[systemd-bugs] [Bug 88554] New: systemd-sysusers: should not log to host journal when bootstrapping a guest (e.g. in a chroot)

bugzilla-daemon at freedesktop.org bugzilla-daemon at freedesktop.org
Sun Jan 18 04:59:32 PST 2015 

https://bugs.freedesktop.org/show_bug.cgi?id=88554

            Bug ID: 88554
           Summary: systemd-sysusers: should not log to host journal when
                    bootstrapping a guest (e.g. in a chroot)
           Product: systemd
           Version: unspecified
          Hardware: x86-64 (AMD64)
                OS: Linux (All)
            Status: NEW
          Severity: normal
          Priority: medium
         Component: general
          Assignee: systemd-bugs at lists.freedesktop.org
          Reporter: a.c.kalker at gmail.com
        QA Contact: systemd-bugs at lists.freedesktop.org

On host Arch Linux x86_64, when I bootstrap a guest using `pacstrap`,
`systemd-sysusers` gets called during the installation of the systemd package
in the chroot used by `pacstrap`.
The user / group setup done by `systemd-sysusers` works fine, except that
messages about user and group creation end up being logged in the host's
journal, which can be confusing (and might trip IDS systems which monitor the
host's journal for signs of suspicious activity).

(Note that during bootstraps like this, certain 'API' directories, such as
`/run`, are bind-mounted into the chroot. I guess that this is how
`systemd-sysusers` running in the chroot manages to send log messages to the
host.)


I see no reason for `systemd-sysusers` to log information like this to the
journal except when run as part of a unit started during a "first boot",
"out-of-box" experience or whatever. When started manually, output of messages
to standard output / standard error should be sufficient.

Please consider implementing a commandline option to specify how and where
`systemd-sysusers` should log its messages.

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freedesktop.org/archives/systemd-bugs/attachments/20150118/e78b20b5/attachment.html>

More information about the systemd-bugs mailing list