]> git.ipfire.org Git - thirdparty/systemd.git/blob - src/journal/journald-syslog.c
projects / thirdparty / systemd.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
util-lib: split out printf() helpers to stdio-util.h
[thirdparty/systemd.git] / src / journal / journald-syslog.c
1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
2
3 /***
4 This file is part of systemd.
5
6 Copyright 2011 Lennart Poettering
7
8 systemd is free software; you can redistribute it and/or modify it
9 under the terms of the GNU Lesser General Public License as published by
10 the Free Software Foundation; either version 2.1 of the License, or
11 (at your option) any later version.
12
13 systemd is distributed in the hope that it will be useful, but
14 WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 Lesser General Public License for more details.
17
18 You should have received a copy of the GNU Lesser General Public License
19 along with systemd; If not, see <http://www.gnu.org/licenses/>.
20 ***/
21
22 #include <stddef.h>
23 #include <sys/epoll.h>
24 #include <unistd.h>
25
26 #include "sd-messages.h"
27
28 #include "fd-util.h"
29 #include "formats-util.h"
30 #include "io-util.h"
31 #include "journald-console.h"
32 #include "journald-kmsg.h"
33 #include "journald-server.h"
34 #include "journald-syslog.h"
35 #include "journald-wall.h"
36 #include "process-util.h"
37 #include "selinux-util.h"
38 #include "socket-util.h"
39 #include "stdio-util.h"
40 #include "string-util.h"
41 #include "syslog-util.h"
42
43 /* Warn once every 30s if we missed syslog message */
44 #define WARN_FORWARD_SYSLOG_MISSED_USEC (30 * USEC_PER_SEC)
45
46 static void forward_syslog_iovec(Server *s, const struct iovec *iovec, unsigned n_iovec, const struct ucred *ucred, const struct timeval *tv) {
47
48 static const union sockaddr_union sa = {
49 .un.sun_family = AF_UNIX,
50 .un.sun_path = "/run/systemd/journal/syslog",
51 };
52 struct msghdr msghdr = {
53 .msg_iov = (struct iovec *) iovec,
54 .msg_iovlen = n_iovec,
55 .msg_name = (struct sockaddr*) &sa.sa,
56 .msg_namelen = offsetof(union sockaddr_union, un.sun_path)
57 + strlen("/run/systemd/journal/syslog"),
58 };
59 struct cmsghdr *cmsg;
60 union {
61 struct cmsghdr cmsghdr;
62 uint8_t buf[CMSG_SPACE(sizeof(struct ucred))];
63 } control;
64
65 assert(s);
66 assert(iovec);
67 assert(n_iovec > 0);
68
69 if (ucred) {
70 zero(control);
71 msghdr.msg_control = &control;
72 msghdr.msg_controllen = sizeof(control);
73
74 cmsg = CMSG_FIRSTHDR(&msghdr);
75 cmsg->cmsg_level = SOL_SOCKET;
76 cmsg->cmsg_type = SCM_CREDENTIALS;
77 cmsg->cmsg_len = CMSG_LEN(sizeof(struct ucred));
78 memcpy(CMSG_DATA(cmsg), ucred, sizeof(struct ucred));
79 msghdr.msg_controllen = cmsg->cmsg_len;
80 }
81
82 /* Forward the syslog message we received via /dev/log to
83 * /run/systemd/syslog. Unfortunately we currently can't set
84 * the SO_TIMESTAMP auxiliary data, and hence we don't. */
85
86 if (sendmsg(s->syslog_fd, &msghdr, MSG_NOSIGNAL) >= 0)
87 return;
88
89 /* The socket is full? I guess the syslog implementation is
90 * too slow, and we shouldn't wait for that... */
91 if (errno == EAGAIN) {
92 s->n_forward_syslog_missed++;
93 return;
94 }
95
96 if (ucred && (errno == ESRCH || errno == EPERM)) {
97 struct ucred u;
98
99 /* Hmm, presumably the sender process vanished
100 * by now, or we don't have CAP_SYS_AMDIN, so
101 * let's fix it as good as we can, and retry */
102
103 u = *ucred;
104 u.pid = getpid();
105 memcpy(CMSG_DATA(cmsg), &u, sizeof(struct ucred));
106
107 if (sendmsg(s->syslog_fd, &msghdr, MSG_NOSIGNAL) >= 0)
108 return;
109
110 if (errno == EAGAIN) {
111 s->n_forward_syslog_missed++;
112 return;
113 }
114 }
115
116 if (errno != ENOENT)
117 log_debug_errno(errno, "Failed to forward syslog message: %m");
118 }
119
120 static void forward_syslog_raw(Server *s, int priority, const char *buffer, const struct ucred *ucred, const struct timeval *tv) {
121 struct iovec iovec;
122
123 assert(s);
124 assert(buffer);
125
126 if (LOG_PRI(priority) > s->max_level_syslog)
127 return;
128
129 IOVEC_SET_STRING(iovec, buffer);
130 forward_syslog_iovec(s, &iovec, 1, ucred, tv);
131 }
132
133 void server_forward_syslog(Server *s, int priority, const char *identifier, const char *message, const struct ucred *ucred, const struct timeval *tv) {
134 struct iovec iovec[5];
135 char header_priority[DECIMAL_STR_MAX(priority) + 3], header_time[64],
136 header_pid[sizeof("[]: ")-1 + DECIMAL_STR_MAX(pid_t) + 1];
137 int n = 0;
138 time_t t;
139 struct tm *tm;
140 char *ident_buf = NULL;
141
142 assert(s);
143 assert(priority >= 0);
144 assert(priority <= 999);
145 assert(message);
146
147 if (LOG_PRI(priority) > s->max_level_syslog)
148 return;
149
150 /* First: priority field */
151 xsprintf(header_priority, "<%i>", priority);
152 IOVEC_SET_STRING(iovec[n++], header_priority);
153
154 /* Second: timestamp */
155 t = tv ? tv->tv_sec : ((time_t) (now(CLOCK_REALTIME) / USEC_PER_SEC));
156 tm = localtime(&t);
157 if (!tm)
158 return;
159 if (strftime(header_time, sizeof(header_time), "%h %e %T ", tm) <= 0)
160 return;
161 IOVEC_SET_STRING(iovec[n++], header_time);
162
163 /* Third: identifier and PID */
164 if (ucred) {
165 if (!identifier) {
166 get_process_comm(ucred->pid, &ident_buf);
167 identifier = ident_buf;
168 }
169
170 xsprintf(header_pid, "["PID_FMT"]: ", ucred->pid);
171
172 if (identifier)
173 IOVEC_SET_STRING(iovec[n++], identifier);
174
175 IOVEC_SET_STRING(iovec[n++], header_pid);
176 } else if (identifier) {
177 IOVEC_SET_STRING(iovec[n++], identifier);
178 IOVEC_SET_STRING(iovec[n++], ": ");
179 }
180
181 /* Fourth: message */
182 IOVEC_SET_STRING(iovec[n++], message);
183
184 forward_syslog_iovec(s, iovec, n, ucred, tv);
185
186 free(ident_buf);
187 }
188
189 int syslog_fixup_facility(int priority) {
190
191 if ((priority & LOG_FACMASK) == 0)
192 return (priority & LOG_PRIMASK) | LOG_USER;
193
194 return priority;
195 }
196
197 size_t syslog_parse_identifier(const char **buf, char **identifier, char **pid) {
198 const char *p;
199 char *t;
200 size_t l, e;
201
202 assert(buf);
203 assert(identifier);
204 assert(pid);
205
206 p = *buf;
207
208 p += strspn(p, WHITESPACE);
209 l = strcspn(p, WHITESPACE);
210
211 if (l <= 0 ||
212 p[l-1] != ':')
213 return 0;
214
215 e = l;
216 l--;
217
218 if (p[l-1] == ']') {
219 size_t k = l-1;
220
221 for (;;) {
222
223 if (p[k] == '[') {
224 t = strndup(p+k+1, l-k-2);
225 if (t)
226 *pid = t;
227
228 l = k;
229 break;
230 }
231
232 if (k == 0)
233 break;
234
235 k--;
236 }
237 }
238
239 t = strndup(p, l);
240 if (t)
241 *identifier = t;
242
243 if (strchr(WHITESPACE, p[e]))
244 e++;
245 *buf = p + e;
246 return e;
247 }
248
249 static void syslog_skip_date(char **buf) {
250 enum {
251 LETTER,
252 SPACE,
253 NUMBER,
254 SPACE_OR_NUMBER,
255 COLON
256 } sequence[] = {
257 LETTER, LETTER, LETTER,
258 SPACE,
259 SPACE_OR_NUMBER, NUMBER,
260 SPACE,
261 SPACE_OR_NUMBER, NUMBER,
262 COLON,
263 SPACE_OR_NUMBER, NUMBER,
264 COLON,
265 SPACE_OR_NUMBER, NUMBER,
266 SPACE
267 };
268
269 char *p;
270 unsigned i;
271
272 assert(buf);
273 assert(*buf);
274
275 p = *buf;
276
277 for (i = 0; i < ELEMENTSOF(sequence); i++, p++) {
278
279 if (!*p)
280 return;
281
282 switch (sequence[i]) {
283
284 case SPACE:
285 if (*p != ' ')
286 return;
287 break;
288
289 case SPACE_OR_NUMBER:
290 if (*p == ' ')
291 break;
292
293 /* fall through */
294
295 case NUMBER:
296 if (*p < '0' || *p > '9')
297 return;
298
299 break;
300
301 case LETTER:
302 if (!(*p >= 'A' && *p <= 'Z') &&
303 !(*p >= 'a' && *p <= 'z'))
304 return;
305
306 break;
307
308 case COLON:
309 if (*p != ':')
310 return;
311 break;
312
313 }
314 }
315
316 *buf = p;
317 }
318
319 void server_process_syslog_message(
320 Server *s,
321 const char *buf,
322 const struct ucred *ucred,
323 const struct timeval *tv,
324 const char *label,
325 size_t label_len) {
326
327 char syslog_priority[sizeof("PRIORITY=") + DECIMAL_STR_MAX(int)],
328 syslog_facility[sizeof("SYSLOG_FACILITY") + DECIMAL_STR_MAX(int)];
329 const char *message = NULL, *syslog_identifier = NULL, *syslog_pid = NULL;
330 struct iovec iovec[N_IOVEC_META_FIELDS + 6];
331 unsigned n = 0;
332 int priority = LOG_USER | LOG_INFO;
333 _cleanup_free_ char *identifier = NULL, *pid = NULL;
334 const char *orig;
335
336 assert(s);
337 assert(buf);
338
339 orig = buf;
340 syslog_parse_priority(&buf, &priority, true);
341
342 if (s->forward_to_syslog)
343 forward_syslog_raw(s, priority, orig, ucred, tv);
344
345 syslog_skip_date((char**) &buf);
346 syslog_parse_identifier(&buf, &identifier, &pid);
347
348 if (s->forward_to_kmsg)
349 server_forward_kmsg(s, priority, identifier, buf, ucred);
350
351 if (s->forward_to_console)
352 server_forward_console(s, priority, identifier, buf, ucred);
353
354 if (s->forward_to_wall)
355 server_forward_wall(s, priority, identifier, buf, ucred);
356
357 IOVEC_SET_STRING(iovec[n++], "_TRANSPORT=syslog");
358
359 sprintf(syslog_priority, "PRIORITY=%i", priority & LOG_PRIMASK);
360 IOVEC_SET_STRING(iovec[n++], syslog_priority);
361
362 if (priority & LOG_FACMASK) {
363 sprintf(syslog_facility, "SYSLOG_FACILITY=%i", LOG_FAC(priority));
364 IOVEC_SET_STRING(iovec[n++], syslog_facility);
365 }
366
367 if (identifier) {
368 syslog_identifier = strjoina("SYSLOG_IDENTIFIER=", identifier);
369 if (syslog_identifier)
370 IOVEC_SET_STRING(iovec[n++], syslog_identifier);
371 }
372
373 if (pid) {
374 syslog_pid = strjoina("SYSLOG_PID=", pid);
375 if (syslog_pid)
376 IOVEC_SET_STRING(iovec[n++], syslog_pid);
377 }
378
379 message = strjoina("MESSAGE=", buf);
380 if (message)
381 IOVEC_SET_STRING(iovec[n++], message);
382
383 server_dispatch_message(s, iovec, n, ELEMENTSOF(iovec), ucred, tv, label, label_len, NULL, priority, 0);
384 }
385
386 int server_open_syslog_socket(Server *s) {
387 static const int one = 1;
388 int r;
389
390 assert(s);
391
392 if (s->syslog_fd < 0) {
393 static const union sockaddr_union sa = {
394 .un.sun_family = AF_UNIX,
395 .un.sun_path = "/run/systemd/journal/dev-log",
396 };
397
398 s->syslog_fd = socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0);
399 if (s->syslog_fd < 0)
400 return log_error_errno(errno, "socket() failed: %m");
401
402 unlink(sa.un.sun_path);
403
404 r = bind(s->syslog_fd, &sa.sa, offsetof(union sockaddr_union, un.sun_path) + strlen(sa.un.sun_path));
405 if (r < 0)
406 return log_error_errno(errno, "bind(%s) failed: %m", sa.un.sun_path);
407
408 (void) chmod(sa.un.sun_path, 0666);
409 } else
410 fd_nonblock(s->syslog_fd, 1);
411
412 r = setsockopt(s->syslog_fd, SOL_SOCKET, SO_PASSCRED, &one, sizeof(one));
413 if (r < 0)
414 return log_error_errno(errno, "SO_PASSCRED failed: %m");
415
416 #ifdef HAVE_SELINUX
417 if (mac_selinux_use()) {
418 r = setsockopt(s->syslog_fd, SOL_SOCKET, SO_PASSSEC, &one, sizeof(one));
419 if (r < 0)
420 log_warning_errno(errno, "SO_PASSSEC failed: %m");
421 }
422 #endif
423
424 r = setsockopt(s->syslog_fd, SOL_SOCKET, SO_TIMESTAMP, &one, sizeof(one));
425 if (r < 0)
426 return log_error_errno(errno, "SO_TIMESTAMP failed: %m");
427
428 r = sd_event_add_io(s->event, &s->syslog_event_source, s->syslog_fd, EPOLLIN, server_process_datagram, s);
429 if (r < 0)
430 return log_error_errno(r, "Failed to add syslog server fd to event loop: %m");
431
432 return 0;
433 }
434
435 void server_maybe_warn_forward_syslog_missed(Server *s) {
436 usec_t n;
437 assert(s);
438
439 if (s->n_forward_syslog_missed <= 0)
440 return;
441
442 n = now(CLOCK_MONOTONIC);
443 if (s->last_warn_forward_syslog_missed + WARN_FORWARD_SYSLOG_MISSED_USEC > n)
444 return;
445
446 server_driver_message(s, SD_MESSAGE_FORWARD_SYSLOG_MISSED, "Forwarding to syslog missed %u messages.", s->n_forward_syslog_missed);
447
448 s->n_forward_syslog_missed = 0;
449 s->last_warn_forward_syslog_missed = n;
450 }
Unnamed repository; edit this file 'description' to name the repository.