git.ipfire.org Git - thirdparty/systemd.git/commit

author	Lorenz Bauer <lmb@cloudflare.com>
	Mon, 4 Nov 2019 16:35:46 +0000 (16:35 +0000)
committer	Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>
	Tue, 5 Nov 2019 09:41:03 +0000 (10:41 +0100)
commit	09d0b46ab61bebafe5bdc1be95ee153dfb13d6bc
tree	b288dc511429779f576be81e80929bd0a9960622	tree \| snapshot
parent	d7d31692bf7cde5dce7f4ed3cae429a5b302a9f0	commit \| diff

journal: refresh cached credentials of stdout streams

journald assumes that getsockopt(SO_PEERCRED) correctly identifies the
process on the remote end of the socket. However, this is incorrect
according to man 7 socket:

The returned credentials are those that were in effect at the
time of the call to connect(2) or socketpair(2).

This becomes a problem when a new process inherits the stdout stream
from a parent. First, log messages from the child process will
be attributed to the parent. Second, the struct ucred used by journald
becomes invalid as soon as the parent exits. Further sendmsg calls then
fail with ENOENT. Logs for the child process then vanish from the journal.

Fix this by using recvmsg on the stdout stream, and refreshing the cached
struct ucred if SCM_CREDENTIALS indicate a new process.

Fixes #13708

src/journal/journald-stream.c		diff \| blob \| blame \| history
test/TEST-04-JOURNAL/test-journal.sh		diff \| blob \| blame \| history