#!/bin/bash # Copyright © Sébastien Luttringer # # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU General Public License # as published by the Free Software Foundation; either version 2 # of the License, or (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. # Check running systemd services for binary update # Convenient way to restart updated systemd service after upgrade # disable grep options to avoid non default behaviour unset GREP_OPTIONS # Systemd cgroup path SYSTEMD_CGROUP_BASE_PATH='/sys/fs/cgroup/systemd' # colors if [[ -t 1 ]]; then shopt -s xpg_echo c_title='\e[1;33m' c_svc='\e[1;31m' c_warn='\e[5;30;43m' c_error='\e[5;30;41m' c_rst='\e[m' fi # default options dbus=1 # relauch when dbus failed=1 # display failed service at the end pacdiff=1 # run pacdiff reload=1 # reload systemd serialize=0 # run in parallel status=1 # display status after systemctl systemctl='' # systemctl command to call user_slice=0 # act on users services verbose=0 # more details usage() { echo "usage ${0##*/} [options]" echo "description: check for updated files in a service" echo 'options:' echo ' -h: this help' >&2 echo " -b/-B: restart (or not) ${0##*/} if dbus was updated (default: $dbus)" >&2 echo " -d/-D: call (or not) systemd daemon-reload (default: $reload)" >&2 echo " -f/-F: display (or not) failed services before quit (default: $failed)" >&2 echo " -p/-P: call (or not) pacdiff before act (default: $pacdiff)" >&2 echo " -r/-R: restart (or reload) services (default: $systemctl)" >&2 echo " -s/-S: display (or not) status of restarted service (default: $status)" >&2 echo " -u/-U: act (or not) on services in users slice (default: $user_slice)" >&2 echo " -v/-V: verbose mode (or disable it)" >&2 echo " -z/-Z: serialize (or not) action (default: $serialize)" >&2 exit 2 } # usage : in_array( $needle, $haystack ) # return : 0 - found # 1 - not found in_array() { local needle=$1; shift local item for item in "$@"; do [[ $item = $needle ]] && return 0 # Found done return 1 # Not Found } while getopts 'hBbDdFfPpRrSsUuVvZz' opt; do case $opt in B) dbus=0;; b) dbus=1;; D) reload=0;; d) reload=1;; F) failed=0;; f) failed=1;; P) pacdiff=0;; p) pacdiff=1;; R) systemctl='reload';; r) systemctl='restart';; S) status=0;; s) status=1;; U) user_slice=0;; u) user_slice=1;; V) verbose=0;; v) verbose=1;; Z) serialize=0;; z) serialize=1;; *) usage;; esac done shift $((OPTIND - 1)); (( $# > 0 )) && usage # avoid to be sighup'ed by interactive shell trap '' SIGHUP # from now, we need to be root (( $UID != 0 )) && echo 'You need to be root' && exit 1 # call pacdiff (( pacdiff )) && pacdiff # reload units list (( reload )) && systemctl --system daemon-reload # list of running services declare -a services services=($(systemctl --no-legend --full --type service --state running|cut -f1 -d' ')) # list of bus names declare -a buses buses=($(dbus-send --system --dest=org.freedesktop.DBus --type=method_call --print-reply /org/freedesktop/DBus org.freedesktop.DBus.ListNames|sed -rn 's/\s*string "(.*)"/\1/p')) # beggar count declare -a needy=() pids=() declare -i pid=0 for svc in "${services[@]}"; do unit_path="$(systemctl -p ControlGroup show "$svc"|cut -f 2 -d=)" busname="$(systemctl -p BusName show "$svc"|cut -f 2 -d=)" tasks_path="$SYSTEMD_CGROUP_BASE_PATH/$unit_path/tasks" [[ -e "$tasks_path" ]] || { echo "${c_error}** Unable to get pid of $svc: No tasks file: $tasks_path${c_rst}" >&2 continue } # check if unit is in system slice (( user_slice )) && [[ "$unit_path" =~ /user\.slice/ && ! "$user_slice" == true ]] && continue pids=( $(< "$SYSTEMD_CGROUP_BASE_PATH/$unit_path/tasks") ) if (( "${#pids[*]}" == 0 )); then echo "${c_error}** Unable to get pid of $svc: Tasks file is empty${c_rst}" >&2 continue fi for pid in "${pids[@]}"; do maps_path="/proc/$pid/maps" [[ -e "$maps_path" ]] || { echo "${c_error}** Unable to get maps file of $svc for pid $pid${c_rst}" >&2 continue } deleted=$(grep -F '(deleted)' "$maps_path" |sed -nr 's|^\S+ ..x. \S+ \S+ \S+ \s+||p'|sort|uniq) if [[ -n $deleted ]] || { [[ -n "$busname" ]] && ! in_array "$busname" "${buses[@]}"; }; then needy+=("$svc") if (( verbose )); then echo "${c_title}Service:${c_svc} $svc${c_rst}" echo "${c_title}Pid:${c_rst} $pid" echo "${c_title}Bus:${c_rst} $busname" echo "${c_title}Commands:${c_rst} systemctl ${systemctl:-restart} '$svc'" echo -n "${c_title}BusName detected on the system bus: ${c_rst}" in_array "$busname" "${buses[@]}" && echo 'Yes' || echo 'No' echo "${c_title}Deleted files:${c_rst}" echo "$deleted" echo else echo "systemctl ${systemctl:-restart} '$svc'" fi if [[ -n $systemctl ]]; then systemctl "$systemctl" "$svc" & # wait process to terminate when serialize (( serialize )) && wait # display status directly when serialize and not quiet (( serialize )) && (( status )) && systemctl --lines=0 status "$svc" fi break fi done done wait # show units status if (( serialize == 0 )) && (( status )) && [[ -n $systemctl && -n ${needy[*]} ]]; then systemctl --lines=0 status "${needy[@]}" fi (( failed )) && systemctl --failed --all --no-pager --no-legend --full list-units # warn if dbus was restart if in_array dbus.service "${needy[@]}"; then echo "${c_warn}After dbus restart, you should run ${0##*/} twice${c_rst}" >&2 if (( dbus )) && [[ -n $systemctl && -z $CHECKSERVICE_WAS_RESTARTED ]]; then echo "${c_warn}Doing it for you. No need to thanks me!${c_rst}" >&2 export CHECKSERVICE_WAS_RESTARTED=1 exec "$0" "$@" fi fi exit 0