]> git.ipfire.org Git - thirdparty/systemd.git/blob - src/journal/journalctl.c
projects / thirdparty / systemd.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge pull request #1324 from pugs/master
[thirdparty/systemd.git] / src / journal / journalctl.c
1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
2
3 /***
4 This file is part of systemd.
5
6 Copyright 2011 Lennart Poettering
7
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
12
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
17
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
20 ***/
21
22 #include <locale.h>
23 #include <fcntl.h>
24 #include <fnmatch.h>
25 #include <errno.h>
26 #include <stddef.h>
27 #include <string.h>
28 #include <stdio.h>
29 #include <unistd.h>
30 #include <stdlib.h>
31 #include <getopt.h>
32 #include <signal.h>
33 #include <poll.h>
34 #include <sys/stat.h>
35 #include <sys/inotify.h>
36 #include <linux/fs.h>
37
38 #include "sd-journal.h"
39 #include "sd-bus.h"
40 #include "log.h"
41 #include "logs-show.h"
42 #include "util.h"
43 #include "acl-util.h"
44 #include "path-util.h"
45 #include "fileio.h"
46 #include "build.h"
47 #include "pager.h"
48 #include "strv.h"
49 #include "set.h"
50 #include "sigbus.h"
51 #include "journal-internal.h"
52 #include "journal-def.h"
53 #include "journal-verify.h"
54 #include "journal-qrcode.h"
55 #include "journal-vacuum.h"
56 #include "fsprg.h"
57 #include "unit-name.h"
58 #include "catalog.h"
59 #include "mkdir.h"
60 #include "bus-util.h"
61 #include "bus-error.h"
62 #include "terminal-util.h"
63 #include "hostname-util.h"
64
65 #define DEFAULT_FSS_INTERVAL_USEC (15*USEC_PER_MINUTE)
66
67 enum {
68 /* Special values for arg_lines */
69 ARG_LINES_DEFAULT = -2,
70 ARG_LINES_ALL = -1,
71 };
72
73 static OutputMode arg_output = OUTPUT_SHORT;
74 static bool arg_utc = false;
75 static bool arg_pager_end = false;
76 static bool arg_follow = false;
77 static bool arg_full = true;
78 static bool arg_all = false;
79 static bool arg_no_pager = false;
80 static int arg_lines = ARG_LINES_DEFAULT;
81 static bool arg_no_tail = false;
82 static bool arg_quiet = false;
83 static bool arg_merge = false;
84 static bool arg_boot = false;
85 static sd_id128_t arg_boot_id = {};
86 static int arg_boot_offset = 0;
87 static bool arg_dmesg = false;
88 static const char *arg_cursor = NULL;
89 static const char *arg_after_cursor = NULL;
90 static bool arg_show_cursor = false;
91 static const char *arg_directory = NULL;
92 static char **arg_file = NULL;
93 static int arg_priorities = 0xFF;
94 static const char *arg_verify_key = NULL;
95 #ifdef HAVE_GCRYPT
96 static usec_t arg_interval = DEFAULT_FSS_INTERVAL_USEC;
97 static bool arg_force = false;
98 #endif
99 static usec_t arg_since, arg_until;
100 static bool arg_since_set = false, arg_until_set = false;
101 static char **arg_syslog_identifier = NULL;
102 static char **arg_system_units = NULL;
103 static char **arg_user_units = NULL;
104 static const char *arg_field = NULL;
105 static bool arg_catalog = false;
106 static bool arg_reverse = false;
107 static int arg_journal_type = 0;
108 static const char *arg_root = NULL;
109 static const char *arg_machine = NULL;
110 static uint64_t arg_vacuum_size = (uint64_t) -1;
111 static usec_t arg_vacuum_time = USEC_INFINITY;
112
113 static enum {
114 ACTION_SHOW,
115 ACTION_NEW_ID128,
116 ACTION_PRINT_HEADER,
117 ACTION_SETUP_KEYS,
118 ACTION_VERIFY,
119 ACTION_DISK_USAGE,
120 ACTION_LIST_CATALOG,
121 ACTION_DUMP_CATALOG,
122 ACTION_UPDATE_CATALOG,
123 ACTION_LIST_BOOTS,
124 ACTION_FLUSH,
125 ACTION_VACUUM,
126 } arg_action = ACTION_SHOW;
127
128 typedef struct BootId {
129 sd_id128_t id;
130 uint64_t first;
131 uint64_t last;
132 LIST_FIELDS(struct BootId, boot_list);
133 } BootId;
134
135 static void pager_open_if_enabled(void) {
136
137 if (arg_no_pager)
138 return;
139
140 pager_open(arg_pager_end);
141 }
142
143 static char *format_timestamp_maybe_utc(char *buf, size_t l, usec_t t) {
144
145 if (arg_utc)
146 return format_timestamp_utc(buf, l, t);
147
148 return format_timestamp(buf, l, t);
149 }
150
151 static int parse_boot_descriptor(const char *x, sd_id128_t *boot_id, int *offset) {
152 sd_id128_t id = SD_ID128_NULL;
153 int off = 0, r;
154
155 if (strlen(x) >= 32) {
156 char *t;
157
158 t = strndupa(x, 32);
159 r = sd_id128_from_string(t, &id);
160 if (r >= 0)
161 x += 32;
162
163 if (*x != '-' && *x != '+' && *x != 0)
164 return -EINVAL;
165
166 if (*x != 0) {
167 r = safe_atoi(x, &off);
168 if (r < 0)
169 return r;
170 }
171 } else {
172 r = safe_atoi(x, &off);
173 if (r < 0)
174 return r;
175 }
176
177 if (boot_id)
178 *boot_id = id;
179
180 if (offset)
181 *offset = off;
182
183 return 0;
184 }
185
186 static void help(void) {
187
188 pager_open_if_enabled();
189
190 printf("%s [OPTIONS...] [MATCHES...]\n\n"
191 "Query the journal.\n\n"
192 "Flags:\n"
193 " --system Show the system journal\n"
194 " --user Show the user journal for the current user\n"
195 " -M --machine=CONTAINER Operate on local container\n"
196 " --since=DATE Show entries not older than the specified date\n"
197 " --until=DATE Show entries not newer than the specified date\n"
198 " -c --cursor=CURSOR Show entries starting at the specified cursor\n"
199 " --after-cursor=CURSOR Show entries after the specified cursor\n"
200 " --show-cursor Print the cursor after all the entries\n"
201 " -b --boot[=ID] Show current boot or the specified boot\n"
202 " --list-boots Show terse information about recorded boots\n"
203 " -k --dmesg Show kernel message log from the current boot\n"
204 " -u --unit=UNIT Show logs from the specified unit\n"
205 " --user-unit=UNIT Show logs from the specified user unit\n"
206 " -t --identifier=STRING Show entries with the specified syslog identifier\n"
207 " -p --priority=RANGE Show entries with the specified priority\n"
208 " -e --pager-end Immediately jump to the end in the pager\n"
209 " -f --follow Follow the journal\n"
210 " -n --lines[=INTEGER] Number of journal entries to show\n"
211 " --no-tail Show all lines, even in follow mode\n"
212 " -r --reverse Show the newest entries first\n"
213 " -o --output=STRING Change journal output mode (short, short-iso,\n"
214 " short-precise, short-monotonic, verbose,\n"
215 " export, json, json-pretty, json-sse, cat)\n"
216 " --utc Express time in Coordinated Universal Time (UTC)\n"
217 " -x --catalog Add message explanations where available\n"
218 " --no-full Ellipsize fields\n"
219 " -a --all Show all fields, including long and unprintable\n"
220 " -q --quiet Do not show privilege warning\n"
221 " --no-pager Do not pipe output into a pager\n"
222 " -m --merge Show entries from all available journals\n"
223 " -D --directory=PATH Show journal files from directory\n"
224 " --file=PATH Show journal file\n"
225 " --root=ROOT Operate on catalog files underneath the root ROOT\n"
226 #ifdef HAVE_GCRYPT
227 " --interval=TIME Time interval for changing the FSS sealing key\n"
228 " --verify-key=KEY Specify FSS verification key\n"
229 " --force Override of the FSS key pair with --setup-keys\n"
230 #endif
231 "\nCommands:\n"
232 " -h --help Show this help text\n"
233 " --version Show package version\n"
234 " -F --field=FIELD List all values that a specified field takes\n"
235 " --new-id128 Generate a new 128-bit ID\n"
236 " --disk-usage Show total disk usage of all journal files\n"
237 " --vacuum-size=BYTES Reduce disk usage below specified size\n"
238 " --vacuum-time=TIME Remove journal files older than specified date\n"
239 " --flush Flush all journal data from /run into /var\n"
240 " --header Show journal header information\n"
241 " --list-catalog Show all message IDs in the catalog\n"
242 " --dump-catalog Show entries in the message catalog\n"
243 " --update-catalog Update the message catalog database\n"
244 #ifdef HAVE_GCRYPT
245 " --setup-keys Generate a new FSS key pair\n"
246 " --verify Verify journal file consistency\n"
247 #endif
248 , program_invocation_short_name);
249 }
250
251 static int parse_argv(int argc, char *argv[]) {
252
253 enum {
254 ARG_VERSION = 0x100,
255 ARG_NO_PAGER,
256 ARG_NO_FULL,
257 ARG_NO_TAIL,
258 ARG_NEW_ID128,
259 ARG_LIST_BOOTS,
260 ARG_USER,
261 ARG_SYSTEM,
262 ARG_ROOT,
263 ARG_HEADER,
264 ARG_SETUP_KEYS,
265 ARG_FILE,
266 ARG_INTERVAL,
267 ARG_VERIFY,
268 ARG_VERIFY_KEY,
269 ARG_DISK_USAGE,
270 ARG_SINCE,
271 ARG_UNTIL,
272 ARG_AFTER_CURSOR,
273 ARG_SHOW_CURSOR,
274 ARG_USER_UNIT,
275 ARG_LIST_CATALOG,
276 ARG_DUMP_CATALOG,
277 ARG_UPDATE_CATALOG,
278 ARG_FORCE,
279 ARG_UTC,
280 ARG_FLUSH,
281 ARG_VACUUM_SIZE,
282 ARG_VACUUM_TIME,
283 };
284
285 static const struct option options[] = {
286 { "help", no_argument, NULL, 'h' },
287 { "version" , no_argument, NULL, ARG_VERSION },
288 { "no-pager", no_argument, NULL, ARG_NO_PAGER },
289 { "pager-end", no_argument, NULL, 'e' },
290 { "follow", no_argument, NULL, 'f' },
291 { "force", no_argument, NULL, ARG_FORCE },
292 { "output", required_argument, NULL, 'o' },
293 { "all", no_argument, NULL, 'a' },
294 { "full", no_argument, NULL, 'l' },
295 { "no-full", no_argument, NULL, ARG_NO_FULL },
296 { "lines", optional_argument, NULL, 'n' },
297 { "no-tail", no_argument, NULL, ARG_NO_TAIL },
298 { "new-id128", no_argument, NULL, ARG_NEW_ID128 },
299 { "quiet", no_argument, NULL, 'q' },
300 { "merge", no_argument, NULL, 'm' },
301 { "boot", optional_argument, NULL, 'b' },
302 { "list-boots", no_argument, NULL, ARG_LIST_BOOTS },
303 { "this-boot", optional_argument, NULL, 'b' }, /* deprecated */
304 { "dmesg", no_argument, NULL, 'k' },
305 { "system", no_argument, NULL, ARG_SYSTEM },
306 { "user", no_argument, NULL, ARG_USER },
307 { "directory", required_argument, NULL, 'D' },
308 { "file", required_argument, NULL, ARG_FILE },
309 { "root", required_argument, NULL, ARG_ROOT },
310 { "header", no_argument, NULL, ARG_HEADER },
311 { "identifier", required_argument, NULL, 't' },
312 { "priority", required_argument, NULL, 'p' },
313 { "setup-keys", no_argument, NULL, ARG_SETUP_KEYS },
314 { "interval", required_argument, NULL, ARG_INTERVAL },
315 { "verify", no_argument, NULL, ARG_VERIFY },
316 { "verify-key", required_argument, NULL, ARG_VERIFY_KEY },
317 { "disk-usage", no_argument, NULL, ARG_DISK_USAGE },
318 { "cursor", required_argument, NULL, 'c' },
319 { "after-cursor", required_argument, NULL, ARG_AFTER_CURSOR },
320 { "show-cursor", no_argument, NULL, ARG_SHOW_CURSOR },
321 { "since", required_argument, NULL, ARG_SINCE },
322 { "until", required_argument, NULL, ARG_UNTIL },
323 { "unit", required_argument, NULL, 'u' },
324 { "user-unit", required_argument, NULL, ARG_USER_UNIT },
325 { "field", required_argument, NULL, 'F' },
326 { "catalog", no_argument, NULL, 'x' },
327 { "list-catalog", no_argument, NULL, ARG_LIST_CATALOG },
328 { "dump-catalog", no_argument, NULL, ARG_DUMP_CATALOG },
329 { "update-catalog", no_argument, NULL, ARG_UPDATE_CATALOG },
330 { "reverse", no_argument, NULL, 'r' },
331 { "machine", required_argument, NULL, 'M' },
332 { "utc", no_argument, NULL, ARG_UTC },
333 { "flush", no_argument, NULL, ARG_FLUSH },
334 { "vacuum-size", required_argument, NULL, ARG_VACUUM_SIZE },
335 { "vacuum-time", required_argument, NULL, ARG_VACUUM_TIME },
336 {}
337 };
338
339 int c, r;
340
341 assert(argc >= 0);
342 assert(argv);
343
344 while ((c = getopt_long(argc, argv, "hefo:aln::qmb::kD:p:c:t:u:F:xrM:", options, NULL)) >= 0)
345
346 switch (c) {
347
348 case 'h':
349 help();
350 return 0;
351
352 case ARG_VERSION:
353 puts(PACKAGE_STRING);
354 puts(SYSTEMD_FEATURES);
355 return 0;
356
357 case ARG_NO_PAGER:
358 arg_no_pager = true;
359 break;
360
361 case 'e':
362 arg_pager_end = true;
363
364 if (arg_lines == ARG_LINES_DEFAULT)
365 arg_lines = 1000;
366
367 break;
368
369 case 'f':
370 arg_follow = true;
371 break;
372
373 case 'o':
374 arg_output = output_mode_from_string(optarg);
375 if (arg_output < 0) {
376 log_error("Unknown output format '%s'.", optarg);
377 return -EINVAL;
378 }
379
380 if (arg_output == OUTPUT_EXPORT ||
381 arg_output == OUTPUT_JSON ||
382 arg_output == OUTPUT_JSON_PRETTY ||
383 arg_output == OUTPUT_JSON_SSE ||
384 arg_output == OUTPUT_CAT)
385 arg_quiet = true;
386
387 break;
388
389 case 'l':
390 arg_full = true;
391 break;
392
393 case ARG_NO_FULL:
394 arg_full = false;
395 break;
396
397 case 'a':
398 arg_all = true;
399 break;
400
401 case 'n':
402 if (optarg) {
403 if (streq(optarg, "all"))
404 arg_lines = ARG_LINES_ALL;
405 else {
406 r = safe_atoi(optarg, &arg_lines);
407 if (r < 0 || arg_lines < 0) {
408 log_error("Failed to parse lines '%s'", optarg);
409 return -EINVAL;
410 }
411 }
412 } else {
413 arg_lines = 10;
414
415 /* Hmm, no argument? Maybe the next
416 * word on the command line is
417 * supposed to be the argument? Let's
418 * see if there is one, and is
419 * parsable. */
420 if (optind < argc) {
421 int n;
422 if (streq(argv[optind], "all")) {
423 arg_lines = ARG_LINES_ALL;
424 optind++;
425 } else if (safe_atoi(argv[optind], &n) >= 0 && n >= 0) {
426 arg_lines = n;
427 optind++;
428 }
429 }
430 }
431
432 break;
433
434 case ARG_NO_TAIL:
435 arg_no_tail = true;
436 break;
437
438 case ARG_NEW_ID128:
439 arg_action = ACTION_NEW_ID128;
440 break;
441
442 case 'q':
443 arg_quiet = true;
444 break;
445
446 case 'm':
447 arg_merge = true;
448 break;
449
450 case 'b':
451 arg_boot = true;
452
453 if (optarg) {
454 r = parse_boot_descriptor(optarg, &arg_boot_id, &arg_boot_offset);
455 if (r < 0) {
456 log_error("Failed to parse boot descriptor '%s'", optarg);
457 return -EINVAL;
458 }
459 } else {
460
461 /* Hmm, no argument? Maybe the next
462 * word on the command line is
463 * supposed to be the argument? Let's
464 * see if there is one and is parsable
465 * as a boot descriptor... */
466
467 if (optind < argc &&
468 parse_boot_descriptor(argv[optind], &arg_boot_id, &arg_boot_offset) >= 0)
469 optind++;
470 }
471
472 break;
473
474 case ARG_LIST_BOOTS:
475 arg_action = ACTION_LIST_BOOTS;
476 break;
477
478 case 'k':
479 arg_boot = arg_dmesg = true;
480 break;
481
482 case ARG_SYSTEM:
483 arg_journal_type |= SD_JOURNAL_SYSTEM;
484 break;
485
486 case ARG_USER:
487 arg_journal_type |= SD_JOURNAL_CURRENT_USER;
488 break;
489
490 case 'M':
491 arg_machine = optarg;
492 break;
493
494 case 'D':
495 arg_directory = optarg;
496 break;
497
498 case ARG_FILE:
499 r = glob_extend(&arg_file, optarg);
500 if (r < 0)
501 return log_error_errno(r, "Failed to add paths: %m");
502 break;
503
504 case ARG_ROOT:
505 arg_root = optarg;
506 break;
507
508 case 'c':
509 arg_cursor = optarg;
510 break;
511
512 case ARG_AFTER_CURSOR:
513 arg_after_cursor = optarg;
514 break;
515
516 case ARG_SHOW_CURSOR:
517 arg_show_cursor = true;
518 break;
519
520 case ARG_HEADER:
521 arg_action = ACTION_PRINT_HEADER;
522 break;
523
524 case ARG_VERIFY:
525 arg_action = ACTION_VERIFY;
526 break;
527
528 case ARG_DISK_USAGE:
529 arg_action = ACTION_DISK_USAGE;
530 break;
531
532 case ARG_VACUUM_SIZE:
533 r = parse_size(optarg, 1024, &arg_vacuum_size);
534 if (r < 0) {
535 log_error("Failed to parse vacuum size: %s", optarg);
536 return r;
537 }
538
539 arg_action = ACTION_VACUUM;
540 break;
541
542 case ARG_VACUUM_TIME:
543 r = parse_sec(optarg, &arg_vacuum_time);
544 if (r < 0) {
545 log_error("Failed to parse vacuum time: %s", optarg);
546 return r;
547 }
548
549 arg_action = ACTION_VACUUM;
550 break;
551
552 #ifdef HAVE_GCRYPT
553 case ARG_FORCE:
554 arg_force = true;
555 break;
556
557 case ARG_SETUP_KEYS:
558 arg_action = ACTION_SETUP_KEYS;
559 break;
560
561
562 case ARG_VERIFY_KEY:
563 arg_action = ACTION_VERIFY;
564 arg_verify_key = optarg;
565 arg_merge = false;
566 break;
567
568 case ARG_INTERVAL:
569 r = parse_sec(optarg, &arg_interval);
570 if (r < 0 || arg_interval <= 0) {
571 log_error("Failed to parse sealing key change interval: %s", optarg);
572 return -EINVAL;
573 }
574 break;
575 #else
576 case ARG_SETUP_KEYS:
577 case ARG_VERIFY_KEY:
578 case ARG_INTERVAL:
579 case ARG_FORCE:
580 log_error("Forward-secure sealing not available.");
581 return -EOPNOTSUPP;
582 #endif
583
584 case 'p': {
585 const char *dots;
586
587 dots = strstr(optarg, "..");
588 if (dots) {
589 char *a;
590 int from, to, i;
591
592 /* a range */
593 a = strndup(optarg, dots - optarg);
594 if (!a)
595 return log_oom();
596
597 from = log_level_from_string(a);
598 to = log_level_from_string(dots + 2);
599 free(a);
600
601 if (from < 0 || to < 0) {
602 log_error("Failed to parse log level range %s", optarg);
603 return -EINVAL;
604 }
605
606 arg_priorities = 0;
607
608 if (from < to) {
609 for (i = from; i <= to; i++)
610 arg_priorities |= 1 << i;
611 } else {
612 for (i = to; i <= from; i++)
613 arg_priorities |= 1 << i;
614 }
615
616 } else {
617 int p, i;
618
619 p = log_level_from_string(optarg);
620 if (p < 0) {
621 log_error("Unknown log level %s", optarg);
622 return -EINVAL;
623 }
624
625 arg_priorities = 0;
626
627 for (i = 0; i <= p; i++)
628 arg_priorities |= 1 << i;
629 }
630
631 break;
632 }
633
634 case ARG_SINCE:
635 r = parse_timestamp(optarg, &arg_since);
636 if (r < 0) {
637 log_error("Failed to parse timestamp: %s", optarg);
638 return -EINVAL;
639 }
640 arg_since_set = true;
641 break;
642
643 case ARG_UNTIL:
644 r = parse_timestamp(optarg, &arg_until);
645 if (r < 0) {
646 log_error("Failed to parse timestamp: %s", optarg);
647 return -EINVAL;
648 }
649 arg_until_set = true;
650 break;
651
652 case 't':
653 r = strv_extend(&arg_syslog_identifier, optarg);
654 if (r < 0)
655 return log_oom();
656 break;
657
658 case 'u':
659 r = strv_extend(&arg_system_units, optarg);
660 if (r < 0)
661 return log_oom();
662 break;
663
664 case ARG_USER_UNIT:
665 r = strv_extend(&arg_user_units, optarg);
666 if (r < 0)
667 return log_oom();
668 break;
669
670 case 'F':
671 arg_field = optarg;
672 break;
673
674 case 'x':
675 arg_catalog = true;
676 break;
677
678 case ARG_LIST_CATALOG:
679 arg_action = ACTION_LIST_CATALOG;
680 break;
681
682 case ARG_DUMP_CATALOG:
683 arg_action = ACTION_DUMP_CATALOG;
684 break;
685
686 case ARG_UPDATE_CATALOG:
687 arg_action = ACTION_UPDATE_CATALOG;
688 break;
689
690 case 'r':
691 arg_reverse = true;
692 break;
693
694 case ARG_UTC:
695 arg_utc = true;
696 break;
697
698 case ARG_FLUSH:
699 arg_action = ACTION_FLUSH;
700 break;
701
702 case '?':
703 return -EINVAL;
704
705 default:
706 assert_not_reached("Unhandled option");
707 }
708
709 if (arg_follow && !arg_no_tail && !arg_since && arg_lines == ARG_LINES_DEFAULT)
710 arg_lines = 10;
711
712 if (!!arg_directory + !!arg_file + !!arg_machine > 1) {
713 log_error("Please specify either -D/--directory= or --file= or -M/--machine=, not more than one.");
714 return -EINVAL;
715 }
716
717 if (arg_since_set && arg_until_set && arg_since > arg_until) {
718 log_error("--since= must be before --until=.");
719 return -EINVAL;
720 }
721
722 if (!!arg_cursor + !!arg_after_cursor + !!arg_since_set > 1) {
723 log_error("Please specify only one of --since=, --cursor=, and --after-cursor.");
724 return -EINVAL;
725 }
726
727 if (arg_follow && arg_reverse) {
728 log_error("Please specify either --reverse= or --follow=, not both.");
729 return -EINVAL;
730 }
731
732 if (arg_action != ACTION_SHOW && optind < argc) {
733 log_error("Extraneous arguments starting with '%s'", argv[optind]);
734 return -EINVAL;
735 }
736
737 if ((arg_boot || arg_action == ACTION_LIST_BOOTS) && (arg_file || arg_directory || arg_merge)) {
738 log_error("Using --boot or --list-boots with --file, --directory or --merge is not supported.");
739 return -EINVAL;
740 }
741
742 return 1;
743 }
744
745 static int generate_new_id128(void) {
746 sd_id128_t id;
747 int r;
748 unsigned i;
749
750 r = sd_id128_randomize(&id);
751 if (r < 0)
752 return log_error_errno(r, "Failed to generate ID: %m");
753
754 printf("As string:\n"
755 SD_ID128_FORMAT_STR "\n\n"
756 "As UUID:\n"
757 "%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x\n\n"
758 "As macro:\n"
759 "#define MESSAGE_XYZ SD_ID128_MAKE(",
760 SD_ID128_FORMAT_VAL(id),
761 SD_ID128_FORMAT_VAL(id));
762 for (i = 0; i < 16; i++)
763 printf("%02x%s", id.bytes[i], i != 15 ? "," : "");
764 fputs(")\n\n", stdout);
765
766 printf("As Python constant:\n"
767 ">>> import uuid\n"
768 ">>> MESSAGE_XYZ = uuid.UUID('" SD_ID128_FORMAT_STR "')\n",
769 SD_ID128_FORMAT_VAL(id));
770
771 return 0;
772 }
773
774 static int add_matches(sd_journal *j, char **args) {
775 char **i;
776 bool have_term = false;
777
778 assert(j);
779
780 STRV_FOREACH(i, args) {
781 int r;
782
783 if (streq(*i, "+")) {
784 if (!have_term)
785 break;
786 r = sd_journal_add_disjunction(j);
787 have_term = false;
788
789 } else if (path_is_absolute(*i)) {
790 _cleanup_free_ char *p, *t = NULL, *t2 = NULL;
791 const char *path;
792 _cleanup_free_ char *interpreter = NULL;
793 struct stat st;
794
795 p = canonicalize_file_name(*i);
796 path = p ? p : *i;
797
798 if (lstat(path, &st) < 0)
799 return log_error_errno(errno, "Couldn't stat file: %m");
800
801 if (S_ISREG(st.st_mode) && (0111 & st.st_mode)) {
802 if (executable_is_script(path, &interpreter) > 0) {
803 _cleanup_free_ char *comm;
804
805 comm = strndup(basename(path), 15);
806 if (!comm)
807 return log_oom();
808
809 t = strappend("_COMM=", comm);
810
811 /* Append _EXE only if the interpreter is not a link.
812 Otherwise, it might be outdated often. */
813 if (lstat(interpreter, &st) == 0 &&
814 !S_ISLNK(st.st_mode)) {
815 t2 = strappend("_EXE=", interpreter);
816 if (!t2)
817 return log_oom();
818 }
819 } else
820 t = strappend("_EXE=", path);
821 } else if (S_ISCHR(st.st_mode))
822 (void) asprintf(&t, "_KERNEL_DEVICE=c%u:%u", major(st.st_rdev), minor(st.st_rdev));
823 else if (S_ISBLK(st.st_mode))
824 (void) asprintf(&t, "_KERNEL_DEVICE=b%u:%u", major(st.st_rdev), minor(st.st_rdev));
825 else {
826 log_error("File is neither a device node, nor regular file, nor executable: %s", *i);
827 return -EINVAL;
828 }
829
830 if (!t)
831 return log_oom();
832
833 r = sd_journal_add_match(j, t, 0);
834 if (t2)
835 r = sd_journal_add_match(j, t2, 0);
836 have_term = true;
837
838 } else {
839 r = sd_journal_add_match(j, *i, 0);
840 have_term = true;
841 }
842
843 if (r < 0)
844 return log_error_errno(r, "Failed to add match '%s': %m", *i);
845 }
846
847 if (!strv_isempty(args) && !have_term) {
848 log_error("\"+\" can only be used between terms");
849 return -EINVAL;
850 }
851
852 return 0;
853 }
854
855 static void boot_id_free_all(BootId *l) {
856
857 while (l) {
858 BootId *i = l;
859 LIST_REMOVE(boot_list, l, i);
860 free(i);
861 }
862 }
863
864 static int discover_next_boot(
865 sd_journal *j,
866 BootId **boot,
867 bool advance_older,
868 bool read_realtime) {
869
870 int r;
871 char match[9+32+1] = "_BOOT_ID=";
872 _cleanup_free_ BootId *next_boot = NULL;
873
874 assert(j);
875 assert(boot);
876
877 /* We expect the journal to be on the last position of a boot
878 * (in relation to the direction we are going), so that the next
879 * invocation of sd_journal_next/previous will be from a different
880 * boot. We then collect any information we desire and then jump
881 * to the last location of the new boot by using a _BOOT_ID match
882 * coming from the other journal direction. */
883
884 /* Make sure we aren't restricted by any _BOOT_ID matches, so that
885 * we can actually advance to a *different* boot. */
886 sd_journal_flush_matches(j);
887
888 if (advance_older)
889 r = sd_journal_previous(j);
890 else
891 r = sd_journal_next(j);
892 if (r < 0)
893 return r;
894 else if (r == 0)
895 return 0; /* End of journal, yay. */
896
897 next_boot = new0(BootId, 1);
898 if (!next_boot)
899 return -ENOMEM;
900
901 r = sd_journal_get_monotonic_usec(j, NULL, &next_boot->id);
902 if (r < 0)
903 return r;
904
905 if (read_realtime) {
906 r = sd_journal_get_realtime_usec(j, &next_boot->first);
907 if (r < 0)
908 return r;
909 }
910
911 /* Now seek to the last occurrence of this boot ID. */
912 sd_id128_to_string(next_boot->id, match + 9);
913 r = sd_journal_add_match(j, match, sizeof(match) - 1);
914 if (r < 0)
915 return r;
916
917 if (advance_older)
918 r = sd_journal_seek_head(j);
919 else
920 r = sd_journal_seek_tail(j);
921 if (r < 0)
922 return r;
923
924 if (advance_older)
925 r = sd_journal_next(j);
926 else
927 r = sd_journal_previous(j);
928 if (r < 0)
929 return r;
930 else if (r == 0)
931 return -ENODATA; /* This shouldn't happen. We just came from this very boot ID. */
932
933 if (read_realtime) {
934 r = sd_journal_get_realtime_usec(j, &next_boot->last);
935 if (r < 0)
936 return r;
937 }
938
939 *boot = next_boot;
940 next_boot = NULL;
941
942 return 0;
943 }
944
945 static int get_boots(
946 sd_journal *j,
947 BootId **boots,
948 BootId *query_ref_boot,
949 int ref_boot_offset) {
950
951 bool skip_once;
952 int r, count = 0;
953 BootId *head = NULL, *tail = NULL;
954 const bool advance_older = query_ref_boot && ref_boot_offset <= 0;
955
956 assert(j);
957
958 /* Adjust for the asymmetry that offset 0 is
959 * the last (and current) boot, while 1 is considered the
960 * (chronological) first boot in the journal. */
961 skip_once = query_ref_boot && sd_id128_is_null(query_ref_boot->id) && ref_boot_offset < 0;
962
963 /* Advance to the earliest/latest occurrence of our reference
964 * boot ID (taking our lookup direction into account), so that
965 * discover_next_boot() can do its job.
966 * If no reference is given, the journal head/tail will do,
967 * they're "virtual" boots after all. */
968 if (query_ref_boot && !sd_id128_is_null(query_ref_boot->id)) {
969 char match[9+32+1] = "_BOOT_ID=";
970
971 sd_journal_flush_matches(j);
972
973 sd_id128_to_string(query_ref_boot->id, match + 9);
974 r = sd_journal_add_match(j, match, sizeof(match) - 1);
975 if (r < 0)
976 return r;
977
978 if (advance_older)
979 r = sd_journal_seek_head(j);
980 else
981 r = sd_journal_seek_tail(j);
982 if (r < 0)
983 return r;
984
985 if (advance_older)
986 r = sd_journal_next(j);
987 else
988 r = sd_journal_previous(j);
989 if (r < 0)
990 return r;
991 else if (r == 0)
992 goto finish;
993 else if (ref_boot_offset == 0) {
994 count = 1;
995 goto finish;
996 }
997 } else {
998 if (advance_older)
999 r = sd_journal_seek_tail(j);
1000 else
1001 r = sd_journal_seek_head(j);
1002 if (r < 0)
1003 return r;
1004
1005 /* No sd_journal_next/previous here. */
1006 }
1007
1008 for (;;) {
1009 _cleanup_free_ BootId *current = NULL;
1010
1011 r = discover_next_boot(j, &current, advance_older, !query_ref_boot);
1012 if (r < 0) {
1013 boot_id_free_all(head);
1014 return r;
1015 }
1016
1017 if (!current)
1018 break;
1019
1020 if (query_ref_boot) {
1021 if (!skip_once)
1022 ref_boot_offset += advance_older ? 1 : -1;
1023 skip_once = false;
1024
1025 if (ref_boot_offset == 0) {
1026 count = 1;
1027 query_ref_boot->id = current->id;
1028 break;
1029 }
1030 } else {
1031 LIST_INSERT_AFTER(boot_list, head, tail, current);
1032 tail = current;
1033 current = NULL;
1034 count++;
1035 }
1036 }
1037
1038 finish:
1039 if (boots)
1040 *boots = head;
1041
1042 sd_journal_flush_matches(j);
1043
1044 return count;
1045 }
1046
1047 static int list_boots(sd_journal *j) {
1048 int w, i, count;
1049 BootId *id, *all_ids;
1050
1051 assert(j);
1052
1053 count = get_boots(j, &all_ids, NULL, 0);
1054 if (count < 0)
1055 return log_error_errno(count, "Failed to determine boots: %m");
1056 if (count == 0)
1057 return count;
1058
1059 pager_open_if_enabled();
1060
1061 /* numbers are one less, but we need an extra char for the sign */
1062 w = DECIMAL_STR_WIDTH(count - 1) + 1;
1063
1064 i = 0;
1065 LIST_FOREACH(boot_list, id, all_ids) {
1066 char a[FORMAT_TIMESTAMP_MAX], b[FORMAT_TIMESTAMP_MAX];
1067
1068 printf("% *i " SD_ID128_FORMAT_STR " %s—%s\n",
1069 w, i - count + 1,
1070 SD_ID128_FORMAT_VAL(id->id),
1071 format_timestamp_maybe_utc(a, sizeof(a), id->first),
1072 format_timestamp_maybe_utc(b, sizeof(b), id->last));
1073 i++;
1074 }
1075
1076 boot_id_free_all(all_ids);
1077
1078 return 0;
1079 }
1080
1081 static int add_boot(sd_journal *j) {
1082 char match[9+32+1] = "_BOOT_ID=";
1083 int r;
1084 BootId ref_boot_id = {};
1085
1086 assert(j);
1087
1088 if (!arg_boot)
1089 return 0;
1090
1091 if (arg_boot_offset == 0 && sd_id128_equal(arg_boot_id, SD_ID128_NULL))
1092 return add_match_this_boot(j, arg_machine);
1093
1094 ref_boot_id.id = arg_boot_id;
1095 r = get_boots(j, NULL, &ref_boot_id, arg_boot_offset);
1096 assert(r <= 1);
1097 if (r <= 0) {
1098 const char *reason = (r == 0) ? "No such boot ID in journal" : strerror(-r);
1099
1100 if (sd_id128_is_null(arg_boot_id))
1101 log_error("Failed to look up boot %+i: %s", arg_boot_offset, reason);
1102 else
1103 log_error("Failed to look up boot ID "SD_ID128_FORMAT_STR"%+i: %s",
1104 SD_ID128_FORMAT_VAL(arg_boot_id), arg_boot_offset, reason);
1105
1106 return r == 0 ? -ENODATA : r;
1107 }
1108
1109 sd_id128_to_string(ref_boot_id.id, match + 9);
1110
1111 r = sd_journal_add_match(j, match, sizeof(match) - 1);
1112 if (r < 0)
1113 return log_error_errno(r, "Failed to add match: %m");
1114
1115 r = sd_journal_add_conjunction(j);
1116 if (r < 0)
1117 return log_error_errno(r, "Failed to add conjunction: %m");
1118
1119 return 0;
1120 }
1121
1122 static int add_dmesg(sd_journal *j) {
1123 int r;
1124 assert(j);
1125
1126 if (!arg_dmesg)
1127 return 0;
1128
1129 r = sd_journal_add_match(j, "_TRANSPORT=kernel", strlen("_TRANSPORT=kernel"));
1130 if (r < 0)
1131 return log_error_errno(r, "Failed to add match: %m");
1132
1133 r = sd_journal_add_conjunction(j);
1134 if (r < 0)
1135 return log_error_errno(r, "Failed to add conjunction: %m");
1136
1137 return 0;
1138 }
1139
1140 static int get_possible_units(
1141 sd_journal *j,
1142 const char *fields,
1143 char **patterns,
1144 Set **units) {
1145
1146 _cleanup_set_free_free_ Set *found;
1147 const char *field;
1148 int r;
1149
1150 found = set_new(&string_hash_ops);
1151 if (!found)
1152 return -ENOMEM;
1153
1154 NULSTR_FOREACH(field, fields) {
1155 const void *data;
1156 size_t size;
1157
1158 r = sd_journal_query_unique(j, field);
1159 if (r < 0)
1160 return r;
1161
1162 SD_JOURNAL_FOREACH_UNIQUE(j, data, size) {
1163 char **pattern, *eq;
1164 size_t prefix;
1165 _cleanup_free_ char *u = NULL;
1166
1167 eq = memchr(data, '=', size);
1168 if (eq)
1169 prefix = eq - (char*) data + 1;
1170 else
1171 prefix = 0;
1172
1173 u = strndup((char*) data + prefix, size - prefix);
1174 if (!u)
1175 return -ENOMEM;
1176
1177 STRV_FOREACH(pattern, patterns)
1178 if (fnmatch(*pattern, u, FNM_NOESCAPE) == 0) {
1179 log_debug("Matched %s with pattern %s=%s", u, field, *pattern);
1180
1181 r = set_consume(found, u);
1182 u = NULL;
1183 if (r < 0 && r != -EEXIST)
1184 return r;
1185
1186 break;
1187 }
1188 }
1189 }
1190
1191 *units = found;
1192 found = NULL;
1193 return 0;
1194 }
1195
1196 /* This list is supposed to return the superset of unit names
1197 * possibly matched by rules added with add_matches_for_unit... */
1198 #define SYSTEM_UNITS \
1199 "_SYSTEMD_UNIT\0" \
1200 "COREDUMP_UNIT\0" \
1201 "UNIT\0" \
1202 "OBJECT_SYSTEMD_UNIT\0" \
1203 "_SYSTEMD_SLICE\0"
1204
1205 /* ... and add_matches_for_user_unit */
1206 #define USER_UNITS \
1207 "_SYSTEMD_USER_UNIT\0" \
1208 "USER_UNIT\0" \
1209 "COREDUMP_USER_UNIT\0" \
1210 "OBJECT_SYSTEMD_USER_UNIT\0"
1211
1212 static int add_units(sd_journal *j) {
1213 _cleanup_strv_free_ char **patterns = NULL;
1214 int r, count = 0;
1215 char **i;
1216
1217 assert(j);
1218
1219 STRV_FOREACH(i, arg_system_units) {
1220 _cleanup_free_ char *u = NULL;
1221
1222 r = unit_name_mangle(*i, UNIT_NAME_GLOB, &u);
1223 if (r < 0)
1224 return r;
1225
1226 if (string_is_glob(u)) {
1227 r = strv_push(&patterns, u);
1228 if (r < 0)
1229 return r;
1230 u = NULL;
1231 } else {
1232 r = add_matches_for_unit(j, u);
1233 if (r < 0)
1234 return r;
1235 r = sd_journal_add_disjunction(j);
1236 if (r < 0)
1237 return r;
1238 count ++;
1239 }
1240 }
1241
1242 if (!strv_isempty(patterns)) {
1243 _cleanup_set_free_free_ Set *units = NULL;
1244 Iterator it;
1245 char *u;
1246
1247 r = get_possible_units(j, SYSTEM_UNITS, patterns, &units);
1248 if (r < 0)
1249 return r;
1250
1251 SET_FOREACH(u, units, it) {
1252 r = add_matches_for_unit(j, u);
1253 if (r < 0)
1254 return r;
1255 r = sd_journal_add_disjunction(j);
1256 if (r < 0)
1257 return r;
1258 count ++;
1259 }
1260 }
1261
1262 patterns = strv_free(patterns);
1263
1264 STRV_FOREACH(i, arg_user_units) {
1265 _cleanup_free_ char *u = NULL;
1266
1267 r = unit_name_mangle(*i, UNIT_NAME_GLOB, &u);
1268 if (r < 0)
1269 return r;
1270
1271 if (string_is_glob(u)) {
1272 r = strv_push(&patterns, u);
1273 if (r < 0)
1274 return r;
1275 u = NULL;
1276 } else {
1277 r = add_matches_for_user_unit(j, u, getuid());
1278 if (r < 0)
1279 return r;
1280 r = sd_journal_add_disjunction(j);
1281 if (r < 0)
1282 return r;
1283 count ++;
1284 }
1285 }
1286
1287 if (!strv_isempty(patterns)) {
1288 _cleanup_set_free_free_ Set *units = NULL;
1289 Iterator it;
1290 char *u;
1291
1292 r = get_possible_units(j, USER_UNITS, patterns, &units);
1293 if (r < 0)
1294 return r;
1295
1296 SET_FOREACH(u, units, it) {
1297 r = add_matches_for_user_unit(j, u, getuid());
1298 if (r < 0)
1299 return r;
1300 r = sd_journal_add_disjunction(j);
1301 if (r < 0)
1302 return r;
1303 count ++;
1304 }
1305 }
1306
1307 /* Complain if the user request matches but nothing whatsoever was
1308 * found, since otherwise everything would be matched. */
1309 if (!(strv_isempty(arg_system_units) && strv_isempty(arg_user_units)) && count == 0)
1310 return -ENODATA;
1311
1312 r = sd_journal_add_conjunction(j);
1313 if (r < 0)
1314 return r;
1315
1316 return 0;
1317 }
1318
1319 static int add_priorities(sd_journal *j) {
1320 char match[] = "PRIORITY=0";
1321 int i, r;
1322 assert(j);
1323
1324 if (arg_priorities == 0xFF)
1325 return 0;
1326
1327 for (i = LOG_EMERG; i <= LOG_DEBUG; i++)
1328 if (arg_priorities & (1 << i)) {
1329 match[sizeof(match)-2] = '0' + i;
1330
1331 r = sd_journal_add_match(j, match, strlen(match));
1332 if (r < 0)
1333 return log_error_errno(r, "Failed to add match: %m");
1334 }
1335
1336 r = sd_journal_add_conjunction(j);
1337 if (r < 0)
1338 return log_error_errno(r, "Failed to add conjunction: %m");
1339
1340 return 0;
1341 }
1342
1343
1344 static int add_syslog_identifier(sd_journal *j) {
1345 int r;
1346 char **i;
1347
1348 assert(j);
1349
1350 STRV_FOREACH(i, arg_syslog_identifier) {
1351 char *u;
1352
1353 u = strjoina("SYSLOG_IDENTIFIER=", *i);
1354 r = sd_journal_add_match(j, u, 0);
1355 if (r < 0)
1356 return r;
1357 r = sd_journal_add_disjunction(j);
1358 if (r < 0)
1359 return r;
1360 }
1361
1362 r = sd_journal_add_conjunction(j);
1363 if (r < 0)
1364 return r;
1365
1366 return 0;
1367 }
1368
1369 static int setup_keys(void) {
1370 #ifdef HAVE_GCRYPT
1371 size_t mpk_size, seed_size, state_size, i;
1372 uint8_t *mpk, *seed, *state;
1373 int fd = -1, r;
1374 sd_id128_t machine, boot;
1375 char *p = NULL, *k = NULL;
1376 struct FSSHeader h;
1377 uint64_t n;
1378 struct stat st;
1379
1380 r = stat("/var/log/journal", &st);
1381 if (r < 0 && errno != ENOENT && errno != ENOTDIR)
1382 return log_error_errno(errno, "stat(\"%s\") failed: %m", "/var/log/journal");
1383
1384 if (r < 0 || !S_ISDIR(st.st_mode)) {
1385 log_error("%s is not a directory, must be using persistent logging for FSS.",
1386 "/var/log/journal");
1387 return r < 0 ? -errno : -ENOTDIR;
1388 }
1389
1390 r = sd_id128_get_machine(&machine);
1391 if (r < 0)
1392 return log_error_errno(r, "Failed to get machine ID: %m");
1393
1394 r = sd_id128_get_boot(&boot);
1395 if (r < 0)
1396 return log_error_errno(r, "Failed to get boot ID: %m");
1397
1398 if (asprintf(&p, "/var/log/journal/" SD_ID128_FORMAT_STR "/fss",
1399 SD_ID128_FORMAT_VAL(machine)) < 0)
1400 return log_oom();
1401
1402 if (arg_force) {
1403 r = unlink(p);
1404 if (r < 0 && errno != ENOENT) {
1405 r = log_error_errno(errno, "unlink(\"%s\") failed: %m", p);
1406 goto finish;
1407 }
1408 } else if (access(p, F_OK) >= 0) {
1409 log_error("Sealing key file %s exists already. Use --force to recreate.", p);
1410 r = -EEXIST;
1411 goto finish;
1412 }
1413
1414 if (asprintf(&k, "/var/log/journal/" SD_ID128_FORMAT_STR "/fss.tmp.XXXXXX",
1415 SD_ID128_FORMAT_VAL(machine)) < 0) {
1416 r = log_oom();
1417 goto finish;
1418 }
1419
1420 mpk_size = FSPRG_mskinbytes(FSPRG_RECOMMENDED_SECPAR);
1421 mpk = alloca(mpk_size);
1422
1423 seed_size = FSPRG_RECOMMENDED_SEEDLEN;
1424 seed = alloca(seed_size);
1425
1426 state_size = FSPRG_stateinbytes(FSPRG_RECOMMENDED_SECPAR);
1427 state = alloca(state_size);
1428
1429 fd = open("/dev/random", O_RDONLY|O_CLOEXEC|O_NOCTTY);
1430 if (fd < 0) {
1431 r = log_error_errno(errno, "Failed to open /dev/random: %m");
1432 goto finish;
1433 }
1434
1435 log_info("Generating seed...");
1436 r = loop_read_exact(fd, seed, seed_size, true);
1437 if (r < 0) {
1438 log_error_errno(r, "Failed to read random seed: %m");
1439 goto finish;
1440 }
1441
1442 log_info("Generating key pair...");
1443 FSPRG_GenMK(NULL, mpk, seed, seed_size, FSPRG_RECOMMENDED_SECPAR);
1444
1445 log_info("Generating sealing key...");
1446 FSPRG_GenState0(state, mpk, seed, seed_size);
1447
1448 assert(arg_interval > 0);
1449
1450 n = now(CLOCK_REALTIME);
1451 n /= arg_interval;
1452
1453 safe_close(fd);
1454 fd = mkostemp_safe(k, O_WRONLY|O_CLOEXEC);
1455 if (fd < 0) {
1456 r = log_error_errno(errno, "Failed to open %s: %m", k);
1457 goto finish;
1458 }
1459
1460 /* Enable secure remove, exclusion from dump, synchronous
1461 * writing and in-place updating */
1462 r = chattr_fd(fd, FS_SECRM_FL|FS_NODUMP_FL|FS_SYNC_FL|FS_NOCOW_FL, FS_SECRM_FL|FS_NODUMP_FL|FS_SYNC_FL|FS_NOCOW_FL);
1463 if (r < 0)
1464 log_warning_errno(errno, "Failed to set file attributes: %m");
1465
1466 zero(h);
1467 memcpy(h.signature, "KSHHRHLP", 8);
1468 h.machine_id = machine;
1469 h.boot_id = boot;
1470 h.header_size = htole64(sizeof(h));
1471 h.start_usec = htole64(n * arg_interval);
1472 h.interval_usec = htole64(arg_interval);
1473 h.fsprg_secpar = htole16(FSPRG_RECOMMENDED_SECPAR);
1474 h.fsprg_state_size = htole64(state_size);
1475
1476 r = loop_write(fd, &h, sizeof(h), false);
1477 if (r < 0) {
1478 log_error_errno(r, "Failed to write header: %m");
1479 goto finish;
1480 }
1481
1482 r = loop_write(fd, state, state_size, false);
1483 if (r < 0) {
1484 log_error_errno(r, "Failed to write state: %m");
1485 goto finish;
1486 }
1487
1488 if (link(k, p) < 0) {
1489 r = log_error_errno(errno, "Failed to link file: %m");
1490 goto finish;
1491 }
1492
1493 if (on_tty()) {
1494 fprintf(stderr,
1495 "\n"
1496 "The new key pair has been generated. The " ANSI_HIGHLIGHT "secret sealing key" ANSI_NORMAL " has been written to\n"
1497 "the following local file. This key file is automatically updated when the\n"
1498 "sealing key is advanced. It should not be used on multiple hosts.\n"
1499 "\n"
1500 "\t%s\n"
1501 "\n"
1502 "Please write down the following " ANSI_HIGHLIGHT "secret verification key" ANSI_NORMAL ". It should be stored\n"
1503 "at a safe location and should not be saved locally on disk.\n"
1504 "\n\t" ANSI_HIGHLIGHT_RED, p);
1505 fflush(stderr);
1506 }
1507 for (i = 0; i < seed_size; i++) {
1508 if (i > 0 && i % 3 == 0)
1509 putchar('-');
1510 printf("%02x", ((uint8_t*) seed)[i]);
1511 }
1512
1513 printf("/%llx-%llx\n", (unsigned long long) n, (unsigned long long) arg_interval);
1514
1515 if (on_tty()) {
1516 char tsb[FORMAT_TIMESPAN_MAX], *hn;
1517
1518 fprintf(stderr,
1519 ANSI_NORMAL "\n"
1520 "The sealing key is automatically changed every %s.\n",
1521 format_timespan(tsb, sizeof(tsb), arg_interval, 0));
1522
1523 hn = gethostname_malloc();
1524
1525 if (hn) {
1526 hostname_cleanup(hn);
1527 fprintf(stderr, "\nThe keys have been generated for host %s/" SD_ID128_FORMAT_STR ".\n", hn, SD_ID128_FORMAT_VAL(machine));
1528 } else
1529 fprintf(stderr, "\nThe keys have been generated for host " SD_ID128_FORMAT_STR ".\n", SD_ID128_FORMAT_VAL(machine));
1530
1531 #ifdef HAVE_QRENCODE
1532 /* If this is not an UTF-8 system don't print any QR codes */
1533 if (is_locale_utf8()) {
1534 fputs("\nTo transfer the verification key to your phone please scan the QR code below:\n\n", stderr);
1535 print_qr_code(stderr, seed, seed_size, n, arg_interval, hn, machine);
1536 }
1537 #endif
1538 free(hn);
1539 }
1540
1541 r = 0;
1542
1543 finish:
1544 safe_close(fd);
1545
1546 if (k) {
1547 unlink(k);
1548 free(k);
1549 }
1550
1551 free(p);
1552
1553 return r;
1554 #else
1555 log_error("Forward-secure sealing not available.");
1556 return -EOPNOTSUPP;
1557 #endif
1558 }
1559
1560 static int verify(sd_journal *j) {
1561 int r = 0;
1562 Iterator i;
1563 JournalFile *f;
1564
1565 assert(j);
1566
1567 log_show_color(true);
1568
1569 ORDERED_HASHMAP_FOREACH(f, j->files, i) {
1570 int k;
1571 usec_t first = 0, validated = 0, last = 0;
1572
1573 #ifdef HAVE_GCRYPT
1574 if (!arg_verify_key && JOURNAL_HEADER_SEALED(f->header))
1575 log_notice("Journal file %s has sealing enabled but verification key has not been passed using --verify-key=.", f->path);
1576 #endif
1577
1578 k = journal_file_verify(f, arg_verify_key, &first, &validated, &last, true);
1579 if (k == -EINVAL) {
1580 /* If the key was invalid give up right-away. */
1581 return k;
1582 } else if (k < 0) {
1583 log_warning("FAIL: %s (%s)", f->path, strerror(-k));
1584 r = k;
1585 } else {
1586 char a[FORMAT_TIMESTAMP_MAX], b[FORMAT_TIMESTAMP_MAX], c[FORMAT_TIMESPAN_MAX];
1587 log_info("PASS: %s", f->path);
1588
1589 if (arg_verify_key && JOURNAL_HEADER_SEALED(f->header)) {
1590 if (validated > 0) {
1591 log_info("=> Validated from %s to %s, final %s entries not sealed.",
1592 format_timestamp_maybe_utc(a, sizeof(a), first),
1593 format_timestamp_maybe_utc(b, sizeof(b), validated),
1594 format_timespan(c, sizeof(c), last > validated ? last - validated : 0, 0));
1595 } else if (last > 0)
1596 log_info("=> No sealing yet, %s of entries not sealed.",
1597 format_timespan(c, sizeof(c), last - first, 0));
1598 else
1599 log_info("=> No sealing yet, no entries in file.");
1600 }
1601 }
1602 }
1603
1604 return r;
1605 }
1606
1607 static int access_check_var_log_journal(sd_journal *j) {
1608 #ifdef HAVE_ACL
1609 _cleanup_strv_free_ char **g = NULL;
1610 const char* dir;
1611 #endif
1612 int r;
1613
1614 assert(j);
1615
1616 if (arg_quiet)
1617 return 0;
1618
1619 /* If we are root, we should have access, don't warn. */
1620 if (getuid() == 0)
1621 return 0;
1622
1623 /* If we are in the 'systemd-journal' group, we should have
1624 * access too. */
1625 r = in_group("systemd-journal");
1626 if (r < 0)
1627 return log_error_errno(r, "Failed to check if we are in the 'systemd-journal' group: %m");
1628 if (r > 0)
1629 return 0;
1630
1631 #ifdef HAVE_ACL
1632 if (laccess("/run/log/journal", F_OK) >= 0)
1633 dir = "/run/log/journal";
1634 else
1635 dir = "/var/log/journal";
1636
1637 /* If we are in any of the groups listed in the journal ACLs,
1638 * then all is good, too. Let's enumerate all groups from the
1639 * default ACL of the directory, which generally should allow
1640 * access to most journal files too. */
1641 r = acl_search_groups(dir, &g);
1642 if (r < 0)
1643 return log_error_errno(r, "Failed to search journal ACL: %m");
1644 if (r > 0)
1645 return 0;
1646
1647 /* Print a pretty list, if there were ACLs set. */
1648 if (!strv_isempty(g)) {
1649 _cleanup_free_ char *s = NULL;
1650
1651 /* Thre are groups in the ACL, let's list them */
1652 r = strv_extend(&g, "systemd-journal");
1653 if (r < 0)
1654 return log_oom();
1655
1656 strv_sort(g);
1657 strv_uniq(g);
1658
1659 s = strv_join(g, "', '");
1660 if (!s)
1661 return log_oom();
1662
1663 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1664 " Users in groups '%s' can see all messages.\n"
1665 " Pass -q to turn off this notice.", s);
1666 return 1;
1667 }
1668 #endif
1669
1670 /* If no ACLs were found, print a short version of the message. */
1671 log_notice("Hint: You are currently not seeing messages from other users and the system.\n"
1672 " Users in the 'systemd-journal' group can see all messages. Pass -q to\n"
1673 " turn off this notice.");
1674
1675 return 1;
1676 }
1677
1678 static int access_check(sd_journal *j) {
1679 Iterator it;
1680 void *code;
1681 int r = 0;
1682
1683 assert(j);
1684
1685 if (set_isempty(j->errors)) {
1686 if (ordered_hashmap_isempty(j->files))
1687 log_notice("No journal files were found.");
1688
1689 return 0;
1690 }
1691
1692 if (set_contains(j->errors, INT_TO_PTR(-EACCES))) {
1693 (void) access_check_var_log_journal(j);
1694
1695 if (ordered_hashmap_isempty(j->files))
1696 r = log_error_errno(EACCES, "No journal files were opened due to insufficient permissions.");
1697 }
1698
1699 SET_FOREACH(code, j->errors, it) {
1700 int err;
1701
1702 err = -PTR_TO_INT(code);
1703 assert(err > 0);
1704
1705 if (err == EACCES)
1706 continue;
1707
1708 log_warning_errno(err, "Error was encountered while opening journal files: %m");
1709 if (r == 0)
1710 r = -err;
1711 }
1712
1713 return r;
1714 }
1715
1716 static int flush_to_var(void) {
1717 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
1718 _cleanup_bus_flush_close_unref_ sd_bus *bus = NULL;
1719 _cleanup_close_ int watch_fd = -1;
1720 int r;
1721
1722 /* Quick exit */
1723 if (access("/run/systemd/journal/flushed", F_OK) >= 0)
1724 return 0;
1725
1726 /* OK, let's actually do the full logic, send SIGUSR1 to the
1727 * daemon and set up inotify to wait for the flushed file to appear */
1728 r = bus_open_system_systemd(&bus);
1729 if (r < 0)
1730 return log_error_errno(r, "Failed to get D-Bus connection: %m");
1731
1732 r = sd_bus_call_method(
1733 bus,
1734 "org.freedesktop.systemd1",
1735 "/org/freedesktop/systemd1",
1736 "org.freedesktop.systemd1.Manager",
1737 "KillUnit",
1738 &error,
1739 NULL,
1740 "ssi", "systemd-journald.service", "main", SIGUSR1);
1741 if (r < 0) {
1742 log_error("Failed to kill journal service: %s", bus_error_message(&error, r));
1743 return r;
1744 }
1745
1746 mkdir_p("/run/systemd/journal", 0755);
1747
1748 watch_fd = inotify_init1(IN_NONBLOCK|IN_CLOEXEC);
1749 if (watch_fd < 0)
1750 return log_error_errno(errno, "Failed to create inotify watch: %m");
1751
1752 r = inotify_add_watch(watch_fd, "/run/systemd/journal", IN_CREATE|IN_DONT_FOLLOW|IN_ONLYDIR);
1753 if (r < 0)
1754 return log_error_errno(errno, "Failed to watch journal directory: %m");
1755
1756 for (;;) {
1757 if (access("/run/systemd/journal/flushed", F_OK) >= 0)
1758 break;
1759
1760 if (errno != ENOENT)
1761 return log_error_errno(errno, "Failed to check for existence of /run/systemd/journal/flushed: %m");
1762
1763 r = fd_wait_for_event(watch_fd, POLLIN, USEC_INFINITY);
1764 if (r < 0)
1765 return log_error_errno(r, "Failed to wait for event: %m");
1766
1767 r = flush_fd(watch_fd);
1768 if (r < 0)
1769 return log_error_errno(r, "Failed to flush inotify events: %m");
1770 }
1771
1772 return 0;
1773 }
1774
1775 int main(int argc, char *argv[]) {
1776 int r;
1777 _cleanup_journal_close_ sd_journal *j = NULL;
1778 bool need_seek = false;
1779 sd_id128_t previous_boot_id;
1780 bool previous_boot_id_valid = false, first_line = true;
1781 int n_shown = 0;
1782 bool ellipsized = false;
1783
1784 setlocale(LC_ALL, "");
1785 log_parse_environment();
1786 log_open();
1787
1788 r = parse_argv(argc, argv);
1789 if (r <= 0)
1790 goto finish;
1791
1792 signal(SIGWINCH, columns_lines_cache_reset);
1793 sigbus_install();
1794
1795 /* Increase max number of open files to 16K if we can, we
1796 * might needs this when browsing journal files, which might
1797 * be split up into many files. */
1798 setrlimit_closest(RLIMIT_NOFILE, &RLIMIT_MAKE_CONST(16384));
1799
1800 if (arg_action == ACTION_NEW_ID128) {
1801 r = generate_new_id128();
1802 goto finish;
1803 }
1804
1805 if (arg_action == ACTION_FLUSH) {
1806 r = flush_to_var();
1807 goto finish;
1808 }
1809
1810 if (arg_action == ACTION_SETUP_KEYS) {
1811 r = setup_keys();
1812 goto finish;
1813 }
1814
1815 if (arg_action == ACTION_UPDATE_CATALOG ||
1816 arg_action == ACTION_LIST_CATALOG ||
1817 arg_action == ACTION_DUMP_CATALOG) {
1818
1819 _cleanup_free_ char *database;
1820
1821 database = path_join(arg_root, CATALOG_DATABASE, NULL);
1822 if (!database) {
1823 r = log_oom();
1824 goto finish;
1825 }
1826
1827 if (arg_action == ACTION_UPDATE_CATALOG) {
1828 r = catalog_update(database, arg_root, catalog_file_dirs);
1829 if (r < 0)
1830 log_error_errno(r, "Failed to list catalog: %m");
1831 } else {
1832 bool oneline = arg_action == ACTION_LIST_CATALOG;
1833
1834 if (optind < argc)
1835 r = catalog_list_items(stdout, database,
1836 oneline, argv + optind);
1837 else
1838 r = catalog_list(stdout, database, oneline);
1839 if (r < 0)
1840 log_error_errno(r, "Failed to list catalog: %m");
1841 }
1842
1843 goto finish;
1844 }
1845
1846 if (arg_directory)
1847 r = sd_journal_open_directory(&j, arg_directory, arg_journal_type);
1848 else if (arg_file)
1849 r = sd_journal_open_files(&j, (const char**) arg_file, 0);
1850 else if (arg_machine)
1851 r = sd_journal_open_container(&j, arg_machine, 0);
1852 else
1853 r = sd_journal_open(&j, !arg_merge*SD_JOURNAL_LOCAL_ONLY + arg_journal_type);
1854 if (r < 0) {
1855 log_error_errno(r, "Failed to open %s: %m",
1856 arg_directory ? arg_directory : arg_file ? "files" : "journal");
1857 goto finish;
1858 }
1859
1860 r = access_check(j);
1861 if (r < 0)
1862 goto finish;
1863
1864 if (arg_action == ACTION_VERIFY) {
1865 r = verify(j);
1866 goto finish;
1867 }
1868
1869 if (arg_action == ACTION_PRINT_HEADER) {
1870 journal_print_header(j);
1871 r = 0;
1872 goto finish;
1873 }
1874
1875 if (arg_action == ACTION_DISK_USAGE) {
1876 uint64_t bytes = 0;
1877 char sbytes[FORMAT_BYTES_MAX];
1878
1879 r = sd_journal_get_usage(j, &bytes);
1880 if (r < 0)
1881 goto finish;
1882
1883 printf("Archived and active journals take up %s on disk.\n",
1884 format_bytes(sbytes, sizeof(sbytes), bytes));
1885 goto finish;
1886 }
1887
1888 if (arg_action == ACTION_VACUUM) {
1889 Directory *d;
1890 Iterator i;
1891
1892 HASHMAP_FOREACH(d, j->directories_by_path, i) {
1893 int q;
1894
1895 if (d->is_root)
1896 continue;
1897
1898 q = journal_directory_vacuum(d->path, arg_vacuum_size, arg_vacuum_time, NULL, true);
1899 if (q < 0) {
1900 log_error_errno(q, "Failed to vacuum: %m");
1901 r = q;
1902 }
1903 }
1904
1905 goto finish;
1906 }
1907
1908 if (arg_action == ACTION_LIST_BOOTS) {
1909 r = list_boots(j);
1910 goto finish;
1911 }
1912
1913 /* add_boot() must be called first!
1914 * It may need to seek the journal to find parent boot IDs. */
1915 r = add_boot(j);
1916 if (r < 0)
1917 goto finish;
1918
1919 r = add_dmesg(j);
1920 if (r < 0)
1921 goto finish;
1922
1923 r = add_units(j);
1924 if (r < 0) {
1925 log_error_errno(r, "Failed to add filter for units: %m");
1926 goto finish;
1927 }
1928
1929 r = add_syslog_identifier(j);
1930 if (r < 0) {
1931 log_error_errno(r, "Failed to add filter for syslog identifiers: %m");
1932 goto finish;
1933 }
1934
1935 r = add_priorities(j);
1936 if (r < 0)
1937 goto finish;
1938
1939 r = add_matches(j, argv + optind);
1940 if (r < 0)
1941 goto finish;
1942
1943 if (_unlikely_(log_get_max_level() >= LOG_DEBUG)) {
1944 _cleanup_free_ char *filter;
1945
1946 filter = journal_make_match_string(j);
1947 if (!filter)
1948 return log_oom();
1949
1950 log_debug("Journal filter: %s", filter);
1951 }
1952
1953 if (arg_field) {
1954 const void *data;
1955 size_t size;
1956
1957 r = sd_journal_set_data_threshold(j, 0);
1958 if (r < 0) {
1959 log_error_errno(r, "Failed to unset data size threshold: %m");
1960 goto finish;
1961 }
1962
1963 r = sd_journal_query_unique(j, arg_field);
1964 if (r < 0) {
1965 log_error_errno(r, "Failed to query unique data objects: %m");
1966 goto finish;
1967 }
1968
1969 SD_JOURNAL_FOREACH_UNIQUE(j, data, size) {
1970 const void *eq;
1971
1972 if (arg_lines >= 0 && n_shown >= arg_lines)
1973 break;
1974
1975 eq = memchr(data, '=', size);
1976 if (eq)
1977 printf("%.*s\n", (int) (size - ((const uint8_t*) eq - (const uint8_t*) data + 1)), (const char*) eq + 1);
1978 else
1979 printf("%.*s\n", (int) size, (const char*) data);
1980
1981 n_shown ++;
1982 }
1983
1984 r = 0;
1985 goto finish;
1986 }
1987
1988 /* Opening the fd now means the first sd_journal_wait() will actually wait */
1989 if (arg_follow) {
1990 r = sd_journal_get_fd(j);
1991 if (r < 0) {
1992 log_error_errno(r, "Failed to get journal fd: %m");
1993 goto finish;
1994 }
1995 }
1996
1997 if (arg_cursor || arg_after_cursor) {
1998 r = sd_journal_seek_cursor(j, arg_cursor ?: arg_after_cursor);
1999 if (r < 0) {
2000 log_error_errno(r, "Failed to seek to cursor: %m");
2001 goto finish;
2002 }
2003
2004 if (!arg_reverse)
2005 r = sd_journal_next_skip(j, 1 + !!arg_after_cursor);
2006 else
2007 r = sd_journal_previous_skip(j, 1 + !!arg_after_cursor);
2008
2009 if (arg_after_cursor && r < 2) {
2010 /* We couldn't find the next entry after the cursor. */
2011 if (arg_follow)
2012 need_seek = true;
2013 else
2014 arg_lines = 0;
2015 }
2016
2017 } else if (arg_since_set && !arg_reverse) {
2018 r = sd_journal_seek_realtime_usec(j, arg_since);
2019 if (r < 0) {
2020 log_error_errno(r, "Failed to seek to date: %m");
2021 goto finish;
2022 }
2023 r = sd_journal_next(j);
2024
2025 } else if (arg_until_set && arg_reverse) {
2026 r = sd_journal_seek_realtime_usec(j, arg_until);
2027 if (r < 0) {
2028 log_error_errno(r, "Failed to seek to date: %m");
2029 goto finish;
2030 }
2031 r = sd_journal_previous(j);
2032
2033 } else if (arg_lines >= 0) {
2034 r = sd_journal_seek_tail(j);
2035 if (r < 0) {
2036 log_error_errno(r, "Failed to seek to tail: %m");
2037 goto finish;
2038 }
2039
2040 r = sd_journal_previous_skip(j, arg_lines);
2041
2042 } else if (arg_reverse) {
2043 r = sd_journal_seek_tail(j);
2044 if (r < 0) {
2045 log_error_errno(r, "Failed to seek to tail: %m");
2046 goto finish;
2047 }
2048
2049 r = sd_journal_previous(j);
2050
2051 } else {
2052 r = sd_journal_seek_head(j);
2053 if (r < 0) {
2054 log_error_errno(r, "Failed to seek to head: %m");
2055 goto finish;
2056 }
2057
2058 r = sd_journal_next(j);
2059 }
2060
2061 if (r < 0) {
2062 log_error_errno(r, "Failed to iterate through journal: %m");
2063 goto finish;
2064 }
2065 if (r == 0) {
2066 if (arg_follow)
2067 need_seek = true;
2068 else {
2069 printf("-- No entries --\n");
2070 goto finish;
2071 }
2072 }
2073
2074 if (!arg_follow)
2075 pager_open_if_enabled();
2076
2077 if (!arg_quiet) {
2078 usec_t start, end;
2079 char start_buf[FORMAT_TIMESTAMP_MAX], end_buf[FORMAT_TIMESTAMP_MAX];
2080
2081 r = sd_journal_get_cutoff_realtime_usec(j, &start, &end);
2082 if (r < 0) {
2083 log_error_errno(r, "Failed to get cutoff: %m");
2084 goto finish;
2085 }
2086
2087 if (r > 0) {
2088 if (arg_follow)
2089 printf("-- Logs begin at %s. --\n",
2090 format_timestamp_maybe_utc(start_buf, sizeof(start_buf), start));
2091 else
2092 printf("-- Logs begin at %s, end at %s. --\n",
2093 format_timestamp_maybe_utc(start_buf, sizeof(start_buf), start),
2094 format_timestamp_maybe_utc(end_buf, sizeof(end_buf), end));
2095 }
2096 }
2097
2098 for (;;) {
2099 while (arg_lines < 0 || n_shown < arg_lines || (arg_follow && !first_line)) {
2100 int flags;
2101
2102 if (need_seek) {
2103 if (!arg_reverse)
2104 r = sd_journal_next(j);
2105 else
2106 r = sd_journal_previous(j);
2107 if (r < 0) {
2108 log_error_errno(r, "Failed to iterate through journal: %m");
2109 goto finish;
2110 }
2111 if (r == 0)
2112 break;
2113 }
2114
2115 if (arg_until_set && !arg_reverse) {
2116 usec_t usec;
2117
2118 r = sd_journal_get_realtime_usec(j, &usec);
2119 if (r < 0) {
2120 log_error_errno(r, "Failed to determine timestamp: %m");
2121 goto finish;
2122 }
2123 if (usec > arg_until)
2124 goto finish;
2125 }
2126
2127 if (arg_since_set && arg_reverse) {
2128 usec_t usec;
2129
2130 r = sd_journal_get_realtime_usec(j, &usec);
2131 if (r < 0) {
2132 log_error_errno(r, "Failed to determine timestamp: %m");
2133 goto finish;
2134 }
2135 if (usec < arg_since)
2136 goto finish;
2137 }
2138
2139 if (!arg_merge && !arg_quiet) {
2140 sd_id128_t boot_id;
2141
2142 r = sd_journal_get_monotonic_usec(j, NULL, &boot_id);
2143 if (r >= 0) {
2144 if (previous_boot_id_valid &&
2145 !sd_id128_equal(boot_id, previous_boot_id))
2146 printf("%s-- Reboot --%s\n",
2147 ansi_highlight(), ansi_normal());
2148
2149 previous_boot_id = boot_id;
2150 previous_boot_id_valid = true;
2151 }
2152 }
2153
2154 flags =
2155 arg_all * OUTPUT_SHOW_ALL |
2156 arg_full * OUTPUT_FULL_WIDTH |
2157 on_tty() * OUTPUT_COLOR |
2158 arg_catalog * OUTPUT_CATALOG |
2159 arg_utc * OUTPUT_UTC;
2160
2161 r = output_journal(stdout, j, arg_output, 0, flags, &ellipsized);
2162 need_seek = true;
2163 if (r == -EADDRNOTAVAIL)
2164 break;
2165 else if (r < 0 || ferror(stdout))
2166 goto finish;
2167
2168 n_shown++;
2169 }
2170
2171 if (!arg_follow) {
2172 if (arg_show_cursor) {
2173 _cleanup_free_ char *cursor = NULL;
2174
2175 r = sd_journal_get_cursor(j, &cursor);
2176 if (r < 0 && r != -EADDRNOTAVAIL)
2177 log_error_errno(r, "Failed to get cursor: %m");
2178 else if (r >= 0)
2179 printf("-- cursor: %s\n", cursor);
2180 }
2181
2182 break;
2183 }
2184
2185 r = sd_journal_wait(j, (uint64_t) -1);
2186 if (r < 0) {
2187 log_error_errno(r, "Couldn't wait for journal event: %m");
2188 goto finish;
2189 }
2190
2191 first_line = false;
2192 }
2193
2194 finish:
2195 pager_close();
2196
2197 strv_free(arg_file);
2198
2199 strv_free(arg_syslog_identifier);
2200 strv_free(arg_system_units);
2201 strv_free(arg_user_units);
2202
2203 return r < 0 ? EXIT_FAILURE : EXIT_SUCCESS;
2204 }
Unnamed repository; edit this file 'description' to name the repository.