1 /* SPDX-License-Identifier: LGPL-2.1+ */
5 #include "alloc-util.h"
6 #include "bpf-firewall.h"
7 #include "bus-common-errors.h"
8 #include "cgroup-util.h"
11 #include "dbus-unit.h"
12 #include "dbus-util.h"
15 #include "locale-util.h"
17 #include "path-util.h"
18 #include "process-util.h"
19 #include "selinux-access.h"
20 #include "signal-util.h"
22 #include "string-util.h"
24 #include "user-util.h"
27 static bool unit_can_start_refuse_manual(Unit
*u
) {
28 return unit_can_start(u
) && !u
->refuse_manual_start
;
31 static bool unit_can_stop_refuse_manual(Unit
*u
) {
32 return unit_can_stop(u
) && !u
->refuse_manual_stop
;
35 static bool unit_can_isolate_refuse_manual(Unit
*u
) {
36 return unit_can_isolate(u
) && !u
->refuse_manual_start
;
39 static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_collect_mode
, collect_mode
, CollectMode
);
40 static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_load_state
, unit_load_state
, UnitLoadState
);
41 static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_job_mode
, job_mode
, JobMode
);
42 static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_emergency_action
, emergency_action
, EmergencyAction
);
43 static BUS_DEFINE_PROPERTY_GET(property_get_description
, "s", Unit
, unit_description
);
44 static BUS_DEFINE_PROPERTY_GET2(property_get_active_state
, "s", Unit
, unit_active_state
, unit_active_state_to_string
);
45 static BUS_DEFINE_PROPERTY_GET(property_get_sub_state
, "s", Unit
, unit_sub_state_to_string
);
46 static BUS_DEFINE_PROPERTY_GET2(property_get_unit_file_state
, "s", Unit
, unit_get_unit_file_state
, unit_file_state_to_string
);
47 static BUS_DEFINE_PROPERTY_GET(property_get_can_reload
, "b", Unit
, unit_can_reload
);
48 static BUS_DEFINE_PROPERTY_GET(property_get_can_start
, "b", Unit
, unit_can_start_refuse_manual
);
49 static BUS_DEFINE_PROPERTY_GET(property_get_can_stop
, "b", Unit
, unit_can_stop_refuse_manual
);
50 static BUS_DEFINE_PROPERTY_GET(property_get_can_isolate
, "b", Unit
, unit_can_isolate_refuse_manual
);
51 static BUS_DEFINE_PROPERTY_GET(property_get_need_daemon_reload
, "b", Unit
, unit_need_daemon_reload
);
52 static BUS_DEFINE_PROPERTY_GET_GLOBAL(property_get_empty_strv
, "as", 0);
54 static int property_get_names(
57 const char *interface
,
59 sd_bus_message
*reply
,
61 sd_bus_error
*error
) {
72 r
= sd_bus_message_open_container(reply
, 'a', "s");
76 SET_FOREACH(t
, *s
, i
) {
77 r
= sd_bus_message_append(reply
, "s", t
);
82 return sd_bus_message_close_container(reply
);
85 static int property_get_following(
88 const char *interface
,
90 sd_bus_message
*reply
,
92 sd_bus_error
*error
) {
94 Unit
*u
= userdata
, *f
;
100 f
= unit_following(u
);
101 return sd_bus_message_append(reply
, "s", f
? f
->id
: NULL
);
104 static int property_get_dependencies(
107 const char *interface
,
108 const char *property
,
109 sd_bus_message
*reply
,
111 sd_bus_error
*error
) {
113 Hashmap
**h
= userdata
;
123 r
= sd_bus_message_open_container(reply
, 'a', "s");
127 HASHMAP_FOREACH_KEY(v
, u
, *h
, j
) {
128 r
= sd_bus_message_append(reply
, "s", u
->id
);
133 return sd_bus_message_close_container(reply
);
136 static int property_get_requires_mounts_for(
139 const char *interface
,
140 const char *property
,
141 sd_bus_message
*reply
,
143 sd_bus_error
*error
) {
145 Hashmap
**h
= userdata
;
155 r
= sd_bus_message_open_container(reply
, 'a', "s");
159 HASHMAP_FOREACH_KEY(v
, p
, *h
, j
) {
160 r
= sd_bus_message_append(reply
, "s", p
);
165 return sd_bus_message_close_container(reply
);
168 static int property_get_unit_file_preset(
171 const char *interface
,
172 const char *property
,
173 sd_bus_message
*reply
,
175 sd_bus_error
*error
) {
184 r
= unit_get_unit_file_preset(u
);
186 return sd_bus_message_append(reply
, "s",
188 r
> 0 ? "enabled" : "disabled");
191 static int property_get_job(
194 const char *interface
,
195 const char *property
,
196 sd_bus_message
*reply
,
198 sd_bus_error
*error
) {
200 _cleanup_free_
char *p
= NULL
;
208 return sd_bus_message_append(reply
, "(uo)", 0, "/");
210 p
= job_dbus_path(*j
);
214 return sd_bus_message_append(reply
, "(uo)", (*j
)->id
, p
);
217 static int property_get_conditions(
220 const char *interface
,
221 const char *property
,
222 sd_bus_message
*reply
,
224 sd_bus_error
*error
) {
226 const char *(*to_string
)(ConditionType type
) = NULL
;
227 Condition
**list
= userdata
, *c
;
234 to_string
= streq(property
, "Asserts") ? assert_type_to_string
: condition_type_to_string
;
236 r
= sd_bus_message_open_container(reply
, 'a', "(sbbsi)");
240 LIST_FOREACH(conditions
, c
, *list
) {
244 c
->result
== CONDITION_UNTESTED
? 0 :
245 c
->result
== CONDITION_SUCCEEDED
? 1 : -1;
247 r
= sd_bus_message_append(reply
, "(sbbsi)",
249 c
->trigger
, c
->negate
,
250 c
->parameter
, tristate
);
256 return sd_bus_message_close_container(reply
);
259 static int property_get_load_error(
262 const char *interface
,
263 const char *property
,
264 sd_bus_message
*reply
,
266 sd_bus_error
*error
) {
268 _cleanup_(sd_bus_error_free
) sd_bus_error e
= SD_BUS_ERROR_NULL
;
276 r
= bus_unit_validate_load_state(u
, &e
);
278 return sd_bus_message_append(reply
, "(ss)", e
.name
, e
.message
);
280 return sd_bus_message_append(reply
, "(ss)", NULL
, NULL
);
283 static int bus_verify_manage_units_async_full(
287 const char *polkit_message
,
289 sd_bus_message
*call
,
290 sd_bus_error
*error
) {
292 const char *details
[9] = {
297 if (polkit_message
) {
298 details
[4] = "polkit.message";
299 details
[5] = polkit_message
;
300 details
[6] = "polkit.gettext_domain";
301 details
[7] = GETTEXT_PACKAGE
;
304 return bus_verify_polkit_async(
307 "org.freedesktop.systemd1.manage-units",
311 &u
->manager
->polkit_registry
,
315 static const char *const polkit_message_for_job
[_JOB_TYPE_MAX
] = {
316 [JOB_START
] = N_("Authentication is required to start '$(unit)'."),
317 [JOB_STOP
] = N_("Authentication is required to stop '$(unit)'."),
318 [JOB_RELOAD
] = N_("Authentication is required to reload '$(unit)'."),
319 [JOB_RESTART
] = N_("Authentication is required to restart '$(unit)'."),
320 [JOB_TRY_RESTART
] = N_("Authentication is required to restart '$(unit)'."),
323 int bus_unit_method_start_generic(
324 sd_bus_message
*message
,
327 bool reload_if_possible
,
328 sd_bus_error
*error
) {
330 const char *smode
, *verb
;
336 assert(job_type
>= 0 && job_type
< _JOB_TYPE_MAX
);
338 r
= mac_selinux_unit_access_check(
340 job_type_to_access_method(job_type
),
345 r
= sd_bus_message_read(message
, "s", &smode
);
349 mode
= job_mode_from_string(smode
);
351 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Job mode %s invalid", smode
);
353 if (reload_if_possible
)
354 verb
= strjoina("reload-or-", job_type_to_string(job_type
));
356 verb
= job_type_to_string(job_type
);
358 r
= bus_verify_manage_units_async_full(
362 polkit_message_for_job
[job_type
],
369 return 1; /* No authorization for now, but the async polkit stuff will call us again when it has it */
371 return bus_unit_queue_job(message
, u
, job_type
, mode
,
372 reload_if_possible
? BUS_UNIT_QUEUE_RELOAD_IF_POSSIBLE
: 0, error
);
375 static int method_start(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
376 return bus_unit_method_start_generic(message
, userdata
, JOB_START
, false, error
);
379 static int method_stop(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
380 return bus_unit_method_start_generic(message
, userdata
, JOB_STOP
, false, error
);
383 static int method_reload(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
384 return bus_unit_method_start_generic(message
, userdata
, JOB_RELOAD
, false, error
);
387 static int method_restart(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
388 return bus_unit_method_start_generic(message
, userdata
, JOB_RESTART
, false, error
);
391 static int method_try_restart(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
392 return bus_unit_method_start_generic(message
, userdata
, JOB_TRY_RESTART
, false, error
);
395 static int method_reload_or_restart(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
396 return bus_unit_method_start_generic(message
, userdata
, JOB_RESTART
, true, error
);
399 static int method_reload_or_try_restart(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
400 return bus_unit_method_start_generic(message
, userdata
, JOB_TRY_RESTART
, true, error
);
403 int bus_unit_method_enqueue_job(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
404 BusUnitQueueFlags flags
= BUS_UNIT_QUEUE_VERBOSE_REPLY
;
405 const char *jtype
, *smode
;
414 r
= sd_bus_message_read(message
, "ss", &jtype
, &smode
);
418 /* Parse the two magic reload types "reload-or-…" manually */
419 if (streq(jtype
, "reload-or-restart")) {
421 flags
|= BUS_UNIT_QUEUE_RELOAD_IF_POSSIBLE
;
422 } else if (streq(jtype
, "reload-or-try-restart")) {
423 type
= JOB_TRY_RESTART
;
424 flags
|= BUS_UNIT_QUEUE_RELOAD_IF_POSSIBLE
;
426 /* And the rest generically */
427 type
= job_type_from_string(jtype
);
429 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Job type %s invalid", jtype
);
432 mode
= job_mode_from_string(smode
);
434 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Job mode %s invalid", smode
);
436 r
= mac_selinux_unit_access_check(
438 job_type_to_access_method(type
),
443 r
= bus_verify_manage_units_async_full(
447 polkit_message_for_job
[type
],
454 return 1; /* No authorization for now, but the async polkit stuff will call us again when it has it */
456 return bus_unit_queue_job(message
, u
, type
, mode
, flags
, error
);
459 int bus_unit_method_kill(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
469 r
= mac_selinux_unit_access_check(u
, message
, "stop", error
);
473 r
= sd_bus_message_read(message
, "si", &swho
, &signo
);
480 who
= kill_who_from_string(swho
);
482 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid who argument %s", swho
);
485 if (!SIGNAL_VALID(signo
))
486 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Signal number out of range.");
488 r
= bus_verify_manage_units_async_full(
492 N_("Authentication is required to send a UNIX signal to the processes of '$(unit)'."),
499 return 1; /* No authorization for now, but the async polkit stuff will call us again when it has it */
501 r
= unit_kill(u
, who
, signo
, error
);
505 return sd_bus_reply_method_return(message
, NULL
);
508 int bus_unit_method_reset_failed(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
515 r
= mac_selinux_unit_access_check(u
, message
, "reload", error
);
519 r
= bus_verify_manage_units_async_full(
523 N_("Authentication is required to reset the \"failed\" state of '$(unit)'."),
530 return 1; /* No authorization for now, but the async polkit stuff will call us again when it has it */
532 unit_reset_failed(u
);
534 return sd_bus_reply_method_return(message
, NULL
);
537 int bus_unit_method_set_properties(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
544 r
= mac_selinux_unit_access_check(u
, message
, "start", error
);
548 r
= sd_bus_message_read(message
, "b", &runtime
);
552 r
= bus_verify_manage_units_async_full(
556 N_("Authentication is required to set properties on '$(unit)'."),
563 return 1; /* No authorization for now, but the async polkit stuff will call us again when it has it */
565 r
= bus_unit_set_properties(u
, message
, runtime
? UNIT_RUNTIME
: UNIT_PERSISTENT
, true, error
);
569 return sd_bus_reply_method_return(message
, NULL
);
572 int bus_unit_method_ref(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
579 r
= mac_selinux_unit_access_check(u
, message
, "start", error
);
583 r
= bus_verify_manage_units_async_full(
594 return 1; /* No authorization for now, but the async polkit stuff will call us again when it has it */
596 r
= bus_unit_track_add_sender(u
, message
);
600 return sd_bus_reply_method_return(message
, NULL
);
603 int bus_unit_method_unref(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
610 r
= bus_unit_track_remove_sender(u
, message
);
612 return sd_bus_error_setf(error
, BUS_ERROR_NOT_REFERENCED
, "Unit has not been referenced yet.");
616 return sd_bus_reply_method_return(message
, NULL
);
619 static int property_get_refs(
622 const char *interface
,
623 const char *property
,
624 sd_bus_message
*reply
,
626 sd_bus_error
*error
) {
635 r
= sd_bus_message_open_container(reply
, 'a', "s");
639 for (i
= sd_bus_track_first(u
->bus_track
); i
; i
= sd_bus_track_next(u
->bus_track
)) {
642 c
= sd_bus_track_count_name(u
->bus_track
, i
);
646 /* Add the item multiple times if the ref count for each is above 1 */
647 for (k
= 0; k
< c
; k
++) {
648 r
= sd_bus_message_append(reply
, "s", i
);
654 return sd_bus_message_close_container(reply
);
657 const sd_bus_vtable bus_unit_vtable
[] = {
658 SD_BUS_VTABLE_START(0),
660 SD_BUS_PROPERTY("Id", "s", NULL
, offsetof(Unit
, id
), SD_BUS_VTABLE_PROPERTY_CONST
),
661 SD_BUS_PROPERTY("Names", "as", property_get_names
, offsetof(Unit
, names
), SD_BUS_VTABLE_PROPERTY_CONST
),
662 SD_BUS_PROPERTY("Following", "s", property_get_following
, 0, 0),
663 SD_BUS_PROPERTY("Requires", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_REQUIRES
]), SD_BUS_VTABLE_PROPERTY_CONST
),
664 SD_BUS_PROPERTY("Requisite", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_REQUISITE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
665 SD_BUS_PROPERTY("Wants", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_WANTS
]), SD_BUS_VTABLE_PROPERTY_CONST
),
666 SD_BUS_PROPERTY("BindsTo", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_BINDS_TO
]), SD_BUS_VTABLE_PROPERTY_CONST
),
667 SD_BUS_PROPERTY("PartOf", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_PART_OF
]), SD_BUS_VTABLE_PROPERTY_CONST
),
668 SD_BUS_PROPERTY("RequiredBy", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_REQUIRED_BY
]), SD_BUS_VTABLE_PROPERTY_CONST
),
669 SD_BUS_PROPERTY("RequisiteOf", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_REQUISITE_OF
]), SD_BUS_VTABLE_PROPERTY_CONST
),
670 SD_BUS_PROPERTY("WantedBy", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_WANTED_BY
]), SD_BUS_VTABLE_PROPERTY_CONST
),
671 SD_BUS_PROPERTY("BoundBy", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_BOUND_BY
]), SD_BUS_VTABLE_PROPERTY_CONST
),
672 SD_BUS_PROPERTY("ConsistsOf", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_CONSISTS_OF
]), SD_BUS_VTABLE_PROPERTY_CONST
),
673 SD_BUS_PROPERTY("Conflicts", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_CONFLICTS
]), SD_BUS_VTABLE_PROPERTY_CONST
),
674 SD_BUS_PROPERTY("ConflictedBy", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_CONFLICTED_BY
]), SD_BUS_VTABLE_PROPERTY_CONST
),
675 SD_BUS_PROPERTY("Before", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_BEFORE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
676 SD_BUS_PROPERTY("After", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_AFTER
]), SD_BUS_VTABLE_PROPERTY_CONST
),
677 SD_BUS_PROPERTY("OnFailure", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_ON_FAILURE
]), SD_BUS_VTABLE_PROPERTY_CONST
),
678 SD_BUS_PROPERTY("Triggers", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_TRIGGERS
]), SD_BUS_VTABLE_PROPERTY_CONST
),
679 SD_BUS_PROPERTY("TriggeredBy", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_TRIGGERED_BY
]), SD_BUS_VTABLE_PROPERTY_CONST
),
680 SD_BUS_PROPERTY("PropagatesReloadTo", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_PROPAGATES_RELOAD_TO
]), SD_BUS_VTABLE_PROPERTY_CONST
),
681 SD_BUS_PROPERTY("ReloadPropagatedFrom", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_RELOAD_PROPAGATED_FROM
]), SD_BUS_VTABLE_PROPERTY_CONST
),
682 SD_BUS_PROPERTY("JoinsNamespaceOf", "as", property_get_dependencies
, offsetof(Unit
, dependencies
[UNIT_JOINS_NAMESPACE_OF
]), SD_BUS_VTABLE_PROPERTY_CONST
),
683 SD_BUS_PROPERTY("RequiresMountsFor", "as", property_get_requires_mounts_for
, offsetof(Unit
, requires_mounts_for
), SD_BUS_VTABLE_PROPERTY_CONST
),
684 SD_BUS_PROPERTY("Documentation", "as", NULL
, offsetof(Unit
, documentation
), SD_BUS_VTABLE_PROPERTY_CONST
),
685 SD_BUS_PROPERTY("Description", "s", property_get_description
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
686 SD_BUS_PROPERTY("LoadState", "s", property_get_load_state
, offsetof(Unit
, load_state
), SD_BUS_VTABLE_PROPERTY_CONST
),
687 SD_BUS_PROPERTY("ActiveState", "s", property_get_active_state
, 0, SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
688 SD_BUS_PROPERTY("SubState", "s", property_get_sub_state
, 0, SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
689 SD_BUS_PROPERTY("FragmentPath", "s", NULL
, offsetof(Unit
, fragment_path
), SD_BUS_VTABLE_PROPERTY_CONST
),
690 SD_BUS_PROPERTY("SourcePath", "s", NULL
, offsetof(Unit
, source_path
), SD_BUS_VTABLE_PROPERTY_CONST
),
691 SD_BUS_PROPERTY("DropInPaths", "as", NULL
, offsetof(Unit
, dropin_paths
), SD_BUS_VTABLE_PROPERTY_CONST
),
692 SD_BUS_PROPERTY("UnitFileState", "s", property_get_unit_file_state
, 0, 0),
693 SD_BUS_PROPERTY("UnitFilePreset", "s", property_get_unit_file_preset
, 0, 0),
694 BUS_PROPERTY_DUAL_TIMESTAMP("StateChangeTimestamp", offsetof(Unit
, state_change_timestamp
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
695 BUS_PROPERTY_DUAL_TIMESTAMP("InactiveExitTimestamp", offsetof(Unit
, inactive_exit_timestamp
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
696 BUS_PROPERTY_DUAL_TIMESTAMP("ActiveEnterTimestamp", offsetof(Unit
, active_enter_timestamp
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
697 BUS_PROPERTY_DUAL_TIMESTAMP("ActiveExitTimestamp", offsetof(Unit
, active_exit_timestamp
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
698 BUS_PROPERTY_DUAL_TIMESTAMP("InactiveEnterTimestamp", offsetof(Unit
, inactive_enter_timestamp
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
699 SD_BUS_PROPERTY("CanStart", "b", property_get_can_start
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
700 SD_BUS_PROPERTY("CanStop", "b", property_get_can_stop
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
701 SD_BUS_PROPERTY("CanReload", "b", property_get_can_reload
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
702 SD_BUS_PROPERTY("CanIsolate", "b", property_get_can_isolate
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
703 SD_BUS_PROPERTY("Job", "(uo)", property_get_job
, offsetof(Unit
, job
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
704 SD_BUS_PROPERTY("StopWhenUnneeded", "b", bus_property_get_bool
, offsetof(Unit
, stop_when_unneeded
), SD_BUS_VTABLE_PROPERTY_CONST
),
705 SD_BUS_PROPERTY("RefuseManualStart", "b", bus_property_get_bool
, offsetof(Unit
, refuse_manual_start
), SD_BUS_VTABLE_PROPERTY_CONST
),
706 SD_BUS_PROPERTY("RefuseManualStop", "b", bus_property_get_bool
, offsetof(Unit
, refuse_manual_stop
), SD_BUS_VTABLE_PROPERTY_CONST
),
707 SD_BUS_PROPERTY("AllowIsolate", "b", bus_property_get_bool
, offsetof(Unit
, allow_isolate
), SD_BUS_VTABLE_PROPERTY_CONST
),
708 SD_BUS_PROPERTY("DefaultDependencies", "b", bus_property_get_bool
, offsetof(Unit
, default_dependencies
), SD_BUS_VTABLE_PROPERTY_CONST
),
709 SD_BUS_PROPERTY("OnFailureJobMode", "s", property_get_job_mode
, offsetof(Unit
, on_failure_job_mode
), SD_BUS_VTABLE_PROPERTY_CONST
),
710 SD_BUS_PROPERTY("IgnoreOnIsolate", "b", bus_property_get_bool
, offsetof(Unit
, ignore_on_isolate
), SD_BUS_VTABLE_PROPERTY_CONST
),
711 SD_BUS_PROPERTY("NeedDaemonReload", "b", property_get_need_daemon_reload
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
712 SD_BUS_PROPERTY("JobTimeoutUSec", "t", bus_property_get_usec
, offsetof(Unit
, job_timeout
), SD_BUS_VTABLE_PROPERTY_CONST
),
713 SD_BUS_PROPERTY("JobRunningTimeoutUSec", "t", bus_property_get_usec
, offsetof(Unit
, job_running_timeout
), SD_BUS_VTABLE_PROPERTY_CONST
),
714 SD_BUS_PROPERTY("JobTimeoutAction", "s", property_get_emergency_action
, offsetof(Unit
, job_timeout_action
), SD_BUS_VTABLE_PROPERTY_CONST
),
715 SD_BUS_PROPERTY("JobTimeoutRebootArgument", "s", NULL
, offsetof(Unit
, job_timeout_reboot_arg
), SD_BUS_VTABLE_PROPERTY_CONST
),
716 SD_BUS_PROPERTY("ConditionResult", "b", bus_property_get_bool
, offsetof(Unit
, condition_result
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
717 SD_BUS_PROPERTY("AssertResult", "b", bus_property_get_bool
, offsetof(Unit
, assert_result
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
718 BUS_PROPERTY_DUAL_TIMESTAMP("ConditionTimestamp", offsetof(Unit
, condition_timestamp
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
719 BUS_PROPERTY_DUAL_TIMESTAMP("AssertTimestamp", offsetof(Unit
, assert_timestamp
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
720 SD_BUS_PROPERTY("Conditions", "a(sbbsi)", property_get_conditions
, offsetof(Unit
, conditions
), SD_BUS_VTABLE_PROPERTY_EMITS_INVALIDATION
),
721 SD_BUS_PROPERTY("Asserts", "a(sbbsi)", property_get_conditions
, offsetof(Unit
, asserts
), SD_BUS_VTABLE_PROPERTY_EMITS_INVALIDATION
),
722 SD_BUS_PROPERTY("LoadError", "(ss)", property_get_load_error
, 0, SD_BUS_VTABLE_PROPERTY_CONST
),
723 SD_BUS_PROPERTY("Transient", "b", bus_property_get_bool
, offsetof(Unit
, transient
), SD_BUS_VTABLE_PROPERTY_CONST
),
724 SD_BUS_PROPERTY("Perpetual", "b", bus_property_get_bool
, offsetof(Unit
, perpetual
), SD_BUS_VTABLE_PROPERTY_CONST
),
725 SD_BUS_PROPERTY("StartLimitIntervalUSec", "t", bus_property_get_usec
, offsetof(Unit
, start_limit
.interval
), SD_BUS_VTABLE_PROPERTY_CONST
),
726 SD_BUS_PROPERTY("StartLimitBurst", "u", bus_property_get_unsigned
, offsetof(Unit
, start_limit
.burst
), SD_BUS_VTABLE_PROPERTY_CONST
),
727 SD_BUS_PROPERTY("StartLimitAction", "s", property_get_emergency_action
, offsetof(Unit
, start_limit_action
), SD_BUS_VTABLE_PROPERTY_CONST
),
728 SD_BUS_PROPERTY("FailureAction", "s", property_get_emergency_action
, offsetof(Unit
, failure_action
), SD_BUS_VTABLE_PROPERTY_CONST
),
729 SD_BUS_PROPERTY("FailureActionExitStatus", "i", bus_property_get_int
, offsetof(Unit
, failure_action_exit_status
), SD_BUS_VTABLE_PROPERTY_CONST
),
730 SD_BUS_PROPERTY("SuccessAction", "s", property_get_emergency_action
, offsetof(Unit
, success_action
), SD_BUS_VTABLE_PROPERTY_CONST
),
731 SD_BUS_PROPERTY("SuccessActionExitStatus", "i", bus_property_get_int
, offsetof(Unit
, success_action_exit_status
), SD_BUS_VTABLE_PROPERTY_CONST
),
732 SD_BUS_PROPERTY("RebootArgument", "s", NULL
, offsetof(Unit
, reboot_arg
), SD_BUS_VTABLE_PROPERTY_CONST
),
733 SD_BUS_PROPERTY("InvocationID", "ay", bus_property_get_id128
, offsetof(Unit
, invocation_id
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
734 SD_BUS_PROPERTY("CollectMode", "s", property_get_collect_mode
, offsetof(Unit
, collect_mode
), SD_BUS_VTABLE_PROPERTY_CONST
),
735 SD_BUS_PROPERTY("Refs", "as", property_get_refs
, 0, 0),
737 SD_BUS_METHOD("Start", "s", "o", method_start
, SD_BUS_VTABLE_UNPRIVILEGED
),
738 SD_BUS_METHOD("Stop", "s", "o", method_stop
, SD_BUS_VTABLE_UNPRIVILEGED
),
739 SD_BUS_METHOD("Reload", "s", "o", method_reload
, SD_BUS_VTABLE_UNPRIVILEGED
),
740 SD_BUS_METHOD("Restart", "s", "o", method_restart
, SD_BUS_VTABLE_UNPRIVILEGED
),
741 SD_BUS_METHOD("TryRestart", "s", "o", method_try_restart
, SD_BUS_VTABLE_UNPRIVILEGED
),
742 SD_BUS_METHOD("ReloadOrRestart", "s", "o", method_reload_or_restart
, SD_BUS_VTABLE_UNPRIVILEGED
),
743 SD_BUS_METHOD("ReloadOrTryRestart", "s", "o", method_reload_or_try_restart
, SD_BUS_VTABLE_UNPRIVILEGED
),
744 SD_BUS_METHOD("EnqueueJob", "ss", "uososa(uosos)", bus_unit_method_enqueue_job
, SD_BUS_VTABLE_UNPRIVILEGED
),
745 SD_BUS_METHOD("Kill", "si", NULL
, bus_unit_method_kill
, SD_BUS_VTABLE_UNPRIVILEGED
),
746 SD_BUS_METHOD("ResetFailed", NULL
, NULL
, bus_unit_method_reset_failed
, SD_BUS_VTABLE_UNPRIVILEGED
),
747 SD_BUS_METHOD("SetProperties", "ba(sv)", NULL
, bus_unit_method_set_properties
, SD_BUS_VTABLE_UNPRIVILEGED
),
748 SD_BUS_METHOD("Ref", NULL
, NULL
, bus_unit_method_ref
, SD_BUS_VTABLE_UNPRIVILEGED
),
749 SD_BUS_METHOD("Unref", NULL
, NULL
, bus_unit_method_unref
, SD_BUS_VTABLE_UNPRIVILEGED
),
751 /* For dependency types we don't support anymore always return an empty array */
752 SD_BUS_PROPERTY("RequiresOverridable", "as", property_get_empty_strv
, 0, SD_BUS_VTABLE_HIDDEN
),
753 SD_BUS_PROPERTY("RequisiteOverridable", "as", property_get_empty_strv
, 0, SD_BUS_VTABLE_HIDDEN
),
754 SD_BUS_PROPERTY("RequiredByOverridable", "as", property_get_empty_strv
, 0, SD_BUS_VTABLE_HIDDEN
),
755 SD_BUS_PROPERTY("RequisiteOfOverridable", "as", property_get_empty_strv
, 0, SD_BUS_VTABLE_HIDDEN
),
756 /* Obsolete alias names */
757 SD_BUS_PROPERTY("StartLimitInterval", "t", bus_property_get_usec
, offsetof(Unit
, start_limit
.interval
), SD_BUS_VTABLE_PROPERTY_CONST
|SD_BUS_VTABLE_HIDDEN
),
758 SD_BUS_PROPERTY("StartLimitIntervalSec", "t", bus_property_get_usec
, offsetof(Unit
, start_limit
.interval
), SD_BUS_VTABLE_PROPERTY_CONST
|SD_BUS_VTABLE_HIDDEN
),
762 static int property_get_slice(
765 const char *interface
,
766 const char *property
,
767 sd_bus_message
*reply
,
769 sd_bus_error
*error
) {
777 return sd_bus_message_append(reply
, "s", unit_slice_name(u
));
780 static int property_get_current_memory(
783 const char *interface
,
784 const char *property
,
785 sd_bus_message
*reply
,
787 sd_bus_error
*error
) {
789 uint64_t sz
= (uint64_t) -1;
797 r
= unit_get_memory_current(u
, &sz
);
798 if (r
< 0 && r
!= -ENODATA
)
799 log_unit_warning_errno(u
, r
, "Failed to get memory.usage_in_bytes attribute: %m");
801 return sd_bus_message_append(reply
, "t", sz
);
804 static int property_get_current_tasks(
807 const char *interface
,
808 const char *property
,
809 sd_bus_message
*reply
,
811 sd_bus_error
*error
) {
813 uint64_t cn
= (uint64_t) -1;
821 r
= unit_get_tasks_current(u
, &cn
);
822 if (r
< 0 && r
!= -ENODATA
)
823 log_unit_warning_errno(u
, r
, "Failed to get pids.current attribute: %m");
825 return sd_bus_message_append(reply
, "t", cn
);
828 static int property_get_cpu_usage(
831 const char *interface
,
832 const char *property
,
833 sd_bus_message
*reply
,
835 sd_bus_error
*error
) {
837 nsec_t ns
= (nsec_t
) -1;
845 r
= unit_get_cpu_usage(u
, &ns
);
846 if (r
< 0 && r
!= -ENODATA
)
847 log_unit_warning_errno(u
, r
, "Failed to get cpuacct.usage attribute: %m");
849 return sd_bus_message_append(reply
, "t", ns
);
852 static int property_get_cgroup(
855 const char *interface
,
856 const char *property
,
857 sd_bus_message
*reply
,
859 sd_bus_error
*error
) {
862 const char *t
= NULL
;
868 /* Three cases: a) u->cgroup_path is NULL, in which case the
869 * unit has no control group, which we report as the empty
870 * string. b) u->cgroup_path is the empty string, which
871 * indicates the root cgroup, which we report as "/". c) all
872 * other cases we report as-is. */
875 t
= empty_to_root(u
->cgroup_path
);
877 return sd_bus_message_append(reply
, "s", t
);
880 static int append_process(sd_bus_message
*reply
, const char *p
, pid_t pid
, Set
*pids
) {
881 _cleanup_free_
char *buf
= NULL
, *cmdline
= NULL
;
887 r
= set_put(pids
, PID_TO_PTR(pid
));
888 if (IN_SET(r
, 0, -EEXIST
))
894 r
= cg_pid_get_path(SYSTEMD_CGROUP_CONTROLLER
, pid
, &buf
);
903 (void) get_process_cmdline(pid
, 0, true, &cmdline
);
905 return sd_bus_message_append(reply
,
912 static int append_cgroup(sd_bus_message
*reply
, const char *p
, Set
*pids
) {
913 _cleanup_closedir_
DIR *d
= NULL
;
914 _cleanup_fclose_
FILE *f
= NULL
;
920 r
= cg_enumerate_processes(SYSTEMD_CGROUP_CONTROLLER
, p
, &f
);
929 r
= cg_read_pid(f
, &pid
);
935 if (is_kernel_thread(pid
) > 0)
938 r
= append_process(reply
, p
, pid
, pids
);
943 r
= cg_enumerate_subgroups(SYSTEMD_CGROUP_CONTROLLER
, p
, &d
);
950 _cleanup_free_
char *g
= NULL
, *j
= NULL
;
952 r
= cg_read_subgroup(d
, &g
);
958 j
= strjoin(p
, "/", g
);
962 r
= append_cgroup(reply
, j
, pids
);
970 int bus_unit_method_get_processes(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
971 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
*reply
= NULL
;
972 _cleanup_set_free_ Set
*pids
= NULL
;
979 r
= mac_selinux_unit_access_check(u
, message
, "status", error
);
983 pids
= set_new(NULL
);
987 r
= sd_bus_message_new_method_return(message
, &reply
);
991 r
= sd_bus_message_open_container(reply
, 'a', "(sus)");
995 if (u
->cgroup_path
) {
996 r
= append_cgroup(reply
, u
->cgroup_path
, pids
);
1001 /* The main and control pids might live outside of the cgroup, hence fetch them separately */
1002 pid
= unit_main_pid(u
);
1004 r
= append_process(reply
, NULL
, pid
, pids
);
1009 pid
= unit_control_pid(u
);
1011 r
= append_process(reply
, NULL
, pid
, pids
);
1016 r
= sd_bus_message_close_container(reply
);
1020 return sd_bus_send(NULL
, reply
, NULL
);
1023 static int property_get_ip_counter(
1026 const char *interface
,
1027 const char *property
,
1028 sd_bus_message
*reply
,
1030 sd_bus_error
*error
) {
1032 CGroupIPAccountingMetric metric
;
1033 uint64_t value
= (uint64_t) -1;
1041 if (streq(property
, "IPIngressBytes"))
1042 metric
= CGROUP_IP_INGRESS_BYTES
;
1043 else if (streq(property
, "IPIngressPackets"))
1044 metric
= CGROUP_IP_INGRESS_PACKETS
;
1045 else if (streq(property
, "IPEgressBytes"))
1046 metric
= CGROUP_IP_EGRESS_BYTES
;
1048 assert(streq(property
, "IPEgressPackets"));
1049 metric
= CGROUP_IP_EGRESS_PACKETS
;
1052 (void) unit_get_ip_accounting(u
, metric
, &value
);
1053 return sd_bus_message_append(reply
, "t", value
);
1056 int bus_unit_method_attach_processes(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
1058 _cleanup_(sd_bus_creds_unrefp
) sd_bus_creds
*creds
= NULL
;
1059 _cleanup_set_free_ Set
*pids
= NULL
;
1066 /* This migrates the processes with the specified PIDs into the cgroup of this unit, optionally below a
1067 * specified cgroup path. Obviously this only works for units that actually maintain a cgroup
1068 * representation. If a process is already in the cgroup no operation is executed – in this case the specified
1069 * subcgroup path has no effect! */
1071 r
= mac_selinux_unit_access_check(u
, message
, "start", error
);
1075 r
= sd_bus_message_read(message
, "s", &path
);
1079 path
= empty_to_null(path
);
1081 if (!path_is_absolute(path
))
1082 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Control group path is not absolute: %s", path
);
1084 if (!path_is_normalized(path
))
1085 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Control group path is not normalized: %s", path
);
1088 if (!unit_cgroup_delegate(u
))
1089 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process migration not available on non-delegated units.");
1091 if (UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(u
)))
1092 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Unit is not active, refusing.");
1094 r
= sd_bus_query_sender_creds(message
, SD_BUS_CREDS_EUID
|SD_BUS_CREDS_PID
, &creds
);
1098 r
= sd_bus_message_enter_container(message
, 'a', "u");
1102 uid_t process_uid
, sender_uid
;
1106 r
= sd_bus_message_read(message
, "u", &upid
);
1113 r
= sd_bus_creds_get_pid(creds
, &pid
);
1119 /* Filter out duplicates */
1120 if (set_contains(pids
, PID_TO_PTR(pid
)))
1123 /* Check if this process is suitable for attaching to this unit */
1124 r
= unit_pid_attachable(u
, pid
, error
);
1128 /* Let's query the sender's UID, so that we can make our security decisions */
1129 r
= sd_bus_creds_get_euid(creds
, &sender_uid
);
1133 /* Let's validate security: if the sender is root, then all is OK. If the sender is any other unit,
1134 * then the process' UID and the target unit's UID have to match the sender's UID */
1135 if (sender_uid
!= 0 && sender_uid
!= getuid()) {
1136 r
= get_process_uid(pid
, &process_uid
);
1138 return sd_bus_error_set_errnof(error
, r
, "Failed to retrieve process UID: %m");
1140 if (process_uid
!= sender_uid
)
1141 return sd_bus_error_setf(error
, SD_BUS_ERROR_ACCESS_DENIED
, "Process " PID_FMT
" not owned by client's UID. Refusing.", pid
);
1142 if (process_uid
!= u
->ref_uid
)
1143 return sd_bus_error_setf(error
, SD_BUS_ERROR_ACCESS_DENIED
, "Process " PID_FMT
" not owned by target unit's UID. Refusing.", pid
);
1147 pids
= set_new(NULL
);
1152 r
= set_put(pids
, PID_TO_PTR(pid
));
1157 r
= sd_bus_message_exit_container(message
);
1161 r
= unit_attach_pids_to_cgroup(u
, pids
, path
);
1163 return sd_bus_error_set_errnof(error
, r
, "Failed to attach processes to control group: %m");
1165 return sd_bus_reply_method_return(message
, NULL
);
1168 const sd_bus_vtable bus_unit_cgroup_vtable
[] = {
1169 SD_BUS_VTABLE_START(0),
1170 SD_BUS_PROPERTY("Slice", "s", property_get_slice
, 0, 0),
1171 SD_BUS_PROPERTY("ControlGroup", "s", property_get_cgroup
, 0, 0),
1172 SD_BUS_PROPERTY("MemoryCurrent", "t", property_get_current_memory
, 0, 0),
1173 SD_BUS_PROPERTY("CPUUsageNSec", "t", property_get_cpu_usage
, 0, 0),
1174 SD_BUS_PROPERTY("TasksCurrent", "t", property_get_current_tasks
, 0, 0),
1175 SD_BUS_PROPERTY("IPIngressBytes", "t", property_get_ip_counter
, 0, 0),
1176 SD_BUS_PROPERTY("IPIngressPackets", "t", property_get_ip_counter
, 0, 0),
1177 SD_BUS_PROPERTY("IPEgressBytes", "t", property_get_ip_counter
, 0, 0),
1178 SD_BUS_PROPERTY("IPEgressPackets", "t", property_get_ip_counter
, 0, 0),
1179 SD_BUS_METHOD("GetProcesses", NULL
, "a(sus)", bus_unit_method_get_processes
, SD_BUS_VTABLE_UNPRIVILEGED
),
1180 SD_BUS_METHOD("AttachProcesses", "sau", NULL
, bus_unit_method_attach_processes
, SD_BUS_VTABLE_UNPRIVILEGED
),
1184 static int send_new_signal(sd_bus
*bus
, void *userdata
) {
1185 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
*m
= NULL
;
1186 _cleanup_free_
char *p
= NULL
;
1193 p
= unit_dbus_path(u
);
1197 r
= sd_bus_message_new_signal(
1200 "/org/freedesktop/systemd1",
1201 "org.freedesktop.systemd1.Manager",
1206 r
= sd_bus_message_append(m
, "so", u
->id
, p
);
1210 return sd_bus_send(bus
, m
, NULL
);
1213 static int send_changed_signal(sd_bus
*bus
, void *userdata
) {
1214 _cleanup_free_
char *p
= NULL
;
1221 p
= unit_dbus_path(u
);
1225 /* Send a properties changed signal. First for the specific
1226 * type, then for the generic unit. The clients may rely on
1227 * this order to get atomic behavior if needed. */
1229 r
= sd_bus_emit_properties_changed_strv(
1231 unit_dbus_interface_from_type(u
->type
),
1236 return sd_bus_emit_properties_changed_strv(
1238 "org.freedesktop.systemd1.Unit",
1242 void bus_unit_send_change_signal(Unit
*u
) {
1246 if (u
->in_dbus_queue
) {
1247 LIST_REMOVE(dbus_queue
, u
->manager
->dbus_unit_queue
, u
);
1248 u
->in_dbus_queue
= false;
1254 r
= bus_foreach_bus(u
->manager
, u
->bus_track
, u
->sent_dbus_new_signal
? send_changed_signal
: send_new_signal
, u
);
1256 log_unit_debug_errno(u
, r
, "Failed to send unit change signal for %s: %m", u
->id
);
1258 u
->sent_dbus_new_signal
= true;
1261 void bus_unit_send_pending_change_signal(Unit
*u
, bool including_new
) {
1263 /* Sends out any pending change signals, but only if they really are pending. This call is used when we are
1264 * about to change state in order to force out a PropertiesChanged signal beforehand if there was one pending
1265 * so that clients can follow the full state transition */
1267 if (!u
->in_dbus_queue
) /* If not enqueued, don't bother */
1270 if (!u
->sent_dbus_new_signal
&& !including_new
) /* If the unit was never announced, don't bother, it's fine if
1271 * the unit appears in the new state right-away (except if the
1272 * caller explicitly asked us to send it anyway) */
1275 if (MANAGER_IS_RELOADING(u
->manager
)) /* Don't generate unnecessary PropertiesChanged signals for the same unit
1276 * when we are reloading. */
1279 bus_unit_send_change_signal(u
);
1282 static int send_removed_signal(sd_bus
*bus
, void *userdata
) {
1283 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
*m
= NULL
;
1284 _cleanup_free_
char *p
= NULL
;
1291 p
= unit_dbus_path(u
);
1295 r
= sd_bus_message_new_signal(
1298 "/org/freedesktop/systemd1",
1299 "org.freedesktop.systemd1.Manager",
1304 r
= sd_bus_message_append(m
, "so", u
->id
, p
);
1308 return sd_bus_send(bus
, m
, NULL
);
1311 void bus_unit_send_removed_signal(Unit
*u
) {
1315 if (!u
->sent_dbus_new_signal
|| u
->in_dbus_queue
)
1316 bus_unit_send_change_signal(u
);
1321 r
= bus_foreach_bus(u
->manager
, u
->bus_track
, send_removed_signal
, u
);
1323 log_unit_debug_errno(u
, r
, "Failed to send unit remove signal for %s: %m", u
->id
);
1326 int bus_unit_queue_job(
1327 sd_bus_message
*message
,
1331 BusUnitQueueFlags flags
,
1332 sd_bus_error
*error
) {
1334 _cleanup_(sd_bus_message_unrefp
) sd_bus_message
*reply
= NULL
;
1335 _cleanup_free_
char *job_path
= NULL
, *unit_path
= NULL
;
1336 _cleanup_(set_freep
) Set
*affected
= NULL
;
1343 assert(type
>= 0 && type
< _JOB_TYPE_MAX
);
1344 assert(mode
>= 0 && mode
< _JOB_MODE_MAX
);
1346 r
= mac_selinux_unit_access_check(
1348 job_type_to_access_method(type
),
1353 if (FLAGS_SET(flags
, BUS_UNIT_QUEUE_RELOAD_IF_POSSIBLE
) && unit_can_reload(u
)) {
1354 if (type
== JOB_RESTART
)
1355 type
= JOB_RELOAD_OR_START
;
1356 else if (type
== JOB_TRY_RESTART
)
1357 type
= JOB_TRY_RELOAD
;
1360 if (type
== JOB_STOP
&&
1361 IN_SET(u
->load_state
, UNIT_NOT_FOUND
, UNIT_ERROR
, UNIT_BAD_SETTING
) &&
1362 unit_active_state(u
) == UNIT_INACTIVE
)
1363 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_UNIT
, "Unit %s not loaded.", u
->id
);
1365 if ((type
== JOB_START
&& u
->refuse_manual_start
) ||
1366 (type
== JOB_STOP
&& u
->refuse_manual_stop
) ||
1367 (IN_SET(type
, JOB_RESTART
, JOB_TRY_RESTART
) && (u
->refuse_manual_start
|| u
->refuse_manual_stop
)) ||
1368 (type
== JOB_RELOAD_OR_START
&& job_type_collapse(type
, u
) == JOB_START
&& u
->refuse_manual_start
))
1369 return sd_bus_error_setf(error
, BUS_ERROR_ONLY_BY_DEPENDENCY
, "Operation refused, unit %s may be requested by dependency only (it is configured to refuse manual start/stop).", u
->id
);
1371 if (FLAGS_SET(flags
, BUS_UNIT_QUEUE_VERBOSE_REPLY
)) {
1372 affected
= set_new(NULL
);
1377 r
= manager_add_job(u
->manager
, type
, u
, mode
, affected
, error
, &j
);
1381 r
= bus_job_track_sender(j
, message
);
1385 /* Before we send the method reply, force out the announcement JobNew for this job */
1386 bus_job_send_pending_change_signal(j
, true);
1388 job_path
= job_dbus_path(j
);
1392 /* The classic response is just a job object path */
1393 if (!FLAGS_SET(flags
, BUS_UNIT_QUEUE_VERBOSE_REPLY
))
1394 return sd_bus_reply_method_return(message
, "o", job_path
);
1396 /* In verbose mode respond with the anchor job plus everything that has been affected */
1397 r
= sd_bus_message_new_method_return(message
, &reply
);
1401 unit_path
= unit_dbus_path(j
->unit
);
1405 r
= sd_bus_message_append(reply
, "uosos",
1407 j
->unit
->id
, unit_path
,
1408 job_type_to_string(j
->type
));
1412 r
= sd_bus_message_open_container(reply
, 'a', "(uosos)");
1416 SET_FOREACH(a
, affected
, i
) {
1421 /* Free paths from previous iteration */
1422 job_path
= mfree(job_path
);
1423 unit_path
= mfree(unit_path
);
1425 job_path
= job_dbus_path(a
);
1429 unit_path
= unit_dbus_path(a
->unit
);
1433 r
= sd_bus_message_append(reply
, "(uosos)",
1435 a
->unit
->id
, unit_path
,
1436 job_type_to_string(a
->type
));
1441 r
= sd_bus_message_close_container(reply
);
1445 return sd_bus_send(NULL
, reply
, NULL
);
1448 static int bus_unit_set_live_property(
1451 sd_bus_message
*message
,
1452 UnitWriteFlags flags
,
1453 sd_bus_error
*error
) {
1461 /* Handles setting properties both "live" (i.e. at any time during runtime), and during creation (for transient
1462 * units that are being created). */
1464 if (streq(name
, "Description")) {
1467 r
= sd_bus_message_read(message
, "s", &d
);
1471 if (!UNIT_WRITE_FLAGS_NOOP(flags
)) {
1472 r
= unit_set_description(u
, d
);
1476 unit_write_settingf(u
, flags
|UNIT_ESCAPE_SPECIFIERS
, name
, "Description=%s", d
);
1485 static int bus_set_transient_emergency_action(
1489 sd_bus_message
*message
,
1490 UnitWriteFlags flags
,
1491 sd_bus_error
*error
) {
1500 r
= sd_bus_message_read(message
, "s", &s
);
1504 system
= MANAGER_IS_SYSTEM(u
->manager
);
1505 r
= parse_emergency_action(s
, system
, &v
);
1507 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
,
1508 r
== -EOPNOTSUPP
? "%s setting invalid for manager type: %s"
1509 : "Invalid %s setting: %s",
1512 if (!UNIT_WRITE_FLAGS_NOOP(flags
)) {
1514 unit_write_settingf(u
, flags
, name
,
1521 static int bus_set_transient_exit_status(
1525 sd_bus_message
*message
,
1526 UnitWriteFlags flags
,
1527 sd_bus_error
*error
) {
1534 r
= sd_bus_message_read(message
, "i", &k
);
1539 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Exit status must be in range 0…255 or negative.");
1541 if (!UNIT_WRITE_FLAGS_NOOP(flags
)) {
1542 *p
= k
< 0 ? -1 : k
;
1545 unit_write_settingf(u
, flags
, name
, "%s=", name
);
1547 unit_write_settingf(u
, flags
, name
, "%s=%i", name
, k
);
1553 static BUS_DEFINE_SET_TRANSIENT_PARSE(collect_mode
, CollectMode
, collect_mode_from_string
);
1554 static BUS_DEFINE_SET_TRANSIENT_PARSE(job_mode
, JobMode
, job_mode_from_string
);
1556 static int bus_set_transient_conditions(
1561 sd_bus_message
*message
,
1562 UnitWriteFlags flags
,
1563 sd_bus_error
*error
) {
1565 const char *type_name
, *param
;
1566 int trigger
, negate
, r
;
1571 r
= sd_bus_message_enter_container(message
, 'a', "(sbbs)");
1575 while ((r
= sd_bus_message_read(message
, "(sbbs)", &type_name
, &trigger
, &negate
, ¶m
)) > 0) {
1578 t
= is_condition
? condition_type_from_string(type_name
) : assert_type_from_string(type_name
);
1580 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid condition type: %s", type_name
);
1582 if (t
!= CONDITION_NULL
) {
1584 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Condition parameter in %s is empty", type_name
);
1586 if (condition_takes_path(t
) && !path_is_absolute(param
))
1587 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Path in condition %s is not absolute: %s", type_name
, param
);
1591 if (!UNIT_WRITE_FLAGS_NOOP(flags
)) {
1594 c
= condition_new(t
, param
, trigger
, negate
);
1598 LIST_PREPEND(conditions
, *list
, c
);
1600 if (t
!= CONDITION_NULL
)
1601 unit_write_settingf(u
, flags
|UNIT_ESCAPE_SPECIFIERS
, name
,
1602 "%s=%s%s%s", type_name
,
1603 trigger
? "|" : "", negate
? "!" : "", param
);
1605 unit_write_settingf(u
, flags
, name
,
1606 "%s=%s%s", type_name
,
1607 trigger
? "|" : "", yes_no(!negate
));
1615 r
= sd_bus_message_exit_container(message
);
1619 if (!UNIT_WRITE_FLAGS_NOOP(flags
) && empty
) {
1620 *list
= condition_free_list(*list
);
1621 unit_write_settingf(u
, flags
, name
, "%sNull=", is_condition
? "Condition" : "Assert");
1627 static int bus_unit_set_transient_property(
1630 sd_bus_message
*message
,
1631 UnitWriteFlags flags
,
1632 sd_bus_error
*error
) {
1634 UnitDependency d
= _UNIT_DEPENDENCY_INVALID
;
1641 /* Handles settings when transient units are created. This settings cannot be altered anymore after the unit
1642 * has been created. */
1644 if (streq(name
, "SourcePath"))
1645 return bus_set_transient_path(u
, name
, &u
->source_path
, message
, flags
, error
);
1647 if (streq(name
, "StopWhenUnneeded"))
1648 return bus_set_transient_bool(u
, name
, &u
->stop_when_unneeded
, message
, flags
, error
);
1650 if (streq(name
, "RefuseManualStart"))
1651 return bus_set_transient_bool(u
, name
, &u
->refuse_manual_start
, message
, flags
, error
);
1653 if (streq(name
, "RefuseManualStop"))
1654 return bus_set_transient_bool(u
, name
, &u
->refuse_manual_stop
, message
, flags
, error
);
1656 if (streq(name
, "AllowIsolate"))
1657 return bus_set_transient_bool(u
, name
, &u
->allow_isolate
, message
, flags
, error
);
1659 if (streq(name
, "DefaultDependencies"))
1660 return bus_set_transient_bool(u
, name
, &u
->default_dependencies
, message
, flags
, error
);
1662 if (streq(name
, "OnFailureJobMode"))
1663 return bus_set_transient_job_mode(u
, name
, &u
->on_failure_job_mode
, message
, flags
, error
);
1665 if (streq(name
, "IgnoreOnIsolate"))
1666 return bus_set_transient_bool(u
, name
, &u
->ignore_on_isolate
, message
, flags
, error
);
1668 if (streq(name
, "JobTimeoutUSec")) {
1669 r
= bus_set_transient_usec_fix_0(u
, name
, &u
->job_timeout
, message
, flags
, error
);
1670 if (r
>= 0 && !UNIT_WRITE_FLAGS_NOOP(flags
) && !u
->job_running_timeout_set
)
1671 u
->job_running_timeout
= u
->job_timeout
;
1674 if (streq(name
, "JobRunningTimeoutUSec")) {
1675 r
= bus_set_transient_usec_fix_0(u
, name
, &u
->job_running_timeout
, message
, flags
, error
);
1676 if (r
>= 0 && !UNIT_WRITE_FLAGS_NOOP(flags
))
1677 u
->job_running_timeout_set
= true;
1682 if (streq(name
, "JobTimeoutAction"))
1683 return bus_set_transient_emergency_action(u
, name
, &u
->job_timeout_action
, message
, flags
, error
);
1685 if (streq(name
, "JobTimeoutRebootArgument"))
1686 return bus_set_transient_string(u
, name
, &u
->job_timeout_reboot_arg
, message
, flags
, error
);
1688 if (streq(name
, "StartLimitIntervalUSec"))
1689 return bus_set_transient_usec(u
, name
, &u
->start_limit
.interval
, message
, flags
, error
);
1691 if (streq(name
, "StartLimitBurst"))
1692 return bus_set_transient_unsigned(u
, name
, &u
->start_limit
.burst
, message
, flags
, error
);
1694 if (streq(name
, "StartLimitAction"))
1695 return bus_set_transient_emergency_action(u
, name
, &u
->start_limit_action
, message
, flags
, error
);
1697 if (streq(name
, "FailureAction"))
1698 return bus_set_transient_emergency_action(u
, name
, &u
->failure_action
, message
, flags
, error
);
1700 if (streq(name
, "SuccessAction"))
1701 return bus_set_transient_emergency_action(u
, name
, &u
->success_action
, message
, flags
, error
);
1703 if (streq(name
, "FailureActionExitStatus"))
1704 return bus_set_transient_exit_status(u
, name
, &u
->failure_action_exit_status
, message
, flags
, error
);
1706 if (streq(name
, "SuccessActionExitStatus"))
1707 return bus_set_transient_exit_status(u
, name
, &u
->success_action_exit_status
, message
, flags
, error
);
1709 if (streq(name
, "RebootArgument"))
1710 return bus_set_transient_string(u
, name
, &u
->reboot_arg
, message
, flags
, error
);
1712 if (streq(name
, "CollectMode"))
1713 return bus_set_transient_collect_mode(u
, name
, &u
->collect_mode
, message
, flags
, error
);
1715 if (streq(name
, "Conditions"))
1716 return bus_set_transient_conditions(u
, name
, &u
->conditions
, true, message
, flags
, error
);
1718 if (streq(name
, "Asserts"))
1719 return bus_set_transient_conditions(u
, name
, &u
->asserts
, false, message
, flags
, error
);
1721 if (streq(name
, "Documentation")) {
1722 _cleanup_strv_free_
char **l
= NULL
;
1725 r
= sd_bus_message_read_strv(message
, &l
);
1729 STRV_FOREACH(p
, l
) {
1730 if (!documentation_url_is_valid(*p
))
1731 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid URL in %s: %s", name
, *p
);
1734 if (!UNIT_WRITE_FLAGS_NOOP(flags
)) {
1735 if (strv_isempty(l
)) {
1736 u
->documentation
= strv_free(u
->documentation
);
1737 unit_write_settingf(u
, flags
, name
, "%s=", name
);
1739 strv_extend_strv(&u
->documentation
, l
, false);
1742 unit_write_settingf(u
, flags
, name
, "%s=%s", name
, *p
);
1748 } else if (streq(name
, "Slice")) {
1752 if (!UNIT_HAS_CGROUP_CONTEXT(u
))
1753 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "The slice property is only available for units with control groups.");
1754 if (u
->type
== UNIT_SLICE
)
1755 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Slice may not be set for slice units.");
1756 if (unit_has_name(u
, SPECIAL_INIT_SCOPE
))
1757 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Cannot set slice for init.scope");
1759 r
= sd_bus_message_read(message
, "s", &s
);
1763 if (!unit_name_is_valid(s
, UNIT_NAME_PLAIN
))
1764 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid unit name '%s'", s
);
1766 /* Note that we do not dispatch the load queue here yet, as we don't want our own transient unit to be
1767 * loaded while we are still setting it up. Or in other words, we use manager_load_unit_prepare()
1768 * instead of manager_load_unit() on purpose, here. */
1769 r
= manager_load_unit_prepare(u
->manager
, s
, NULL
, error
, &slice
);
1773 if (slice
->type
!= UNIT_SLICE
)
1774 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Unit name '%s' is not a slice", s
);
1776 if (!UNIT_WRITE_FLAGS_NOOP(flags
)) {
1777 r
= unit_set_slice(u
, slice
);
1781 unit_write_settingf(u
, flags
|UNIT_PRIVATE
, name
, "Slice=%s", s
);
1786 } else if (streq(name
, "RequiresMountsFor")) {
1787 _cleanup_strv_free_
char **l
= NULL
;
1790 r
= sd_bus_message_read_strv(message
, &l
);
1794 STRV_FOREACH(p
, l
) {
1795 path_simplify(*p
, true);
1797 if (!path_is_absolute(*p
))
1798 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Path specified in %s is not absolute: %s", name
, *p
);
1800 if (!path_is_valid(*p
))
1801 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Path specified in %s has invalid length: %s", name
, *p
);
1803 if (!path_is_normalized(*p
))
1804 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Path specified in %s is not normalized: %s", name
, *p
);
1806 if (!UNIT_WRITE_FLAGS_NOOP(flags
)) {
1807 r
= unit_require_mounts_for(u
, *p
, UNIT_DEPENDENCY_FILE
);
1809 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Failed to add required mount \"%s\": %m", *p
);
1811 unit_write_settingf(u
, flags
, name
, "%s=%s", name
, *p
);
1818 if (streq(name
, "RequiresOverridable"))
1819 d
= UNIT_REQUIRES
; /* redirect for obsolete unit dependency type */
1820 else if (streq(name
, "RequisiteOverridable"))
1821 d
= UNIT_REQUISITE
; /* same here */
1823 d
= unit_dependency_from_string(name
);
1828 r
= sd_bus_message_enter_container(message
, 'a', "s");
1832 while ((r
= sd_bus_message_read(message
, "s", &other
)) > 0) {
1833 if (!unit_name_is_valid(other
, UNIT_NAME_PLAIN
|UNIT_NAME_INSTANCE
))
1834 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid unit name %s", other
);
1836 if (!UNIT_WRITE_FLAGS_NOOP(flags
)) {
1837 _cleanup_free_
char *label
= NULL
;
1839 r
= unit_add_dependency_by_name(u
, d
, other
, true, UNIT_DEPENDENCY_FILE
);
1843 label
= strjoin(name
, "-", other
);
1847 unit_write_settingf(u
, flags
, label
, "%s=%s", unit_dependency_to_string(d
), other
);
1854 r
= sd_bus_message_exit_container(message
);
1860 } else if (streq(name
, "AddRef")) {
1864 /* Why is this called "AddRef" rather than just "Ref", or "Reference"? There's already a "Ref()" method
1865 * on the Unit interface, and it's probably not a good idea to expose a property and a method on the
1866 * same interface (well, strictly speaking AddRef isn't exposed as full property, we just read it for
1867 * transient units, but still). And "References" and "ReferencedBy" is already used as unit reference
1868 * dependency type, hence let's not confuse things with that.
1870 * Note that we don't acually add the reference to the bus track. We do that only after the setup of
1871 * the transient unit is complete, so that setting this property multiple times in the same transient
1872 * unit creation call doesn't count as individual references. */
1874 r
= sd_bus_message_read(message
, "b", &b
);
1878 if (!UNIT_WRITE_FLAGS_NOOP(flags
))
1879 u
->bus_track_add
= b
;
1887 int bus_unit_set_properties(
1889 sd_bus_message
*message
,
1890 UnitWriteFlags flags
,
1892 sd_bus_error
*error
) {
1894 bool for_real
= false;
1901 /* We iterate through the array twice. First run we just check
1902 * if all passed data is valid, second run actually applies
1903 * it. This is to implement transaction-like behaviour without
1904 * actually providing full transactions. */
1906 r
= sd_bus_message_enter_container(message
, 'a', "(sv)");
1914 r
= sd_bus_message_enter_container(message
, 'r', "sv");
1918 if (for_real
|| UNIT_WRITE_FLAGS_NOOP(flags
))
1921 /* Reached EOF. Let's try again, and this time for realz... */
1922 r
= sd_bus_message_rewind(message
, false);
1930 r
= sd_bus_message_read(message
, "s", &name
);
1934 if (!UNIT_VTABLE(u
)->bus_set_property
)
1935 return sd_bus_error_setf(error
, SD_BUS_ERROR_PROPERTY_READ_ONLY
, "Objects of this type do not support setting properties.");
1937 r
= sd_bus_message_enter_container(message
, 'v', NULL
);
1941 /* If not for real, then mask out the two target flags */
1942 f
= for_real
? flags
: (flags
& ~(UNIT_RUNTIME
|UNIT_PERSISTENT
));
1944 r
= UNIT_VTABLE(u
)->bus_set_property(u
, name
, message
, f
, error
);
1945 if (r
== 0 && u
->transient
&& u
->load_state
== UNIT_STUB
)
1946 r
= bus_unit_set_transient_property(u
, name
, message
, f
, error
);
1948 r
= bus_unit_set_live_property(u
, name
, message
, f
, error
);
1953 return sd_bus_error_setf(error
, SD_BUS_ERROR_PROPERTY_READ_ONLY
, "Cannot set property %s, or unknown property.", name
);
1955 r
= sd_bus_message_exit_container(message
);
1959 r
= sd_bus_message_exit_container(message
);
1966 r
= sd_bus_message_exit_container(message
);
1970 if (commit
&& n
> 0 && UNIT_VTABLE(u
)->bus_commit_properties
)
1971 UNIT_VTABLE(u
)->bus_commit_properties(u
);
1976 int bus_unit_validate_load_state(Unit
*u
, sd_bus_error
*error
) {
1979 /* Generates a pretty error if a unit isn't properly loaded. */
1981 switch (u
->load_state
) {
1986 case UNIT_NOT_FOUND
:
1987 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_UNIT
, "Unit %s not found.", u
->id
);
1989 case UNIT_BAD_SETTING
:
1990 return sd_bus_error_setf(error
, BUS_ERROR_BAD_UNIT_SETTING
, "Unit %s has a bad unit file setting.", u
->id
);
1992 case UNIT_ERROR
: /* Only show .load_error in UNIT_ERROR state */
1993 return sd_bus_error_set_errnof(error
, u
->load_error
, "Unit %s failed to load properly: %m.", u
->id
);
1996 return sd_bus_error_setf(error
, BUS_ERROR_UNIT_MASKED
, "Unit %s is masked.", u
->id
);
2001 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_UNIT
, "Unexpected load state of unit %s", u
->id
);
2005 static int bus_unit_track_handler(sd_bus_track
*t
, void *userdata
) {
2011 u
->bus_track
= sd_bus_track_unref(u
->bus_track
); /* make sure we aren't called again */
2013 /* If the client that tracks us disappeared, then there's reason to believe that the cgroup is empty now too,
2015 unit_add_to_cgroup_empty_queue(u
);
2017 /* Also add the unit to the GC queue, after all if the client left it might be time to GC this unit */
2018 unit_add_to_gc_queue(u
);
2023 static int bus_unit_allocate_bus_track(Unit
*u
) {
2031 r
= sd_bus_track_new(u
->manager
->api_bus
, &u
->bus_track
, bus_unit_track_handler
, u
);
2035 r
= sd_bus_track_set_recursive(u
->bus_track
, true);
2037 u
->bus_track
= sd_bus_track_unref(u
->bus_track
);
2044 int bus_unit_track_add_name(Unit
*u
, const char *name
) {
2049 r
= bus_unit_allocate_bus_track(u
);
2053 return sd_bus_track_add_name(u
->bus_track
, name
);
2056 int bus_unit_track_add_sender(Unit
*u
, sd_bus_message
*m
) {
2061 r
= bus_unit_allocate_bus_track(u
);
2065 return sd_bus_track_add_sender(u
->bus_track
, m
);
2068 int bus_unit_track_remove_sender(Unit
*u
, sd_bus_message
*m
) {
2071 /* If we haven't allocated the bus track object yet, then there's definitely no reference taken yet, return an
2076 return sd_bus_track_remove_sender(u
->bus_track
, m
);