1 /*
2 * CDDL HEADER START
3 *
4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License (the "License").
6 * You may not use this file except in compliance with the License.
7 *
8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 * or http://www.opensolaris.org/os/licensing.
10 * See the License for the specific language governing permissions
11 * and limitations under the License.
12 *
13 * When distributing Covered Code, include this CDDL HEADER in each
14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 * If applicable, add the following below this CDDL HEADER, with the
16 * fields enclosed by brackets "[]" replaced with your own identifying
17 * information: Portions Copyright [yyyy] [name of copyright owner]
18 *
19 * CDDL HEADER END
20 */
21 /*
22 * Copyright 2010 Sun Microsystems, Inc. All rights reserved.
23 * Use is subject to license terms.
24 */
25
26 /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */
27 /* All Rights Reserved */
28
29 /*
30 * University Copyright- Copyright (c) 1982, 1986, 1988
31 * The Regents of the University of California
32 * All Rights Reserved
33 *
34 * University Acknowledgment- Portions of this document are derived from
35 * software developed by the University of California, Berkeley, and its
36 * contributors.
37 * Portions contributed by Juergen Keil, <jk@tools.de>.
38 */
39
40
41 /*
42 * Common code for halt(1M), poweroff(1M), and reboot(1M). We use
43 * argv[0] to determine which behavior to exhibit.
44 */
45
46 #include <stdio.h>
47 #include <procfs.h>
48 #include <sys/types.h>
49 #include <sys/elf.h>
50 #include <sys/systeminfo.h>
51 #include <sys/stat.h>
52 #include <sys/uadmin.h>
53 #include <sys/mntent.h>
54 #include <sys/mnttab.h>
55 #include <sys/mount.h>
56 #include <sys/fs/ufs_mount.h>
57 #include <alloca.h>
58 #include <assert.h>
59 #include <errno.h>
60 #include <fcntl.h>
61 #include <libgen.h>
62 #include <libscf.h>
63 #include <libscf_priv.h>
64 #include <limits.h>
65 #include <locale.h>
66 #include <libintl.h>
67 #include <syslog.h>
68 #include <signal.h>
69 #include <strings.h>
70 #include <unistd.h>
71 #include <stdlib.h>
72 #include <stdio.h>
73 #include <strings.h>
74 #include <time.h>
75 #include <wait.h>
76 #include <ctype.h>
77 #include <utmpx.h>
78 #include <pwd.h>
79 #include <zone.h>
80 #include <spawn.h>
81
82 #include <libzfs.h>
83 #if defined(__i386)
84 #include <libgrubmgmt.h>
85 #endif
86
87 #if !defined(TEXT_DOMAIN)
88 #define TEXT_DOMAIN "SYS_TEST"
89 #endif
90
91 #if defined(__sparc)
92 #define CUR_ELFDATA ELFDATA2MSB
93 #elif defined(__i386)
94 #define CUR_ELFDATA ELFDATA2LSB
95 #endif
96
97 static libzfs_handle_t *g_zfs;
98
99 extern int audit_halt_setup(int, char **);
100 extern int audit_halt_success(void);
101 extern int audit_halt_fail(void);
102
103 extern int audit_reboot_setup(void);
104 extern int audit_reboot_success(void);
105 extern int audit_reboot_fail(void);
106
107 static char *cmdname; /* basename(argv[0]), the name of the command */
108
109 typedef struct ctidlist_struct {
110 ctid_t ctid;
111 struct ctidlist_struct *next;
112 } ctidlist_t;
113
114 static ctidlist_t *ctidlist = NULL;
115 static ctid_t startdct = -1;
116
117 #define FMRI_STARTD_CONTRACT \
118 "svc:/system/svc/restarter:default/:properties/restarter/contract"
119
120 #define BEADM_PROG "/usr/sbin/beadm"
121 #define BOOTADM_PROG "/sbin/bootadm"
122 #define ZONEADM_PROG "/usr/sbin/zoneadm"
123
124 /*
125 * The length of FASTBOOT_MOUNTPOINT must be less than MAXPATHLEN.
126 */
127 #define FASTBOOT_MOUNTPOINT "/tmp/.fastboot.root"
128
129 /*
130 * Fast Reboot related variables
131 */
132 static char fastboot_mounted[MAXPATHLEN];
133
134 #if defined(__i386)
135 static grub_boot_args_t fbarg;
136 static grub_boot_args_t *fbarg_used;
137 static int fbarg_entnum = GRUB_ENTRY_DEFAULT;
138 #endif /* __i386 */
139
140 static int validate_ufs_disk(char *, char *);
141 static int validate_zfs_pool(char *, char *);
142
143 static pid_t
get_initpid()144 get_initpid()
145 {
146 static int init_pid = -1;
147
148 if (init_pid == -1) {
149 if (zone_getattr(getzoneid(), ZONE_ATTR_INITPID, &init_pid,
150 sizeof (init_pid)) != sizeof (init_pid)) {
151 assert(errno == ESRCH);
152 init_pid = -1;
153 }
154 }
155 return (init_pid);
156 }
157
158 /*
159 * Quiesce or resume init using /proc. When stopping init, we can't send
160 * SIGTSTP (since init ignores it) or SIGSTOP (since the kernel won't permit
161 * it).
162 */
163 static int
direct_init(long command)164 direct_init(long command)
165 {
166 char ctlfile[MAXPATHLEN];
167 pid_t pid;
168 int ctlfd;
169
170 assert(command == PCDSTOP || command == PCRUN);
171 if ((pid = get_initpid()) == -1) {
172 return (-1);
173 }
174
175 (void) snprintf(ctlfile, sizeof (ctlfile), "/proc/%d/ctl", pid);
176 if ((ctlfd = open(ctlfile, O_WRONLY)) == -1)
177 return (-1);
178
179 if (command == PCDSTOP) {
180 if (write(ctlfd, &command, sizeof (long)) == -1) {
181 (void) close(ctlfd);
182 return (-1);
183 }
184 } else { /* command == PCRUN */
185 long cmds[2];
186 cmds[0] = command;
187 cmds[1] = 0;
188 if (write(ctlfd, cmds, sizeof (cmds)) == -1) {
189 (void) close(ctlfd);
190 return (-1);
191 }
192 }
193 (void) close(ctlfd);
194 return (0);
195 }
196
197 static void
stop_startd()198 stop_startd()
199 {
200 scf_handle_t *h;
201 scf_property_t *prop = NULL;
202 scf_value_t *val = NULL;
203 uint64_t uint64;
204
205 if ((h = scf_handle_create(SCF_VERSION)) == NULL)
206 return;
207
208 if ((scf_handle_bind(h) != 0) ||
209 ((prop = scf_property_create(h)) == NULL) ||
210 ((val = scf_value_create(h)) == NULL))
211 goto out;
212
213 if (scf_handle_decode_fmri(h, FMRI_STARTD_CONTRACT,
214 NULL, NULL, NULL, NULL, prop, SCF_DECODE_FMRI_EXACT) != 0)
215 goto out;
216
217 if (scf_property_is_type(prop, SCF_TYPE_COUNT) != 0 ||
218 scf_property_get_value(prop, val) != 0 ||
219 scf_value_get_count(val, &uint64) != 0)
220 goto out;
221
222 startdct = (ctid_t)uint64;
223 (void) sigsend(P_CTID, startdct, SIGSTOP);
224
225 out:
226 scf_property_destroy(prop);
227 scf_value_destroy(val);
228 scf_handle_destroy(h);
229 }
230
231 static void
continue_startd()232 continue_startd()
233 {
234 if (startdct != -1)
235 (void) sigsend(P_CTID, startdct, SIGCONT);
236 }
237
238 #define FMRI_RESTARTER_PROP "/:properties/general/restarter"
239 #define FMRI_CONTRACT_PROP "/:properties/restarter/contract"
240
241 static int
save_ctid(ctid_t ctid)242 save_ctid(ctid_t ctid)
243 {
244 ctidlist_t *next;
245
246 for (next = ctidlist; next != NULL; next = next->next)
247 if (next->ctid == ctid)
248 return (-1);
249
250 next = (ctidlist_t *)malloc(sizeof (ctidlist_t));
251 if (next == NULL)
252 return (-1);
253
254 next->ctid = ctid;
255 next->next = ctidlist;
256 ctidlist = next;
257 return (0);
258 }
259
260 static void
stop_delegates()261 stop_delegates()
262 {
263 ctid_t ctid;
264 scf_handle_t *h;
265 scf_scope_t *sc = NULL;
266 scf_service_t *svc = NULL;
267 scf_instance_t *inst = NULL;
268 scf_snapshot_t *snap = NULL;
269 scf_snapshot_t *isnap = NULL;
270 scf_propertygroup_t *pg = NULL;
271 scf_property_t *prop = NULL;
272 scf_value_t *val = NULL;
273 scf_iter_t *siter = NULL;
274 scf_iter_t *iiter = NULL;
275 char *fmri;
276 ssize_t length;
277
278 uint64_t uint64;
279 ssize_t bytes;
280
281 length = scf_limit(SCF_LIMIT_MAX_FMRI_LENGTH);
282 if (length <= 0)
283 return;
284
285 length++;
286 fmri = alloca(length * sizeof (char));
287
288 if ((h = scf_handle_create(SCF_VERSION)) == NULL)
289 return;
290
291 if (scf_handle_bind(h) != 0) {
292 scf_handle_destroy(h);
293 return;
294 }
295
296 if ((sc = scf_scope_create(h)) == NULL ||
297 (svc = scf_service_create(h)) == NULL ||
298 (inst = scf_instance_create(h)) == NULL ||
299 (snap = scf_snapshot_create(h)) == NULL ||
300 (pg = scf_pg_create(h)) == NULL ||
301 (prop = scf_property_create(h)) == NULL ||
302 (val = scf_value_create(h)) == NULL ||
303 (siter = scf_iter_create(h)) == NULL ||
304 (iiter = scf_iter_create(h)) == NULL)
305 goto out;
306
307 if (scf_handle_get_scope(h, SCF_SCOPE_LOCAL, sc) != 0)
308 goto out;
309
310 if (scf_iter_scope_services(siter, sc) != 0)
311 goto out;
312
313 while (scf_iter_next_service(siter, svc) == 1) {
314
315 if (scf_iter_service_instances(iiter, svc) != 0)
316 continue;
317
318 while (scf_iter_next_instance(iiter, inst) == 1) {
319
320 if ((scf_instance_get_snapshot(inst, "running",
321 snap)) != 0)
322 isnap = NULL;
323 else
324 isnap = snap;
325
326 if (scf_instance_get_pg_composed(inst, isnap,
327 SCF_PG_GENERAL, pg) != 0)
328 continue;
329
330 if (scf_pg_get_property(pg, SCF_PROPERTY_RESTARTER,
331 prop) != 0 ||
332 scf_property_get_value(prop, val) != 0)
333 continue;
334
335 bytes = scf_value_get_astring(val, fmri, length);
336 if (bytes <= 0 || bytes >= length)
337 continue;
338
339 if (strlcat(fmri, FMRI_CONTRACT_PROP, length) >=
340 length)
341 continue;
342
343 if (scf_handle_decode_fmri(h, fmri, NULL, NULL,
344 NULL, NULL, prop, SCF_DECODE_FMRI_EXACT) != 0)
345 continue;
346
347 if (scf_property_is_type(prop, SCF_TYPE_COUNT) != 0 ||
348 scf_property_get_value(prop, val) != 0 ||
349 scf_value_get_count(val, &uint64) != 0)
350 continue;
351
352 ctid = (ctid_t)uint64;
353 if (save_ctid(ctid) == 0) {
354 (void) sigsend(P_CTID, ctid, SIGSTOP);
355 }
356 }
357 }
358 out:
359 scf_scope_destroy(sc);
360 scf_service_destroy(svc);
361 scf_instance_destroy(inst);
362 scf_snapshot_destroy(snap);
363 scf_pg_destroy(pg);
364 scf_property_destroy(prop);
365 scf_value_destroy(val);
366 scf_iter_destroy(siter);
367 scf_iter_destroy(iiter);
368
369 (void) scf_handle_unbind(h);
370 scf_handle_destroy(h);
371 }
372
373 static void
continue_delegates()374 continue_delegates()
375 {
376 ctidlist_t *next;
377 for (next = ctidlist; next != NULL; next = next->next)
378 (void) sigsend(P_CTID, next->ctid, SIGCONT);
379 }
380
381 #define FMRI_GDM "svc:/application/graphical-login/gdm:default"
382 #define GDM_STOP_TIMEOUT 10 /* Give gdm 10 seconds to shut down */
383
384 /*
385 * If gdm is running, try to stop gdm.
386 * Returns 0 on success, -1 on failure.
387 */
388 static int
stop_gdm()389 stop_gdm()
390 {
391 char *gdm_state = NULL;
392 int retry = 0;
393
394 /*
395 * If gdm is running, try to stop gdm.
396 */
397 while ((gdm_state = smf_get_state(FMRI_GDM)) != NULL &&
398 strcmp(gdm_state, SCF_STATE_STRING_ONLINE) == 0 &&
399 retry++ < GDM_STOP_TIMEOUT) {
400
401 free(gdm_state);
402
403 /*
404 * Only need to disable once.
405 */
406 if (retry == 1 &&
407 smf_disable_instance(FMRI_GDM, SMF_TEMPORARY) != 0) {
408 (void) fprintf(stderr,
409 gettext("%s: Failed to stop %s: %s.\n"),
410 cmdname, FMRI_GDM, scf_strerror(scf_error()));
411 return (-1);
412 }
413 (void) sleep(1);
414 }
415
416 if (retry >= GDM_STOP_TIMEOUT) {
417 (void) fprintf(stderr, gettext("%s: Failed to stop %s.\n"),
418 cmdname, FMRI_GDM);
419 return (-1);
420 }
421
422 return (0);
423 }
424
425
426 static void
stop_restarters()427 stop_restarters()
428 {
429 stop_startd();
430 stop_delegates();
431 }
432
433 static void
continue_restarters()434 continue_restarters()
435 {
436 continue_startd();
437 continue_delegates();
438 }
439
440 /*
441 * Copy an array of strings into buf, separated by spaces. Returns 0 on
442 * success.
443 */
444 static int
gather_args(char ** args,char * buf,size_t buf_sz)445 gather_args(char **args, char *buf, size_t buf_sz)
446 {
447 if (strlcpy(buf, *args, buf_sz) >= buf_sz)
448 return (-1);
449
450 for (++args; *args != NULL; ++args) {
451 if (strlcat(buf, " ", buf_sz) >= buf_sz)
452 return (-1);
453 if (strlcat(buf, *args, buf_sz) >= buf_sz)
454 return (-1);
455 }
456
457 return (0);
458 }
459
460 /*
461 * Halt every zone on the system. We are committed to doing a shutdown
462 * even if something goes wrong here. If something goes wrong, we just
463 * continue with the shutdown. Return non-zero if we need to wait for zones to
464 * halt later on.
465 */
466 static int
halt_zones()467 halt_zones()
468 {
469 pid_t pid;
470 zoneid_t *zones;
471 size_t nz = 0, old_nz;
472 int i;
473 char zname[ZONENAME_MAX];
474
475 /*
476 * Get a list of zones. If the number of zones changes in between the
477 * two zone_list calls, try again.
478 */
479
480 for (;;) {
481 (void) zone_list(NULL, &nz);
482 if (nz == 1)
483 return (0);
484 old_nz = nz;
485 zones = calloc(sizeof (zoneid_t), nz);
486 if (zones == NULL) {
487 (void) fprintf(stderr,
488 gettext("%s: Could not halt zones"
489 " (out of memory).\n"), cmdname);
490 return (0);
491 }
492
493 (void) zone_list(zones, &nz);
494 if (old_nz == nz)
495 break;
496 free(zones);
497 }
498
499 if (nz == 2) {
500 (void) fprintf(stderr, gettext("%s: Halting 1 zone.\n"),
501 cmdname);
502 } else {
503 (void) fprintf(stderr, gettext("%s: Halting %i zones.\n"),
504 cmdname, nz - 1);
505 }
506
507 for (i = 0; i < nz; i++) {
508 if (zones[i] == GLOBAL_ZONEID)
509 continue;
510 if (getzonenamebyid(zones[i], zname, sizeof (zname)) < 0) {
511 /*
512 * getzonenamebyid should only fail if we raced with
513 * another process trying to shut down the zone.
514 * We assume this happened and ignore the error.
515 */
516 if (errno != EINVAL) {
517 (void) fprintf(stderr,
518 gettext("%s: Unexpected error while "
519 "looking up zone %ul: %s.\n"),
520 cmdname, zones[i], strerror(errno));
521 }
522
523 continue;
524 }
525 pid = fork();
526 if (pid < 0) {
527 (void) fprintf(stderr,
528 gettext("%s: Zone \"%s\" could not be"
529 " halted (could not fork(): %s).\n"),
530 cmdname, zname, strerror(errno));
531 continue;
532 }
533 if (pid == 0) {
534 (void) execl(ZONEADM_PROG, ZONEADM_PROG,
535 "-z", zname, "halt", NULL);
536 (void) fprintf(stderr,
537 gettext("%s: Zone \"%s\" could not be halted"
538 " (cannot exec(" ZONEADM_PROG "): %s).\n"),
539 cmdname, zname, strerror(errno));
540 exit(0);
541 }
542 }
543
544 return (1);
545 }
546
547 /*
548 * This function tries to wait for all non-global zones to go away.
549 * It will timeout if no progress is made for 5 seconds, or a total of
550 * 30 seconds elapses.
551 */
552
553 static void
check_zones_haltedness()554 check_zones_haltedness()
555 {
556 int t = 0, t_prog = 0;
557 size_t nz = 0, last_nz;
558
559 do {
560 last_nz = nz;
561 (void) zone_list(NULL, &nz);
562 if (nz == 1)
563 return;
564
565 (void) sleep(1);
566
567 if (last_nz > nz)
568 t_prog = 0;
569
570 t++;
571 t_prog++;
572
573 if (t == 10) {
574 if (nz == 2) {
575 (void) fprintf(stderr,
576 gettext("%s: Still waiting for 1 zone to "
577 "halt. Will wait up to 20 seconds.\n"),
578 cmdname);
579 } else {
580 (void) fprintf(stderr,
581 gettext("%s: Still waiting for %i zones "
582 "to halt. Will wait up to 20 seconds.\n"),
583 cmdname, nz - 1);
584 }
585 }
586
587 } while ((t < 30) && (t_prog < 5));
588 }
589
590
591 /*
592 * Validate that this is a root disk or dataset
593 * Returns 0 if it is a root disk or dataset;
594 * returns 1 if it is a disk argument or dataset, but not valid or not root;
595 * returns -1 if it is not a valid argument or a disk argument.
596 */
597 static int
validate_disk(char * arg,char * mountpoint)598 validate_disk(char *arg, char *mountpoint)
599 {
600 static char root_dev_path[] = "/dev/dsk";
601 char kernpath[MAXPATHLEN];
602 struct stat64 statbuf;
603 int rc = 0;
604
605 if (strlen(arg) > MAXPATHLEN) {
606 (void) fprintf(stderr,
607 gettext("%s: Argument is too long\n"), cmdname);
608 return (-1);
609 }
610
611 bcopy(FASTBOOT_MOUNTPOINT, mountpoint, sizeof (FASTBOOT_MOUNTPOINT));
612
613 if (strstr(arg, mountpoint) == NULL) {
614 /*
615 * Do a force umount just in case some other filesystem has
616 * been mounted there.
617 */
618 (void) umount2(mountpoint, MS_FORCE);
619 }
620
621 /* Create the directory if it doesn't already exist */
622 if (lstat64(mountpoint, &statbuf) != 0) {
623 if (mkdirp(mountpoint, 0755) != 0) {
624 (void) fprintf(stderr,
625 gettext("Failed to create mountpoint %s\n"),
626 mountpoint);
627 return (-1);
628 }
629 }
630
631 if (strncmp(arg, root_dev_path, strlen(root_dev_path)) == 0) {
632 /* ufs root disk argument */
633 rc = validate_ufs_disk(arg, mountpoint);
634 } else {
635 /* zfs root pool argument */
636 rc = validate_zfs_pool(arg, mountpoint);
637 }
638
639 if (rc != 0)
640 return (rc);
641
642 (void) snprintf(kernpath, MAXPATHLEN, "%s/platform/i86pc/kernel/unix",
643 mountpoint);
644
645 if (stat64(kernpath, &statbuf) != 0) {
646 (void) fprintf(stderr,
647 gettext("%s: %s is not a root disk or dataset\n"),
648 cmdname, arg);
649 return (1);
650 }
651
652 return (0);
653 }
654
655
656 static int
validate_ufs_disk(char * arg,char * mountpoint)657 validate_ufs_disk(char *arg, char *mountpoint)
658 {
659 struct ufs_args ufs_args = { 0 };
660 char mntopts[MNT_LINE_MAX] = MNTOPT_LARGEFILES;
661
662 /* perform the mount */
663 ufs_args.flags = UFSMNT_LARGEFILES;
664 if (mount(arg, mountpoint, MS_DATA|MS_OPTIONSTR,
665 MNTTYPE_UFS, &ufs_args, sizeof (ufs_args),
666 mntopts, sizeof (mntopts)) != 0) {
667 perror(cmdname);
668 (void) fprintf(stderr,
669 gettext("%s: Failed to mount %s\n"), cmdname, arg);
670 return (-1);
671 }
672
673 return (0);
674 }
675
676 static int
validate_zfs_pool(char * arg,char * mountpoint)677 validate_zfs_pool(char *arg, char *mountpoint)
678 {
679 zfs_handle_t *zhp = NULL;
680 char mntopts[MNT_LINE_MAX] = { '\0' };
681 int rc = 0;
682
683 if ((g_zfs = libzfs_init()) == NULL) {
684 (void) fprintf(stderr, gettext("Internal error: failed to "
685 "initialize ZFS library\n"));
686 return (-1);
687 }
688
689 /* Try to open the dataset */
690 if ((zhp = zfs_open(g_zfs, arg,
691 ZFS_TYPE_FILESYSTEM | ZFS_TYPE_DATASET)) == NULL)
692 return (-1);
693
694 /* perform the mount */
695 if (mount(zfs_get_name(zhp), mountpoint, MS_DATA|MS_OPTIONSTR|MS_RDONLY,
696 MNTTYPE_ZFS, NULL, 0, mntopts, sizeof (mntopts)) != 0) {
697 perror(cmdname);
698 (void) fprintf(stderr,
699 gettext("%s: Failed to mount %s\n"), cmdname, arg);
700 rc = -1;
701 }
702
703 validate_zfs_err_out:
704 if (zhp != NULL)
705 zfs_close(zhp);
706
707 libzfs_fini(g_zfs);
708 return (rc);
709 }
710
711 /*
712 * Return 0 if not zfs, or is zfs and have successfully constructed the
713 * boot argument; returns non-zero otherwise.
714 * At successful completion fpth contains pointer where mount point ends.
715 * NOTE: arg is supposed to be the resolved path
716 */
717 static int
get_zfs_bootfs_arg(const char * arg,const char ** fpth,int * is_zfs,char * bootfs_arg)718 get_zfs_bootfs_arg(const char *arg, const char ** fpth, int *is_zfs,
719 char *bootfs_arg)
720 {
721 zfs_handle_t *zhp = NULL;
722 zpool_handle_t *zpoolp = NULL;
723 FILE *mtabp = NULL;
724 struct mnttab mnt;
725 char *poolname = NULL;
726 char physpath[MAXPATHLEN];
727 char mntsp[ZPOOL_MAXNAMELEN];
728 char bootfs[ZPOOL_MAXNAMELEN];
729 int rc = 0;
730 size_t mntlen = 0;
731 size_t msz;
732 static char fmt[] = "-B zfs-bootfs=%s,bootpath=\"%s\"";
733
734 *fpth = arg;
735 *is_zfs = 0;
736
737 bzero(physpath, sizeof (physpath));
738 bzero(bootfs, sizeof (bootfs));
739
740 if ((mtabp = fopen(MNTTAB, "r")) == NULL) {
741 return (-1);
742 }
743
744 while (getmntent(mtabp, &mnt) == 0) {
745 if (strstr(arg, mnt.mnt_mountp) == arg &&
746 (msz = strlen(mnt.mnt_mountp)) > mntlen) {
747 mntlen = msz;
748 *is_zfs = strcmp(MNTTYPE_ZFS, mnt.mnt_fstype) == 0;
749 (void) strlcpy(mntsp, mnt.mnt_special, sizeof (mntsp));
750 }
751 }
752
753 (void) fclose(mtabp);
754
755 if (mntlen > 1)
756 *fpth += mntlen;
757
758 if (!*is_zfs)
759 return (0);
760
761 if ((g_zfs = libzfs_init()) == NULL)
762 return (-1);
763
764 /* Try to open the dataset */
765 if ((zhp = zfs_open(g_zfs, mntsp,
766 ZFS_TYPE_FILESYSTEM | ZFS_TYPE_DATASET)) == NULL) {
767 (void) fprintf(stderr, gettext("Cannot open %s\n"), mntsp);
768 rc = -1;
769 goto validate_zfs_err_out;
770 }
771
772 (void) strlcpy(bootfs, mntsp, sizeof (bootfs));
773
774 if ((poolname = strtok(mntsp, "/")) == NULL) {
775 rc = -1;
776 goto validate_zfs_err_out;
777 }
778
779 if ((zpoolp = zpool_open(g_zfs, poolname)) == NULL) {
780 (void) fprintf(stderr, gettext("Cannot open %s\n"), poolname);
781 rc = -1;
782 goto validate_zfs_err_out;
783 }
784
785 if (zpool_get_physpath(zpoolp, physpath, sizeof (physpath)) != 0) {
786 (void) fprintf(stderr, gettext("Cannot find phys_path\n"));
787 rc = -1;
788 goto validate_zfs_err_out;
789 }
790
791 /*
792 * For the mirror physpath would contain the list of all
793 * bootable devices, pick up the first one.
794 */
795 (void) strtok(physpath, " ");
796 if (snprintf(bootfs_arg, BOOTARGS_MAX, fmt, bootfs, physpath) >=
797 BOOTARGS_MAX) {
798 rc = E2BIG;
799 (void) fprintf(stderr,
800 gettext("Boot arguments are too long\n"));
801 }
802
803 validate_zfs_err_out:
804 if (zhp != NULL)
805 zfs_close(zhp);
806
807 if (zpoolp != NULL)
808 zpool_close(zpoolp);
809
810 libzfs_fini(g_zfs);
811 return (rc);
812 }
813
814 /*
815 * Validate that the file exists, and is an ELF file.
816 * Returns 0 on success, -1 on failure.
817 */
818 static int
validate_unix(char * arg,int * mplen,int * is_zfs,char * bootfs_arg)819 validate_unix(char *arg, int *mplen, int *is_zfs, char *bootfs_arg)
820 {
821 const char *location;
822 int class, format;
823 unsigned char ident[EI_NIDENT];
824 char physpath[MAXPATHLEN];
825 int elffd = -1;
826 size_t sz;
827
828 if ((sz = resolvepath(arg, physpath, sizeof (physpath) - 1)) ==
829 (size_t)-1) {
830 (void) fprintf(stderr,
831 gettext("Cannot resolve path for %s: %s\n"),
832 arg, strerror(errno));
833 return (-1);
834 }
835 (void) strlcpy(arg, physpath, sz + 1);
836
837 if (strlen(arg) > MAXPATHLEN) {
838 (void) fprintf(stderr,
839 gettext("%s: New kernel name is too long\n"), cmdname);
840 return (-1);
841 }
842
843 if (strncmp(basename(arg), "unix", 4) != 0) {
844 (void) fprintf(stderr,
845 gettext("%s: %s: Kernel name must be unix\n"),
846 cmdname, arg);
847 return (-1);
848 }
849
850 if (get_zfs_bootfs_arg(arg, &location, is_zfs, bootfs_arg) != 0)
851 goto err_out;
852
853 *mplen = location - arg;
854
855 if (strstr(location, "/boot/platform") == location) {
856 /*
857 * Rebooting to failsafe.
858 * Clear bootfs_arg and is_zfs flag.
859 */
860 bootfs_arg[0] = 0;
861 *is_zfs = 0;
862 } else if (strstr(location, "/platform") != location) {
863 (void) fprintf(stderr,
864 gettext("%s: %s: No /platform in file name\n"),
865 cmdname, arg);
866 goto err_out;
867 }
868
869 if ((elffd = open64(arg, O_RDONLY)) < 0 ||
870 (pread64(elffd, ident, EI_NIDENT, 0) != EI_NIDENT)) {
871 (void) fprintf(stderr, "%s: %s: %s\n",
872 cmdname, arg, strerror(errno));
873 goto err_out;
874 }
875
876 class = ident[EI_CLASS];
877
878 if ((class != ELFCLASS32 && class != ELFCLASS64) ||
879 memcmp(&ident[EI_MAG0], ELFMAG, 4) != 0) {
880 (void) fprintf(stderr,
881 gettext("%s: %s: Not a valid ELF file\n"), cmdname, arg);
882 goto err_out;
883 }
884
885 format = ident[EI_DATA];
886
887 if (format != CUR_ELFDATA) {
888 (void) fprintf(stderr, gettext("%s: %s: Invalid data format\n"),
889 cmdname, arg);
890 goto err_out;
891 }
892
893 return (0);
894
895 err_out:
896 if (elffd >= 0) {
897 (void) close(elffd);
898 elffd = -1;
899 }
900 return (-1);
901 }
902
903 static int
halt_exec(const char * path,...)904 halt_exec(const char *path, ...)
905 {
906 pid_t pid;
907 int i;
908 int st;
909 const char *arg;
910 va_list vp;
911 const char *argv[256];
912
913 if ((pid = fork()) == -1) {
914 return (errno);
915 } else if (pid == 0) {
916 (void) fclose(stdout);
917 (void) fclose(stderr);
918
919 argv[0] = path;
920 i = 1;
921
922 va_start(vp, path);
923
924 do {
925 arg = va_arg(vp, const char *);
926 argv[i] = arg;
927 } while (arg != NULL &&
928 ++i != sizeof (argv) / sizeof (argv[0]));
929
930 va_end(vp);
931
932 (void) execve(path, (char * const *)argv, NULL);
933 (void) fprintf(stderr, gettext("Cannot execute %s: %s\n"),
934 path, strerror(errno));
935 exit(-1);
936 } else {
937 if (waitpid(pid, &st, 0) == pid &&
938 !WIFSIGNALED(st) && WIFEXITED(st))
939 st = WEXITSTATUS(st);
940 else
941 st = -1;
942 }
943 return (st);
944 }
945
946 /*
947 * Mount the specified BE.
948 *
949 * Upon success returns zero and copies bename string to mountpoint[]
950 */
951 static int
fastboot_bename(const char * bename,char * mountpoint,size_t mpsz)952 fastboot_bename(const char *bename, char *mountpoint, size_t mpsz)
953 {
954 int rc;
955
956 /*
957 * Attempt to unmount the BE first in case it's already mounted
958 * elsewhere.
959 */
960 (void) halt_exec(BEADM_PROG, "umount", bename, NULL);
961
962 if ((rc = halt_exec(BEADM_PROG, "mount", bename, FASTBOOT_MOUNTPOINT,
963 NULL)) != 0)
964 (void) fprintf(stderr,
965 gettext("%s: Unable to mount BE \"%s\" at %s\n"),
966 cmdname, bename, FASTBOOT_MOUNTPOINT);
967 else
968 (void) strlcpy(mountpoint, FASTBOOT_MOUNTPOINT, mpsz);
969
970 return (rc);
971 }
972
973 /*
974 * Returns 0 on successful parsing of the arguments;
975 * returns EINVAL on parsing failures that should abort the reboot attempt;
976 * returns other error code to fall back to regular reboot.
977 */
978 static int
parse_fastboot_args(char * bootargs_buf,size_t buf_size,int * is_dryrun,const char * bename)979 parse_fastboot_args(char *bootargs_buf, size_t buf_size,
980 int *is_dryrun, const char *bename)
981 {
982 char mountpoint[MAXPATHLEN];
983 char bootargs_saved[BOOTARGS_MAX];
984 char bootargs_scratch[BOOTARGS_MAX];
985 char bootfs_arg[BOOTARGS_MAX];
986 char unixfile[BOOTARGS_MAX];
987 char *head, *newarg;
988 int buflen; /* length of the bootargs_buf */
989 int mplen; /* length of the mount point */
990 int rootlen = 0; /* length of the root argument */
991 int unixlen = 0; /* length of the unix argument */
992 int off = 0; /* offset into the new boot argument */
993 int is_zfs = 0;
994 int rc = 0;
995
996 bzero(mountpoint, sizeof (mountpoint));
997
998 /*
999 * If argc is not 0, buflen is length of the argument being passed in;
1000 * else it is 0 as bootargs_buf has been initialized to all 0's.
1001 */
1002 buflen = strlen(bootargs_buf);
1003
1004 /* Save a copy of the original argument */
1005 bcopy(bootargs_buf, bootargs_saved, buflen);
1006 bzero(&bootargs_saved[buflen], sizeof (bootargs_saved) - buflen);
1007
1008 /* Save another copy to be used by strtok */
1009 bcopy(bootargs_buf, bootargs_scratch, buflen);
1010 bzero(&bootargs_scratch[buflen], sizeof (bootargs_scratch) - buflen);
1011 head = &bootargs_scratch[0];
1012
1013 /* Get the first argument */
1014 newarg = strtok(bootargs_scratch, " ");
1015
1016 /*
1017 * If this is a dry run request, verify that the drivers can handle
1018 * fast reboot.
1019 */
1020 if (newarg && strncasecmp(newarg, "dryrun", strlen("dryrun")) == 0) {
1021 *is_dryrun = 1;
1022 (void) system("/usr/sbin/devfsadm");
1023 }
1024
1025 /*
1026 * Always perform a dry run to identify all the drivers that
1027 * need to implement devo_reset().
1028 */
1029 if (uadmin(A_SHUTDOWN, AD_FASTREBOOT_DRYRUN,
1030 (uintptr_t)bootargs_saved) != 0) {
1031 (void) fprintf(stderr, gettext("%s: Not all drivers "
1032 "have implemented quiesce(9E)\n"
1033 "\tPlease see /var/adm/messages for drivers that haven't\n"
1034 "\timplemented quiesce(9E).\n"), cmdname);
1035 } else if (*is_dryrun) {
1036 (void) fprintf(stderr, gettext("%s: All drivers have "
1037 "implemented quiesce(9E)\n"), cmdname);
1038 }
1039
1040 /* Return if it is a true dry run. */
1041 if (*is_dryrun)
1042 return (rc);
1043
1044 #if defined(__i386)
1045 /* Read boot args from GRUB menu */
1046 if ((bootargs_buf[0] == 0 || isdigit(bootargs_buf[0])) &&
1047 bename == NULL) {
1048 /*
1049 * If no boot arguments are given, or a GRUB menu entry
1050 * number is provided, process the GRUB menu.
1051 */
1052 int entnum;
1053 if (bootargs_buf[0] == 0)
1054 entnum = GRUB_ENTRY_DEFAULT;
1055 else {
1056 errno = 0;
1057 entnum = strtoul(bootargs_buf, NULL, 10);
1058 rc = errno;
1059 }
1060
1061 if (rc == 0 && (rc = grub_get_boot_args(&fbarg, NULL,
1062 entnum)) == 0) {
1063 if (strlcpy(bootargs_buf, fbarg.gba_bootargs,
1064 buf_size) >= buf_size) {
1065 grub_cleanup_boot_args(&fbarg);
1066 bcopy(bootargs_saved, bootargs_buf, buf_size);
1067 rc = E2BIG;
1068 }
1069 }
1070 /* Failed to read GRUB menu, fall back to normal reboot */
1071 if (rc != 0) {
1072 (void) fprintf(stderr,
1073 gettext("%s: Failed to process GRUB menu "
1074 "entry for fast reboot.\n\t%s\n"),
1075 cmdname, grub_strerror(rc));
1076 (void) fprintf(stderr,
1077 gettext("%s: Falling back to regular reboot.\n"),
1078 cmdname);
1079 return (-1);
1080 }
1081 /* No need to process further */
1082 fbarg_used = &fbarg;
1083 fbarg_entnum = entnum;
1084 return (0);
1085 }
1086 #endif /* __i386 */
1087
1088 /* Zero out the boot argument buffer as we will reconstruct it */
1089 bzero(bootargs_buf, buf_size);
1090 bzero(bootfs_arg, sizeof (bootfs_arg));
1091 bzero(unixfile, sizeof (unixfile));
1092
1093 if (bename && (rc = fastboot_bename(bename, mountpoint,
1094 sizeof (mountpoint))) != 0)
1095 return (EINVAL);
1096
1097
1098 /*
1099 * If BE is not specified, look for disk argument to construct
1100 * mountpoint; if BE has been specified, mountpoint has already been
1101 * constructed.
1102 */
1103 if (newarg && newarg[0] != '-' && !bename) {
1104 int tmprc;
1105
1106 if ((tmprc = validate_disk(newarg, mountpoint)) == 0) {
1107 /*
1108 * The first argument is a valid root argument.
1109 * Get the next argument.
1110 */
1111 newarg = strtok(NULL, " ");
1112 rootlen = (newarg) ? (newarg - head) : buflen;
1113 (void) strlcpy(fastboot_mounted, mountpoint,
1114 sizeof (fastboot_mounted));
1115
1116 } else if (tmprc == -1) {
1117 /*
1118 * Not a disk argument. Use / as default root.
1119 */
1120 bcopy("/", mountpoint, 1);
1121 bzero(&mountpoint[1], sizeof (mountpoint) - 1);
1122 } else {
1123 /*
1124 * Disk argument, but not valid or not root.
1125 * Return failure.
1126 */
1127 return (EINVAL);
1128 }
1129 }
1130
1131 /*
1132 * Make mountpoint the first part of unixfile.
1133 * If there is not disk argument, and BE has not been specified,
1134 * mountpoint could be empty.
1135 */
1136 mplen = strlen(mountpoint);
1137 bcopy(mountpoint, unixfile, mplen);
1138
1139 /*
1140 * Look for unix argument
1141 */
1142 if (newarg && newarg[0] != '-') {
1143 bcopy(newarg, &unixfile[mplen], strlen(newarg));
1144 newarg = strtok(NULL, " ");
1145 rootlen = (newarg) ? (newarg - head) : buflen;
1146 } else if (mplen != 0) {
1147 /*
1148 * No unix argument, but mountpoint is not empty, use
1149 * /platform/i86pc/$ISADIR/kernel/unix as default.
1150 */
1151 char isa[20];
1152
1153 if (sysinfo(SI_ARCHITECTURE_64, isa, sizeof (isa)) != -1)
1154 (void) snprintf(&unixfile[mplen],
1155 sizeof (unixfile) - mplen,
1156 "/platform/i86pc/kernel/%s/unix", isa);
1157 else if (sysinfo(SI_ARCHITECTURE_32, isa, sizeof (isa)) != -1) {
1158 (void) snprintf(&unixfile[mplen],
1159 sizeof (unixfile) - mplen,
1160 "/platform/i86pc/kernel/unix");
1161 } else {
1162 (void) fprintf(stderr,
1163 gettext("%s: Unknown architecture"), cmdname);
1164 return (EINVAL);
1165 }
1166 }
1167
1168 /*
1169 * We now have the complete unix argument. Verify that it exists and
1170 * is an ELF file. Split the argument up into mountpoint and unix
1171 * portions again. This is necessary to handle cases where mountpoint
1172 * is specified on the command line as part of the unix argument,
1173 * such as this:
1174 * # reboot -f /.alt/platform/i86pc/kernel/amd64/unix
1175 */
1176 unixlen = strlen(unixfile);
1177 if (unixlen > 0) {
1178 if (validate_unix(unixfile, &mplen, &is_zfs,
1179 bootfs_arg) != 0) {
1180 /* Not a valid unix file */
1181 return (EINVAL);
1182 } else {
1183 int space = 0;
1184 /*
1185 * Construct boot argument.
1186 */
1187 unixlen = strlen(unixfile);
1188
1189 /*
1190 * mdep cannot start with space because bootadm
1191 * creates bogus menu entries if it does.
1192 */
1193 if (mplen > 0) {
1194 bcopy(unixfile, bootargs_buf, mplen);
1195 (void) strcat(bootargs_buf, " ");
1196 space = 1;
1197 }
1198 bcopy(&unixfile[mplen], &bootargs_buf[mplen + space],
1199 unixlen - mplen);
1200 (void) strcat(bootargs_buf, " ");
1201 off += unixlen + space + 1;
1202 }
1203 } else {
1204 /* Check to see if root is zfs */
1205 const char *dp;
1206 (void) get_zfs_bootfs_arg("/", &dp, &is_zfs, bootfs_arg);
1207 }
1208
1209 if (is_zfs && (buflen != 0 || bename != NULL)) {
1210 /* LINTED E_SEC_SPRINTF_UNBOUNDED_COPY */
1211 off += sprintf(bootargs_buf + off, "%s ", bootfs_arg);
1212 }
1213
1214 /*
1215 * Copy the rest of the arguments
1216 */
1217 bcopy(&bootargs_saved[rootlen], &bootargs_buf[off], buflen - rootlen);
1218
1219 return (rc);
1220 }
1221
1222 #define MAXARGS 5
1223
1224 static void
do_archives_update(int do_fast_reboot)1225 do_archives_update(int do_fast_reboot)
1226 {
1227 int r, i = 0;
1228 pid_t pid;
1229 char *cmd_argv[MAXARGS];
1230
1231
1232 cmd_argv[i++] = "/sbin/bootadm";
1233 cmd_argv[i++] = "-ea";
1234 cmd_argv[i++] = "update_all";
1235 if (do_fast_reboot)
1236 cmd_argv[i++] = "fastboot";
1237 cmd_argv[i] = NULL;
1238
1239 r = posix_spawn(&pid, cmd_argv[0], NULL, NULL, cmd_argv, NULL);
1240
1241 /* if posix_spawn fails we emit a warning and continue */
1242
1243 if (r != 0)
1244 (void) fprintf(stderr, gettext("%s: WARNING, unable to start "
1245 "boot archive update\n"), cmdname);
1246 else
1247 while (waitpid(pid, NULL, 0) == -1 && errno == EINTR)
1248 ;
1249 }
1250
1251 int
main(int argc,char * argv[])1252 main(int argc, char *argv[])
1253 {
1254 char *ttyn = ttyname(STDERR_FILENO);
1255
1256 int qflag = 0, needlog = 1, nosync = 0;
1257 int fast_reboot = 0;
1258 int prom_reboot = 0;
1259 uintptr_t mdep = NULL;
1260 int cmd, fcn, c, aval, r;
1261 const char *usage;
1262 const char *optstring;
1263 zoneid_t zoneid = getzoneid();
1264 int need_check_zones = 0;
1265 char bootargs_buf[BOOTARGS_MAX];
1266 char *bootargs_orig = NULL;
1267 char *bename = NULL;
1268
1269 const char * const resetting = "/etc/svc/volatile/resetting";
1270
1271 (void) setlocale(LC_ALL, "");
1272 (void) textdomain(TEXT_DOMAIN);
1273
1274 cmdname = basename(argv[0]);
1275
1276 if (strcmp(cmdname, "halt") == 0) {
1277 (void) audit_halt_setup(argc, argv);
1278 optstring = "dlnqy";
1279 usage = gettext("usage: %s [ -dlnqy ]\n");
1280 cmd = A_SHUTDOWN;
1281 fcn = AD_HALT;
1282 } else if (strcmp(cmdname, "poweroff") == 0) {
1283 (void) audit_halt_setup(argc, argv);
1284 optstring = "dlnqy";
1285 usage = gettext("usage: %s [ -dlnqy ]\n");
1286 cmd = A_SHUTDOWN;
1287 fcn = AD_POWEROFF;
1288 } else if (strcmp(cmdname, "reboot") == 0) {
1289 (void) audit_reboot_setup();
1290 #if defined(__i386)
1291 optstring = "dlnqpfe:";
1292 usage = gettext("usage: %s [ -dlnq(p|fe:) ] [ boot args ]\n");
1293 #else
1294 optstring = "dlnqfp";
1295 usage = gettext("usage: %s [ -dlnq(p|f) ] [ boot args ]\n");
1296 #endif
1297 cmd = A_SHUTDOWN;
1298 fcn = AD_BOOT;
1299 } else {
1300 (void) fprintf(stderr,
1301 gettext("%s: not installed properly\n"), cmdname);
1302 return (1);
1303 }
1304
1305 while ((c = getopt(argc, argv, optstring)) != EOF) {
1306 switch (c) {
1307 case 'd':
1308 if (zoneid == GLOBAL_ZONEID)
1309 cmd = A_DUMP;
1310 else {
1311 (void) fprintf(stderr,
1312 gettext("%s: -d only valid from global"
1313 " zone\n"), cmdname);
1314 return (1);
1315 }
1316 break;
1317 case 'l':
1318 needlog = 0;
1319 break;
1320 case 'n':
1321 nosync = 1;
1322 break;
1323 case 'q':
1324 qflag = 1;
1325 break;
1326 case 'y':
1327 ttyn = NULL;
1328 break;
1329 case 'f':
1330 fast_reboot = 1;
1331 break;
1332 case 'p':
1333 prom_reboot = 1;
1334 break;
1335 #if defined(__i386)
1336 case 'e':
1337 bename = optarg;
1338 break;
1339 #endif
1340 default:
1341 /*
1342 * TRANSLATION_NOTE
1343 * Don't translate the words "halt" or "reboot"
1344 */
1345 (void) fprintf(stderr, usage, cmdname);
1346 return (1);
1347 }
1348 }
1349
1350 argc -= optind;
1351 argv += optind;
1352
1353 if (argc != 0) {
1354 if (fcn != AD_BOOT) {
1355 (void) fprintf(stderr, usage, cmdname);
1356 return (1);
1357 }
1358
1359 /* Gather the arguments into bootargs_buf. */
1360 if (gather_args(argv, bootargs_buf, sizeof (bootargs_buf)) !=
1361 0) {
1362 (void) fprintf(stderr,
1363 gettext("%s: Boot arguments too long.\n"), cmdname);
1364 return (1);
1365 }
1366
1367 bootargs_orig = strdup(bootargs_buf);
1368 mdep = (uintptr_t)bootargs_buf;
1369 } else {
1370 /*
1371 * Initialize it to 0 in case of fastboot, the buffer
1372 * will be used.
1373 */
1374 bzero(bootargs_buf, sizeof (bootargs_buf));
1375 }
1376
1377 if (geteuid() != 0) {
1378 (void) fprintf(stderr,
1379 gettext("%s: permission denied\n"), cmdname);
1380 goto fail;
1381 }
1382
1383 if (fast_reboot && prom_reboot) {
1384 (void) fprintf(stderr,
1385 gettext("%s: -p and -f are mutually exclusive\n"),
1386 cmdname);
1387 return (EINVAL);
1388 }
1389 /*
1390 * Check whether fast reboot is the default operating mode
1391 */
1392 if (fcn == AD_BOOT && !fast_reboot && !prom_reboot &&
1393 zoneid == GLOBAL_ZONEID) {
1394 fast_reboot = scf_is_fastboot_default();
1395
1396 }
1397
1398 if (bename && !fast_reboot) {
1399 (void) fprintf(stderr, gettext("%s: -e only valid with -f\n"),
1400 cmdname);
1401 return (EINVAL);
1402 }
1403
1404 #if defined(__sparc)
1405 if (fast_reboot) {
1406 fast_reboot = 2; /* need to distinguish each case */
1407 }
1408 #endif
1409
1410 /*
1411 * If fast reboot, do some sanity check on the argument
1412 */
1413 if (fast_reboot == 1) {
1414 int rc;
1415 int is_dryrun = 0;
1416
1417 if (zoneid != GLOBAL_ZONEID) {
1418 (void) fprintf(stderr,
1419 gettext("%s: Fast reboot only valid from global"
1420 " zone\n"), cmdname);
1421 return (EINVAL);
1422 }
1423
1424 rc = parse_fastboot_args(bootargs_buf, sizeof (bootargs_buf),
1425 &is_dryrun, bename);
1426
1427 /*
1428 * If dry run, or if arguments are invalid, return.
1429 */
1430 if (is_dryrun)
1431 return (rc);
1432 else if (rc == EINVAL)
1433 goto fail;
1434 else if (rc != 0)
1435 fast_reboot = 0;
1436
1437 /*
1438 * For all the other errors, we continue on in case user
1439 * user want to force fast reboot, or fall back to regular
1440 * reboot.
1441 */
1442 if (strlen(bootargs_buf) != 0)
1443 mdep = (uintptr_t)bootargs_buf;
1444 }
1445
1446 #if 0 /* For debugging */
1447 if (mdep != NULL)
1448 (void) fprintf(stderr, "mdep = %s\n", (char *)mdep);
1449 #endif
1450
1451 if (fcn != AD_BOOT && ttyn != NULL &&
1452 strncmp(ttyn, "/dev/term/", strlen("/dev/term/")) == 0) {
1453 /*
1454 * TRANSLATION_NOTE
1455 * Don't translate ``halt -y''
1456 */
1457 (void) fprintf(stderr,
1458 gettext("%s: dangerous on a dialup;"), cmdname);
1459 (void) fprintf(stderr,
1460 gettext("use ``%s -y'' if you are really sure\n"), cmdname);
1461 goto fail;
1462 }
1463
1464 if (needlog) {
1465 char *user = getlogin();
1466 struct passwd *pw;
1467 char *tty;
1468
1469 openlog(cmdname, 0, LOG_AUTH);
1470 if (user == NULL && (pw = getpwuid(getuid())) != NULL)
1471 user = pw->pw_name;
1472 if (user == NULL)
1473 user = "root";
1474
1475 tty = ttyname(1);
1476
1477 if (tty == NULL)
1478 syslog(LOG_CRIT, "initiated by %s", user);
1479 else
1480 syslog(LOG_CRIT, "initiated by %s on %s", user, tty);
1481 }
1482
1483 /*
1484 * We must assume success and log it before auditd is terminated.
1485 */
1486 if (fcn == AD_BOOT)
1487 aval = audit_reboot_success();
1488 else
1489 aval = audit_halt_success();
1490
1491 if (aval == -1) {
1492 (void) fprintf(stderr,
1493 gettext("%s: can't turn off auditd\n"), cmdname);
1494 if (needlog)
1495 (void) sleep(5); /* Give syslogd time to record this */
1496 }
1497
1498 (void) signal(SIGHUP, SIG_IGN); /* for remote connections */
1499
1500 /*
1501 * We start to fork a bunch of zoneadms to halt any active zones.
1502 * This will proceed with halt in parallel until we call
1503 * check_zone_haltedness later on.
1504 */
1505 if (zoneid == GLOBAL_ZONEID && cmd != A_DUMP) {
1506 need_check_zones = halt_zones();
1507 }
1508
1509 #if defined(__i386)
1510 /* set new default entry in the GRUB entry */
1511 if (fbarg_entnum != GRUB_ENTRY_DEFAULT) {
1512 char buf[32];
1513 (void) snprintf(buf, sizeof (buf), "default=%u", fbarg_entnum);
1514 (void) halt_exec(BOOTADM_PROG, "set-menu", buf, NULL);
1515 }
1516 #endif /* __i386 */
1517
1518 /* if we're dumping, do the archive update here and don't defer it */
1519 if (cmd == A_DUMP && zoneid == GLOBAL_ZONEID && !nosync)
1520 do_archives_update(fast_reboot);
1521
1522 /*
1523 * If we're not forcing a crash dump, mark the system as quiescing for
1524 * smf(5)'s benefit, and idle the init process.
1525 */
1526 if (cmd != A_DUMP) {
1527 if (direct_init(PCDSTOP) == -1) {
1528 /*
1529 * TRANSLATION_NOTE
1530 * Don't translate the word "init"
1531 */
1532 (void) fprintf(stderr,
1533 gettext("%s: can't idle init\n"), cmdname);
1534 goto fail;
1535 }
1536
1537 if (creat(resetting, 0755) == -1)
1538 (void) fprintf(stderr,
1539 gettext("%s: could not create %s.\n"),
1540 cmdname, resetting);
1541 }
1542
1543 /*
1544 * Make sure we don't get stopped by a jobcontrol shell
1545 * once we start killing everybody.
1546 */
1547 (void) signal(SIGTSTP, SIG_IGN);
1548 (void) signal(SIGTTIN, SIG_IGN);
1549 (void) signal(SIGTTOU, SIG_IGN);
1550 (void) signal(SIGPIPE, SIG_IGN);
1551 (void) signal(SIGTERM, SIG_IGN);
1552
1553 /*
1554 * Try to stop gdm so X has a chance to return the screen and
1555 * keyboard to a sane state.
1556 */
1557 if (fast_reboot == 1 && stop_gdm() != 0) {
1558 (void) fprintf(stderr,
1559 gettext("%s: Falling back to regular reboot.\n"), cmdname);
1560 fast_reboot = 0;
1561 mdep = (uintptr_t)bootargs_orig;
1562 } else if (bootargs_orig) {
1563 free(bootargs_orig);
1564 }
1565
1566 if (cmd != A_DUMP) {
1567 /*
1568 * Stop all restarters so they do not try to restart services
1569 * that are terminated.
1570 */
1571 stop_restarters();
1572
1573 /*
1574 * Wait a little while for zones to shutdown.
1575 */
1576 if (need_check_zones) {
1577 check_zones_haltedness();
1578
1579 (void) fprintf(stderr,
1580 gettext("%s: Completing system halt.\n"),
1581 cmdname);
1582 }
1583 }
1584
1585 /*
1586 * If we're not forcing a crash dump, give everyone 5 seconds to
1587 * handle a SIGTERM and clean up properly.
1588 */
1589 if (cmd != A_DUMP) {
1590 int start, end, delta;
1591
1592 (void) kill(-1, SIGTERM);
1593 start = time(NULL);
1594
1595 if (zoneid == GLOBAL_ZONEID && !nosync)
1596 do_archives_update(fast_reboot);
1597
1598 end = time(NULL);
1599 delta = end - start;
1600 if (delta < 5)
1601 (void) sleep(5 - delta);
1602 }
1603
1604 (void) signal(SIGINT, SIG_IGN);
1605
1606 if (!qflag && !nosync) {
1607 struct utmpx wtmpx;
1608
1609 bzero(&wtmpx, sizeof (struct utmpx));
1610 (void) strcpy(wtmpx.ut_line, "~");
1611 (void) time(&wtmpx.ut_tv.tv_sec);
1612
1613 if (cmd == A_DUMP)
1614 (void) strcpy(wtmpx.ut_name, "crash dump");
1615 else
1616 (void) strcpy(wtmpx.ut_name, "shutdown");
1617
1618 (void) updwtmpx(WTMPX_FILE, &wtmpx);
1619 sync();
1620 }
1621
1622 if (cmd == A_DUMP && nosync != 0)
1623 (void) uadmin(A_DUMP, AD_NOSYNC, NULL);
1624
1625 if (fast_reboot)
1626 fcn = AD_FASTREBOOT;
1627
1628 if (uadmin(cmd, fcn, mdep) == -1)
1629 (void) fprintf(stderr, "%s: uadmin failed: %s\n",
1630 cmdname, strerror(errno));
1631 else
1632 (void) fprintf(stderr, "%s: uadmin unexpectedly returned 0\n",
1633 cmdname);
1634
1635 do {
1636 r = remove(resetting);
1637 } while (r != 0 && errno == EINTR);
1638
1639 if (r != 0 && errno != ENOENT)
1640 (void) fprintf(stderr, gettext("%s: could not remove %s.\n"),
1641 cmdname, resetting);
1642
1643 if (direct_init(PCRUN) == -1) {
1644 /*
1645 * TRANSLATION_NOTE
1646 * Don't translate the word "init"
1647 */
1648 (void) fprintf(stderr,
1649 gettext("%s: can't resume init\n"), cmdname);
1650 }
1651
1652 continue_restarters();
1653
1654 if (get_initpid() != -1)
1655 /* tell init to restate current level */
1656 (void) kill(get_initpid(), SIGHUP);
1657
1658 fail:
1659 if (fcn == AD_BOOT)
1660 (void) audit_reboot_fail();
1661 else
1662 (void) audit_halt_fail();
1663
1664 if (fast_reboot == 1) {
1665 if (bename) {
1666 (void) halt_exec(BEADM_PROG, "umount", bename, NULL);
1667
1668 } else if (strlen(fastboot_mounted) != 0) {
1669 (void) umount(fastboot_mounted);
1670 #if defined(__i386)
1671 } else if (fbarg_used != NULL) {
1672 grub_cleanup_boot_args(fbarg_used);
1673 #endif /* __i386 */
1674 }
1675 }
1676
1677 return (1);
1678 }
1679