shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2024-11-07 01:27:11 +03:00
Code
d9dde2bb03
systemd/src/core/machine-id-setup.c

364 lines
13 KiB
C
Raw Normal View History

main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
/*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
/***
This file is part of systemd.
Copyright 2010 Lennart Poettering
systemd is free software; you can redistribute it and/or modify it
relicense to LGPLv2.1 (with exceptions) We finally got the OK from all contributors with non-trivial commits to relicense systemd from GPL2+ to LGPL2.1+. Some udev bits continue to be GPL2+ for now, but we are looking into relicensing them too, to allow free copy/paste of all code within systemd. The bits that used to be MIT continue to be MIT. The big benefit of the relicensing is that closed source code may now link against libsystemd-login.so and friends.
2012-04-12 02:20:58 +04:00
under the terms of the GNU Lesser General Public License as published by
the Free Software Foundation; either version 2.1 of the License, or
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
(at your option) any later version.
systemd is distributed in the hope that it will be useful, but
WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
relicense to LGPLv2.1 (with exceptions) We finally got the OK from all contributors with non-trivial commits to relicense systemd from GPL2+ to LGPL2.1+. Some udev bits continue to be GPL2+ for now, but we are looking into relicensing them too, to allow free copy/paste of all code within systemd. The bits that used to be MIT continue to be MIT. The big benefit of the relicensing is that closed source code may now link against libsystemd-login.so and friends.
2012-04-12 02:20:58 +04:00
Lesser General Public License for more details.
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
relicense to LGPLv2.1 (with exceptions) We finally got the OK from all contributors with non-trivial commits to relicense systemd from GPL2+ to LGPL2.1+. Some udev bits continue to be GPL2+ for now, but we are looking into relicensing them too, to allow free copy/paste of all code within systemd. The bits that used to be MIT continue to be MIT. The big benefit of the relicensing is that closed source code may now link against libsystemd-login.so and friends.
2012-04-12 02:20:58 +04:00
You should have received a copy of the GNU Lesser General Public License
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
along with systemd; If not, see <http://www.gnu.org/licenses/>.
***/
#include <unistd.h>
#include <stdio.h>
#include <errno.h>
#include <string.h>
#include <fcntl.h>
#include <sys/mount.h>
Always prefer our headers to system headers In practice this shouldn't make much difference, but sometimes our headers might be newer, and we want to test them.
2014-07-31 12:15:29 +04:00
#include "systemd/sd-id128.h"
build-sys: move public header files into a dir of their own
2012-01-05 19:01:58 +04:00
main: we want all setup functions to be in files called xxx-setup.[ch]
2012-04-12 16:28:43 +04:00
#include "machine-id-setup.h"
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
#include "macro.h"
#include "util.h"
rename basic.la to shared.la and put selinux deps in shared-selinx.la Only 34 of 74 tools need libselinux linked, and libselinux is a pain with its unconditional library constructor.
2012-04-10 23:54:31 +04:00
#include "mkdir.h"
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
#include "log.h"
machine-id: initialize vom qemu/kvm -uuid parameter if available
2012-02-15 22:16:08 +04:00
#include "virt.h"
honor SELinux labels, when creating and writing config files Also split out some fileio functions to fileio.c and provide a SELinux aware pendant in fileio-label.c see https://bugzilla.redhat.com/show_bug.cgi?id=881577
2013-02-14 15:26:13 +04:00
#include "fileio.h"
machine-id-setup: use path_kill_slashes and modernizations
2014-03-14 16:43:21 +04:00
#include "path-util.h"
machine-id: be nice and generate compliant v4 UUIDs Newly generated machine IDs now qualify as randomized v4 UUIds. This is trivial to do and hopefully increases adoption of the ID for various purposes.
2011-07-25 21:31:07 +04:00
machine-id-setup: fix array size of parameters Not that it really would have any effect on the generated code, but let's not confuse people...
2014-06-10 21:15:06 +04:00
static int shorten_uuid(char destination[34], const char source[36]) {
machine-id: initialize from $container_uuid if not set otherwise This is a result of the discussions on https://bugs.freedesktop.org/show_bug.cgi?id=46894
2012-03-14 17:06:42 +04:00
unsigned i, j;
for (i = 0, j = 0; i < 36 && j < 32; i++) {
int t;
t = unhexchar(source[i]);
if (t < 0)
continue;
destination[j++] = hexchar(t);
}
if (i == 36 && j == 32) {
destination[32] = '\n';
destination[33] = 0;
return 0;
}
return -EINVAL;
}
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
static int generate(char id[34], const char *root) {
journal: add preliminary incomplete implementation
2011-10-07 23:06:39 +04:00
int fd, r;
unsigned char *p;
sd_id128_t buf;
machine-id-setup: don't try to read UUID from VM/container manager if we operate on a root directory that's not / This should make sure no UUID from the host systemd-machine-id-setup is running on leaks onto a disk image that is provisioned with the tool.
2014-08-20 15:49:39 +04:00
char *q;
const char *vm_id, *dbus_machine_id;
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
assert(id);
machine-id-setup: don't try to read UUID from VM/container manager if we operate on a root directory that's not / This should make sure no UUID from the host systemd-machine-id-setup is running on leaks onto a disk image that is provisioned with the tool.
2014-08-20 15:49:39 +04:00
if (isempty(root))
dbus_machine_id = "/var/lib/dbus/machine-id";
else
util: rework strappenda(), and rename it strjoina() After all it is now much more like strjoin() than strappend(). At the same time, add support for NULL sentinels, even if they are normally not necessary.
2015-02-03 04:05:59 +03:00
dbus_machine_id = strjoina(root, "/var/lib/dbus/machine-id");
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
/* First, try reading the D-Bus machine id, unless it is a symlink */
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
fd = open(dbus_machine_id, O_RDONLY|O_CLOEXEC|O_NOCTTY|O_NOFOLLOW);
machine-id: be nice and generate compliant v4 UUIDs Newly generated machine IDs now qualify as randomized v4 UUIds. This is trivial to do and hopefully increases adoption of the ID for various purposes.
2011-07-25 21:31:07 +04:00
if (fd >= 0) {
Introduce loop_read_exact helper Usually when using loop_read(), we want to read the full buffer. Add a helper that mirrors loop_write(), and returns 0 when full buffer was read, and an error otherwise. Use -ENODATA for the short read, to distinguish it from a read error.
2015-03-10 04:23:53 +03:00
r = loop_read_exact(fd, id, 33, false);
util: replace close_nointr_nofail() by a more useful safe_close() safe_close() automatically becomes a NOP when a negative fd is passed, and returns -1 unconditionally. This makes it easy to write lines like this: fd = safe_close(fd); Which will close an fd if it is open, and reset the fd variable correctly. By making use of this new scheme we can drop a > 200 lines of code that was required to test for non-negative fds or to reset the closed fd variable afterwards.
2014-03-18 22:22:43 +04:00
safe_close(fd);
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
Introduce loop_read_exact helper Usually when using loop_read(), we want to read the full buffer. Add a helper that mirrors loop_write(), and returns 0 when full buffer was read, and an error otherwise. Use -ENODATA for the short read, to distinguish it from a read error.
2015-03-10 04:23:53 +03:00
if (r >= 0 && id[32] == '\n') {
id128: when taking user input for a 128bit ID, validate syntax Also, always accept both our simple hexdump syntax and UUID syntax.
2013-04-30 01:39:12 +04:00
id[32] = 0;
if (id128_is_valid(id)) {
id[32] = '\n';
id[33] = 0;
log_info("Initializing machine ID from D-Bus machine ID.");
return 0;
}
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
}
}
machine-id-setup: don't try to read UUID from VM/container manager if we operate on a root directory that's not / This should make sure no UUID from the host systemd-machine-id-setup is running on leaks onto a disk image that is provisioned with the tool.
2014-08-20 15:49:39 +04:00
if (isempty(root)) {
/* If that didn't work, see if we are running in a container,
* and a machine ID was passed in via $container_uuid the way
* libvirt/LXC does it */
r = detect_container(NULL);
util: unify getenv() logic for other PID
2012-04-22 16:48:46 +04:00
if (r > 0) {
machine-id-setup: don't try to read UUID from VM/container manager if we operate on a root directory that's not / This should make sure no UUID from the host systemd-machine-id-setup is running on leaks onto a disk image that is provisioned with the tool.
2014-08-20 15:49:39 +04:00
_cleanup_free_ char *e = NULL;
machine-id: only look into KVM uuid when we are not running in a container
2014-04-28 20:11:40 +04:00
machine-id-setup: don't try to read UUID from VM/container manager if we operate on a root directory that's not / This should make sure no UUID from the host systemd-machine-id-setup is running on leaks onto a disk image that is provisioned with the tool.
2014-08-20 15:49:39 +04:00
r = getenv_for_pid(1, "container_uuid", &e);
if (r > 0) {
if (strlen(e) >= 36) {
r = shorten_uuid(id, e);
machine-id: only look into KVM uuid when we are not running in a container
2014-04-28 20:11:40 +04:00
if (r >= 0) {
machine-id-setup: don't try to read UUID from VM/container manager if we operate on a root directory that's not / This should make sure no UUID from the host systemd-machine-id-setup is running on leaks onto a disk image that is provisioned with the tool.
2014-08-20 15:49:39 +04:00
log_info("Initializing machine ID from container UUID.");
machine-id: only look into KVM uuid when we are not running in a container
2014-04-28 20:11:40 +04:00
return 0;
}
}
}
machine-id-setup: don't try to read UUID from VM/container manager if we operate on a root directory that's not / This should make sure no UUID from the host systemd-machine-id-setup is running on leaks onto a disk image that is provisioned with the tool.
2014-08-20 15:49:39 +04:00
} else {
/* If we are not running in a container, see if we are
* running in qemu/kvm and a machine ID was passed in
* via -uuid on the qemu/kvm command line */
r = detect_vm(&vm_id);
if (r > 0 && streq(vm_id, "kvm")) {
Introduce loop_read_exact helper Usually when using loop_read(), we want to read the full buffer. Add a helper that mirrors loop_write(), and returns 0 when full buffer was read, and an error otherwise. Use -ENODATA for the short read, to distinguish it from a read error.
2015-03-10 04:23:53 +03:00
char uuid[36];
machine-id-setup: don't try to read UUID from VM/container manager if we operate on a root directory that's not / This should make sure no UUID from the host systemd-machine-id-setup is running on leaks onto a disk image that is provisioned with the tool.
2014-08-20 15:49:39 +04:00
fd = open("/sys/class/dmi/id/product_uuid", O_RDONLY|O_CLOEXEC|O_NOCTTY|O_NOFOLLOW);
if (fd >= 0) {
Introduce loop_read_exact helper Usually when using loop_read(), we want to read the full buffer. Add a helper that mirrors loop_write(), and returns 0 when full buffer was read, and an error otherwise. Use -ENODATA for the short read, to distinguish it from a read error.
2015-03-10 04:23:53 +03:00
r = loop_read_exact(fd, uuid, 36, false);
machine-id-setup: don't try to read UUID from VM/container manager if we operate on a root directory that's not / This should make sure no UUID from the host systemd-machine-id-setup is running on leaks onto a disk image that is provisioned with the tool.
2014-08-20 15:49:39 +04:00
safe_close(fd);
Introduce loop_read_exact helper Usually when using loop_read(), we want to read the full buffer. Add a helper that mirrors loop_write(), and returns 0 when full buffer was read, and an error otherwise. Use -ENODATA for the short read, to distinguish it from a read error.
2015-03-10 04:23:53 +03:00
if (r >= 0) {
machine-id-setup: don't try to read UUID from VM/container manager if we operate on a root directory that's not / This should make sure no UUID from the host systemd-machine-id-setup is running on leaks onto a disk image that is provisioned with the tool.
2014-08-20 15:49:39 +04:00
r = shorten_uuid(id, uuid);
if (r >= 0) {
log_info("Initializing machine ID from KVM UUID.");
return 0;
}
}
}
}
machine-id: only look into KVM uuid when we are not running in a container
2014-04-28 20:11:40 +04:00
}
machine-id: initialize vom qemu/kvm -uuid parameter if available
2012-02-15 22:16:08 +04:00
}
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
/* If that didn't work, generate a random machine id */
journal: add preliminary incomplete implementation
2011-10-07 23:06:39 +04:00
r = sd_id128_randomize(&buf);
treewide: more log_*_errno + return simplifications
2014-11-28 20:23:20 +03:00
if (r < 0)
return log_error_errno(r, "Failed to open /dev/urandom: %m");
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
journal: add preliminary incomplete implementation
2011-10-07 23:06:39 +04:00
for (p = buf.bytes, q = id; p < buf.bytes + sizeof(buf); p++, q += 2) {
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
q[0] = hexchar(*p >> 4);
q[1] = hexchar(*p & 15);
}
id[32] = '\n';
id[33] = 0;
log_info("Initializing machine ID from random generator.");
return 0;
}
machine-id-setup: Factorize some machine-id-setup functions to be reused
2014-11-24 11:40:57 +03:00
static int get_valid_machine_id(int fd, char id[34]) {
char id_to_validate[34];
assert(fd >= 0);
assert(id);
Introduce loop_read_exact helper Usually when using loop_read(), we want to read the full buffer. Add a helper that mirrors loop_write(), and returns 0 when full buffer was read, and an error otherwise. Use -ENODATA for the short read, to distinguish it from a read error.
2015-03-10 04:23:53 +03:00
if (loop_read_exact(fd, id_to_validate, 33, false) >= 0 &&
id_to_validate[32] == '\n') {
machine-id-setup: Factorize some machine-id-setup functions to be reused
2014-11-24 11:40:57 +03:00
id_to_validate[32] = 0;
if (id128_is_valid(id_to_validate)) {
memcpy(id, id_to_validate, 32);
id[32] = '\n';
id[33] = 0;
return 0;
}
}
return -EINVAL;
}
static int write_machine_id(int fd, char id[34]) {
assert(fd >= 0);
assert(id);
lseek(fd, 0, SEEK_SET);
treewide: sanitize loop_write loop_write() didn't follow the usual systemd rules and returned status partially in errno and required extensive checks from callers. Some of the callers dealt with this properly, but many did not, treating partial writes as successful. Simplify things by conforming to usual rules.
2014-12-02 04:43:19 +03:00
if (loop_write(fd, id, 33, false) == 0)
machine-id-setup: Factorize some machine-id-setup functions to be reused
2014-11-24 11:40:57 +03:00
return 0;
return -errno;
}
machine-id-setup: add a machine_id_commit call to commit on disk a transient machine-id If /etc was read only at boot time with an empty /etc/machine-id, the latter will be mounted as a tmpfs and get reset at each boot. If the system becomes rw later, this functionality enables to commit in a race-free manner the transient machine-id to disk.
2014-11-24 11:43:29 +03:00
int machine_id_commit(const char *root) {
_cleanup_close_ int fd = -1, initial_mntns_fd = -1;
const char *etc_machine_id;
char id[34]; /* 32 + \n + \0 */
int r;
if (isempty(root))
etc_machine_id = "/etc/machine-id";
else {
char *x;
util: rework strappenda(), and rename it strjoina() After all it is now much more like strjoin() than strappend(). At the same time, add support for NULL sentinels, even if they are normally not necessary.
2015-02-03 04:05:59 +03:00
x = strjoina(root, "/etc/machine-id");
machine-id-setup: add a machine_id_commit call to commit on disk a transient machine-id If /etc was read only at boot time with an empty /etc/machine-id, the latter will be mounted as a tmpfs and get reset at each boot. If the system becomes rw later, this functionality enables to commit in a race-free manner the transient machine-id to disk.
2014-11-24 11:43:29 +03:00
etc_machine_id = path_kill_slashes(x);
}
r = path_is_mount_point(etc_machine_id, false);
if (r < 0)
tree-wide: spelling fixes https://github.com/vlajos/misspell_fixer https://github.com/torstehu/systemd/commit/b6fdeb618cf2f3ce1645b3315f15f482710c7ffa Thanks to Torstein Husebo <torstein@huseboe.net>.
2014-12-29 12:45:58 +03:00
return log_error_errno(r, "Failed to determine whether %s is a mount point: %m", etc_machine_id);
machine-id-setup: add a machine_id_commit call to commit on disk a transient machine-id If /etc was read only at boot time with an empty /etc/machine-id, the latter will be mounted as a tmpfs and get reset at each boot. If the system becomes rw later, this functionality enables to commit in a race-free manner the transient machine-id to disk.
2014-11-24 11:43:29 +03:00
if (r == 0) {
log_debug("%s is is not a mount point. Nothing to do.", etc_machine_id);
return 0;
}
/* Read existing machine-id */
fd = open(etc_machine_id, O_RDONLY|O_CLOEXEC|O_NOCTTY);
if (fd < 0)
return log_error_errno(errno, "Cannot open %s: %m", etc_machine_id);
r = get_valid_machine_id(fd, id);
if (r < 0)
return log_error_errno(r, "We didn't find a valid machine ID in %s.", etc_machine_id);
r = is_fd_on_temporary_fs(fd);
if (r < 0)
return log_error_errno(r, "Failed to determine whether %s is on a temporary file system: %m", etc_machine_id);
if (r == 0) {
log_error("%s is not on a temporary file system.", etc_machine_id);
return -EROFS;
}
fd = safe_close(fd);
/* Store current mount namespace */
r = namespace_open(0, NULL, &initial_mntns_fd, NULL, NULL);
if (r < 0)
return log_error_errno(r, "Can't fetch current mount namespace: %m");
/* Switch to a new mount namespace, isolate ourself and unmount etc_machine_id in our new namespace */
if (unshare(CLONE_NEWNS) < 0)
return log_error_errno(errno, "Failed to enter new namespace: %m");
if (mount(NULL, "/", NULL, MS_SLAVE | MS_REC, NULL) < 0)
return log_error_errno(errno, "Couldn't make-rslave / mountpoint in our private namespace: %m");
if (umount(etc_machine_id) < 0)
return log_error_errno(errno, "Failed to unmount transient %s file in our private namespace: %m", etc_machine_id);
/* Update a persistent version of etc_machine_id */
fd = open(etc_machine_id, O_RDWR|O_CREAT|O_CLOEXEC|O_NOCTTY, 0444);
if (fd < 0)
return log_error_errno(errno, "Cannot open for writing %s. This is mandatory to get a persistent machine-id: %m", etc_machine_id);
r = write_machine_id(fd, id);
if (r < 0)
return log_error_errno(r, "Cannot write %s: %m", etc_machine_id);
fd = safe_close(fd);
/* Return to initial namespace and proceed a lazy tmpfs unmount */
r = namespace_enter(-1, initial_mntns_fd, -1, -1);
if (r < 0)
return log_warning_errno(r, "Failed to switch back to initial mount namespace: %m.\nWe'll keep transient %s file until next reboot.", etc_machine_id);
if (umount2(etc_machine_id, MNT_DETACH) < 0)
return log_warning_errno(errno, "Failed to unmount transient %s file: %m.\nWe keep that mount until next reboot.", etc_machine_id);
return 0;
}
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
int machine_id_setup(const char *root) {
machine-id-setup: allow passing NULL as function argument, for simplicity
2014-06-17 05:25:02 +04:00
const char *etc_machine_id, *run_machine_id;
machine-id: fix missing initialization
2013-04-09 00:43:52 +04:00
_cleanup_close_ int fd = -1;
core: improve error message when machine id is missing
2014-10-31 12:16:45 +03:00
bool writable = true;
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
struct stat st;
char id[34]; /* 32 + \n + \0 */
machine-id-setup: allow passing NULL as function argument, for simplicity
2014-06-17 05:25:02 +04:00
int r;
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
machine-id-setup: allow passing NULL as function argument, for simplicity
2014-06-17 05:25:02 +04:00
if (isempty(root)) {
etc_machine_id = "/etc/machine-id";
run_machine_id = "/run/machine-id";
} else {
machine-id-setup: casting const away is ugly, let's not do it if there's no reason to
2014-12-03 05:13:34 +03:00
char *x;
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
util: rework strappenda(), and rename it strjoina() After all it is now much more like strjoin() than strappend(). At the same time, add support for NULL sentinels, even if they are normally not necessary.
2015-02-03 04:05:59 +03:00
x = strjoina(root, "/etc/machine-id");
machine-id-setup: casting const away is ugly, let's not do it if there's no reason to
2014-12-03 05:13:34 +03:00
etc_machine_id = path_kill_slashes(x);
util: rework strappenda(), and rename it strjoina() After all it is now much more like strjoin() than strappend(). At the same time, add support for NULL sentinels, even if they are normally not necessary.
2015-02-03 04:05:59 +03:00
x = strjoina(root, "/run/machine-id");
machine-id-setup: casting const away is ugly, let's not do it if there's no reason to
2014-12-03 05:13:34 +03:00
run_machine_id = path_kill_slashes(x);
machine-id-setup: allow passing NULL as function argument, for simplicity
2014-06-17 05:25:02 +04:00
}
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
util: add a bit of syntactic sugar to run short code fragments with a different umask
2013-04-04 05:39:39 +04:00
RUN_WITH_UMASK(0000) {
/* We create this 0444, to indicate that this isn't really
* something you should ever modify. Of course, since the file
* will be owned by root it doesn't matter much, but maybe
* people look. */
nspawn: create essential base directories at system bootup This allows us to bootup a rootfs with a /usr directory only.
2014-06-24 15:30:11 +04:00
mkdir_parents(etc_machine_id, 0755);
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
fd = open(etc_machine_id, O_RDWR|O_CREAT|O_CLOEXEC|O_NOCTTY, 0444);
core: improve error message when machine id is missing
2014-10-31 12:16:45 +03:00
if (fd < 0) {
int old_errno = errno;
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
fd = open(etc_machine_id, O_RDONLY|O_CLOEXEC|O_NOCTTY);
util: add a bit of syntactic sugar to run short code fragments with a different umask
2013-04-04 05:39:39 +04:00
if (fd < 0) {
core: improve error message when machine id is missing
2014-10-31 12:16:45 +03:00
if (old_errno == EROFS && errno == ENOENT)
log_error("System cannot boot: Missing /etc/machine-id and /etc is mounted read-only.\n"
"Booting up is supported only when:\n"
"1) /etc/machine-id exists and is populated.\n"
"2) /etc/machine-id exists and is empty.\n"
"3) /etc/machine-id is missing and /etc is writable.\n");
else
treewide: use log_*_errno whenever %m is in the format string If the format string contains %m, clearly errno must have a meaningful value, so we might as well use log_*_errno to have ERRNO= logged. Using: find . -name '*.[ch]' | xargs sed -r -i -e \ 's/log_(debug|info|notice|warning|error|emergency)\((".*%m.*")/log_\1_errno(errno, \2/' Plus some whitespace, linewrap, and indent adjustments.
2014-11-28 21:29:59 +03:00
log_error_errno(errno, "Cannot open %s: %m", etc_machine_id);
util: add a bit of syntactic sugar to run short code fragments with a different umask
2013-04-04 05:39:39 +04:00
return -errno;
}
machine-id: generate /etc/machine-id 0444 by default
2011-03-05 00:50:56 +03:00
util: add a bit of syntactic sugar to run short code fragments with a different umask
2013-04-04 05:39:39 +04:00
writable = false;
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
}
}
treewide: another round of simplifications Using the same scripts as in f647962d64e "treewide: yet more log_*_errno + return simplifications".
2014-11-28 21:57:32 +03:00
if (fstat(fd, &st) < 0)
return log_error_errno(errno, "fstat() failed: %m");
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
machine-id-setup: Factorize some machine-id-setup functions to be reused
2014-11-24 11:40:57 +03:00
if (S_ISREG(st.st_mode) && get_valid_machine_id(fd, id) == 0)
return 0;
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
/* Hmm, so, the id currently stored is not useful, then let's
* generate one */
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
r = generate(id, root);
machine-id: be nice and generate compliant v4 UUIDs Newly generated machine IDs now qualify as randomized v4 UUIds. This is trivial to do and hopefully increases adoption of the ID for various purposes.
2011-07-25 21:31:07 +04:00
if (r < 0)
machine-id: fix missing initialization
2013-04-09 00:43:52 +04:00
return r;
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
treewide: sanitize loop_write loop_write() didn't follow the usual systemd rules and returned status partially in errno and required extensive checks from callers. Some of the callers dealt with this properly, but many did not, treating partial writes as successful. Simplify things by conforming to usual rules.
2014-12-02 04:43:19 +03:00
if (S_ISREG(st.st_mode) && writable)
machine-id-setup: Factorize some machine-id-setup functions to be reused
2014-11-24 11:40:57 +03:00
if (write_machine_id(fd, id) == 0)
machine-id: fix missing initialization
2013-04-09 00:43:52 +04:00
return 0;
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
util: replace close_nointr_nofail() by a more useful safe_close() safe_close() automatically becomes a NOP when a negative fd is passed, and returns -1 unconditionally. This makes it easy to write lines like this: fd = safe_close(fd); Which will close an fd if it is open, and reset the fd variable correctly. By making use of this new scheme we can drop a > 200 lines of code that was required to test for non-negative fds or to reset the closed fd variable afterwards.
2014-03-18 22:22:43 +04:00
fd = safe_close(fd);
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
/* Hmm, we couldn't write it? So let's write it to
machine-id: don't delete runtime machine-id, and place it in /run
2012-04-11 14:49:52 +04:00
* /run/machine-id as a replacement */
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
util: add a bit of syntactic sugar to run short code fragments with a different umask
2013-04-04 05:39:39 +04:00
RUN_WITH_UMASK(0022) {
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
r = write_string_file(run_machine_id, id);
util: add a bit of syntactic sugar to run short code fragments with a different umask
2013-04-04 05:39:39 +04:00
}
machine-id: be nice and generate compliant v4 UUIDs Newly generated machine IDs now qualify as randomized v4 UUIds. This is trivial to do and hopefully increases adoption of the ID for various purposes.
2011-07-25 21:31:07 +04:00
if (r < 0) {
treewide: no need to negate errno for log_*_errno() It corrrectly handles both positive and negative errno values.
2014-11-28 15:19:16 +03:00
log_error_errno(r, "Cannot write %s: %m", run_machine_id);
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
unlink(run_machine_id);
machine-id: fix missing initialization
2013-04-09 00:43:52 +04:00
return r;
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
}
/* And now, let's mount it over */
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
r = mount(run_machine_id, etc_machine_id, NULL, MS_BIND, NULL);
machine-id: don't delete runtime machine-id, and place it in /run
2012-04-11 14:49:52 +04:00
if (r < 0) {
treewide: use log_*_errno whenever %m is in the format string If the format string contains %m, clearly errno must have a meaningful value, so we might as well use log_*_errno to have ERRNO= logged. Using: find . -name '*.[ch]' | xargs sed -r -i -e \ 's/log_(debug|info|notice|warning|error|emergency)\((".*%m.*")/log_\1_errno(errno, \2/' Plus some whitespace, linewrap, and indent adjustments.
2014-11-28 21:29:59 +03:00
log_error_errno(errno, "Failed to mount %s: %m", etc_machine_id);
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
unlink_noerrno(run_machine_id);
machine-id: fix missing initialization
2013-04-09 00:43:52 +04:00
return -errno;
machine-id: properly mount transient machine ID read-only
2012-08-13 18:24:30 +04:00
}
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
log_info("Installed transient %s file.", etc_machine_id);
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
machine-id: fix missing initialization
2013-04-09 00:43:52 +04:00
/* Mark the mount read-only */
machine-id: add --root option to operate on an alternate fs tree This makes it possible to initialize the /etc/machine-id file on an arbitrary filesystem hierarchy. This helps systems that wish to run this at image creation time in a subdirectory, or from initramfs before pivot-root is called. [tomegun: converted to using _cleanup_free_ macros]
2014-03-14 08:43:04 +04:00
if (mount(NULL, etc_machine_id, NULL, MS_BIND|MS_RDONLY|MS_REMOUNT, NULL) < 0)
treewide: use log_*_errno whenever %m is in the format string If the format string contains %m, clearly errno must have a meaningful value, so we might as well use log_*_errno to have ERRNO= logged. Using: find . -name '*.[ch]' | xargs sed -r -i -e \ 's/log_(debug|info|notice|warning|error|emergency)\((".*%m.*")/log_\1_errno(errno, \2/' Plus some whitespace, linewrap, and indent adjustments.
2014-11-28 21:29:59 +03:00
log_warning_errno(errno, "Failed to make transient %s read-only: %m", etc_machine_id);
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
machine-id: fix missing initialization
2013-04-09 00:43:52 +04:00
return 0;
main: introduce /etc/machine-id This is supposed to play the same roles /var/lib/dbus/machine-id, however fixes a couple of problems: - It is available during early boot since it is stored in /etc - Removes the ID from the D-Bus context and moves it into a system context, thus hopefully lowering hesitation by people to use it. - It is generated at installation time. If the file is empty at boot time it will be mounted over with a randomly generated ID, which is not saved to disk. This is useful to support state-less machines with no transient or writable /etc configuration.
2011-03-04 23:53:19 +03:00
}
Copy Permalink