleFile *rule_file;
157 UdevRuleToken *current_token;
158 LIST_HEAD(UdevRuleToken, tokens);
159 LIST_FIELDS(UdevRuleLine, rule_lines);
160 };
161
162 struct UdevRuleFile {
163 char *filename;
164 UdevRuleLine *current_line;
165 LIST_HEAD(UdevRuleLine, rule_lines);
166 LIST_FIELDS(UdevRuleFile, rule_files);
167 };
168
169 struct UdevRules {
170 usec_t dirs_ts_usec;
171 ResolveNameTiming resolve_name_timing;
172 Hashmap *known_users;
173 Hashmap *known_groups;
174 UdevRuleFile *current_file;
175 LIST_HEAD(UdevRuleFile, rule_files);
176 };
177
178 /*** Logging helpers ***/
179
180 #define log_rule_full(device, rules, level, error, fmt, ...) \
181 ({ \
182 UdevRules *_r = (rules); \
183 UdevRuleFile *_f = _r ? _r->current_file : NULL; \
184 UdevRuleLine *_l = _f ? _f->current_line : NULL; \
185 const char *_n = _f ? _f->filename : NULL; \
186 \
187 log_device_full(device, level, error, "%s:%u " fmt, \
188 strna(_n), _l ? _l->line_number : 0, \
189 ##__VA_ARGS__); \
190 })
191
192 #define log_rule_debug(device, rules, ...) log_rule_full(device, rules, LOG_DEBUG, 0, ##__VA_ARGS__)
193 #define log_rule_info(device, rules, ...) log_rule_full(device, rules, LOG_INFO, 0, ##__VA_ARGS__)
194 #define log_rule_notice(device, rules, ...) log_rule_full(device, rules, LOG_NOTICE, 0, ##__VA_ARGS__)
195 #define log_rule_warning(device, rules, ...) log_rule_full(device, rules, LOG_WARNING, 0, ##__VA_ARGS__)
196 #define log_rule_error(device, rules, ...) log_rule_full(device, rules, LOG_ERR, 0, ##__VA_ARGS__)
197
198 #define log_rule_debug_errno(device, rules, error, ...) log_rule_full(device, rules, LOG_DEBUG, error, ##__VA_ARGS__)
199 #define log_rule_info_errno(device, rules, error, ...) log_rule_full(device, rules, LOG_INFO, error, ##__VA_ARGS__)
200 #define log_rule_notice_errno(device, rules, error, ...) log_rule_full(device, rules, LOG_NOTICE, error, ##__VA_ARGS__)
201 #define log_rule_warning_errno(device, rules, error, ...) log_rule_full(device, rules, LOG_WARNING, error, ##__VA_ARGS__)
202 #define log_rule_error_errno(device, rules, error, ...) log_rule_full(device, rules, LOG_ERR, error, ##__VA_ARGS__)
203
204 #define log_token_full(rules, ...) log_rule_full(NULL, rules, ##__VA_ARGS__)
205
206 #define log_token_debug(rules, ...) log_token_full(rules, LOG_DEBUG, 0, ##__VA_ARGS__)
207 #define log_token_info(rules, ...) log_token_full(rules, LOG_INFO, 0, ##__VA_ARGS__)
208 #define log_token_notice(rules, ...) log_token_full(rules, LOG_NOTICE, 0, ##__VA_ARGS__)
209 #define log_token_warning(rules, ...) log_token_full(rules, LOG_WARNING, 0, ##__VA_ARGS__)
210 #define log_token_error(rules, ...) log_token_full(rules, LOG_ERR, 0, ##__VA_ARGS__)
211
212 #define log_token_debug_errno(rules, error, ...) log_token_full(rules, LOG_DEBUG, error, ##__VA_ARGS__)
213 #define log_token_info_errno(rules, error, ...) log_token_full(rules, LOG_INFO, error, ##__VA_ARGS__)
214 #define log_token_notice_errno(rules, error, ...) log_token_full(rules, LOG_NOTICE, error, ##__VA_ARGS__)
215 #define log_token_warning_errno(rules, error, ...) log_token_full(rules, LOG_WARNING, error, ##__VA_ARGS__)
216 #define log_token_error_errno(rules, error, ...) log_token_full(rules, LOG_ERR, error, ##__VA_ARGS__)
217
218 #define _log_token_invalid(rules, key, type) \
219 log_token_error_errno(rules, SYNTHETIC_ERRNO(EINVAL), \
220 "Invalid %s for %s.", type, key)
221
222 #define log_token_invalid_op(rules, key) _log_token_invalid(rules, key, "operator")
223 #define log_token_invalid_attr(rules, key) _log_token_invalid(rules, key, "attribute")
224
225 #define log_token_invalid_attr_format(rules, key, attr, offset, hint) \
226 log_token_error_errno(rules, SYNTHETIC_ERRNO(EINVAL), \
227 "Invalid attribute \"%s\" for %s (char %zu: %s), ignoring, but please fix it.", \
228 attr, key, offset, hint)
229 #define log_token_invalid_value(rules, key, value, offset, hint) \
230 log_token_error_errno(rules, SYNTHETIC_ERRNO(EINVAL), \
231 "Invalid value \"%s\" for %s (char %zu: %s), ignoring, but please fix it.", \
232 value, key, offset, hint)
233
234 static void log_unknown_owner(sd_device *dev, UdevRules *rules, int error, const char *entity, const char *name) {
235 if (IN_SET(abs(error), ENOENT, ESRCH))
236 log_rule_error(dev, rules, "Unknown %s '%s', ignoring", entity, name);
237 else
238 log_rule_error_errno(dev, rules, error, "Failed to resolve %s '%s', ignoring: %m", entity, name);
239 }
240
241 /*** Other functions ***/
242
243 static void udev_rule_token_free(UdevRuleToken *token) {
244 free(token);
245 }
246
247 static void udev_rule_line_clear_tokens(UdevRuleLine *rule_line) {
248 UdevRuleToken *i, *next;
249
250 assert(rule_line);
251
252 LIST_FOREACH_SAFE(tokens, i, next, rule_line->tokens)
253 udev_rule_token_free(i);
254
255 rule_line->tokens = NULL;
256 }
257
258 static void udev_rule_line_free(UdevRuleLine *rule_line) {
259 if (!rule_line)
260 return;
261
262 udev_rule_line_clear_tokens(rule_line);
263
264 if (rule_line->rule_file) {
265 if (rule_line->rule_file->current_line == rule_line)
266 rule_line->rule_file->current_line = rule_line->rule_lines_prev;
267
268 LIST_REMOVE(rule_lines, rule_line->rule_file->rule_lines, rule_line);
269 }
270
271 free(rule_line->line);
272 free(rule_line);
273 }
274
275 DEFINE_TRIVIAL_CLEANUP_FUNC(UdevRuleLine*, udev_rule_line_free);
276
277 static void udev_rule_file_free(UdevRuleFile *rule_file) {
278 UdevRuleLine *i, *next;
279
280 if (!rule_file)
281 return;
282
283 LIST_FOREACH_SAFE(rule_lines, i, next, rule_file->rule_lines)
284 udev_rule_line_free(i);
285
286 free(rule_file->filename);
287 free(rule_file);
288 }
289
290 UdevRules *udev_rules_free(UdevRules *rules) {
291 UdevRuleFile *i, *next;
292
293 if (!rules)
294 return NULL;
295
296 LIST_FOREACH_SAFE(rule_files, i, next, rules->rule_files)
297 udev_rule_file_free(i);
298
299 hashmap_free_free_key(rules->known_users);
300 hashmap_free_free_key(rules->known_groups);
301 return mfree(rules);
302 }
303
304 static int rule_resolve_user(UdevRules *rules, const char *name, uid_t *ret) {
305 _cleanup_free_ char *n = NULL;
306 uid_t uid;
307 void *val;
308 int r;
309
310 assert(rules);
311 assert(name);
312
313 val = hashmap_get(rules->known_users, name);
314 if (val) {
315 *ret = PTR_TO_UID(val);
316 return 0;
317 }
318
319 r = get_user_creds(&name, &uid, NULL, NULL, NULL, USER_CREDS_ALLOW_MISSING);
320 if (r < 0) {
321 log_unknown_owner(NULL, rules, r, "user", name);
322 *ret = UID_INVALID;
323 return 0;
324 }
325
326 n = strdup(name);
327 if (!n)
328 return -ENOMEM;
329
330 r = hashmap_ensure_allocated(&rules->known_users, &string_hash_ops);
331 if (r < 0)
332 return r;
333
334 r = hashmap_put(rules->known_users, n, UID_TO_PTR(uid));
335 if (r < 0)
336 return r;
337
338 TAKE_PTR(n);
339 *ret = uid;
340 return 0;
341 }
342
343 static int rule_resolve_group(UdevRules *rules, const char *name, gid_t *ret) {
344 _cleanup_free_ char *n = NULL;
345 gid_t gid;
346 void *val;
347 int r;
348
349 assert(rules);
350 assert(name);
351
352 val = hashmap_get(rules->known_groups, name);
353 if (val) {
354 *ret = PTR_TO_GID(val);
355 return 0;
356 }
357
358 r = get_group_creds(&name, &gid, USER_CREDS_ALLOW_MISSING);
359 if (r < 0) {
360 log_unknown_owner(NULL, rules, r, "group", name);
361 *ret = GID_INVALID;
362 return 0;
363 }
364
365 n = strdup(name);
366 if (!n)
367 return -ENOMEM;
368
369 r = hashmap_ensure_allocated(&rules->known_groups, &string_hash_ops);
370 if (r < 0)
371 return r;
372
373 r = hashmap_put(rules->known_groups, n, GID_TO_PTR(gid));
374 if (r < 0)
375 return r;
376
377 TAKE_PTR(n);
378 *ret = gid;
379 return 0;
380 }
381
382 static UdevRuleSubstituteType rule_get_substitution_type(const char *str) {
383 assert(str);
384
385 if (str[0] == '[')
386 return SUBST_TYPE_SUBSYS;
387 if (strchr(str, '%') || strchr(str, '$'))
388 return SUBST_TYPE_FORMAT;
389 return SUBST_TYPE_PLAIN;
390 }
391
392 static void rule_line_append_token(UdevRuleLine *rule_line, UdevRuleToken *token) {
393 assert(rule_line);
394 assert(token);
395
396 if (rule_line->current_token)
397 LIST_APPEND(tokens, rule_line->current_token, token);
398 else
399 LIST_APPEND(tokens, rule_line->tokens, token);
400
401 rule_line->current_token = token;
402 }
403
404 static int rule_line_add_token(UdevRuleLine *rule_line, UdevRuleTokenType type, UdevRuleOperatorType op, char *value, void *data) {
405 UdevRuleToken *token;
406 UdevRuleMatchType match_type = _MATCH_TYPE_INVALID;
407 UdevRuleSubstituteType subst_type = _SUBST_TYPE_INVALID;
408 bool remove_trailing_whitespace = false;
409 size_t len;
410
411 assert(rule_line);
412 assert(type >= 0 && type < _TK_TYPE_MAX);
413 assert(op >= 0 && op < _OP_TYPE_MAX);
414
415 if (type < _TK_M_MAX) {
416 assert(value);
417 assert(IN_SET(op, OP_MATCH, OP_NOMATCH));
418
419 if (type == TK_M_SUBSYSTEM && STR_IN_SET(value, "subsystem", "bus", "class"))
420 match_type = MATCH_TYPE_SUBSYSTEM;
421 else if (isempty(value))
422 match_type = MATCH_TYPE_EMPTY;
423 else if (streq(value, "?*")) {
424 /* Convert KEY=="?*" -> KEY!="" */
425 match_type = MATCH_TYPE_EMPTY;
426 op = op == OP_MATCH ? OP_NOMATCH : OP_MATCH;
427 } else if (string_is_glob(value))
428 match_type = MATCH_TYPE_GLOB;
429 else
430 match_type = MATCH_TYPE_PLAIN;
431
432 if (type < TK_M_TEST || type == TK_M_RESULT) {
433 /* Convert value string to nulstr. */
434 len = strlen(value);
435 if (len > 1 && (value[len - 1] == '|' || strstr(value, "||"))) {
436 /* In this case, just replacing '|' -> '\0' does not work... */
437 _cleanup_free_ char *tmp = NULL;
438 char *i, *j;
439 bool v = true;
440
441 tmp = strdup(value);
442 if (!tmp)
443 return log_oom();
444
445 for (i = tmp, j = value; *i != '\0'; i++)
446 if (*i == '|')
447 v = true;
448 else {
449 if (v) {
450 *j++ = '\0';
451 v = false;
452 }
453 *j++ = *i;
454 }
455 j[0] = j[1] = '\0';
456 } else {
457 /* Simple conversion. */
458 char *i;
459
460 for (i = value; *i != '\0'; i++)
461 if (*i == '|')
462 *i = '\0';
463 }
464 }
465 }
466
467 if (IN_SET(type, TK_M_ATTR, TK_M_PARENTS_ATTR)) {
468 assert(value);
469 assert(data);
470
471 len = strlen(value);
472 if (len > 0 && !isspace(value[len - 1]))
473 remove_trailing_whitespace = true;
474
475 subst_type = rule_get_substitution_type((const char*) data);
476 }
477
478 token = new(UdevRuleToken, 1);
479 if (!token)
480 return -ENOMEM;
481
482 *token = (UdevRuleToken) {
483 .type = type,
484 .op = op,
485 .value = value,
486 .data = data,
487 .match_type = match_type,
488 .attr_subst_type = subst_type,
489 .attr_match_remove_trailing_whitespace = remove_trailing_whitespace,
490 };
491
492 rule_line_append_token(rule_line, token);
493
494 if (token->type == TK_A_NAME)
495 SET_FLAG(rule_line->type, LINE_HAS_NAME, true);
496
497 else if (IN_SET(token->type, TK_A_DEVLINK,
498 TK_A_OWNER, TK_A_GROUP, TK_A_MODE,
499 TK_A_OWNER_ID, TK_A_GROUP_ID, TK_A_MODE_ID))
500 SET_FLAG(rule_line->type, LINE_HAS_DEVLINK, true);
501
502 else if (token->type == TK_A_OPTIONS_STATIC_NODE)
503 SET_FLAG(rule_line->type, LINE_HAS_STATIC_NODE, true);
504
505 else if (token->type >= _TK_A_MIN ||
506 IN_SET(token->type, TK_M_PROGRAM,
507 TK_M_IMPORT_FILE, TK_M_IMPORT_PROGRAM, TK_M_IMPORT_BUILTIN,
508 TK_M_IMPORT_DB, TK_M_IMPORT_CMDLINE, TK_M_IMPORT_PARENT))
509 SET_FLAG(rule_line->type, LINE_UPDATE_SOMETHING, true);
510
511 return 0;
512 }
513
514 static void check_value_format_and_warn(UdevRules *rules, const char *key, const char *value, bool nonempty) {
515 size_t offset;
516 const char *hint;
517
518 if (nonempty && isempty(value))
519 log_token_invalid_value(rules, key, value, (size_t) 0, "empty value");
520 else if (udev_check_format(value, &offset, &hint) < 0)
521 log_token_invalid_value(rules, key, value, offset + 1, hint);
522 }
523
524 static int check_attr_format_and_warn(UdevRules *rules, const char *key, const char *value) {
525 size_t offset;
526 const char *hint;
527
528 if (isempty(value))
529 return log_token_invalid_attr(rules, key);
530 if (udev_check_format(value, &offset, &hint) < 0)
531 log_token_invalid_attr_format(rules, key, value, offset + 1, hint);
532 return 0;
533 }
534
535 static int parse_token(UdevRules *rules, const char *key, char *attr, UdevRuleOperatorType op, char *value) {
536 bool is_match = IN_SET(op, OP_MATCH, OP_NOMATCH);
537 UdevRuleLine *rule_line;
538 int r;
539
540 assert(rules);
541 assert(rules->current_file);
542 assert(rules->current_file->current_line);
543 assert(key);
544 assert(value);
545
546 rule_line = rules->current_file->current_line;
547
548 if (streq(key, "ACTION")) {
549 if (attr)
550 return log_token_invalid_attr(rules, key);
551 if (!is_match)
552 return log_token_invalid_op(rules, key);
553
554 r = rule_line_add_token(rule_line, TK_M_ACTION, op, value, NULL);
555 } else if (streq(key, "DEVPATH")) {
556 if (attr)
557 return log_token_invalid_attr(rules, key);
558 if (!is_match)
559 return log_token_invalid_op(rules, key);
560
561 r = rule_line_add_token(rule_line, TK_M_DEVPATH, op, value, NULL);
562 } else if (streq(key, "KERNEL")) {
563 if (attr)
564 return log_token_invalid_attr(rules, key);
565 if (!is_match)
566 return log_token_invalid_op(rules, key);
567
568 r = rule_line_add_token(rule_line, TK_M_KERNEL, op, value, NULL);
569 } else if (streq(key, "SYMLINK")) {
570 if (attr)
571 return log_token_invalid_attr(rules, key);
572 if (op == OP_REMOVE)
573 return log_token_invalid_op(rules, key);
574
575 if (!is_match) {
576 check_value_format_and_warn(rules, key, value, false);
577 r = rule_line_add_token(rule_line, TK_A_DEVLINK, op, value, NULL);
578 } else
579 r = rule_line_add_token(rule_line, TK_M_DEVLINK, op, value, NULL);
580 } else if (streq(key, "NAME")) {
581 if (attr)
582 return log_token_invalid_attr(rules, key);
583 if (op == OP_REMOVE)
584 return log_token_invalid_op(rules, key);
585 if (op == OP_ADD) {
586 log_token_warning(rules, "%s key takes '==', '!=', '=', or ':=' operator, assuming '=', but please fix it.", key);
587 op = OP_ASSIGN;
588 }
589
590 if (!is_match) {
591 if (streq(value, "%k"))
592 return log_token_error_errno(rules, SYNTHETIC_ERRNO(EINVAL),
593 "Ignoring NAME=\"%%k\" is ignored, as it breaks kernel supplied names.");
594 if (isempty(value))
595 return log_token_error_errno(rules, SYNTHETIC_ERRNO(EINVAL),
596 "Ignoring NAME=\"\", as udev will not delete any device nodes.");
597 check_value_format_and_warn(rules, key, value, false);
598
599 r = rule_line_add_token(rule_line, TK_A_NAME, op, value, NULL);
600 } else
601 r = rule_line_add_token(rule_line, TK_M_NAME, op, value, NULL);
602 } else if (streq(key, "ENV")) {
603 if (isempty(attr))
604 return log_token_invalid_attr(rules, key);
605 if (op == OP_REMOVE)
606 return log_token_invalid_op(rules, key);
607 if (op == OP_ASSIGN_FINAL) {
608 log_token_warning(rules, "%s key takes '==', '!=', '=', or '+=' operator, assuming '=', but please fix it.", key);
609 op = OP_ASSIGN;
610 }
611
612 if (!is_match) {
613 if (STR_IN_SET(attr,
614 "ACTION", "DEVLINKS", "DEVNAME", "DEVPATH", "DEVTYPE", "DRIVER",
615 "IFINDEX", "MAJOR", "MINOR", "SEQNUM", "SUBSYSTEM", "TAGS"))
616 return log_token_error_errno(rules, SYNTHETIC_ERRNO(EINVAL),
617 "Invalid ENV attribute. '%s' cannot be set.", attr);
618
619 check_value_format_and_warn(rules, key, value, false);
620
621 r = rule_line_add_token(rule_line, TK_A_ENV, op, value, attr);
622 } else
623 r = rule_line_add_token(rule_line, TK_M_ENV, op, value, attr);
624 } else if (streq(key, "TAG")) {
625 if (attr)
626 return log_token_invalid_attr(rules, key);
627 if (op == OP_ASSIGN_FINAL) {
628 log_token_warning(rules, "%s key takes '==', '!=', '=', or '+=' operator, assuming '=', but please fix it.", key);
629 op = OP_ASSIGN;
630 }
631
632 if (!is_match) {
633 check_value_format_and_warn(rules, key, value, true);
634
635 r = rule_line_add_token(rule_line, TK_A_TAG, op, value, NULL);
636 } else
637 r = rule_line_add_token(rule_line, TK_M_TAG, op, value, NULL);
638 } else if (streq(key, "SUBSYSTEM")) {
639 if (attr)
640 return log_token_invalid_attr(rules, key);
641 if (!is_match)
642 return log_token_invalid_op(rules, key);
643
644 if (STR_IN_SET(value, "bus", "class"))
645 log_token_warning(rules, "'%s' must be specified as 'subsystem'; please fix it", value);
646
647 r = rule_line_add_token(rule_line, TK_M_SUBSYSTEM, op, value, NULL);
648 } else if (streq(key, "DRIVER")) {
649 if (attr)
650 return log_token_invalid_attr(rules, key);
651 if (!is_match)
652 return log_token_invalid_op(rules, key);
653
654 r = rule_line_add_token(rule_line, TK_M_DRIVER, op, value, NULL);
655 } else if (streq(key, "ATTR")) {
656 r = check_attr_format_and_warn(rules, key, attr);
657 if (r < 0)
658 return r;
659 if (op == OP_REMOVE)
660 return log_token_invalid_op(rules, key);
661 if (IN_SET(op, OP_ADD, OP_ASSIGN_FINAL)) {
662 log_token_warning(rules, "%s key takes '==', '!=', or '=' operator, assuming '=', but please fix it.", key);
663 op = OP_ASSIGN;
664 }
665
666 if (!is_match) {
667 check_value_format_and_warn(rules, key, value, false);
668 r = rule_line_add_token(rule_line, TK_A_ATTR, op, value, attr);
669 } else
670 r = rule_line_add_token(rule_line, TK_M_ATTR, op, value, attr);
671 } else if (streq(key, "SYSCTL")) {
672 r = check_attr_format_and_warn(rules, key, attr);
673 if (r < 0)
674 return r;
675 if (op == OP_REMOVE)
676 return log_token_invalid_op(rules, key);
677 if (IN_SET(op, OP_ADD, OP_ASSIGN_FINAL)) {
678 log_token_warning(rules, "%s key takes '==', '!=', or '=' operator, assuming '=', but please fix it.", key);
679 op = OP_ASSIGN;
680 }
681
682 if (!is_match) {
683 check_value_format_and_warn(rules, key, value, false);
684 r = rule_line_add_token(rule_line, TK_A_SYSCTL, op, value, attr);
685 } else
686 r = rule_line_add_token(rule_line, TK_M_SYSCTL, op, value, attr);
687 } else if (streq(key, "KERNELS")) {
688 if (attr)
689 return log_token_invalid_attr(rules, key);
690 if (!is_match)
691 return log_token_invalid_op(rules, key);
692
693 r = rule_line_add_token(rule_line, TK_M_PARENTS_KERNEL, op, value, NULL);
694 } else if (streq(key, "SUBSYSTEMS")) {
695 if (attr)
696 return log_token_invalid_attr(rules, key);
697 if (!is_match)
698 return log_token_invalid_op(rules, key);
699
700 r = rule_line_add_token(rule_line, TK_M_PARENTS_SUBSYSTEM, op, value, NULL);
701 } else if (streq(key, "DRIVERS")) {
702 if (attr)
703 return log_token_invalid_attr(rules, key);
704 if (!is_match)
705 return log_token_invalid_op(rules, key);
706
707 r = rule_line_add_token(rule_line, TK_M_PARENTS_DRIVER, op, value, NULL);
708 } else if (streq(key, "ATTRS")) {
709 r = check_attr_format_and_warn(rules, key, attr);
710 if (r < 0)
711 return r;
712 if (!is_match)
713 return log_token_invalid_op(rules, key);
714
715 if (startswith(attr, "device/"))
716 log_token_warning(rules, "'device' link may not be available in future kernels; please fix it.");
717 if (strstr(attr, "../"))
718 log_token_warning(rules, "Direct reference to parent sysfs directory, may break in future kernels; please fix it.");
719
720 r = rule_line_add_token(rule_line, TK_M_PARENTS_ATTR, op, value, attr);
721 } else if (streq(key, "TAGS")) {
722 if (attr)
723 return log_token_invalid_attr(rules, key);
724 if (!is_match)
725 return log_token_invalid_op(rules, key);
726
727 r = rule_line_add_token(rule_line, TK_M_PARENTS_TAG, op, value, NULL);
728 } else if (streq(key, "TEST")) {
729 mode_t mode = MODE_INVALID;
730
731 if (!isempty(attr)) {
732 r = parse_mode(attr, &mode);
733 if (r < 0)
734 return log_token_error_errno(rules, r, "Failed to parse mode '%s': %m", attr);
735 }
736 check_value_format_and_warn(rules, key, value, true);
737 if (!is_match)
738 return log_token_invalid_op(rules, key);
739
740 r = rule_line_add_token(rule_line, TK_M_TEST, op, value, MODE_TO_PTR(mode));
741 } else if (streq(key, "PROGRAM")) {
742 if (attr)
743 return log_token_invalid_attr(rules, key);
744 check_value_format_and_warn(rules, key, value, true);
745 if (op == OP_REMOVE)
746 return log_token_invalid_op(rules, key);
747 if (!is_match) {
748 if (op == OP_ASSIGN)
749 log_token_debug(rules, "Operator '=' is specified to %s key, assuming '=='.", key);
750 else
751 log_token_warning(rules, "%s key takes '==' or '!=' operator, assuming '==', but please fix it.", key);
752 op = OP_MATCH;
753 }
754
755 r = rule_line_add_token(rule_line, TK_M_PROGRAM, op, value, NULL);
756 } else if (streq(key, "IMPORT")) {
757 if (isempty(attr))
758 return log_token_invalid_attr(rules, key);
759 check_value_format_and_warn(rules, key, value, true);
760 if (op == OP_REMOVE)
761 return log_token_invalid_op(rules, key);
762 if (!is_match) {
763 if (op == OP_ASSIGN)
764 log_token_debug(rules, "Operator '=' is specified to %s key, assuming '=='.", key);
765 else
766 log_token_warning(rules, "%s key takes '==' or '!=' operator, assuming '==', but please fix it.", key);
767 op = OP_MATCH;
768 }
769
770 if (streq(attr, "file"))
771 r = rule_line_add_token(rule_line, TK_M_IMPORT_FILE, op, value, NULL);
772 else if (streq(attr, "program")) {
773 UdevBuiltinCommand cmd;
774
775 cmd = udev_builtin_lookup(value);
776 if (cmd >= 0) {
777 log_token_debug(rules,"Found builtin command '%s' for %s, replacing attribute", value, key);
778 r = rule_line_add_token(rule_line, TK_M_IMPORT_BUILTIN, op, value, UDEV_BUILTIN_CMD_TO_PTR(cmd));
779 } else
780 r = rule_line_add_token(rule_line, TK_M_IMPORT_PROGRAM, op, value, NULL);
781 } else if (streq(attr, "builtin")) {
782 UdevBuiltinCommand cmd;
783
784 cmd = udev_builtin_lookup(value);
785 if (cmd < 0)
786 return log_token_error_errno(rules, SYNTHETIC_ERRNO(EINVAL),
787 "Unknown builtin command: %s", value);
788 r = rule_line_add_token(rule_line, TK_M_IMPORT_BUILTIN, op, value, UDEV_BUILTIN_CMD_TO_PTR(cmd));
789 } else if (streq(attr, "db"))
790 r = rule_line_add_token(rule_line, TK_M_IMPORT_DB, op, value, NULL);
791 else if (streq(attr, "cmdline"))
792 r = rule_line_add_token(rule_line, TK_M_IMPORT_CMDLINE, op, value, NULL);
793 else if (streq(attr, "parent"))
794 r = rule_line_add_token(rule_line, TK_M_IMPORT_PARENT, op, value, NULL);
795 else
796 return log_token_invalid_attr(rules, key);
797 } else if (streq(key, "RESULT")) {
798 if (attr)
799 return log_token_invalid_attr(rules, key);
800 if (!is_match)
801 return log_token_invalid_op(rules, key);
802
803 r = rule_line_add_token(rule_line, TK_M_RESULT, op, value, NULL);
804 } else if (streq(key, "OPTIONS")) {
805 char *tmp;
806
807 if (attr)
808 return log_token_invalid_attr(rules, key);
809 if (is_match || op == OP_REMOVE)
810 return log_token_invalid_op(rules, key);
811 if (op == OP_ADD) {
812 log_token_debug(rules, "Operator '+=' is specified to %s key, assuming '='.", key);
813 op = OP_ASSIGN;
814 }
815
816 if (streq(value, "string_escape=none"))
817 r = rule_line_add_token(rule_line, TK_A_OPTIONS_STRING_ESCAPE_NONE, op, NULL, NULL);
818 else if (streq(value, "string_escape=replace"))
819 r = rule_line_add_token(rule_line, TK_A_OPTIONS_STRING_ESCAPE_REPLACE, op, NULL, NULL);
820 else if (streq(value, "db_persist"))
821 r = rule_line_add_token(rule_line, TK_A_OPTIONS_DB_PERSIST, op, NULL, NULL);
822 else if (streq(value, "watch"))
823 r = rule_line_add_token(rule_line, TK_A_OPTIONS_INOTIFY_WATCH, op, NULL, INT_TO_PTR(1));
824 else if (streq(value, "nowatch"))
825 r = rule_line_add_token(rule_line, TK_A_OPTIONS_INOTIFY_WATCH, op, NULL, INT_TO_PTR(0));
826 else if ((tmp = startswith(value, "static_node=")))
827 r = rule_line_add_token(rule_line, TK_A_OPTIONS_STATIC_NODE, op, tmp, NULL);
828 else if ((tmp = startswith(value, "link_priority="))) {
829 int prio;
830
831 r = safe_atoi(tmp, &prio);
832 if (r < 0)
833 return log_token_error_errno(rules, r, "Failed to parse link priority '%s': %m", tmp);
834 r = rule_line_add_token(rule_line, TK_A_OPTIONS_DEVLINK_PRIORITY, op, NULL, INT_TO_PTR(prio));
835 } else {
836 log_token_warning(rules, "Invalid value for OPTIONS key, ignoring: '%s'", value);
837 return 0;
838 }
839 } else if (streq(key, "OWNER")) {
840 uid_t uid;
841
842 if (attr)
843 return log_token_invalid_attr(rules, key);
844 if (is_match || op == OP_REMOVE)
845 return log_token_invalid_op(rules, key);
846 if (op == OP_ADD) {
847 log_token_warning(rules, "%s key takes '=' or ':=' operator, assuming '=', but please fix it.", key);
848 op = OP_ASSIGN;
849 }
850
851 if (parse_uid(value, &uid) >= 0)
852 r = rule_line_add_token(rule_line, TK_A_OWNER_ID, op, NULL, UID_TO_PTR(uid));
853 else if (rules->resolve_name_timing == RESOLVE_NAME_EARLY &&
854 rule_get_substitution_type(value) == SUBST_TYPE_PLAIN) {
855 r = rule_resolve_user(rules, value, &uid);
856 if (r < 0)
857 return log_token_error_errno(rules, r, "Failed to resolve user name '%s': %m", value);
858
859 r = rule_line_add_token(rule_line, TK_A_OWNER_ID, op, NULL, UID_TO_PTR(uid));
860 } else if (rules->resolve_name_timing != RESOLVE_NAME_NEVER) {
861 check_value_format_and_warn(rules, key, value, true);
862 r = rule_line_add_token(rule_line, TK_A_OWNER, op, value, NULL);
863 } else {
864 log_token_debug(rules, "Resolving user name is disabled, ignoring %s=%s", key, value);
865 return 0;
866 }
867 } else if (streq(key, "GROUP")) {
868 gid_t gid;
869
870 if (attr)
871 return log_token_invalid_attr(rules, key);
872 if (is_match || op == OP_REMOVE)
873 return log_token_invalid_op(rules, key);
874 if (op == OP_ADD) {
875 log_token_warning(rules, "%s key takes '=' or ':=' operator, assuming '=', but please fix it.", key);
876 op = OP_ASSIGN;
877 }
878
879 if (parse_gid(value, &gid) >= 0)
880 r = rule_line_add_token(rule_line, TK_A_GROUP_ID, op, NULL, GID_TO_PTR(gid));
881 else if (rules->resolve_name_timing == RESOLVE_NAME_EARLY &&
882 rule_get_substitution_type(value) == SUBST_TYPE_PLAIN) {
883 r = rule_resolve_group(rules, value, &gid);
884 if (r < 0)
885 return log_token_error_errno(rules, r, "Failed to resolve group name '%s': %m", value);
886
887 r = rule_line_add_token(rule_line, TK_A_GROUP_ID, op, NULL, GID_TO_PTR(gid));
888 } else if (rules->resolve_name_timing != RESOLVE_NAME_NEVER) {
889 check_value_format_and_warn(rules, key, value, true);
890 r = rule_line_add_token(rule_line, TK_A_GROUP, op, value, NULL);
891 } else {
892 log_token_debug(rules, "Resolving group name is disabled, ignoring %s=%s", key, value);
893 return 0;
894 }
895 } else if (streq(key, "MODE")) {
896 mode_t mode;
897
898 if (attr)
899 return log_token_invalid_attr(rules, key);
900 if (is_match || op == OP_REMOVE)
901 return log_token_invalid_op(rules, key);
902 if (op == OP_ADD) {
903 log_token_warning(rules, "%s key takes '=' or ':=' operator, assuming '=', but please fix it.", key);
904 op = OP_ASSIGN;
905 }
906
907 if (parse_mode(value, &mode) >= 0)
908 r = rule_line_add_token(rule_line, TK_A_MODE_ID, op, NULL, MODE_TO_PTR(mode));
909 else {
910 check_value_format_and_warn(rules, key, value, true);
911 r = rule_line_add_token(rule_line, TK_A_MODE, op, value, NULL);
912 }
913 } else if (streq(key, "SECLABEL")) {
914 if (isempty(attr))
915 return log_token_invalid_attr(rules, key);
916 check_value_format_and_warn(rules, key, value, true);
917 if (is_match || op == OP_REMOVE)
918 return log_token_invalid_op(rules, key);
919 if (op == OP_ASSIGN_FINAL) {
920 log_token_warning(rules, "%s key takes '=' or '+=' operator, assuming '=', but please fix it.", key);
921 op = OP_ASSIGN;
922 }
923
924 r = rule_line_add_token(rule_line, TK_A_SECLABEL, op, value, NULL);
925 } else if (streq(key, "RUN")) {
926 if (is_match || op == OP_REMOVE)
927 return log_token_invalid_op(rules, key);
928 check_value_format_and_warn(rules, key, value, true);
929 if (!attr || streq(attr, "program"))
930 r = rule_line_add_token(rule_line, TK_A_RUN_PROGRAM, op, value, NULL);
931 else if (streq(attr, "builtin")) {
932 UdevBuiltinCommand cmd;
933
934 cmd = udev_builtin_lookup(value);
935 if (cmd < 0)
936 return log_token_error_errno(rules, SYNTHETIC_ERRNO(EINVAL),
937 "Unknown builtin command '%s', ignoring", value);
938 r = rule_line_add_token(rule_line, TK_A_RUN_BUILTIN, op, value, UDEV_BUILTIN_CMD_TO_PTR(cmd));
939 } else
940 return log_token_invalid_attr(rules, key);
941 } else if (streq(key, "GOTO")) {
942 if (attr)
943 return log_token_invalid_attr(rules, key);
944 if (op != OP_ASSIGN)
945 return log_token_invalid_op(rules, key);
946 if (FLAGS_SET(rule_line->type, LINE_HAS_GOTO)) {
947 log_token_warning(rules, "Contains multiple GOTO key, ignoring GOTO=\"%s\".", value);
948 return 0;
949 }
950
951 rule_line->goto_label = value;
952 SET_FLAG(rule_line->type, LINE_HAS_GOTO, true);
953 return 1;
954 } else if (streq(key, "LABEL")) {
955 if (attr)
956 return log_token_invalid_attr(rules, key);
957 if (op != OP_ASSIGN)
958 return log_token_invalid_op(rules, key);
959
960 rule_line->label = value;
961 SET_FLAG(rule_line->type, LINE_HAS_LABEL, true);
962 return 1;
963 } else
964 return log_token_error_errno(rules, SYNTHETIC_ERRNO(EINVAL), "Invalid key '%s'", key);
965 if (r < 0)
966 return log_oom();
967
968 return 1;
969 }
970
971 static UdevRuleOperatorType parse_operator(const char *op) {
972 assert(op);
973
974 if (startswith(op, "=="))
975 return OP_MATCH;
976 if (startswith(op, "!="))
977 return OP_NOMATCH;
978 if (startswith(op, "+="))
979 return OP_ADD;
980 if (startswith(op, "-="))
981 return OP_REMOVE;
982 if (startswith(op, "="))
983 return OP_ASSIGN;
984 if (startswith(op, ":="))
985 return OP_ASSIGN_FINAL;
986
987 return _OP_TYPE_INVALID;
988 }
989
990 static int parse_line(char **line, char **ret_key, char **ret_attr, UdevRuleOperatorType *ret_op, char **ret_value) {
991 char *key_begin, *key_end, *attr, *tmp, *value, *i, *j;
992 UdevRuleOperatorType op;
993
994 assert(line);
995 assert(*line);
996 assert(ret_key);
997 assert(ret_op);
998 assert(ret_value);
999
1000 key_begin = skip_leading_chars(*line, WHITESPACE ",");
1001
1002 if (isempty(key_begin))
1003 return 0;
1004
1005 for (key_end = key_begin; ; key_end++) {
1006 if (key_end[0] == '\0')
1007 return -EINVAL;
1008 if (strchr(WHITESPACE "={", key_end[0]))
1009 break;
1010 if (strchr("+-!:", key_end[0]) && key_end[1] == '=')
1011 break;
1012 }
1013 if (key_end[0] == '{') {
1014 attr = key_end + 1;
1015 tmp = strchr(attr, '}');
1016 if (!tmp)
1017 return -EINVAL;
1018 *tmp++ = '\0';
1019 } else {
1020 attr = NULL;
1021 tmp = key_end;
1022 }
1023
1024 tmp = skip_leading_chars(tmp, NULL);
1025 op = parse_operator(tmp);
1026 if (op < 0)
1027 return -EINVAL;
1028
1029 key_end[0] = '\0';
1030
1031 tmp += op == OP_ASSIGN ? 1 : 2;
1032 value = skip_leading_chars(tmp, NULL);
1033
1034 /* value must be double quotated */
1035 if (value[0] != '"')
1036 return -EINVAL;
1037 value++;
1038
1039 /* unescape double quotation '\"' -> '"' */
1040 for (i = j = value; ; i++, j++) {
1041 if (*i == '"')
1042 break;
1043 if (*i == '\0')
1044 return -EINVAL;
1045 if (i[0] == '\\' && i[1] == '"')
1046 i++;
1047 *j = *i;
1048 }
1049 j[0] = '\0';
1050
1051 *line = i+1;
1052 *ret_key = key_begin;
1053 *ret_attr = attr;
1054 *ret_op = op;
1055 *ret_value = value;
1056 return 1;
1057 }
1058
1059 static void sort_tokens(UdevRuleLine *rule_line) {
1060 UdevRuleToken *head_old;
1061
1062 assert(rule_line);
1063
1064 head_old = TAKE_PTR(rule_line->tokens);
1065 rule_line->current_token = NULL;
1066
1067 while (!LIST_IS_EMPTY(head_old)) {
1068 UdevRuleToken *t, *min_token = NULL;
1069
1070 LIST_FOREACH(tokens, t, head_old)
1071 if (!min_token || min_token->type > t->type)
1072 min_token = t;
1073
1074 LIST_REMOVE(tokens, head_old, min_token);
1075 rule_line_append_token(rule_line, min_token);
1076 }
1077 }
1078
1079 static int rule_add_line(UdevRules *rules, const char *line_str, unsigned line_nr) {
1080 _cleanup_(udev_rule_line_freep) UdevRuleLine *rule_line = NULL;
1081 _cleanup_free_ char *line = NULL;
1082 UdevRuleFile *rule_file;
1083 char *p;
1084 int r;
1085
1086 assert(rules);
1087 assert(rules->current_file);
1088 assert(line_str);
1089
1090 rule_file = rules->current_file;
1091
1092 if (isempty(line_str))
1093 return 0;
1094
1095 line = strdup(line_str);
1096 if (!line)
1097 return log_oom();
1098
1099 rule_line = new(UdevRuleLine, 1);
1100 if (!rule_line)
1101 return log_oom();
1102
1103 *rule_line = (UdevRuleLine) {
1104 .line = TAKE_PTR(line),
1105 .line_number = line_nr,
1106 .rule_file = rule_file,
1107 };
1108
1109 if (rule_file->current_line)
1110 LIST_APPEND(rule_lines, rule_file->current_line, rule_line);
1111 else
1112 LIST_APPEND(rule_lines, rule_file->rule_lines, rule_line);
1113
1114 rule_file->current_line = rule_line;
1115
1116 for (p = rule_line->line; !isempty(p); ) {
1117 char *key, *attr, *value;
1118 UdevRuleOperatorType op;
1119
1120 r = parse_line(&p, &key, &attr, &op, &value);
1121 if (r < 0)
1122 return log_token_error_errno(rules, r, "Invalid key/value pair, ignoring.");
1123 if (r == 0)
1124 break;
1125
1126 r = parse_token(rules, key, attr, op, value);
1127 if (r < 0)
1128 return r;
1129 }
1130
1131 if (rule_line->type == 0) {
1132 log_token_warning(rules, "The line takes no effect, ignoring.");
1133 return 0;
1134 }
1135
1136 sort_tokens(rule_line);
1137 TAKE_PTR(rule_line);
1138 return 0;
1139 }
1140
1141 static void rule_resolve_goto(UdevRuleFile *rule_file) {
1142 UdevRuleLine *line, *line_next, *i;
1143
1144 assert(rule_file);
1145
1146 /* link GOTOs to LABEL rules in this file to be able to fast-forward */
1147 LIST_FOREACH_SAFE(rule_lines, line, line_next, rule_file->rule_lines) {
1148 if (!FLAGS_SET(line->type, LINE_HAS_GOTO))
1149 continue;
1150
1151 LIST_FOREACH_AFTER(rule_lines, i, line)
1152 if (streq_ptr(i->label, line->goto_label)) {
1153 line->goto_line = i;
1154 break;
1155 }
1156
1157 if (!line->goto_line) {
1158 log_error("%s:%u: GOTO=\"%s\" has no matching label, ignoring",
1159 rule_file->filename, line->line_number, line->goto_label);
1160
1161 SET_FLAG(line->type, LINE_HAS_GOTO, false);
1162 line->goto_label = NULL;
1163
1164 if ((line->type & ~LINE_HAS_LABEL) == 0) {
1165 log_notice("%s:%u: The line takes no effect any more, dropping",
1166 rule_file->filename, line->line_number);
1167 if (line->type == LINE_HAS_LABEL)
1168 udev_rule_line_clear_tokens(line);
1169 else
1170 udev_rule_line_free(line);
1171 }
1172 }
1173 }
1174 }
1175
1176 static int parse_file(UdevRules *rules, const char *filename) {
1177 _cleanup_free_ char *continuation = NULL, *name = NULL;
1178 _cleanup_fclose_ FILE *f = NULL;
1179 UdevRuleFile *rule_file;
1180 bool ignore_line = false;
1181 unsigned line_nr = 0;
1182 int r;
1183
1184 f = fopen(filename, "re");
1185 if (!f) {
1186 if (errno == ENOENT)
1187 return 0;
1188
1189 return -errno;
1190 }
1191
1192 (void) fd_warn_permissions(filename, fileno(f));
1193
1194 if (null_or_empty_fd(fileno(f))) {
1195 log_debug("Skipping empty file: %s", filename);
1196 return 0;
1197 }
1198
1199 log_debug("Reading rules file: %s", filename);
1200
1201 name = strdup(filename);
1202 if (!name)
1203 return log_oom();
1204
1205 rule_file = new(UdevRuleFile, 1);
1206 if (!rule_file)
1207 return log_oom();
1208
1209 *rule_file = (UdevRuleFile) {
1210 .filename = TAKE_PTR(name),
1211 };
1212
1213 if (rules->current_file)
1214 LIST_APPEND(rule_files, rules->current_file, rule_file);
1215 else
1216 LIST_APPEND(rule_files, rules->rule_files, rule_file);
1217
1218 rules->current_file = rule_file;
1219
1220 for (;;) {
1221 _cleanup_free_ char *buf = NULL;
1222 size_t len;
1223 char *line;
1224
1225 r = read_line(f, UTIL_LINE_SIZE, &buf);
1226 if (r < 0)
1227 return r;
1228 if (r == 0)
1229 break;
1230
1231 line_nr++;
1232 line = skip_leading_chars(buf, NULL);
1233
1234 if (line[0] == '#')
1235 continue;
1236
1237 len = strlen(line);
1238
1239 if (continuation && !ignore_line) {
1240 if (strlen(continuation) + len >= UTIL_LINE_SIZE)
1241 ignore_line = true;
1242
1243 if (!strextend(&continuation, line, NULL))
1244 return log_oom();
1245
1246 if (!ignore_line) {
1247 line = continuation;
1248 len = strlen(line);
1249 }
1250 }
1251
1252 if (len > 0 && line[len - 1] == '\\') {
1253 if (ignore_line)
1254 continue;
1255
1256 line[len - 1] = '\0';
1257 if (!continuation) {
1258 continuation = strdup(line);
1259 if (!continuation)
1260 return log_oom();
1261 }
1262
1263 continue;
1264 }
1265
1266 if (ignore_line)
1267 log_error("%s:%u: Line is too long, ignored", filename, line_nr);
1268 else if (len > 0)
1269 (void) rule_add_line(rules, line, line_nr);
1270
1271 continuation = mfree(continuation);
1272 ignore_line = false;
1273 }
1274
1275 rule_resolve_goto(rule_file);
1276 return 0;
1277 }
1278
1279 int udev_rules_new(UdevRules **ret_rules, ResolveNameTiming resolve_name_timing) {
1280 _cleanup_(udev_rules_freep) UdevRules *rules = NULL;
1281 _cleanup_strv_free_ char **files = NULL;
1282 char **f;
1283 int r;
1284
1285 assert(resolve_name_timing >= 0 && resolve_name_timing < _RESOLVE_NAME_TIMING_MAX);
1286
1287 rules = new(UdevRules, 1);
1288 if (!rules)
1289 return -ENOMEM;
1290
1291 *rules = (UdevRules) {
1292 .resolve_name_timing = resolve_name_timing,
1293 };
1294
1295 (void) udev_rules_check_timestamp(rules);
1296
1297 r = conf_files_list_strv(&files, ".rules", NULL, 0, RULES_DIRS);
1298 if (r < 0)
1299 return log_error_errno(r, "Failed to enumerate rules files: %m");
1300
1301 STRV_FOREACH(f, files)
1302 (void) parse_file(rules, *f);
1303
1304 *ret_rules = TAKE_PTR(rules);
1305 return 0;
1306 }
1307
1308 bool udev_rules_check_timestamp(UdevRules *rules) {
1309 if (!rules)
1310 return false;
1311
1312 return paths_check_timestamp(RULES_DIRS, &rules->dirs_ts_usec, true);
1313 }
1314
1315 static bool token_match_string(UdevRuleToken *token, const char *str) {
1316 const char *i, *value;
1317 bool match = false;
1318
1319 assert(token);
1320 assert(token->value);
1321 assert(token->type < _TK_M_MAX);
1322
1323 str = strempty(str);
1324 value = token->value;
1325
1326 switch (token->match_type) {
1327 case MATCH_TYPE_EMPTY:
1328 match = isempty(str);
1329 break;
1330 case MATCH_TYPE_SUBSYSTEM:
1331 value = "subsystem\0class\0bus\0";
1332 _fallthrough_;
1333 case MATCH_TYPE_PLAIN:
1334 NULSTR_FOREACH(i, value)
1335 if (streq(i, str)) {
1336 match = true;
1337 break;
1338 }
1339 break;
1340 case MATCH_TYPE_GLOB:
1341 NULSTR_FOREACH(i, value)
1342 if ((fnmatch(i, str, 0) == 0)) {
1343 match = true;
1344 break;
1345 }
1346 break;
1347 default:
1348 assert_not_reached("Invalid match type");
1349 }
1350
1351 return token->op == (match ? OP_MATCH : OP_NOMATCH);
1352 }
1353
1354 static bool token_match_attr(UdevRuleToken *token, sd_device *dev, UdevEvent *event) {
1355 char nbuf[UTIL_NAME_SIZE], vbuf[UTIL_NAME_SIZE];
1356 const char *name, *value;
1357
1358 assert(token);
1359 assert(dev);
1360 assert(event);
1361
1362 name = (const char*) token->data;
1363
1364 switch (token->attr_subst_type) {
1365 case SUBST_TYPE_FORMAT:
1366 (void) udev_event_apply_format(event, name, nbuf, sizeof(nbuf), false);
1367 name = nbuf;
1368 _fallthrough_;
1369 case SUBST_TYPE_PLAIN:
1370 if (sd_device_get_sysattr_value(dev, name, &value) < 0)
1371 return false;
1372 break;
1373 case SUBST_TYPE_SUBSYS:
1374 if (util_resolve_subsys_kernel(name, vbuf, sizeof(vbuf), true) < 0)
1375 return false;
1376 value = vbuf;
1377 break;
1378 default:
1379 assert_not_reached("Invalid attribute substitution type");
1380 }
1381
1382 /* remove trailing whitespace, if not asked to match for it */
1383 if (token->attr_match_remove_trailing_whitespace) {
1384 if (value != vbuf) {
1385 strscpy(vbuf, sizeof(vbuf), value);
1386 value = vbuf;
1387 }
1388
1389 delete_trailing_chars(vbuf, NULL);
1390 }
1391
1392 return token_match_string(token, value);
1393 }
1394
1395 static int get_property_from_string(char *line, char **ret_key, char **ret_value) {
1396 char *key, *val;
1397 size_t len;
1398
1399 assert(line);
1400 assert(ret_key);
1401 assert(ret_value);
1402
1403 /* find key */
1404 key = skip_leading_chars(line, NULL);
1405
1406 /* comment or empty line */
1407 if (IN_SET(key[0], '#', '\0')) {
1408 *ret_key = *ret_value = NULL;
1409 return 0;
1410 }
1411
1412 /* split key/value */
1413 val = strchr(key, '=');
1414 if (!val)
1415 return -EINVAL;
1416 *val++ = '\0';
1417
1418 key = strstrip(key);
1419 if (isempty(key))
1420 return -EINVAL;
1421
1422 val = strstrip(val);
1423 if (isempty(val))
1424 return -EINVAL;
1425
1426 /* unquote */
1427 if (IN_SET(val[0], '"', '\'')) {
1428 len = strlen(val);
1429 if (len == 1 || val[len-1] != val[0])
1430 return -EINVAL;
1431 val[len-1] = '\0';
1432 val++;
1433 }
1434
1435 *ret_key = key;
1436 *ret_value = val;
1437 return 1;
1438 }
1439
1440 static int import_parent_into_properties(sd_device *dev, const char *filter) {
1441 const char *key, *val;
1442 sd_device *parent;
1443 int r;
1444
1445 assert(dev);
1446 assert(filter);
1447
1448 r = sd_device_get_parent(dev, &parent);
1449 if (r == -ENOENT)
1450 return 0;
1451 if (r < 0)
1452 return r;
1453
1454 FOREACH_DEVICE_PROPERTY(parent, key, val) {
1455 if (fnmatch(filter, key, 0) != 0)
1456 continue;
1457 r = device_add_property(dev, key, val);
1458 if (r < 0)
1459 return r;
1460 }
1461
1462 return 1;
1463 }
1464
1465 static int attr_subst_subdir(char attr[static UTIL_PATH_SIZE]) {
1466 _cleanup_closedir_ DIR *dir = NULL;
1467 struct dirent *dent;
1468 char buf[UTIL_PATH_SIZE], *p;
1469 const char *tail;
1470 size_t len, size;
1471
1472 assert(attr);
1473
1474 tail = strstr(attr, "/*/");
1475 if (!tail)
1476 return 0;
1477
1478 len = tail - attr + 1; /* include slash at the end */
1479 tail += 2; /* include slash at the beginning */
1480
1481 p = buf;
1482 size = sizeof(buf);
1483 size -= strnpcpy(&p, size, attr, len);
1484
1485 dir = opendir(buf);
1486 if (!dir)
1487 return -errno;
1488
1489 FOREACH_DIRENT_ALL(dent, dir, break) {
1490 if (dent->d_name[0] == '.')
1491 continue;
1492
1493 strscpyl(p, size, dent->d_name, tail, NULL);
1494 if (faccessat(dirfd(dir), p, F_OK, 0) < 0)
1495 continue;
1496
1497 strcpy(attr, buf);
1498 return 0;
1499 }
1500
1501 return -ENOENT;
1502 }
1503
1504 static int udev_rule_apply_token_to_event(
1505 UdevRules *rules,
1506 sd_device *dev,
1507 UdevEvent *event,
1508 usec_t timeout_usec,
1509 Hashmap *properties_list) {
1510
1511 UdevRuleToken *token;
1512 char buf[UTIL_PATH_SIZE];
1513 const char *val;
1514 size_t count;
1515 bool match;
1516 int r;
1517
1518 assert(rules);
1519 assert(dev);
1520 assert(event);
1521
1522 /* This returns the following values:
1523 * 0 on the current token does not match the event,
1524 * 1 on the current token matches the event, and
1525 * negative errno on some critical errors. */
1526
1527 token = rules->current_file->current_line->current_token;
1528
1529 switch (token->type) {
1530 case TK_M_ACTION: {
1531 DeviceAction a;
1532
1533 r = device_get_action(dev, &a);
1534 if (r < 0)
1535 return log_rule_error_errno(dev, rules, r, "Failed to get uevent action type: %m");
1536
1537 return token_match_string(token, device_action_to_string(a));
1538 }
1539 case TK_M_DEVPATH:
1540 r = sd_device_get_devpath(dev, &val);
1541 if (r < 0)
1542 return log_rule_error_errno(dev, rules, r, "Failed to get devpath: %m");
1543
1544 return token_match_string(token, val);
1545 case TK_M_KERNEL:
1546 case TK_M_PARENTS_KERNEL:
1547 r = sd_device_get_sysname(dev, &val);
1548 if (r < 0)
1549 return log_rule_error_errno(dev, rules, r, "Failed to get sysname: %m");
1550
1551 return token_match_string(token, val);
1552 case TK_M_DEVLINK:
1553 FOREACH_DEVICE_DEVLINK(dev, val)
1554 if (token_match_string(token, strempty(startswith(val, "/dev/"))))
1555 return token->op == OP_MATCH;
1556 return token->op == OP_NOMATCH;
1557 case TK_M_NAME:
1558 return token_match_string(token, event->name);
1559 case TK_M_ENV:
1560 if (sd_device_get_property_value(dev, (const char*) token->data, &val) < 0)
1561 val = hashmap_get(properties_list, token->data);
1562
1563 return token_match_string(token, val);
1564 case TK_M_TAG:
1565 case TK_M_PARENTS_TAG:
1566 FOREACH_DEVICE_TAG(dev, val)
1567 if (token_match_string(token, val))
1568 return token->op == OP_MATCH;
1569 return token->op == OP_NOMATCH;
1570 case TK_M_SUBSYSTEM:
1571 case TK_M_PARENTS_SUBSYSTEM:
1572 r = sd_device_get_subsystem(dev, &val);
1573 if (r == -ENOENT)
1574 val = NULL;
1575 else if (r < 0)
1576 return log_rule_error_errno(dev, rules, r, "Failed to get subsystem: %m");
1577
1578 return token_match_string(token, val);
1579 case TK_M_DRIVER:
1580 case TK_M_PARENTS_DRIVER:
1581 r = sd_device_get_driver(dev, &val);
1582 if (r == -ENOENT)
1583 val = NULL;
1584 else if (r < 0)
1585 return log_rule_error_errno(dev, rules, r, "Failed to get driver: %m");
1586
1587 return token_match_string(token, val);
1588 case TK_M_ATTR:
1589 case TK_M_PARENTS_ATTR:
1590 return token_match_attr(token, dev, event);
1591 case TK_M_SYSCTL: {
1592 _cleanup_free_ char *value = NULL;
1593
1594 (void) udev_event_apply_format(event, (const char*) token->data, buf, sizeof(buf), false);
1595 r = sysctl_read(sysctl_normalize(buf), &value);
1596 if (r < 0 && r != -ENOENT)
1597 return log_rule_error_errno(dev, rules, r, "Failed to read sysctl '%s': %m", buf);
1598
1599 return token_match_string(token, strstrip(value));
1600 }
1601 case TK_M_TEST: {
1602 mode_t mode = PTR_TO_MODE(token->data);
1603 struct stat statbuf;
1604
1605 (void) udev_event_apply_format(event, token->value, buf, sizeof(buf), false);
1606 if (!path_is_absolute(buf) &&
1607 util_resolve_subsys_kernel(buf, buf, sizeof(buf), false) < 0) {
1608 char tmp[UTIL_PATH_SIZE];
1609
1610 r = sd_device_get_syspath(dev, &val);
1611 if (r < 0)
1612 return log_rule_error_errno(dev, rules, r, "Failed to get syspath: %m");
1613
1614 strscpy(tmp, sizeof(tmp), buf);
1615 strscpyl(buf, sizeof(buf), val, "/", tmp, NULL);
1616 }
1617
1618 r = attr_subst_subdir(buf);
1619 if (r == -ENOENT)
1620 return token->op == OP_NOMATCH;
1621 if (r < 0)
1622 return log_rule_error_errno(dev, rules, r, "Failed to test the existence of '%s': %m", buf);
1623
1624 if (stat(buf, &statbuf) < 0)
1625 return token->op == OP_NOMATCH;
1626
1627 if (mode == MODE_INVALID)
1628 return token->op == OP_MATCH;
1629
1630 match = (((statbuf.st_mode ^ mode) & 07777) == 0);
1631 return token->op == (match ? OP_MATCH : OP_NOMATCH);
1632 }
1633 case TK_M_PROGRAM: {
1634 char result[UTIL_LINE_SIZE];
1635
1636 event->program_result = mfree(event->program_result);
1637 (void) udev_event_apply_format(event, token->value, buf, sizeof(buf), false);
1638 log_rule_debug(dev, rules, "Running PROGRAM '%s'", buf);
1639
1640 r = udev_event_spawn(event, timeout_usec, true, buf, result, sizeof(result));
1641 if (r < 0)
1642 return log_rule_error_errno(dev, rules, r, "Failed to execute '%s': %m", buf);
1643 if (r > 0)
1644 return token->op == OP_NOMATCH;
1645
1646 delete_trailing_chars(result, "\n");
1647 count = util_replace_chars(result, UDEV_ALLOWED_CHARS_INPUT);
1648 if (count > 0)
1649 log_rule_debug(dev, rules, "Replaced %zu character(s) from result of '%s'",
1650 count, buf);
1651
1652 event->program_result = strdup(result);
1653 return token->op == OP_MATCH;
1654 }
1655 case TK_M_IMPORT_FILE: {
1656 _cleanup_fclose_ FILE *f = NULL;
1657
1658 (void) udev_event_apply_format(event, token->value, buf, sizeof(buf), false);
1659 log_rule_debug(dev, rules, "Importing properties from '%s'", buf);
1660
1661 f = fopen(buf, "re");
1662 if (!f) {
1663 if (errno != ENOENT)
1664 return log_rule_error_errno(dev, rules, errno,
1665 "Failed to open '%s': %m", buf);
1666 return token->op == OP_NOMATCH;
1667 }
1668
1669 for (;;) {
1670 _cleanup_free_ char *line = NULL;
1671 char *key, *value;
1672
1673 r = read_line(f, LONG_LINE_MAX, &line);
1674 if (r < 0) {
1675 log_rule_debug_errno(dev, rules, r,
1676 "Failed to read '%s', ignoring: %m", buf);
1677 return token->op == OP_NOMATCH;
1678 }
1679 if (r == 0)
1680 break;
1681
1682 r = get_property_from_string(line, &key, &value);
1683 if (r < 0) {
1684 log_rule_debug_errno(dev, rules, r,
1685 "Failed to parse key and value from '%s', ignoring: %m",
1686 line);
1687 continue;
1688 }
1689 if (r == 0)
1690 continue;
1691
1692 r = device_add_property(dev, key, value);
1693 if (r < 0)
1694 return log_rule_error_errno(dev, rules, r,
1695 "Failed to add property %s=%s: %m",
1696 key, value);
1697 }
1698
1699 return token->op == OP_MATCH;
1700 }
1701 case TK_M_IMPORT_PROGRAM: {
1702 char result[UTIL_LINE_SIZE], *line, *pos;
1703
1704 (void) udev_event_apply_format(event, token->value, buf, sizeof(buf), false);
1705 log_rule_debug(dev, rules, "Importing properties from results of '%s'", buf);
1706
1707 r = udev_event_spawn(event, timeout_usec, true, buf, result, sizeof result);
1708 if (r < 0)
1709 return log_rule_error_errno(dev, rules, r, "Failed to execute '%s': %m", buf);
1710 if (r > 0) {
1711 log_rule_debug(dev, rules, "Command \"%s\" returned %d (error), ignoring", buf, r);
1712 return token->op == OP_NOMATCH;
1713 }
1714
1715 for (line = result; !isempty(line); line = pos) {
1716 char *key, *value;
1717
1718 pos = strchr(line, '\n');
1719 if (pos)
1720 *pos++ = '\0';
1721
1722 r = get_property_from_string(line, &key, &value);
1723 if (r < 0) {
1724 log_rule_debug_errno(dev, rules, r,
1725 "Failed to parse key and value from '%s', ignoring: %m",
1726 line);
1727 continue;
1728 }
1729 if (r == 0)
1730 continue;
1731
1732 r = device_add_property(dev, key, value);
1733 if (r < 0)
1734 return log_rule_error_errno(dev, rules, r,
1735 "Failed to add property %s=%s: %m",
1736 key, value);
1737 }
1738
1739 return token->op == OP_MATCH;
1740 }
1741 case TK_M_IMPORT_BUILTIN: {
1742 UdevBuiltinCommand cmd = PTR_TO_UDEV_BUILTIN_CMD(token->data);
1743 unsigned mask = 1U << (int) cmd;
1744
1745 if (udev_builtin_run_once(cmd)) {
1746 /* check if we ran already */
1747 if (event->builtin_run & mask) {
1748 log_rule_debug(dev, rules, "Skipping builtin '%s' in IMPORT key",
1749 udev_builtin_name(cmd));
1750 /* return the result from earlier run */
1751 return token->op == (event->builtin_ret & mask ? OP_NOMATCH : OP_MATCH);
1752 }
1753 /* mark as ran */
1754 event->builtin_run |= mask;
1755 }
1756
1757 (void) udev_event_apply_format(event, token->value, buf, sizeof(buf), false);
1758 log_rule_debug(dev, rules, "Importing properties from results of builtin command '%s'", buf);
1759
1760 r = udev_builtin_run(dev, cmd, buf, false);
1761 if (r < 0) {
1762 /* remember failure */
1763 log_rule_debug_errno(dev, rules, r, "Failed to run builtin '%s': %m", buf);
1764 event->builtin_ret |= mask;
1765 }
1766 return token->op == (r >= 0 ? OP_MATCH : OP_NOMATCH);
1767 }
1768 case TK_M_IMPORT_DB: {
1769 if (!event->dev_db_clone)
1770 return token->op == OP_NOMATCH;
1771 r = sd_device_get_property_value(event->dev_db_clone, token->value, &val);
1772 if (r == -ENOENT)
1773 return token->op == OP_NOMATCH;
1774 if (r < 0)
1775 return log_rule_error_errno(dev, rules, r,
1776 "Failed to get property '%s' from database: %m",
1777 token->value);
1778
1779 r = device_add_property(dev, token->value, val);
1780 if (r < 0)
1781 return log_rule_error_errno(dev, rules, r, "Failed to add property '%s=%s': %m",
1782 token->value, val);
1783 return token->op == OP_MATCH;
1784 }
1785 case TK_M_IMPORT_CMDLINE: {
1786 _cleanup_free_ char *value = NULL;
1787
1788 r = proc_cmdline_get_key(token->value, PROC_CMDLINE_VALUE_OPTIONAL, &value);
1789 if (r < 0)
1790 return log_rule_error_errno(dev, rules, r,
1791 "Failed to read '%s' option from /proc/cmdline: %m",
1792 token->value);
1793 if (r == 0)
1794 return token->op == OP_NOMATCH;
1795
1796 r = device_add_property(dev, token->value, value ?: "1");
1797 if (r < 0)
1798 return log_rule_error_errno(dev, rules, r, "Failed to add property '%s=%s': %m",
1799 token->value, value ?: "1");
1800 return token->op == OP_MATCH;
1801 }
1802 case TK_M_IMPORT_PARENT: {
1803 (void) udev_event_apply_format(event, token->value, buf, sizeof(buf), false);
1804 r = import_parent_into_properties(dev, buf);
1805 if (r < 0)
1806 return log_rule_error_errno(dev, rules, r,
1807 "Failed to import properties '%s' from parent: %m",
1808 buf);
1809 return token->op == (r > 0 ? OP_MATCH : OP_NOMATCH);
1810 }
1811 case TK_M_RESULT:
1812 return token_match_string(token, event->program_result);
1813 case TK_A_OPTIONS_STRING_ESCAPE_NONE:
1814 event->esc = ESCAPE_NONE;
1815 break;
1816 case TK_A_OPTIONS_STRING_ESCAPE_REPLACE:
1817 event->esc = ESCAPE_REPLACE;
1818 break;
1819 case TK_A_OPTIONS_DB_PERSIST:
1820 device_set_db_persist(dev);
1821 break;
1822 case TK_A_OPTIONS_INOTIFY_WATCH:
1823 if (event->inotify_watch_final)
1824 break;
1825 if (token->op == OP_ASSIGN_FINAL)
1826 event->inotify_watch_final = true;
1827
1828 event->inotify_watch = token->data;
1829 break;
1830 case TK_A_OPTIONS_DEVLINK_PRIORITY:
1831 device_set_devlink_priority(dev, PTR_TO_INT(token->data));
1832 break;
1833 case TK_A_OWNER: {
1834 char owner[UTIL_NAME_SIZE];
1835 const char *ow = owner;
1836
1837 if (event->owner_final)
1838 break;
1839 if (token->op == OP_ASSIGN_FINAL)
1840 event->owner_final = true;
1841
1842 (void) udev_event_apply_format(event, token->value, owner, sizeof(owner), false);
1843 r = get_user_creds(&ow, &event->uid, NULL, NULL, NULL, USER_CREDS_ALLOW_MISSING);
1844 if (r < 0)
1845 log_unknown_owner(dev, rules, r, "user", owner);
1846 else
1847 log_rule_debug(dev, rules, "OWNER %s(%u)", owner, event->uid);
1848 break;
1849 }
1850 case TK_A_GROUP: {
1851 char group[UTIL_NAME_SIZE];
1852 const char *gr = group;
1853
1854 if (event->group_final)
1855 break;
1856 if (token->op == OP_ASSIGN_FINAL)
1857 event->group_final = true;
1858
1859 (void) udev_event_apply_format(event, token->value, group, sizeof(group), false);
1860 r = get_group_creds(&gr, &event->gid, USER_CREDS_ALLOW_MISSING);
1861 if (r < 0)
1862 log_unknown_owner(dev, rules, r, "group", group);
1863 else
1864 log_rule_debug(dev, rules, "GROUP %s(%u)", group, event->gid);
1865 break;
1866 }
1867 case TK_A_MODE: {
1868 char mode_str[UTIL_NAME_SIZE];
1869
1870 if (event->mode_final)
1871 break;
1872 if (token->op == OP_ASSIGN_FINAL)
1873 event->mode_final = true;
1874
1875 (void) udev_event_apply_format(event, token->value, mode_str, sizeof(mode_str), false);
1876 r = parse_mode(mode_str, &event->mode);
1877 if (r < 0)
1878 log_rule_error_errno(dev, rules, r, "Failed to parse mode '%s', ignoring: %m", mode_str);
1879 else
1880 log_rule_debug(dev, rules, "MODE %#o", event->mode);
1881 break;
1882 }
1883 case TK_A_OWNER_ID:
1884 if (event->owner_final)
1885 break;
1886 if (token->op == OP_ASSIGN_FINAL)
1887 event->owner_final = true;
1888 if (!token->data)
1889 break;
1890 event->uid = PTR_TO_UID(token->data);
1891 log_rule_debug(dev, rules, "OWNER %u", event->uid);
1892 break;
1893 case TK_A_GROUP_ID:
1894 if (event->group_final)
1895 break;
1896 if (token->op == OP_ASSIGN_FINAL)
1897 event->group_final = true;
1898 if (!token->data)
1899 break;
1900 event->gid = PTR_TO_GID(token->data);
1901 log_rule_debug(dev, rules, "GROUP %u", event->gid);
1902 break;
1903 case TK_A_MODE_ID:
1904 if (event->mode_final)
1905 break;
1906 if (token->op == OP_ASSIGN_FINAL)
1907 event->mode_final = true;
1908 if (!token->data)
1909 break;
1910 event->mode = PTR_TO_MODE(token->data);
1911 log_rule_debug(dev, rules, "MODE %#o", event->mode);
1912 break;
1913 case TK_A_SECLABEL: {
1914 _cleanup_free_ char *name = NULL, *label = NULL;
1915 char label_str[UTIL_LINE_SIZE] = {};
1916
1917 name = strdup((const char*) token->data);
1918 if (!name)
1919 return log_oom();
1920
1921 (void) udev_event_apply_format(event, token->value, label_str, sizeof(label_str), false);
1922 if (!isempty(label_str))
1923 label = strdup(label_str);
1924 else
1925 label = strdup(token->value);
1926 if (!label)
1927 return log_oom();
1928
1929 if (token->op == OP_ASSIGN)
1930 ordered_hashmap_clear_free_free(event->seclabel_list);
1931
1932 r = ordered_hashmap_ensure_allocated(&event->seclabel_list, NULL);
1933 if (r < 0)
1934 return log_oom();
1935
1936 r = ordered_hashmap_put(event->seclabel_list, name, label);
1937 if (r < 0)
1938 return log_oom();
1939 log_rule_debug(dev, rules, "SECLABEL{%s}='%s'", name, label);
1940 name = label = NULL;
1941 break;
1942 }
1943 case TK_A_ENV: {
1944 const char *name = (const char*) token->data;
1945 char value_new[UTIL_NAME_SIZE], *p = value_new;
1946 size_t l = sizeof(value_new);
1947
1948 if (isempty(token->value)) {
1949 if (token->op == OP_ADD)
1950 break;
1951 r = device_add_property(dev, name, NULL);
1952 if (r < 0)
1953 return log_rule_error_errno(dev, rules, r, "Failed to remove property '%s': %m", name);
1954 break;
1955 }
1956
1957 if (token->op == OP_ADD &&
1958 sd_device_get_property_value(dev, name, &val) >= 0)
1959 l = strpcpyl(&p, l, val, " ", NULL);
1960
1961 (void) udev_event_apply_format(event, token->value, p, l, false);
1962
1963 r = device_add_property(dev, name, value_new);
1964 if (r < 0)
1965 return log_rule_error_errno(dev, rules, r, "Failed to add property '%s=%s': %m", name, value_new);
1966 break;
1967 }
1968 case TK_A_TAG: {
1969 (void) udev_event_apply_format(event, token->value, buf, sizeof(buf), false);
1970 if (token->op == OP_ASSIGN)
1971 device_cleanup_tags(dev);
1972
1973 if (buf[strspn(buf, ALPHANUMERICAL "-_")] != '\0') {
1974 log_rule_error(dev, rules, "Invalid tag name '%s', ignoring", buf);
1975 break;
1976 }
1977 if (token->op == OP_REMOVE)
1978 device_remove_tag(dev, buf);
1979 else {
1980 r = device_add_tag(dev, buf);
1981 if (r < 0)
1982 return log_rule_error_errno(dev, rules, r, "Failed to add tag '%s': %m", buf);
1983 }
1984 break;
1985 }
1986 case TK_A_NAME: {
1987 if (event->name_final)
1988 break;
1989 if (token->op == OP_ASSIGN_FINAL)
1990 event->name_final = true;
1991
1992 (void) udev_event_apply_format(event, token->value, buf, sizeof(buf), false);
1993 if (IN_SET(event->esc, ESCAPE_UNSET, ESCAPE_REPLACE)) {
1994 count = util_replace_chars(buf, "/");
1995 if (count > 0)
1996 log_rule_debug(dev, rules, "Replaced %zu character(s) from result of NAME=\"%s\"",
1997 count, token->value);
1998 }
1999 if (sd_device_get_devnum(dev, NULL) >= 0 &&
2000 (sd_device_get_devname(dev, &val) < 0 ||
2001 !streq_ptr(buf, startswith(val, "/dev/")))) {
2002 log_rule_error(dev, rules,
2003 "Kernel device nodes cannot be renamed, ignoring NAME=\"%s\"; please fix it.",
2004 token->value);
2005 break;
2006 }
2007 if (free_and_strdup(&event->name, buf) < 0)
2008 return log_oom();
2009
2010 log_rule_debug(dev, rules, "NAME '%s'", event->name);
2011 break;
2012 }
2013 case TK_A_DEVLINK: {
2014 char *p;
2015
2016 if (event->devlink_final)
2017 break;
2018 if (sd_device_get_devnum(dev, NULL) < 0)
2019 break;
2020 if (token->op == OP_ASSIGN_FINAL)
2021 event->devlink_final = true;
2022 if (IN_SET(token->op, OP_ASSIGN, OP_ASSIGN_FINAL))
2023 device_cleanup_devlinks(dev);
2024
2025 /* allow multiple symlinks separated by spaces */
2026 (void) udev_event_apply_format(event, token->value, buf, sizeof(buf), event->esc != ESCAPE_NONE);
2027 if (event->esc == ESCAPE_UNSET)
2028 count = util_replace_chars(buf, "/ ");
2029 else if (event->esc == ESCAPE_REPLACE)
2030 count = util_replace_chars(buf, "/");
2031 else
2032 count = 0;
2033 if (count > 0)
2034 log_rule_debug(dev, rules, "Replaced %zu character(s) from result of LINK", count);
2035
2036 p = skip_leading_chars(buf, NULL);
2037 while (!isempty(p)) {
2038 char filename[UTIL_PATH_SIZE], *next;
2039
2040 next = strchr(p, ' ');
2041 if (next) {
2042 *next++ = '\0';
2043 next = skip_leading_chars(next, NULL);
2044 }
2045
2046 strscpyl(filename, sizeof(filename), "/dev/", p, NULL);
2047 r = device_add_devlink(dev, filename);
2048 if (r < 0)
2049 return log_rule_error_errno(dev, rules, r, "Failed to add devlink '%s': %m", filename);
2050
2051 log_rule_debug(dev, rules, "LINK '%s'", p);
2052 p = next;
2053 }
2054 break;
2055 }
2056 case TK_A_ATTR: {
2057 const char *key_name = (const char*) token->data;
2058 char value[UTIL_NAME_SIZE];
2059
2060 if (util_resolve_subsys_kernel(key_name, buf, sizeof(buf), false) < 0 &&
2061 sd_device_get_syspath(dev, &val) >= 0)
2062 strscpyl(buf, sizeof(buf), val, "/", key_name, NULL);
2063
2064 r = attr_subst_subdir(buf);
2065 if (r < 0) {
2066 log_rule_error_errno(dev, rules, r, "Could not find file matches '%s', ignoring: %m", buf);
2067 break;
2068 }
2069 (void) udev_event_apply_format(event, token->value, value, sizeof(value), false);
2070
2071 log_rule_debug(dev, rules, "ATTR '%s' writing '%s'", buf, value);
2072 r = write_string_file(buf, value, WRITE_STRING_FILE_VERIFY_ON_FAILURE | WRITE_STRING_FILE_DISABLE_BUFFER);
2073 if (r < 0)
2074 log_rule_error_errno(dev, rules, r, "Failed to write ATTR{%s}, ignoring: %m", buf);
2075 break;
2076 }
2077 case TK_A_SYSCTL: {
2078 char value[UTIL_NAME_SIZE];
2079
2080 (void) udev_event_apply_format(event, (const char*) token->data, buf, sizeof(buf), false);
2081 (void) udev_event_apply_format(event, token->value, value, sizeof(value), false);
2082 sysctl_normalize(buf);
2083 log_rule_debug(dev, rules, "SYSCTL '%s' writing '%s'", buf, value);
2084 r = sysctl_write(buf, value);
2085 if (r < 0)
2086 log_rule_error_errno(dev, rules, r, "Failed to write SYSCTL{%s}='%s', ignoring: %m", buf, value);
2087 break;
2088 }
2089 case TK_A_RUN_BUILTIN:
2090 case TK_A_RUN_PROGRAM: {
2091 _cleanup_free_ char *cmd = NULL;
2092
2093 if (event->run_final)
2094 break;
2095 if (token->op == OP_ASSIGN_FINAL)
2096 event->run_final = true;
2097
2098 if (IN_SET(token->op, OP_ASSIGN, OP_ASSIGN_FINAL))
2099 ordered_hashmap_clear_free_key(event->run_list);
2100
2101 r = ordered_hashmap_ensure_allocated(&event->run_list, NULL);
2102 if (r < 0)
2103 return log_oom();
2104
2105 (void) udev_event_apply_format(event, token->value, buf, sizeof(buf), false);
2106
2107 cmd = strdup(buf);
2108 if (!cmd)
2109 return log_oom();
2110
2111 r = ordered_hashmap_put(event->run_list, cmd, token->data);
2112 if (r < 0)
2113 return log_oom();
2114
2115 TAKE_PTR(cmd);
2116
2117 log_rule_debug(dev, rules, "RUN '%s'", token->value);
2118 break;
2119 }
2120 case TK_A_OPTIONS_STATIC_NODE:
2121 /* do nothing for events. */
2122 break;
2123 default:
2124 assert_not_reached("Invalid token type");
2125 }
2126
2127 return true;
2128 }
2129
2130 static bool token_is_for_parents(UdevRuleToken *token) {
2131 return token->type >= TK_M_PARENTS_KERNEL && token->type <= TK_M_PARENTS_TAG;
2132 }
2133
2134 static int udev_rule_apply_parent_token_to_event(
2135 UdevRules *rules,
2136 UdevEvent *event) {
2137
2138 UdevRuleLine *line;
2139 UdevRuleToken *head;
2140 int r;
2141
2142 line = rules->current_file->current_line;
2143 head = rules->current_file->current_line->current_token;
2144 event->dev_parent = event->dev;
2145 for (;;) {
2146 LIST_FOREACH(tokens, line->current_token, head) {
2147 if (!token_is_for_parents(line->current_token))
2148 return true; /* All parent tokens match. */
2149 r = udev_rule_apply_token_to_event(rules, event->dev_parent, event, 0, NULL);
2150 if (r < 0)
2151 return r;
2152 if (r == 0)
2153 break;
2154 }
2155 if (!line->current_token)
2156 /* All parent tokens match. But no assign tokens in the line. Hmm... */
2157 return true;
2158
2159 if (sd_device_get_parent(event->dev_parent, &event->dev_parent) < 0) {
2160 event->dev_parent = NULL;
2161 return false;
2162 }
2163 }
2164 }
2165
2166 static int udev_rule_apply_line_to_event(
2167 UdevRules *rules,
2168 UdevEvent *event,
2169 usec_t timeout_usec,
2170 Hashmap *properties_list,
2171 UdevRuleLine **next_line) {
2172
2173 UdevRuleLine *line = rules->current_file->current_line;
2174 UdevRuleLineType mask = LINE_HAS_GOTO | LINE_UPDATE_SOMETHING;
2175 UdevRuleToken *token, *next_token;
2176 bool parents_done = false;
2177 DeviceAction action;
2178 int r;
2179
2180 r = device_get_action(event->dev, &action);
2181 if (r < 0)
2182 return r;
2183
2184 if (action != DEVICE_ACTION_REMOVE) {
2185 if (sd_device_get_devnum(event->dev, NULL) >= 0)
2186 mask |= LINE_HAS_DEVLINK;
2187
2188 if (sd_device_get_ifindex(event->dev, NULL) >= 0)
2189 mask |= LINE_HAS_NAME;
2190 }
2191
2192 if ((line->type & mask) == 0)
2193 return 0;
2194
2195 event->esc = ESCAPE_UNSET;
2196 LIST_FOREACH_SAFE(tokens, token, next_token, line->tokens) {
2197 line->current_token = token;
2198
2199 if (token_is_for_parents(token)) {
2200 if (parents_done)
2201 continue;
2202
2203 r = udev_rule_apply_parent_token_to_event(rules, event);
2204 if (r <= 0)
2205 return r;
2206
2207 parents_done = true;
2208 continue;
2209 }
2210
2211 r = udev_rule_apply_token_to_event(rules, event->dev, event, timeout_usec, properties_list);
2212 if (r <= 0)
2213 return r;
2214 }
2215
2216 if (line->goto_line)
2217 *next_line = line->goto_line;
2218
2219 return 0;
2220 }
2221
2222 int udev_rules_apply_to_event(
2223 UdevRules *rules,
2224 UdevEvent *event,
2225 usec_t timeout_usec,
2226 Hashmap *properties_list) {
2227
2228 UdevRuleFile *file;
2229 UdevRuleLine *next_line;
2230 int r;
2231
2232 assert(rules);
2233 assert(event);
2234
2235 LIST_FOREACH(rule_files, file, rules->rule_files) {
2236 rules->current_file = file;
2237 LIST_FOREACH_SAFE(rule_lines, file->current_line, next_line, file->rule_lines) {
2238 r = udev_rule_apply_line_to_event(rules, event, timeout_usec, properties_list, &next_line);
2239 if (r < 0)
2240 return r;
2241 }
2242 }
2243
2244 return 0;
2245 }
2246
2247 static int apply_static_dev_perms(const char *devnode, uid_t uid, gid_t gid, mode_t mode, char **tags) {
2248 char device_node[UTIL_PATH_SIZE], tags_dir[UTIL_PATH_SIZE], tag_symlink[UTIL_PATH_SIZE];
2249 _cleanup_free_ char *unescaped_filename = NULL;
2250 struct stat stats;
2251 char **t;
2252 int r;
2253
2254 assert(devnode);
2255
2256 if (uid == UID_INVALID && gid == GID_INVALID && mode == MODE_INVALID && !tags)
2257 return 0;
2258
2259 strscpyl(device_node, sizeof(device_node), "/dev/", devnode, NULL);
2260 if (stat(device_node, &stats) < 0) {
2261 if (errno != ENOENT)
2262 return log_error_errno(errno, "Failed to stat %s: %m", device_node);
2263 return 0;
2264 }
2265
2266 if (!S_ISBLK(stats.st_mode) && !S_ISCHR(stats.st_mode)) {
2267 log_warning("%s is neither block nor character device, ignoring.", device_node);
2268 return 0;
2269 }
2270
2271 if (!strv_isempty(tags)) {
2272 unescaped_filename = xescape(devnode, "/.");
2273 if (!unescaped_filename)
2274 return log_oom();
2275 }
2276
2277 /* export the tags to a directory as symlinks, allowing otherwise dead nodes to be tagged */
2278 STRV_FOREACH(t, tags) {
2279 strscpyl(tags_dir, sizeof(tags_dir), "/run/udev/static_node-tags/", *t, "/", NULL);
2280 r = mkdir_p(tags_dir, 0755);
2281 if (r < 0)
2282 return log_error_errno(r, "Failed to create %s: %m", tags_dir);
2283
2284 strscpyl(tag_symlink, sizeof(tag_symlink), tags_dir, unescaped_filename, NULL);
2285 r = symlink(device_node, tag_symlink);
2286 if (r < 0 && errno != EEXIST)
2287 return log_error_errno(errno, "Failed to create symlink %s -> %s: %m",
2288 tag_symlink, device_node);
2289 }
2290
2291 /* don't touch the permissions if only the tags were set */
2292 if (uid == UID_INVALID && gid == GID_INVALID && mode == MODE_INVALID)
2293 return 0;
2294
2295 if (mode == MODE_INVALID)
2296 mode = gid_is_valid(gid) ? 0660 : 0600;
2297 if (!uid_is_valid(uid))
2298 uid = 0;
2299 if (!gid_is_valid(gid))
2300 gid = 0;
2301
2302 r = chmod_and_chown(device_node, mode, uid, gid);
2303 if (r < 0)
2304 return log_error_errno(errno, "Failed to chown '%s' %u %u: %m",
2305 device_node, uid, gid);
2306 else
2307 log_debug("chown '%s' %u:%u with mode %#o", device_node, uid, gid, mode);
2308
2309 (void) utimensat(AT_FDCWD, device_node, NULL, 0);
2310 return 0;
2311 }
2312
2313 static int udev_rule_line_apply_static_dev_perms(UdevRuleLine *rule_line) {
2314 UdevRuleToken *token;
2315 _cleanup_free_ char **tags = NULL;
2316 uid_t uid = UID_INVALID;
2317 gid_t gid = GID_INVALID;
2318 mode_t mode = MODE_INVALID;
2319 int r;
2320
2321 assert(rule_line);
2322
2323 if (!FLAGS_SET(rule_line->type, LINE_HAS_STATIC_NODE))
2324 return 0;
2325
2326 LIST_FOREACH(tokens, token, rule_line->tokens)
2327 if (token->type == TK_A_OWNER_ID)
2328 uid = PTR_TO_UID(token->data);
2329 else if (token->type == TK_A_GROUP_ID)
2330 gid = PTR_TO_GID(token->data);
2331 else if (token->type == TK_A_MODE_ID)
2332 mode = PTR_TO_MODE(token->data);
2333 else if (token->type == TK_A_TAG) {
2334 r = strv_extend(&tags, token->value);
2335 if (r < 0)
2336 return log_oom();
2337 } else if (token->type == TK_A_OPTIONS_STATIC_NODE) {
2338 r = apply_static_dev_perms(token->value, uid, gid, mode, tags);
2339 if (r < 0)
2340 return r;
2341 }
2342
2343 return 0;
2344 }
2345
2346 int udev_rules_apply_static_dev_perms(UdevRules *rules) {
2347 UdevRuleFile *file;
2348 UdevRuleLine *line;
2349 int r;
2350
2351 assert(rules);
2352
2353 LIST_FOREACH(rule_files, file, rules->rule_files)
2354 LIST_FOREACH(rule_lines, line, file->rule_lines) {
2355 r = udev_rule_line_apply_static_dev_perms(line);
2356 if (r < 0)
2357 return r;
2358 }
2359
2360 return 0;
2361 }
Unnamed repository; edit this file 'description' to name the repository.