]> git.ipfire.org Git - thirdparty/systemd.git/blame - src/core/manager.c
projects / thirdparty / systemd.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
core: initalize buffer
[thirdparty/systemd.git] / src / core / manager.c
CommitLineData
53e1b683 1/* SPDX-License-Identifier: LGPL-2.1+ */
a7334b09
LP		 2/***
3 This file is part of systemd.
4
5 Copyright 2010 Lennart Poettering
6
7 systemd is free software; you can redistribute it and/or modify it
5430f7f2
LP		 8 under the terms of the GNU Lesser General Public License as published by
9 the Free Software Foundation; either version 2.1 of the License, or
a7334b09
LP		 10 (at your option) any later version.
11
12 systemd is distributed in the hope that it will be useful, but
13 WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
5430f7f2 15 Lesser General Public License for more details.
a7334b09 16
5430f7f2 17 You should have received a copy of the GNU Lesser General Public License
a7334b09
LP		 18 along with systemd; If not, see <http://www.gnu.org/licenses/>.
19***/
20
60918275 21#include <errno.h>
400f1a33
LP		 22#include <fcntl.h>
23#include <linux/kd.h>
9152c765 24#include <signal.h>
713f6f90 25#include <stdio_ext.h>
400f1a33 26#include <string.h>
e46b13c8 27#include <sys/epoll.h>
400f1a33 28#include <sys/inotify.h>
e1414003 29#include <sys/ioctl.h>
400f1a33 30#include <sys/reboot.h>
8742514c 31#include <sys/timerfd.h>
400f1a33
LP		 32#include <sys/wait.h>
33#include <unistd.h>
830f6caa 34
349cc4a5 35#if HAVE_AUDIT
4927fcae 36#include <libaudit.h>
830f6caa 37#endif
60918275 38
718db961 39#include "sd-daemon.h"
718db961 40#include "sd-messages.h"
3536f49e 41#include "sd-path.h"
81527be1 42
b5efdb8a 43#include "alloc-util.h"
400f1a33
LP		 44#include "audit-fd.h"
45#include "boot-timestamps.h"
46#include "bus-common-errors.h"
47#include "bus-error.h"
48#include "bus-kernel.h"
49#include "bus-util.h"
00d9ef85 50#include "clean-ipc.h"
af6b0ecc 51#include "clock-util.h"
400f1a33
LP		 52#include "dbus-job.h"
53#include "dbus-manager.h"
54#include "dbus-unit.h"
55#include "dbus.h"
d063a527 56#include "dirent-util.h"
400f1a33 57#include "env-util.h"
4f5dd394 58#include "escape.h"
89711996 59#include "exec-util.h"
d3070fbd 60#include "execute.h"
400f1a33 61#include "exit-status.h"
3ffd4af2 62#include "fd-util.h"
0d39fa9c 63#include "fileio.h"
f4f15635 64#include "fs-util.h"
60918275 65#include "hashmap.h"
c004493c 66#include "io-util.h"
d3070fbd 67#include "label.h"
400f1a33 68#include "locale-setup.h"
16354eff 69#include "log.h"
400f1a33 70#include "macro.h"
3ffd4af2 71#include "manager.h"
400f1a33 72#include "missing.h"
49e942b2 73#include "mkdir.h"
6bedfcbb 74#include "parse-util.h"
400f1a33
LP		 75#include "path-lookup.h"
76#include "path-util.h"
77#include "process-util.h"
ea430986 78#include "ratelimit.h"
c6878637 79#include "rm-rf.h"
400f1a33 80#include "signal-util.h"
514f4ef5 81#include "special.h"
8fcde012 82#include "stat-util.h"
8b43440b 83#include "string-table.h"
07630cea 84#include "string-util.h"
400f1a33 85#include "strv.h"
dd1db3c2 86#include "strxcpyx.h"
400f1a33
LP		 87#include "terminal-util.h"
88#include "time-util.h"
89#include "transaction.h"
affb60b1 90#include "umask-util.h"
400f1a33 91#include "unit-name.h"
00d9ef85 92#include "user-util.h"
400f1a33 93#include "util.h"
5dc4c17f 94#include "virt.h"
e96d6be7 95#include "watchdog.h"
60918275 96
a47806fa 97#define NOTIFY_RCVBUF_SIZE (8*1024*1024)
d8fdc620 98#define CGROUPS_AGENT_RCVBUF_SIZE (8*1024*1024)
a47806fa 99
03b717a3 100/* Initial delay and the interval for printing status messages about running jobs */
fd08a840
ZJS		 101#define JOBS_IN_PROGRESS_WAIT_USEC (5*USEC_PER_SEC)
102#define JOBS_IN_PROGRESS_PERIOD_USEC (USEC_PER_SEC / 3)
03b717a3
MS		 103#define JOBS_IN_PROGRESS_PERIOD_DIVISOR 3
104
718db961 105static int manager_dispatch_notify_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata);
d8fdc620 106static int manager_dispatch_cgroups_agent_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata);
718db961
LP		 107static int manager_dispatch_signal_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata);
108static int manager_dispatch_time_change_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata);
109static int manager_dispatch_idle_pipe_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata);
00d9ef85 110static int manager_dispatch_user_lookup_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata);
718db961 111static int manager_dispatch_jobs_in_progress(sd_event_source *source, usec_t usec, void *userdata);
752b5905 112static int manager_dispatch_run_queue(sd_event_source *source, void *userdata);
575b300b 113static int manager_dispatch_sigchld(sd_event_source *source, void *userdata);
64691d20 114static int manager_run_environment_generators(Manager *m);
e801700e 115static int manager_run_generators(Manager *m);
718db961 116
2ae56591 117static void manager_watch_jobs_in_progress(Manager *m) {
e5723c89 118 usec_t next;
cfa9677b 119 int r;
e5723c89 120
718db961 121 assert(m);
03b717a3 122
42bf1ae1
FB		 123 /* We do not want to show the cylon animation if the user
124 * needs to confirm service executions otherwise confirmation
125 * messages will be screwed by the cylon animation. */
b0eb2944 126 if (!manager_is_confirm_spawn_disabled(m))
42bf1ae1
FB		 127 return;
128
718db961 129 if (m->jobs_in_progress_event_source)
2ae56591 130 return;
03b717a3 131
e5723c89 132 next = now(CLOCK_MONOTONIC) + JOBS_IN_PROGRESS_WAIT_USEC;
cfa9677b 133 r = sd_event_add_time(
6a0f1f6d
LP		 134 m->event,
135 &m->jobs_in_progress_event_source,
136 CLOCK_MONOTONIC,
137 next, 0,
138 manager_dispatch_jobs_in_progress, m);
cfa9677b
MM		 139 if (r < 0)
140 return;
7dfbe2e3
TG		 141
142 (void) sd_event_source_set_description(m->jobs_in_progress_event_source, "manager-jobs-in-progress");
03b717a3
MS		 143}
144
fbd0b64f 145#define CYLON_BUFFER_EXTRA (2*STRLEN(ANSI_RED) + STRLEN(ANSI_HIGHLIGHT_RED) + 2*STRLEN(ANSI_NORMAL))
03b717a3 146
03b717a3
MS		 147static void draw_cylon(char buffer[], size_t buflen, unsigned width, unsigned pos) {
148 char *p = buffer;
149
150 assert(buflen >= CYLON_BUFFER_EXTRA + width + 1);
151 assert(pos <= width+1); /* 0 or width+1 mean that the center light is behind the corner */
152
153 if (pos > 1) {
6282c859
MS		 154 if (pos > 2)
155 p = mempset(p, ' ', pos-2);
64c3610b
FB		 156 if (log_get_show_color())
157 p = stpcpy(p, ANSI_RED);
03b717a3
MS		 158 *p++ = '*';
159 }
160
161 if (pos > 0 && pos <= width) {
64c3610b
FB		 162 if (log_get_show_color())
163 p = stpcpy(p, ANSI_HIGHLIGHT_RED);
03b717a3
MS		 164 *p++ = '*';
165 }
166
64c3610b
FB		 167 if (log_get_show_color())
168 p = stpcpy(p, ANSI_NORMAL);
03b717a3
MS		 169
170 if (pos < width) {
64c3610b
FB		 171 if (log_get_show_color())
172 p = stpcpy(p, ANSI_RED);
03b717a3 173 *p++ = '*';
6282c859
MS		 174 if (pos < width-1)
175 p = mempset(p, ' ', width-1-pos);
64c3610b
FB		 176 if (log_get_show_color())
177 strcpy(p, ANSI_NORMAL);
03b717a3 178 }
03b717a3
MS		 179}
180
cb8ccb22 181void manager_flip_auto_status(Manager *m, bool enable) {
f755e3b7
LP		 182 assert(m);
183
cb8ccb22
ZJS		 184 if (enable) {
185 if (m->show_status == SHOW_STATUS_AUTO)
186 manager_set_show_status(m, SHOW_STATUS_TEMPORARY);
187 } else {
188 if (m->show_status == SHOW_STATUS_TEMPORARY)
189 manager_set_show_status(m, SHOW_STATUS_AUTO);
190 }
191}
192
03b717a3 193static void manager_print_jobs_in_progress(Manager *m) {
718db961 194 _cleanup_free_ char *job_of_n = NULL;
03b717a3
MS		 195 Iterator i;
196 Job *j;
03b717a3
MS		 197 unsigned counter = 0, print_nr;
198 char cylon[6 + CYLON_BUFFER_EXTRA + 1];
199 unsigned cylon_pos;
8bb310c3
ZJS		 200 char time[FORMAT_TIMESPAN_MAX], limit[FORMAT_TIMESPAN_MAX] = "no limit";
201 uint64_t x;
03b717a3 202
718db961 203 assert(m);
9c3349e2 204 assert(m->n_running_jobs > 0);
718db961 205
cb8ccb22 206 manager_flip_auto_status(m, true);
d450b6f2 207
03b717a3
MS		 208 print_nr = (m->jobs_in_progress_iteration / JOBS_IN_PROGRESS_PERIOD_DIVISOR) % m->n_running_jobs;
209
210 HASHMAP_FOREACH(j, m->jobs, i)
211 if (j->state == JOB_RUNNING && counter++ == print_nr)
212 break;
213
e970a72e
MS		 214 /* m->n_running_jobs must be consistent with the contents of m->jobs,
215 * so the above loop must have succeeded in finding j. */
216 assert(counter == print_nr + 1);
51d122af 217 assert(j);
5a82a91a 218
03b717a3
MS		 219 cylon_pos = m->jobs_in_progress_iteration % 14;
220 if (cylon_pos >= 8)
221 cylon_pos = 14 - cylon_pos;
222 draw_cylon(cylon, sizeof(cylon), 6, cylon_pos);
223
8bb310c3
ZJS		 224 m->jobs_in_progress_iteration++;
225
d6483ba7
ZJS		 226 if (m->n_running_jobs > 1) {
227 if (asprintf(&job_of_n, "(%u of %u) ", counter, m->n_running_jobs) < 0)
228 job_of_n = NULL;
229 }
03b717a3 230
8bb310c3
ZJS		 231 format_timespan(time, sizeof(time), now(CLOCK_MONOTONIC) - j->begin_usec, 1*USEC_PER_SEC);
232 if (job_get_timeout(j, &x) > 0)
233 format_timespan(limit, sizeof(limit), x - j->begin_usec, 1*USEC_PER_SEC);
234
127d5fd1 235 manager_status_printf(m, STATUS_TYPE_EPHEMERAL, cylon,
8bb310c3
ZJS		 236 "%sA %s job is running for %s (%s / %s)",
237 strempty(job_of_n),
238 job_type_to_string(j->type),
239 unit_description(j->unit),
240 time, limit);
03b717a3
MS		 241}
242
e46b13c8
ZJS		 243static int have_ask_password(void) {
244 _cleanup_closedir_ DIR *dir;
8fb3f009 245 struct dirent *de;
e46b13c8
ZJS		 246
247 dir = opendir("/run/systemd/ask-password");
248 if (!dir) {
249 if (errno == ENOENT)
250 return false;
251 else
252 return -errno;
253 }
254
8fb3f009 255 FOREACH_DIRENT_ALL(de, dir, return -errno) {
e46b13c8
ZJS		 256 if (startswith(de->d_name, "ask."))
257 return true;
258 }
8fb3f009 259 return false;
e46b13c8
ZJS		 260}
261
262static int manager_dispatch_ask_password_fd(sd_event_source *source,
263 int fd, uint32_t revents, void *userdata) {
264 Manager *m = userdata;
265
266 assert(m);
267
665dfe93 268 (void) flush_fd(fd);
e46b13c8
ZJS		 269
270 m->have_ask_password = have_ask_password();
271 if (m->have_ask_password < 0)
272 /* Log error but continue. Negative have_ask_password
273 * is treated as unknown status. */
c33b3297 274 log_error_errno(m->have_ask_password, "Failed to list /run/systemd/ask-password: %m");
e46b13c8
ZJS		 275
276 return 0;
277}
278
279static void manager_close_ask_password(Manager *m) {
280 assert(m);
281
e46b13c8 282 m->ask_password_event_source = sd_event_source_unref(m->ask_password_event_source);
90990e28 283 m->ask_password_inotify_fd = safe_close(m->ask_password_inotify_fd);
e46b13c8
ZJS		 284 m->have_ask_password = -EINVAL;
285}
286
287static int manager_check_ask_password(Manager *m) {
288 int r;
289
290 assert(m);
291
292 if (!m->ask_password_event_source) {
293 assert(m->ask_password_inotify_fd < 0);
294
295 mkdir_p_label("/run/systemd/ask-password", 0755);
296
297 m->ask_password_inotify_fd = inotify_init1(IN_NONBLOCK|IN_CLOEXEC);
4a62c710
MS		 298 if (m->ask_password_inotify_fd < 0)
299 return log_error_errno(errno, "inotify_init1() failed: %m");
e46b13c8
ZJS		 300
301 if (inotify_add_watch(m->ask_password_inotify_fd, "/run/systemd/ask-password", IN_CREATE|IN_DELETE|IN_MOVE) < 0) {
56f64d95 302 log_error_errno(errno, "Failed to add watch on /run/systemd/ask-password: %m");
e46b13c8
ZJS		 303 manager_close_ask_password(m);
304 return -errno;
305 }
306
307 r = sd_event_add_io(m->event, &m->ask_password_event_source,
308 m->ask_password_inotify_fd, EPOLLIN,
309 manager_dispatch_ask_password_fd, m);
310 if (r < 0) {
56f64d95 311 log_error_errno(errno, "Failed to add event source for /run/systemd/ask-password: %m");
e46b13c8
ZJS		 312 manager_close_ask_password(m);
313 return -errno;
314 }
315
7dfbe2e3
TG		 316 (void) sd_event_source_set_description(m->ask_password_event_source, "manager-ask-password");
317
e46b13c8
ZJS		 318 /* Queries might have been added meanwhile... */
319 manager_dispatch_ask_password_fd(m->ask_password_event_source,
320 m->ask_password_inotify_fd, EPOLLIN, m);
321 }
322
323 return m->have_ask_password;
324}
325
31a7eb86 326static int manager_watch_idle_pipe(Manager *m) {
31a7eb86
ZJS		 327 int r;
328
718db961
LP		 329 assert(m);
330
331 if (m->idle_pipe_event_source)
31a7eb86
ZJS		 332 return 0;
333
334 if (m->idle_pipe[2] < 0)
335 return 0;
336
151b9b96 337 r = sd_event_add_io(m->event, &m->idle_pipe_event_source, m->idle_pipe[2], EPOLLIN, manager_dispatch_idle_pipe_fd, m);
23bbb0de
MS		 338 if (r < 0)
339 return log_error_errno(r, "Failed to watch idle pipe: %m");
31a7eb86 340
7dfbe2e3
TG		 341 (void) sd_event_source_set_description(m->idle_pipe_event_source, "manager-idle-pipe");
342
31a7eb86 343 return 0;
31a7eb86
ZJS		 344}
345
718db961
LP		 346static void manager_close_idle_pipe(Manager *m) {
347 assert(m);
31a7eb86 348
cd72bd8a
LP		 349 m->idle_pipe_event_source = sd_event_source_unref(m->idle_pipe_event_source);
350
3d94f76c
LP		 351 safe_close_pair(m->idle_pipe);
352 safe_close_pair(m->idle_pipe + 2);
31a7eb86
ZJS		 353}
354
8742514c 355static int manager_setup_time_change(Manager *m) {
718db961 356 int r;
b92bea5d
ZJS		 357
358 /* We only care for the cancellation event, hence we set the
359 * timeout to the latest possible value. */
360 struct itimerspec its = {
361 .it_value.tv_sec = TIME_T_MAX,
362 };
8742514c 363
718db961
LP		 364 assert(m);
365 assert_cc(sizeof(time_t) == sizeof(TIME_T_MAX));
8742514c 366
e0a3da1f 367 if (m->test_run_flags)
0d8c31ff
ZJS		 368 return 0;
369
8742514c
LP		 370 /* Uses TFD_TIMER_CANCEL_ON_SET to get notifications whenever
371 * CLOCK_REALTIME makes a jump relative to CLOCK_MONOTONIC */
372
718db961 373 m->time_change_fd = timerfd_create(CLOCK_REALTIME, TFD_NONBLOCK|TFD_CLOEXEC);
4a62c710
MS		 374 if (m->time_change_fd < 0)
375 return log_error_errno(errno, "Failed to create timerfd: %m");
8742514c 376
718db961 377 if (timerfd_settime(m->time_change_fd, TFD_TIMER_ABSTIME|TFD_TIMER_CANCEL_ON_SET, &its, NULL) < 0) {
56f64d95 378 log_debug_errno(errno, "Failed to set up TFD_TIMER_CANCEL_ON_SET, ignoring: %m");
03e334a1 379 m->time_change_fd = safe_close(m->time_change_fd);
8742514c
LP		 380 return 0;
381 }
382
151b9b96 383 r = sd_event_add_io(m->event, &m->time_change_event_source, m->time_change_fd, EPOLLIN, manager_dispatch_time_change_fd, m);
23bbb0de
MS		 384 if (r < 0)
385 return log_error_errno(r, "Failed to create time change event source: %m");
8742514c 386
7dfbe2e3
TG		 387 (void) sd_event_source_set_description(m->time_change_event_source, "manager-time-change");
388
8742514c
LP		 389 log_debug("Set up TFD_TIMER_CANCEL_ON_SET timerfd.");
390
391 return 0;
392}
393
80876c20 394static int enable_special_signals(Manager *m) {
718db961 395 _cleanup_close_ int fd = -1;
80876c20
LP		 396
397 assert(m);
398
e0a3da1f 399 if (m->test_run_flags)
37453b3a
EV		 400 return 0;
401
a41b539e 402 /* Enable that we get SIGINT on control-alt-del. In containers
c9999773
LP		 403 * this will fail with EPERM (older) or EINVAL (newer), so
404 * ignore that. */
4c701096 405 if (reboot(RB_DISABLE_CAD) < 0 && !IN_SET(errno, EPERM, EINVAL))
56f64d95 406 log_warning_errno(errno, "Failed to enable ctrl-alt-del handling: %m");
80876c20 407
a41b539e
LP		 408 fd = open_terminal("/dev/tty0", O_RDWR|O_NOCTTY|O_CLOEXEC);
409 if (fd < 0) {
410 /* Support systems without virtual console */
411 if (fd != -ENOENT)
56f64d95 412 log_warning_errno(errno, "Failed to open /dev/tty0: %m");
a41b539e 413 } else {
80876c20
LP		 414 /* Enable that we get SIGWINCH on kbrequest */
415 if (ioctl(fd, KDSIGACCEPT, SIGWINCH) < 0)
56f64d95 416 log_warning_errno(errno, "Failed to enable kbrequest handling: %m");
80876c20
LP		 417 }
418
419 return 0;
420}
421
ce578209 422static int manager_setup_signals(Manager *m) {
b92bea5d
ZJS		 423 struct sigaction sa = {
424 .sa_handler = SIG_DFL,
425 .sa_flags = SA_NOCLDSTOP|SA_RESTART,
426 };
718db961
LP		 427 sigset_t mask;
428 int r;
60918275 429
ce578209
LP		 430 assert(m);
431
57c0c30e
LP		 432 assert_se(sigaction(SIGCHLD, &sa, NULL) == 0);
433
4dffec14
LP		 434 /* We make liberal use of realtime signals here. On
435 * Linux/glibc we have 30 of them (with the exception of Linux
436 * on hppa, see below), between SIGRTMIN+0 ... SIGRTMIN+30
437 * (aka SIGRTMAX). */
7d793605 438
4dffec14 439 assert_se(sigemptyset(&mask) == 0);
7d793605
LP		 440 sigset_add_many(&mask,
441 SIGCHLD, /* Child died */
442 SIGTERM, /* Reexecute daemon */
443 SIGHUP, /* Reload configuration */
444 SIGUSR1, /* systemd/upstart: reconnect to D-Bus */
445 SIGUSR2, /* systemd: dump status */
446 SIGINT, /* Kernel sends us this on control-alt-del */
447 SIGWINCH, /* Kernel sends us this on kbrequest (alt-arrowup) */
448 SIGPWR, /* Some kernel drivers and upsd send us this on power failure */
4dffec14 449
7d793605 450 SIGRTMIN+0, /* systemd: start default.target */
0003d1ab 451 SIGRTMIN+1, /* systemd: isolate rescue.target */
7d793605
LP		 452 SIGRTMIN+2, /* systemd: isolate emergency.target */
453 SIGRTMIN+3, /* systemd: start halt.target */
454 SIGRTMIN+4, /* systemd: start poweroff.target */
455 SIGRTMIN+5, /* systemd: start reboot.target */
0003d1ab 456 SIGRTMIN+6, /* systemd: start kexec.target */
4dffec14
LP		 457
458 /* ... space for more special targets ... */
459
0003d1ab
LP		 460 SIGRTMIN+13, /* systemd: Immediate halt */
461 SIGRTMIN+14, /* systemd: Immediate poweroff */
462 SIGRTMIN+15, /* systemd: Immediate reboot */
463 SIGRTMIN+16, /* systemd: Immediate kexec */
4dffec14
LP		 464
465 /* ... space for more immediate system state changes ... */
466
0658666b
LP		 467 SIGRTMIN+20, /* systemd: enable status messages */
468 SIGRTMIN+21, /* systemd: disable status messages */
253ee27a
LP		 469 SIGRTMIN+22, /* systemd: set log level to LOG_DEBUG */
470 SIGRTMIN+23, /* systemd: set log level to LOG_INFO */
600b704e 471 SIGRTMIN+24, /* systemd: Immediate exit (--user only) */
4dffec14
LP		 472
473 /* .. one free signal here ... */
474
475#if !defined(__hppa64__) && !defined(__hppa__)
476 /* Apparently Linux on hppa has fewer RT
477 * signals (SIGRTMAX is SIGRTMIN+25 there),
478 * hence let's not try to make use of them
479 * here. Since these commands are accessible
480 * by different means and only really a safety
481 * net, the missing functionality on hppa
482 * shouldn't matter. */
483
4cfa2c99 484 SIGRTMIN+26, /* systemd: set log target to journal-or-kmsg */
253ee27a
LP		 485 SIGRTMIN+27, /* systemd: set log target to console */
486 SIGRTMIN+28, /* systemd: set log target to kmsg */
ee33e53a 487 SIGRTMIN+29, /* systemd: set log target to syslog-or-kmsg (obsolete) */
4dffec14
LP		 488
489 /* ... one free signal here SIGRTMIN+30 ... */
490#endif
7d793605 491 -1);
ce578209
LP		 492 assert_se(sigprocmask(SIG_SETMASK, &mask, NULL) == 0);
493
718db961
LP		 494 m->signal_fd = signalfd(-1, &mask, SFD_NONBLOCK|SFD_CLOEXEC);
495 if (m->signal_fd < 0)
ce578209
LP		 496 return -errno;
497
151b9b96 498 r = sd_event_add_io(m->event, &m->signal_event_source, m->signal_fd, EPOLLIN, manager_dispatch_signal_fd, m);
718db961
LP		 499 if (r < 0)
500 return r;
ce578209 501
7dfbe2e3
TG		 502 (void) sd_event_source_set_description(m->signal_event_source, "manager-signal");
503
d8fdc620
LP		 504 /* Process signals a bit earlier than the rest of things, but later than notify_fd processing, so that the
505 * notify processing can still figure out to which process/service a message belongs, before we reap the
506 * process. Also, process this before handling cgroup notifications, so that we always collect child exit
507 * status information before detecting that there's no process in a cgroup. */
508 r = sd_event_source_set_priority(m->signal_event_source, SD_EVENT_PRIORITY_NORMAL-6);
29083707
LP		 509 if (r < 0)
510 return r;
511
463d0d15 512 if (MANAGER_IS_SYSTEM(m))
80876c20 513 return enable_special_signals(m);
e1414003 514
ce578209
LP		 515 return 0;
516}
517
47cf8ff2 518static void manager_sanitize_environment(Manager *m) {
f069efb4
LP		 519 assert(m);
520
47cf8ff2 521 /* Let's remove some environment variables that we need ourselves to communicate with our clients */
f069efb4
LP		 522 strv_env_unset_many(
523 m->environment,
47cf8ff2
LP		 524 "EXIT_CODE",
525 "EXIT_STATUS",
526 "INVOCATION_ID",
527 "JOURNAL_STREAM",
528 "LISTEN_FDNAMES",
529 "LISTEN_FDS",
530 "LISTEN_PID",
f069efb4
LP		 531 "MAINPID",
532 "MANAGERPID",
47cf8ff2
LP		 533 "NOTIFY_SOCKET",
534 "REMOTE_ADDR",
535 "REMOTE_PORT",
536 "SERVICE_RESULT",
f069efb4
LP		 537 "WATCHDOG_PID",
538 "WATCHDOG_USEC",
539 NULL);
47cf8ff2
LP		 540
541 /* Let's order the environment alphabetically, just to make it pretty */
542 strv_sort(m->environment);
f069efb4
LP		 543}
544
e21fea24 545static int manager_default_environment(Manager *m) {
71ecc858
LP		 546 assert(m);
547
463d0d15 548 if (MANAGER_IS_SYSTEM(m)) {
e21fea24
KS		 549 /* The system manager always starts with a clean
550 * environment for its children. It does not import
71cb7d30 551 * the kernel's or the parents' exported variables.
e21fea24 552 *
71cb7d30 553 * The initial passed environment is untouched to keep
e21fea24
KS		 554 * /proc/self/environ valid; it is used for tagging
555 * the init process inside containers. */
43638332
ZJS		 556 m->environment = strv_new("PATH=" DEFAULT_PATH,
557 NULL);
e21fea24
KS		 558
559 /* Import locale variables LC_*= from configuration */
560 locale_setup(&m->environment);
71cb7d30 561 } else
e21fea24
KS		 562 /* The user manager passes its own environment
563 * along to its children. */
564 m->environment = strv_copy(environ);
43d03a83 565
e21fea24
KS		 566 if (!m->environment)
567 return -ENOMEM;
8b55b8c4 568
47cf8ff2 569 manager_sanitize_environment(m);
9d5a3757 570
e21fea24 571 return 0;
71ecc858
LP		 572}
573
3536f49e
YW		 574static int manager_setup_prefix(Manager *m) {
575 struct table_entry {
576 uint64_t type;
577 const char *suffix;
578 };
579
72fd1768 580 static const struct table_entry paths_system[_EXEC_DIRECTORY_TYPE_MAX] = {
3536f49e
YW		 581 [EXEC_DIRECTORY_RUNTIME] = { SD_PATH_SYSTEM_RUNTIME, NULL },
582 [EXEC_DIRECTORY_STATE] = { SD_PATH_SYSTEM_STATE_PRIVATE, NULL },
583 [EXEC_DIRECTORY_CACHE] = { SD_PATH_SYSTEM_STATE_CACHE, NULL },
584 [EXEC_DIRECTORY_LOGS] = { SD_PATH_SYSTEM_STATE_LOGS, NULL },
585 [EXEC_DIRECTORY_CONFIGURATION] = { SD_PATH_SYSTEM_CONFIGURATION, NULL },
586 };
587
72fd1768 588 static const struct table_entry paths_user[_EXEC_DIRECTORY_TYPE_MAX] = {
3536f49e
YW		 589 [EXEC_DIRECTORY_RUNTIME] = { SD_PATH_USER_RUNTIME, NULL },
590 [EXEC_DIRECTORY_STATE] = { SD_PATH_USER_CONFIGURATION, NULL },
c6218495
LP		 591 [EXEC_DIRECTORY_CACHE] = { SD_PATH_USER_STATE_CACHE, NULL },
592 [EXEC_DIRECTORY_LOGS] = { SD_PATH_USER_CONFIGURATION, "log" },
593 [EXEC_DIRECTORY_CONFIGURATION] = { SD_PATH_USER_CONFIGURATION, NULL },
3536f49e
YW		 594 };
595
596 const struct table_entry *p;
597 ExecDirectoryType i;
598 int r;
599
600 assert(m);
601
602 if (MANAGER_IS_SYSTEM(m))
603 p = paths_system;
604 else
605 p = paths_user;
606
72fd1768 607 for (i = 0; i < _EXEC_DIRECTORY_TYPE_MAX; i++) {
3536f49e
YW		 608 r = sd_path_home(p[i].type, p[i].suffix, &m->prefix[i]);
609 if (r < 0)
610 return r;
611 }
612
613 return 0;
614}
615
279d81dd
LP		 616static int manager_setup_run_queue(Manager *m) {
617 int r;
618
619 assert(m);
620 assert(!m->run_queue_event_source);
621
622 r = sd_event_add_defer(m->event, &m->run_queue_event_source, manager_dispatch_run_queue, m);
623 if (r < 0)
624 return r;
625
626 r = sd_event_source_set_priority(m->run_queue_event_source, SD_EVENT_PRIORITY_IDLE);
627 if (r < 0)
628 return r;
629
630 r = sd_event_source_set_enabled(m->run_queue_event_source, SD_EVENT_OFF);
631 if (r < 0)
632 return r;
633
634 (void) sd_event_source_set_description(m->run_queue_event_source, "manager-run-queue");
635
636 return 0;
637}
638
575b300b
LP		 639static int manager_setup_sigchld_event_source(Manager *m) {
640 int r;
641
642 assert(m);
643 assert(!m->sigchld_event_source);
644
645 r = sd_event_add_defer(m->event, &m->sigchld_event_source, manager_dispatch_sigchld, m);
646 if (r < 0)
647 return r;
648
649 r = sd_event_source_set_priority(m->sigchld_event_source, SD_EVENT_PRIORITY_NORMAL-7);
650 if (r < 0)
651 return r;
652
653 r = sd_event_source_set_enabled(m->sigchld_event_source, SD_EVENT_OFF);
654 if (r < 0)
655 return r;
656
657 (void) sd_event_source_set_description(m->sigchld_event_source, "manager-sigchld");
658
659 return 0;
660}
661
e0a3da1f 662int manager_new(UnitFileScope scope, unsigned test_run_flags, Manager **_m) {
ce578209 663 Manager *m;
e3dd987c 664 int r;
8e274523
LP		 665
666 assert(_m);
463d0d15 667 assert(IN_SET(scope, UNIT_FILE_SYSTEM, UNIT_FILE_USER));
ce578209 668
915b3753
LP		 669 m = new0(Manager, 1);
670 if (!m)
8e274523 671 return -ENOMEM;
60918275 672
463d0d15 673 m->unit_file_scope = scope;
a16e1123 674 m->exit_code = _MANAGER_EXIT_CODE_INVALID;
bd8f585b 675 m->default_timer_accuracy_usec = USEC_PER_MINUTE;
9ded9cd1 676 m->default_tasks_accounting = true;
79baeeb9 677 m->default_tasks_max = UINT64_MAX;
bd389aa7
LP		 678 m->default_timeout_start_usec = DEFAULT_TIMEOUT_USEC;
679 m->default_timeout_stop_usec = DEFAULT_TIMEOUT_USEC;
680 m->default_restart_usec = DEFAULT_RESTART_USEC;
80876c20 681
349cc4a5 682#if ENABLE_EFI
463d0d15 683 if (MANAGER_IS_SYSTEM(m) && detect_container() <= 0)
9f9f0342
LP		 684 boot_timestamps(m->timestamps + MANAGER_TIMESTAMP_USERSPACE,
685 m->timestamps + MANAGER_TIMESTAMP_FIRMWARE,
686 m->timestamps + MANAGER_TIMESTAMP_LOADER);
463d0d15
LP		 687#endif
688
f2341e0a 689 /* Prepare log fields we can use for structured logging */
463d0d15
LP		 690 if (MANAGER_IS_SYSTEM(m)) {
691 m->unit_log_field = "UNIT=";
692 m->unit_log_format_string = "UNIT=%s";
4b58153d
LP		 693
694 m->invocation_log_field = "INVOCATION_ID=";
f1c50bec 695 m->invocation_log_format_string = "INVOCATION_ID=%s";
463d0d15
LP		 696 } else {
697 m->unit_log_field = "USER_UNIT=";
698 m->unit_log_format_string = "USER_UNIT=%s";
4b58153d
LP		 699
700 m->invocation_log_field = "USER_INVOCATION_ID=";
f1c50bec 701 m->invocation_log_format_string = "USER_INVOCATION_ID=%s";
463d0d15 702 }
f2341e0a 703
718db961 704 m->idle_pipe[0] = m->idle_pipe[1] = m->idle_pipe[2] = m->idle_pipe[3] = -1;
8742514c 705
d8fdc620 706 m->pin_cgroupfs_fd = m->notify_fd = m->cgroups_agent_fd = m->signal_fd = m->time_change_fd =
232f6754 707 m->dev_autofs_fd = m->private_listen_fd = m->cgroup_inotify_fd =
d8fdc620 708 m->ask_password_inotify_fd = -1;
d379d442 709
00d9ef85
LP		 710 m->user_lookup_fds[0] = m->user_lookup_fds[1] = -1;
711
ea430986 712 m->current_job_id = 1; /* start as id #1, so that we can leave #0 around as "null-like" value */
9152c765 713
e46b13c8 714 m->have_ask_password = -EINVAL; /* we don't know */
ae2a2c53 715 m->first_boot = -1;
e46b13c8 716
e0a3da1f 717 m->test_run_flags = test_run_flags;
0d8c31ff 718
2e5c94b9
LP		 719 /* Reboot immediately if the user hits C-A-D more often than 7x per 2s */
720 RATELIMIT_INIT(m->ctrl_alt_del_ratelimit, 2 * USEC_PER_SEC, 7);
721
e21fea24
KS		 722 r = manager_default_environment(m);
723 if (r < 0)
1137a57c
LP		 724 goto fail;
725
d5099efc 726 r = hashmap_ensure_allocated(&m->units, &string_hash_ops);
718db961 727 if (r < 0)
60918275
LP		 728 goto fail;
729
d5099efc 730 r = hashmap_ensure_allocated(&m->jobs, NULL);
718db961 731 if (r < 0)
60918275
LP		 732 goto fail;
733
d5099efc 734 r = hashmap_ensure_allocated(&m->cgroup_unit, &string_hash_ops);
718db961 735 if (r < 0)
9152c765
LP		 736 goto fail;
737
d5099efc 738 r = hashmap_ensure_allocated(&m->watch_bus, &string_hash_ops);
718db961 739 if (r < 0)
05e343b7
LP		 740 goto fail;
741
718db961
LP		 742 r = sd_event_default(&m->event);
743 if (r < 0)
8742514c
LP		 744 goto fail;
745
279d81dd 746 r = manager_setup_run_queue(m);
752b5905
LP		 747 if (r < 0)
748 goto fail;
749
8742514c
LP		 750 r = manager_setup_signals(m);
751 if (r < 0)
9152c765
LP		 752 goto fail;
753
8742514c
LP		 754 r = manager_setup_cgroup(m);
755 if (r < 0)
8e274523
LP		 756 goto fail;
757
8742514c
LP		 758 r = manager_setup_time_change(m);
759 if (r < 0)
8c47c732
LP		 760 goto fail;
761
575b300b
LP		 762 r = manager_setup_sigchld_event_source(m);
763 if (r < 0)
764 goto fail;
765
9670d583
LP		 766 m->udev = udev_new();
767 if (!m->udev) {
768 r = -ENOMEM;
769 goto fail;
770 }
771
e27fe688
LP		 772 r = manager_setup_prefix(m);
773 if (r < 0)
774 goto fail;
775
5eb397cf 776 if (MANAGER_IS_SYSTEM(m) && test_run_flags == 0) {
d3070fbd
LP		 777 r = mkdir_label("/run/systemd/units", 0755);
778 if (r < 0 && r != -EEXIST)
779 goto fail;
780 }
781
e27fe688
LP		 782 m->taint_usr =
783 !in_initrd() &&
784 dir_is_empty("/usr") > 0;
785
232f6754
ZJS		 786 /* Note that we do not set up the notify fd here. We do that after deserialization,
787 * since they might have gotten serialized across the reexec. */
3536f49e 788
8e274523
LP		 789 *_m = m;
790 return 0;
60918275
LP		 791
792fail:
793 manager_free(m);
8e274523 794 return r;
60918275
LP		 795}
796
d86f9d52 797static int manager_setup_notify(Manager *m) {
7181dbdb 798 int r;
d86f9d52 799
e0a3da1f 800 if (m->test_run_flags)
0d8c31ff
ZJS		 801 return 0;
802
d86f9d52
LP		 803 if (m->notify_fd < 0) {
804 _cleanup_close_ int fd = -1;
920b52e4 805 union sockaddr_union sa = {
7181dbdb
LP		 806 .sa.sa_family = AF_UNIX,
807 };
55836941 808 static const int one = 1;
d86f9d52
LP		 809
810 /* First free all secondary fields */
a1e58e8e 811 m->notify_socket = mfree(m->notify_socket);
d86f9d52
LP		 812 m->notify_event_source = sd_event_source_unref(m->notify_event_source);
813
814 fd = socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0);
4a62c710
MS		 815 if (fd < 0)
816 return log_error_errno(errno, "Failed to allocate notification socket: %m");
d86f9d52 817
a47806fa
LP		 818 fd_inc_rcvbuf(fd, NOTIFY_RCVBUF_SIZE);
819
3536f49e 820 m->notify_socket = strappend(m->prefix[EXEC_DIRECTORY_RUNTIME], "/systemd/notify");
498e87d6
LP		 821 if (!m->notify_socket)
822 return log_oom();
823
824 (void) mkdir_parents_label(m->notify_socket, 0755);
f0e62e89 825 (void) unlink(m->notify_socket);
7181dbdb
LP		 826
827 strncpy(sa.un.sun_path, m->notify_socket, sizeof(sa.un.sun_path)-1);
fc2fffe7 828 r = bind(fd, &sa.sa, SOCKADDR_UN_LEN(sa.un));
4a62c710
MS		 829 if (r < 0)
830 return log_error_errno(errno, "bind(%s) failed: %m", sa.un.sun_path);
d86f9d52
LP		 831
832 r = setsockopt(fd, SOL_SOCKET, SO_PASSCRED, &one, sizeof(one));
4a62c710
MS		 833 if (r < 0)
834 return log_error_errno(errno, "SO_PASSCRED failed: %m");
d86f9d52 835
d86f9d52
LP		 836 m->notify_fd = fd;
837 fd = -1;
838
839 log_debug("Using notification socket %s", m->notify_socket);
840 }
841
842 if (!m->notify_event_source) {
151b9b96 843 r = sd_event_add_io(m->event, &m->notify_event_source, m->notify_fd, EPOLLIN, manager_dispatch_notify_fd, m);
895b3a7b
MS		 844 if (r < 0)
845 return log_error_errno(r, "Failed to allocate notify event source: %m");
d86f9d52 846
d8fdc620
LP		 847 /* Process notification messages a bit earlier than SIGCHLD, so that we can still identify to which
848 * service an exit message belongs. */
575b300b 849 r = sd_event_source_set_priority(m->notify_event_source, SD_EVENT_PRIORITY_NORMAL-8);
23bbb0de
MS		 850 if (r < 0)
851 return log_error_errno(r, "Failed to set priority of notify event source: %m");
7dfbe2e3
TG		 852
853 (void) sd_event_source_set_description(m->notify_event_source, "manager-notify");
d86f9d52
LP		 854 }
855
856 return 0;
857}
858
d8fdc620
LP		 859static int manager_setup_cgroups_agent(Manager *m) {
860
861 static const union sockaddr_union sa = {
862 .un.sun_family = AF_UNIX,
863 .un.sun_path = "/run/systemd/cgroups-agent",
864 };
865 int r;
866
867 /* This creates a listening socket we receive cgroups agent messages on. We do not use D-Bus for delivering
868 * these messages from the cgroups agent binary to PID 1, as the cgroups agent binary is very short-living, and
869 * each instance of it needs a new D-Bus connection. Since D-Bus connections are SOCK_STREAM/AF_UNIX, on
870 * overloaded systems the backlog of the D-Bus socket becomes relevant, as not more than the configured number
871 * of D-Bus connections may be queued until the kernel will start dropping further incoming connections,
872 * possibly resulting in lost cgroups agent messages. To avoid this, we'll use a private SOCK_DGRAM/AF_UNIX
873 * socket, where no backlog is relevant as communication may take place without an actual connect() cycle, and
874 * we thus won't lose messages.
875 *
876 * Note that PID 1 will forward the agent message to system bus, so that the user systemd instance may listen
877 * to it. The system instance hence listens on this special socket, but the user instances listen on the system
878 * bus for these messages. */
879
e0a3da1f 880 if (m->test_run_flags)
d8fdc620
LP		 881 return 0;
882
883 if (!MANAGER_IS_SYSTEM(m))
884 return 0;
885
c22800e4 886 r = cg_unified_controller(SYSTEMD_CGROUP_CONTROLLER);
b4cccbc1
LP		 887 if (r < 0)
888 return log_error_errno(r, "Failed to determine whether unified cgroups hierarchy is used: %m");
889 if (r > 0) /* We don't need this anymore on the unified hierarchy */
d8fdc620
LP		 890 return 0;
891
892 if (m->cgroups_agent_fd < 0) {
893 _cleanup_close_ int fd = -1;
894
895 /* First free all secondary fields */
896 m->cgroups_agent_event_source = sd_event_source_unref(m->cgroups_agent_event_source);
897
898 fd = socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0);
899 if (fd < 0)
900 return log_error_errno(errno, "Failed to allocate cgroups agent socket: %m");
901
902 fd_inc_rcvbuf(fd, CGROUPS_AGENT_RCVBUF_SIZE);
903
904 (void) unlink(sa.un.sun_path);
905
906 /* Only allow root to connect to this socket */
907 RUN_WITH_UMASK(0077)
fc2fffe7 908 r = bind(fd, &sa.sa, SOCKADDR_UN_LEN(sa.un));
d8fdc620
LP		 909 if (r < 0)
910 return log_error_errno(errno, "bind(%s) failed: %m", sa.un.sun_path);
911
912 m->cgroups_agent_fd = fd;
913 fd = -1;
914 }
915
916 if (!m->cgroups_agent_event_source) {
917 r = sd_event_add_io(m->event, &m->cgroups_agent_event_source, m->cgroups_agent_fd, EPOLLIN, manager_dispatch_cgroups_agent_fd, m);
918 if (r < 0)
919 return log_error_errno(r, "Failed to allocate cgroups agent event source: %m");
920
921 /* Process cgroups notifications early, but after having processed service notification messages or
922 * SIGCHLD signals, so that a cgroup running empty is always just the last safety net of notification,
923 * and we collected the metadata the notification and SIGCHLD stuff offers first. Also see handling of
924 * cgroup inotify for the unified cgroup stuff. */
09e24654 925 r = sd_event_source_set_priority(m->cgroups_agent_event_source, SD_EVENT_PRIORITY_NORMAL-4);
d8fdc620
LP		 926 if (r < 0)
927 return log_error_errno(r, "Failed to set priority of cgroups agent event source: %m");
928
929 (void) sd_event_source_set_description(m->cgroups_agent_event_source, "manager-cgroups-agent");
930 }
931
932 return 0;
933}
934
00d9ef85
LP		 935static int manager_setup_user_lookup_fd(Manager *m) {
936 int r;
937
938 assert(m);
939
940 /* Set up the socket pair used for passing UID/GID resolution results from forked off processes to PID
941 * 1. Background: we can't do name lookups (NSS) from PID 1, since it might involve IPC and thus activation,
942 * and we might hence deadlock on ourselves. Hence we do all user/group lookups asynchronously from the forked
943 * off processes right before executing the binaries to start. In order to be able to clean up any IPC objects
944 * created by a unit (see RemoveIPC=) we need to know in PID 1 the used UID/GID of the executed processes,
945 * hence we establish this communication channel so that forked off processes can pass their UID/GID
946 * information back to PID 1. The forked off processes send their resolved UID/GID to PID 1 in a simple
947 * datagram, along with their unit name, so that we can share one communication socket pair among all units for
948 * this purpose.
949 *
950 * You might wonder why we need a communication channel for this that is independent of the usual notification
951 * socket scheme (i.e. $NOTIFY_SOCKET). The primary difference is about trust: data sent via the $NOTIFY_SOCKET
952 * channel is only accepted if it originates from the right unit and if reception was enabled for it. The user
953 * lookup socket OTOH is only accessible by PID 1 and its children until they exec(), and always available.
954 *
955 * Note that this function is called under two circumstances: when we first initialize (in which case we
956 * allocate both the socket pair and the event source to listen on it), and when we deserialize after a reload
957 * (in which case the socket pair already exists but we still need to allocate the event source for it). */
958
959 if (m->user_lookup_fds[0] < 0) {
960
961 /* Free all secondary fields */
962 safe_close_pair(m->user_lookup_fds);
963 m->user_lookup_event_source = sd_event_source_unref(m->user_lookup_event_source);
964
965 if (socketpair(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0, m->user_lookup_fds) < 0)
966 return log_error_errno(errno, "Failed to allocate user lookup socket: %m");
967
968 (void) fd_inc_rcvbuf(m->user_lookup_fds[0], NOTIFY_RCVBUF_SIZE);
969 }
970
971 if (!m->user_lookup_event_source) {
972 r = sd_event_add_io(m->event, &m->user_lookup_event_source, m->user_lookup_fds[0], EPOLLIN, manager_dispatch_user_lookup_fd, m);
973 if (r < 0)
974 return log_error_errno(errno, "Failed to allocate user lookup event source: %m");
975
976 /* Process even earlier than the notify event source, so that we always know first about valid UID/GID
977 * resolutions */
67ae4e8d 978 r = sd_event_source_set_priority(m->user_lookup_event_source, SD_EVENT_PRIORITY_NORMAL-11);
00d9ef85
LP		 979 if (r < 0)
980 return log_error_errno(errno, "Failed to set priority ot user lookup event source: %m");
981
982 (void) sd_event_source_set_description(m->user_lookup_event_source, "user-lookup");
983 }
984
985 return 0;
986}
987
d86f9d52
LP		 988static int manager_connect_bus(Manager *m, bool reexecuting) {
989 bool try_bus_connect;
5463fa0a 990 Unit *u = NULL;
d86f9d52
LP		 991
992 assert(m);
993
e0a3da1f 994 if (m->test_run_flags)
0d8c31ff
ZJS		 995 return 0;
996
5463fa0a
MS		 997 u = manager_get_unit(m, SPECIAL_DBUS_SERVICE);
998
d86f9d52 999 try_bus_connect =
41dfa61d 1000 (u && SERVICE(u)->deserialized_state == SERVICE_RUNNING) &&
5463fa0a
MS		 1001 (reexecuting ||
1002 (MANAGER_IS_USER(m) && getenv("DBUS_SESSION_BUS_ADDRESS")));
d86f9d52 1003
ff9b60f3 1004 /* Try to connect to the buses, if possible. */
d86f9d52
LP		 1005 return bus_init(m, try_bus_connect);
1006}
1007
23a177ef 1008static unsigned manager_dispatch_cleanup_queue(Manager *m) {
595ed347 1009 Unit *u;
23a177ef
LP		 1010 unsigned n = 0;
1011
1012 assert(m);
1013
595ed347
MS		 1014 while ((u = m->cleanup_queue)) {
1015 assert(u->in_cleanup_queue);
23a177ef 1016
595ed347 1017 unit_free(u);
23a177ef
LP		 1018 n++;
1019 }
1020
1021 return n;
1022}
1023
eced69b3 1024enum {
35b8ca3a 1025 GC_OFFSET_IN_PATH, /* This one is on the path we were traveling */
eced69b3
LP		 1026 GC_OFFSET_UNSURE, /* No clue */
1027 GC_OFFSET_GOOD, /* We still need this unit */
1028 GC_OFFSET_BAD, /* We don't need this unit anymore */
1029 _GC_OFFSET_MAX
1030};
1031
00d9ef85 1032static void unit_gc_mark_good(Unit *u, unsigned gc_marker) {
4892084f 1033 Unit *other;
eef85c4a
LP		 1034 Iterator i;
1035 void *v;
4892084f
LN		 1036
1037 u->gc_marker = gc_marker + GC_OFFSET_GOOD;
1038
1039 /* Recursively mark referenced units as GOOD as well */
eef85c4a 1040 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_REFERENCES], i)
4892084f
LN		 1041 if (other->gc_marker == gc_marker + GC_OFFSET_UNSURE)
1042 unit_gc_mark_good(other, gc_marker);
1043}
1044
eced69b3 1045static void unit_gc_sweep(Unit *u, unsigned gc_marker) {
701cc384 1046 Unit *other;
eced69b3 1047 bool is_bad;
eef85c4a
LP		 1048 Iterator i;
1049 void *v;
701cc384
LP		 1050
1051 assert(u);
1052
4c701096
YW		 1053 if (IN_SET(u->gc_marker - gc_marker,
1054 GC_OFFSET_GOOD, GC_OFFSET_BAD, GC_OFFSET_UNSURE, GC_OFFSET_IN_PATH))
701cc384
LP		 1055 return;
1056
ac155bb8 1057 if (u->in_cleanup_queue)
701cc384
LP		 1058 goto bad;
1059
1060 if (unit_check_gc(u))
1061 goto good;
1062
ac155bb8 1063 u->gc_marker = gc_marker + GC_OFFSET_IN_PATH;
eced69b3
LP		 1064
1065 is_bad = true;
1066
eef85c4a 1067 HASHMAP_FOREACH_KEY(v, other, u->dependencies[UNIT_REFERENCED_BY], i) {
701cc384
LP		 1068 unit_gc_sweep(other, gc_marker);
1069
ac155bb8 1070 if (other->gc_marker == gc_marker + GC_OFFSET_GOOD)
701cc384 1071 goto good;
eced69b3 1072
ac155bb8 1073 if (other->gc_marker != gc_marker + GC_OFFSET_BAD)
eced69b3 1074 is_bad = false;
701cc384
LP		 1075 }
1076
eced69b3
LP		 1077 if (is_bad)
1078 goto bad;
1079
1080 /* We were unable to find anything out about this entry, so
1081 * let's investigate it later */
ac155bb8 1082 u->gc_marker = gc_marker + GC_OFFSET_UNSURE;
eced69b3
LP		 1083 unit_add_to_gc_queue(u);
1084 return;
1085
701cc384 1086bad:
eced69b3
LP		 1087 /* We definitely know that this one is not useful anymore, so
1088 * let's mark it for deletion */
ac155bb8 1089 u->gc_marker = gc_marker + GC_OFFSET_BAD;
eced69b3 1090 unit_add_to_cleanup_queue(u);
701cc384
LP		 1091 return;
1092
1093good:
4892084f 1094 unit_gc_mark_good(u, gc_marker);
701cc384
LP		 1095}
1096
c5a97ed1
LP		 1097static unsigned manager_dispatch_gc_unit_queue(Manager *m) {
1098 unsigned n = 0, gc_marker;
595ed347 1099 Unit *u;
701cc384
LP		 1100
1101 assert(m);
1102
cf1265e1 1103 /* log_debug("Running GC..."); */
701cc384 1104
eced69b3
LP		 1105 m->gc_marker += _GC_OFFSET_MAX;
1106 if (m->gc_marker + _GC_OFFSET_MAX <= _GC_OFFSET_MAX)
c9c0cadb 1107 m->gc_marker = 1;
701cc384 1108
eced69b3
LP		 1109 gc_marker = m->gc_marker;
1110
c5a97ed1 1111 while ((u = m->gc_unit_queue)) {
595ed347 1112 assert(u->in_gc_queue);
701cc384 1113
595ed347 1114 unit_gc_sweep(u, gc_marker);
eced69b3 1115
c5a97ed1 1116 LIST_REMOVE(gc_queue, m->gc_unit_queue, u);
595ed347 1117 u->in_gc_queue = false;
701cc384
LP		 1118
1119 n++;
1120
4c701096
YW		 1121 if (IN_SET(u->gc_marker - gc_marker,
1122 GC_OFFSET_BAD, GC_OFFSET_UNSURE)) {
cc3bc3e6 1123 if (u->id)
f2341e0a 1124 log_unit_debug(u, "Collecting.");
595ed347
MS		 1125 u->gc_marker = gc_marker + GC_OFFSET_BAD;
1126 unit_add_to_cleanup_queue(u);
701cc384
LP		 1127 }
1128 }
1129
701cc384
LP		 1130 return n;
1131}
1132
c5a97ed1
LP		 1133static unsigned manager_dispatch_gc_job_queue(Manager *m) {
1134 unsigned n = 0;
1135 Job *j;
1136
1137 assert(m);
1138
1139 while ((j = m->gc_job_queue)) {
1140 assert(j->in_gc_queue);
1141
1142 LIST_REMOVE(gc_queue, m->gc_job_queue, j);
1143 j->in_gc_queue = false;
1144
1145 n++;
1146
1147 if (job_check_gc(j))
1148 continue;
1149
1150 log_unit_debug(j->unit, "Collecting job.");
1151 (void) job_finish_and_invalidate(j, JOB_COLLECTED, false, false);
1152 }
1153
1154 return n;
1155}
1156
a16e1123 1157static void manager_clear_jobs_and_units(Manager *m) {
a16e1123 1158 Unit *u;
60918275
LP		 1159
1160 assert(m);
1161
87f0e418
LP		 1162 while ((u = hashmap_first(m->units)))
1163 unit_free(u);
964e0949
LP		 1164
1165 manager_dispatch_cleanup_queue(m);
1166
1167 assert(!m->load_queue);
1168 assert(!m->run_queue);
1169 assert(!m->dbus_unit_queue);
1170 assert(!m->dbus_job_queue);
1171 assert(!m->cleanup_queue);
c5a97ed1
LP		 1172 assert(!m->gc_unit_queue);
1173 assert(!m->gc_job_queue);
964e0949 1174
964e0949
LP		 1175 assert(hashmap_isempty(m->jobs));
1176 assert(hashmap_isempty(m->units));
9e9e2b72
MS		 1177
1178 m->n_on_console = 0;
1179 m->n_running_jobs = 0;
a16e1123
LP		 1180}
1181
06d8d842 1182Manager* manager_free(Manager *m) {
a16e1123 1183 UnitType c;
c93ff2e9 1184 int i;
35aba85a 1185 ExecDirectoryType dt;
87f0e418 1186
06d8d842
ZJS		 1187 if (!m)
1188 return NULL;
a16e1123
LP		 1189
1190 manager_clear_jobs_and_units(m);
23a177ef 1191
7824bbeb
LP		 1192 for (c = 0; c < _UNIT_TYPE_MAX; c++)
1193 if (unit_vtable[c]->shutdown)
1194 unit_vtable[c]->shutdown(m);
1195
a1f31f47 1196 /* If we reexecute ourselves, we keep the root cgroup around */
c6c18be3 1197 manager_shutdown_cgroup(m, m->exit_code != MANAGER_REEXECUTE);
8e274523 1198
07a78643 1199 lookup_paths_flush_generator(&m->lookup_paths);
5a1e9937 1200
5e8d1c9a 1201 bus_done(m);
ea430986 1202
29206d46
LP		 1203 dynamic_user_vacuum(m, false);
1204 hashmap_free(m->dynamic_users);
1205
87f0e418 1206 hashmap_free(m->units);
4b58153d 1207 hashmap_free(m->units_by_invocation_id);
60918275 1208 hashmap_free(m->jobs);
62a76913 1209 hashmap_free(m->watch_pids);
05e343b7 1210 hashmap_free(m->watch_bus);
9152c765 1211
95ae05c0 1212 set_free(m->startup_units);
f755e3b7
LP		 1213 set_free(m->failed_units);
1214
718db961 1215 sd_event_source_unref(m->signal_event_source);
575b300b 1216 sd_event_source_unref(m->sigchld_event_source);
718db961 1217 sd_event_source_unref(m->notify_event_source);
d8fdc620 1218 sd_event_source_unref(m->cgroups_agent_event_source);
718db961
LP		 1219 sd_event_source_unref(m->time_change_event_source);
1220 sd_event_source_unref(m->jobs_in_progress_event_source);
752b5905 1221 sd_event_source_unref(m->run_queue_event_source);
00d9ef85 1222 sd_event_source_unref(m->user_lookup_event_source);
718db961 1223
03e334a1
LP		 1224 safe_close(m->signal_fd);
1225 safe_close(m->notify_fd);
d8fdc620 1226 safe_close(m->cgroups_agent_fd);
03e334a1 1227 safe_close(m->time_change_fd);
00d9ef85 1228 safe_close_pair(m->user_lookup_fds);
718db961 1229
e46b13c8
ZJS		 1230 manager_close_ask_password(m);
1231
718db961
LP		 1232 manager_close_idle_pipe(m);
1233
9670d583 1234 udev_unref(m->udev);
718db961 1235 sd_event_unref(m->event);
60918275 1236
c952c6ec
LP		 1237 free(m->notify_socket);
1238
84e3543e 1239 lookup_paths_free(&m->lookup_paths);
1137a57c 1240 strv_free(m->environment);
036643a2 1241
4ad49000 1242 hashmap_free(m->cgroup_unit);
c6c18be3 1243 set_free_free(m->unit_path_cache);
33be102a 1244
664f88a7
LP		 1245 free(m->switch_root);
1246 free(m->switch_root_init);
1247
517d56b1 1248 for (i = 0; i < _RLIMIT_MAX; i++)
d9814c76 1249 m->rlimit[i] = mfree(m->rlimit[i]);
c93ff2e9 1250
a57f7e2c
LP		 1251 assert(hashmap_isempty(m->units_requiring_mounts_for));
1252 hashmap_free(m->units_requiring_mounts_for);
1253
00d9ef85
LP		 1254 hashmap_free(m->uid_refs);
1255 hashmap_free(m->gid_refs);
1256
72fd1768 1257 for (dt = 0; dt < _EXEC_DIRECTORY_TYPE_MAX; dt++)
35aba85a
YW		 1258 m->prefix[dt] = mfree(m->prefix[dt]);
1259
6b430fdb 1260 return mfree(m);
60918275
LP		 1261}
1262
ba64af90 1263void manager_enumerate(Manager *m) {
f50e0a01 1264 UnitType c;
f50e0a01
LP		 1265
1266 assert(m);
1267
a16e1123
LP		 1268 /* Let's ask every type to load all units from disk/kernel
1269 * that it might know */
0faacd47 1270 for (c = 0; c < _UNIT_TYPE_MAX; c++) {
1c2e9646 1271 if (!unit_type_supported(c)) {
03afec3c 1272 log_debug("Unit type .%s is not supported on this system.", unit_type_to_string(c));
0faacd47 1273 continue;
a57f7e2c 1274 }
f50e0a01 1275
0faacd47
LP		 1276 if (!unit_vtable[c]->enumerate)
1277 continue;
1278
ba64af90 1279 unit_vtable[c]->enumerate(m);
0faacd47
LP		 1280 }
1281
f50e0a01 1282 manager_dispatch_load_queue(m);
a16e1123
LP		 1283}
1284
007c6337 1285static void manager_coldplug(Manager *m) {
a16e1123
LP		 1286 Iterator i;
1287 Unit *u;
1288 char *k;
007c6337 1289 int r;
a16e1123
LP		 1290
1291 assert(m);
f50e0a01
LP		 1292
1293 /* Then, let's set up their initial state. */
1294 HASHMAP_FOREACH_KEY(u, k, m->units, i) {
1295
1296 /* ignore aliases */
ac155bb8 1297 if (u->id != k)
f50e0a01
LP		 1298 continue;
1299
007c6337
LP		 1300 r = unit_coldplug(u);
1301 if (r < 0)
1302 log_warning_errno(r, "We couldn't coldplug %s, proceeding anyway: %m", u->id);
f50e0a01 1303 }
a16e1123
LP		 1304}
1305
fe51822e
LP		 1306static void manager_build_unit_path_cache(Manager *m) {
1307 char **i;
fe51822e
LP		 1308 int r;
1309
1310 assert(m);
1311
1312 set_free_free(m->unit_path_cache);
1313
d5099efc 1314 m->unit_path_cache = set_new(&string_hash_ops);
874310b7 1315 if (!m->unit_path_cache) {
d063a527
LP		 1316 r = -ENOMEM;
1317 goto fail;
fe51822e
LP		 1318 }
1319
1320 /* This simply builds a list of files we know exist, so that
1321 * we don't always have to go to disk */
1322
a3c4eb07 1323 STRV_FOREACH(i, m->lookup_paths.search_path) {
d063a527 1324 _cleanup_closedir_ DIR *d = NULL;
fe51822e
LP		 1325 struct dirent *de;
1326
bd0af849
ZJS		 1327 d = opendir(*i);
1328 if (!d) {
874310b7 1329 if (errno != ENOENT)
d063a527 1330 log_warning_errno(errno, "Failed to open directory %s, ignoring: %m", *i);
fe51822e
LP		 1331 continue;
1332 }
1333
d063a527 1334 FOREACH_DIRENT(de, d, r = -errno; goto fail) {
fe51822e
LP		 1335 char *p;
1336
605405c6 1337 p = strjoin(streq(*i, "/") ? "" : *i, "/", de->d_name);
44d91056 1338 if (!p) {
fe51822e
LP		 1339 r = -ENOMEM;
1340 goto fail;
1341 }
1342
ef42202a
ZJS		 1343 r = set_consume(m->unit_path_cache, p);
1344 if (r < 0)
fe51822e 1345 goto fail;
fe51822e 1346 }
fe51822e
LP		 1347 }
1348
1349 return;
1350
1351fail:
d063a527
LP		 1352 log_warning_errno(r, "Failed to build unit path cache, proceeding without: %m");
1353 m->unit_path_cache = set_free_free(m->unit_path_cache);
fe51822e
LP		 1354}
1355
9ff1a6f1 1356static void manager_distribute_fds(Manager *m, FDSet *fds) {
9588bc32 1357 Iterator i;
9ff1a6f1 1358 Unit *u;
9588bc32
LP		 1359
1360 assert(m);
1361
1362 HASHMAP_FOREACH(u, m->units, i) {
1363
1364 if (fdset_size(fds) <= 0)
1365 break;
1366
9ff1a6f1
LP		 1367 if (!UNIT_VTABLE(u)->distribute_fds)
1368 continue;
9588bc32 1369
9ff1a6f1
LP		 1370 UNIT_VTABLE(u)->distribute_fds(u, fds);
1371 }
9588bc32
LP		 1372}
1373
a16e1123 1374int manager_startup(Manager *m, FILE *serialization, FDSet *fds) {
17f01ace 1375 int r;
a16e1123
LP		 1376
1377 assert(m);
1378
a1f31f47
ZJS		 1379 /* If we are running in test mode, we still want to run the generators,
1380 * but we should not touch the real generator directories. */
1381 r = lookup_paths_init(&m->lookup_paths, m->unit_file_scope,
e0a3da1f 1382 m->test_run_flags ? LOOKUP_PATHS_TEMPORARY_GENERATED : 0,
a1f31f47 1383 NULL);
e801700e
ZJS		 1384 if (r < 0)
1385 return r;
5a1e9937 1386
64691d20
ZJS		 1387 r = manager_run_environment_generators(m);
1388 if (r < 0)
1389 return r;
1390
9f9f0342 1391 dual_timestamp_get(m->timestamps + MANAGER_TIMESTAMP_GENERATORS_START);
a3c4eb07 1392 r = manager_run_generators(m);
9f9f0342 1393 dual_timestamp_get(m->timestamps + MANAGER_TIMESTAMP_GENERATORS_FINISH);
07719a21
LP		 1394 if (r < 0)
1395 return r;
1396
fd130612 1397 /* If this is the first boot, and we are in the host system, then preset everything */
81fe6cde 1398 if (m->first_boot > 0 &&
fd130612 1399 MANAGER_IS_SYSTEM(m) &&
e0a3da1f 1400 !m->test_run_flags) {
81fe6cde 1401
17f01ace
ZJS		 1402 r = unit_file_preset_all(UNIT_FILE_SYSTEM, 0, NULL, UNIT_FILE_PRESET_ENABLE_ONLY, NULL, 0);
1403 if (r < 0)
1404 log_full_errno(r == -EEXIST ? LOG_NOTICE : LOG_WARNING, r,
1405 "Failed to populate /etc with preset unit settings, ignoring: %m");
28dd66ec
LB		 1406 else
1407 log_info("Populated /etc with preset unit settings.");
1408 }
1409
a1453343 1410 lookup_paths_reduce(&m->lookup_paths);
fe51822e
LP		 1411 manager_build_unit_path_cache(m);
1412
9f611ad8
LP		 1413 /* If we will deserialize make sure that during enumeration
1414 * this is already known, so we increase the counter here
1415 * already */
1416 if (serialization)
313cefa1 1417 m->n_reloading++;
9f611ad8 1418
a16e1123 1419 /* First, enumerate what we can from all config files */
9f9f0342 1420 dual_timestamp_get(m->timestamps + MANAGER_TIMESTAMP_UNITS_LOAD_START);
ba64af90 1421 manager_enumerate(m);
9f9f0342 1422 dual_timestamp_get(m->timestamps + MANAGER_TIMESTAMP_UNITS_LOAD_FINISH);
a16e1123
LP		 1423
1424 /* Second, deserialize if there is something to deserialize */
07429866 1425 if (serialization) {
1cd974ed 1426 r = manager_deserialize(m, serialization, fds);
07429866 1427 if (r < 0)
17f01ace 1428 return log_error_errno(r, "Deserialization failed: %m");
07429866 1429 }
a16e1123 1430
01e10de3
LP		 1431 /* Any fds left? Find some unit which wants them. This is
1432 * useful to allow container managers to pass some file
1433 * descriptors to us pre-initialized. This enables
1434 * socket-based activation of entire containers. */
9ff1a6f1 1435 manager_distribute_fds(m, fds);
01e10de3 1436
d86f9d52
LP		 1437 /* We might have deserialized the notify fd, but if we didn't
1438 * then let's create the bus now */
17f01ace
ZJS		 1439 r = manager_setup_notify(m);
1440 if (r < 0)
1441 /* No sense to continue without notifications, our children would fail anyway. */
1442 return r;
d86f9d52 1443
17f01ace
ZJS		 1444 r = manager_setup_cgroups_agent(m);
1445 if (r < 0)
1446 /* Likewise, no sense to continue without empty cgroup notifications. */
1447 return r;
d8fdc620 1448
17f01ace
ZJS		 1449 r = manager_setup_user_lookup_fd(m);
1450 if (r < 0)
1451 /* This shouldn't fail, except if things are really broken. */
1452 return r;
00d9ef85 1453
232f6754 1454 /* Let's connect to the bus now. */
05a98afd
LP		 1455 (void) manager_connect_bus(m, !!serialization);
1456
1457 (void) bus_track_coldplug(m, &m->subscribed, false, m->deserialized_subscribed);
1458 m->deserialized_subscribed = strv_free(m->deserialized_subscribed);
e3dd987c 1459
a16e1123 1460 /* Third, fire things up! */
007c6337 1461 manager_coldplug(m);
a16e1123 1462
29206d46
LP		 1463 /* Release any dynamic users no longer referenced */
1464 dynamic_user_vacuum(m, true);
1465
00d9ef85
LP		 1466 /* Release any references to UIDs/GIDs no longer referenced, and destroy any IPC owned by them */
1467 manager_vacuum_uid_refs(m);
1468 manager_vacuum_gid_refs(m);
1469
9f611ad8 1470 if (serialization) {
a7556052 1471 assert(m->n_reloading > 0);
313cefa1 1472 m->n_reloading--;
71445ae7
LP		 1473
1474 /* Let's wait for the UnitNew/JobNew messages being
1475 * sent, before we notify that the reload is
1476 * finished */
1477 m->send_reloading_done = true;
9f611ad8
LP		 1478 }
1479
17f01ace 1480 return 0;
f50e0a01
LP		 1481}
1482
4bd29fe5 1483int manager_add_job(Manager *m, JobType type, Unit *unit, JobMode mode, sd_bus_error *e, Job **_ret) {
e5b5ae50 1484 int r;
7527cb52 1485 Transaction *tr;
e5b5ae50
LP		 1486
1487 assert(m);
1488 assert(type < _JOB_TYPE_MAX);
87f0e418 1489 assert(unit);
e5b5ae50 1490 assert(mode < _JOB_MODE_MAX);
60918275 1491
7358dc02
ZJS		 1492 if (mode == JOB_ISOLATE && type != JOB_START)
1493 return sd_bus_error_setf(e, SD_BUS_ERROR_INVALID_ARGS, "Isolate is only valid for start.");
c497c7a9 1494
7358dc02
ZJS		 1495 if (mode == JOB_ISOLATE && !unit->allow_isolate)
1496 return sd_bus_error_setf(e, BUS_ERROR_NO_ISOLATION, "Operation refused, unit may not be isolated.");
2528a7a6 1497
f2341e0a 1498 log_unit_debug(unit, "Trying to enqueue job %s/%s/%s", unit->id, job_type_to_string(type), job_mode_to_string(mode));
9f04bd52 1499
c6497ccb 1500 type = job_type_collapse(type, unit);
e0209d83 1501
23ade460 1502 tr = transaction_new(mode == JOB_REPLACE_IRREVERSIBLY);
7527cb52
MS		 1503 if (!tr)
1504 return -ENOMEM;
11dd41ce 1505
4bd29fe5 1506 r = transaction_add_job_and_dependencies(tr, type, unit, NULL, true, false,
3742095b 1507 IN_SET(mode, JOB_IGNORE_DEPENDENCIES, JOB_IGNORE_REQUIREMENTS),
b94fbd30 1508 mode == JOB_IGNORE_DEPENDENCIES, e);
7527cb52
MS		 1509 if (r < 0)
1510 goto tr_abort;
c497c7a9 1511
7527cb52
MS		 1512 if (mode == JOB_ISOLATE) {
1513 r = transaction_add_isolate_jobs(tr, m);
1514 if (r < 0)
1515 goto tr_abort;
1516 }
1517
1518 r = transaction_activate(tr, m, mode, e);
1519 if (r < 0)
1520 goto tr_abort;
e5b5ae50 1521
f2341e0a 1522 log_unit_debug(unit,
66870f90
ZJS		 1523 "Enqueued job %s/%s as %u", unit->id,
1524 job_type_to_string(type), (unsigned) tr->anchor_job->id);
f50e0a01 1525
e5b5ae50 1526 if (_ret)
b94fbd30 1527 *_ret = tr->anchor_job;
60918275 1528
7527cb52 1529 transaction_free(tr);
e5b5ae50 1530 return 0;
7527cb52
MS		 1531
1532tr_abort:
1533 transaction_abort(tr);
1534 transaction_free(tr);
1535 return r;
e5b5ae50 1536}
60918275 1537
53f18416 1538int manager_add_job_by_name(Manager *m, JobType type, const char *name, JobMode mode, sd_bus_error *e, Job **ret) {
4440b27d 1539 Unit *unit = NULL; /* just to appease gcc, initialization is not really necessary */
28247076
LP		 1540 int r;
1541
1542 assert(m);
1543 assert(type < _JOB_TYPE_MAX);
1544 assert(name);
1545 assert(mode < _JOB_MODE_MAX);
1546
c3090674
LP		 1547 r = manager_load_unit(m, name, NULL, NULL, &unit);
1548 if (r < 0)
28247076 1549 return r;
4440b27d 1550 assert(unit);
28247076 1551
53f18416
LP		 1552 return manager_add_job(m, type, unit, mode, e, ret);
1553}
1554
1555int manager_add_job_by_name_and_warn(Manager *m, JobType type, const char *name, JobMode mode, Job **ret) {
4afd3348 1556 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
53f18416
LP		 1557 int r;
1558
1559 assert(m);
1560 assert(type < _JOB_TYPE_MAX);
1561 assert(name);
1562 assert(mode < _JOB_MODE_MAX);
1563
1564 r = manager_add_job_by_name(m, type, name, mode, &error, ret);
1565 if (r < 0)
1566 return log_warning_errno(r, "Failed to enqueue %s job for %s: %s", job_mode_to_string(mode), name, bus_error_message(&error, r));
1567
1568 return r;
28247076
LP		 1569}
1570
15d167f8
JW		 1571int manager_propagate_reload(Manager *m, Unit *unit, JobMode mode, sd_bus_error *e) {
1572 int r;
1573 Transaction *tr;
1574
1575 assert(m);
1576 assert(unit);
1577 assert(mode < _JOB_MODE_MAX);
1578 assert(mode != JOB_ISOLATE); /* Isolate is only valid for start */
1579
1580 tr = transaction_new(mode == JOB_REPLACE_IRREVERSIBLY);
1581 if (!tr)
1582 return -ENOMEM;
1583
1584 /* We need an anchor job */
1585 r = transaction_add_job_and_dependencies(tr, JOB_NOP, unit, NULL, false, false, true, true, e);
1586 if (r < 0)
1587 goto tr_abort;
1588
1589 /* Failure in adding individual dependencies is ignored, so this always succeeds. */
1590 transaction_add_propagate_reload_jobs(tr, unit, tr->anchor_job, mode == JOB_IGNORE_DEPENDENCIES, e);
1591
1592 r = transaction_activate(tr, m, mode, e);
1593 if (r < 0)
1594 goto tr_abort;
1595
1596 transaction_free(tr);
1597 return 0;
1598
1599tr_abort:
1600 transaction_abort(tr);
1601 transaction_free(tr);
1602 return r;
1603}
1604
60918275
LP		 1605Job *manager_get_job(Manager *m, uint32_t id) {
1606 assert(m);
1607
1608 return hashmap_get(m->jobs, UINT32_TO_PTR(id));
1609}
1610
87f0e418 1611Unit *manager_get_unit(Manager *m, const char *name) {
60918275
LP		 1612 assert(m);
1613 assert(name);
1614
87f0e418 1615 return hashmap_get(m->units, name);
60918275
LP		 1616}
1617
c1e1601e 1618unsigned manager_dispatch_load_queue(Manager *m) {
595ed347 1619 Unit *u;
c1e1601e 1620 unsigned n = 0;
60918275
LP		 1621
1622 assert(m);
1623
223dabab
LP		 1624 /* Make sure we are not run recursively */
1625 if (m->dispatching_load_queue)
c1e1601e 1626 return 0;
223dabab
LP		 1627
1628 m->dispatching_load_queue = true;
1629
87f0e418 1630 /* Dispatches the load queue. Takes a unit from the queue and
60918275
LP		 1631 * tries to load its data until the queue is empty */
1632
595ed347
MS		 1633 while ((u = m->load_queue)) {
1634 assert(u->in_load_queue);
034c6ed7 1635
595ed347 1636 unit_load(u);
c1e1601e 1637 n++;
60918275
LP		 1638 }
1639
223dabab 1640 m->dispatching_load_queue = false;
c1e1601e 1641 return n;
60918275
LP		 1642}
1643
c2756a68
LP		 1644int manager_load_unit_prepare(
1645 Manager *m,
1646 const char *name,
1647 const char *path,
718db961 1648 sd_bus_error *e,
c2756a68
LP		 1649 Unit **_ret) {
1650
87f0e418 1651 Unit *ret;
7d17cfbc 1652 UnitType t;
60918275
LP		 1653 int r;
1654
1655 assert(m);
9e2f7c11 1656 assert(name || path);
7a6a095a 1657 assert(_ret);
60918275 1658
db06e3b6
LP		 1659 /* This will prepare the unit for loading, but not actually
1660 * load anything from disk. */
0301abf4 1661
718db961
LP		 1662 if (path && !is_path(path))
1663 return sd_bus_error_setf(e, SD_BUS_ERROR_INVALID_ARGS, "Path %s is not absolute.", path);
9e2f7c11
LP		 1664
1665 if (!name)
2b6bf07d 1666 name = basename(path);
9e2f7c11 1667
7d17cfbc
MS		 1668 t = unit_name_to_type(name);
1669
5d512d54
LN		 1670 if (t == _UNIT_TYPE_INVALID || !unit_name_is_valid(name, UNIT_NAME_PLAIN|UNIT_NAME_INSTANCE)) {
1671 if (unit_name_is_valid(name, UNIT_NAME_TEMPLATE))
1672 return sd_bus_error_setf(e, SD_BUS_ERROR_INVALID_ARGS, "Unit name %s is missing the instance name.", name);
1673
718db961 1674 return sd_bus_error_setf(e, SD_BUS_ERROR_INVALID_ARGS, "Unit name %s is not valid.", name);
5d512d54 1675 }
60918275 1676
7d17cfbc
MS		 1677 ret = manager_get_unit(m, name);
1678 if (ret) {
034c6ed7 1679 *_ret = ret;
413d6313 1680 return 1;
034c6ed7 1681 }
60918275 1682
7d17cfbc
MS		 1683 ret = unit_new(m, unit_vtable[t]->object_size);
1684 if (!ret)
60918275
LP		 1685 return -ENOMEM;
1686
7d17cfbc 1687 if (path) {
ac155bb8
MS		 1688 ret->fragment_path = strdup(path);
1689 if (!ret->fragment_path) {
0301abf4
LP		 1690 unit_free(ret);
1691 return -ENOMEM;
1692 }
7d17cfbc 1693 }
0301abf4 1694
1058cbf2
ZJS		 1695 r = unit_add_name(ret, name);
1696 if (r < 0) {
87f0e418 1697 unit_free(ret);
1ffba6fe 1698 return r;
60918275
LP		 1699 }
1700
87f0e418 1701 unit_add_to_load_queue(ret);
c1e1601e 1702 unit_add_to_dbus_queue(ret);
949061f0 1703 unit_add_to_gc_queue(ret);
c1e1601e 1704
7a6a095a 1705 *_ret = ret;
db06e3b6
LP		 1706
1707 return 0;
1708}
1709
c2756a68
LP		 1710int manager_load_unit(
1711 Manager *m,
1712 const char *name,
1713 const char *path,
718db961 1714 sd_bus_error *e,
c2756a68
LP		 1715 Unit **_ret) {
1716
db06e3b6
LP		 1717 int r;
1718
1719 assert(m);
7a6a095a 1720 assert(_ret);
db06e3b6
LP		 1721
1722 /* This will load the service information files, but not actually
1723 * start any services or anything. */
1724
c3090674
LP		 1725 r = manager_load_unit_prepare(m, name, path, e, _ret);
1726 if (r != 0)
db06e3b6
LP		 1727 return r;
1728
f50e0a01 1729 manager_dispatch_load_queue(m);
60918275 1730
7a6a095a 1731 *_ret = unit_follow_merge(*_ret);
9e2f7c11 1732
60918275
LP		 1733 return 0;
1734}
a66d02c3 1735
cea8e32e 1736void manager_dump_jobs(Manager *s, FILE *f, const char *prefix) {
034c6ed7 1737 Iterator i;
a66d02c3
LP		 1738 Job *j;
1739
1740 assert(s);
1741 assert(f);
1742
034c6ed7 1743 HASHMAP_FOREACH(j, s->jobs, i)
cea8e32e 1744 job_dump(j, f, prefix);
a66d02c3
LP		 1745}
1746
87f0e418 1747void manager_dump_units(Manager *s, FILE *f, const char *prefix) {
034c6ed7 1748 Iterator i;
87f0e418 1749 Unit *u;
11dd41ce 1750 const char *t;
a66d02c3
LP		 1751
1752 assert(s);
1753 assert(f);
1754
87f0e418 1755 HASHMAP_FOREACH_KEY(u, t, s->units, i)
ac155bb8 1756 if (u->id == t)
87f0e418 1757 unit_dump(u, f, prefix);
a66d02c3 1758}
7fad411c 1759
ad75b9e7
LP		 1760void manager_dump(Manager *m, FILE *f, const char *prefix) {
1761 ManagerTimestamp q;
1762
1763 assert(m);
1764 assert(f);
1765
1766 for (q = 0; q < _MANAGER_TIMESTAMP_MAX; q++) {
1767 char buf[FORMAT_TIMESTAMP_MAX];
1768
1769 if (dual_timestamp_is_set(m->timestamps + q))
1770 fprintf(f, "%sTimestamp %s: %s\n",
1771 strempty(prefix),
1772 manager_timestamp_to_string(q),
1773 format_timestamp(buf, sizeof(buf), m->timestamps[q].realtime));
1774 }
1775
1776 manager_dump_units(m, f, prefix);
1777 manager_dump_jobs(m, f, prefix);
1778}
1779
713f6f90
LP		 1780int manager_get_dump_string(Manager *m, char **ret) {
1781 _cleanup_free_ char *dump = NULL;
1782 _cleanup_fclose_ FILE *f = NULL;
1783 size_t size;
1784 int r;
1785
1786 assert(m);
1787 assert(ret);
1788
1789 f = open_memstream(&dump, &size);
1790 if (!f)
1791 return -errno;
1792
0d536673 1793 (void) __fsetlocking(f, FSETLOCKING_BYCALLER);
713f6f90
LP		 1794
1795 manager_dump(m, f, NULL);
1796
1797 r = fflush_and_check(f);
1798 if (r < 0)
1799 return r;
1800
1801 f = safe_fclose(f);
1802
1803 *ret = dump;
1804 dump = NULL;
1805
1806 return 0;
1807}
1808
7fad411c
LP		 1809void manager_clear_jobs(Manager *m) {
1810 Job *j;
1811
1812 assert(m);
1813
7fad411c 1814 while ((j = hashmap_first(m->jobs)))
5273510e 1815 /* No need to recurse. We're cancelling all jobs. */
833f92ad 1816 job_finish_and_invalidate(j, JOB_CANCELED, false, false);
7fad411c 1817}
83c60c9f 1818
752b5905
LP		 1819static int manager_dispatch_run_queue(sd_event_source *source, void *userdata) {
1820 Manager *m = userdata;
83c60c9f 1821 Job *j;
034c6ed7 1822
752b5905
LP		 1823 assert(source);
1824 assert(m);
9152c765 1825
034c6ed7 1826 while ((j = m->run_queue)) {
ac1135be 1827 assert(j->installed);
034c6ed7
LP		 1828 assert(j->in_run_queue);
1829
1830 job_run_and_invalidate(j);
9152c765 1831 }
034c6ed7 1832
a0b64226 1833 if (m->n_running_jobs > 0)
03b717a3
MS		 1834 manager_watch_jobs_in_progress(m);
1835
31a7eb86
ZJS		 1836 if (m->n_on_console > 0)
1837 manager_watch_idle_pipe(m);
1838
752b5905 1839 return 1;
c1e1601e
LP		 1840}
1841
9588bc32 1842static unsigned manager_dispatch_dbus_queue(Manager *m) {
c1e1601e 1843 Job *j;
595ed347 1844 Unit *u;
c1e1601e
LP		 1845 unsigned n = 0;
1846
1847 assert(m);
1848
1849 if (m->dispatching_dbus_queue)
1850 return 0;
1851
1852 m->dispatching_dbus_queue = true;
1853
595ed347
MS		 1854 while ((u = m->dbus_unit_queue)) {
1855 assert(u->in_dbus_queue);
c1e1601e 1856
595ed347 1857 bus_unit_send_change_signal(u);
c1e1601e
LP		 1858 n++;
1859 }
1860
1861 while ((j = m->dbus_job_queue)) {
1862 assert(j->in_dbus_queue);
1863
1864 bus_job_send_change_signal(j);
1865 n++;
1866 }
1867
1868 m->dispatching_dbus_queue = false;
71445ae7
LP		 1869
1870 if (m->send_reloading_done) {
1871 m->send_reloading_done = false;
1872
718db961 1873 bus_manager_send_reloading(m, false);
71445ae7
LP		 1874 }
1875
718db961
LP		 1876 if (m->queued_message)
1877 bus_send_queued_message(m);
1878
c1e1601e 1879 return n;
9152c765
LP		 1880}
1881
d8fdc620
LP		 1882static int manager_dispatch_cgroups_agent_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata) {
1883 Manager *m = userdata;
1884 char buf[PATH_MAX+1];
1885 ssize_t n;
1886
1887 n = recv(fd, buf, sizeof(buf), 0);
1888 if (n < 0)
1889 return log_error_errno(errno, "Failed to read cgroups agent message: %m");
1890 if (n == 0) {
1891 log_error("Got zero-length cgroups agent message, ignoring.");
1892 return 0;
1893 }
1894 if ((size_t) n >= sizeof(buf)) {
1895 log_error("Got overly long cgroups agent message, ignoring.");
1896 return 0;
1897 }
1898
1899 if (memchr(buf, 0, n)) {
1900 log_error("Got cgroups agent message with embedded NUL byte, ignoring.");
1901 return 0;
1902 }
1903 buf[n] = 0;
1904
1905 manager_notify_cgroup_empty(m, buf);
d5f15326 1906 (void) bus_forward_agent_released(m, buf);
d8fdc620
LP		 1907
1908 return 0;
1909}
1910
db256aab
LP		 1911static void manager_invoke_notify_message(
1912 Manager *m,
1913 Unit *u,
1914 const struct ucred *ucred,
1915 const char *buf,
1916 FDSet *fds) {
1917
5ba6985b
LP		 1918 assert(m);
1919 assert(u);
db256aab 1920 assert(ucred);
5ba6985b 1921 assert(buf);
5ba6985b 1922
62a76913 1923 if (u->notifygen == m->notifygen) /* Already invoked on this same unit in this same iteration? */
5ba6985b 1924 return;
62a76913
LP		 1925 u->notifygen = m->notifygen;
1926
1927 if (UNIT_VTABLE(u)->notify_message) {
1928 _cleanup_strv_free_ char **tags = NULL;
1929
1930 tags = strv_split(buf, NEWLINE);
1931 if (!tags) {
1932 log_oom();
1933 return;
1934 }
5ba6985b 1935
db256aab 1936 UNIT_VTABLE(u)->notify_message(u, ucred, tags, fds);
62a76913
LP		 1937
1938 } else if (DEBUG_LOGGING) {
a86b7675
ZJS		 1939 _cleanup_free_ char *x = NULL, *y = NULL;
1940
da5fb861 1941 x = ellipsize(buf, 20, 90);
a86b7675 1942 if (x)
da5fb861
LP		 1943 y = cescape(x);
1944
a86b7675
ZJS		 1945 log_unit_debug(u, "Got notification message \"%s\", ignoring.", strnull(y));
1946 }
5ba6985b
LP		 1947}
1948
718db961 1949static int manager_dispatch_notify_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata) {
3d0b8a55 1950
b215b0ed 1951 _cleanup_fdset_free_ FDSet *fds = NULL;
718db961 1952 Manager *m = userdata;
b215b0ed
DH		 1953 char buf[NOTIFY_BUFFER_MAX+1];
1954 struct iovec iovec = {
1955 .iov_base = buf,
1956 .iov_len = sizeof(buf)-1,
1957 };
1958 union {
1959 struct cmsghdr cmsghdr;
1960 uint8_t buf[CMSG_SPACE(sizeof(struct ucred)) +
1961 CMSG_SPACE(sizeof(int) * NOTIFY_FD_MAX)];
1962 } control = {};
1963 struct msghdr msghdr = {
1964 .msg_iov = &iovec,
1965 .msg_iovlen = 1,
1966 .msg_control = &control,
1967 .msg_controllen = sizeof(control),
1968 };
1969
1970 struct cmsghdr *cmsg;
1971 struct ucred *ucred = NULL;
62a76913
LP		 1972 _cleanup_free_ Unit **array_copy = NULL;
1973 Unit *u1, *u2, **array;
b215b0ed
DH		 1974 int r, *fd_array = NULL;
1975 unsigned n_fds = 0;
62a76913 1976 bool found = false;
8c47c732
LP		 1977 ssize_t n;
1978
1979 assert(m);
718db961
LP		 1980 assert(m->notify_fd == fd);
1981
1982 if (revents != EPOLLIN) {
1983 log_warning("Got unexpected poll event for notify fd.");
1984 return 0;
1985 }
8c47c732 1986
045a3d59 1987 n = recvmsg(m->notify_fd, &msghdr, MSG_DONTWAIT|MSG_CMSG_CLOEXEC|MSG_TRUNC);
b215b0ed 1988 if (n < 0) {
c55ae51e
LP		 1989 if (IN_SET(errno, EAGAIN, EINTR))
1990 return 0; /* Spurious wakeup, try again */
8c47c732 1991
c55ae51e
LP		 1992 /* If this is any other, real error, then let's stop processing this socket. This of course means we
1993 * won't take notification messages anymore, but that's still better than busy looping around this:
1994 * being woken up over and over again but being unable to actually read the message off the socket. */
1995 return log_error_errno(errno, "Failed to receive notification message: %m");
b215b0ed 1996 }
a354329f 1997
b215b0ed
DH		 1998 CMSG_FOREACH(cmsg, &msghdr) {
1999 if (cmsg->cmsg_level == SOL_SOCKET && cmsg->cmsg_type == SCM_RIGHTS) {
a354329f 2000
b215b0ed
DH		 2001 fd_array = (int*) CMSG_DATA(cmsg);
2002 n_fds = (cmsg->cmsg_len - CMSG_LEN(0)) / sizeof(int);
a354329f 2003
b215b0ed
DH		 2004 } else if (cmsg->cmsg_level == SOL_SOCKET &&
2005 cmsg->cmsg_type == SCM_CREDENTIALS &&
2006 cmsg->cmsg_len == CMSG_LEN(sizeof(struct ucred))) {
a354329f 2007
b215b0ed 2008 ucred = (struct ucred*) CMSG_DATA(cmsg);
a354329f 2009 }
b215b0ed 2010 }
a354329f 2011
b215b0ed
DH		 2012 if (n_fds > 0) {
2013 assert(fd_array);
a354329f 2014
b215b0ed
DH		 2015 r = fdset_new_array(&fds, fd_array, n_fds);
2016 if (r < 0) {
2017 close_many(fd_array, n_fds);
9987750e
FB		 2018 log_oom();
2019 return 0;
a354329f 2020 }
b215b0ed 2021 }
8c47c732 2022
15e23e8c 2023 if (!ucred || !pid_is_valid(ucred->pid)) {
b215b0ed
DH		 2024 log_warning("Received notify message without valid credentials. Ignoring.");
2025 return 0;
2026 }
8c47c732 2027
045a3d59 2028 if ((size_t) n >= sizeof(buf) || (msghdr.msg_flags & MSG_TRUNC)) {
b215b0ed
DH		 2029 log_warning("Received notify message exceeded maximum size. Ignoring.");
2030 return 0;
2031 }
8c47c732 2032
875ca88d
LP		 2033 /* As extra safety check, let's make sure the string we get doesn't contain embedded NUL bytes. We permit one
2034 * trailing NUL byte in the message, but don't expect it. */
2035 if (n > 1 && memchr(buf, 0, n-1)) {
2036 log_warning("Received notify message with embedded NUL bytes. Ignoring.");
2037 return 0;
2038 }
2039
2040 /* Make sure it's NUL-terminated. */
b215b0ed 2041 buf[n] = 0;
8c47c732 2042
62a76913
LP		 2043 /* Increase the generation counter used for filtering out duplicate unit invocations. */
2044 m->notifygen++;
2045
2046 /* Notify every unit that might be interested, which might be multiple. */
b215b0ed 2047 u1 = manager_get_unit_by_pid_cgroup(m, ucred->pid);
62a76913
LP		 2048 u2 = hashmap_get(m->watch_pids, PID_TO_PTR(ucred->pid));
2049 array = hashmap_get(m->watch_pids, PID_TO_PTR(-ucred->pid));
2050 if (array) {
2051 size_t k = 0;
5ba6985b 2052
62a76913
LP		 2053 while (array[k])
2054 k++;
5ba6985b 2055
62a76913
LP		 2056 array_copy = newdup(Unit*, array, k+1);
2057 if (!array_copy)
2058 log_oom();
2059 }
2060 /* And now invoke the per-unit callbacks. Note that manager_invoke_notify_message() will handle duplicate units
2061 * make sure we only invoke each unit's handler once. */
2062 if (u1) {
2063 manager_invoke_notify_message(m, u1, ucred, buf, fds);
2064 found = true;
2065 }
2066 if (u2) {
2067 manager_invoke_notify_message(m, u2, ucred, buf, fds);
2068 found = true;
2069 }
2070 if (array_copy)
2071 for (size_t i = 0; array_copy[i]; i++) {
2072 manager_invoke_notify_message(m, array_copy[i], ucred, buf, fds);
2073 found = true;
2074 }
8c47c732 2075
62a76913
LP		 2076 if (!found)
2077 log_warning("Cannot find unit for notify message of PID "PID_FMT", ignoring.", ucred->pid);
a354329f 2078
b215b0ed 2079 if (fdset_size(fds) > 0)
5fd2c135 2080 log_warning("Got extra auxiliary fds with notification message, closing them.");
8c47c732
LP		 2081
2082 return 0;
2083}
2084
62a76913
LP		 2085static void manager_invoke_sigchld_event(
2086 Manager *m,
2087 Unit *u,
2088 const siginfo_t *si) {
36f20ae3 2089
5ba6985b
LP		 2090 assert(m);
2091 assert(u);
2092 assert(si);
2093
62a76913
LP		 2094 /* Already invoked the handler of this unit in this iteration? Then don't process this again */
2095 if (u->sigchldgen == m->sigchldgen)
2096 return;
2097 u->sigchldgen = m->sigchldgen;
5ba6985b 2098
62a76913 2099 log_unit_debug(u, "Child "PID_FMT" belongs to %s.", si->si_pid, u->id);
5ba6985b 2100 unit_unwatch_pid(u, si->si_pid);
e57051f5 2101
62a76913
LP		 2102 if (UNIT_VTABLE(u)->sigchld_event)
2103 UNIT_VTABLE(u)->sigchld_event(u, si->si_pid, si->si_code, si->si_status);
5ba6985b
LP		 2104}
2105
575b300b
LP		 2106static int manager_dispatch_sigchld(sd_event_source *source, void *userdata) {
2107 Manager *m = userdata;
2108 siginfo_t si = {};
2109 int r;
2110
2111 assert(source);
9152c765
LP		 2112 assert(m);
2113
575b300b
LP		 2114 /* First we call waitd() for a PID and do not reap the zombie. That way we can still access /proc/$PID for it
2115 * while it is a zombie. */
9152c765 2116
575b300b 2117 if (waitid(P_ALL, 0, &si, WEXITED|WNOHANG|WNOWAIT) < 0) {
acbb0225 2118
575b300b
LP		 2119 if (errno == ECHILD)
2120 goto turn_off;
acbb0225 2121
575b300b
LP		 2122 log_error_errno(errno, "Failed to peek for child with waitid(), ignoring: %m");
2123 return 0;
2124 }
4112df16 2125
575b300b
LP		 2126 if (si.si_pid <= 0)
2127 goto turn_off;
2128
2129 if (IN_SET(si.si_code, CLD_EXITED, CLD_KILLED, CLD_DUMPED)) {
62a76913 2130 _cleanup_free_ Unit **array_copy = NULL;
575b300b 2131 _cleanup_free_ char *name = NULL;
62a76913 2132 Unit *u1, *u2, **array;
575b300b
LP		 2133
2134 (void) get_process_comm(si.si_pid, &name);
2135
2136 log_debug("Child "PID_FMT" (%s) died (code=%s, status=%i/%s)",
2137 si.si_pid, strna(name),
2138 sigchld_code_to_string(si.si_code),
2139 si.si_status,
2140 strna(si.si_code == CLD_EXITED
2141 ? exit_status_to_string(si.si_status, EXIT_STATUS_FULL)
2142 : signal_to_string(si.si_status)));
2143
62a76913
LP		 2144 /* Increase the generation counter used for filtering out duplicate unit invocations */
2145 m->sigchldgen++;
2146
2147 /* And now figure out the unit this belongs to, it might be multiple... */
575b300b 2148 u1 = manager_get_unit_by_pid_cgroup(m, si.si_pid);
62a76913
LP		 2149 u2 = hashmap_get(m->watch_pids, PID_TO_PTR(si.si_pid));
2150 array = hashmap_get(m->watch_pids, PID_TO_PTR(-si.si_pid));
2151 if (array) {
2152 size_t n = 0;
2153
2154 /* Cound how many entries the array has */
2155 while (array[n])
2156 n++;
2157
2158 /* Make a copy of the array so that we don't trip up on the array changing beneath us */
2159 array_copy = newdup(Unit*, array, n+1);
2160 if (!array_copy)
2161 log_oom();
2162 }
2163
2164 /* Finally, execute them all. Note that u1, u2 and the array might contain duplicates, but
2165 * that's fine, manager_invoke_sigchld_event() will ensure we only invoke the handlers once for
2166 * each iteration. */
575b300b 2167 if (u1)
62a76913
LP		 2168 manager_invoke_sigchld_event(m, u1, &si);
2169 if (u2)
2170 manager_invoke_sigchld_event(m, u2, &si);
2171 if (array_copy)
2172 for (size_t i = 0; array_copy[i]; i++)
2173 manager_invoke_sigchld_event(m, array_copy[i], &si);
575b300b 2174 }
9152c765 2175
575b300b
LP		 2176 /* And now, we actually reap the zombie. */
2177 if (waitid(P_PID, si.si_pid, &si, WEXITED) < 0) {
2178 log_error_errno(errno, "Failed to dequeue child, ignoring: %m");
2179 return 0;
2180 }
9152c765 2181
575b300b 2182 return 0;
8c47c732 2183
575b300b
LP		 2184turn_off:
2185 /* All children processed for now, turn off event source */
4112df16 2186
575b300b
LP		 2187 r = sd_event_source_set_enabled(m->sigchld_event_source, SD_EVENT_OFF);
2188 if (r < 0)
2189 return log_error_errno(r, "Failed to disable SIGCHLD event source: %m");
9152c765
LP		 2190
2191 return 0;
2192}
2193
c75fbada 2194static void manager_start_target(Manager *m, const char *name, JobMode mode) {
4afd3348 2195 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
28247076 2196 int r;
398ef8ba 2197
f2341e0a 2198 log_debug("Activating special unit %s", name);
1e001f52 2199
4bd29fe5 2200 r = manager_add_job_by_name(m, JOB_START, name, mode, &error, NULL);
bd0af849 2201 if (r < 0)
f2341e0a 2202 log_error("Failed to enqueue %s job: %s", name, bus_error_message(&error, r));
28247076
LP		 2203}
2204
24dd31c1
LN		 2205static void manager_handle_ctrl_alt_del(Manager *m) {
2206 /* If the user presses C-A-D more than
2207 * 7 times within 2s, we reboot/shutdown immediately,
2208 * unless it was disabled in system.conf */
2209
ae8c7939 2210 if (ratelimit_test(&m->ctrl_alt_del_ratelimit) || m->cad_burst_action == EMERGENCY_ACTION_NONE)
24dd31c1 2211 manager_start_target(m, SPECIAL_CTRL_ALT_DEL_TARGET, JOB_REPLACE_IRREVERSIBLY);
ae8c7939
LN		 2212 else
2213 emergency_action(m, m->cad_burst_action, NULL,
2214 "Ctrl-Alt-Del was pressed more than 7 times within 2s");
24dd31c1
LN		 2215}
2216
718db961
LP		 2217static int manager_dispatch_signal_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata) {
2218 Manager *m = userdata;
9152c765
LP		 2219 ssize_t n;
2220 struct signalfd_siginfo sfsi;
dacd6cee 2221 int r;
9152c765
LP		 2222
2223 assert(m);
718db961
LP		 2224 assert(m->signal_fd == fd);
2225
2226 if (revents != EPOLLIN) {
2227 log_warning("Got unexpected events from signal file descriptor.");
2228 return 0;
2229 }
9152c765 2230
575b300b
LP		 2231 n = read(m->signal_fd, &sfsi, sizeof(sfsi));
2232 if (n != sizeof(sfsi)) {
2233 if (n >= 0) {
2234 log_warning("Truncated read from signal fd (%zu bytes), ignoring!", n);
2235 return 0;
2236 }
9152c765 2237
575b300b
LP		 2238 if (IN_SET(errno, EINTR, EAGAIN))
2239 return 0;
9152c765 2240
575b300b
LP		 2241 /* We return an error here, which will kill this handler,
2242 * to avoid a busy loop on read error. */
2243 return log_error_errno(errno, "Reading from signal fd failed: %m");
2244 }
9152c765 2245
575b300b
LP		 2246 log_received_signal(sfsi.ssi_signo == SIGCHLD ||
2247 (sfsi.ssi_signo == SIGTERM && MANAGER_IS_USER(m))
2248 ? LOG_DEBUG : LOG_INFO,
2249 &sfsi);
1e001f52 2250
575b300b 2251 switch (sfsi.ssi_signo) {
b9cd2ec1 2252
575b300b
LP		 2253 case SIGCHLD:
2254 r = sd_event_source_set_enabled(m->sigchld_event_source, SD_EVENT_ON);
2255 if (r < 0)
2256 log_warning_errno(r, "Failed to enable SIGCHLD even source, ignoring: %m");
b9cd2ec1 2257
575b300b 2258 break;
84e9af1e 2259
575b300b
LP		 2260 case SIGTERM:
2261 if (MANAGER_IS_SYSTEM(m)) {
2262 /* This is for compatibility with the
2263 * original sysvinit */
2264 r = verify_run_space_and_log("Refusing to reexecute");
2265 if (r >= 0)
2266 m->exit_code = MANAGER_REEXECUTE;
a1b256b0 2267 break;
575b300b 2268 }
84e9af1e 2269
575b300b
LP		 2270 _fallthrough_;
2271 case SIGINT:
2272 if (MANAGER_IS_SYSTEM(m))
2273 manager_handle_ctrl_alt_del(m);
2274 else
2275 manager_start_target(m, SPECIAL_EXIT_TARGET,
2276 JOB_REPLACE_IRREVERSIBLY);
2277 break;
84e9af1e 2278
575b300b
LP		 2279 case SIGWINCH:
2280 if (MANAGER_IS_SYSTEM(m))
2281 manager_start_target(m, SPECIAL_KBREQUEST_TARGET, JOB_REPLACE);
84e9af1e 2282
575b300b
LP		 2283 /* This is a nop on non-init */
2284 break;
84e9af1e 2285
575b300b
LP		 2286 case SIGPWR:
2287 if (MANAGER_IS_SYSTEM(m))
2288 manager_start_target(m, SPECIAL_SIGPWR_TARGET, JOB_REPLACE);
6632c602 2289
575b300b
LP		 2290 /* This is a nop on non-init */
2291 break;
57ee42ce 2292
575b300b
LP		 2293 case SIGUSR1: {
2294 Unit *u;
57ee42ce 2295
575b300b 2296 u = manager_get_unit(m, SPECIAL_DBUS_SERVICE);
57ee42ce 2297
575b300b
LP		 2298 if (!u || UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(u))) {
2299 log_info("Trying to reconnect to bus...");
2300 bus_init(m, true);
2301 }
2302
2303 if (!u || !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u))) {
2304 log_info("Loading D-Bus service...");
2305 manager_start_target(m, SPECIAL_DBUS_SERVICE, JOB_REPLACE);
2306 }
57ee42ce 2307
575b300b
LP		 2308 break;
2309 }
2310
2311 case SIGUSR2: {
2312 _cleanup_free_ char *dump = NULL;
2313
2314 r = manager_get_dump_string(m, &dump);
2315 if (r < 0) {
2316 log_warning_errno(errno, "Failed to acquire manager dump: %m");
57ee42ce
LP		 2317 break;
2318 }
2319
575b300b
LP		 2320 log_dump(LOG_INFO, dump);
2321 break;
2322 }
2149e37c 2323
575b300b
LP		 2324 case SIGHUP:
2325 r = verify_run_space_and_log("Refusing to reload");
2326 if (r >= 0)
2327 m->exit_code = MANAGER_RELOAD;
2328 break;
2329
2330 default: {
2331
2332 /* Starting SIGRTMIN+0 */
2333 static const struct {
2334 const char *target;
2335 JobMode mode;
2336 } target_table[] = {
2337 [0] = { SPECIAL_DEFAULT_TARGET, JOB_ISOLATE },
2338 [1] = { SPECIAL_RESCUE_TARGET, JOB_ISOLATE },
2339 [2] = { SPECIAL_EMERGENCY_TARGET, JOB_ISOLATE },
2340 [3] = { SPECIAL_HALT_TARGET, JOB_REPLACE_IRREVERSIBLY },
2341 [4] = { SPECIAL_POWEROFF_TARGET, JOB_REPLACE_IRREVERSIBLY },
2342 [5] = { SPECIAL_REBOOT_TARGET, JOB_REPLACE_IRREVERSIBLY },
2343 [6] = { SPECIAL_KEXEC_TARGET, JOB_REPLACE_IRREVERSIBLY },
2344 };
2345
2346 /* Starting SIGRTMIN+13, so that target halt and system halt are 10 apart */
2347 static const ManagerExitCode code_table[] = {
2348 [0] = MANAGER_HALT,
2349 [1] = MANAGER_POWEROFF,
2350 [2] = MANAGER_REBOOT,
2351 [3] = MANAGER_KEXEC,
2352 };
b2cdc666 2353
575b300b
LP		 2354 if ((int) sfsi.ssi_signo >= SIGRTMIN+0 &&
2355 (int) sfsi.ssi_signo < SIGRTMIN+(int) ELEMENTSOF(target_table)) {
2356 int idx = (int) sfsi.ssi_signo - SIGRTMIN;
2357 manager_start_target(m, target_table[idx].target,
2358 target_table[idx].mode);
1005d14f 2359 break;
2149e37c 2360 }
1005d14f 2361
575b300b
LP		 2362 if ((int) sfsi.ssi_signo >= SIGRTMIN+13 &&
2363 (int) sfsi.ssi_signo < SIGRTMIN+13+(int) ELEMENTSOF(code_table)) {
2364 m->exit_code = code_table[sfsi.ssi_signo - SIGRTMIN - 13];
2365 break;
2366 }
2367
2368 switch (sfsi.ssi_signo - SIGRTMIN) {
2369
2370 case 20:
2371 manager_set_show_status(m, SHOW_STATUS_YES);
a16e1123
LP		 2372 break;
2373
575b300b
LP		 2374 case 21:
2375 manager_set_show_status(m, SHOW_STATUS_NO);
2376 break;
7d793605 2377
575b300b
LP		 2378 case 22:
2379 log_set_max_level(LOG_DEBUG);
2380 log_info("Setting log level to debug.");
2381 break;
2382
2383 case 23:
2384 log_set_max_level(LOG_INFO);
2385 log_info("Setting log level to info.");
2386 break;
0003d1ab 2387
575b300b
LP		 2388 case 24:
2389 if (MANAGER_IS_USER(m)) {
2390 m->exit_code = MANAGER_EXIT;
2391 return 0;
0658666b 2392 }
9152c765 2393
575b300b
LP		 2394 /* This is a nop on init */
2395 break;
2396
2397 case 26:
2398 case 29: /* compatibility: used to be mapped to LOG_TARGET_SYSLOG_OR_KMSG */
2399 log_set_target(LOG_TARGET_JOURNAL_OR_KMSG);
2400 log_notice("Setting log target to journal-or-kmsg.");
2401 break;
2402
2403 case 27:
2404 log_set_target(LOG_TARGET_CONSOLE);
2405 log_notice("Setting log target to console.");
2406 break;
2407
2408 case 28:
2409 log_set_target(LOG_TARGET_KMSG);
2410 log_notice("Setting log target to kmsg.");
2411 break;
2412
2413 default:
2414 log_warning("Got unhandled signal <%s>.", signal_to_string(sfsi.ssi_signo));
2415 }
2416 }}
034c6ed7
LP		 2417
2418 return 0;
2419}
2420
718db961
LP		 2421static int manager_dispatch_time_change_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata) {
2422 Manager *m = userdata;
2423 Iterator i;
2424 Unit *u;
034c6ed7
LP		 2425
2426 assert(m);
718db961 2427 assert(m->time_change_fd == fd);
034c6ed7 2428
a80c1575 2429 log_struct(LOG_DEBUG,
2b044526 2430 "MESSAGE_ID=" SD_MESSAGE_TIME_CHANGE_STR,
e2cc6eca 2431 LOG_MESSAGE("Time has been changed"),
718db961 2432 NULL);
034c6ed7 2433
718db961
LP		 2434 /* Restart the watch */
2435 m->time_change_event_source = sd_event_source_unref(m->time_change_event_source);
03e334a1 2436 m->time_change_fd = safe_close(m->time_change_fd);
ef734fd6 2437
718db961 2438 manager_setup_time_change(m);
4e434314 2439
718db961
LP		 2440 HASHMAP_FOREACH(u, m->units, i)
2441 if (UNIT_VTABLE(u)->time_change)
2442 UNIT_VTABLE(u)->time_change(u);
ea430986 2443
718db961
LP		 2444 return 0;
2445}
ea430986 2446
718db961
LP		 2447static int manager_dispatch_idle_pipe_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata) {
2448 Manager *m = userdata;
8742514c 2449
718db961
LP		 2450 assert(m);
2451 assert(m->idle_pipe[2] == fd);
8742514c 2452
5a69973f
LP		 2453 /* There's at least one Type=idle child that just gave up on us waiting for the boot process to complete. Let's
2454 * now turn off any further console output if there's at least one service that needs console access, so that
2455 * from now on our own output should not spill into that service's output anymore. After all, we support
2456 * Type=idle only to beautify console output and it generally is set on services that want to own the console
2457 * exclusively without our interference. */
718db961 2458 m->no_console_output = m->n_on_console > 0;
03b717a3 2459
5a69973f
LP		 2460 /* Acknowledge the child's request, and let all all other children know too that they shouldn't wait any longer
2461 * by closing the pipes towards them, which is what they are waiting for. */
718db961 2462 manager_close_idle_pipe(m);
03b717a3 2463
718db961
LP		 2464 return 0;
2465}
31a7eb86 2466
718db961
LP		 2467static int manager_dispatch_jobs_in_progress(sd_event_source *source, usec_t usec, void *userdata) {
2468 Manager *m = userdata;
fd08a840
ZJS		 2469 int r;
2470 uint64_t next;
31a7eb86 2471
718db961 2472 assert(m);
fd08a840 2473 assert(source);
9152c765 2474
718db961 2475 manager_print_jobs_in_progress(m);
fd08a840
ZJS		 2476
2477 next = now(CLOCK_MONOTONIC) + JOBS_IN_PROGRESS_PERIOD_USEC;
2478 r = sd_event_source_set_time(source, next);
2479 if (r < 0)
2480 return r;
2481
2482 return sd_event_source_set_enabled(source, SD_EVENT_ONESHOT);
9152c765
LP		 2483}
2484
2485int manager_loop(Manager *m) {
2486 int r;
9152c765 2487
fac9f8df 2488 RATELIMIT_DEFINE(rl, 1*USEC_PER_SEC, 50000);
ea430986 2489
9152c765 2490 assert(m);
f755e3b7 2491 m->exit_code = MANAGER_OK;
9152c765 2492
fe51822e 2493 /* Release the path cache */
97044145 2494 m->unit_path_cache = set_free_free(m->unit_path_cache);
fe51822e 2495
b0c918b9
LP		 2496 manager_check_finished(m);
2497
575b300b
LP		 2498 /* There might still be some zombies hanging around from before we were exec()'ed. Let's reap them. */
2499 r = sd_event_source_set_enabled(m->sigchld_event_source, SD_EVENT_ON);
e96d6be7 2500 if (r < 0)
575b300b 2501 return log_error_errno(r, "Failed to enable SIGCHLD event source: %m");
a4312405 2502
f755e3b7 2503 while (m->exit_code == MANAGER_OK) {
718db961 2504 usec_t wait_usec;
9152c765 2505
463d0d15 2506 if (m->runtime_watchdog > 0 && m->runtime_watchdog != USEC_INFINITY && MANAGER_IS_SYSTEM(m))
e96d6be7
LP		 2507 watchdog_ping();
2508
ea430986
LP		 2509 if (!ratelimit_test(&rl)) {
2510 /* Yay, something is going seriously wrong, pause a little */
2511 log_warning("Looping too fast. Throttling execution a little.");
2512 sleep(1);
2513 }
2514
37a8e683 2515 if (manager_dispatch_load_queue(m) > 0)
23a177ef
LP		 2516 continue;
2517
c5a97ed1
LP		 2518 if (manager_dispatch_gc_job_queue(m) > 0)
2519 continue;
2520
2521 if (manager_dispatch_gc_unit_queue(m) > 0)
701cc384
LP		 2522 continue;
2523
cf1265e1 2524 if (manager_dispatch_cleanup_queue(m) > 0)
c1e1601e 2525 continue;
034c6ed7 2526
91a6073e 2527 if (manager_dispatch_cgroup_realize_queue(m) > 0)
c1e1601e
LP		 2528 continue;
2529
c1e1601e 2530 if (manager_dispatch_dbus_queue(m) > 0)
ea430986 2531 continue;
ea430986 2532
c757a65b 2533 /* Sleep for half the watchdog time */
463d0d15 2534 if (m->runtime_watchdog > 0 && m->runtime_watchdog != USEC_INFINITY && MANAGER_IS_SYSTEM(m)) {
718db961
LP		 2535 wait_usec = m->runtime_watchdog / 2;
2536 if (wait_usec <= 0)
2537 wait_usec = 1;
c757a65b 2538 } else
3a43da28 2539 wait_usec = USEC_INFINITY;
9152c765 2540
718db961 2541 r = sd_event_run(m->event, wait_usec);
23bbb0de
MS		 2542 if (r < 0)
2543 return log_error_errno(r, "Failed to run event loop: %m");
a16e1123 2544 }
957ca890 2545
a16e1123 2546 return m->exit_code;
83c60c9f 2547}
ea430986 2548
718db961 2549int manager_load_unit_from_dbus_path(Manager *m, const char *s, sd_bus_error *e, Unit **_u) {
ede3a796 2550 _cleanup_free_ char *n = NULL;
4b58153d 2551 sd_id128_t invocation_id;
ea430986 2552 Unit *u;
80fbf05e 2553 int r;
ea430986
LP		 2554
2555 assert(m);
2556 assert(s);
2557 assert(_u);
2558
ede3a796
LP		 2559 r = unit_name_from_dbus_path(s, &n);
2560 if (r < 0)
2561 return r;
ea430986 2562
4b58153d
LP		 2563 /* Permit addressing units by invocation ID: if the passed bus path is suffixed by a 128bit ID then we use it
2564 * as invocation ID. */
2565 r = sd_id128_from_string(n, &invocation_id);
2566 if (r >= 0) {
2567 u = hashmap_get(m->units_by_invocation_id, &invocation_id);
2568 if (u) {
2569 *_u = u;
2570 return 0;
2571 }
2572
2573 return sd_bus_error_setf(e, BUS_ERROR_NO_UNIT_FOR_INVOCATION_ID, "No unit with the specified invocation ID " SD_ID128_FORMAT_STR " known.", SD_ID128_FORMAT_VAL(invocation_id));
2574 }
2575
00c83b43
LP		 2576 /* If this didn't work, we check if this is a unit name */
2577 if (!unit_name_is_valid(n, UNIT_NAME_PLAIN|UNIT_NAME_INSTANCE))
2578 return sd_bus_error_setf(e, SD_BUS_ERROR_INVALID_ARGS, "Unit name %s is neither a valid invocation ID nor unit name.", n);
2579
80fbf05e 2580 r = manager_load_unit(m, n, NULL, e, &u);
80fbf05e
MS		 2581 if (r < 0)
2582 return r;
ea430986
LP		 2583
2584 *_u = u;
ea430986
LP		 2585 return 0;
2586}
86fbf370
LP		 2587
2588int manager_get_job_from_dbus_path(Manager *m, const char *s, Job **_j) {
718db961 2589 const char *p;
86fbf370 2590 unsigned id;
718db961 2591 Job *j;
86fbf370
LP		 2592 int r;
2593
2594 assert(m);
2595 assert(s);
2596 assert(_j);
2597
718db961
LP		 2598 p = startswith(s, "/org/freedesktop/systemd1/job/");
2599 if (!p)
86fbf370
LP		 2600 return -EINVAL;
2601
718db961 2602 r = safe_atou(p, &id);
8742514c 2603 if (r < 0)
86fbf370
LP		 2604 return r;
2605
8742514c
LP		 2606 j = manager_get_job(m, id);
2607 if (!j)
86fbf370
LP		 2608 return -ENOENT;
2609
2610 *_j = j;
2611
2612 return 0;
2613}
dfcd764e 2614
4927fcae 2615void manager_send_unit_audit(Manager *m, Unit *u, int type, bool success) {
e537352b 2616
349cc4a5 2617#if HAVE_AUDIT
2ba11090 2618 _cleanup_free_ char *p = NULL;
0aa281df 2619 const char *msg;
7410616c 2620 int audit_fd, r;
e537352b 2621
463d0d15 2622 if (!MANAGER_IS_SYSTEM(m))
a1a078ee
LP		 2623 return;
2624
c1165f82
LP		 2625 audit_fd = get_audit_fd();
2626 if (audit_fd < 0)
e537352b
LP		 2627 return;
2628
bbd3a7ba
LP		 2629 /* Don't generate audit events if the service was already
2630 * started and we're just deserializing */
2c289ea8 2631 if (MANAGER_IS_RELOADING(m))
bbd3a7ba
LP		 2632 return;
2633
ac155bb8 2634 if (u->type != UNIT_SERVICE)
f1dd0c3f
LP		 2635 return;
2636
7410616c
LP		 2637 r = unit_name_to_prefix_and_instance(u->id, &p);
2638 if (r < 0) {
2639 log_error_errno(r, "Failed to extract prefix and instance of unit name: %m");
e537352b
LP		 2640 return;
2641 }
2642
63c372cb 2643 msg = strjoina("unit=", p);
0aa281df
LP		 2644 if (audit_log_user_comm_message(audit_fd, type, msg, "systemd", NULL, NULL, NULL, success) < 0) {
2645 if (errno == EPERM)
391ade86 2646 /* We aren't allowed to send audit messages?
44785992 2647 * Then let's not retry again. */
c1165f82 2648 close_audit_fd();
0aa281df 2649 else
56f64d95 2650 log_warning_errno(errno, "Failed to send audit message: %m");
391ade86 2651 }
4927fcae 2652#endif
e537352b 2653
e537352b
LP		 2654}
2655
e983b760 2656void manager_send_unit_plymouth(Manager *m, Unit *u) {
fc2fffe7 2657 static const union sockaddr_union sa = PLYMOUTH_SOCKET;
2ba11090
ZJS		 2658 _cleanup_free_ char *message = NULL;
2659 _cleanup_close_ int fd = -1;
fc2fffe7 2660 int n = 0;
e983b760
LP		 2661
2662 /* Don't generate plymouth events if the service was already
2663 * started and we're just deserializing */
2c289ea8 2664 if (MANAGER_IS_RELOADING(m))
e983b760
LP		 2665 return;
2666
463d0d15 2667 if (!MANAGER_IS_SYSTEM(m))
e983b760
LP		 2668 return;
2669
75f86906 2670 if (detect_container() > 0)
3772995a
LP		 2671 return;
2672
ec2ce0c5 2673 if (!IN_SET(u->type, UNIT_SERVICE, UNIT_MOUNT, UNIT_SWAP))
e983b760
LP		 2674 return;
2675
2676 /* We set SOCK_NONBLOCK here so that we rather drop the
2677 * message then wait for plymouth */
e62d8c39
ZJS		 2678 fd = socket(AF_UNIX, SOCK_STREAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0);
2679 if (fd < 0) {
56f64d95 2680 log_error_errno(errno, "socket() failed: %m");
e983b760
LP		 2681 return;
2682 }
2683
fc2fffe7 2684 if (connect(fd, &sa.sa, SOCKADDR_UN_LEN(sa.un)) < 0) {
e983b760 2685
2ba11090 2686 if (!IN_SET(errno, EPIPE, EAGAIN, ENOENT, ECONNREFUSED, ECONNRESET, ECONNABORTED))
56f64d95 2687 log_error_errno(errno, "connect() failed: %m");
2ba11090 2688 return;
e983b760
LP		 2689 }
2690
ac155bb8 2691 if (asprintf(&message, "U\002%c%s%n", (int) (strlen(u->id) + 1), u->id, &n) < 0) {
0d0f0c50 2692 log_oom();
2ba11090 2693 return;
e983b760
LP		 2694 }
2695
2696 errno = 0;
2ba11090
ZJS		 2697 if (write(fd, message, n + 1) != n + 1)
2698 if (!IN_SET(errno, EPIPE, EAGAIN, ENOENT, ECONNREFUSED, ECONNRESET, ECONNABORTED))
56f64d95 2699 log_error_errno(errno, "Failed to write Plymouth message: %m");
e983b760
LP		 2700}
2701
d8d5ab98 2702int manager_open_serialization(Manager *m, FILE **_f) {
504afd7c 2703 int fd;
a16e1123
LP		 2704 FILE *f;
2705
2706 assert(_f);
2707
504afd7c
ZJS		 2708 fd = open_serialization_fd("systemd-state");
2709 if (fd < 0)
2710 return fd;
a16e1123 2711
01e10de3 2712 f = fdopen(fd, "w+");
d86f9d52 2713 if (!f) {
03e334a1 2714 safe_close(fd);
a16e1123 2715 return -errno;
d86f9d52 2716 }
a16e1123
LP		 2717
2718 *_f = f;
a16e1123
LP		 2719 return 0;
2720}
2721
b3680f49 2722int manager_serialize(Manager *m, FILE *f, FDSet *fds, bool switching_root) {
9f9f0342
LP		 2723 ManagerTimestamp q;
2724 const char *t;
a16e1123
LP		 2725 Iterator i;
2726 Unit *u;
a16e1123
LP		 2727 int r;
2728
2729 assert(m);
2730 assert(f);
2731 assert(fds);
2732
313cefa1 2733 m->n_reloading++;
38c52d46 2734
1fa2f38f 2735 fprintf(f, "current-job-id=%"PRIu32"\n", m->current_job_id);
33c5fae9
LP		 2736 fprintf(f, "n-installed-jobs=%u\n", m->n_installed_jobs);
2737 fprintf(f, "n-failed-jobs=%u\n", m->n_failed_jobs);
0c2826c6
ZJS		 2738 fprintf(f, "taint-usr=%s\n", yes_no(m->taint_usr));
2739 fprintf(f, "ready-sent=%s\n", yes_no(m->ready_sent));
d8eb10d6 2740 fprintf(f, "taint-logged=%s\n", yes_no(m->taint_logged));
2a12e32e 2741 fprintf(f, "service-watchdogs=%s\n", yes_no(m->service_watchdogs));
01d67b43 2742
9f9f0342
LP		 2743 for (q = 0; q < _MANAGER_TIMESTAMP_MAX; q++) {
2744 /* The userspace and finish timestamps only apply to the host system, hence only serialize them there */
2745 if (in_initrd() && IN_SET(q, MANAGER_TIMESTAMP_USERSPACE, MANAGER_TIMESTAMP_FINISH))
2746 continue;
f38ed060 2747
9f9f0342
LP		 2748 t = manager_timestamp_to_string(q);
2749 {
fbd0b64f 2750 char field[strlen(t) + STRLEN("-timestamp") + 1];
9f9f0342
LP		 2751 strcpy(stpcpy(field, t), "-timestamp");
2752 dual_timestamp_serialize(f, field, m->timestamps + q);
2753 }
f38ed060 2754 }
47a483a1 2755
fe902fa4
ZJS		 2756 if (!switching_root)
2757 (void) serialize_environment(f, m->environment);
4a9fd066 2758
d86f9d52
LP		 2759 if (m->notify_fd >= 0) {
2760 int copy;
2761
2762 copy = fdset_put_dup(fds, m->notify_fd);
2763 if (copy < 0)
2764 return copy;
2765
2766 fprintf(f, "notify-fd=%i\n", copy);
2767 fprintf(f, "notify-socket=%s\n", m->notify_socket);
2768 }
2769
d8fdc620
LP		 2770 if (m->cgroups_agent_fd >= 0) {
2771 int copy;
2772
2773 copy = fdset_put_dup(fds, m->cgroups_agent_fd);
2774 if (copy < 0)
2775 return copy;
2776
2777 fprintf(f, "cgroups-agent-fd=%i\n", copy);
2778 }
2779
00d9ef85
LP		 2780 if (m->user_lookup_fds[0] >= 0) {
2781 int copy0, copy1;
2782
2783 copy0 = fdset_put_dup(fds, m->user_lookup_fds[0]);
2784 if (copy0 < 0)
2785 return copy0;
2786
2787 copy1 = fdset_put_dup(fds, m->user_lookup_fds[1]);
2788 if (copy1 < 0)
2789 return copy1;
2790
2791 fprintf(f, "user-lookup=%i %i\n", copy0, copy1);
2792 }
2793
05a98afd 2794 bus_track_serialize(m->subscribed, f, "subscribed");
6fa48533 2795
29206d46
LP		 2796 r = dynamic_user_serialize(m, f, fds);
2797 if (r < 0)
2798 return r;
2799
00d9ef85
LP		 2800 manager_serialize_uid_refs(m, f);
2801 manager_serialize_gid_refs(m, f);
2802
0d536673 2803 (void) fputc('\n', f);
f2382a94 2804
a16e1123 2805 HASHMAP_FOREACH_KEY(u, t, m->units, i) {
ac155bb8 2806 if (u->id != t)
a16e1123
LP		 2807 continue;
2808
a16e1123 2809 /* Start marker */
0d536673
LP		 2810 fputs(u->id, f);
2811 fputc('\n', f);
a16e1123 2812
6fa48533
LP		 2813 r = unit_serialize(u, f, fds, !switching_root);
2814 if (r < 0) {
313cefa1 2815 m->n_reloading--;
a16e1123 2816 return r;
38c52d46 2817 }
a16e1123
LP		 2818 }
2819
a7556052 2820 assert(m->n_reloading > 0);
313cefa1 2821 m->n_reloading--;
38c52d46 2822
a16e1123
LP		 2823 if (ferror(f))
2824 return -EIO;
2825
b23de6af
LP		 2826 r = bus_fdset_add_all(m, fds);
2827 if (r < 0)
2828 return r;
2829
a16e1123
LP		 2830 return 0;
2831}
2832
2833int manager_deserialize(Manager *m, FILE *f, FDSet *fds) {
2834 int r = 0;
2835
2836 assert(m);
2837 assert(f);
2838
2839 log_debug("Deserializing state...");
2840
313cefa1 2841 m->n_reloading++;
82c64bf5 2842
10f8e83c 2843 for (;;) {
d233c99a
ZJS		 2844 char line[LINE_MAX];
2845 const char *val, *l;
10f8e83c
LP		 2846
2847 if (!fgets(line, sizeof(line), f)) {
2848 if (feof(f))
2849 r = 0;
2850 else
2851 r = -errno;
2852
2853 goto finish;
2854 }
2855
2856 char_array_0(line);
2857 l = strstrip(line);
2858
2859 if (l[0] == 0)
2860 break;
2861
fb4650aa 2862 if ((val = startswith(l, "current-job-id="))) {
01d67b43
LP		 2863 uint32_t id;
2864
fb4650aa 2865 if (safe_atou32(val, &id) < 0)
62c460c6 2866 log_notice("Failed to parse current job id value %s", val);
01d67b43
LP		 2867 else
2868 m->current_job_id = MAX(m->current_job_id, id);
718db961 2869
fb4650aa 2870 } else if ((val = startswith(l, "n-installed-jobs="))) {
33c5fae9
LP		 2871 uint32_t n;
2872
fb4650aa 2873 if (safe_atou32(val, &n) < 0)
62c460c6 2874 log_notice("Failed to parse installed jobs counter %s", val);
33c5fae9
LP		 2875 else
2876 m->n_installed_jobs += n;
718db961 2877
fb4650aa 2878 } else if ((val = startswith(l, "n-failed-jobs="))) {
33c5fae9
LP		 2879 uint32_t n;
2880
fb4650aa 2881 if (safe_atou32(val, &n) < 0)
62c460c6 2882 log_notice("Failed to parse failed jobs counter %s", val);
33c5fae9
LP		 2883 else
2884 m->n_failed_jobs += n;
718db961 2885
fb4650aa 2886 } else if ((val = startswith(l, "taint-usr="))) {
01d67b43
LP		 2887 int b;
2888
fb4650aa 2889 b = parse_boolean(val);
e3dd987c 2890 if (b < 0)
62c460c6 2891 log_notice("Failed to parse taint /usr flag %s", val);
01d67b43
LP		 2892 else
2893 m->taint_usr = m->taint_usr || b;
718db961 2894
0c2826c6
ZJS		 2895 } else if ((val = startswith(l, "ready-sent="))) {
2896 int b;
2897
2898 b = parse_boolean(val);
2899 if (b < 0)
2900 log_notice("Failed to parse ready-sent flag %s", val);
2901 else
2902 m->ready_sent = m->ready_sent || b;
2903
d8eb10d6
ZJS		 2904 } else if ((val = startswith(l, "taint-logged="))) {
2905 int b;
2906
2907 b = parse_boolean(val);
2908 if (b < 0)
2909 log_notice("Failed to parse taint-logged flag %s", val);
2910 else
2911 m->taint_logged = m->taint_logged || b;
2912
2a12e32e
JK		 2913 } else if ((val = startswith(l, "service-watchdogs="))) {
2914 int b;
2915
2916 b = parse_boolean(val);
2917 if (b < 0)
2918 log_notice("Failed to parse service-watchdogs flag %s", val);
2919 else
2920 m->service_watchdogs = b;
2921
9f9f0342 2922 } else if (startswith(l, "env=")) {
fe902fa4 2923 r = deserialize_environment(&m->environment, l);
d233c99a
ZJS		 2924 if (r == -ENOMEM)
2925 goto finish;
527b7a42 2926 if (r < 0)
d233c99a 2927 log_notice_errno(r, "Failed to parse environment entry: \"%s\": %m", l);
e3dd987c 2928
fb4650aa 2929 } else if ((val = startswith(l, "notify-fd="))) {
d86f9d52
LP		 2930 int fd;
2931
fb4650aa 2932 if (safe_atoi(val, &fd) < 0 || fd < 0 || !fdset_contains(fds, fd))
62c460c6 2933 log_notice("Failed to parse notify fd: \"%s\"", val);
d86f9d52 2934 else {
03e334a1
LP		 2935 m->notify_event_source = sd_event_source_unref(m->notify_event_source);
2936 safe_close(m->notify_fd);
d86f9d52
LP		 2937 m->notify_fd = fdset_remove(fds, fd);
2938 }
2939
fb4650aa 2940 } else if ((val = startswith(l, "notify-socket="))) {
d86f9d52
LP		 2941 char *n;
2942
fb4650aa 2943 n = strdup(val);
d86f9d52
LP		 2944 if (!n) {
2945 r = -ENOMEM;
2946 goto finish;
2947 }
2948
2949 free(m->notify_socket);
2950 m->notify_socket = n;
2951
fb4650aa 2952 } else if ((val = startswith(l, "cgroups-agent-fd="))) {
d8fdc620
LP		 2953 int fd;
2954
fb4650aa 2955 if (safe_atoi(val, &fd) < 0 || fd < 0 || !fdset_contains(fds, fd))
62c460c6 2956 log_notice("Failed to parse cgroups agent fd: %s", val);
d8fdc620
LP		 2957 else {
2958 m->cgroups_agent_event_source = sd_event_source_unref(m->cgroups_agent_event_source);
2959 safe_close(m->cgroups_agent_fd);
2960 m->cgroups_agent_fd = fdset_remove(fds, fd);
2961 }
2962
fb4650aa 2963 } else if ((val = startswith(l, "user-lookup="))) {
00d9ef85
LP		 2964 int fd0, fd1;
2965
fb4650aa 2966 if (sscanf(val, "%i %i", &fd0, &fd1) != 2 || fd0 < 0 || fd1 < 0 || fd0 == fd1 || !fdset_contains(fds, fd0) || !fdset_contains(fds, fd1))
62c460c6 2967 log_notice("Failed to parse user lookup fd: %s", val);
00d9ef85
LP		 2968 else {
2969 m->user_lookup_event_source = sd_event_source_unref(m->user_lookup_event_source);
2970 safe_close_pair(m->user_lookup_fds);
2971 m->user_lookup_fds[0] = fdset_remove(fds, fd0);
2972 m->user_lookup_fds[1] = fdset_remove(fds, fd1);
2973 }
2974
fb4650aa
ZJS		 2975 } else if ((val = startswith(l, "dynamic-user=")))
2976 dynamic_user_deserialize_one(m, val, fds);
2977 else if ((val = startswith(l, "destroy-ipc-uid=")))
2978 manager_deserialize_uid_refs_one(m, val);
2979 else if ((val = startswith(l, "destroy-ipc-gid=")))
2980 manager_deserialize_gid_refs_one(m, val);
2981 else if ((val = startswith(l, "subscribed="))) {
05a98afd 2982
fb4650aa 2983 if (strv_extend(&m->deserialized_subscribed, val) < 0)
05a98afd 2984 log_oom();
9f9f0342
LP		 2985 } else {
2986 ManagerTimestamp q;
2987
2988 for (q = 0; q < _MANAGER_TIMESTAMP_MAX; q++) {
2989 val = startswith(l, manager_timestamp_to_string(q));
2990 if (!val)
2991 continue;
05a98afd 2992
9f9f0342
LP		 2993 val = startswith(val, "-timestamp=");
2994 if (val)
2995 break;
2996 }
05a98afd 2997
9f9f0342
LP		 2998 if (q < _MANAGER_TIMESTAMP_MAX) /* found it */
2999 dual_timestamp_deserialize(val, m->timestamps + q);
3000 else if (!startswith(l, "kdbus-fd=")) /* ignore kdbus */
3001 log_notice("Unknown serialization item '%s'", l);
3002 }
10f8e83c
LP		 3003 }
3004
a16e1123
LP		 3005 for (;;) {
3006 Unit *u;
3007 char name[UNIT_NAME_MAX+2];
07429866 3008 const char* unit_name;
a16e1123
LP		 3009
3010 /* Start marker */
3011 if (!fgets(name, sizeof(name), f)) {
3012 if (feof(f))
10f8e83c
LP		 3013 r = 0;
3014 else
3015 r = -errno;
a16e1123 3016
82c64bf5 3017 goto finish;
a16e1123
LP		 3018 }
3019
3020 char_array_0(name);
07429866 3021 unit_name = strstrip(name);
a16e1123 3022
07429866
ZJS		 3023 r = manager_load_unit(m, unit_name, NULL, NULL, &u);
3024 if (r < 0) {
3025 log_notice_errno(r, "Failed to load unit \"%s\", skipping deserialization: %m", unit_name);
3026 if (r == -ENOMEM)
3027 goto finish;
3028 unit_deserialize_skip(f);
3029 continue;
3030 }
a16e1123 3031
01e10de3 3032 r = unit_deserialize(u, f, fds);
07429866
ZJS		 3033 if (r < 0) {
3034 log_notice_errno(r, "Failed to deserialize unit \"%s\": %m", unit_name);
3035 if (r == -ENOMEM)
3036 goto finish;
3037 }
a16e1123
LP		 3038 }
3039
10f8e83c 3040finish:
145b1f79 3041 if (ferror(f))
82c64bf5 3042 r = -EIO;
a16e1123 3043
a7556052 3044 assert(m->n_reloading > 0);
313cefa1 3045 m->n_reloading--;
82c64bf5
LP		 3046
3047 return r;
a16e1123
LP		 3048}
3049
3050int manager_reload(Manager *m) {
3051 int r, q;
51d122af
ZJS		 3052 _cleanup_fclose_ FILE *f = NULL;
3053 _cleanup_fdset_free_ FDSet *fds = NULL;
a16e1123
LP		 3054
3055 assert(m);
3056
07719a21
LP		 3057 r = manager_open_serialization(m, &f);
3058 if (r < 0)
a16e1123
LP		 3059 return r;
3060
313cefa1 3061 m->n_reloading++;
718db961 3062 bus_manager_send_reloading(m, true);
38c52d46 3063
07719a21
LP		 3064 fds = fdset_new();
3065 if (!fds) {
313cefa1 3066 m->n_reloading--;
51d122af 3067 return -ENOMEM;
a16e1123
LP		 3068 }
3069
b3680f49 3070 r = manager_serialize(m, f, fds, false);
07719a21 3071 if (r < 0) {
313cefa1 3072 m->n_reloading--;
51d122af 3073 return r;
38c52d46 3074 }
a16e1123
LP		 3075
3076 if (fseeko(f, 0, SEEK_SET) < 0) {
313cefa1 3077 m->n_reloading--;
51d122af 3078 return -errno;
a16e1123
LP		 3079 }
3080
3081 /* From here on there is no way back. */
3082 manager_clear_jobs_and_units(m);
07a78643 3083 lookup_paths_flush_generator(&m->lookup_paths);
84e3543e 3084 lookup_paths_free(&m->lookup_paths);
29206d46 3085 dynamic_user_vacuum(m, false);
00d9ef85
LP		 3086 m->uid_refs = hashmap_free(m->uid_refs);
3087 m->gid_refs = hashmap_free(m->gid_refs);
2ded0c04 3088
4943d143 3089 q = lookup_paths_init(&m->lookup_paths, m->unit_file_scope, 0, NULL);
e801700e
ZJS		 3090 if (q < 0 && r >= 0)
3091 r = q;
5a1e9937 3092
64691d20
ZJS		 3093 q = manager_run_environment_generators(m);
3094 if (q < 0 && r >= 0)
3095 r = q;
3096
a3c4eb07
LP		 3097 /* Find new unit paths */
3098 q = manager_run_generators(m);
e801700e 3099 if (q < 0 && r >= 0)
07719a21
LP		 3100 r = q;
3101
a1453343 3102 lookup_paths_reduce(&m->lookup_paths);
5a1e9937
LP		 3103 manager_build_unit_path_cache(m);
3104
a16e1123 3105 /* First, enumerate what we can from all config files */
ba64af90 3106 manager_enumerate(m);
a16e1123
LP		 3107
3108 /* Second, deserialize our stored data */
07719a21 3109 q = manager_deserialize(m, f, fds);
07429866
ZJS		 3110 if (q < 0) {
3111 log_error_errno(q, "Deserialization failed: %m");
3112
3113 if (r >= 0)
3114 r = q;
3115 }
a16e1123
LP		 3116
3117 fclose(f);
3118 f = NULL;
3119
a2cc4a6c
ZJS		 3120 /* Re-register notify_fd as event source */
3121 q = manager_setup_notify(m);
e801700e 3122 if (q < 0 && r >= 0)
a2cc4a6c
ZJS		 3123 r = q;
3124
d8fdc620
LP		 3125 q = manager_setup_cgroups_agent(m);
3126 if (q < 0 && r >= 0)
3127 r = q;
3128
00d9ef85
LP		 3129 q = manager_setup_user_lookup_fd(m);
3130 if (q < 0 && r >= 0)
3131 r = q;
3132
a16e1123 3133 /* Third, fire things up! */
007c6337 3134 manager_coldplug(m);
a16e1123 3135
29206d46
LP		 3136 /* Release any dynamic users no longer referenced */
3137 dynamic_user_vacuum(m, true);
3138
00d9ef85
LP		 3139 /* Release any references to UIDs/GIDs no longer referenced, and destroy any IPC owned by them */
3140 manager_vacuum_uid_refs(m);
3141 manager_vacuum_gid_refs(m);
3142
d075092f
LP		 3143 /* It might be safe to log to the journal now. */
3144 manager_recheck_journal(m);
3145
8936a5e3
DM		 3146 /* Sync current state of bus names with our set of listening units */
3147 if (m->api_bus)
3148 manager_sync_bus_names(m, m->api_bus);
3149
a7556052
LP		 3150 assert(m->n_reloading > 0);
3151 m->n_reloading--;
9f611ad8 3152
71445ae7
LP		 3153 m->send_reloading_done = true;
3154
a16e1123
LP		 3155 return r;
3156}
3157
fdf20a31 3158void manager_reset_failed(Manager *m) {
5632e374
LP		 3159 Unit *u;
3160 Iterator i;
3161
3162 assert(m);
3163
3164 HASHMAP_FOREACH(u, m->units, i)
fdf20a31 3165 unit_reset_failed(u);
5632e374
LP		 3166}
3167
31afa0a4 3168bool manager_unit_inactive_or_pending(Manager *m, const char *name) {
8f6df3fa
LP		 3169 Unit *u;
3170
3171 assert(m);
3172 assert(name);
3173
3174 /* Returns true if the unit is inactive or going down */
bd0af849
ZJS		 3175 u = manager_get_unit(m, name);
3176 if (!u)
8f6df3fa
LP		 3177 return true;
3178
31afa0a4 3179 return unit_inactive_or_pending(u);
8f6df3fa
LP		 3180}
3181
d8eb10d6
ZJS		 3182static void log_taint_string(Manager *m) {
3183 _cleanup_free_ char *taint = NULL;
3184
3185 assert(m);
3186
3187 if (MANAGER_IS_USER(m) || m->taint_logged)
3188 return;
3189
3190 m->taint_logged = true; /* only check for taint once */
3191
3192 taint = manager_taint_string(m);
3193 if (isempty(taint))
3194 return;
3195
3196 log_struct(LOG_NOTICE,
3197 LOG_MESSAGE("System is tainted: %s", taint),
3198 "TAINT=%s", taint,
3199 "MESSAGE_ID=" SD_MESSAGE_TAINTED_STR,
3200 NULL);
3201}
3202
56dacdbc 3203static void manager_notify_finished(Manager *m) {
7ceba241 3204 char userspace[FORMAT_TIMESPAN_MAX], initrd[FORMAT_TIMESPAN_MAX], kernel[FORMAT_TIMESPAN_MAX], sum[FORMAT_TIMESPAN_MAX];
915b3753 3205 usec_t firmware_usec, loader_usec, kernel_usec, initrd_usec, userspace_usec, total_usec;
b0c918b9 3206
e0a3da1f 3207 if (m->test_run_flags)
b0c918b9
LP		 3208 return;
3209
463d0d15 3210 if (MANAGER_IS_SYSTEM(m) && detect_container() <= 0) {
dd1db3c2 3211 char ts[FORMAT_TIMESPAN_MAX];
dc3c9f5e
ZJS		 3212 char buf[FORMAT_TIMESPAN_MAX + STRLEN(" (firmware) + ") + FORMAT_TIMESPAN_MAX + STRLEN(" (loader) + ")]
3213 = {};
3214 char *p = buf;
3215 size_t size = sizeof buf;
e03ae661 3216
9f9f0342
LP		 3217 /* Note that MANAGER_TIMESTAMP_KERNEL's monotonic value is always at 0, and
3218 * MANAGER_TIMESTAMP_FIRMWARE's and MANAGER_TIMESTAMP_LOADER's monotonic value should be considered
915b3753
LP		 3219 * negative values. */
3220
9f9f0342
LP		 3221 firmware_usec = m->timestamps[MANAGER_TIMESTAMP_FIRMWARE].monotonic - m->timestamps[MANAGER_TIMESTAMP_LOADER].monotonic;
3222 loader_usec = m->timestamps[MANAGER_TIMESTAMP_LOADER].monotonic - m->timestamps[MANAGER_TIMESTAMP_KERNEL].monotonic;
3223 userspace_usec = m->timestamps[MANAGER_TIMESTAMP_FINISH].monotonic - m->timestamps[MANAGER_TIMESTAMP_USERSPACE].monotonic;
3224 total_usec = m->timestamps[MANAGER_TIMESTAMP_FIRMWARE].monotonic + m->timestamps[MANAGER_TIMESTAMP_FINISH].monotonic;
18fa6b27 3225
dd1db3c2
YW		 3226 if (firmware_usec > 0)
3227 size = strpcpyf(&p, size, "%s (firmware) + ", format_timespan(ts, sizeof(ts), firmware_usec, USEC_PER_MSEC));
3228 if (loader_usec > 0)
3229 size = strpcpyf(&p, size, "%s (loader) + ", format_timespan(ts, sizeof(ts), loader_usec, USEC_PER_MSEC));
3230
9f9f0342 3231 if (dual_timestamp_is_set(&m->timestamps[MANAGER_TIMESTAMP_INITRD])) {
18fa6b27 3232
9f9f0342
LP		 3233 /* The initrd case on bare-metal*/
3234 kernel_usec = m->timestamps[MANAGER_TIMESTAMP_INITRD].monotonic - m->timestamps[MANAGER_TIMESTAMP_KERNEL].monotonic;
3235 initrd_usec = m->timestamps[MANAGER_TIMESTAMP_USERSPACE].monotonic - m->timestamps[MANAGER_TIMESTAMP_INITRD].monotonic;
18fa6b27 3236
e12919e8 3237 log_struct(LOG_INFO,
2b044526 3238 "MESSAGE_ID=" SD_MESSAGE_STARTUP_FINISHED_STR,
e12919e8
LP		 3239 "KERNEL_USEC="USEC_FMT, kernel_usec,
3240 "INITRD_USEC="USEC_FMT, initrd_usec,
3241 "USERSPACE_USEC="USEC_FMT, userspace_usec,
dd1db3c2
YW		 3242 LOG_MESSAGE("Startup finished in %s%s (kernel) + %s (initrd) + %s (userspace) = %s.",
3243 buf,
e2cc6eca
LP		 3244 format_timespan(kernel, sizeof(kernel), kernel_usec, USEC_PER_MSEC),
3245 format_timespan(initrd, sizeof(initrd), initrd_usec, USEC_PER_MSEC),
3246 format_timespan(userspace, sizeof(userspace), userspace_usec, USEC_PER_MSEC),
3247 format_timespan(sum, sizeof(sum), total_usec, USEC_PER_MSEC)),
e12919e8 3248 NULL);
18fa6b27 3249 } else {
9f9f0342
LP		 3250 /* The initrd-less case on bare-metal*/
3251
3252 kernel_usec = m->timestamps[MANAGER_TIMESTAMP_USERSPACE].monotonic - m->timestamps[MANAGER_TIMESTAMP_KERNEL].monotonic;
18fa6b27
LP		 3253 initrd_usec = 0;
3254
81270860 3255 log_struct(LOG_INFO,
2b044526 3256 "MESSAGE_ID=" SD_MESSAGE_STARTUP_FINISHED_STR,
e12919e8 3257 "KERNEL_USEC="USEC_FMT, kernel_usec,
ccd06097 3258 "USERSPACE_USEC="USEC_FMT, userspace_usec,
dd1db3c2
YW		 3259 LOG_MESSAGE("Startup finished in %s%s (kernel) + %s (userspace) = %s.",
3260 buf,
e2cc6eca
LP		 3261 format_timespan(kernel, sizeof(kernel), kernel_usec, USEC_PER_MSEC),
3262 format_timespan(userspace, sizeof(userspace), userspace_usec, USEC_PER_MSEC),
3263 format_timespan(sum, sizeof(sum), total_usec, USEC_PER_MSEC)),
81270860 3264 NULL);
e12919e8
LP		 3265 }
3266 } else {
4adf314b 3267 /* The container and --user case */
e12919e8 3268 firmware_usec = loader_usec = initrd_usec = kernel_usec = 0;
9f9f0342 3269 total_usec = userspace_usec = m->timestamps[MANAGER_TIMESTAMP_FINISH].monotonic - m->timestamps[MANAGER_TIMESTAMP_USERSPACE].monotonic;
e12919e8
LP		 3270
3271 log_struct(LOG_INFO,
2b044526 3272 "MESSAGE_ID=" SD_MESSAGE_USER_STARTUP_FINISHED_STR,
e12919e8 3273 "USERSPACE_USEC="USEC_FMT, userspace_usec,
e2cc6eca
LP		 3274 LOG_MESSAGE("Startup finished in %s.",
3275 format_timespan(sum, sizeof(sum), total_usec, USEC_PER_MSEC)),
e12919e8 3276 NULL);
18fa6b27 3277 }
b0c918b9 3278
718db961 3279 bus_manager_send_finished(m, firmware_usec, loader_usec, kernel_usec, initrd_usec, userspace_usec, total_usec);
530345e7
LP		 3280
3281 sd_notifyf(false,
0c2826c6
ZJS		 3282 m->ready_sent ? "STATUS=Startup finished in %s."
3283 : "READY=1\n"
3284 "STATUS=Startup finished in %s.",
2fa4092c 3285 format_timespan(sum, sizeof(sum), total_usec, USEC_PER_MSEC));
0c2826c6 3286 m->ready_sent = true;
d8eb10d6
ZJS		 3287
3288 log_taint_string(m);
b0c918b9
LP		 3289}
3290
4adf314b
LP		 3291static void manager_send_ready(Manager *m) {
3292 assert(m);
3293
3294 /* We send READY=1 on reaching basic.target only when running in --user mode. */
3295 if (!MANAGER_IS_USER(m) || m->ready_sent)
3296 return;
3297
3298 m->ready_sent = true;
3299
3300 sd_notifyf(false,
3301 "READY=1\n"
3302 "STATUS=Reached " SPECIAL_BASIC_TARGET ".");
3303}
3304
3305static void manager_check_basic_target(Manager *m) {
3306 Unit *u;
3307
3308 assert(m);
3309
3310 /* Small shortcut */
3311 if (m->ready_sent && m->taint_logged)
3312 return;
3313
3314 u = manager_get_unit(m, SPECIAL_BASIC_TARGET);
3315 if (!u || !UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(u)))
3316 return;
3317
3318 /* For user managers, send out READY=1 as soon as we reach basic.target */
3319 manager_send_ready(m);
3320
3321 /* Log the taint string as soon as we reach basic.target */
3322 log_taint_string(m);
3323}
3324
56dacdbc 3325void manager_check_finished(Manager *m) {
56dacdbc
ZJS		 3326 assert(m);
3327
2c289ea8 3328 if (MANAGER_IS_RELOADING(m))
aad1976f
LP		 3329 return;
3330
4259d202
LP		 3331 /* Verify that we have entered the event loop already, and not left it again. */
3332 if (!MANAGER_IS_RUNNING(m))
9771b62d
LP		 3333 return;
3334
4adf314b 3335 manager_check_basic_target(m);
0c2826c6 3336
56dacdbc 3337 if (hashmap_size(m->jobs) > 0) {
56dacdbc 3338 if (m->jobs_in_progress_event_source)
2ae56591 3339 /* Ignore any failure, this is only for feedback */
e7ab4d1a 3340 (void) sd_event_source_set_time(m->jobs_in_progress_event_source, now(CLOCK_MONOTONIC) + JOBS_IN_PROGRESS_WAIT_USEC);
56dacdbc
ZJS		 3341
3342 return;
3343 }
3344
3345 manager_flip_auto_status(m, false);
3346
3347 /* Notify Type=idle units that we are done now */
56dacdbc
ZJS		 3348 manager_close_idle_pipe(m);
3349
3350 /* Turn off confirm spawn now */
7d5ceb64 3351 m->confirm_spawn = NULL;
56dacdbc
ZJS		 3352
3353 /* No need to update ask password status when we're going non-interactive */
3354 manager_close_ask_password(m);
3355
3356 /* This is no longer the first boot */
3357 manager_set_first_boot(m, false);
3358
49d5666c 3359 if (MANAGER_IS_FINISHED(m))
56dacdbc
ZJS		 3360 return;
3361
9f9f0342 3362 dual_timestamp_get(m->timestamps + MANAGER_TIMESTAMP_FINISH);
56dacdbc
ZJS		 3363
3364 manager_notify_finished(m);
3365
e7ab4d1a 3366 manager_invalidate_startup_units(m);
56dacdbc
ZJS		 3367}
3368
64691d20
ZJS		 3369static bool generator_path_any(const char* const* paths) {
3370 char **path;
3371 bool found = false;
3372
3373 /* Optimize by skipping the whole process by not creating output directories
3374 * if no generators are found. */
3375 STRV_FOREACH(path, (char**) paths)
3376 if (access(*path, F_OK) == 0)
3377 found = true;
3378 else if (errno != ENOENT)
3379 log_warning_errno(errno, "Failed to open generator directory %s: %m", *path);
3380
3381 return found;
3382}
3383
3384static const char* system_env_generator_binary_paths[] = {
3385 "/run/systemd/system-environment-generators",
3386 "/etc/systemd/system-environment-generators",
3387 "/usr/local/lib/systemd/system-environment-generators",
3388 SYSTEM_ENV_GENERATOR_PATH,
3389 NULL
3390};
3391
3392static const char* user_env_generator_binary_paths[] = {
3393 "/run/systemd/user-environment-generators",
3394 "/etc/systemd/user-environment-generators",
3395 "/usr/local/lib/systemd/user-environment-generators",
3396 USER_ENV_GENERATOR_PATH,
3397 NULL
3398};
3399
3400static int manager_run_environment_generators(Manager *m) {
3401 char **tmp = NULL; /* this is only used in the forked process, no cleanup here */
3402 const char **paths;
3403 void* args[] = {&tmp, &tmp, &m->environment};
3404
e0a3da1f
ZJS		 3405 if (m->test_run_flags && !(m->test_run_flags & MANAGER_TEST_RUN_ENV_GENERATORS))
3406 return 0;
3407
64691d20
ZJS		 3408 paths = MANAGER_IS_SYSTEM(m) ? system_env_generator_binary_paths : user_env_generator_binary_paths;
3409
3410 if (!generator_path_any(paths))
3411 return 0;
3412
3413 return execute_directories(paths, DEFAULT_TIMEOUT_USEC, gather_environment, args, NULL);
3414}
3415
e801700e 3416static int manager_run_generators(Manager *m) {
f42348ac 3417 _cleanup_strv_free_ char **paths = NULL;
07719a21 3418 const char *argv[5];
07719a21 3419 int r;
5a1e9937
LP		 3420
3421 assert(m);
3422
e0a3da1f
ZJS		 3423 if (m->test_run_flags && !(m->test_run_flags & MANAGER_TEST_RUN_GENERATORS))
3424 return 0;
3425
9183df70 3426 paths = generator_binary_paths(m->unit_file_scope);
e801700e
ZJS		 3427 if (!paths)
3428 return log_oom();
5a1e9937 3429
64691d20
ZJS		 3430 if (!generator_path_any((const char* const*) paths))
3431 return 0;
5a1e9937 3432
cd64fd56 3433 r = lookup_paths_mkdir_generator(&m->lookup_paths);
07719a21
LP		 3434 if (r < 0)
3435 goto finish;
5a1e9937 3436
83cc030f 3437 argv[0] = NULL; /* Leave this empty, execute_directory() will fill something in */
a3c4eb07
LP		 3438 argv[1] = m->lookup_paths.generator;
3439 argv[2] = m->lookup_paths.generator_early;
3440 argv[3] = m->lookup_paths.generator_late;
07719a21 3441 argv[4] = NULL;
5a1e9937 3442
718db961 3443 RUN_WITH_UMASK(0022)
c6e47247
ZJS		 3444 execute_directories((const char* const*) paths, DEFAULT_TIMEOUT_USEC,
3445 NULL, NULL, (char**) argv);
5a1e9937 3446
718db961 3447finish:
cd64fd56 3448 lookup_paths_trim_generator(&m->lookup_paths);
e801700e 3449 return r;
5a1e9937
LP		 3450}
3451
718db961
LP		 3452int manager_environment_add(Manager *m, char **minus, char **plus) {
3453 char **a = NULL, **b = NULL, **l;
97d0e5f8 3454 assert(m);
bcd8e6d1 3455
718db961 3456 l = m->environment;
bcd8e6d1 3457
718db961
LP		 3458 if (!strv_isempty(minus)) {
3459 a = strv_env_delete(l, 1, minus);
3460 if (!a)
3461 return -ENOMEM;
3462
3463 l = a;
3464 }
3465
3466 if (!strv_isempty(plus)) {
3467 b = strv_env_merge(2, l, plus);
aa9f8a30
AH		 3468 if (!b) {
3469 strv_free(a);
718db961 3470 return -ENOMEM;
aa9f8a30 3471 }
bcd8e6d1 3472
718db961
LP		 3473 l = b;
3474 }
3475
3476 if (m->environment != l)
3477 strv_free(m->environment);
3478 if (a != l)
3479 strv_free(a);
3480 if (b != l)
3481 strv_free(b);
3482
f069efb4 3483 m->environment = l;
47cf8ff2 3484 manager_sanitize_environment(m);
f069efb4 3485
97d0e5f8
UTL		 3486 return 0;
3487}
3488
c93ff2e9
FC		 3489int manager_set_default_rlimits(Manager *m, struct rlimit **default_rlimit) {
3490 int i;
3491
3492 assert(m);
3493
517d56b1 3494 for (i = 0; i < _RLIMIT_MAX; i++) {
d9814c76
EV		 3495 m->rlimit[i] = mfree(m->rlimit[i]);
3496
07719a21
LP		 3497 if (!default_rlimit[i])
3498 continue;
c93ff2e9 3499
07719a21
LP		 3500 m->rlimit[i] = newdup(struct rlimit, default_rlimit[i], 1);
3501 if (!m->rlimit[i])
3ce40911 3502 return log_oom();
c93ff2e9
FC		 3503 }
3504
3505 return 0;
3506}
3507
d075092f 3508static bool manager_journal_is_running(Manager *m) {
f1dd0c3f
LP		 3509 Unit *u;
3510
3511 assert(m);
3512
d075092f 3513 /* If we are the user manager we can safely assume that the journal is up */
463d0d15 3514 if (!MANAGER_IS_SYSTEM(m))
d075092f 3515 return true;
f1dd0c3f 3516
d075092f 3517 /* Check that the socket is not only up, but in RUNNING state */
731a676c 3518 u = manager_get_unit(m, SPECIAL_JOURNALD_SOCKET);
d075092f
LP		 3519 if (!u)
3520 return false;
3521 if (SOCKET(u)->state != SOCKET_RUNNING)
3522 return false;
f1dd0c3f 3523
d075092f 3524 /* Similar, check if the daemon itself is fully up, too */
731a676c 3525 u = manager_get_unit(m, SPECIAL_JOURNALD_SERVICE);
d075092f
LP		 3526 if (!u)
3527 return false;
3528 if (SERVICE(u)->state != SERVICE_RUNNING)
3529 return false;
3530
3531 return true;
3532}
3533
3534void manager_recheck_journal(Manager *m) {
3535
3536 assert(m);
3537
3538 /* Don't bother with this unless we are in the special situation of being PID 1 */
3539 if (getpid_cached() != 1)
731a676c 3540 return;
f1dd0c3f 3541
d075092f
LP		 3542 if (manager_journal_is_running(m)) {
3543
3544 /* The journal is fully and entirely up? If so, let's permit logging to it, if that's configured. */
3545 log_set_prohibit_ipc(false);
3546 log_open();
3547 } else {
3548
3549 /* If the journal is down, don't ever log to it, otherwise we might end up deadlocking ourselves as we
3550 * might trigger an activation ourselves we can't fulfill */
3551 log_set_prohibit_ipc(true);
3552 log_close_journal();
3553 }
f1dd0c3f
LP		 3554}
3555
d450b6f2 3556void manager_set_show_status(Manager *m, ShowStatus mode) {
27d340c7 3557 assert(m);
d450b6f2 3558 assert(IN_SET(mode, SHOW_STATUS_AUTO, SHOW_STATUS_NO, SHOW_STATUS_YES, SHOW_STATUS_TEMPORARY));
27d340c7 3559
463d0d15 3560 if (!MANAGER_IS_SYSTEM(m))
27d340c7
LP		 3561 return;
3562
76b6f3f6
ZJS		 3563 if (m->show_status != mode)
3564 log_debug("%s showing of status.",
3565 mode == SHOW_STATUS_NO ? "Disabling" : "Enabling");
d450b6f2 3566 m->show_status = mode;
27d340c7 3567
d450b6f2 3568 if (mode > 0)
ac5b0c13 3569 (void) touch("/run/systemd/show-status");
27d340c7 3570 else
ac5b0c13 3571 (void) unlink("/run/systemd/show-status");
27d340c7
LP		 3572}
3573
127d5fd1 3574static bool manager_get_show_status(Manager *m, StatusType type) {
27d340c7
LP		 3575 assert(m);
3576
463d0d15 3577 if (!MANAGER_IS_SYSTEM(m))
27d340c7
LP		 3578 return false;
3579
31a7eb86
ZJS		 3580 if (m->no_console_output)
3581 return false;
3582
d81afec1 3583 if (!IN_SET(manager_state(m), MANAGER_INITIALIZING, MANAGER_STARTING, MANAGER_STOPPING))
08510627
LP		 3584 return false;
3585
e46b13c8 3586 /* If we cannot find out the status properly, just proceed. */
ebc5788e 3587 if (type != STATUS_TYPE_EMERGENCY && manager_check_ask_password(m) > 0)
e46b13c8
ZJS		 3588 return false;
3589
46fb617b 3590 return m->show_status > 0;
27d340c7 3591}
68b29a9f 3592
7d5ceb64
FB		 3593const char *manager_get_confirm_spawn(Manager *m) {
3594 static int last_errno = 0;
3595 const char *vc = m->confirm_spawn;
3596 struct stat st;
3597 int r;
3598
3599 /* Here's the deal: we want to test the validity of the console but don't want
3600 * PID1 to go through the whole console process which might block. But we also
3601 * want to warn the user only once if something is wrong with the console so we
3602 * cannot do the sanity checks after spawning our children. So here we simply do
3603 * really basic tests to hopefully trap common errors.
3604 *
3605 * If the console suddenly disappear at the time our children will really it
3606 * then they will simply fail to acquire it and a positive answer will be
3607 * assumed. New children will fallback to /dev/console though.
3608 *
3609 * Note: TTYs are devices that can come and go any time, and frequently aren't
3610 * available yet during early boot (consider a USB rs232 dongle...). If for any
3611 * reason the configured console is not ready, we fallback to the default
3612 * console. */
3613
3614 if (!vc || path_equal(vc, "/dev/console"))
3615 return vc;
3616
3617 r = stat(vc, &st);
3618 if (r < 0)
3619 goto fail;
3620
3621 if (!S_ISCHR(st.st_mode)) {
3622 errno = ENOTTY;
3623 goto fail;
3624 }
3625
3626 last_errno = 0;
3627 return vc;
3628fail:
3629 if (last_errno != errno) {
3630 last_errno = errno;
3631 log_warning_errno(errno, "Failed to open %s: %m, using default console", vc);
3632 }
3633 return "/dev/console";
3634}
3635
e2680723
LP		 3636void manager_set_first_boot(Manager *m, bool b) {
3637 assert(m);
3638
463d0d15 3639 if (!MANAGER_IS_SYSTEM(m))
e2680723
LP		 3640 return;
3641
ae2a2c53
LP		 3642 if (m->first_boot != (int) b) {
3643 if (b)
3644 (void) touch("/run/systemd/first-boot");
3645 else
3646 (void) unlink("/run/systemd/first-boot");
3647 }
e2680723 3648
ae2a2c53 3649 m->first_boot = b;
e2680723
LP		 3650}
3651
b0eb2944
FB		 3652void manager_disable_confirm_spawn(void) {
3653 (void) touch("/run/systemd/confirm_spawn_disabled");
3654}
3655
3656bool manager_is_confirm_spawn_disabled(Manager *m) {
3657 if (!m->confirm_spawn)
3658 return true;
3659
3660 return access("/run/systemd/confirm_spawn_disabled", F_OK) >= 0;
3661}
3662
127d5fd1 3663void manager_status_printf(Manager *m, StatusType type, const char *status, const char *format, ...) {
25cee550
MS		 3664 va_list ap;
3665
cb6531be
ZJS		 3666 /* If m is NULL, assume we're after shutdown and let the messages through. */
3667
3668 if (m && !manager_get_show_status(m, type))
25cee550
MS		 3669 return;
3670
03b717a3
MS		 3671 /* XXX We should totally drop the check for ephemeral here
3672 * and thus effectively make 'Type=idle' pointless. */
cb6531be 3673 if (type == STATUS_TYPE_EPHEMERAL && m && m->n_on_console > 0)
03b717a3
MS		 3674 return;
3675
25cee550 3676 va_start(ap, format);
127d5fd1 3677 status_vprintf(status, true, type == STATUS_TYPE_EPHEMERAL, format, ap);
25cee550
MS		 3678 va_end(ap);
3679}
3680
a57f7e2c
LP		 3681Set *manager_get_units_requiring_mounts_for(Manager *m, const char *path) {
3682 char p[strlen(path)+1];
3683
3684 assert(m);
3685 assert(path);
3686
3687 strcpy(p, path);
3688 path_kill_slashes(p);
3689
3690 return hashmap_get(m->units_requiring_mounts_for, streq(p, "/") ? "" : p);
3691}
e66cf1a3 3692
19bbdd98 3693void manager_set_exec_params(Manager *m, ExecParameters *p) {
f755e3b7 3694 assert(m);
3536f49e
YW		 3695 assert(p);
3696
3697 p->environment = m->environment;
3698 p->confirm_spawn = manager_get_confirm_spawn(m);
3699 p->cgroup_supported = m->cgroup_supported;
3700 p->prefix = m->prefix;
e66cf1a3 3701
8679efde 3702 SET_FLAG(p->flags, EXEC_PASS_LOG_UNIT|EXEC_CHOWN_DIRECTORIES, MANAGER_IS_SYSTEM(m));
e66cf1a3 3703}
f755e3b7 3704
5269eb6b 3705int manager_update_failed_units(Manager *m, Unit *u, bool failed) {
03455c28 3706 unsigned size;
5269eb6b 3707 int r;
03455c28
LDM		 3708
3709 assert(m);
3710 assert(u->manager == m);
3711
3712 size = set_size(m->failed_units);
3713
9fff8981 3714 if (failed) {
5269eb6b
LP		 3715 r = set_ensure_allocated(&m->failed_units, NULL);
3716 if (r < 0)
3717 return log_oom();
3718
9fff8981 3719 if (set_put(m->failed_units, u) < 0)
5269eb6b 3720 return log_oom();
9fff8981 3721 } else
5269eb6b 3722 (void) set_remove(m->failed_units, u);
03455c28
LDM		 3723
3724 if (set_size(m->failed_units) != size)
3725 bus_manager_send_change_signal(m);
5269eb6b
LP		 3726
3727 return 0;
03455c28
LDM		 3728}
3729
f755e3b7
LP		 3730ManagerState manager_state(Manager *m) {
3731 Unit *u;
3732
3733 assert(m);
3734
3735 /* Did we ever finish booting? If not then we are still starting up */
49d5666c 3736 if (!MANAGER_IS_FINISHED(m)) {
d81afec1
LP		 3737
3738 u = manager_get_unit(m, SPECIAL_BASIC_TARGET);
3739 if (!u || !UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(u)))
3740 return MANAGER_INITIALIZING;
3741
f755e3b7 3742 return MANAGER_STARTING;
d81afec1 3743 }
f755e3b7 3744
e68537f0 3745 /* Is the special shutdown target active or queued? If so, we are in shutdown state */
f755e3b7 3746 u = manager_get_unit(m, SPECIAL_SHUTDOWN_TARGET);
706424c2 3747 if (u && unit_active_or_pending(u))
f755e3b7
LP		 3748 return MANAGER_STOPPING;
3749
45a7b16b
LP		 3750 if (MANAGER_IS_SYSTEM(m)) {
3751 /* Are the rescue or emergency targets active or queued? If so we are in maintenance state */
3752 u = manager_get_unit(m, SPECIAL_RESCUE_TARGET);
3753 if (u && unit_active_or_pending(u))
3754 return MANAGER_MAINTENANCE;
f755e3b7 3755
45a7b16b
LP		 3756 u = manager_get_unit(m, SPECIAL_EMERGENCY_TARGET);
3757 if (u && unit_active_or_pending(u))
3758 return MANAGER_MAINTENANCE;
3759 }
f755e3b7
LP		 3760
3761 /* Are there any failed units? If so, we are in degraded mode */
3762 if (set_size(m->failed_units) > 0)
3763 return MANAGER_DEGRADED;
3764
3765 return MANAGER_RUNNING;
3766}
3767
00d9ef85
LP		 3768#define DESTROY_IPC_FLAG (UINT32_C(1) << 31)
3769
3770static void manager_unref_uid_internal(
3771 Manager *m,
3772 Hashmap **uid_refs,
3773 uid_t uid,
3774 bool destroy_now,
3775 int (*_clean_ipc)(uid_t uid)) {
3776
3777 uint32_t c, n;
3778
3779 assert(m);
3780 assert(uid_refs);
3781 assert(uid_is_valid(uid));
3782 assert(_clean_ipc);
3783
3784 /* A generic implementation, covering both manager_unref_uid() and manager_unref_gid(), under the assumption
3785 * that uid_t and gid_t are actually defined the same way, with the same validity rules.
3786 *
3787 * We store a hashmap where the UID/GID is they key and the value is a 32bit reference counter, whose highest
3788 * bit is used as flag for marking UIDs/GIDs whose IPC objects to remove when the last reference to the UID/GID
3789 * is dropped. The flag is set to on, once at least one reference from a unit where RemoveIPC= is set is added
3790 * on a UID/GID. It is reset when the UID's/GID's reference counter drops to 0 again. */
3791
3792 assert_cc(sizeof(uid_t) == sizeof(gid_t));
3793 assert_cc(UID_INVALID == (uid_t) GID_INVALID);
3794
3795 if (uid == 0) /* We don't keep track of root, and will never destroy it */
3796 return;
3797
3798 c = PTR_TO_UINT32(hashmap_get(*uid_refs, UID_TO_PTR(uid)));
3799
3800 n = c & ~DESTROY_IPC_FLAG;
3801 assert(n > 0);
3802 n--;
3803
3804 if (destroy_now && n == 0) {
3805 hashmap_remove(*uid_refs, UID_TO_PTR(uid));
3806
3807 if (c & DESTROY_IPC_FLAG) {
3808 log_debug("%s " UID_FMT " is no longer referenced, cleaning up its IPC.",
3809 _clean_ipc == clean_ipc_by_uid ? "UID" : "GID",
3810 uid);
3811 (void) _clean_ipc(uid);
3812 }
3813 } else {
3814 c = n | (c & DESTROY_IPC_FLAG);
3815 assert_se(hashmap_update(*uid_refs, UID_TO_PTR(uid), UINT32_TO_PTR(c)) >= 0);
3816 }
3817}
3818
3819void manager_unref_uid(Manager *m, uid_t uid, bool destroy_now) {
3820 manager_unref_uid_internal(m, &m->uid_refs, uid, destroy_now, clean_ipc_by_uid);
3821}
3822
3823void manager_unref_gid(Manager *m, gid_t gid, bool destroy_now) {
3824 manager_unref_uid_internal(m, &m->gid_refs, (uid_t) gid, destroy_now, clean_ipc_by_gid);
3825}
3826
3827static int manager_ref_uid_internal(
3828 Manager *m,
3829 Hashmap **uid_refs,
3830 uid_t uid,
3831 bool clean_ipc) {
3832
3833 uint32_t c, n;
3834 int r;
3835
3836 assert(m);
3837 assert(uid_refs);
3838 assert(uid_is_valid(uid));
3839
3840 /* A generic implementation, covering both manager_ref_uid() and manager_ref_gid(), under the assumption
3841 * that uid_t and gid_t are actually defined the same way, with the same validity rules. */
3842
3843 assert_cc(sizeof(uid_t) == sizeof(gid_t));
3844 assert_cc(UID_INVALID == (uid_t) GID_INVALID);
3845
3846 if (uid == 0) /* We don't keep track of root, and will never destroy it */
3847 return 0;
3848
3849 r = hashmap_ensure_allocated(uid_refs, &trivial_hash_ops);
3850 if (r < 0)
3851 return r;
3852
3853 c = PTR_TO_UINT32(hashmap_get(*uid_refs, UID_TO_PTR(uid)));
3854
3855 n = c & ~DESTROY_IPC_FLAG;
3856 n++;
3857
3858 if (n & DESTROY_IPC_FLAG) /* check for overflow */
3859 return -EOVERFLOW;
3860
3861 c = n | (c & DESTROY_IPC_FLAG) | (clean_ipc ? DESTROY_IPC_FLAG : 0);
3862
3863 return hashmap_replace(*uid_refs, UID_TO_PTR(uid), UINT32_TO_PTR(c));
3864}
3865
3866int manager_ref_uid(Manager *m, uid_t uid, bool clean_ipc) {
3867 return manager_ref_uid_internal(m, &m->uid_refs, uid, clean_ipc);
3868}
3869
3870int manager_ref_gid(Manager *m, gid_t gid, bool clean_ipc) {
3871 return manager_ref_uid_internal(m, &m->gid_refs, (uid_t) gid, clean_ipc);
3872}
3873
3874static void manager_vacuum_uid_refs_internal(
3875 Manager *m,
3876 Hashmap **uid_refs,
3877 int (*_clean_ipc)(uid_t uid)) {
3878
3879 Iterator i;
3880 void *p, *k;
3881
3882 assert(m);
3883 assert(uid_refs);
3884 assert(_clean_ipc);
3885
3886 HASHMAP_FOREACH_KEY(p, k, *uid_refs, i) {
3887 uint32_t c, n;
3888 uid_t uid;
3889
3890 uid = PTR_TO_UID(k);
3891 c = PTR_TO_UINT32(p);
3892
3893 n = c & ~DESTROY_IPC_FLAG;
3894 if (n > 0)
3895 continue;
3896
3897 if (c & DESTROY_IPC_FLAG) {
3898 log_debug("Found unreferenced %s " UID_FMT " after reload/reexec. Cleaning up.",
3899 _clean_ipc == clean_ipc_by_uid ? "UID" : "GID",
3900 uid);
3901 (void) _clean_ipc(uid);
3902 }
3903
3904 assert_se(hashmap_remove(*uid_refs, k) == p);
3905 }
3906}
3907
3908void manager_vacuum_uid_refs(Manager *m) {
3909 manager_vacuum_uid_refs_internal(m, &m->uid_refs, clean_ipc_by_uid);
3910}
3911
3912void manager_vacuum_gid_refs(Manager *m) {
3913 manager_vacuum_uid_refs_internal(m, &m->gid_refs, clean_ipc_by_gid);
3914}
3915
3916static void manager_serialize_uid_refs_internal(
3917 Manager *m,
3918 FILE *f,
3919 Hashmap **uid_refs,
3920 const char *field_name) {
3921
3922 Iterator i;
3923 void *p, *k;
3924
3925 assert(m);
3926 assert(f);
3927 assert(uid_refs);
3928 assert(field_name);
3929
3930 /* Serialize the UID reference table. Or actually, just the IPC destruction flag of it, as the actual counter
3931 * of it is better rebuild after a reload/reexec. */
3932
3933 HASHMAP_FOREACH_KEY(p, k, *uid_refs, i) {
3934 uint32_t c;
3935 uid_t uid;
3936
3937 uid = PTR_TO_UID(k);
3938 c = PTR_TO_UINT32(p);
3939
3940 if (!(c & DESTROY_IPC_FLAG))
3941 continue;
3942
3943 fprintf(f, "%s=" UID_FMT "\n", field_name, uid);
3944 }
3945}
3946
3947void manager_serialize_uid_refs(Manager *m, FILE *f) {
3948 manager_serialize_uid_refs_internal(m, f, &m->uid_refs, "destroy-ipc-uid");
3949}
3950
3951void manager_serialize_gid_refs(Manager *m, FILE *f) {
3952 manager_serialize_uid_refs_internal(m, f, &m->gid_refs, "destroy-ipc-gid");
3953}
3954
3955static void manager_deserialize_uid_refs_one_internal(
3956 Manager *m,
3957 Hashmap** uid_refs,
3958 const char *value) {
3959
3960 uid_t uid;
3961 uint32_t c;
3962 int r;
3963
3964 assert(m);
3965 assert(uid_refs);
3966 assert(value);
3967
3968 r = parse_uid(value, &uid);
3969 if (r < 0 || uid == 0) {
3970 log_debug("Unable to parse UID reference serialization");
3971 return;
3972 }
3973
3974 r = hashmap_ensure_allocated(uid_refs, &trivial_hash_ops);
3975 if (r < 0) {
3976 log_oom();
3977 return;
3978 }
3979
3980 c = PTR_TO_UINT32(hashmap_get(*uid_refs, UID_TO_PTR(uid)));
3981 if (c & DESTROY_IPC_FLAG)
3982 return;
3983
3984 c |= DESTROY_IPC_FLAG;
3985
3986 r = hashmap_replace(*uid_refs, UID_TO_PTR(uid), UINT32_TO_PTR(c));
3987 if (r < 0) {
3988 log_debug("Failed to add UID reference entry");
3989 return;
3990 }
3991}
3992
3993void manager_deserialize_uid_refs_one(Manager *m, const char *value) {
3994 manager_deserialize_uid_refs_one_internal(m, &m->uid_refs, value);
3995}
3996
3997void manager_deserialize_gid_refs_one(Manager *m, const char *value) {
3998 manager_deserialize_uid_refs_one_internal(m, &m->gid_refs, value);
3999}
4000
4001int manager_dispatch_user_lookup_fd(sd_event_source *source, int fd, uint32_t revents, void *userdata) {
4002 struct buffer {
4003 uid_t uid;
4004 gid_t gid;
4005 char unit_name[UNIT_NAME_MAX+1];
4006 } _packed_ buffer;
4007
4008 Manager *m = userdata;
4009 ssize_t l;
4010 size_t n;
4011 Unit *u;
4012
4013 assert_se(source);
4014 assert_se(m);
4015
4016 /* Invoked whenever a child process succeeded resolving its user/group to use and sent us the resulting UID/GID
4017 * in a datagram. We parse the datagram here and pass it off to the unit, so that it can add a reference to the
4018 * UID/GID so that it can destroy the UID/GID's IPC objects when the reference counter drops to 0. */
4019
4020 l = recv(fd, &buffer, sizeof(buffer), MSG_DONTWAIT);
4021 if (l < 0) {
4c701096 4022 if (IN_SET(errno, EINTR, EAGAIN))
00d9ef85
LP		 4023 return 0;
4024
4025 return log_error_errno(errno, "Failed to read from user lookup fd: %m");
4026 }
4027
4028 if ((size_t) l <= offsetof(struct buffer, unit_name)) {
4029 log_warning("Received too short user lookup message, ignoring.");
4030 return 0;
4031 }
4032
4033 if ((size_t) l > offsetof(struct buffer, unit_name) + UNIT_NAME_MAX) {
4034 log_warning("Received too long user lookup message, ignoring.");
4035 return 0;
4036 }
4037
4038 if (!uid_is_valid(buffer.uid) && !gid_is_valid(buffer.gid)) {
4039 log_warning("Got user lookup message with invalid UID/GID pair, ignoring.");
4040 return 0;
4041 }
4042
4043 n = (size_t) l - offsetof(struct buffer, unit_name);
4044 if (memchr(buffer.unit_name, 0, n)) {
4045 log_warning("Received lookup message with embedded NUL character, ignoring.");
4046 return 0;
4047 }
4048
4049 buffer.unit_name[n] = 0;
4050 u = manager_get_unit(m, buffer.unit_name);
4051 if (!u) {
4052 log_debug("Got user lookup message but unit doesn't exist, ignoring.");
4053 return 0;
4054 }
4055
4056 log_unit_debug(u, "User lookup succeeded: uid=" UID_FMT " gid=" GID_FMT, buffer.uid, buffer.gid);
4057
4058 unit_notify_user_lookup(u, buffer.uid, buffer.gid);
4059 return 0;
4060}
4061
af6b0ecc 4062char *manager_taint_string(Manager *m) {
90d7464d 4063 _cleanup_free_ char *destination = NULL, *overflowuid = NULL, *overflowgid = NULL;
af6b0ecc
LP		 4064 char *buf, *e;
4065 int r;
4066
198ce932
ZJS		 4067 /* Returns a "taint string", e.g. "local-hwclock:var-run-bad".
4068 * Only things that are detected at runtime should be tagged
4069 * here. For stuff that is set during compilation, emit a warning
4070 * in the configuration phase. */
4071
af6b0ecc
LP		 4072 assert(m);
4073
4074 buf = new(char, sizeof("split-usr:"
4075 "cgroups-missing:"
4076 "local-hwclock:"
4077 "var-run-bad:"
90d7464d
LP		 4078 "overflowuid-not-65534:"
4079 "overflowgid-not-65534:"));
af6b0ecc
LP		 4080 if (!buf)
4081 return NULL;
4082
4083 e = buf;
0fd402b0 4084 buf[0] = 0;
af6b0ecc
LP		 4085
4086 if (m->taint_usr)
4087 e = stpcpy(e, "split-usr:");
4088
4089 if (access("/proc/cgroups", F_OK) < 0)
4090 e = stpcpy(e, "cgroups-missing:");
4091
4092 if (clock_is_localtime(NULL) > 0)
4093 e = stpcpy(e, "local-hwclock:");
4094
4095 r = readlink_malloc("/var/run", &destination);
4096 if (r < 0 || !PATH_IN_SET(destination, "../run", "/run"))
4097 e = stpcpy(e, "var-run-bad:");
4098
90d7464d
LP		 4099 r = read_one_line_file("/proc/sys/kernel/overflowuid", &overflowuid);
4100 if (r >= 0 && !streq(overflowuid, "65534"))
4101 e = stpcpy(e, "overflowuid-not-65534:");
4102
4103 r = read_one_line_file("/proc/sys/kernel/overflowgid", &overflowgid);
4104 if (r >= 0 && !streq(overflowgid, "65534"))
4105 e = stpcpy(e, "overflowgid-not-65534:");
4106
af6b0ecc
LP		 4107 /* remove the last ':' */
4108 if (e != buf)
4109 e[-1] = 0;
4110
4111 return buf;
4112}
4113
adefcf28
LP		 4114void manager_ref_console(Manager *m) {
4115 assert(m);
4116
4117 m->n_on_console++;
4118}
4119
4120void manager_unref_console(Manager *m) {
4121
4122 assert(m->n_on_console > 0);
4123 m->n_on_console--;
4124
4125 if (m->n_on_console == 0)
4126 m->no_console_output = false; /* unset no_console_output flag, since the console is definitely free now */
4127}
4128
f755e3b7 4129static const char *const manager_state_table[_MANAGER_STATE_MAX] = {
d81afec1 4130 [MANAGER_INITIALIZING] = "initializing",
f755e3b7
LP		 4131 [MANAGER_STARTING] = "starting",
4132 [MANAGER_RUNNING] = "running",
4133 [MANAGER_DEGRADED] = "degraded",
4134 [MANAGER_MAINTENANCE] = "maintenance",
4135 [MANAGER_STOPPING] = "stopping",
4136};
4137
4138DEFINE_STRING_TABLE_LOOKUP(manager_state, ManagerState);
9f9f0342
LP		 4139
4140static const char *const manager_timestamp_table[_MANAGER_TIMESTAMP_MAX] = {
4141 [MANAGER_TIMESTAMP_FIRMWARE] = "firmware",
4142 [MANAGER_TIMESTAMP_LOADER] = "loader",
4143 [MANAGER_TIMESTAMP_KERNEL] = "kernel",
4144 [MANAGER_TIMESTAMP_INITRD] = "initrd",
4145 [MANAGER_TIMESTAMP_USERSPACE] = "userspace",
4146 [MANAGER_TIMESTAMP_FINISH] = "finish",
4147 [MANAGER_TIMESTAMP_SECURITY_START] = "security-start",
4148 [MANAGER_TIMESTAMP_SECURITY_FINISH] = "security-finish",
4149 [MANAGER_TIMESTAMP_GENERATORS_START] = "generators-start",
4150 [MANAGER_TIMESTAMP_GENERATORS_FINISH] = "generators-finish",
4151 [MANAGER_TIMESTAMP_UNITS_LOAD_START] = "units-load-start",
4152 [MANAGER_TIMESTAMP_UNITS_LOAD_FINISH] = "units-load-finish",
4153};
4154
4155DEFINE_STRING_TABLE_LOOKUP(manager_timestamp, ManagerTimestamp);
Unnamed repository; edit this file 'description' to name the repository.