Fix waiting for new events #10593
Fix waiting for new events #10593
Conversation
kvch
added
in progress
|
I don't see anything egregious in what you are adding so I think you should just add these syscalls to the default policy in libbeat. Confirming what you said in the description, the diff is: |
kvch
force-pushed
the
fix-journalbeat-seccomp-policy
branch
from
81393c8 to
cff68ba
Compare
| } | ||
|
|
||
| // error while reading next entry | ||
| if c < 0 { |
There was a problem hiding this comment.
according to docs c is uint64. Why does this compile?
There was a problem hiding this comment.
The parameter of sd_journal_wait is uint64. Its return value is int.
There was a problem hiding this comment.
This c is not from the call to Wait, but from Next. You even shadow/redefine c when calling Wait.
Sometimes it's a good idea not to shadow/reuse variable names.
See: https://godoc.org/github.com/coreos/go-systemd/sdjournal#Journal.Next
Seems like sdjournal API is somewhat inconsistent here.
How about wrapping Wait, so to reduce the chance of confusion (and reducing complexity in the Next method itself):
func journalWait(j *Journal, dur time.Duration) (has bool, err error) {
switch c := j.Wait(dur) {
case sdjournal.SD_JOURNAL_NOP:
return false, nil
case sdjournal.SD_JOURNAL_APPEND, sdjournal.SD_JOURNAL_INVALIDATE:
return true, nil
default:
if c < 0 {
return false, fmt.Errorf("error while waiting for event: %+v", syscall.Errno(-c))
}
return false, fmt.Errorf("Unknown return code from Wait: %d\n", c)
}
}
This can be used like:
for {
...
c, err := r.journal.Next()
if err != nil && err != io.EOF {
return nil, err
}
if c == 0 {
has, err := journalWait(r.journal, 100 * time.Millisecond)
if err != nil {
return nil, err
}
if !has {
continue
}
}
...
}
Interestingly all other calls on journal properly return error values, but Wait does not. Was Wait added by the original developers or some contributor?
Maybe we can open a PR/issue to enhance consistency in the sdjournal API. And add support for getting the FD itself. Plus expose some other missing functions like sd_journal_process & co.
There was a problem hiding this comment.
TIL go compiler does not warn/error on not-satisfiable comparisons on uint types: https://play.golang.org/p/g0NFrotaKd-
There was a problem hiding this comment.
Question: What shall we do if Wait returns an unknown value >0?
- treat it as error (my sample code) ?
- treat it like SD_JOURNAL_APPEND (current implementation) ?
- treat it like SD_JOURNAL_NOP ?
There was a problem hiding this comment.
In my implementation (or at least what I intended to implement before messing up with copy-pasting my previous code... :D), an error is logged and nil is returned from Next. Thus, the reader tries to read a new entry again.
There was a problem hiding this comment.
Wait seems like it was added later, when sd-journal.h became a dependency.
I would like to open a PR there to add support for the functions we need to check for events without using Wait. (As you proposed it in a previous PR.)
There was a problem hiding this comment.
This conditional c < 0 is still a no-op, as it will always return false. Let's remove it.
kvch
force-pushed
the
fix-journalbeat-seccomp-policy
branch
from
165a817 to
eb2d1a8
Compare
|
Failing tests are unrelated. |
|
Failing tests are still unrelated. |
kvch
force-pushed
the
fix-journalbeat-seccomp-policy
branch
from
5b1a08f to
b679db7
Compare
|
Failing tests are unrelated. |
* Adding more syscalls to the whitelist in `libbeat` I have removed the seccomp policy of `journalbeat`. Four new syscalls has been added to the common policy instead: `fstatfs`, `getrlimit`, `ppoll` and `splice`. * Eliminate possible deadlock when closing the client * Previously, `journalbeat` was unable to read new entries from the journal after it has been started. Now it is fixed, and the reader code is much simpler now. * updated vendored `github.com/coreos/go-systemd/sdjournal` to latest release (no changes) (cherry picked from commit 1dc58e0)
kvch
added
v7.2.0
and removed
needs_backport
* Adding more syscalls to the whitelist in `libbeat` I have removed the seccomp policy of `journalbeat`. Four new syscalls has been added to the common policy instead: `fstatfs`, `getrlimit`, `ppoll` and `splice`. * Eliminate possible deadlock when closing the client * Previously, `journalbeat` was unable to read new entries from the journal after it has been started. Now it is fixed, and the reader code is much simpler now. * updated vendored `github.com/coreos/go-systemd/sdjournal` to latest release (no changes) (cherry picked from commit 1dc58e0)
* Adding more syscalls to the whitelist in `libbeat` I have removed the seccomp policy of `journalbeat`. Four new syscalls has been added to the common policy instead: `fstatfs`, `getrlimit`, `ppoll` and `splice`. * Eliminate possible deadlock when closing the client * Previously, `journalbeat` was unable to read new entries from the journal after it has been started. Now it is fixed, and the reader code is much simpler now. * updated vendored `github.com/coreos/go-systemd/sdjournal` to latest release (no changes) (cherry picked from commit 1dc58e0)
* Adding more syscalls to the whitelist in `libbeat` I have removed the seccomp policy of `journalbeat`. Four new syscalls has been added to the common policy instead: `fstatfs`, `getrlimit`, `ppoll` and `splice`. * Eliminate possible deadlock when closing the client * Previously, `journalbeat` was unable to read new entries from the journal after it has been started. Now it is fixed, and the reader code is much simpler now. * updated vendored `github.com/coreos/go-systemd/sdjournal` to latest release (no changes) (cherry picked from commit 1dc58e0)
* Adding more syscalls to the whitelist in `libbeat` I have removed the seccomp policy of `journalbeat`. Four new syscalls has been added to the common policy instead: `fstatfs`, `getrlimit`, `ppoll` and `splice`. * Eliminate possible deadlock when closing the client * Previously, `journalbeat` was unable to read new entries from the journal after it has been started. Now it is fixed, and the reader code is much simpler now. * updated vendored `github.com/coreos/go-systemd/sdjournal` to latest release (no changes) (cherry picked from commit 1dc58e0)
* Adding more syscalls to the whitelist in `libbeat` I have removed the seccomp policy of `journalbeat`. Four new syscalls has been added to the common policy instead: `fstatfs`, `getrlimit`, `ppoll` and `splice`. * Eliminate possible deadlock when closing the client * Previously, `journalbeat` was unable to read new entries from the journal after it has been started. Now it is fixed, and the reader code is much simpler now. * updated vendored `github.com/coreos/go-systemd/sdjournal` to latest release (no changes)
* Adding more syscalls to the whitelist in `libbeat` I have removed the seccomp policy of `journalbeat`. Four new syscalls has been added to the common policy instead: `fstatfs`, `getrlimit`, `ppoll` and `splice`. * Eliminate possible deadlock when closing the client * Previously, `journalbeat` was unable to read new entries from the journal after it has been started. Now it is fixed, and the reader code is much simpler now. * updated vendored `github.com/coreos/go-systemd/sdjournal` to latest release (no changes) (cherry picked from commit 1dc58e0)
libbeatI have removed the seccomp policy of
journalbeat. Four new syscalls has been added to the common policy instead:fstatfs,getrlimit,ppollandsplice.journalbeatwas unable to read new entries from the journal after it has been started. Now it is fixed, and the reader code is much simpler now.github.com/coreos/go-systemd/sdjournalto latest release (no changes)