prs-lib 0.5.7

Secure, fast & convenient password manager CLI with GPG & git sync
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177

use std::ffi::OsStr;
use std::process::{Command, ExitStatus, Stdio};

use anyhow::Result;
use thiserror::Error;

/// sudo binary.
pub const SUDO_BIN: &str = "sudo";

/// systemd-run binary.
pub const SYSTEMD_RUN_BIN: &str = "systemd-run";

/// systemctl binary.
pub const SYSTEMCTL_BIN: &str = "systemctl";

/// Spawn systemd timer to run the given command.
///
/// This may ask for root privileges through sudo.
pub fn systemd_cmd_timer(time: u32, description: &str, unit: &str, cmd: &[&str]) -> Result<()> {
    // Remove unit first if it failed before
    let _ = systemd_remove_timer(unit);
    let _ = systemctl_reset_failed_timer(unit);

    // TODO: do not set -q flag if in verbose mode?
    let time = format!("{time}");
    let mut systemd_cmd = vec![
        "--quiet",
        "--system",
        "--on-active",
        &time,
        "--timer-property=AccuracySec=1s",
        "--description",
        description,
        "--unit",
        unit,
        "--",
    ];
    systemd_cmd.extend(cmd);
    systemd_run(&systemd_cmd)
}

/// Reset a given failed unit.
///
/// This errors if the given unit is unknown, or if it didn't fail.
///
/// Because this involves timers, if this operation fails it will also internally try to do the
/// same for the given unit with a `.timer` suffix.
fn systemctl_reset_failed_timer(unit: &str) -> Result<()> {
    // Invoke command, collect result
    let result = cmd_systemctl(["--quiet", "--system", "reset-failed", unit])
        .stderr(Stdio::null())
        .status()
        .map_err(Err::Systemctl);

    // Do the same with .timer unit suffix, ensure one succeeds
    if unit.ends_with(".service") {
        let unit = format!("{}.timer", unit.trim_end_matches(".service"));
        systemctl_reset_failed_timer(&unit).or_else(|_| cmd_assert_status(result?))
    } else {
        cmd_assert_status(result?)
    }
}

/// Check whether the given unit (transient timer) is running.
///
/// This may ask for root privileges through sudo.
///
/// Because this involves timers, if this operation fails it will also internally try to do the
/// same for the given unit with a `.timer` suffix.
pub fn systemd_has_timer(unit: &str) -> Result<bool> {
    // TODO: check whether we can optimize this, the status command may be expensive
    let cmd = cmd_systemctl(["--system", "--no-pager", "--quiet", "status", unit])
        .stdout(Stdio::null())
        .stderr(Stdio::null())
        .status()
        .map_err(Err::Systemctl)?;

    // Check special status codes
    match cmd.code() {
        Some(0) | Some(3) => Ok(true),
        Some(4) if unit.ends_with(".service") => {
            let unit = format!("{}.timer", unit.trim_end_matches(".service"));
            systemd_has_timer(&unit)
        }
        Some(4) => Ok(false),
        _ => cmd_assert_status(cmd).map(|_| false),
    }
}

/// Remove a systemd transient timer.
///
/// Errors if the timer is not available.
/// This may ask for root privileges through sudo.
///
/// Because this involves timers, if this operation fails it will also internally try to do the
/// same for the given unit with a `.timer` suffix.
pub fn systemd_remove_timer(unit: &str) -> Result<()> {
    // Invoke command, collect result
    let result = cmd_systemctl(["--system", "--quiet", "stop", unit])
        .stderr(Stdio::null())
        .status()
        .map_err(Err::Systemctl);

    // Do the same with .timer unit suffix, ensure one succeeds
    if unit.ends_with(".service") {
        let unit = format!("{}.timer", unit.trim_end_matches(".service"));
        systemd_remove_timer(&unit).or_else(|_| cmd_assert_status(result?))
    } else {
        cmd_assert_status(result?)
    }
}

/// Invoke a systemd-run command with the given arguments.
fn systemd_run<I, S>(args: I) -> Result<()>
where
    I: IntoIterator<Item = S>,
    S: AsRef<OsStr>,
{
    cmd_assert_status(cmd_systemd_run(args).status().map_err(Err::SystemdRun)?)
}

// /// Invoke a systemctl command with the given arguments.
// fn systemctl<I, S>(args: I) -> Result<()>
// where
//     I: IntoIterator<Item = S>,
//     S: AsRef<OsStr>,
// {
//     cmd_assert_status(cmd_systemctl(args).status().map_err(Err::Systemctl)?)
// }

/// Build a systemd-run command to run.
fn cmd_systemd_run<I, S>(args: I) -> Command
where
    I: IntoIterator<Item = S>,
    S: AsRef<OsStr>,
{
    let mut cmd = Command::new(SUDO_BIN);
    cmd.arg("--");
    cmd.arg(SYSTEMD_RUN_BIN);
    cmd.args(args);
    cmd
}

/// Build a systemctl command to run.
fn cmd_systemctl<I, S>(args: I) -> Command
where
    I: IntoIterator<Item = S>,
    S: AsRef<OsStr>,
{
    let mut cmd = Command::new(SUDO_BIN);
    cmd.arg("--");
    cmd.arg(SYSTEMCTL_BIN);
    cmd.args(args);
    cmd
}

/// Assert the exit status of a command.
///
/// Returns error is status is not succesful.
fn cmd_assert_status(status: ExitStatus) -> Result<()> {
    if !status.success() {
        return Err(Err::Status(status).into());
    }
    Ok(())
}

#[derive(Debug, Error)]
pub enum Err {
    #[error("failed to invoke systemd-run command")]
    SystemdRun(#[source] std::io::Error),

    #[error("failed to invoke systemctl command")]
    Systemctl(#[source] std::io::Error),

    #[error("systemd exited with non-zero status code: {0}")]
    Status(std::process::ExitStatus),
}