1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2011 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
35 #include <sys/inotify.h>
38 #include "sd-journal.h"
41 #include "logs-show.h"
44 #include "path-util.h"
51 #include "journal-internal.h"
52 #include "journal-def.h"
53 #include "journal-verify.h"
54 #include "journal-qrcode.h"
55 #include "journal-vacuum.h"
57 #include "unit-name.h"
61 #include "bus-error.h"
62 #include "terminal-util.h"
63 #include "hostname-util.h"
65 #define DEFAULT_FSS_INTERVAL_USEC (15*USEC_PER_MINUTE)
68 /* Special values for arg_lines */
69 ARG_LINES_DEFAULT
= -2,
73 static OutputMode arg_output
= OUTPUT_SHORT
;
74 static bool arg_utc
= false;
75 static bool arg_pager_end
= false;
76 static bool arg_follow
= false;
77 static bool arg_full
= true;
78 static bool arg_all
= false;
79 static bool arg_no_pager
= false;
80 static int arg_lines
= ARG_LINES_DEFAULT
;
81 static bool arg_no_tail
= false;
82 static bool arg_quiet
= false;
83 static bool arg_merge
= false;
84 static bool arg_boot
= false;
85 static sd_id128_t arg_boot_id
= {};
86 static int arg_boot_offset
= 0;
87 static bool arg_dmesg
= false;
88 static const char *arg_cursor
= NULL
;
89 static const char *arg_after_cursor
= NULL
;
90 static bool arg_show_cursor
= false;
91 static const char *arg_directory
= NULL
;
92 static char **arg_file
= NULL
;
93 static int arg_priorities
= 0xFF;
94 static const char *arg_verify_key
= NULL
;
96 static usec_t arg_interval
= DEFAULT_FSS_INTERVAL_USEC
;
97 static bool arg_force
= false;
99 static usec_t arg_since
, arg_until
;
100 static bool arg_since_set
= false, arg_until_set
= false;
101 static char **arg_syslog_identifier
= NULL
;
102 static char **arg_system_units
= NULL
;
103 static char **arg_user_units
= NULL
;
104 static const char *arg_field
= NULL
;
105 static bool arg_catalog
= false;
106 static bool arg_reverse
= false;
107 static int arg_journal_type
= 0;
108 static const char *arg_root
= NULL
;
109 static const char *arg_machine
= NULL
;
110 static off_t arg_vacuum_size
= (off_t
) -1;
111 static usec_t arg_vacuum_time
= USEC_INFINITY
;
122 ACTION_UPDATE_CATALOG
,
126 } arg_action
= ACTION_SHOW
;
128 typedef struct BootId
{
132 LIST_FIELDS(struct BootId
, boot_list
);
135 static void pager_open_if_enabled(void) {
140 pager_open(arg_pager_end
);
143 static char *format_timestamp_maybe_utc(char *buf
, size_t l
, usec_t t
) {
146 return format_timestamp_utc(buf
, l
, t
);
148 return format_timestamp(buf
, l
, t
);
151 static int parse_boot_descriptor(const char *x
, sd_id128_t
*boot_id
, int *offset
) {
152 sd_id128_t id
= SD_ID128_NULL
;
155 if (strlen(x
) >= 32) {
159 r
= sd_id128_from_string(t
, &id
);
163 if (*x
!= '-' && *x
!= '+' && *x
!= 0)
167 r
= safe_atoi(x
, &off
);
172 r
= safe_atoi(x
, &off
);
186 static void help(void) {
188 pager_open_if_enabled();
190 printf("%s [OPTIONS...] [MATCHES...]\n\n"
191 "Query the journal.\n\n"
193 " --system Show the system journal\n"
194 " --user Show the user journal for the current user\n"
195 " -M --machine=CONTAINER Operate on local container\n"
196 " --since=DATE Show entries not older than the specified date\n"
197 " --until=DATE Show entries not newer than the specified date\n"
198 " -c --cursor=CURSOR Show entries starting at the specified cursor\n"
199 " --after-cursor=CURSOR Show entries after the specified cursor\n"
200 " --show-cursor Print the cursor after all the entries\n"
201 " -b --boot[=ID] Show current boot or the specified boot\n"
202 " --list-boots Show terse information about recorded boots\n"
203 " -k --dmesg Show kernel message log from the current boot\n"
204 " -u --unit=UNIT Show logs from the specified unit\n"
205 " --user-unit=UNIT Show logs from the specified user unit\n"
206 " -t --identifier=STRING Show entries with the specified syslog identifier\n"
207 " -p --priority=RANGE Show entries with the specified priority\n"
208 " -e --pager-end Immediately jump to the end in the pager\n"
209 " -f --follow Follow the journal\n"
210 " -n --lines[=INTEGER] Number of journal entries to show\n"
211 " --no-tail Show all lines, even in follow mode\n"
212 " -r --reverse Show the newest entries first\n"
213 " -o --output=STRING Change journal output mode (short, short-iso,\n"
214 " short-precise, short-monotonic, verbose,\n"
215 " export, json, json-pretty, json-sse, cat)\n"
216 " --utc Express time in Coordinated Universal Time (UTC)\n"
217 " -x --catalog Add message explanations where available\n"
218 " --no-full Ellipsize fields\n"
219 " -a --all Show all fields, including long and unprintable\n"
220 " -q --quiet Do not show privilege warning\n"
221 " --no-pager Do not pipe output into a pager\n"
222 " -m --merge Show entries from all available journals\n"
223 " -D --directory=PATH Show journal files from directory\n"
224 " --file=PATH Show journal file\n"
225 " --root=ROOT Operate on catalog files underneath the root ROOT\n"
227 " --interval=TIME Time interval for changing the FSS sealing key\n"
228 " --verify-key=KEY Specify FSS verification key\n"
229 " --force Override of the FSS key pair with --setup-keys\n"
232 " -h --help Show this help text\n"
233 " --version Show package version\n"
234 " -F --field=FIELD List all values that a specified field takes\n"
235 " --new-id128 Generate a new 128-bit ID\n"
236 " --disk-usage Show total disk usage of all journal files\n"
237 " --vacuum-size=BYTES Reduce disk usage below specified size\n"
238 " --vacuum-time=TIME Remove journal files older than specified date\n"
239 " --flush Flush all journal data from /run into /var\n"
240 " --header Show journal header information\n"
241 " --list-catalog Show all message IDs in the catalog\n"
242 " --dump-catalog Show entries in the message catalog\n"
243 " --update-catalog Update the message catalog database\n"
245 " --setup-keys Generate a new FSS key pair\n"
246 " --verify Verify journal file consistency\n"
248 , program_invocation_short_name
);
251 static int parse_argv(int argc
, char *argv
[]) {
285 static const struct option options
[] = {
286 { "help", no_argument
, NULL
, 'h' },
287 { "version" , no_argument
, NULL
, ARG_VERSION
},
288 { "no-pager", no_argument
, NULL
, ARG_NO_PAGER
},
289 { "pager-end", no_argument
, NULL
, 'e' },
290 { "follow", no_argument
, NULL
, 'f' },
291 { "force", no_argument
, NULL
, ARG_FORCE
},
292 { "output", required_argument
, NULL
, 'o' },
293 { "all", no_argument
, NULL
, 'a' },
294 { "full", no_argument
, NULL
, 'l' },
295 { "no-full", no_argument
, NULL
, ARG_NO_FULL
},
296 { "lines", optional_argument
, NULL
, 'n' },
297 { "no-tail", no_argument
, NULL
, ARG_NO_TAIL
},
298 { "new-id128", no_argument
, NULL
, ARG_NEW_ID128
},
299 { "quiet", no_argument
, NULL
, 'q' },
300 { "merge", no_argument
, NULL
, 'm' },
301 { "boot", optional_argument
, NULL
, 'b' },
302 { "list-boots", no_argument
, NULL
, ARG_LIST_BOOTS
},
303 { "this-boot", optional_argument
, NULL
, 'b' }, /* deprecated */
304 { "dmesg", no_argument
, NULL
, 'k' },
305 { "system", no_argument
, NULL
, ARG_SYSTEM
},
306 { "user", no_argument
, NULL
, ARG_USER
},
307 { "directory", required_argument
, NULL
, 'D' },
308 { "file", required_argument
, NULL
, ARG_FILE
},
309 { "root", required_argument
, NULL
, ARG_ROOT
},
310 { "header", no_argument
, NULL
, ARG_HEADER
},
311 { "identifier", required_argument
, NULL
, 't' },
312 { "priority", required_argument
, NULL
, 'p' },
313 { "setup-keys", no_argument
, NULL
, ARG_SETUP_KEYS
},
314 { "interval", required_argument
, NULL
, ARG_INTERVAL
},
315 { "verify", no_argument
, NULL
, ARG_VERIFY
},
316 { "verify-key", required_argument
, NULL
, ARG_VERIFY_KEY
},
317 { "disk-usage", no_argument
, NULL
, ARG_DISK_USAGE
},
318 { "cursor", required_argument
, NULL
, 'c' },
319 { "after-cursor", required_argument
, NULL
, ARG_AFTER_CURSOR
},
320 { "show-cursor", no_argument
, NULL
, ARG_SHOW_CURSOR
},
321 { "since", required_argument
, NULL
, ARG_SINCE
},
322 { "until", required_argument
, NULL
, ARG_UNTIL
},
323 { "unit", required_argument
, NULL
, 'u' },
324 { "user-unit", required_argument
, NULL
, ARG_USER_UNIT
},
325 { "field", required_argument
, NULL
, 'F' },
326 { "catalog", no_argument
, NULL
, 'x' },
327 { "list-catalog", no_argument
, NULL
, ARG_LIST_CATALOG
},
328 { "dump-catalog", no_argument
, NULL
, ARG_DUMP_CATALOG
},
329 { "update-catalog", no_argument
, NULL
, ARG_UPDATE_CATALOG
},
330 { "reverse", no_argument
, NULL
, 'r' },
331 { "machine", required_argument
, NULL
, 'M' },
332 { "utc", no_argument
, NULL
, ARG_UTC
},
333 { "flush", no_argument
, NULL
, ARG_FLUSH
},
334 { "vacuum-size", required_argument
, NULL
, ARG_VACUUM_SIZE
},
335 { "vacuum-time", required_argument
, NULL
, ARG_VACUUM_TIME
},
344 while ((c
= getopt_long(argc
, argv
, "hefo:aln::qmb::kD:p:c:t:u:F:xrM:", options
, NULL
)) >= 0)
353 puts(PACKAGE_STRING
);
354 puts(SYSTEMD_FEATURES
);
362 arg_pager_end
= true;
364 if (arg_lines
== ARG_LINES_DEFAULT
)
374 arg_output
= output_mode_from_string(optarg
);
375 if (arg_output
< 0) {
376 log_error("Unknown output format '%s'.", optarg
);
380 if (arg_output
== OUTPUT_EXPORT
||
381 arg_output
== OUTPUT_JSON
||
382 arg_output
== OUTPUT_JSON_PRETTY
||
383 arg_output
== OUTPUT_JSON_SSE
||
384 arg_output
== OUTPUT_CAT
)
403 if (streq(optarg
, "all"))
404 arg_lines
= ARG_LINES_ALL
;
406 r
= safe_atoi(optarg
, &arg_lines
);
407 if (r
< 0 || arg_lines
< 0) {
408 log_error("Failed to parse lines '%s'", optarg
);
415 /* Hmm, no argument? Maybe the next
416 * word on the command line is
417 * supposed to be the argument? Let's
418 * see if there is one, and is
422 if (streq(argv
[optind
], "all")) {
423 arg_lines
= ARG_LINES_ALL
;
425 } else if (safe_atoi(argv
[optind
], &n
) >= 0 && n
>= 0) {
439 arg_action
= ACTION_NEW_ID128
;
454 r
= parse_boot_descriptor(optarg
, &arg_boot_id
, &arg_boot_offset
);
456 log_error("Failed to parse boot descriptor '%s'", optarg
);
461 /* Hmm, no argument? Maybe the next
462 * word on the command line is
463 * supposed to be the argument? Let's
464 * see if there is one and is parsable
465 * as a boot descriptor... */
468 parse_boot_descriptor(argv
[optind
], &arg_boot_id
, &arg_boot_offset
) >= 0)
475 arg_action
= ACTION_LIST_BOOTS
;
479 arg_boot
= arg_dmesg
= true;
483 arg_journal_type
|= SD_JOURNAL_SYSTEM
;
487 arg_journal_type
|= SD_JOURNAL_CURRENT_USER
;
491 arg_machine
= optarg
;
495 arg_directory
= optarg
;
499 r
= glob_extend(&arg_file
, optarg
);
501 return log_error_errno(r
, "Failed to add paths: %m");
512 case ARG_AFTER_CURSOR
:
513 arg_after_cursor
= optarg
;
516 case ARG_SHOW_CURSOR
:
517 arg_show_cursor
= true;
521 arg_action
= ACTION_PRINT_HEADER
;
525 arg_action
= ACTION_VERIFY
;
529 arg_action
= ACTION_DISK_USAGE
;
532 case ARG_VACUUM_SIZE
:
533 r
= parse_size(optarg
, 1024, &arg_vacuum_size
);
535 log_error("Failed to parse vacuum size: %s", optarg
);
539 arg_action
= ACTION_VACUUM
;
542 case ARG_VACUUM_TIME
:
543 r
= parse_sec(optarg
, &arg_vacuum_time
);
545 log_error("Failed to parse vacuum time: %s", optarg
);
549 arg_action
= ACTION_VACUUM
;
558 arg_action
= ACTION_SETUP_KEYS
;
563 arg_action
= ACTION_VERIFY
;
564 arg_verify_key
= optarg
;
569 r
= parse_sec(optarg
, &arg_interval
);
570 if (r
< 0 || arg_interval
<= 0) {
571 log_error("Failed to parse sealing key change interval: %s", optarg
);
580 log_error("Forward-secure sealing not available.");
587 dots
= strstr(optarg
, "..");
593 a
= strndup(optarg
, dots
- optarg
);
597 from
= log_level_from_string(a
);
598 to
= log_level_from_string(dots
+ 2);
601 if (from
< 0 || to
< 0) {
602 log_error("Failed to parse log level range %s", optarg
);
609 for (i
= from
; i
<= to
; i
++)
610 arg_priorities
|= 1 << i
;
612 for (i
= to
; i
<= from
; i
++)
613 arg_priorities
|= 1 << i
;
619 p
= log_level_from_string(optarg
);
621 log_error("Unknown log level %s", optarg
);
627 for (i
= 0; i
<= p
; i
++)
628 arg_priorities
|= 1 << i
;
635 r
= parse_timestamp(optarg
, &arg_since
);
637 log_error("Failed to parse timestamp: %s", optarg
);
640 arg_since_set
= true;
644 r
= parse_timestamp(optarg
, &arg_until
);
646 log_error("Failed to parse timestamp: %s", optarg
);
649 arg_until_set
= true;
653 r
= strv_extend(&arg_syslog_identifier
, optarg
);
659 r
= strv_extend(&arg_system_units
, optarg
);
665 r
= strv_extend(&arg_user_units
, optarg
);
678 case ARG_LIST_CATALOG
:
679 arg_action
= ACTION_LIST_CATALOG
;
682 case ARG_DUMP_CATALOG
:
683 arg_action
= ACTION_DUMP_CATALOG
;
686 case ARG_UPDATE_CATALOG
:
687 arg_action
= ACTION_UPDATE_CATALOG
;
699 arg_action
= ACTION_FLUSH
;
706 assert_not_reached("Unhandled option");
709 if (arg_follow
&& !arg_no_tail
&& !arg_since
&& arg_lines
== ARG_LINES_DEFAULT
)
712 if (!!arg_directory
+ !!arg_file
+ !!arg_machine
> 1) {
713 log_error("Please specify either -D/--directory= or --file= or -M/--machine=, not more than one.");
717 if (arg_since_set
&& arg_until_set
&& arg_since
> arg_until
) {
718 log_error("--since= must be before --until=.");
722 if (!!arg_cursor
+ !!arg_after_cursor
+ !!arg_since_set
> 1) {
723 log_error("Please specify only one of --since=, --cursor=, and --after-cursor.");
727 if (arg_follow
&& arg_reverse
) {
728 log_error("Please specify either --reverse= or --follow=, not both.");
732 if (arg_action
!= ACTION_SHOW
&& optind
< argc
) {
733 log_error("Extraneous arguments starting with '%s'", argv
[optind
]);
737 if ((arg_boot
|| arg_action
== ACTION_LIST_BOOTS
) && (arg_file
|| arg_directory
|| arg_merge
)) {
738 log_error("Using --boot or --list-boots with --file, --directory or --merge is not supported.");
745 static int generate_new_id128(void) {
750 r
= sd_id128_randomize(&id
);
752 return log_error_errno(r
, "Failed to generate ID: %m");
754 printf("As string:\n"
755 SD_ID128_FORMAT_STR
"\n\n"
757 "%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x\n\n"
759 "#define MESSAGE_XYZ SD_ID128_MAKE(",
760 SD_ID128_FORMAT_VAL(id
),
761 SD_ID128_FORMAT_VAL(id
));
762 for (i
= 0; i
< 16; i
++)
763 printf("%02x%s", id
.bytes
[i
], i
!= 15 ? "," : "");
764 fputs(")\n\n", stdout
);
766 printf("As Python constant:\n"
768 ">>> MESSAGE_XYZ = uuid.UUID('" SD_ID128_FORMAT_STR
"')\n",
769 SD_ID128_FORMAT_VAL(id
));
774 static int add_matches(sd_journal
*j
, char **args
) {
776 bool have_term
= false;
780 STRV_FOREACH(i
, args
) {
783 if (streq(*i
, "+")) {
786 r
= sd_journal_add_disjunction(j
);
789 } else if (path_is_absolute(*i
)) {
790 _cleanup_free_
char *p
, *t
= NULL
, *t2
= NULL
;
792 _cleanup_free_
char *interpreter
= NULL
;
795 p
= canonicalize_file_name(*i
);
798 if (lstat(path
, &st
) < 0)
799 return log_error_errno(errno
, "Couldn't stat file: %m");
801 if (S_ISREG(st
.st_mode
) && (0111 & st
.st_mode
)) {
802 if (executable_is_script(path
, &interpreter
) > 0) {
803 _cleanup_free_
char *comm
;
805 comm
= strndup(basename(path
), 15);
809 t
= strappend("_COMM=", comm
);
811 /* Append _EXE only if the interpreter is not a link.
812 Otherwise, it might be outdated often. */
813 if (lstat(interpreter
, &st
) == 0 &&
814 !S_ISLNK(st
.st_mode
)) {
815 t2
= strappend("_EXE=", interpreter
);
820 t
= strappend("_EXE=", path
);
821 } else if (S_ISCHR(st
.st_mode
))
822 (void) asprintf(&t
, "_KERNEL_DEVICE=c%u:%u", major(st
.st_rdev
), minor(st
.st_rdev
));
823 else if (S_ISBLK(st
.st_mode
))
824 (void) asprintf(&t
, "_KERNEL_DEVICE=b%u:%u", major(st
.st_rdev
), minor(st
.st_rdev
));
826 log_error("File is neither a device node, nor regular file, nor executable: %s", *i
);
833 r
= sd_journal_add_match(j
, t
, 0);
835 r
= sd_journal_add_match(j
, t2
, 0);
839 r
= sd_journal_add_match(j
, *i
, 0);
844 return log_error_errno(r
, "Failed to add match '%s': %m", *i
);
847 if (!strv_isempty(args
) && !have_term
) {
848 log_error("\"+\" can only be used between terms");
855 static void boot_id_free_all(BootId
*l
) {
859 LIST_REMOVE(boot_list
, l
, i
);
864 static int discover_next_boot(
868 bool read_realtime
) {
871 char match
[9+32+1] = "_BOOT_ID=";
872 _cleanup_free_ BootId
*next_boot
= NULL
;
877 /* We expect the journal to be on the last position of a boot
878 * (in relation to the direction we are going), so that the next
879 * invocation of sd_journal_next/previous will be from a different
880 * boot. We then collect any information we desire and then jump
881 * to the last location of the new boot by using a _BOOT_ID match
882 * coming from the other journal direction. */
884 /* Make sure we aren't restricted by any _BOOT_ID matches, so that
885 * we can actually advance to a *different* boot. */
886 sd_journal_flush_matches(j
);
889 r
= sd_journal_previous(j
);
891 r
= sd_journal_next(j
);
895 return 0; /* End of journal, yay. */
897 next_boot
= new0(BootId
, 1);
901 r
= sd_journal_get_monotonic_usec(j
, NULL
, &next_boot
->id
);
906 r
= sd_journal_get_realtime_usec(j
, &next_boot
->first
);
911 /* Now seek to the last occurrence of this boot ID. */
912 sd_id128_to_string(next_boot
->id
, match
+ 9);
913 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
918 r
= sd_journal_seek_head(j
);
920 r
= sd_journal_seek_tail(j
);
925 r
= sd_journal_next(j
);
927 r
= sd_journal_previous(j
);
931 return -ENODATA
; /* This shouldn't happen. We just came from this very boot ID. */
934 r
= sd_journal_get_realtime_usec(j
, &next_boot
->last
);
945 static int get_boots(
948 BootId
*query_ref_boot
,
949 int ref_boot_offset
) {
953 BootId
*head
= NULL
, *tail
= NULL
;
954 const bool advance_older
= query_ref_boot
&& ref_boot_offset
<= 0;
958 /* Adjust for the asymmetry that offset 0 is
959 * the last (and current) boot, while 1 is considered the
960 * (chronological) first boot in the journal. */
961 skip_once
= query_ref_boot
&& sd_id128_is_null(query_ref_boot
->id
) && ref_boot_offset
< 0;
963 /* Advance to the earliest/latest occurrence of our reference
964 * boot ID (taking our lookup direction into account), so that
965 * discover_next_boot() can do its job.
966 * If no reference is given, the journal head/tail will do,
967 * they're "virtual" boots after all. */
968 if (query_ref_boot
&& !sd_id128_is_null(query_ref_boot
->id
)) {
969 char match
[9+32+1] = "_BOOT_ID=";
971 sd_journal_flush_matches(j
);
973 sd_id128_to_string(query_ref_boot
->id
, match
+ 9);
974 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
979 r
= sd_journal_seek_head(j
);
981 r
= sd_journal_seek_tail(j
);
986 r
= sd_journal_next(j
);
988 r
= sd_journal_previous(j
);
993 else if (ref_boot_offset
== 0) {
999 r
= sd_journal_seek_tail(j
);
1001 r
= sd_journal_seek_head(j
);
1005 /* No sd_journal_next/previous here. */
1009 _cleanup_free_ BootId
*current
= NULL
;
1011 r
= discover_next_boot(j
, ¤t
, advance_older
, !query_ref_boot
);
1013 boot_id_free_all(head
);
1020 if (query_ref_boot
) {
1022 ref_boot_offset
+= advance_older
? 1 : -1;
1025 if (ref_boot_offset
== 0) {
1027 query_ref_boot
->id
= current
->id
;
1031 LIST_INSERT_AFTER(boot_list
, head
, tail
, current
);
1042 sd_journal_flush_matches(j
);
1047 static int list_boots(sd_journal
*j
) {
1049 BootId
*id
, *all_ids
;
1053 count
= get_boots(j
, &all_ids
, NULL
, 0);
1055 return log_error_errno(count
, "Failed to determine boots: %m");
1059 pager_open_if_enabled();
1061 /* numbers are one less, but we need an extra char for the sign */
1062 w
= DECIMAL_STR_WIDTH(count
- 1) + 1;
1065 LIST_FOREACH(boot_list
, id
, all_ids
) {
1066 char a
[FORMAT_TIMESTAMP_MAX
], b
[FORMAT_TIMESTAMP_MAX
];
1068 printf("% *i " SD_ID128_FORMAT_STR
" %s—%s\n",
1070 SD_ID128_FORMAT_VAL(id
->id
),
1071 format_timestamp_maybe_utc(a
, sizeof(a
), id
->first
),
1072 format_timestamp_maybe_utc(b
, sizeof(b
), id
->last
));
1076 boot_id_free_all(all_ids
);
1081 static int add_boot(sd_journal
*j
) {
1082 char match
[9+32+1] = "_BOOT_ID=";
1084 BootId ref_boot_id
= {};
1091 if (arg_boot_offset
== 0 && sd_id128_equal(arg_boot_id
, SD_ID128_NULL
))
1092 return add_match_this_boot(j
, arg_machine
);
1094 ref_boot_id
.id
= arg_boot_id
;
1095 r
= get_boots(j
, NULL
, &ref_boot_id
, arg_boot_offset
);
1098 const char *reason
= (r
== 0) ? "No such boot ID in journal" : strerror(-r
);
1100 if (sd_id128_is_null(arg_boot_id
))
1101 log_error("Failed to look up boot %+i: %s", arg_boot_offset
, reason
);
1103 log_error("Failed to look up boot ID "SD_ID128_FORMAT_STR
"%+i: %s",
1104 SD_ID128_FORMAT_VAL(arg_boot_id
), arg_boot_offset
, reason
);
1106 return r
== 0 ? -ENODATA
: r
;
1109 sd_id128_to_string(ref_boot_id
.id
, match
+ 9);
1111 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
1113 return log_error_errno(r
, "Failed to add match: %m");
1115 r
= sd_journal_add_conjunction(j
);
1117 return log_error_errno(r
, "Failed to add conjunction: %m");
1122 static int add_dmesg(sd_journal
*j
) {
1129 r
= sd_journal_add_match(j
, "_TRANSPORT=kernel", strlen("_TRANSPORT=kernel"));
1131 return log_error_errno(r
, "Failed to add match: %m");
1133 r
= sd_journal_add_conjunction(j
);
1135 return log_error_errno(r
, "Failed to add conjunction: %m");
1140 static int get_possible_units(
1146 _cleanup_set_free_free_ Set
*found
;
1150 found
= set_new(&string_hash_ops
);
1154 NULSTR_FOREACH(field
, fields
) {
1158 r
= sd_journal_query_unique(j
, field
);
1162 SD_JOURNAL_FOREACH_UNIQUE(j
, data
, size
) {
1163 char **pattern
, *eq
;
1165 _cleanup_free_
char *u
= NULL
;
1167 eq
= memchr(data
, '=', size
);
1169 prefix
= eq
- (char*) data
+ 1;
1173 u
= strndup((char*) data
+ prefix
, size
- prefix
);
1177 STRV_FOREACH(pattern
, patterns
)
1178 if (fnmatch(*pattern
, u
, FNM_NOESCAPE
) == 0) {
1179 log_debug("Matched %s with pattern %s=%s", u
, field
, *pattern
);
1181 r
= set_consume(found
, u
);
1183 if (r
< 0 && r
!= -EEXIST
)
1196 /* This list is supposed to return the superset of unit names
1197 * possibly matched by rules added with add_matches_for_unit... */
1198 #define SYSTEM_UNITS \
1202 "OBJECT_SYSTEMD_UNIT\0" \
1205 /* ... and add_matches_for_user_unit */
1206 #define USER_UNITS \
1207 "_SYSTEMD_USER_UNIT\0" \
1209 "COREDUMP_USER_UNIT\0" \
1210 "OBJECT_SYSTEMD_USER_UNIT\0"
1212 static int add_units(sd_journal
*j
) {
1213 _cleanup_strv_free_
char **patterns
= NULL
;
1219 STRV_FOREACH(i
, arg_system_units
) {
1220 _cleanup_free_
char *u
= NULL
;
1222 r
= unit_name_mangle(*i
, UNIT_NAME_GLOB
, &u
);
1226 if (string_is_glob(u
)) {
1227 r
= strv_push(&patterns
, u
);
1232 r
= add_matches_for_unit(j
, u
);
1235 r
= sd_journal_add_disjunction(j
);
1242 if (!strv_isempty(patterns
)) {
1243 _cleanup_set_free_free_ Set
*units
= NULL
;
1247 r
= get_possible_units(j
, SYSTEM_UNITS
, patterns
, &units
);
1251 SET_FOREACH(u
, units
, it
) {
1252 r
= add_matches_for_unit(j
, u
);
1255 r
= sd_journal_add_disjunction(j
);
1262 patterns
= strv_free(patterns
);
1264 STRV_FOREACH(i
, arg_user_units
) {
1265 _cleanup_free_
char *u
= NULL
;
1267 r
= unit_name_mangle(*i
, UNIT_NAME_GLOB
, &u
);
1271 if (string_is_glob(u
)) {
1272 r
= strv_push(&patterns
, u
);
1277 r
= add_matches_for_user_unit(j
, u
, getuid());
1280 r
= sd_journal_add_disjunction(j
);
1287 if (!strv_isempty(patterns
)) {
1288 _cleanup_set_free_free_ Set
*units
= NULL
;
1292 r
= get_possible_units(j
, USER_UNITS
, patterns
, &units
);
1296 SET_FOREACH(u
, units
, it
) {
1297 r
= add_matches_for_user_unit(j
, u
, getuid());
1300 r
= sd_journal_add_disjunction(j
);
1307 /* Complain if the user request matches but nothing whatsoever was
1308 * found, since otherwise everything would be matched. */
1309 if (!(strv_isempty(arg_system_units
) && strv_isempty(arg_user_units
)) && count
== 0)
1312 r
= sd_journal_add_conjunction(j
);
1319 static int add_priorities(sd_journal
*j
) {
1320 char match
[] = "PRIORITY=0";
1324 if (arg_priorities
== 0xFF)
1327 for (i
= LOG_EMERG
; i
<= LOG_DEBUG
; i
++)
1328 if (arg_priorities
& (1 << i
)) {
1329 match
[sizeof(match
)-2] = '0' + i
;
1331 r
= sd_journal_add_match(j
, match
, strlen(match
));
1333 return log_error_errno(r
, "Failed to add match: %m");
1336 r
= sd_journal_add_conjunction(j
);
1338 return log_error_errno(r
, "Failed to add conjunction: %m");
1344 static int add_syslog_identifier(sd_journal
*j
) {
1350 STRV_FOREACH(i
, arg_syslog_identifier
) {
1353 u
= strjoina("SYSLOG_IDENTIFIER=", *i
);
1354 r
= sd_journal_add_match(j
, u
, 0);
1357 r
= sd_journal_add_disjunction(j
);
1362 r
= sd_journal_add_conjunction(j
);
1369 static int setup_keys(void) {
1371 size_t mpk_size
, seed_size
, state_size
, i
;
1372 uint8_t *mpk
, *seed
, *state
;
1374 sd_id128_t machine
, boot
;
1375 char *p
= NULL
, *k
= NULL
;
1380 r
= stat("/var/log/journal", &st
);
1381 if (r
< 0 && errno
!= ENOENT
&& errno
!= ENOTDIR
)
1382 return log_error_errno(errno
, "stat(\"%s\") failed: %m", "/var/log/journal");
1384 if (r
< 0 || !S_ISDIR(st
.st_mode
)) {
1385 log_error("%s is not a directory, must be using persistent logging for FSS.",
1386 "/var/log/journal");
1387 return r
< 0 ? -errno
: -ENOTDIR
;
1390 r
= sd_id128_get_machine(&machine
);
1392 return log_error_errno(r
, "Failed to get machine ID: %m");
1394 r
= sd_id128_get_boot(&boot
);
1396 return log_error_errno(r
, "Failed to get boot ID: %m");
1398 if (asprintf(&p
, "/var/log/journal/" SD_ID128_FORMAT_STR
"/fss",
1399 SD_ID128_FORMAT_VAL(machine
)) < 0)
1404 if (r
< 0 && errno
!= ENOENT
) {
1405 r
= log_error_errno(errno
, "unlink(\"%s\") failed: %m", p
);
1408 } else if (access(p
, F_OK
) >= 0) {
1409 log_error("Sealing key file %s exists already. Use --force to recreate.", p
);
1414 if (asprintf(&k
, "/var/log/journal/" SD_ID128_FORMAT_STR
"/fss.tmp.XXXXXX",
1415 SD_ID128_FORMAT_VAL(machine
)) < 0) {
1420 mpk_size
= FSPRG_mskinbytes(FSPRG_RECOMMENDED_SECPAR
);
1421 mpk
= alloca(mpk_size
);
1423 seed_size
= FSPRG_RECOMMENDED_SEEDLEN
;
1424 seed
= alloca(seed_size
);
1426 state_size
= FSPRG_stateinbytes(FSPRG_RECOMMENDED_SECPAR
);
1427 state
= alloca(state_size
);
1429 fd
= open("/dev/random", O_RDONLY
|O_CLOEXEC
|O_NOCTTY
);
1431 log_error_errno(errno
, "Failed to open /dev/random: %m");
1436 log_info("Generating seed...");
1437 r
= loop_read_exact(fd
, seed
, seed_size
, true);
1439 log_error_errno(r
, "Failed to read random seed: %m");
1443 log_info("Generating key pair...");
1444 FSPRG_GenMK(NULL
, mpk
, seed
, seed_size
, FSPRG_RECOMMENDED_SECPAR
);
1446 log_info("Generating sealing key...");
1447 FSPRG_GenState0(state
, mpk
, seed
, seed_size
);
1449 assert(arg_interval
> 0);
1451 n
= now(CLOCK_REALTIME
);
1455 fd
= mkostemp_safe(k
, O_WRONLY
|O_CLOEXEC
);
1457 log_error_errno(errno
, "Failed to open %s: %m", k
);
1462 /* Enable secure remove, exclusion from dump, synchronous
1463 * writing and in-place updating */
1464 r
= chattr_fd(fd
, FS_SECRM_FL
|FS_NODUMP_FL
|FS_SYNC_FL
|FS_NOCOW_FL
, FS_SECRM_FL
|FS_NODUMP_FL
|FS_SYNC_FL
|FS_NOCOW_FL
);
1466 log_warning_errno(errno
, "Failed to set file attributes: %m");
1469 memcpy(h
.signature
, "KSHHRHLP", 8);
1470 h
.machine_id
= machine
;
1472 h
.header_size
= htole64(sizeof(h
));
1473 h
.start_usec
= htole64(n
* arg_interval
);
1474 h
.interval_usec
= htole64(arg_interval
);
1475 h
.fsprg_secpar
= htole16(FSPRG_RECOMMENDED_SECPAR
);
1476 h
.fsprg_state_size
= htole64(state_size
);
1478 r
= loop_write(fd
, &h
, sizeof(h
), false);
1480 log_error_errno(r
, "Failed to write header: %m");
1484 r
= loop_write(fd
, state
, state_size
, false);
1486 log_error_errno(r
, "Failed to write state: %m");
1490 if (link(k
, p
) < 0) {
1491 log_error_errno(errno
, "Failed to link file: %m");
1499 "The new key pair has been generated. The " ANSI_HIGHLIGHT_ON
"secret sealing key" ANSI_HIGHLIGHT_OFF
" has been written to\n"
1500 "the following local file. This key file is automatically updated when the\n"
1501 "sealing key is advanced. It should not be used on multiple hosts.\n"
1505 "Please write down the following " ANSI_HIGHLIGHT_ON
"secret verification key" ANSI_HIGHLIGHT_OFF
". It should be stored\n"
1506 "at a safe location and should not be saved locally on disk.\n"
1507 "\n\t" ANSI_HIGHLIGHT_RED_ON
, p
);
1510 for (i
= 0; i
< seed_size
; i
++) {
1511 if (i
> 0 && i
% 3 == 0)
1513 printf("%02x", ((uint8_t*) seed
)[i
]);
1516 printf("/%llx-%llx\n", (unsigned long long) n
, (unsigned long long) arg_interval
);
1519 char tsb
[FORMAT_TIMESPAN_MAX
], *hn
;
1522 ANSI_HIGHLIGHT_OFF
"\n"
1523 "The sealing key is automatically changed every %s.\n",
1524 format_timespan(tsb
, sizeof(tsb
), arg_interval
, 0));
1526 hn
= gethostname_malloc();
1529 hostname_cleanup(hn
, false);
1530 fprintf(stderr
, "\nThe keys have been generated for host %s/" SD_ID128_FORMAT_STR
".\n", hn
, SD_ID128_FORMAT_VAL(machine
));
1532 fprintf(stderr
, "\nThe keys have been generated for host " SD_ID128_FORMAT_STR
".\n", SD_ID128_FORMAT_VAL(machine
));
1534 #ifdef HAVE_QRENCODE
1535 /* If this is not an UTF-8 system don't print any QR codes */
1536 if (is_locale_utf8()) {
1537 fputs("\nTo transfer the verification key to your phone please scan the QR code below:\n\n", stderr
);
1538 print_qr_code(stderr
, seed
, seed_size
, n
, arg_interval
, hn
, machine
);
1558 log_error("Forward-secure sealing not available.");
1563 static int verify(sd_journal
*j
) {
1570 log_show_color(true);
1572 ORDERED_HASHMAP_FOREACH(f
, j
->files
, i
) {
1574 usec_t first
= 0, validated
= 0, last
= 0;
1577 if (!arg_verify_key
&& JOURNAL_HEADER_SEALED(f
->header
))
1578 log_notice("Journal file %s has sealing enabled but verification key has not been passed using --verify-key=.", f
->path
);
1581 k
= journal_file_verify(f
, arg_verify_key
, &first
, &validated
, &last
, true);
1583 /* If the key was invalid give up right-away. */
1586 log_warning("FAIL: %s (%s)", f
->path
, strerror(-k
));
1589 char a
[FORMAT_TIMESTAMP_MAX
], b
[FORMAT_TIMESTAMP_MAX
], c
[FORMAT_TIMESPAN_MAX
];
1590 log_info("PASS: %s", f
->path
);
1592 if (arg_verify_key
&& JOURNAL_HEADER_SEALED(f
->header
)) {
1593 if (validated
> 0) {
1594 log_info("=> Validated from %s to %s, final %s entries not sealed.",
1595 format_timestamp_maybe_utc(a
, sizeof(a
), first
),
1596 format_timestamp_maybe_utc(b
, sizeof(b
), validated
),
1597 format_timespan(c
, sizeof(c
), last
> validated
? last
- validated
: 0, 0));
1598 } else if (last
> 0)
1599 log_info("=> No sealing yet, %s of entries not sealed.",
1600 format_timespan(c
, sizeof(c
), last
- first
, 0));
1602 log_info("=> No sealing yet, no entries in file.");
1610 static int access_check_var_log_journal(sd_journal
*j
) {
1612 _cleanup_strv_free_
char **g
= NULL
;
1622 /* If we are root, we should have access, don't warn. */
1626 /* If we are in the 'systemd-journal' group, we should have
1628 r
= in_group("systemd-journal");
1630 return log_error_errno(r
, "Failed to check if we are in the 'systemd-journal' group: %m");
1635 if (laccess("/run/log/journal", F_OK
) >= 0)
1636 dir
= "/run/log/journal";
1638 dir
= "/var/log/journal";
1640 /* If we are in any of the groups listed in the journal ACLs,
1641 * then all is good, too. Let's enumerate all groups from the
1642 * default ACL of the directory, which generally should allow
1643 * access to most journal files too. */
1644 r
= acl_search_groups(dir
, &g
);
1646 return log_error_errno(r
, "Failed to search journal ACL: %m");
1650 /* Print a pretty list, if there were ACLs set. */
1651 if (!strv_isempty(g
)) {
1652 _cleanup_free_
char *s
= NULL
;
1654 /* Thre are groups in the ACL, let's list them */
1655 r
= strv_extend(&g
, "systemd-journal");
1662 s
= strv_join(g
, "', '");
1666 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1667 " Users in groups '%s' can see all messages.\n"
1668 " Pass -q to turn off this notice.", s
);
1673 /* If no ACLs were found, print a short version of the message. */
1674 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1675 " Users in the 'systemd-journal' group can see all messages. Pass -q to\n"
1676 " turn off this notice.");
1681 static int access_check(sd_journal
*j
) {
1688 if (set_isempty(j
->errors
)) {
1689 if (ordered_hashmap_isempty(j
->files
))
1690 log_notice("No journal files were found.");
1695 if (set_contains(j
->errors
, INT_TO_PTR(-EACCES
))) {
1696 (void) access_check_var_log_journal(j
);
1698 if (ordered_hashmap_isempty(j
->files
))
1699 r
= log_error_errno(EACCES
, "No journal files were opened due to insufficient permissions.");
1702 SET_FOREACH(code
, j
->errors
, it
) {
1705 err
= -PTR_TO_INT(code
);
1711 log_warning_errno(err
, "Error was encountered while opening journal files: %m");
1719 static int flush_to_var(void) {
1720 _cleanup_bus_error_free_ sd_bus_error error
= SD_BUS_ERROR_NULL
;
1721 _cleanup_bus_flush_close_unref_ sd_bus
*bus
= NULL
;
1722 _cleanup_close_
int watch_fd
= -1;
1726 if (access("/run/systemd/journal/flushed", F_OK
) >= 0)
1729 /* OK, let's actually do the full logic, send SIGUSR1 to the
1730 * daemon and set up inotify to wait for the flushed file to appear */
1731 r
= bus_open_system_systemd(&bus
);
1733 return log_error_errno(r
, "Failed to get D-Bus connection: %m");
1735 r
= sd_bus_call_method(
1737 "org.freedesktop.systemd1",
1738 "/org/freedesktop/systemd1",
1739 "org.freedesktop.systemd1.Manager",
1743 "ssi", "systemd-journald.service", "main", SIGUSR1
);
1745 log_error("Failed to kill journal service: %s", bus_error_message(&error
, r
));
1749 mkdir_p("/run/systemd/journal", 0755);
1751 watch_fd
= inotify_init1(IN_NONBLOCK
|IN_CLOEXEC
);
1753 return log_error_errno(errno
, "Failed to create inotify watch: %m");
1755 r
= inotify_add_watch(watch_fd
, "/run/systemd/journal", IN_CREATE
|IN_DONT_FOLLOW
|IN_ONLYDIR
);
1757 return log_error_errno(errno
, "Failed to watch journal directory: %m");
1760 if (access("/run/systemd/journal/flushed", F_OK
) >= 0)
1763 if (errno
!= ENOENT
)
1764 return log_error_errno(errno
, "Failed to check for existence of /run/systemd/journal/flushed: %m");
1766 r
= fd_wait_for_event(watch_fd
, POLLIN
, USEC_INFINITY
);
1768 return log_error_errno(r
, "Failed to wait for event: %m");
1770 r
= flush_fd(watch_fd
);
1772 return log_error_errno(r
, "Failed to flush inotify events: %m");
1778 int main(int argc
, char *argv
[]) {
1780 _cleanup_journal_close_ sd_journal
*j
= NULL
;
1781 bool need_seek
= false;
1782 sd_id128_t previous_boot_id
;
1783 bool previous_boot_id_valid
= false, first_line
= true;
1785 bool ellipsized
= false;
1787 setlocale(LC_ALL
, "");
1788 log_parse_environment();
1791 r
= parse_argv(argc
, argv
);
1795 signal(SIGWINCH
, columns_lines_cache_reset
);
1798 /* Increase max number of open files to 16K if we can, we
1799 * might needs this when browsing journal files, which might
1800 * be split up into many files. */
1801 setrlimit_closest(RLIMIT_NOFILE
, &RLIMIT_MAKE_CONST(16384));
1803 if (arg_action
== ACTION_NEW_ID128
) {
1804 r
= generate_new_id128();
1808 if (arg_action
== ACTION_FLUSH
) {
1813 if (arg_action
== ACTION_SETUP_KEYS
) {
1818 if (arg_action
== ACTION_UPDATE_CATALOG
||
1819 arg_action
== ACTION_LIST_CATALOG
||
1820 arg_action
== ACTION_DUMP_CATALOG
) {
1822 _cleanup_free_
char *database
;
1824 database
= path_join(arg_root
, CATALOG_DATABASE
, NULL
);
1830 if (arg_action
== ACTION_UPDATE_CATALOG
) {
1831 r
= catalog_update(database
, arg_root
, catalog_file_dirs
);
1833 log_error_errno(r
, "Failed to list catalog: %m");
1835 bool oneline
= arg_action
== ACTION_LIST_CATALOG
;
1838 r
= catalog_list_items(stdout
, database
,
1839 oneline
, argv
+ optind
);
1841 r
= catalog_list(stdout
, database
, oneline
);
1843 log_error_errno(r
, "Failed to list catalog: %m");
1850 r
= sd_journal_open_directory(&j
, arg_directory
, arg_journal_type
);
1852 r
= sd_journal_open_files(&j
, (const char**) arg_file
, 0);
1853 else if (arg_machine
)
1854 r
= sd_journal_open_container(&j
, arg_machine
, 0);
1856 r
= sd_journal_open(&j
, !arg_merge
*SD_JOURNAL_LOCAL_ONLY
+ arg_journal_type
);
1858 log_error_errno(r
, "Failed to open %s: %m",
1859 arg_directory
? arg_directory
: arg_file
? "files" : "journal");
1863 r
= access_check(j
);
1867 if (arg_action
== ACTION_VERIFY
) {
1872 if (arg_action
== ACTION_PRINT_HEADER
) {
1873 journal_print_header(j
);
1878 if (arg_action
== ACTION_DISK_USAGE
) {
1880 char sbytes
[FORMAT_BYTES_MAX
];
1882 r
= sd_journal_get_usage(j
, &bytes
);
1886 printf("Archived and active journals take up %s on disk.\n",
1887 format_bytes(sbytes
, sizeof(sbytes
), bytes
));
1891 if (arg_action
== ACTION_VACUUM
) {
1895 HASHMAP_FOREACH(d
, j
->directories_by_path
, i
) {
1901 q
= journal_directory_vacuum(d
->path
, arg_vacuum_size
, arg_vacuum_time
, NULL
, true);
1903 log_error_errno(q
, "Failed to vacuum: %m");
1911 if (arg_action
== ACTION_LIST_BOOTS
) {
1916 /* add_boot() must be called first!
1917 * It may need to seek the journal to find parent boot IDs. */
1928 log_error_errno(r
, "Failed to add filter for units: %m");
1932 r
= add_syslog_identifier(j
);
1934 log_error_errno(r
, "Failed to add filter for syslog identifiers: %m");
1938 r
= add_priorities(j
);
1942 r
= add_matches(j
, argv
+ optind
);
1946 if (_unlikely_(log_get_max_level() >= LOG_DEBUG
)) {
1947 _cleanup_free_
char *filter
;
1949 filter
= journal_make_match_string(j
);
1953 log_debug("Journal filter: %s", filter
);
1960 r
= sd_journal_set_data_threshold(j
, 0);
1962 log_error_errno(r
, "Failed to unset data size threshold: %m");
1966 r
= sd_journal_query_unique(j
, arg_field
);
1968 log_error_errno(r
, "Failed to query unique data objects: %m");
1972 SD_JOURNAL_FOREACH_UNIQUE(j
, data
, size
) {
1975 if (arg_lines
>= 0 && n_shown
>= arg_lines
)
1978 eq
= memchr(data
, '=', size
);
1980 printf("%.*s\n", (int) (size
- ((const uint8_t*) eq
- (const uint8_t*) data
+ 1)), (const char*) eq
+ 1);
1982 printf("%.*s\n", (int) size
, (const char*) data
);
1991 /* Opening the fd now means the first sd_journal_wait() will actually wait */
1993 r
= sd_journal_get_fd(j
);
1995 log_error_errno(r
, "Failed to get journal fd: %m");
2000 if (arg_cursor
|| arg_after_cursor
) {
2001 r
= sd_journal_seek_cursor(j
, arg_cursor
?: arg_after_cursor
);
2003 log_error_errno(r
, "Failed to seek to cursor: %m");
2008 r
= sd_journal_next_skip(j
, 1 + !!arg_after_cursor
);
2010 r
= sd_journal_previous_skip(j
, 1 + !!arg_after_cursor
);
2012 if (arg_after_cursor
&& r
< 2) {
2013 /* We couldn't find the next entry after the cursor. */
2020 } else if (arg_since_set
&& !arg_reverse
) {
2021 r
= sd_journal_seek_realtime_usec(j
, arg_since
);
2023 log_error_errno(r
, "Failed to seek to date: %m");
2026 r
= sd_journal_next(j
);
2028 } else if (arg_until_set
&& arg_reverse
) {
2029 r
= sd_journal_seek_realtime_usec(j
, arg_until
);
2031 log_error_errno(r
, "Failed to seek to date: %m");
2034 r
= sd_journal_previous(j
);
2036 } else if (arg_lines
>= 0) {
2037 r
= sd_journal_seek_tail(j
);
2039 log_error_errno(r
, "Failed to seek to tail: %m");
2043 r
= sd_journal_previous_skip(j
, arg_lines
);
2045 } else if (arg_reverse
) {
2046 r
= sd_journal_seek_tail(j
);
2048 log_error_errno(r
, "Failed to seek to tail: %m");
2052 r
= sd_journal_previous(j
);
2055 r
= sd_journal_seek_head(j
);
2057 log_error_errno(r
, "Failed to seek to head: %m");
2061 r
= sd_journal_next(j
);
2065 log_error_errno(r
, "Failed to iterate through journal: %m");
2069 printf("-- No entries --\n");
2074 pager_open_if_enabled();
2078 char start_buf
[FORMAT_TIMESTAMP_MAX
], end_buf
[FORMAT_TIMESTAMP_MAX
];
2080 r
= sd_journal_get_cutoff_realtime_usec(j
, &start
, &end
);
2082 log_error_errno(r
, "Failed to get cutoff: %m");
2088 printf("-- Logs begin at %s. --\n",
2089 format_timestamp_maybe_utc(start_buf
, sizeof(start_buf
), start
));
2091 printf("-- Logs begin at %s, end at %s. --\n",
2092 format_timestamp_maybe_utc(start_buf
, sizeof(start_buf
), start
),
2093 format_timestamp_maybe_utc(end_buf
, sizeof(end_buf
), end
));
2098 while (arg_lines
< 0 || n_shown
< arg_lines
|| (arg_follow
&& !first_line
)) {
2103 r
= sd_journal_next(j
);
2105 r
= sd_journal_previous(j
);
2107 log_error_errno(r
, "Failed to iterate through journal: %m");
2114 if (arg_until_set
&& !arg_reverse
) {
2117 r
= sd_journal_get_realtime_usec(j
, &usec
);
2119 log_error_errno(r
, "Failed to determine timestamp: %m");
2122 if (usec
> arg_until
)
2126 if (arg_since_set
&& arg_reverse
) {
2129 r
= sd_journal_get_realtime_usec(j
, &usec
);
2131 log_error_errno(r
, "Failed to determine timestamp: %m");
2134 if (usec
< arg_since
)
2138 if (!arg_merge
&& !arg_quiet
) {
2141 r
= sd_journal_get_monotonic_usec(j
, NULL
, &boot_id
);
2143 if (previous_boot_id_valid
&&
2144 !sd_id128_equal(boot_id
, previous_boot_id
))
2145 printf("%s-- Reboot --%s\n",
2146 ansi_highlight(), ansi_highlight_off());
2148 previous_boot_id
= boot_id
;
2149 previous_boot_id_valid
= true;
2154 arg_all
* OUTPUT_SHOW_ALL
|
2155 arg_full
* OUTPUT_FULL_WIDTH
|
2156 on_tty() * OUTPUT_COLOR
|
2157 arg_catalog
* OUTPUT_CATALOG
|
2158 arg_utc
* OUTPUT_UTC
;
2160 r
= output_journal(stdout
, j
, arg_output
, 0, flags
, &ellipsized
);
2162 if (r
== -EADDRNOTAVAIL
)
2164 else if (r
< 0 || ferror(stdout
))
2171 if (arg_show_cursor
) {
2172 _cleanup_free_
char *cursor
= NULL
;
2174 r
= sd_journal_get_cursor(j
, &cursor
);
2175 if (r
< 0 && r
!= -EADDRNOTAVAIL
)
2176 log_error_errno(r
, "Failed to get cursor: %m");
2178 printf("-- cursor: %s\n", cursor
);
2184 r
= sd_journal_wait(j
, (uint64_t) -1);
2186 log_error_errno(r
, "Couldn't wait for journal event: %m");
2196 strv_free(arg_file
);
2198 strv_free(arg_syslog_identifier
);
2199 strv_free(arg_system_units
);
2200 strv_free(arg_user_units
);
2202 return r
< 0 ? EXIT_FAILURE
: EXIT_SUCCESS
;