kolla-ansible

Fluentd config files persist on restart

Bug #1862211 reported by Will Szumski on 2020-02-06

This bug affects 1 person

	Status	Importance	Assigned to	Milestone
kolla-ansible	Fix Released	Medium	Radosław Piliszek	kolla-ansible 10.0.0 "ussuri"
Stein	Fix Released	Medium	Unassigned
Train	Fix Released	Medium	Unassigned
Ussuri	Fix Released	Medium	Radosław Piliszek	kolla-ansible 10.0.0 "ussuri"

Bug Description

Old config files are left in the container because we use:

        {
            "source": "{{ container_config_directory }}/input/*.conf",
            "dest": "{{ fluentd_dir }}/input/",
            "owner": "{{ fluentd_user }}",
            "perm": "0600"
        },

This means that even in a file is removed from container_config_directory it still remains on restart.

Tags:

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-02-06: Fix proposed to kolla-ansible (master)

Fix proposed to branch: master
Review: https://review.opendev.org/706327

Changed in kolla-ansible:
assignee:	nobody → Will Szumski (willjs)
status:	New → In Progress

Mark Goddard (mgoddard) on 2020-02-07

Changed in kolla-ansible:
importance:	Undecided → Medium

OpenStack Infra (hudson-openstack) on 2020-03-10

Changed in kolla-ansible:
assignee:	Will Szumski (willjs) → Radosław Piliszek (yoctozepto)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-03-10: Fix merged to kolla-ansible (master)

Reviewed: https://review.opendev.org/706327
Committed: https://git.openstack.org/cgit/openstack/kolla-ansible/commit/?id=e7870e9df9e416b1b342ad6264bb66378fe62b3f
Submitter: Zuul
Branch: master

commit e7870e9df9e416b1b342ad6264bb66378fe62b3f
Author: Will Szumski <email address hidden>
Date: Thu Feb 6 17:10:06 2020 +0000

Delete stale fluent config on restart

We already only include .conf files in fluent.conf:

    (fluentd)[fluentd@cpu-e-1041 /etc/fluentd]$ cat fluent.conf
    @include input/*.conf
    @include filter/*.conf
    @include format/*.conf
    @include output/*.conf

so this change should not cause ill effect. This works because of the
merge option in config files:

merge: merges the source directory into the target directory instead of
replacing it. Boolean, defaults to false.

see https://docs.openstack.org/kolla/latest/admin/kolla_api.html#kolla-api-external-config

Change-Id: I28f63ec81f1ea5bc4a213d053bfb2c04388d5925
Closes-Bug: #1862211

Changed in kolla-ansible:
status:	In Progress → Fix Released

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-03-10: Fix proposed to kolla-ansible (stable/train)

Fix proposed to branch: stable/train
Review: https://review.opendev.org/712066

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-03-10: Fix proposed to kolla-ansible (stable/stein)

Fix proposed to branch: stable/stein
Review: https://review.opendev.org/712067

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-03-10: Fix merged to kolla-ansible (stable/train)

Reviewed: https://review.opendev.org/712066
Committed: https://git.openstack.org/cgit/openstack/kolla-ansible/commit/?id=3982d8d54206017d20e1ab8bc03cec965ad37ec1
Submitter: Zuul
Branch: stable/train

commit 3982d8d54206017d20e1ab8bc03cec965ad37ec1
Author: Will Szumski <email address hidden>
Date: Thu Feb 6 17:10:06 2020 +0000

Delete stale fluent config on restart

We already only include .conf files in fluent.conf:

    (fluentd)[fluentd@cpu-e-1041 /etc/fluentd]$ cat fluent.conf
    @include input/*.conf
    @include filter/*.conf
    @include format/*.conf
    @include output/*.conf

so this change should not cause ill effect. This works because of the
merge option in config files:

merge: merges the source directory into the target directory instead of
replacing it. Boolean, defaults to false.

see https://docs.openstack.org/kolla/latest/admin/kolla_api.html#kolla-api-external-config

    Change-Id: I28f63ec81f1ea5bc4a213d053bfb2c04388d5925
    Closes-Bug: #1862211
    (cherry picked from commit e7870e9df9e416b1b342ad6264bb66378fe62b3f)

tags:

added: in-stable-train

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-03-18: Change abandoned on kolla-ansible (stable/stein)

Change abandoned by Mark Goddard (<email address hidden>) on branch: stable/stein
Review: https://review.opendev.org/712067
Reason: Squashed into https://review.opendev.org/#/c/713519

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-03-18: Fix merged to kolla-ansible (stable/stein)

Reviewed: https://review.opendev.org/713519
Committed: https://git.openstack.org/cgit/openstack/kolla-ansible/commit/?id=06fbffe44025919761252cba50dbaef74f95df98
Submitter: Zuul
Branch: stable/stein

commit 06fbffe44025919761252cba50dbaef74f95df98
Author: Will Szumski <email address hidden>
Date: Thu Feb 6 17:10:06 2020 +0000

Combined fluentd fixes

1. Delete stale fluent config on restart

We already only include .conf files in fluent.conf:

    (fluentd)[fluentd@cpu-e-1041 /etc/fluentd]$ cat fluent.conf
    @include input/*.conf
    @include filter/*.conf
    @include format/*.conf
    @include output/*.conf

so this change should not cause ill effect. This works because of the
merge option in config files:

merge: merges the source directory into the target directory instead of
replacing it. Boolean, defaults to false.

see https://docs.openstack.org/kolla/latest/admin/kolla_api.html#kolla-api-external-config

    Original Change-Id: I28f63ec81f1ea5bc4a213d053bfb2c04388d5925
    Closes-Bug: #1862211
    (cherry picked from commit e7870e9df9e416b1b342ad6264bb66378fe62b3f)

2. Make Fluentd config folders readable

    Currently, config folders lack the execute bit so Fluentd
    cannot read the config and just does nothing when it starts up. This
    change explicitly sets the execute bit on folders which need it,
    rather than doing it in a more generic way which is more risky from
    a security perspective.

    Change-Id: Ia840f4b67043df4eaa654f47673dcdc973f13d9c
    Closes-Bug: #1867754
    (cherry picked from commit c92378d7881927d46ff5d485edcf25989c0c4170)

tags:

added: in-stable-stein

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.