diff --git a/ansible/resources/podman_sc4s.service b/ansible/resources/podman_sc4s.service index 989909eaac..657f081a59 100644 --- a/ansible/resources/podman_sc4s.service +++ b/ansible/resources/podman_sc4s.service @@ -38,8 +38,8 @@ ExecStart=/usr/bin/podman run \ -v "$SC4S_ARCHIVE_MOUNT" \ -v "$SC4S_TLS_MOUNT" \ --env-file=/opt/sc4s/env_file \ - --health-cmd="/healthcheck.sh" \ - --health-interval=10s --health-retries=6 --health-timeout=6s \ + --health-cmd="/usr/sbin/syslog-ng-ctl healthcheck --timeout 5" \ + --health-interval=2m --health-retries=6 --health-timeout=5s \ --network host \ --name SC4S \ --rm $SC4S_IMAGE diff --git a/docs/configuration.md b/docs/configuration.md index 7be09962ab..06a1b14bbd 100644 --- a/docs/configuration.md +++ b/docs/configuration.md @@ -334,8 +334,8 @@ ExecStart=/usr/bin/podman run \ -v "$SC4S_TLS_MOUNT" \ --privileged \ --env-file=/opt/sc4s/env_file \ - --health-cmd="/healthcheck.sh" \ - --health-interval=10s --health-retries=6 --health-timeout=6s \ + --health-cmd="/usr/sbin/syslog-ng-ctl healthcheck --timeout 5" \ + --health-interval=2m --health-retries=6 --health-timeout=5s \ --network host \ --name SC4S \ --rm $SC4S_IMAGE diff --git a/docs/gettingstarted/ansible-docker-podman.md b/docs/gettingstarted/ansible-docker-podman.md index dfa7496a55..cbc0fecca3 100644 --- a/docs/gettingstarted/ansible-docker-podman.md +++ b/docs/gettingstarted/ansible-docker-podman.md @@ -79,7 +79,6 @@ SC4S_ENV_CHECK_HEC: Splunk HEC connection test successful to index=main for sour SC4S_ENV_CHECK_HEC: Splunk HEC connection test successful to index=main for sourcetype=sc4s:events... syslog-ng checking config sc4s version=v1.36.0 -starting goss starting syslog-ng ``` diff --git a/docs/gettingstarted/ansible-docker-swarm.md b/docs/gettingstarted/ansible-docker-swarm.md index 021b288871..d3dba28ab0 100644 --- a/docs/gettingstarted/ansible-docker-swarm.md +++ b/docs/gettingstarted/ansible-docker-swarm.md @@ -103,7 +103,6 @@ SC4S_ENV_CHECK_HEC: Splunk HEC connection test successful to index=main for sour SC4S_ENV_CHECK_HEC: Splunk HEC connection test successful to index=main for sourcetype=sc4s:events... syslog-ng checking config sc4s version=v1.36.0 -starting goss starting syslog-ng ``` diff --git a/docs/gettingstarted/ansible-mk8s.md b/docs/gettingstarted/ansible-mk8s.md index 0159ee232f..a62c85e117 100644 --- a/docs/gettingstarted/ansible-mk8s.md +++ b/docs/gettingstarted/ansible-mk8s.md @@ -75,6 +75,5 @@ SC4S_ENV_CHECK_HEC: Splunk HEC connection test successful to index=main for sour SC4S_ENV_CHECK_HEC: Splunk HEC connection test successful to index=main for sourcetype=sc4s:events... syslog-ng checking config sc4s version=v1.36.0 -starting goss starting syslog-ng ``` diff --git a/docs/gettingstarted/docker-compose-MacOS.md b/docs/gettingstarted/docker-compose-MacOS.md index fb68a9e3bc..fa3634d0dd 100644 --- a/docs/gettingstarted/docker-compose-MacOS.md +++ b/docs/gettingstarted/docker-compose-MacOS.md @@ -120,7 +120,6 @@ You should see events similar to those below in the output: ```ini syslog-ng checking config sc4s version=v1.36.0 -starting goss starting syslog-ng ``` diff --git a/docs/gettingstarted/docker-systemd-general.md b/docs/gettingstarted/docker-systemd-general.md index fe95922ffd..a63e47cecc 100644 --- a/docs/gettingstarted/docker-systemd-general.md +++ b/docs/gettingstarted/docker-systemd-general.md @@ -116,7 +116,6 @@ You should see events similar to those below in the output: ```ini syslog-ng checking config sc4s version=v1.36.0 -starting goss starting syslog-ng ``` diff --git a/docs/gettingstarted/podman-systemd-general.md b/docs/gettingstarted/podman-systemd-general.md index 52c41c31c9..435681aab3 100644 --- a/docs/gettingstarted/podman-systemd-general.md +++ b/docs/gettingstarted/podman-systemd-general.md @@ -109,7 +109,6 @@ You should see events similar to those below in the output: ```ini syslog-ng checking config sc4s version=v1.36.0 -starting goss starting syslog-ng ``` @@ -178,8 +177,8 @@ ExecStart=/usr/bin/podman run -p 2514:514 -p 2514:514/udp -p 6514:6514 \ -v "$SC4S_ARCHIVE_MOUNT" \ -v "$SC4S_TLS_MOUNT" \ --env-file=/home/sc4s/env_file \ - --health-cmd="/healthcheck.sh" \ - --health-interval=10s --health-retries=6 --health-timeout=6s \ + --health-cmd="/usr/sbin/syslog-ng-ctl healthcheck --timeout 5" \ + --health-interval=2m --health-retries=6 --health-timeout=5s \ --network host \ --name SC4S \ --rm $SC4S_IMAGE diff --git a/docs/resources/podman/sc4s.service b/docs/resources/podman/sc4s.service index 989909eaac..657f081a59 100644 --- a/docs/resources/podman/sc4s.service +++ b/docs/resources/podman/sc4s.service @@ -38,8 +38,8 @@ ExecStart=/usr/bin/podman run \ -v "$SC4S_ARCHIVE_MOUNT" \ -v "$SC4S_TLS_MOUNT" \ --env-file=/opt/sc4s/env_file \ - --health-cmd="/healthcheck.sh" \ - --health-interval=10s --health-retries=6 --health-timeout=6s \ + --health-cmd="/usr/sbin/syslog-ng-ctl healthcheck --timeout 5" \ + --health-interval=2m --health-retries=6 --health-timeout=5s \ --network host \ --name SC4S \ --rm $SC4S_IMAGE diff --git a/docs/v3_upgrade.md b/docs/v3_upgrade.md index f286bc8ed6..deddf0022a 100644 --- a/docs/v3_upgrade.md +++ b/docs/v3_upgrade.md @@ -27,7 +27,6 @@ SC4S_ENV_CHECK_HEC: Splunk HEC connection test successful to index=main for sour SC4S_ENV_CHECK_HEC: Splunk HEC connection test successful to index=main for sourcetype=sc4s:events... syslog-ng checking config sc4s version=3.0.0 -starting goss starting syslog-ng ``` diff --git a/package/Dockerfile b/package/Dockerfile index eeaa2c70b8..a9a1f2d17d 100644 --- a/package/Dockerfile +++ b/package/Dockerfile @@ -41,7 +41,6 @@ RUN apk add -U --upgrade --no-cache \ cargo \ ca-certificates \ poetry \ - && curl -fsSL https://goss.rocks/install | GOSS_VER=v0.4.8 sh \ && groupadd --gid 1024 syslog \ && useradd -M -g 1024 -u 1024 syslog \ && usermod -L syslog \ @@ -56,9 +55,7 @@ EXPOSE 6514/tcp #/dev/log a low priv user cannot read this and the container will fail in SC4S #and other uses the low user may be selected -HEALTHCHECK --interval=10s --retries=6 --timeout=6s CMD /healthcheck.sh - -COPY package/etc/goss.yaml /etc/syslog-ng/goss.yaml +HEALTHCHECK --interval=2m --timeout=5s --start-period=30s CMD /usr/sbin/syslog-ng-ctl healthcheck --timeout 5 COPY pyproject.toml / COPY poetry.lock / @@ -75,7 +72,6 @@ COPY package/etc/test_parsers /etc/syslog-ng/test_parsers COPY package/etc/local_config /etc/syslog-ng/local_config COPY package/etc/local_config /etc/syslog-ng/local_config COPY package/sbin/entrypoint.sh / -COPY package/sbin/healthcheck.sh / COPY package/sbin/source_ports_validator.py / ENV SC4S_CONTAINER_OPTS=--no-caps diff --git a/package/Dockerfile.lite b/package/Dockerfile.lite index f7d7e611e8..4e60c8b2bc 100644 --- a/package/Dockerfile.lite +++ b/package/Dockerfile.lite @@ -41,7 +41,6 @@ RUN apk add -U --upgrade --no-cache \ cargo \ ca-certificates \ poetry \ - && curl -fsSL https://goss.rocks/install | GOSS_VER=v0.4.8 sh \ && groupadd --gid 1024 syslog \ && useradd -M -g 1024 -u 1024 syslog \ && usermod -L syslog \ @@ -56,9 +55,7 @@ EXPOSE 6514/tcp #/dev/log a low priv user cannot read this and the container will fail in SC4S #and other uses the low user may be selected -HEALTHCHECK --interval=10s --retries=6 --timeout=6s CMD /healthcheck.sh - -COPY package/etc/goss.yaml /etc/syslog-ng/goss.yaml +HEALTHCHECK --interval=2m --timeout=5s --start-period=30s CMD /usr/sbin/syslog-ng-ctl healthcheck --timeout 5 COPY pyproject.toml / COPY poetry.lock / @@ -97,7 +94,6 @@ COPY package/lite/etc/config.yaml /etc/syslog-ng/config.yaml COPY package/lite/etc/addons /etc/syslog-ng/addons COPY package/sbin/entrypoint.sh / -COPY package/sbin/healthcheck.sh / COPY package/sbin/source_ports_validator.py / diff --git a/package/etc/goss.yaml b/package/etc/goss.yaml deleted file mode 100644 index 91c0c22e7c..0000000000 --- a/package/etc/goss.yaml +++ /dev/null @@ -1,12 +0,0 @@ -#Splunk Connect for Syslog (SC4S) by Splunk, Inc. -# -#To the extent possible under law, the person who associated CC0 with -#Splunk Connect for Syslog (SC4S) has waived all copyright and related or neighboring rights -#to Splunk Connect for Syslog (SC4S). -# -#You should have received a copy of the CC0 legalcode along with this -#work. If not, see . - -process: - syslog-ng: - running: true diff --git a/package/sbin/entrypoint.sh b/package/sbin/entrypoint.sh index ca7ec01542..212a023763 100755 --- a/package/sbin/entrypoint.sh +++ b/package/sbin/entrypoint.sh @@ -224,13 +224,6 @@ echo sc4s version=$(cat $SC4S_ETC/VERSION) echo sc4s version=$(cat $SC4S_ETC/VERSION) >>$SC4S_VAR/log/syslog-ng.out $SC4S_SBIN/syslog-ng --no-caps $SC4S_CONTAINER_OPTS -s >>$SC4S_VAR/log/syslog-ng.out 2>$SC4S_VAR/log/syslog-ng.err -# Use goss to pick up default listening ports for health check -if command -v goss &> /dev/null -then - echo starting goss - goss -g $SC4S_ETC/goss.yaml serve -l 0.0.0.0:$SC4S_LISTEN_STATUS_PORT --format json >/dev/null 2>/dev/null & -fi - # OPTIONAL for BYOE: Comment out/remove all remaining lines and launch syslog-ng directly from systemd if [ "${SC4S_DEBUG_CONTAINER}" == "yes" ] then diff --git a/package/sbin/healthcheck.sh b/package/sbin/healthcheck.sh deleted file mode 100755 index a5d118e007..0000000000 --- a/package/sbin/healthcheck.sh +++ /dev/null @@ -1,4 +0,0 @@ -#!/usr/bin/env bash -set -e -export SC4S_LISTEN_STATUS_PORT=${SC4S_LISTEN_STATUS_PORT:=8080} -curl -s --fail http://localhost:${SC4S_LISTEN_STATUS_PORT}/healthz \ No newline at end of file