daandemeyer / rpms / systemd

Forked from rpms/systemd 2 years ago
Clone
b677e7
From a05c1077911652954c8b9e82cfdc0fc643eca782 Mon Sep 17 00:00:00 2001
b677e7
From: Lennart Poettering <lennart@poettering.net>
b677e7
Date: Mon, 6 Aug 2018 21:44:45 +0200
b677e7
Subject: [PATCH] logind: rework how we manage the slice and
b677e7
 user-runtime-dir@.service unit for each user
b677e7
b677e7
Instead of managing it explicitly, let's simplify things and rely on
b677e7
regular Wants=/Requires= dependencies to pull in these units from
b677e7
user@.service and the session scope, and StopWhenUneeded= to stop these
b677e7
auxiliary units again. This way, they can be pulled in easily by
b677e7
unrelated units too.
b677e7
b677e7
This simplifies things quite a bit: for each session we now only need to
b677e7
manage the session scope, and for each user the user@.service, the other
b677e7
units are not something we need to manage anymore.
b677e7
b677e7
This patch also makes sure that if user@.service of a user is masked we
b677e7
will continue to work, and user-runtime-dir@.service will still be
b677e7
correctly pulled in, as it is now a dependency of the scope unit.
b677e7
b677e7
Fixes: #9461
b677e7
Replaces: #5546
b677e7
(cherry picked from commit 25a1ab4ed48b72e974f77a68dcbe3521014787bb)
b677e7
b677e7
Related: #1642460
b677e7
---
b677e7
 src/login/logind-dbus.c    |  58 ++++++++--------
b677e7
 src/login/logind-session.c |  64 ++++++++++--------
b677e7
 src/login/logind-session.h |   2 +-
b677e7
 src/login/logind-user.c    | 134 ++++++++++++++-----------------------
b677e7
 src/login/logind-user.h    |   7 +-
b677e7
 src/login/logind.c         |   2 +-
b677e7
 src/login/logind.h         |   2 +-
b677e7
 7 files changed, 123 insertions(+), 146 deletions(-)
b677e7
b677e7
diff --git a/src/login/logind-dbus.c b/src/login/logind-dbus.c
b677e7
index 4b2c418453..7eba617fff 100644
b677e7
--- a/src/login/logind-dbus.c
b677e7
+++ b/src/login/logind-dbus.c
b677e7
@@ -847,7 +847,7 @@ static int method_create_session(sd_bus_message *message, void *userdata, sd_bus
b677e7
         if (r < 0)
b677e7
                 goto fail;
b677e7
 
b677e7
-        r = session_start(session, message);
b677e7
+        r = session_start(session, message, error);
b677e7
         if (r < 0)
b677e7
                 goto fail;
b677e7
 
b677e7
@@ -3110,24 +3110,20 @@ const sd_bus_vtable manager_vtable[] = {
b677e7
 };
b677e7
 
b677e7
 static int session_jobs_reply(Session *s, const char *unit, const char *result) {
b677e7
-        int r = 0;
b677e7
-
b677e7
         assert(s);
b677e7
         assert(unit);
b677e7
 
b677e7
         if (!s->started)
b677e7
-                return r;
b677e7
+                return 0;
b677e7
 
b677e7
-        if (streq(result, "done"))
b677e7
-                r = session_send_create_reply(s, NULL);
b677e7
-        else {
b677e7
+        if (result && !streq(result, "done")) {
b677e7
                 _cleanup_(sd_bus_error_free) sd_bus_error e = SD_BUS_ERROR_NULL;
b677e7
 
b677e7
-                sd_bus_error_setf(&e, BUS_ERROR_JOB_FAILED, "Start job for unit %s failed with '%s'", unit, result);
b677e7
-                r = session_send_create_reply(s, &e);
b677e7
+                sd_bus_error_setf(&e, BUS_ERROR_JOB_FAILED, "Start job for unit '%s' failed with '%s'", unit, result);
b677e7
+                return session_send_create_reply(s, &e);
b677e7
         }
b677e7
 
b677e7
-        return r;
b677e7
+        return session_send_create_reply(s, NULL);
b677e7
 }
b677e7
 
b677e7
 int match_job_removed(sd_bus_message *message, void *userdata, sd_bus_error *error) {
b677e7
@@ -3160,30 +3156,29 @@ int match_job_removed(sd_bus_message *message, void *userdata, sd_bus_error *err
b677e7
         }
b677e7
 
b677e7
         session = hashmap_get(m->session_units, unit);
b677e7
-        if (session && streq_ptr(path, session->scope_job)) {
b677e7
-                session->scope_job = mfree(session->scope_job);
b677e7
-                session_jobs_reply(session, unit, result);
b677e7
+        if (session) {
b677e7
+                if (streq_ptr(path, session->scope_job)) {
b677e7
+                        session->scope_job = mfree(session->scope_job);
b677e7
+                        (void) session_jobs_reply(session, unit, result);
b677e7
+
b677e7
+                        session_save(session);
b677e7
+                        user_save(session->user);
b677e7
+                }
b677e7
 
b677e7
-                session_save(session);
b677e7
-                user_save(session->user);
b677e7
                 session_add_to_gc_queue(session);
b677e7
         }
b677e7
 
b677e7
         user = hashmap_get(m->user_units, unit);
b677e7
-        if (user &&
b677e7
-            (streq_ptr(path, user->service_job) ||
b677e7
-             streq_ptr(path, user->slice_job))) {
b677e7
-
b677e7
-                if (streq_ptr(path, user->service_job))
b677e7
+        if (user) {
b677e7
+                if (streq_ptr(path, user->service_job)) {
b677e7
                         user->service_job = mfree(user->service_job);
b677e7
 
b677e7
-                if (streq_ptr(path, user->slice_job))
b677e7
-                        user->slice_job = mfree(user->slice_job);
b677e7
+                        LIST_FOREACH(sessions_by_user, session, user->sessions)
b677e7
+                                (void) session_jobs_reply(session, unit, NULL /* don't propagate user service failures to the client */);
b677e7
 
b677e7
-                LIST_FOREACH(sessions_by_user, session, user->sessions)
b677e7
-                        session_jobs_reply(session, unit, result);
b677e7
+                        user_save(user);
b677e7
+                }
b677e7
 
b677e7
-                user_save(user);
b677e7
                 user_add_to_gc_queue(user);
b677e7
         }
b677e7
 
b677e7
@@ -3315,13 +3310,14 @@ int manager_start_scope(
b677e7
                 pid_t pid,
b677e7
                 const char *slice,
b677e7
                 const char *description,
b677e7
-                const char *after,
b677e7
-                const char *after2,
b677e7
+                char **wants,
b677e7
+                char **after,
b677e7
                 sd_bus_message *more_properties,
b677e7
                 sd_bus_error *error,
b677e7
                 char **job) {
b677e7
 
b677e7
         _cleanup_(sd_bus_message_unrefp) sd_bus_message *m = NULL, *reply = NULL;
b677e7
+        char **i;
b677e7
         int r;
b677e7
 
b677e7
         assert(manager);
b677e7
@@ -3359,14 +3355,14 @@ int manager_start_scope(
b677e7
                         return r;
b677e7
         }
b677e7
 
b677e7
-        if (!isempty(after)) {
b677e7
-                r = sd_bus_message_append(m, "(sv)", "After", "as", 1, after);
b677e7
+        STRV_FOREACH(i, wants) {
b677e7
+                r = sd_bus_message_append(m, "(sv)", "Wants", "as", 1, *i);
b677e7
                 if (r < 0)
b677e7
                         return r;
b677e7
         }
b677e7
 
b677e7
-        if (!isempty(after2)) {
b677e7
-                r = sd_bus_message_append(m, "(sv)", "After", "as", 1, after2);
b677e7
+        STRV_FOREACH(i, after) {
b677e7
+                r = sd_bus_message_append(m, "(sv)", "After", "as", 1, *i);
b677e7
                 if (r < 0)
b677e7
                         return r;
b677e7
         }
b677e7
diff --git a/src/login/logind-session.c b/src/login/logind-session.c
b677e7
index 960a24d1a7..d56b48a732 100644
b677e7
--- a/src/login/logind-session.c
b677e7
+++ b/src/login/logind-session.c
b677e7
@@ -27,6 +27,7 @@
b677e7
 #include "path-util.h"
b677e7
 #include "process-util.h"
b677e7
 #include "string-table.h"
b677e7
+#include "strv.h"
b677e7
 #include "terminal-util.h"
b677e7
 #include "user-util.h"
b677e7
 #include "util.h"
b677e7
@@ -560,17 +561,18 @@ int session_activate(Session *s) {
b677e7
         return 0;
b677e7
 }
b677e7
 
b677e7
-static int session_start_scope(Session *s, sd_bus_message *properties) {
b677e7
+static int session_start_scope(Session *s, sd_bus_message *properties, sd_bus_error *error) {
b677e7
         int r;
b677e7
 
b677e7
         assert(s);
b677e7
         assert(s->user);
b677e7
 
b677e7
         if (!s->scope) {
b677e7
-                _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
b677e7
-                char *scope, *job = NULL;
b677e7
+                _cleanup_free_ char *scope = NULL;
b677e7
                 const char *description;
b677e7
 
b677e7
+                s->scope_job = mfree(s->scope_job);
b677e7
+
b677e7
                 scope = strjoin("session-", s->id, ".scope");
b677e7
                 if (!scope)
b677e7
                         return log_oom();
b677e7
@@ -583,21 +585,15 @@ static int session_start_scope(Session *s, sd_bus_message *properties) {
b677e7
                                 s->leader,
b677e7
                                 s->user->slice,
b677e7
                                 description,
b677e7
-                                "systemd-logind.service",
b677e7
-                                "systemd-user-sessions.service",
b677e7
+                                STRV_MAKE(s->user->runtime_dir_service, s->user->service), /* These two have StopWhenUnneeded= set, hence add a dep towards them */
b677e7
+                                STRV_MAKE("systemd-logind.service", "systemd-user-sessions.service", s->user->runtime_dir_service, s->user->service), /* And order us after some more */
b677e7
                                 properties,
b677e7
-                                &error,
b677e7
-                                &job;;
b677e7
-                if (r < 0) {
b677e7
-                        log_error_errno(r, "Failed to start session scope %s: %s", scope, bus_error_message(&error, r));
b677e7
-                        free(scope);
b677e7
-                        return r;
b677e7
-                } else {
b677e7
-                        s->scope = scope;
b677e7
+                                error,
b677e7
+                                &s->scope_job);
b677e7
+                if (r < 0)
b677e7
+                        return log_error_errno(r, "Failed to start session scope %s: %s", scope, bus_error_message(error, r));
b677e7
 
b677e7
-                        free(s->scope_job);
b677e7
-                        s->scope_job = job;
b677e7
-                }
b677e7
+                s->scope = TAKE_PTR(scope);
b677e7
         }
b677e7
 
b677e7
         if (s->scope)
b677e7
@@ -606,7 +602,7 @@ static int session_start_scope(Session *s, sd_bus_message *properties) {
b677e7
         return 0;
b677e7
 }
b677e7
 
b677e7
-int session_start(Session *s, sd_bus_message *properties) {
b677e7
+int session_start(Session *s, sd_bus_message *properties, sd_bus_error *error) {
b677e7
         int r;
b677e7
 
b677e7
         assert(s);
b677e7
@@ -614,6 +610,9 @@ int session_start(Session *s, sd_bus_message *properties) {
b677e7
         if (!s->user)
b677e7
                 return -ESTALE;
b677e7
 
b677e7
+        if (s->stopping)
b677e7
+                return -EINVAL;
b677e7
+
b677e7
         if (s->started)
b677e7
                 return 0;
b677e7
 
b677e7
@@ -621,8 +620,7 @@ int session_start(Session *s, sd_bus_message *properties) {
b677e7
         if (r < 0)
b677e7
                 return r;
b677e7
 
b677e7
-        /* Create cgroup */
b677e7
-        r = session_start_scope(s, properties);
b677e7
+        r = session_start_scope(s, properties, error);
b677e7
         if (r < 0)
b677e7
                 return r;
b677e7
 
b677e7
@@ -673,21 +671,24 @@ static int session_stop_scope(Session *s, bool force) {
b677e7
          * that is left in the scope is "left-over". Informing systemd about this has the benefit that it will log
b677e7
          * when killing any processes left after this point. */
b677e7
         r = manager_abandon_scope(s->manager, s->scope, &error);
b677e7
-        if (r < 0)
b677e7
+        if (r < 0) {
b677e7
                 log_warning_errno(r, "Failed to abandon session scope, ignoring: %s", bus_error_message(&error, r));
b677e7
+                sd_bus_error_free(&error);
b677e7
+        }
b677e7
+
b677e7
+        s->scope_job = mfree(s->scope_job);
b677e7
 
b677e7
         /* Optionally, let's kill everything that's left now. */
b677e7
         if (force || manager_shall_kill(s->manager, s->user->name)) {
b677e7
-                char *job = NULL;
b677e7
 
b677e7
-                r = manager_stop_unit(s->manager, s->scope, &error, &job;;
b677e7
-                if (r < 0)
b677e7
-                        return log_error_errno(r, "Failed to stop session scope: %s", bus_error_message(&error, r));
b677e7
+                r = manager_stop_unit(s->manager, s->scope, &error, &s->scope_job);
b677e7
+                if (r < 0) {
b677e7
+                        if (force)
b677e7
+                                return log_error_errno(r, "Failed to stop session scope: %s", bus_error_message(&error, r));
b677e7
 
b677e7
-                free(s->scope_job);
b677e7
-                s->scope_job = job;
b677e7
+                        log_warning_errno(r, "Failed to stop session scope, ignoring: %s", bus_error_message(&error, r));
b677e7
+                }
b677e7
         } else {
b677e7
-                s->scope_job = mfree(s->scope_job);
b677e7
 
b677e7
                 /* With no killing, this session is allowed to persist in "closing" state indefinitely.
b677e7
                  * Therefore session stop and session removal may be two distinct events.
b677e7
@@ -707,8 +708,17 @@ int session_stop(Session *s, bool force) {
b677e7
 
b677e7
         assert(s);
b677e7
 
b677e7
+        /* This is called whenever we begin with tearing down a session record. It's called in four cases: explicit API
b677e7
+         * request via the bus (either directly for the session object or for the seat or user object this session
b677e7
+         * belongs to; 'force' is true), or due to automatic GC (i.e. scope vanished; 'force' is false), or because the
b677e7
+         * session FIFO saw an EOF ('force' is false), or because the release timer hit ('force' is false). */
b677e7
+
b677e7
         if (!s->user)
b677e7
                 return -ESTALE;
b677e7
+        if (!s->started)
b677e7
+                return 0;
b677e7
+        if (s->stopping)
b677e7
+                return 0;
b677e7
 
b677e7
         s->timer_event_source = sd_event_source_unref(s->timer_event_source);
b677e7
 
b677e7
diff --git a/src/login/logind-session.h b/src/login/logind-session.h
b677e7
index 572f2545c1..7d17d9a25f 100644
b677e7
--- a/src/login/logind-session.h
b677e7
+++ b/src/login/logind-session.h
b677e7
@@ -124,7 +124,7 @@ void session_set_idle_hint(Session *s, bool b);
b677e7
 int session_get_locked_hint(Session *s);
b677e7
 void session_set_locked_hint(Session *s, bool b);
b677e7
 int session_create_fifo(Session *s);
b677e7
-int session_start(Session *s, sd_bus_message *properties);
b677e7
+int session_start(Session *s, sd_bus_message *properties, sd_bus_error *error);
b677e7
 int session_stop(Session *s, bool force);
b677e7
 int session_finalize(Session *s);
b677e7
 int session_release(Session *s);
b677e7
diff --git a/src/login/logind-user.c b/src/login/logind-user.c
b677e7
index 3e4c99bdbd..39fc76f4dc 100644
b677e7
--- a/src/login/logind-user.c
b677e7
+++ b/src/login/logind-user.c
b677e7
@@ -68,6 +68,10 @@ int user_new(User **ret, Manager *m, uid_t uid, gid_t gid, const char *name) {
b677e7
         if (r < 0)
b677e7
                 return r;
b677e7
 
b677e7
+        r = unit_name_build("user-runtime-dir", lu, ".service", &u->runtime_dir_service);
b677e7
+        if (r < 0)
b677e7
+                return r;
b677e7
+
b677e7
         r = hashmap_put(m->users, UID_TO_PTR(uid), u);
b677e7
         if (r < 0)
b677e7
                 return r;
b677e7
@@ -80,6 +84,10 @@ int user_new(User **ret, Manager *m, uid_t uid, gid_t gid, const char *name) {
b677e7
         if (r < 0)
b677e7
                 return r;
b677e7
 
b677e7
+        r = hashmap_put(m->user_units, u->runtime_dir_service, u);
b677e7
+        if (r < 0)
b677e7
+                return r;
b677e7
+
b677e7
         *ret = TAKE_PTR(u);
b677e7
         return 0;
b677e7
 }
b677e7
@@ -97,15 +105,18 @@ User *user_free(User *u) {
b677e7
         if (u->service)
b677e7
                 hashmap_remove_value(u->manager->user_units, u->service, u);
b677e7
 
b677e7
+        if (u->runtime_dir_service)
b677e7
+                hashmap_remove_value(u->manager->user_units, u->runtime_dir_service, u);
b677e7
+
b677e7
         if (u->slice)
b677e7
                 hashmap_remove_value(u->manager->user_units, u->slice, u);
b677e7
 
b677e7
         hashmap_remove_value(u->manager->users, UID_TO_PTR(u->uid), u);
b677e7
 
b677e7
-        u->slice_job = mfree(u->slice_job);
b677e7
         u->service_job = mfree(u->service_job);
b677e7
 
b677e7
         u->service = mfree(u->service);
b677e7
+        u->runtime_dir_service = mfree(u->runtime_dir_service);
b677e7
         u->slice = mfree(u->slice);
b677e7
         u->runtime_path = mfree(u->runtime_path);
b677e7
         u->state_file = mfree(u->state_file);
b677e7
@@ -149,9 +160,6 @@ static int user_save_internal(User *u) {
b677e7
         if (u->service_job)
b677e7
                 fprintf(f, "SERVICE_JOB=%s\n", u->service_job);
b677e7
 
b677e7
-        if (u->slice_job)
b677e7
-                fprintf(f, "SLICE_JOB=%s\n", u->slice_job);
b677e7
-
b677e7
         if (u->display)
b677e7
                 fprintf(f, "DISPLAY=%s\n", u->display->id);
b677e7
 
b677e7
@@ -311,66 +319,46 @@ int user_load(User *u) {
b677e7
         return 0;
b677e7
 }
b677e7
 
b677e7
-static int user_start_service(User *u) {
b677e7
+static void user_start_service(User *u) {
b677e7
         _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
b677e7
-        char *job;
b677e7
         int r;
b677e7
 
b677e7
         assert(u);
b677e7
 
b677e7
+        /* Start the service containing the "systemd --user" instance (user@.service). Note that we don't explicitly
b677e7
+         * start the per-user slice or the systemd-runtime-dir@.service instance, as those are pulled in both by
b677e7
+         * user@.service and the session scopes as dependencies. */
b677e7
+
b677e7
         u->service_job = mfree(u->service_job);
b677e7
 
b677e7
-        r = manager_start_unit(
b677e7
-                        u->manager,
b677e7
-                        u->service,
b677e7
-                        &error,
b677e7
-                        &job;;
b677e7
+        r = manager_start_unit(u->manager, u->service, &error, &u->service_job);
b677e7
         if (r < 0)
b677e7
                 /* we don't fail due to this, let's try to continue */
b677e7
                 log_full_errno(sd_bus_error_has_name(&error, BUS_ERROR_UNIT_MASKED) ? LOG_DEBUG : LOG_WARNING, r,
b677e7
                                "Failed to start user service '%s', ignoring: %s", u->service, bus_error_message(&error, r));
b677e7
-        else
b677e7
-                u->service_job = job;
b677e7
-
b677e7
-        return 0;
b677e7
 }
b677e7
 
b677e7
 int user_start(User *u) {
b677e7
-        int r;
b677e7
-
b677e7
         assert(u);
b677e7
 
b677e7
         if (u->started && !u->stopping)
b677e7
                 return 0;
b677e7
 
b677e7
-        /*
b677e7
-         * If u->stopping is set, the user is marked for removal and the slice
b677e7
-         * and service stop-jobs are queued. We have to clear that flag before
b677e7
-         * queing the start-jobs again. If they succeed, the user object can be
b677e7
-         * re-used just fine (pid1 takes care of job-ordering and proper
b677e7
-         * restart), but if they fail, we want to force another user_stop() so
b677e7
-         * possibly pending units are stopped.
b677e7
-         * Note that we don't clear u->started, as we have no clue what state
b677e7
-         * the user is in on failure here. Hence, we pretend the user is
b677e7
-         * running so it will be properly taken down by GC. However, we clearly
b677e7
-         * return an error from user_start() in that case, so no further
b677e7
-         * reference to the user is taken.
b677e7
-         */
b677e7
+        /* If u->stopping is set, the user is marked for removal and service stop-jobs are queued. We have to clear
b677e7
+         * that flag before queing the start-jobs again. If they succeed, the user object can be re-used just fine
b677e7
+         * (pid1 takes care of job-ordering and proper restart), but if they fail, we want to force another user_stop()
b677e7
+         * so possibly pending units are stopped. */
b677e7
         u->stopping = false;
b677e7
 
b677e7
         if (!u->started)
b677e7
                 log_debug("Starting services for new user %s.", u->name);
b677e7
 
b677e7
-        /* Save the user data so far, because pam_systemd will read the
b677e7
-         * XDG_RUNTIME_DIR out of it while starting up systemd --user.
b677e7
-         * We need to do user_save_internal() because we have not
b677e7
-         * "officially" started yet. */
b677e7
+        /* Save the user data so far, because pam_systemd will read the XDG_RUNTIME_DIR out of it while starting up
b677e7
+         * systemd --user.  We need to do user_save_internal() because we have not "officially" started yet. */
b677e7
         user_save_internal(u);
b677e7
 
b677e7
-        /* Spawn user systemd */
b677e7
-        r = user_start_service(u);
b677e7
-        if (r < 0)
b677e7
-                return r;
b677e7
+        /* Start user@UID.service */
b677e7
+        user_start_service(u);
b677e7
 
b677e7
         if (!u->started) {
b677e7
                 if (!dual_timestamp_is_set(&u->timestamp))
b677e7
@@ -385,68 +373,50 @@ int user_start(User *u) {
b677e7
         return 0;
b677e7
 }
b677e7
 
b677e7
-static int user_stop_slice(User *u) {
b677e7
+static void user_stop_service(User *u) {
b677e7
         _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
b677e7
-        char *job;
b677e7
         int r;
b677e7
 
b677e7
         assert(u);
b677e7
+        assert(u->service);
b677e7
 
b677e7
-        r = manager_stop_unit(u->manager, u->slice, &error, &job;;
b677e7
-        if (r < 0) {
b677e7
-                log_error("Failed to stop user slice: %s", bus_error_message(&error, r));
b677e7
-                return r;
b677e7
-        }
b677e7
+        /* The reverse of user_start_service(). Note that we only stop user@UID.service here, and let StopWhenUnneeded=
b677e7
+         * deal with the slice and the user-runtime-dir@.service instance. */
b677e7
 
b677e7
-        free(u->slice_job);
b677e7
-        u->slice_job = job;
b677e7
-
b677e7
-        return r;
b677e7
-}
b677e7
-
b677e7
-static int user_stop_service(User *u) {
b677e7
-        _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
b677e7
-        char *job;
b677e7
-        int r;
b677e7
-
b677e7
-        assert(u);
b677e7
-
b677e7
-        r = manager_stop_unit(u->manager, u->service, &error, &job;;
b677e7
-        if (r < 0) {
b677e7
-                log_error("Failed to stop user service: %s", bus_error_message(&error, r));
b677e7
-                return r;
b677e7
-        }
b677e7
+        u->service_job = mfree(u->service_job);
b677e7
 
b677e7
-        free_and_replace(u->service_job, job);
b677e7
-        return r;
b677e7
+        r = manager_stop_unit(u->manager, u->service, &error, &u->service_job);
b677e7
+        if (r < 0)
b677e7
+                log_warning_errno(r, "Failed to stop user service '%s', ignoring: %s", u->service, bus_error_message(&error, r));
b677e7
 }
b677e7
 
b677e7
 int user_stop(User *u, bool force) {
b677e7
         Session *s;
b677e7
-        int r = 0, k;
b677e7
+        int r = 0;
b677e7
         assert(u);
b677e7
 
b677e7
-        /* Stop jobs have already been queued */
b677e7
-        if (u->stopping) {
b677e7
+        /* This is called whenever we begin with tearing down a user record. It's called in two cases: explicit API
b677e7
+         * request to do so via the bus (in which case 'force' is true) and automatically due to GC, if there's no
b677e7
+         * session left pinning it (in which case 'force' is false). Note that this just initiates tearing down of the
b677e7
+         * user, the User object will remain in memory until user_finalize() is called, see below. */
b677e7
+
b677e7
+        if (!u->started)
b677e7
+                return 0;
b677e7
+
b677e7
+        if (u->stopping) { /* Stop jobs have already been queued */
b677e7
                 user_save(u);
b677e7
-                return r;
b677e7
+                return 0;
b677e7
         }
b677e7
 
b677e7
         LIST_FOREACH(sessions_by_user, s, u->sessions) {
b677e7
+                int k;
b677e7
+
b677e7
                 k = session_stop(s, force);
b677e7
                 if (k < 0)
b677e7
                         r = k;
b677e7
         }
b677e7
 
b677e7
-        /* Kill systemd */
b677e7
-        k = user_stop_service(u);
b677e7
-        if (k < 0)
b677e7
-                r = k;
b677e7
-
b677e7
-        /* Kill cgroup */
b677e7
-        k = user_stop_slice(u);
b677e7
-        if (k < 0)
b677e7
-                r = k;
b677e7
+        user_stop_service(u);
b677e7
 
b677e7
         u->stopping = true;
b677e7
 
b677e7
@@ -461,6 +431,9 @@ int user_finalize(User *u) {
b677e7
 
b677e7
         assert(u);
b677e7
 
b677e7
+        /* Called when the user is really ready to be freed, i.e. when all unit stop jobs and suchlike for it are
b677e7
+         * done. This is called as a result of an earlier user_done() when all jobs are completed. */
b677e7
+
b677e7
         if (u->started)
b677e7
                 log_debug("User %s logged out.", u->name);
b677e7
 
b677e7
@@ -554,9 +527,6 @@ bool user_may_gc(User *u, bool drop_not_started) {
b677e7
         if (user_check_linger_file(u) > 0)
b677e7
                 return false;
b677e7
 
b677e7
-        if (u->slice_job && manager_job_is_active(u->manager, u->slice_job))
b677e7
-                return false;
b677e7
-
b677e7
         if (u->service_job && manager_job_is_active(u->manager, u->service_job))
b677e7
                 return false;
b677e7
 
b677e7
@@ -581,7 +551,7 @@ UserState user_get_state(User *u) {
b677e7
         if (u->stopping)
b677e7
                 return USER_CLOSING;
b677e7
 
b677e7
-        if (!u->started || u->slice_job || u->service_job)
b677e7
+        if (!u->started || u->service_job)
b677e7
                 return USER_OPENING;
b677e7
 
b677e7
         if (u->sessions) {
b677e7
diff --git a/src/login/logind-user.h b/src/login/logind-user.h
b677e7
index 03e020b870..5e1f7b813a 100644
b677e7
--- a/src/login/logind-user.h
b677e7
+++ b/src/login/logind-user.h
b677e7
@@ -25,11 +25,12 @@ struct User {
b677e7
         char *name;
b677e7
         char *state_file;
b677e7
         char *runtime_path;
b677e7
-        char *slice;
b677e7
-        char *service;
b677e7
+
b677e7
+        char *slice;                     /* user-UID.slice */
b677e7
+        char *service;                   /* user@UID.service */
b677e7
+        char *runtime_dir_service;       /* user-runtime-dir@UID.service */
b677e7
 
b677e7
         char *service_job;
b677e7
-        char *slice_job;
b677e7
 
b677e7
         Session *display;
b677e7
 
b677e7
diff --git a/src/login/logind.c b/src/login/logind.c
b677e7
index 1b366cd55f..6c208c8e89 100644
b677e7
--- a/src/login/logind.c
b677e7
+++ b/src/login/logind.c
b677e7
@@ -1158,7 +1158,7 @@ static int manager_startup(Manager *m) {
b677e7
                 user_start(user);
b677e7
 
b677e7
         HASHMAP_FOREACH(session, m->sessions, i)
b677e7
-                session_start(session, NULL);
b677e7
+                (void) session_start(session, NULL, NULL);
b677e7
 
b677e7
         HASHMAP_FOREACH(inhibitor, m->inhibitors, i)
b677e7
                 inhibitor_start(inhibitor);
b677e7
diff --git a/src/login/logind.h b/src/login/logind.h
b677e7
index a6ebc9e152..ae4d74076b 100644
b677e7
--- a/src/login/logind.h
b677e7
+++ b/src/login/logind.h
b677e7
@@ -161,7 +161,7 @@ int bus_manager_shutdown_or_sleep_now_or_later(Manager *m, const char *unit_name
b677e7
 
b677e7
 int manager_send_changed(Manager *manager, const char *property, ...) _sentinel_;
b677e7
 
b677e7
-int manager_start_scope(Manager *manager, const char *scope, pid_t pid, const char *slice, const char *description, const char *after, const char *after2, sd_bus_message *more_properties, sd_bus_error *error, char **job);
b677e7
+int manager_start_scope(Manager *manager, const char *scope, pid_t pid, const char *slice, const char *description, char **wants, char **after, sd_bus_message *more_properties, sd_bus_error *error, char **job);
b677e7
 int manager_start_unit(Manager *manager, const char *unit, sd_bus_error *error, char **job);
b677e7
 int manager_stop_unit(Manager *manager, const char *unit, sd_bus_error *error, char **job);
b677e7
 int manager_abandon_scope(Manager *manager, const char *scope, sd_bus_error *error);