New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CentOS 7 with rsyslog 8.30.0 or 8.31.0 installed results in missing detail in 'systemctl status rsyslog' output #2150
Comments
Is the following the expected behavior?
|
My understanding (not necessarily correct) is that with systemd journal, the journal listens to |
... of course only if this capability is used on systemd systems. see also rsyslog#2150
Of course, a work-around is to use the old styl |
If it's not too much of a pain to explain, what is the difference between the two statements, other than how they visually look when configuring them:
Is it just the difference between how the config is processed? |
@rgerhards If there is a nightly for the yum repo I will give that a try and see what is logged re what socket systemd passes to rsyslog. |
A core problem with legacy conf is that config snippets could override each other settings. The new style fixes that. In the concrete example: if you use Thus, in new-style, all module parameters need to be set with the module statement. So you know what you selected. So in new style, you use
and you cannot cannot change it later on. You now know exactly what happens. For the same reason, we do NOT permit the use of old-style constructs to override this at a later point in time -- that would re-introduce the same mess that we originally wanted to solve. Permitting this would actually cause even more confusion. Having said that, it looks like going back to old-style for imuxsock load seems the only solution currently for the way the RH journal packages works. I admit that it is somewhat unfortunate the imuxsock does not require an explicit input definition for the system socket, but this is how it always worked. The journal package, though, could drop a dedicated listen socket instead of the legacy directive and all would be well. |
Unfortunately not. But I am now (as a side-activity) working on new packages via the SUSE open build service. I hope we can get daily packages via that in the not too distant future (whatever that means...). |
I took a stab at building from source and initially ran into the same problem where a dependency wasn't available and rsyslog wouldn't start. I ran I then started up rsyslog to see what the new log message looks like:
I manually commented out the entry in
and have
|
I want to say that I tested that and still didn't have the expected output in |
|
@rgerhards In short, it seems that building from source is giving the expected results:
|
rsyslog v8.31.0 from Adiscon repoload imuxsock,
|
@rgerhards @friedl After installing the
Workarounds (either works):
|
I am really getting confused: wasn't the journal destined to listen for that? (I admit I just briefly gazed over the message -- if the is the source of my confusion, just tell me ;-)). |
I should clarify: rsyslog no longer attempts to bind to
The issue we discussed on rsyslog/rsyslog-doc#397, specifically rsyslog/rsyslog-doc#397 (comment), was that rsyslog appeared to be binding to From what I understand of our recent conversations, the expected behavior for a systemd system is that if imuxsock's Based on my report (on rsyslog/rsyslog-doc#397 and again on this ticket), it sounded like the behavior I was encountering was a bug. If I build from source (as noted earlier on this ticket), or use the newly provided To the point:
|
@deoren I cannot find any rsyslog-8.31.0-5 package on adiscon; could you help me out? |
See #2167 (comment) In short, it's a "testing" version that @friedl released for additional feedback. #2134 is still open to track the need for a workaround (see #2150 (comment)) after a fresh installation of rsyslog when using the http://rpms.adiscon.com/v8-stable/rsyslog.repo config. |
@wdauchy The 8.31.0-5 is only the package version in the testing repository. For the same changes from stable, use 8.31.0-4. |
I think this issue has been mostly supplanted by the package changes noted on #2134. I'll go ahead and close out this ticket that I originally opened. |
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
Note: Moved bulk of details over from discussion on rsyslog/rsyslog-doc#397 per recommendation from @rgerhards
Test environment
rsyslog-8.30.0-4.el7.x86_64
rsyslog-8.31.0-3.el7.x86_64
Test configuration
Should this configuration provide output to both
/var/log/messages
andsystemctl status rsyslog
?Adiscon yum repo's
/etc/rsyslog.conf
fileFor reference, here is the stock configuration provided by the latest Adiscon package (
rsyslog-8.31.0-3.el7.x86_64
as of this writing):[root@localhost yum.repos.d]# grep -Ev '^$|^\s*#' /etc/rsyslog.conf
/etc/rsyslog.d/listen.conf
fragment provided by systemd packageThis was discussed on #1367 without resolution.
Contents:
[root@localhost yum.repos.d]# grep -Ev '^$|^\s*#' /etc/rsyslog.d/*.conf
Warning when file is present:
Workaround
Configure the
imuxsock
module load statement like this:Now you see the expected output in
/var/log/messages
andsystemctl status rsyslog
.Example output:
[root@localhost redhat]# systemctl status rsyslog
[root@localhost redhat]# grep chronyd /var/log/messages | head -n 1
I picked chronyd for no particular reason other than it was my test non-rsyslog daemon to help ensure I wasn't getting the wrong impression re the issue.
Full "workaround" conf for reference
The text was updated successfully, but these errors were encountered: