257 lines
6.7 KiB
C
257 lines
6.7 KiB
C
/*
|
|
* Copyright (C) Internet Systems Consortium, Inc. ("ISC")
|
|
*
|
|
* SPDX-License-Identifier: MPL-2.0
|
|
*
|
|
* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
* file, you can obtain one at https://mozilla.org/MPL/2.0/.
|
|
*
|
|
* See the COPYRIGHT file distributed with this work for additional
|
|
* information regarding copyright ownership.
|
|
*/
|
|
|
|
/*! \file */
|
|
|
|
#include <stdlib.h>
|
|
|
|
#include <isc/result.h>
|
|
#include <isc/util.h>
|
|
|
|
#include <dns/log.h>
|
|
|
|
#include <isccfg/log.h>
|
|
|
|
#include <ns/log.h>
|
|
|
|
#include <named/log.h>
|
|
|
|
#ifndef ISC_FACILITY
|
|
#define ISC_FACILITY LOG_DAEMON
|
|
#endif /* ifndef ISC_FACILITY */
|
|
|
|
/*%
|
|
* When adding a new category, be sure to add the appropriate
|
|
* \#define to <named/log.h> and to update the list in
|
|
* bin/check/check-tool.c.
|
|
*/
|
|
static isc_logcategory_t categories[] = { { "", 0 },
|
|
{ "unmatched", 0 },
|
|
{ NULL, 0 } };
|
|
|
|
/*%
|
|
* When adding a new module, be sure to add the appropriate
|
|
* \#define to <dns/log.h>.
|
|
*/
|
|
static isc_logmodule_t modules[] = {
|
|
{ "main", 0 }, { "server", 0 }, { "control", 0 }, { NULL, 0 }
|
|
};
|
|
|
|
isc_result_t
|
|
named_log_init(bool safe) {
|
|
isc_result_t result;
|
|
isc_logconfig_t *lcfg = NULL;
|
|
isc_mem_t *log_mctx = NULL;
|
|
|
|
named_g_categories = categories;
|
|
named_g_modules = modules;
|
|
|
|
/*
|
|
* Setup a logging context.
|
|
*/
|
|
isc_mem_create(&log_mctx);
|
|
isc_mem_setname(log_mctx, "named_log");
|
|
isc_log_create(log_mctx, &named_g_lctx, &lcfg);
|
|
isc_mem_detach(&log_mctx);
|
|
|
|
/*
|
|
* named-checktool.c:setup_logging() needs to be kept in sync.
|
|
*/
|
|
isc_log_registercategories(named_g_lctx, named_g_categories);
|
|
isc_log_registermodules(named_g_lctx, named_g_modules);
|
|
isc_log_setcontext(named_g_lctx);
|
|
dns_log_init(named_g_lctx);
|
|
dns_log_setcontext(named_g_lctx);
|
|
cfg_log_init(named_g_lctx);
|
|
ns_log_init(named_g_lctx);
|
|
ns_log_setcontext(named_g_lctx);
|
|
|
|
if (safe) {
|
|
named_log_setsafechannels(lcfg);
|
|
} else {
|
|
named_log_setdefaultchannels(lcfg);
|
|
}
|
|
|
|
result = named_log_setdefaultcategory(lcfg);
|
|
if (result != ISC_R_SUCCESS) {
|
|
goto cleanup;
|
|
}
|
|
|
|
named_log_setdefaultsslkeylogfile(lcfg);
|
|
|
|
return ISC_R_SUCCESS;
|
|
|
|
cleanup:
|
|
isc_log_destroy(&named_g_lctx);
|
|
isc_log_setcontext(NULL);
|
|
dns_log_setcontext(NULL);
|
|
|
|
return result;
|
|
}
|
|
|
|
void
|
|
named_log_setdefaultchannels(isc_logconfig_t *lcfg) {
|
|
isc_logdestination_t destination;
|
|
|
|
/*
|
|
* By default, the logging library makes "default_debug" log to
|
|
* stderr. In BIND, we want to override this and log to named.run
|
|
* instead, unless the -g option was given.
|
|
*/
|
|
if (!named_g_logstderr) {
|
|
destination.file.stream = NULL;
|
|
destination.file.name = "named.run";
|
|
destination.file.versions = ISC_LOG_ROLLNEVER;
|
|
destination.file.maximum_size = 0;
|
|
isc_log_createchannel(lcfg, "default_debug", ISC_LOG_TOFILE,
|
|
ISC_LOG_DYNAMIC, &destination,
|
|
ISC_LOG_PRINTTIME | ISC_LOG_DEBUGONLY);
|
|
}
|
|
|
|
if (named_g_logfile != NULL) {
|
|
destination.file.stream = NULL;
|
|
destination.file.name = named_g_logfile;
|
|
destination.file.versions = ISC_LOG_ROLLNEVER;
|
|
destination.file.maximum_size = 0;
|
|
isc_log_createchannel(lcfg, "default_logfile", ISC_LOG_TOFILE,
|
|
ISC_LOG_DYNAMIC, &destination,
|
|
ISC_LOG_PRINTTIME |
|
|
ISC_LOG_PRINTCATEGORY |
|
|
ISC_LOG_PRINTLEVEL);
|
|
}
|
|
|
|
#if ISC_FACILITY != LOG_DAEMON
|
|
destination.facility = ISC_FACILITY;
|
|
isc_log_createchannel(lcfg, "default_syslog", ISC_LOG_TOSYSLOG,
|
|
ISC_LOG_INFO, &destination, 0);
|
|
#endif /* if ISC_FACILITY != LOG_DAEMON */
|
|
|
|
/*
|
|
* Set the initial debug level.
|
|
*/
|
|
isc_log_setdebuglevel(named_g_lctx, named_g_debuglevel);
|
|
}
|
|
|
|
void
|
|
named_log_setsafechannels(isc_logconfig_t *lcfg) {
|
|
isc_logdestination_t destination;
|
|
|
|
if (!named_g_logstderr) {
|
|
isc_log_createchannel(lcfg, "default_debug", ISC_LOG_TONULL,
|
|
ISC_LOG_DYNAMIC, NULL, 0);
|
|
|
|
/*
|
|
* Setting the debug level to zero should get the output
|
|
* discarded a bit faster.
|
|
*/
|
|
isc_log_setdebuglevel(named_g_lctx, 0);
|
|
} else {
|
|
isc_log_setdebuglevel(named_g_lctx, named_g_debuglevel);
|
|
}
|
|
|
|
if (named_g_logfile != NULL) {
|
|
destination.file.stream = NULL;
|
|
destination.file.name = named_g_logfile;
|
|
destination.file.versions = ISC_LOG_ROLLNEVER;
|
|
destination.file.maximum_size = 0;
|
|
isc_log_createchannel(lcfg, "default_logfile", ISC_LOG_TOFILE,
|
|
ISC_LOG_DYNAMIC, &destination,
|
|
ISC_LOG_PRINTTIME |
|
|
ISC_LOG_PRINTCATEGORY |
|
|
ISC_LOG_PRINTLEVEL);
|
|
}
|
|
|
|
#if ISC_FACILITY != LOG_DAEMON
|
|
destination.facility = ISC_FACILITY;
|
|
isc_log_createchannel(lcfg, "default_syslog", ISC_LOG_TOSYSLOG,
|
|
ISC_LOG_INFO, &destination, 0);
|
|
#endif /* if ISC_FACILITY != LOG_DAEMON */
|
|
}
|
|
|
|
/*
|
|
* If the SSLKEYLOGFILE environment variable is set, TLS pre-master secrets are
|
|
* logged (for debugging purposes) to the file whose path is provided in that
|
|
* variable. Set up a default logging channel which maintains up to 10 files
|
|
* containing TLS pre-master secrets, each up to 100 MB in size. If the
|
|
* SSLKEYLOGFILE environment variable is set to the string "config", suppress
|
|
* creation of the default channel, allowing custom logging channel
|
|
* configuration for TLS pre-master secrets to be provided via the "logging"
|
|
* stanza in the configuration file.
|
|
*/
|
|
void
|
|
named_log_setdefaultsslkeylogfile(isc_logconfig_t *lcfg) {
|
|
const char *sslkeylogfile_path = getenv("SSLKEYLOGFILE");
|
|
isc_logdestination_t destination = {
|
|
.file = {
|
|
.name = sslkeylogfile_path,
|
|
.versions = 10,
|
|
.suffix = isc_log_rollsuffix_timestamp,
|
|
.maximum_size = 100 * 1024 * 1024,
|
|
},
|
|
};
|
|
isc_result_t result;
|
|
|
|
if (sslkeylogfile_path == NULL ||
|
|
strcmp(sslkeylogfile_path, "config") == 0)
|
|
{
|
|
return;
|
|
}
|
|
|
|
isc_log_createchannel(lcfg, "default_sslkeylogfile", ISC_LOG_TOFILE,
|
|
ISC_LOG_INFO, &destination, 0);
|
|
result = isc_log_usechannel(lcfg, "default_sslkeylogfile",
|
|
ISC_LOGCATEGORY_SSLKEYLOG, NULL);
|
|
RUNTIME_CHECK(result == ISC_R_SUCCESS);
|
|
}
|
|
|
|
isc_result_t
|
|
named_log_setdefaultcategory(isc_logconfig_t *lcfg) {
|
|
isc_result_t result = ISC_R_SUCCESS;
|
|
|
|
result = isc_log_usechannel(lcfg, "default_debug",
|
|
ISC_LOGCATEGORY_DEFAULT, NULL);
|
|
if (result != ISC_R_SUCCESS) {
|
|
goto cleanup;
|
|
}
|
|
|
|
if (!named_g_logstderr) {
|
|
if (named_g_logfile != NULL) {
|
|
result = isc_log_usechannel(lcfg, "default_logfile",
|
|
ISC_LOGCATEGORY_DEFAULT,
|
|
NULL);
|
|
} else if (!named_g_nosyslog) {
|
|
result = isc_log_usechannel(lcfg, "default_syslog",
|
|
ISC_LOGCATEGORY_DEFAULT,
|
|
NULL);
|
|
}
|
|
}
|
|
|
|
cleanup:
|
|
return result;
|
|
}
|
|
|
|
isc_result_t
|
|
named_log_setunmatchedcategory(isc_logconfig_t *lcfg) {
|
|
isc_result_t result;
|
|
|
|
result = isc_log_usechannel(lcfg, "null", NAMED_LOGCATEGORY_UNMATCHED,
|
|
NULL);
|
|
return result;
|
|
}
|
|
|
|
void
|
|
named_log_shutdown(void) {
|
|
isc_log_destroy(&named_g_lctx);
|
|
isc_log_setcontext(NULL);
|
|
dns_log_setcontext(NULL);
|
|
}
|