[thirdparty/systemd.git] / man / sd_pid_get_owner_uid.xml

<?xml version='1.0'?> <!--*- Mode: nxml; nxml-child-indent: 2; indent-tabs-mode: nil -*-->
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
  "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">

<!--
  SPDX-License-Identifier: LGPL-2.1+

  This file is part of systemd.

  Copyright 2010 Lennart Poettering

  systemd is free software; you can redistribute it and/or modify it
  under the terms of the GNU Lesser General Public License as published by
  the Free Software Foundation; either version 2.1 of the License, or
  (at your option) any later version.

  systemd is distributed in the hope that it will be useful, but
  WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
  Lesser General Public License for more details.

  You should have received a copy of the GNU Lesser General Public License
  along with systemd; If not, see <http://www.gnu.org/licenses/>.
-->

<refentry id="sd_pid_get_owner_uid" conditional='HAVE_PAM'>

  <refentryinfo>
    <title>sd_pid_get_owner_uid</title>
    <productname>systemd</productname>

    <authorgroup>
      <author>
        <contrib>Developer</contrib>
        <firstname>Lennart</firstname>
        <surname>Poettering</surname>
        <email>lennart@poettering.net</email>
      </author>
    </authorgroup>
  </refentryinfo>

  <refmeta>
    <refentrytitle>sd_pid_get_owner_uid</refentrytitle>
    <manvolnum>3</manvolnum>
  </refmeta>

  <refnamediv>
    <refname>sd_pid_get_owner_uid</refname>
    <refname>sd_pid_get_session</refname>
    <refname>sd_pid_get_user_unit</refname>
    <refname>sd_pid_get_unit</refname>
    <refname>sd_pid_get_machine_name</refname>
    <refname>sd_pid_get_slice</refname>
    <refname>sd_pid_get_user_slice</refname>
    <refname>sd_pid_get_cgroup</refname>
    <refname>sd_peer_get_owner_uid</refname>
    <refname>sd_peer_get_session</refname>
    <refname>sd_peer_get_user_unit</refname>
    <refname>sd_peer_get_unit</refname>
    <refname>sd_peer_get_machine_name</refname>
    <refname>sd_peer_get_slice</refname>
    <refname>sd_peer_get_user_slice</refname>
    <refname>sd_peer_get_cgroup</refname>
    <refpurpose>Determine the owner uid of the user unit or session,
    or the session, user unit, system unit, container/VM or slice that
    a specific PID or socket peer belongs to.</refpurpose>
  </refnamediv>

  <refsynopsisdiv>
    <funcsynopsis>
      <funcsynopsisinfo>#include &lt;systemd/sd-login.h&gt;</funcsynopsisinfo>

      <funcprototype>
        <funcdef>int <function>sd_pid_get_owner_uid</function></funcdef>
        <paramdef>pid_t <parameter>pid</parameter></paramdef>
        <paramdef>uid_t *<parameter>uid</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_pid_get_session</function></funcdef>
        <paramdef>pid_t <parameter>pid</parameter></paramdef>
        <paramdef>char **<parameter>session</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_pid_get_user_unit</function></funcdef>
        <paramdef>pid_t <parameter>pid</parameter></paramdef>
        <paramdef>char **<parameter>unit</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_pid_get_unit</function></funcdef>
        <paramdef>pid_t <parameter>pid</parameter></paramdef>
        <paramdef>char **<parameter>unit</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_pid_get_machine_name</function></funcdef>
        <paramdef>pid_t <parameter>pid</parameter></paramdef>
        <paramdef>char **<parameter>name</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_pid_get_slice</function></funcdef>
        <paramdef>pid_t <parameter>pid</parameter></paramdef>
        <paramdef>char **<parameter>slice</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_pid_get_user_slice</function></funcdef>
        <paramdef>pid_t <parameter>pid</parameter></paramdef>
        <paramdef>char **<parameter>slice</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_pid_get_cgroup</function></funcdef>
        <paramdef>pid_t <parameter>pid</parameter></paramdef>
        <paramdef>char **<parameter>cgroup</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_peer_get_owner_uid</function></funcdef>
        <paramdef>int <parameter>fd</parameter></paramdef>
        <paramdef>uid_t *<parameter>uid</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_peer_get_session</function></funcdef>
        <paramdef>int <parameter>fd</parameter></paramdef>
        <paramdef>char **<parameter>session</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_peer_get_user_unit</function></funcdef>
        <paramdef>int <parameter>fd</parameter></paramdef>
        <paramdef>char **<parameter>unit</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_peer_get_unit</function></funcdef>
        <paramdef>int <parameter>fd</parameter></paramdef>
        <paramdef>char **<parameter>unit</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_peer_get_machine_name</function></funcdef>
        <paramdef>int <parameter>fd</parameter></paramdef>
        <paramdef>char **<parameter>name</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_peer_get_slice</function></funcdef>
        <paramdef>int <parameter>fd</parameter></paramdef>
        <paramdef>char **<parameter>slice</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_peer_get_user_slice</function></funcdef>
        <paramdef>int <parameter>fd</parameter></paramdef>
        <paramdef>char **<parameter>slice</parameter></paramdef>
      </funcprototype>

      <funcprototype>
        <funcdef>int <function>sd_peer_get_cgroup</function></funcdef>
        <paramdef>int <parameter>fd</parameter></paramdef>
        <paramdef>char **<parameter>cgroup</parameter></paramdef>
      </funcprototype>
    </funcsynopsis>
  </refsynopsisdiv>

  <refsect1>
    <title>Description</title>

    <para><function>sd_pid_get_owner_uid()</function> may be used to
    determine the Unix UID (user identifier) which owns the login
    session or systemd user unit of a process identified by the
    specified PID. For processes which are not part of a login session
    and not managed by a user manager, this function will fail with
    <constant>-ENODATA</constant>.</para>

    <para><function>sd_pid_get_session()</function> may be used to
    determine the login session identifier of a process identified by
    the specified process identifier. The session identifier is a
    short string, suitable for usage in file system paths. Please
    note the login session may be limited to a stub process or two.
    User processes may instead be started from their systemd user
    manager, e.g. GUI applications started using DBus activation, as
    well as service processes which are shared between multiple logins
    of the same user. For processes which are not part of a login
    session, this function will fail with <constant>-ENODATA</constant>.
    The returned string needs to be freed with the libc <citerefentry
    project='man-pages'><refentrytitle>free</refentrytitle><manvolnum>3</manvolnum></citerefentry>
    call after use.</para>

    <para><function>sd_pid_get_user_unit()</function> may be used to
    determine the systemd user unit (i.e. user service or scope unit)
    identifier of a process identified by the specified PID. The
    unit name is a short string, suitable for usage in file system
    paths. For processes which are not managed by a user manager, this
    function will fail with <constant>-ENODATA</constant>. The
    returned string needs to be freed with the libc <citerefentry
    project='man-pages'><refentrytitle>free</refentrytitle><manvolnum>3</manvolnum></citerefentry>
    call after use.</para>

    <para><function>sd_pid_get_unit()</function> may be used to
    determine the systemd system unit (i.e. system service or scope
    unit) identifier of a process identified by the specified PID. The
    unit name is a short string, suitable for usage in file system
    paths.  Note that not all processes are part of a system
    unit/service. For processes not being part of a systemd system
    unit, this function will fail with <constant>-ENODATA</constant>.
    (More specifically, this call will not work for kernel threads.)
    The returned string needs to be freed with the libc <citerefentry
    project='man-pages'><refentrytitle>free</refentrytitle><manvolnum>3</manvolnum></citerefentry>
    call after use.</para>

    <para><function>sd_pid_get_machine_name()</function> may be used
    to determine the name of the VM or container is a member of. The
    machine name is a short string, suitable for usage in file system
    paths. The returned string needs to be freed with the libc
    <citerefentry
    project='man-pages'><refentrytitle>free</refentrytitle><manvolnum>3</manvolnum></citerefentry>
    call after use. For processes not part of a VM or container, this
    function fails with <constant>-ENODATA</constant>.</para>

    <para><function>sd_pid_get_slice()</function> may be used to
    determine the slice unit the process is a member of. See
    <citerefentry><refentrytitle>systemd.slice</refentrytitle><manvolnum>5</manvolnum></citerefentry>
    for details about slices. The returned string needs to be freed
    with the libc
    <citerefentry project='man-pages'><refentrytitle>free</refentrytitle><manvolnum>3</manvolnum></citerefentry>
    call after use.</para>

    <para>Similarly, <function>sd_pid_get_user_slice()</function>
    returns the user slice (as managed by the user's systemd instance)
    of a process.</para>

    <para><function>sd_pid_get_cgroup()</function> returns the control
    group path of the specified process, relative to the root of the
    hierarchy. Returns the path without trailing slash, except for
    processes located in the root control group, where "/" is
    returned. To find the actual control group path in the file system,
    the returned path needs to be prefixed with
    <filename>/sys/fs/cgroup/</filename> (if the unified control group
    setup is used), or
    <filename>/sys/fs/cgroup/<replaceable>HIERARCHY</replaceable>/</filename>
    (if the legacy multi-hierarchy control group setup is used).</para>

    <para>If the <varname>pid</varname> parameter of any of these
    functions is passed as 0, the operation is executed for the
    calling process.</para>

    <para>The <function>sd_peer_get_owner_uid()</function>,
    <function>sd_peer_get_session()</function>,
    <function>sd_peer_get_user_unit()</function>,
    <function>sd_peer_get_unit()</function>,
    <function>sd_peer_get_machine_name()</function>,
    <function>sd_peer_get_slice()</function>,
    <function>sd_peer_get_user_slice()</function> and
    <function>sd_peer_get_cgroup()</function> calls operate similar to
    their PID counterparts, but operate on a connected AF_UNIX socket
    and retrieve information about the connected peer process. Note
    that these fields are retrieved via <filename>/proc</filename>,
    and hence are not suitable for authorization purposes, as they are
    subject to races.</para>
  </refsect1>

  <refsect1>
    <title>Return Value</title>

    <para>On success, these calls return 0 or a positive integer. On
    failure, these calls return a negative errno-style error
    code.</para>
  </refsect1>

  <refsect1>
    <title>Errors</title>

    <para>Returned errors may indicate the following problems:</para>

    <variablelist>

      <varlistentry>
        <term><constant>-ESRCH</constant></term>

        <listitem><para>The specified PID does not refer to a running
        process.</para>
        </listitem>
      </varlistentry>

      <varlistentry>
        <term><constant>-EBADF</constant></term>

        <listitem><para>The specified socket file descriptor was
        invalid.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><constant>-ENODATA</constant></term>

        <listitem><para>The given field is not specified for the described
        process or peer.</para>
        </listitem>
      </varlistentry>

      <varlistentry>
        <term><constant>-EINVAL</constant></term>

        <listitem><para>An input parameter was invalid (out of range,
        or NULL, where that is not accepted).</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><constant>-ENOMEM</constant></term>

        <listitem><para>Memory allocation failed.</para></listitem>
      </varlistentry>
    </variablelist>
  </refsect1>

  <refsect1>
    <title>Notes</title>

    <para>The <function>sd_pid_get_session()</function>,
    <function>sd_pid_get_unit()</function>,
    <function>sd_pid_get_user_unit()</function>,
    <function>sd_pid_get_owner_uid()</function>,
    <function>sd_pid_get_machine_name()</function>,
    <function>sd_pid_get_slice()</function>,
    <function>sd_pid_get_user_slice()</function>,
    <function>sd_peer_get_session()</function>,
    <function>sd_peer_get_unit()</function>,
    <function>sd_peer_get_user_unit()</function>,
    <function>sd_peer_get_owner_uid()</function>,
    <function>sd_peer_get_machine_name()</function>,
    <function>sd_peer_get_slice()</function> and
    <function>sd_peer_get_user_slice()</function> interfaces are
    available as a shared library, which can be compiled and linked to
    with the <constant>libsystemd</constant> <citerefentry
    project='die-net'><refentrytitle>pkg-config</refentrytitle><manvolnum>1</manvolnum></citerefentry>
    file.</para>

    <para>Note that the login session identifier as
    returned by <function>sd_pid_get_session()</function>
    is completely unrelated to the process session
    identifier as returned by
    <citerefentry><refentrytitle>getsid</refentrytitle><manvolnum>2</manvolnum></citerefentry>.</para>
  </refsect1>

  <refsect1>
    <title>See Also</title>

    <para>
      <citerefentry><refentrytitle>systemd</refentrytitle><manvolnum>1</manvolnum></citerefentry>,
      <citerefentry><refentrytitle>sd-login</refentrytitle><manvolnum>3</manvolnum></citerefentry>,
      <citerefentry><refentrytitle>sd_session_is_active</refentrytitle><manvolnum>3</manvolnum></citerefentry>,
      <citerefentry><refentrytitle>getsid</refentrytitle><manvolnum>2</manvolnum></citerefentry>,
      <citerefentry><refentrytitle>systemd.slice</refentrytitle><manvolnum>5</manvolnum></citerefentry>,
      <citerefentry><refentrytitle>systemd-machined.service</refentrytitle><manvolnum>8</manvolnum></citerefentry>
    </para>
  </refsect1>

</refentry>
Commit	Line	Data
707b66c6	1	<?xml version='1.0'?> <!--- Mode: nxml; nxml-child-indent: 2; indent-tabs-mode: nil --->
0b3b020a	2	<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
12b42c76	3	"http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">
0b3b020a LP	4
0b3b020a LP	5	<!--
572eb058 ZJS	6	SPDX-License-Identifier: LGPL-2.1+
572eb058 ZJS	7
0b3b020a LP	8	This file is part of systemd.
	9
	10	Copyright 2010 Lennart Poettering
	11
	12	systemd is free software; you can redistribute it and/or modify it
5430f7f2 LP	13	under the terms of the GNU Lesser General Public License as published by
5430f7f2 LP	14	the Free Software Foundation; either version 2.1 of the License, or
0b3b020a LP	15	(at your option) any later version.
	16
	17	systemd is distributed in the hope that it will be useful, but
	18	WITHOUT ANY WARRANTY; without even the implied warranty of
	19	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
5430f7f2	20	Lesser General Public License for more details.
0b3b020a	21
5430f7f2	22	You should have received a copy of the GNU Lesser General Public License
0b3b020a LP	23	along with systemd; If not, see <http://www.gnu.org/licenses/>.
	24	-->
	25
1c97e2eb	26	<refentry id="sd_pid_get_owner_uid" conditional='HAVE_PAM'>
0b3b020a	27
798d3a52	28	<refentryinfo>
1c97e2eb	29	<title>sd_pid_get_owner_uid</title>
798d3a52 ZJS	30	<productname>systemd</productname>
	31
	32	<authorgroup>
	33	<author>
	34	<contrib>Developer</contrib>
	35	<firstname>Lennart</firstname>
	36	<surname>Poettering</surname>
	37	<email>lennart@poettering.net</email>
	38	</author>
	39	</authorgroup>
	40	</refentryinfo>
	41
	42	<refmeta>
1c97e2eb	43	<refentrytitle>sd_pid_get_owner_uid</refentrytitle>
798d3a52 ZJS	44	<manvolnum>3</manvolnum>
	45	</refmeta>
	46
	47	<refnamediv>
1c97e2eb	48	<refname>sd_pid_get_owner_uid</refname>
798d3a52	49	<refname>sd_pid_get_session</refname>
798d3a52	50	<refname>sd_pid_get_user_unit</refname>
1c97e2eb	51	<refname>sd_pid_get_unit</refname>
798d3a52 ZJS	52	<refname>sd_pid_get_machine_name</refname>
798d3a52 ZJS	53	<refname>sd_pid_get_slice</refname>
dddbc695	54	<refname>sd_pid_get_user_slice</refname>
f5aaf575	55	<refname>sd_pid_get_cgroup</refname>
1c97e2eb	56	<refname>sd_peer_get_owner_uid</refname>
798d3a52	57	<refname>sd_peer_get_session</refname>
798d3a52	58	<refname>sd_peer_get_user_unit</refname>
1c97e2eb	59	<refname>sd_peer_get_unit</refname>
798d3a52 ZJS	60	<refname>sd_peer_get_machine_name</refname>
798d3a52 ZJS	61	<refname>sd_peer_get_slice</refname>
dddbc695	62	<refname>sd_peer_get_user_slice</refname>
f5aaf575	63	<refname>sd_peer_get_cgroup</refname>
1c97e2eb AJ	64	<refpurpose>Determine the owner uid of the user unit or session,
	65	or the session, user unit, system unit, container/VM or slice that
	66	a specific PID or socket peer belongs to.</refpurpose>
798d3a52 ZJS	67	</refnamediv>
	68
	69	<refsynopsisdiv>
	70	<funcsynopsis>
	71	<funcsynopsisinfo>#include <systemd/sd-login.h></funcsynopsisinfo>
	72
	73	<funcprototype>
1c97e2eb	74	<funcdef>int <function>sd_pid_get_owner_uid</function></funcdef>
798d3a52	75	<paramdef>pid_t <parameter>pid</parameter></paramdef>
1c97e2eb	76	<paramdef>uid_t *<parameter>uid</parameter></paramdef>
798d3a52 ZJS	77	</funcprototype>
	78
	79	<funcprototype>
1c97e2eb	80	<funcdef>int <function>sd_pid_get_session</function></funcdef>
798d3a52	81	<paramdef>pid_t <parameter>pid</parameter></paramdef>
1c97e2eb	82	<paramdef>char **<parameter>session</parameter></paramdef>
798d3a52 ZJS	83	</funcprototype>
	84
	85	<funcprototype>
	86	<funcdef>int <function>sd_pid_get_user_unit</function></funcdef>
	87	<paramdef>pid_t <parameter>pid</parameter></paramdef>
	88	<paramdef>char **<parameter>unit</parameter></paramdef>
	89	</funcprototype>
	90
	91	<funcprototype>
1c97e2eb	92	<funcdef>int <function>sd_pid_get_unit</function></funcdef>
798d3a52	93	<paramdef>pid_t <parameter>pid</parameter></paramdef>
1c97e2eb	94	<paramdef>char **<parameter>unit</parameter></paramdef>
798d3a52 ZJS	95	</funcprototype>
	96
	97	<funcprototype>
	98	<funcdef>int <function>sd_pid_get_machine_name</function></funcdef>
	99	<paramdef>pid_t <parameter>pid</parameter></paramdef>
	100	<paramdef>char **<parameter>name</parameter></paramdef>
	101	</funcprototype>
	102
	103	<funcprototype>
	104	<funcdef>int <function>sd_pid_get_slice</function></funcdef>
	105	<paramdef>pid_t <parameter>pid</parameter></paramdef>
	106	<paramdef>char **<parameter>slice</parameter></paramdef>
	107	</funcprototype>
	108
dddbc695 LP	109	<funcprototype>
	110	<funcdef>int <function>sd_pid_get_user_slice</function></funcdef>
	111	<paramdef>pid_t <parameter>pid</parameter></paramdef>
	112	<paramdef>char **<parameter>slice</parameter></paramdef>
	113	</funcprototype>
	114
f5aaf575 LP	115	<funcprototype>
	116	<funcdef>int <function>sd_pid_get_cgroup</function></funcdef>
	117	<paramdef>pid_t <parameter>pid</parameter></paramdef>
	118	<paramdef>char **<parameter>cgroup</parameter></paramdef>
	119	</funcprototype>
	120
798d3a52	121	<funcprototype>
1c97e2eb	122	<funcdef>int <function>sd_peer_get_owner_uid</function></funcdef>
798d3a52	123	<paramdef>int <parameter>fd</parameter></paramdef>
1c97e2eb	124	<paramdef>uid_t *<parameter>uid</parameter></paramdef>
798d3a52 ZJS	125	</funcprototype>
	126
	127	<funcprototype>
1c97e2eb	128	<funcdef>int <function>sd_peer_get_session</function></funcdef>
798d3a52	129	<paramdef>int <parameter>fd</parameter></paramdef>
1c97e2eb	130	<paramdef>char **<parameter>session</parameter></paramdef>
798d3a52 ZJS	131	</funcprototype>
	132
	133	<funcprototype>
	134	<funcdef>int <function>sd_peer_get_user_unit</function></funcdef>
	135	<paramdef>int <parameter>fd</parameter></paramdef>
	136	<paramdef>char **<parameter>unit</parameter></paramdef>
	137	</funcprototype>
	138
	139	<funcprototype>
1c97e2eb	140	<funcdef>int <function>sd_peer_get_unit</function></funcdef>
798d3a52	141	<paramdef>int <parameter>fd</parameter></paramdef>
1c97e2eb	142	<paramdef>char **<parameter>unit</parameter></paramdef>
798d3a52 ZJS	143	</funcprototype>
	144
	145	<funcprototype>
	146	<funcdef>int <function>sd_peer_get_machine_name</function></funcdef>
	147	<paramdef>int <parameter>fd</parameter></paramdef>
	148	<paramdef>char **<parameter>name</parameter></paramdef>
	149	</funcprototype>
	150
	151	<funcprototype>
	152	<funcdef>int <function>sd_peer_get_slice</function></funcdef>
	153	<paramdef>int <parameter>fd</parameter></paramdef>
	154	<paramdef>char **<parameter>slice</parameter></paramdef>
	155	</funcprototype>
dddbc695 LP	156
	157	<funcprototype>
	158	<funcdef>int <function>sd_peer_get_user_slice</function></funcdef>
	159	<paramdef>int <parameter>fd</parameter></paramdef>
	160	<paramdef>char **<parameter>slice</parameter></paramdef>
	161	</funcprototype>
f5aaf575 LP	162
	163	<funcprototype>
	164	<funcdef>int <function>sd_peer_get_cgroup</function></funcdef>
	165	<paramdef>int <parameter>fd</parameter></paramdef>
	166	<paramdef>char **<parameter>cgroup</parameter></paramdef>
	167	</funcprototype>
798d3a52 ZJS	168	</funcsynopsis>
	169	</refsynopsisdiv>
	170
	171	<refsect1>
	172	<title>Description</title>
	173
1c97e2eb AJ	174	<para><function>sd_pid_get_owner_uid()</function> may be used to
	175	determine the Unix UID (user identifier) which owns the login
	176	session or systemd user unit of a process identified by the
	177	specified PID. For processes which are not part of a login session
	178	and not managed by a user manager, this function will fail with
	179	<constant>-ENODATA</constant>.</para>
	180
798d3a52 ZJS	181	<para><function>sd_pid_get_session()</function> may be used to
	182	determine the login session identifier of a process identified by
	183	the specified process identifier. The session identifier is a
1c97e2eb AJ	184	short string, suitable for usage in file system paths. Please
	185	note the login session may be limited to a stub process or two.
	186	User processes may instead be started from their systemd user
	187	manager, e.g. GUI applications started using DBus activation, as
	188	well as service processes which are shared between multiple logins
	189	of the same user. For processes which are not part of a login
	190	session, this function will fail with <constant>-ENODATA</constant>.
	191	The returned string needs to be freed with the libc <citerefentry
	192	project='man-pages'><refentrytitle>free</refentrytitle><manvolnum>3</manvolnum></citerefentry>
	193	call after use.</para>
	194
	195	<para><function>sd_pid_get_user_unit()</function> may be used to
	196	determine the systemd user unit (i.e. user service or scope unit)
	197	identifier of a process identified by the specified PID. The
	198	unit name is a short string, suitable for usage in file system
	199	paths. For processes which are not managed by a user manager, this
	200	function will fail with <constant>-ENODATA</constant>. The
	201	returned string needs to be freed with the libc <citerefentry
882f407f	202	project='man-pages'><refentrytitle>free</refentrytitle><manvolnum>3</manvolnum></citerefentry>
798d3a52 ZJS	203	call after use.</para>
	204
	205	<para><function>sd_pid_get_unit()</function> may be used to
dddbc695 LP	206	determine the systemd system unit (i.e. system service or scope
	207	unit) identifier of a process identified by the specified PID. The
	208	unit name is a short string, suitable for usage in file system
1c97e2eb AJ	209	paths. Note that not all processes are part of a system
	210	unit/service. For processes not being part of a systemd system
	211	unit, this function will fail with <constant>-ENODATA</constant>.
	212	(More specifically, this call will not work for kernel threads.)
	213	The returned string needs to be freed with the libc <citerefentry
882f407f	214	project='man-pages'><refentrytitle>free</refentrytitle><manvolnum>3</manvolnum></citerefentry>
798d3a52 ZJS	215	call after use.</para>
798d3a52 ZJS	216
798d3a52 ZJS	217	<para><function>sd_pid_get_machine_name()</function> may be used
	218	to determine the name of the VM or container is a member of. The
	219	machine name is a short string, suitable for usage in file system
	220	paths. The returned string needs to be freed with the libc
882f407f LP	221	<citerefentry
882f407f LP	222	project='man-pages'><refentrytitle>free</refentrytitle><manvolnum>3</manvolnum></citerefentry>
1c97e2eb	223	call after use. For processes not part of a VM or container, this
ce737f46	224	function fails with <constant>-ENODATA</constant>.</para>
798d3a52 ZJS	225
	226	<para><function>sd_pid_get_slice()</function> may be used to
	227	determine the slice unit the process is a member of. See
	228	<citerefentry><refentrytitle>systemd.slice</refentrytitle><manvolnum>5</manvolnum></citerefentry>
	229	for details about slices. The returned string needs to be freed
	230	with the libc
	231	<citerefentry project='man-pages'><refentrytitle>free</refentrytitle><manvolnum>3</manvolnum></citerefentry>
	232	call after use.</para>
	233
a8eaaee7	234	<para>Similarly, <function>sd_pid_get_user_slice()</function>
dddbc695 LP	235	returns the user slice (as managed by the user's systemd instance)
	236	of a process.</para>
	237
f5aaf575 LP	238	<para><function>sd_pid_get_cgroup()</function> returns the control
	239	group path of the specified process, relative to the root of the
	240	hierarchy. Returns the path without trailing slash, except for
	241	processes located in the root control group, where "/" is
b938cb90	242	returned. To find the actual control group path in the file system,
f5aaf575 LP	243	the returned path needs to be prefixed with
	244	<filename>/sys/fs/cgroup/</filename> (if the unified control group
	245	setup is used), or
	246	<filename>/sys/fs/cgroup/<replaceable>HIERARCHY</replaceable>/</filename>
	247	(if the legacy multi-hierarchy control group setup is used).</para>
	248
798d3a52 ZJS	249	<para>If the <varname>pid</varname> parameter of any of these
	250	functions is passed as 0, the operation is executed for the
	251	calling process.</para>
	252
1c97e2eb AJ	253	<para>The <function>sd_peer_get_owner_uid()</function>,
1c97e2eb AJ	254	<function>sd_peer_get_session()</function>,
798d3a52	255	<function>sd_peer_get_user_unit()</function>,
1c97e2eb	256	<function>sd_peer_get_unit()</function>,
dddbc695	257	<function>sd_peer_get_machine_name()</function>,
f5aaf575 LP	258	<function>sd_peer_get_slice()</function>,
	259	<function>sd_peer_get_user_slice()</function> and
	260	<function>sd_peer_get_cgroup()</function> calls operate similar to
	261	their PID counterparts, but operate on a connected AF_UNIX socket
	262	and retrieve information about the connected peer process. Note
	263	that these fields are retrieved via <filename>/proc</filename>,
	264	and hence are not suitable for authorization purposes, as they are
	265	subject to races.</para>
798d3a52 ZJS	266	</refsect1>
	267
	268	<refsect1>
	269	<title>Return Value</title>
	270
	271	<para>On success, these calls return 0 or a positive integer. On
	272	failure, these calls return a negative errno-style error
	273	code.</para>
	274	</refsect1>
	275
882f407f LP	276	<refsect1>
	277	<title>Errors</title>
	278
	279	<para>Returned errors may indicate the following problems:</para>
	280
	281	<variablelist>
	282
	283	<varlistentry>
707b66c6 LP	284	<term><constant>-ESRCH</constant></term>
	285
	286	<listitem><para>The specified PID does not refer to a running
	287	process.</para>
	288	</listitem>
	289	</varlistentry>
	290
	291	<varlistentry>
bc9e9af1	292	<term><constant>-EBADF</constant></term>
707b66c6 LP	293
	294	<listitem><para>The specified socket file descriptor was
	295	invalid.</para></listitem>
	296	</varlistentry>
	297
	298	<varlistentry>
	299	<term><constant>-ENODATA</constant></term>
882f407f	300
a8eaaee7	301	<listitem><para>The given field is not specified for the described
882f407f LP	302	process or peer.</para>
	303	</listitem>
	304	</varlistentry>
	305
	306	<varlistentry>
707b66c6	307	<term><constant>-EINVAL</constant></term>
882f407f	308
707b66c6	309	<listitem><para>An input parameter was invalid (out of range,
7ca41557	310	or NULL, where that is not accepted).</para></listitem>
882f407f LP	311	</varlistentry>
	312
	313	<varlistentry>
	314	<term><constant>-ENOMEM</constant></term>
	315
	316	<listitem><para>Memory allocation failed.</para></listitem>
	317	</varlistentry>
	318	</variablelist>
	319	</refsect1>
	320
798d3a52 ZJS	321	<refsect1>
	322	<title>Notes</title>
	323
	324	<para>The <function>sd_pid_get_session()</function>,
	325	<function>sd_pid_get_unit()</function>,
	326	<function>sd_pid_get_user_unit()</function>,
	327	<function>sd_pid_get_owner_uid()</function>,
	328	<function>sd_pid_get_machine_name()</function>,
	329	<function>sd_pid_get_slice()</function>,
dddbc695	330	<function>sd_pid_get_user_slice()</function>,
798d3a52 ZJS	331	<function>sd_peer_get_session()</function>,
	332	<function>sd_peer_get_unit()</function>,
	333	<function>sd_peer_get_user_unit()</function>,
	334	<function>sd_peer_get_owner_uid()</function>,
dddbc695 LP	335	<function>sd_peer_get_machine_name()</function>,
	336	<function>sd_peer_get_slice()</function> and
	337	<function>sd_peer_get_user_slice()</function> interfaces are
	338	available as a shared library, which can be compiled and linked to
	339	with the <constant>libsystemd</constant> <citerefentry
	340	project='die-net'><refentrytitle>pkg-config</refentrytitle><manvolnum>1</manvolnum></citerefentry>
798d3a52 ZJS	341	file.</para>
	342
	343	<para>Note that the login session identifier as
	344	returned by <function>sd_pid_get_session()</function>
	345	is completely unrelated to the process session
	346	identifier as returned by
	347	<citerefentry><refentrytitle>getsid</refentrytitle><manvolnum>2</manvolnum></citerefentry>.</para>
	348	</refsect1>
	349
	350	<refsect1>
	351	<title>See Also</title>
	352
	353	<para>
	354	<citerefentry><refentrytitle>systemd</refentrytitle><manvolnum>1</manvolnum></citerefentry>,
	355	<citerefentry><refentrytitle>sd-login</refentrytitle><manvolnum>3</manvolnum></citerefentry>,
	356	<citerefentry><refentrytitle>sd_session_is_active</refentrytitle><manvolnum>3</manvolnum></citerefentry>,
	357	<citerefentry><refentrytitle>getsid</refentrytitle><manvolnum>2</manvolnum></citerefentry>,
	358	<citerefentry><refentrytitle>systemd.slice</refentrytitle><manvolnum>5</manvolnum></citerefentry>,
	359	<citerefentry><refentrytitle>systemd-machined.service</refentrytitle><manvolnum>8</manvolnum></citerefentry>
	360	</para>
	361	</refsect1>
0b3b020a LP	362
0b3b020a LP	363	</refentry>