Bug 717167
Summary: | make non-standard log file collection more robust | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 5 | Reporter: | Bryn M. Reeves <bmr> |
Component: | sos | Assignee: | Bryn M. Reeves <bmr> |
Status: | CLOSED ERRATA | QA Contact: | David Kutálek <dkutalek> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 5.7 | CC: | agk, bmr, dkutalek, gavin, hpetty, prc |
Target Milestone: | rc | ||
Target Release: | 5.8 | ||
Hardware: | All | ||
OS: | All | ||
Whiteboard: | |||
Fixed In Version: | sos-1.7-9.59 | Doc Type: | Bug Fix |
Doc Text: |
Cause: In prior release sos attempted to use a heuristic to determine whether the system is configured to use traditional syslogd or rsyslogd for logging.
Consequence: This heuristic would mis-identify systems having rsyslog installed (but not configured) as actually using the daemon and failed to collect custom-defined log destinations specified in syslog.conf on such hosts.
Fix: The general module no longer attempts to determine which log daemon is in use and will collect any user-defined log destinations present in either file
Result: Collection of user-defined log destinations is now more robust on systems using either syslogd or rsyslog.
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | 2012-02-21 03:25:17 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 769266 |
Description
Bryn M. Reeves
2011-06-28 09:02:22 UTC
We should simplify to: if /etc/syslog.conf present, parse it if /etc/rsyslog.conf present, parse it Ie, discard check for installed syslog versions and just grab log files defined in both - if config files are present. One more defect to be fixed: Since in 5.7 we have fix to tail oversized syslog logs according to specified limit, we should apply it to all syslog logs when all_logs is on. Now, additional log files defined in syslog/rsyslog configs are gathered without applying size limit. In case of oversized messages and secure logs, it results in one full and one tailed instance of log in report. In case of other log files, these are in report once, but not tailed. Technical note added. If any revisions are required, please edit the "Technical Notes" field accordingly. All revisions will be proofread by the Engineering Content Services team. New Contents: Cause: In prior release sos attempted to use a heuristic to determine whether the system is configured to use traditional syslogd or rsyslogd for logging. Consequence: This heuristic would mis-identify systems having rsyslog installed (but not configured) as actually using the daemon and failed to collect custom-defined log destinations specified in syslog.conf on such hosts. Fix: The general module no longer attempts to determine which log daemon is in use and will collect any user-defined log destinations present in either file Result: Collection of user-defined log destinations is now more robust on systems using either syslogd or rsyslog. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHSA-2012-0153.html |