2 * Copyright (c) 1991, 1993
3 * The Regents of the University of California. All rights reserved.
5 * This code is derived from software contributed to Berkeley by
6 * Donn Seeley at Berkeley Software Design, Inc.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of the University nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 * @(#) Copyright (c) 1991, 1993 The Regents of the University of California. All rights reserved.
33 * @(#)init.c 8.1 (Berkeley) 7/15/93
34 * $FreeBSD: src/sbin/init/init.c,v 1.38.2.8 2001/10/22 11:27:32 des Exp $
37 #include <sys/param.h>
38 #include <sys/ioctl.h>
39 #include <sys/mount.h>
40 #include <sys/param.h>
41 #include <sys/sysctl.h>
59 #include <sys/reboot.h>
69 #include <login_cap.h>
72 #include "pathnames.h"
75 * Sleep times; used to prevent thrashing.
77 #define GETTY_SPACING 5 /* N secs minimum getty spacing */
78 #define GETTY_SLEEP 30 /* sleep N secs after spacing problem */
79 #define GETTY_NSPACE 3 /* max. spacing count to bring reaction */
80 #define WINDOW_WAIT 3 /* wait N secs after starting window */
81 #define STALL_TIMEOUT 30 /* wait N secs after warning */
82 #define DEATH_WATCH 10 /* wait N secs for procs to die */
83 #define DEATH_SCRIPT 120 /* wait for 2min for /etc/rc.shutdown */
86 * User-based resource limits.
88 #define RESOURCE_RC "daemon"
89 #define RESOURCE_WINDOW "default"
90 #define RESOURCE_GETTY "default"
93 #define DEFAULT_STATE runcom
106 typedef state_t (*state_func_t
)(void);
108 static state_t
f_single_user(void);
109 static state_t
f_runcom(void);
110 static state_t
f_read_ttys(void);
111 static state_t
f_multi_user(void);
112 static state_t
f_clean_ttys(void);
113 static state_t
f_catatonia(void);
114 static state_t
f_death(void);
116 state_func_t state_funcs
[] = {
127 enum { AUTOBOOT
, FASTBOOT
} runcom_mode
= AUTOBOOT
;
131 static void transition(state_t
);
132 static volatile sig_atomic_t requested_transition
= DEFAULT_STATE
;
134 static void setctty(const char *);
136 typedef struct init_session
{
137 int se_index
; /* index of entry in ttys file */
138 pid_t se_process
; /* controlling process */
139 struct timeval se_started
; /* used to avoid thrashing */
140 int se_flags
; /* status of session */
141 #define SE_SHUTDOWN 0x1 /* session won't be restarted */
142 #define SE_PRESENT 0x2 /* session is in /etc/ttys */
143 int se_nspace
; /* spacing count */
144 char *se_device
; /* filename of port */
145 char *se_getty
; /* what to run on that port */
146 char *se_getty_argv_space
; /* pre-parsed argument array space */
147 char **se_getty_argv
; /* pre-parsed argument array */
148 char *se_window
; /* window system (started only once) */
149 char *se_window_argv_space
; /* pre-parsed argument array space */
150 char **se_window_argv
; /* pre-parsed argument array */
151 char *se_type
; /* default terminal type */
152 struct init_session
*se_prev
;
153 struct init_session
*se_next
;
156 static void handle(sig_t
, ...);
157 static void delset(sigset_t
*, ...);
159 static void stall(const char *, ...) __printflike(1, 2);
160 static void warning(const char *, ...) __printflike(1, 2);
161 static void emergency(const char *, ...) __printflike(1, 2);
162 static void disaster(int);
163 static void badsys(int);
164 static int runshutdown(void);
165 static char *strk(char *);
168 #define SINGLE_USER 's'
170 #define READ_TTYS 't'
171 #define MULTI_USER 'm'
172 #define CLEAN_TTYS 'T'
173 #define CATATONIA 'c'
175 static void free_session(session_t
*);
176 static session_t
*new_session(session_t
*, int, struct ttyent
*);
177 static void adjttyent(struct ttyent
*typ
);
179 static char **construct_argv(char *);
180 static void start_window_system(session_t
*);
181 static void collect_child(pid_t
);
182 static pid_t
start_getty(session_t
*);
183 static void transition_handler(int);
184 static void alrm_handler(int);
185 static void setsecuritylevel(int);
186 static int getsecuritylevel(void);
187 static char *get_chroot(void);
188 static int setupargv(session_t
*, struct ttyent
*);
190 static void setprocresources(const char *);
193 static void clear_session_logs(session_t
*);
195 static int start_session_db(void);
196 static void add_session(session_t
*);
197 static void del_session(session_t
*);
198 static session_t
*find_session(pid_t
);
201 static struct timeval boot_time
;
202 state_t current_state
= death
;
203 static void session_utmpx(const session_t
*, int);
204 static void make_utmpx(const char *, const char *, int, pid_t
,
205 const struct timeval
*, int);
206 static char get_runlevel(const state_t
);
207 static void utmpx_set_runlevel(char, char);
210 static int Reboot
= FALSE
;
211 static int howto
= RB_AUTOBOOT
;
213 static DB
*session_db
;
214 static volatile sig_atomic_t clang
;
215 static session_t
*sessions
;
218 * The mother of all processes.
221 main(int argc
, char *argv
[])
230 (void)gettimeofday(&boot_time
, NULL
);
231 #endif /* SUPPORT_UTMPX */
233 /* Dispose of random users. */
235 errx(1, "%s", strerror(EPERM
));
237 /* System V users like to reexec init. */
239 #ifdef COMPAT_SYSV_INIT
240 /* So give them what they want */
242 if (strlen(argv
[1]) == 1) {
243 char runlevel
= *argv
[1];
247 case '0': /* halt + poweroff */
250 case '1': /* single-user */
253 case '6': /* reboot */
256 case 'c': /* block further logins */
259 case 'q': /* rescan /etc/ttys */
269 errx(1, "invalid run-level ``%s''", argv
[1]);
272 errx(1, "already running");
275 * Note that this does NOT open a file...
276 * Does 'init' deserve its own facility number?
278 openlog("init", LOG_CONS
|LOG_ODELAY
, LOG_AUTH
);
281 * If chroot has been requested by the boot loader,
282 * do it now. Try to be robust: If the directory
283 * doesn't exist, continue anyway.
285 init_chroot
= get_chroot();
286 if (init_chroot
!= NULL
) {
287 if (chdir(init_chroot
) == -1 || chroot(".") == -1)
288 warning("can't chroot to %s: %m", init_chroot
);
293 * Create an initial session.
296 warning("initial setsid() failed: %m");
299 * Establish an initial user so that programs running
300 * single user do not freak out and die (like passwd).
302 if (setlogin("root") < 0)
303 warning("setlogin() failed: %m");
305 if (stat("/dev/null", &sts
) < 0) {
306 warning("/dev MAY BE CORRUPT! /dev/null is missing!\n");
311 * This code assumes that we always get arguments through flags,
312 * never through bits set in some random machine register.
314 while ((c
= getopt(argc
, argv
, "dsf")) != -1)
317 /* We don't support DEVFS. */
320 requested_transition
= single_user
;
323 runcom_mode
= FASTBOOT
;
326 warning("unrecognized flag '-%c'", c
);
331 warning("ignoring excess arguments");
334 * We catch or block signals rather than ignore them,
335 * so that they get reset on exec.
337 handle(badsys
, SIGSYS
, 0);
338 handle(disaster
, SIGABRT
, SIGFPE
, SIGILL
, SIGSEGV
,
339 SIGBUS
, SIGXCPU
, SIGXFSZ
, 0);
340 handle(transition_handler
, SIGHUP
, SIGINT
, SIGTERM
, SIGTSTP
,
341 SIGUSR1
, SIGUSR2
, 0);
342 handle(alrm_handler
, SIGALRM
, 0);
344 delset(&mask
, SIGABRT
, SIGFPE
, SIGILL
, SIGSEGV
, SIGBUS
, SIGSYS
,
345 SIGXCPU
, SIGXFSZ
, SIGHUP
, SIGINT
, SIGTERM
, SIGTSTP
, SIGALRM
,
346 SIGUSR1
, SIGUSR2
, 0);
347 sigprocmask(SIG_SETMASK
, &mask
, NULL
);
348 sigemptyset(&sa
.sa_mask
);
350 sa
.sa_handler
= SIG_IGN
;
351 sigaction(SIGTTIN
, &sa
, NULL
);
352 sigaction(SIGTTOU
, &sa
, NULL
);
362 * Start the state machine.
364 transition(requested_transition
);
367 * Should never reach here.
373 * Associate a function with a signal handler.
376 handle(sig_t handler
, ...)
380 sigset_t mask_everything
;
383 va_start(ap
, handler
);
385 sa
.sa_handler
= handler
;
386 sigfillset(&mask_everything
);
388 while ((sig
= va_arg(ap
, int)) != 0) {
389 sa
.sa_mask
= mask_everything
;
390 /* XXX SA_RESTART? */
391 sa
.sa_flags
= sig
== SIGCHLD
? SA_NOCLDSTOP
: 0;
392 sigaction(sig
, &sa
, NULL
);
398 * Delete a set of signals from a mask.
401 delset(sigset_t
*maskp
, ...)
408 while ((sig
= va_arg(ap
, int)) != 0)
409 sigdelset(maskp
, sig
);
414 * Log a message and sleep for a while (to give someone an opportunity
415 * to read it and to save log or hardcopy output if the problem is chronic).
416 * NB: should send a message to the session logger to avoid blocking.
419 stall(const char *message
, ...)
423 va_start(ap
, message
);
425 vsyslog(LOG_ALERT
, message
, ap
);
427 sleep(STALL_TIMEOUT
);
431 * Like stall(), but doesn't sleep.
432 * If cpp had variadic macros, the two functions could be #defines for another.
433 * NB: should send a message to the session logger to avoid blocking.
436 warning(const char *message
, ...)
440 va_start(ap
, message
);
442 vsyslog(LOG_ALERT
, message
, ap
);
447 * Log an emergency message.
448 * NB: should send a message to the session logger to avoid blocking.
451 emergency(const char *message
, ...)
455 va_start(ap
, message
);
457 vsyslog(LOG_EMERG
, message
, ap
);
462 * Catch a SIGSYS signal.
464 * These may arise if a system does not support sysctl.
465 * We tolerate up to 25 of these, then throw in the towel.
470 static int badcount
= 0;
478 * Catch an unexpected signal.
483 emergency("fatal signal: %s",
484 (unsigned)sig
< NSIG
? sys_siglist
[sig
] : "unknown signal");
486 sleep(STALL_TIMEOUT
);
487 _exit(sig
); /* reboot */
491 * Get the security level of the kernel.
494 getsecuritylevel(void)
496 #ifdef KERN_SECURELVL
497 int name
[2], curlevel
;
501 name
[1] = KERN_SECURELVL
;
502 len
= sizeof curlevel
;
503 if (sysctl(name
, 2, &curlevel
, &len
, NULL
, 0) == -1) {
504 emergency("cannot get kernel security level: %s",
515 * Get the value of the "init_chroot" variable from the
516 * kernel environment (or NULL if not set).
522 static const char ichname
[] = "init_chroot="; /* includes '=' */
523 const int ichlen
= strlen(ichname
);
524 int real_oid
[CTL_MAXNAME
];
530 oidlen
= NELEM(real_oid
);
531 if (sysctlnametomib("kern.environment", real_oid
, &oidlen
)) {
532 warning("cannot find kern.environment base sysctl OID");
535 if (oidlen
+ 1 >= NELEM(real_oid
)) {
536 warning("kern.environment OID is too large!");
540 real_oid
[oidlen
] = 0;
543 real_oid
[oidlen
+ 1] = i
;
545 if (sysctl(real_oid
, oidlen
+ 2, sbuf
, &slen
, NULL
, 0) < 0) {
547 warning("sysctl kern.environment.%d: %m", i
);
552 * slen includes the terminating \0, but do a few sanity
558 if (strncmp(sbuf
, ichname
, ichlen
) != 0)
561 res
= strdup(sbuf
+ ichlen
);
568 * Set the security level of the kernel.
571 setsecuritylevel(int newlevel
)
573 #ifdef KERN_SECURELVL
574 int name
[2], curlevel
;
576 curlevel
= getsecuritylevel();
577 if (newlevel
== curlevel
)
580 name
[1] = KERN_SECURELVL
;
581 if (sysctl(name
, 2, NULL
, NULL
, &newlevel
, sizeof newlevel
) == -1) {
583 "cannot change kernel security level from %d to %d: %s",
584 curlevel
, newlevel
, strerror(errno
));
588 warning("kernel security level changed from %d to %d",
595 * Change states in the finite state machine.
596 * The initial state is passed as an argument.
599 transition(state_t s
)
603 utmpx_set_runlevel(get_runlevel(current_state
),
607 s
= (*state_funcs
[s
])();
612 * Close out the accounting files for a login session.
613 * NB: should send a message to the session logger to avoid blocking.
616 clear_session_logs(session_t
*sp
)
618 char *line
= sp
->se_device
+ sizeof(_PATH_DEV
) - 1;
621 if (logoutx(line
, 0, DEAD_PROCESS
))
622 logwtmpx(line
, "", "", 0, DEAD_PROCESS
);
625 logwtmp(line
, "", "");
629 * Start a session and allocate a controlling terminal.
630 * Only called by children of init after forking.
633 setctty(const char *name
)
638 if ((fd
= open(name
, O_RDWR
)) == -1) {
639 stall("can't open %s: %m", name
);
642 if (login_tty(fd
) == -1) {
643 stall("can't get %s for controlling terminal: %m", name
);
649 * Bring the system up single user.
657 const char *shell
= _PATH_BSHELL
;
662 static const char banner
[] =
663 "Enter root password, or ^D to go multi-user\n";
664 char *clear
, *password
;
671 /* Instead of going single user, let's reboot the machine */
679 if ((pid
= fork()) == 0) {
681 * Start the single user session.
683 setctty(_PATH_CONSOLE
);
687 * Check the root password.
688 * We don't care if the console is 'on' by default;
689 * it's the only tty that can be 'off' and 'secure'.
691 typ
= getttynam("console");
692 pp
= getpwnam("root");
693 if (typ
&& (typ
->ty_status
& TTY_SECURE
) == 0 &&
694 pp
&& *pp
->pw_passwd
) {
695 write(2, banner
, sizeof banner
- 1);
697 clear
= getpass("Password:");
698 if (clear
== NULL
|| *clear
== '\0')
700 password
= crypt(clear
, pp
->pw_passwd
);
701 bzero(clear
, _PASSWORD_LEN
);
702 if (password
!= NULL
&& strcmp(password
, pp
->pw_passwd
) == 0)
704 warning("single-user login failed\n");
717 "Enter full pathname of shell or RETURN for " _PATH_BSHELL ": "
718 write(STDERR_FILENO
, SHREQUEST
, sizeof(SHREQUEST
) - 1);
719 while ((num
= read(STDIN_FILENO
, cp
, 1)) != -1 &&
720 num
!= 0 && *cp
!= '\n' && cp
< &altshell
[127])
723 if (altshell
[0] != '\0')
726 #endif /* DEBUGSHELL */
730 * We catch all the interesting ones,
731 * and those are reset to SIG_DFL on exec.
734 sigprocmask(SIG_SETMASK
, &mask
, NULL
);
738 * If the default one doesn't work, try the Bourne shell.
742 execv(shell
, __DECONST(char **, argv
));
743 emergency("can't exec %s for single user: %m", shell
);
744 execv(_PATH_BSHELL
, __DECONST(char **, argv
));
745 emergency("can't exec %s for single user: %m", _PATH_BSHELL
);
746 sleep(STALL_TIMEOUT
);
752 * We are seriously hosed. Do our best.
754 emergency("can't fork single-user shell, trying again");
755 while (waitpid(-1, NULL
, WNOHANG
) > 0)
760 requested_transition
= 0;
762 if ((wpid
= waitpid(-1, &status
, WUNTRACED
)) != -1)
767 warning("wait for single-user shell failed: %m; restarting");
770 if (wpid
== pid
&& WIFSTOPPED(status
)) {
771 warning("init: shell stopped, restarting\n");
775 } while (wpid
!= pid
&& !requested_transition
);
777 if (requested_transition
)
778 return requested_transition
;
780 if (!WIFEXITED(status
)) {
781 if (WTERMSIG(status
) == SIGKILL
) {
783 * reboot(8) killed shell?
785 warning("single user shell terminated.");
786 sleep(STALL_TIMEOUT
);
789 warning("single user shell terminated, restarting");
794 runcom_mode
= FASTBOOT
;
799 * Run the system startup script.
809 if ((pid
= fork()) == 0) {
810 sigemptyset(&sa
.sa_mask
);
812 sa
.sa_handler
= SIG_IGN
;
813 sigaction(SIGTSTP
, &sa
, NULL
);
814 sigaction(SIGHUP
, &sa
, NULL
);
816 setctty(_PATH_CONSOLE
);
819 argv
[1] = _PATH_RUNCOM
;
820 argv
[2] = runcom_mode
== AUTOBOOT
? "autoboot" : 0;
823 sigprocmask(SIG_SETMASK
, &sa
.sa_mask
, NULL
);
826 setprocresources(RESOURCE_RC
);
828 execv(_PATH_BSHELL
, __DECONST(char **, argv
));
829 stall("can't exec %s for %s: %m", _PATH_BSHELL
, _PATH_RUNCOM
);
830 _exit(1); /* force single user mode */
834 emergency("can't fork for %s on %s: %m",
835 _PATH_BSHELL
, _PATH_RUNCOM
);
836 while (waitpid(-1, NULL
, WNOHANG
) > 0)
838 sleep(STALL_TIMEOUT
);
843 * Copied from single_user(). This is a bit paranoid.
845 requested_transition
= 0;
847 if ((wpid
= waitpid(-1, &status
, WUNTRACED
)) != -1)
850 if (requested_transition
== death
)
854 warning("wait for %s on %s failed: %m; going to single user mode",
855 _PATH_BSHELL
, _PATH_RUNCOM
);
858 if (wpid
== pid
&& WIFSTOPPED(status
)) {
859 warning("init: %s on %s stopped, restarting\n",
860 _PATH_BSHELL
, _PATH_RUNCOM
);
864 } while (wpid
!= pid
);
866 if (WIFSIGNALED(status
) && WTERMSIG(status
) == SIGTERM
&&
867 requested_transition
== catatonia
) {
868 /* /etc/rc executed /sbin/reboot; wait for the end quietly */
876 if (!WIFEXITED(status
)) {
877 warning("%s on %s terminated abnormally, going to single user mode",
878 _PATH_BSHELL
, _PATH_RUNCOM
);
882 if (WEXITSTATUS(status
))
885 runcom_mode
= AUTOBOOT
; /* the default */
886 /* NB: should send a message to the session logger to avoid blocking. */
888 logwtmpx("~", "reboot", "", 0, INIT_PROCESS
);
890 logwtmp("~", "reboot", "");
895 * Open the session database.
897 * NB: We could pass in the size here; is it necessary?
900 start_session_db(void)
902 if (session_db
&& (*session_db
->close
)(session_db
))
903 emergency("session database close: %s", strerror(errno
));
904 if ((session_db
= dbopen(NULL
, O_RDWR
, 0, DB_HASH
, NULL
)) == NULL
) {
905 emergency("session database open: %s", strerror(errno
));
913 * Add a new login session.
916 add_session(session_t
*sp
)
921 key
.data
= &sp
->se_process
;
922 key
.size
= sizeof sp
->se_process
;
924 data
.size
= sizeof sp
;
926 if ((*session_db
->put
)(session_db
, &key
, &data
, 0))
927 emergency("insert %d: %s", sp
->se_process
, strerror(errno
));
929 session_utmpx(sp
, 1);
934 * Delete an old login session.
937 del_session(session_t
*sp
)
941 key
.data
= &sp
->se_process
;
942 key
.size
= sizeof sp
->se_process
;
944 if ((*session_db
->del
)(session_db
, &key
, 0))
945 emergency("delete %d: %s", sp
->se_process
, strerror(errno
));
947 session_utmpx(sp
, 0);
952 * Look up a login session by pid.
955 find_session(pid_t pid
)
962 key
.size
= sizeof pid
;
963 if ((*session_db
->get
)(session_db
, &key
, &data
, 0) != 0)
965 bcopy(data
.data
, (char *)&ret
, sizeof(ret
));
970 * Construct an argument vector from a command line.
973 construct_argv(char *command
)
976 char **argv
= malloc(((strlen(command
) + 1) / 2 + 1)
979 if ((argv
[argc
++] = strk(command
)) == NULL
) {
983 while ((argv
[argc
++] = strk(NULL
)) != NULL
)
989 * Deallocate a session descriptor.
992 free_session(session_t
*sp
)
997 free(sp
->se_getty_argv_space
);
998 free(sp
->se_getty_argv
);
1000 if (sp
->se_window
) {
1001 free(sp
->se_window
);
1002 free(sp
->se_window_argv_space
);
1003 free(sp
->se_window_argv
);
1012 adjttyent(struct ttyent
*typ
)
1017 size_t rdev_size
= sizeof(rdev
);
1019 if (typ
->ty_name
== NULL
)
1023 * IFCONSOLE option forces tty off if not the console.
1025 if (typ
->ty_status
& TTY_IFCONSOLE
) {
1026 asprintf(&devpath
, "%s%s", _PATH_DEV
, typ
->ty_name
);
1027 if (stat(devpath
, &st
) < 0 ||
1028 sysctlbyname("kern.console_rdev",
1031 /* device does not exist or no sysctl, disable */
1032 typ
->ty_status
&= ~TTY_ON
;
1033 } else if (rdev
!= st
.st_rdev
) {
1034 typ
->ty_status
&= ~TTY_ON
;
1041 * Allocate a new session descriptor.
1042 * Mark it SE_PRESENT.
1045 new_session(session_t
*sprev
, int session_index
, struct ttyent
*typ
)
1050 if (typ
->ty_name
== NULL
|| typ
->ty_getty
== NULL
)
1053 if ((typ
->ty_status
& TTY_ON
) == 0)
1056 sp
= (session_t
*) calloc(1, sizeof (session_t
));
1058 asprintf(&sp
->se_device
, "%s%s", _PATH_DEV
, typ
->ty_name
);
1059 sp
->se_index
= session_index
;
1060 sp
->se_flags
|= SE_PRESENT
;
1063 * Attempt to open the device, if we get "device not configured"
1064 * then don't add the device to the session list.
1066 if ((fd
= open(sp
->se_device
, O_RDONLY
| O_NONBLOCK
, 0)) < 0) {
1067 if (errno
== ENXIO
) {
1074 if (setupargv(sp
, typ
) == 0) {
1080 if (sprev
== NULL
) {
1084 sprev
->se_next
= sp
;
1085 sp
->se_prev
= sprev
;
1092 * Calculate getty and if useful window argv vectors.
1095 setupargv(session_t
*sp
, struct ttyent
*typ
)
1100 free(sp
->se_getty_argv_space
);
1101 free(sp
->se_getty_argv
);
1103 sp
->se_getty
= malloc(strlen(typ
->ty_getty
) + strlen(typ
->ty_name
) + 2);
1104 sprintf(sp
->se_getty
, "%s %s", typ
->ty_getty
, typ
->ty_name
);
1105 sp
->se_getty_argv_space
= strdup(sp
->se_getty
);
1106 sp
->se_getty_argv
= construct_argv(sp
->se_getty_argv_space
);
1107 if (sp
->se_getty_argv
== NULL
) {
1108 warning("can't parse getty for port %s", sp
->se_device
);
1110 free(sp
->se_getty_argv_space
);
1111 sp
->se_getty
= sp
->se_getty_argv_space
= NULL
;
1114 if (sp
->se_window
) {
1115 free(sp
->se_window
);
1116 free(sp
->se_window_argv_space
);
1117 free(sp
->se_window_argv
);
1119 sp
->se_window
= sp
->se_window_argv_space
= NULL
;
1120 sp
->se_window_argv
= NULL
;
1121 if (typ
->ty_window
) {
1122 sp
->se_window
= strdup(typ
->ty_window
);
1123 sp
->se_window_argv_space
= strdup(sp
->se_window
);
1124 sp
->se_window_argv
= construct_argv(sp
->se_window_argv_space
);
1125 if (sp
->se_window_argv
== NULL
) {
1126 warning("can't parse window for port %s",
1128 free(sp
->se_window_argv_space
);
1129 free(sp
->se_window
);
1130 sp
->se_window
= sp
->se_window_argv_space
= NULL
;
1136 sp
->se_type
= typ
->ty_type
? strdup(typ
->ty_type
) : 0;
1141 * Walk the list of ttys and create sessions for each active line.
1146 int session_index
= 0;
1147 session_t
*sp
, *snext
;
1150 #ifdef SUPPORT_UTMPX
1151 if (sessions
== NULL
) {
1154 make_utmpx("", BOOT_MSG
, BOOT_TIME
, 0, &boot_time
, 0);
1157 * If wtmpx is not empty, pick the down time from there
1159 if (stat(_PATH_WTMPX
, &st
) != -1 && st
.st_size
!= 0) {
1160 struct timeval down_time
;
1162 TIMESPEC_TO_TIMEVAL(&down_time
,
1163 st
.st_atime
> st
.st_mtime
?
1164 &st
.st_atimespec
: &st
.st_mtimespec
);
1165 make_utmpx("", DOWN_MSG
, DOWN_TIME
, 0, &down_time
, 0);
1170 * Destroy any previous session state.
1171 * There shouldn't be any, but just in case...
1173 for (sp
= sessions
; sp
; sp
= snext
) {
1175 clear_session_logs(sp
);
1176 snext
= sp
->se_next
;
1180 if (start_session_db())
1184 * Allocate a session entry for each active port.
1185 * Note that sp starts at 0.
1187 while ((typ
= getttyent()) != NULL
) {
1189 if ((snext
= new_session(sp
, ++session_index
, typ
)) != NULL
)
1199 * Start a window system running.
1202 start_window_system(session_t
*sp
)
1206 char term
[64], *env
[2];
1208 if ((pid
= fork()) == -1) {
1209 emergency("can't fork for window system on port %s: %m",
1211 /* hope that getty fails and we can try again */
1219 sigprocmask(SIG_SETMASK
, &mask
, NULL
);
1222 emergency("setsid failed (window) %m");
1225 setprocresources(RESOURCE_WINDOW
);
1228 /* Don't use malloc after fork */
1229 strcpy(term
, "TERM=");
1230 strncat(term
, sp
->se_type
, sizeof(term
) - 6);
1236 execve(sp
->se_window_argv
[0], sp
->se_window_argv
, env
);
1237 stall("can't exec window system '%s' for port %s: %m",
1238 sp
->se_window_argv
[0], sp
->se_device
);
1243 * Start a login session running.
1246 start_getty(session_t
*sp
)
1250 time_t current_time
= time(NULL
);
1252 char term
[64], *env
[2];
1254 if (current_time
>= sp
->se_started
.tv_sec
&&
1255 current_time
- sp
->se_started
.tv_sec
< GETTY_SPACING
) {
1256 if (++sp
->se_nspace
> GETTY_NSPACE
) {
1264 * fork(), not vfork() -- we can't afford to block.
1266 if ((pid
= fork()) == -1) {
1267 emergency("can't fork for getty on port %s: %m", sp
->se_device
);
1275 warning("getty repeating too quickly on port %s, sleeping %d secs",
1276 sp
->se_device
, GETTY_SLEEP
);
1277 sleep((unsigned) GETTY_SLEEP
);
1280 if (sp
->se_window
) {
1281 start_window_system(sp
);
1286 sigprocmask(SIG_SETMASK
, &mask
, NULL
);
1289 setprocresources(RESOURCE_GETTY
);
1292 /* Don't use malloc after fork */
1293 strcpy(term
, "TERM=");
1294 strncat(term
, sp
->se_type
, sizeof(term
) - 6);
1300 execve(sp
->se_getty_argv
[0], sp
->se_getty_argv
, env
);
1301 stall("can't exec getty '%s' for port %s: %m",
1302 sp
->se_getty_argv
[0], sp
->se_device
);
1307 * Collect exit status for a child.
1308 * If an exiting login, start a new login running.
1311 collect_child(pid_t pid
)
1313 session_t
*sp
, *sprev
, *snext
;
1318 if (! (sp
= find_session(pid
)))
1321 clear_session_logs(sp
);
1325 if (sp
->se_flags
& SE_SHUTDOWN
) {
1326 if ((sprev
= sp
->se_prev
) != NULL
)
1327 sprev
->se_next
= sp
->se_next
;
1329 sessions
= sp
->se_next
;
1330 if ((snext
= sp
->se_next
) != NULL
)
1331 snext
->se_prev
= sp
->se_prev
;
1336 if ((pid
= start_getty(sp
)) == -1) {
1337 /* serious trouble */
1338 requested_transition
= clean_ttys
;
1342 sp
->se_process
= pid
;
1343 gettimeofday(&sp
->se_started
, NULL
);
1348 * Catch a signal and request a state transition.
1351 transition_handler(int sig
)
1356 requested_transition
= clean_ttys
;
1359 howto
= RB_POWEROFF
;
1368 requested_transition
= death
;
1371 requested_transition
= catatonia
;
1374 requested_transition
= 0;
1380 * Take the system multiuser.
1388 requested_transition
= 0;
1391 * If the administrator has not set the security level to -1
1392 * to indicate that the kernel should not run multiuser in secure
1393 * mode, and the run script has not set a higher level of security
1394 * than level 1, then put the kernel into secure mode.
1396 if (getsecuritylevel() == 0)
1397 setsecuritylevel(1);
1399 for (sp
= sessions
; sp
; sp
= sp
->se_next
) {
1402 if ((pid
= start_getty(sp
)) == -1) {
1403 /* serious trouble */
1404 requested_transition
= clean_ttys
;
1407 sp
->se_process
= pid
;
1408 gettimeofday(&sp
->se_started
, NULL
);
1412 while (!requested_transition
)
1413 if ((pid
= waitpid(-1, NULL
, 0)) != -1)
1416 return requested_transition
;
1420 * This is an (n*2)+(n^2) algorithm. We hope it isn't run often...
1425 session_t
*sp
, *sprev
;
1427 int session_index
= 0;
1429 char *old_getty
, *old_window
, *old_type
;
1435 * mark all sessions for death, (!SE_PRESENT)
1436 * as we find or create new ones they'll be marked as keepers,
1437 * we'll later nuke all the ones not found in /etc/ttys
1439 for (sp
= sessions
; sp
!= NULL
; sp
= sp
->se_next
)
1440 sp
->se_flags
&= ~SE_PRESENT
;
1442 devlen
= sizeof(_PATH_DEV
) - 1;
1443 while ((typ
= getttyent()) != NULL
) {
1447 for (sprev
= NULL
, sp
= sessions
; sp
; sprev
= sp
, sp
= sp
->se_next
)
1448 if (strcmp(typ
->ty_name
, sp
->se_device
+ devlen
) == 0)
1452 /* we want this one to live */
1453 sp
->se_flags
|= SE_PRESENT
;
1454 if (sp
->se_index
!= session_index
) {
1455 warning("port %s changed utmp index from %d to %d",
1456 sp
->se_device
, sp
->se_index
,
1458 sp
->se_index
= session_index
;
1460 if ((typ
->ty_status
& TTY_ON
) == 0 ||
1461 typ
->ty_getty
== 0) {
1462 sp
->se_flags
|= SE_SHUTDOWN
;
1463 kill(sp
->se_process
, SIGHUP
);
1466 sp
->se_flags
&= ~SE_SHUTDOWN
;
1467 old_getty
= sp
->se_getty
? strdup(sp
->se_getty
) : 0;
1468 old_window
= sp
->se_window
? strdup(sp
->se_window
) : 0;
1469 old_type
= sp
->se_type
? strdup(sp
->se_type
) : 0;
1470 if (setupargv(sp
, typ
) == 0) {
1471 warning("can't parse getty for port %s",
1473 sp
->se_flags
|= SE_SHUTDOWN
;
1474 kill(sp
->se_process
, SIGHUP
);
1476 else if ( !old_getty
1477 || (!old_type
&& sp
->se_type
)
1478 || (old_type
&& !sp
->se_type
)
1479 || (!old_window
&& sp
->se_window
)
1480 || (old_window
&& !sp
->se_window
)
1481 || (strcmp(old_getty
, sp
->se_getty
) != 0)
1482 || (old_window
&& strcmp(old_window
, sp
->se_window
) != 0)
1483 || (old_type
&& strcmp(old_type
, sp
->se_type
) != 0)
1485 /* Don't set SE_SHUTDOWN here */
1487 sp
->se_started
.tv_sec
= sp
->se_started
.tv_usec
= 0;
1488 kill(sp
->se_process
, SIGHUP
);
1499 new_session(sprev
, session_index
, typ
);
1505 * sweep through and kill all deleted sessions
1506 * ones who's /etc/ttys line was deleted (SE_PRESENT unset)
1508 for (sp
= sessions
; sp
!= NULL
; sp
= sp
->se_next
) {
1509 if ((sp
->se_flags
& SE_PRESENT
) == 0) {
1510 sp
->se_flags
|= SE_SHUTDOWN
;
1511 kill(sp
->se_process
, SIGHUP
);
1519 * Block further logins.
1526 for (sp
= sessions
; sp
; sp
= sp
->se_next
)
1527 sp
->se_flags
|= SE_SHUTDOWN
;
1536 alrm_handler(int sig __unused
)
1542 * Bring the system down to single user.
1550 static const int death_sigs
[2] = { SIGTERM
, SIGKILL
};
1552 /* NB: should send a message to the session logger to avoid blocking. */
1553 #ifdef SUPPORT_UTMPX
1554 logwtmpx("~", "shutdown", "", 0, INIT_PROCESS
);
1556 logwtmp("~", "shutdown", "");
1558 for (sp
= sessions
; sp
; sp
= sp
->se_next
) {
1559 sp
->se_flags
|= SE_SHUTDOWN
;
1560 kill(sp
->se_process
, SIGHUP
);
1563 /* Try to run the rc.shutdown script within a period of time */
1566 for (i
= 0; i
< 2; ++i
) {
1567 if (kill(-1, death_sigs
[i
]) == -1 && errno
== ESRCH
)
1573 if ((pid
= waitpid(-1, NULL
, 0)) != -1)
1575 while (clang
== 0 && errno
!= ECHILD
);
1577 if (errno
== ECHILD
)
1581 warning("some processes would not die; ps axl advised");
1587 * Run the system shutdown script.
1589 * Exit codes: XXX I should document more
1590 * -2 shutdown script terminated abnormally
1591 * -1 fatal error - can't run script
1593 * >0 some error (exit code)
1600 int shutdowntimeout
;
1602 const char *argv
[4];
1603 struct sigaction sa
;
1607 * rc.shutdown is optional, so to prevent any unnecessary
1608 * complaints from the shell we simply don't run it if the
1609 * file does not exist. If the stat() here fails for other
1610 * reasons, we'll let the shell complain.
1612 if (stat(_PATH_RUNDOWN
, &sb
) == -1 && errno
== ENOENT
)
1615 if ((pid
= fork()) == 0) {
1618 /* Assume that init already grab console as ctty before */
1620 sigemptyset(&sa
.sa_mask
);
1622 sa
.sa_handler
= SIG_IGN
;
1623 sigaction(SIGTSTP
, &sa
, NULL
);
1624 sigaction(SIGHUP
, &sa
, NULL
);
1626 if ((fd
= open(_PATH_CONSOLE
, O_RDWR
)) == -1)
1627 warning("can't open %s: %m", _PATH_CONSOLE
);
1637 * Run the shutdown script.
1640 argv
[1] = _PATH_RUNDOWN
;
1647 sigprocmask(SIG_SETMASK
, &sa
.sa_mask
, NULL
);
1650 setprocresources(RESOURCE_RC
);
1652 execv(_PATH_BSHELL
, __DECONST(char **, argv
));
1653 warning("can't exec %s for %s: %m", _PATH_BSHELL
, _PATH_RUNDOWN
);
1654 _exit(1); /* force single user mode */
1658 emergency("can't fork for %s on %s: %m",
1659 _PATH_BSHELL
, _PATH_RUNDOWN
);
1660 while (waitpid(-1, NULL
, WNOHANG
) > 0)
1662 sleep(STALL_TIMEOUT
);
1666 len
= sizeof(shutdowntimeout
);
1667 if (sysctlbyname("kern.init_shutdown_timeout",
1669 &len
, NULL
, 0) == -1 || shutdowntimeout
< 2)
1670 shutdowntimeout
= DEATH_SCRIPT
;
1671 alarm(shutdowntimeout
);
1674 * Copied from single_user(). This is a bit paranoid.
1675 * Use the same ALRM handler.
1678 if ((wpid
= waitpid(-1, &status
, WUNTRACED
)) != -1)
1679 collect_child(wpid
);
1681 /* we were waiting for the sub-shell */
1682 kill(wpid
, SIGTERM
);
1683 warning("timeout expired for %s on %s: %m; going to single user mode",
1684 _PATH_BSHELL
, _PATH_RUNDOWN
);
1690 warning("wait for %s on %s failed: %m; going to single user mode",
1691 _PATH_BSHELL
, _PATH_RUNDOWN
);
1694 if (wpid
== pid
&& WIFSTOPPED(status
)) {
1695 warning("init: %s on %s stopped, restarting\n",
1696 _PATH_BSHELL
, _PATH_RUNDOWN
);
1700 } while (wpid
!= pid
&& !clang
);
1702 /* Turn off the alarm */
1705 if (WIFSIGNALED(status
) && WTERMSIG(status
) == SIGTERM
&&
1706 requested_transition
== catatonia
) {
1708 * /etc/rc.shutdown executed /sbin/reboot;
1709 * wait for the end quietly
1718 if (!WIFEXITED(status
)) {
1719 warning("%s on %s terminated abnormally, going to single user mode",
1720 _PATH_BSHELL
, _PATH_RUNDOWN
);
1724 if ((status
= WEXITSTATUS(status
)) != 0)
1725 warning("%s returned status %d", _PATH_RUNDOWN
, status
);
1743 while (c
== ' ' || c
== '\t' )
1753 while (c
&& c
!= '\'')
1755 if (!c
) /* unterminated string */
1760 while (c
&& c
!= ' ' && c
!= '\t' )
1771 setprocresources(const char *cname
)
1774 if ((lc
= login_getclassbyname(cname
, NULL
)) != NULL
) {
1775 setusercontext(lc
, NULL
, 0, LOGIN_SETPRIORITY
|LOGIN_SETRESOURCES
);
1781 #ifdef SUPPORT_UTMPX
1783 session_utmpx(const session_t
*sp
, int add
)
1785 const char *name
= sp
->se_getty
? sp
->se_getty
:
1786 (sp
->se_window
? sp
->se_window
: "");
1787 const char *line
= sp
->se_device
+ sizeof(_PATH_DEV
) - 1;
1789 make_utmpx(name
, line
, add
? LOGIN_PROCESS
: DEAD_PROCESS
,
1790 sp
->se_process
, &sp
->se_started
, sp
->se_index
);
1794 make_utmpx(const char *name
, const char *line
, int type
, pid_t pid
,
1795 const struct timeval
*tv
, int session
)
1800 (void)memset(&ut
, 0, sizeof(ut
));
1801 (void)strlcpy(ut
.ut_name
, name
, sizeof(ut
.ut_name
));
1803 (void)strlcpy(ut
.ut_line
, line
, sizeof(ut
.ut_line
));
1808 (void)gettimeofday(&ut
.ut_tv
, NULL
);
1809 ut
.ut_session
= session
;
1811 eline
= line
+ strlen(line
);
1812 if ((size_t)(eline
- line
) >= sizeof(ut
.ut_id
))
1813 line
= eline
- sizeof(ut
.ut_id
);
1814 (void)strncpy(ut
.ut_id
, line
, sizeof(ut
.ut_id
));
1816 if (pututxline(&ut
) == NULL
)
1817 warning("can't add utmpx record for `%s': %m", ut
.ut_line
);
1822 get_runlevel(const state_t s
)
1824 if (s
== single_user
)
1830 if (s
== multi_user
)
1832 if (s
== clean_ttys
)
1840 utmpx_set_runlevel(char old
, char new)
1845 * Don't record any transitions until we did the first transition
1846 * to read ttys, which is when we are guaranteed to have a read-write
1847 * /var. Perhaps use a different variable for this?
1849 if (sessions
== NULL
)
1852 (void)memset(&ut
, 0, sizeof(ut
));
1853 (void)snprintf(ut
.ut_line
, sizeof(ut
.ut_line
), RUNLVL_MSG
, new);
1854 ut
.ut_type
= RUN_LVL
;
1855 (void)gettimeofday(&ut
.ut_tv
, NULL
);
1856 ut
.ut_exit
.e_exit
= old
;
1857 ut
.ut_exit
.e_termination
= new;
1858 if (pututxline(&ut
) == NULL
)
1859 warning("can't add utmpx record for `runlevel': %m");