journald-server.c revision 7d18d348da26fdbb392c76b0f5edb7f06282afbb
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek/*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek This file is part of systemd.
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek Copyright 2011 Lennart Poettering
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek systemd is free software; you can redistribute it and/or modify it
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek under the terms of the GNU Lesser General Public License as published by
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek the Free Software Foundation; either version 2.1 of the License, or
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek (at your option) any later version.
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek systemd is distributed in the hope that it will be useful, but
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek WITHOUT ANY WARRANTY; without even the implied warranty of
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek Lesser General Public License for more details.
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek You should have received a copy of the GNU Lesser General Public License
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek along with systemd; If not, see <http://www.gnu.org/licenses/>.
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek#include "journal-authenticate.h"
4e731273edfe852a3eee2949cd20f49fd5b4f6d7Lennart Poettering#define DEFAULT_SYNC_INTERVAL_USEC (5*USEC_PER_MINUTE)
07630cea1f3a845c09309f197ac7c4f11edd3b62Lennart Poettering#define DEFAULT_RATE_LIMIT_INTERVAL (30*USEC_PER_SEC)
07630cea1f3a845c09309f197ac7c4f11edd3b62Lennart Poettering#define DEFAULT_MAX_FILE_USEC USEC_PER_MONTH
07630cea1f3a845c09309f197ac7c4f11edd3b62Lennart Poettering#define RECHECK_AVAILABLE_SPACE_USEC (30*USEC_PER_SEC)
07630cea1f3a845c09309f197ac7c4f11edd3b62Lennart Poetteringstatic const char* const storage_table[_STORAGE_MAX] = {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek [STORAGE_VOLATILE] = "volatile",
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek [STORAGE_PERSISTENT] = "persistent",
7f1ad696a273703789b624fe0b209fb63e953016Lennart PoetteringDEFINE_STRING_TABLE_LOOKUP(storage, Storage);
e150e82097211f09b911c7784a89ef9efed713caMichał BartoszkiewiczDEFINE_CONFIG_PARSE_ENUM(config_parse_storage, storage, Storage, "Failed to parse storage setting");
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poetteringstatic const char* const split_mode_table[_SPLIT_MAX] = {
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart PoetteringDEFINE_STRING_TABLE_LOOKUP(split_mode, SplitMode);
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart PoetteringDEFINE_CONFIG_PARSE_ENUM(config_parse_split_mode, split_mode, SplitMode, "Failed to parse split mode setting");
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poetteringstatic uint64_t available_space(Server *s, bool verbose) {
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering uint64_t sum = 0, ss_avail = 0, avail = 0;
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering const char *f;
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering if (s->cached_available_space_timestamp + RECHECK_AVAILABLE_SPACE_USEC > ts
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek return s->cached_available_space;
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = sd_id128_get_machine(&machine);
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering p = strappend(f, sd_id128_to_string(machine, ids));
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek if (fstatvfs(dirfd(d), &ss) < 0)
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering if (fstatat(dirfd(d), de->d_name, &st, AT_SYMLINK_NOFOLLOW) < 0)
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering /* If we reached a high mark, we will always allow this much
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek * again, unless usage goes above max_use. This watermark
670b110c3b59dfa335ac43065b2038400d1d04a9Zbigniew Jędrzejewski-Szmek * value is cached so that we don't give up space on pressure,
670b110c3b59dfa335ac43065b2038400d1d04a9Zbigniew Jędrzejewski-Szmek * but hover below the maximum usage. */
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering s->cached_available_space = LESS_BY(MIN(m->max_use, avail), sum);
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering s->cached_available_space_timestamp = ts;
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering char fb1[FORMAT_BYTES_MAX], fb2[FORMAT_BYTES_MAX], fb3[FORMAT_BYTES_MAX],
670b110c3b59dfa335ac43065b2038400d1d04a9Zbigniew Jędrzejewski-Szmek fb4[FORMAT_BYTES_MAX], fb5[FORMAT_BYTES_MAX];
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering server_driver_message(s, SD_MESSAGE_JOURNAL_USAGE,
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering "%s is currently using %s.\n"
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering "Maximum allowed usage is set to %s.\n"
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering "Leaving at least %s free (of currently available %s of space).\n"
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering "Enforced usage limit is thus %s.",
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering s->system_journal ? "Permanent journal (/var/log/journal/)" : "Runtime journal (/run/log/journal/)",
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering format_bytes(fb2, sizeof(fb2), m->max_use),
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering format_bytes(fb3, sizeof(fb3), m->keep_free),
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering format_bytes(fb4, sizeof(fb4), ss_avail),
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering format_bytes(fb5, sizeof(fb5), s->cached_available_space + sum));
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poetteringvoid server_fix_perms(Server *s, JournalFile *f, uid_t uid) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_warning_errno(r, "Failed to fix access mode on %s, ignoring: %m", f->path);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_warning_errno(errno, "Failed to read ACL on %s, ignoring: %m", f->path);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek if (acl_create_entry(&acl, &entry) < 0 ||
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek acl_set_tag_type(entry, ACL_USER) < 0 ||
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_warning_errno(errno, "Failed to patch ACL on %s, ignoring: %m", f->path);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek /* We do not recalculate the mask unconditionally here,
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek * so that the fchmod() mask above stays intact. */
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek if (acl_get_permset(entry, &permset) < 0 ||
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek acl_add_perm(permset, ACL_READ) < 0 ||
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek calc_acl_mask_if_needed(&acl) < 0) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_warning_errno(errno, "Failed to patch ACL on %s, ignoring: %m", f->path);
0fb398316c6705dfc168733361650fdb6824896dLennart Poettering log_warning_errno(errno, "Failed to set ACL on %s, ignoring: %m", f->path);
709f6e46a35ec492b70eb92943d82a8d838ce918Michal Schmidtstatic JournalFile* find_journal(Server *s, uid_t uid) {
709f6e46a35ec492b70eb92943d82a8d838ce918Michal Schmidt /* We split up user logs only on /var, not on /run. If the
709f6e46a35ec492b70eb92943d82a8d838ce918Michal Schmidt * runtime file is open, we write to it exclusively, in order
709f6e46a35ec492b70eb92943d82a8d838ce918Michal Schmidt * to guarantee proper order as soon as we flush /run to
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek * /var and close the runtime file. */
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = sd_id128_get_machine(&machine);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek f = ordered_hashmap_get(s->user_journals, UINT32_TO_PTR(uid));
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek if (asprintf(&p, "/var/log/journal/" SD_ID128_FORMAT_STR "/user-"UID_FMT".journal",
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek SD_ID128_FORMAT_VAL(machine), uid) < 0)
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek while (ordered_hashmap_size(s->user_journals) >= USER_JOURNALS_MAX) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek /* Too many open? Then let's close one */
f7dc3ab9f43b67abcbd34062b9352ab42debec49Lennart Poettering f = ordered_hashmap_steal_first(s->user_journals);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = journal_file_open_reliably(p, O_RDWR|O_CREAT, 0640, s->compress, s->seal, &s->system_metrics, s->mmap, NULL, &f);
de0671ee7fe465e108f62dcbbbe9366f81dd9e9aZbigniew Jędrzejewski-Szmek r = ordered_hashmap_put(s->user_journals, UINT32_TO_PTR(uid), f);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = journal_file_rotate(f, s->compress, seal);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_error_errno(r, "Failed to rotate %s: %m", (*f)->path);
ea69bd41c5923f4f278a09bb7d8cb1abcfa122e1Lennart Poettering log_error_errno(r, "Failed to create new %s journal: %m", name);
ea69bd41c5923f4f278a09bb7d8cb1abcfa122e1Lennart Poettering do_rotate(s, &s->runtime_journal, "runtime", false, 0);
fc55baee9964a118afbddbf82b8e667a0ad80b99Zbigniew Jędrzejewski-Szmek do_rotate(s, &s->system_journal, "system", s->seal, 0);
fc55baee9964a118afbddbf82b8e667a0ad80b99Zbigniew Jędrzejewski-Szmek ORDERED_HASHMAP_FOREACH_KEY(f, k, s->user_journals, i) {
fc55baee9964a118afbddbf82b8e667a0ad80b99Zbigniew Jędrzejewski-Szmek r = do_rotate(s, &f, "user", s->seal, PTR_TO_UINT32(k));
fc55baee9964a118afbddbf82b8e667a0ad80b99Zbigniew Jędrzejewski-Szmek ordered_hashmap_replace(s->user_journals, k, f);
fc55baee9964a118afbddbf82b8e667a0ad80b99Zbigniew Jędrzejewski-Szmek /* Old file has been closed and deallocated */
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek ordered_hashmap_remove(s->user_journals, k);
43cf8388ea4ffed1801468d4b650d6e48eefce9eMichal Schmidt r = journal_file_set_offline(s->system_journal);
fc55baee9964a118afbddbf82b8e667a0ad80b99Zbigniew Jędrzejewski-Szmek log_error_errno(r, "Failed to sync system journal: %m");
fc55baee9964a118afbddbf82b8e667a0ad80b99Zbigniew Jędrzejewski-Szmek ORDERED_HASHMAP_FOREACH_KEY(f, k, s->user_journals, i) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_error_errno(r, "Failed to sync user journal: %m");
26687bf8a907009dedcff79346860ed41511405eOleksii Shevchuk r = sd_event_source_set_enabled(s->sync_event_source, SD_EVENT_OFF);
26687bf8a907009dedcff79346860ed41511405eOleksii Shevchuk log_error_errno(r, "Failed to disable sync timer source: %m");
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering const char *p;
26687bf8a907009dedcff79346860ed41511405eOleksii Shevchuk r = journal_directory_vacuum(p, metrics->max_use, s->max_retention_usec, &s->oldest_file_usec, false);
26687bf8a907009dedcff79346860ed41511405eOleksii Shevchuk if (r < 0 && r != -ENOENT)
ea69bd41c5923f4f278a09bb7d8cb1abcfa122e1Lennart Poettering log_error_errno(r, "Failed to vacuum %s: %m", p);
63c8666b824e8762ffb73647e1caee165dfbc868Zbigniew Jędrzejewski-Szmek r = sd_id128_get_machine(&machine);
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering log_error_errno(r, "Failed to get machine ID: %m");
63c8666b824e8762ffb73647e1caee165dfbc868Zbigniew Jędrzejewski-Szmek do_vacuum(s, ids, s->system_journal, "/var/log/journal/", &s->system_metrics);
63c8666b824e8762ffb73647e1caee165dfbc868Zbigniew Jędrzejewski-Szmek do_vacuum(s, ids, s->runtime_journal, "/run/log/journal/", &s->runtime_metrics);
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poetteringstatic void server_cache_machine_id(Server *s) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek sd_id128_to_string(id, stpcpy(s->machine_id_field, "_MACHINE_ID="));
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poetteringstatic void server_cache_boot_id(Server *s) {
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering sd_id128_to_string(id, stpcpy(s->boot_id_field, "_BOOT_ID="));
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poetteringstatic void server_cache_hostname(Server *s) {
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poetteringstatic bool shall_try_append_again(JournalFile *f, int r) {
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering /* -E2BIG Hit configured limit
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering -EFBIG Hit fs limit
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering -EDQUOT Quota limit hit
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering -ENOSPC Disk full
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering -EIO I/O error of some kind (mmap)
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering -EHOSTDOWN Other machine
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering -EBUSY Unclean shutdown
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering -EPROTONOSUPPORT Unsupported feature
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering -EBADMSG Corrupted
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering -ENODATA Truncated
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering -ESHUTDOWN Already archived
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering -EIDRM Journal file has been deleted */
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering if (r == -E2BIG || r == -EFBIG || r == -EDQUOT || r == -ENOSPC)
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering log_debug("%s: Allocation limit reached, rotating.", f->path);
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering else if (r == -EHOSTDOWN)
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering log_info("%s: Journal file from other machine, rotating.", f->path);
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering else if (r == -EBUSY)
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering log_info("%s: Unclean shutdown, rotating.", f->path);
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering log_info("%s: Unsupported feature, rotating.", f->path);
8531ae707d4d0203e83304d4af948b8169a5fce1Lennart Poettering else if (r == -EBADMSG || r == -ENODATA || r == ESHUTDOWN)
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_warning("%s: Journal file corrupted, rotating.", f->path);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_warning("%s: IO error, rotating.", f->path);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_warning("%s: Journal file has been deleted, rotating.", f->path);
2678031a179a9b91fc799f8ef951a548c66c4b49Lennart Poetteringstatic void write_to_journal(Server *s, uid_t uid, struct iovec *iovec, unsigned n, int priority) {
fa6ac76083b8ffc1309876459f54f9f0e2843731Lennart Poettering if (journal_file_rotate_suggested(f, s->max_file_usec)) {
fa6ac76083b8ffc1309876459f54f9f0e2843731Lennart Poettering log_debug("%s: Journal header limits reached or header out-of-date, rotating.", f->path);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = journal_file_append_entry(f, NULL, iovec, n, &s->seqnum, NULL, NULL);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek server_schedule_sync(s, priority);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek if (vacuumed || !shall_try_append_again(f, r)) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_error_errno(r, "Failed to write entry (%d items, %zu bytes), ignoring: %m", n, IOVEC_TOTAL_SIZE(iovec, n));
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = journal_file_append_entry(f, NULL, iovec, n, &s->seqnum, NULL, NULL);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_error_errno(r, "Failed to write entry (%d items, %zu bytes) despite vacuuming, ignoring: %m", n, IOVEC_TOTAL_SIZE(iovec, n));
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek server_schedule_sync(s, priority);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmekstatic void dispatch_message_real(
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek struct iovec *iovec, unsigned n, unsigned m,
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek const char *label, size_t label_len,
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek char pid[sizeof("_PID=") + DECIMAL_STR_MAX(pid_t)],
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek uid[sizeof("_UID=") + DECIMAL_STR_MAX(uid_t)],
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek gid[sizeof("_GID=") + DECIMAL_STR_MAX(gid_t)],
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek owner_uid[sizeof("_SYSTEMD_OWNER_UID=") + DECIMAL_STR_MAX(uid_t)],
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek source_time[sizeof("_SOURCE_REALTIME_TIMESTAMP=") + DECIMAL_STR_MAX(usec_t)],
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek o_uid[sizeof("OBJECT_UID=") + DECIMAL_STR_MAX(uid_t)],
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek o_gid[sizeof("OBJECT_GID=") + DECIMAL_STR_MAX(gid_t)],
8266e1c04db8cabe3c68510a0c1f07c09ecdb2e8Lennart Poettering o_owner_uid[sizeof("OBJECT_SYSTEMD_OWNER_UID=") + DECIMAL_STR_MAX(uid_t)];
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek uid_t realuid = 0, owner = 0, journal_uid;
3b3154df7e2773332bb814e167187367a0ccae4aLennart Poettering char audit_session[sizeof("_AUDIT_SESSION=") + DECIMAL_STR_MAX(uint32_t)],
3b3154df7e2773332bb814e167187367a0ccae4aLennart Poettering audit_loginuid[sizeof("_AUDIT_LOGINUID=") + DECIMAL_STR_MAX(uid_t)],
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek o_audit_session[sizeof("OBJECT_AUDIT_SESSION=") + DECIMAL_STR_MAX(uint32_t)],
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek o_audit_loginuid[sizeof("OBJECT_AUDIT_LOGINUID=") + DECIMAL_STR_MAX(uid_t)];
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek assert(n + N_IOVEC_META_FIELDS + (object_pid ? N_IOVEC_OBJECT_FIELDS : 0) <= m);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek sprintf(pid, "_PID="PID_FMT, ucred->pid);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], pid);
82499507b369fea3033a74c22813bf423301aef4Lennart Poettering sprintf(uid, "_UID="UID_FMT, ucred->uid);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek sprintf(gid, "_GID="GID_FMT, ucred->gid);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], gid);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek r = get_process_comm(ucred->pid, &t);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = get_process_exe(ucred->pid, &t);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], x);
de0671ee7fe465e108f62dcbbbe9366f81dd9e9aZbigniew Jędrzejewski-Szmek r = get_process_cmdline(ucred->pid, 0, false, &t);
c2457105d76e3daf159f554a9bafb9751b23d756Holger Hans Peter Freyther r = get_process_capeff(ucred->pid, &t);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek x = strjoina("_CAP_EFFECTIVE=", t);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = audit_session_from_pid(ucred->pid, &audit);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek sprintf(audit_session, "_AUDIT_SESSION=%"PRIu32, audit);
63c372cb9df3bee01e3bf8cd7f96f336bddda846Lennart Poettering IOVEC_SET_STRING(iovec[n++], audit_session);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = audit_loginuid_from_pid(ucred->pid, &loginuid);
9bdbc2e2ec523dbefe1c1c7e164b5544aff0b185Lukas Nykryn sprintf(audit_loginuid, "_AUDIT_LOGINUID="UID_FMT, loginuid);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], audit_loginuid);
3a83211689bdf4ab617a4fb79e11980c50918123Shawn Landden r = cg_pid_get_path_shifted(ucred->pid, s->cgroup_root, &c);
3a83211689bdf4ab617a4fb79e11980c50918123Shawn Landden if (r >= 0) {
0a20e3c10761378869af7bbef2733e3ae879d0f1Holger Hans Peter Freyther session = strjoina("_SYSTEMD_SESSION=", t);
ae018d9bc900d6355dea4af05119b49c67945184Lennart Poettering if (cg_path_get_owner_uid(c, &owner) >= 0) {
7027ff61a34a12487712b382a061c654acc3a679Lennart Poettering sprintf(owner_uid, "_SYSTEMD_OWNER_UID="UID_FMT, owner);
de0671ee7fe465e108f62dcbbbe9366f81dd9e9aZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], owner_uid);
ae018d9bc900d6355dea4af05119b49c67945184Lennart Poettering if (cg_path_get_unit(c, &t) >= 0) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek x = strjoina("_SYSTEMD_UNIT=", t);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek } else if (unit_id && !session) {
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek x = strjoina("_SYSTEMD_UNIT=", unit_id);
ae018d9bc900d6355dea4af05119b49c67945184Lennart Poettering if (cg_path_get_user_unit(c, &t) >= 0) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek } else if (unit_id && session) {
ae018d9bc900d6355dea4af05119b49c67945184Lennart Poettering x = strjoina("_SYSTEMD_USER_UNIT=", unit_id);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek if (cg_path_get_slice(c, &t) >= 0) {
de0671ee7fe465e108f62dcbbbe9366f81dd9e9aZbigniew Jędrzejewski-Szmek x = strjoina("_SYSTEMD_SLICE=", t);
63c372cb9df3bee01e3bf8cd7f96f336bddda846Lennart Poettering x = alloca(strlen("_SELINUX_CONTEXT=") + label_len + 1);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek *((char*) mempcpy(stpcpy(x, "_SELINUX_CONTEXT="), label, label_len)) = 0;
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = get_process_uid(object_pid, &object_uid);
d682b3a7e7c7c2941a4d3e193f1e330dbc9fae89Lennart Poettering sprintf(o_uid, "OBJECT_UID="UID_FMT, object_uid);
d682b3a7e7c7c2941a4d3e193f1e330dbc9fae89Lennart Poettering r = get_process_gid(object_pid, &object_gid);
d682b3a7e7c7c2941a4d3e193f1e330dbc9fae89Lennart Poettering sprintf(o_gid, "OBJECT_GID="GID_FMT, object_gid);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], o_gid);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], x);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = get_process_exe(object_pid, &t);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], x);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek r = get_process_cmdline(object_pid, 0, false, &t);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek x = strjoina("OBJECT_CMDLINE=", t);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], x);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek r = audit_session_from_pid(object_pid, &audit);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek sprintf(o_audit_session, "OBJECT_AUDIT_SESSION=%"PRIu32, audit);
63c372cb9df3bee01e3bf8cd7f96f336bddda846Lennart Poettering IOVEC_SET_STRING(iovec[n++], o_audit_session);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek r = audit_loginuid_from_pid(object_pid, &loginuid);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek sprintf(o_audit_loginuid, "OBJECT_AUDIT_LOGINUID="UID_FMT, loginuid);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], o_audit_loginuid);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek r = cg_pid_get_path_shifted(object_pid, s->cgroup_root, &c);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek x = strjoina("OBJECT_SYSTEMD_CGROUP=", c);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], x);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek x = strjoina("OBJECT_SYSTEMD_SESSION=", t);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], x);
de0671ee7fe465e108f62dcbbbe9366f81dd9e9aZbigniew Jędrzejewski-Szmek if (cg_path_get_owner_uid(c, &owner) >= 0) {
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek sprintf(o_owner_uid, "OBJECT_SYSTEMD_OWNER_UID="UID_FMT, owner);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], o_owner_uid);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek if (cg_path_get_unit(c, &t) >= 0) {
de0671ee7fe465e108f62dcbbbe9366f81dd9e9aZbigniew Jędrzejewski-Szmek x = strjoina("OBJECT_SYSTEMD_UNIT=", t);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], x);
e9174f29c7e3ee45137537b126458718913a3ec5Lennart Poettering if (cg_path_get_user_unit(c, &t) >= 0) {
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek x = strjoina("OBJECT_SYSTEMD_USER_UNIT=", t);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], x);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek sprintf(source_time, "_SOURCE_REALTIME_TIMESTAMP=%llu", (unsigned long long) timeval_load(tv));
de0671ee7fe465e108f62dcbbbe9366f81dd9e9aZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], source_time);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek /* Note that strictly speaking storing the boot id here is
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek * redundant since the entry includes this in-line
63c372cb9df3bee01e3bf8cd7f96f336bddda846Lennart Poettering * anyway. However, we need this indexed, too. */
19cace379f3f680d3201cd257ab3ca6708b2d45dLennart Poettering IOVEC_SET_STRING(iovec[n++], s->boot_id_field);
19cace379f3f680d3201cd257ab3ca6708b2d45dLennart Poettering IOVEC_SET_STRING(iovec[n++], s->machine_id_field);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek if (!isempty(s->hostname_field))
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], s->hostname_field);
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek if (s->split_mode == SPLIT_UID && realuid > 0)
968f319679d9069af037240d0c3bcd126181cdacZbigniew Jędrzejewski-Szmek /* Split up strictly by any UID */
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek else if (s->split_mode == SPLIT_LOGIN && realuid > 0 && owner_valid && owner > 0)
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek /* Split up by login UIDs. We do this only if the
ae018d9bc900d6355dea4af05119b49c67945184Lennart Poettering * realuid is not root, in order not to accidentally
a569398925430de1f8479262e8ab39502054f2e9Lennart Poettering * leak privileged information to the user that is
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek * logged by a privileged process that is part of an
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek * unprivileged session. */
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering write_to_journal(s, journal_uid, iovec, n, priority);
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poetteringvoid server_driver_message(Server *s, sd_id128_t message_id, const char *format, ...) {
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering struct iovec iovec[N_IOVEC_META_FIELDS + 4];
edc3797f7cd9e37c24e5241cac3263e7c918f732Lennart Poettering IOVEC_SET_STRING(iovec[n++], "PRIORITY=6");
edc3797f7cd9e37c24e5241cac3263e7c918f732Lennart Poettering IOVEC_SET_STRING(iovec[n++], "_TRANSPORT=driver");
8a0889dfdafa3054c894e54852d8a9e3a7e8390bLennart Poettering vsnprintf(buffer + 8, sizeof(buffer) - 8, format, ap);
d07f7b9ef2835c290d6beadebd17d15308608eeaLennart Poettering if (!sd_id128_equal(message_id, SD_ID128_NULL)) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek snprintf(mid, sizeof(mid), LOG_MESSAGE_ID(message_id));
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek IOVEC_SET_STRING(iovec[n++], mid);
b92bea5d2a9481de69bb627a7b442a9f58fca43dZbigniew Jędrzejewski-Szmek dispatch_message_real(s, iovec, n, ELEMENTSOF(iovec), &ucred, NULL, NULL, 0, NULL, LOG_INFO, 0);
b6fa25552e538eca207072e12d223e3523b21a19Evgeny Vereshchagin struct iovec *iovec, unsigned n, unsigned m,
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek const char *label, size_t label_len,
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek _cleanup_free_ char *path = NULL;
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek if (LOG_PRI(priority) > s->max_level_store)
d07f7b9ef2835c290d6beadebd17d15308608eeaLennart Poettering /* Stop early in case the information will not be stored
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek * in a journal. */
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = cg_pid_get_path_shifted(ucred->pid, s->cgroup_root, &path);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek /* example: /user/lennart/3/foobar
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering * So let's cut of everything past the third /, since that is
db91ea32aa223d1b087d99811226a9c59a1bb281Zbigniew Jędrzejewski-Szmek * where user directories start */
2f5df74a5ec135ab2baebf26af6f088e5b4b8205Holger Hans Peter Freyther rl = journal_rate_limit_test(s->rate_limit, path,
2f5df74a5ec135ab2baebf26af6f088e5b4b8205Holger Hans Peter Freyther priority & LOG_PRIMASK, available_space(s, false));
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek /* Write a suppression message if we suppressed something */
7027ff61a34a12487712b382a061c654acc3a679Lennart Poettering server_driver_message(s, SD_MESSAGE_JOURNAL_DROPPED,
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek "Suppressed %u messages from %s", rl - 1, path);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek dispatch_message_real(s, iovec, n, m, ucred, tv, label, label_len, unit_id, priority, object_pid);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmekstatic int system_journal_open(Server *s, bool flush_requested) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = sd_id128_get_machine(&machine);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek return log_error_errno(r, "Failed to get machine id: %m");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek sd_id128_to_string(machine, ids);
db91ea32aa223d1b087d99811226a9c59a1bb281Zbigniew Jędrzejewski-Szmek (s->storage == STORAGE_PERSISTENT || s->storage == STORAGE_AUTO) &&
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek || access("/run/systemd/journal/flushed", F_OK) >= 0)) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek /* If in auto mode: first try to create the machine
db91ea32aa223d1b087d99811226a9c59a1bb281Zbigniew Jędrzejewski-Szmek * path, but not the prefix.
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek * If in persistent mode: create /var/log/journal and
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek * the machine path */
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek if (s->storage == STORAGE_PERSISTENT)
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek (void) mkdir_p("/var/log/journal/", 0755);
caa2f4c0c9613b2e02aafa308c8fb092576014a9Zbigniew Jędrzejewski-Szmek fn = strjoina("/var/log/journal/", ids);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek fn = strjoina(fn, "/system.journal");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = journal_file_open_reliably(fn, O_RDWR|O_CREAT, 0640, s->compress, s->seal, &s->system_metrics, s->mmap, NULL, &s->system_journal);
caa2f4c0c9613b2e02aafa308c8fb092576014a9Zbigniew Jędrzejewski-Szmek server_fix_perms(s, s->system_journal, 0);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek else if (r < 0) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek if (r != -ENOENT && r != -EROFS)
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_warning_errno(r, "Failed to open system journal: %m");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek fn = strjoin("/run/log/journal/", ids, "/system.journal", NULL);
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering /* Try to open the runtime journal, but only
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering * if it already exists, so that we can flush
433dd100442e8197868def975c6fd38b48dc6439Lukas Nykryn * it into the system journal */
e40ec7aec5e64cd0cfa5fc556d6a9747229b5794Zbigniew Jędrzejewski-Szmek r = journal_file_open(fn, O_RDWR, 0640, s->compress, false, &s->runtime_metrics, s->mmap, NULL, &s->runtime_journal);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_warning_errno(r, "Failed to open runtime journal: %m");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek /* OK, we really need the runtime journal, so create
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek * it if necessary. */
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek (void) mkdir("/run/log/journal", 0755);
da927ba997d68401563b927f92e6e40e021a8e5cMichal Schmidt r = journal_file_open_reliably(fn, O_RDWR|O_CREAT, 0640, s->compress, false, &s->runtime_metrics, s->mmap, NULL, &s->runtime_journal);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek return log_error_errno(r, "Failed to open runtime journal: %m");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek server_fix_perms(s, s->runtime_journal, 0);
8580d1f73db36e9383e674e388b4fb55828c0c66Lennart Poettering unsigned n = 0;
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek if (s->storage != STORAGE_AUTO &&
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek s->storage != STORAGE_PERSISTENT)
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_debug("Flushing to /var...");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = sd_id128_get_machine(&machine);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = sd_journal_open(&j, SD_JOURNAL_RUNTIME_ONLY);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek return log_error_errno(r, "Failed to read runtime journal: %m");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek sd_journal_set_data_threshold(j, 0);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek assert(f && f->current_offset > 0);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = journal_file_move_to_object(f, OBJECT_ENTRY, f->current_offset, &o);
93b73b064c663d6248bebfbbbd82989b5ca10fc5Lennart Poettering log_error_errno(r, "Can't read entry: %m");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = journal_file_copy_entry(f, s->system_journal, o, f->current_offset, NULL, NULL, NULL);
fbb634117d0b0ebd5b105e65b141e75ae9af7f8fLennart Poettering if (!shall_try_append_again(s->system_journal, r)) {
fbb634117d0b0ebd5b105e65b141e75ae9af7f8fLennart Poettering log_error_errno(r, "Can't write entry: %m");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_notice("Didn't flush runtime journal since rotation of system journal wasn't successful.");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = journal_file_copy_entry(f, s->system_journal, o, f->current_offset, NULL, NULL, NULL);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_error_errno(r, "Can't write entry: %m");
253f59dff9c93ee1d2c33444b5715e42bc1c6889Lennart Poettering journal_file_post_change(s->system_journal);
da927ba997d68401563b927f92e6e40e021a8e5cMichal Schmidt (void) rm_rf("/run/log/journal", REMOVE_ROOT);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek server_driver_message(s, SD_ID128_NULL, "Time spent on flushing to /var is %s for %u entries.", format_timespan(ts, sizeof(ts), now(CLOCK_MONOTONIC) - start, 0), n);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmekint server_process_datagram(sd_event_source *es, int fd, uint32_t revents, void *userdata) {
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering /* We use NAME_MAX space for the SELinux label
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering * here. The kernel currently enforces no
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering * limit, but according to suggestions from
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering * the SELinux people this will change and it
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering * will probably be identical to NAME_MAX. For
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering * now we use that, but this should be updated
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering * one day when the final limit is known. */
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering uint8_t buf[CMSG_SPACE(sizeof(struct ucred)) +
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering CMSG_SPACE(NAME_MAX)]; /* selinux label */
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering assert(fd == s->native_fd || fd == s->syslog_fd || fd == s->audit_fd);
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering log_error("Got invalid event from epoll for datagram fd: %"PRIx32, revents);
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering /* Try to get the right size, if we can. (Not all
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering * sockets support SIOCINQ, hence we just try, but
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering * don't rely on it. */
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek /* Fix it up, if it is too small. We use the same fixed value as auditd here. Awful! */
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering ALIGN(sizeof(struct nlmsghdr)) + ALIGN((size_t) MAX_AUDIT_MESSAGE_LENGTH)) + 1);
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering if (!GREEDY_REALLOC(s->buffer, s->buffer_size, m))
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering iovec.iov_len = s->buffer_size - 1; /* Leave room for trailing NUL we add later */
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering n = recvmsg(fd, &msghdr, MSG_DONTWAIT|MSG_CMSG_CLOEXEC);
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering return log_error_errno(errno, "recvmsg() failed: %m");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek cmsg->cmsg_len == CMSG_LEN(sizeof(struct ucred)))
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering else if (cmsg->cmsg_level == SOL_SOCKET &&
875c2e220e2611165e09051c4747971811f1de58Lennart Poettering label_len = cmsg->cmsg_len - CMSG_LEN(0);
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering } else if (cmsg->cmsg_level == SOL_SOCKET &&
875c2e220e2611165e09051c4747971811f1de58Lennart Poettering cmsg->cmsg_len == CMSG_LEN(sizeof(struct timeval)))
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering else if (cmsg->cmsg_level == SOL_SOCKET &&
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering n_fds = (cmsg->cmsg_len - CMSG_LEN(0)) / sizeof(int);
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering /* And a trailing NUL, just in case */
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering if (n > 0 && n_fds == 0)
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering server_process_syslog_message(s, strstrip(s->buffer), ucred, tv, label, label_len);
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering log_warning("Got file descriptors via syslog socket. Ignoring.");
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek if (n > 0 && n_fds == 0)
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering server_process_native_message(s, s->buffer, n, ucred, tv, label, label_len);
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering server_process_native_file(s, fds[0], ucred, tv, label, label_len);
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering log_warning("Got too many file descriptors via native socket. Ignoring.");
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering if (n > 0 && n_fds == 0)
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering server_process_audit_message(s, s->buffer, n, ucred, &sa, msghdr.msg_namelen);
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering log_warning("Got file descriptors via audit socket. Ignoring.");
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poetteringstatic int dispatch_sigusr1(sd_event_source *es, const struct signalfd_siginfo *si, void *userdata) {
a315ac4e076c4ce7ce3e5c95792cf916d5e918c5Lennart Poettering log_info("Received request to flush runtime journal from PID %"PRIu32, si->ssi_pid);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmekstatic int dispatch_sigusr2(sd_event_source *es, const struct signalfd_siginfo *si, void *userdata) {
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering log_info("Received request to rotate journal from PID %"PRIu32, si->ssi_pid);
74055aa76278232ff05574fc47c4e6b3560554a7Lennart Poetteringstatic int dispatch_sigterm(sd_event_source *es, const struct signalfd_siginfo *si, void *userdata) {
33d52ab92f2f0bfd706e6f343d172618d1e03f3dLennart Poettering assert(sigprocmask_many(SIG_SETMASK, NULL, SIGINT, SIGTERM, SIGUSR1, SIGUSR2, -1) >= 0);
dbd6e31cf91ab86a4a2fffeb50ccef211da3126dLennart Poettering r = sd_event_add_signal(s->event, &s->sigusr1_event_source, SIGUSR1, dispatch_sigusr1, s);
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering r = sd_event_add_signal(s->event, &s->sigusr2_event_source, SIGUSR2, dispatch_sigusr2, s);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = sd_event_add_signal(s->event, &s->sigterm_event_source, SIGTERM, dispatch_sigterm, s);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = sd_event_add_signal(s->event, &s->sigint_event_source, SIGINT, dispatch_sigterm, s);
94b6551662e0db8eb09768ed70f77759f322b4c6Lennart Poetteringstatic int server_parse_proc_cmdline(Server *s) {
94b6551662e0db8eb09768ed70f77759f322b4c6Lennart Poettering const char *w, *state;
33d52ab92f2f0bfd706e6f343d172618d1e03f3dLennart Poettering log_warning_errno(r, "Failed to read /proc/cmdline, ignoring: %m");
94b6551662e0db8eb09768ed70f77759f322b4c6Lennart Poettering if (startswith(word, "systemd.journald.forward_to_syslog=")) {
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering log_warning("Failed to parse forward to syslog switch %s. Ignoring.", word + 35);
151b9b9662a90455262ce575a8a8ae74bf4ff336Lennart Poettering } else if (startswith(word, "systemd.journald.forward_to_kmsg=")) {
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_warning("Failed to parse forward to kmsg switch %s. Ignoring.", word + 33);
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering } else if (startswith(word, "systemd.journald.forward_to_console=")) {
b374689c02c681671a3c3c0b0fd3add32386b442Lennart Poettering log_warning("Failed to parse forward to console switch %s. Ignoring.", word + 36);
b374689c02c681671a3c3c0b0fd3add32386b442Lennart Poettering } else if (startswith(word, "systemd.journald.forward_to_wall=")) {
b374689c02c681671a3c3c0b0fd3add32386b442Lennart Poettering log_warning("Failed to parse forward to wall switch %s. Ignoring.", word + 33);
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering } else if (startswith(word, "systemd.journald"))
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek log_warning("Invalid systemd.journald parameter. Ignoring.");
b374689c02c681671a3c3c0b0fd3add32386b442Lennart Poettering /* do not warn about state here, since probably systemd already did */
94b6551662e0db8eb09768ed70f77759f322b4c6Lennart Poetteringstatic int server_parse_config_file(Server *s) {
94b6551662e0db8eb09768ed70f77759f322b4c6Lennart Poettering return config_parse_many("/etc/systemd/journald.conf",
94b6551662e0db8eb09768ed70f77759f322b4c6Lennart Poettering CONF_DIRS_NULSTR("systemd/journald.conf"),
94b6551662e0db8eb09768ed70f77759f322b4c6Lennart Poettering config_item_perf_lookup, journald_gperf_lookup,
94b6551662e0db8eb09768ed70f77759f322b4c6Lennart Poetteringstatic int server_dispatch_sync(sd_event_source *es, usec_t t, void *userdata) {
74df0fca09b3c31ed19e14ba80f996fdff772417Lennart Poetteringint server_schedule_sync(Server *s, int priority) {
d581d9d91fa5c42ce7828a7d0b1334d370cf1670Susant Sahani /* Immediately sync to disk when this is of priority CRIT, ALERT, EMERG */
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = sd_event_now(s->event, CLOCK_MONOTONIC, &when);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek r = sd_event_source_set_priority(s->sync_event_source, SD_EVENT_PRIORITY_IMPORTANT);
40b71e89bae4e51768db4dc50ec64c1e9c96eec4Sebastian Thorarensen r = sd_event_source_set_time(s->sync_event_source, when);
40b71e89bae4e51768db4dc50ec64c1e9c96eec4Sebastian Thorarensen r = sd_event_source_set_enabled(s->sync_event_source, SD_EVENT_ONESHOT);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmekstatic int dispatch_hostname_change(sd_event_source *es, int fd, uint32_t revents, void *userdata) {
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poetteringstatic int server_open_hostname(Server *s) {
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering s->hostname_fd = open("/proc/sys/kernel/hostname", O_RDONLY|O_CLOEXEC|O_NDELAY|O_NOCTTY);
26687bf8a907009dedcff79346860ed41511405eOleksii Shevchuk return log_error_errno(errno, "Failed to open /proc/sys/kernel/hostname: %m");
d07f7b9ef2835c290d6beadebd17d15308608eeaLennart Poettering r = sd_event_add_io(s->event, &s->hostname_event_source, s->hostname_fd, 0, dispatch_hostname_change, s);
26687bf8a907009dedcff79346860ed41511405eOleksii Shevchuk /* kernels prior to 3.2 don't support polling this file. Ignore
26687bf8a907009dedcff79346860ed41511405eOleksii Shevchuk * the failure. */
d07f7b9ef2835c290d6beadebd17d15308608eeaLennart Poettering log_warning("Failed to register hostname fd in event loop: %s. Ignoring.",
d07f7b9ef2835c290d6beadebd17d15308608eeaLennart Poettering s->hostname_fd = safe_close(s->hostname_fd);
26687bf8a907009dedcff79346860ed41511405eOleksii Shevchuk return log_error_errno(r, "Failed to register hostname fd in event loop: %m");
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering r = sd_event_source_set_priority(s->hostname_event_source, SD_EVENT_PRIORITY_IMPORTANT-10);
ca2670162464b98f44d3f30a1d8b47b02609784cMichał Bartoszkiewicz return log_error_errno(r, "Failed to adjust priority of host name event source: %m");
6a0f1f6d5af7c7300d3db7a0ba2b068f8abd222bLennart Poettering s->syslog_fd = s->native_fd = s->stdout_fd = s->dev_kmsg_fd = s->audit_fd = s->hostname_fd = -1;
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering s->sync_interval_usec = DEFAULT_SYNC_INTERVAL_USEC;
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering s->rate_limit_interval = DEFAULT_RATE_LIMIT_INTERVAL;
f9a810bedacf1da7c505c1786a2416d592665926Lennart Poettering s->rate_limit_burst = DEFAULT_RATE_LIMIT_BURST;
26687bf8a907009dedcff79346860ed41511405eOleksii Shevchuk memset(&s->system_metrics, 0xFF, sizeof(s->system_metrics));
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering memset(&s->runtime_metrics, 0xFF, sizeof(s->runtime_metrics));
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering if (!!s->rate_limit_interval ^ !!s->rate_limit_burst) {
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering log_debug("Setting both rate limit interval and burst from "USEC_FMT",%u to 0,0",
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering s->rate_limit_interval, s->rate_limit_burst);
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering s->rate_limit_interval = s->rate_limit_burst = 0;
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering s->user_journals = ordered_hashmap_new(NULL);
28def94cc8fd4394b20e2155d7130166662343c4Dave Reisner return log_error_errno(r, "Failed to create event loop: %m");
23bbb0de4e3f85d9704a5c12a5afa2dfa0159e41Michal Schmidt return log_error_errno(n, "Failed to read listening file descriptors from environment: %m");
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering for (fd = SD_LISTEN_FDS_START; fd < SD_LISTEN_FDS_START + n; fd++) {
23bbb0de4e3f85d9704a5c12a5afa2dfa0159e41Michal Schmidt if (sd_is_socket_unix(fd, SOCK_DGRAM, -1, "/run/systemd/journal/socket", 0) > 0) {
0c24bb2346b6b6232d67aacd5236b56ea4989de4Lennart Poettering log_error("Too many native sockets passed.");
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering } else if (sd_is_socket_unix(fd, SOCK_STREAM, 1, "/run/systemd/journal/stdout", 0) > 0) {
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering log_error("Too many stdout sockets passed.");
119e9655dc36f18ed74f9a256d5c693b5aeb43abLennart Poettering } else if (sd_is_socket_unix(fd, SOCK_DGRAM, -1, "/dev/log", 0) > 0 ||
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering sd_is_socket_unix(fd, SOCK_DGRAM, -1, "/run/systemd/journal/dev-log", 0) > 0) {
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering log_error("Too many /dev/log sockets passed.");
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering } else if (sd_is_socket(fd, AF_NETLINK, SOCK_RAW, -1) > 0) {
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering log_error("Too many audit sockets passed.");
119e9655dc36f18ed74f9a256d5c693b5aeb43abLennart Poettering /* Try to restore streams, but don't bother if this fails */
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering log_warning("%u unknown file descriptors passed, closing.", fdset_size(fds));
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering no_sockets = s->native_fd < 0 && s->stdout_fd < 0 && s->syslog_fd < 0 && s->audit_fd < 0;
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering /* always open stdout, syslog, native, and kmsg sockets */
119e9655dc36f18ed74f9a256d5c693b5aeb43abLennart Poettering /* Unless we got *some* sockets and not audit, open audit socket */
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering s->rate_limit = journal_rate_limit_new(s->rate_limit_interval, s->rate_limit_burst);
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poetteringvoid server_maybe_append_tags(Server *s) {
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering journal_file_maybe_append_tag(s->system_journal, n);
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering ORDERED_HASHMAP_FOREACH(f, s->user_journals, i)
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering while ((f = ordered_hashmap_steal_first(s->user_journals)))
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering sd_event_source_unref(s->syslog_event_source);
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering sd_event_source_unref(s->native_event_source);
119e9655dc36f18ed74f9a256d5c693b5aeb43abLennart Poettering sd_event_source_unref(s->stdout_event_source);
119e9655dc36f18ed74f9a256d5c693b5aeb43abLennart Poettering sd_event_source_unref(s->dev_kmsg_event_source);
119e9655dc36f18ed74f9a256d5c693b5aeb43abLennart Poettering sd_event_source_unref(s->audit_event_source);
4de2402b603ea2f518f451d06f09e15aeae54fabLennart Poettering sd_event_source_unref(s->sync_event_source);
119e9655dc36f18ed74f9a256d5c693b5aeb43abLennart Poettering sd_event_source_unref(s->sigusr1_event_source);
119e9655dc36f18ed74f9a256d5c693b5aeb43abLennart Poettering sd_event_source_unref(s->sigusr2_event_source);
119e9655dc36f18ed74f9a256d5c693b5aeb43abLennart Poettering sd_event_source_unref(s->sigterm_event_source);
119e9655dc36f18ed74f9a256d5c693b5aeb43abLennart Poettering sd_event_source_unref(s->sigint_event_source);
e22aa3d3284709234f086ebebc13a905a295b7a7Lennart Poettering sd_event_source_unref(s->hostname_event_source);
d025f1e4dca8fc1436aff76f9e6185fe3e728daaZbigniew Jędrzejewski-Szmek journal_rate_limit_free(s->rate_limit);