Fix journald logging via "log stdout" #17775
Draft
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
gromit1811
force-pushed
the
pr_journald_bugfix
branch
from
54a99f4 to
bff5a50
Compare
gromit1811
force-pushed
the
pr_journald_bugfix
branch
from
bff5a50 to
a4f92e2
Compare
When changing the log threshold (prio_min) using zlog_5424_apply_meta(), try to open the log destination using zlog_5424_open() if we haven't done so before. Without this, we might never open the destination at all, because when zlog_5424_apply_dst() gets called (which so far was the only initial caller of zlog_5424_open()), chances are that prio_min is still at its initial value of ZLOG_DISABLED, causing it to skip the call to zlog_5424_open(). Signed-off-by: Martin Buck <[email protected]>
In zlog_5424_cycle(), struct zlt_5424 *zlt only points to valid memory when the passed file descriptor is >= 0 (and passing -1 seems to be a supported use case). So we shouldn't try to compute the address of its zt member when zlt is NULL. Signed-off-by: Martin Buck <[email protected]>
gromit1811
force-pushed
the
pr_journald_bugfix
branch
from
a4f92e2 to
59ee9d2
Compare
|
Set to draft. While this PR should be ready for merging, a fix for the privs assertion failure probably should go in first to avoid crashing staticd and mgmtd. I could try a PR for that as well, but I really don't know which of the following options is the one pick (see above):
And since privs are security-sensitive, I'd rather not start guessing here 😉 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
I tried to configure logging to systemd's journald using the method described in the documentation: Simply
log stdoutinfrr.conf. But besides log messages from frrinit.sh and watchfrr, I saw no log messages from the actual routing daemons.Debugging this revealed that FRR correctly notices that stdout is connected to journald (sd_stdout_is_journal==true), causing log_vty_init() to call zlog_5424_init() and zlog_5424_apply_dst(). But by the time zlog_5424_apply_dst() gets called, zt_stdout_journald.prio_min still is ZLOG_DISABLED, causing it to skip the call to zlog_5424_open(). And when frr.conf gets read later on, my
log stdoutstatement sets .prio_min to LOG_DEBUG and causes a call to log_stdout_apply_level() and zlog_5424_apply_meta(), but the latter doesn't reattempt the zlog_5424_open(), so logs from routing daemons end up nowhere.This PR fixes zlog_5424_apply_dst() and causes it to retry zlog_5424_open() after setting .prio_min unless the log handler is already active.
This PR also fixes a cosmetic issue in zlog_5424_cycle() which I noticed while debugging this. When called with fd=-1, it potentially passes a bogus pointer &zlt->zt to zlog_target_replace() because zlt is NULL in that case. In practice, this didn't cause problems because zt is the first member of zlt, so &zlt->zt is NULL as well when zlt is NULL and zlog_target_replace() properly handles NULL pointers. But it's probably not such a good idea to rely on the offset of zt. The commit tries to make it a bit more obvious/explicit what's happening here.
NOTE: After applying this PR, you'll probably notice that some routing daemons crash during startup (pathd, staticd). This is due to an assertion failure here:
frr/lib/privs.c
Line 214 in 8ca4c3d
zprivs_change_caps() gets called indirectly by frr_with_privs (...) {...} in zlog_5424_open() and this triggers the assertion failure for routing daemons without special capabilities like here:
frr/staticd/static_main.c
Line 36 in 8ca4c3d
How is this supposed to work? Are functions in lib allowed to use frr_with_privs without knowing what capabilities the routing daemon they're linked to has? Should all routing daemons have a minimum set of capabilities so that the assertion doesn't fail (and zlog_5424_open() can actually perform the desired operation)? Should the assertion failure be converted to a "do nothing return"?
@eqvinox Maybe you have an idea here - you seem to be the author of most of the 5424 code?
For testing purposes, I avoided the assertion failure by patching zcaps2sys() such that it never returns NULL, but that's probably not the proper fix.