Fluentd: Address fluentd config TODOs

elastisys / compliantkubernetes-apps

Elastisys Compliant Kubernetes is an open source, Certified Kubernetes distribution designed according to the ISO27001 controls: providing you with security tooling and observability from day one.

https://elastisys.io/compliantkubernetes/

Apache License 2.0

46 stars 8 forks source link

Fluentd: Address fluentd config TODOs #987

Open robinAwallace opened 2 years ago

robinAwallace commented 2 years ago

There are at least two TODOs in fluentd configs which should now be able to be addressed.

https://github.com/elastisys/compliantkubernetes-apps/blob/main/helmfile/values/fluentd-configmap.yaml.gotmpl#L95 https://github.com/elastisys/compliantkubernetes-apps/blob/main/helmfile/values/fluentd-configmap.yaml.gotmpl#L237

Definition of Done

All TODOs in fluentd config are resolved

robinAwallace commented 2 years ago

I tried updating to the new multi-line parsing. However this introduced more errors as fluentd had problem parsing some logs. As some containerd logs are diffrent. Because of this i tried adding the cri-parser plugin, but that did not help. Hoverer the errors became more clear. So is not worth updating this at the moment.