src/core/manager.h

   1 /* SPDX-License-Identifier: LGPL-2.1+ */
   2 #pragma once
   3
   4 /***
   5   Copyright 2010 Lennart Poettering
   6 ***/
   7
   8 #include <stdbool.h>
   9 #include <stdio.h>
  10
  11 #include "sd-bus.h"
  12 #include "sd-event.h"
  13
  14 #include "cgroup-util.h"
  15 #include "fdset.h"
  16 #include "hashmap.h"
  17 #include "ip-address-access.h"
  18 #include "list.h"
  19 #include "ratelimit.h"
  20
  21 struct libmnt_monitor;
  22 typedef struct Unit Unit;
  23
  24 /* Enforce upper limit how many names we allow */
  25 #define MANAGER_MAX_NAMES 131072 /* 128K */
  26
  27 typedef struct Manager Manager;
  28
  29 typedef enum ManagerState {
  30         MANAGER_INITIALIZING,
  31         MANAGER_STARTING,
  32         MANAGER_RUNNING,
  33         MANAGER_DEGRADED,
  34         MANAGER_MAINTENANCE,
  35         MANAGER_STOPPING,
  36         _MANAGER_STATE_MAX,
  37         _MANAGER_STATE_INVALID = -1
  38 } ManagerState;
  39
  40 typedef enum ManagerExitCode {
  41         MANAGER_OK,
  42         MANAGER_EXIT,
  43         MANAGER_RELOAD,
  44         MANAGER_REEXECUTE,
  45         MANAGER_REBOOT,
  46         MANAGER_POWEROFF,
  47         MANAGER_HALT,
  48         MANAGER_KEXEC,
  49         MANAGER_SWITCH_ROOT,
  50         _MANAGER_EXIT_CODE_MAX,
  51         _MANAGER_EXIT_CODE_INVALID = -1
  52 } ManagerExitCode;
  53
  54 typedef enum StatusType {
  55         STATUS_TYPE_EPHEMERAL,
  56         STATUS_TYPE_NORMAL,
  57         STATUS_TYPE_EMERGENCY,
  58 } StatusType;
  59
  60 typedef enum ManagerTimestamp {
  61         MANAGER_TIMESTAMP_FIRMWARE,
  62         MANAGER_TIMESTAMP_LOADER,
  63         MANAGER_TIMESTAMP_KERNEL,
  64         MANAGER_TIMESTAMP_INITRD,
  65         MANAGER_TIMESTAMP_USERSPACE,
  66         MANAGER_TIMESTAMP_FINISH,
  67
  68         MANAGER_TIMESTAMP_SECURITY_START,
  69         MANAGER_TIMESTAMP_SECURITY_FINISH,
  70         MANAGER_TIMESTAMP_GENERATORS_START,
  71         MANAGER_TIMESTAMP_GENERATORS_FINISH,
  72         MANAGER_TIMESTAMP_UNITS_LOAD_START,
  73         MANAGER_TIMESTAMP_UNITS_LOAD_FINISH,
  74         _MANAGER_TIMESTAMP_MAX,
  75         _MANAGER_TIMESTAMP_INVALID = -1,
  76 } ManagerTimestamp;
  77
  78 #include "execute.h"
  79 #include "job.h"
  80 #include "path-lookup.h"
  81 #include "show-status.h"
  82 #include "unit-name.h"
  83
  84 enum {
  85         /* 0 = run normally */
  86         MANAGER_TEST_RUN_MINIMAL        = 1 << 1,  /* create basic data structures */
  87         MANAGER_TEST_RUN_BASIC          = 1 << 2,  /* interact with the environment */
  88         MANAGER_TEST_RUN_ENV_GENERATORS = 1 << 3,  /* also run env generators  */
  89         MANAGER_TEST_RUN_GENERATORS     = 1 << 4,  /* also run unit generators */
  90         MANAGER_TEST_FULL = MANAGER_TEST_RUN_BASIC | MANAGER_TEST_RUN_ENV_GENERATORS | MANAGER_TEST_RUN_GENERATORS,
  91 };
  92 assert_cc((MANAGER_TEST_FULL & UINT8_MAX) == MANAGER_TEST_FULL);
  93
  94 struct Manager {
  95         /* Note that the set of units we know of is allowed to be
  96          * inconsistent. However the subset of it that is loaded may
  97          * not, and the list of jobs may neither. */
  98
  99         /* Active jobs and units */
 100         Hashmap *units;  /* name string => Unit object n:1 */
 101         Hashmap *units_by_invocation_id;
 102         Hashmap *jobs;   /* job id => Job object 1:1 */
 103
 104         /* To make it easy to iterate through the units of a specific
 105          * type we maintain a per type linked list */
 106         LIST_HEAD(Unit, units_by_type[_UNIT_TYPE_MAX]);
 107
 108         /* Units that need to be loaded */
 109         LIST_HEAD(Unit, load_queue); /* this is actually more a stack than a queue, but uh. */
 110
 111         /* Jobs that need to be run */
 112         LIST_HEAD(Job, run_queue);   /* more a stack than a queue, too */
 113
 114         /* Units and jobs that have not yet been announced via
 115          * D-Bus. When something about a job changes it is added here
 116          * if it is not in there yet. This allows easy coalescing of
 117          * D-Bus change signals. */
 118         LIST_HEAD(Unit, dbus_unit_queue);
 119         LIST_HEAD(Job, dbus_job_queue);
 120
 121         /* Units to remove */
 122         LIST_HEAD(Unit, cleanup_queue);
 123
 124         /* Units and jobs to check when doing GC */
 125         LIST_HEAD(Unit, gc_unit_queue);
 126         LIST_HEAD(Job, gc_job_queue);
 127
 128         /* Units that should be realized */
 129         LIST_HEAD(Unit, cgroup_realize_queue);
 130
 131         /* Units whose cgroup ran empty */
 132         LIST_HEAD(Unit, cgroup_empty_queue);
 133
 134         /* Target units whose default target dependencies haven't been set yet */
 135         LIST_HEAD(Unit, target_deps_queue);
 136
 137         sd_event *event;
 138
 139         /* This maps PIDs we care about to units that are interested in. We allow multiple units to he interested in
 140          * the same PID and multiple PIDs to be relevant to the same unit. Since in most cases only a single unit will
 141          * be interested in the same PID we use a somewhat special encoding here: the first unit interested in a PID is
 142          * stored directly in the hashmap, keyed by the PID unmodified. If there are other units interested too they'll
 143          * be stored in a NULL-terminated array, and keyed by the negative PID. This is safe as pid_t is signed and
 144          * negative PIDs are not used for regular processes but process groups, which we don't care about in this
 145          * context, but this allows us to use the negative range for our own purposes. */
 146         Hashmap *watch_pids;  /* pid => unit as well as -pid => array of units */
 147
 148         /* A set contains all units which cgroup should be refreshed after startup */
 149         Set *startup_units;
 150
 151         /* A set which contains all currently failed units */
 152         Set *failed_units;
 153
 154         sd_event_source *run_queue_event_source;
 155
 156         char *notify_socket;
 157         int notify_fd;
 158         sd_event_source *notify_event_source;
 159
 160         int cgroups_agent_fd;
 161         sd_event_source *cgroups_agent_event_source;
 162
 163         int signal_fd;
 164         sd_event_source *signal_event_source;
 165
 166         sd_event_source *sigchld_event_source;
 167
 168         int time_change_fd;
 169         sd_event_source *time_change_event_source;
 170
 171         sd_event_source *timezone_change_event_source;
 172
 173         sd_event_source *jobs_in_progress_event_source;
 174
 175         int user_lookup_fds[2];
 176         sd_event_source *user_lookup_event_source;
 177
 178         sd_event_source *sync_bus_names_event_source;
 179
 180         UnitFileScope unit_file_scope;
 181         LookupPaths lookup_paths;
 182         Set *unit_path_cache;
 183
 184         char **environment;
 185
 186         usec_t runtime_watchdog;
 187         usec_t shutdown_watchdog;
 188
 189         dual_timestamp timestamps[_MANAGER_TIMESTAMP_MAX];
 190
 191         struct udev* udev;
 192
 193         /* Data specific to the device subsystem */
 194         struct udev_monitor* udev_monitor;
 195         sd_event_source *udev_event_source;
 196         Hashmap *devices_by_sysfs;
 197
 198         /* Data specific to the mount subsystem */
 199         struct libmnt_monitor *mount_monitor;
 200         sd_event_source *mount_event_source;
 201
 202         /* Data specific to the swap filesystem */
 203         FILE *proc_swaps;
 204         sd_event_source *swap_event_source;
 205         Hashmap *swaps_by_devnode;
 206
 207         /* Data specific to the D-Bus subsystem */
 208         sd_bus *api_bus, *system_bus;
 209         Set *private_buses;
 210         int private_listen_fd;
 211         sd_event_source *private_listen_event_source;
 212
 213         /* Contains all the clients that are subscribed to signals via
 214         the API bus. Note that private bus connections are always
 215         considered subscribes, since they last for very short only,
 216         and it is much simpler that way. */
 217         sd_bus_track *subscribed;
 218         char **deserialized_subscribed;
 219
 220         /* This is used during reloading: before the reload we queue
 221          * the reply message here, and afterwards we send it */
 222         sd_bus_message *queued_message;
 223
 224         Hashmap *watch_bus;  /* D-Bus names => Unit object n:1 */
 225
 226         bool send_reloading_done;
 227
 228         uint32_t current_job_id;
 229         uint32_t default_unit_job_id;
 230
 231         /* Data specific to the Automount subsystem */
 232         int dev_autofs_fd;
 233
 234         /* Data specific to the cgroup subsystem */
 235         Hashmap *cgroup_unit;
 236         CGroupMask cgroup_supported;
 237         char *cgroup_root;
 238
 239         /* Notifications from cgroups, when the unified hierarchy is used is done via inotify. */
 240         int cgroup_inotify_fd;
 241         sd_event_source *cgroup_inotify_event_source;
 242         Hashmap *cgroup_inotify_wd_unit;
 243
 244         /* A defer event for handling cgroup empty events and processing them after SIGCHLD in all cases. */
 245         sd_event_source *cgroup_empty_event_source;
 246
 247         /* Make sure the user cannot accidentally unmount our cgroup
 248          * file system */
 249         int pin_cgroupfs_fd;
 250
 251         unsigned gc_marker;
 252
 253         /* The stat() data the last time we saw /etc/localtime */
 254         usec_t etc_localtime_mtime;
 255         bool etc_localtime_accessible:1;
 256
 257         /* Flags */
 258         ManagerExitCode exit_code:5;
 259
 260         bool dispatching_load_queue:1;
 261         bool dispatching_dbus_queue:1;
 262
 263         bool taint_usr:1;
 264
 265         /* Have we already sent out the READY=1 notification? */
 266         bool ready_sent:1;
 267
 268         /* Have we already printed the taint line if necessary? */
 269         bool taint_logged:1;
 270
 271         /* Have we ever changed the "kernel.pid_max" sysctl? */
 272         bool sysctl_pid_max_changed:1;
 273
 274         unsigned test_run_flags:8;
 275
 276         /* If non-zero, exit with the following value when the systemd
 277          * process terminate. Useful for containers: systemd-nspawn could get
 278          * the return value. */
 279         uint8_t return_value;
 280
 281         ShowStatus show_status;
 282         char *confirm_spawn;
 283         bool no_console_output;
 284         bool service_watchdogs;
 285
 286         ExecOutput default_std_output, default_std_error;
 287
 288         usec_t default_restart_usec, default_timeout_start_usec, default_timeout_stop_usec;
 289
 290         usec_t default_start_limit_interval;
 291         unsigned default_start_limit_burst;
 292
 293         bool default_cpu_accounting;
 294         bool default_memory_accounting;
 295         bool default_io_accounting;
 296         bool default_blockio_accounting;
 297         bool default_tasks_accounting;
 298         bool default_ip_accounting;
 299
 300         uint64_t default_tasks_max;
 301         usec_t default_timer_accuracy_usec;
 302
 303         int original_log_level;
 304         LogTarget original_log_target;
 305         bool log_level_overridden:1;
 306         bool log_target_overridden:1;
 307
 308         struct rlimit *rlimit[_RLIMIT_MAX];
 309
 310         /* non-zero if we are reloading or reexecuting, */
 311         int n_reloading;
 312         /* A set which contains all jobs that started before reload and finished
 313          * during it */
 314         Set *pending_finished_jobs;
 315
 316         unsigned n_installed_jobs;
 317         unsigned n_failed_jobs;
 318
 319         /* Jobs in progress watching */
 320         unsigned n_running_jobs;
 321         unsigned n_on_console;
 322         unsigned jobs_in_progress_iteration;
 323
 324         /* Do we have any outstanding password prompts? */
 325         int have_ask_password;
 326         int ask_password_inotify_fd;
 327         sd_event_source *ask_password_event_source;
 328
 329         /* Type=idle pipes */
 330         int idle_pipe[4];
 331         sd_event_source *idle_pipe_event_source;
 332
 333         char *switch_root;
 334         char *switch_root_init;
 335
 336         /* This maps all possible path prefixes to the units needing
 337          * them. It's a hashmap with a path string as key and a Set as
 338          * value where Unit objects are contained. */
 339         Hashmap *units_requiring_mounts_for;
 340
 341         /* Used for processing polkit authorization responses */
 342         Hashmap *polkit_registry;
 343
 344         /* Dynamic users/groups, indexed by their name */
 345         Hashmap *dynamic_users;
 346
 347         /* Keep track of all UIDs and GIDs any of our services currently use. This is useful for the RemoveIPC= logic. */
 348         Hashmap *uid_refs;
 349         Hashmap *gid_refs;
 350
 351         /* ExecRuntime, indexed by their owner unit id */
 352         Hashmap *exec_runtime_by_id;
 353
 354         /* When the user hits C-A-D more than 7 times per 2s, do something immediately... */
 355         RateLimit ctrl_alt_del_ratelimit;
 356         EmergencyAction cad_burst_action;
 357
 358         const char *unit_log_field;
 359         const char *unit_log_format_string;
 360
 361         const char *invocation_log_field;
 362         const char *invocation_log_format_string;
 363
 364         int first_boot; /* tri-state */
 365
 366         /* Prefixes of e.g. RuntimeDirectory= */
 367         char *prefix[_EXEC_DIRECTORY_TYPE_MAX];
 368
 369         /* Used in the SIGCHLD and sd_notify() message invocation logic to avoid that we dispatch the same event
 370          * multiple times on the same unit. */
 371         unsigned sigchldgen;
 372         unsigned notifygen;
 373 };
 374
 375 #define MANAGER_IS_SYSTEM(m) ((m)->unit_file_scope == UNIT_FILE_SYSTEM)
 376 #define MANAGER_IS_USER(m) ((m)->unit_file_scope != UNIT_FILE_SYSTEM)
 377
 378 #define MANAGER_IS_RELOADING(m) ((m)->n_reloading > 0)
 379
 380 #define MANAGER_IS_FINISHED(m) (dual_timestamp_is_set((m)->timestamps + MANAGER_TIMESTAMP_FINISH))
 381
 382 /* The exit code is set to OK as soon as we enter the main loop, and set otherwise as soon as we are done with it */
 383 #define MANAGER_IS_RUNNING(m) ((m)->exit_code == MANAGER_OK)
 384
 385 int manager_new(UnitFileScope scope, unsigned test_run_flags, Manager **m);
 386 Manager* manager_free(Manager *m);
 387 DEFINE_TRIVIAL_CLEANUP_FUNC(Manager*, manager_free);
 388
 389 int manager_startup(Manager *m, FILE *serialization, FDSet *fds);
 390
 391 Job *manager_get_job(Manager *m, uint32_t id);
 392 Unit *manager_get_unit(Manager *m, const char *name);
 393
 394 int manager_get_job_from_dbus_path(Manager *m, const char *s, Job **_j);
 395
 396 int manager_load_unit_prepare(Manager *m, const char *name, const char *path, sd_bus_error *e, Unit **_ret);
 397 int manager_load_unit(Manager *m, const char *name, const char *path, sd_bus_error *e, Unit **_ret);
 398 int manager_load_startable_unit_or_warn(Manager *m, const char *name, const char *path, Unit **ret);
 399 int manager_load_unit_from_dbus_path(Manager *m, const char *s, sd_bus_error *e, Unit **_u);
 400
 401 int manager_add_job(Manager *m, JobType type, Unit *unit, JobMode mode, sd_bus_error *e, Job **_ret);
 402 int manager_add_job_by_name(Manager *m, JobType type, const char *name, JobMode mode, sd_bus_error *e, Job **_ret);
 403 int manager_add_job_by_name_and_warn(Manager *m, JobType type, const char *name, JobMode mode, Job **ret);
 404 int manager_propagate_reload(Manager *m, Unit *unit, JobMode mode, sd_bus_error *e);
 405
 406 void manager_dump_units(Manager *s, FILE *f, const char *prefix);
 407 void manager_dump_jobs(Manager *s, FILE *f, const char *prefix);
 408 void manager_dump(Manager *s, FILE *f, const char *prefix);
 409 int manager_get_dump_string(Manager *m, char **ret);
 410
 411 void manager_clear_jobs(Manager *m);
 412
 413 unsigned manager_dispatch_load_queue(Manager *m);
 414
 415 int manager_environment_add(Manager *m, char **minus, char **plus);
 416 int manager_set_default_rlimits(Manager *m, struct rlimit **default_rlimit);
 417
 418 int manager_loop(Manager *m);
 419
 420 int manager_open_serialization(Manager *m, FILE **_f);
 421
 422 int manager_serialize(Manager *m, FILE *f, FDSet *fds, bool switching_root);
 423 int manager_deserialize(Manager *m, FILE *f, FDSet *fds);
 424
 425 int manager_reload(Manager *m);
 426
 427 void manager_reset_failed(Manager *m);
 428
 429 void manager_send_unit_audit(Manager *m, Unit *u, int type, bool success);
 430 void manager_send_unit_plymouth(Manager *m, Unit *u);
 431
 432 bool manager_unit_inactive_or_pending(Manager *m, const char *name);
 433
 434 void manager_check_finished(Manager *m);
 435
 436 void manager_recheck_dbus(Manager *m);
 437 void manager_recheck_journal(Manager *m);
 438
 439 void manager_set_show_status(Manager *m, ShowStatus mode);
 440 void manager_set_first_boot(Manager *m, bool b);
 441
 442 void manager_status_printf(Manager *m, StatusType type, const char *status, const char *format, ...) _printf_(4,5);
 443 void manager_flip_auto_status(Manager *m, bool enable);
 444
 445 Set *manager_get_units_requiring_mounts_for(Manager *m, const char *path);
 446
 447 ManagerState manager_state(Manager *m);
 448
 449 int manager_update_failed_units(Manager *m, Unit *u, bool failed);
 450
 451 void manager_unref_uid(Manager *m, uid_t uid, bool destroy_now);
 452 int manager_ref_uid(Manager *m, uid_t uid, bool clean_ipc);
 453
 454 void manager_unref_gid(Manager *m, gid_t gid, bool destroy_now);
 455 int manager_ref_gid(Manager *m, gid_t gid, bool destroy_now);
 456
 457 void manager_vacuum_uid_refs(Manager *m);
 458 void manager_vacuum_gid_refs(Manager *m);
 459
 460 void manager_serialize_uid_refs(Manager *m, FILE *f);
 461 void manager_deserialize_uid_refs_one(Manager *m, const char *value);
 462
 463 void manager_serialize_gid_refs(Manager *m, FILE *f);
 464 void manager_deserialize_gid_refs_one(Manager *m, const char *value);
 465
 466 char *manager_taint_string(Manager *m);
 467
 468 void manager_ref_console(Manager *m);
 469 void manager_unref_console(Manager *m);
 470
 471 void manager_override_log_level(Manager *m, int level);
 472 void manager_restore_original_log_level(Manager *m);
 473
 474 void manager_override_log_target(Manager *m, LogTarget target);
 475 void manager_restore_original_log_target(Manager *m);
 476
 477 const char *manager_state_to_string(ManagerState m) _const_;
 478 ManagerState manager_state_from_string(const char *s) _pure_;
 479
 480 const char *manager_get_confirm_spawn(Manager *m);
 481 bool manager_is_confirm_spawn_disabled(Manager *m);
 482 void manager_disable_confirm_spawn(void);
 483
 484 const char *manager_timestamp_to_string(ManagerTimestamp m) _const_;
 485 ManagerTimestamp manager_timestamp_from_string(const char *s) _pure_;