Bug 1481364
Summary: | [online-int] fluentd cannot read docker json-file logs | ||
---|---|---|---|
Product: | OpenShift Online | Reporter: | Mike Fiedler <mifiedle> |
Component: | Logging | Assignee: | Stefanie Forrester <dakini> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Mike Fiedler <mifiedle> |
Severity: | high | Docs Contact: | |
Priority: | unspecified | ||
Version: | 3.x | CC: | abhgupta, aos-bugs, dakini, juzhao, mifiedle, rmeggins, xtian |
Target Milestone: | --- | Keywords: | OnlinePro, TestBlocker |
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2017-11-09 18:49:19 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 1478821 | ||
Bug Blocks: |
Description
Mike Fiedler
2017-08-14 18:11:53 UTC
No pod logs are making it to elastic in this environment: [root@online-int-master-05114 ~]# oc exec $POD -- curl --connect-timeout 2 -s -k --cert /etc/elasticsearch/secret/admin-cert --key /etc/elasticsearch/secret/admin-key https://logging-es:9200/_cat/indices?v health status index pri rep docs.count docs.deleted store.size pri.store.size green open .operations.2017.08.13 1 0 746874 0 162mb 162mb green open .searchguard.logging-es-data-master-2hh0ejvf 1 1 5 0 56.1kb 28kb green open .operations.2017.08.14 1 0 599386 0 130.6mb 130.6mb green open .operations.2017.08.11 1 0 750537 0 162.5mb 162.5mb green open .operations.2017.08.12 1 0 745054 0 161.5mb 161.5mb green open .kibana 1 0 1 0 3.1kb 3.1kb green open .searchguard.logging-es-data-master-a2v15tbo 1 1 5 0 50.8kb 28kb green open .operations.2017.08.10 1 0 726725 0 207.1mb 207.1mb This blocks logging testing for Online. @abhgupta @jcantril - IMO this is configuration - is Logging the right component? Are there any AVCs in /var/log/audit/audit.log ? Audit and pod logs attached. I see no related AVCs from a quick look. same issue in online-stg, it is the same issue with https://bugzilla.redhat.com/show_bug.cgi?id=1481934 Moving this bug to ON_QA since https://bugzilla.redhat.com/show_bug.cgi?id=1481934 was fixed/verified. Verified fluentd is indexing pod logs correctly in online-int environment v3.6.173.0.7 (online version 3.6.0.14) |