[thirdparty/chrony.git] / main.c

/*
  chronyd/chronyc - Programs for keeping computer clocks accurate.

 **********************************************************************
 * Copyright (C) Richard P. Curnow  1997-2003
 * Copyright (C) John G. Hasler  2009
 * Copyright (C) Miroslav Lichvar  2012-2020
 * 
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of version 2 of the GNU General Public License as
 * published by the Free Software Foundation.
 * 
 * This program is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * General Public License for more details.
 * 
 * You should have received a copy of the GNU General Public License along
 * with this program; if not, write to the Free Software Foundation, Inc.,
 * 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 * 
 **********************************************************************

  =======================================================================

  The main program
  */

#include "config.h"

#include "sysincl.h"

#include "main.h"
#include "sched.h"
#include "leapdb.h"
#include "local.h"
#include "sys.h"
#include "ntp_io.h"
#include "ntp_signd.h"
#include "ntp_sources.h"
#include "ntp_core.h"
#include "nts_ke_server.h"
#include "nts_ntp_server.h"
#include "socket.h"
#include "sources.h"
#include "sourcestats.h"
#include "reference.h"
#include "logging.h"
#include "conf.h"
#include "cmdmon.h"
#include "keys.h"
#include "manual.h"
#include "rtc.h"
#include "refclock.h"
#include "clientlog.h"
#include "nameserv.h"
#include "privops.h"
#include "smooth.h"
#include "tempcomp.h"
#include "util.h"

/* ================================================== */

/* Set when the initialisation chain has been completed.  Prevents finalisation
 * chain being run if a fatal error happened early. */

static int initialised = 0;

static int exit_status = 0;

static int reload = 0;

static REF_Mode ref_mode = REF_ModeNormal;

/* ================================================== */

static void
do_platform_checks(void)
{
  struct timespec ts;

  /* Require at least 32-bit integers, two's complement representation and
     the usual implementation of conversion of unsigned integers */
  assert(sizeof (int) >= 4);
  assert(-1 == ~0);
  assert((int32_t)4294967295U == (int32_t)-1);

  /* Require time_t and tv_nsec in timespec to be signed */
  ts.tv_sec = -1;
  ts.tv_nsec = -1;
  assert(ts.tv_sec < 0 && ts.tv_nsec < 0);
}

/* ================================================== */

static void
delete_pidfile(void)
{
  const char *pidfile = CNF_GetPidFile();

  if (!pidfile)
    return;

  if (!UTI_RemoveFile(NULL, pidfile, NULL))
    ;
}

/* ================================================== */

void
MAI_CleanupAndExit(void)
{
  if (!initialised) exit(exit_status);
  
  LCL_CancelOffsetCorrection();
  SRC_DumpSources();

  /* Don't update clock when removing sources */
  REF_SetMode(REF_ModeIgnore);

  SMT_Finalise();
  TMC_Finalise();
  MNL_Finalise();
  CLG_Finalise();
  NKS_Finalise();
  NNS_Finalise();
  NSD_Finalise();
  NSR_Finalise();
  SST_Finalise();
  NCR_Finalise();
  NIO_Finalise();
  CAM_Finalise();

  KEY_Finalise();
  RCL_Finalise();
  SRC_Finalise();
  REF_Finalise();
  LDB_Finalise();
  RTC_Finalise();
  SYS_Finalise();

  SCK_Finalise();
  SCH_Finalise();
  LCL_Finalise();
  PRV_Finalise();

  delete_pidfile();
  
  CNF_Finalise();
  HSH_Finalise();
  LOG_Finalise();

  UTI_ResetGetRandomFunctions();

  exit(exit_status);
}

/* ================================================== */

static void
signal_cleanup(int x)
{
  SCH_QuitProgram();
}

/* ================================================== */

static void
quit_timeout(void *arg)
{
  LOG(LOGS_INFO, "Timeout reached");

  /* Return with non-zero status if the clock is not synchronised */
  exit_status = REF_GetOurStratum() >= NTP_MAX_STRATUM;
  SCH_QuitProgram();
}

/* ================================================== */

static void
ntp_source_resolving_end(void)
{
  NSR_SetSourceResolvingEndHandler(NULL);

  if (reload) {
    /* Note, we want reload to come well after the initialisation from
       the real time clock - this gives us a fighting chance that the
       system-clock scale for the reloaded samples still has a
       semblence of validity about it. */
    SRC_ReloadSources();
  }

  SRC_RemoveDumpFiles();
  RTC_StartMeasurements();
  RCL_StartRefclocks();
  NSR_StartSources();
  NSR_AutoStartSources();

  /* Special modes can end only when sources update their reachability.
     Give up immediately if there are no active sources. */
  if (ref_mode != REF_ModeNormal && !SRC_ActiveSources()) {
    REF_SetUnsynchronised();
  }
}

/* ================================================== */

static void
post_init_ntp_hook(void *anything)
{
  if (ref_mode == REF_ModeInitStepSlew) {
    /* Remove the initstepslew sources and set normal mode */
    NSR_RemoveAllSources();
    ref_mode = REF_ModeNormal;
    REF_SetMode(ref_mode);
  }

  /* Close the pipe to the foreground process so it can exit */
  LOG_CloseParentFd();

  CNF_AddSources();
  CNF_AddBroadcasts();

  NSR_SetSourceResolvingEndHandler(ntp_source_resolving_end);
  NSR_ResolveSources();
}

/* ================================================== */

static void
reference_mode_end(int result)
{
  switch (ref_mode) {
    case REF_ModeNormal:
    case REF_ModeUpdateOnce:
    case REF_ModePrintOnce:
      exit_status = !result;
      SCH_QuitProgram();
      break;
    case REF_ModeInitStepSlew:
      /* Switch to the normal mode, the delay is used to prevent polling
         interval shorter than the burst interval if some configured servers
         were used also for initstepslew */
      SCH_AddTimeoutByDelay(2.0, post_init_ntp_hook, NULL);
      break;
    default:
      assert(0);
  }
}

/* ================================================== */

static void
post_init_rtc_hook(void *anything)
{
  if (CNF_GetInitSources() > 0) {
    CNF_AddInitSources();
    NSR_StartSources();
    assert(REF_GetMode() != REF_ModeNormal);
    /* Wait for mode end notification */
  } else {
    (post_init_ntp_hook)(NULL);
  }
}

/* ================================================== */

static void
check_pidfile(void)
{
  const char *pidfile = CNF_GetPidFile();
  FILE *in;
  int pid, count;
  
  if (!pidfile)
    return;

  in = UTI_OpenFile(NULL, pidfile, NULL, 'r', 0);
  if (!in)
    return;

  count = fscanf(in, "%d", &pid);
  fclose(in);
  
  if (count != 1)
    return;

  if (getsid(pid) < 0)
    return;

  LOG_FATAL("Another chronyd may already be running (pid=%d), check %s",
            pid, pidfile);
}

/* ================================================== */

static void
write_pidfile(void)
{
  const char *pidfile = CNF_GetPidFile();
  FILE *out;

  if (!pidfile)
    return;

  out = UTI_OpenFile(NULL, pidfile, NULL, 'W', 0644);
  fprintf(out, "%d\n", (int)getpid());
  fclose(out);
}

/* ================================================== */

#define DEV_NULL "/dev/null"

static void
go_daemon(void)
{
  int pid, fd, pipefd[2];

  /* Create pipe which will the daemon use to notify the grandparent
     when it's initialised or send an error message */
  if (pipe(pipefd)) {
    LOG_FATAL("pipe() failed : %s", strerror(errno));
  }

  /* Does this preserve existing signal handlers? */
  pid = fork();

  if (pid < 0) {
    LOG_FATAL("fork() failed : %s", strerror(errno));
  } else if (pid > 0) {
    /* In the 'grandparent' */
    char message[1024];
    int r;

    /* Don't exit before the 'parent' */
    waitpid(pid, NULL, 0);

    close(pipefd[1]);
    r = read(pipefd[0], message, sizeof (message));
    if (r) {
      if (r > 0) {
        /* Print the error message from the child */
        message[sizeof (message) - 1] = '\0';
        fprintf(stderr, "%s\n", message);
      }
      exit(1);
    } else
      exit(0);
  } else {
    close(pipefd[0]);

    setsid();

    /* Do 2nd fork, as-per recommended practice for launching daemons. */
    pid = fork();

    if (pid < 0) {
      LOG_FATAL("fork() failed : %s", strerror(errno));
    } else if (pid > 0) {
      /* In the 'parent' */
      close(pipefd[1]);
      exit(0);
    } else {
      /* In the child we want to leave running as the daemon */

      /* Change current directory to / */
      if (chdir("/") < 0) {
        LOG_FATAL("chdir() failed : %s", strerror(errno));
      }

      /* Don't keep stdin/out/err from before. But don't close
         the parent pipe yet, or reusable file descriptors. */
      for (fd=0; fd<1024; fd++) {
        if (fd != pipefd[1] && !SCK_IsReusable(fd))
          close(fd);
      }

      LOG_SetParentFd(pipefd[1]);

      /* Open /dev/null as new stdin/out/err */
      errno = 0;
      if (open(DEV_NULL, O_RDONLY) != STDIN_FILENO ||
          open(DEV_NULL, O_WRONLY) != STDOUT_FILENO ||
          open(DEV_NULL, O_RDWR) != STDERR_FILENO)
        LOG_FATAL("Could not open %s : %s", DEV_NULL, strerror(errno));
    }
  }
}

/* ================================================== */

static void
print_help(const char *progname)
{
      printf("Usage: %s [OPTION]... [DIRECTIVE]...\n\n"
             "Options:\n"
             "  -4\t\tUse IPv4 addresses only\n"
             "  -6\t\tUse IPv6 addresses only\n"
             "  -f FILE\tSpecify configuration file (%s)\n"
             "  -n\t\tDon't run as daemon\n"
             "  -d\t\tDon't run as daemon and log to stderr\n"
#if DEBUG > 0
             "  -d -d\t\tEnable debug messages\n"
#endif
             "  -l FILE\tLog to file\n"
             "  -L LEVEL\tSet logging threshold (0)\n"
             "  -p\t\tPrint configuration and exit\n"
             "  -q\t\tSet clock and exit\n"
             "  -Q\t\tLog offset and exit\n"
             "  -r\t\tReload dump files\n"
             "  -R\t\tAdapt configuration for restart\n"
             "  -s\t\tSet clock from RTC\n"
             "  -t SECONDS\tExit after elapsed time\n"
             "  -u USER\tSpecify user (%s)\n"
             "  -U\t\tDon't check for root\n"
             "  -F LEVEL\tSet system call filter level (0)\n"
             "  -P PRIORITY\tSet process priority (0)\n"
             "  -m\t\tLock memory\n"
             "  -x\t\tDon't control clock\n"
             "  -v, --version\tPrint version and exit\n"
             "  -h, --help\tPrint usage and exit\n",
             progname, DEFAULT_CONF_FILE, DEFAULT_USER);
}

/* ================================================== */

static void
print_version(void)
{
  printf("chronyd (chrony) version %s (%s)\n", CHRONY_VERSION, CHRONYD_FEATURES);
}

/* ================================================== */

static int
parse_int_arg(const char *arg)
{
  int i;

  if (sscanf(arg, "%d", &i) != 1)
    LOG_FATAL("Invalid argument %s", arg);
  return i;
}

/* ================================================== */

int main
(int argc, char **argv)
{
  const char *conf_file = DEFAULT_CONF_FILE;
  const char *progname = argv[0];
  char *user = NULL, *log_file = NULL;
  struct passwd *pw;
  int opt, debug = 0, nofork = 0, address_family = IPADDR_UNSPEC;
  int do_init_rtc = 0, restarted = 0, client_only = 0, timeout = -1;
  int scfilter_level = 0, lock_memory = 0, sched_priority = 0;
  int clock_control = 1, system_log = 1, log_severity = LOGS_INFO;
  int user_check = 1, config_args = 0, print_config = 0;

  do_platform_checks();

  LOG_Initialise();

  /* Parse long command-line options */
  for (optind = 1; optind < argc; optind++) {
    if (!strcmp("--help", argv[optind])) {
      print_help(progname);
      return 0;
    } else if (!strcmp("--version", argv[optind])) {
      print_version();
      return 0;
    }
  }

  optind = 1;

  /* Parse short command-line options */
  while ((opt = getopt(argc, argv, "46df:F:hl:L:mnpP:qQrRst:u:Uvx")) != -1) {
    switch (opt) {
      case '4':
      case '6':
        address_family = opt == '4' ? IPADDR_INET4 : IPADDR_INET6;
        break;
      case 'd':
        debug++;
        nofork = 1;
        system_log = 0;
        break;
      case 'f':
        conf_file = optarg;
        break;
      case 'F':
        scfilter_level = parse_int_arg(optarg);
        break;
      case 'l':
        log_file = optarg;
        break;
      case 'L':
        log_severity = parse_int_arg(optarg);
        break;
      case 'm':
        lock_memory = 1;
        break;
      case 'n':
        nofork = 1;
        break;
      case 'p':
        print_config = 1;
        user_check = 0;
        nofork = 1;
        system_log = 0;
        log_severity = LOGS_WARN;
        break;
      case 'P':
        sched_priority = parse_int_arg(optarg);
        break;
      case 'q':
        ref_mode = REF_ModeUpdateOnce;
        nofork = 1;
        client_only = 0;
        system_log = 0;
        break;
      case 'Q':
        ref_mode = REF_ModePrintOnce;
        nofork = 1;
        client_only = 1;
        user_check = 0;
        clock_control = 0;
        system_log = 0;
        break;
      case 'r':
        reload = 1;
        break;
      case 'R':
        restarted = 1;
        break;
      case 's':
        do_init_rtc = 1;
        break;
      case 't':
        timeout = parse_int_arg(optarg);
        break;
      case 'u':
        user = optarg;
        break;
      case 'U':
        user_check = 0;
        break;
      case 'v':
        print_version();
        return 0;
      case 'x':
        clock_control = 0;
        break;
      default:
        print_help(progname);
        return opt != 'h';
    }
  }

  if (user_check && getuid() != 0)
    LOG_FATAL("Not superuser");

  /* Initialise reusable file descriptors before fork */
  SCK_PreInitialise();

  /* Turn into a daemon */
  if (!nofork) {
    go_daemon();
  }

  if (log_file) {
    LOG_OpenFileLog(log_file);
  } else if (system_log) {
    LOG_OpenSystemLog();
  }
  
  LOG_SetMinSeverity(debug >= 2 ? LOGS_DEBUG : log_severity);
  
  LOG(LOGS_INFO, "chronyd version %s starting (%s)", CHRONY_VERSION, CHRONYD_FEATURES);

  DNS_SetAddressFamily(address_family);

  CNF_Initialise(restarted, client_only);
  if (print_config)
    CNF_EnablePrint();

  /* Parse the config file or the remaining command line arguments */
  config_args = argc - optind;
  if (!config_args) {
    CNF_ReadFile(conf_file);
  } else {
    for (; optind < argc; optind++)
      CNF_ParseLine(NULL, config_args + optind - argc + 1, argv[optind]);
  }

  if (print_config)
    return 0;

  /* Check whether another chronyd may already be running */
  check_pidfile();

  if (!user)
    user = CNF_GetUser();

  pw = getpwnam(user);
  if (!pw)
    LOG_FATAL("Could not get user/group ID of %s", user);

  /* Create directories for sockets, log files, and dump files */
  CNF_CreateDirs(pw->pw_uid, pw->pw_gid);

  /* Write our pidfile to prevent other instances from running */
  write_pidfile();

  PRV_Initialise();
  LCL_Initialise();
  SCH_Initialise();
  SCK_Initialise(address_family);

  /* Start helper processes if needed */
  NKS_PreInitialise(pw->pw_uid, pw->pw_gid, scfilter_level);

  SYS_Initialise(clock_control);
  RTC_Initialise(do_init_rtc);
  SRC_Initialise();
  RCL_Initialise();
  KEY_Initialise();

  /* Open privileged ports before dropping root */
  CAM_Initialise();
  NIO_Initialise();
  NCR_Initialise();
  CNF_SetupAccessRestrictions();

  /* Command-line switch must have priority */
  if (!sched_priority) {
    sched_priority = CNF_GetSchedPriority();
  }
  if (sched_priority) {
    SYS_SetScheduler(sched_priority);
  }

  if (lock_memory || CNF_GetLockMemory()) {
    SYS_LockMemory();
  }

  /* Drop root privileges if the specified user has a non-zero UID */
  if (!geteuid() && (pw->pw_uid || pw->pw_gid)) {
    SYS_DropRoot(pw->pw_uid, pw->pw_gid, SYS_MAIN_PROCESS);

    /* Warn if missing read access or having write access to keys */
    CNF_CheckReadOnlyAccess();
  }

  if (!geteuid())
    LOG(LOGS_WARN, "Running with root privileges");

  LDB_Initialise();
  REF_Initialise();
  SST_Initialise();
  NSR_Initialise();
  NSD_Initialise();
  NNS_Initialise();
  NKS_Initialise();
  CLG_Initialise();
  MNL_Initialise();
  TMC_Initialise();
  SMT_Initialise();

  /* From now on, it is safe to do finalisation on exit */
  initialised = 1;

  UTI_SetQuitSignalsHandler(signal_cleanup, 1);

  CAM_OpenUnixSocket();

  if (scfilter_level)
    SYS_EnableSystemCallFilter(scfilter_level, SYS_MAIN_PROCESS);

  if (ref_mode == REF_ModeNormal && CNF_GetInitSources() > 0) {
    ref_mode = REF_ModeInitStepSlew;
  }

  REF_SetModeEndHandler(reference_mode_end);
  REF_SetMode(ref_mode);

  if (timeout >= 0)
    SCH_AddTimeoutByDelay(timeout, quit_timeout, NULL);

  if (do_init_rtc) {
    RTC_TimeInit(post_init_rtc_hook, NULL);
  } else {
    post_init_rtc_hook(NULL);
  }

  /* The program normally runs under control of the main loop in
     the scheduler. */
  SCH_MainLoop();

  LOG(LOGS_INFO, "chronyd exiting");

  MAI_CleanupAndExit();

  return 0;
}

/* ================================================== */
Commit	Line	Data
88840341	1	/*
88840341 RC	2	chronyd/chronyc - Programs for keeping computer clocks accurate.
	3
	4	**********************************************************************
6672f045	5	* Copyright (C) Richard P. Curnow 1997-2003
f7e08d0c	6	* Copyright (C) John G. Hasler 2009
3916c336	7	* Copyright (C) Miroslav Lichvar 2012-2020
88840341 RC	8	*
	9	* This program is free software; you can redistribute it and/or modify
	10	* it under the terms of version 2 of the GNU General Public License as
	11	* published by the Free Software Foundation.
	12	*
	13	* This program is distributed in the hope that it will be useful, but
	14	* WITHOUT ANY WARRANTY; without even the implied warranty of
	15	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	16	* General Public License for more details.
	17	*
	18	* You should have received a copy of the GNU General Public License along
	19	* with this program; if not, write to the Free Software Foundation, Inc.,
8e23110a	20	* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
88840341 RC	21	*
	22	**********************************************************************
	23
	24	=======================================================================
	25
	26	The main program
	27	*/
	28
da2c8d90 ML	29	#include "config.h"
da2c8d90 ML	30
88840341 RC	31	#include "sysincl.h"
	32
	33	#include "main.h"
	34	#include "sched.h"
017d6f8f	35	#include "leapdb.h"
88840341 RC	36	#include "local.h"
	37	#include "sys.h"
	38	#include "ntp_io.h"
577aed48	39	#include "ntp_signd.h"
88840341 RC	40	#include "ntp_sources.h"
88840341 RC	41	#include "ntp_core.h"
a420ed57	42	#include "nts_ke_server.h"
6043632f	43	#include "nts_ntp_server.h"
2de24cfd	44	#include "socket.h"
88840341 RC	45	#include "sources.h"
	46	#include "sourcestats.h"
	47	#include "reference.h"
	48	#include "logging.h"
	49	#include "conf.h"
	50	#include "cmdmon.h"
	51	#include "keys.h"
88840341	52	#include "manual.h"
88840341	53	#include "rtc.h"
ac30bb06	54	#include "refclock.h"
88840341	55	#include "clientlog.h"
fbd20c42	56	#include "nameserv.h"
610f2340	57	#include "privops.h"
7f45eb79	58	#include "smooth.h"
c386d117	59	#include "tempcomp.h"
ceef8ad2	60	#include "util.h"
88840341 RC	61
	62	/* ================================================== */
	63
	64	/* Set when the initialisation chain has been completed. Prevents finalisation
	65	* chain being run if a fatal error happened early. */
	66
	67	static int initialised = 0;
	68
93b66ac1	69	static int exit_status = 0;
88840341 RC	70
	71	static int reload = 0;
	72
e176587e	73	static REF_Mode ref_mode = REF_ModeNormal;
7fda9c67	74
88840341 RC	75	/* ================================================== */
88840341 RC	76
bafb434f ML	77	static void
	78	do_platform_checks(void)
	79	{
d5894c07 ML	80	struct timespec ts;
d5894c07 ML	81
bafb434f ML	82	/* Require at least 32-bit integers, two's complement representation and
	83	the usual implementation of conversion of unsigned integers */
	84	assert(sizeof (int) >= 4);
	85	assert(-1 == ~0);
fe502128	86	assert((int32_t)4294967295U == (int32_t)-1);
d5894c07 ML	87
	88	/* Require time_t and tv_nsec in timespec to be signed */
	89	ts.tv_sec = -1;
	90	ts.tv_nsec = -1;
	91	assert(ts.tv_sec < 0 && ts.tv_nsec < 0);
bafb434f ML	92	}
	93
	94	/* ================================================== */
	95
88840341 RC	96	static void
	97	delete_pidfile(void)
	98	{
	99	const char *pidfile = CNF_GetPidFile();
778fce40	100
60049f15	101	if (!pidfile)
778fce40 ML	102	return;
778fce40 ML	103
e18903a6 ML	104	if (!UTI_RemoveFile(NULL, pidfile, NULL))
e18903a6 ML	105	;
88840341 RC	106	}
	107
	108	/* ================================================== */
	109
1e7e7d32	110	void
88840341 RC	111	MAI_CleanupAndExit(void)
88840341 RC	112	{
93b66ac1	113	if (!initialised) exit(exit_status);
88840341	114
3cef7f97	115	LCL_CancelOffsetCorrection();
60049f15	116	SRC_DumpSources();
88840341	117
f6ed7844 ML	118	/* Don't update clock when removing sources */
	119	REF_SetMode(REF_ModeIgnore);
	120
7f45eb79	121	SMT_Finalise();
c386d117	122	TMC_Finalise();
88840341	123	MNL_Finalise();
88840341	124	CLG_Finalise();
a420ed57	125	NKS_Finalise();
6043632f	126	NNS_Finalise();
577aed48	127	NSD_Finalise();
88840341	128	NSR_Finalise();
8854c00d	129	SST_Finalise();
88840341	130	NCR_Finalise();
4e54770f	131	NIO_Finalise();
8854c00d	132	CAM_Finalise();
66e097e3	133
1c901b82	134	KEY_Finalise();
ac30bb06	135	RCL_Finalise();
3a222336	136	SRC_Finalise();
f6ed7844	137	REF_Finalise();
017d6f8f	138	LDB_Finalise();
be42b4ee	139	RTC_Finalise();
88840341	140	SYS_Finalise();
66e097e3 ML	141
66e097e3 ML	142	SCK_Finalise();
88840341 RC	143	SCH_Finalise();
88840341 RC	144	LCL_Finalise();
334ac061	145	PRV_Finalise();
88840341 RC	146
	147	delete_pidfile();
	148
f6ed7844	149	CNF_Finalise();
f6ed7844	150	HSH_Finalise();
b712c100	151	LOG_Finalise();
f6ed7844	152
a0a95602 ML	153	UTI_ResetGetRandomFunctions();
a0a95602 ML	154
93b66ac1	155	exit(exit_status);
88840341 RC	156	}
	157
	158	/* ================================================== */
	159
	160	static void
	161	signal_cleanup(int x)
	162	{
9416a24f	163	SCH_QuitProgram();
88840341 RC	164	}
	165
	166	/* ================================================== */
	167
35134848 ML	168	static void
	169	quit_timeout(void *arg)
	170	{
de598c23 ML	171	LOG(LOGS_INFO, "Timeout reached");
de598c23 ML	172
35134848 ML	173	/* Return with non-zero status if the clock is not synchronised */
	174	exit_status = REF_GetOurStratum() >= NTP_MAX_STRATUM;
	175	SCH_QuitProgram();
	176	}
	177
	178	/* ================================================== */
	179
88840341	180	static void
6ee357d2	181	ntp_source_resolving_end(void)
88840341	182	{
6ee357d2	183	NSR_SetSourceResolvingEndHandler(NULL);
88840341	184
88840341 RC	185	if (reload) {
	186	/* Note, we want reload to come well after the initialisation from
	187	the real time clock - this gives us a fighting chance that the
	188	system-clock scale for the reloaded samples still has a
	189	semblence of validity about it. */
	190	SRC_ReloadSources();
	191	}
88840341	192
a06a5f1b	193	SRC_RemoveDumpFiles();
88840341	194	RTC_StartMeasurements();
ac30bb06	195	RCL_StartRefclocks();
779e40ed ML	196	NSR_StartSources();
779e40ed ML	197	NSR_AutoStartSources();
70feea48 ML	198
70feea48 ML	199	/* Special modes can end only when sources update their reachability.
144fcdde	200	Give up immediately if there are no active sources. */
7fa22d4c	201	if (ref_mode != REF_ModeNormal && !SRC_ActiveSources()) {
70feea48 ML	202	REF_SetUnsynchronised();
70feea48 ML	203	}
88840341 RC	204	}
	205
	206	/* ================================================== */
	207
6ee357d2 ML	208	static void
	209	post_init_ntp_hook(void *anything)
	210	{
	211	if (ref_mode == REF_ModeInitStepSlew) {
	212	/* Remove the initstepslew sources and set normal mode */
	213	NSR_RemoveAllSources();
	214	ref_mode = REF_ModeNormal;
	215	REF_SetMode(ref_mode);
	216	}
	217
	218	/* Close the pipe to the foreground process so it can exit */
	219	LOG_CloseParentFd();
	220
	221	CNF_AddSources();
	222	CNF_AddBroadcasts();
	223
	224	NSR_SetSourceResolvingEndHandler(ntp_source_resolving_end);
	225	NSR_ResolveSources();
	226	}
	227
	228	/* ================================================== */
	229
7fda9c67 ML	230	static void
	231	reference_mode_end(int result)
	232	{
	233	switch (ref_mode) {
	234	case REF_ModeNormal:
70feea48 ML	235	case REF_ModeUpdateOnce:
70feea48 ML	236	case REF_ModePrintOnce:
93b66ac1 ML	237	exit_status = !result;
93b66ac1 ML	238	SCH_QuitProgram();
7fda9c67 ML	239	break;
7fda9c67 ML	240	case REF_ModeInitStepSlew:
ead3ca14 ML	241	/* Switch to the normal mode, the delay is used to prevent polling
	242	interval shorter than the burst interval if some configured servers
	243	were used also for initstepslew */
	244	SCH_AddTimeoutByDelay(2.0, post_init_ntp_hook, NULL);
7fda9c67 ML	245	break;
	246	default:
	247	assert(0);
	248	}
	249	}
	250
	251	/* ================================================== */
	252
88840341 RC	253	static void
	254	post_init_rtc_hook(void *anything)
	255	{
7fda9c67 ML	256	if (CNF_GetInitSources() > 0) {
7fda9c67 ML	257	CNF_AddInitSources();
779e40ed	258	NSR_StartSources();
7fda9c67 ML	259	assert(REF_GetMode() != REF_ModeNormal);
	260	/* Wait for mode end notification */
	261	} else {
	262	(post_init_ntp_hook)(NULL);
	263	}
88840341 RC	264	}
	265
	266	/* ================================================== */
88840341	267
7bd1c027 ML	268	static void
7bd1c027 ML	269	check_pidfile(void)
88840341 RC	270	{
	271	const char *pidfile = CNF_GetPidFile();
	272	FILE *in;
	273	int pid, count;
	274
60049f15	275	if (!pidfile)
077dbd56 ML	276	return;
077dbd56 ML	277
e18903a6	278	in = UTI_OpenFile(NULL, pidfile, NULL, 'r', 0);
7bd1c027 ML	279	if (!in)
7bd1c027 ML	280	return;
88840341 RC	281
	282	count = fscanf(in, "%d", &pid);
	283	fclose(in);
	284
7bd1c027 ML	285	if (count != 1)
7bd1c027 ML	286	return;
88840341	287
7bd1c027 ML	288	if (getsid(pid) < 0)
	289	return;
	290
	291	LOG_FATAL("Another chronyd may already be running (pid=%d), check %s",
	292	pid, pidfile);
88840341 RC	293	}
	294
	295	/* ================================================== */
	296
	297	static void
7bd1c027	298	write_pidfile(void)
88840341 RC	299	{
	300	const char *pidfile = CNF_GetPidFile();
	301	FILE *out;
	302
60049f15	303	if (!pidfile)
778fce40 ML	304	return;
778fce40 ML	305
e18903a6 ML	306	out = UTI_OpenFile(NULL, pidfile, NULL, 'W', 0644);
	307	fprintf(out, "%d\n", (int)getpid());
	308	fclose(out);
88840341 RC	309	}
	310
	311	/* ================================================== */
	312
da862158 ML	313	#define DEV_NULL "/dev/null"
da862158 ML	314
fe4b661f ML	315	static void
	316	go_daemon(void)
	317	{
1d2a0856 ML	318	int pid, fd, pipefd[2];
	319
	320	/* Create pipe which will the daemon use to notify the grandparent
	321	when it's initialised or send an error message */
	322	if (pipe(pipefd)) {
539ef3f7	323	LOG_FATAL("pipe() failed : %s", strerror(errno));
1d2a0856	324	}
fe4b661f ML	325
	326	/* Does this preserve existing signal handlers? */
	327	pid = fork();
	328
	329	if (pid < 0) {
539ef3f7	330	LOG_FATAL("fork() failed : %s", strerror(errno));
fe4b661f	331	} else if (pid > 0) {
1d2a0856 ML	332	/* In the 'grandparent' */
	333	char message[1024];
	334	int r;
	335
0db30fd0 ML	336	/* Don't exit before the 'parent' */
	337	waitpid(pid, NULL, 0);
	338
1d2a0856 ML	339	close(pipefd[1]);
	340	r = read(pipefd[0], message, sizeof (message));
	341	if (r) {
	342	if (r > 0) {
	343	/* Print the error message from the child */
a7802e9a ML	344	message[sizeof (message) - 1] = '\0';
a7802e9a ML	345	fprintf(stderr, "%s\n", message);
1d2a0856 ML	346	}
	347	exit(1);
	348	} else
	349	exit(0);
fe4b661f	350	} else {
1d2a0856	351	close(pipefd[0]);
fe4b661f ML	352
	353	setsid();
	354
	355	/* Do 2nd fork, as-per recommended practice for launching daemons. */
	356	pid = fork();
	357
	358	if (pid < 0) {
539ef3f7	359	LOG_FATAL("fork() failed : %s", strerror(errno));
fe4b661f	360	} else if (pid > 0) {
0db30fd0 ML	361	/* In the 'parent' */
	362	close(pipefd[1]);
	363	exit(0);
fe4b661f ML	364	} else {
	365	/* In the child we want to leave running as the daemon */
	366
2a305d8e ML	367	/* Change current directory to / */
2a305d8e ML	368	if (chdir("/") < 0) {
539ef3f7	369	LOG_FATAL("chdir() failed : %s", strerror(errno));
2a305d8e ML	370	}
2a305d8e ML	371
1d2a0856	372	/* Don't keep stdin/out/err from before. But don't close
e6a0476e	373	the parent pipe yet, or reusable file descriptors. */
fe4b661f	374	for (fd=0; fd<1024; fd++) {
e6a0476e	375	if (fd != pipefd[1] && !SCK_IsReusable(fd))
1d2a0856	376	close(fd);
fe4b661f	377	}
919b5b5a	378
1d2a0856	379	LOG_SetParentFd(pipefd[1]);
da862158 ML	380
	381	/* Open /dev/null as new stdin/out/err */
	382	errno = 0;
	383	if (open(DEV_NULL, O_RDONLY) != STDIN_FILENO \|\|
	384	open(DEV_NULL, O_WRONLY) != STDOUT_FILENO \|\|
	385	open(DEV_NULL, O_RDWR) != STDERR_FILENO)
	386	LOG_FATAL("Could not open %s : %s", DEV_NULL, strerror(errno));
fe4b661f ML	387	}
fe4b661f ML	388	}
fe4b661f ML	389	}
	390
	391	/* ================================================== */
	392
ae0c3bbb ML	393	static void
	394	print_help(const char *progname)
	395	{
0e08ca7c ML	396	printf("Usage: %s [OPTION]... [DIRECTIVE]...\n\n"
	397	"Options:\n"
	398	" -4\t\tUse IPv4 addresses only\n"
	399	" -6\t\tUse IPv6 addresses only\n"
	400	" -f FILE\tSpecify configuration file (%s)\n"
	401	" -n\t\tDon't run as daemon\n"
	402	" -d\t\tDon't run as daemon and log to stderr\n"
	403	#if DEBUG > 0
	404	" -d -d\t\tEnable debug messages\n"
	405	#endif
	406	" -l FILE\tLog to file\n"
	407	" -L LEVEL\tSet logging threshold (0)\n"
	408	" -p\t\tPrint configuration and exit\n"
	409	" -q\t\tSet clock and exit\n"
	410	" -Q\t\tLog offset and exit\n"
	411	" -r\t\tReload dump files\n"
	412	" -R\t\tAdapt configuration for restart\n"
	413	" -s\t\tSet clock from RTC\n"
	414	" -t SECONDS\tExit after elapsed time\n"
	415	" -u USER\tSpecify user (%s)\n"
	416	" -U\t\tDon't check for root\n"
	417	" -F LEVEL\tSet system call filter level (0)\n"
	418	" -P PRIORITY\tSet process priority (0)\n"
	419	" -m\t\tLock memory\n"
	420	" -x\t\tDon't control clock\n"
	421	" -v, --version\tPrint version and exit\n"
	422	" -h, --help\tPrint usage and exit\n",
	423	progname, DEFAULT_CONF_FILE, DEFAULT_USER);
ae0c3bbb ML	424	}
	425
	426	/* ================================================== */
	427
	428	static void
	429	print_version(void)
	430	{
	431	printf("chronyd (chrony) version %s (%s)\n", CHRONY_VERSION, CHRONYD_FEATURES);
	432	}
	433
	434	/* ================================================== */
	435
	436	static int
	437	parse_int_arg(const char *arg)
	438	{
	439	int i;
	440
	441	if (sscanf(arg, "%d", &i) != 1)
	442	LOG_FATAL("Invalid argument %s", arg);
	443	return i;
	444	}
	445
	446	/* ================================================== */
	447
88840341 RC	448	int main
	449	(int argc, char **argv)
	450	{
0f8def4c	451	const char *conf_file = DEFAULT_CONF_FILE;
1cda2db4	452	const char *progname = argv[0];
a1cbd4eb	453	char user = NULL, log_file = NULL;
6402350c	454	struct passwd *pw;
ae0c3bbb	455	int opt, debug = 0, nofork = 0, address_family = IPADDR_UNSPEC;
552d3b53	456	int do_init_rtc = 0, restarted = 0, client_only = 0, timeout = -1;
434faeec	457	int scfilter_level = 0, lock_memory = 0, sched_priority = 0;
70fa3a69	458	int clock_control = 1, system_log = 1, log_severity = LOGS_INFO;
02c38934	459	int user_check = 1, config_args = 0, print_config = 0;
35e662d8	460
bafb434f ML	461	do_platform_checks();
bafb434f ML	462
88840341 RC	463	LOG_Initialise();
88840341 RC	464
068cd3c3	465	/* Parse long command-line options */
ae0c3bbb ML	466	for (optind = 1; optind < argc; optind++) {
	467	if (!strcmp("--help", argv[optind])) {
	468	print_help(progname);
1769b8ea	469	return 0;
ae0c3bbb ML	470	} else if (!strcmp("--version", argv[optind])) {
ae0c3bbb ML	471	print_version();
1769b8ea	472	return 0;
ae0c3bbb ML	473	}
	474	}
	475
	476	optind = 1;
	477
	478	/* Parse short command-line options */
02c38934	479	while ((opt = getopt(argc, argv, "46df:F:hl:L:mnpP:qQrRst:u:Uvx")) != -1) {
ae0c3bbb ML	480	switch (opt) {
	481	case '4':
	482	case '6':
	483	address_family = opt == '4' ? IPADDR_INET4 : IPADDR_INET6;
	484	break;
	485	case 'd':
	486	debug++;
	487	nofork = 1;
	488	system_log = 0;
	489	break;
	490	case 'f':
	491	conf_file = optarg;
	492	break;
	493	case 'F':
	494	scfilter_level = parse_int_arg(optarg);
	495	break;
	496	case 'l':
	497	log_file = optarg;
	498	break;
70fa3a69 ML	499	case 'L':
	500	log_severity = parse_int_arg(optarg);
	501	break;
ae0c3bbb ML	502	case 'm':
	503	lock_memory = 1;
	504	break;
	505	case 'n':
	506	nofork = 1;
	507	break;
1b82604f ML	508	case 'p':
1b82604f ML	509	print_config = 1;
02c38934	510	user_check = 0;
1b82604f ML	511	nofork = 1;
1b82604f ML	512	system_log = 0;
517b1ae2	513	log_severity = LOGS_WARN;
1b82604f	514	break;
ae0c3bbb ML	515	case 'P':
	516	sched_priority = parse_int_arg(optarg);
	517	break;
	518	case 'q':
4f1fc1ee BC	519	ref_mode = REF_ModeUpdateOnce;
	520	nofork = 1;
	521	client_only = 0;
	522	system_log = 0;
	523	break;
ae0c3bbb	524	case 'Q':
4f1fc1ee	525	ref_mode = REF_ModePrintOnce;
ae0c3bbb	526	nofork = 1;
778fce40	527	client_only = 1;
02c38934	528	user_check = 0;
778fce40	529	clock_control = 0;
ae0c3bbb ML	530	system_log = 0;
	531	break;
	532	case 'r':
	533	reload = 1;
	534	break;
	535	case 'R':
	536	restarted = 1;
	537	break;
	538	case 's':
	539	do_init_rtc = 1;
	540	break;
	541	case 't':
	542	timeout = parse_int_arg(optarg);
	543	break;
	544	case 'u':
	545	user = optarg;
	546	break;
02c38934 ML	547	case 'U':
	548	user_check = 0;
	549	break;
ae0c3bbb ML	550	case 'v':
	551	print_version();
	552	return 0;
	553	case 'x':
	554	clock_control = 0;
	555	break;
	556	default:
	557	print_help(progname);
	558	return opt != 'h';
88840341 RC	559	}
	560	}
	561
02c38934	562	if (user_check && getuid() != 0)
3a5566c6	563	LOG_FATAL("Not superuser");
88840341	564
e6a0476e LV	565	/* Initialise reusable file descriptors before fork */
	566	SCK_PreInitialise();
	567
88840341	568	/* Turn into a daemon */
fe4b661f ML	569	if (!nofork) {
	570	go_daemon();
	571	}
	572
a1cbd4eb ML	573	if (log_file) {
	574	LOG_OpenFileLog(log_file);
	575	} else if (system_log) {
fe4b661f	576	LOG_OpenSystemLog();
88840341 RC	577	}
88840341 RC	578
70fa3a69	579	LOG_SetMinSeverity(debug >= 2 ? LOGS_DEBUG : log_severity);
4bbc5520	580
f282856c	581	LOG(LOGS_INFO, "chronyd version %s starting (%s)", CHRONY_VERSION, CHRONYD_FEATURES);
cb905507	582
72d0b3c9 ML	583	DNS_SetAddressFamily(address_family);
72d0b3c9 ML	584
778fce40	585	CNF_Initialise(restarted, client_only);
1b82604f ML	586	if (print_config)
1b82604f ML	587	CNF_EnablePrint();
3edd3fe5 ML	588
3edd3fe5 ML	589	/* Parse the config file or the remaining command line arguments */
ae0c3bbb	590	config_args = argc - optind;
3edd3fe5 ML	591	if (!config_args) {
	592	CNF_ReadFile(conf_file);
	593	} else {
ae0c3bbb ML	594	for (; optind < argc; optind++)
ae0c3bbb ML	595	CNF_ParseLine(NULL, config_args + optind - argc + 1, argv[optind]);
3edd3fe5	596	}
1e35b268	597
1b82604f ML	598	if (print_config)
	599	return 0;
	600
7bd1c027 ML	601	/* Check whether another chronyd may already be running */
7bd1c027 ML	602	check_pidfile();
88840341	603
c5d8af02 ML	604	if (!user)
	605	user = CNF_GetUser();
	606
	607	pw = getpwnam(user);
	608	if (!pw)
	609	LOG_FATAL("Could not get user/group ID of %s", user);
	610
	611	/* Create directories for sockets, log files, and dump files */
	612	CNF_CreateDirs(pw->pw_uid, pw->pw_gid);
	613
26e08abe ML	614	/* Write our pidfile to prevent other instances from running */
	615	write_pidfile();
	616
334ac061	617	PRV_Initialise();
88840341 RC	618	LCL_Initialise();
88840341 RC	619	SCH_Initialise();
66e097e3 ML	620	SCK_Initialise(address_family);
	621
	622	/* Start helper processes if needed */
	623	NKS_PreInitialise(pw->pw_uid, pw->pw_gid, scfilter_level);
	624
c4434609	625	SYS_Initialise(clock_control);
c6e06420	626	RTC_Initialise(do_init_rtc);
3a222336	627	SRC_Initialise();
ac30bb06	628	RCL_Initialise();
1c901b82	629	KEY_Initialise();
be42b4ee	630
8854c00d	631	/* Open privileged ports before dropping root */
27e20a56 ML	632	CAM_Initialise();
27e20a56 ML	633	NIO_Initialise();
8854c00d ML	634	NCR_Initialise();
	635	CNF_SetupAccessRestrictions();
	636
e3234465 ML	637	/* Command-line switch must have priority */
	638	if (!sched_priority) {
	639	sched_priority = CNF_GetSchedPriority();
	640	}
	641	if (sched_priority) {
	642	SYS_SetScheduler(sched_priority);
96759116 ML	643	}
96759116 ML	644
e3234465 ML	645	if (lock_memory \|\| CNF_GetLockMemory()) {
e3234465 ML	646	SYS_LockMemory();
96759116 ML	647	}
96759116 ML	648
778fce40	649	/* Drop root privileges if the specified user has a non-zero UID */
883b0dde	650	if (!geteuid() && (pw->pw_uid \|\| pw->pw_gid)) {
a96d2880	651	SYS_DropRoot(pw->pw_uid, pw->pw_gid, SYS_MAIN_PROCESS);
be42b4ee	652
883b0dde ML	653	/* Warn if missing read access or having write access to keys */
	654	CNF_CheckReadOnlyAccess();
	655	}
	656
4f878ba1 ML	657	if (!geteuid())
	658	LOG(LOGS_WARN, "Running with root privileges");
	659
017d6f8f	660	LDB_Initialise();
88840341 RC	661	REF_Initialise();
88840341 RC	662	SST_Initialise();
88840341	663	NSR_Initialise();
577aed48	664	NSD_Initialise();
6043632f	665	NNS_Initialise();
66e097e3	666	NKS_Initialise();
88840341	667	CLG_Initialise();
88840341	668	MNL_Initialise();
c386d117	669	TMC_Initialise();
7f45eb79	670	SMT_Initialise();
88840341 RC	671
	672	/* From now on, it is safe to do finalisation on exit */
	673	initialised = 1;
	674
879d9362	675	UTI_SetQuitSignalsHandler(signal_cleanup, 1);
ea2858b3	676
8854c00d	677	CAM_OpenUnixSocket();
46951b85	678
434faeec	679	if (scfilter_level)
e6848b1e	680	SYS_EnableSystemCallFilter(scfilter_level, SYS_MAIN_PROCESS);
434faeec	681
70feea48	682	if (ref_mode == REF_ModeNormal && CNF_GetInitSources() > 0) {
7fda9c67 ML	683	ref_mode = REF_ModeInitStepSlew;
	684	}
	685
	686	REF_SetModeEndHandler(reference_mode_end);
	687	REF_SetMode(ref_mode);
	688
552d3b53	689	if (timeout >= 0)
35134848 ML	690	SCH_AddTimeoutByDelay(timeout, quit_timeout, NULL);
35134848 ML	691
88840341 RC	692	if (do_init_rtc) {
	693	RTC_TimeInit(post_init_rtc_hook, NULL);
	694	} else {
	695	post_init_rtc_hook(NULL);
	696	}
	697
88840341 RC	698	/* The program normally runs under control of the main loop in
	699	the scheduler. */
	700	SCH_MainLoop();
	701
f282856c	702	LOG(LOGS_INFO, "chronyd exiting");
0fc9b555	703
88840341 RC	704	MAI_CleanupAndExit();
	705
	706	return 0;
	707	}
	708
	709	/* ================================================== */