1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2011 Lennart Poettering
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
34 #include <sys/inotify.h>
39 #include "sd-journal.h"
42 #include "bus-error.h"
47 #include "hostname-util.h"
48 #include "journal-def.h"
49 #include "journal-internal.h"
50 #include "journal-qrcode.h"
51 #include "journal-vacuum.h"
52 #include "journal-verify.h"
54 #include "logs-show.h"
57 #include "path-util.h"
61 #include "terminal-util.h"
62 #include "unit-name.h"
64 #define DEFAULT_FSS_INTERVAL_USEC (15*USEC_PER_MINUTE)
67 /* Special values for arg_lines */
68 ARG_LINES_DEFAULT
= -2,
72 static OutputMode arg_output
= OUTPUT_SHORT
;
73 static bool arg_utc
= false;
74 static bool arg_pager_end
= false;
75 static bool arg_follow
= false;
76 static bool arg_full
= true;
77 static bool arg_all
= false;
78 static bool arg_no_pager
= false;
79 static int arg_lines
= ARG_LINES_DEFAULT
;
80 static bool arg_no_tail
= false;
81 static bool arg_quiet
= false;
82 static bool arg_merge
= false;
83 static bool arg_boot
= false;
84 static sd_id128_t arg_boot_id
= {};
85 static int arg_boot_offset
= 0;
86 static bool arg_dmesg
= false;
87 static const char *arg_cursor
= NULL
;
88 static const char *arg_after_cursor
= NULL
;
89 static bool arg_show_cursor
= false;
90 static const char *arg_directory
= NULL
;
91 static char **arg_file
= NULL
;
92 static int arg_priorities
= 0xFF;
93 static const char *arg_verify_key
= NULL
;
95 static usec_t arg_interval
= DEFAULT_FSS_INTERVAL_USEC
;
96 static bool arg_force
= false;
98 static usec_t arg_since
, arg_until
;
99 static bool arg_since_set
= false, arg_until_set
= false;
100 static char **arg_syslog_identifier
= NULL
;
101 static char **arg_system_units
= NULL
;
102 static char **arg_user_units
= NULL
;
103 static const char *arg_field
= NULL
;
104 static bool arg_catalog
= false;
105 static bool arg_reverse
= false;
106 static int arg_journal_type
= 0;
107 static const char *arg_root
= NULL
;
108 static const char *arg_machine
= NULL
;
109 static uint64_t arg_vacuum_size
= 0;
110 static uint64_t arg_vacuum_n_files
= 0;
111 static usec_t arg_vacuum_time
= 0;
122 ACTION_UPDATE_CATALOG
,
127 } arg_action
= ACTION_SHOW
;
129 typedef struct BootId
{
133 LIST_FIELDS(struct BootId
, boot_list
);
136 static void pager_open_if_enabled(void) {
141 pager_open(arg_pager_end
);
144 static char *format_timestamp_maybe_utc(char *buf
, size_t l
, usec_t t
) {
147 return format_timestamp_utc(buf
, l
, t
);
149 return format_timestamp(buf
, l
, t
);
152 static int parse_boot_descriptor(const char *x
, sd_id128_t
*boot_id
, int *offset
) {
153 sd_id128_t id
= SD_ID128_NULL
;
156 if (strlen(x
) >= 32) {
160 r
= sd_id128_from_string(t
, &id
);
164 if (*x
!= '-' && *x
!= '+' && *x
!= 0)
168 r
= safe_atoi(x
, &off
);
173 r
= safe_atoi(x
, &off
);
187 static void help(void) {
189 pager_open_if_enabled();
191 printf("%s [OPTIONS...] [MATCHES...]\n\n"
192 "Query the journal.\n\n"
194 " --system Show the system journal\n"
195 " --user Show the user journal for the current user\n"
196 " -M --machine=CONTAINER Operate on local container\n"
197 " -S --since=DATE Show entries not older than the specified date\n"
198 " -U --until=DATE Show entries not newer than the specified date\n"
199 " -c --cursor=CURSOR Show entries starting at the specified cursor\n"
200 " --after-cursor=CURSOR Show entries after the specified cursor\n"
201 " --show-cursor Print the cursor after all the entries\n"
202 " -b --boot[=ID] Show current boot or the specified boot\n"
203 " --list-boots Show terse information about recorded boots\n"
204 " -k --dmesg Show kernel message log from the current boot\n"
205 " -u --unit=UNIT Show logs from the specified unit\n"
206 " --user-unit=UNIT Show logs from the specified user unit\n"
207 " -t --identifier=STRING Show entries with the specified syslog identifier\n"
208 " -p --priority=RANGE Show entries with the specified priority\n"
209 " -e --pager-end Immediately jump to the end in the pager\n"
210 " -f --follow Follow the journal\n"
211 " -n --lines[=INTEGER] Number of journal entries to show\n"
212 " --no-tail Show all lines, even in follow mode\n"
213 " -r --reverse Show the newest entries first\n"
214 " -o --output=STRING Change journal output mode (short, short-iso,\n"
215 " short-precise, short-monotonic, verbose,\n"
216 " export, json, json-pretty, json-sse, cat)\n"
217 " --utc Express time in Coordinated Universal Time (UTC)\n"
218 " -x --catalog Add message explanations where available\n"
219 " --no-full Ellipsize fields\n"
220 " -a --all Show all fields, including long and unprintable\n"
221 " -q --quiet Do not show privilege warning\n"
222 " --no-pager Do not pipe output into a pager\n"
223 " -m --merge Show entries from all available journals\n"
224 " -D --directory=PATH Show journal files from directory\n"
225 " --file=PATH Show journal file\n"
226 " --root=ROOT Operate on catalog files underneath the root ROOT\n"
228 " --interval=TIME Time interval for changing the FSS sealing key\n"
229 " --verify-key=KEY Specify FSS verification key\n"
230 " --force Override of the FSS key pair with --setup-keys\n"
233 " -h --help Show this help text\n"
234 " --version Show package version\n"
235 " -F --field=FIELD List all values that a specified field takes\n"
236 " --new-id128 Generate a new 128-bit ID\n"
237 " --disk-usage Show total disk usage of all journal files\n"
238 " --vacuum-size=BYTES Reduce disk usage below specified size\n"
239 " --vacuum-files=INT Leave only the specified number of journal files\n"
240 " --vacuum-time=TIME Remove journal files older than specified time\n"
241 " --flush Flush all journal data from /run into /var\n"
242 " --rotate Request immediate rotation of the journal files\n"
243 " --header Show journal header information\n"
244 " --list-catalog Show all message IDs in the catalog\n"
245 " --dump-catalog Show entries in the message catalog\n"
246 " --update-catalog Update the message catalog database\n"
248 " --setup-keys Generate a new FSS key pair\n"
249 " --verify Verify journal file consistency\n"
251 , program_invocation_short_name
);
254 static int parse_argv(int argc
, char *argv
[]) {
288 static const struct option options
[] = {
289 { "help", no_argument
, NULL
, 'h' },
290 { "version" , no_argument
, NULL
, ARG_VERSION
},
291 { "no-pager", no_argument
, NULL
, ARG_NO_PAGER
},
292 { "pager-end", no_argument
, NULL
, 'e' },
293 { "follow", no_argument
, NULL
, 'f' },
294 { "force", no_argument
, NULL
, ARG_FORCE
},
295 { "output", required_argument
, NULL
, 'o' },
296 { "all", no_argument
, NULL
, 'a' },
297 { "full", no_argument
, NULL
, 'l' },
298 { "no-full", no_argument
, NULL
, ARG_NO_FULL
},
299 { "lines", optional_argument
, NULL
, 'n' },
300 { "no-tail", no_argument
, NULL
, ARG_NO_TAIL
},
301 { "new-id128", no_argument
, NULL
, ARG_NEW_ID128
},
302 { "quiet", no_argument
, NULL
, 'q' },
303 { "merge", no_argument
, NULL
, 'm' },
304 { "boot", optional_argument
, NULL
, 'b' },
305 { "list-boots", no_argument
, NULL
, ARG_LIST_BOOTS
},
306 { "this-boot", optional_argument
, NULL
, 'b' }, /* deprecated */
307 { "dmesg", no_argument
, NULL
, 'k' },
308 { "system", no_argument
, NULL
, ARG_SYSTEM
},
309 { "user", no_argument
, NULL
, ARG_USER
},
310 { "directory", required_argument
, NULL
, 'D' },
311 { "file", required_argument
, NULL
, ARG_FILE
},
312 { "root", required_argument
, NULL
, ARG_ROOT
},
313 { "header", no_argument
, NULL
, ARG_HEADER
},
314 { "identifier", required_argument
, NULL
, 't' },
315 { "priority", required_argument
, NULL
, 'p' },
316 { "setup-keys", no_argument
, NULL
, ARG_SETUP_KEYS
},
317 { "interval", required_argument
, NULL
, ARG_INTERVAL
},
318 { "verify", no_argument
, NULL
, ARG_VERIFY
},
319 { "verify-key", required_argument
, NULL
, ARG_VERIFY_KEY
},
320 { "disk-usage", no_argument
, NULL
, ARG_DISK_USAGE
},
321 { "cursor", required_argument
, NULL
, 'c' },
322 { "after-cursor", required_argument
, NULL
, ARG_AFTER_CURSOR
},
323 { "show-cursor", no_argument
, NULL
, ARG_SHOW_CURSOR
},
324 { "since", required_argument
, NULL
, 'S' },
325 { "until", required_argument
, NULL
, 'U' },
326 { "unit", required_argument
, NULL
, 'u' },
327 { "user-unit", required_argument
, NULL
, ARG_USER_UNIT
},
328 { "field", required_argument
, NULL
, 'F' },
329 { "catalog", no_argument
, NULL
, 'x' },
330 { "list-catalog", no_argument
, NULL
, ARG_LIST_CATALOG
},
331 { "dump-catalog", no_argument
, NULL
, ARG_DUMP_CATALOG
},
332 { "update-catalog", no_argument
, NULL
, ARG_UPDATE_CATALOG
},
333 { "reverse", no_argument
, NULL
, 'r' },
334 { "machine", required_argument
, NULL
, 'M' },
335 { "utc", no_argument
, NULL
, ARG_UTC
},
336 { "flush", no_argument
, NULL
, ARG_FLUSH
},
337 { "rotate", no_argument
, NULL
, ARG_ROTATE
},
338 { "vacuum-size", required_argument
, NULL
, ARG_VACUUM_SIZE
},
339 { "vacuum-files", required_argument
, NULL
, ARG_VACUUM_FILES
},
340 { "vacuum-time", required_argument
, NULL
, ARG_VACUUM_TIME
},
349 while ((c
= getopt_long(argc
, argv
, "hefo:aln::qmb::kD:p:c:S:U:t:u:F:xrM:", options
, NULL
)) >= 0)
365 arg_pager_end
= true;
367 if (arg_lines
== ARG_LINES_DEFAULT
)
377 arg_output
= output_mode_from_string(optarg
);
378 if (arg_output
< 0) {
379 log_error("Unknown output format '%s'.", optarg
);
383 if (arg_output
== OUTPUT_EXPORT
||
384 arg_output
== OUTPUT_JSON
||
385 arg_output
== OUTPUT_JSON_PRETTY
||
386 arg_output
== OUTPUT_JSON_SSE
||
387 arg_output
== OUTPUT_CAT
)
406 if (streq(optarg
, "all"))
407 arg_lines
= ARG_LINES_ALL
;
409 r
= safe_atoi(optarg
, &arg_lines
);
410 if (r
< 0 || arg_lines
< 0) {
411 log_error("Failed to parse lines '%s'", optarg
);
418 /* Hmm, no argument? Maybe the next
419 * word on the command line is
420 * supposed to be the argument? Let's
421 * see if there is one, and is
425 if (streq(argv
[optind
], "all")) {
426 arg_lines
= ARG_LINES_ALL
;
428 } else if (safe_atoi(argv
[optind
], &n
) >= 0 && n
>= 0) {
442 arg_action
= ACTION_NEW_ID128
;
457 r
= parse_boot_descriptor(optarg
, &arg_boot_id
, &arg_boot_offset
);
459 log_error("Failed to parse boot descriptor '%s'", optarg
);
464 /* Hmm, no argument? Maybe the next
465 * word on the command line is
466 * supposed to be the argument? Let's
467 * see if there is one and is parsable
468 * as a boot descriptor... */
471 parse_boot_descriptor(argv
[optind
], &arg_boot_id
, &arg_boot_offset
) >= 0)
478 arg_action
= ACTION_LIST_BOOTS
;
482 arg_boot
= arg_dmesg
= true;
486 arg_journal_type
|= SD_JOURNAL_SYSTEM
;
490 arg_journal_type
|= SD_JOURNAL_CURRENT_USER
;
494 arg_machine
= optarg
;
498 arg_directory
= optarg
;
502 r
= glob_extend(&arg_file
, optarg
);
504 return log_error_errno(r
, "Failed to add paths: %m");
515 case ARG_AFTER_CURSOR
:
516 arg_after_cursor
= optarg
;
519 case ARG_SHOW_CURSOR
:
520 arg_show_cursor
= true;
524 arg_action
= ACTION_PRINT_HEADER
;
528 arg_action
= ACTION_VERIFY
;
532 arg_action
= ACTION_DISK_USAGE
;
535 case ARG_VACUUM_SIZE
:
536 r
= parse_size(optarg
, 1024, &arg_vacuum_size
);
538 log_error("Failed to parse vacuum size: %s", optarg
);
542 arg_action
= ACTION_VACUUM
;
545 case ARG_VACUUM_FILES
:
546 r
= safe_atou64(optarg
, &arg_vacuum_n_files
);
548 log_error("Failed to parse vacuum files: %s", optarg
);
552 arg_action
= ACTION_VACUUM
;
555 case ARG_VACUUM_TIME
:
556 r
= parse_sec(optarg
, &arg_vacuum_time
);
558 log_error("Failed to parse vacuum time: %s", optarg
);
562 arg_action
= ACTION_VACUUM
;
571 arg_action
= ACTION_SETUP_KEYS
;
576 arg_action
= ACTION_VERIFY
;
577 arg_verify_key
= optarg
;
582 r
= parse_sec(optarg
, &arg_interval
);
583 if (r
< 0 || arg_interval
<= 0) {
584 log_error("Failed to parse sealing key change interval: %s", optarg
);
593 log_error("Forward-secure sealing not available.");
600 dots
= strstr(optarg
, "..");
606 a
= strndup(optarg
, dots
- optarg
);
610 from
= log_level_from_string(a
);
611 to
= log_level_from_string(dots
+ 2);
614 if (from
< 0 || to
< 0) {
615 log_error("Failed to parse log level range %s", optarg
);
622 for (i
= from
; i
<= to
; i
++)
623 arg_priorities
|= 1 << i
;
625 for (i
= to
; i
<= from
; i
++)
626 arg_priorities
|= 1 << i
;
632 p
= log_level_from_string(optarg
);
634 log_error("Unknown log level %s", optarg
);
640 for (i
= 0; i
<= p
; i
++)
641 arg_priorities
|= 1 << i
;
648 r
= parse_timestamp(optarg
, &arg_since
);
650 log_error("Failed to parse timestamp: %s", optarg
);
653 arg_since_set
= true;
657 r
= parse_timestamp(optarg
, &arg_until
);
659 log_error("Failed to parse timestamp: %s", optarg
);
662 arg_until_set
= true;
666 r
= strv_extend(&arg_syslog_identifier
, optarg
);
672 r
= strv_extend(&arg_system_units
, optarg
);
678 r
= strv_extend(&arg_user_units
, optarg
);
691 case ARG_LIST_CATALOG
:
692 arg_action
= ACTION_LIST_CATALOG
;
695 case ARG_DUMP_CATALOG
:
696 arg_action
= ACTION_DUMP_CATALOG
;
699 case ARG_UPDATE_CATALOG
:
700 arg_action
= ACTION_UPDATE_CATALOG
;
712 arg_action
= ACTION_FLUSH
;
716 arg_action
= ACTION_ROTATE
;
723 assert_not_reached("Unhandled option");
726 if (arg_follow
&& !arg_no_tail
&& !arg_since
&& arg_lines
== ARG_LINES_DEFAULT
)
729 if (!!arg_directory
+ !!arg_file
+ !!arg_machine
> 1) {
730 log_error("Please specify either -D/--directory= or --file= or -M/--machine=, not more than one.");
734 if (arg_since_set
&& arg_until_set
&& arg_since
> arg_until
) {
735 log_error("--since= must be before --until=.");
739 if (!!arg_cursor
+ !!arg_after_cursor
+ !!arg_since_set
> 1) {
740 log_error("Please specify only one of --since=, --cursor=, and --after-cursor.");
744 if (arg_follow
&& arg_reverse
) {
745 log_error("Please specify either --reverse= or --follow=, not both.");
749 if (!IN_SET(arg_action
, ACTION_SHOW
, ACTION_DUMP_CATALOG
, ACTION_LIST_CATALOG
) && optind
< argc
) {
750 log_error("Extraneous arguments starting with '%s'", argv
[optind
]);
754 if ((arg_boot
|| arg_action
== ACTION_LIST_BOOTS
) && (arg_file
|| arg_directory
|| arg_merge
)) {
755 log_error("Using --boot or --list-boots with --file, --directory or --merge is not supported.");
762 static int generate_new_id128(void) {
767 r
= sd_id128_randomize(&id
);
769 return log_error_errno(r
, "Failed to generate ID: %m");
771 printf("As string:\n"
772 SD_ID128_FORMAT_STR
"\n\n"
774 "%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x\n\n"
776 "#define MESSAGE_XYZ SD_ID128_MAKE(",
777 SD_ID128_FORMAT_VAL(id
),
778 SD_ID128_FORMAT_VAL(id
));
779 for (i
= 0; i
< 16; i
++)
780 printf("%02x%s", id
.bytes
[i
], i
!= 15 ? "," : "");
781 fputs(")\n\n", stdout
);
783 printf("As Python constant:\n"
785 ">>> MESSAGE_XYZ = uuid.UUID('" SD_ID128_FORMAT_STR
"')\n",
786 SD_ID128_FORMAT_VAL(id
));
791 static int add_matches(sd_journal
*j
, char **args
) {
793 bool have_term
= false;
797 STRV_FOREACH(i
, args
) {
800 if (streq(*i
, "+")) {
803 r
= sd_journal_add_disjunction(j
);
806 } else if (path_is_absolute(*i
)) {
807 _cleanup_free_
char *p
, *t
= NULL
, *t2
= NULL
;
809 _cleanup_free_
char *interpreter
= NULL
;
812 p
= canonicalize_file_name(*i
);
815 if (lstat(path
, &st
) < 0)
816 return log_error_errno(errno
, "Couldn't stat file: %m");
818 if (S_ISREG(st
.st_mode
) && (0111 & st
.st_mode
)) {
819 if (executable_is_script(path
, &interpreter
) > 0) {
820 _cleanup_free_
char *comm
;
822 comm
= strndup(basename(path
), 15);
826 t
= strappend("_COMM=", comm
);
828 /* Append _EXE only if the interpreter is not a link.
829 Otherwise, it might be outdated often. */
830 if (lstat(interpreter
, &st
) == 0 &&
831 !S_ISLNK(st
.st_mode
)) {
832 t2
= strappend("_EXE=", interpreter
);
837 t
= strappend("_EXE=", path
);
838 } else if (S_ISCHR(st
.st_mode
))
839 (void) asprintf(&t
, "_KERNEL_DEVICE=c%u:%u", major(st
.st_rdev
), minor(st
.st_rdev
));
840 else if (S_ISBLK(st
.st_mode
))
841 (void) asprintf(&t
, "_KERNEL_DEVICE=b%u:%u", major(st
.st_rdev
), minor(st
.st_rdev
));
843 log_error("File is neither a device node, nor regular file, nor executable: %s", *i
);
850 r
= sd_journal_add_match(j
, t
, 0);
852 r
= sd_journal_add_match(j
, t2
, 0);
856 r
= sd_journal_add_match(j
, *i
, 0);
861 return log_error_errno(r
, "Failed to add match '%s': %m", *i
);
864 if (!strv_isempty(args
) && !have_term
) {
865 log_error("\"+\" can only be used between terms");
872 static void boot_id_free_all(BootId
*l
) {
876 LIST_REMOVE(boot_list
, l
, i
);
881 static int discover_next_boot(
885 bool read_realtime
) {
888 char match
[9+32+1] = "_BOOT_ID=";
889 _cleanup_free_ BootId
*next_boot
= NULL
;
894 /* We expect the journal to be on the last position of a boot
895 * (in relation to the direction we are going), so that the next
896 * invocation of sd_journal_next/previous will be from a different
897 * boot. We then collect any information we desire and then jump
898 * to the last location of the new boot by using a _BOOT_ID match
899 * coming from the other journal direction. */
901 /* Make sure we aren't restricted by any _BOOT_ID matches, so that
902 * we can actually advance to a *different* boot. */
903 sd_journal_flush_matches(j
);
906 r
= sd_journal_previous(j
);
908 r
= sd_journal_next(j
);
912 return 0; /* End of journal, yay. */
914 next_boot
= new0(BootId
, 1);
918 r
= sd_journal_get_monotonic_usec(j
, NULL
, &next_boot
->id
);
923 r
= sd_journal_get_realtime_usec(j
, &next_boot
->first
);
928 /* Now seek to the last occurrence of this boot ID. */
929 sd_id128_to_string(next_boot
->id
, match
+ 9);
930 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
935 r
= sd_journal_seek_head(j
);
937 r
= sd_journal_seek_tail(j
);
942 r
= sd_journal_next(j
);
944 r
= sd_journal_previous(j
);
948 return -ENODATA
; /* This shouldn't happen. We just came from this very boot ID. */
951 r
= sd_journal_get_realtime_usec(j
, &next_boot
->last
);
962 static int get_boots(
965 BootId
*query_ref_boot
,
966 int ref_boot_offset
) {
970 BootId
*head
= NULL
, *tail
= NULL
;
971 const bool advance_older
= query_ref_boot
&& ref_boot_offset
<= 0;
975 /* Adjust for the asymmetry that offset 0 is
976 * the last (and current) boot, while 1 is considered the
977 * (chronological) first boot in the journal. */
978 skip_once
= query_ref_boot
&& sd_id128_is_null(query_ref_boot
->id
) && ref_boot_offset
< 0;
980 /* Advance to the earliest/latest occurrence of our reference
981 * boot ID (taking our lookup direction into account), so that
982 * discover_next_boot() can do its job.
983 * If no reference is given, the journal head/tail will do,
984 * they're "virtual" boots after all. */
985 if (query_ref_boot
&& !sd_id128_is_null(query_ref_boot
->id
)) {
986 char match
[9+32+1] = "_BOOT_ID=";
988 sd_journal_flush_matches(j
);
990 sd_id128_to_string(query_ref_boot
->id
, match
+ 9);
991 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
996 r
= sd_journal_seek_head(j
);
998 r
= sd_journal_seek_tail(j
);
1003 r
= sd_journal_next(j
);
1005 r
= sd_journal_previous(j
);
1010 else if (ref_boot_offset
== 0) {
1016 r
= sd_journal_seek_tail(j
);
1018 r
= sd_journal_seek_head(j
);
1022 /* No sd_journal_next/previous here. */
1026 _cleanup_free_ BootId
*current
= NULL
;
1028 r
= discover_next_boot(j
, ¤t
, advance_older
, !query_ref_boot
);
1030 boot_id_free_all(head
);
1037 if (query_ref_boot
) {
1039 ref_boot_offset
+= advance_older
? 1 : -1;
1042 if (ref_boot_offset
== 0) {
1044 query_ref_boot
->id
= current
->id
;
1048 LIST_INSERT_AFTER(boot_list
, head
, tail
, current
);
1059 sd_journal_flush_matches(j
);
1064 static int list_boots(sd_journal
*j
) {
1066 BootId
*id
, *all_ids
;
1070 count
= get_boots(j
, &all_ids
, NULL
, 0);
1072 return log_error_errno(count
, "Failed to determine boots: %m");
1076 pager_open_if_enabled();
1078 /* numbers are one less, but we need an extra char for the sign */
1079 w
= DECIMAL_STR_WIDTH(count
- 1) + 1;
1082 LIST_FOREACH(boot_list
, id
, all_ids
) {
1083 char a
[FORMAT_TIMESTAMP_MAX
], b
[FORMAT_TIMESTAMP_MAX
];
1085 printf("% *i " SD_ID128_FORMAT_STR
" %s—%s\n",
1087 SD_ID128_FORMAT_VAL(id
->id
),
1088 format_timestamp_maybe_utc(a
, sizeof(a
), id
->first
),
1089 format_timestamp_maybe_utc(b
, sizeof(b
), id
->last
));
1093 boot_id_free_all(all_ids
);
1098 static int add_boot(sd_journal
*j
) {
1099 char match
[9+32+1] = "_BOOT_ID=";
1101 BootId ref_boot_id
= {};
1108 if (arg_boot_offset
== 0 && sd_id128_equal(arg_boot_id
, SD_ID128_NULL
))
1109 return add_match_this_boot(j
, arg_machine
);
1111 ref_boot_id
.id
= arg_boot_id
;
1112 r
= get_boots(j
, NULL
, &ref_boot_id
, arg_boot_offset
);
1115 const char *reason
= (r
== 0) ? "No such boot ID in journal" : strerror(-r
);
1117 if (sd_id128_is_null(arg_boot_id
))
1118 log_error("Failed to look up boot %+i: %s", arg_boot_offset
, reason
);
1120 log_error("Failed to look up boot ID "SD_ID128_FORMAT_STR
"%+i: %s",
1121 SD_ID128_FORMAT_VAL(arg_boot_id
), arg_boot_offset
, reason
);
1123 return r
== 0 ? -ENODATA
: r
;
1126 sd_id128_to_string(ref_boot_id
.id
, match
+ 9);
1128 r
= sd_journal_add_match(j
, match
, sizeof(match
) - 1);
1130 return log_error_errno(r
, "Failed to add match: %m");
1132 r
= sd_journal_add_conjunction(j
);
1134 return log_error_errno(r
, "Failed to add conjunction: %m");
1139 static int add_dmesg(sd_journal
*j
) {
1146 r
= sd_journal_add_match(j
, "_TRANSPORT=kernel", strlen("_TRANSPORT=kernel"));
1148 return log_error_errno(r
, "Failed to add match: %m");
1150 r
= sd_journal_add_conjunction(j
);
1152 return log_error_errno(r
, "Failed to add conjunction: %m");
1157 static int get_possible_units(
1163 _cleanup_set_free_free_ Set
*found
;
1167 found
= set_new(&string_hash_ops
);
1171 NULSTR_FOREACH(field
, fields
) {
1175 r
= sd_journal_query_unique(j
, field
);
1179 SD_JOURNAL_FOREACH_UNIQUE(j
, data
, size
) {
1180 char **pattern
, *eq
;
1182 _cleanup_free_
char *u
= NULL
;
1184 eq
= memchr(data
, '=', size
);
1186 prefix
= eq
- (char*) data
+ 1;
1190 u
= strndup((char*) data
+ prefix
, size
- prefix
);
1194 STRV_FOREACH(pattern
, patterns
)
1195 if (fnmatch(*pattern
, u
, FNM_NOESCAPE
) == 0) {
1196 log_debug("Matched %s with pattern %s=%s", u
, field
, *pattern
);
1198 r
= set_consume(found
, u
);
1200 if (r
< 0 && r
!= -EEXIST
)
1213 /* This list is supposed to return the superset of unit names
1214 * possibly matched by rules added with add_matches_for_unit... */
1215 #define SYSTEM_UNITS \
1219 "OBJECT_SYSTEMD_UNIT\0" \
1222 /* ... and add_matches_for_user_unit */
1223 #define USER_UNITS \
1224 "_SYSTEMD_USER_UNIT\0" \
1226 "COREDUMP_USER_UNIT\0" \
1227 "OBJECT_SYSTEMD_USER_UNIT\0"
1229 static int add_units(sd_journal
*j
) {
1230 _cleanup_strv_free_
char **patterns
= NULL
;
1236 STRV_FOREACH(i
, arg_system_units
) {
1237 _cleanup_free_
char *u
= NULL
;
1239 r
= unit_name_mangle(*i
, UNIT_NAME_GLOB
, &u
);
1243 if (string_is_glob(u
)) {
1244 r
= strv_push(&patterns
, u
);
1249 r
= add_matches_for_unit(j
, u
);
1252 r
= sd_journal_add_disjunction(j
);
1259 if (!strv_isempty(patterns
)) {
1260 _cleanup_set_free_free_ Set
*units
= NULL
;
1264 r
= get_possible_units(j
, SYSTEM_UNITS
, patterns
, &units
);
1268 SET_FOREACH(u
, units
, it
) {
1269 r
= add_matches_for_unit(j
, u
);
1272 r
= sd_journal_add_disjunction(j
);
1279 patterns
= strv_free(patterns
);
1281 STRV_FOREACH(i
, arg_user_units
) {
1282 _cleanup_free_
char *u
= NULL
;
1284 r
= unit_name_mangle(*i
, UNIT_NAME_GLOB
, &u
);
1288 if (string_is_glob(u
)) {
1289 r
= strv_push(&patterns
, u
);
1294 r
= add_matches_for_user_unit(j
, u
, getuid());
1297 r
= sd_journal_add_disjunction(j
);
1304 if (!strv_isempty(patterns
)) {
1305 _cleanup_set_free_free_ Set
*units
= NULL
;
1309 r
= get_possible_units(j
, USER_UNITS
, patterns
, &units
);
1313 SET_FOREACH(u
, units
, it
) {
1314 r
= add_matches_for_user_unit(j
, u
, getuid());
1317 r
= sd_journal_add_disjunction(j
);
1324 /* Complain if the user request matches but nothing whatsoever was
1325 * found, since otherwise everything would be matched. */
1326 if (!(strv_isempty(arg_system_units
) && strv_isempty(arg_user_units
)) && count
== 0)
1329 r
= sd_journal_add_conjunction(j
);
1336 static int add_priorities(sd_journal
*j
) {
1337 char match
[] = "PRIORITY=0";
1341 if (arg_priorities
== 0xFF)
1344 for (i
= LOG_EMERG
; i
<= LOG_DEBUG
; i
++)
1345 if (arg_priorities
& (1 << i
)) {
1346 match
[sizeof(match
)-2] = '0' + i
;
1348 r
= sd_journal_add_match(j
, match
, strlen(match
));
1350 return log_error_errno(r
, "Failed to add match: %m");
1353 r
= sd_journal_add_conjunction(j
);
1355 return log_error_errno(r
, "Failed to add conjunction: %m");
1361 static int add_syslog_identifier(sd_journal
*j
) {
1367 STRV_FOREACH(i
, arg_syslog_identifier
) {
1370 u
= strjoina("SYSLOG_IDENTIFIER=", *i
);
1371 r
= sd_journal_add_match(j
, u
, 0);
1374 r
= sd_journal_add_disjunction(j
);
1379 r
= sd_journal_add_conjunction(j
);
1386 static int setup_keys(void) {
1388 size_t mpk_size
, seed_size
, state_size
, i
;
1389 uint8_t *mpk
, *seed
, *state
;
1391 sd_id128_t machine
, boot
;
1392 char *p
= NULL
, *k
= NULL
;
1397 r
= stat("/var/log/journal", &st
);
1398 if (r
< 0 && errno
!= ENOENT
&& errno
!= ENOTDIR
)
1399 return log_error_errno(errno
, "stat(\"%s\") failed: %m", "/var/log/journal");
1401 if (r
< 0 || !S_ISDIR(st
.st_mode
)) {
1402 log_error("%s is not a directory, must be using persistent logging for FSS.",
1403 "/var/log/journal");
1404 return r
< 0 ? -errno
: -ENOTDIR
;
1407 r
= sd_id128_get_machine(&machine
);
1409 return log_error_errno(r
, "Failed to get machine ID: %m");
1411 r
= sd_id128_get_boot(&boot
);
1413 return log_error_errno(r
, "Failed to get boot ID: %m");
1415 if (asprintf(&p
, "/var/log/journal/" SD_ID128_FORMAT_STR
"/fss",
1416 SD_ID128_FORMAT_VAL(machine
)) < 0)
1421 if (r
< 0 && errno
!= ENOENT
) {
1422 r
= log_error_errno(errno
, "unlink(\"%s\") failed: %m", p
);
1425 } else if (access(p
, F_OK
) >= 0) {
1426 log_error("Sealing key file %s exists already. Use --force to recreate.", p
);
1431 if (asprintf(&k
, "/var/log/journal/" SD_ID128_FORMAT_STR
"/fss.tmp.XXXXXX",
1432 SD_ID128_FORMAT_VAL(machine
)) < 0) {
1437 mpk_size
= FSPRG_mskinbytes(FSPRG_RECOMMENDED_SECPAR
);
1438 mpk
= alloca(mpk_size
);
1440 seed_size
= FSPRG_RECOMMENDED_SEEDLEN
;
1441 seed
= alloca(seed_size
);
1443 state_size
= FSPRG_stateinbytes(FSPRG_RECOMMENDED_SECPAR
);
1444 state
= alloca(state_size
);
1446 fd
= open("/dev/random", O_RDONLY
|O_CLOEXEC
|O_NOCTTY
);
1448 r
= log_error_errno(errno
, "Failed to open /dev/random: %m");
1452 log_info("Generating seed...");
1453 r
= loop_read_exact(fd
, seed
, seed_size
, true);
1455 log_error_errno(r
, "Failed to read random seed: %m");
1459 log_info("Generating key pair...");
1460 FSPRG_GenMK(NULL
, mpk
, seed
, seed_size
, FSPRG_RECOMMENDED_SECPAR
);
1462 log_info("Generating sealing key...");
1463 FSPRG_GenState0(state
, mpk
, seed
, seed_size
);
1465 assert(arg_interval
> 0);
1467 n
= now(CLOCK_REALTIME
);
1471 fd
= mkostemp_safe(k
, O_WRONLY
|O_CLOEXEC
);
1473 r
= log_error_errno(errno
, "Failed to open %s: %m", k
);
1477 /* Enable secure remove, exclusion from dump, synchronous
1478 * writing and in-place updating */
1479 r
= chattr_fd(fd
, FS_SECRM_FL
|FS_NODUMP_FL
|FS_SYNC_FL
|FS_NOCOW_FL
, FS_SECRM_FL
|FS_NODUMP_FL
|FS_SYNC_FL
|FS_NOCOW_FL
);
1481 log_warning_errno(errno
, "Failed to set file attributes: %m");
1484 memcpy(h
.signature
, "KSHHRHLP", 8);
1485 h
.machine_id
= machine
;
1487 h
.header_size
= htole64(sizeof(h
));
1488 h
.start_usec
= htole64(n
* arg_interval
);
1489 h
.interval_usec
= htole64(arg_interval
);
1490 h
.fsprg_secpar
= htole16(FSPRG_RECOMMENDED_SECPAR
);
1491 h
.fsprg_state_size
= htole64(state_size
);
1493 r
= loop_write(fd
, &h
, sizeof(h
), false);
1495 log_error_errno(r
, "Failed to write header: %m");
1499 r
= loop_write(fd
, state
, state_size
, false);
1501 log_error_errno(r
, "Failed to write state: %m");
1505 if (link(k
, p
) < 0) {
1506 r
= log_error_errno(errno
, "Failed to link file: %m");
1513 "The new key pair has been generated. The " ANSI_HIGHLIGHT
"secret sealing key" ANSI_NORMAL
" has been written to\n"
1514 "the following local file. This key file is automatically updated when the\n"
1515 "sealing key is advanced. It should not be used on multiple hosts.\n"
1519 "Please write down the following " ANSI_HIGHLIGHT
"secret verification key" ANSI_NORMAL
". It should be stored\n"
1520 "at a safe location and should not be saved locally on disk.\n"
1521 "\n\t" ANSI_HIGHLIGHT_RED
, p
);
1524 for (i
= 0; i
< seed_size
; i
++) {
1525 if (i
> 0 && i
% 3 == 0)
1527 printf("%02x", ((uint8_t*) seed
)[i
]);
1530 printf("/%llx-%llx\n", (unsigned long long) n
, (unsigned long long) arg_interval
);
1533 char tsb
[FORMAT_TIMESPAN_MAX
], *hn
;
1537 "The sealing key is automatically changed every %s.\n",
1538 format_timespan(tsb
, sizeof(tsb
), arg_interval
, 0));
1540 hn
= gethostname_malloc();
1543 hostname_cleanup(hn
);
1544 fprintf(stderr
, "\nThe keys have been generated for host %s/" SD_ID128_FORMAT_STR
".\n", hn
, SD_ID128_FORMAT_VAL(machine
));
1546 fprintf(stderr
, "\nThe keys have been generated for host " SD_ID128_FORMAT_STR
".\n", SD_ID128_FORMAT_VAL(machine
));
1548 #ifdef HAVE_QRENCODE
1549 /* If this is not an UTF-8 system don't print any QR codes */
1550 if (is_locale_utf8()) {
1551 fputs("\nTo transfer the verification key to your phone please scan the QR code below:\n\n", stderr
);
1552 print_qr_code(stderr
, seed
, seed_size
, n
, arg_interval
, hn
, machine
);
1572 log_error("Forward-secure sealing not available.");
1577 static int verify(sd_journal
*j
) {
1584 log_show_color(true);
1586 ORDERED_HASHMAP_FOREACH(f
, j
->files
, i
) {
1588 usec_t first
= 0, validated
= 0, last
= 0;
1591 if (!arg_verify_key
&& JOURNAL_HEADER_SEALED(f
->header
))
1592 log_notice("Journal file %s has sealing enabled but verification key has not been passed using --verify-key=.", f
->path
);
1595 k
= journal_file_verify(f
, arg_verify_key
, &first
, &validated
, &last
, true);
1597 /* If the key was invalid give up right-away. */
1600 log_warning_errno(k
, "FAIL: %s (%m)", f
->path
);
1603 char a
[FORMAT_TIMESTAMP_MAX
], b
[FORMAT_TIMESTAMP_MAX
], c
[FORMAT_TIMESPAN_MAX
];
1604 log_info("PASS: %s", f
->path
);
1606 if (arg_verify_key
&& JOURNAL_HEADER_SEALED(f
->header
)) {
1607 if (validated
> 0) {
1608 log_info("=> Validated from %s to %s, final %s entries not sealed.",
1609 format_timestamp_maybe_utc(a
, sizeof(a
), first
),
1610 format_timestamp_maybe_utc(b
, sizeof(b
), validated
),
1611 format_timespan(c
, sizeof(c
), last
> validated
? last
- validated
: 0, 0));
1612 } else if (last
> 0)
1613 log_info("=> No sealing yet, %s of entries not sealed.",
1614 format_timespan(c
, sizeof(c
), last
- first
, 0));
1616 log_info("=> No sealing yet, no entries in file.");
1624 static int access_check_var_log_journal(sd_journal
*j
) {
1626 _cleanup_strv_free_
char **g
= NULL
;
1636 /* If we are root, we should have access, don't warn. */
1640 /* If we are in the 'systemd-journal' group, we should have
1642 r
= in_group("systemd-journal");
1644 return log_error_errno(r
, "Failed to check if we are in the 'systemd-journal' group: %m");
1649 if (laccess("/run/log/journal", F_OK
) >= 0)
1650 dir
= "/run/log/journal";
1652 dir
= "/var/log/journal";
1654 /* If we are in any of the groups listed in the journal ACLs,
1655 * then all is good, too. Let's enumerate all groups from the
1656 * default ACL of the directory, which generally should allow
1657 * access to most journal files too. */
1658 r
= acl_search_groups(dir
, &g
);
1660 return log_error_errno(r
, "Failed to search journal ACL: %m");
1664 /* Print a pretty list, if there were ACLs set. */
1665 if (!strv_isempty(g
)) {
1666 _cleanup_free_
char *s
= NULL
;
1668 /* Thre are groups in the ACL, let's list them */
1669 r
= strv_extend(&g
, "systemd-journal");
1676 s
= strv_join(g
, "', '");
1680 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1681 " Users in groups '%s' can see all messages.\n"
1682 " Pass -q to turn off this notice.", s
);
1687 /* If no ACLs were found, print a short version of the message. */
1688 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1689 " Users in the 'systemd-journal' group can see all messages. Pass -q to\n"
1690 " turn off this notice.");
1695 static int access_check(sd_journal
*j
) {
1702 if (set_isempty(j
->errors
)) {
1703 if (ordered_hashmap_isempty(j
->files
))
1704 log_notice("No journal files were found.");
1709 if (set_contains(j
->errors
, INT_TO_PTR(-EACCES
))) {
1710 (void) access_check_var_log_journal(j
);
1712 if (ordered_hashmap_isempty(j
->files
))
1713 r
= log_error_errno(EACCES
, "No journal files were opened due to insufficient permissions.");
1716 SET_FOREACH(code
, j
->errors
, it
) {
1719 err
= -PTR_TO_INT(code
);
1725 log_warning_errno(err
, "Error was encountered while opening journal files: %m");
1733 static int flush_to_var(void) {
1734 _cleanup_bus_error_free_ sd_bus_error error
= SD_BUS_ERROR_NULL
;
1735 _cleanup_bus_flush_close_unref_ sd_bus
*bus
= NULL
;
1736 _cleanup_close_
int watch_fd
= -1;
1740 if (access("/run/systemd/journal/flushed", F_OK
) >= 0)
1743 /* OK, let's actually do the full logic, send SIGUSR1 to the
1744 * daemon and set up inotify to wait for the flushed file to appear */
1745 r
= bus_connect_system_systemd(&bus
);
1747 return log_error_errno(r
, "Failed to get D-Bus connection: %m");
1749 r
= sd_bus_call_method(
1751 "org.freedesktop.systemd1",
1752 "/org/freedesktop/systemd1",
1753 "org.freedesktop.systemd1.Manager",
1757 "ssi", "systemd-journald.service", "main", SIGUSR1
);
1759 log_error("Failed to kill journal service: %s", bus_error_message(&error
, r
));
1763 mkdir_p("/run/systemd/journal", 0755);
1765 watch_fd
= inotify_init1(IN_NONBLOCK
|IN_CLOEXEC
);
1767 return log_error_errno(errno
, "Failed to create inotify watch: %m");
1769 r
= inotify_add_watch(watch_fd
, "/run/systemd/journal", IN_CREATE
|IN_DONT_FOLLOW
|IN_ONLYDIR
);
1771 return log_error_errno(errno
, "Failed to watch journal directory: %m");
1774 if (access("/run/systemd/journal/flushed", F_OK
) >= 0)
1777 if (errno
!= ENOENT
)
1778 return log_error_errno(errno
, "Failed to check for existence of /run/systemd/journal/flushed: %m");
1780 r
= fd_wait_for_event(watch_fd
, POLLIN
, USEC_INFINITY
);
1782 return log_error_errno(r
, "Failed to wait for event: %m");
1784 r
= flush_fd(watch_fd
);
1786 return log_error_errno(r
, "Failed to flush inotify events: %m");
1792 static int rotate(void) {
1793 _cleanup_bus_error_free_ sd_bus_error error
= SD_BUS_ERROR_NULL
;
1794 _cleanup_bus_flush_close_unref_ sd_bus
*bus
= NULL
;
1797 r
= bus_connect_system_systemd(&bus
);
1799 return log_error_errno(r
, "Failed to get D-Bus connection: %m");
1801 r
= sd_bus_call_method(
1803 "org.freedesktop.systemd1",
1804 "/org/freedesktop/systemd1",
1805 "org.freedesktop.systemd1.Manager",
1809 "ssi", "systemd-journald.service", "main", SIGUSR2
);
1811 return log_error_errno(r
, "Failed to kill journal service: %s", bus_error_message(&error
, r
));
1816 int main(int argc
, char *argv
[]) {
1818 _cleanup_journal_close_ sd_journal
*j
= NULL
;
1819 bool need_seek
= false;
1820 sd_id128_t previous_boot_id
;
1821 bool previous_boot_id_valid
= false, first_line
= true;
1823 bool ellipsized
= false;
1825 setlocale(LC_ALL
, "");
1826 log_parse_environment();
1829 r
= parse_argv(argc
, argv
);
1833 signal(SIGWINCH
, columns_lines_cache_reset
);
1836 /* Increase max number of open files to 16K if we can, we
1837 * might needs this when browsing journal files, which might
1838 * be split up into many files. */
1839 setrlimit_closest(RLIMIT_NOFILE
, &RLIMIT_MAKE_CONST(16384));
1841 if (arg_action
== ACTION_NEW_ID128
) {
1842 r
= generate_new_id128();
1846 if (arg_action
== ACTION_FLUSH
) {
1851 if (arg_action
== ACTION_ROTATE
) {
1856 if (arg_action
== ACTION_SETUP_KEYS
) {
1861 if (arg_action
== ACTION_UPDATE_CATALOG
||
1862 arg_action
== ACTION_LIST_CATALOG
||
1863 arg_action
== ACTION_DUMP_CATALOG
) {
1865 _cleanup_free_
char *database
;
1867 database
= path_join(arg_root
, CATALOG_DATABASE
, NULL
);
1873 if (arg_action
== ACTION_UPDATE_CATALOG
) {
1874 r
= catalog_update(database
, arg_root
, catalog_file_dirs
);
1876 log_error_errno(r
, "Failed to list catalog: %m");
1878 bool oneline
= arg_action
== ACTION_LIST_CATALOG
;
1880 pager_open_if_enabled();
1882 r
= catalog_list_items(stdout
, database
,
1883 oneline
, argv
+ optind
);
1885 r
= catalog_list(stdout
, database
, oneline
);
1887 log_error_errno(r
, "Failed to list catalog: %m");
1894 r
= sd_journal_open_directory(&j
, arg_directory
, arg_journal_type
);
1896 r
= sd_journal_open_files(&j
, (const char**) arg_file
, 0);
1897 else if (arg_machine
)
1898 r
= sd_journal_open_container(&j
, arg_machine
, 0);
1900 r
= sd_journal_open(&j
, !arg_merge
*SD_JOURNAL_LOCAL_ONLY
+ arg_journal_type
);
1902 log_error_errno(r
, "Failed to open %s: %m",
1903 arg_directory
? arg_directory
: arg_file
? "files" : "journal");
1907 r
= access_check(j
);
1911 if (arg_action
== ACTION_VERIFY
) {
1916 if (arg_action
== ACTION_PRINT_HEADER
) {
1917 journal_print_header(j
);
1922 if (arg_action
== ACTION_DISK_USAGE
) {
1924 char sbytes
[FORMAT_BYTES_MAX
];
1926 r
= sd_journal_get_usage(j
, &bytes
);
1930 printf("Archived and active journals take up %s on disk.\n",
1931 format_bytes(sbytes
, sizeof(sbytes
), bytes
));
1935 if (arg_action
== ACTION_VACUUM
) {
1939 HASHMAP_FOREACH(d
, j
->directories_by_path
, i
) {
1945 q
= journal_directory_vacuum(d
->path
, arg_vacuum_size
, arg_vacuum_n_files
, arg_vacuum_time
, NULL
, true);
1947 log_error_errno(q
, "Failed to vacuum %s: %m", d
->path
);
1955 if (arg_action
== ACTION_LIST_BOOTS
) {
1960 /* add_boot() must be called first!
1961 * It may need to seek the journal to find parent boot IDs. */
1972 log_error_errno(r
, "Failed to add filter for units: %m");
1976 r
= add_syslog_identifier(j
);
1978 log_error_errno(r
, "Failed to add filter for syslog identifiers: %m");
1982 r
= add_priorities(j
);
1986 r
= add_matches(j
, argv
+ optind
);
1990 if (_unlikely_(log_get_max_level() >= LOG_DEBUG
)) {
1991 _cleanup_free_
char *filter
;
1993 filter
= journal_make_match_string(j
);
1997 log_debug("Journal filter: %s", filter
);
2004 r
= sd_journal_set_data_threshold(j
, 0);
2006 log_error_errno(r
, "Failed to unset data size threshold: %m");
2010 r
= sd_journal_query_unique(j
, arg_field
);
2012 log_error_errno(r
, "Failed to query unique data objects: %m");
2016 SD_JOURNAL_FOREACH_UNIQUE(j
, data
, size
) {
2019 if (arg_lines
>= 0 && n_shown
>= arg_lines
)
2022 eq
= memchr(data
, '=', size
);
2024 printf("%.*s\n", (int) (size
- ((const uint8_t*) eq
- (const uint8_t*) data
+ 1)), (const char*) eq
+ 1);
2026 printf("%.*s\n", (int) size
, (const char*) data
);
2035 /* Opening the fd now means the first sd_journal_wait() will actually wait */
2037 r
= sd_journal_get_fd(j
);
2039 log_error_errno(r
, "Failed to get journal fd: %m");
2044 if (arg_cursor
|| arg_after_cursor
) {
2045 r
= sd_journal_seek_cursor(j
, arg_cursor
?: arg_after_cursor
);
2047 log_error_errno(r
, "Failed to seek to cursor: %m");
2052 r
= sd_journal_next_skip(j
, 1 + !!arg_after_cursor
);
2054 r
= sd_journal_previous_skip(j
, 1 + !!arg_after_cursor
);
2056 if (arg_after_cursor
&& r
< 2) {
2057 /* We couldn't find the next entry after the cursor. */
2064 } else if (arg_since_set
&& !arg_reverse
) {
2065 r
= sd_journal_seek_realtime_usec(j
, arg_since
);
2067 log_error_errno(r
, "Failed to seek to date: %m");
2070 r
= sd_journal_next(j
);
2072 } else if (arg_until_set
&& arg_reverse
) {
2073 r
= sd_journal_seek_realtime_usec(j
, arg_until
);
2075 log_error_errno(r
, "Failed to seek to date: %m");
2078 r
= sd_journal_previous(j
);
2080 } else if (arg_lines
>= 0) {
2081 r
= sd_journal_seek_tail(j
);
2083 log_error_errno(r
, "Failed to seek to tail: %m");
2087 r
= sd_journal_previous_skip(j
, arg_lines
);
2089 } else if (arg_reverse
) {
2090 r
= sd_journal_seek_tail(j
);
2092 log_error_errno(r
, "Failed to seek to tail: %m");
2096 r
= sd_journal_previous(j
);
2099 r
= sd_journal_seek_head(j
);
2101 log_error_errno(r
, "Failed to seek to head: %m");
2105 r
= sd_journal_next(j
);
2109 log_error_errno(r
, "Failed to iterate through journal: %m");
2116 printf("-- No entries --\n");
2122 pager_open_if_enabled();
2126 char start_buf
[FORMAT_TIMESTAMP_MAX
], end_buf
[FORMAT_TIMESTAMP_MAX
];
2128 r
= sd_journal_get_cutoff_realtime_usec(j
, &start
, &end
);
2130 log_error_errno(r
, "Failed to get cutoff: %m");
2136 printf("-- Logs begin at %s. --\n",
2137 format_timestamp_maybe_utc(start_buf
, sizeof(start_buf
), start
));
2139 printf("-- Logs begin at %s, end at %s. --\n",
2140 format_timestamp_maybe_utc(start_buf
, sizeof(start_buf
), start
),
2141 format_timestamp_maybe_utc(end_buf
, sizeof(end_buf
), end
));
2146 while (arg_lines
< 0 || n_shown
< arg_lines
|| (arg_follow
&& !first_line
)) {
2151 r
= sd_journal_next(j
);
2153 r
= sd_journal_previous(j
);
2155 log_error_errno(r
, "Failed to iterate through journal: %m");
2162 if (arg_until_set
&& !arg_reverse
) {
2165 r
= sd_journal_get_realtime_usec(j
, &usec
);
2167 log_error_errno(r
, "Failed to determine timestamp: %m");
2170 if (usec
> arg_until
)
2174 if (arg_since_set
&& arg_reverse
) {
2177 r
= sd_journal_get_realtime_usec(j
, &usec
);
2179 log_error_errno(r
, "Failed to determine timestamp: %m");
2182 if (usec
< arg_since
)
2186 if (!arg_merge
&& !arg_quiet
) {
2189 r
= sd_journal_get_monotonic_usec(j
, NULL
, &boot_id
);
2191 if (previous_boot_id_valid
&&
2192 !sd_id128_equal(boot_id
, previous_boot_id
))
2193 printf("%s-- Reboot --%s\n",
2194 ansi_highlight(), ansi_normal());
2196 previous_boot_id
= boot_id
;
2197 previous_boot_id_valid
= true;
2202 arg_all
* OUTPUT_SHOW_ALL
|
2203 arg_full
* OUTPUT_FULL_WIDTH
|
2204 on_tty() * OUTPUT_COLOR
|
2205 arg_catalog
* OUTPUT_CATALOG
|
2206 arg_utc
* OUTPUT_UTC
;
2208 r
= output_journal(stdout
, j
, arg_output
, 0, flags
, &ellipsized
);
2210 if (r
== -EADDRNOTAVAIL
)
2212 else if (r
< 0 || ferror(stdout
))
2219 if (arg_show_cursor
) {
2220 _cleanup_free_
char *cursor
= NULL
;
2222 r
= sd_journal_get_cursor(j
, &cursor
);
2223 if (r
< 0 && r
!= -EADDRNOTAVAIL
)
2224 log_error_errno(r
, "Failed to get cursor: %m");
2226 printf("-- cursor: %s\n", cursor
);
2232 r
= sd_journal_wait(j
, (uint64_t) -1);
2234 log_error_errno(r
, "Couldn't wait for journal event: %m");
2244 strv_free(arg_file
);
2246 strv_free(arg_syslog_identifier
);
2247 strv_free(arg_system_units
);
2248 strv_free(arg_user_units
);
2250 return r
< 0 ? EXIT_FAILURE
: EXIT_SUCCESS
;