Fluentd Blog

Drop Alpine and switch default to Debian for Fluentd docker image

Hi users!

We have planned to change what docker image provides.

Currently, we ship Fluentd docker image for Alpine and Debian (armhf, arm64, amd64). But, Alpine image in Fluentd was already marked as deprecated, so we will make things forward.

In the near future, we will drop Alpine image. This decision affects existing Alpine image users.

Notice about existing Alpine image users

• fluent/fluentd:edge will be changed from Alpine to Debian image
  • This is a notable incompatible change!
• v1.19 (not released yet)
  • No more releases for Alpine images
  • Then short tag also changed to Debian images (e.g. v1.19.0-1.0, v1.19-1 should be Debian instead of Alpine)
• v1.18 Alpine image will not be supported after v1.19 is released (T.B.D.), so recommend to migrate it!
• v1.16 Alpine image will be supported until Dec 2025, so there is room to migrate gradually.

If you still want to use Alpine, keep v1.16 series or v1.18 series. (not recommended though)

Why not provide Alpine anymore?

It was well known that Alpine has possibility of incompatibility and performance issues in contrast to Debian images. It was a historical reason to provide Alpine images - "In the previous versions, we provided them", so there is no positive reason to continue it.

Provide shorter tags to follow internal version bump

Not only just dropping Alpine image, we will improve tagging rules:

• Add version-specific tag which will not be affected by internal version bump

In previous versions, there was no version-specific tag which would follow internal version bump. For example, if you want to stick to Fluentd v1.18.0, you can select v1.18.0-1.0, but if internal version was bumped to v1.18.0-1.1 or something, need to update it. There is edge-debian tag, but it does not stick to a specific Fluentd version because it will automatically update when the next major/minor version is released.

For such a purpose, shorter v1.19 or v1.19.x tag will be available in the future release.

Happy logging!

Read More

fluent-package v5.0.6 has been released

Hi users!

We have released fluent-package v5.0.6. fluent-package is a stable distribution package of Fluentd. (successor of td-agent v4)

This is a maintenance release of v5.0.x LTS series. Bundled Fluentd was updated to 1.16.7.

We recommend upgrading to fluent-package v5.0.6!

Changes from fluent-package v5.0.5

In this release, known Windows issues were fixed.

• Update bundled Fluentd to v1.16.7
• Update bundled gems overall
• msi: Fixed to keep some registry values with update

msi: Fixed to keep some registry values with update

In the previous versions, there had been a known issue that fluent-package could not keep some registry values when upgrading.

Thus, if you modify Fluentd service (fluentdwinsvc) related registry, you need to restore your configuration after upgrading.

Since v5.0.6, fluent-package was fixed to keep some registry values during upgrading package.

Here is the target registry which will be kept during upgrading fluent-package:

• Start
• DelayedAutostart
• fluentdopt (logging path might be modified by users)

In most cases, fluent-package user might want to keep fluentdopt because it stores additional command line option parameters.

In this release, bundled Fluentd v1.16.7 also contains the fixes for Windows.

• Windows: Fix NoMethodError of --daemon option
• Windows: Fixed the issues which are related to start/stop Fluentd service

See Fluentd v1.16.7 has been released blog article in details.

Download

Please see the download page.

About next LTS schedule

We plan to ship the next LTS version of fluent-package v5.0.7 on June, 2025. The content of updates are still in T.B.D.

End of support for td-agent v4, let's migrate to fluent-package

As it was already announced Drop schedule announcement about EOL of Treasure Agent (td-agent) 4, td-agent v4 reached EOL in Dec, 2023.

After reached EOL, td-agent v4.5.3 on Windows was released because there was a crash bug during startup on Windows. It was backported fix from fluent-package v5 as it is critical in some case. Even though this was a exceptional maintenance release, but there is no change to the fact that we already stopped maintaining td-agent v4.

We strongly recommend migrating from td-agent v4 to fluent-package v5 (LTS). See Upgrade to fluent-package v5

Read More

Fluentd v1.16.7 has been released

Hi users!

We have released v1.16.7 on 2025-01-29. ChangeLog is here.

This release is a maintenance release of v1.16 series. In this release, some bugs which are related on Windows were fixed with backporting from v1.18.x.

This release will be bundled for upcoming fluent-package LTS version v5.0.6!

Bug Fixes

Windows: Fix NoMethodError of --daemon option

In this release, we have fixed a bug that it will fail when --daemon option is used on Windows.

It was a regression bug since v1.16.0 on Windows, but usually running as a service is recommended way on Windows, so most of Fluentd users were not affected.

Windows: Fixed the issues which are related to start/stop Fluentd service

In this release, we have fixed the following bugs which are related to start/stop the Fluentd service.

• Fixed an issue when stopping the service immediately after startup could leave the processes
• Fixed an issue where stopping service sometimes can not be completed forever

These bug were caused because stop event was not handled correctly in the previous releases.

Typically, this bug will happen if you stop the Fluentd service immediately after startup. Then it could leave the processes or stopping service sometimes can not be completed forever.

Misc news

We also enforcing stabilizing CI of Fluentd. It has nothing to do with Fluentd's functionality directly, but it is very important to provide stable version of Fluentd continuously.

Not only Windows: Add workaround for unexpected exception #4747, many CI improvements was merged into master, then backported to v1.16 branch, too.

Enjoy logging!

Read More

fluent-package v5.2.0 has been released

Hi users!

We have released fluent-package v5.2.0. fluent-package is a stable distribution package of Fluentd. (successor of td-agent v4)

This release is a new release of v5.2 series.

Changes from fluent-package v5.1.0

• Support upgrade fluentd service with zero-downtime
• Update ruby to 3.2.6
• Update bundled Fluentd to v1.18.0
• Update bundled gems overall
• Solved possibility of DoS through "NoMemoryError"
• msi: set GEM_HOME/GEM_PATH in fluentd.bat
• deb: suppress service restart by needrestart
• Fixed SIGABORT error with fluent-plugin-systemd

Support upgrade fluentd service with zero-downtime

Previously, when upgrading the fluent-package, you had to stop the fluentd service, install the new version of the fluent-package, then install any necessary plugins, and finally restart the fluentd service.

Starting from fluent-package v5.2.0, we have introduced the zero-downtime restart feature that automatically installs the required plugins during the upgrade process and allows you to upgrade Fluentd without interrupting the logging service.

Please refer to "Advisory for upgrading with zero-downtime".

Solved possibility of DoS through "NoMemoryError"

In the previous versions of msgpack gem, there was a possibility that cause DoS (Denial Of Service) when crafted message was sent to Fluentd.

When that message was sent, it might cause "NoMemoryError" on Fluentd because there is a case that msgpack try to pre-allocate huge amount of memories.

Above behavior was fixed not to pre-allocate over 32k entries (limit pre-allocated amount of memories) in msgpack 1.7.3 and bundled.

msi: set GEM_HOME/GEM_PATH in fluentd.bat

In the previous versions, fluentd.bat doesn't set GEMHOME/GEMPATH explicitly.

If users set custom GEM_HOME / GEM_PATH environment variables, the batch file will not work as expected. Therefore, this patch will set the appropriate values in the batch file.

deb: suppress service restart by needrestart

We have changed so that Fluentd does not restart when the needrestart package is installed. fluent-package v5.2.0 places /etc/needrestart/conf.d/50-fluent-package.conf.

Fixed SIGABORT error with fluent-plugin-systemd

In this release, the bundled fluent-plugin-systemd was updated to 1.1.0. That release fixed SIGABORT error with inconsistency of memory allocator handling.

Advisory for upgrading with zero-downtime

The zero-downtime restart feature can be configured by FLUENT_PACKAGE_SERVICE_RESTART environment variable. Please refer to following section for more details.

• Add FLUENT_PACKAGE_SERVICE_RESTART environmental variable
  • This section explains FLUENT_PACKAGE_SERVICE_RESTART environment variable.
• Automate Plugin Install for Update on Demand
  • This section explains the mechanism that installs the plugins automatically during the upgrade process.

Add FLUENT_PACKAGE_SERVICE_RESTART environmental variable

We have introduced FLUENT_PACKAGE_SERVICE_RESTART environment variable to configure the zero-downtime restart feature. The variable exists in the following file:

• RPM: /etc/sysconfig/fluentd
• DEB: /etc/default/fluentd

Example:

FLUENT_PACKAGE_OPTIONS=""
# Control method to upgrade service (auto/manual) restart
FLUENT_PACKAGE_SERVICE_RESTART=auto

auto (default)

The service automatically restarts with zero-downtime restart feature when all of the following conditions are met:

1. The service was active before updating.
2. The installed and upgrading versions are required 5.2.0 or higher (both sides must support this feature).

The plugins will be automatically reinstalled if needed if your environment has an active online connection. For more details, please refer to "Automate Plugin Install for Update on Demand".

manual

You can use this approach if you prefer to manage plugins manually or if your environment does not have offline connection. If the service was active before the update, it will not restart automatically with this configuration. You need to restart the service manually.

• The zero-downtime restart:
  • Send a SIGUSR2 signal to the supervisor process, such as with kill -USR2 <PID>
• Normal restart:
  • Restart the service normally, such as with systemctl restart fluentd.

Automate Plugin Install for Update on Demand

Automate Plugin Management

If you prefer to manage plugins automatically, please set FLUENT_PACKAGE_SERVICE_RESTART to auto (default).

When the service restarts automatically using the zero-downtime restart feature, any missing plugins are automatically detected and reinstalled before the restart.

Previously, automatic restarts after updates were not recommended due to potential issues. If you manually install plugins, you need to reinstall them before restarting when the embedded Ruby version is updated.

To address this, this feature enables automatic plugin installation during the restart process. The steps are as follows:

1. Collect the current list of plugins before the update.
   • Recognize gems as plugins that has fluent-plugin- prefix.
2. After installing the updated package, detect missing plugins.
   • Compare the collected plugin list with the default plugins to identify any missing ones.
3. Install the missing plugins.

Manual Plugin Management

If you prefer to manage plugins manually, please set FLUENT_PACKAGE_SERVICE_RESTART to manual. This is useful in cases such as:

• Pinning specific plugin versions
• Operating in an offline environment

In this mode, automatic plugin installation and restarts are disabled. You can manually install plugins and send a SIGUSR2 signal to trigger the zero-downtime restart feature after the update.

Caution: if you use a custom unit file, need to migrate it to use this feature safely

If you use a custom unit file, such as /etc/systemd/system/fluentd.service, please remove these 2 lines.

Environment=GEM_HOME=/opt/fluentd/lib/ruby/gems/...
Environment=GEM_PATH=/opt/fluentd/lib/ruby/gems/...

We don't need GEM_HOME and GEM_PATH. They will be removed after v5.2.0, but if you use a custom unit file, you need to remove them manually. If these variables are set, the zero-downtime restart feature may not work correctly. It is because the new process inherits the original environment variables if using this feature.

Please refer to #713 for more details.

Download

Please see the download page.

About next LTS schedule

We plan to ship the next LTS version of fluent-package v5.0.6 on March, 2025. The content of updates are still in T.B.D.

End of support for td-agent v4, let's migrate to fluent-package

As it was already announced Drop schedule announcement about EOL of Treasure Agent (td-agent) 4, td-agent v4 was reached EOL in Dec, 2023.

After reached EOL, td-agent v4.5.3 on Windows was released because there was a crash bug during startup on Windows. It was backported fix from fluent-package v5 as it is critical in some case. Even though this was a exceptional maintenance release, but there is no change to the fact that we already stopped maintaining td-agent v4.

We strongly recommend migrating from td-agent v4 to fluent-package v5 (LTS). See Upgrade to fluent-package v5

Read More

Fluentd v1.18.0 has been released

Hi users!

We have released v1.18.0 on 2024-11-29. ChangeLog is here.

This release is a new release of v1.18 series. In this release, we added zero-downtime-restart as a key feature, enhanced some features and fixed bugs.

Enhancement

Add zero-downtime-restart feature

In this release, we have added the feature to update the Fluentd process with zero downtime for Linux and macOS environments (not supported on Windows). You can use this feature to reload config and restart Fluentd gracefully.

You can use this feature by sending a SIGUSR2 signal to the supervisor process, and this changes behavior SIGUSR2 from graceful reload to zero-downtime-restart feature on Linux and macOS environments.

You can still use the conventional graceful reloading feature by directly sending SIGUSR2 to each worker process or using the RPC feature. However, it had some limitations and issues (Please see #4624 for details). So, we recommend using this new feature for graceful reloading/restarting unless there is a particular reason.

Please see #4624 for more information.

Add with-source-only feature

This feature has been added to support the zero-downtime-restart feature that it launches Fluentd with input plugins only.

This feature has added --with-source-only option in fluentd command, with_source_only option in system configuration and out_buffer plugin which can be used for buffering and relabeling events. These are used internally to support zero-downtime-restart.

Please see #4661 for more information.

Config File Syntax: Extend Embedded Ruby Code support for Hashes and Arrays

The Embedded Ruby Code has been supported in configuration. In this release, we have extended the syntax to allow the use of Embedded Ruby Code in Hashes and Arrays.

Example:

key1 ["foo","#{1 + 1}"] # Embedded Ruby Code in Array syntax
key2 {"foo":"#{1 + 1}"} # Embedded Ruby Code in Hash syntax

Result:

key1 ["foo","2"]
key2 {"foo":"2"}

Please note that this is not backward compatible, although we assume that this will never affect to actual existing configs.

In case the behavior changes unintentionally, you can disable this feature by surrounding the entire value with single quotes.

Example:

key '{"foo":"#{1 + 1}"}'

transport tls: Use SSL_VERIFY_NONE by default

We have changed the flags to SSL_VERIFY_NONE by default for server the certification verification.

In the previous versions, it had been necessary to set client_cert_auth false and insecure true to apply SSLVERIFYNONE. This was an inappropriate combination of settings. In this release, it can make it possible to apply SSL_VERIFY_NONE with just client_cert_auth false (default).

transport tls: Add ensure_fips option to ensure FIPS compliant mode

We have added ensure_fips option in transport section in config to check FIPS mode. When it configures ensure_fips true, it will check FIPS mode is supported in your environment, if not, just aborts. By default, it has disabled.

Example:

<transport tls>
  ensure_fips true
</transport>

Please see the document for more information.

plugin_helper/server: Add receive_buffer_size parameter in transport section

In the previous versions, the receive_buffer_size option can be set by in_udp only. In this release, we have added the receive_buffer_size option into transport section too to configure the buffer size on in_tcp or in_syslog plugins.

Example:

<transport udp>
  receive_buffer_size 4194304
</transport>

filter_parser: Now able to handle multiple parsed results

In the previous versions, there was a restriction that only the first record could be handled when the parsed result was multiple records. In this release, we have removed this limitation to handle multiple records appropriately.

You can read more about this limitation in the Remaining problem: filter_parser in Fluentd v1.17.0 release blog.

in_http: add add_tag_prefix option

We have added add_tag_prefix option in in_http plugin to add the prefix to the incoming event's tag, similar to in_forward plugin.

Example:

<source>
  @type http
  add_tag_prefix prod
</source>

System configuration: add path option in log section

We have added path option to log section of system configuration.

Example:

<system>
  <log>
    path /path/to/log_file
  </log>
</system>

Bug Fix

command: fix NoMethodError of --daemon under Windows

We have fixed a NoMethodError when launches fluentd with --daemon command line option under Windows platform.

fluentd command: fix --plugin (-p) option not to overwrite default value

We have fixed --plugin command line option that it does not overwrite the default value.

Enjoy logging!

Read More