]>
Commit | Line | Data |
---|---|---|
f5e04665 LP |
1 | /*** |
2 | This file is part of systemd. | |
3 | ||
4 | Copyright 2012 Lennart Poettering | |
5 | ||
6 | systemd is free software; you can redistribute it and/or modify it | |
5430f7f2 LP |
7 | under the terms of the GNU Lesser General Public License as published by |
8 | the Free Software Foundation; either version 2.1 of the License, or | |
f5e04665 LP |
9 | (at your option) any later version. |
10 | ||
11 | systemd is distributed in the hope that it will be useful, but | |
12 | WITHOUT ANY WARRANTY; without even the implied warranty of | |
13 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU | |
5430f7f2 | 14 | Lesser General Public License for more details. |
f5e04665 | 15 | |
5430f7f2 | 16 | You should have received a copy of the GNU Lesser General Public License |
f5e04665 LP |
17 | along with systemd; If not, see <http://www.gnu.org/licenses/>. |
18 | ***/ | |
19 | ||
20 | #include <errno.h> | |
803a3464 LP |
21 | #include <stdio.h> |
22 | #include <sys/prctl.h> | |
cacd6403 | 23 | #include <sys/xattr.h> |
4f5dd394 | 24 | #include <unistd.h> |
f5e04665 | 25 | |
4d229b31 UTL |
26 | #ifdef HAVE_ELFUTILS |
27 | # include <dwarf.h> | |
28 | # include <elfutils/libdwfl.h> | |
29 | #endif | |
30 | ||
f11943c5 LP |
31 | #include "sd-journal.h" |
32 | #include "sd-login.h" | |
4f5dd394 LP |
33 | |
34 | #include "acl-util.h" | |
b5efdb8a | 35 | #include "alloc-util.h" |
430f0182 | 36 | #include "capability-util.h" |
ba1261bc | 37 | #include "cgroup-util.h" |
4f5dd394 | 38 | #include "compress.h" |
34c10968 LP |
39 | #include "conf-parser.h" |
40 | #include "copy.h" | |
f11943c5 | 41 | #include "coredump-vacuum.h" |
a0956174 | 42 | #include "dirent-util.h" |
4f5dd394 | 43 | #include "escape.h" |
3ffd4af2 | 44 | #include "fd-util.h" |
4f5dd394 | 45 | #include "fileio.h" |
f4f15635 | 46 | #include "fs-util.h" |
afc5dbf3 | 47 | #include "io-util.h" |
4f5dd394 LP |
48 | #include "journald-native.h" |
49 | #include "log.h" | |
50 | #include "macro.h" | |
51 | #include "mkdir.h" | |
6bedfcbb | 52 | #include "parse-util.h" |
0b452006 | 53 | #include "process-util.h" |
4f5dd394 LP |
54 | #include "special.h" |
55 | #include "stacktrace.h" | |
8b43440b | 56 | #include "string-table.h" |
07630cea | 57 | #include "string-util.h" |
4f5dd394 | 58 | #include "strv.h" |
b1d4f8e1 | 59 | #include "user-util.h" |
4f5dd394 | 60 | #include "util.h" |
34727273 | 61 | |
34c10968 | 62 | /* The maximum size up to which we process coredumps */ |
59f448cf | 63 | #define PROCESS_SIZE_MAX ((uint64_t) (2LLU*1024LLU*1024LLU*1024LLU)) |
34c10968 LP |
64 | |
65 | /* The maximum size up to which we leave the coredump around on | |
66 | * disk */ | |
67 | #define EXTERNAL_SIZE_MAX PROCESS_SIZE_MAX | |
68 | ||
69 | /* The maximum size up to which we store the coredump in the | |
70 | * journal */ | |
71 | #define JOURNAL_SIZE_MAX ((size_t) (767LU*1024LU*1024LU)) | |
f5e04665 | 72 | |
c4aa09b0 | 73 | /* Make sure to not make this larger than the maximum journal entry |
874bc134 ZJS |
74 | * size. See DATA_SIZE_MAX in journald-native.c. */ |
75 | assert_cc(JOURNAL_SIZE_MAX <= DATA_SIZE_MAX); | |
f5e04665 LP |
76 | |
77 | enum { | |
1eef15b1 ZJS |
78 | INFO_PID, |
79 | INFO_UID, | |
80 | INFO_GID, | |
81 | INFO_SIGNAL, | |
82 | INFO_TIMESTAMP, | |
83 | INFO_COMM, | |
84 | INFO_EXE, | |
85 | _INFO_LEN | |
f5e04665 LP |
86 | }; |
87 | ||
34c10968 LP |
88 | typedef enum CoredumpStorage { |
89 | COREDUMP_STORAGE_NONE, | |
90 | COREDUMP_STORAGE_EXTERNAL, | |
91 | COREDUMP_STORAGE_JOURNAL, | |
92 | COREDUMP_STORAGE_BOTH, | |
93 | _COREDUMP_STORAGE_MAX, | |
94 | _COREDUMP_STORAGE_INVALID = -1 | |
95 | } CoredumpStorage; | |
96 | ||
34c10968 LP |
97 | static const char* const coredump_storage_table[_COREDUMP_STORAGE_MAX] = { |
98 | [COREDUMP_STORAGE_NONE] = "none", | |
99 | [COREDUMP_STORAGE_EXTERNAL] = "external", | |
100 | [COREDUMP_STORAGE_JOURNAL] = "journal", | |
101 | [COREDUMP_STORAGE_BOTH] = "both", | |
102 | }; | |
103 | ||
104 | DEFINE_PRIVATE_STRING_TABLE_LOOKUP(coredump_storage, CoredumpStorage); | |
8c9571d0 | 105 | static DEFINE_CONFIG_PARSE_ENUM(config_parse_coredump_storage, coredump_storage, CoredumpStorage, "Failed to parse storage setting"); |
34727273 ZJS |
106 | |
107 | static CoredumpStorage arg_storage = COREDUMP_STORAGE_EXTERNAL; | |
8c9571d0 | 108 | static bool arg_compress = true; |
59f448cf LP |
109 | static uint64_t arg_process_size_max = PROCESS_SIZE_MAX; |
110 | static uint64_t arg_external_size_max = EXTERNAL_SIZE_MAX; | |
34727273 | 111 | static size_t arg_journal_size_max = JOURNAL_SIZE_MAX; |
59f448cf LP |
112 | static uint64_t arg_keep_free = (uint64_t) -1; |
113 | static uint64_t arg_max_use = (uint64_t) -1; | |
34c10968 LP |
114 | |
115 | static int parse_config(void) { | |
34c10968 | 116 | static const ConfigTableItem items[] = { |
8c9571d0 LP |
117 | { "Coredump", "Storage", config_parse_coredump_storage, 0, &arg_storage }, |
118 | { "Coredump", "Compress", config_parse_bool, 0, &arg_compress }, | |
59f448cf LP |
119 | { "Coredump", "ProcessSizeMax", config_parse_iec_uint64, 0, &arg_process_size_max }, |
120 | { "Coredump", "ExternalSizeMax", config_parse_iec_uint64, 0, &arg_external_size_max }, | |
8c9571d0 | 121 | { "Coredump", "JournalSizeMax", config_parse_iec_size, 0, &arg_journal_size_max }, |
59f448cf LP |
122 | { "Coredump", "KeepFree", config_parse_iec_uint64, 0, &arg_keep_free }, |
123 | { "Coredump", "MaxUse", config_parse_iec_uint64, 0, &arg_max_use }, | |
34c10968 LP |
124 | {} |
125 | }; | |
126 | ||
75eb6154 LP |
127 | return config_parse_many(PKGSYSCONFDIR "/coredump.conf", |
128 | CONF_PATHS_NULSTR("systemd/coredump.conf.d"), | |
301af7e4 JT |
129 | "Coredump\0", |
130 | config_item_table_lookup, items, | |
131 | false, NULL); | |
34c10968 LP |
132 | } |
133 | ||
134 | static int fix_acl(int fd, uid_t uid) { | |
135 | ||
136 | #ifdef HAVE_ACL | |
137 | _cleanup_(acl_freep) acl_t acl = NULL; | |
138 | acl_entry_t entry; | |
139 | acl_permset_t permset; | |
709f6e46 | 140 | int r; |
34c10968 | 141 | |
b59233e6 LP |
142 | assert(fd >= 0); |
143 | ||
34c10968 LP |
144 | if (uid <= SYSTEM_UID_MAX) |
145 | return 0; | |
146 | ||
147 | /* Make sure normal users can read (but not write or delete) | |
148 | * their own coredumps */ | |
149 | ||
150 | acl = acl_get_fd(fd); | |
4a62c710 MS |
151 | if (!acl) |
152 | return log_error_errno(errno, "Failed to get ACL: %m"); | |
34c10968 LP |
153 | |
154 | if (acl_create_entry(&acl, &entry) < 0 || | |
155 | acl_set_tag_type(entry, ACL_USER) < 0 || | |
156 | acl_set_qualifier(entry, &uid) < 0) { | |
56f64d95 | 157 | log_error_errno(errno, "Failed to patch ACL: %m"); |
34c10968 LP |
158 | return -errno; |
159 | } | |
160 | ||
161 | if (acl_get_permset(entry, &permset) < 0 || | |
709f6e46 MS |
162 | acl_add_perm(permset, ACL_READ) < 0) |
163 | return log_warning_errno(errno, "Failed to patch ACL: %m"); | |
164 | ||
165 | r = calc_acl_mask_if_needed(&acl); | |
166 | if (r < 0) | |
167 | return log_warning_errno(r, "Failed to patch ACL: %m"); | |
34c10968 | 168 | |
4a62c710 MS |
169 | if (acl_set_fd(fd, acl) < 0) |
170 | return log_error_errno(errno, "Failed to apply ACL: %m"); | |
34c10968 LP |
171 | #endif |
172 | ||
173 | return 0; | |
174 | } | |
175 | ||
1eef15b1 | 176 | static int fix_xattr(int fd, const char *info[_INFO_LEN]) { |
0cd77f97 | 177 | |
1eef15b1 ZJS |
178 | static const char * const xattrs[_INFO_LEN] = { |
179 | [INFO_PID] = "user.coredump.pid", | |
180 | [INFO_UID] = "user.coredump.uid", | |
181 | [INFO_GID] = "user.coredump.gid", | |
182 | [INFO_SIGNAL] = "user.coredump.signal", | |
183 | [INFO_TIMESTAMP] = "user.coredump.timestamp", | |
184 | [INFO_COMM] = "user.coredump.comm", | |
185 | [INFO_EXE] = "user.coredump.exe", | |
0cd77f97 LP |
186 | }; |
187 | ||
34c10968 | 188 | int r = 0; |
0cd77f97 | 189 | unsigned i; |
34c10968 | 190 | |
b59233e6 LP |
191 | assert(fd >= 0); |
192 | ||
1eef15b1 | 193 | /* Attach some metadata to coredumps via extended |
34c10968 LP |
194 | * attributes. Just because we can. */ |
195 | ||
1eef15b1 ZJS |
196 | for (i = 0; i < _INFO_LEN; i++) { |
197 | int k; | |
198 | ||
199 | if (isempty(info[i]) || !xattrs[i]) | |
0cd77f97 | 200 | continue; |
34c10968 | 201 | |
1eef15b1 ZJS |
202 | k = fsetxattr(fd, xattrs[i], info[i], strlen(info[i]), XATTR_CREATE); |
203 | if (k < 0 && r == 0) | |
34c10968 | 204 | r = -errno; |
0cd77f97 | 205 | } |
34c10968 LP |
206 | |
207 | return r; | |
208 | } | |
209 | ||
b0b21dce | 210 | #define filename_escape(s) xescape((s), "./ ") |
34c10968 | 211 | |
b59233e6 LP |
212 | static int fix_permissions( |
213 | int fd, | |
214 | const char *filename, | |
215 | const char *target, | |
216 | const char *info[_INFO_LEN], | |
217 | uid_t uid) { | |
218 | ||
219 | assert(fd >= 0); | |
220 | assert(filename); | |
221 | assert(target); | |
222 | assert(info); | |
cfd652ed ZJS |
223 | |
224 | /* Ignore errors on these */ | |
225 | fchmod(fd, 0640); | |
226 | fix_acl(fd, uid); | |
227 | fix_xattr(fd, info); | |
228 | ||
4a62c710 MS |
229 | if (fsync(fd) < 0) |
230 | return log_error_errno(errno, "Failed to sync coredump %s: %m", filename); | |
cfd652ed | 231 | |
4a62c710 MS |
232 | if (rename(filename, target) < 0) |
233 | return log_error_errno(errno, "Failed to rename coredump %s -> %s: %m", filename, target); | |
cfd652ed ZJS |
234 | |
235 | return 0; | |
236 | } | |
237 | ||
59f448cf | 238 | static int maybe_remove_external_coredump(const char *filename, uint64_t size) { |
cfd652ed | 239 | |
b59233e6 | 240 | /* Returns 1 if might remove, 0 if will not remove, < 0 on error. */ |
cfd652ed ZJS |
241 | |
242 | if (IN_SET(arg_storage, COREDUMP_STORAGE_EXTERNAL, COREDUMP_STORAGE_BOTH) && | |
243 | size <= arg_external_size_max) | |
244 | return 0; | |
245 | ||
246 | if (!filename) | |
247 | return 1; | |
248 | ||
4a62c710 MS |
249 | if (unlink(filename) < 0 && errno != ENOENT) |
250 | return log_error_errno(errno, "Failed to unlink %s: %m", filename); | |
cfd652ed ZJS |
251 | |
252 | return 1; | |
253 | } | |
254 | ||
b59233e6 LP |
255 | static int make_filename(const char *info[_INFO_LEN], char **ret) { |
256 | _cleanup_free_ char *c = NULL, *u = NULL, *p = NULL, *t = NULL; | |
a7f7d1bd | 257 | sd_id128_t boot = {}; |
34c10968 LP |
258 | int r; |
259 | ||
1eef15b1 | 260 | assert(info); |
34c10968 | 261 | |
1eef15b1 | 262 | c = filename_escape(info[INFO_COMM]); |
34c10968 | 263 | if (!c) |
b59233e6 | 264 | return -ENOMEM; |
34c10968 | 265 | |
0dc5d23c LP |
266 | u = filename_escape(info[INFO_UID]); |
267 | if (!u) | |
b59233e6 | 268 | return -ENOMEM; |
34c10968 LP |
269 | |
270 | r = sd_id128_get_boot(&boot); | |
b59233e6 | 271 | if (r < 0) |
34c10968 | 272 | return r; |
34c10968 | 273 | |
b59233e6 LP |
274 | p = filename_escape(info[INFO_PID]); |
275 | if (!p) | |
276 | return -ENOMEM; | |
277 | ||
278 | t = filename_escape(info[INFO_TIMESTAMP]); | |
279 | if (!t) | |
280 | return -ENOMEM; | |
281 | ||
282 | if (asprintf(ret, | |
0dc5d23c | 283 | "/var/lib/systemd/coredump/core.%s.%s." SD_ID128_FORMAT_STR ".%s.%s000000", |
34c10968 | 284 | c, |
0dc5d23c | 285 | u, |
34c10968 LP |
286 | SD_ID128_FORMAT_VAL(boot), |
287 | p, | |
b59233e6 LP |
288 | t) < 0) |
289 | return -ENOMEM; | |
290 | ||
291 | return 0; | |
292 | } | |
293 | ||
294 | static int save_external_coredump( | |
295 | const char *info[_INFO_LEN], | |
296 | uid_t uid, | |
297 | char **ret_filename, | |
5f3e0a74 HW |
298 | int *ret_node_fd, |
299 | int *ret_data_fd, | |
59f448cf | 300 | uint64_t *ret_size) { |
b59233e6 LP |
301 | |
302 | _cleanup_free_ char *fn = NULL, *tmp = NULL; | |
303 | _cleanup_close_ int fd = -1; | |
304 | struct stat st; | |
305 | int r; | |
306 | ||
307 | assert(info); | |
308 | assert(ret_filename); | |
5f3e0a74 HW |
309 | assert(ret_node_fd); |
310 | assert(ret_data_fd); | |
b59233e6 LP |
311 | assert(ret_size); |
312 | ||
313 | r = make_filename(info, &fn); | |
23bbb0de MS |
314 | if (r < 0) |
315 | return log_error_errno(r, "Failed to determine coredump file name: %m"); | |
34c10968 | 316 | |
14bcf25c | 317 | r = tempfn_random(fn, NULL, &tmp); |
ae6c3cc0 LP |
318 | if (r < 0) |
319 | return log_error_errno(r, "Failed to determine temporary file name: %m"); | |
803a3464 | 320 | |
d2e54fae | 321 | mkdir_p_label("/var/lib/systemd/coredump", 0755); |
803a3464 | 322 | |
34c10968 | 323 | fd = open(tmp, O_CREAT|O_EXCL|O_RDWR|O_CLOEXEC|O_NOCTTY|O_NOFOLLOW, 0640); |
4a62c710 MS |
324 | if (fd < 0) |
325 | return log_error_errno(errno, "Failed to create coredump file %s: %m", tmp); | |
803a3464 | 326 | |
7430ec6a | 327 | r = copy_bytes(STDIN_FILENO, fd, arg_process_size_max, false); |
84ee0960 | 328 | if (r == -EFBIG) { |
0dc5d23c | 329 | log_error("Coredump of %s (%s) is larger than configured processing limit, refusing.", info[INFO_PID], info[INFO_COMM]); |
93240d3a LP |
330 | goto fail; |
331 | } else if (IN_SET(r, -EDQUOT, -ENOSPC)) { | |
0dc5d23c | 332 | log_error("Not enough disk space for coredump of %s (%s), refusing.", info[INFO_PID], info[INFO_COMM]); |
93240d3a LP |
333 | goto fail; |
334 | } else if (r < 0) { | |
da927ba9 | 335 | log_error_errno(r, "Failed to dump coredump to file: %m"); |
34c10968 LP |
336 | goto fail; |
337 | } | |
803a3464 | 338 | |
34c10968 | 339 | if (fstat(fd, &st) < 0) { |
56f64d95 | 340 | log_error_errno(errno, "Failed to fstat coredump %s: %m", tmp); |
34c10968 LP |
341 | goto fail; |
342 | } | |
343 | ||
7849c2ac | 344 | if (lseek(fd, 0, SEEK_SET) == (off_t) -1) { |
56f64d95 | 345 | log_error_errno(errno, "Failed to seek on %s: %m", tmp); |
b59233e6 | 346 | goto fail; |
7849c2ac TA |
347 | } |
348 | ||
d89c8fdf | 349 | #if defined(HAVE_XZ) || defined(HAVE_LZ4) |
cfd652ed | 350 | /* If we will remove the coredump anyway, do not compress. */ |
34727273 | 351 | if (maybe_remove_external_coredump(NULL, st.st_size) == 0 |
8c9571d0 | 352 | && arg_compress) { |
cfd652ed | 353 | |
b59233e6 LP |
354 | _cleanup_free_ char *fn_compressed = NULL, *tmp_compressed = NULL; |
355 | _cleanup_close_ int fd_compressed = -1; | |
cfd652ed | 356 | |
d89c8fdf | 357 | fn_compressed = strappend(fn, COMPRESSED_EXT); |
b59233e6 | 358 | if (!fn_compressed) { |
d89c8fdf | 359 | log_oom(); |
cfd652ed ZJS |
360 | goto uncompressed; |
361 | } | |
362 | ||
14bcf25c | 363 | r = tempfn_random(fn_compressed, NULL, &tmp_compressed); |
ae6c3cc0 LP |
364 | if (r < 0) { |
365 | log_error_errno(r, "Failed to determine temporary file name for %s: %m", fn_compressed); | |
b59233e6 | 366 | goto uncompressed; |
cfd652ed ZJS |
367 | } |
368 | ||
b59233e6 LP |
369 | fd_compressed = open(tmp_compressed, O_CREAT|O_EXCL|O_RDWR|O_CLOEXEC|O_NOCTTY|O_NOFOLLOW, 0640); |
370 | if (fd_compressed < 0) { | |
56f64d95 | 371 | log_error_errno(errno, "Failed to create file %s: %m", tmp_compressed); |
b59233e6 | 372 | goto uncompressed; |
cfd652ed ZJS |
373 | } |
374 | ||
d89c8fdf | 375 | r = compress_stream(fd, fd_compressed, -1); |
b59233e6 | 376 | if (r < 0) { |
da927ba9 | 377 | log_error_errno(r, "Failed to compress %s: %m", tmp_compressed); |
b59233e6 LP |
378 | goto fail_compressed; |
379 | } | |
380 | ||
381 | r = fix_permissions(fd_compressed, tmp_compressed, fn_compressed, info, uid); | |
cfd652ed | 382 | if (r < 0) |
b59233e6 LP |
383 | goto fail_compressed; |
384 | ||
385 | /* OK, this worked, we can get rid of the uncompressed version now */ | |
386 | unlink_noerrno(tmp); | |
cfd652ed | 387 | |
59f448cf | 388 | *ret_filename = fn_compressed; /* compressed */ |
5f3e0a74 HW |
389 | *ret_node_fd = fd_compressed; /* compressed */ |
390 | *ret_data_fd = fd; /* uncompressed */ | |
59f448cf | 391 | *ret_size = (uint64_t) st.st_size; /* uncompressed */ |
cfd652ed | 392 | |
b59233e6 | 393 | fn_compressed = NULL; |
5f3e0a74 | 394 | fd = fd_compressed = -1; |
cfd652ed ZJS |
395 | |
396 | return 0; | |
397 | ||
b59233e6 LP |
398 | fail_compressed: |
399 | unlink_noerrno(tmp_compressed); | |
34c10968 | 400 | } |
cfd652ed ZJS |
401 | |
402 | uncompressed: | |
3b1a55e1 | 403 | #endif |
5f3e0a74 | 404 | |
cfd652ed ZJS |
405 | r = fix_permissions(fd, tmp, fn, info, uid); |
406 | if (r < 0) | |
407 | goto fail; | |
34c10968 LP |
408 | |
409 | *ret_filename = fn; | |
5f3e0a74 HW |
410 | *ret_data_fd = fd; |
411 | *ret_node_fd = -1; | |
59f448cf | 412 | *ret_size = (uint64_t) st.st_size; |
34c10968 LP |
413 | |
414 | fn = NULL; | |
415 | fd = -1; | |
416 | ||
417 | return 0; | |
418 | ||
419 | fail: | |
420 | unlink_noerrno(tmp); | |
421 | return r; | |
422 | } | |
423 | ||
424 | static int allocate_journal_field(int fd, size_t size, char **ret, size_t *ret_size) { | |
425 | _cleanup_free_ char *field = NULL; | |
426 | ssize_t n; | |
427 | ||
8d4e028f | 428 | assert(fd >= 0); |
34c10968 LP |
429 | assert(ret); |
430 | assert(ret_size); | |
431 | ||
4a62c710 MS |
432 | if (lseek(fd, 0, SEEK_SET) == (off_t) -1) |
433 | return log_warning_errno(errno, "Failed to seek: %m"); | |
803a3464 | 434 | |
34c10968 LP |
435 | field = malloc(9 + size); |
436 | if (!field) { | |
cfd652ed | 437 | log_warning("Failed to allocate memory for coredump, coredump will not be stored."); |
34c10968 LP |
438 | return -ENOMEM; |
439 | } | |
440 | ||
441 | memcpy(field, "COREDUMP=", 9); | |
442 | ||
443 | n = read(fd, field + 9, size); | |
23bbb0de MS |
444 | if (n < 0) |
445 | return log_error_errno((int) n, "Failed to read core data: %m"); | |
34c10968 LP |
446 | if ((size_t) n < size) { |
447 | log_error("Core data too short."); | |
448 | return -EIO; | |
449 | } | |
450 | ||
451 | *ret = field; | |
452 | *ret_size = size + 9; | |
453 | ||
454 | field = NULL; | |
455 | ||
456 | return 0; | |
457 | } | |
803a3464 | 458 | |
3f132692 JF |
459 | /* Joins /proc/[pid]/fd/ and /proc/[pid]/fdinfo/ into the following lines: |
460 | * 0:/dev/pts/23 | |
461 | * pos: 0 | |
462 | * flags: 0100002 | |
463 | * | |
464 | * 1:/dev/pts/23 | |
465 | * pos: 0 | |
466 | * flags: 0100002 | |
467 | * | |
468 | * 2:/dev/pts/23 | |
469 | * pos: 0 | |
470 | * flags: 0100002 | |
471 | * EOF | |
472 | */ | |
473 | static int compose_open_fds(pid_t pid, char **open_fds) { | |
4d84bc2f LP |
474 | _cleanup_closedir_ DIR *proc_fd_dir = NULL; |
475 | _cleanup_close_ int proc_fdinfo_fd = -1; | |
476 | _cleanup_free_ char *buffer = NULL; | |
3f132692 | 477 | _cleanup_fclose_ FILE *stream = NULL; |
59059b4a | 478 | const char *fddelim = "", *path; |
3f132692 | 479 | struct dirent *dent = NULL; |
4d84bc2f | 480 | size_t size = 0; |
3f132692 JF |
481 | int r = 0; |
482 | ||
483 | assert(pid >= 0); | |
484 | assert(open_fds != NULL); | |
485 | ||
59059b4a | 486 | path = procfs_file_alloca(pid, "fd"); |
3f132692 | 487 | proc_fd_dir = opendir(path); |
59059b4a ZJS |
488 | if (!proc_fd_dir) |
489 | return -errno; | |
3f132692 | 490 | |
4d84bc2f | 491 | proc_fdinfo_fd = openat(dirfd(proc_fd_dir), "../fdinfo", O_DIRECTORY|O_NOFOLLOW|O_CLOEXEC|O_PATH); |
59059b4a ZJS |
492 | if (proc_fdinfo_fd < 0) |
493 | return -errno; | |
3f132692 | 494 | |
4d84bc2f | 495 | stream = open_memstream(&buffer, &size); |
3f132692 JF |
496 | if (!stream) |
497 | return -ENOMEM; | |
498 | ||
4d84bc2f | 499 | FOREACH_DIRENT(dent, proc_fd_dir, return -errno) { |
3f132692 | 500 | _cleanup_fclose_ FILE *fdinfo = NULL; |
4d84bc2f | 501 | _cleanup_free_ char *fdname = NULL; |
59059b4a | 502 | char line[LINE_MAX]; |
4d84bc2f | 503 | int fd; |
3f132692 | 504 | |
59059b4a | 505 | r = readlinkat_malloc(dirfd(proc_fd_dir), dent->d_name, &fdname); |
3f132692 JF |
506 | if (r < 0) |
507 | return r; | |
508 | ||
509 | fprintf(stream, "%s%s:%s\n", fddelim, dent->d_name, fdname); | |
510 | fddelim = "\n"; | |
511 | ||
512 | /* Use the directory entry from /proc/[pid]/fd with /proc/[pid]/fdinfo */ | |
59059b4a ZJS |
513 | fd = openat(proc_fdinfo_fd, dent->d_name, O_NOFOLLOW|O_CLOEXEC|O_RDONLY); |
514 | if (fd < 0) | |
3f132692 JF |
515 | continue; |
516 | ||
59059b4a ZJS |
517 | fdinfo = fdopen(fd, "re"); |
518 | if (fdinfo == NULL) { | |
519 | close(fd); | |
3f132692 | 520 | continue; |
59059b4a | 521 | } |
3f132692 | 522 | |
4d84bc2f LP |
523 | FOREACH_LINE(line, fdinfo, break) { |
524 | fputs(line, stream); | |
525 | if (!endswith(line, "\n")) | |
526 | fputc('\n', stream); | |
527 | } | |
3f132692 JF |
528 | } |
529 | ||
4d84bc2f | 530 | errno = 0; |
74ca738f | 531 | stream = safe_fclose(stream); |
4d84bc2f | 532 | |
b3267152 | 533 | if (errno > 0) |
4d84bc2f LP |
534 | return -errno; |
535 | ||
536 | *open_fds = buffer; | |
537 | buffer = NULL; | |
538 | ||
3f132692 JF |
539 | return 0; |
540 | } | |
541 | ||
f5e04665 | 542 | int main(int argc, char* argv[]) { |
34c10968 | 543 | |
8c8549db LP |
544 | /* The small core field we allocate on the stack, to keep things simple */ |
545 | char | |
546 | *core_pid = NULL, *core_uid = NULL, *core_gid = NULL, *core_signal = NULL, | |
547 | *core_session = NULL, *core_exe = NULL, *core_comm = NULL, *core_cmdline = NULL, | |
548 | *core_cgroup = NULL, *core_cwd = NULL, *core_root = NULL, *core_unit = NULL, | |
549 | *core_slice = NULL; | |
550 | ||
551 | /* The larger ones we allocate on the heap */ | |
552 | _cleanup_free_ char | |
553 | *core_timestamp = NULL, *core_message = NULL, *coredump_data = NULL, *core_owner_uid = NULL, | |
554 | *core_open_fds = NULL, *core_proc_status = NULL, *core_proc_maps = NULL, *core_proc_limits = NULL, | |
555 | *core_proc_cgroup = NULL, *core_environ = NULL; | |
556 | ||
557 | _cleanup_free_ char *exe = NULL, *comm = NULL, *filename = NULL; | |
1eef15b1 | 558 | const char *info[_INFO_LEN]; |
34c10968 | 559 | |
5f3e0a74 | 560 | _cleanup_close_ int coredump_fd = -1, coredump_node_fd = -1; |
34c10968 | 561 | |
3f132692 | 562 | struct iovec iovec[26]; |
59f448cf | 563 | uint64_t coredump_size; |
f5e04665 | 564 | int r, j = 0; |
a035f819 | 565 | uid_t uid, owner_uid; |
fee80f69 | 566 | gid_t gid; |
a035f819 | 567 | pid_t pid; |
34c10968 | 568 | char *t; |
3f132692 | 569 | const char *p; |
f5e04665 | 570 | |
34c10968 | 571 | /* Make sure we never enter a loop */ |
803a3464 | 572 | prctl(PR_SET_DUMPABLE, 0); |
f5e04665 | 573 | |
34c10968 LP |
574 | /* First, log to a safe place, since we don't know what |
575 | * crashed and it might be journald which we'd rather not log | |
576 | * to then. */ | |
577 | log_set_target(LOG_TARGET_KMSG); | |
34c10968 | 578 | log_open(); |
803a3464 | 579 | |
1eef15b1 ZJS |
580 | if (argc < INFO_COMM + 1) { |
581 | log_error("Not enough arguments passed from kernel (%d, expected %d).", | |
582 | argc - 1, INFO_COMM + 1 - 1); | |
f5e04665 LP |
583 | r = -EINVAL; |
584 | goto finish; | |
585 | } | |
586 | ||
34c10968 LP |
587 | /* Ignore all parse errors */ |
588 | parse_config(); | |
8c9571d0 LP |
589 | |
590 | log_debug("Selected storage '%s'.", coredump_storage_to_string(arg_storage)); | |
591 | log_debug("Selected compression %s.", yes_no(arg_compress)); | |
34c10968 | 592 | |
1eef15b1 | 593 | r = parse_uid(argv[INFO_UID + 1], &uid); |
f5e04665 | 594 | if (r < 0) { |
34c10968 LP |
595 | log_error("Failed to parse UID."); |
596 | goto finish; | |
597 | } | |
803a3464 | 598 | |
1eef15b1 | 599 | r = parse_pid(argv[INFO_PID + 1], &pid); |
34c10968 | 600 | if (r < 0) { |
f5e04665 | 601 | log_error("Failed to parse PID."); |
f5e04665 LP |
602 | goto finish; |
603 | } | |
604 | ||
1eef15b1 | 605 | r = parse_gid(argv[INFO_GID + 1], &gid); |
34c10968 LP |
606 | if (r < 0) { |
607 | log_error("Failed to parse GID."); | |
608 | goto finish; | |
609 | } | |
610 | ||
1eef15b1 | 611 | if (get_process_comm(pid, &comm) < 0) { |
3f85ef0f | 612 | log_warning("Failed to get COMM, falling back to the command line."); |
1eef15b1 ZJS |
613 | comm = strv_join(argv + INFO_COMM + 1, " "); |
614 | } | |
615 | ||
616 | if (get_process_exe(pid, &exe) < 0) | |
617 | log_warning("Failed to get EXE."); | |
618 | ||
619 | info[INFO_PID] = argv[INFO_PID + 1]; | |
620 | info[INFO_UID] = argv[INFO_UID + 1]; | |
621 | info[INFO_GID] = argv[INFO_GID + 1]; | |
622 | info[INFO_SIGNAL] = argv[INFO_SIGNAL + 1]; | |
623 | info[INFO_TIMESTAMP] = argv[INFO_TIMESTAMP + 1]; | |
624 | info[INFO_COMM] = comm; | |
625 | info[INFO_EXE] = exe; | |
626 | ||
ba1261bc | 627 | if (cg_pid_get_unit(pid, &t) >= 0) { |
803a3464 LP |
628 | |
629 | if (streq(t, SPECIAL_JOURNALD_SERVICE)) { | |
8c8549db | 630 | free(t); |
803a3464 | 631 | |
34c10968 LP |
632 | /* If we are journald, we cut things short, |
633 | * don't write to the journal, but still | |
634 | * create a coredump. */ | |
635 | ||
636 | if (arg_storage != COREDUMP_STORAGE_NONE) | |
637 | arg_storage = COREDUMP_STORAGE_EXTERNAL; | |
638 | ||
5f3e0a74 | 639 | r = save_external_coredump(info, uid, &filename, &coredump_node_fd, &coredump_fd, &coredump_size); |
34c10968 LP |
640 | if (r < 0) |
641 | goto finish; | |
642 | ||
9fe13294 | 643 | r = maybe_remove_external_coredump(filename, coredump_size); |
34c10968 LP |
644 | if (r < 0) |
645 | goto finish; | |
646 | ||
9fe13294 | 647 | log_info("Detected coredump of the journal daemon itself, diverted to %s.", filename); |
803a3464 LP |
648 | goto finish; |
649 | } | |
650 | ||
63c372cb | 651 | core_unit = strjoina("COREDUMP_UNIT=", t); |
8c8549db LP |
652 | free(t); |
653 | ||
654 | } else if (cg_pid_get_user_unit(pid, &t) >= 0) { | |
63c372cb | 655 | core_unit = strjoina("COREDUMP_USER_UNIT=", t); |
8c8549db LP |
656 | free(t); |
657 | } | |
803a3464 | 658 | |
f9045468 MT |
659 | if (core_unit) |
660 | IOVEC_SET_STRING(iovec[j++], core_unit); | |
661 | ||
34c10968 LP |
662 | /* OK, now we know it's not the journal, hence we can make use |
663 | * of it now. */ | |
803a3464 LP |
664 | log_set_target(LOG_TARGET_JOURNAL_OR_KMSG); |
665 | log_open(); | |
666 | ||
63c372cb | 667 | core_pid = strjoina("COREDUMP_PID=", info[INFO_PID]); |
8c8549db | 668 | IOVEC_SET_STRING(iovec[j++], core_pid); |
f5e04665 | 669 | |
63c372cb | 670 | core_uid = strjoina("COREDUMP_UID=", info[INFO_UID]); |
8c8549db | 671 | IOVEC_SET_STRING(iovec[j++], core_uid); |
f5e04665 | 672 | |
63c372cb | 673 | core_gid = strjoina("COREDUMP_GID=", info[INFO_GID]); |
8c8549db | 674 | IOVEC_SET_STRING(iovec[j++], core_gid); |
f5e04665 | 675 | |
63c372cb | 676 | core_signal = strjoina("COREDUMP_SIGNAL=", info[INFO_SIGNAL]); |
8c8549db | 677 | IOVEC_SET_STRING(iovec[j++], core_signal); |
f5e04665 | 678 | |
f5e04665 | 679 | if (sd_pid_get_session(pid, &t) >= 0) { |
63c372cb | 680 | core_session = strjoina("COREDUMP_SESSION=", t); |
f5e04665 LP |
681 | free(t); |
682 | ||
8c8549db | 683 | IOVEC_SET_STRING(iovec[j++], core_session); |
f5e04665 LP |
684 | } |
685 | ||
a035f819 | 686 | if (sd_pid_get_owner_uid(pid, &owner_uid) >= 0) { |
7de80bfe KZ |
687 | r = asprintf(&core_owner_uid, |
688 | "COREDUMP_OWNER_UID=" UID_FMT, owner_uid); | |
689 | if (r > 0) | |
a035f819 LP |
690 | IOVEC_SET_STRING(iovec[j++], core_owner_uid); |
691 | } | |
692 | ||
693 | if (sd_pid_get_slice(pid, &t) >= 0) { | |
63c372cb | 694 | core_slice = strjoina("COREDUMP_SLICE=", t); |
a035f819 LP |
695 | free(t); |
696 | ||
8c8549db | 697 | IOVEC_SET_STRING(iovec[j++], core_slice); |
a035f819 LP |
698 | } |
699 | ||
1eef15b1 | 700 | if (comm) { |
63c372cb | 701 | core_comm = strjoina("COREDUMP_COMM=", comm); |
8c8549db | 702 | IOVEC_SET_STRING(iovec[j++], core_comm); |
1eef15b1 ZJS |
703 | } |
704 | ||
705 | if (exe) { | |
63c372cb | 706 | core_exe = strjoina("COREDUMP_EXE=", exe); |
8c8549db | 707 | IOVEC_SET_STRING(iovec[j++], core_exe); |
f5e04665 LP |
708 | } |
709 | ||
9bdbc2e2 | 710 | if (get_process_cmdline(pid, 0, false, &t) >= 0) { |
63c372cb | 711 | core_cmdline = strjoina("COREDUMP_CMDLINE=", t); |
f5e04665 LP |
712 | free(t); |
713 | ||
8c8549db | 714 | IOVEC_SET_STRING(iovec[j++], core_cmdline); |
f5e04665 LP |
715 | } |
716 | ||
a035f819 | 717 | if (cg_pid_get_path_shifted(pid, NULL, &t) >= 0) { |
63c372cb | 718 | core_cgroup = strjoina("COREDUMP_CGROUP=", t); |
a035f819 LP |
719 | free(t); |
720 | ||
8c8549db | 721 | IOVEC_SET_STRING(iovec[j++], core_cgroup); |
a035f819 LP |
722 | } |
723 | ||
3f132692 JF |
724 | if (compose_open_fds(pid, &t) >= 0) { |
725 | core_open_fds = strappend("COREDUMP_OPEN_FDS=", t); | |
726 | free(t); | |
727 | ||
728 | if (core_open_fds) | |
729 | IOVEC_SET_STRING(iovec[j++], core_open_fds); | |
730 | } | |
731 | ||
732 | p = procfs_file_alloca(pid, "status"); | |
733 | if (read_full_file(p, &t, NULL) >= 0) { | |
734 | core_proc_status = strappend("COREDUMP_PROC_STATUS=", t); | |
735 | free(t); | |
736 | ||
737 | if (core_proc_status) | |
738 | IOVEC_SET_STRING(iovec[j++], core_proc_status); | |
739 | } | |
740 | ||
741 | p = procfs_file_alloca(pid, "maps"); | |
742 | if (read_full_file(p, &t, NULL) >= 0) { | |
743 | core_proc_maps = strappend("COREDUMP_PROC_MAPS=", t); | |
744 | free(t); | |
745 | ||
746 | if (core_proc_maps) | |
747 | IOVEC_SET_STRING(iovec[j++], core_proc_maps); | |
748 | } | |
749 | ||
750 | p = procfs_file_alloca(pid, "limits"); | |
751 | if (read_full_file(p, &t, NULL) >= 0) { | |
752 | core_proc_limits = strappend("COREDUMP_PROC_LIMITS=", t); | |
753 | free(t); | |
754 | ||
755 | if (core_proc_limits) | |
756 | IOVEC_SET_STRING(iovec[j++], core_proc_limits); | |
757 | } | |
758 | ||
759 | p = procfs_file_alloca(pid, "cgroup"); | |
760 | if (read_full_file(p, &t, NULL) >=0) { | |
761 | core_proc_cgroup = strappend("COREDUMP_PROC_CGROUP=", t); | |
762 | free(t); | |
763 | ||
764 | if (core_proc_cgroup) | |
765 | IOVEC_SET_STRING(iovec[j++], core_proc_cgroup); | |
766 | } | |
767 | ||
768 | if (get_process_cwd(pid, &t) >= 0) { | |
63c372cb | 769 | core_cwd = strjoina("COREDUMP_CWD=", t); |
3f132692 JF |
770 | free(t); |
771 | ||
8c8549db | 772 | IOVEC_SET_STRING(iovec[j++], core_cwd); |
3f132692 JF |
773 | } |
774 | ||
775 | if (get_process_root(pid, &t) >= 0) { | |
63c372cb | 776 | core_root = strjoina("COREDUMP_ROOT=", t); |
3f132692 JF |
777 | free(t); |
778 | ||
8c8549db | 779 | IOVEC_SET_STRING(iovec[j++], core_root); |
3f132692 JF |
780 | } |
781 | ||
782 | if (get_process_environ(pid, &t) >= 0) { | |
783 | core_environ = strappend("COREDUMP_ENVIRON=", t); | |
784 | free(t); | |
785 | ||
786 | if (core_environ) | |
787 | IOVEC_SET_STRING(iovec[j++], core_environ); | |
788 | } | |
789 | ||
1eef15b1 | 790 | core_timestamp = strjoin("COREDUMP_TIMESTAMP=", info[INFO_TIMESTAMP], "000000", NULL); |
f5e04665 LP |
791 | if (core_timestamp) |
792 | IOVEC_SET_STRING(iovec[j++], core_timestamp); | |
793 | ||
794 | IOVEC_SET_STRING(iovec[j++], "MESSAGE_ID=fc2e22bc6ee647b6b90729ab34a250b1"); | |
4850d39a LP |
795 | |
796 | assert_cc(2 == LOG_CRIT); | |
f5e04665 LP |
797 | IOVEC_SET_STRING(iovec[j++], "PRIORITY=2"); |
798 | ||
0dc5d23c LP |
799 | /* Vacuum before we write anything again */ |
800 | coredump_vacuum(-1, arg_keep_free, arg_max_use); | |
801 | ||
34c10968 | 802 | /* Always stream the coredump to disk, if that's possible */ |
5f3e0a74 | 803 | r = save_external_coredump(info, uid, &filename, &coredump_node_fd, &coredump_fd, &coredump_size); |
34c10968 | 804 | if (r < 0) |
2424a475 ZJS |
805 | /* skip whole core dumping part */ |
806 | goto log; | |
34c10968 LP |
807 | |
808 | /* If we don't want to keep the coredump on disk, remove it | |
8d4e028f LP |
809 | * now, as later on we will lack the privileges for |
810 | * it. However, we keep the fd to it, so that we can still | |
811 | * process it and log it. */ | |
9fe13294 | 812 | r = maybe_remove_external_coredump(filename, coredump_size); |
34c10968 LP |
813 | if (r < 0) |
814 | goto finish; | |
9fe13294 ZJS |
815 | if (r == 0) { |
816 | const char *coredump_filename; | |
817 | ||
63c372cb | 818 | coredump_filename = strjoina("COREDUMP_FILENAME=", filename); |
9fe13294 ZJS |
819 | IOVEC_SET_STRING(iovec[j++], coredump_filename); |
820 | } | |
34c10968 | 821 | |
0dc5d23c | 822 | /* Vacuum again, but exclude the coredump we just created */ |
5f3e0a74 | 823 | coredump_vacuum(coredump_node_fd >= 0 ? coredump_node_fd : coredump_fd, arg_keep_free, arg_max_use); |
0dc5d23c | 824 | |
fee80f69 LP |
825 | /* Now, let's drop privileges to become the user who owns the |
826 | * segfaulted process and allocate the coredump memory under | |
b26c631a KP |
827 | * the user's uid. This also ensures that the credentials |
828 | * journald will see are the ones of the coredumping user, | |
f11943c5 LP |
829 | * thus making sure the user gets access to the core |
830 | * dump. Let's also get rid of all capabilities, if we run as | |
831 | * root, we won't need them anymore. */ | |
832 | r = drop_privileges(uid, gid, 0); | |
833 | if (r < 0) { | |
834 | log_error_errno(r, "Failed to drop privileges: %m"); | |
fee80f69 LP |
835 | goto finish; |
836 | } | |
837 | ||
8d4e028f LP |
838 | #ifdef HAVE_ELFUTILS |
839 | /* Try to get a strack trace if we can */ | |
840 | if (coredump_size <= arg_process_size_max) { | |
841 | _cleanup_free_ char *stacktrace = NULL; | |
842 | ||
843 | r = coredump_make_stack_trace(coredump_fd, exe, &stacktrace); | |
844 | if (r >= 0) | |
1eef15b1 | 845 | core_message = strjoin("MESSAGE=Process ", info[INFO_PID], " (", comm, ") of user ", info[INFO_UID], " dumped core.\n\n", stacktrace, NULL); |
4d229b31 UTL |
846 | else if (r == -EINVAL) |
847 | log_warning("Failed to generate stack trace: %s", dwfl_errmsg(dwfl_errno())); | |
8d4e028f | 848 | else |
da927ba9 | 849 | log_warning_errno(r, "Failed to generate stack trace: %m"); |
8d4e028f LP |
850 | } |
851 | ||
852 | if (!core_message) | |
853 | #endif | |
2424a475 | 854 | log: |
1eef15b1 | 855 | core_message = strjoin("MESSAGE=Process ", info[INFO_PID], " (", comm, ") of user ", info[INFO_UID], " dumped core.", NULL); |
8d4e028f LP |
856 | if (core_message) |
857 | IOVEC_SET_STRING(iovec[j++], core_message); | |
858 | ||
34c10968 LP |
859 | /* Optionally store the entire coredump in the journal */ |
860 | if (IN_SET(arg_storage, COREDUMP_STORAGE_JOURNAL, COREDUMP_STORAGE_BOTH) && | |
59f448cf | 861 | coredump_size <= arg_journal_size_max) { |
a7f7d1bd | 862 | size_t sz = 0; |
fee80f69 | 863 | |
34c10968 | 864 | /* Store the coredump itself in the journal */ |
fee80f69 | 865 | |
34c10968 LP |
866 | r = allocate_journal_field(coredump_fd, (size_t) coredump_size, &coredump_data, &sz); |
867 | if (r >= 0) { | |
868 | iovec[j].iov_base = coredump_data; | |
869 | iovec[j].iov_len = sz; | |
870 | j++; | |
ca0ceb6f | 871 | } |
fee80f69 LP |
872 | } |
873 | ||
f5e04665 LP |
874 | r = sd_journal_sendv(iovec, j); |
875 | if (r < 0) | |
da927ba9 | 876 | log_error_errno(r, "Failed to log coredump: %m"); |
f5e04665 LP |
877 | |
878 | finish: | |
f5e04665 LP |
879 | return r < 0 ? EXIT_FAILURE : EXIT_SUCCESS; |
880 | } |