]> git.ipfire.org Git - thirdparty/systemd.git/blob - src/journal/journalctl.c
projects / thirdparty / systemd.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge pull request #813 from dvdhrm/bus-client
[thirdparty/systemd.git] / src / journal / journalctl.c
1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
2
3 /***
4 This file is part of systemd.
5
6 Copyright 2011 Lennart Poettering
7
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
12
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
17
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
20 ***/
21
22 #include <locale.h>
23 #include <fcntl.h>
24 #include <fnmatch.h>
25 #include <errno.h>
26 #include <stddef.h>
27 #include <string.h>
28 #include <stdio.h>
29 #include <unistd.h>
30 #include <stdlib.h>
31 #include <getopt.h>
32 #include <signal.h>
33 #include <poll.h>
34 #include <sys/stat.h>
35 #include <sys/inotify.h>
36 #include <linux/fs.h>
37
38 #include "sd-journal.h"
39 #include "sd-bus.h"
40 #include "log.h"
41 #include "logs-show.h"
42 #include "util.h"
43 #include "acl-util.h"
44 #include "path-util.h"
45 #include "fileio.h"
46 #include "build.h"
47 #include "pager.h"
48 #include "strv.h"
49 #include "set.h"
50 #include "sigbus.h"
51 #include "journal-internal.h"
52 #include "journal-def.h"
53 #include "journal-verify.h"
54 #include "journal-qrcode.h"
55 #include "journal-vacuum.h"
56 #include "fsprg.h"
57 #include "unit-name.h"
58 #include "catalog.h"
59 #include "mkdir.h"
60 #include "bus-util.h"
61 #include "bus-error.h"
62 #include "terminal-util.h"
63 #include "hostname-util.h"
64
65 #define DEFAULT_FSS_INTERVAL_USEC (15*USEC_PER_MINUTE)
66
67 enum {
68 /* Special values for arg_lines */
69 ARG_LINES_DEFAULT = -2,
70 ARG_LINES_ALL = -1,
71 };
72
73 static OutputMode arg_output = OUTPUT_SHORT;
74 static bool arg_utc = false;
75 static bool arg_pager_end = false;
76 static bool arg_follow = false;
77 static bool arg_full = true;
78 static bool arg_all = false;
79 static bool arg_no_pager = false;
80 static int arg_lines = ARG_LINES_DEFAULT;
81 static bool arg_no_tail = false;
82 static bool arg_quiet = false;
83 static bool arg_merge = false;
84 static bool arg_boot = false;
85 static sd_id128_t arg_boot_id = {};
86 static int arg_boot_offset = 0;
87 static bool arg_dmesg = false;
88 static const char *arg_cursor = NULL;
89 static const char *arg_after_cursor = NULL;
90 static bool arg_show_cursor = false;
91 static const char *arg_directory = NULL;
92 static char **arg_file = NULL;
93 static int arg_priorities = 0xFF;
94 static const char *arg_verify_key = NULL;
95 #ifdef HAVE_GCRYPT
96 static usec_t arg_interval = DEFAULT_FSS_INTERVAL_USEC;
97 static bool arg_force = false;
98 #endif
99 static usec_t arg_since, arg_until;
100 static bool arg_since_set = false, arg_until_set = false;
101 static char **arg_syslog_identifier = NULL;
102 static char **arg_system_units = NULL;
103 static char **arg_user_units = NULL;
104 static const char *arg_field = NULL;
105 static bool arg_catalog = false;
106 static bool arg_reverse = false;
107 static int arg_journal_type = 0;
108 static const char *arg_root = NULL;
109 static const char *arg_machine = NULL;
110 static off_t arg_vacuum_size = (off_t) -1;
111 static usec_t arg_vacuum_time = USEC_INFINITY;
112
113 static enum {
114 ACTION_SHOW,
115 ACTION_NEW_ID128,
116 ACTION_PRINT_HEADER,
117 ACTION_SETUP_KEYS,
118 ACTION_VERIFY,
119 ACTION_DISK_USAGE,
120 ACTION_LIST_CATALOG,
121 ACTION_DUMP_CATALOG,
122 ACTION_UPDATE_CATALOG,
123 ACTION_LIST_BOOTS,
124 ACTION_FLUSH,
125 ACTION_VACUUM,
126 } arg_action = ACTION_SHOW;
127
128 typedef struct BootId {
129 sd_id128_t id;
130 uint64_t first;
131 uint64_t last;
132 LIST_FIELDS(struct BootId, boot_list);
133 } BootId;
134
135 static void pager_open_if_enabled(void) {
136
137 if (arg_no_pager)
138 return;
139
140 pager_open(arg_pager_end);
141 }
142
143 static char *format_timestamp_maybe_utc(char *buf, size_t l, usec_t t) {
144
145 if (arg_utc)
146 return format_timestamp_utc(buf, l, t);
147
148 return format_timestamp(buf, l, t);
149 }
150
151 static int parse_boot_descriptor(const char *x, sd_id128_t *boot_id, int *offset) {
152 sd_id128_t id = SD_ID128_NULL;
153 int off = 0, r;
154
155 if (strlen(x) >= 32) {
156 char *t;
157
158 t = strndupa(x, 32);
159 r = sd_id128_from_string(t, &id);
160 if (r >= 0)
161 x += 32;
162
163 if (*x != '-' && *x != '+' && *x != 0)
164 return -EINVAL;
165
166 if (*x != 0) {
167 r = safe_atoi(x, &off);
168 if (r < 0)
169 return r;
170 }
171 } else {
172 r = safe_atoi(x, &off);
173 if (r < 0)
174 return r;
175 }
176
177 if (boot_id)
178 *boot_id = id;
179
180 if (offset)
181 *offset = off;
182
183 return 0;
184 }
185
186 static void help(void) {
187
188 pager_open_if_enabled();
189
190 printf("%s [OPTIONS...] [MATCHES...]\n\n"
191 "Query the journal.\n\n"
192 "Flags:\n"
193 " --system Show the system journal\n"
194 " --user Show the user journal for the current user\n"
195 " -M --machine=CONTAINER Operate on local container\n"
196 " --since=DATE Show entries not older than the specified date\n"
197 " --until=DATE Show entries not newer than the specified date\n"
198 " -c --cursor=CURSOR Show entries starting at the specified cursor\n"
199 " --after-cursor=CURSOR Show entries after the specified cursor\n"
200 " --show-cursor Print the cursor after all the entries\n"
201 " -b --boot[=ID] Show current boot or the specified boot\n"
202 " --list-boots Show terse information about recorded boots\n"
203 " -k --dmesg Show kernel message log from the current boot\n"
204 " -u --unit=UNIT Show logs from the specified unit\n"
205 " --user-unit=UNIT Show logs from the specified user unit\n"
206 " -t --identifier=STRING Show entries with the specified syslog identifier\n"
207 " -p --priority=RANGE Show entries with the specified priority\n"
208 " -e --pager-end Immediately jump to the end in the pager\n"
209 " -f --follow Follow the journal\n"
210 " -n --lines[=INTEGER] Number of journal entries to show\n"
211 " --no-tail Show all lines, even in follow mode\n"
212 " -r --reverse Show the newest entries first\n"
213 " -o --output=STRING Change journal output mode (short, short-iso,\n"
214 " short-precise, short-monotonic, verbose,\n"
215 " export, json, json-pretty, json-sse, cat)\n"
216 " --utc Express time in Coordinated Universal Time (UTC)\n"
217 " -x --catalog Add message explanations where available\n"
218 " --no-full Ellipsize fields\n"
219 " -a --all Show all fields, including long and unprintable\n"
220 " -q --quiet Do not show privilege warning\n"
221 " --no-pager Do not pipe output into a pager\n"
222 " -m --merge Show entries from all available journals\n"
223 " -D --directory=PATH Show journal files from directory\n"
224 " --file=PATH Show journal file\n"
225 " --root=ROOT Operate on catalog files underneath the root ROOT\n"
226 #ifdef HAVE_GCRYPT
227 " --interval=TIME Time interval for changing the FSS sealing key\n"
228 " --verify-key=KEY Specify FSS verification key\n"
229 " --force Override of the FSS key pair with --setup-keys\n"
230 #endif
231 "\nCommands:\n"
232 " -h --help Show this help text\n"
233 " --version Show package version\n"
234 " -F --field=FIELD List all values that a specified field takes\n"
235 " --new-id128 Generate a new 128-bit ID\n"
236 " --disk-usage Show total disk usage of all journal files\n"
237 " --vacuum-size=BYTES Reduce disk usage below specified size\n"
238 " --vacuum-time=TIME Remove journal files older than specified date\n"
239 " --flush Flush all journal data from /run into /var\n"
240 " --header Show journal header information\n"
241 " --list-catalog Show all message IDs in the catalog\n"
242 " --dump-catalog Show entries in the message catalog\n"
243 " --update-catalog Update the message catalog database\n"
244 #ifdef HAVE_GCRYPT
245 " --setup-keys Generate a new FSS key pair\n"
246 " --verify Verify journal file consistency\n"
247 #endif
248 , program_invocation_short_name);
249 }
250
251 static int parse_argv(int argc, char *argv[]) {
252
253 enum {
254 ARG_VERSION = 0x100,
255 ARG_NO_PAGER,
256 ARG_NO_FULL,
257 ARG_NO_TAIL,
258 ARG_NEW_ID128,
259 ARG_LIST_BOOTS,
260 ARG_USER,
261 ARG_SYSTEM,
262 ARG_ROOT,
263 ARG_HEADER,
264 ARG_SETUP_KEYS,
265 ARG_FILE,
266 ARG_INTERVAL,
267 ARG_VERIFY,
268 ARG_VERIFY_KEY,
269 ARG_DISK_USAGE,
270 ARG_SINCE,
271 ARG_UNTIL,
272 ARG_AFTER_CURSOR,
273 ARG_SHOW_CURSOR,
274 ARG_USER_UNIT,
275 ARG_LIST_CATALOG,
276 ARG_DUMP_CATALOG,
277 ARG_UPDATE_CATALOG,
278 ARG_FORCE,
279 ARG_UTC,
280 ARG_FLUSH,
281 ARG_VACUUM_SIZE,
282 ARG_VACUUM_TIME,
283 };
284
285 static const struct option options[] = {
286 { "help", no_argument, NULL, 'h' },
287 { "version" , no_argument, NULL, ARG_VERSION },
288 { "no-pager", no_argument, NULL, ARG_NO_PAGER },
289 { "pager-end", no_argument, NULL, 'e' },
290 { "follow", no_argument, NULL, 'f' },
291 { "force", no_argument, NULL, ARG_FORCE },
292 { "output", required_argument, NULL, 'o' },
293 { "all", no_argument, NULL, 'a' },
294 { "full", no_argument, NULL, 'l' },
295 { "no-full", no_argument, NULL, ARG_NO_FULL },
296 { "lines", optional_argument, NULL, 'n' },
297 { "no-tail", no_argument, NULL, ARG_NO_TAIL },
298 { "new-id128", no_argument, NULL, ARG_NEW_ID128 },
299 { "quiet", no_argument, NULL, 'q' },
300 { "merge", no_argument, NULL, 'm' },
301 { "boot", optional_argument, NULL, 'b' },
302 { "list-boots", no_argument, NULL, ARG_LIST_BOOTS },
303 { "this-boot", optional_argument, NULL, 'b' }, /* deprecated */
304 { "dmesg", no_argument, NULL, 'k' },
305 { "system", no_argument, NULL, ARG_SYSTEM },
306 { "user", no_argument, NULL, ARG_USER },
307 { "directory", required_argument, NULL, 'D' },
308 { "file", required_argument, NULL, ARG_FILE },
309 { "root", required_argument, NULL, ARG_ROOT },
310 { "header", no_argument, NULL, ARG_HEADER },
311 { "identifier", required_argument, NULL, 't' },
312 { "priority", required_argument, NULL, 'p' },
313 { "setup-keys", no_argument, NULL, ARG_SETUP_KEYS },
314 { "interval", required_argument, NULL, ARG_INTERVAL },
315 { "verify", no_argument, NULL, ARG_VERIFY },
316 { "verify-key", required_argument, NULL, ARG_VERIFY_KEY },
317 { "disk-usage", no_argument, NULL, ARG_DISK_USAGE },
318 { "cursor", required_argument, NULL, 'c' },
319 { "after-cursor", required_argument, NULL, ARG_AFTER_CURSOR },
320 { "show-cursor", no_argument, NULL, ARG_SHOW_CURSOR },
321 { "since", required_argument, NULL, ARG_SINCE },
322 { "until", required_argument, NULL, ARG_UNTIL },
323 { "unit", required_argument, NULL, 'u' },
324 { "user-unit", required_argument, NULL, ARG_USER_UNIT },
325 { "field", required_argument, NULL, 'F' },
326 { "catalog", no_argument, NULL, 'x' },
327 { "list-catalog", no_argument, NULL, ARG_LIST_CATALOG },
328 { "dump-catalog", no_argument, NULL, ARG_DUMP_CATALOG },
329 { "update-catalog", no_argument, NULL, ARG_UPDATE_CATALOG },
330 { "reverse", no_argument, NULL, 'r' },
331 { "machine", required_argument, NULL, 'M' },
332 { "utc", no_argument, NULL, ARG_UTC },
333 { "flush", no_argument, NULL, ARG_FLUSH },
334 { "vacuum-size", required_argument, NULL, ARG_VACUUM_SIZE },
335 { "vacuum-time", required_argument, NULL, ARG_VACUUM_TIME },
336 {}
337 };
338
339 int c, r;
340
341 assert(argc >= 0);
342 assert(argv);
343
344 while ((c = getopt_long(argc, argv, "hefo:aln::qmb::kD:p:c:t:u:F:xrM:", options, NULL)) >= 0)
345
346 switch (c) {
347
348 case 'h':
349 help();
350 return 0;
351
352 case ARG_VERSION:
353 puts(PACKAGE_STRING);
354 puts(SYSTEMD_FEATURES);
355 return 0;
356
357 case ARG_NO_PAGER:
358 arg_no_pager = true;
359 break;
360
361 case 'e':
362 arg_pager_end = true;
363
364 if (arg_lines == ARG_LINES_DEFAULT)
365 arg_lines = 1000;
366
367 break;
368
369 case 'f':
370 arg_follow = true;
371 break;
372
373 case 'o':
374 arg_output = output_mode_from_string(optarg);
375 if (arg_output < 0) {
376 log_error("Unknown output format '%s'.", optarg);
377 return -EINVAL;
378 }
379
380 if (arg_output == OUTPUT_EXPORT ||
381 arg_output == OUTPUT_JSON ||
382 arg_output == OUTPUT_JSON_PRETTY ||
383 arg_output == OUTPUT_JSON_SSE ||
384 arg_output == OUTPUT_CAT)
385 arg_quiet = true;
386
387 break;
388
389 case 'l':
390 arg_full = true;
391 break;
392
393 case ARG_NO_FULL:
394 arg_full = false;
395 break;
396
397 case 'a':
398 arg_all = true;
399 break;
400
401 case 'n':
402 if (optarg) {
403 if (streq(optarg, "all"))
404 arg_lines = ARG_LINES_ALL;
405 else {
406 r = safe_atoi(optarg, &arg_lines);
407 if (r < 0 || arg_lines < 0) {
408 log_error("Failed to parse lines '%s'", optarg);
409 return -EINVAL;
410 }
411 }
412 } else {
413 arg_lines = 10;
414
415 /* Hmm, no argument? Maybe the next
416 * word on the command line is
417 * supposed to be the argument? Let's
418 * see if there is one, and is
419 * parsable. */
420 if (optind < argc) {
421 int n;
422 if (streq(argv[optind], "all")) {
423 arg_lines = ARG_LINES_ALL;
424 optind++;
425 } else if (safe_atoi(argv[optind], &n) >= 0 && n >= 0) {
426 arg_lines = n;
427 optind++;
428 }
429 }
430 }
431
432 break;
433
434 case ARG_NO_TAIL:
435 arg_no_tail = true;
436 break;
437
438 case ARG_NEW_ID128:
439 arg_action = ACTION_NEW_ID128;
440 break;
441
442 case 'q':
443 arg_quiet = true;
444 break;
445
446 case 'm':
447 arg_merge = true;
448 break;
449
450 case 'b':
451 arg_boot = true;
452
453 if (optarg) {
454 r = parse_boot_descriptor(optarg, &arg_boot_id, &arg_boot_offset);
455 if (r < 0) {
456 log_error("Failed to parse boot descriptor '%s'", optarg);
457 return -EINVAL;
458 }
459 } else {
460
461 /* Hmm, no argument? Maybe the next
462 * word on the command line is
463 * supposed to be the argument? Let's
464 * see if there is one and is parsable
465 * as a boot descriptor... */
466
467 if (optind < argc &&
468 parse_boot_descriptor(argv[optind], &arg_boot_id, &arg_boot_offset) >= 0)
469 optind++;
470 }
471
472 break;
473
474 case ARG_LIST_BOOTS:
475 arg_action = ACTION_LIST_BOOTS;
476 break;
477
478 case 'k':
479 arg_boot = arg_dmesg = true;
480 break;
481
482 case ARG_SYSTEM:
483 arg_journal_type |= SD_JOURNAL_SYSTEM;
484 break;
485
486 case ARG_USER:
487 arg_journal_type |= SD_JOURNAL_CURRENT_USER;
488 break;
489
490 case 'M':
491 arg_machine = optarg;
492 break;
493
494 case 'D':
495 arg_directory = optarg;
496 break;
497
498 case ARG_FILE:
499 r = glob_extend(&arg_file, optarg);
500 if (r < 0)
501 return log_error_errno(r, "Failed to add paths: %m");
502 break;
503
504 case ARG_ROOT:
505 arg_root = optarg;
506 break;
507
508 case 'c':
509 arg_cursor = optarg;
510 break;
511
512 case ARG_AFTER_CURSOR:
513 arg_after_cursor = optarg;
514 break;
515
516 case ARG_SHOW_CURSOR:
517 arg_show_cursor = true;
518 break;
519
520 case ARG_HEADER:
521 arg_action = ACTION_PRINT_HEADER;
522 break;
523
524 case ARG_VERIFY:
525 arg_action = ACTION_VERIFY;
526 break;
527
528 case ARG_DISK_USAGE:
529 arg_action = ACTION_DISK_USAGE;
530 break;
531
532 case ARG_VACUUM_SIZE:
533 r = parse_size(optarg, 1024, &arg_vacuum_size);
534 if (r < 0) {
535 log_error("Failed to parse vacuum size: %s", optarg);
536 return r;
537 }
538
539 arg_action = ACTION_VACUUM;
540 break;
541
542 case ARG_VACUUM_TIME:
543 r = parse_sec(optarg, &arg_vacuum_time);
544 if (r < 0) {
545 log_error("Failed to parse vacuum time: %s", optarg);
546 return r;
547 }
548
549 arg_action = ACTION_VACUUM;
550 break;
551
552 #ifdef HAVE_GCRYPT
553 case ARG_FORCE:
554 arg_force = true;
555 break;
556
557 case ARG_SETUP_KEYS:
558 arg_action = ACTION_SETUP_KEYS;
559 break;
560
561
562 case ARG_VERIFY_KEY:
563 arg_action = ACTION_VERIFY;
564 arg_verify_key = optarg;
565 arg_merge = false;
566 break;
567
568 case ARG_INTERVAL:
569 r = parse_sec(optarg, &arg_interval);
570 if (r < 0 || arg_interval <= 0) {
571 log_error("Failed to parse sealing key change interval: %s", optarg);
572 return -EINVAL;
573 }
574 break;
575 #else
576 case ARG_SETUP_KEYS:
577 case ARG_VERIFY_KEY:
578 case ARG_INTERVAL:
579 case ARG_FORCE:
580 log_error("Forward-secure sealing not available.");
581 return -EOPNOTSUPP;
582 #endif
583
584 case 'p': {
585 const char *dots;
586
587 dots = strstr(optarg, "..");
588 if (dots) {
589 char *a;
590 int from, to, i;
591
592 /* a range */
593 a = strndup(optarg, dots - optarg);
594 if (!a)
595 return log_oom();
596
597 from = log_level_from_string(a);
598 to = log_level_from_string(dots + 2);
599 free(a);
600
601 if (from < 0 || to < 0) {
602 log_error("Failed to parse log level range %s", optarg);
603 return -EINVAL;
604 }
605
606 arg_priorities = 0;
607
608 if (from < to) {
609 for (i = from; i <= to; i++)
610 arg_priorities |= 1 << i;
611 } else {
612 for (i = to; i <= from; i++)
613 arg_priorities |= 1 << i;
614 }
615
616 } else {
617 int p, i;
618
619 p = log_level_from_string(optarg);
620 if (p < 0) {
621 log_error("Unknown log level %s", optarg);
622 return -EINVAL;
623 }
624
625 arg_priorities = 0;
626
627 for (i = 0; i <= p; i++)
628 arg_priorities |= 1 << i;
629 }
630
631 break;
632 }
633
634 case ARG_SINCE:
635 r = parse_timestamp(optarg, &arg_since);
636 if (r < 0) {
637 log_error("Failed to parse timestamp: %s", optarg);
638 return -EINVAL;
639 }
640 arg_since_set = true;
641 break;
642
643 case ARG_UNTIL:
644 r = parse_timestamp(optarg, &arg_until);
645 if (r < 0) {
646 log_error("Failed to parse timestamp: %s", optarg);
647 return -EINVAL;
648 }
649 arg_until_set = true;
650 break;
651
652 case 't':
653 r = strv_extend(&arg_syslog_identifier, optarg);
654 if (r < 0)
655 return log_oom();
656 break;
657
658 case 'u':
659 r = strv_extend(&arg_system_units, optarg);
660 if (r < 0)
661 return log_oom();
662 break;
663
664 case ARG_USER_UNIT:
665 r = strv_extend(&arg_user_units, optarg);
666 if (r < 0)
667 return log_oom();
668 break;
669
670 case 'F':
671 arg_field = optarg;
672 break;
673
674 case 'x':
675 arg_catalog = true;
676 break;
677
678 case ARG_LIST_CATALOG:
679 arg_action = ACTION_LIST_CATALOG;
680 break;
681
682 case ARG_DUMP_CATALOG:
683 arg_action = ACTION_DUMP_CATALOG;
684 break;
685
686 case ARG_UPDATE_CATALOG:
687 arg_action = ACTION_UPDATE_CATALOG;
688 break;
689
690 case 'r':
691 arg_reverse = true;
692 break;
693
694 case ARG_UTC:
695 arg_utc = true;
696 break;
697
698 case ARG_FLUSH:
699 arg_action = ACTION_FLUSH;
700 break;
701
702 case '?':
703 return -EINVAL;
704
705 default:
706 assert_not_reached("Unhandled option");
707 }
708
709 if (arg_follow && !arg_no_tail && !arg_since && arg_lines == ARG_LINES_DEFAULT)
710 arg_lines = 10;
711
712 if (!!arg_directory + !!arg_file + !!arg_machine > 1) {
713 log_error("Please specify either -D/--directory= or --file= or -M/--machine=, not more than one.");
714 return -EINVAL;
715 }
716
717 if (arg_since_set && arg_until_set && arg_since > arg_until) {
718 log_error("--since= must be before --until=.");
719 return -EINVAL;
720 }
721
722 if (!!arg_cursor + !!arg_after_cursor + !!arg_since_set > 1) {
723 log_error("Please specify only one of --since=, --cursor=, and --after-cursor.");
724 return -EINVAL;
725 }
726
727 if (arg_follow && arg_reverse) {
728 log_error("Please specify either --reverse= or --follow=, not both.");
729 return -EINVAL;
730 }
731
732 if (arg_action != ACTION_SHOW && optind < argc) {
733 log_error("Extraneous arguments starting with '%s'", argv[optind]);
734 return -EINVAL;
735 }
736
737 if ((arg_boot || arg_action == ACTION_LIST_BOOTS) && (arg_file || arg_directory || arg_merge)) {
738 log_error("Using --boot or --list-boots with --file, --directory or --merge is not supported.");
739 return -EINVAL;
740 }
741
742 return 1;
743 }
744
745 static int generate_new_id128(void) {
746 sd_id128_t id;
747 int r;
748 unsigned i;
749
750 r = sd_id128_randomize(&id);
751 if (r < 0)
752 return log_error_errno(r, "Failed to generate ID: %m");
753
754 printf("As string:\n"
755 SD_ID128_FORMAT_STR "\n\n"
756 "As UUID:\n"
757 "%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x\n\n"
758 "As macro:\n"
759 "#define MESSAGE_XYZ SD_ID128_MAKE(",
760 SD_ID128_FORMAT_VAL(id),
761 SD_ID128_FORMAT_VAL(id));
762 for (i = 0; i < 16; i++)
763 printf("%02x%s", id.bytes[i], i != 15 ? "," : "");
764 fputs(")\n\n", stdout);
765
766 printf("As Python constant:\n"
767 ">>> import uuid\n"
768 ">>> MESSAGE_XYZ = uuid.UUID('" SD_ID128_FORMAT_STR "')\n",
769 SD_ID128_FORMAT_VAL(id));
770
771 return 0;
772 }
773
774 static int add_matches(sd_journal *j, char **args) {
775 char **i;
776 bool have_term = false;
777
778 assert(j);
779
780 STRV_FOREACH(i, args) {
781 int r;
782
783 if (streq(*i, "+")) {
784 if (!have_term)
785 break;
786 r = sd_journal_add_disjunction(j);
787 have_term = false;
788
789 } else if (path_is_absolute(*i)) {
790 _cleanup_free_ char *p, *t = NULL, *t2 = NULL;
791 const char *path;
792 _cleanup_free_ char *interpreter = NULL;
793 struct stat st;
794
795 p = canonicalize_file_name(*i);
796 path = p ? p : *i;
797
798 if (lstat(path, &st) < 0)
799 return log_error_errno(errno, "Couldn't stat file: %m");
800
801 if (S_ISREG(st.st_mode) && (0111 & st.st_mode)) {
802 if (executable_is_script(path, &interpreter) > 0) {
803 _cleanup_free_ char *comm;
804
805 comm = strndup(basename(path), 15);
806 if (!comm)
807 return log_oom();
808
809 t = strappend("_COMM=", comm);
810
811 /* Append _EXE only if the interpreter is not a link.
812 Otherwise, it might be outdated often. */
813 if (lstat(interpreter, &st) == 0 &&
814 !S_ISLNK(st.st_mode)) {
815 t2 = strappend("_EXE=", interpreter);
816 if (!t2)
817 return log_oom();
818 }
819 } else
820 t = strappend("_EXE=", path);
821 } else if (S_ISCHR(st.st_mode))
822 (void) asprintf(&t, "_KERNEL_DEVICE=c%u:%u", major(st.st_rdev), minor(st.st_rdev));
823 else if (S_ISBLK(st.st_mode))
824 (void) asprintf(&t, "_KERNEL_DEVICE=b%u:%u", major(st.st_rdev), minor(st.st_rdev));
825 else {
826 log_error("File is neither a device node, nor regular file, nor executable: %s", *i);
827 return -EINVAL;
828 }
829
830 if (!t)
831 return log_oom();
832
833 r = sd_journal_add_match(j, t, 0);
834 if (t2)
835 r = sd_journal_add_match(j, t2, 0);
836 have_term = true;
837
838 } else {
839 r = sd_journal_add_match(j, *i, 0);
840 have_term = true;
841 }
842
843 if (r < 0)
844 return log_error_errno(r, "Failed to add match '%s': %m", *i);
845 }
846
847 if (!strv_isempty(args) && !have_term) {
848 log_error("\"+\" can only be used between terms");
849 return -EINVAL;
850 }
851
852 return 0;
853 }
854
855 static void boot_id_free_all(BootId *l) {
856
857 while (l) {
858 BootId *i = l;
859 LIST_REMOVE(boot_list, l, i);
860 free(i);
861 }
862 }
863
864 static int discover_next_boot(
865 sd_journal *j,
866 BootId **boot,
867 bool advance_older,
868 bool read_realtime) {
869
870 int r;
871 char match[9+32+1] = "_BOOT_ID=";
872 _cleanup_free_ BootId *next_boot = NULL;
873
874 assert(j);
875 assert(boot);
876
877 /* We expect the journal to be on the last position of a boot
878 * (in relation to the direction we are going), so that the next
879 * invocation of sd_journal_next/previous will be from a different
880 * boot. We then collect any information we desire and then jump
881 * to the last location of the new boot by using a _BOOT_ID match
882 * coming from the other journal direction. */
883
884 /* Make sure we aren't restricted by any _BOOT_ID matches, so that
885 * we can actually advance to a *different* boot. */
886 sd_journal_flush_matches(j);
887
888 if (advance_older)
889 r = sd_journal_previous(j);
890 else
891 r = sd_journal_next(j);
892 if (r < 0)
893 return r;
894 else if (r == 0)
895 return 0; /* End of journal, yay. */
896
897 next_boot = new0(BootId, 1);
898 if (!next_boot)
899 return -ENOMEM;
900
901 r = sd_journal_get_monotonic_usec(j, NULL, &next_boot->id);
902 if (r < 0)
903 return r;
904
905 if (read_realtime) {
906 r = sd_journal_get_realtime_usec(j, &next_boot->first);
907 if (r < 0)
908 return r;
909 }
910
911 /* Now seek to the last occurrence of this boot ID. */
912 sd_id128_to_string(next_boot->id, match + 9);
913 r = sd_journal_add_match(j, match, sizeof(match) - 1);
914 if (r < 0)
915 return r;
916
917 if (advance_older)
918 r = sd_journal_seek_head(j);
919 else
920 r = sd_journal_seek_tail(j);
921 if (r < 0)
922 return r;
923
924 if (advance_older)
925 r = sd_journal_next(j);
926 else
927 r = sd_journal_previous(j);
928 if (r < 0)
929 return r;
930 else if (r == 0)
931 return -ENODATA; /* This shouldn't happen. We just came from this very boot ID. */
932
933 if (read_realtime) {
934 r = sd_journal_get_realtime_usec(j, &next_boot->last);
935 if (r < 0)
936 return r;
937 }
938
939 *boot = next_boot;
940 next_boot = NULL;
941
942 return 0;
943 }
944
945 static int get_boots(
946 sd_journal *j,
947 BootId **boots,
948 BootId *query_ref_boot,
949 int ref_boot_offset) {
950
951 bool skip_once;
952 int r, count = 0;
953 BootId *head = NULL, *tail = NULL;
954 const bool advance_older = query_ref_boot && ref_boot_offset <= 0;
955
956 assert(j);
957
958 /* Adjust for the asymmetry that offset 0 is
959 * the last (and current) boot, while 1 is considered the
960 * (chronological) first boot in the journal. */
961 skip_once = query_ref_boot && sd_id128_is_null(query_ref_boot->id) && ref_boot_offset < 0;
962
963 /* Advance to the earliest/latest occurrence of our reference
964 * boot ID (taking our lookup direction into account), so that
965 * discover_next_boot() can do its job.
966 * If no reference is given, the journal head/tail will do,
967 * they're "virtual" boots after all. */
968 if (query_ref_boot && !sd_id128_is_null(query_ref_boot->id)) {
969 char match[9+32+1] = "_BOOT_ID=";
970
971 sd_journal_flush_matches(j);
972
973 sd_id128_to_string(query_ref_boot->id, match + 9);
974 r = sd_journal_add_match(j, match, sizeof(match) - 1);
975 if (r < 0)
976 return r;
977
978 if (advance_older)
979 r = sd_journal_seek_head(j);
980 else
981 r = sd_journal_seek_tail(j);
982 if (r < 0)
983 return r;
984
985 if (advance_older)
986 r = sd_journal_next(j);
987 else
988 r = sd_journal_previous(j);
989 if (r < 0)
990 return r;
991 else if (r == 0)
992 goto finish;
993 else if (ref_boot_offset == 0) {
994 count = 1;
995 goto finish;
996 }
997 } else {
998 if (advance_older)
999 r = sd_journal_seek_tail(j);
1000 else
1001 r = sd_journal_seek_head(j);
1002 if (r < 0)
1003 return r;
1004
1005 /* No sd_journal_next/previous here. */
1006 }
1007
1008 for (;;) {
1009 _cleanup_free_ BootId *current = NULL;
1010
1011 r = discover_next_boot(j, &current, advance_older, !query_ref_boot);
1012 if (r < 0) {
1013 boot_id_free_all(head);
1014 return r;
1015 }
1016
1017 if (!current)
1018 break;
1019
1020 if (query_ref_boot) {
1021 if (!skip_once)
1022 ref_boot_offset += advance_older ? 1 : -1;
1023 skip_once = false;
1024
1025 if (ref_boot_offset == 0) {
1026 count = 1;
1027 query_ref_boot->id = current->id;
1028 break;
1029 }
1030 } else {
1031 LIST_INSERT_AFTER(boot_list, head, tail, current);
1032 tail = current;
1033 current = NULL;
1034 count++;
1035 }
1036 }
1037
1038 finish:
1039 if (boots)
1040 *boots = head;
1041
1042 sd_journal_flush_matches(j);
1043
1044 return count;
1045 }
1046
1047 static int list_boots(sd_journal *j) {
1048 int w, i, count;
1049 BootId *id, *all_ids;
1050
1051 assert(j);
1052
1053 count = get_boots(j, &all_ids, NULL, 0);
1054 if (count < 0)
1055 return log_error_errno(count, "Failed to determine boots: %m");
1056 if (count == 0)
1057 return count;
1058
1059 pager_open_if_enabled();
1060
1061 /* numbers are one less, but we need an extra char for the sign */
1062 w = DECIMAL_STR_WIDTH(count - 1) + 1;
1063
1064 i = 0;
1065 LIST_FOREACH(boot_list, id, all_ids) {
1066 char a[FORMAT_TIMESTAMP_MAX], b[FORMAT_TIMESTAMP_MAX];
1067
1068 printf("% *i " SD_ID128_FORMAT_STR " %s—%s\n",
1069 w, i - count + 1,
1070 SD_ID128_FORMAT_VAL(id->id),
1071 format_timestamp_maybe_utc(a, sizeof(a), id->first),
1072 format_timestamp_maybe_utc(b, sizeof(b), id->last));
1073 i++;
1074 }
1075
1076 boot_id_free_all(all_ids);
1077
1078 return 0;
1079 }
1080
1081 static int add_boot(sd_journal *j) {
1082 char match[9+32+1] = "_BOOT_ID=";
1083 int r;
1084 BootId ref_boot_id = {};
1085
1086 assert(j);
1087
1088 if (!arg_boot)
1089 return 0;
1090
1091 if (arg_boot_offset == 0 && sd_id128_equal(arg_boot_id, SD_ID128_NULL))
1092 return add_match_this_boot(j, arg_machine);
1093
1094 ref_boot_id.id = arg_boot_id;
1095 r = get_boots(j, NULL, &ref_boot_id, arg_boot_offset);
1096 assert(r <= 1);
1097 if (r <= 0) {
1098 const char *reason = (r == 0) ? "No such boot ID in journal" : strerror(-r);
1099
1100 if (sd_id128_is_null(arg_boot_id))
1101 log_error("Failed to look up boot %+i: %s", arg_boot_offset, reason);
1102 else
1103 log_error("Failed to look up boot ID "SD_ID128_FORMAT_STR"%+i: %s",
1104 SD_ID128_FORMAT_VAL(arg_boot_id), arg_boot_offset, reason);
1105
1106 return r == 0 ? -ENODATA : r;
1107 }
1108
1109 sd_id128_to_string(ref_boot_id.id, match + 9);
1110
1111 r = sd_journal_add_match(j, match, sizeof(match) - 1);
1112 if (r < 0)
1113 return log_error_errno(r, "Failed to add match: %m");
1114
1115 r = sd_journal_add_conjunction(j);
1116 if (r < 0)
1117 return log_error_errno(r, "Failed to add conjunction: %m");
1118
1119 return 0;
1120 }
1121
1122 static int add_dmesg(sd_journal *j) {
1123 int r;
1124 assert(j);
1125
1126 if (!arg_dmesg)
1127 return 0;
1128
1129 r = sd_journal_add_match(j, "_TRANSPORT=kernel", strlen("_TRANSPORT=kernel"));
1130 if (r < 0)
1131 return log_error_errno(r, "Failed to add match: %m");
1132
1133 r = sd_journal_add_conjunction(j);
1134 if (r < 0)
1135 return log_error_errno(r, "Failed to add conjunction: %m");
1136
1137 return 0;
1138 }
1139
1140 static int get_possible_units(
1141 sd_journal *j,
1142 const char *fields,
1143 char **patterns,
1144 Set **units) {
1145
1146 _cleanup_set_free_free_ Set *found;
1147 const char *field;
1148 int r;
1149
1150 found = set_new(&string_hash_ops);
1151 if (!found)
1152 return -ENOMEM;
1153
1154 NULSTR_FOREACH(field, fields) {
1155 const void *data;
1156 size_t size;
1157
1158 r = sd_journal_query_unique(j, field);
1159 if (r < 0)
1160 return r;
1161
1162 SD_JOURNAL_FOREACH_UNIQUE(j, data, size) {
1163 char **pattern, *eq;
1164 size_t prefix;
1165 _cleanup_free_ char *u = NULL;
1166
1167 eq = memchr(data, '=', size);
1168 if (eq)
1169 prefix = eq - (char*) data + 1;
1170 else
1171 prefix = 0;
1172
1173 u = strndup((char*) data + prefix, size - prefix);
1174 if (!u)
1175 return -ENOMEM;
1176
1177 STRV_FOREACH(pattern, patterns)
1178 if (fnmatch(*pattern, u, FNM_NOESCAPE) == 0) {
1179 log_debug("Matched %s with pattern %s=%s", u, field, *pattern);
1180
1181 r = set_consume(found, u);
1182 u = NULL;
1183 if (r < 0 && r != -EEXIST)
1184 return r;
1185
1186 break;
1187 }
1188 }
1189 }
1190
1191 *units = found;
1192 found = NULL;
1193 return 0;
1194 }
1195
1196 /* This list is supposed to return the superset of unit names
1197 * possibly matched by rules added with add_matches_for_unit... */
1198 #define SYSTEM_UNITS \
1199 "_SYSTEMD_UNIT\0" \
1200 "COREDUMP_UNIT\0" \
1201 "UNIT\0" \
1202 "OBJECT_SYSTEMD_UNIT\0" \
1203 "_SYSTEMD_SLICE\0"
1204
1205 /* ... and add_matches_for_user_unit */
1206 #define USER_UNITS \
1207 "_SYSTEMD_USER_UNIT\0" \
1208 "USER_UNIT\0" \
1209 "COREDUMP_USER_UNIT\0" \
1210 "OBJECT_SYSTEMD_USER_UNIT\0"
1211
1212 static int add_units(sd_journal *j) {
1213 _cleanup_strv_free_ char **patterns = NULL;
1214 int r, count = 0;
1215 char **i;
1216
1217 assert(j);
1218
1219 STRV_FOREACH(i, arg_system_units) {
1220 _cleanup_free_ char *u = NULL;
1221
1222 r = unit_name_mangle(*i, UNIT_NAME_GLOB, &u);
1223 if (r < 0)
1224 return r;
1225
1226 if (string_is_glob(u)) {
1227 r = strv_push(&patterns, u);
1228 if (r < 0)
1229 return r;
1230 u = NULL;
1231 } else {
1232 r = add_matches_for_unit(j, u);
1233 if (r < 0)
1234 return r;
1235 r = sd_journal_add_disjunction(j);
1236 if (r < 0)
1237 return r;
1238 count ++;
1239 }
1240 }
1241
1242 if (!strv_isempty(patterns)) {
1243 _cleanup_set_free_free_ Set *units = NULL;
1244 Iterator it;
1245 char *u;
1246
1247 r = get_possible_units(j, SYSTEM_UNITS, patterns, &units);
1248 if (r < 0)
1249 return r;
1250
1251 SET_FOREACH(u, units, it) {
1252 r = add_matches_for_unit(j, u);
1253 if (r < 0)
1254 return r;
1255 r = sd_journal_add_disjunction(j);
1256 if (r < 0)
1257 return r;
1258 count ++;
1259 }
1260 }
1261
1262 patterns = strv_free(patterns);
1263
1264 STRV_FOREACH(i, arg_user_units) {
1265 _cleanup_free_ char *u = NULL;
1266
1267 r = unit_name_mangle(*i, UNIT_NAME_GLOB, &u);
1268 if (r < 0)
1269 return r;
1270
1271 if (string_is_glob(u)) {
1272 r = strv_push(&patterns, u);
1273 if (r < 0)
1274 return r;
1275 u = NULL;
1276 } else {
1277 r = add_matches_for_user_unit(j, u, getuid());
1278 if (r < 0)
1279 return r;
1280 r = sd_journal_add_disjunction(j);
1281 if (r < 0)
1282 return r;
1283 count ++;
1284 }
1285 }
1286
1287 if (!strv_isempty(patterns)) {
1288 _cleanup_set_free_free_ Set *units = NULL;
1289 Iterator it;
1290 char *u;
1291
1292 r = get_possible_units(j, USER_UNITS, patterns, &units);
1293 if (r < 0)
1294 return r;
1295
1296 SET_FOREACH(u, units, it) {
1297 r = add_matches_for_user_unit(j, u, getuid());
1298 if (r < 0)
1299 return r;
1300 r = sd_journal_add_disjunction(j);
1301 if (r < 0)
1302 return r;
1303 count ++;
1304 }
1305 }
1306
1307 /* Complain if the user request matches but nothing whatsoever was
1308 * found, since otherwise everything would be matched. */
1309 if (!(strv_isempty(arg_system_units) && strv_isempty(arg_user_units)) && count == 0)
1310 return -ENODATA;
1311
1312 r = sd_journal_add_conjunction(j);
1313 if (r < 0)
1314 return r;
1315
1316 return 0;
1317 }
1318
1319 static int add_priorities(sd_journal *j) {
1320 char match[] = "PRIORITY=0";
1321 int i, r;
1322 assert(j);
1323
1324 if (arg_priorities == 0xFF)
1325 return 0;
1326
1327 for (i = LOG_EMERG; i <= LOG_DEBUG; i++)
1328 if (arg_priorities & (1 << i)) {
1329 match[sizeof(match)-2] = '0' + i;
1330
1331 r = sd_journal_add_match(j, match, strlen(match));
1332 if (r < 0)
1333 return log_error_errno(r, "Failed to add match: %m");
1334 }
1335
1336 r = sd_journal_add_conjunction(j);
1337 if (r < 0)
1338 return log_error_errno(r, "Failed to add conjunction: %m");
1339
1340 return 0;
1341 }
1342
1343
1344 static int add_syslog_identifier(sd_journal *j) {
1345 int r;
1346 char **i;
1347
1348 assert(j);
1349
1350 STRV_FOREACH(i, arg_syslog_identifier) {
1351 char *u;
1352
1353 u = strjoina("SYSLOG_IDENTIFIER=", *i);
1354 r = sd_journal_add_match(j, u, 0);
1355 if (r < 0)
1356 return r;
1357 r = sd_journal_add_disjunction(j);
1358 if (r < 0)
1359 return r;
1360 }
1361
1362 r = sd_journal_add_conjunction(j);
1363 if (r < 0)
1364 return r;
1365
1366 return 0;
1367 }
1368
1369 static int setup_keys(void) {
1370 #ifdef HAVE_GCRYPT
1371 size_t mpk_size, seed_size, state_size, i;
1372 uint8_t *mpk, *seed, *state;
1373 int fd = -1, r;
1374 sd_id128_t machine, boot;
1375 char *p = NULL, *k = NULL;
1376 struct FSSHeader h;
1377 uint64_t n;
1378 struct stat st;
1379
1380 r = stat("/var/log/journal", &st);
1381 if (r < 0 && errno != ENOENT && errno != ENOTDIR)
1382 return log_error_errno(errno, "stat(\"%s\") failed: %m", "/var/log/journal");
1383
1384 if (r < 0 || !S_ISDIR(st.st_mode)) {
1385 log_error("%s is not a directory, must be using persistent logging for FSS.",
1386 "/var/log/journal");
1387 return r < 0 ? -errno : -ENOTDIR;
1388 }
1389
1390 r = sd_id128_get_machine(&machine);
1391 if (r < 0)
1392 return log_error_errno(r, "Failed to get machine ID: %m");
1393
1394 r = sd_id128_get_boot(&boot);
1395 if (r < 0)
1396 return log_error_errno(r, "Failed to get boot ID: %m");
1397
1398 if (asprintf(&p, "/var/log/journal/" SD_ID128_FORMAT_STR "/fss",
1399 SD_ID128_FORMAT_VAL(machine)) < 0)
1400 return log_oom();
1401
1402 if (arg_force) {
1403 r = unlink(p);
1404 if (r < 0 && errno != ENOENT) {
1405 r = log_error_errno(errno, "unlink(\"%s\") failed: %m", p);
1406 goto finish;
1407 }
1408 } else if (access(p, F_OK) >= 0) {
1409 log_error("Sealing key file %s exists already. Use --force to recreate.", p);
1410 r = -EEXIST;
1411 goto finish;
1412 }
1413
1414 if (asprintf(&k, "/var/log/journal/" SD_ID128_FORMAT_STR "/fss.tmp.XXXXXX",
1415 SD_ID128_FORMAT_VAL(machine)) < 0) {
1416 r = log_oom();
1417 goto finish;
1418 }
1419
1420 mpk_size = FSPRG_mskinbytes(FSPRG_RECOMMENDED_SECPAR);
1421 mpk = alloca(mpk_size);
1422
1423 seed_size = FSPRG_RECOMMENDED_SEEDLEN;
1424 seed = alloca(seed_size);
1425
1426 state_size = FSPRG_stateinbytes(FSPRG_RECOMMENDED_SECPAR);
1427 state = alloca(state_size);
1428
1429 fd = open("/dev/random", O_RDONLY|O_CLOEXEC|O_NOCTTY);
1430 if (fd < 0) {
1431 log_error_errno(errno, "Failed to open /dev/random: %m");
1432 r = -errno;
1433 goto finish;
1434 }
1435
1436 log_info("Generating seed...");
1437 r = loop_read_exact(fd, seed, seed_size, true);
1438 if (r < 0) {
1439 log_error_errno(r, "Failed to read random seed: %m");
1440 goto finish;
1441 }
1442
1443 log_info("Generating key pair...");
1444 FSPRG_GenMK(NULL, mpk, seed, seed_size, FSPRG_RECOMMENDED_SECPAR);
1445
1446 log_info("Generating sealing key...");
1447 FSPRG_GenState0(state, mpk, seed, seed_size);
1448
1449 assert(arg_interval > 0);
1450
1451 n = now(CLOCK_REALTIME);
1452 n /= arg_interval;
1453
1454 safe_close(fd);
1455 fd = mkostemp_safe(k, O_WRONLY|O_CLOEXEC);
1456 if (fd < 0) {
1457 log_error_errno(errno, "Failed to open %s: %m", k);
1458 r = -errno;
1459 goto finish;
1460 }
1461
1462 /* Enable secure remove, exclusion from dump, synchronous
1463 * writing and in-place updating */
1464 r = chattr_fd(fd, FS_SECRM_FL|FS_NODUMP_FL|FS_SYNC_FL|FS_NOCOW_FL, FS_SECRM_FL|FS_NODUMP_FL|FS_SYNC_FL|FS_NOCOW_FL);
1465 if (r < 0)
1466 log_warning_errno(errno, "Failed to set file attributes: %m");
1467
1468 zero(h);
1469 memcpy(h.signature, "KSHHRHLP", 8);
1470 h.machine_id = machine;
1471 h.boot_id = boot;
1472 h.header_size = htole64(sizeof(h));
1473 h.start_usec = htole64(n * arg_interval);
1474 h.interval_usec = htole64(arg_interval);
1475 h.fsprg_secpar = htole16(FSPRG_RECOMMENDED_SECPAR);
1476 h.fsprg_state_size = htole64(state_size);
1477
1478 r = loop_write(fd, &h, sizeof(h), false);
1479 if (r < 0) {
1480 log_error_errno(r, "Failed to write header: %m");
1481 goto finish;
1482 }
1483
1484 r = loop_write(fd, state, state_size, false);
1485 if (r < 0) {
1486 log_error_errno(r, "Failed to write state: %m");
1487 goto finish;
1488 }
1489
1490 if (link(k, p) < 0) {
1491 log_error_errno(errno, "Failed to link file: %m");
1492 r = -errno;
1493 goto finish;
1494 }
1495
1496 if (on_tty()) {
1497 fprintf(stderr,
1498 "\n"
1499 "The new key pair has been generated. The " ANSI_HIGHLIGHT_ON "secret sealing key" ANSI_HIGHLIGHT_OFF " has been written to\n"
1500 "the following local file. This key file is automatically updated when the\n"
1501 "sealing key is advanced. It should not be used on multiple hosts.\n"
1502 "\n"
1503 "\t%s\n"
1504 "\n"
1505 "Please write down the following " ANSI_HIGHLIGHT_ON "secret verification key" ANSI_HIGHLIGHT_OFF ". It should be stored\n"
1506 "at a safe location and should not be saved locally on disk.\n"
1507 "\n\t" ANSI_HIGHLIGHT_RED_ON, p);
1508 fflush(stderr);
1509 }
1510 for (i = 0; i < seed_size; i++) {
1511 if (i > 0 && i % 3 == 0)
1512 putchar('-');
1513 printf("%02x", ((uint8_t*) seed)[i]);
1514 }
1515
1516 printf("/%llx-%llx\n", (unsigned long long) n, (unsigned long long) arg_interval);
1517
1518 if (on_tty()) {
1519 char tsb[FORMAT_TIMESPAN_MAX], *hn;
1520
1521 fprintf(stderr,
1522 ANSI_HIGHLIGHT_OFF "\n"
1523 "The sealing key is automatically changed every %s.\n",
1524 format_timespan(tsb, sizeof(tsb), arg_interval, 0));
1525
1526 hn = gethostname_malloc();
1527
1528 if (hn) {
1529 hostname_cleanup(hn, false);
1530 fprintf(stderr, "\nThe keys have been generated for host %s/" SD_ID128_FORMAT_STR ".\n", hn, SD_ID128_FORMAT_VAL(machine));
1531 } else
1532 fprintf(stderr, "\nThe keys have been generated for host " SD_ID128_FORMAT_STR ".\n", SD_ID128_FORMAT_VAL(machine));
1533
1534 #ifdef HAVE_QRENCODE
1535 /* If this is not an UTF-8 system don't print any QR codes */
1536 if (is_locale_utf8()) {
1537 fputs("\nTo transfer the verification key to your phone please scan the QR code below:\n\n", stderr);
1538 print_qr_code(stderr, seed, seed_size, n, arg_interval, hn, machine);
1539 }
1540 #endif
1541 free(hn);
1542 }
1543
1544 r = 0;
1545
1546 finish:
1547 safe_close(fd);
1548
1549 if (k) {
1550 unlink(k);
1551 free(k);
1552 }
1553
1554 free(p);
1555
1556 return r;
1557 #else
1558 log_error("Forward-secure sealing not available.");
1559 return -EOPNOTSUPP;
1560 #endif
1561 }
1562
1563 static int verify(sd_journal *j) {
1564 int r = 0;
1565 Iterator i;
1566 JournalFile *f;
1567
1568 assert(j);
1569
1570 log_show_color(true);
1571
1572 ORDERED_HASHMAP_FOREACH(f, j->files, i) {
1573 int k;
1574 usec_t first = 0, validated = 0, last = 0;
1575
1576 #ifdef HAVE_GCRYPT
1577 if (!arg_verify_key && JOURNAL_HEADER_SEALED(f->header))
1578 log_notice("Journal file %s has sealing enabled but verification key has not been passed using --verify-key=.", f->path);
1579 #endif
1580
1581 k = journal_file_verify(f, arg_verify_key, &first, &validated, &last, true);
1582 if (k == -EINVAL) {
1583 /* If the key was invalid give up right-away. */
1584 return k;
1585 } else if (k < 0) {
1586 log_warning("FAIL: %s (%s)", f->path, strerror(-k));
1587 r = k;
1588 } else {
1589 char a[FORMAT_TIMESTAMP_MAX], b[FORMAT_TIMESTAMP_MAX], c[FORMAT_TIMESPAN_MAX];
1590 log_info("PASS: %s", f->path);
1591
1592 if (arg_verify_key && JOURNAL_HEADER_SEALED(f->header)) {
1593 if (validated > 0) {
1594 log_info("=> Validated from %s to %s, final %s entries not sealed.",
1595 format_timestamp_maybe_utc(a, sizeof(a), first),
1596 format_timestamp_maybe_utc(b, sizeof(b), validated),
1597 format_timespan(c, sizeof(c), last > validated ? last - validated : 0, 0));
1598 } else if (last > 0)
1599 log_info("=> No sealing yet, %s of entries not sealed.",
1600 format_timespan(c, sizeof(c), last - first, 0));
1601 else
1602 log_info("=> No sealing yet, no entries in file.");
1603 }
1604 }
1605 }
1606
1607 return r;
1608 }
1609
1610 static int access_check_var_log_journal(sd_journal *j) {
1611 #ifdef HAVE_ACL
1612 _cleanup_strv_free_ char **g = NULL;
1613 const char* dir;
1614 #endif
1615 int r;
1616
1617 assert(j);
1618
1619 if (arg_quiet)
1620 return 0;
1621
1622 /* If we are root, we should have access, don't warn. */
1623 if (getuid() == 0)
1624 return 0;
1625
1626 /* If we are in the 'systemd-journal' group, we should have
1627 * access too. */
1628 r = in_group("systemd-journal");
1629 if (r < 0)
1630 return log_error_errno(r, "Failed to check if we are in the 'systemd-journal' group: %m");
1631 if (r > 0)
1632 return 0;
1633
1634 #ifdef HAVE_ACL
1635 if (laccess("/run/log/journal", F_OK) >= 0)
1636 dir = "/run/log/journal";
1637 else
1638 dir = "/var/log/journal";
1639
1640 /* If we are in any of the groups listed in the journal ACLs,
1641 * then all is good, too. Let's enumerate all groups from the
1642 * default ACL of the directory, which generally should allow
1643 * access to most journal files too. */
1644 r = acl_search_groups(dir, &g);
1645 if (r < 0)
1646 return log_error_errno(r, "Failed to search journal ACL: %m");
1647 if (r > 0)
1648 return 0;
1649
1650 /* Print a pretty list, if there were ACLs set. */
1651 if (!strv_isempty(g)) {
1652 _cleanup_free_ char *s = NULL;
1653
1654 /* Thre are groups in the ACL, let's list them */
1655 r = strv_extend(&g, "systemd-journal");
1656 if (r < 0)
1657 return log_oom();
1658
1659 strv_sort(g);
1660 strv_uniq(g);
1661
1662 s = strv_join(g, "', '");
1663 if (!s)
1664 return log_oom();
1665
1666 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1667 " Users in groups '%s' can see all messages.\n"
1668 " Pass -q to turn off this notice.", s);
1669 return 1;
1670 }
1671 #endif
1672
1673 /* If no ACLs were found, print a short version of the message. */
1674 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1675 " Users in the 'systemd-journal' group can see all messages. Pass -q to\n"
1676 " turn off this notice.");
1677
1678 return 1;
1679 }
1680
1681 static int access_check(sd_journal *j) {
1682 Iterator it;
1683 void *code;
1684 int r = 0;
1685
1686 assert(j);
1687
1688 if (set_isempty(j->errors)) {
1689 if (ordered_hashmap_isempty(j->files))
1690 log_notice("No journal files were found.");
1691
1692 return 0;
1693 }
1694
1695 if (set_contains(j->errors, INT_TO_PTR(-EACCES))) {
1696 (void) access_check_var_log_journal(j);
1697
1698 if (ordered_hashmap_isempty(j->files))
1699 r = log_error_errno(EACCES, "No journal files were opened due to insufficient permissions.");
1700 }
1701
1702 SET_FOREACH(code, j->errors, it) {
1703 int err;
1704
1705 err = -PTR_TO_INT(code);
1706 assert(err > 0);
1707
1708 if (err == EACCES)
1709 continue;
1710
1711 log_warning_errno(err, "Error was encountered while opening journal files: %m");
1712 if (r == 0)
1713 r = -err;
1714 }
1715
1716 return r;
1717 }
1718
1719 static int flush_to_var(void) {
1720 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
1721 _cleanup_bus_flush_close_unref_ sd_bus *bus = NULL;
1722 _cleanup_close_ int watch_fd = -1;
1723 int r;
1724
1725 /* Quick exit */
1726 if (access("/run/systemd/journal/flushed", F_OK) >= 0)
1727 return 0;
1728
1729 /* OK, let's actually do the full logic, send SIGUSR1 to the
1730 * daemon and set up inotify to wait for the flushed file to appear */
1731 r = bus_open_system_systemd(&bus);
1732 if (r < 0)
1733 return log_error_errno(r, "Failed to get D-Bus connection: %m");
1734
1735 r = sd_bus_call_method(
1736 bus,
1737 "org.freedesktop.systemd1",
1738 "/org/freedesktop/systemd1",
1739 "org.freedesktop.systemd1.Manager",
1740 "KillUnit",
1741 &error,
1742 NULL,
1743 "ssi", "systemd-journald.service", "main", SIGUSR1);
1744 if (r < 0) {
1745 log_error("Failed to kill journal service: %s", bus_error_message(&error, r));
1746 return r;
1747 }
1748
1749 mkdir_p("/run/systemd/journal", 0755);
1750
1751 watch_fd = inotify_init1(IN_NONBLOCK|IN_CLOEXEC);
1752 if (watch_fd < 0)
1753 return log_error_errno(errno, "Failed to create inotify watch: %m");
1754
1755 r = inotify_add_watch(watch_fd, "/run/systemd/journal", IN_CREATE|IN_DONT_FOLLOW|IN_ONLYDIR);
1756 if (r < 0)
1757 return log_error_errno(errno, "Failed to watch journal directory: %m");
1758
1759 for (;;) {
1760 if (access("/run/systemd/journal/flushed", F_OK) >= 0)
1761 break;
1762
1763 if (errno != ENOENT)
1764 return log_error_errno(errno, "Failed to check for existence of /run/systemd/journal/flushed: %m");
1765
1766 r = fd_wait_for_event(watch_fd, POLLIN, USEC_INFINITY);
1767 if (r < 0)
1768 return log_error_errno(r, "Failed to wait for event: %m");
1769
1770 r = flush_fd(watch_fd);
1771 if (r < 0)
1772 return log_error_errno(r, "Failed to flush inotify events: %m");
1773 }
1774
1775 return 0;
1776 }
1777
1778 int main(int argc, char *argv[]) {
1779 int r;
1780 _cleanup_journal_close_ sd_journal *j = NULL;
1781 bool need_seek = false;
1782 sd_id128_t previous_boot_id;
1783 bool previous_boot_id_valid = false, first_line = true;
1784 int n_shown = 0;
1785 bool ellipsized = false;
1786
1787 setlocale(LC_ALL, "");
1788 log_parse_environment();
1789 log_open();
1790
1791 r = parse_argv(argc, argv);
1792 if (r <= 0)
1793 goto finish;
1794
1795 signal(SIGWINCH, columns_lines_cache_reset);
1796 sigbus_install();
1797
1798 /* Increase max number of open files to 16K if we can, we
1799 * might needs this when browsing journal files, which might
1800 * be split up into many files. */
1801 setrlimit_closest(RLIMIT_NOFILE, &RLIMIT_MAKE_CONST(16384));
1802
1803 if (arg_action == ACTION_NEW_ID128) {
1804 r = generate_new_id128();
1805 goto finish;
1806 }
1807
1808 if (arg_action == ACTION_FLUSH) {
1809 r = flush_to_var();
1810 goto finish;
1811 }
1812
1813 if (arg_action == ACTION_SETUP_KEYS) {
1814 r = setup_keys();
1815 goto finish;
1816 }
1817
1818 if (arg_action == ACTION_UPDATE_CATALOG ||
1819 arg_action == ACTION_LIST_CATALOG ||
1820 arg_action == ACTION_DUMP_CATALOG) {
1821
1822 _cleanup_free_ char *database;
1823
1824 database = path_join(arg_root, CATALOG_DATABASE, NULL);
1825 if (!database) {
1826 r = log_oom();
1827 goto finish;
1828 }
1829
1830 if (arg_action == ACTION_UPDATE_CATALOG) {
1831 r = catalog_update(database, arg_root, catalog_file_dirs);
1832 if (r < 0)
1833 log_error_errno(r, "Failed to list catalog: %m");
1834 } else {
1835 bool oneline = arg_action == ACTION_LIST_CATALOG;
1836
1837 if (optind < argc)
1838 r = catalog_list_items(stdout, database,
1839 oneline, argv + optind);
1840 else
1841 r = catalog_list(stdout, database, oneline);
1842 if (r < 0)
1843 log_error_errno(r, "Failed to list catalog: %m");
1844 }
1845
1846 goto finish;
1847 }
1848
1849 if (arg_directory)
1850 r = sd_journal_open_directory(&j, arg_directory, arg_journal_type);
1851 else if (arg_file)
1852 r = sd_journal_open_files(&j, (const char**) arg_file, 0);
1853 else if (arg_machine)
1854 r = sd_journal_open_container(&j, arg_machine, 0);
1855 else
1856 r = sd_journal_open(&j, !arg_merge*SD_JOURNAL_LOCAL_ONLY + arg_journal_type);
1857 if (r < 0) {
1858 log_error_errno(r, "Failed to open %s: %m",
1859 arg_directory ? arg_directory : arg_file ? "files" : "journal");
1860 goto finish;
1861 }
1862
1863 r = access_check(j);
1864 if (r < 0)
1865 goto finish;
1866
1867 if (arg_action == ACTION_VERIFY) {
1868 r = verify(j);
1869 goto finish;
1870 }
1871
1872 if (arg_action == ACTION_PRINT_HEADER) {
1873 journal_print_header(j);
1874 r = 0;
1875 goto finish;
1876 }
1877
1878 if (arg_action == ACTION_DISK_USAGE) {
1879 uint64_t bytes = 0;
1880 char sbytes[FORMAT_BYTES_MAX];
1881
1882 r = sd_journal_get_usage(j, &bytes);
1883 if (r < 0)
1884 goto finish;
1885
1886 printf("Archived and active journals take up %s on disk.\n",
1887 format_bytes(sbytes, sizeof(sbytes), bytes));
1888 goto finish;
1889 }
1890
1891 if (arg_action == ACTION_VACUUM) {
1892 Directory *d;
1893 Iterator i;
1894
1895 HASHMAP_FOREACH(d, j->directories_by_path, i) {
1896 int q;
1897
1898 if (d->is_root)
1899 continue;
1900
1901 q = journal_directory_vacuum(d->path, arg_vacuum_size, arg_vacuum_time, NULL, true);
1902 if (q < 0) {
1903 log_error_errno(q, "Failed to vacuum: %m");
1904 r = q;
1905 }
1906 }
1907
1908 goto finish;
1909 }
1910
1911 if (arg_action == ACTION_LIST_BOOTS) {
1912 r = list_boots(j);
1913 goto finish;
1914 }
1915
1916 /* add_boot() must be called first!
1917 * It may need to seek the journal to find parent boot IDs. */
1918 r = add_boot(j);
1919 if (r < 0)
1920 goto finish;
1921
1922 r = add_dmesg(j);
1923 if (r < 0)
1924 goto finish;
1925
1926 r = add_units(j);
1927 if (r < 0) {
1928 log_error_errno(r, "Failed to add filter for units: %m");
1929 goto finish;
1930 }
1931
1932 r = add_syslog_identifier(j);
1933 if (r < 0) {
1934 log_error_errno(r, "Failed to add filter for syslog identifiers: %m");
1935 goto finish;
1936 }
1937
1938 r = add_priorities(j);
1939 if (r < 0)
1940 goto finish;
1941
1942 r = add_matches(j, argv + optind);
1943 if (r < 0)
1944 goto finish;
1945
1946 if (_unlikely_(log_get_max_level() >= LOG_DEBUG)) {
1947 _cleanup_free_ char *filter;
1948
1949 filter = journal_make_match_string(j);
1950 if (!filter)
1951 return log_oom();
1952
1953 log_debug("Journal filter: %s", filter);
1954 }
1955
1956 if (arg_field) {
1957 const void *data;
1958 size_t size;
1959
1960 r = sd_journal_set_data_threshold(j, 0);
1961 if (r < 0) {
1962 log_error_errno(r, "Failed to unset data size threshold: %m");
1963 goto finish;
1964 }
1965
1966 r = sd_journal_query_unique(j, arg_field);
1967 if (r < 0) {
1968 log_error_errno(r, "Failed to query unique data objects: %m");
1969 goto finish;
1970 }
1971
1972 SD_JOURNAL_FOREACH_UNIQUE(j, data, size) {
1973 const void *eq;
1974
1975 if (arg_lines >= 0 && n_shown >= arg_lines)
1976 break;
1977
1978 eq = memchr(data, '=', size);
1979 if (eq)
1980 printf("%.*s\n", (int) (size - ((const uint8_t*) eq - (const uint8_t*) data + 1)), (const char*) eq + 1);
1981 else
1982 printf("%.*s\n", (int) size, (const char*) data);
1983
1984 n_shown ++;
1985 }
1986
1987 r = 0;
1988 goto finish;
1989 }
1990
1991 /* Opening the fd now means the first sd_journal_wait() will actually wait */
1992 if (arg_follow) {
1993 r = sd_journal_get_fd(j);
1994 if (r < 0) {
1995 log_error_errno(r, "Failed to get journal fd: %m");
1996 goto finish;
1997 }
1998 }
1999
2000 if (arg_cursor || arg_after_cursor) {
2001 r = sd_journal_seek_cursor(j, arg_cursor ?: arg_after_cursor);
2002 if (r < 0) {
2003 log_error_errno(r, "Failed to seek to cursor: %m");
2004 goto finish;
2005 }
2006
2007 if (!arg_reverse)
2008 r = sd_journal_next_skip(j, 1 + !!arg_after_cursor);
2009 else
2010 r = sd_journal_previous_skip(j, 1 + !!arg_after_cursor);
2011
2012 if (arg_after_cursor && r < 2) {
2013 /* We couldn't find the next entry after the cursor. */
2014 if (arg_follow)
2015 need_seek = true;
2016 else
2017 arg_lines = 0;
2018 }
2019
2020 } else if (arg_since_set && !arg_reverse) {
2021 r = sd_journal_seek_realtime_usec(j, arg_since);
2022 if (r < 0) {
2023 log_error_errno(r, "Failed to seek to date: %m");
2024 goto finish;
2025 }
2026 r = sd_journal_next(j);
2027
2028 } else if (arg_until_set && arg_reverse) {
2029 r = sd_journal_seek_realtime_usec(j, arg_until);
2030 if (r < 0) {
2031 log_error_errno(r, "Failed to seek to date: %m");
2032 goto finish;
2033 }
2034 r = sd_journal_previous(j);
2035
2036 } else if (arg_lines >= 0) {
2037 r = sd_journal_seek_tail(j);
2038 if (r < 0) {
2039 log_error_errno(r, "Failed to seek to tail: %m");
2040 goto finish;
2041 }
2042
2043 r = sd_journal_previous_skip(j, arg_lines);
2044
2045 } else if (arg_reverse) {
2046 r = sd_journal_seek_tail(j);
2047 if (r < 0) {
2048 log_error_errno(r, "Failed to seek to tail: %m");
2049 goto finish;
2050 }
2051
2052 r = sd_journal_previous(j);
2053
2054 } else {
2055 r = sd_journal_seek_head(j);
2056 if (r < 0) {
2057 log_error_errno(r, "Failed to seek to head: %m");
2058 goto finish;
2059 }
2060
2061 r = sd_journal_next(j);
2062 }
2063
2064 if (r < 0) {
2065 log_error_errno(r, "Failed to iterate through journal: %m");
2066 goto finish;
2067 }
2068 if (r == 0) {
2069 printf("-- No entries --\n");
2070 goto finish;
2071 }
2072
2073 if (!arg_follow)
2074 pager_open_if_enabled();
2075
2076 if (!arg_quiet) {
2077 usec_t start, end;
2078 char start_buf[FORMAT_TIMESTAMP_MAX], end_buf[FORMAT_TIMESTAMP_MAX];
2079
2080 r = sd_journal_get_cutoff_realtime_usec(j, &start, &end);
2081 if (r < 0) {
2082 log_error_errno(r, "Failed to get cutoff: %m");
2083 goto finish;
2084 }
2085
2086 if (r > 0) {
2087 if (arg_follow)
2088 printf("-- Logs begin at %s. --\n",
2089 format_timestamp_maybe_utc(start_buf, sizeof(start_buf), start));
2090 else
2091 printf("-- Logs begin at %s, end at %s. --\n",
2092 format_timestamp_maybe_utc(start_buf, sizeof(start_buf), start),
2093 format_timestamp_maybe_utc(end_buf, sizeof(end_buf), end));
2094 }
2095 }
2096
2097 for (;;) {
2098 while (arg_lines < 0 || n_shown < arg_lines || (arg_follow && !first_line)) {
2099 int flags;
2100
2101 if (need_seek) {
2102 if (!arg_reverse)
2103 r = sd_journal_next(j);
2104 else
2105 r = sd_journal_previous(j);
2106 if (r < 0) {
2107 log_error_errno(r, "Failed to iterate through journal: %m");
2108 goto finish;
2109 }
2110 if (r == 0)
2111 break;
2112 }
2113
2114 if (arg_until_set && !arg_reverse) {
2115 usec_t usec;
2116
2117 r = sd_journal_get_realtime_usec(j, &usec);
2118 if (r < 0) {
2119 log_error_errno(r, "Failed to determine timestamp: %m");
2120 goto finish;
2121 }
2122 if (usec > arg_until)
2123 goto finish;
2124 }
2125
2126 if (arg_since_set && arg_reverse) {
2127 usec_t usec;
2128
2129 r = sd_journal_get_realtime_usec(j, &usec);
2130 if (r < 0) {
2131 log_error_errno(r, "Failed to determine timestamp: %m");
2132 goto finish;
2133 }
2134 if (usec < arg_since)
2135 goto finish;
2136 }
2137
2138 if (!arg_merge && !arg_quiet) {
2139 sd_id128_t boot_id;
2140
2141 r = sd_journal_get_monotonic_usec(j, NULL, &boot_id);
2142 if (r >= 0) {
2143 if (previous_boot_id_valid &&
2144 !sd_id128_equal(boot_id, previous_boot_id))
2145 printf("%s-- Reboot --%s\n",
2146 ansi_highlight(), ansi_highlight_off());
2147
2148 previous_boot_id = boot_id;
2149 previous_boot_id_valid = true;
2150 }
2151 }
2152
2153 flags =
2154 arg_all * OUTPUT_SHOW_ALL |
2155 arg_full * OUTPUT_FULL_WIDTH |
2156 on_tty() * OUTPUT_COLOR |
2157 arg_catalog * OUTPUT_CATALOG |
2158 arg_utc * OUTPUT_UTC;
2159
2160 r = output_journal(stdout, j, arg_output, 0, flags, &ellipsized);
2161 need_seek = true;
2162 if (r == -EADDRNOTAVAIL)
2163 break;
2164 else if (r < 0 || ferror(stdout))
2165 goto finish;
2166
2167 n_shown++;
2168 }
2169
2170 if (!arg_follow) {
2171 if (arg_show_cursor) {
2172 _cleanup_free_ char *cursor = NULL;
2173
2174 r = sd_journal_get_cursor(j, &cursor);
2175 if (r < 0 && r != -EADDRNOTAVAIL)
2176 log_error_errno(r, "Failed to get cursor: %m");
2177 else if (r >= 0)
2178 printf("-- cursor: %s\n", cursor);
2179 }
2180
2181 break;
2182 }
2183
2184 r = sd_journal_wait(j, (uint64_t) -1);
2185 if (r < 0) {
2186 log_error_errno(r, "Couldn't wait for journal event: %m");
2187 goto finish;
2188 }
2189
2190 first_line = false;
2191 }
2192
2193 finish:
2194 pager_close();
2195
2196 strv_free(arg_file);
2197
2198 strv_free(arg_syslog_identifier);
2199 strv_free(arg_system_units);
2200 strv_free(arg_user_units);
2201
2202 return r < 0 ? EXIT_FAILURE : EXIT_SUCCESS;
2203 }
Unnamed repository; edit this file 'description' to name the repository.