[systemd-devel] Bump: Testing LogFilterPatterns= on user-level services
Demi Marie Obenour
demi at invisiblethingslab.com
Fri Jan 26 19:54:05 UTC 2024
On Fri, Jan 26, 2024 at 09:11:24AM +0100, Lennart Poettering wrote:
> On Do, 25.01.24 22:29, Farblos (akfkqu.9df7rp at vodafonemail.de) wrote:
>
> > Hi.
> >
> > I sent below mail some week ago, Barry's reply left me unsure as to
> > whether this would be a bug or not. I still tend do assume that I'm
> > "doing something wrong".
>
> This is currently not supported. The filters are communicated by the
> service manager to journald via xattrs on the cgroups, and journald
> will only consider those for cgroups owned by root, i.e. not on
> cgroups delegated to unpriv users like this done for systemd --user
> instances.
>
> Interepreting arbitrary regexes configured by unpriv code in priv code
> comes at some risk,. becose afair constructing them can come at O(2^n)
> time, i.e. a rogue regex could make use consume unbounded time on
> processing journal messages.
Which regex engine is used? glibc’s engine is not safe for use with
untrusted input, but Rust’s is, so that might be an option in the
future. It isn’t OOM-safe, though.
--
Sincerely,
Demi Marie Obenour (she/her/hers)
Invisible Things Lab
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <https://lists.freedesktop.org/archives/systemd-devel/attachments/20240126/541c8d50/attachment.sig>
More information about the systemd-devel
mailing list