1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2011 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
34 #include <sys/inotify.h>
39 #include "sd-journal.h"
42 #include "bus-error.h"
48 #include "hostname-util.h"
50 #include "journal-def.h"
51 #include "journal-internal.h"
52 #include "journal-qrcode.h"
53 #include "journal-vacuum.h"
54 #include "journal-verify.h"
56 #include "logs-show.h"
59 #include "parse-util.h"
60 #include "path-util.h"
64 #include "terminal-util.h"
65 #include "unit-name.h"
66 #include "user-util.h"
68 #define DEFAULT_FSS_INTERVAL_USEC (15*USEC_PER_MINUTE)
71 /* Special values for arg_lines */
72 ARG_LINES_DEFAULT
= -2,
76 static OutputMode arg_output
= OUTPUT_SHORT
;
77 static bool arg_utc
= false;
78 static bool arg_pager_end
= false;
79 static bool arg_follow
= false;
80 static bool arg_full
= true;
81 static bool arg_all
= false;
82 static bool arg_no_pager
= false;
83 static int arg_lines
= ARG_LINES_DEFAULT
;
84 static bool arg_no_tail
= false;
85 static bool arg_quiet
= false;
86 static bool arg_merge
= false;
87 static bool arg_boot
= false;
88 static sd_id128_t arg_boot_id
= {};
89 static int arg_boot_offset
= 0;
90 static bool arg_dmesg
= false;
91 static const char *arg_cursor
= NULL
;
92 static const char *arg_after_cursor
= NULL
;
93 static bool arg_show_cursor
= false;
94 static const char *arg_directory
= NULL
;
95 static char **arg_file
= NULL
;
96 static int arg_priorities
= 0xFF;
97 static const char *arg_verify_key
= NULL
;
99 static usec_t arg_interval
= DEFAULT_FSS_INTERVAL_USEC
;
100 static bool arg_force
= false;
102 static usec_t arg_since
, arg_until
;
103 static bool arg_since_set
= false, arg_until_set
= false;
104 static char **arg_syslog_identifier
= NULL
;
105 static char **arg_system_units
= NULL
;
106 static char **arg_user_units
= NULL
;
107 static const char *arg_field
= NULL
;
108 static bool arg_catalog
= false;
109 static bool arg_reverse
= false;
110 static int arg_journal_type
= 0;
111 static char *arg_root
= NULL
;
112 static const char *arg_machine
= NULL
;
113 static uint64_t arg_vacuum_size
= 0;
114 static uint64_t arg_vacuum_n_files
= 0;
115 static usec_t arg_vacuum_time
= 0;
126 ACTION_UPDATE_CATALOG
,
131 } arg_action
= ACTION_SHOW
;
133 typedef struct BootId
{
137 LIST_FIELDS(struct BootId
, boot_list
);
140 static void pager_open_if_enabled(void) {
145 pager_open(arg_pager_end
);
148 static char *format_timestamp_maybe_utc(char *buf
, size_t l
, usec_t t
) {
151 return format_timestamp_utc(buf
, l
, t
);
153 return format_timestamp(buf
, l
, t
);
156 static int parse_boot_descriptor(const char *x
, sd_id128_t
*boot_id
, int *offset
) {
157 sd_id128_t id
= SD_ID128_NULL
;
160 if (strlen(x
) >= 32) {
164 r
= sd_id128_from_string(t
, &id
);
168 if (*x
!= '-' && *x
!= '+' && *x
!= 0)
172 r
= safe_atoi(x
, &off
);
177 r
= safe_atoi(x
, &off
);
191 static void help(void) {
193 pager_open_if_enabled();
195 printf("%s [OPTIONS...] [MATCHES...]\n\n"
196 "Query the journal.\n\n"
198 " --system Show the system journal\n"
199 " --user Show the user journal for the current user\n"
200 " -M --machine=CONTAINER Operate on local container\n"
201 " -S --since=DATE Show entries not older than the specified date\n"
202 " -U --until=DATE Show entries not newer than the specified date\n"
203 " -c --cursor=CURSOR Show entries starting at the specified cursor\n"
204 " --after-cursor=CURSOR Show entries after the specified cursor\n"
205 " --show-cursor Print the cursor after all the entries\n"
206 " -b --boot[=ID] Show current boot or the specified boot\n"
207 " --list-boots Show terse information about recorded boots\n"
208 " -k --dmesg Show kernel message log from the current boot\n"
209 " -u --unit=UNIT Show logs from the specified unit\n"
210 " --user-unit=UNIT Show logs from the specified user unit\n"
211 " -t --identifier=STRING Show entries with the specified syslog identifier\n"
212 " -p --priority=RANGE Show entries with the specified priority\n"
213 " -e --pager-end Immediately jump to the end in the pager\n"
214 " -f --follow Follow the journal\n"
215 " -n --lines[=INTEGER] Number of journal entries to show\n"
216 " --no-tail Show all lines, even in follow mode\n"
217 " -r --reverse Show the newest entries first\n"
218 " -o --output=STRING Change journal output mode (short, short-iso,\n"
219 " short-precise, short-monotonic, verbose,\n"
220 " export, json, json-pretty, json-sse, cat)\n"
221 " --utc Express time in Coordinated Universal Time (UTC)\n"
222 " -x --catalog Add message explanations where available\n"
223 " --no-full Ellipsize fields\n"
224 " -a --all Show all fields, including long and unprintable\n"
225 " -q --quiet Do not show info messages and privilege warning\n"
226 " --no-pager Do not pipe output into a pager\n"
227 " -m --merge Show entries from all available journals\n"
228 " -D --directory=PATH Show journal files from directory\n"
229 " --file=PATH Show journal file\n"
230 " --root=ROOT Operate on catalog files underneath the root ROOT\n"
232 " --interval=TIME Time interval for changing the FSS sealing key\n"
233 " --verify-key=KEY Specify FSS verification key\n"
234 " --force Override of the FSS key pair with --setup-keys\n"
237 " -h --help Show this help text\n"
238 " --version Show package version\n"
239 " -F --field=FIELD List all values that a specified field takes\n"
240 " --new-id128 Generate a new 128-bit ID\n"
241 " --disk-usage Show total disk usage of all journal files\n"
242 " --vacuum-size=BYTES Reduce disk usage below specified size\n"
243 " --vacuum-files=INT Leave only the specified number of journal files\n"
244 " --vacuum-time=TIME Remove journal files older than specified time\n"
245 " --flush Flush all journal data from /run into /var\n"
246 " --rotate Request immediate rotation of the journal files\n"
247 " --header Show journal header information\n"
248 " --list-catalog Show all message IDs in the catalog\n"
249 " --dump-catalog Show entries in the message catalog\n"
250 " --update-catalog Update the message catalog database\n"
252 " --setup-keys Generate a new FSS key pair\n"
253 " --verify Verify journal file consistency\n"
255 , program_invocation_short_name
);
258 static int parse_argv(int argc
, char *argv
[]) {
292 static const struct option options
[] = {
293 { "help", no_argument
, NULL
, 'h' },
294 { "version" , no_argument
, NULL
, ARG_VERSION
},
295 { "no-pager", no_argument
, NULL
, ARG_NO_PAGER
},
296 { "pager-end", no_argument
, NULL
, 'e' },
297 { "follow", no_argument
, NULL
, 'f' },
298 { "force", no_argument
, NULL
, ARG_FORCE
},
299 { "output", required_argument
, NULL
, 'o' },
300 { "all", no_argument
, NULL
, 'a' },
301 { "full", no_argument
, NULL
, 'l' },
302 { "no-full", no_argument
, NULL
, ARG_NO_FULL
},
303 { "lines", optional_argument
, NULL
, 'n' },
304 { "no-tail", no_argument
, NULL
, ARG_NO_TAIL
},
305 { "new-id128", no_argument
, NULL
, ARG_NEW_ID128
},
306 { "quiet", no_argument
, NULL
, 'q' },
307 { "merge", no_argument
, NULL
, 'm' },
308 { "boot", optional_argument
, NULL
, 'b' },
309 { "list-boots", no_argument
, NULL
, ARG_LIST_BOOTS
},
310 { "this-boot", optional_argument
, NULL
, 'b' }, /* deprecated */
311 { "dmesg", no_argument
, NULL
, 'k' },
312 { "system", no_argument
, NULL
, ARG_SYSTEM
},
313 { "user", no_argument
, NULL
, ARG_USER
},
314 { "directory", required_argument
, NULL
, 'D' },
315 { "file", required_argument
, NULL
, ARG_FILE
},
316 { "root", required_argument
, NULL
, ARG_ROOT
},
317 { "header", no_argument
, NULL
, ARG_HEADER
},
318 { "identifier", required_argument
, NULL
, 't' },
319 { "priority", required_argument
, NULL
, 'p' },
320 { "setup-keys", no_argument
, NULL
, ARG_SETUP_KEYS
},
321 { "interval", required_argument
, NULL
, ARG_INTERVAL
},
322 { "verify", no_argument
, NULL
, ARG_VERIFY
},
323 { "verify-key", required_argument
, NULL
, ARG_VERIFY_KEY
},
324 { "disk-usage", no_argument
, NULL
, ARG_DISK_USAGE
},
325 { "cursor", required_argument
, NULL
, 'c' },
326 { "after-cursor", required_argument
, NULL
, ARG_AFTER_CURSOR
},
327 { "show-cursor", no_argument
, NULL
, ARG_SHOW_CURSOR
},
328 { "since", required_argument
, NULL
, 'S' },
329 { "until", required_argument
, NULL
, 'U' },
330 { "unit", required_argument
, NULL
, 'u' },
331 { "user-unit", required_argument
, NULL
, ARG_USER_UNIT
},
332 { "field", required_argument
, NULL
, 'F' },
333 { "catalog", no_argument
, NULL
, 'x' },
334 { "list-catalog", no_argument
, NULL
, ARG_LIST_CATALOG
},
335 { "dump-catalog", no_argument
, NULL
, ARG_DUMP_CATALOG
},
336 { "update-catalog", no_argument
, NULL
, ARG_UPDATE_CATALOG
},
337 { "reverse", no_argument
, NULL
, 'r' },
338 { "machine", required_argument
, NULL
, 'M' },
339 { "utc", no_argument
, NULL
, ARG_UTC
},
340 { "flush", no_argument
, NULL
, ARG_FLUSH
},
341 { "rotate", no_argument
, NULL
, ARG_ROTATE
},
342 { "vacuum-size", required_argument
, NULL
, ARG_VACUUM_SIZE
},
343 { "vacuum-files", required_argument
, NULL
, ARG_VACUUM_FILES
},
344 { "vacuum-time", required_argument
, NULL
, ARG_VACUUM_TIME
},
353 while ((c
= getopt_long(argc
, argv
, "hefo:aln::qmb::kD:p:c:S:U:t:u:F:xrM:", options
, NULL
)) >= 0)
369 arg_pager_end
= true;
371 if (arg_lines
== ARG_LINES_DEFAULT
)
381 arg_output
= output_mode_from_string(optarg
);
382 if (arg_output
< 0) {
383 log_error("Unknown output format '%s'.", optarg
);
387 if (arg_output
== OUTPUT_EXPORT
||
388 arg_output
== OUTPUT_JSON
||
389 arg_output
== OUTPUT_JSON_PRETTY
||
390 arg_output
== OUTPUT_JSON_SSE
||
391 arg_output
== OUTPUT_CAT
)
410 if (streq(optarg
, "all"))
411 arg_lines
= ARG_LINES_ALL
;
413 r
= safe_atoi(optarg
, &arg_lines
);
414 if (r
< 0 || arg_lines
< 0) {
415 log_error("Failed to parse lines '%s'", optarg
);
422 /* Hmm, no argument? Maybe the next
423 * word on the command line is
424 * supposed to be the argument? Let's
425 * see if there is one, and is
429 if (streq(argv
[optind
], "all")) {
430 arg_lines
= ARG_LINES_ALL
;
432 } else if (safe_atoi(argv
[optind
], &n
) >= 0 && n
>= 0) {
446 arg_action
= ACTION_NEW_ID128
;
461 r
= parse_boot_descriptor(optarg
, &arg_boot_id
, &arg_boot_offset
);
463 log_error("Failed to parse boot descriptor '%s'", optarg
);
468 /* Hmm, no argument? Maybe the next
469 * word on the command line is
470 * supposed to be the argument? Let's
471 * see if there is one and is parsable
472 * as a boot descriptor... */
475 parse_boot_descriptor(argv
[optind
], &arg_boot_id
, &arg_boot_offset
) >= 0)
482 arg_action
= ACTION_LIST_BOOTS
;
486 arg_boot
= arg_dmesg
= true;
490 arg_journal_type
|= SD_JOURNAL_SYSTEM
;
494 arg_journal_type
|= SD_JOURNAL_CURRENT_USER
;
498 arg_machine
= optarg
;
502 arg_directory
= optarg
;
506 r
= glob_extend(&arg_file
, optarg
);
508 return log_error_errno(r
, "Failed to add paths: %m");
512 r
= parse_path_argument_and_warn(optarg
, true, &arg_root
);
521 case ARG_AFTER_CURSOR
:
522 arg_after_cursor
= optarg
;
525 case ARG_SHOW_CURSOR
:
526 arg_show_cursor
= true;
530 arg_action
= ACTION_PRINT_HEADER
;
534 arg_action
= ACTION_VERIFY
;
538 arg_action
= ACTION_DISK_USAGE
;
541 case ARG_VACUUM_SIZE
:
542 r
= parse_size(optarg
, 1024, &arg_vacuum_size
);
544 log_error("Failed to parse vacuum size: %s", optarg
);
548 arg_action
= ACTION_VACUUM
;
551 case ARG_VACUUM_FILES
:
552 r
= safe_atou64(optarg
, &arg_vacuum_n_files
);
554 log_error("Failed to parse vacuum files: %s", optarg
);
558 arg_action
= ACTION_VACUUM
;
561 case ARG_VACUUM_TIME
:
562 r
= parse_sec(optarg
, &arg_vacuum_time
);
564 log_error("Failed to parse vacuum time: %s", optarg
);
568 arg_action
= ACTION_VACUUM
;
577 arg_action
= ACTION_SETUP_KEYS
;
582 arg_action
= ACTION_VERIFY
;
583 arg_verify_key
= optarg
;
588 r
= parse_sec(optarg
, &arg_interval
);
589 if (r
< 0 || arg_interval
<= 0) {
590 log_error("Failed to parse sealing key change interval: %s", optarg
);
599 log_error("Forward-secure sealing not available.");
606 dots
= strstr(optarg
, "..");
612 a
= strndup(optarg
, dots
- optarg
);
616 from
= log_level_from_string(a
);
617 to
= log_level_from_string(dots
+ 2);
620 if (from
< 0 || to
< 0) {
621 log_error("Failed to parse log level range %s", optarg
);
628 for (i
= from
; i
<= to
; i
++)
629 arg_priorities
|= 1 << i
;
631 for (i
= to
; i
<= from
; i
++)
632 arg_priorities
|= 1 << i
;
638 p
= log_level_from_string(optarg
);
640 log_error("Unknown log level %s", optarg
);
646 for (i
= 0; i
<= p
; i
++)
647 arg_priorities
|= 1 << i
;
654 r
= parse_timestamp(optarg
, &arg_since
);
656 log_error("Failed to parse timestamp: %s", optarg
);
659 arg_since_set
= true;
663 r
= parse_timestamp(optarg
, &arg_until
);
665 log_error("Failed to parse timestamp: %s", optarg
);
668 arg_until_set
= true;
672 r
= strv_extend(&arg_syslog_identifier
, optarg
);
678 r
= strv_extend(&arg_system_units
, optarg
);
684 r
= strv_extend(&arg_user_units
, optarg
);
697 case ARG_LIST_CATALOG
:
698 arg_action
= ACTION_LIST_CATALOG
;
701 case ARG_DUMP_CATALOG
:
702 arg_action
= ACTION_DUMP_CATALOG
;
705 case ARG_UPDATE_CATALOG
:
706 arg_action
= ACTION_UPDATE_CATALOG
;
718 arg_action
= ACTION_FLUSH
;
722 arg_action
= ACTION_ROTATE
;
729 assert_not_reached("Unhandled option");
732 if (arg_follow
&& !arg_no_tail
&& !arg_since
&& arg_lines
== ARG_LINES_DEFAULT
)
735 if (!!arg_directory
+ !!arg_file
+ !!arg_machine
> 1) {
736 log_error("Please specify either -D/--directory= or --file= or -M/--machine=, not more than one.");
740 if (arg_since_set
&& arg_until_set
&& arg_since
> arg_until
) {
741 log_error("--since= must be before --until=.");
745 if (!!arg_cursor
+ !!arg_after_cursor
+ !!arg_since_set
> 1) {
746 log_error("Please specify only one of --since=, --cursor=, and --after-cursor.");
750 if (arg_follow
&& arg_reverse
) {
751 log_error("Please specify either --reverse= or --follow=, not both.");
755 if (!IN_SET(arg_action
, ACTION_SHOW
, ACTION_DUMP_CATALOG
, ACTION_LIST_CATALOG
) && optind
< argc
) {
756 log_error("Extraneous arguments starting with '%s'", argv
[optind
]);
760 if ((arg_boot
|| arg_action
== ACTION_LIST_BOOTS
) && (arg_file
|| arg_directory
|| arg_merge
)) {
761 log_error("Using --boot or --list-boots with --file, --directory or --merge is not supported.");
768 static int generate_new_id128(void) {
773 r
= sd_id128_randomize(&id
);
775 return log_error_errno(r
, "Failed to generate ID: %m");
777 printf("As string:\n"
778 SD_ID128_FORMAT_STR
"\n\n"
780 "%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x\n\n"
782 "#define MESSAGE_XYZ SD_ID128_MAKE(",
783 SD_ID128_FORMAT_VAL(id
),
784 SD_ID128_FORMAT_VAL(id
));
785 for (i
= 0; i
< 16; i
++)
786 printf("%02x%s", id
.bytes
[i
], i
!= 15 ? "," : "");
787 fputs(")\n\n", stdout
);
789 printf("As Python constant:\n"
791 ">>> MESSAGE_XYZ = uuid.UUID('" SD_ID128_FORMAT_STR
"')\n",
792 SD_ID128_FORMAT_VAL(id
));
797 static int add_matches(sd_journal
*j
, char **args
) {
799 bool have_term
= false;
803 STRV_FOREACH(i
, args
) {
806 if (streq(*i
, "+")) {
809 r
= sd_journal_add_disjunction(j
);
812 } else if (path_is_absolute(*i
)) {
813 _cleanup_free_
char *p
, *t
= NULL
, *t2
= NULL
;
815 _cleanup_free_
char *interpreter
= NULL
;
818 p
= canonicalize_file_name(*i
);
821 if (lstat(path
, &st
) < 0)
822 return log_error_errno(errno
, "Couldn't stat file: %m");
824 if (S_ISREG(st
.st_mode
) && (0111 & st
.st_mode
)) {
825 if (executable_is_script(path
, &interpreter
) > 0) {
826 _cleanup_free_
char *comm
;
828 comm
= strndup(basename(path
), 15);
832 t
= strappend("_COMM=", comm
);
834 /* Append _EXE only if the interpreter is not a link.
835 Otherwise, it might be outdated often. */
836 if (lstat(interpreter
, &st
) == 0 &&
837 !S_ISLNK(st
.st_mode
)) {
838 t2
= strappend("_EXE=", interpreter
);
843 t
= strappend("_EXE=", path
);
844 } else if (S_ISCHR(st
.st_mode
))
845 (void) asprintf(&t
, "_KERNEL_DEVICE=c%u:%u", major(st
.st_rdev
), minor(st
.st_rdev
));
846 else if (S_ISBLK(st
.st_mode
))
847 (void) asprintf(&t
, "_KERNEL_DEVICE=b%u:%u", major(st
.st_rdev
), minor(st
.st_rdev
));
849 log_error("File is neither a device node, nor regular file, nor executable: %s", *i
);
856 r
= sd_journal_add_match(j
, t
, 0);
858 r
= sd_journal_add_match(j
, t2
, 0);
862 r
= sd_journal_add_match(j
, *i
, 0);
867 return log_error_errno(r
, "Failed to add match '%s': %m", *i
);
870 if (!strv_isempty(args
) && !have_term
) {
871 log_error("\"+\" can only be used between terms");
878 static void boot_id_free_all(BootId
*l
) {
882 LIST_REMOVE(boot_list
, l
, i
);
887 static int discover_next_boot(
891 bool read_realtime
) {
894 char match
[9+32+1] = "_BOOT_ID=";
895 _cleanup_free_ BootId
*next_boot
= NULL
;
900 /* We expect the journal to be on the last position of a boot
901 * (in relation to the direction we are going), so that the next
902 * invocation of sd_journal_next/previous will be from a different
903 * boot. We then collect any information we desire and then jump
904 * to the last location of the new boot by using a _BOOT_ID match
905 * coming from the other journal direction. */
907 /* Make sure we aren't restricted by any _BOOT_ID matches, so that
908 * we can actually advance to a *different* boot. */
909 sd_journal_flush_matches(j
);
912 r
= sd_journal_previous(j
);
914 r
= sd_journal_next(j
);
918 return 0; /* End of journal, yay. */
920 next_boot
= new0(BootId
, 1);
924 r
= sd_journal_get_monotonic_usec(j
, NULL
, &next_boot
->id
);
929 r
= sd_journal_get_realtime_usec(j
, &next_boot
->first
);
934 /* Now seek to the last occurrence of this boot ID. */
935 sd_id128_to_string(next_boot
->id
, match
+ 9);
936 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
941 r
= sd_journal_seek_head(j
);
943 r
= sd_journal_seek_tail(j
);
948 r
= sd_journal_next(j
);
950 r
= sd_journal_previous(j
);
954 return -ENODATA
; /* This shouldn't happen. We just came from this very boot ID. */
957 r
= sd_journal_get_realtime_usec(j
, &next_boot
->last
);
968 static int get_boots(
971 BootId
*query_ref_boot
,
972 int ref_boot_offset
) {
976 BootId
*head
= NULL
, *tail
= NULL
;
977 const bool advance_older
= query_ref_boot
&& ref_boot_offset
<= 0;
981 /* Adjust for the asymmetry that offset 0 is
982 * the last (and current) boot, while 1 is considered the
983 * (chronological) first boot in the journal. */
984 skip_once
= query_ref_boot
&& sd_id128_is_null(query_ref_boot
->id
) && ref_boot_offset
< 0;
986 /* Advance to the earliest/latest occurrence of our reference
987 * boot ID (taking our lookup direction into account), so that
988 * discover_next_boot() can do its job.
989 * If no reference is given, the journal head/tail will do,
990 * they're "virtual" boots after all. */
991 if (query_ref_boot
&& !sd_id128_is_null(query_ref_boot
->id
)) {
992 char match
[9+32+1] = "_BOOT_ID=";
994 sd_journal_flush_matches(j
);
996 sd_id128_to_string(query_ref_boot
->id
, match
+ 9);
997 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
1002 r
= sd_journal_seek_head(j
);
1004 r
= sd_journal_seek_tail(j
);
1009 r
= sd_journal_next(j
);
1011 r
= sd_journal_previous(j
);
1016 else if (ref_boot_offset
== 0) {
1022 r
= sd_journal_seek_tail(j
);
1024 r
= sd_journal_seek_head(j
);
1028 /* No sd_journal_next/previous here. */
1032 _cleanup_free_ BootId
*current
= NULL
;
1034 r
= discover_next_boot(j
, ¤t
, advance_older
, !query_ref_boot
);
1036 boot_id_free_all(head
);
1043 if (query_ref_boot
) {
1045 ref_boot_offset
+= advance_older
? 1 : -1;
1048 if (ref_boot_offset
== 0) {
1050 query_ref_boot
->id
= current
->id
;
1054 LIST_INSERT_AFTER(boot_list
, head
, tail
, current
);
1065 sd_journal_flush_matches(j
);
1070 static int list_boots(sd_journal
*j
) {
1072 BootId
*id
, *all_ids
;
1076 count
= get_boots(j
, &all_ids
, NULL
, 0);
1078 return log_error_errno(count
, "Failed to determine boots: %m");
1082 pager_open_if_enabled();
1084 /* numbers are one less, but we need an extra char for the sign */
1085 w
= DECIMAL_STR_WIDTH(count
- 1) + 1;
1088 LIST_FOREACH(boot_list
, id
, all_ids
) {
1089 char a
[FORMAT_TIMESTAMP_MAX
], b
[FORMAT_TIMESTAMP_MAX
];
1091 printf("% *i " SD_ID128_FORMAT_STR
" %s—%s\n",
1093 SD_ID128_FORMAT_VAL(id
->id
),
1094 format_timestamp_maybe_utc(a
, sizeof(a
), id
->first
),
1095 format_timestamp_maybe_utc(b
, sizeof(b
), id
->last
));
1099 boot_id_free_all(all_ids
);
1104 static int add_boot(sd_journal
*j
) {
1105 char match
[9+32+1] = "_BOOT_ID=";
1107 BootId ref_boot_id
= {};
1114 if (arg_boot_offset
== 0 && sd_id128_equal(arg_boot_id
, SD_ID128_NULL
))
1115 return add_match_this_boot(j
, arg_machine
);
1117 ref_boot_id
.id
= arg_boot_id
;
1118 r
= get_boots(j
, NULL
, &ref_boot_id
, arg_boot_offset
);
1121 const char *reason
= (r
== 0) ? "No such boot ID in journal" : strerror(-r
);
1123 if (sd_id128_is_null(arg_boot_id
))
1124 log_error("Failed to look up boot %+i: %s", arg_boot_offset
, reason
);
1126 log_error("Failed to look up boot ID "SD_ID128_FORMAT_STR
"%+i: %s",
1127 SD_ID128_FORMAT_VAL(arg_boot_id
), arg_boot_offset
, reason
);
1129 return r
== 0 ? -ENODATA
: r
;
1132 sd_id128_to_string(ref_boot_id
.id
, match
+ 9);
1134 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
1136 return log_error_errno(r
, "Failed to add match: %m");
1138 r
= sd_journal_add_conjunction(j
);
1140 return log_error_errno(r
, "Failed to add conjunction: %m");
1145 static int add_dmesg(sd_journal
*j
) {
1152 r
= sd_journal_add_match(j
, "_TRANSPORT=kernel", strlen("_TRANSPORT=kernel"));
1154 return log_error_errno(r
, "Failed to add match: %m");
1156 r
= sd_journal_add_conjunction(j
);
1158 return log_error_errno(r
, "Failed to add conjunction: %m");
1163 static int get_possible_units(
1169 _cleanup_set_free_free_ Set
*found
;
1173 found
= set_new(&string_hash_ops
);
1177 NULSTR_FOREACH(field
, fields
) {
1181 r
= sd_journal_query_unique(j
, field
);
1185 SD_JOURNAL_FOREACH_UNIQUE(j
, data
, size
) {
1186 char **pattern
, *eq
;
1188 _cleanup_free_
char *u
= NULL
;
1190 eq
= memchr(data
, '=', size
);
1192 prefix
= eq
- (char*) data
+ 1;
1196 u
= strndup((char*) data
+ prefix
, size
- prefix
);
1200 STRV_FOREACH(pattern
, patterns
)
1201 if (fnmatch(*pattern
, u
, FNM_NOESCAPE
) == 0) {
1202 log_debug("Matched %s with pattern %s=%s", u
, field
, *pattern
);
1204 r
= set_consume(found
, u
);
1206 if (r
< 0 && r
!= -EEXIST
)
1219 /* This list is supposed to return the superset of unit names
1220 * possibly matched by rules added with add_matches_for_unit... */
1221 #define SYSTEM_UNITS \
1225 "OBJECT_SYSTEMD_UNIT\0" \
1228 /* ... and add_matches_for_user_unit */
1229 #define USER_UNITS \
1230 "_SYSTEMD_USER_UNIT\0" \
1232 "COREDUMP_USER_UNIT\0" \
1233 "OBJECT_SYSTEMD_USER_UNIT\0"
1235 static int add_units(sd_journal
*j
) {
1236 _cleanup_strv_free_
char **patterns
= NULL
;
1242 STRV_FOREACH(i
, arg_system_units
) {
1243 _cleanup_free_
char *u
= NULL
;
1245 r
= unit_name_mangle(*i
, UNIT_NAME_GLOB
, &u
);
1249 if (string_is_glob(u
)) {
1250 r
= strv_push(&patterns
, u
);
1255 r
= add_matches_for_unit(j
, u
);
1258 r
= sd_journal_add_disjunction(j
);
1265 if (!strv_isempty(patterns
)) {
1266 _cleanup_set_free_free_ Set
*units
= NULL
;
1270 r
= get_possible_units(j
, SYSTEM_UNITS
, patterns
, &units
);
1274 SET_FOREACH(u
, units
, it
) {
1275 r
= add_matches_for_unit(j
, u
);
1278 r
= sd_journal_add_disjunction(j
);
1285 patterns
= strv_free(patterns
);
1287 STRV_FOREACH(i
, arg_user_units
) {
1288 _cleanup_free_
char *u
= NULL
;
1290 r
= unit_name_mangle(*i
, UNIT_NAME_GLOB
, &u
);
1294 if (string_is_glob(u
)) {
1295 r
= strv_push(&patterns
, u
);
1300 r
= add_matches_for_user_unit(j
, u
, getuid());
1303 r
= sd_journal_add_disjunction(j
);
1310 if (!strv_isempty(patterns
)) {
1311 _cleanup_set_free_free_ Set
*units
= NULL
;
1315 r
= get_possible_units(j
, USER_UNITS
, patterns
, &units
);
1319 SET_FOREACH(u
, units
, it
) {
1320 r
= add_matches_for_user_unit(j
, u
, getuid());
1323 r
= sd_journal_add_disjunction(j
);
1330 /* Complain if the user request matches but nothing whatsoever was
1331 * found, since otherwise everything would be matched. */
1332 if (!(strv_isempty(arg_system_units
) && strv_isempty(arg_user_units
)) && count
== 0)
1335 r
= sd_journal_add_conjunction(j
);
1342 static int add_priorities(sd_journal
*j
) {
1343 char match
[] = "PRIORITY=0";
1347 if (arg_priorities
== 0xFF)
1350 for (i
= LOG_EMERG
; i
<= LOG_DEBUG
; i
++)
1351 if (arg_priorities
& (1 << i
)) {
1352 match
[sizeof(match
)-2] = '0' + i
;
1354 r
= sd_journal_add_match(j
, match
, strlen(match
));
1356 return log_error_errno(r
, "Failed to add match: %m");
1359 r
= sd_journal_add_conjunction(j
);
1361 return log_error_errno(r
, "Failed to add conjunction: %m");
1367 static int add_syslog_identifier(sd_journal
*j
) {
1373 STRV_FOREACH(i
, arg_syslog_identifier
) {
1376 u
= strjoina("SYSLOG_IDENTIFIER=", *i
);
1377 r
= sd_journal_add_match(j
, u
, 0);
1380 r
= sd_journal_add_disjunction(j
);
1385 r
= sd_journal_add_conjunction(j
);
1392 static int setup_keys(void) {
1394 size_t mpk_size
, seed_size
, state_size
, i
;
1395 uint8_t *mpk
, *seed
, *state
;
1397 sd_id128_t machine
, boot
;
1398 char *p
= NULL
, *k
= NULL
;
1403 r
= stat("/var/log/journal", &st
);
1404 if (r
< 0 && errno
!= ENOENT
&& errno
!= ENOTDIR
)
1405 return log_error_errno(errno
, "stat(\"%s\") failed: %m", "/var/log/journal");
1407 if (r
< 0 || !S_ISDIR(st
.st_mode
)) {
1408 log_error("%s is not a directory, must be using persistent logging for FSS.",
1409 "/var/log/journal");
1410 return r
< 0 ? -errno
: -ENOTDIR
;
1413 r
= sd_id128_get_machine(&machine
);
1415 return log_error_errno(r
, "Failed to get machine ID: %m");
1417 r
= sd_id128_get_boot(&boot
);
1419 return log_error_errno(r
, "Failed to get boot ID: %m");
1421 if (asprintf(&p
, "/var/log/journal/" SD_ID128_FORMAT_STR
"/fss",
1422 SD_ID128_FORMAT_VAL(machine
)) < 0)
1427 if (r
< 0 && errno
!= ENOENT
) {
1428 r
= log_error_errno(errno
, "unlink(\"%s\") failed: %m", p
);
1431 } else if (access(p
, F_OK
) >= 0) {
1432 log_error("Sealing key file %s exists already. Use --force to recreate.", p
);
1437 if (asprintf(&k
, "/var/log/journal/" SD_ID128_FORMAT_STR
"/fss.tmp.XXXXXX",
1438 SD_ID128_FORMAT_VAL(machine
)) < 0) {
1443 mpk_size
= FSPRG_mskinbytes(FSPRG_RECOMMENDED_SECPAR
);
1444 mpk
= alloca(mpk_size
);
1446 seed_size
= FSPRG_RECOMMENDED_SEEDLEN
;
1447 seed
= alloca(seed_size
);
1449 state_size
= FSPRG_stateinbytes(FSPRG_RECOMMENDED_SECPAR
);
1450 state
= alloca(state_size
);
1452 fd
= open("/dev/random", O_RDONLY
|O_CLOEXEC
|O_NOCTTY
);
1454 r
= log_error_errno(errno
, "Failed to open /dev/random: %m");
1458 log_info("Generating seed...");
1459 r
= loop_read_exact(fd
, seed
, seed_size
, true);
1461 log_error_errno(r
, "Failed to read random seed: %m");
1465 log_info("Generating key pair...");
1466 FSPRG_GenMK(NULL
, mpk
, seed
, seed_size
, FSPRG_RECOMMENDED_SECPAR
);
1468 log_info("Generating sealing key...");
1469 FSPRG_GenState0(state
, mpk
, seed
, seed_size
);
1471 assert(arg_interval
> 0);
1473 n
= now(CLOCK_REALTIME
);
1477 fd
= mkostemp_safe(k
, O_WRONLY
|O_CLOEXEC
);
1479 r
= log_error_errno(errno
, "Failed to open %s: %m", k
);
1483 /* Enable secure remove, exclusion from dump, synchronous
1484 * writing and in-place updating */
1485 r
= chattr_fd(fd
, FS_SECRM_FL
|FS_NODUMP_FL
|FS_SYNC_FL
|FS_NOCOW_FL
, FS_SECRM_FL
|FS_NODUMP_FL
|FS_SYNC_FL
|FS_NOCOW_FL
);
1487 log_warning_errno(errno
, "Failed to set file attributes: %m");
1490 memcpy(h
.signature
, "KSHHRHLP", 8);
1491 h
.machine_id
= machine
;
1493 h
.header_size
= htole64(sizeof(h
));
1494 h
.start_usec
= htole64(n
* arg_interval
);
1495 h
.interval_usec
= htole64(arg_interval
);
1496 h
.fsprg_secpar
= htole16(FSPRG_RECOMMENDED_SECPAR
);
1497 h
.fsprg_state_size
= htole64(state_size
);
1499 r
= loop_write(fd
, &h
, sizeof(h
), false);
1501 log_error_errno(r
, "Failed to write header: %m");
1505 r
= loop_write(fd
, state
, state_size
, false);
1507 log_error_errno(r
, "Failed to write state: %m");
1511 if (link(k
, p
) < 0) {
1512 r
= log_error_errno(errno
, "Failed to link file: %m");
1519 "The new key pair has been generated. The " ANSI_HIGHLIGHT
"secret sealing key" ANSI_NORMAL
" has been written to\n"
1520 "the following local file. This key file is automatically updated when the\n"
1521 "sealing key is advanced. It should not be used on multiple hosts.\n"
1525 "Please write down the following " ANSI_HIGHLIGHT
"secret verification key" ANSI_NORMAL
". It should be stored\n"
1526 "at a safe location and should not be saved locally on disk.\n"
1527 "\n\t" ANSI_HIGHLIGHT_RED
, p
);
1530 for (i
= 0; i
< seed_size
; i
++) {
1531 if (i
> 0 && i
% 3 == 0)
1533 printf("%02x", ((uint8_t*) seed
)[i
]);
1536 printf("/%llx-%llx\n", (unsigned long long) n
, (unsigned long long) arg_interval
);
1539 char tsb
[FORMAT_TIMESPAN_MAX
], *hn
;
1543 "The sealing key is automatically changed every %s.\n",
1544 format_timespan(tsb
, sizeof(tsb
), arg_interval
, 0));
1546 hn
= gethostname_malloc();
1549 hostname_cleanup(hn
);
1550 fprintf(stderr
, "\nThe keys have been generated for host %s/" SD_ID128_FORMAT_STR
".\n", hn
, SD_ID128_FORMAT_VAL(machine
));
1552 fprintf(stderr
, "\nThe keys have been generated for host " SD_ID128_FORMAT_STR
".\n", SD_ID128_FORMAT_VAL(machine
));
1554 #ifdef HAVE_QRENCODE
1555 /* If this is not an UTF-8 system don't print any QR codes */
1556 if (is_locale_utf8()) {
1557 fputs("\nTo transfer the verification key to your phone please scan the QR code below:\n\n", stderr
);
1558 print_qr_code(stderr
, seed
, seed_size
, n
, arg_interval
, hn
, machine
);
1578 log_error("Forward-secure sealing not available.");
1583 static int verify(sd_journal
*j
) {
1590 log_show_color(true);
1592 ORDERED_HASHMAP_FOREACH(f
, j
->files
, i
) {
1594 usec_t first
= 0, validated
= 0, last
= 0;
1597 if (!arg_verify_key
&& JOURNAL_HEADER_SEALED(f
->header
))
1598 log_notice("Journal file %s has sealing enabled but verification key has not been passed using --verify-key=.", f
->path
);
1601 k
= journal_file_verify(f
, arg_verify_key
, &first
, &validated
, &last
, true);
1603 /* If the key was invalid give up right-away. */
1606 log_warning_errno(k
, "FAIL: %s (%m)", f
->path
);
1609 char a
[FORMAT_TIMESTAMP_MAX
], b
[FORMAT_TIMESTAMP_MAX
], c
[FORMAT_TIMESPAN_MAX
];
1610 log_info("PASS: %s", f
->path
);
1612 if (arg_verify_key
&& JOURNAL_HEADER_SEALED(f
->header
)) {
1613 if (validated
> 0) {
1614 log_info("=> Validated from %s to %s, final %s entries not sealed.",
1615 format_timestamp_maybe_utc(a
, sizeof(a
), first
),
1616 format_timestamp_maybe_utc(b
, sizeof(b
), validated
),
1617 format_timespan(c
, sizeof(c
), last
> validated
? last
- validated
: 0, 0));
1618 } else if (last
> 0)
1619 log_info("=> No sealing yet, %s of entries not sealed.",
1620 format_timespan(c
, sizeof(c
), last
- first
, 0));
1622 log_info("=> No sealing yet, no entries in file.");
1630 static int access_check_var_log_journal(sd_journal
*j
) {
1632 _cleanup_strv_free_
char **g
= NULL
;
1642 /* If we are root, we should have access, don't warn. */
1646 /* If we are in the 'systemd-journal' group, we should have
1648 r
= in_group("systemd-journal");
1650 return log_error_errno(r
, "Failed to check if we are in the 'systemd-journal' group: %m");
1655 if (laccess("/run/log/journal", F_OK
) >= 0)
1656 dir
= "/run/log/journal";
1658 dir
= "/var/log/journal";
1660 /* If we are in any of the groups listed in the journal ACLs,
1661 * then all is good, too. Let's enumerate all groups from the
1662 * default ACL of the directory, which generally should allow
1663 * access to most journal files too. */
1664 r
= acl_search_groups(dir
, &g
);
1666 return log_error_errno(r
, "Failed to search journal ACL: %m");
1670 /* Print a pretty list, if there were ACLs set. */
1671 if (!strv_isempty(g
)) {
1672 _cleanup_free_
char *s
= NULL
;
1674 /* Thre are groups in the ACL, let's list them */
1675 r
= strv_extend(&g
, "systemd-journal");
1682 s
= strv_join(g
, "', '");
1686 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1687 " Users in groups '%s' can see all messages.\n"
1688 " Pass -q to turn off this notice.", s
);
1693 /* If no ACLs were found, print a short version of the message. */
1694 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1695 " Users in the 'systemd-journal' group can see all messages. Pass -q to\n"
1696 " turn off this notice.");
1701 static int access_check(sd_journal
*j
) {
1708 if (set_isempty(j
->errors
)) {
1709 if (ordered_hashmap_isempty(j
->files
))
1710 log_notice("No journal files were found.");
1715 if (set_contains(j
->errors
, INT_TO_PTR(-EACCES
))) {
1716 (void) access_check_var_log_journal(j
);
1718 if (ordered_hashmap_isempty(j
->files
))
1719 r
= log_error_errno(EACCES
, "No journal files were opened due to insufficient permissions.");
1722 SET_FOREACH(code
, j
->errors
, it
) {
1725 err
= -PTR_TO_INT(code
);
1731 log_warning_errno(err
, "Error was encountered while opening journal files: %m");
1739 static int flush_to_var(void) {
1740 _cleanup_bus_error_free_ sd_bus_error error
= SD_BUS_ERROR_NULL
;
1741 _cleanup_bus_flush_close_unref_ sd_bus
*bus
= NULL
;
1742 _cleanup_close_
int watch_fd
= -1;
1746 if (access("/run/systemd/journal/flushed", F_OK
) >= 0)
1749 /* OK, let's actually do the full logic, send SIGUSR1 to the
1750 * daemon and set up inotify to wait for the flushed file to appear */
1751 r
= bus_connect_system_systemd(&bus
);
1753 return log_error_errno(r
, "Failed to get D-Bus connection: %m");
1755 r
= sd_bus_call_method(
1757 "org.freedesktop.systemd1",
1758 "/org/freedesktop/systemd1",
1759 "org.freedesktop.systemd1.Manager",
1763 "ssi", "systemd-journald.service", "main", SIGUSR1
);
1765 log_error("Failed to kill journal service: %s", bus_error_message(&error
, r
));
1769 mkdir_p("/run/systemd/journal", 0755);
1771 watch_fd
= inotify_init1(IN_NONBLOCK
|IN_CLOEXEC
);
1773 return log_error_errno(errno
, "Failed to create inotify watch: %m");
1775 r
= inotify_add_watch(watch_fd
, "/run/systemd/journal", IN_CREATE
|IN_DONT_FOLLOW
|IN_ONLYDIR
);
1777 return log_error_errno(errno
, "Failed to watch journal directory: %m");
1780 if (access("/run/systemd/journal/flushed", F_OK
) >= 0)
1783 if (errno
!= ENOENT
)
1784 return log_error_errno(errno
, "Failed to check for existence of /run/systemd/journal/flushed: %m");
1786 r
= fd_wait_for_event(watch_fd
, POLLIN
, USEC_INFINITY
);
1788 return log_error_errno(r
, "Failed to wait for event: %m");
1790 r
= flush_fd(watch_fd
);
1792 return log_error_errno(r
, "Failed to flush inotify events: %m");
1798 static int rotate(void) {
1799 _cleanup_bus_error_free_ sd_bus_error error
= SD_BUS_ERROR_NULL
;
1800 _cleanup_bus_flush_close_unref_ sd_bus
*bus
= NULL
;
1803 r
= bus_connect_system_systemd(&bus
);
1805 return log_error_errno(r
, "Failed to get D-Bus connection: %m");
1807 r
= sd_bus_call_method(
1809 "org.freedesktop.systemd1",
1810 "/org/freedesktop/systemd1",
1811 "org.freedesktop.systemd1.Manager",
1815 "ssi", "systemd-journald.service", "main", SIGUSR2
);
1817 return log_error_errno(r
, "Failed to kill journal service: %s", bus_error_message(&error
, r
));
1822 int main(int argc
, char *argv
[]) {
1824 _cleanup_journal_close_ sd_journal
*j
= NULL
;
1825 bool need_seek
= false;
1826 sd_id128_t previous_boot_id
;
1827 bool previous_boot_id_valid
= false, first_line
= true;
1829 bool ellipsized
= false;
1831 setlocale(LC_ALL
, "");
1832 log_parse_environment();
1835 r
= parse_argv(argc
, argv
);
1839 signal(SIGWINCH
, columns_lines_cache_reset
);
1842 /* Increase max number of open files to 16K if we can, we
1843 * might needs this when browsing journal files, which might
1844 * be split up into many files. */
1845 setrlimit_closest(RLIMIT_NOFILE
, &RLIMIT_MAKE_CONST(16384));
1847 if (arg_action
== ACTION_NEW_ID128
) {
1848 r
= generate_new_id128();
1852 if (arg_action
== ACTION_FLUSH
) {
1857 if (arg_action
== ACTION_ROTATE
) {
1862 if (arg_action
== ACTION_SETUP_KEYS
) {
1867 if (arg_action
== ACTION_UPDATE_CATALOG
||
1868 arg_action
== ACTION_LIST_CATALOG
||
1869 arg_action
== ACTION_DUMP_CATALOG
) {
1871 _cleanup_free_
char *database
;
1873 database
= path_join(arg_root
, CATALOG_DATABASE
, NULL
);
1879 if (arg_action
== ACTION_UPDATE_CATALOG
) {
1880 r
= catalog_update(database
, arg_root
, catalog_file_dirs
);
1882 log_error_errno(r
, "Failed to list catalog: %m");
1884 bool oneline
= arg_action
== ACTION_LIST_CATALOG
;
1886 pager_open_if_enabled();
1888 r
= catalog_list_items(stdout
, database
,
1889 oneline
, argv
+ optind
);
1891 r
= catalog_list(stdout
, database
, oneline
);
1893 log_error_errno(r
, "Failed to list catalog: %m");
1900 r
= sd_journal_open_directory(&j
, arg_directory
, arg_journal_type
);
1902 r
= sd_journal_open_files(&j
, (const char**) arg_file
, 0);
1903 else if (arg_machine
)
1904 r
= sd_journal_open_container(&j
, arg_machine
, 0);
1906 r
= sd_journal_open(&j
, !arg_merge
*SD_JOURNAL_LOCAL_ONLY
+ arg_journal_type
);
1908 log_error_errno(r
, "Failed to open %s: %m",
1909 arg_directory
? arg_directory
: arg_file
? "files" : "journal");
1913 r
= access_check(j
);
1917 if (arg_action
== ACTION_VERIFY
) {
1922 if (arg_action
== ACTION_PRINT_HEADER
) {
1923 journal_print_header(j
);
1928 if (arg_action
== ACTION_DISK_USAGE
) {
1930 char sbytes
[FORMAT_BYTES_MAX
];
1932 r
= sd_journal_get_usage(j
, &bytes
);
1936 printf("Archived and active journals take up %s on disk.\n",
1937 format_bytes(sbytes
, sizeof(sbytes
), bytes
));
1941 if (arg_action
== ACTION_VACUUM
) {
1945 HASHMAP_FOREACH(d
, j
->directories_by_path
, i
) {
1951 q
= journal_directory_vacuum(d
->path
, arg_vacuum_size
, arg_vacuum_n_files
, arg_vacuum_time
, NULL
, true);
1953 log_error_errno(q
, "Failed to vacuum %s: %m", d
->path
);
1961 if (arg_action
== ACTION_LIST_BOOTS
) {
1966 /* add_boot() must be called first!
1967 * It may need to seek the journal to find parent boot IDs. */
1978 log_error_errno(r
, "Failed to add filter for units: %m");
1982 r
= add_syslog_identifier(j
);
1984 log_error_errno(r
, "Failed to add filter for syslog identifiers: %m");
1988 r
= add_priorities(j
);
1992 r
= add_matches(j
, argv
+ optind
);
1996 if (_unlikely_(log_get_max_level() >= LOG_DEBUG
)) {
1997 _cleanup_free_
char *filter
;
1999 filter
= journal_make_match_string(j
);
2003 log_debug("Journal filter: %s", filter
);
2010 r
= sd_journal_set_data_threshold(j
, 0);
2012 log_error_errno(r
, "Failed to unset data size threshold: %m");
2016 r
= sd_journal_query_unique(j
, arg_field
);
2018 log_error_errno(r
, "Failed to query unique data objects: %m");
2022 SD_JOURNAL_FOREACH_UNIQUE(j
, data
, size
) {
2025 if (arg_lines
>= 0 && n_shown
>= arg_lines
)
2028 eq
= memchr(data
, '=', size
);
2030 printf("%.*s\n", (int) (size
- ((const uint8_t*) eq
- (const uint8_t*) data
+ 1)), (const char*) eq
+ 1);
2032 printf("%.*s\n", (int) size
, (const char*) data
);
2041 /* Opening the fd now means the first sd_journal_wait() will actually wait */
2043 r
= sd_journal_get_fd(j
);
2045 log_error_errno(r
, "Failed to get journal fd: %m");
2050 if (arg_cursor
|| arg_after_cursor
) {
2051 r
= sd_journal_seek_cursor(j
, arg_cursor
?: arg_after_cursor
);
2053 log_error_errno(r
, "Failed to seek to cursor: %m");
2058 r
= sd_journal_next_skip(j
, 1 + !!arg_after_cursor
);
2060 r
= sd_journal_previous_skip(j
, 1 + !!arg_after_cursor
);
2062 if (arg_after_cursor
&& r
< 2) {
2063 /* We couldn't find the next entry after the cursor. */
2070 } else if (arg_since_set
&& !arg_reverse
) {
2071 r
= sd_journal_seek_realtime_usec(j
, arg_since
);
2073 log_error_errno(r
, "Failed to seek to date: %m");
2076 r
= sd_journal_next(j
);
2078 } else if (arg_until_set
&& arg_reverse
) {
2079 r
= sd_journal_seek_realtime_usec(j
, arg_until
);
2081 log_error_errno(r
, "Failed to seek to date: %m");
2084 r
= sd_journal_previous(j
);
2086 } else if (arg_lines
>= 0) {
2087 r
= sd_journal_seek_tail(j
);
2089 log_error_errno(r
, "Failed to seek to tail: %m");
2093 r
= sd_journal_previous_skip(j
, arg_lines
);
2095 } else if (arg_reverse
) {
2096 r
= sd_journal_seek_tail(j
);
2098 log_error_errno(r
, "Failed to seek to tail: %m");
2102 r
= sd_journal_previous(j
);
2105 r
= sd_journal_seek_head(j
);
2107 log_error_errno(r
, "Failed to seek to head: %m");
2111 r
= sd_journal_next(j
);
2115 log_error_errno(r
, "Failed to iterate through journal: %m");
2122 printf("-- No entries --\n");
2128 pager_open_if_enabled();
2132 char start_buf
[FORMAT_TIMESTAMP_MAX
], end_buf
[FORMAT_TIMESTAMP_MAX
];
2134 r
= sd_journal_get_cutoff_realtime_usec(j
, &start
, &end
);
2136 log_error_errno(r
, "Failed to get cutoff: %m");
2142 printf("-- Logs begin at %s. --\n",
2143 format_timestamp_maybe_utc(start_buf
, sizeof(start_buf
), start
));
2145 printf("-- Logs begin at %s, end at %s. --\n",
2146 format_timestamp_maybe_utc(start_buf
, sizeof(start_buf
), start
),
2147 format_timestamp_maybe_utc(end_buf
, sizeof(end_buf
), end
));
2152 while (arg_lines
< 0 || n_shown
< arg_lines
|| (arg_follow
&& !first_line
)) {
2157 r
= sd_journal_next(j
);
2159 r
= sd_journal_previous(j
);
2161 log_error_errno(r
, "Failed to iterate through journal: %m");
2168 if (arg_until_set
&& !arg_reverse
) {
2171 r
= sd_journal_get_realtime_usec(j
, &usec
);
2173 log_error_errno(r
, "Failed to determine timestamp: %m");
2176 if (usec
> arg_until
)
2180 if (arg_since_set
&& arg_reverse
) {
2183 r
= sd_journal_get_realtime_usec(j
, &usec
);
2185 log_error_errno(r
, "Failed to determine timestamp: %m");
2188 if (usec
< arg_since
)
2192 if (!arg_merge
&& !arg_quiet
) {
2195 r
= sd_journal_get_monotonic_usec(j
, NULL
, &boot_id
);
2197 if (previous_boot_id_valid
&&
2198 !sd_id128_equal(boot_id
, previous_boot_id
))
2199 printf("%s-- Reboot --%s\n",
2200 ansi_highlight(), ansi_normal());
2202 previous_boot_id
= boot_id
;
2203 previous_boot_id_valid
= true;
2208 arg_all
* OUTPUT_SHOW_ALL
|
2209 arg_full
* OUTPUT_FULL_WIDTH
|
2210 on_tty() * OUTPUT_COLOR
|
2211 arg_catalog
* OUTPUT_CATALOG
|
2212 arg_utc
* OUTPUT_UTC
;
2214 r
= output_journal(stdout
, j
, arg_output
, 0, flags
, &ellipsized
);
2216 if (r
== -EADDRNOTAVAIL
)
2218 else if (r
< 0 || ferror(stdout
))
2225 if (arg_show_cursor
) {
2226 _cleanup_free_
char *cursor
= NULL
;
2228 r
= sd_journal_get_cursor(j
, &cursor
);
2229 if (r
< 0 && r
!= -EADDRNOTAVAIL
)
2230 log_error_errno(r
, "Failed to get cursor: %m");
2232 printf("-- cursor: %s\n", cursor
);
2238 r
= sd_journal_wait(j
, (uint64_t) -1);
2240 log_error_errno(r
, "Couldn't wait for journal event: %m");
2250 strv_free(arg_file
);
2252 strv_free(arg_syslog_identifier
);
2253 strv_free(arg_system_units
);
2254 strv_free(arg_user_units
);
2258 return r
< 0 ? EXIT_FAILURE
: EXIT_SUCCESS
;