2010-08-14 19:59:25 +02:00
|
|
|
/*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
|
2010-02-01 03:33:24 +01:00
|
|
|
|
2010-02-03 13:03:47 +01:00
|
|
|
/***
|
|
|
|
|
This file is part of systemd.
|
|
|
|
|
|
|
|
|
|
Copyright 2010 Lennart Poettering
|
|
|
|
|
|
|
|
|
|
systemd is free software; you can redistribute it and/or modify it
|
2012-04-12 00:20:58 +02:00
|
|
|
under the terms of the GNU Lesser General Public License as published by
|
|
|
|
|
the Free Software Foundation; either version 2.1 of the License, or
|
2010-02-03 13:03:47 +01:00
|
|
|
(at your option) any later version.
|
|
|
|
|
|
|
|
|
|
systemd is distributed in the hope that it will be useful, but
|
|
|
|
|
WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
2012-04-12 00:20:58 +02:00
|
|
|
Lesser General Public License for more details.
|
2010-02-03 13:03:47 +01:00
|
|
|
|
2012-04-12 00:20:58 +02:00
|
|
|
You should have received a copy of the GNU Lesser General Public License
|
2010-02-03 13:03:47 +01:00
|
|
|
along with systemd; If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
|
***/
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
#include "sd-bus.h"
|
2015-10-24 22:58:24 +02:00
|
|
|
|
2015-10-27 03:01:06 +01:00
|
|
|
#include "alloc-util.h"
|
2015-10-24 22:58:24 +02:00
|
|
|
#include "bus-common-errors.h"
|
|
|
|
|
#include "cgroup-util.h"
|
2015-10-26 23:01:30 +01:00
|
|
|
#include "dbus-unit.h"
|
2015-10-24 22:58:24 +02:00
|
|
|
#include "dbus.h"
|
2015-10-26 23:01:30 +01:00
|
|
|
#include "locale-util.h"
|
2010-02-01 03:33:24 +01:00
|
|
|
#include "log.h"
|
2012-09-06 22:23:11 +02:00
|
|
|
#include "selinux-access.h"
|
core: unified cgroup hierarchy support
This patch set adds full support the new unified cgroup hierarchy logic
of modern kernels.
A new kernel command line option "systemd.unified_cgroup_hierarchy=1" is
added. If specified the unified hierarchy is mounted to /sys/fs/cgroup
instead of a tmpfs. No further hierarchies are mounted. The kernel
command line option defaults to off. We can turn it on by default as
soon as the kernel's APIs regarding this are stabilized (but even then
downstream distros might want to turn this off, as this will break any
tools that access cgroupfs directly).
It is possibly to choose for each boot individually whether the unified
or the legacy hierarchy is used. nspawn will by default provide the
legacy hierarchy to containers if the host is using it, and the unified
otherwise. However it is possible to run containers with the unified
hierarchy on a legacy host and vice versa, by setting the
$UNIFIED_CGROUP_HIERARCHY environment variable for nspawn to 1 or 0,
respectively.
The unified hierarchy provides reliable cgroup empty notifications for
the first time, via inotify. To make use of this we maintain one
manager-wide inotify fd, and each cgroup to it.
This patch also removes cg_delete() which is unused now.
On kernel 4.2 only the "memory" controller is compatible with the
unified hierarchy, hence that's the only controller systemd exposes when
booted in unified heirarchy mode.
This introduces a new enum for enumerating supported controllers, plus a
related enum for the mask bits mapping to it. The core is changed to
make use of this everywhere.
This moves PID 1 into a new "init.scope" implicit scope unit in the root
slice. This is necessary since on the unified hierarchy cgroups may
either contain subgroups or processes but not both. PID 1 hence has to
move out of the root cgroup (strictly speaking the root cgroup is the
only one where processes and subgroups are still allowed, but in order
to support containers nicey, we move PID 1 into the new scope in all
cases.) This new unit is also used on legacy hierarchy setups. It's
actually pretty useful on all systems, as it can then be used to filter
journal messages coming from PID 1, and so on.
The root slice ("-.slice") is now implicitly created and started (and
does not require a unit file on disk anymore), since
that's where "init.scope" is located and the slice needs to be started
before the scope can.
To check whether we are in unified or legacy hierarchy mode we use
statfs() on /sys/fs/cgroup. If the .f_type field reports tmpfs we are in
legacy mode, if it reports cgroupfs we are in unified mode.
This patch set carefuly makes sure that cgls and cgtop continue to work
as desired.
When invoking nspawn as a service it will implicitly create two
subcgroups in the cgroup it is using, one to move the nspawn process
into, the other to move the actual container processes into. This is
done because of the requirement that cgroups may either contain
processes or other subgroups.
2015-09-01 19:22:36 +02:00
|
|
|
#include "special.h"
|
2015-10-24 22:58:24 +02:00
|
|
|
#include "string-util.h"
|
|
|
|
|
#include "strv.h"
|
2015-10-27 00:42:07 +01:00
|
|
|
#include "user-util.h"
|
2013-11-19 21:12:59 +01:00
|
|
|
|
|
|
|
|
static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_load_state, unit_load_state, UnitLoadState);
|
2013-11-26 01:39:53 +01:00
|
|
|
static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_job_mode, job_mode, JobMode);
|
2014-10-28 01:49:07 +01:00
|
|
|
static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_failure_action, failure_action, FailureAction);
|
2013-11-19 21:12:59 +01:00
|
|
|
|
|
|
|
|
static int property_get_names(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2013-11-19 21:12:59 +01:00
|
|
|
|
|
|
|
|
Unit *u = userdata;
|
|
|
|
|
Iterator i;
|
|
|
|
|
const char *t;
|
|
|
|
|
int r;
|
2010-02-01 03:33:24 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
2010-04-18 03:08:16 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_open_container(reply, 'a', "s");
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2010-04-18 03:08:16 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
SET_FOREACH(t, u->names, i) {
|
|
|
|
|
r = sd_bus_message_append(reply, "s", t);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
}
|
2010-04-18 03:08:16 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_close_container(reply);
|
2010-04-18 03:08:16 +02:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_following(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2013-11-19 21:12:59 +01:00
|
|
|
|
|
|
|
|
Unit *u = userdata, *f;
|
2010-07-20 20:33:19 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
2010-07-20 20:33:19 +02:00
|
|
|
assert(u);
|
|
|
|
|
|
2010-07-21 05:00:29 +02:00
|
|
|
f = unit_following(u);
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "s", f ? f->id : "");
|
2010-07-20 20:33:19 +02:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_dependencies(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2013-06-18 01:00:13 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
Set *s = *(Set**) userdata;
|
2010-05-16 16:20:24 +02:00
|
|
|
Iterator j;
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u;
|
|
|
|
|
int r;
|
2010-05-16 16:20:24 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
2010-05-16 16:20:24 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_open_container(reply, 'a', "s");
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2010-05-16 16:20:24 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
SET_FOREACH(u, s, j) {
|
|
|
|
|
r = sd_bus_message_append(reply, "s", u->id);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
}
|
2010-05-16 16:20:24 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_close_container(reply);
|
2010-05-16 16:20:24 +02:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_description(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2010-02-01 03:33:24 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
2010-02-01 03:33:24 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
2010-02-01 03:33:24 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "s", unit_description(u));
|
2010-02-01 03:33:24 +01:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_active_state(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2010-02-01 03:33:24 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
2010-02-01 03:33:24 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
2010-02-01 03:33:24 +01:00
|
|
|
assert(u);
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "s", unit_active_state_to_string(unit_active_state(u)));
|
2010-02-01 03:33:24 +01:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_sub_state(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2010-04-13 20:59:01 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
2010-04-13 20:59:01 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
2010-04-13 20:59:01 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "s", unit_sub_state_to_string(u));
|
2010-04-13 20:59:01 +02:00
|
|
|
}
|
|
|
|
|
|
2014-12-02 02:38:18 +01:00
|
|
|
static int property_get_unit_file_preset(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
|
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
|
|
|
|
|
|
|
|
|
Unit *u = userdata;
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
|
|
|
|
|
|
|
|
|
r = unit_get_unit_file_preset(u);
|
|
|
|
|
|
|
|
|
|
return sd_bus_message_append(reply, "s",
|
|
|
|
|
r < 0 ? "":
|
|
|
|
|
r > 0 ? "enabled" : "disabled");
|
|
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_unit_file_state(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2011-07-31 18:28:02 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
2011-07-31 18:28:02 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
2011-07-31 18:28:02 +02:00
|
|
|
|
2014-12-10 19:57:45 +01:00
|
|
|
return sd_bus_message_append(reply, "s", unit_file_state_to_string(unit_get_unit_file_state(u)));
|
2011-07-31 18:28:02 +02:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_can_start(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2010-02-02 12:22:59 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
2010-08-10 20:57:21 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
2010-08-10 20:57:21 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "b", unit_can_start(u) && !u->refuse_manual_start);
|
2010-08-10 20:57:21 +02:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_can_stop(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2013-11-19 21:12:59 +01:00
|
|
|
|
|
|
|
|
Unit *u = userdata;
|
2010-08-10 20:57:21 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
2010-08-10 20:57:21 +02:00
|
|
|
assert(u);
|
|
|
|
|
|
|
|
|
|
/* On the lower levels we assume that every unit we can start
|
|
|
|
|
* we can also stop */
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "b", unit_can_start(u) && !u->refuse_manual_stop);
|
2010-02-02 12:22:59 +01:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_can_reload(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2010-02-02 12:22:59 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
2010-02-02 12:22:59 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
2010-02-02 12:22:59 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "b", unit_can_reload(u));
|
2010-02-02 12:22:59 +01:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_can_isolate(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2010-08-30 22:45:46 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
2010-08-30 22:45:46 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
2010-08-30 22:45:46 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "b", unit_can_isolate(u) && !u->refuse_manual_start);
|
2010-08-30 22:45:46 +02:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_job(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2013-11-19 21:12:59 +01:00
|
|
|
|
2013-01-02 22:19:07 +01:00
|
|
|
_cleanup_free_ char *p = NULL;
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
2010-02-02 12:22:59 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
2010-02-02 12:22:59 +01:00
|
|
|
assert(u);
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
if (!u->job)
|
|
|
|
|
return sd_bus_message_append(reply, "(uo)", 0, "/");
|
2010-02-02 12:22:59 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
p = job_dbus_path(u->job);
|
|
|
|
|
if (!p)
|
|
|
|
|
return -ENOMEM;
|
2010-02-02 12:22:59 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "(uo)", u->job->id, p);
|
|
|
|
|
}
|
2010-02-02 12:22:59 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_need_daemon_reload(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2010-02-02 12:22:59 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
2010-02-02 12:22:59 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
2010-02-02 12:22:59 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "b", unit_need_daemon_reload(u));
|
2010-02-02 12:22:59 +01:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_conditions(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2010-07-17 00:57:51 +02:00
|
|
|
|
2014-11-06 13:43:45 +01:00
|
|
|
const char *(*to_string)(ConditionType type) = NULL;
|
|
|
|
|
Condition **list = userdata, *c;
|
2013-11-19 21:12:59 +01:00
|
|
|
int r;
|
2010-07-17 00:57:51 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
2014-11-06 13:43:45 +01:00
|
|
|
assert(list);
|
|
|
|
|
|
|
|
|
|
to_string = streq(property, "Asserts") ? assert_type_to_string : condition_type_to_string;
|
2010-07-17 00:57:51 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_open_container(reply, 'a', "(sbbsi)");
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2010-07-17 00:57:51 +02:00
|
|
|
|
2014-11-06 13:43:45 +01:00
|
|
|
LIST_FOREACH(conditions, c, *list) {
|
2014-11-06 02:27:10 +01:00
|
|
|
int tristate;
|
|
|
|
|
|
|
|
|
|
tristate =
|
|
|
|
|
c->result == CONDITION_UNTESTED ? 0 :
|
|
|
|
|
c->result == CONDITION_SUCCEEDED ? 1 : -1;
|
|
|
|
|
|
2013-11-25 17:18:38 +01:00
|
|
|
r = sd_bus_message_append(reply, "(sbbsi)",
|
2014-11-06 13:43:45 +01:00
|
|
|
to_string(c->type),
|
2013-11-25 17:18:38 +01:00
|
|
|
c->trigger, c->negate,
|
2014-11-06 02:27:10 +01:00
|
|
|
c->parameter, tristate);
|
2013-11-19 21:12:59 +01:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2010-07-17 00:57:51 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
systemd,systemctl: export condition status and show failing condition
$ systemctl --user status hoohoo
hoohoo.service
Loaded: loaded (/home/zbyszek/.config/systemd/user/hoohoo.service; static)
Active: inactive (dead)
start condition failed at Tue 2013-06-25 18:08:42 EDT; 1s ago
ConditionPathExists=/tmp/hoo was not met
Full information is exported over D-Bus:
[(condition, trigger, negate, param, state),...]
where state is one of "failed" (<0), "untested" (0), "OK" (>0).
I've decided to use 0 for "untested", because it might be useful to
differentiate different types of failure later on, without breaking
compatibility.
systemctl shows the failing condition, if there was a non-trigger
failing condition, or says "none of the trigger conditions were met",
because there're often many trigger conditions, and they must all
fail for the condition to fail, so printing them all would consume
a lot of space, and bring unnecessary attention to something that is
quite low-level.
2013-06-25 22:09:07 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_close_container(reply);
|
systemd,systemctl: export condition status and show failing condition
$ systemctl --user status hoohoo
hoohoo.service
Loaded: loaded (/home/zbyszek/.config/systemd/user/hoohoo.service; static)
Active: inactive (dead)
start condition failed at Tue 2013-06-25 18:08:42 EDT; 1s ago
ConditionPathExists=/tmp/hoo was not met
Full information is exported over D-Bus:
[(condition, trigger, negate, param, state),...]
where state is one of "failed" (<0), "untested" (0), "OK" (>0).
I've decided to use 0 for "untested", because it might be useful to
differentiate different types of failure later on, without breaking
compatibility.
systemctl shows the failing condition, if there was a non-trigger
failing condition, or says "none of the trigger conditions were met",
because there're often many trigger conditions, and they must all
fail for the condition to fail, so printing them all would consume
a lot of space, and bring unnecessary attention to something that is
quite low-level.
2013-06-25 22:09:07 +02:00
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_load_error(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
systemd,systemctl: export condition status and show failing condition
$ systemctl --user status hoohoo
hoohoo.service
Loaded: loaded (/home/zbyszek/.config/systemd/user/hoohoo.service; static)
Active: inactive (dead)
start condition failed at Tue 2013-06-25 18:08:42 EDT; 1s ago
ConditionPathExists=/tmp/hoo was not met
Full information is exported over D-Bus:
[(condition, trigger, negate, param, state),...]
where state is one of "failed" (<0), "untested" (0), "OK" (>0).
I've decided to use 0 for "untested", because it might be useful to
differentiate different types of failure later on, without breaking
compatibility.
systemctl shows the failing condition, if there was a non-trigger
failing condition, or says "none of the trigger conditions were met",
because there're often many trigger conditions, and they must all
fail for the condition to fail, so printing them all would consume
a lot of space, and bring unnecessary attention to something that is
quite low-level.
2013-06-25 22:09:07 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
_cleanup_bus_error_free_ sd_bus_error e = SD_BUS_ERROR_NULL;
|
|
|
|
|
Unit *u = userdata;
|
systemd,systemctl: export condition status and show failing condition
$ systemctl --user status hoohoo
hoohoo.service
Loaded: loaded (/home/zbyszek/.config/systemd/user/hoohoo.service; static)
Active: inactive (dead)
start condition failed at Tue 2013-06-25 18:08:42 EDT; 1s ago
ConditionPathExists=/tmp/hoo was not met
Full information is exported over D-Bus:
[(condition, trigger, negate, param, state),...]
where state is one of "failed" (<0), "untested" (0), "OK" (>0).
I've decided to use 0 for "untested", because it might be useful to
differentiate different types of failure later on, without breaking
compatibility.
systemctl shows the failing condition, if there was a non-trigger
failing condition, or says "none of the trigger conditions were met",
because there're often many trigger conditions, and they must all
fail for the condition to fail, so printing them all would consume
a lot of space, and bring unnecessary attention to something that is
quite low-level.
2013-06-25 22:09:07 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
systemd,systemctl: export condition status and show failing condition
$ systemctl --user status hoohoo
hoohoo.service
Loaded: loaded (/home/zbyszek/.config/systemd/user/hoohoo.service; static)
Active: inactive (dead)
start condition failed at Tue 2013-06-25 18:08:42 EDT; 1s ago
ConditionPathExists=/tmp/hoo was not met
Full information is exported over D-Bus:
[(condition, trigger, negate, param, state),...]
where state is one of "failed" (<0), "untested" (0), "OK" (>0).
I've decided to use 0 for "untested", because it might be useful to
differentiate different types of failure later on, without breaking
compatibility.
systemctl shows the failing condition, if there was a non-trigger
failing condition, or says "none of the trigger conditions were met",
because there're often many trigger conditions, and they must all
fail for the condition to fail, so printing them all would consume
a lot of space, and bring unnecessary attention to something that is
quite low-level.
2013-06-25 22:09:07 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
if (u->load_error != 0)
|
|
|
|
|
sd_bus_error_set_errno(&e, u->load_error);
|
systemd,systemctl: export condition status and show failing condition
$ systemctl --user status hoohoo
hoohoo.service
Loaded: loaded (/home/zbyszek/.config/systemd/user/hoohoo.service; static)
Active: inactive (dead)
start condition failed at Tue 2013-06-25 18:08:42 EDT; 1s ago
ConditionPathExists=/tmp/hoo was not met
Full information is exported over D-Bus:
[(condition, trigger, negate, param, state),...]
where state is one of "failed" (<0), "untested" (0), "OK" (>0).
I've decided to use 0 for "untested", because it might be useful to
differentiate different types of failure later on, without breaking
compatibility.
systemctl shows the failing condition, if there was a non-trigger
failing condition, or says "none of the trigger conditions were met",
because there're often many trigger conditions, and they must all
fail for the condition to fail, so printing them all would consume
a lot of space, and bring unnecessary attention to something that is
quite low-level.
2013-06-25 22:09:07 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "(ss)", e.name, e.message);
|
systemd,systemctl: export condition status and show failing condition
$ systemctl --user status hoohoo
hoohoo.service
Loaded: loaded (/home/zbyszek/.config/systemd/user/hoohoo.service; static)
Active: inactive (dead)
start condition failed at Tue 2013-06-25 18:08:42 EDT; 1s ago
ConditionPathExists=/tmp/hoo was not met
Full information is exported over D-Bus:
[(condition, trigger, negate, param, state),...]
where state is one of "failed" (<0), "untested" (0), "OK" (>0).
I've decided to use 0 for "untested", because it might be useful to
differentiate different types of failure later on, without breaking
compatibility.
systemctl shows the failing condition, if there was a non-trigger
failing condition, or says "none of the trigger conditions were met",
because there're often many trigger conditions, and they must all
fail for the condition to fail, so printing them all would consume
a lot of space, and bring unnecessary attention to something that is
quite low-level.
2013-06-25 22:09:07 +02:00
|
|
|
}
|
|
|
|
|
|
core: pass details to polkit for some unit actions
The following details are passed:
- unit: the primary name of the unit upon which the action was
invoked (i.e. after resolving any aliases);
- verb: one of 'start', 'stop', 'reload', 'restart', 'try-restart',
'reload-or-restart', 'reload-or-try-restart', 'kill',
'reset-failed', or 'set-property', corresponding to the
systemctl verb used to invoke the action.
Typical use of these details in a polkit policy rule might be:
// Allow alice to manage example.service;
// fall back to implicit authorization otherwise.
polkit.addRule(function(action, subject) {
if (action.id == "org.freedesktop.systemd1.manage-units" &&
action.lookup("unit") == "example.service" &&
subject.user == "alice") {
return polkit.Result.YES;
}
});
We also supply a custom polkit message that includes the unit's name and
the requested operation.
2015-09-05 16:07:17 +02:00
|
|
|
static int bus_verify_manage_units_async_full(
|
|
|
|
|
Unit *u,
|
|
|
|
|
const char *verb,
|
|
|
|
|
int capability,
|
|
|
|
|
const char *polkit_message,
|
|
|
|
|
sd_bus_message *call,
|
|
|
|
|
sd_bus_error *error) {
|
|
|
|
|
|
|
|
|
|
const char *details[9] = {
|
|
|
|
|
"unit", u->id,
|
|
|
|
|
"verb", verb,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if (polkit_message) {
|
|
|
|
|
details[4] = "polkit.message";
|
|
|
|
|
details[5] = polkit_message;
|
|
|
|
|
details[6] = "polkit.gettext_domain";
|
|
|
|
|
details[7] = GETTEXT_PACKAGE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return bus_verify_polkit_async(call, capability, "org.freedesktop.systemd1.manage-units", details, false, UID_INVALID, &u->manager->polkit_registry, error);
|
|
|
|
|
}
|
|
|
|
|
|
2015-02-18 17:40:57 +01:00
|
|
|
int bus_unit_method_start_generic(
|
|
|
|
|
sd_bus_message *message,
|
|
|
|
|
Unit *u,
|
|
|
|
|
JobType job_type,
|
|
|
|
|
bool reload_if_possible,
|
|
|
|
|
sd_bus_error *error) {
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
const char *smode;
|
|
|
|
|
JobMode mode;
|
core: pass details to polkit for some unit actions
The following details are passed:
- unit: the primary name of the unit upon which the action was
invoked (i.e. after resolving any aliases);
- verb: one of 'start', 'stop', 'reload', 'restart', 'try-restart',
'reload-or-restart', 'reload-or-try-restart', 'kill',
'reset-failed', or 'set-property', corresponding to the
systemctl verb used to invoke the action.
Typical use of these details in a polkit policy rule might be:
// Allow alice to manage example.service;
// fall back to implicit authorization otherwise.
polkit.addRule(function(action, subject) {
if (action.id == "org.freedesktop.systemd1.manage-units" &&
action.lookup("unit") == "example.service" &&
subject.user == "alice") {
return polkit.Result.YES;
}
});
We also supply a custom polkit message that includes the unit's name and
the requested operation.
2015-09-05 16:07:17 +02:00
|
|
|
_cleanup_free_ char *verb = NULL;
|
|
|
|
|
static const char *const polkit_message_for_job[_JOB_TYPE_MAX] = {
|
|
|
|
|
[JOB_START] = N_("Authentication is required to start '$(unit)'."),
|
|
|
|
|
[JOB_STOP] = N_("Authentication is required to stop '$(unit)'."),
|
|
|
|
|
[JOB_RELOAD] = N_("Authentication is required to reload '$(unit)'."),
|
|
|
|
|
[JOB_RESTART] = N_("Authentication is required to restart '$(unit)'."),
|
|
|
|
|
[JOB_TRY_RESTART] = N_("Authentication is required to restart '$(unit)'."),
|
|
|
|
|
};
|
2013-11-19 21:12:59 +01:00
|
|
|
int r;
|
2011-07-31 18:13:03 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(message);
|
2011-07-31 18:13:03 +02:00
|
|
|
assert(u);
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(job_type >= 0 && job_type < _JOB_TYPE_MAX);
|
2011-07-31 18:13:03 +02:00
|
|
|
|
2015-02-18 17:40:57 +01:00
|
|
|
r = mac_selinux_unit_access_check(u, message, job_type == JOB_STOP ? "stop" : "start", error);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_read(message, "s", &smode);
|
|
|
|
|
if (r < 0)
|
2013-11-21 19:34:37 +01:00
|
|
|
return r;
|
2011-07-31 18:13:03 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
mode = job_mode_from_string(smode);
|
|
|
|
|
if (mode < 0)
|
2013-11-21 19:34:37 +01:00
|
|
|
return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Job mode %s invalid", smode);
|
2011-07-31 18:13:03 +02:00
|
|
|
|
core: pass details to polkit for some unit actions
The following details are passed:
- unit: the primary name of the unit upon which the action was
invoked (i.e. after resolving any aliases);
- verb: one of 'start', 'stop', 'reload', 'restart', 'try-restart',
'reload-or-restart', 'reload-or-try-restart', 'kill',
'reset-failed', or 'set-property', corresponding to the
systemctl verb used to invoke the action.
Typical use of these details in a polkit policy rule might be:
// Allow alice to manage example.service;
// fall back to implicit authorization otherwise.
polkit.addRule(function(action, subject) {
if (action.id == "org.freedesktop.systemd1.manage-units" &&
action.lookup("unit") == "example.service" &&
subject.user == "alice") {
return polkit.Result.YES;
}
});
We also supply a custom polkit message that includes the unit's name and
the requested operation.
2015-09-05 16:07:17 +02:00
|
|
|
if (reload_if_possible)
|
|
|
|
|
verb = strjoin("reload-or-", job_type_to_string(job_type), NULL);
|
|
|
|
|
else
|
|
|
|
|
verb = strdup(job_type_to_string(job_type));
|
|
|
|
|
if (!verb)
|
|
|
|
|
return -ENOMEM;
|
|
|
|
|
|
|
|
|
|
r = bus_verify_manage_units_async_full(
|
|
|
|
|
u,
|
|
|
|
|
verb,
|
|
|
|
|
CAP_SYS_ADMIN,
|
|
|
|
|
job_type < _JOB_TYPE_MAX ? polkit_message_for_job[job_type] : NULL,
|
|
|
|
|
message,
|
|
|
|
|
error);
|
2015-02-18 17:40:57 +01:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
if (r == 0)
|
|
|
|
|
return 1; /* No authorization for now, but the async polkit stuff will call us again when it has it */
|
|
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
return bus_unit_queue_job(message, u, job_type, mode, reload_if_possible, error);
|
2011-07-31 18:13:03 +02:00
|
|
|
}
|
|
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
static int method_start(sd_bus_message *message, void *userdata, sd_bus_error *error) {
|
|
|
|
|
return bus_unit_method_start_generic(message, userdata, JOB_START, false, error);
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
2010-02-03 12:37:42 +01:00
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
static int method_stop(sd_bus_message *message, void *userdata, sd_bus_error *error) {
|
|
|
|
|
return bus_unit_method_start_generic(message, userdata, JOB_STOP, false, error);
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
|
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
static int method_reload(sd_bus_message *message, void *userdata, sd_bus_error *error) {
|
|
|
|
|
return bus_unit_method_start_generic(message, userdata, JOB_RELOAD, false, error);
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
2011-07-13 19:56:40 +02:00
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
static int method_restart(sd_bus_message *message, void *userdata, sd_bus_error *error) {
|
|
|
|
|
return bus_unit_method_start_generic(message, userdata, JOB_RESTART, false, error);
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
2010-10-22 16:11:50 +02:00
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
static int method_try_restart(sd_bus_message *message, void *userdata, sd_bus_error *error) {
|
|
|
|
|
return bus_unit_method_start_generic(message, userdata, JOB_TRY_RESTART, false, error);
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
2012-10-02 23:07:00 +02:00
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
static int method_reload_or_restart(sd_bus_message *message, void *userdata, sd_bus_error *error) {
|
|
|
|
|
return bus_unit_method_start_generic(message, userdata, JOB_RESTART, true, error);
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
2010-10-22 16:11:50 +02:00
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
static int method_reload_or_try_restart(sd_bus_message *message, void *userdata, sd_bus_error *error) {
|
|
|
|
|
return bus_unit_method_start_generic(message, userdata, JOB_TRY_RESTART, true, error);
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
2010-10-22 16:11:50 +02:00
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
int bus_unit_method_kill(sd_bus_message *message, void *userdata, sd_bus_error *error) {
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
|
|
|
|
const char *swho;
|
|
|
|
|
int32_t signo;
|
|
|
|
|
KillWho who;
|
|
|
|
|
int r;
|
2010-07-18 04:58:01 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(message);
|
|
|
|
|
assert(u);
|
2012-10-02 23:07:00 +02:00
|
|
|
|
2015-02-18 17:40:57 +01:00
|
|
|
r = mac_selinux_unit_access_check(u, message, "stop", error);
|
2014-08-06 11:45:36 +02:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_read(message, "si", &swho, &signo);
|
|
|
|
|
if (r < 0)
|
2013-11-21 19:34:37 +01:00
|
|
|
return r;
|
2013-11-19 21:12:59 +01:00
|
|
|
|
|
|
|
|
if (isempty(swho))
|
|
|
|
|
who = KILL_ALL;
|
|
|
|
|
else {
|
|
|
|
|
who = kill_who_from_string(swho);
|
|
|
|
|
if (who < 0)
|
2013-11-21 19:34:37 +01:00
|
|
|
return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Invalid who argument %s", swho);
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
2010-07-18 04:58:01 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
if (signo <= 0 || signo >= _NSIG)
|
2013-11-21 19:34:37 +01:00
|
|
|
return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Signal number out of range.");
|
2013-06-27 21:14:56 +02:00
|
|
|
|
core: pass details to polkit for some unit actions
The following details are passed:
- unit: the primary name of the unit upon which the action was
invoked (i.e. after resolving any aliases);
- verb: one of 'start', 'stop', 'reload', 'restart', 'try-restart',
'reload-or-restart', 'reload-or-try-restart', 'kill',
'reset-failed', or 'set-property', corresponding to the
systemctl verb used to invoke the action.
Typical use of these details in a polkit policy rule might be:
// Allow alice to manage example.service;
// fall back to implicit authorization otherwise.
polkit.addRule(function(action, subject) {
if (action.id == "org.freedesktop.systemd1.manage-units" &&
action.lookup("unit") == "example.service" &&
subject.user == "alice") {
return polkit.Result.YES;
}
});
We also supply a custom polkit message that includes the unit's name and
the requested operation.
2015-09-05 16:07:17 +02:00
|
|
|
r = bus_verify_manage_units_async_full(
|
|
|
|
|
u,
|
|
|
|
|
"kill",
|
|
|
|
|
CAP_KILL,
|
|
|
|
|
N_("Authentication is required to kill '$(unit)'."),
|
|
|
|
|
message,
|
|
|
|
|
error);
|
2013-11-21 19:34:37 +01:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2015-02-18 17:40:57 +01:00
|
|
|
if (r == 0)
|
|
|
|
|
return 1; /* No authorization for now, but the async polkit stuff will call us again when it has it */
|
2013-06-27 21:14:56 +02:00
|
|
|
|
2013-11-21 19:34:37 +01:00
|
|
|
r = unit_kill(u, who, signo, error);
|
2013-11-19 21:12:59 +01:00
|
|
|
if (r < 0)
|
2013-11-21 19:34:37 +01:00
|
|
|
return r;
|
2013-06-27 21:14:56 +02:00
|
|
|
|
2013-11-21 01:51:16 +01:00
|
|
|
return sd_bus_reply_method_return(message, NULL);
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
2013-06-27 21:14:56 +02:00
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
int bus_unit_method_reset_failed(sd_bus_message *message, void *userdata, sd_bus_error *error) {
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
2013-11-21 19:34:37 +01:00
|
|
|
int r;
|
2010-02-03 12:37:42 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(message);
|
|
|
|
|
assert(u);
|
2010-02-03 12:37:42 +01:00
|
|
|
|
2015-02-18 17:40:57 +01:00
|
|
|
r = mac_selinux_unit_access_check(u, message, "reload", error);
|
2014-08-06 11:45:36 +02:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
core: pass details to polkit for some unit actions
The following details are passed:
- unit: the primary name of the unit upon which the action was
invoked (i.e. after resolving any aliases);
- verb: one of 'start', 'stop', 'reload', 'restart', 'try-restart',
'reload-or-restart', 'reload-or-try-restart', 'kill',
'reset-failed', or 'set-property', corresponding to the
systemctl verb used to invoke the action.
Typical use of these details in a polkit policy rule might be:
// Allow alice to manage example.service;
// fall back to implicit authorization otherwise.
polkit.addRule(function(action, subject) {
if (action.id == "org.freedesktop.systemd1.manage-units" &&
action.lookup("unit") == "example.service" &&
subject.user == "alice") {
return polkit.Result.YES;
}
});
We also supply a custom polkit message that includes the unit's name and
the requested operation.
2015-09-05 16:07:17 +02:00
|
|
|
r = bus_verify_manage_units_async_full(
|
|
|
|
|
u,
|
|
|
|
|
"reset-failed",
|
|
|
|
|
CAP_SYS_ADMIN,
|
|
|
|
|
N_("Authentication is required to reset the \"failed\" state of '$(unit)'."),
|
|
|
|
|
message,
|
|
|
|
|
error);
|
2013-11-21 19:34:37 +01:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2015-02-18 17:40:57 +01:00
|
|
|
if (r == 0)
|
|
|
|
|
return 1; /* No authorization for now, but the async polkit stuff will call us again when it has it */
|
2010-02-03 12:37:42 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
unit_reset_failed(u);
|
2010-02-03 12:37:42 +01:00
|
|
|
|
2013-11-21 01:51:16 +01:00
|
|
|
return sd_bus_reply_method_return(message, NULL);
|
2010-02-01 03:33:24 +01:00
|
|
|
}
|
|
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
int bus_unit_method_set_properties(sd_bus_message *message, void *userdata, sd_bus_error *error) {
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
|
|
|
|
int runtime, r;
|
2010-02-01 03:33:24 +01:00
|
|
|
|
|
|
|
|
assert(message);
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(u);
|
2012-05-21 12:54:34 +02:00
|
|
|
|
2015-02-18 17:40:57 +01:00
|
|
|
r = mac_selinux_unit_access_check(u, message, "start", error);
|
2014-08-06 11:45:36 +02:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_read(message, "b", &runtime);
|
|
|
|
|
if (r < 0)
|
2013-11-21 19:34:37 +01:00
|
|
|
return r;
|
2010-10-13 03:03:31 +02:00
|
|
|
|
core: pass details to polkit for some unit actions
The following details are passed:
- unit: the primary name of the unit upon which the action was
invoked (i.e. after resolving any aliases);
- verb: one of 'start', 'stop', 'reload', 'restart', 'try-restart',
'reload-or-restart', 'reload-or-try-restart', 'kill',
'reset-failed', or 'set-property', corresponding to the
systemctl verb used to invoke the action.
Typical use of these details in a polkit policy rule might be:
// Allow alice to manage example.service;
// fall back to implicit authorization otherwise.
polkit.addRule(function(action, subject) {
if (action.id == "org.freedesktop.systemd1.manage-units" &&
action.lookup("unit") == "example.service" &&
subject.user == "alice") {
return polkit.Result.YES;
}
});
We also supply a custom polkit message that includes the unit's name and
the requested operation.
2015-09-05 16:07:17 +02:00
|
|
|
r = bus_verify_manage_units_async_full(
|
|
|
|
|
u,
|
|
|
|
|
"set-property",
|
|
|
|
|
CAP_SYS_ADMIN,
|
|
|
|
|
N_("Authentication is required to set properties on '$(unit)'."),
|
|
|
|
|
message,
|
|
|
|
|
error);
|
2013-11-21 19:34:37 +01:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2015-02-18 17:40:57 +01:00
|
|
|
if (r == 0)
|
|
|
|
|
return 1; /* No authorization for now, but the async polkit stuff will call us again when it has it */
|
2012-10-02 23:07:00 +02:00
|
|
|
|
2013-11-21 19:34:37 +01:00
|
|
|
r = bus_unit_set_properties(u, message, runtime ? UNIT_RUNTIME : UNIT_PERSISTENT, true, error);
|
2013-11-19 21:12:59 +01:00
|
|
|
if (r < 0)
|
2013-11-21 19:34:37 +01:00
|
|
|
return r;
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-21 01:51:16 +01:00
|
|
|
return sd_bus_reply_method_return(message, NULL);
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
const sd_bus_vtable bus_unit_vtable[] = {
|
|
|
|
|
SD_BUS_VTABLE_START(0),
|
|
|
|
|
|
2013-12-22 02:24:05 +01:00
|
|
|
SD_BUS_PROPERTY("Id", "s", NULL, offsetof(Unit, id), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("Names", "as", property_get_names, 0, SD_BUS_VTABLE_PROPERTY_CONST),
|
2013-11-19 21:12:59 +01:00
|
|
|
SD_BUS_PROPERTY("Following", "s", property_get_following, 0, 0),
|
2013-12-22 02:24:05 +01:00
|
|
|
SD_BUS_PROPERTY("Requires", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_REQUIRES]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("RequiresOverridable", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_REQUIRES_OVERRIDABLE]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("Requisite", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_REQUISITE]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("RequisiteOverridable", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_REQUISITE_OVERRIDABLE]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("Wants", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_WANTS]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("BindsTo", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_BINDS_TO]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("PartOf", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_PART_OF]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("RequiredBy", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_REQUIRED_BY]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("RequiredByOverridable", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_REQUIRED_BY_OVERRIDABLE]), SD_BUS_VTABLE_PROPERTY_CONST),
|
2015-05-19 01:24:28 +02:00
|
|
|
SD_BUS_PROPERTY("RequisiteOf", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_REQUISITE_OF]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("RequisiteOfOverridable", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_REQUISITE_OF_OVERRIDABLE]), SD_BUS_VTABLE_PROPERTY_CONST),
|
2013-12-22 02:24:05 +01:00
|
|
|
SD_BUS_PROPERTY("WantedBy", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_WANTED_BY]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("BoundBy", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_BOUND_BY]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("ConsistsOf", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_CONSISTS_OF]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("Conflicts", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_CONFLICTS]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("ConflictedBy", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_CONFLICTED_BY]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("Before", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_BEFORE]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("After", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_AFTER]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("OnFailure", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_ON_FAILURE]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("Triggers", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_TRIGGERS]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("TriggeredBy", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_TRIGGERED_BY]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("PropagatesReloadTo", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_PROPAGATES_RELOAD_TO]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("ReloadPropagatedFrom", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_RELOAD_PROPAGATED_FROM]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("JoinsNamespaceOf", "as", property_get_dependencies, offsetof(Unit, dependencies[UNIT_JOINS_NAMESPACE_OF]), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("RequiresMountsFor", "as", NULL, offsetof(Unit, requires_mounts_for), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("Documentation", "as", NULL, offsetof(Unit, documentation), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("Description", "s", property_get_description, 0, SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("LoadState", "s", property_get_load_state, offsetof(Unit, load_state), SD_BUS_VTABLE_PROPERTY_CONST),
|
2013-11-19 21:12:59 +01:00
|
|
|
SD_BUS_PROPERTY("ActiveState", "s", property_get_active_state, 0, SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE),
|
|
|
|
|
SD_BUS_PROPERTY("SubState", "s", property_get_sub_state, 0, SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE),
|
2013-12-22 02:24:05 +01:00
|
|
|
SD_BUS_PROPERTY("FragmentPath", "s", NULL, offsetof(Unit, fragment_path), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("SourcePath", "s", NULL, offsetof(Unit, source_path), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("DropInPaths", "as", NULL, offsetof(Unit, dropin_paths), SD_BUS_VTABLE_PROPERTY_CONST),
|
2013-11-19 21:12:59 +01:00
|
|
|
SD_BUS_PROPERTY("UnitFileState", "s", property_get_unit_file_state, 0, 0),
|
2014-12-02 02:38:18 +01:00
|
|
|
SD_BUS_PROPERTY("UnitFilePreset", "s", property_get_unit_file_preset, 0, 0),
|
2013-11-19 21:12:59 +01:00
|
|
|
BUS_PROPERTY_DUAL_TIMESTAMP("InactiveExitTimestamp", offsetof(Unit, inactive_exit_timestamp), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE),
|
|
|
|
|
BUS_PROPERTY_DUAL_TIMESTAMP("ActiveEnterTimestamp", offsetof(Unit, active_enter_timestamp), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE),
|
|
|
|
|
BUS_PROPERTY_DUAL_TIMESTAMP("ActiveExitTimestamp", offsetof(Unit, active_exit_timestamp), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE),
|
|
|
|
|
BUS_PROPERTY_DUAL_TIMESTAMP("InactiveEnterTimestamp", offsetof(Unit, inactive_enter_timestamp), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE),
|
2013-12-22 02:24:05 +01:00
|
|
|
SD_BUS_PROPERTY("CanStart", "b", property_get_can_start, 0, SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("CanStop", "b", property_get_can_stop, 0, SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("CanReload", "b", property_get_can_reload, 0, SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("CanIsolate", "b", property_get_can_isolate, 0, SD_BUS_VTABLE_PROPERTY_CONST),
|
2013-11-19 21:12:59 +01:00
|
|
|
SD_BUS_PROPERTY("Job", "(uo)", property_get_job, 0, SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE),
|
2013-12-22 02:24:05 +01:00
|
|
|
SD_BUS_PROPERTY("StopWhenUnneeded", "b", bus_property_get_bool, offsetof(Unit, stop_when_unneeded), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("RefuseManualStart", "b", bus_property_get_bool, offsetof(Unit, refuse_manual_start), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("RefuseManualStop", "b", bus_property_get_bool, offsetof(Unit, refuse_manual_stop), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("AllowIsolate", "b", bus_property_get_bool, offsetof(Unit, allow_isolate), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("DefaultDependencies", "b", bus_property_get_bool, offsetof(Unit, default_dependencies), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("OnFailureJobMode", "s", property_get_job_mode, offsetof(Unit, on_failure_job_mode), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("IgnoreOnIsolate", "b", bus_property_get_bool, offsetof(Unit, ignore_on_isolate), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("IgnoreOnSnapshot", "b", bus_property_get_bool, offsetof(Unit, ignore_on_snapshot), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("NeedDaemonReload", "b", property_get_need_daemon_reload, 0, SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("JobTimeoutUSec", "t", bus_property_get_usec, offsetof(Unit, job_timeout), SD_BUS_VTABLE_PROPERTY_CONST),
|
2014-10-28 01:49:07 +01:00
|
|
|
SD_BUS_PROPERTY("JobTimeoutAction", "s", property_get_failure_action, offsetof(Unit, job_timeout_action), SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("JobTimeoutRebootArgument", "s", NULL, offsetof(Unit, job_timeout_reboot_arg), SD_BUS_VTABLE_PROPERTY_CONST),
|
2013-11-19 21:12:59 +01:00
|
|
|
SD_BUS_PROPERTY("ConditionResult", "b", bus_property_get_bool, offsetof(Unit, condition_result), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE),
|
2014-11-06 13:43:45 +01:00
|
|
|
SD_BUS_PROPERTY("AssertResult", "b", bus_property_get_bool, offsetof(Unit, assert_result), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE),
|
2013-11-19 21:12:59 +01:00
|
|
|
BUS_PROPERTY_DUAL_TIMESTAMP("ConditionTimestamp", offsetof(Unit, condition_timestamp), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE),
|
2014-11-06 13:43:45 +01:00
|
|
|
BUS_PROPERTY_DUAL_TIMESTAMP("AssertTimestamp", offsetof(Unit, assert_timestamp), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE),
|
|
|
|
|
SD_BUS_PROPERTY("Conditions", "a(sbbsi)", property_get_conditions, offsetof(Unit, conditions), 0),
|
|
|
|
|
SD_BUS_PROPERTY("Asserts", "a(sbbsi)", property_get_conditions, offsetof(Unit, asserts), 0),
|
2013-12-22 02:24:05 +01:00
|
|
|
SD_BUS_PROPERTY("LoadError", "(ss)", property_get_load_error, 0, SD_BUS_VTABLE_PROPERTY_CONST),
|
|
|
|
|
SD_BUS_PROPERTY("Transient", "b", bus_property_get_bool, offsetof(Unit, transient), SD_BUS_VTABLE_PROPERTY_CONST),
|
2015-10-14 19:31:42 +02:00
|
|
|
SD_BUS_PROPERTY("NetClass", "u", NULL, offsetof(Unit, cgroup_netclass_id), 0),
|
2013-11-19 21:12:59 +01:00
|
|
|
|
2015-02-18 17:40:57 +01:00
|
|
|
SD_BUS_METHOD("Start", "s", "o", method_start, SD_BUS_VTABLE_UNPRIVILEGED),
|
|
|
|
|
SD_BUS_METHOD("Stop", "s", "o", method_stop, SD_BUS_VTABLE_UNPRIVILEGED),
|
|
|
|
|
SD_BUS_METHOD("Reload", "s", "o", method_reload, SD_BUS_VTABLE_UNPRIVILEGED),
|
|
|
|
|
SD_BUS_METHOD("Restart", "s", "o", method_restart, SD_BUS_VTABLE_UNPRIVILEGED),
|
|
|
|
|
SD_BUS_METHOD("TryRestart", "s", "o", method_try_restart, SD_BUS_VTABLE_UNPRIVILEGED),
|
|
|
|
|
SD_BUS_METHOD("ReloadOrRestart", "s", "o", method_reload_or_restart, SD_BUS_VTABLE_UNPRIVILEGED),
|
|
|
|
|
SD_BUS_METHOD("ReloadOrTryRestart", "s", "o", method_reload_or_try_restart, SD_BUS_VTABLE_UNPRIVILEGED),
|
|
|
|
|
SD_BUS_METHOD("Kill", "si", NULL, bus_unit_method_kill, SD_BUS_VTABLE_UNPRIVILEGED),
|
|
|
|
|
SD_BUS_METHOD("ResetFailed", NULL, NULL, bus_unit_method_reset_failed, SD_BUS_VTABLE_UNPRIVILEGED),
|
|
|
|
|
SD_BUS_METHOD("SetProperties", "ba(sv)", NULL, bus_unit_method_set_properties, SD_BUS_VTABLE_UNPRIVILEGED),
|
2013-11-19 21:12:59 +01:00
|
|
|
|
|
|
|
|
SD_BUS_VTABLE_END
|
|
|
|
|
};
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
static int property_get_slice(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
2013-11-21 19:34:37 +01:00
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
Unit *u = userdata;
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_message_append(reply, "s", unit_slice_name(u));
|
|
|
|
|
}
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2015-01-23 02:58:02 +01:00
|
|
|
static int property_get_current_memory(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
|
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
|
|
|
|
|
|
|
|
|
uint64_t sz = (uint64_t) -1;
|
2015-03-01 16:24:19 +01:00
|
|
|
Unit *u = userdata;
|
2015-01-23 02:58:02 +01:00
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
|
|
|
|
|
2015-03-01 16:24:19 +01:00
|
|
|
r = unit_get_memory_current(u, &sz);
|
|
|
|
|
if (r < 0 && r != -ENODATA)
|
core,network: major per-object logging rework
This changes log_unit_info() (and friends) to take a real Unit* object
insted of just a unit name as parameter. The call will now prefix all
logged messages with the unit name, thus allowing the unit name to be
dropped from the various passed romat strings, simplifying invocations
drastically, and unifying log output across messages. Also, UNIT= vs.
USER_UNIT= is now derived from the Manager object attached to the Unit
object, instead of getpid(). This has the benefit of correcting the
field for --test runs.
Also contains a couple of other logging improvements:
- Drops a couple of strerror() invocations in favour of using %m.
- Not only .mount units now warn if a symlinks exist for the mount
point already, .automount units do that too, now.
- A few invocations of log_struct() that didn't actually pass any
additional structured data have been replaced by simpler invocations
of log_unit_info() and friends.
- For structured data a new LOG_UNIT_MESSAGE() macro has been added,
that works like LOG_MESSAGE() but prefixes the message with the unit
name. Similar, there's now LOG_LINK_MESSAGE() and
LOG_NETDEV_MESSAGE().
- For structured data new LOG_UNIT_ID(), LOG_LINK_INTERFACE(),
LOG_NETDEV_INTERFACE() macros have been added that generate the
necessary per object fields. The old log_unit_struct() call has been
removed in favour of these new macros used in raw log_struct()
invocations. In addition to removing one more function call this
allows generated structured log messages that contain two object
fields, as necessary for example for network interfaces that are
joined into another network interface, and whose messages shall be
indexed by both.
- The LOG_ERRNO() macro has been removed, in favour of
log_struct_errno(). The latter has the benefit of ensuring that %m in
format strings is properly resolved to the specified error number.
- A number of logging messages have been converted to use
log_unit_info() instead of log_info()
- The client code in sysv-generator no longer #includes core code from
src/core/.
- log_unit_full_errno() has been removed, log_unit_full() instead takes
an errno now, too.
- log_unit_info(), log_link_info(), log_netdev_info() and friends, now
avoid double evaluation of their parameters
2015-05-11 20:38:21 +02:00
|
|
|
log_unit_warning_errno(u, r, "Failed to get memory.usage_in_bytes attribute: %m");
|
2015-01-23 02:58:02 +01:00
|
|
|
|
2015-03-01 16:24:19 +01:00
|
|
|
return sd_bus_message_append(reply, "t", sz);
|
|
|
|
|
}
|
2015-01-23 02:58:02 +01:00
|
|
|
|
2015-09-10 12:32:16 +02:00
|
|
|
static int property_get_current_tasks(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
|
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
|
|
|
|
|
|
|
|
|
uint64_t cn = (uint64_t) -1;
|
|
|
|
|
Unit *u = userdata;
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
|
|
|
|
|
|
|
|
|
r = unit_get_tasks_current(u, &cn);
|
|
|
|
|
if (r < 0 && r != -ENODATA)
|
|
|
|
|
log_unit_warning_errno(u, r, "Failed to get pids.current attribute: %m");
|
|
|
|
|
|
|
|
|
|
return sd_bus_message_append(reply, "t", cn);
|
|
|
|
|
}
|
|
|
|
|
|
2015-03-01 16:24:19 +01:00
|
|
|
static int property_get_cpu_usage(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
|
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
2015-01-23 02:58:02 +01:00
|
|
|
|
2015-03-01 16:24:19 +01:00
|
|
|
nsec_t ns = (nsec_t) -1;
|
|
|
|
|
Unit *u = userdata;
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
|
|
|
|
|
|
|
|
|
r = unit_get_cpu_usage(u, &ns);
|
|
|
|
|
if (r < 0 && r != -ENODATA)
|
core,network: major per-object logging rework
This changes log_unit_info() (and friends) to take a real Unit* object
insted of just a unit name as parameter. The call will now prefix all
logged messages with the unit name, thus allowing the unit name to be
dropped from the various passed romat strings, simplifying invocations
drastically, and unifying log output across messages. Also, UNIT= vs.
USER_UNIT= is now derived from the Manager object attached to the Unit
object, instead of getpid(). This has the benefit of correcting the
field for --test runs.
Also contains a couple of other logging improvements:
- Drops a couple of strerror() invocations in favour of using %m.
- Not only .mount units now warn if a symlinks exist for the mount
point already, .automount units do that too, now.
- A few invocations of log_struct() that didn't actually pass any
additional structured data have been replaced by simpler invocations
of log_unit_info() and friends.
- For structured data a new LOG_UNIT_MESSAGE() macro has been added,
that works like LOG_MESSAGE() but prefixes the message with the unit
name. Similar, there's now LOG_LINK_MESSAGE() and
LOG_NETDEV_MESSAGE().
- For structured data new LOG_UNIT_ID(), LOG_LINK_INTERFACE(),
LOG_NETDEV_INTERFACE() macros have been added that generate the
necessary per object fields. The old log_unit_struct() call has been
removed in favour of these new macros used in raw log_struct()
invocations. In addition to removing one more function call this
allows generated structured log messages that contain two object
fields, as necessary for example for network interfaces that are
joined into another network interface, and whose messages shall be
indexed by both.
- The LOG_ERRNO() macro has been removed, in favour of
log_struct_errno(). The latter has the benefit of ensuring that %m in
format strings is properly resolved to the specified error number.
- A number of logging messages have been converted to use
log_unit_info() instead of log_info()
- The client code in sysv-generator no longer #includes core code from
src/core/.
- log_unit_full_errno() has been removed, log_unit_full() instead takes
an errno now, too.
- log_unit_info(), log_link_info(), log_netdev_info() and friends, now
avoid double evaluation of their parameters
2015-05-11 20:38:21 +02:00
|
|
|
log_unit_warning_errno(u, r, "Failed to get cpuacct.usage attribute: %m");
|
2015-03-01 16:24:19 +01:00
|
|
|
|
|
|
|
|
return sd_bus_message_append(reply, "t", ns);
|
2015-01-23 02:58:02 +01:00
|
|
|
}
|
|
|
|
|
|
2015-08-25 20:42:50 +02:00
|
|
|
static int property_get_cgroup(
|
|
|
|
|
sd_bus *bus,
|
|
|
|
|
const char *path,
|
|
|
|
|
const char *interface,
|
|
|
|
|
const char *property,
|
|
|
|
|
sd_bus_message *reply,
|
|
|
|
|
void *userdata,
|
|
|
|
|
sd_bus_error *error) {
|
|
|
|
|
|
|
|
|
|
Unit *u = userdata;
|
|
|
|
|
const char *t;
|
|
|
|
|
|
|
|
|
|
assert(bus);
|
|
|
|
|
assert(reply);
|
|
|
|
|
assert(u);
|
|
|
|
|
|
|
|
|
|
/* Three cases: a) u->cgroup_path is NULL, in which case the
|
|
|
|
|
* unit has no control group, which we report as the empty
|
|
|
|
|
* string. b) u->cgroup_path is the empty string, which
|
|
|
|
|
* indicates the root cgroup, which we report as "/". c) all
|
|
|
|
|
* other cases we report as-is. */
|
|
|
|
|
|
|
|
|
|
if (u->cgroup_path)
|
|
|
|
|
t = isempty(u->cgroup_path) ? "/" : u->cgroup_path;
|
|
|
|
|
else
|
|
|
|
|
t = "";
|
|
|
|
|
|
|
|
|
|
return sd_bus_message_append(reply, "s", t);
|
|
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
const sd_bus_vtable bus_unit_cgroup_vtable[] = {
|
|
|
|
|
SD_BUS_VTABLE_START(0),
|
|
|
|
|
SD_BUS_PROPERTY("Slice", "s", property_get_slice, 0, 0),
|
2015-08-25 20:42:50 +02:00
|
|
|
SD_BUS_PROPERTY("ControlGroup", "s", property_get_cgroup, 0, 0),
|
2015-01-23 02:58:02 +01:00
|
|
|
SD_BUS_PROPERTY("MemoryCurrent", "t", property_get_current_memory, 0, 0),
|
2015-03-01 16:24:19 +01:00
|
|
|
SD_BUS_PROPERTY("CPUUsageNSec", "t", property_get_cpu_usage, 0, 0),
|
2015-09-10 12:32:16 +02:00
|
|
|
SD_BUS_PROPERTY("TasksCurrent", "t", property_get_current_tasks, 0, 0),
|
2013-11-19 21:12:59 +01:00
|
|
|
SD_BUS_VTABLE_END
|
|
|
|
|
};
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2014-03-03 01:33:45 +01:00
|
|
|
static int send_new_signal(sd_bus *bus, void *userdata) {
|
2013-11-19 21:12:59 +01:00
|
|
|
_cleanup_bus_message_unref_ sd_bus_message *m = NULL;
|
|
|
|
|
_cleanup_free_ char *p = NULL;
|
|
|
|
|
Unit *u = userdata;
|
|
|
|
|
int r;
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(u);
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
p = unit_dbus_path(u);
|
2015-05-19 06:45:52 +02:00
|
|
|
if (!p)
|
2013-11-19 21:12:59 +01:00
|
|
|
return -ENOMEM;
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_new_signal(
|
|
|
|
|
bus,
|
2014-02-19 23:54:58 +01:00
|
|
|
&m,
|
2013-11-19 21:12:59 +01:00
|
|
|
"/org/freedesktop/systemd1",
|
|
|
|
|
"org.freedesktop.systemd1.Manager",
|
2014-02-19 23:54:58 +01:00
|
|
|
"UnitNew");
|
2013-11-19 21:12:59 +01:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_append(m, "so", u->id, p);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2014-03-03 01:33:45 +01:00
|
|
|
return sd_bus_send(bus, m, NULL);
|
2013-11-19 21:12:59 +01:00
|
|
|
}
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2014-03-03 01:33:45 +01:00
|
|
|
static int send_changed_signal(sd_bus *bus, void *userdata) {
|
2013-11-19 21:12:59 +01:00
|
|
|
_cleanup_free_ char *p = NULL;
|
|
|
|
|
Unit *u = userdata;
|
|
|
|
|
int r;
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(u);
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
p = unit_dbus_path(u);
|
2014-01-31 17:47:22 +01:00
|
|
|
if (!p)
|
2013-11-19 21:12:59 +01:00
|
|
|
return -ENOMEM;
|
2010-10-13 03:03:31 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
/* Send a properties changed signal. First for the specific
|
|
|
|
|
* type, then for the generic unit. The clients may rely on
|
|
|
|
|
* this order to get atomic behavior if needed. */
|
2010-02-01 03:33:24 +01:00
|
|
|
|
2013-12-22 03:43:03 +01:00
|
|
|
r = sd_bus_emit_properties_changed_strv(
|
|
|
|
|
bus, p,
|
2015-08-27 22:30:43 +02:00
|
|
|
unit_dbus_interface_from_type(u->type),
|
2013-12-22 03:43:03 +01:00
|
|
|
NULL);
|
2014-03-11 04:10:19 +01:00
|
|
|
if (r < 0)
|
2013-12-22 03:43:03 +01:00
|
|
|
return r;
|
2012-05-21 12:54:34 +02:00
|
|
|
|
2014-03-11 04:10:19 +01:00
|
|
|
return sd_bus_emit_properties_changed_strv(
|
2013-11-19 21:12:59 +01:00
|
|
|
bus, p,
|
|
|
|
|
"org.freedesktop.systemd1.Unit",
|
|
|
|
|
NULL);
|
2010-02-01 03:33:24 +01:00
|
|
|
}
|
|
|
|
|
|
2010-02-05 00:38:41 +01:00
|
|
|
void bus_unit_send_change_signal(Unit *u) {
|
2013-07-10 20:33:11 +02:00
|
|
|
int r;
|
2010-02-05 00:38:41 +01:00
|
|
|
assert(u);
|
|
|
|
|
|
2012-01-15 12:04:08 +01:00
|
|
|
if (u->in_dbus_queue) {
|
2013-10-14 06:10:14 +02:00
|
|
|
LIST_REMOVE(dbus_queue, u->manager->dbus_unit_queue, u);
|
2012-01-15 12:04:08 +01:00
|
|
|
u->in_dbus_queue = false;
|
2010-07-11 03:59:49 +02:00
|
|
|
}
|
2010-02-05 00:38:41 +01:00
|
|
|
|
2012-01-15 12:04:08 +01:00
|
|
|
if (!u->id)
|
2010-08-09 17:02:09 +02:00
|
|
|
return;
|
|
|
|
|
|
2014-03-03 01:33:45 +01:00
|
|
|
r = bus_foreach_bus(u->manager, NULL, u->sent_dbus_new_signal ? send_changed_signal : send_new_signal, u);
|
2013-11-19 21:12:59 +01:00
|
|
|
if (r < 0)
|
core,network: major per-object logging rework
This changes log_unit_info() (and friends) to take a real Unit* object
insted of just a unit name as parameter. The call will now prefix all
logged messages with the unit name, thus allowing the unit name to be
dropped from the various passed romat strings, simplifying invocations
drastically, and unifying log output across messages. Also, UNIT= vs.
USER_UNIT= is now derived from the Manager object attached to the Unit
object, instead of getpid(). This has the benefit of correcting the
field for --test runs.
Also contains a couple of other logging improvements:
- Drops a couple of strerror() invocations in favour of using %m.
- Not only .mount units now warn if a symlinks exist for the mount
point already, .automount units do that too, now.
- A few invocations of log_struct() that didn't actually pass any
additional structured data have been replaced by simpler invocations
of log_unit_info() and friends.
- For structured data a new LOG_UNIT_MESSAGE() macro has been added,
that works like LOG_MESSAGE() but prefixes the message with the unit
name. Similar, there's now LOG_LINK_MESSAGE() and
LOG_NETDEV_MESSAGE().
- For structured data new LOG_UNIT_ID(), LOG_LINK_INTERFACE(),
LOG_NETDEV_INTERFACE() macros have been added that generate the
necessary per object fields. The old log_unit_struct() call has been
removed in favour of these new macros used in raw log_struct()
invocations. In addition to removing one more function call this
allows generated structured log messages that contain two object
fields, as necessary for example for network interfaces that are
joined into another network interface, and whose messages shall be
indexed by both.
- The LOG_ERRNO() macro has been removed, in favour of
log_struct_errno(). The latter has the benefit of ensuring that %m in
format strings is properly resolved to the specified error number.
- A number of logging messages have been converted to use
log_unit_info() instead of log_info()
- The client code in sysv-generator no longer #includes core code from
src/core/.
- log_unit_full_errno() has been removed, log_unit_full() instead takes
an errno now, too.
- log_unit_info(), log_link_info(), log_netdev_info() and friends, now
avoid double evaluation of their parameters
2015-05-11 20:38:21 +02:00
|
|
|
log_unit_debug_errno(u, r, "Failed to send unit change signal for %s: %m", u->id);
|
2010-02-05 00:38:41 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
u->sent_dbus_new_signal = true;
|
|
|
|
|
}
|
2010-08-20 02:26:05 +02:00
|
|
|
|
2014-03-03 01:33:45 +01:00
|
|
|
static int send_removed_signal(sd_bus *bus, void *userdata) {
|
2013-11-19 21:12:59 +01:00
|
|
|
_cleanup_bus_message_unref_ sd_bus_message *m = NULL;
|
|
|
|
|
_cleanup_free_ char *p = NULL;
|
|
|
|
|
Unit *u = userdata;
|
|
|
|
|
int r;
|
2010-08-20 02:26:05 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(bus);
|
|
|
|
|
assert(u);
|
2010-02-05 00:38:41 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
p = unit_dbus_path(u);
|
2015-05-19 06:45:52 +02:00
|
|
|
if (!p)
|
2013-11-19 21:12:59 +01:00
|
|
|
return -ENOMEM;
|
2010-02-05 00:38:41 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_new_signal(
|
|
|
|
|
bus,
|
2014-02-19 23:54:58 +01:00
|
|
|
&m,
|
2013-11-19 21:12:59 +01:00
|
|
|
"/org/freedesktop/systemd1",
|
|
|
|
|
"org.freedesktop.systemd1.Manager",
|
2014-02-19 23:54:58 +01:00
|
|
|
"UnitRemoved");
|
2013-11-19 21:12:59 +01:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2010-02-05 00:38:41 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_append(m, "so", u->id, p);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2010-02-05 00:38:41 +01:00
|
|
|
|
2014-03-03 01:33:45 +01:00
|
|
|
return sd_bus_send(bus, m, NULL);
|
2010-02-05 00:38:41 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void bus_unit_send_removed_signal(Unit *u) {
|
2013-11-19 21:12:59 +01:00
|
|
|
int r;
|
2010-02-05 00:38:41 +01:00
|
|
|
assert(u);
|
|
|
|
|
|
2012-01-15 12:04:08 +01:00
|
|
|
if (!u->sent_dbus_new_signal)
|
2010-05-22 04:27:24 +02:00
|
|
|
bus_unit_send_change_signal(u);
|
|
|
|
|
|
2012-01-15 12:04:08 +01:00
|
|
|
if (!u->id)
|
2010-08-09 17:02:09 +02:00
|
|
|
return;
|
|
|
|
|
|
2014-03-03 01:33:45 +01:00
|
|
|
r = bus_foreach_bus(u->manager, NULL, send_removed_signal, u);
|
2013-11-19 21:12:59 +01:00
|
|
|
if (r < 0)
|
core,network: major per-object logging rework
This changes log_unit_info() (and friends) to take a real Unit* object
insted of just a unit name as parameter. The call will now prefix all
logged messages with the unit name, thus allowing the unit name to be
dropped from the various passed romat strings, simplifying invocations
drastically, and unifying log output across messages. Also, UNIT= vs.
USER_UNIT= is now derived from the Manager object attached to the Unit
object, instead of getpid(). This has the benefit of correcting the
field for --test runs.
Also contains a couple of other logging improvements:
- Drops a couple of strerror() invocations in favour of using %m.
- Not only .mount units now warn if a symlinks exist for the mount
point already, .automount units do that too, now.
- A few invocations of log_struct() that didn't actually pass any
additional structured data have been replaced by simpler invocations
of log_unit_info() and friends.
- For structured data a new LOG_UNIT_MESSAGE() macro has been added,
that works like LOG_MESSAGE() but prefixes the message with the unit
name. Similar, there's now LOG_LINK_MESSAGE() and
LOG_NETDEV_MESSAGE().
- For structured data new LOG_UNIT_ID(), LOG_LINK_INTERFACE(),
LOG_NETDEV_INTERFACE() macros have been added that generate the
necessary per object fields. The old log_unit_struct() call has been
removed in favour of these new macros used in raw log_struct()
invocations. In addition to removing one more function call this
allows generated structured log messages that contain two object
fields, as necessary for example for network interfaces that are
joined into another network interface, and whose messages shall be
indexed by both.
- The LOG_ERRNO() macro has been removed, in favour of
log_struct_errno(). The latter has the benefit of ensuring that %m in
format strings is properly resolved to the specified error number.
- A number of logging messages have been converted to use
log_unit_info() instead of log_info()
- The client code in sysv-generator no longer #includes core code from
src/core/.
- log_unit_full_errno() has been removed, log_unit_full() instead takes
an errno now, too.
- log_unit_info(), log_link_info(), log_netdev_info() and friends, now
avoid double evaluation of their parameters
2015-05-11 20:38:21 +02:00
|
|
|
log_unit_debug_errno(u, r, "Failed to send unit remove signal for %s: %m", u->id);
|
2010-02-05 00:38:41 +01:00
|
|
|
}
|
2012-01-17 09:20:32 +01:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
int bus_unit_queue_job(
|
|
|
|
|
sd_bus_message *message,
|
2012-10-02 23:07:00 +02:00
|
|
|
Unit *u,
|
|
|
|
|
JobType type,
|
|
|
|
|
JobMode mode,
|
2013-11-21 19:34:37 +01:00
|
|
|
bool reload_if_possible,
|
|
|
|
|
sd_bus_error *error) {
|
2012-10-02 23:07:00 +02:00
|
|
|
|
|
|
|
|
_cleanup_free_ char *path = NULL;
|
|
|
|
|
Job *j;
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
assert(message);
|
|
|
|
|
assert(u);
|
|
|
|
|
assert(type >= 0 && type < _JOB_TYPE_MAX);
|
|
|
|
|
assert(mode >= 0 && mode < _JOB_MODE_MAX);
|
|
|
|
|
|
|
|
|
|
if (reload_if_possible && unit_can_reload(u)) {
|
|
|
|
|
if (type == JOB_RESTART)
|
|
|
|
|
type = JOB_RELOAD_OR_START;
|
|
|
|
|
else if (type == JOB_TRY_RESTART)
|
|
|
|
|
type = JOB_RELOAD;
|
|
|
|
|
}
|
|
|
|
|
|
2014-10-24 14:15:25 +02:00
|
|
|
r = mac_selinux_unit_access_check(
|
2014-05-14 22:44:45 +02:00
|
|
|
u, message,
|
2013-11-21 19:34:37 +01:00
|
|
|
(type == JOB_START || type == JOB_RESTART || type == JOB_TRY_RESTART) ? "start" :
|
|
|
|
|
type == JOB_STOP ? "stop" : "reload", error);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2012-10-02 23:07:00 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
if (type == JOB_STOP &&
|
|
|
|
|
(u->load_state == UNIT_NOT_FOUND || u->load_state == UNIT_ERROR) &&
|
|
|
|
|
unit_active_state(u) == UNIT_INACTIVE)
|
2013-11-21 19:34:37 +01:00
|
|
|
return sd_bus_error_setf(error, BUS_ERROR_NO_SUCH_UNIT, "Unit %s not loaded.", u->id);
|
2012-10-02 23:07:00 +02:00
|
|
|
|
|
|
|
|
if ((type == JOB_START && u->refuse_manual_start) ||
|
|
|
|
|
(type == JOB_STOP && u->refuse_manual_stop) ||
|
2015-10-26 05:23:09 +01:00
|
|
|
((type == JOB_RESTART || type == JOB_TRY_RESTART) && (u->refuse_manual_start || u->refuse_manual_stop)) ||
|
|
|
|
|
(type == JOB_RELOAD_OR_START && job_type_collapse(type, u) == JOB_START && u->refuse_manual_start))
|
2013-11-21 19:34:37 +01:00
|
|
|
return sd_bus_error_setf(error, BUS_ERROR_ONLY_BY_DEPENDENCY, "Operation refused, unit %s may be requested by dependency only.", u->id);
|
2012-10-02 23:07:00 +02:00
|
|
|
|
2013-11-21 19:34:37 +01:00
|
|
|
r = manager_add_job(u->manager, type, u, mode, true, error, &j);
|
2012-10-02 23:07:00 +02:00
|
|
|
if (r < 0)
|
2013-11-21 19:34:37 +01:00
|
|
|
return r;
|
2012-10-02 23:07:00 +02:00
|
|
|
|
2015-04-29 18:35:10 +02:00
|
|
|
if (sd_bus_message_get_bus(message) == u->manager->api_bus) {
|
2014-08-06 11:53:00 +02:00
|
|
|
if (!j->clients) {
|
2015-04-29 18:35:10 +02:00
|
|
|
r = sd_bus_track_new(sd_bus_message_get_bus(message), &j->clients, NULL, NULL);
|
2014-03-03 01:33:45 +01:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
}
|
|
|
|
|
|
2014-08-06 11:53:00 +02:00
|
|
|
r = sd_bus_track_add_sender(j->clients, message);
|
2014-03-03 01:33:45 +01:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
}
|
2012-10-02 23:07:00 +02:00
|
|
|
|
|
|
|
|
path = job_dbus_path(j);
|
|
|
|
|
if (!path)
|
2013-11-21 20:49:04 +01:00
|
|
|
return -ENOMEM;
|
2012-10-02 23:07:00 +02:00
|
|
|
|
2013-11-21 01:51:16 +01:00
|
|
|
return sd_bus_reply_method_return(message, "o", path);
|
2012-10-02 23:07:00 +02:00
|
|
|
}
|
|
|
|
|
|
2013-07-01 00:40:56 +02:00
|
|
|
static int bus_unit_set_transient_property(
|
|
|
|
|
Unit *u,
|
|
|
|
|
const char *name,
|
2013-11-19 21:12:59 +01:00
|
|
|
sd_bus_message *message,
|
2013-07-01 00:40:56 +02:00
|
|
|
UnitSetPropertiesMode mode,
|
2013-11-19 21:12:59 +01:00
|
|
|
sd_bus_error *error) {
|
2013-07-01 00:40:56 +02:00
|
|
|
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
assert(u);
|
|
|
|
|
assert(name);
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(message);
|
2013-07-01 00:40:56 +02:00
|
|
|
|
|
|
|
|
if (streq(name, "Description")) {
|
2013-11-19 21:12:59 +01:00
|
|
|
const char *d;
|
2013-07-01 00:40:56 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_read(message, "s", &d);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-07-02 15:49:27 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
if (mode != UNIT_CHECK) {
|
|
|
|
|
r = unit_set_description(u, d);
|
2013-07-02 15:49:27 +02:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-07-10 21:13:56 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
unit_write_drop_in_format(u, mode, name, "[Unit]\nDescription=%s\n", d);
|
2013-07-02 15:49:27 +02:00
|
|
|
}
|
2013-07-01 00:40:56 +02:00
|
|
|
|
|
|
|
|
return 1;
|
2015-02-03 19:07:40 +01:00
|
|
|
|
|
|
|
|
} else if (streq(name, "DefaultDependencies")) {
|
|
|
|
|
int b;
|
|
|
|
|
|
|
|
|
|
r = sd_bus_message_read(message, "b", &b);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
|
|
|
|
if (mode != UNIT_CHECK) {
|
|
|
|
|
u->default_dependencies = b;
|
|
|
|
|
unit_write_drop_in_format(u, mode, name, "[Unit]\nDefaultDependencies=%s\n", yes_no(b));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 1;
|
2013-07-01 03:02:42 +02:00
|
|
|
|
2015-08-28 17:36:39 +02:00
|
|
|
} else if (streq(name, "Slice")) {
|
|
|
|
|
Unit *slice;
|
2013-07-01 03:02:42 +02:00
|
|
|
const char *s;
|
|
|
|
|
|
2015-08-28 17:36:39 +02:00
|
|
|
if (!UNIT_HAS_CGROUP_CONTEXT(u))
|
|
|
|
|
return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "The slice property is only available for units with control groups.");
|
|
|
|
|
if (u->type == UNIT_SLICE)
|
|
|
|
|
return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Slice may not be set for slice units.");
|
core: unified cgroup hierarchy support
This patch set adds full support the new unified cgroup hierarchy logic
of modern kernels.
A new kernel command line option "systemd.unified_cgroup_hierarchy=1" is
added. If specified the unified hierarchy is mounted to /sys/fs/cgroup
instead of a tmpfs. No further hierarchies are mounted. The kernel
command line option defaults to off. We can turn it on by default as
soon as the kernel's APIs regarding this are stabilized (but even then
downstream distros might want to turn this off, as this will break any
tools that access cgroupfs directly).
It is possibly to choose for each boot individually whether the unified
or the legacy hierarchy is used. nspawn will by default provide the
legacy hierarchy to containers if the host is using it, and the unified
otherwise. However it is possible to run containers with the unified
hierarchy on a legacy host and vice versa, by setting the
$UNIFIED_CGROUP_HIERARCHY environment variable for nspawn to 1 or 0,
respectively.
The unified hierarchy provides reliable cgroup empty notifications for
the first time, via inotify. To make use of this we maintain one
manager-wide inotify fd, and each cgroup to it.
This patch also removes cg_delete() which is unused now.
On kernel 4.2 only the "memory" controller is compatible with the
unified hierarchy, hence that's the only controller systemd exposes when
booted in unified heirarchy mode.
This introduces a new enum for enumerating supported controllers, plus a
related enum for the mask bits mapping to it. The core is changed to
make use of this everywhere.
This moves PID 1 into a new "init.scope" implicit scope unit in the root
slice. This is necessary since on the unified hierarchy cgroups may
either contain subgroups or processes but not both. PID 1 hence has to
move out of the root cgroup (strictly speaking the root cgroup is the
only one where processes and subgroups are still allowed, but in order
to support containers nicey, we move PID 1 into the new scope in all
cases.) This new unit is also used on legacy hierarchy setups. It's
actually pretty useful on all systems, as it can then be used to filter
journal messages coming from PID 1, and so on.
The root slice ("-.slice") is now implicitly created and started (and
does not require a unit file on disk anymore), since
that's where "init.scope" is located and the slice needs to be started
before the scope can.
To check whether we are in unified or legacy hierarchy mode we use
statfs() on /sys/fs/cgroup. If the .f_type field reports tmpfs we are in
legacy mode, if it reports cgroupfs we are in unified mode.
This patch set carefuly makes sure that cgls and cgtop continue to work
as desired.
When invoking nspawn as a service it will implicitly create two
subcgroups in the cgroup it is using, one to move the nspawn process
into, the other to move the actual container processes into. This is
done because of the requirement that cgroups may either contain
processes or other subgroups.
2015-09-01 19:22:36 +02:00
|
|
|
if (unit_has_name(u, SPECIAL_INIT_SCOPE))
|
|
|
|
|
return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Cannot set slice for init.scope");
|
2015-08-28 17:36:39 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_read(message, "s", &s);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-07-01 03:02:42 +02:00
|
|
|
|
2015-08-28 17:36:39 +02:00
|
|
|
if (!unit_name_is_valid(s, UNIT_NAME_PLAIN))
|
|
|
|
|
return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Invalid unit name '%s'", s);
|
|
|
|
|
|
|
|
|
|
r = manager_load_unit(u->manager, s, NULL, error, &slice);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-07-01 03:02:42 +02:00
|
|
|
|
2015-08-28 17:36:39 +02:00
|
|
|
if (slice->type != UNIT_SLICE)
|
|
|
|
|
return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Unit name '%s' is not a slice", s);
|
2013-07-10 21:13:56 +02:00
|
|
|
|
2015-08-28 17:36:39 +02:00
|
|
|
if (mode != UNIT_CHECK) {
|
|
|
|
|
r = unit_set_slice(u, slice);
|
2013-07-02 15:49:27 +02:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-07-01 03:02:42 +02:00
|
|
|
|
2015-08-28 17:36:39 +02:00
|
|
|
unit_write_drop_in_private_format(u, mode, name, "Slice=%s\n", s);
|
2013-07-02 15:49:27 +02:00
|
|
|
}
|
2013-07-11 21:29:33 +02:00
|
|
|
|
2013-07-01 03:02:42 +02:00
|
|
|
return 1;
|
2015-08-28 17:36:39 +02:00
|
|
|
|
2014-10-30 07:45:15 +01:00
|
|
|
} else if (STR_IN_SET(name,
|
|
|
|
|
"Requires", "RequiresOverridable",
|
|
|
|
|
"Requisite", "RequisiteOverridable",
|
|
|
|
|
"Wants",
|
|
|
|
|
"BindsTo",
|
|
|
|
|
"Conflicts",
|
|
|
|
|
"Before", "After",
|
|
|
|
|
"OnFailure",
|
|
|
|
|
"PropagatesReloadTo", "ReloadPropagatedFrom",
|
|
|
|
|
"PartOf")) {
|
2013-07-10 23:39:46 +02:00
|
|
|
|
|
|
|
|
UnitDependency d;
|
2013-11-19 21:12:59 +01:00
|
|
|
const char *other;
|
2013-07-10 23:39:46 +02:00
|
|
|
|
|
|
|
|
d = unit_dependency_from_string(name);
|
|
|
|
|
if (d < 0)
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_enter_container(message, 'a', "s");
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-07-10 23:39:46 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
while ((r = sd_bus_message_read(message, "s", &other)) > 0) {
|
2015-04-30 20:21:00 +02:00
|
|
|
if (!unit_name_is_valid(other, UNIT_NAME_PLAIN|UNIT_NAME_INSTANCE))
|
2013-11-19 21:12:59 +01:00
|
|
|
return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Invalid unit name %s", other);
|
2013-07-10 23:39:46 +02:00
|
|
|
|
|
|
|
|
if (mode != UNIT_CHECK) {
|
2013-07-11 21:29:33 +02:00
|
|
|
_cleanup_free_ char *label = NULL;
|
2013-07-10 23:39:46 +02:00
|
|
|
|
|
|
|
|
r = unit_add_dependency_by_name(u, d, other, NULL, true);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
|
|
|
|
label = strjoin(name, "-", other, NULL);
|
|
|
|
|
if (!label)
|
|
|
|
|
return -ENOMEM;
|
|
|
|
|
|
2013-07-11 21:29:33 +02:00
|
|
|
unit_write_drop_in_format(u, mode, label, "[Unit]\n%s=%s\n", name, other);
|
2013-07-10 23:39:46 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
}
|
2013-11-19 21:12:59 +01:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-07-10 23:39:46 +02:00
|
|
|
|
2013-11-21 20:49:04 +01:00
|
|
|
r = sd_bus_message_exit_container(message);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
2013-07-10 23:39:46 +02:00
|
|
|
return 1;
|
2013-07-01 00:40:56 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2013-06-28 04:12:58 +02:00
|
|
|
int bus_unit_set_properties(
|
|
|
|
|
Unit *u,
|
2013-11-19 21:12:59 +01:00
|
|
|
sd_bus_message *message,
|
2013-06-28 04:12:58 +02:00
|
|
|
UnitSetPropertiesMode mode,
|
|
|
|
|
bool commit,
|
2013-11-19 21:12:59 +01:00
|
|
|
sd_bus_error *error) {
|
2013-06-28 04:12:58 +02:00
|
|
|
|
2013-06-27 21:14:56 +02:00
|
|
|
bool for_real = false;
|
|
|
|
|
unsigned n = 0;
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
assert(u);
|
2013-11-19 21:12:59 +01:00
|
|
|
assert(message);
|
2013-06-27 21:14:56 +02:00
|
|
|
|
|
|
|
|
/* We iterate through the array twice. First run we just check
|
|
|
|
|
* if all passed data is valid, second run actually applies
|
|
|
|
|
* it. This is to implement transaction-like behaviour without
|
|
|
|
|
* actually providing full transactions. */
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_enter_container(message, 'a', "(sv)");
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-06-27 21:14:56 +02:00
|
|
|
|
|
|
|
|
for (;;) {
|
|
|
|
|
const char *name;
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_enter_container(message, 'r', "sv");
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
if (r == 0) {
|
2013-08-26 04:36:45 +02:00
|
|
|
if (for_real || mode == UNIT_CHECK)
|
2013-06-27 21:14:56 +02:00
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
/* Reached EOF. Let's try again, and this time for realz... */
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_rewind(message, false);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-11-21 20:49:04 +01:00
|
|
|
|
2013-06-27 21:14:56 +02:00
|
|
|
for_real = true;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_read(message, "s", &name);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-06-27 21:14:56 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
if (!UNIT_VTABLE(u)->bus_set_property)
|
|
|
|
|
return sd_bus_error_setf(error, SD_BUS_ERROR_PROPERTY_READ_ONLY, "Objects of this type do not support setting properties.");
|
2013-06-27 21:14:56 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_enter_container(message, 'v', NULL);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-06-27 21:14:56 +02:00
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = UNIT_VTABLE(u)->bus_set_property(u, name, message, for_real ? mode : UNIT_CHECK, error);
|
2013-07-01 00:40:56 +02:00
|
|
|
if (r == 0 && u->transient && u->load_state == UNIT_STUB)
|
2013-11-19 21:12:59 +01:00
|
|
|
r = bus_unit_set_transient_property(u, name, message, for_real ? mode : UNIT_CHECK, error);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
if (r == 0)
|
|
|
|
|
return sd_bus_error_setf(error, SD_BUS_ERROR_PROPERTY_READ_ONLY, "Cannot set property %s, or unknown property.", name);
|
|
|
|
|
|
|
|
|
|
r = sd_bus_message_exit_container(message);
|
2013-06-27 21:14:56 +02:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
2013-11-19 21:12:59 +01:00
|
|
|
r = sd_bus_message_exit_container(message);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2013-06-27 21:14:56 +02:00
|
|
|
|
|
|
|
|
n += for_real;
|
|
|
|
|
}
|
|
|
|
|
|
2013-11-21 20:49:04 +01:00
|
|
|
r = sd_bus_message_exit_container(message);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
2013-06-28 04:12:58 +02:00
|
|
|
if (commit && n > 0 && UNIT_VTABLE(u)->bus_commit_properties)
|
2013-06-27 21:14:56 +02:00
|
|
|
UNIT_VTABLE(u)->bus_commit_properties(u);
|
|
|
|
|
|
2013-06-28 00:41:24 +02:00
|
|
|
return n;
|
2013-06-27 21:14:56 +02:00
|
|
|
}
|