1 /* timeout -- run a command with bounded time
2 Copyright (C) 2008-2010 Free Software Foundation, Inc.
4 This program is free software: you can redistribute it and/or modify
5 it under the terms of the GNU General Public License as published by
6 the Free Software Foundation, either version 3 of the License, or
7 (at your option) any later version.
9 This program is distributed in the hope that it will be useful,
10 but WITHOUT ANY WARRANTY; without even the implied warranty of
11 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 GNU General Public License for more details.
14 You should have received a copy of the GNU General Public License
15 along with this program. If not, see <http://www.gnu.org/licenses/>. */
18 /* timeout - Start a command, and kill it if the specified timeout expires
20 We try to behave like a shell starting a single (foreground) job,
21 and will kill the job if we receive the alarm signal we setup.
22 The exit status of the job is returned, or one of these errors:
23 EXIT_TIMEDOUT 124 job timed out
24 EXIT_CANCELED 125 internal error
25 EXIT_CANNOT_INVOKE 126 error executing job
26 EXIT_ENOENT 127 couldn't find job to exec
29 If user specifies the KILL (9) signal is to be sent on timeout,
30 the monitor is killed and so exits with 128+9 rather than 124.
32 If you start a command in the background, which reads from the tty
33 and so is immediately sent SIGTTIN to stop, then the timeout
34 process will ignore this so it can timeout the command as expected.
35 This can be seen with `timeout 10 dd&` for example.
36 However if one brings this group to the foreground with the `fg`
37 command before the timer expires, the command will remain
38 in the sTop state as the shell doesn't send a SIGCONT
39 because the timeout process (group leader) is already running.
40 To get the command running again one can Ctrl-Z, and do fg again.
41 Note one can Ctrl-C the whole job when in this state.
42 I think this could be fixed but I'm not sure the extra
43 complication is justified for this scenario.
45 Written by Pádraig Brady. */
50 #include <sys/types.h>
54 # include <sys/wait.h>
57 # define WIFSIGNALED(s) (((s) & 0xFFFF) - 1 < (unsigned int) 0xFF)
60 # define WTERMSIG(s) ((s) & 0x7F)
66 #include "operand2sig.h"
69 #include "long-options.h"
72 #define PROGRAM_NAME "timeout"
74 #define AUTHORS proper_name_utf8 ("Padraig Brady", "P\303\241draig Brady")
77 static int term_signal
= SIGTERM
; /* same default as kill command. */
78 static int monitored_pid
;
79 static int sigs_to_ignore
[NSIG
]; /* so monitor can ignore sigs it resends. */
80 static unsigned long kill_after
;
82 static struct option
const long_options
[] =
84 {"kill-after", required_argument
, NULL
, 'k'},
85 {"signal", required_argument
, NULL
, 's'},
89 /* send sig to group but not ourselves.
90 * FIXME: Is there a better way to achieve this? */
92 send_sig (int where
, int sig
)
94 sigs_to_ignore
[sig
] = 1;
95 return kill (where
, sig
);
108 if (sigs_to_ignore
[sig
])
110 sigs_to_ignore
[sig
] = 0;
115 /* Start a new timeout after which we'll send SIGKILL. */
116 term_signal
= SIGKILL
;
118 kill_after
= 0; /* Don't let later signals reset kill alarm. */
121 if (sig
!= SIGKILL
&& sig
!= SIGCONT
)
122 send_sig (0, SIGCONT
);
124 else /* we're the child or the child is not exec'd yet. */
131 if (status
!= EXIT_SUCCESS
)
132 fprintf (stderr
, _("Try `%s --help' for more information.\n"),
137 Usage: %s [OPTION] DURATION COMMAND [ARG]...\n\
138 or: %s [OPTION]\n"), program_name
, program_name
);
141 Start COMMAND, and kill it if still running after DURATION.\n\
143 Mandatory arguments to long options are mandatory for short options too.\n\
146 -k, --kill-after=DURATION\n\
147 also send a KILL signal if COMMAND is still running\n\
148 this long after the initial signal was sent.\n\
149 -s, --signal=SIGNAL\n\
150 specify the signal to be sent on timeout.\n\
151 SIGNAL may be a name like `HUP' or a number.\n\
152 See `kill -l` for a list of signals\n"), stdout
);
154 fputs (HELP_OPTION_DESCRIPTION
, stdout
);
155 fputs (VERSION_OPTION_DESCRIPTION
, stdout
);
158 DURATION is an integer with an optional suffix:\n\
159 `s' for seconds(the default), `m' for minutes, `h' for hours or `d' for days.\n\
163 If the command times out, then exit with status 124. Otherwise, exit\n\
164 with the status of COMMAND. If no signal is specified, send the TERM\n\
165 signal upon timeout. The TERM signal kills any process that does not\n\
166 block or catch that signal. For other processes, it may be necessary to\n\
167 use the KILL (9) signal, since this signal cannot be caught.\n"), stdout
);
168 emit_ancillary_info ();
173 /* Given a long integer value *X, and a suffix character, SUFFIX_CHAR,
174 scale *X by the multiplier implied by SUFFIX_CHAR. SUFFIX_CHAR may
175 be the NUL byte or `s' to denote seconds, `m' for minutes, `h' for
176 hours, or `d' for days. If SUFFIX_CHAR is invalid, don't modify *X
177 and return false. If *X would overflow an integer, don't modify *X
178 and return false. Otherwise return true. */
181 apply_time_suffix (unsigned long *x
, char suffix_char
)
183 unsigned int multiplier
= 1;
195 if (multiplier
> UINT_MAX
/ 60) /* 16 bit overflow */
203 if (*x
> UINT_MAX
/ multiplier
)
212 parse_duration (const char* str
)
214 unsigned long duration
;
217 if (xstrtoul (str
, &ep
, 10, &duration
, NULL
)
218 /* Invalid interval. Note 0 disables timeout */
219 || (duration
> UINT_MAX
)
220 /* Extra chars after the number and an optional s,m,h,d char. */
221 || (*ep
&& *(ep
+ 1))
222 /* Check any suffix char and update timeout based on the suffix. */
223 || !apply_time_suffix (&duration
, *ep
))
225 error (0, 0, _("invalid time interval %s"), quote (str
));
226 usage (EXIT_CANCELED
);
233 install_signal_handlers (int sigterm
)
236 sigemptyset (&sa
.sa_mask
); /* Allow concurrent calls to handler */
237 sa
.sa_handler
= cleanup
;
238 sa
.sa_flags
= SA_RESTART
; /* restart syscalls (like wait() below) */
240 sigaction (SIGALRM
, &sa
, NULL
); /* our timeout. */
241 sigaction (SIGINT
, &sa
, NULL
); /* Ctrl-C at terminal for example. */
242 sigaction (SIGQUIT
, &sa
, NULL
); /* Ctrl-\ at terminal for example. */
243 sigaction (SIGHUP
, &sa
, NULL
); /* terminal closed for example. */
244 sigaction (SIGTERM
, &sa
, NULL
); /* if we're killed, stop monitored proc. */
245 sigaction (sigterm
, &sa
, NULL
); /* user specified termination signal. */
249 main (int argc
, char **argv
)
251 unsigned long timeout
;
252 char signame
[SIG2STR_MAX
];
255 initialize_main (&argc
, &argv
);
256 set_program_name (argv
[0]);
257 setlocale (LC_ALL
, "");
258 bindtextdomain (PACKAGE
, LOCALEDIR
);
259 textdomain (PACKAGE
);
261 initialize_exit_failure (EXIT_CANCELED
);
262 atexit (close_stdout
);
264 parse_long_options (argc
, argv
, PROGRAM_NAME
, PACKAGE_NAME
, Version
,
265 usage
, AUTHORS
, (char const *) NULL
);
267 while ((c
= getopt_long (argc
, argv
, "+k:s:", long_options
, NULL
)) != -1)
272 kill_after
= parse_duration (optarg
);
275 term_signal
= operand2sig (optarg
, signame
);
276 if (term_signal
== -1)
277 usage (EXIT_CANCELED
);
280 usage (EXIT_CANCELED
);
285 if (argc
- optind
< 2)
286 usage (EXIT_CANCELED
);
288 timeout
= parse_duration (argv
[optind
++]);
292 /* Ensure we're in our own group so all subprocesses can be killed.
293 Note we don't just put the child in a separate group as
294 then we would need to worry about foreground and background groups
295 and propagating signals between them. */
298 /* Setup handlers before fork() so that we
299 handle any signals caused by child, without races. */
300 install_signal_handlers (term_signal
);
301 signal (SIGTTIN
, SIG_IGN
); /* don't sTop if background child needs tty. */
302 signal (SIGTTOU
, SIG_IGN
); /* don't sTop if background child needs tty. */
303 signal (SIGCHLD
, SIG_DFL
); /* Don't inherit CHLD handling from parent. */
305 monitored_pid
= fork ();
306 if (monitored_pid
== -1)
308 error (0, errno
, _("fork system call failed"));
309 return EXIT_CANCELED
;
311 else if (monitored_pid
== 0)
315 /* exec doesn't reset SIG_IGN -> SIG_DFL. */
316 signal (SIGTTIN
, SIG_DFL
);
317 signal (SIGTTOU
, SIG_DFL
);
319 execvp (argv
[0], argv
); /* FIXME: should we use "sh -c" ... here? */
321 /* exit like sh, env, nohup, ... */
322 exit_status
= (errno
== ENOENT
? EXIT_ENOENT
: EXIT_CANNOT_INVOKE
);
323 error (0, errno
, _("failed to run command %s"), quote (argv
[0]));
332 /* We're just waiting for a single process here, so wait() suffices.
333 Note the signal() calls above on GNU/Linux and BSD at least,
334 essentially call the lower level sigaction() with the SA_RESTART flag
335 set, which ensures the following wait call will only return if the
336 child exits, not on this process receiving a signal. Also we're not
337 passing WUNTRACED | WCONTINUED to a waitpid() call and so will not get
338 indication that the child has stopped or continued. */
339 if (wait (&status
) == -1)
341 /* shouldn't happen. */
342 error (0, errno
, _("error waiting for command"));
343 status
= EXIT_CANCELED
;
347 if (WIFEXITED (status
))
348 status
= WEXITSTATUS (status
);
349 else if (WIFSIGNALED (status
))
350 status
= WTERMSIG (status
) + 128; /* what sh does at least. */
353 /* shouldn't happen. */
354 error (0, 0, _("unknown status from command (0x%X)"), status
);
355 status
= EXIT_FAILURE
;
360 return EXIT_TIMEDOUT
;