# dynamic config_path - specifies the path to a DIRECTORY to enable dynamic runtime config changes (use dlogctl for control)
dynamic_config_path=/run/dlog/filters.d/
+# Whether secure printing is enabled.
+# If this setting is set to 0, secure logs
+# are dropped and don't go into the buffer.
+enable_secure_logs=1
+
##### Settings used by the logging daemon
# See also 20-pipe.conf for more info
static bool dynamic_config;
static bool plog[LOG_ID_MAX];
static bool plog_default_values[LOG_ID_MAX];
+static bool enable_secure_logs = true;
static int debugmode;
static int fatal_assert;
__update_plog(config);
__set_plog_default_values();
+ enable_secure_logs = log_config_get_boolean(config, "enable_secure_logs", enable_secure_logs);
debugmode = log_config_get_int(config, "debugmode", DEFAULT_CONFIG_DEBUGMODE);
fatal_assert = access(DEBUGMODE_FILE, F_OK) != -1;
limiter = log_config_get_boolean(config, "limiter", DEFAULT_CONFIG_LIMITER);
*/
int __dlog_sec_print(log_id_t log_id, int prio, const char *tag, const char *fmt, ...)
{
+ if (!enable_secure_logs)
+ return 0;
+
va_list ap;
va_start(ap, fmt);