src/core/manager.h

   1 /* SPDX-License-Identifier: LGPL-2.1+ */
   2 #pragma once
   3
   4 #include <stdbool.h>
   5 #include <stdio.h>
   6
   7 #include "sd-bus.h"
   8 #include "sd-event.h"
   9
  10 #include "cgroup-util.h"
  11 #include "fdset.h"
  12 #include "hashmap.h"
  13 #include "ip-address-access.h"
  14 #include "list.h"
  15 #include "ratelimit.h"
  16
  17 struct libmnt_monitor;
  18 typedef struct Unit Unit;
  19
  20 /* Enforce upper limit how many names we allow */
  21 #define MANAGER_MAX_NAMES 131072 /* 128K */
  22
  23 typedef struct Manager Manager;
  24
  25 typedef enum ManagerState {
  26         MANAGER_INITIALIZING,
  27         MANAGER_STARTING,
  28         MANAGER_RUNNING,
  29         MANAGER_DEGRADED,
  30         MANAGER_MAINTENANCE,
  31         MANAGER_STOPPING,
  32         _MANAGER_STATE_MAX,
  33         _MANAGER_STATE_INVALID = -1
  34 } ManagerState;
  35
  36 typedef enum ManagerExitCode {
  37         MANAGER_OK,
  38         MANAGER_EXIT,
  39         MANAGER_RELOAD,
  40         MANAGER_REEXECUTE,
  41         MANAGER_REBOOT,
  42         MANAGER_POWEROFF,
  43         MANAGER_HALT,
  44         MANAGER_KEXEC,
  45         MANAGER_SWITCH_ROOT,
  46         _MANAGER_EXIT_CODE_MAX,
  47         _MANAGER_EXIT_CODE_INVALID = -1
  48 } ManagerExitCode;
  49
  50 typedef enum StatusType {
  51         STATUS_TYPE_EPHEMERAL,
  52         STATUS_TYPE_NORMAL,
  53         STATUS_TYPE_EMERGENCY,
  54 } StatusType;
  55
  56 typedef enum ManagerTimestamp {
  57         MANAGER_TIMESTAMP_FIRMWARE,
  58         MANAGER_TIMESTAMP_LOADER,
  59         MANAGER_TIMESTAMP_KERNEL,
  60         MANAGER_TIMESTAMP_INITRD,
  61         MANAGER_TIMESTAMP_USERSPACE,
  62         MANAGER_TIMESTAMP_FINISH,
  63
  64         MANAGER_TIMESTAMP_SECURITY_START,
  65         MANAGER_TIMESTAMP_SECURITY_FINISH,
  66         MANAGER_TIMESTAMP_GENERATORS_START,
  67         MANAGER_TIMESTAMP_GENERATORS_FINISH,
  68         MANAGER_TIMESTAMP_UNITS_LOAD_START,
  69         MANAGER_TIMESTAMP_UNITS_LOAD_FINISH,
  70         _MANAGER_TIMESTAMP_MAX,
  71         _MANAGER_TIMESTAMP_INVALID = -1,
  72 } ManagerTimestamp;
  73
  74 #include "execute.h"
  75 #include "job.h"
  76 #include "path-lookup.h"
  77 #include "show-status.h"
  78 #include "unit-name.h"
  79
  80 enum {
  81         /* 0 = run normally */
  82         MANAGER_TEST_RUN_MINIMAL        = 1 << 1,  /* create basic data structures */
  83         MANAGER_TEST_RUN_BASIC          = 1 << 2,  /* interact with the environment */
  84         MANAGER_TEST_RUN_ENV_GENERATORS = 1 << 3,  /* also run env generators  */
  85         MANAGER_TEST_RUN_GENERATORS     = 1 << 4,  /* also run unit generators */
  86         MANAGER_TEST_FULL = MANAGER_TEST_RUN_BASIC | MANAGER_TEST_RUN_ENV_GENERATORS | MANAGER_TEST_RUN_GENERATORS,
  87 };
  88 assert_cc((MANAGER_TEST_FULL & UINT8_MAX) == MANAGER_TEST_FULL);
  89
  90 struct Manager {
  91         /* Note that the set of units we know of is allowed to be
  92          * inconsistent. However the subset of it that is loaded may
  93          * not, and the list of jobs may neither. */
  94
  95         /* Active jobs and units */
  96         Hashmap *units;  /* name string => Unit object n:1 */
  97         Hashmap *units_by_invocation_id;
  98         Hashmap *jobs;   /* job id => Job object 1:1 */
  99
 100         /* To make it easy to iterate through the units of a specific
 101          * type we maintain a per type linked list */
 102         LIST_HEAD(Unit, units_by_type[_UNIT_TYPE_MAX]);
 103
 104         /* Units that need to be loaded */
 105         LIST_HEAD(Unit, load_queue); /* this is actually more a stack than a queue, but uh. */
 106
 107         /* Jobs that need to be run */
 108         LIST_HEAD(Job, run_queue);   /* more a stack than a queue, too */
 109
 110         /* Units and jobs that have not yet been announced via
 111          * D-Bus. When something about a job changes it is added here
 112          * if it is not in there yet. This allows easy coalescing of
 113          * D-Bus change signals. */
 114         LIST_HEAD(Unit, dbus_unit_queue);
 115         LIST_HEAD(Job, dbus_job_queue);
 116
 117         /* Units to remove */
 118         LIST_HEAD(Unit, cleanup_queue);
 119
 120         /* Units and jobs to check when doing GC */
 121         LIST_HEAD(Unit, gc_unit_queue);
 122         LIST_HEAD(Job, gc_job_queue);
 123
 124         /* Units that should be realized */
 125         LIST_HEAD(Unit, cgroup_realize_queue);
 126
 127         /* Units whose cgroup ran empty */
 128         LIST_HEAD(Unit, cgroup_empty_queue);
 129
 130         /* Target units whose default target dependencies haven't been set yet */
 131         LIST_HEAD(Unit, target_deps_queue);
 132
 133         sd_event *event;
 134
 135         /* This maps PIDs we care about to units that are interested in. We allow multiple units to he interested in
 136          * the same PID and multiple PIDs to be relevant to the same unit. Since in most cases only a single unit will
 137          * be interested in the same PID we use a somewhat special encoding here: the first unit interested in a PID is
 138          * stored directly in the hashmap, keyed by the PID unmodified. If there are other units interested too they'll
 139          * be stored in a NULL-terminated array, and keyed by the negative PID. This is safe as pid_t is signed and
 140          * negative PIDs are not used for regular processes but process groups, which we don't care about in this
 141          * context, but this allows us to use the negative range for our own purposes. */
 142         Hashmap *watch_pids;  /* pid => unit as well as -pid => array of units */
 143
 144         /* A set contains all units which cgroup should be refreshed after startup */
 145         Set *startup_units;
 146
 147         /* A set which contains all currently failed units */
 148         Set *failed_units;
 149
 150         sd_event_source *run_queue_event_source;
 151
 152         char *notify_socket;
 153         int notify_fd;
 154         sd_event_source *notify_event_source;
 155
 156         int cgroups_agent_fd;
 157         sd_event_source *cgroups_agent_event_source;
 158
 159         int signal_fd;
 160         sd_event_source *signal_event_source;
 161
 162         sd_event_source *sigchld_event_source;
 163
 164         int time_change_fd;
 165         sd_event_source *time_change_event_source;
 166
 167         sd_event_source *timezone_change_event_source;
 168
 169         sd_event_source *jobs_in_progress_event_source;
 170
 171         int user_lookup_fds[2];
 172         sd_event_source *user_lookup_event_source;
 173
 174         sd_event_source *sync_bus_names_event_source;
 175
 176         UnitFileScope unit_file_scope;
 177         LookupPaths lookup_paths;
 178         Set *unit_path_cache;
 179
 180         char **environment;
 181
 182         usec_t runtime_watchdog;
 183         usec_t shutdown_watchdog;
 184
 185         dual_timestamp timestamps[_MANAGER_TIMESTAMP_MAX];
 186
 187         struct udev* udev;
 188
 189         /* Data specific to the device subsystem */
 190         struct udev_monitor* udev_monitor;
 191         sd_event_source *udev_event_source;
 192         Hashmap *devices_by_sysfs;
 193
 194         /* Data specific to the mount subsystem */
 195         struct libmnt_monitor *mount_monitor;
 196         sd_event_source *mount_event_source;
 197
 198         /* Data specific to the swap filesystem */
 199         FILE *proc_swaps;
 200         sd_event_source *swap_event_source;
 201         Hashmap *swaps_by_devnode;
 202
 203         /* Data specific to the D-Bus subsystem */
 204         sd_bus *api_bus, *system_bus;
 205         Set *private_buses;
 206         int private_listen_fd;
 207         sd_event_source *private_listen_event_source;
 208
 209         /* Contains all the clients that are subscribed to signals via
 210         the API bus. Note that private bus connections are always
 211         considered subscribes, since they last for very short only,
 212         and it is much simpler that way. */
 213         sd_bus_track *subscribed;
 214         char **deserialized_subscribed;
 215
 216         /* This is used during reloading: before the reload we queue
 217          * the reply message here, and afterwards we send it */
 218         sd_bus_message *queued_message;
 219
 220         Hashmap *watch_bus;  /* D-Bus names => Unit object n:1 */
 221
 222         bool send_reloading_done;
 223
 224         uint32_t current_job_id;
 225         uint32_t default_unit_job_id;
 226
 227         /* Data specific to the Automount subsystem */
 228         int dev_autofs_fd;
 229
 230         /* Data specific to the cgroup subsystem */
 231         Hashmap *cgroup_unit;
 232         CGroupMask cgroup_supported;
 233         char *cgroup_root;
 234
 235         /* Notifications from cgroups, when the unified hierarchy is used is done via inotify. */
 236         int cgroup_inotify_fd;
 237         sd_event_source *cgroup_inotify_event_source;
 238         Hashmap *cgroup_inotify_wd_unit;
 239
 240         /* A defer event for handling cgroup empty events and processing them after SIGCHLD in all cases. */
 241         sd_event_source *cgroup_empty_event_source;
 242
 243         /* Make sure the user cannot accidentally unmount our cgroup
 244          * file system */
 245         int pin_cgroupfs_fd;
 246
 247         unsigned gc_marker;
 248
 249         /* The stat() data the last time we saw /etc/localtime */
 250         usec_t etc_localtime_mtime;
 251         bool etc_localtime_accessible:1;
 252
 253         /* Flags */
 254         ManagerExitCode exit_code:5;
 255
 256         bool dispatching_load_queue:1;
 257         bool dispatching_dbus_queue:1;
 258
 259         bool taint_usr:1;
 260
 261         /* Have we already sent out the READY=1 notification? */
 262         bool ready_sent:1;
 263
 264         /* Have we already printed the taint line if necessary? */
 265         bool taint_logged:1;
 266
 267         /* Have we ever changed the "kernel.pid_max" sysctl? */
 268         bool sysctl_pid_max_changed:1;
 269
 270         unsigned test_run_flags:8;
 271
 272         /* If non-zero, exit with the following value when the systemd
 273          * process terminate. Useful for containers: systemd-nspawn could get
 274          * the return value. */
 275         uint8_t return_value;
 276
 277         ShowStatus show_status;
 278         char *confirm_spawn;
 279         bool no_console_output;
 280         bool service_watchdogs;
 281
 282         ExecOutput default_std_output, default_std_error;
 283
 284         usec_t default_restart_usec, default_timeout_start_usec, default_timeout_stop_usec;
 285
 286         usec_t default_start_limit_interval;
 287         unsigned default_start_limit_burst;
 288
 289         bool default_cpu_accounting;
 290         bool default_memory_accounting;
 291         bool default_io_accounting;
 292         bool default_blockio_accounting;
 293         bool default_tasks_accounting;
 294         bool default_ip_accounting;
 295
 296         uint64_t default_tasks_max;
 297         usec_t default_timer_accuracy_usec;
 298
 299         int original_log_level;
 300         LogTarget original_log_target;
 301         bool log_level_overridden:1;
 302         bool log_target_overridden:1;
 303
 304         struct rlimit *rlimit[_RLIMIT_MAX];
 305
 306         /* non-zero if we are reloading or reexecuting, */
 307         int n_reloading;
 308         /* A set which contains all jobs that started before reload and finished
 309          * during it */
 310         Set *pending_finished_jobs;
 311
 312         unsigned n_installed_jobs;
 313         unsigned n_failed_jobs;
 314
 315         /* Jobs in progress watching */
 316         unsigned n_running_jobs;
 317         unsigned n_on_console;
 318         unsigned jobs_in_progress_iteration;
 319
 320         /* Do we have any outstanding password prompts? */
 321         int have_ask_password;
 322         int ask_password_inotify_fd;
 323         sd_event_source *ask_password_event_source;
 324
 325         /* Type=idle pipes */
 326         int idle_pipe[4];
 327         sd_event_source *idle_pipe_event_source;
 328
 329         char *switch_root;
 330         char *switch_root_init;
 331
 332         /* This maps all possible path prefixes to the units needing
 333          * them. It's a hashmap with a path string as key and a Set as
 334          * value where Unit objects are contained. */
 335         Hashmap *units_requiring_mounts_for;
 336
 337         /* Used for processing polkit authorization responses */
 338         Hashmap *polkit_registry;
 339
 340         /* Dynamic users/groups, indexed by their name */
 341         Hashmap *dynamic_users;
 342
 343         /* Keep track of all UIDs and GIDs any of our services currently use. This is useful for the RemoveIPC= logic. */
 344         Hashmap *uid_refs;
 345         Hashmap *gid_refs;
 346
 347         /* ExecRuntime, indexed by their owner unit id */
 348         Hashmap *exec_runtime_by_id;
 349
 350         /* When the user hits C-A-D more than 7 times per 2s, do something immediately... */
 351         RateLimit ctrl_alt_del_ratelimit;
 352         EmergencyAction cad_burst_action;
 353
 354         const char *unit_log_field;
 355         const char *unit_log_format_string;
 356
 357         const char *invocation_log_field;
 358         const char *invocation_log_format_string;
 359
 360         int first_boot; /* tri-state */
 361
 362         /* Prefixes of e.g. RuntimeDirectory= */
 363         char *prefix[_EXEC_DIRECTORY_TYPE_MAX];
 364
 365         /* Used in the SIGCHLD and sd_notify() message invocation logic to avoid that we dispatch the same event
 366          * multiple times on the same unit. */
 367         unsigned sigchldgen;
 368         unsigned notifygen;
 369 };
 370
 371 #define MANAGER_IS_SYSTEM(m) ((m)->unit_file_scope == UNIT_FILE_SYSTEM)
 372 #define MANAGER_IS_USER(m) ((m)->unit_file_scope != UNIT_FILE_SYSTEM)
 373
 374 #define MANAGER_IS_RELOADING(m) ((m)->n_reloading > 0)
 375
 376 #define MANAGER_IS_FINISHED(m) (dual_timestamp_is_set((m)->timestamps + MANAGER_TIMESTAMP_FINISH))
 377
 378 /* The exit code is set to OK as soon as we enter the main loop, and set otherwise as soon as we are done with it */
 379 #define MANAGER_IS_RUNNING(m) ((m)->exit_code == MANAGER_OK)
 380
 381 int manager_new(UnitFileScope scope, unsigned test_run_flags, Manager **m);
 382 Manager* manager_free(Manager *m);
 383 DEFINE_TRIVIAL_CLEANUP_FUNC(Manager*, manager_free);
 384
 385 int manager_startup(Manager *m, FILE *serialization, FDSet *fds);
 386
 387 Job *manager_get_job(Manager *m, uint32_t id);
 388 Unit *manager_get_unit(Manager *m, const char *name);
 389
 390 int manager_get_job_from_dbus_path(Manager *m, const char *s, Job **_j);
 391
 392 int manager_load_unit_prepare(Manager *m, const char *name, const char *path, sd_bus_error *e, Unit **_ret);
 393 int manager_load_unit(Manager *m, const char *name, const char *path, sd_bus_error *e, Unit **_ret);
 394 int manager_load_startable_unit_or_warn(Manager *m, const char *name, const char *path, Unit **ret);
 395 int manager_load_unit_from_dbus_path(Manager *m, const char *s, sd_bus_error *e, Unit **_u);
 396
 397 int manager_add_job(Manager *m, JobType type, Unit *unit, JobMode mode, sd_bus_error *e, Job **_ret);
 398 int manager_add_job_by_name(Manager *m, JobType type, const char *name, JobMode mode, sd_bus_error *e, Job **_ret);
 399 int manager_add_job_by_name_and_warn(Manager *m, JobType type, const char *name, JobMode mode, Job **ret);
 400 int manager_propagate_reload(Manager *m, Unit *unit, JobMode mode, sd_bus_error *e);
 401
 402 void manager_dump_units(Manager *s, FILE *f, const char *prefix);
 403 void manager_dump_jobs(Manager *s, FILE *f, const char *prefix);
 404 void manager_dump(Manager *s, FILE *f, const char *prefix);
 405 int manager_get_dump_string(Manager *m, char **ret);
 406
 407 void manager_clear_jobs(Manager *m);
 408
 409 unsigned manager_dispatch_load_queue(Manager *m);
 410
 411 int manager_environment_add(Manager *m, char **minus, char **plus);
 412 int manager_set_default_rlimits(Manager *m, struct rlimit **default_rlimit);
 413
 414 int manager_loop(Manager *m);
 415
 416 int manager_open_serialization(Manager *m, FILE **_f);
 417
 418 int manager_serialize(Manager *m, FILE *f, FDSet *fds, bool switching_root);
 419 int manager_deserialize(Manager *m, FILE *f, FDSet *fds);
 420
 421 int manager_reload(Manager *m);
 422
 423 void manager_reset_failed(Manager *m);
 424
 425 void manager_send_unit_audit(Manager *m, Unit *u, int type, bool success);
 426 void manager_send_unit_plymouth(Manager *m, Unit *u);
 427
 428 bool manager_unit_inactive_or_pending(Manager *m, const char *name);
 429
 430 void manager_check_finished(Manager *m);
 431
 432 void manager_recheck_dbus(Manager *m);
 433 void manager_recheck_journal(Manager *m);
 434
 435 void manager_set_show_status(Manager *m, ShowStatus mode);
 436 void manager_set_first_boot(Manager *m, bool b);
 437
 438 void manager_status_printf(Manager *m, StatusType type, const char *status, const char *format, ...) _printf_(4,5);
 439 void manager_flip_auto_status(Manager *m, bool enable);
 440
 441 Set *manager_get_units_requiring_mounts_for(Manager *m, const char *path);
 442
 443 ManagerState manager_state(Manager *m);
 444
 445 int manager_update_failed_units(Manager *m, Unit *u, bool failed);
 446
 447 void manager_unref_uid(Manager *m, uid_t uid, bool destroy_now);
 448 int manager_ref_uid(Manager *m, uid_t uid, bool clean_ipc);
 449
 450 void manager_unref_gid(Manager *m, gid_t gid, bool destroy_now);
 451 int manager_ref_gid(Manager *m, gid_t gid, bool destroy_now);
 452
 453 void manager_vacuum_uid_refs(Manager *m);
 454 void manager_vacuum_gid_refs(Manager *m);
 455
 456 void manager_serialize_uid_refs(Manager *m, FILE *f);
 457 void manager_deserialize_uid_refs_one(Manager *m, const char *value);
 458
 459 void manager_serialize_gid_refs(Manager *m, FILE *f);
 460 void manager_deserialize_gid_refs_one(Manager *m, const char *value);
 461
 462 char *manager_taint_string(Manager *m);
 463
 464 void manager_ref_console(Manager *m);
 465 void manager_unref_console(Manager *m);
 466
 467 void manager_override_log_level(Manager *m, int level);
 468 void manager_restore_original_log_level(Manager *m);
 469
 470 void manager_override_log_target(Manager *m, LogTarget target);
 471 void manager_restore_original_log_target(Manager *m);
 472
 473 const char *manager_state_to_string(ManagerState m) _const_;
 474 ManagerState manager_state_from_string(const char *s) _pure_;
 475
 476 const char *manager_get_confirm_spawn(Manager *m);
 477 bool manager_is_confirm_spawn_disabled(Manager *m);
 478 void manager_disable_confirm_spawn(void);
 479
 480 const char *manager_timestamp_to_string(ManagerTimestamp m) _const_;
 481 ManagerTimestamp manager_timestamp_from_string(const char *s) _pure_;