1 /* SPDX-License-Identifier: LGPL-2.1+ */
3 This file is part of systemd.
5 Copyright 2010 Lennart Poettering
7 systemd is free software; you can redistribute it and/or modify it
8 under the terms of the GNU Lesser General Public License as published by
9 the Free Software Foundation; either version 2.1 of the License, or
10 (at your option) any later version.
12 systemd is distributed in the hope that it will be useful, but
13 WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 Lesser General Public License for more details.
17 You should have received a copy of the GNU Lesser General Public License
18 along with systemd; If not, see <http://www.gnu.org/licenses/>.
24 #include <sys/prctl.h>
29 #include "sd-messages.h"
31 #include "alloc-util.h"
32 #include "bus-common-errors.h"
34 #include "cgroup-util.h"
35 #include "dbus-unit.h"
41 #include "fileio-label.h"
42 #include "format-util.h"
44 #include "id128-util.h"
46 #include "load-dropin.h"
47 #include "load-fragment.h"
52 #include "parse-util.h"
53 #include "path-util.h"
54 #include "process-util.h"
56 #include "signal-util.h"
57 #include "sparse-endian.h"
59 #include "specifier.h"
60 #include "stat-util.h"
61 #include "stdio-util.h"
62 #include "string-table.h"
63 #include "string-util.h"
65 #include "umask-util.h"
66 #include "unit-name.h"
68 #include "user-util.h"
71 const UnitVTable
* const unit_vtable
[_UNIT_TYPE_MAX
] = {
72 [UNIT_SERVICE
] = &service_vtable
,
73 [UNIT_SOCKET
] = &socket_vtable
,
74 [UNIT_TARGET
] = &target_vtable
,
75 [UNIT_DEVICE
] = &device_vtable
,
76 [UNIT_MOUNT
] = &mount_vtable
,
77 [UNIT_AUTOMOUNT
] = &automount_vtable
,
78 [UNIT_SWAP
] = &swap_vtable
,
79 [UNIT_TIMER
] = &timer_vtable
,
80 [UNIT_PATH
] = &path_vtable
,
81 [UNIT_SLICE
] = &slice_vtable
,
82 [UNIT_SCOPE
] = &scope_vtable
,
85 static void maybe_warn_about_dependency(Unit
*u
, const char *other
, UnitDependency dependency
);
87 Unit
*unit_new(Manager
*m
, size_t size
) {
91 assert(size
>= sizeof(Unit
));
97 u
->names
= set_new(&string_hash_ops
);
102 u
->type
= _UNIT_TYPE_INVALID
;
103 u
->default_dependencies
= true;
104 u
->unit_file_state
= _UNIT_FILE_STATE_INVALID
;
105 u
->unit_file_preset
= -1;
106 u
->on_failure_job_mode
= JOB_REPLACE
;
107 u
->cgroup_inotify_wd
= -1;
108 u
->job_timeout
= USEC_INFINITY
;
109 u
->job_running_timeout
= USEC_INFINITY
;
110 u
->ref_uid
= UID_INVALID
;
111 u
->ref_gid
= GID_INVALID
;
112 u
->cpu_usage_last
= NSEC_INFINITY
;
113 u
->cgroup_bpf_state
= UNIT_CGROUP_BPF_INVALIDATED
;
115 u
->ip_accounting_ingress_map_fd
= -1;
116 u
->ip_accounting_egress_map_fd
= -1;
117 u
->ipv4_allow_map_fd
= -1;
118 u
->ipv6_allow_map_fd
= -1;
119 u
->ipv4_deny_map_fd
= -1;
120 u
->ipv6_deny_map_fd
= -1;
122 u
->last_section_private
= -1;
124 RATELIMIT_INIT(u
->start_limit
, m
->default_start_limit_interval
, m
->default_start_limit_burst
);
125 RATELIMIT_INIT(u
->auto_stop_ratelimit
, 10 * USEC_PER_SEC
, 16);
130 int unit_new_for_name(Manager
*m
, size_t size
, const char *name
, Unit
**ret
) {
131 _cleanup_(unit_freep
) Unit
*u
= NULL
;
134 u
= unit_new(m
, size
);
138 r
= unit_add_name(u
, name
);
147 bool unit_has_name(Unit
*u
, const char *name
) {
151 return set_contains(u
->names
, (char*) name
);
154 static void unit_init(Unit
*u
) {
161 assert(u
->type
>= 0);
163 cc
= unit_get_cgroup_context(u
);
165 cgroup_context_init(cc
);
167 /* Copy in the manager defaults into the cgroup
168 * context, _before_ the rest of the settings have
169 * been initialized */
171 cc
->cpu_accounting
= u
->manager
->default_cpu_accounting
;
172 cc
->io_accounting
= u
->manager
->default_io_accounting
;
173 cc
->ip_accounting
= u
->manager
->default_ip_accounting
;
174 cc
->blockio_accounting
= u
->manager
->default_blockio_accounting
;
175 cc
->memory_accounting
= u
->manager
->default_memory_accounting
;
176 cc
->tasks_accounting
= u
->manager
->default_tasks_accounting
;
177 cc
->ip_accounting
= u
->manager
->default_ip_accounting
;
179 if (u
->type
!= UNIT_SLICE
)
180 cc
->tasks_max
= u
->manager
->default_tasks_max
;
183 ec
= unit_get_exec_context(u
);
185 exec_context_init(ec
);
187 ec
->keyring_mode
= MANAGER_IS_SYSTEM(u
->manager
) ?
188 EXEC_KEYRING_SHARED
: EXEC_KEYRING_INHERIT
;
191 kc
= unit_get_kill_context(u
);
193 kill_context_init(kc
);
195 if (UNIT_VTABLE(u
)->init
)
196 UNIT_VTABLE(u
)->init(u
);
199 int unit_add_name(Unit
*u
, const char *text
) {
200 _cleanup_free_
char *s
= NULL
, *i
= NULL
;
207 if (unit_name_is_valid(text
, UNIT_NAME_TEMPLATE
)) {
212 r
= unit_name_replace_instance(text
, u
->instance
, &s
);
221 if (set_contains(u
->names
, s
))
223 if (hashmap_contains(u
->manager
->units
, s
))
226 if (!unit_name_is_valid(s
, UNIT_NAME_PLAIN
|UNIT_NAME_INSTANCE
))
229 t
= unit_name_to_type(s
);
233 if (u
->type
!= _UNIT_TYPE_INVALID
&& t
!= u
->type
)
236 r
= unit_name_to_instance(s
, &i
);
240 if (i
&& !unit_type_may_template(t
))
243 /* Ensure that this unit is either instanced or not instanced,
244 * but not both. Note that we do allow names with different
245 * instance names however! */
246 if (u
->type
!= _UNIT_TYPE_INVALID
&& !u
->instance
!= !i
)
249 if (!unit_type_may_alias(t
) && !set_isempty(u
->names
))
252 if (hashmap_size(u
->manager
->units
) >= MANAGER_MAX_NAMES
)
255 r
= set_put(u
->names
, s
);
260 r
= hashmap_put(u
->manager
->units
, s
, u
);
262 (void) set_remove(u
->names
, s
);
266 if (u
->type
== _UNIT_TYPE_INVALID
) {
271 LIST_PREPEND(units_by_type
, u
->manager
->units_by_type
[t
], u
);
280 unit_add_to_dbus_queue(u
);
284 int unit_choose_id(Unit
*u
, const char *name
) {
285 _cleanup_free_
char *t
= NULL
;
292 if (unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
297 r
= unit_name_replace_instance(name
, u
->instance
, &t
);
304 /* Selects one of the names of this unit as the id */
305 s
= set_get(u
->names
, (char*) name
);
309 /* Determine the new instance from the new id */
310 r
= unit_name_to_instance(s
, &i
);
319 unit_add_to_dbus_queue(u
);
324 int unit_set_description(Unit
*u
, const char *description
) {
329 r
= free_and_strdup(&u
->description
, empty_to_null(description
));
333 unit_add_to_dbus_queue(u
);
338 bool unit_may_gc(Unit
*u
) {
339 UnitActiveState state
;
344 /* Checks whether the unit is ready to be unloaded for garbage collection.
345 * Returns true when the unit may be collected, and false if there's some
346 * reason to keep it loaded.
348 * References from other units are *not* checked here. Instead, this is done
349 * in unit_gc_sweep(), but using markers to properly collect dependency loops.
358 state
= unit_active_state(u
);
360 /* If the unit is inactive and failed and no job is queued for it, then release its runtime resources */
361 if (UNIT_IS_INACTIVE_OR_FAILED(state
) &&
362 UNIT_VTABLE(u
)->release_resources
)
363 UNIT_VTABLE(u
)->release_resources(u
);
368 if (sd_bus_track_count(u
->bus_track
) > 0)
371 /* But we keep the unit object around for longer when it is referenced or configured to not be gc'ed */
372 switch (u
->collect_mode
) {
374 case COLLECT_INACTIVE
:
375 if (state
!= UNIT_INACTIVE
)
380 case COLLECT_INACTIVE_OR_FAILED
:
381 if (!IN_SET(state
, UNIT_INACTIVE
, UNIT_FAILED
))
387 assert_not_reached("Unknown garbage collection mode");
390 if (u
->cgroup_path
) {
391 /* If the unit has a cgroup, then check whether there's anything in it. If so, we should stay
392 * around. Units with active processes should never be collected. */
394 r
= cg_is_empty_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
);
396 log_unit_debug_errno(u
, r
, "Failed to determine whether cgroup %s is empty: %m", u
->cgroup_path
);
401 if (UNIT_VTABLE(u
)->may_gc
&& !UNIT_VTABLE(u
)->may_gc(u
))
407 void unit_add_to_load_queue(Unit
*u
) {
409 assert(u
->type
!= _UNIT_TYPE_INVALID
);
411 if (u
->load_state
!= UNIT_STUB
|| u
->in_load_queue
)
414 LIST_PREPEND(load_queue
, u
->manager
->load_queue
, u
);
415 u
->in_load_queue
= true;
418 void unit_add_to_cleanup_queue(Unit
*u
) {
421 if (u
->in_cleanup_queue
)
424 LIST_PREPEND(cleanup_queue
, u
->manager
->cleanup_queue
, u
);
425 u
->in_cleanup_queue
= true;
428 void unit_add_to_gc_queue(Unit
*u
) {
431 if (u
->in_gc_queue
|| u
->in_cleanup_queue
)
437 LIST_PREPEND(gc_queue
, u
->manager
->gc_unit_queue
, u
);
438 u
->in_gc_queue
= true;
441 void unit_add_to_dbus_queue(Unit
*u
) {
443 assert(u
->type
!= _UNIT_TYPE_INVALID
);
445 if (u
->load_state
== UNIT_STUB
|| u
->in_dbus_queue
)
448 /* Shortcut things if nobody cares */
449 if (sd_bus_track_count(u
->manager
->subscribed
) <= 0 &&
450 sd_bus_track_count(u
->bus_track
) <= 0 &&
451 set_isempty(u
->manager
->private_buses
)) {
452 u
->sent_dbus_new_signal
= true;
456 LIST_PREPEND(dbus_queue
, u
->manager
->dbus_unit_queue
, u
);
457 u
->in_dbus_queue
= true;
460 static void bidi_set_free(Unit
*u
, Hashmap
*h
) {
467 /* Frees the hashmap and makes sure we are dropped from the inverse pointers */
469 HASHMAP_FOREACH_KEY(v
, other
, h
, i
) {
472 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
473 hashmap_remove(other
->dependencies
[d
], u
);
475 unit_add_to_gc_queue(other
);
481 static void unit_remove_transient(Unit
*u
) {
489 if (u
->fragment_path
)
490 (void) unlink(u
->fragment_path
);
492 STRV_FOREACH(i
, u
->dropin_paths
) {
493 _cleanup_free_
char *p
= NULL
, *pp
= NULL
;
495 p
= dirname_malloc(*i
); /* Get the drop-in directory from the drop-in file */
499 pp
= dirname_malloc(p
); /* Get the config directory from the drop-in directory */
503 /* Only drop transient drop-ins */
504 if (!path_equal(u
->manager
->lookup_paths
.transient
, pp
))
512 static void unit_free_requires_mounts_for(Unit
*u
) {
516 _cleanup_free_
char *path
;
518 path
= hashmap_steal_first_key(u
->requires_mounts_for
);
522 char s
[strlen(path
) + 1];
524 PATH_FOREACH_PREFIX_MORE(s
, path
) {
528 x
= hashmap_get2(u
->manager
->units_requiring_mounts_for
, s
, (void**) &y
);
532 (void) set_remove(x
, u
);
534 if (set_isempty(x
)) {
535 (void) hashmap_remove(u
->manager
->units_requiring_mounts_for
, y
);
543 u
->requires_mounts_for
= hashmap_free(u
->requires_mounts_for
);
546 static void unit_done(Unit
*u
) {
555 if (UNIT_VTABLE(u
)->done
)
556 UNIT_VTABLE(u
)->done(u
);
558 ec
= unit_get_exec_context(u
);
560 exec_context_done(ec
);
562 cc
= unit_get_cgroup_context(u
);
564 cgroup_context_done(cc
);
567 void unit_free(Unit
*u
) {
575 u
->transient_file
= safe_fclose(u
->transient_file
);
577 if (!MANAGER_IS_RELOADING(u
->manager
))
578 unit_remove_transient(u
);
580 bus_unit_send_removed_signal(u
);
584 sd_bus_slot_unref(u
->match_bus_slot
);
586 sd_bus_track_unref(u
->bus_track
);
587 u
->deserialized_refs
= strv_free(u
->deserialized_refs
);
589 unit_free_requires_mounts_for(u
);
591 SET_FOREACH(t
, u
->names
, i
)
592 hashmap_remove_value(u
->manager
->units
, t
, u
);
594 if (!sd_id128_is_null(u
->invocation_id
))
595 hashmap_remove_value(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
609 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
610 bidi_set_free(u
, u
->dependencies
[d
]);
613 manager_unref_console(u
->manager
);
615 unit_release_cgroup(u
);
617 if (!MANAGER_IS_RELOADING(u
->manager
))
618 unit_unlink_state_files(u
);
620 unit_unref_uid_gid(u
, false);
622 (void) manager_update_failed_units(u
->manager
, u
, false);
623 set_remove(u
->manager
->startup_units
, u
);
625 unit_unwatch_all_pids(u
);
627 unit_ref_unset(&u
->slice
);
628 while (u
->refs_by_target
)
629 unit_ref_unset(u
->refs_by_target
);
631 if (u
->type
!= _UNIT_TYPE_INVALID
)
632 LIST_REMOVE(units_by_type
, u
->manager
->units_by_type
[u
->type
], u
);
634 if (u
->in_load_queue
)
635 LIST_REMOVE(load_queue
, u
->manager
->load_queue
, u
);
637 if (u
->in_dbus_queue
)
638 LIST_REMOVE(dbus_queue
, u
->manager
->dbus_unit_queue
, u
);
641 LIST_REMOVE(gc_queue
, u
->manager
->gc_unit_queue
, u
);
643 if (u
->in_cgroup_realize_queue
)
644 LIST_REMOVE(cgroup_realize_queue
, u
->manager
->cgroup_realize_queue
, u
);
646 if (u
->in_cgroup_empty_queue
)
647 LIST_REMOVE(cgroup_empty_queue
, u
->manager
->cgroup_empty_queue
, u
);
649 if (u
->in_cleanup_queue
)
650 LIST_REMOVE(cleanup_queue
, u
->manager
->cleanup_queue
, u
);
652 if (u
->in_target_deps_queue
)
653 LIST_REMOVE(target_deps_queue
, u
->manager
->target_deps_queue
, u
);
655 safe_close(u
->ip_accounting_ingress_map_fd
);
656 safe_close(u
->ip_accounting_egress_map_fd
);
658 safe_close(u
->ipv4_allow_map_fd
);
659 safe_close(u
->ipv6_allow_map_fd
);
660 safe_close(u
->ipv4_deny_map_fd
);
661 safe_close(u
->ipv6_deny_map_fd
);
663 bpf_program_unref(u
->ip_bpf_ingress
);
664 bpf_program_unref(u
->ip_bpf_ingress_installed
);
665 bpf_program_unref(u
->ip_bpf_egress
);
666 bpf_program_unref(u
->ip_bpf_egress_installed
);
668 condition_free_list(u
->conditions
);
669 condition_free_list(u
->asserts
);
671 free(u
->description
);
672 strv_free(u
->documentation
);
673 free(u
->fragment_path
);
674 free(u
->source_path
);
675 strv_free(u
->dropin_paths
);
678 free(u
->job_timeout_reboot_arg
);
680 set_free_free(u
->names
);
687 UnitActiveState
unit_active_state(Unit
*u
) {
690 if (u
->load_state
== UNIT_MERGED
)
691 return unit_active_state(unit_follow_merge(u
));
693 /* After a reload it might happen that a unit is not correctly
694 * loaded but still has a process around. That's why we won't
695 * shortcut failed loading to UNIT_INACTIVE_FAILED. */
697 return UNIT_VTABLE(u
)->active_state(u
);
700 const char* unit_sub_state_to_string(Unit
*u
) {
703 return UNIT_VTABLE(u
)->sub_state_to_string(u
);
706 static int set_complete_move(Set
**s
, Set
**other
) {
714 return set_move(*s
, *other
);
716 *s
= TAKE_PTR(*other
);
721 static int hashmap_complete_move(Hashmap
**s
, Hashmap
**other
) {
729 return hashmap_move(*s
, *other
);
731 *s
= TAKE_PTR(*other
);
736 static int merge_names(Unit
*u
, Unit
*other
) {
744 r
= set_complete_move(&u
->names
, &other
->names
);
748 set_free_free(other
->names
);
752 SET_FOREACH(t
, u
->names
, i
)
753 assert_se(hashmap_replace(u
->manager
->units
, t
, u
) == 0);
758 static int reserve_dependencies(Unit
*u
, Unit
*other
, UnitDependency d
) {
763 assert(d
< _UNIT_DEPENDENCY_MAX
);
766 * If u does not have this dependency set allocated, there is no need
767 * to reserve anything. In that case other's set will be transferred
768 * as a whole to u by complete_move().
770 if (!u
->dependencies
[d
])
773 /* merge_dependencies() will skip a u-on-u dependency */
774 n_reserve
= hashmap_size(other
->dependencies
[d
]) - !!hashmap_get(other
->dependencies
[d
], u
);
776 return hashmap_reserve(u
->dependencies
[d
], n_reserve
);
779 static void merge_dependencies(Unit
*u
, Unit
*other
, const char *other_id
, UnitDependency d
) {
785 /* Merges all dependencies of type 'd' of the unit 'other' into the deps of the unit 'u' */
789 assert(d
< _UNIT_DEPENDENCY_MAX
);
791 /* Fix backwards pointers. Let's iterate through all dependendent units of the other unit. */
792 HASHMAP_FOREACH_KEY(v
, back
, other
->dependencies
[d
], i
) {
795 /* Let's now iterate through the dependencies of that dependencies of the other units, looking for
796 * pointers back, and let's fix them up, to instead point to 'u'. */
798 for (k
= 0; k
< _UNIT_DEPENDENCY_MAX
; k
++) {
800 /* Do not add dependencies between u and itself. */
801 if (hashmap_remove(back
->dependencies
[k
], other
))
802 maybe_warn_about_dependency(u
, other_id
, k
);
804 UnitDependencyInfo di_u
, di_other
, di_merged
;
806 /* Let's drop this dependency between "back" and "other", and let's create it between
807 * "back" and "u" instead. Let's merge the bit masks of the dependency we are moving,
808 * and any such dependency which might already exist */
810 di_other
.data
= hashmap_get(back
->dependencies
[k
], other
);
812 continue; /* dependency isn't set, let's try the next one */
814 di_u
.data
= hashmap_get(back
->dependencies
[k
], u
);
816 di_merged
= (UnitDependencyInfo
) {
817 .origin_mask
= di_u
.origin_mask
| di_other
.origin_mask
,
818 .destination_mask
= di_u
.destination_mask
| di_other
.destination_mask
,
821 r
= hashmap_remove_and_replace(back
->dependencies
[k
], other
, u
, di_merged
.data
);
823 log_warning_errno(r
, "Failed to remove/replace: back=%s other=%s u=%s: %m", back
->id
, other_id
, u
->id
);
826 /* assert_se(hashmap_remove_and_replace(back->dependencies[k], other, u, di_merged.data) >= 0); */
832 /* Also do not move dependencies on u to itself */
833 back
= hashmap_remove(other
->dependencies
[d
], u
);
835 maybe_warn_about_dependency(u
, other_id
, d
);
837 /* The move cannot fail. The caller must have performed a reservation. */
838 assert_se(hashmap_complete_move(&u
->dependencies
[d
], &other
->dependencies
[d
]) == 0);
840 other
->dependencies
[d
] = hashmap_free(other
->dependencies
[d
]);
843 int unit_merge(Unit
*u
, Unit
*other
) {
845 const char *other_id
= NULL
;
850 assert(u
->manager
== other
->manager
);
851 assert(u
->type
!= _UNIT_TYPE_INVALID
);
853 other
= unit_follow_merge(other
);
858 if (u
->type
!= other
->type
)
861 if (!u
->instance
!= !other
->instance
)
864 if (!unit_type_may_alias(u
->type
)) /* Merging only applies to unit names that support aliases */
867 if (!IN_SET(other
->load_state
, UNIT_STUB
, UNIT_NOT_FOUND
))
876 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
880 other_id
= strdupa(other
->id
);
882 /* Make reservations to ensure merge_dependencies() won't fail */
883 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
884 r
= reserve_dependencies(u
, other
, d
);
886 * We don't rollback reservations if we fail. We don't have
887 * a way to undo reservations. A reservation is not a leak.
894 r
= merge_names(u
, other
);
898 /* Redirect all references */
899 while (other
->refs_by_target
)
900 unit_ref_set(other
->refs_by_target
, other
->refs_by_target
->source
, u
);
902 /* Merge dependencies */
903 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++)
904 merge_dependencies(u
, other
, other_id
, d
);
906 other
->load_state
= UNIT_MERGED
;
907 other
->merged_into
= u
;
909 /* If there is still some data attached to the other node, we
910 * don't need it anymore, and can free it. */
911 if (other
->load_state
!= UNIT_STUB
)
912 if (UNIT_VTABLE(other
)->done
)
913 UNIT_VTABLE(other
)->done(other
);
915 unit_add_to_dbus_queue(u
);
916 unit_add_to_cleanup_queue(other
);
921 int unit_merge_by_name(Unit
*u
, const char *name
) {
922 _cleanup_free_
char *s
= NULL
;
929 if (unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
933 r
= unit_name_replace_instance(name
, u
->instance
, &s
);
940 other
= manager_get_unit(u
->manager
, name
);
942 return unit_merge(u
, other
);
944 return unit_add_name(u
, name
);
947 Unit
* unit_follow_merge(Unit
*u
) {
950 while (u
->load_state
== UNIT_MERGED
)
951 assert_se(u
= u
->merged_into
);
956 int unit_add_exec_dependencies(Unit
*u
, ExecContext
*c
) {
957 ExecDirectoryType dt
;
964 if (c
->working_directory
) {
965 r
= unit_require_mounts_for(u
, c
->working_directory
, UNIT_DEPENDENCY_FILE
);
970 if (c
->root_directory
) {
971 r
= unit_require_mounts_for(u
, c
->root_directory
, UNIT_DEPENDENCY_FILE
);
977 r
= unit_require_mounts_for(u
, c
->root_image
, UNIT_DEPENDENCY_FILE
);
982 for (dt
= 0; dt
< _EXEC_DIRECTORY_TYPE_MAX
; dt
++) {
983 if (!u
->manager
->prefix
[dt
])
986 STRV_FOREACH(dp
, c
->directories
[dt
].paths
) {
987 _cleanup_free_
char *p
;
989 p
= strjoin(u
->manager
->prefix
[dt
], "/", *dp
);
993 r
= unit_require_mounts_for(u
, p
, UNIT_DEPENDENCY_FILE
);
999 if (!MANAGER_IS_SYSTEM(u
->manager
))
1002 if (c
->private_tmp
) {
1005 FOREACH_STRING(p
, "/tmp", "/var/tmp") {
1006 r
= unit_require_mounts_for(u
, p
, UNIT_DEPENDENCY_FILE
);
1011 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_TMPFILES_SETUP_SERVICE
, NULL
, true, UNIT_DEPENDENCY_FILE
);
1016 if (!IN_SET(c
->std_output
,
1017 EXEC_OUTPUT_JOURNAL
, EXEC_OUTPUT_JOURNAL_AND_CONSOLE
,
1018 EXEC_OUTPUT_KMSG
, EXEC_OUTPUT_KMSG_AND_CONSOLE
,
1019 EXEC_OUTPUT_SYSLOG
, EXEC_OUTPUT_SYSLOG_AND_CONSOLE
) &&
1020 !IN_SET(c
->std_error
,
1021 EXEC_OUTPUT_JOURNAL
, EXEC_OUTPUT_JOURNAL_AND_CONSOLE
,
1022 EXEC_OUTPUT_KMSG
, EXEC_OUTPUT_KMSG_AND_CONSOLE
,
1023 EXEC_OUTPUT_SYSLOG
, EXEC_OUTPUT_SYSLOG_AND_CONSOLE
))
1026 /* If syslog or kernel logging is requested, make sure our own
1027 * logging daemon is run first. */
1029 r
= unit_add_dependency_by_name(u
, UNIT_AFTER
, SPECIAL_JOURNALD_SOCKET
, NULL
, true, UNIT_DEPENDENCY_FILE
);
1036 const char *unit_description(Unit
*u
) {
1040 return u
->description
;
1042 return strna(u
->id
);
1045 static void print_unit_dependency_mask(FILE *f
, const char *kind
, UnitDependencyMask mask
, bool *space
) {
1047 UnitDependencyMask mask
;
1050 { UNIT_DEPENDENCY_FILE
, "file" },
1051 { UNIT_DEPENDENCY_IMPLICIT
, "implicit" },
1052 { UNIT_DEPENDENCY_DEFAULT
, "default" },
1053 { UNIT_DEPENDENCY_UDEV
, "udev" },
1054 { UNIT_DEPENDENCY_PATH
, "path" },
1055 { UNIT_DEPENDENCY_MOUNTINFO_IMPLICIT
, "mountinfo-implicit" },
1056 { UNIT_DEPENDENCY_MOUNTINFO_DEFAULT
, "mountinfo-default" },
1057 { UNIT_DEPENDENCY_PROC_SWAP
, "proc-swap" },
1065 for (i
= 0; i
< ELEMENTSOF(table
); i
++) {
1070 if ((mask
& table
[i
].mask
) == table
[i
].mask
) {
1078 fputs(table
[i
].name
, f
);
1080 mask
&= ~table
[i
].mask
;
1087 void unit_dump(Unit
*u
, FILE *f
, const char *prefix
) {
1091 const char *prefix2
;
1093 timestamp0
[FORMAT_TIMESTAMP_MAX
],
1094 timestamp1
[FORMAT_TIMESTAMP_MAX
],
1095 timestamp2
[FORMAT_TIMESTAMP_MAX
],
1096 timestamp3
[FORMAT_TIMESTAMP_MAX
],
1097 timestamp4
[FORMAT_TIMESTAMP_MAX
],
1098 timespan
[FORMAT_TIMESPAN_MAX
];
1100 _cleanup_set_free_ Set
*following_set
= NULL
;
1106 assert(u
->type
>= 0);
1108 prefix
= strempty(prefix
);
1109 prefix2
= strjoina(prefix
, "\t");
1113 "%s\tDescription: %s\n"
1114 "%s\tInstance: %s\n"
1115 "%s\tUnit Load State: %s\n"
1116 "%s\tUnit Active State: %s\n"
1117 "%s\tState Change Timestamp: %s\n"
1118 "%s\tInactive Exit Timestamp: %s\n"
1119 "%s\tActive Enter Timestamp: %s\n"
1120 "%s\tActive Exit Timestamp: %s\n"
1121 "%s\tInactive Enter Timestamp: %s\n"
1123 "%s\tNeed Daemon Reload: %s\n"
1124 "%s\tTransient: %s\n"
1125 "%s\tPerpetual: %s\n"
1126 "%s\tGarbage Collection Mode: %s\n"
1129 "%s\tCGroup realized: %s\n",
1131 prefix
, unit_description(u
),
1132 prefix
, strna(u
->instance
),
1133 prefix
, unit_load_state_to_string(u
->load_state
),
1134 prefix
, unit_active_state_to_string(unit_active_state(u
)),
1135 prefix
, strna(format_timestamp(timestamp0
, sizeof(timestamp0
), u
->state_change_timestamp
.realtime
)),
1136 prefix
, strna(format_timestamp(timestamp1
, sizeof(timestamp1
), u
->inactive_exit_timestamp
.realtime
)),
1137 prefix
, strna(format_timestamp(timestamp2
, sizeof(timestamp2
), u
->active_enter_timestamp
.realtime
)),
1138 prefix
, strna(format_timestamp(timestamp3
, sizeof(timestamp3
), u
->active_exit_timestamp
.realtime
)),
1139 prefix
, strna(format_timestamp(timestamp4
, sizeof(timestamp4
), u
->inactive_enter_timestamp
.realtime
)),
1140 prefix
, yes_no(unit_may_gc(u
)),
1141 prefix
, yes_no(unit_need_daemon_reload(u
)),
1142 prefix
, yes_no(u
->transient
),
1143 prefix
, yes_no(u
->perpetual
),
1144 prefix
, collect_mode_to_string(u
->collect_mode
),
1145 prefix
, strna(unit_slice_name(u
)),
1146 prefix
, strna(u
->cgroup_path
),
1147 prefix
, yes_no(u
->cgroup_realized
));
1149 if (u
->cgroup_realized_mask
!= 0) {
1150 _cleanup_free_
char *s
= NULL
;
1151 (void) cg_mask_to_string(u
->cgroup_realized_mask
, &s
);
1152 fprintf(f
, "%s\tCGroup realized mask: %s\n", prefix
, strnull(s
));
1154 if (u
->cgroup_enabled_mask
!= 0) {
1155 _cleanup_free_
char *s
= NULL
;
1156 (void) cg_mask_to_string(u
->cgroup_enabled_mask
, &s
);
1157 fprintf(f
, "%s\tCGroup enabled mask: %s\n", prefix
, strnull(s
));
1159 m
= unit_get_own_mask(u
);
1161 _cleanup_free_
char *s
= NULL
;
1162 (void) cg_mask_to_string(m
, &s
);
1163 fprintf(f
, "%s\tCGroup own mask: %s\n", prefix
, strnull(s
));
1165 m
= unit_get_members_mask(u
);
1167 _cleanup_free_
char *s
= NULL
;
1168 (void) cg_mask_to_string(m
, &s
);
1169 fprintf(f
, "%s\tCGroup members mask: %s\n", prefix
, strnull(s
));
1172 SET_FOREACH(t
, u
->names
, i
)
1173 fprintf(f
, "%s\tName: %s\n", prefix
, t
);
1175 if (!sd_id128_is_null(u
->invocation_id
))
1176 fprintf(f
, "%s\tInvocation ID: " SD_ID128_FORMAT_STR
"\n",
1177 prefix
, SD_ID128_FORMAT_VAL(u
->invocation_id
));
1179 STRV_FOREACH(j
, u
->documentation
)
1180 fprintf(f
, "%s\tDocumentation: %s\n", prefix
, *j
);
1182 following
= unit_following(u
);
1184 fprintf(f
, "%s\tFollowing: %s\n", prefix
, following
->id
);
1186 r
= unit_following_set(u
, &following_set
);
1190 SET_FOREACH(other
, following_set
, i
)
1191 fprintf(f
, "%s\tFollowing Set Member: %s\n", prefix
, other
->id
);
1194 if (u
->fragment_path
)
1195 fprintf(f
, "%s\tFragment Path: %s\n", prefix
, u
->fragment_path
);
1198 fprintf(f
, "%s\tSource Path: %s\n", prefix
, u
->source_path
);
1200 STRV_FOREACH(j
, u
->dropin_paths
)
1201 fprintf(f
, "%s\tDropIn Path: %s\n", prefix
, *j
);
1203 if (u
->failure_action
!= EMERGENCY_ACTION_NONE
)
1204 fprintf(f
, "%s\tFailure Action: %s\n", prefix
, emergency_action_to_string(u
->failure_action
));
1205 if (u
->success_action
!= EMERGENCY_ACTION_NONE
)
1206 fprintf(f
, "%s\tSuccess Action: %s\n", prefix
, emergency_action_to_string(u
->success_action
));
1208 if (u
->job_timeout
!= USEC_INFINITY
)
1209 fprintf(f
, "%s\tJob Timeout: %s\n", prefix
, format_timespan(timespan
, sizeof(timespan
), u
->job_timeout
, 0));
1211 if (u
->job_timeout_action
!= EMERGENCY_ACTION_NONE
)
1212 fprintf(f
, "%s\tJob Timeout Action: %s\n", prefix
, emergency_action_to_string(u
->job_timeout_action
));
1214 if (u
->job_timeout_reboot_arg
)
1215 fprintf(f
, "%s\tJob Timeout Reboot Argument: %s\n", prefix
, u
->job_timeout_reboot_arg
);
1217 condition_dump_list(u
->conditions
, f
, prefix
, condition_type_to_string
);
1218 condition_dump_list(u
->asserts
, f
, prefix
, assert_type_to_string
);
1220 if (dual_timestamp_is_set(&u
->condition_timestamp
))
1222 "%s\tCondition Timestamp: %s\n"
1223 "%s\tCondition Result: %s\n",
1224 prefix
, strna(format_timestamp(timestamp1
, sizeof(timestamp1
), u
->condition_timestamp
.realtime
)),
1225 prefix
, yes_no(u
->condition_result
));
1227 if (dual_timestamp_is_set(&u
->assert_timestamp
))
1229 "%s\tAssert Timestamp: %s\n"
1230 "%s\tAssert Result: %s\n",
1231 prefix
, strna(format_timestamp(timestamp1
, sizeof(timestamp1
), u
->assert_timestamp
.realtime
)),
1232 prefix
, yes_no(u
->assert_result
));
1234 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
1235 UnitDependencyInfo di
;
1238 HASHMAP_FOREACH_KEY(di
.data
, other
, u
->dependencies
[d
], i
) {
1241 fprintf(f
, "%s\t%s: %s (", prefix
, unit_dependency_to_string(d
), other
->id
);
1243 print_unit_dependency_mask(f
, "origin", di
.origin_mask
, &space
);
1244 print_unit_dependency_mask(f
, "destination", di
.destination_mask
, &space
);
1250 if (!hashmap_isempty(u
->requires_mounts_for
)) {
1251 UnitDependencyInfo di
;
1254 HASHMAP_FOREACH_KEY(di
.data
, path
, u
->requires_mounts_for
, i
) {
1257 fprintf(f
, "%s\tRequiresMountsFor: %s (", prefix
, path
);
1259 print_unit_dependency_mask(f
, "origin", di
.origin_mask
, &space
);
1260 print_unit_dependency_mask(f
, "destination", di
.destination_mask
, &space
);
1266 if (u
->load_state
== UNIT_LOADED
) {
1269 "%s\tStopWhenUnneeded: %s\n"
1270 "%s\tRefuseManualStart: %s\n"
1271 "%s\tRefuseManualStop: %s\n"
1272 "%s\tDefaultDependencies: %s\n"
1273 "%s\tOnFailureJobMode: %s\n"
1274 "%s\tIgnoreOnIsolate: %s\n",
1275 prefix
, yes_no(u
->stop_when_unneeded
),
1276 prefix
, yes_no(u
->refuse_manual_start
),
1277 prefix
, yes_no(u
->refuse_manual_stop
),
1278 prefix
, yes_no(u
->default_dependencies
),
1279 prefix
, job_mode_to_string(u
->on_failure_job_mode
),
1280 prefix
, yes_no(u
->ignore_on_isolate
));
1282 if (UNIT_VTABLE(u
)->dump
)
1283 UNIT_VTABLE(u
)->dump(u
, f
, prefix2
);
1285 } else if (u
->load_state
== UNIT_MERGED
)
1287 "%s\tMerged into: %s\n",
1288 prefix
, u
->merged_into
->id
);
1289 else if (u
->load_state
== UNIT_ERROR
)
1290 fprintf(f
, "%s\tLoad Error Code: %s\n", prefix
, strerror(-u
->load_error
));
1292 for (n
= sd_bus_track_first(u
->bus_track
); n
; n
= sd_bus_track_next(u
->bus_track
))
1293 fprintf(f
, "%s\tBus Ref: %s\n", prefix
, n
);
1296 job_dump(u
->job
, f
, prefix2
);
1299 job_dump(u
->nop_job
, f
, prefix2
);
1302 /* Common implementation for multiple backends */
1303 int unit_load_fragment_and_dropin(Unit
*u
) {
1308 /* Load a .{service,socket,...} file */
1309 r
= unit_load_fragment(u
);
1313 if (u
->load_state
== UNIT_STUB
)
1316 /* Load drop-in directory data. If u is an alias, we might be reloading the
1317 * target unit needlessly. But we cannot be sure which drops-ins have already
1318 * been loaded and which not, at least without doing complicated book-keeping,
1319 * so let's always reread all drop-ins. */
1320 return unit_load_dropin(unit_follow_merge(u
));
1323 /* Common implementation for multiple backends */
1324 int unit_load_fragment_and_dropin_optional(Unit
*u
) {
1329 /* Same as unit_load_fragment_and_dropin(), but whether
1330 * something can be loaded or not doesn't matter. */
1332 /* Load a .service file */
1333 r
= unit_load_fragment(u
);
1337 if (u
->load_state
== UNIT_STUB
)
1338 u
->load_state
= UNIT_LOADED
;
1340 /* Load drop-in directory data */
1341 return unit_load_dropin(unit_follow_merge(u
));
1344 void unit_add_to_target_deps_queue(Unit
*u
) {
1345 Manager
*m
= u
->manager
;
1349 if (u
->in_target_deps_queue
)
1352 LIST_PREPEND(target_deps_queue
, m
->target_deps_queue
, u
);
1353 u
->in_target_deps_queue
= true;
1356 int unit_add_default_target_dependency(Unit
*u
, Unit
*target
) {
1360 if (target
->type
!= UNIT_TARGET
)
1363 /* Only add the dependency if both units are loaded, so that
1364 * that loop check below is reliable */
1365 if (u
->load_state
!= UNIT_LOADED
||
1366 target
->load_state
!= UNIT_LOADED
)
1369 /* If either side wants no automatic dependencies, then let's
1371 if (!u
->default_dependencies
||
1372 !target
->default_dependencies
)
1375 /* Don't create loops */
1376 if (hashmap_get(target
->dependencies
[UNIT_BEFORE
], u
))
1379 return unit_add_dependency(target
, UNIT_AFTER
, u
, true, UNIT_DEPENDENCY_DEFAULT
);
1382 static int unit_add_slice_dependencies(Unit
*u
) {
1383 UnitDependencyMask mask
;
1386 if (!UNIT_HAS_CGROUP_CONTEXT(u
))
1389 /* Slice units are implicitly ordered against their parent slices (as this relationship is encoded in the
1390 name), while all other units are ordered based on configuration (as in their case Slice= configures the
1392 mask
= u
->type
== UNIT_SLICE
? UNIT_DEPENDENCY_IMPLICIT
: UNIT_DEPENDENCY_FILE
;
1394 if (UNIT_ISSET(u
->slice
))
1395 return unit_add_two_dependencies(u
, UNIT_AFTER
, UNIT_REQUIRES
, UNIT_DEREF(u
->slice
), true, mask
);
1397 if (unit_has_name(u
, SPECIAL_ROOT_SLICE
))
1400 return unit_add_two_dependencies_by_name(u
, UNIT_AFTER
, UNIT_REQUIRES
, SPECIAL_ROOT_SLICE
, NULL
, true, mask
);
1403 static int unit_add_mount_dependencies(Unit
*u
) {
1404 UnitDependencyInfo di
;
1411 HASHMAP_FOREACH_KEY(di
.data
, path
, u
->requires_mounts_for
, i
) {
1412 char prefix
[strlen(path
) + 1];
1414 PATH_FOREACH_PREFIX_MORE(prefix
, path
) {
1415 _cleanup_free_
char *p
= NULL
;
1418 r
= unit_name_from_path(prefix
, ".mount", &p
);
1422 m
= manager_get_unit(u
->manager
, p
);
1424 /* Make sure to load the mount unit if
1425 * it exists. If so the dependencies
1426 * on this unit will be added later
1427 * during the loading of the mount
1429 (void) manager_load_unit_prepare(u
->manager
, p
, NULL
, NULL
, &m
);
1435 if (m
->load_state
!= UNIT_LOADED
)
1438 r
= unit_add_dependency(u
, UNIT_AFTER
, m
, true, di
.origin_mask
);
1442 if (m
->fragment_path
) {
1443 r
= unit_add_dependency(u
, UNIT_REQUIRES
, m
, true, di
.origin_mask
);
1453 static int unit_add_startup_units(Unit
*u
) {
1457 c
= unit_get_cgroup_context(u
);
1461 if (c
->startup_cpu_shares
== CGROUP_CPU_SHARES_INVALID
&&
1462 c
->startup_io_weight
== CGROUP_WEIGHT_INVALID
&&
1463 c
->startup_blockio_weight
== CGROUP_BLKIO_WEIGHT_INVALID
)
1466 r
= set_ensure_allocated(&u
->manager
->startup_units
, NULL
);
1470 return set_put(u
->manager
->startup_units
, u
);
1473 int unit_load(Unit
*u
) {
1478 if (u
->in_load_queue
) {
1479 LIST_REMOVE(load_queue
, u
->manager
->load_queue
, u
);
1480 u
->in_load_queue
= false;
1483 if (u
->type
== _UNIT_TYPE_INVALID
)
1486 if (u
->load_state
!= UNIT_STUB
)
1489 if (u
->transient_file
) {
1490 r
= fflush_and_check(u
->transient_file
);
1494 u
->transient_file
= safe_fclose(u
->transient_file
);
1495 u
->fragment_mtime
= now(CLOCK_REALTIME
);
1498 if (UNIT_VTABLE(u
)->load
) {
1499 r
= UNIT_VTABLE(u
)->load(u
);
1504 if (u
->load_state
== UNIT_STUB
) {
1509 if (u
->load_state
== UNIT_LOADED
) {
1510 unit_add_to_target_deps_queue(u
);
1512 r
= unit_add_slice_dependencies(u
);
1516 r
= unit_add_mount_dependencies(u
);
1520 r
= unit_add_startup_units(u
);
1524 if (u
->on_failure_job_mode
== JOB_ISOLATE
&& hashmap_size(u
->dependencies
[UNIT_ON_FAILURE
]) > 1) {
1525 log_unit_error(u
, "More than one OnFailure= dependencies specified but OnFailureJobMode=isolate set. Refusing.");
1530 if (u
->job_running_timeout
!= USEC_INFINITY
&& u
->job_running_timeout
> u
->job_timeout
)
1531 log_unit_warning(u
, "JobRunningTimeoutSec= is greater than JobTimeoutSec=, it has no effect.");
1533 unit_update_cgroup_members_masks(u
);
1536 assert((u
->load_state
!= UNIT_MERGED
) == !u
->merged_into
);
1538 unit_add_to_dbus_queue(unit_follow_merge(u
));
1539 unit_add_to_gc_queue(u
);
1544 u
->load_state
= u
->load_state
== UNIT_STUB
? UNIT_NOT_FOUND
: UNIT_ERROR
;
1546 unit_add_to_dbus_queue(u
);
1547 unit_add_to_gc_queue(u
);
1549 log_unit_debug_errno(u
, r
, "Failed to load configuration: %m");
1554 static bool unit_condition_test_list(Unit
*u
, Condition
*first
, const char *(*to_string
)(ConditionType t
)) {
1561 /* If the condition list is empty, then it is true */
1565 /* Otherwise, if all of the non-trigger conditions apply and
1566 * if any of the trigger conditions apply (unless there are
1567 * none) we return true */
1568 LIST_FOREACH(conditions
, c
, first
) {
1571 r
= condition_test(c
);
1574 "Couldn't determine result for %s=%s%s%s, assuming failed: %m",
1576 c
->trigger
? "|" : "",
1577 c
->negate
? "!" : "",
1583 c
->trigger
? "|" : "",
1584 c
->negate
? "!" : "",
1586 condition_result_to_string(c
->result
));
1588 if (!c
->trigger
&& r
<= 0)
1591 if (c
->trigger
&& triggered
<= 0)
1595 return triggered
!= 0;
1598 static bool unit_condition_test(Unit
*u
) {
1601 dual_timestamp_get(&u
->condition_timestamp
);
1602 u
->condition_result
= unit_condition_test_list(u
, u
->conditions
, condition_type_to_string
);
1604 return u
->condition_result
;
1607 static bool unit_assert_test(Unit
*u
) {
1610 dual_timestamp_get(&u
->assert_timestamp
);
1611 u
->assert_result
= unit_condition_test_list(u
, u
->asserts
, assert_type_to_string
);
1613 return u
->assert_result
;
1616 void unit_status_printf(Unit
*u
, const char *status
, const char *unit_status_msg_format
) {
1617 DISABLE_WARNING_FORMAT_NONLITERAL
;
1618 manager_status_printf(u
->manager
, STATUS_TYPE_NORMAL
, status
, unit_status_msg_format
, unit_description(u
));
1622 _pure_
static const char* unit_get_status_message_format(Unit
*u
, JobType t
) {
1624 const UnitStatusMessageFormats
*format_table
;
1627 assert(IN_SET(t
, JOB_START
, JOB_STOP
, JOB_RELOAD
));
1629 if (t
!= JOB_RELOAD
) {
1630 format_table
= &UNIT_VTABLE(u
)->status_message_formats
;
1632 format
= format_table
->starting_stopping
[t
== JOB_STOP
];
1638 /* Return generic strings */
1640 return "Starting %s.";
1641 else if (t
== JOB_STOP
)
1642 return "Stopping %s.";
1644 return "Reloading %s.";
1647 static void unit_status_print_starting_stopping(Unit
*u
, JobType t
) {
1652 /* Reload status messages have traditionally not been printed to console. */
1653 if (!IN_SET(t
, JOB_START
, JOB_STOP
))
1656 format
= unit_get_status_message_format(u
, t
);
1658 DISABLE_WARNING_FORMAT_NONLITERAL
;
1659 unit_status_printf(u
, "", format
);
1663 static void unit_status_log_starting_stopping_reloading(Unit
*u
, JobType t
) {
1664 const char *format
, *mid
;
1669 if (!IN_SET(t
, JOB_START
, JOB_STOP
, JOB_RELOAD
))
1672 if (log_on_console())
1675 /* We log status messages for all units and all operations. */
1677 format
= unit_get_status_message_format(u
, t
);
1679 DISABLE_WARNING_FORMAT_NONLITERAL
;
1680 (void) snprintf(buf
, sizeof buf
, format
, unit_description(u
));
1683 mid
= t
== JOB_START
? "MESSAGE_ID=" SD_MESSAGE_UNIT_STARTING_STR
:
1684 t
== JOB_STOP
? "MESSAGE_ID=" SD_MESSAGE_UNIT_STOPPING_STR
:
1685 "MESSAGE_ID=" SD_MESSAGE_UNIT_RELOADING_STR
;
1687 /* Note that we deliberately use LOG_MESSAGE() instead of
1688 * LOG_UNIT_MESSAGE() here, since this is supposed to mimic
1689 * closely what is written to screen using the status output,
1690 * which is supposed the highest level, friendliest output
1691 * possible, which means we should avoid the low-level unit
1693 log_struct(LOG_INFO
,
1694 LOG_MESSAGE("%s", buf
),
1696 LOG_UNIT_INVOCATION_ID(u
),
1701 void unit_status_emit_starting_stopping_reloading(Unit
*u
, JobType t
) {
1704 assert(t
< _JOB_TYPE_MAX
);
1706 unit_status_log_starting_stopping_reloading(u
, t
);
1707 unit_status_print_starting_stopping(u
, t
);
1710 int unit_start_limit_test(Unit
*u
) {
1713 if (ratelimit_test(&u
->start_limit
)) {
1714 u
->start_limit_hit
= false;
1718 log_unit_warning(u
, "Start request repeated too quickly.");
1719 u
->start_limit_hit
= true;
1721 return emergency_action(u
->manager
, u
->start_limit_action
, u
->reboot_arg
, "unit failed");
1724 bool unit_shall_confirm_spawn(Unit
*u
) {
1727 if (manager_is_confirm_spawn_disabled(u
->manager
))
1730 /* For some reasons units remaining in the same process group
1731 * as PID 1 fail to acquire the console even if it's not used
1732 * by any process. So skip the confirmation question for them. */
1733 return !unit_get_exec_context(u
)->same_pgrp
;
1736 static bool unit_verify_deps(Unit
*u
) {
1743 /* Checks whether all BindsTo= dependencies of this unit are fulfilled — if they are also combined with
1744 * After=. We do not check Requires= or Requisite= here as they only should have an effect on the job
1745 * processing, but do not have any effect afterwards. We don't check BindsTo= dependencies that are not used in
1746 * conjunction with After= as for them any such check would make things entirely racy. */
1748 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], j
) {
1750 if (!hashmap_contains(u
->dependencies
[UNIT_AFTER
], other
))
1753 if (!UNIT_IS_ACTIVE_OR_RELOADING(unit_active_state(other
))) {
1754 log_unit_notice(u
, "Bound to unit %s, but unit isn't active.", other
->id
);
1763 * -EBADR: This unit type does not support starting.
1764 * -EALREADY: Unit is already started.
1765 * -EAGAIN: An operation is already in progress. Retry later.
1766 * -ECANCELED: Too many requests for now.
1767 * -EPROTO: Assert failed
1768 * -EINVAL: Unit not loaded
1769 * -EOPNOTSUPP: Unit type not supported
1770 * -ENOLINK: The necessary dependencies are not fulfilled.
1772 int unit_start(Unit
*u
) {
1773 UnitActiveState state
;
1778 /* If this is already started, then this will succeed. Note
1779 * that this will even succeed if this unit is not startable
1780 * by the user. This is relied on to detect when we need to
1781 * wait for units and when waiting is finished. */
1782 state
= unit_active_state(u
);
1783 if (UNIT_IS_ACTIVE_OR_RELOADING(state
))
1786 /* Units that aren't loaded cannot be started */
1787 if (u
->load_state
!= UNIT_LOADED
)
1790 /* If the conditions failed, don't do anything at all. If we
1791 * already are activating this call might still be useful to
1792 * speed up activation in case there is some hold-off time,
1793 * but we don't want to recheck the condition in that case. */
1794 if (state
!= UNIT_ACTIVATING
&&
1795 !unit_condition_test(u
)) {
1796 log_unit_debug(u
, "Starting requested but condition failed. Not starting unit.");
1800 /* If the asserts failed, fail the entire job */
1801 if (state
!= UNIT_ACTIVATING
&&
1802 !unit_assert_test(u
)) {
1803 log_unit_notice(u
, "Starting requested but asserts failed.");
1807 /* Units of types that aren't supported cannot be
1808 * started. Note that we do this test only after the condition
1809 * checks, so that we rather return condition check errors
1810 * (which are usually not considered a true failure) than "not
1811 * supported" errors (which are considered a failure).
1813 if (!unit_supported(u
))
1816 /* Let's make sure that the deps really are in order before we start this. Normally the job engine should have
1817 * taken care of this already, but let's check this here again. After all, our dependencies might not be in
1818 * effect anymore, due to a reload or due to a failed condition. */
1819 if (!unit_verify_deps(u
))
1822 /* Forward to the main object, if we aren't it. */
1823 following
= unit_following(u
);
1825 log_unit_debug(u
, "Redirecting start request from %s to %s.", u
->id
, following
->id
);
1826 return unit_start(following
);
1829 /* If it is stopped, but we cannot start it, then fail */
1830 if (!UNIT_VTABLE(u
)->start
)
1833 /* We don't suppress calls to ->start() here when we are
1834 * already starting, to allow this request to be used as a
1835 * "hurry up" call, for example when the unit is in some "auto
1836 * restart" state where it waits for a holdoff timer to elapse
1837 * before it will start again. */
1839 unit_add_to_dbus_queue(u
);
1841 return UNIT_VTABLE(u
)->start(u
);
1844 bool unit_can_start(Unit
*u
) {
1847 if (u
->load_state
!= UNIT_LOADED
)
1850 if (!unit_supported(u
))
1853 return !!UNIT_VTABLE(u
)->start
;
1856 bool unit_can_isolate(Unit
*u
) {
1859 return unit_can_start(u
) &&
1864 * -EBADR: This unit type does not support stopping.
1865 * -EALREADY: Unit is already stopped.
1866 * -EAGAIN: An operation is already in progress. Retry later.
1868 int unit_stop(Unit
*u
) {
1869 UnitActiveState state
;
1874 state
= unit_active_state(u
);
1875 if (UNIT_IS_INACTIVE_OR_FAILED(state
))
1878 following
= unit_following(u
);
1880 log_unit_debug(u
, "Redirecting stop request from %s to %s.", u
->id
, following
->id
);
1881 return unit_stop(following
);
1884 if (!UNIT_VTABLE(u
)->stop
)
1887 unit_add_to_dbus_queue(u
);
1889 return UNIT_VTABLE(u
)->stop(u
);
1892 bool unit_can_stop(Unit
*u
) {
1895 if (!unit_supported(u
))
1901 return !!UNIT_VTABLE(u
)->stop
;
1905 * -EBADR: This unit type does not support reloading.
1906 * -ENOEXEC: Unit is not started.
1907 * -EAGAIN: An operation is already in progress. Retry later.
1909 int unit_reload(Unit
*u
) {
1910 UnitActiveState state
;
1915 if (u
->load_state
!= UNIT_LOADED
)
1918 if (!unit_can_reload(u
))
1921 state
= unit_active_state(u
);
1922 if (state
== UNIT_RELOADING
)
1925 if (state
!= UNIT_ACTIVE
) {
1926 log_unit_warning(u
, "Unit cannot be reloaded because it is inactive.");
1930 following
= unit_following(u
);
1932 log_unit_debug(u
, "Redirecting reload request from %s to %s.", u
->id
, following
->id
);
1933 return unit_reload(following
);
1936 unit_add_to_dbus_queue(u
);
1938 if (!UNIT_VTABLE(u
)->reload
) {
1939 /* Unit doesn't have a reload function, but we need to propagate the reload anyway */
1940 unit_notify(u
, unit_active_state(u
), unit_active_state(u
), true);
1944 return UNIT_VTABLE(u
)->reload(u
);
1947 bool unit_can_reload(Unit
*u
) {
1950 if (UNIT_VTABLE(u
)->can_reload
)
1951 return UNIT_VTABLE(u
)->can_reload(u
);
1953 if (!hashmap_isempty(u
->dependencies
[UNIT_PROPAGATES_RELOAD_TO
]))
1956 return UNIT_VTABLE(u
)->reload
;
1959 static void unit_check_unneeded(Unit
*u
) {
1961 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
1963 static const UnitDependency needed_dependencies
[] = {
1975 /* If this service shall be shut down when unneeded then do
1978 if (!u
->stop_when_unneeded
)
1981 if (!UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)))
1984 for (j
= 0; j
< ELEMENTSOF(needed_dependencies
); j
++) {
1989 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[needed_dependencies
[j
]], i
)
1990 if (unit_active_or_pending(other
) || unit_will_restart(other
))
1994 /* If stopping a unit fails continuously we might enter a stop
1995 * loop here, hence stop acting on the service being
1996 * unnecessary after a while. */
1997 if (!ratelimit_test(&u
->auto_stop_ratelimit
)) {
1998 log_unit_warning(u
, "Unit not needed anymore, but not stopping since we tried this too often recently.");
2002 log_unit_info(u
, "Unit not needed anymore. Stopping.");
2004 /* Ok, nobody needs us anymore. Sniff. Then let's commit suicide */
2005 r
= manager_add_job(u
->manager
, JOB_STOP
, u
, JOB_FAIL
, &error
, NULL
);
2007 log_unit_warning_errno(u
, r
, "Failed to enqueue stop job, ignoring: %s", bus_error_message(&error
, r
));
2010 static void unit_check_binds_to(Unit
*u
) {
2011 _cleanup_(sd_bus_error_free
) sd_bus_error error
= SD_BUS_ERROR_NULL
;
2023 if (unit_active_state(u
) != UNIT_ACTIVE
)
2026 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
) {
2030 if (!other
->coldplugged
)
2031 /* We might yet create a job for the other unit… */
2034 if (!UNIT_IS_INACTIVE_OR_FAILED(unit_active_state(other
)))
2044 /* If stopping a unit fails continuously we might enter a stop
2045 * loop here, hence stop acting on the service being
2046 * unnecessary after a while. */
2047 if (!ratelimit_test(&u
->auto_stop_ratelimit
)) {
2048 log_unit_warning(u
, "Unit is bound to inactive unit %s, but not stopping since we tried this too often recently.", other
->id
);
2053 log_unit_info(u
, "Unit is bound to inactive unit %s. Stopping, too.", other
->id
);
2055 /* A unit we need to run is gone. Sniff. Let's stop this. */
2056 r
= manager_add_job(u
->manager
, JOB_STOP
, u
, JOB_FAIL
, &error
, NULL
);
2058 log_unit_warning_errno(u
, r
, "Failed to enqueue stop job, ignoring: %s", bus_error_message(&error
, r
));
2061 static void retroactively_start_dependencies(Unit
*u
) {
2067 assert(UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)));
2069 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_REQUIRES
], i
)
2070 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2071 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2072 manager_add_job(u
->manager
, JOB_START
, other
, JOB_REPLACE
, NULL
, NULL
);
2074 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
)
2075 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2076 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2077 manager_add_job(u
->manager
, JOB_START
, other
, JOB_REPLACE
, NULL
, NULL
);
2079 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_WANTS
], i
)
2080 if (!hashmap_get(u
->dependencies
[UNIT_AFTER
], other
) &&
2081 !UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(other
)))
2082 manager_add_job(u
->manager
, JOB_START
, other
, JOB_FAIL
, NULL
, NULL
);
2084 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_CONFLICTS
], i
)
2085 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2086 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
);
2088 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_CONFLICTED_BY
], i
)
2089 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2090 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
);
2093 static void retroactively_stop_dependencies(Unit
*u
) {
2099 assert(UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)));
2101 /* Pull down units which are bound to us recursively if enabled */
2102 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BOUND_BY
], i
)
2103 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2104 manager_add_job(u
->manager
, JOB_STOP
, other
, JOB_REPLACE
, NULL
, NULL
);
2107 static void check_unneeded_dependencies(Unit
*u
) {
2113 assert(UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)));
2115 /* Garbage collect services that might not be needed anymore, if enabled */
2116 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_REQUIRES
], i
)
2117 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2118 unit_check_unneeded(other
);
2119 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_WANTS
], i
)
2120 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2121 unit_check_unneeded(other
);
2122 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_REQUISITE
], i
)
2123 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2124 unit_check_unneeded(other
);
2125 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_BINDS_TO
], i
)
2126 if (!UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(other
)))
2127 unit_check_unneeded(other
);
2130 void unit_start_on_failure(Unit
*u
) {
2137 if (hashmap_size(u
->dependencies
[UNIT_ON_FAILURE
]) <= 0)
2140 log_unit_info(u
, "Triggering OnFailure= dependencies.");
2142 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_ON_FAILURE
], i
) {
2145 r
= manager_add_job(u
->manager
, JOB_START
, other
, u
->on_failure_job_mode
, NULL
, NULL
);
2147 log_unit_error_errno(u
, r
, "Failed to enqueue OnFailure= job: %m");
2151 void unit_trigger_notify(Unit
*u
) {
2158 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_TRIGGERED_BY
], i
)
2159 if (UNIT_VTABLE(other
)->trigger_notify
)
2160 UNIT_VTABLE(other
)->trigger_notify(other
, u
);
2163 static int unit_log_resources(Unit
*u
) {
2165 struct iovec iovec
[1 + _CGROUP_IP_ACCOUNTING_METRIC_MAX
+ 4];
2166 size_t n_message_parts
= 0, n_iovec
= 0;
2167 char* message_parts
[3 + 1], *t
;
2168 nsec_t nsec
= NSEC_INFINITY
;
2169 CGroupIPAccountingMetric m
;
2172 const char* const ip_fields
[_CGROUP_IP_ACCOUNTING_METRIC_MAX
] = {
2173 [CGROUP_IP_INGRESS_BYTES
] = "IP_METRIC_INGRESS_BYTES",
2174 [CGROUP_IP_INGRESS_PACKETS
] = "IP_METRIC_INGRESS_PACKETS",
2175 [CGROUP_IP_EGRESS_BYTES
] = "IP_METRIC_EGRESS_BYTES",
2176 [CGROUP_IP_EGRESS_PACKETS
] = "IP_METRIC_EGRESS_PACKETS",
2181 /* Invoked whenever a unit enters failed or dead state. Logs information about consumed resources if resource
2182 * accounting was enabled for a unit. It does this in two ways: a friendly human readable string with reduced
2183 * information and the complete data in structured fields. */
2185 (void) unit_get_cpu_usage(u
, &nsec
);
2186 if (nsec
!= NSEC_INFINITY
) {
2187 char buf
[FORMAT_TIMESPAN_MAX
] = "";
2189 /* Format the CPU time for inclusion in the structured log message */
2190 if (asprintf(&t
, "CPU_USAGE_NSEC=%" PRIu64
, nsec
) < 0) {
2194 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2196 /* Format the CPU time for inclusion in the human language message string */
2197 format_timespan(buf
, sizeof(buf
), nsec
/ NSEC_PER_USEC
, USEC_PER_MSEC
);
2198 t
= strjoin(n_message_parts
> 0 ? "consumed " : "Consumed ", buf
, " CPU time");
2204 message_parts
[n_message_parts
++] = t
;
2207 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++) {
2208 char buf
[FORMAT_BYTES_MAX
] = "";
2209 uint64_t value
= UINT64_MAX
;
2211 assert(ip_fields
[m
]);
2213 (void) unit_get_ip_accounting(u
, m
, &value
);
2214 if (value
== UINT64_MAX
)
2217 /* Format IP accounting data for inclusion in the structured log message */
2218 if (asprintf(&t
, "%s=%" PRIu64
, ip_fields
[m
], value
) < 0) {
2222 iovec
[n_iovec
++] = IOVEC_MAKE_STRING(t
);
2224 /* Format the IP accounting data for inclusion in the human language message string, but only for the
2225 * bytes counters (and not for the packets counters) */
2226 if (m
== CGROUP_IP_INGRESS_BYTES
)
2227 t
= strjoin(n_message_parts
> 0 ? "received " : "Received ",
2228 format_bytes(buf
, sizeof(buf
), value
),
2230 else if (m
== CGROUP_IP_EGRESS_BYTES
)
2231 t
= strjoin(n_message_parts
> 0 ? "sent " : "Sent ",
2232 format_bytes(buf
, sizeof(buf
), value
),
2241 message_parts
[n_message_parts
++] = t
;
2244 /* Is there any accounting data available at all? */
2250 if (n_message_parts
== 0)
2251 t
= strjoina("MESSAGE=", u
->id
, ": Completed");
2253 _cleanup_free_
char *joined
;
2255 message_parts
[n_message_parts
] = NULL
;
2257 joined
= strv_join(message_parts
, ", ");
2263 t
= strjoina("MESSAGE=", u
->id
, ": ", joined
);
2266 /* The following four fields we allocate on the stack or are static strings, we hence don't want to free them,
2267 * and hence don't increase n_iovec for them */
2268 iovec
[n_iovec
] = IOVEC_MAKE_STRING(t
);
2269 iovec
[n_iovec
+ 1] = IOVEC_MAKE_STRING("MESSAGE_ID=" SD_MESSAGE_UNIT_RESOURCES_STR
);
2271 t
= strjoina(u
->manager
->unit_log_field
, u
->id
);
2272 iovec
[n_iovec
+ 2] = IOVEC_MAKE_STRING(t
);
2274 t
= strjoina(u
->manager
->invocation_log_field
, u
->invocation_id_string
);
2275 iovec
[n_iovec
+ 3] = IOVEC_MAKE_STRING(t
);
2277 log_struct_iovec(LOG_INFO
, iovec
, n_iovec
+ 4);
2281 for (i
= 0; i
< n_message_parts
; i
++)
2282 free(message_parts
[i
]);
2284 for (i
= 0; i
< n_iovec
; i
++)
2285 free(iovec
[i
].iov_base
);
2291 static void unit_update_on_console(Unit
*u
) {
2296 b
= unit_needs_console(u
);
2297 if (u
->on_console
== b
)
2302 manager_ref_console(u
->manager
);
2304 manager_unref_console(u
->manager
);
2308 void unit_notify(Unit
*u
, UnitActiveState os
, UnitActiveState ns
, bool reload_success
) {
2313 assert(os
< _UNIT_ACTIVE_STATE_MAX
);
2314 assert(ns
< _UNIT_ACTIVE_STATE_MAX
);
2316 /* Note that this is called for all low-level state changes, even if they might map to the same high-level
2317 * UnitActiveState! That means that ns == os is an expected behavior here. For example: if a mount point is
2318 * remounted this function will be called too! */
2322 /* Update timestamps for state changes */
2323 if (!MANAGER_IS_RELOADING(m
)) {
2324 dual_timestamp_get(&u
->state_change_timestamp
);
2326 if (UNIT_IS_INACTIVE_OR_FAILED(os
) && !UNIT_IS_INACTIVE_OR_FAILED(ns
))
2327 u
->inactive_exit_timestamp
= u
->state_change_timestamp
;
2328 else if (!UNIT_IS_INACTIVE_OR_FAILED(os
) && UNIT_IS_INACTIVE_OR_FAILED(ns
))
2329 u
->inactive_enter_timestamp
= u
->state_change_timestamp
;
2331 if (!UNIT_IS_ACTIVE_OR_RELOADING(os
) && UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2332 u
->active_enter_timestamp
= u
->state_change_timestamp
;
2333 else if (UNIT_IS_ACTIVE_OR_RELOADING(os
) && !UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2334 u
->active_exit_timestamp
= u
->state_change_timestamp
;
2337 /* Keep track of failed units */
2338 (void) manager_update_failed_units(u
->manager
, u
, ns
== UNIT_FAILED
);
2340 /* Make sure the cgroup and state files are always removed when we become inactive */
2341 if (UNIT_IS_INACTIVE_OR_FAILED(ns
)) {
2342 unit_prune_cgroup(u
);
2343 unit_unlink_state_files(u
);
2346 unit_update_on_console(u
);
2351 if (u
->job
->state
== JOB_WAITING
)
2353 /* So we reached a different state for this
2354 * job. Let's see if we can run it now if it
2355 * failed previously due to EAGAIN. */
2356 job_add_to_run_queue(u
->job
);
2358 /* Let's check whether this state change constitutes a
2359 * finished job, or maybe contradicts a running job and
2360 * hence needs to invalidate jobs. */
2362 switch (u
->job
->type
) {
2365 case JOB_VERIFY_ACTIVE
:
2367 if (UNIT_IS_ACTIVE_OR_RELOADING(ns
))
2368 job_finish_and_invalidate(u
->job
, JOB_DONE
, true, false);
2369 else if (u
->job
->state
== JOB_RUNNING
&& ns
!= UNIT_ACTIVATING
) {
2372 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2373 job_finish_and_invalidate(u
->job
, ns
== UNIT_FAILED
? JOB_FAILED
: JOB_DONE
, true, false);
2379 case JOB_RELOAD_OR_START
:
2380 case JOB_TRY_RELOAD
:
2382 if (u
->job
->state
== JOB_RUNNING
) {
2383 if (ns
== UNIT_ACTIVE
)
2384 job_finish_and_invalidate(u
->job
, reload_success
? JOB_DONE
: JOB_FAILED
, true, false);
2385 else if (!IN_SET(ns
, UNIT_ACTIVATING
, UNIT_RELOADING
)) {
2388 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2389 job_finish_and_invalidate(u
->job
, ns
== UNIT_FAILED
? JOB_FAILED
: JOB_DONE
, true, false);
2397 case JOB_TRY_RESTART
:
2399 if (UNIT_IS_INACTIVE_OR_FAILED(ns
))
2400 job_finish_and_invalidate(u
->job
, JOB_DONE
, true, false);
2401 else if (u
->job
->state
== JOB_RUNNING
&& ns
!= UNIT_DEACTIVATING
) {
2403 job_finish_and_invalidate(u
->job
, JOB_FAILED
, true, false);
2409 assert_not_reached("Job type unknown");
2415 if (!MANAGER_IS_RELOADING(m
)) {
2417 /* If this state change happened without being
2418 * requested by a job, then let's retroactively start
2419 * or stop dependencies. We skip that step when
2420 * deserializing, since we don't want to create any
2421 * additional jobs just because something is already
2425 if (UNIT_IS_INACTIVE_OR_FAILED(os
) && UNIT_IS_ACTIVE_OR_ACTIVATING(ns
))
2426 retroactively_start_dependencies(u
);
2427 else if (UNIT_IS_ACTIVE_OR_ACTIVATING(os
) && UNIT_IS_INACTIVE_OR_DEACTIVATING(ns
))
2428 retroactively_stop_dependencies(u
);
2431 /* stop unneeded units regardless if going down was expected or not */
2432 if (UNIT_IS_INACTIVE_OR_DEACTIVATING(ns
))
2433 check_unneeded_dependencies(u
);
2435 if (ns
!= os
&& ns
== UNIT_FAILED
) {
2436 log_unit_debug(u
, "Unit entered failed state.");
2437 unit_start_on_failure(u
);
2441 if (UNIT_IS_ACTIVE_OR_RELOADING(ns
)) {
2443 if (u
->type
== UNIT_SERVICE
&&
2444 !UNIT_IS_ACTIVE_OR_RELOADING(os
) &&
2445 !MANAGER_IS_RELOADING(m
)) {
2446 /* Write audit record if we have just finished starting up */
2447 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_START
, true);
2451 if (!UNIT_IS_ACTIVE_OR_RELOADING(os
))
2452 manager_send_unit_plymouth(m
, u
);
2456 if (UNIT_IS_INACTIVE_OR_FAILED(ns
) &&
2457 !UNIT_IS_INACTIVE_OR_FAILED(os
)
2458 && !MANAGER_IS_RELOADING(m
)) {
2460 /* This unit just stopped/failed. */
2461 if (u
->type
== UNIT_SERVICE
) {
2463 /* Hmm, if there was no start record written
2464 * write it now, so that we always have a nice
2467 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_START
, ns
== UNIT_INACTIVE
);
2469 if (ns
== UNIT_INACTIVE
)
2470 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_STOP
, true);
2472 /* Write audit record if we have just finished shutting down */
2473 manager_send_unit_audit(m
, u
, AUDIT_SERVICE_STOP
, ns
== UNIT_INACTIVE
);
2475 u
->in_audit
= false;
2478 /* Write a log message about consumed resources */
2479 unit_log_resources(u
);
2483 manager_recheck_journal(m
);
2484 manager_recheck_dbus(m
);
2486 unit_trigger_notify(u
);
2488 if (!MANAGER_IS_RELOADING(u
->manager
)) {
2489 /* Maybe we finished startup and are now ready for being stopped because unneeded? */
2490 unit_check_unneeded(u
);
2492 /* Maybe we finished startup, but something we needed has vanished? Let's die then. (This happens when
2493 * something BindsTo= to a Type=oneshot unit, as these units go directly from starting to inactive,
2494 * without ever entering started.) */
2495 unit_check_binds_to(u
);
2497 if (os
!= UNIT_FAILED
&& ns
== UNIT_FAILED
)
2498 (void) emergency_action(u
->manager
, u
->failure_action
, u
->reboot_arg
, "unit failed");
2499 else if (!UNIT_IS_INACTIVE_OR_FAILED(os
) && ns
== UNIT_INACTIVE
)
2500 (void) emergency_action(u
->manager
, u
->success_action
, u
->reboot_arg
, "unit succeeded");
2503 unit_add_to_dbus_queue(u
);
2504 unit_add_to_gc_queue(u
);
2507 int unit_watch_pid(Unit
*u
, pid_t pid
) {
2511 assert(pid_is_valid(pid
));
2513 /* Watch a specific PID */
2515 r
= set_ensure_allocated(&u
->pids
, NULL
);
2519 r
= hashmap_ensure_allocated(&u
->manager
->watch_pids
, NULL
);
2523 /* First try, let's add the unit keyed by "pid". */
2524 r
= hashmap_put(u
->manager
->watch_pids
, PID_TO_PTR(pid
), u
);
2530 /* OK, the "pid" key is already assigned to a different unit. Let's see if the "-pid" key (which points
2531 * to an array of Units rather than just a Unit), lists us already. */
2533 array
= hashmap_get(u
->manager
->watch_pids
, PID_TO_PTR(-pid
));
2535 for (; array
[n
]; n
++)
2539 if (found
) /* Found it already? if so, do nothing */
2544 /* Allocate a new array */
2545 new_array
= new(Unit
*, n
+ 2);
2549 memcpy_safe(new_array
, array
, sizeof(Unit
*) * n
);
2551 new_array
[n
+1] = NULL
;
2553 /* Add or replace the old array */
2554 r
= hashmap_replace(u
->manager
->watch_pids
, PID_TO_PTR(-pid
), new_array
);
2565 r
= set_put(u
->pids
, PID_TO_PTR(pid
));
2572 void unit_unwatch_pid(Unit
*u
, pid_t pid
) {
2576 assert(pid_is_valid(pid
));
2578 /* First let's drop the unit in case it's keyed as "pid". */
2579 (void) hashmap_remove_value(u
->manager
->watch_pids
, PID_TO_PTR(pid
), u
);
2581 /* Then, let's also drop the unit, in case it's in the array keyed by -pid */
2582 array
= hashmap_get(u
->manager
->watch_pids
, PID_TO_PTR(-pid
));
2586 /* Let's iterate through the array, dropping our own entry */
2587 for (n
= 0; array
[n
]; n
++)
2589 array
[m
++] = array
[n
];
2593 /* The array is now empty, remove the entire entry */
2594 assert(hashmap_remove(u
->manager
->watch_pids
, PID_TO_PTR(-pid
)) == array
);
2599 (void) set_remove(u
->pids
, PID_TO_PTR(pid
));
2602 void unit_unwatch_all_pids(Unit
*u
) {
2605 while (!set_isempty(u
->pids
))
2606 unit_unwatch_pid(u
, PTR_TO_PID(set_first(u
->pids
)));
2608 u
->pids
= set_free(u
->pids
);
2611 void unit_tidy_watch_pids(Unit
*u
, pid_t except1
, pid_t except2
) {
2617 /* Cleans dead PIDs from our list */
2619 SET_FOREACH(e
, u
->pids
, i
) {
2620 pid_t pid
= PTR_TO_PID(e
);
2622 if (pid
== except1
|| pid
== except2
)
2625 if (!pid_is_unwaited(pid
))
2626 unit_unwatch_pid(u
, pid
);
2630 bool unit_job_is_applicable(Unit
*u
, JobType j
) {
2632 assert(j
>= 0 && j
< _JOB_TYPE_MAX
);
2636 case JOB_VERIFY_ACTIVE
:
2639 /* Note that we don't check unit_can_start() here. That's because .device units and suchlike are not
2640 * startable by us but may appear due to external events, and it thus makes sense to permit enqueing
2645 /* Similar as above. However, perpetual units can never be stopped (neither explicitly nor due to
2646 * external events), hence it makes no sense to permit enqueing such a request either. */
2647 return !u
->perpetual
;
2650 case JOB_TRY_RESTART
:
2651 return unit_can_stop(u
) && unit_can_start(u
);
2654 case JOB_TRY_RELOAD
:
2655 return unit_can_reload(u
);
2657 case JOB_RELOAD_OR_START
:
2658 return unit_can_reload(u
) && unit_can_start(u
);
2661 assert_not_reached("Invalid job type");
2665 static void maybe_warn_about_dependency(Unit
*u
, const char *other
, UnitDependency dependency
) {
2668 /* Only warn about some unit types */
2669 if (!IN_SET(dependency
, UNIT_CONFLICTS
, UNIT_CONFLICTED_BY
, UNIT_BEFORE
, UNIT_AFTER
, UNIT_ON_FAILURE
, UNIT_TRIGGERS
, UNIT_TRIGGERED_BY
))
2672 if (streq_ptr(u
->id
, other
))
2673 log_unit_warning(u
, "Dependency %s=%s dropped", unit_dependency_to_string(dependency
), u
->id
);
2675 log_unit_warning(u
, "Dependency %s=%s dropped, merged into %s", unit_dependency_to_string(dependency
), strna(other
), u
->id
);
2678 static int unit_add_dependency_hashmap(
2681 UnitDependencyMask origin_mask
,
2682 UnitDependencyMask destination_mask
) {
2684 UnitDependencyInfo info
;
2689 assert(origin_mask
< _UNIT_DEPENDENCY_MASK_FULL
);
2690 assert(destination_mask
< _UNIT_DEPENDENCY_MASK_FULL
);
2691 assert(origin_mask
> 0 || destination_mask
> 0);
2693 r
= hashmap_ensure_allocated(h
, NULL
);
2697 assert_cc(sizeof(void*) == sizeof(info
));
2699 info
.data
= hashmap_get(*h
, other
);
2701 /* Entry already exists. Add in our mask. */
2703 if ((info
.origin_mask
& origin_mask
) == info
.origin_mask
&&
2704 (info
.destination_mask
& destination_mask
) == info
.destination_mask
)
2707 info
.origin_mask
|= origin_mask
;
2708 info
.destination_mask
|= destination_mask
;
2710 r
= hashmap_update(*h
, other
, info
.data
);
2712 info
= (UnitDependencyInfo
) {
2713 .origin_mask
= origin_mask
,
2714 .destination_mask
= destination_mask
,
2717 r
= hashmap_put(*h
, other
, info
.data
);
2725 int unit_add_dependency(
2730 UnitDependencyMask mask
) {
2732 static const UnitDependency inverse_table
[_UNIT_DEPENDENCY_MAX
] = {
2733 [UNIT_REQUIRES
] = UNIT_REQUIRED_BY
,
2734 [UNIT_WANTS
] = UNIT_WANTED_BY
,
2735 [UNIT_REQUISITE
] = UNIT_REQUISITE_OF
,
2736 [UNIT_BINDS_TO
] = UNIT_BOUND_BY
,
2737 [UNIT_PART_OF
] = UNIT_CONSISTS_OF
,
2738 [UNIT_REQUIRED_BY
] = UNIT_REQUIRES
,
2739 [UNIT_REQUISITE_OF
] = UNIT_REQUISITE
,
2740 [UNIT_WANTED_BY
] = UNIT_WANTS
,
2741 [UNIT_BOUND_BY
] = UNIT_BINDS_TO
,
2742 [UNIT_CONSISTS_OF
] = UNIT_PART_OF
,
2743 [UNIT_CONFLICTS
] = UNIT_CONFLICTED_BY
,
2744 [UNIT_CONFLICTED_BY
] = UNIT_CONFLICTS
,
2745 [UNIT_BEFORE
] = UNIT_AFTER
,
2746 [UNIT_AFTER
] = UNIT_BEFORE
,
2747 [UNIT_ON_FAILURE
] = _UNIT_DEPENDENCY_INVALID
,
2748 [UNIT_REFERENCES
] = UNIT_REFERENCED_BY
,
2749 [UNIT_REFERENCED_BY
] = UNIT_REFERENCES
,
2750 [UNIT_TRIGGERS
] = UNIT_TRIGGERED_BY
,
2751 [UNIT_TRIGGERED_BY
] = UNIT_TRIGGERS
,
2752 [UNIT_PROPAGATES_RELOAD_TO
] = UNIT_RELOAD_PROPAGATED_FROM
,
2753 [UNIT_RELOAD_PROPAGATED_FROM
] = UNIT_PROPAGATES_RELOAD_TO
,
2754 [UNIT_JOINS_NAMESPACE_OF
] = UNIT_JOINS_NAMESPACE_OF
,
2756 Unit
*original_u
= u
, *original_other
= other
;
2760 assert(d
>= 0 && d
< _UNIT_DEPENDENCY_MAX
);
2763 u
= unit_follow_merge(u
);
2764 other
= unit_follow_merge(other
);
2766 /* We won't allow dependencies on ourselves. We will not
2767 * consider them an error however. */
2769 maybe_warn_about_dependency(original_u
, original_other
->id
, d
);
2773 if ((d
== UNIT_BEFORE
&& other
->type
== UNIT_DEVICE
) ||
2774 (d
== UNIT_AFTER
&& u
->type
== UNIT_DEVICE
)) {
2775 log_unit_warning(u
, "Dependency Before=%s ignored (.device units cannot be delayed)", other
->id
);
2779 r
= unit_add_dependency_hashmap(u
->dependencies
+ d
, other
, mask
, 0);
2783 if (inverse_table
[d
] != _UNIT_DEPENDENCY_INVALID
&& inverse_table
[d
] != d
) {
2784 r
= unit_add_dependency_hashmap(other
->dependencies
+ inverse_table
[d
], u
, 0, mask
);
2789 if (add_reference
) {
2790 r
= unit_add_dependency_hashmap(u
->dependencies
+ UNIT_REFERENCES
, other
, mask
, 0);
2794 r
= unit_add_dependency_hashmap(other
->dependencies
+ UNIT_REFERENCED_BY
, u
, 0, mask
);
2799 unit_add_to_dbus_queue(u
);
2803 int unit_add_two_dependencies(Unit
*u
, UnitDependency d
, UnitDependency e
, Unit
*other
, bool add_reference
, UnitDependencyMask mask
) {
2808 r
= unit_add_dependency(u
, d
, other
, add_reference
, mask
);
2812 return unit_add_dependency(u
, e
, other
, add_reference
, mask
);
2815 static int resolve_template(Unit
*u
, const char *name
, const char*path
, char **buf
, const char **ret
) {
2819 assert(name
|| path
);
2824 name
= basename(path
);
2826 if (!unit_name_is_valid(name
, UNIT_NAME_TEMPLATE
)) {
2833 r
= unit_name_replace_instance(name
, u
->instance
, buf
);
2835 _cleanup_free_
char *i
= NULL
;
2837 r
= unit_name_to_prefix(u
->id
, &i
);
2841 r
= unit_name_replace_instance(name
, i
, buf
);
2850 int unit_add_dependency_by_name(Unit
*u
, UnitDependency d
, const char *name
, const char *path
, bool add_reference
, UnitDependencyMask mask
) {
2851 _cleanup_free_
char *buf
= NULL
;
2856 assert(name
|| path
);
2858 r
= resolve_template(u
, name
, path
, &buf
, &name
);
2862 r
= manager_load_unit(u
->manager
, name
, path
, NULL
, &other
);
2866 return unit_add_dependency(u
, d
, other
, add_reference
, mask
);
2869 int unit_add_two_dependencies_by_name(Unit
*u
, UnitDependency d
, UnitDependency e
, const char *name
, const char *path
, bool add_reference
, UnitDependencyMask mask
) {
2870 _cleanup_free_
char *buf
= NULL
;
2875 assert(name
|| path
);
2877 r
= resolve_template(u
, name
, path
, &buf
, &name
);
2881 r
= manager_load_unit(u
->manager
, name
, path
, NULL
, &other
);
2885 return unit_add_two_dependencies(u
, d
, e
, other
, add_reference
, mask
);
2888 int set_unit_path(const char *p
) {
2889 /* This is mostly for debug purposes */
2890 if (setenv("SYSTEMD_UNIT_PATH", p
, 1) < 0)
2896 char *unit_dbus_path(Unit
*u
) {
2902 return unit_dbus_path_from_name(u
->id
);
2905 char *unit_dbus_path_invocation_id(Unit
*u
) {
2908 if (sd_id128_is_null(u
->invocation_id
))
2911 return unit_dbus_path_from_name(u
->invocation_id_string
);
2914 int unit_set_slice(Unit
*u
, Unit
*slice
) {
2918 /* Sets the unit slice if it has not been set before. Is extra
2919 * careful, to only allow this for units that actually have a
2920 * cgroup context. Also, we don't allow to set this for slices
2921 * (since the parent slice is derived from the name). Make
2922 * sure the unit we set is actually a slice. */
2924 if (!UNIT_HAS_CGROUP_CONTEXT(u
))
2927 if (u
->type
== UNIT_SLICE
)
2930 if (unit_active_state(u
) != UNIT_INACTIVE
)
2933 if (slice
->type
!= UNIT_SLICE
)
2936 if (unit_has_name(u
, SPECIAL_INIT_SCOPE
) &&
2937 !unit_has_name(slice
, SPECIAL_ROOT_SLICE
))
2940 if (UNIT_DEREF(u
->slice
) == slice
)
2943 /* Disallow slice changes if @u is already bound to cgroups */
2944 if (UNIT_ISSET(u
->slice
) && u
->cgroup_realized
)
2947 unit_ref_set(&u
->slice
, u
, slice
);
2951 int unit_set_default_slice(Unit
*u
) {
2952 _cleanup_free_
char *b
= NULL
;
2953 const char *slice_name
;
2959 if (UNIT_ISSET(u
->slice
))
2963 _cleanup_free_
char *prefix
= NULL
, *escaped
= NULL
;
2965 /* Implicitly place all instantiated units in their
2966 * own per-template slice */
2968 r
= unit_name_to_prefix(u
->id
, &prefix
);
2972 /* The prefix is already escaped, but it might include
2973 * "-" which has a special meaning for slice units,
2974 * hence escape it here extra. */
2975 escaped
= unit_name_escape(prefix
);
2979 if (MANAGER_IS_SYSTEM(u
->manager
))
2980 b
= strjoin("system-", escaped
, ".slice");
2982 b
= strappend(escaped
, ".slice");
2989 MANAGER_IS_SYSTEM(u
->manager
) && !unit_has_name(u
, SPECIAL_INIT_SCOPE
)
2990 ? SPECIAL_SYSTEM_SLICE
2991 : SPECIAL_ROOT_SLICE
;
2993 r
= manager_load_unit(u
->manager
, slice_name
, NULL
, NULL
, &slice
);
2997 return unit_set_slice(u
, slice
);
3000 const char *unit_slice_name(Unit
*u
) {
3003 if (!UNIT_ISSET(u
->slice
))
3006 return UNIT_DEREF(u
->slice
)->id
;
3009 int unit_load_related_unit(Unit
*u
, const char *type
, Unit
**_found
) {
3010 _cleanup_free_
char *t
= NULL
;
3017 r
= unit_name_change_suffix(u
->id
, type
, &t
);
3020 if (unit_has_name(u
, t
))
3023 r
= manager_load_unit(u
->manager
, t
, NULL
, NULL
, _found
);
3024 assert(r
< 0 || *_found
!= u
);
3028 static int signal_name_owner_changed(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
3029 const char *name
, *old_owner
, *new_owner
;
3036 r
= sd_bus_message_read(message
, "sss", &name
, &old_owner
, &new_owner
);
3038 bus_log_parse_error(r
);
3042 old_owner
= empty_to_null(old_owner
);
3043 new_owner
= empty_to_null(new_owner
);
3045 if (UNIT_VTABLE(u
)->bus_name_owner_change
)
3046 UNIT_VTABLE(u
)->bus_name_owner_change(u
, name
, old_owner
, new_owner
);
3051 int unit_install_bus_match(Unit
*u
, sd_bus
*bus
, const char *name
) {
3058 if (u
->match_bus_slot
)
3061 match
= strjoina("type='signal',"
3062 "sender='org.freedesktop.DBus',"
3063 "path='/org/freedesktop/DBus',"
3064 "interface='org.freedesktop.DBus',"
3065 "member='NameOwnerChanged',"
3066 "arg0='", name
, "'");
3068 return sd_bus_add_match_async(bus
, &u
->match_bus_slot
, match
, signal_name_owner_changed
, NULL
, u
);
3071 int unit_watch_bus_name(Unit
*u
, const char *name
) {
3077 /* Watch a specific name on the bus. We only support one unit
3078 * watching each name for now. */
3080 if (u
->manager
->api_bus
) {
3081 /* If the bus is already available, install the match directly.
3082 * Otherwise, just put the name in the list. bus_setup_api() will take care later. */
3083 r
= unit_install_bus_match(u
, u
->manager
->api_bus
, name
);
3085 return log_warning_errno(r
, "Failed to subscribe to NameOwnerChanged signal for '%s': %m", name
);
3088 r
= hashmap_put(u
->manager
->watch_bus
, name
, u
);
3090 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3091 return log_warning_errno(r
, "Failed to put bus name to hashmap: %m");
3097 void unit_unwatch_bus_name(Unit
*u
, const char *name
) {
3101 (void) hashmap_remove_value(u
->manager
->watch_bus
, name
, u
);
3102 u
->match_bus_slot
= sd_bus_slot_unref(u
->match_bus_slot
);
3105 bool unit_can_serialize(Unit
*u
) {
3108 return UNIT_VTABLE(u
)->serialize
&& UNIT_VTABLE(u
)->deserialize_item
;
3111 static int unit_serialize_cgroup_mask(FILE *f
, const char *key
, CGroupMask mask
) {
3112 _cleanup_free_
char *s
= NULL
;
3119 r
= cg_mask_to_string(mask
, &s
);
3130 static const char *ip_accounting_metric_field
[_CGROUP_IP_ACCOUNTING_METRIC_MAX
] = {
3131 [CGROUP_IP_INGRESS_BYTES
] = "ip-accounting-ingress-bytes",
3132 [CGROUP_IP_INGRESS_PACKETS
] = "ip-accounting-ingress-packets",
3133 [CGROUP_IP_EGRESS_BYTES
] = "ip-accounting-egress-bytes",
3134 [CGROUP_IP_EGRESS_PACKETS
] = "ip-accounting-egress-packets",
3137 int unit_serialize(Unit
*u
, FILE *f
, FDSet
*fds
, bool serialize_jobs
) {
3138 CGroupIPAccountingMetric m
;
3145 if (unit_can_serialize(u
)) {
3146 r
= UNIT_VTABLE(u
)->serialize(u
, f
, fds
);
3151 dual_timestamp_serialize(f
, "state-change-timestamp", &u
->state_change_timestamp
);
3153 dual_timestamp_serialize(f
, "inactive-exit-timestamp", &u
->inactive_exit_timestamp
);
3154 dual_timestamp_serialize(f
, "active-enter-timestamp", &u
->active_enter_timestamp
);
3155 dual_timestamp_serialize(f
, "active-exit-timestamp", &u
->active_exit_timestamp
);
3156 dual_timestamp_serialize(f
, "inactive-enter-timestamp", &u
->inactive_enter_timestamp
);
3158 dual_timestamp_serialize(f
, "condition-timestamp", &u
->condition_timestamp
);
3159 dual_timestamp_serialize(f
, "assert-timestamp", &u
->assert_timestamp
);
3161 if (dual_timestamp_is_set(&u
->condition_timestamp
))
3162 unit_serialize_item(u
, f
, "condition-result", yes_no(u
->condition_result
));
3164 if (dual_timestamp_is_set(&u
->assert_timestamp
))
3165 unit_serialize_item(u
, f
, "assert-result", yes_no(u
->assert_result
));
3167 unit_serialize_item(u
, f
, "transient", yes_no(u
->transient
));
3169 unit_serialize_item(u
, f
, "exported-invocation-id", yes_no(u
->exported_invocation_id
));
3170 unit_serialize_item(u
, f
, "exported-log-level-max", yes_no(u
->exported_log_level_max
));
3171 unit_serialize_item(u
, f
, "exported-log-extra-fields", yes_no(u
->exported_log_extra_fields
));
3173 unit_serialize_item_format(u
, f
, "cpu-usage-base", "%" PRIu64
, u
->cpu_usage_base
);
3174 if (u
->cpu_usage_last
!= NSEC_INFINITY
)
3175 unit_serialize_item_format(u
, f
, "cpu-usage-last", "%" PRIu64
, u
->cpu_usage_last
);
3178 unit_serialize_item(u
, f
, "cgroup", u
->cgroup_path
);
3179 unit_serialize_item(u
, f
, "cgroup-realized", yes_no(u
->cgroup_realized
));
3180 (void) unit_serialize_cgroup_mask(f
, "cgroup-realized-mask", u
->cgroup_realized_mask
);
3181 (void) unit_serialize_cgroup_mask(f
, "cgroup-enabled-mask", u
->cgroup_enabled_mask
);
3182 unit_serialize_item_format(u
, f
, "cgroup-bpf-realized", "%i", u
->cgroup_bpf_state
);
3184 if (uid_is_valid(u
->ref_uid
))
3185 unit_serialize_item_format(u
, f
, "ref-uid", UID_FMT
, u
->ref_uid
);
3186 if (gid_is_valid(u
->ref_gid
))
3187 unit_serialize_item_format(u
, f
, "ref-gid", GID_FMT
, u
->ref_gid
);
3189 if (!sd_id128_is_null(u
->invocation_id
))
3190 unit_serialize_item_format(u
, f
, "invocation-id", SD_ID128_FORMAT_STR
, SD_ID128_FORMAT_VAL(u
->invocation_id
));
3192 bus_track_serialize(u
->bus_track
, f
, "ref");
3194 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++) {
3197 r
= unit_get_ip_accounting(u
, m
, &v
);
3199 unit_serialize_item_format(u
, f
, ip_accounting_metric_field
[m
], "%" PRIu64
, v
);
3202 if (serialize_jobs
) {
3204 fprintf(f
, "job\n");
3205 job_serialize(u
->job
, f
);
3209 fprintf(f
, "job\n");
3210 job_serialize(u
->nop_job
, f
);
3219 int unit_serialize_item(Unit
*u
, FILE *f
, const char *key
, const char *value
) {
3235 int unit_serialize_item_escaped(Unit
*u
, FILE *f
, const char *key
, const char *value
) {
3236 _cleanup_free_
char *c
= NULL
;
3257 int unit_serialize_item_fd(Unit
*u
, FILE *f
, FDSet
*fds
, const char *key
, int fd
) {
3267 copy
= fdset_put_dup(fds
, fd
);
3271 fprintf(f
, "%s=%i\n", key
, copy
);
3275 void unit_serialize_item_format(Unit
*u
, FILE *f
, const char *key
, const char *format
, ...) {
3286 va_start(ap
, format
);
3287 vfprintf(f
, format
, ap
);
3293 int unit_deserialize(Unit
*u
, FILE *f
, FDSet
*fds
) {
3301 char line
[LINE_MAX
], *l
, *v
;
3302 CGroupIPAccountingMetric m
;
3305 if (!fgets(line
, sizeof(line
), f
)) {
3318 k
= strcspn(l
, "=");
3326 if (streq(l
, "job")) {
3328 /* new-style serialized job */
3335 r
= job_deserialize(j
, f
);
3341 r
= hashmap_put(u
->manager
->jobs
, UINT32_TO_PTR(j
->id
), j
);
3347 r
= job_install_deserialized(j
);
3349 hashmap_remove(u
->manager
->jobs
, UINT32_TO_PTR(j
->id
));
3353 } else /* legacy for pre-44 */
3354 log_unit_warning(u
, "Update from too old systemd versions are unsupported, cannot deserialize job: %s", v
);
3356 } else if (streq(l
, "state-change-timestamp")) {
3357 dual_timestamp_deserialize(v
, &u
->state_change_timestamp
);
3359 } else if (streq(l
, "inactive-exit-timestamp")) {
3360 dual_timestamp_deserialize(v
, &u
->inactive_exit_timestamp
);
3362 } else if (streq(l
, "active-enter-timestamp")) {
3363 dual_timestamp_deserialize(v
, &u
->active_enter_timestamp
);
3365 } else if (streq(l
, "active-exit-timestamp")) {
3366 dual_timestamp_deserialize(v
, &u
->active_exit_timestamp
);
3368 } else if (streq(l
, "inactive-enter-timestamp")) {
3369 dual_timestamp_deserialize(v
, &u
->inactive_enter_timestamp
);
3371 } else if (streq(l
, "condition-timestamp")) {
3372 dual_timestamp_deserialize(v
, &u
->condition_timestamp
);
3374 } else if (streq(l
, "assert-timestamp")) {
3375 dual_timestamp_deserialize(v
, &u
->assert_timestamp
);
3377 } else if (streq(l
, "condition-result")) {
3379 r
= parse_boolean(v
);
3381 log_unit_debug(u
, "Failed to parse condition result value %s, ignoring.", v
);
3383 u
->condition_result
= r
;
3387 } else if (streq(l
, "assert-result")) {
3389 r
= parse_boolean(v
);
3391 log_unit_debug(u
, "Failed to parse assert result value %s, ignoring.", v
);
3393 u
->assert_result
= r
;
3397 } else if (streq(l
, "transient")) {
3399 r
= parse_boolean(v
);
3401 log_unit_debug(u
, "Failed to parse transient bool %s, ignoring.", v
);
3407 } else if (streq(l
, "exported-invocation-id")) {
3409 r
= parse_boolean(v
);
3411 log_unit_debug(u
, "Failed to parse exported invocation ID bool %s, ignoring.", v
);
3413 u
->exported_invocation_id
= r
;
3417 } else if (streq(l
, "exported-log-level-max")) {
3419 r
= parse_boolean(v
);
3421 log_unit_debug(u
, "Failed to parse exported log level max bool %s, ignoring.", v
);
3423 u
->exported_log_level_max
= r
;
3427 } else if (streq(l
, "exported-log-extra-fields")) {
3429 r
= parse_boolean(v
);
3431 log_unit_debug(u
, "Failed to parse exported log extra fields bool %s, ignoring.", v
);
3433 u
->exported_log_extra_fields
= r
;
3437 } else if (STR_IN_SET(l
, "cpu-usage-base", "cpuacct-usage-base")) {
3439 r
= safe_atou64(v
, &u
->cpu_usage_base
);
3441 log_unit_debug(u
, "Failed to parse CPU usage base %s, ignoring.", v
);
3445 } else if (streq(l
, "cpu-usage-last")) {
3447 r
= safe_atou64(v
, &u
->cpu_usage_last
);
3449 log_unit_debug(u
, "Failed to read CPU usage last %s, ignoring.", v
);
3453 } else if (streq(l
, "cgroup")) {
3455 r
= unit_set_cgroup_path(u
, v
);
3457 log_unit_debug_errno(u
, r
, "Failed to set cgroup path %s, ignoring: %m", v
);
3459 (void) unit_watch_cgroup(u
);
3462 } else if (streq(l
, "cgroup-realized")) {
3465 b
= parse_boolean(v
);
3467 log_unit_debug(u
, "Failed to parse cgroup-realized bool %s, ignoring.", v
);
3469 u
->cgroup_realized
= b
;
3473 } else if (streq(l
, "cgroup-realized-mask")) {
3475 r
= cg_mask_from_string(v
, &u
->cgroup_realized_mask
);
3477 log_unit_debug(u
, "Failed to parse cgroup-realized-mask %s, ignoring.", v
);
3480 } else if (streq(l
, "cgroup-enabled-mask")) {
3482 r
= cg_mask_from_string(v
, &u
->cgroup_enabled_mask
);
3484 log_unit_debug(u
, "Failed to parse cgroup-enabled-mask %s, ignoring.", v
);
3487 } else if (streq(l
, "cgroup-bpf-realized")) {
3490 r
= safe_atoi(v
, &i
);
3492 log_unit_debug(u
, "Failed to parse cgroup BPF state %s, ignoring.", v
);
3494 u
->cgroup_bpf_state
=
3495 i
< 0 ? UNIT_CGROUP_BPF_INVALIDATED
:
3496 i
> 0 ? UNIT_CGROUP_BPF_ON
:
3497 UNIT_CGROUP_BPF_OFF
;
3501 } else if (streq(l
, "ref-uid")) {
3504 r
= parse_uid(v
, &uid
);
3506 log_unit_debug(u
, "Failed to parse referenced UID %s, ignoring.", v
);
3508 unit_ref_uid_gid(u
, uid
, GID_INVALID
);
3512 } else if (streq(l
, "ref-gid")) {
3515 r
= parse_gid(v
, &gid
);
3517 log_unit_debug(u
, "Failed to parse referenced GID %s, ignoring.", v
);
3519 unit_ref_uid_gid(u
, UID_INVALID
, gid
);
3521 } else if (streq(l
, "ref")) {
3523 r
= strv_extend(&u
->deserialized_refs
, v
);
3528 } else if (streq(l
, "invocation-id")) {
3531 r
= sd_id128_from_string(v
, &id
);
3533 log_unit_debug(u
, "Failed to parse invocation id %s, ignoring.", v
);
3535 r
= unit_set_invocation_id(u
, id
);
3537 log_unit_warning_errno(u
, r
, "Failed to set invocation ID for unit: %m");
3543 /* Check if this is an IP accounting metric serialization field */
3544 for (m
= 0; m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
; m
++)
3545 if (streq(l
, ip_accounting_metric_field
[m
]))
3547 if (m
< _CGROUP_IP_ACCOUNTING_METRIC_MAX
) {
3550 r
= safe_atou64(v
, &c
);
3552 log_unit_debug(u
, "Failed to parse IP accounting value %s, ignoring.", v
);
3554 u
->ip_accounting_extra
[m
] = c
;
3558 if (unit_can_serialize(u
)) {
3559 r
= exec_runtime_deserialize_compat(u
, l
, v
, fds
);
3561 log_unit_warning(u
, "Failed to deserialize runtime parameter '%s', ignoring.", l
);
3565 /* Returns positive if key was handled by the call */
3569 r
= UNIT_VTABLE(u
)->deserialize_item(u
, l
, v
, fds
);
3571 log_unit_warning(u
, "Failed to deserialize unit parameter '%s', ignoring.", l
);
3575 /* Versions before 228 did not carry a state change timestamp. In this case, take the current time. This is
3576 * useful, so that timeouts based on this timestamp don't trigger too early, and is in-line with the logic from
3577 * before 228 where the base for timeouts was not persistent across reboots. */
3579 if (!dual_timestamp_is_set(&u
->state_change_timestamp
))
3580 dual_timestamp_get(&u
->state_change_timestamp
);
3582 /* Let's make sure that everything that is deserialized also gets any potential new cgroup settings applied
3583 * after we are done. For that we invalidate anything already realized, so that we can realize it again. */
3584 unit_invalidate_cgroup(u
, _CGROUP_MASK_ALL
);
3585 unit_invalidate_cgroup_bpf(u
);
3590 void unit_deserialize_skip(FILE *f
) {
3593 /* Skip serialized data for this unit. We don't know what it is. */
3596 char line
[LINE_MAX
], *l
;
3598 if (!fgets(line
, sizeof line
, f
))
3611 int unit_add_node_dependency(Unit
*u
, const char *what
, bool wants
, UnitDependency dep
, UnitDependencyMask mask
) {
3613 _cleanup_free_
char *e
= NULL
;
3618 /* Adds in links to the device node that this unit is based on */
3622 if (!is_device_path(what
))
3625 /* When device units aren't supported (such as in a
3626 * container), don't create dependencies on them. */
3627 if (!unit_type_supported(UNIT_DEVICE
))
3630 r
= unit_name_from_path(what
, ".device", &e
);
3634 r
= manager_load_unit(u
->manager
, e
, NULL
, NULL
, &device
);
3638 if (dep
== UNIT_REQUIRES
&& device_shall_be_bound_by(device
, u
))
3639 dep
= UNIT_BINDS_TO
;
3641 r
= unit_add_two_dependencies(u
, UNIT_AFTER
,
3642 MANAGER_IS_SYSTEM(u
->manager
) ? dep
: UNIT_WANTS
,
3643 device
, true, mask
);
3648 r
= unit_add_dependency(device
, UNIT_WANTS
, u
, false, mask
);
3656 int unit_coldplug(Unit
*u
) {
3662 /* Make sure we don't enter a loop, when coldplugging
3667 u
->coldplugged
= true;
3669 STRV_FOREACH(i
, u
->deserialized_refs
) {
3670 q
= bus_unit_track_add_name(u
, *i
);
3671 if (q
< 0 && r
>= 0)
3674 u
->deserialized_refs
= strv_free(u
->deserialized_refs
);
3676 if (UNIT_VTABLE(u
)->coldplug
) {
3677 q
= UNIT_VTABLE(u
)->coldplug(u
);
3678 if (q
< 0 && r
>= 0)
3683 q
= job_coldplug(u
->job
);
3684 if (q
< 0 && r
>= 0)
3691 static bool fragment_mtime_newer(const char *path
, usec_t mtime
, bool path_masked
) {
3697 /* If the source is some virtual kernel file system, then we assume we watch it anyway, and hence pretend we
3698 * are never out-of-date. */
3699 if (PATH_STARTSWITH_SET(path
, "/proc", "/sys"))
3702 if (stat(path
, &st
) < 0)
3703 /* What, cannot access this anymore? */
3707 /* For masked files check if they are still so */
3708 return !null_or_empty(&st
);
3710 /* For non-empty files check the mtime */
3711 return timespec_load(&st
.st_mtim
) > mtime
;
3716 bool unit_need_daemon_reload(Unit
*u
) {
3717 _cleanup_strv_free_
char **t
= NULL
;
3722 /* For unit files, we allow masking… */
3723 if (fragment_mtime_newer(u
->fragment_path
, u
->fragment_mtime
,
3724 u
->load_state
== UNIT_MASKED
))
3727 /* Source paths should not be masked… */
3728 if (fragment_mtime_newer(u
->source_path
, u
->source_mtime
, false))
3731 if (u
->load_state
== UNIT_LOADED
)
3732 (void) unit_find_dropin_paths(u
, &t
);
3733 if (!strv_equal(u
->dropin_paths
, t
))
3736 /* … any drop-ins that are masked are simply omitted from the list. */
3737 STRV_FOREACH(path
, u
->dropin_paths
)
3738 if (fragment_mtime_newer(*path
, u
->dropin_mtime
, false))
3744 void unit_reset_failed(Unit
*u
) {
3747 if (UNIT_VTABLE(u
)->reset_failed
)
3748 UNIT_VTABLE(u
)->reset_failed(u
);
3750 RATELIMIT_RESET(u
->start_limit
);
3751 u
->start_limit_hit
= false;
3754 Unit
*unit_following(Unit
*u
) {
3757 if (UNIT_VTABLE(u
)->following
)
3758 return UNIT_VTABLE(u
)->following(u
);
3763 bool unit_stop_pending(Unit
*u
) {
3766 /* This call does check the current state of the unit. It's
3767 * hence useful to be called from state change calls of the
3768 * unit itself, where the state isn't updated yet. This is
3769 * different from unit_inactive_or_pending() which checks both
3770 * the current state and for a queued job. */
3772 return u
->job
&& u
->job
->type
== JOB_STOP
;
3775 bool unit_inactive_or_pending(Unit
*u
) {
3778 /* Returns true if the unit is inactive or going down */
3780 if (UNIT_IS_INACTIVE_OR_DEACTIVATING(unit_active_state(u
)))
3783 if (unit_stop_pending(u
))
3789 bool unit_active_or_pending(Unit
*u
) {
3792 /* Returns true if the unit is active or going up */
3794 if (UNIT_IS_ACTIVE_OR_ACTIVATING(unit_active_state(u
)))
3798 IN_SET(u
->job
->type
, JOB_START
, JOB_RELOAD_OR_START
, JOB_RESTART
))
3804 bool unit_will_restart(Unit
*u
) {
3807 if (!UNIT_VTABLE(u
)->will_restart
)
3810 return UNIT_VTABLE(u
)->will_restart(u
);
3813 int unit_kill(Unit
*u
, KillWho w
, int signo
, sd_bus_error
*error
) {
3815 assert(w
>= 0 && w
< _KILL_WHO_MAX
);
3816 assert(SIGNAL_VALID(signo
));
3818 if (!UNIT_VTABLE(u
)->kill
)
3821 return UNIT_VTABLE(u
)->kill(u
, w
, signo
, error
);
3824 static Set
*unit_pid_set(pid_t main_pid
, pid_t control_pid
) {
3828 pid_set
= set_new(NULL
);
3832 /* Exclude the main/control pids from being killed via the cgroup */
3834 r
= set_put(pid_set
, PID_TO_PTR(main_pid
));
3839 if (control_pid
> 0) {
3840 r
= set_put(pid_set
, PID_TO_PTR(control_pid
));
3852 int unit_kill_common(
3858 sd_bus_error
*error
) {
3861 bool killed
= false;
3863 if (IN_SET(who
, KILL_MAIN
, KILL_MAIN_FAIL
)) {
3865 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_PROCESS
, "%s units have no main processes", unit_type_to_string(u
->type
));
3866 else if (main_pid
== 0)
3867 return sd_bus_error_set_const(error
, BUS_ERROR_NO_SUCH_PROCESS
, "No main process to kill");
3870 if (IN_SET(who
, KILL_CONTROL
, KILL_CONTROL_FAIL
)) {
3871 if (control_pid
< 0)
3872 return sd_bus_error_setf(error
, BUS_ERROR_NO_SUCH_PROCESS
, "%s units have no control processes", unit_type_to_string(u
->type
));
3873 else if (control_pid
== 0)
3874 return sd_bus_error_set_const(error
, BUS_ERROR_NO_SUCH_PROCESS
, "No control process to kill");
3877 if (IN_SET(who
, KILL_CONTROL
, KILL_CONTROL_FAIL
, KILL_ALL
, KILL_ALL_FAIL
))
3878 if (control_pid
> 0) {
3879 if (kill(control_pid
, signo
) < 0)
3885 if (IN_SET(who
, KILL_MAIN
, KILL_MAIN_FAIL
, KILL_ALL
, KILL_ALL_FAIL
))
3887 if (kill(main_pid
, signo
) < 0)
3893 if (IN_SET(who
, KILL_ALL
, KILL_ALL_FAIL
) && u
->cgroup_path
) {
3894 _cleanup_set_free_ Set
*pid_set
= NULL
;
3897 /* Exclude the main/control pids from being killed via the cgroup */
3898 pid_set
= unit_pid_set(main_pid
, control_pid
);
3902 q
= cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
, signo
, 0, pid_set
, NULL
, NULL
);
3903 if (q
< 0 && !IN_SET(q
, -EAGAIN
, -ESRCH
, -ENOENT
))
3909 if (r
== 0 && !killed
&& IN_SET(who
, KILL_ALL_FAIL
, KILL_CONTROL_FAIL
))
3915 int unit_following_set(Unit
*u
, Set
**s
) {
3919 if (UNIT_VTABLE(u
)->following_set
)
3920 return UNIT_VTABLE(u
)->following_set(u
, s
);
3926 UnitFileState
unit_get_unit_file_state(Unit
*u
) {
3931 if (u
->unit_file_state
< 0 && u
->fragment_path
) {
3932 r
= unit_file_get_state(
3933 u
->manager
->unit_file_scope
,
3936 &u
->unit_file_state
);
3938 u
->unit_file_state
= UNIT_FILE_BAD
;
3941 return u
->unit_file_state
;
3944 int unit_get_unit_file_preset(Unit
*u
) {
3947 if (u
->unit_file_preset
< 0 && u
->fragment_path
)
3948 u
->unit_file_preset
= unit_file_query_preset(
3949 u
->manager
->unit_file_scope
,
3951 basename(u
->fragment_path
));
3953 return u
->unit_file_preset
;
3956 Unit
* unit_ref_set(UnitRef
*ref
, Unit
*source
, Unit
*target
) {
3962 unit_ref_unset(ref
);
3964 ref
->source
= source
;
3965 ref
->target
= target
;
3966 LIST_PREPEND(refs_by_target
, target
->refs_by_target
, ref
);
3970 void unit_ref_unset(UnitRef
*ref
) {
3976 /* We are about to drop a reference to the unit, make sure the garbage collection has a look at it as it might
3977 * be unreferenced now. */
3978 unit_add_to_gc_queue(ref
->target
);
3980 LIST_REMOVE(refs_by_target
, ref
->target
->refs_by_target
, ref
);
3981 ref
->source
= ref
->target
= NULL
;
3984 static int user_from_unit_name(Unit
*u
, char **ret
) {
3986 static const uint8_t hash_key
[] = {
3987 0x58, 0x1a, 0xaf, 0xe6, 0x28, 0x58, 0x4e, 0x96,
3988 0xb4, 0x4e, 0xf5, 0x3b, 0x8c, 0x92, 0x07, 0xec
3991 _cleanup_free_
char *n
= NULL
;
3994 r
= unit_name_to_prefix(u
->id
, &n
);
3998 if (valid_user_group_name(n
)) {
4003 /* If we can't use the unit name as a user name, then let's hash it and use that */
4004 if (asprintf(ret
, "_du%016" PRIx64
, siphash24(n
, strlen(n
), hash_key
)) < 0)
4010 int unit_patch_contexts(Unit
*u
) {
4018 /* Patch in the manager defaults into the exec and cgroup
4019 * contexts, _after_ the rest of the settings have been
4022 ec
= unit_get_exec_context(u
);
4024 /* This only copies in the ones that need memory */
4025 for (i
= 0; i
< _RLIMIT_MAX
; i
++)
4026 if (u
->manager
->rlimit
[i
] && !ec
->rlimit
[i
]) {
4027 ec
->rlimit
[i
] = newdup(struct rlimit
, u
->manager
->rlimit
[i
], 1);
4032 if (MANAGER_IS_USER(u
->manager
) &&
4033 !ec
->working_directory
) {
4035 r
= get_home_dir(&ec
->working_directory
);
4039 /* Allow user services to run, even if the
4040 * home directory is missing */
4041 ec
->working_directory_missing_ok
= true;
4044 if (ec
->private_devices
)
4045 ec
->capability_bounding_set
&= ~((UINT64_C(1) << CAP_MKNOD
) | (UINT64_C(1) << CAP_SYS_RAWIO
));
4047 if (ec
->protect_kernel_modules
)
4048 ec
->capability_bounding_set
&= ~(UINT64_C(1) << CAP_SYS_MODULE
);
4050 if (ec
->dynamic_user
) {
4052 r
= user_from_unit_name(u
, &ec
->user
);
4058 ec
->group
= strdup(ec
->user
);
4063 /* If the dynamic user option is on, let's make sure that the unit can't leave its UID/GID
4064 * around in the file system or on IPC objects. Hence enforce a strict sandbox. */
4066 ec
->private_tmp
= true;
4067 ec
->remove_ipc
= true;
4068 ec
->protect_system
= PROTECT_SYSTEM_STRICT
;
4069 if (ec
->protect_home
== PROTECT_HOME_NO
)
4070 ec
->protect_home
= PROTECT_HOME_READ_ONLY
;
4074 cc
= unit_get_cgroup_context(u
);
4078 ec
->private_devices
&&
4079 cc
->device_policy
== CGROUP_AUTO
)
4080 cc
->device_policy
= CGROUP_CLOSED
;
4086 ExecContext
*unit_get_exec_context(Unit
*u
) {
4093 offset
= UNIT_VTABLE(u
)->exec_context_offset
;
4097 return (ExecContext
*) ((uint8_t*) u
+ offset
);
4100 KillContext
*unit_get_kill_context(Unit
*u
) {
4107 offset
= UNIT_VTABLE(u
)->kill_context_offset
;
4111 return (KillContext
*) ((uint8_t*) u
+ offset
);
4114 CGroupContext
*unit_get_cgroup_context(Unit
*u
) {
4120 offset
= UNIT_VTABLE(u
)->cgroup_context_offset
;
4124 return (CGroupContext
*) ((uint8_t*) u
+ offset
);
4127 ExecRuntime
*unit_get_exec_runtime(Unit
*u
) {
4133 offset
= UNIT_VTABLE(u
)->exec_runtime_offset
;
4137 return *(ExecRuntime
**) ((uint8_t*) u
+ offset
);
4140 static const char* unit_drop_in_dir(Unit
*u
, UnitWriteFlags flags
) {
4143 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4146 if (u
->transient
) /* Redirect drop-ins for transient units always into the transient directory. */
4147 return u
->manager
->lookup_paths
.transient
;
4149 if (flags
& UNIT_PERSISTENT
)
4150 return u
->manager
->lookup_paths
.persistent_control
;
4152 if (flags
& UNIT_RUNTIME
)
4153 return u
->manager
->lookup_paths
.runtime_control
;
4158 char* unit_escape_setting(const char *s
, UnitWriteFlags flags
, char **buf
) {
4164 /* Escapes the input string as requested. Returns the escaped string. If 'buf' is specified then the allocated
4165 * return buffer pointer is also written to *buf, except if no escaping was necessary, in which case *buf is
4166 * set to NULL, and the input pointer is returned as-is. This means the return value always contains a properly
4167 * escaped version, but *buf when passed only contains a pointer if an allocation was necessary. If *buf is
4168 * not specified, then the return value always needs to be freed. Callers can use this to optimize memory
4171 if (flags
& UNIT_ESCAPE_SPECIFIERS
) {
4172 ret
= specifier_escape(s
);
4179 if (flags
& UNIT_ESCAPE_C
) {
4192 return ret
?: (char*) s
;
4195 return ret
?: strdup(s
);
4198 char* unit_concat_strv(char **l
, UnitWriteFlags flags
) {
4199 _cleanup_free_
char *result
= NULL
;
4200 size_t n
= 0, allocated
= 0;
4203 /* Takes a list of strings, escapes them, and concatenates them. This may be used to format command lines in a
4204 * way suitable for ExecStart= stanzas */
4206 STRV_FOREACH(i
, l
) {
4207 _cleanup_free_
char *buf
= NULL
;
4212 p
= unit_escape_setting(*i
, flags
, &buf
);
4216 a
= (n
> 0) + 1 + strlen(p
) + 1; /* separating space + " + entry + " */
4217 if (!GREEDY_REALLOC(result
, allocated
, n
+ a
+ 1))
4231 if (!GREEDY_REALLOC(result
, allocated
, n
+ 1))
4236 return TAKE_PTR(result
);
4239 int unit_write_setting(Unit
*u
, UnitWriteFlags flags
, const char *name
, const char *data
) {
4240 _cleanup_free_
char *p
= NULL
, *q
= NULL
, *escaped
= NULL
;
4241 const char *dir
, *wrapped
;
4248 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4251 data
= unit_escape_setting(data
, flags
, &escaped
);
4255 /* Prefix the section header. If we are writing this out as transient file, then let's suppress this if the
4256 * previous section header is the same */
4258 if (flags
& UNIT_PRIVATE
) {
4259 if (!UNIT_VTABLE(u
)->private_section
)
4262 if (!u
->transient_file
|| u
->last_section_private
< 0)
4263 data
= strjoina("[", UNIT_VTABLE(u
)->private_section
, "]\n", data
);
4264 else if (u
->last_section_private
== 0)
4265 data
= strjoina("\n[", UNIT_VTABLE(u
)->private_section
, "]\n", data
);
4267 if (!u
->transient_file
|| u
->last_section_private
< 0)
4268 data
= strjoina("[Unit]\n", data
);
4269 else if (u
->last_section_private
> 0)
4270 data
= strjoina("\n[Unit]\n", data
);
4273 if (u
->transient_file
) {
4274 /* When this is a transient unit file in creation, then let's not create a new drop-in but instead
4275 * write to the transient unit file. */
4276 fputs(data
, u
->transient_file
);
4278 if (!endswith(data
, "\n"))
4279 fputc('\n', u
->transient_file
);
4281 /* Remember which section we wrote this entry to */
4282 u
->last_section_private
= !!(flags
& UNIT_PRIVATE
);
4286 dir
= unit_drop_in_dir(u
, flags
);
4290 wrapped
= strjoina("# This is a drop-in unit file extension, created via \"systemctl set-property\"\n"
4291 "# or an equivalent operation. Do not edit.\n",
4295 r
= drop_in_file(dir
, u
->id
, 50, name
, &p
, &q
);
4299 (void) mkdir_p_label(p
, 0755);
4300 r
= write_string_file_atomic_label(q
, wrapped
);
4304 r
= strv_push(&u
->dropin_paths
, q
);
4309 strv_uniq(u
->dropin_paths
);
4311 u
->dropin_mtime
= now(CLOCK_REALTIME
);
4316 int unit_write_settingf(Unit
*u
, UnitWriteFlags flags
, const char *name
, const char *format
, ...) {
4317 _cleanup_free_
char *p
= NULL
;
4325 if (UNIT_WRITE_FLAGS_NOOP(flags
))
4328 va_start(ap
, format
);
4329 r
= vasprintf(&p
, format
, ap
);
4335 return unit_write_setting(u
, flags
, name
, p
);
4338 int unit_make_transient(Unit
*u
) {
4339 _cleanup_free_
char *path
= NULL
;
4344 if (!UNIT_VTABLE(u
)->can_transient
)
4347 (void) mkdir_p_label(u
->manager
->lookup_paths
.transient
, 0755);
4349 path
= strjoin(u
->manager
->lookup_paths
.transient
, "/", u
->id
);
4353 /* Let's open the file we'll write the transient settings into. This file is kept open as long as we are
4354 * creating the transient, and is closed in unit_load(), as soon as we start loading the file. */
4356 RUN_WITH_UMASK(0022) {
4357 f
= fopen(path
, "we");
4362 safe_fclose(u
->transient_file
);
4363 u
->transient_file
= f
;
4365 free_and_replace(u
->fragment_path
, path
);
4367 u
->source_path
= mfree(u
->source_path
);
4368 u
->dropin_paths
= strv_free(u
->dropin_paths
);
4369 u
->fragment_mtime
= u
->source_mtime
= u
->dropin_mtime
= 0;
4371 u
->load_state
= UNIT_STUB
;
4373 u
->transient
= true;
4375 unit_add_to_dbus_queue(u
);
4376 unit_add_to_gc_queue(u
);
4378 fputs("# This is a transient unit file, created programmatically via the systemd API. Do not edit.\n",
4384 static void log_kill(pid_t pid
, int sig
, void *userdata
) {
4385 _cleanup_free_
char *comm
= NULL
;
4387 (void) get_process_comm(pid
, &comm
);
4389 /* Don't log about processes marked with brackets, under the assumption that these are temporary processes
4390 only, like for example systemd's own PAM stub process. */
4391 if (comm
&& comm
[0] == '(')
4394 log_unit_notice(userdata
,
4395 "Killing process " PID_FMT
" (%s) with signal SIG%s.",
4398 signal_to_string(sig
));
4401 static int operation_to_signal(KillContext
*c
, KillOperation k
) {
4406 case KILL_TERMINATE
:
4407 case KILL_TERMINATE_AND_LOG
:
4408 return c
->kill_signal
;
4417 assert_not_reached("KillOperation unknown");
4421 int unit_kill_context(
4427 bool main_pid_alien
) {
4429 bool wait_for_exit
= false, send_sighup
;
4430 cg_kill_log_func_t log_func
= NULL
;
4436 /* Kill the processes belonging to this unit, in preparation for shutting the unit down.
4437 * Returns > 0 if we killed something worth waiting for, 0 otherwise. */
4439 if (c
->kill_mode
== KILL_NONE
)
4442 sig
= operation_to_signal(c
, k
);
4446 IN_SET(k
, KILL_TERMINATE
, KILL_TERMINATE_AND_LOG
) &&
4449 if (k
!= KILL_TERMINATE
|| IN_SET(sig
, SIGKILL
, SIGABRT
))
4450 log_func
= log_kill
;
4454 log_func(main_pid
, sig
, u
);
4456 r
= kill_and_sigcont(main_pid
, sig
);
4457 if (r
< 0 && r
!= -ESRCH
) {
4458 _cleanup_free_
char *comm
= NULL
;
4459 (void) get_process_comm(main_pid
, &comm
);
4461 log_unit_warning_errno(u
, r
, "Failed to kill main process " PID_FMT
" (%s), ignoring: %m", main_pid
, strna(comm
));
4463 if (!main_pid_alien
)
4464 wait_for_exit
= true;
4466 if (r
!= -ESRCH
&& send_sighup
)
4467 (void) kill(main_pid
, SIGHUP
);
4471 if (control_pid
> 0) {
4473 log_func(control_pid
, sig
, u
);
4475 r
= kill_and_sigcont(control_pid
, sig
);
4476 if (r
< 0 && r
!= -ESRCH
) {
4477 _cleanup_free_
char *comm
= NULL
;
4478 (void) get_process_comm(control_pid
, &comm
);
4480 log_unit_warning_errno(u
, r
, "Failed to kill control process " PID_FMT
" (%s), ignoring: %m", control_pid
, strna(comm
));
4482 wait_for_exit
= true;
4484 if (r
!= -ESRCH
&& send_sighup
)
4485 (void) kill(control_pid
, SIGHUP
);
4489 if (u
->cgroup_path
&&
4490 (c
->kill_mode
== KILL_CONTROL_GROUP
|| (c
->kill_mode
== KILL_MIXED
&& k
== KILL_KILL
))) {
4491 _cleanup_set_free_ Set
*pid_set
= NULL
;
4493 /* Exclude the main/control pids from being killed via the cgroup */
4494 pid_set
= unit_pid_set(main_pid
, control_pid
);
4498 r
= cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
,
4500 CGROUP_SIGCONT
|CGROUP_IGNORE_SELF
,
4504 if (!IN_SET(r
, -EAGAIN
, -ESRCH
, -ENOENT
))
4505 log_unit_warning_errno(u
, r
, "Failed to kill control group %s, ignoring: %m", u
->cgroup_path
);
4509 /* FIXME: For now, on the legacy hierarchy, we will not wait for the cgroup members to die if
4510 * we are running in a container or if this is a delegation unit, simply because cgroup
4511 * notification is unreliable in these cases. It doesn't work at all in containers, and outside
4512 * of containers it can be confused easily by left-over directories in the cgroup — which
4513 * however should not exist in non-delegated units. On the unified hierarchy that's different,
4514 * there we get proper events. Hence rely on them. */
4516 if (cg_unified_controller(SYSTEMD_CGROUP_CONTROLLER
) > 0 ||
4517 (detect_container() == 0 && !unit_cgroup_delegate(u
)))
4518 wait_for_exit
= true;
4523 pid_set
= unit_pid_set(main_pid
, control_pid
);
4527 cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
,
4536 return wait_for_exit
;
4539 int unit_require_mounts_for(Unit
*u
, const char *path
, UnitDependencyMask mask
) {
4540 _cleanup_free_
char *p
= NULL
;
4542 UnitDependencyInfo di
;
4548 /* Registers a unit for requiring a certain path and all its prefixes. We keep a hashtable of these paths in
4549 * the unit (from the path to the UnitDependencyInfo structure indicating how to the dependency came to
4550 * be). However, we build a prefix table for all possible prefixes so that new appearing mount units can easily
4551 * determine which units to make themselves a dependency of. */
4553 if (!path_is_absolute(path
))
4556 r
= hashmap_ensure_allocated(&u
->requires_mounts_for
, &path_hash_ops
);
4564 path
= path_kill_slashes(p
);
4566 if (!path_is_normalized(path
))
4569 if (hashmap_contains(u
->requires_mounts_for
, path
))
4572 di
= (UnitDependencyInfo
) {
4576 r
= hashmap_put(u
->requires_mounts_for
, path
, di
.data
);
4581 prefix
= alloca(strlen(path
) + 1);
4582 PATH_FOREACH_PREFIX_MORE(prefix
, path
) {
4585 x
= hashmap_get(u
->manager
->units_requiring_mounts_for
, prefix
);
4587 _cleanup_free_
char *q
= NULL
;
4589 r
= hashmap_ensure_allocated(&u
->manager
->units_requiring_mounts_for
, &path_hash_ops
);
4601 r
= hashmap_put(u
->manager
->units_requiring_mounts_for
, q
, x
);
4617 int unit_setup_exec_runtime(Unit
*u
) {
4625 offset
= UNIT_VTABLE(u
)->exec_runtime_offset
;
4628 /* Check if there already is an ExecRuntime for this unit? */
4629 rt
= (ExecRuntime
**) ((uint8_t*) u
+ offset
);
4633 /* Try to get it from somebody else */
4634 HASHMAP_FOREACH_KEY(v
, other
, u
->dependencies
[UNIT_JOINS_NAMESPACE_OF
], i
) {
4635 r
= exec_runtime_acquire(u
->manager
, NULL
, other
->id
, false, rt
);
4640 return exec_runtime_acquire(u
->manager
, unit_get_exec_context(u
), u
->id
, true, rt
);
4643 int unit_setup_dynamic_creds(Unit
*u
) {
4645 DynamicCreds
*dcreds
;
4650 offset
= UNIT_VTABLE(u
)->dynamic_creds_offset
;
4652 dcreds
= (DynamicCreds
*) ((uint8_t*) u
+ offset
);
4654 ec
= unit_get_exec_context(u
);
4657 if (!ec
->dynamic_user
)
4660 return dynamic_creds_acquire(dcreds
, u
->manager
, ec
->user
, ec
->group
);
4663 bool unit_type_supported(UnitType t
) {
4664 if (_unlikely_(t
< 0))
4666 if (_unlikely_(t
>= _UNIT_TYPE_MAX
))
4669 if (!unit_vtable
[t
]->supported
)
4672 return unit_vtable
[t
]->supported();
4675 void unit_warn_if_dir_nonempty(Unit
*u
, const char* where
) {
4681 r
= dir_is_empty(where
);
4682 if (r
> 0 || r
== -ENOTDIR
)
4685 log_unit_warning_errno(u
, r
, "Failed to check directory %s: %m", where
);
4689 log_struct(LOG_NOTICE
,
4690 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR
,
4692 LOG_UNIT_INVOCATION_ID(u
),
4693 LOG_UNIT_MESSAGE(u
, "Directory %s to mount over is not empty, mounting anyway.", where
),
4698 int unit_fail_if_noncanonical(Unit
*u
, const char* where
) {
4699 _cleanup_free_
char *canonical_where
;
4705 r
= chase_symlinks(where
, NULL
, CHASE_NONEXISTENT
, &canonical_where
);
4707 log_unit_debug_errno(u
, r
, "Failed to check %s for symlinks, ignoring: %m", where
);
4711 /* We will happily ignore a trailing slash (or any redundant slashes) */
4712 if (path_equal(where
, canonical_where
))
4715 /* No need to mention "." or "..", they would already have been rejected by unit_name_from_path() */
4717 "MESSAGE_ID=" SD_MESSAGE_OVERMOUNTING_STR
,
4719 LOG_UNIT_INVOCATION_ID(u
),
4720 LOG_UNIT_MESSAGE(u
, "Mount path %s is not canonical (contains a symlink).", where
),
4727 bool unit_is_pristine(Unit
*u
) {
4730 /* Check if the unit already exists or is already around,
4731 * in a number of different ways. Note that to cater for unit
4732 * types such as slice, we are generally fine with units that
4733 * are marked UNIT_LOADED even though nothing was
4734 * actually loaded, as those unit types don't require a file
4735 * on disk to validly load. */
4737 return !(!IN_SET(u
->load_state
, UNIT_NOT_FOUND
, UNIT_LOADED
) ||
4740 !strv_isempty(u
->dropin_paths
) ||
4745 pid_t
unit_control_pid(Unit
*u
) {
4748 if (UNIT_VTABLE(u
)->control_pid
)
4749 return UNIT_VTABLE(u
)->control_pid(u
);
4754 pid_t
unit_main_pid(Unit
*u
) {
4757 if (UNIT_VTABLE(u
)->main_pid
)
4758 return UNIT_VTABLE(u
)->main_pid(u
);
4763 static void unit_unref_uid_internal(
4767 void (*_manager_unref_uid
)(Manager
*m
, uid_t uid
, bool destroy_now
)) {
4771 assert(_manager_unref_uid
);
4773 /* Generic implementation of both unit_unref_uid() and unit_unref_gid(), under the assumption that uid_t and
4774 * gid_t are actually the same time, with the same validity rules.
4776 * Drops a reference to UID/GID from a unit. */
4778 assert_cc(sizeof(uid_t
) == sizeof(gid_t
));
4779 assert_cc(UID_INVALID
== (uid_t
) GID_INVALID
);
4781 if (!uid_is_valid(*ref_uid
))
4784 _manager_unref_uid(u
->manager
, *ref_uid
, destroy_now
);
4785 *ref_uid
= UID_INVALID
;
4788 void unit_unref_uid(Unit
*u
, bool destroy_now
) {
4789 unit_unref_uid_internal(u
, &u
->ref_uid
, destroy_now
, manager_unref_uid
);
4792 void unit_unref_gid(Unit
*u
, bool destroy_now
) {
4793 unit_unref_uid_internal(u
, (uid_t
*) &u
->ref_gid
, destroy_now
, manager_unref_gid
);
4796 static int unit_ref_uid_internal(
4801 int (*_manager_ref_uid
)(Manager
*m
, uid_t uid
, bool clean_ipc
)) {
4807 assert(uid_is_valid(uid
));
4808 assert(_manager_ref_uid
);
4810 /* Generic implementation of both unit_ref_uid() and unit_ref_guid(), under the assumption that uid_t and gid_t
4811 * are actually the same type, and have the same validity rules.
4813 * Adds a reference on a specific UID/GID to this unit. Each unit referencing the same UID/GID maintains a
4814 * reference so that we can destroy the UID/GID's IPC resources as soon as this is requested and the counter
4817 assert_cc(sizeof(uid_t
) == sizeof(gid_t
));
4818 assert_cc(UID_INVALID
== (uid_t
) GID_INVALID
);
4820 if (*ref_uid
== uid
)
4823 if (uid_is_valid(*ref_uid
)) /* Already set? */
4826 r
= _manager_ref_uid(u
->manager
, uid
, clean_ipc
);
4834 int unit_ref_uid(Unit
*u
, uid_t uid
, bool clean_ipc
) {
4835 return unit_ref_uid_internal(u
, &u
->ref_uid
, uid
, clean_ipc
, manager_ref_uid
);
4838 int unit_ref_gid(Unit
*u
, gid_t gid
, bool clean_ipc
) {
4839 return unit_ref_uid_internal(u
, (uid_t
*) &u
->ref_gid
, (uid_t
) gid
, clean_ipc
, manager_ref_gid
);
4842 static int unit_ref_uid_gid_internal(Unit
*u
, uid_t uid
, gid_t gid
, bool clean_ipc
) {
4847 /* Reference both a UID and a GID in one go. Either references both, or neither. */
4849 if (uid_is_valid(uid
)) {
4850 r
= unit_ref_uid(u
, uid
, clean_ipc
);
4855 if (gid_is_valid(gid
)) {
4856 q
= unit_ref_gid(u
, gid
, clean_ipc
);
4859 unit_unref_uid(u
, false);
4865 return r
> 0 || q
> 0;
4868 int unit_ref_uid_gid(Unit
*u
, uid_t uid
, gid_t gid
) {
4874 c
= unit_get_exec_context(u
);
4876 r
= unit_ref_uid_gid_internal(u
, uid
, gid
, c
? c
->remove_ipc
: false);
4878 return log_unit_warning_errno(u
, r
, "Couldn't add UID/GID reference to unit, proceeding without: %m");
4883 void unit_unref_uid_gid(Unit
*u
, bool destroy_now
) {
4886 unit_unref_uid(u
, destroy_now
);
4887 unit_unref_gid(u
, destroy_now
);
4890 void unit_notify_user_lookup(Unit
*u
, uid_t uid
, gid_t gid
) {
4895 /* This is invoked whenever one of the forked off processes let's us know the UID/GID its user name/group names
4896 * resolved to. We keep track of which UID/GID is currently assigned in order to be able to destroy its IPC
4897 * objects when no service references the UID/GID anymore. */
4899 r
= unit_ref_uid_gid(u
, uid
, gid
);
4901 bus_unit_send_change_signal(u
);
4904 int unit_set_invocation_id(Unit
*u
, sd_id128_t id
) {
4909 /* Set the invocation ID for this unit. If we cannot, this will not roll back, but reset the whole thing. */
4911 if (sd_id128_equal(u
->invocation_id
, id
))
4914 if (!sd_id128_is_null(u
->invocation_id
))
4915 (void) hashmap_remove_value(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
4917 if (sd_id128_is_null(id
)) {
4922 r
= hashmap_ensure_allocated(&u
->manager
->units_by_invocation_id
, &id128_hash_ops
);
4926 u
->invocation_id
= id
;
4927 sd_id128_to_string(id
, u
->invocation_id_string
);
4929 r
= hashmap_put(u
->manager
->units_by_invocation_id
, &u
->invocation_id
, u
);
4936 u
->invocation_id
= SD_ID128_NULL
;
4937 u
->invocation_id_string
[0] = 0;
4941 int unit_acquire_invocation_id(Unit
*u
) {
4947 r
= sd_id128_randomize(&id
);
4949 return log_unit_error_errno(u
, r
, "Failed to generate invocation ID for unit: %m");
4951 r
= unit_set_invocation_id(u
, id
);
4953 return log_unit_error_errno(u
, r
, "Failed to set invocation ID for unit: %m");
4958 void unit_set_exec_params(Unit
*u
, ExecParameters
*p
) {
4962 /* Copy parameters from manager */
4963 p
->environment
= u
->manager
->environment
;
4964 p
->confirm_spawn
= manager_get_confirm_spawn(u
->manager
);
4965 p
->cgroup_supported
= u
->manager
->cgroup_supported
;
4966 p
->prefix
= u
->manager
->prefix
;
4967 SET_FLAG(p
->flags
, EXEC_PASS_LOG_UNIT
|EXEC_CHOWN_DIRECTORIES
, MANAGER_IS_SYSTEM(u
->manager
));
4969 /* Copy paramaters from unit */
4970 p
->cgroup_path
= u
->cgroup_path
;
4971 SET_FLAG(p
->flags
, EXEC_CGROUP_DELEGATE
, unit_cgroup_delegate(u
));
4974 int unit_fork_helper_process(Unit
*u
, const char *name
, pid_t
*ret
) {
4980 /* Forks off a helper process and makes sure it is a member of the unit's cgroup. Returns == 0 in the child,
4981 * and > 0 in the parent. The pid parameter is always filled in with the child's PID. */
4983 (void) unit_realize_cgroup(u
);
4985 r
= safe_fork(name
, FORK_REOPEN_LOG
, ret
);
4989 (void) default_signals(SIGNALS_CRASH_HANDLER
, SIGNALS_IGNORE
, -1);
4990 (void) ignore_signals(SIGPIPE
, -1);
4992 (void) prctl(PR_SET_PDEATHSIG
, SIGTERM
);
4994 if (u
->cgroup_path
) {
4995 r
= cg_attach_everywhere(u
->manager
->cgroup_supported
, u
->cgroup_path
, 0, NULL
, NULL
);
4997 log_unit_error_errno(u
, r
, "Failed to join unit cgroup %s: %m", u
->cgroup_path
);
5005 static void unit_update_dependency_mask(Unit
*u
, UnitDependency d
, Unit
*other
, UnitDependencyInfo di
) {
5008 assert(d
< _UNIT_DEPENDENCY_MAX
);
5011 if (di
.origin_mask
== 0 && di
.destination_mask
== 0) {
5012 /* No bit set anymore, let's drop the whole entry */
5013 assert_se(hashmap_remove(u
->dependencies
[d
], other
));
5014 log_unit_debug(u
, "%s lost dependency %s=%s", u
->id
, unit_dependency_to_string(d
), other
->id
);
5016 /* Mask was reduced, let's update the entry */
5017 assert_se(hashmap_update(u
->dependencies
[d
], other
, di
.data
) == 0);
5020 void unit_remove_dependencies(Unit
*u
, UnitDependencyMask mask
) {
5025 /* Removes all dependencies u has on other units marked for ownership by 'mask'. */
5030 for (d
= 0; d
< _UNIT_DEPENDENCY_MAX
; d
++) {
5034 UnitDependencyInfo di
;
5040 HASHMAP_FOREACH_KEY(di
.data
, other
, u
->dependencies
[d
], i
) {
5043 if ((di
.origin_mask
& ~mask
) == di
.origin_mask
)
5045 di
.origin_mask
&= ~mask
;
5046 unit_update_dependency_mask(u
, d
, other
, di
);
5048 /* We updated the dependency from our unit to the other unit now. But most dependencies
5049 * imply a reverse dependency. Hence, let's delete that one too. For that we go through
5050 * all dependency types on the other unit and delete all those which point to us and
5051 * have the right mask set. */
5053 for (q
= 0; q
< _UNIT_DEPENDENCY_MAX
; q
++) {
5054 UnitDependencyInfo dj
;
5056 dj
.data
= hashmap_get(other
->dependencies
[q
], u
);
5057 if ((dj
.destination_mask
& ~mask
) == dj
.destination_mask
)
5059 dj
.destination_mask
&= ~mask
;
5061 unit_update_dependency_mask(other
, q
, u
, dj
);
5064 unit_add_to_gc_queue(other
);
5074 static int unit_export_invocation_id(Unit
*u
) {
5080 if (u
->exported_invocation_id
)
5083 if (sd_id128_is_null(u
->invocation_id
))
5086 p
= strjoina("/run/systemd/units/invocation:", u
->id
);
5087 r
= symlink_atomic(u
->invocation_id_string
, p
);
5089 return log_unit_debug_errno(u
, r
, "Failed to create invocation ID symlink %s: %m", p
);
5091 u
->exported_invocation_id
= true;
5095 static int unit_export_log_level_max(Unit
*u
, const ExecContext
*c
) {
5103 if (u
->exported_log_level_max
)
5106 if (c
->log_level_max
< 0)
5109 assert(c
->log_level_max
<= 7);
5111 buf
[0] = '0' + c
->log_level_max
;
5114 p
= strjoina("/run/systemd/units/log-level-max:", u
->id
);
5115 r
= symlink_atomic(buf
, p
);
5117 return log_unit_debug_errno(u
, r
, "Failed to create maximum log level symlink %s: %m", p
);
5119 u
->exported_log_level_max
= true;
5123 static int unit_export_log_extra_fields(Unit
*u
, const ExecContext
*c
) {
5124 _cleanup_close_
int fd
= -1;
5125 struct iovec
*iovec
;
5133 if (u
->exported_log_extra_fields
)
5136 if (c
->n_log_extra_fields
<= 0)
5139 sizes
= newa(le64_t
, c
->n_log_extra_fields
);
5140 iovec
= newa(struct iovec
, c
->n_log_extra_fields
* 2);
5142 for (i
= 0; i
< c
->n_log_extra_fields
; i
++) {
5143 sizes
[i
] = htole64(c
->log_extra_fields
[i
].iov_len
);
5145 iovec
[i
*2] = IOVEC_MAKE(sizes
+ i
, sizeof(le64_t
));
5146 iovec
[i
*2+1] = c
->log_extra_fields
[i
];
5149 p
= strjoina("/run/systemd/units/log-extra-fields:", u
->id
);
5150 pattern
= strjoina(p
, ".XXXXXX");
5152 fd
= mkostemp_safe(pattern
);
5154 return log_unit_debug_errno(u
, fd
, "Failed to create extra fields file %s: %m", p
);
5156 n
= writev(fd
, iovec
, c
->n_log_extra_fields
*2);
5158 r
= log_unit_debug_errno(u
, errno
, "Failed to write extra fields: %m");
5162 (void) fchmod(fd
, 0644);
5164 if (rename(pattern
, p
) < 0) {
5165 r
= log_unit_debug_errno(u
, errno
, "Failed to rename extra fields file: %m");
5169 u
->exported_log_extra_fields
= true;
5173 (void) unlink(pattern
);
5177 void unit_export_state_files(Unit
*u
) {
5178 const ExecContext
*c
;
5185 if (!MANAGER_IS_SYSTEM(u
->manager
))
5188 /* Exports a couple of unit properties to /run/systemd/units/, so that journald can quickly query this data
5189 * from there. Ideally, journald would use IPC to query this, like everybody else, but that's hard, as long as
5190 * the IPC system itself and PID 1 also log to the journal.
5192 * Note that these files really shouldn't be considered API for anyone else, as use a runtime file system as
5193 * IPC replacement is not compatible with today's world of file system namespaces. However, this doesn't really
5194 * apply to communication between the journal and systemd, as we assume that these two daemons live in the same
5195 * namespace at least.
5197 * Note that some of the "files" exported here are actually symlinks and not regular files. Symlinks work
5198 * better for storing small bits of data, in particular as we can write them with two system calls, and read
5201 (void) unit_export_invocation_id(u
);
5203 c
= unit_get_exec_context(u
);
5205 (void) unit_export_log_level_max(u
, c
);
5206 (void) unit_export_log_extra_fields(u
, c
);
5210 void unit_unlink_state_files(Unit
*u
) {
5218 if (!MANAGER_IS_SYSTEM(u
->manager
))
5221 /* Undoes the effect of unit_export_state() */
5223 if (u
->exported_invocation_id
) {
5224 p
= strjoina("/run/systemd/units/invocation:", u
->id
);
5227 u
->exported_invocation_id
= false;
5230 if (u
->exported_log_level_max
) {
5231 p
= strjoina("/run/systemd/units/log-level-max:", u
->id
);
5234 u
->exported_log_level_max
= false;
5237 if (u
->exported_log_extra_fields
) {
5238 p
= strjoina("/run/systemd/units/extra-fields:", u
->id
);
5241 u
->exported_log_extra_fields
= false;
5245 int unit_prepare_exec(Unit
*u
) {
5250 /* Prepares everything so that we can fork of a process for this unit */
5252 (void) unit_realize_cgroup(u
);
5254 if (u
->reset_accounting
) {
5255 (void) unit_reset_cpu_accounting(u
);
5256 (void) unit_reset_ip_accounting(u
);
5257 u
->reset_accounting
= false;
5260 unit_export_state_files(u
);
5262 r
= unit_setup_exec_runtime(u
);
5266 r
= unit_setup_dynamic_creds(u
);
5273 static void log_leftover(pid_t pid
, int sig
, void *userdata
) {
5274 _cleanup_free_
char *comm
= NULL
;
5276 (void) get_process_comm(pid
, &comm
);
5278 if (comm
&& comm
[0] == '(') /* Most likely our own helper process (PAM?), ignore */
5281 log_unit_warning(userdata
,
5282 "Found left-over process " PID_FMT
" (%s) in control group while starting unit. Ignoring.\n"
5283 "This usually indicates unclean termination of a previous run, or service implementation deficiencies.",
5287 void unit_warn_leftover_processes(Unit
*u
) {
5290 (void) unit_pick_cgroup_path(u
);
5292 if (!u
->cgroup_path
)
5295 (void) cg_kill_recursive(SYSTEMD_CGROUP_CONTROLLER
, u
->cgroup_path
, 0, 0, NULL
, log_leftover
, u
);
5298 bool unit_needs_console(Unit
*u
) {
5300 UnitActiveState state
;
5304 state
= unit_active_state(u
);
5306 if (UNIT_IS_INACTIVE_OR_FAILED(state
))
5309 if (UNIT_VTABLE(u
)->needs_console
)
5310 return UNIT_VTABLE(u
)->needs_console(u
);
5312 /* If this unit type doesn't implement this call, let's use a generic fallback implementation: */
5313 ec
= unit_get_exec_context(u
);
5317 return exec_context_may_touch_console(ec
);
5320 const char *unit_label_path(Unit
*u
) {
5323 /* Returns the file system path to use for MAC access decisions, i.e. the file to read the SELinux label off
5324 * when validating access checks. */
5326 p
= u
->source_path
?: u
->fragment_path
;
5330 /* If a unit is masked, then don't read the SELinux label of /dev/null, as that really makes no sense */
5331 if (path_equal(p
, "/dev/null"))
5337 int unit_pid_attachable(Unit
*u
, pid_t pid
, sd_bus_error
*error
) {
5342 /* Checks whether the specified PID is generally good for attaching, i.e. a valid PID, not our manager itself,
5343 * and not a kernel thread either */
5345 /* First, a simple range check */
5346 if (!pid_is_valid(pid
))
5347 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process identifier " PID_FMT
" is not valid.", pid
);
5349 /* Some extra safety check */
5350 if (pid
== 1 || pid
== getpid_cached())
5351 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process " PID_FMT
" is a manager processs, refusing.", pid
);
5353 /* Don't even begin to bother with kernel threads */
5354 r
= is_kernel_thread(pid
);
5356 return sd_bus_error_setf(error
, SD_BUS_ERROR_UNIX_PROCESS_ID_UNKNOWN
, "Process with ID " PID_FMT
" does not exist.", pid
);
5358 return sd_bus_error_set_errnof(error
, r
, "Failed to determine whether process " PID_FMT
" is a kernel thread: %m", pid
);
5360 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Process " PID_FMT
" is a kernel thread, refusing.", pid
);
5365 static const char* const collect_mode_table
[_COLLECT_MODE_MAX
] = {
5366 [COLLECT_INACTIVE
] = "inactive",
5367 [COLLECT_INACTIVE_OR_FAILED
] = "inactive-or-failed",
5370 DEFINE_STRING_TABLE_LOOKUP(collect_mode
, CollectMode
);