4 This file is part of PulseAudio.
6 Copyright 2004-2006 Lennart Poettering
7 Copyright 2006 Pierre Ossman <ossman@cendio.se> for Cendio AB
9 PulseAudio is free software; you can redistribute it and/or modify
10 it under the terms of the GNU Lesser General Public License as published
11 by the Free Software Foundation; either version 2 of the License,
12 or (at your option) any later version.
14 PulseAudio is distributed in the hope that it will be useful, but
15 WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
17 General Public License for more details.
19 You should have received a copy of the GNU Lesser General Public License
20 along with PulseAudio; if not, write to the Free Software
21 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
41 #include <sys/types.h>
43 #include <liboil/liboil.h>
45 #ifdef HAVE_SYS_IOCTL_H
46 #include <sys/ioctl.h>
62 #include <dbus/dbus.h>
65 #include <pulse/mainloop.h>
66 #include <pulse/mainloop-signal.h>
67 #include <pulse/timeval.h>
68 #include <pulse/xmalloc.h>
70 #include <pulsecore/winsock.h>
71 #include <pulsecore/core-error.h>
72 #include <pulsecore/core.h>
73 #include <pulsecore/memblock.h>
74 #include <pulsecore/module.h>
75 #include <pulsecore/cli-command.h>
76 #include <pulsecore/log.h>
77 #include <pulsecore/core-util.h>
78 #include <pulsecore/sioman.h>
79 #include <pulsecore/cli-text.h>
80 #include <pulsecore/pid.h>
81 #include <pulsecore/namereg.h>
82 #include <pulsecore/random.h>
83 #include <pulsecore/rtsig.h>
84 #include <pulsecore/rtclock.h>
85 #include <pulsecore/macro.h>
86 #include <pulsecore/mutex.h>
87 #include <pulsecore/thread.h>
88 #include <pulsecore/once.h>
89 #include <pulsecore/shm.h>
93 #include "daemon-conf.h"
94 #include "dumpmodules.h"
96 #include "ltdl-bind-now.h"
100 /* Only one instance of these variables */
101 int allow_severity
= LOG_INFO
;
102 int deny_severity
= LOG_WARNING
;
106 /* padsp looks for this symbol in the running process and disables
107 * itself if it finds it and it is set to 7 (which is actually a bit
108 * mask). For details see padsp. */
109 int __padsp_disabled__
= 7;
114 static void message_cb(pa_mainloop_api
*a
, pa_time_event
*e
, PA_GCC_UNUSED
const struct timeval
*tv
, void *userdata
) {
116 struct timeval tvnext
;
118 while(PeekMessage(&msg
, NULL
, 0, 0, PM_REMOVE
)) {
119 if (msg
.message
== WM_QUIT
)
122 TranslateMessage(&msg
);
123 DispatchMessage(&msg
);
127 pa_timeval_add(pa_gettimeofday(&tvnext
), 100000);
128 a
->time_restart(e
, &tvnext
);
133 static void signal_callback(pa_mainloop_api
*m
, PA_GCC_UNUSED pa_signal_event
*e
, int sig
, void *userdata
) {
134 pa_log_info("Got signal %s.", pa_sig2str(sig
));
139 pa_module_load(userdata
, "module-cli", NULL
);
145 pa_module_load(userdata
, "module-cli-protocol-unix", NULL
);
151 char *c
= pa_full_status_string(userdata
);
152 pa_log_notice("%s", c
);
161 pa_log_info("Exiting.");
167 #define set_env(key, value) putenv(pa_sprintf_malloc("%s=%s", (key), (value)))
169 #if defined(HAVE_PWD_H) && defined(HAVE_GRP_H)
171 static int change_user(void) {
176 /* This function is called only in system-wide mode. It creates a
177 * runtime dir in /var/run/ with proper UID/GID and drops privs
180 if (!(pw
= getpwnam(PA_SYSTEM_USER
))) {
181 pa_log("Failed to find user '%s'.", PA_SYSTEM_USER
);
185 if (!(gr
= getgrnam(PA_SYSTEM_GROUP
))) {
186 pa_log("Failed to find group '%s'.", PA_SYSTEM_GROUP
);
190 pa_log_info("Found user '%s' (UID %lu) and group '%s' (GID %lu).",
191 PA_SYSTEM_USER
, (unsigned long) pw
->pw_uid
,
192 PA_SYSTEM_GROUP
, (unsigned long) gr
->gr_gid
);
194 if (pw
->pw_gid
!= gr
->gr_gid
) {
195 pa_log("GID of user '%s' and of group '%s' don't match.", PA_SYSTEM_USER
, PA_SYSTEM_GROUP
);
199 if (strcmp(pw
->pw_dir
, PA_SYSTEM_RUNTIME_PATH
) != 0)
200 pa_log_warn("Warning: home directory of user '%s' is not '%s', ignoring.", PA_SYSTEM_USER
, PA_SYSTEM_RUNTIME_PATH
);
202 if (pa_make_secure_dir(PA_SYSTEM_RUNTIME_PATH
, 0755, pw
->pw_uid
, gr
->gr_gid
) < 0) {
203 pa_log("Failed to create '%s': %s", PA_SYSTEM_RUNTIME_PATH
, pa_cstrerror(errno
));
207 if (initgroups(PA_SYSTEM_USER
, gr
->gr_gid
) != 0) {
208 pa_log("Failed to change group list: %s", pa_cstrerror(errno
));
212 #if defined(HAVE_SETRESGID)
213 r
= setresgid(gr
->gr_gid
, gr
->gr_gid
, gr
->gr_gid
);
214 #elif defined(HAVE_SETEGID)
215 if ((r
= setgid(gr
->gr_gid
)) >= 0)
216 r
= setegid(gr
->gr_gid
);
217 #elif defined(HAVE_SETREGID)
218 r
= setregid(gr
->gr_gid
, gr
->gr_gid
);
220 #error "No API to drop priviliges"
224 pa_log("Failed to change GID: %s", pa_cstrerror(errno
));
228 #if defined(HAVE_SETRESUID)
229 r
= setresuid(pw
->pw_uid
, pw
->pw_uid
, pw
->pw_uid
);
230 #elif defined(HAVE_SETEUID)
231 if ((r
= setuid(pw
->pw_uid
)) >= 0)
232 r
= seteuid(pw
->pw_uid
);
233 #elif defined(HAVE_SETREUID)
234 r
= setreuid(pw
->pw_uid
, pw
->pw_uid
);
236 #error "No API to drop priviliges"
240 pa_log("Failed to change UID: %s", pa_cstrerror(errno
));
244 set_env("USER", PA_SYSTEM_USER
);
245 set_env("LOGNAME", PA_SYSTEM_GROUP
);
246 set_env("HOME", PA_SYSTEM_RUNTIME_PATH
);
248 /* Relevant for pa_runtime_path() */
249 set_env("PULSE_RUNTIME_PATH", PA_SYSTEM_RUNTIME_PATH
);
250 set_env("PULSE_CONFIG_PATH", PA_SYSTEM_RUNTIME_PATH
);
252 pa_log_info("Successfully dropped root privileges.");
257 #else /* HAVE_PWD_H && HAVE_GRP_H */
259 static int change_user(void) {
260 pa_log("System wide mode unsupported on this platform.");
264 #endif /* HAVE_PWD_H && HAVE_GRP_H */
266 static int create_runtime_dir(void) {
269 pa_runtime_path(NULL
, fn
, sizeof(fn
));
271 /* This function is called only when the daemon is started in
272 * per-user mode. We create the runtime directory somewhere in
273 * /tmp/ with the current UID/GID */
275 if (pa_make_secure_dir(fn
, 0700, (uid_t
)-1, (gid_t
)-1) < 0) {
276 pa_log("Failed to create '%s': %s", fn
, pa_cstrerror(errno
));
283 #ifdef HAVE_SYS_RESOURCE_H
285 static int set_one_rlimit(const pa_rlimit
*r
, int resource
, const char *name
) {
292 rl
.rlim_cur
= rl
.rlim_max
= r
->value
;
294 if (setrlimit(resource
, &rl
) < 0) {
295 pa_log_warn("setrlimit(%s, (%u, %u)) failed: %s", name
, (unsigned) r
->value
, (unsigned) r
->value
, pa_cstrerror(errno
));
302 static void set_all_rlimits(const pa_daemon_conf
*conf
) {
303 set_one_rlimit(&conf
->rlimit_as
, RLIMIT_AS
, "RLIMIT_AS");
304 set_one_rlimit(&conf
->rlimit_core
, RLIMIT_CORE
, "RLIMIT_CORE");
305 set_one_rlimit(&conf
->rlimit_data
, RLIMIT_DATA
, "RLIMIT_DATA");
306 set_one_rlimit(&conf
->rlimit_fsize
, RLIMIT_FSIZE
, "RLIMIT_FSIZE");
307 set_one_rlimit(&conf
->rlimit_nofile
, RLIMIT_NOFILE
, "RLIMIT_NOFILE");
308 set_one_rlimit(&conf
->rlimit_stack
, RLIMIT_STACK
, "RLIMIT_STACK");
310 set_one_rlimit(&conf
->rlimit_nproc
, RLIMIT_NPROC
, "RLIMIT_NPROC");
312 #ifdef RLIMIT_MEMLOCK
313 set_one_rlimit(&conf
->rlimit_memlock
, RLIMIT_MEMLOCK
, "RLIMIT_MEMLOCK");
316 set_one_rlimit(&conf
->rlimit_nice
, RLIMIT_NICE
, "RLIMIT_NICE");
319 set_one_rlimit(&conf
->rlimit_rtprio
, RLIMIT_RTPRIO
, "RLIMIT_RTPRIO");
324 int main(int argc
, char *argv
[]) {
326 pa_strbuf
*buf
= NULL
;
327 pa_daemon_conf
*conf
= NULL
;
328 pa_mainloop
*mainloop
= NULL
;
330 int r
= 0, retval
= 1, d
= 0;
331 int daemon_pipe
[2] = { -1, -1 };
332 pa_bool_t suid_root
, real_root
;
333 int valid_pid_file
= 0;
334 gid_t gid
= (gid_t
) -1;
335 pa_bool_t allow_realtime
, allow_high_priority
;
336 pa_bool_t ltdl_init
= FALSE
;
339 pa_time_event
*timer
;
344 #if defined(__linux__) && defined(__OPTIMIZE__)
346 Disable lazy relocations to make usage of external libraries
347 more deterministic for our RT threads. We abuse __OPTIMIZE__ as
348 a check whether we are a debug build or not.
351 if (!getenv("LD_BIND_NOW")) {
354 /* We have to execute ourselves, because the libc caches the
355 * value of $LD_BIND_NOW on initialization. */
357 putenv(pa_xstrdup("LD_BIND_NOW=1"));
358 pa_assert_se(rp
= pa_readlink("/proc/self/exe"));
359 pa_assert_se(execv(rp
, argv
) == 0);
364 real_root
= getuid() == 0;
365 suid_root
= !real_root
&& geteuid() == 0;
372 /* Drop all capabilities except CAP_SYS_NICE */
375 /* Drop priviliges, but keep CAP_SYS_NICE */
378 /* After dropping root, the effective set is reset, hence,
379 * let's raise it again */
382 /* When capabilities are not supported we will not be able to
383 * aquire RT sched anymore. But yes, that's the way it is. It
384 * is just too risky tun let PA run as root all the time. */
387 /* At this point, we are a normal user, possibly with CAP_NICE if
388 * we were started SUID. If we are started as normal root, than we
389 * still are normal root. */
391 setlocale(LC_ALL
, "");
392 pa_log_set_maximal_level(PA_LOG_INFO
);
393 pa_log_set_ident("pulseaudio");
395 conf
= pa_daemon_conf_new();
397 if (pa_daemon_conf_load(conf
, NULL
) < 0)
400 if (pa_daemon_conf_env(conf
) < 0)
403 if (pa_cmdline_parse(conf
, argc
, argv
, &d
) < 0) {
404 pa_log("Failed to parse command line.");
408 pa_log_set_maximal_level(conf
->log_level
);
409 pa_log_set_target(conf
->auto_log_target
? PA_LOG_STDERR
: conf
->log_target
, NULL
);
412 /* Ok, we're suid root, so let's better not enable high prio
413 * or RT by default */
415 allow_high_priority
= allow_realtime
= FALSE
;
418 if (conf
->high_priority
) {
419 if (pa_polkit_check("org.pulseaudio.acquire-high-priority") > 0) {
420 pa_log_info("PolicyKit grants us acquire-high-priority privilige.");
421 allow_high_priority
= TRUE
;
423 pa_log_info("PolicyKit refuses acquire-high-priority privilige.");
426 if (conf
->realtime_scheduling
) {
427 if (pa_polkit_check("org.pulseaudio.acquire-real-time") > 0) {
428 pa_log_info("PolicyKit grants us acquire-real-time privilige.");
429 allow_realtime
= TRUE
;
431 pa_log_info("PolicyKit refuses acquire-real-time privilige.");
435 if ((conf
->high_priority
|| conf
->realtime_scheduling
) && pa_own_uid_in_group(PA_REALTIME_GROUP
, &gid
) > 0) {
436 pa_log_info("We're in the group '"PA_REALTIME_GROUP
"', allowing real-time and high-priority scheduling.");
437 allow_realtime
= conf
->realtime_scheduling
;
438 allow_high_priority
= conf
->high_priority
;
441 if (!allow_high_priority
&& !allow_realtime
) {
443 /* OK, there's no further need to keep CAP_NICE. Hence
444 * let's give it up early */
448 suid_root
= real_root
= FALSE
;
450 if (conf
->high_priority
|| conf
->realtime_scheduling
)
451 pa_log_notice("Called SUID root and real-time/high-priority scheduling was requested in the configuration. However, we lack the necessary priviliges:\n"
452 "We are not in group '"PA_REALTIME_GROUP
"' and PolicyKit refuse to grant us priviliges. Dropping SUID again.\n"
453 "For enabling real-time scheduling please acquire the appropriate PolicyKit priviliges, or become a member of '"PA_REALTIME_GROUP
"', or increase the RLIMIT_NICE/RLIMIT_RTPRIO resource limits for this user.");
458 /* OK, we're a normal user, so let's allow the user evrything
459 * he asks for, it's now the kernel's job to enforce limits,
460 * not ours anymore */
461 allow_high_priority
= allow_realtime
= TRUE
;
464 if (conf
->high_priority
&& !allow_high_priority
) {
465 pa_log_info("High-priority scheduling enabled in configuration but now allowed by policy. Disabling forcibly.");
466 conf
->high_priority
= FALSE
;
469 if (conf
->realtime_scheduling
&& !allow_realtime
) {
470 pa_log_info("Real-time scheduling enabled in configuration but now allowed by policy. Disabling forcibly.");
471 conf
->realtime_scheduling
= FALSE
;
474 if (conf
->high_priority
&& conf
->cmd
== PA_CMD_DAEMON
)
475 pa_raise_priority(conf
->nice_level
);
480 drop
= conf
->cmd
!= PA_CMD_DAEMON
|| !conf
->realtime_scheduling
;
485 /* At this point we still have CAP_NICE if we were loaded
486 * SUID root. If possible let's acquire RLIMIT_RTPRIO
487 * instead and give CAP_NICE up. */
489 const pa_rlimit rl
= { 9, TRUE
};
491 if (set_one_rlimit(&rl
, RLIMIT_RTPRIO
, "RLIMIT_RTPRIO") >= 0) {
492 pa_log_info("Successfully increased RLIMIT_RTPRIO, giving up CAP_NICE.");
495 pa_log_warn("RLIMIT_RTPRIO failed: %s", pa_cstrerror(errno
));
502 suid_root
= real_root
= FALSE
;
506 LTDL_SET_PRELOADED_SYMBOLS();
510 if (conf
->dl_search_path
)
511 lt_dlsetsearchpath(conf
->dl_search_path
);
516 WSAStartup(MAKEWORD(2, 0), &data
);
523 case PA_CMD_DUMP_MODULES
:
524 pa_dump_modules(conf
, argc
-d
, argv
+d
);
528 case PA_CMD_DUMP_CONF
: {
529 s
= pa_daemon_conf_dump(conf
);
536 case PA_CMD_DUMP_RESAMPLE_METHODS
: {
539 for (i
= 0; i
< PA_RESAMPLER_MAX
; i
++)
540 if (pa_resample_method_supported(i
))
541 printf("%s\n", pa_resample_method_to_string(i
));
547 pa_cmdline_help(argv
[0]);
551 case PA_CMD_VERSION
:
552 printf(PACKAGE_NAME
" "PACKAGE_VERSION
"\n");
559 if (pa_pid_file_check_running(&pid
, "pulseaudio") < 0)
560 pa_log_info("Daemon not running");
562 pa_log_info("Daemon running as PID %u", pid
);
571 if (pa_pid_file_kill(SIGINT
, NULL
, "pulseaudio") < 0)
572 pa_log("Failed to kill daemon.");
578 case PA_CMD_CLEANUP_SHM
:
580 if (pa_shm_cleanup() >= 0)
586 pa_assert(conf
->cmd
== PA_CMD_DAEMON
);
589 if (real_root
&& !conf
->system_instance
)
590 pa_log_warn("This program is not intended to be run as root (unless --system is specified).");
591 else if (!real_root
&& conf
->system_instance
) {
592 pa_log("Root priviliges required.");
596 if (conf
->daemonize
) {
600 if (pa_stdio_acquire() < 0) {
601 pa_log("Failed to acquire stdio.");
606 if (pipe(daemon_pipe
) < 0) {
607 pa_log("Failed to create pipe.");
611 if ((child
= fork()) < 0) {
612 pa_log("fork() failed: %s", pa_cstrerror(errno
));
619 pa_assert_se(pa_close(daemon_pipe
[1]) == 0);
622 if (pa_loop_read(daemon_pipe
[0], &retval
, sizeof(retval
), NULL
) != sizeof(retval
)) {
623 pa_log("read() failed: %s", pa_cstrerror(errno
));
628 pa_log("daemon startup failed.");
630 pa_log_info("daemon startup successful.");
635 pa_assert_se(pa_close(daemon_pipe
[0]) == 0);
639 if (conf
->auto_log_target
)
640 pa_log_set_target(PA_LOG_SYSLOG
, NULL
);
654 open("/dev/null", O_RDONLY
);
655 open("/dev/null", O_WRONLY
);
656 open("/dev/null", O_WRONLY
);
662 signal(SIGTTOU
, SIG_IGN
);
665 signal(SIGTTIN
, SIG_IGN
);
668 signal(SIGTSTP
, SIG_IGN
);
672 if ((tty_fd
= open("/dev/tty", O_RDWR
)) >= 0) {
673 ioctl(tty_fd
, TIOCNOTTY
, (char*) 0);
674 pa_assert_se(pa_close(tty_fd
) == 0);
679 pa_assert_se(chdir("/") == 0);
682 if (conf
->system_instance
) {
683 if (change_user() < 0)
685 } else if (create_runtime_dir() < 0)
688 if (conf
->use_pid_file
) {
689 if (pa_pid_file_create() < 0) {
690 pa_log("pa_pid_file_create() failed.");
693 pa_loop_write(daemon_pipe
[1], &retval
, sizeof(retval
), NULL
);
701 #ifdef HAVE_SYS_RESOURCE_H
702 set_all_rlimits(conf
);
706 signal(SIGPIPE
, SIG_IGN
);
709 pa_log_info("This is PulseAudio " PACKAGE_VERSION
);
710 pa_log_info("Page size is %lu bytes", (unsigned long) PA_PAGE_SIZE
);
712 if (pa_rtclock_hrtimer())
713 pa_log_info("Fresh high-resolution timers available! Bon appetit!");
715 pa_log_info("Dude, your kernel stinks! The chef's recommendation today is Linux with high-resolution timers enabled!");
718 /* Valgrind uses SIGRTMAX. To easy debugging we don't use it here */
719 pa_rtsig_configure(SIGRTMIN
, SIGRTMAX
-1);
722 pa_assert_se(mainloop
= pa_mainloop_new());
724 if (!(c
= pa_core_new(pa_mainloop_get_api(mainloop
), !conf
->disable_shm
))) {
725 pa_log("pa_core_new() failed.");
729 c
->is_system_instance
= !!conf
->system_instance
;
730 c
->default_sample_spec
= conf
->default_sample_spec
;
731 c
->default_n_fragments
= conf
->default_n_fragments
;
732 c
->default_fragment_size_msec
= conf
->default_fragment_size_msec
;
733 c
->exit_idle_time
= conf
->exit_idle_time
;
734 c
->module_idle_time
= conf
->module_idle_time
;
735 c
->scache_idle_time
= conf
->scache_idle_time
;
736 c
->resample_method
= conf
->resample_method
;
737 c
->realtime_priority
= conf
->realtime_priority
;
738 c
->realtime_scheduling
= !!conf
->realtime_scheduling
;
739 c
->disable_remixing
= !!conf
->disable_remixing
;
741 pa_assert_se(pa_signal_init(pa_mainloop_get_api(mainloop
)) == 0);
742 pa_signal_new(SIGINT
, signal_callback
, c
);
743 pa_signal_new(SIGTERM
, signal_callback
, c
);
746 pa_signal_new(SIGUSR1
, signal_callback
, c
);
749 pa_signal_new(SIGUSR2
, signal_callback
, c
);
752 pa_signal_new(SIGHUP
, signal_callback
, c
);
756 pa_assert_se(timer
= pa_mainloop_get_api(mainloop
)->time_new(pa_mainloop_get_api(mainloop
), pa_gettimeofday(&tv
), message_cb
, NULL
));
760 c
->running_as_daemon
= TRUE
;
764 if (!conf
->no_cpu_limit
)
765 pa_assert_se(pa_cpu_limit_init(pa_mainloop_get_api(mainloop
)) == 0);
767 buf
= pa_strbuf_new();
768 if (conf
->default_script_file
)
769 r
= pa_cli_command_execute_file(c
, conf
->default_script_file
, buf
, &conf
->fail
);
772 r
= pa_cli_command_execute(c
, conf
->script_commands
, buf
, &conf
->fail
);
773 pa_log_error("%s", s
= pa_strbuf_tostring_free(buf
));
776 /* We completed the initial module loading, so let's disable it
777 * from now on, if requested */
778 c
->disallow_module_loading
= !!conf
->disallow_module_loading
;
780 if (r
< 0 && conf
->fail
) {
781 pa_log("failed to initialize daemon.");
784 pa_loop_write(daemon_pipe
[1], &retval
, sizeof(retval
), NULL
);
786 } else if (!c
->modules
|| pa_idxset_size(c
->modules
) == 0) {
787 pa_log("daemon startup without any loaded modules, refusing to work.");
790 pa_loop_write(daemon_pipe
[1], &retval
, sizeof(retval
), NULL
);
797 pa_loop_write(daemon_pipe
[1], &retval
, sizeof(retval
), NULL
);
800 if (c
->default_sink_name
&&
801 pa_namereg_get(c
, c
->default_sink_name
, PA_NAMEREG_SINK
, 1) == NULL
) {
802 pa_log_error("%s : Fatal error. Default sink name (%s) does not exist in name register.", __FILE__
, c
->default_sink_name
);
805 pa_log_info("Daemon startup complete.");
806 if (pa_mainloop_run(mainloop
, &retval
) < 0)
808 pa_log_info("Daemon shutdown initiated.");
813 pa_mainloop_get_api(mainloop
)->time_free(timer
);
818 if (!conf
->no_cpu_limit
)
823 pa_log_info("Daemon terminated.");
828 pa_mainloop_free(mainloop
);
831 pa_daemon_conf_free(conf
);
834 pa_pid_file_remove();
836 pa_close_pipe(daemon_pipe
);