Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Synthtrace] Support Non-ECS Logs #191086

Merged
merged 11 commits into from
Sep 3, 2024
Merged

[Synthtrace] Support Non-ECS Logs #191086

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
a10c5c3
[Synthtrace] Support Non-ECS Logs
mohamedhamed-ahmed Aug 22, 2024
a9d53f2
Code Refactor:
mohamedhamed-ahmed Aug 22, 2024
04f3529
Code Refactor and Bug Fix
mohamedhamed-ahmed Aug 22, 2024
417fdd3
Merge branch 'main' into 3759-custom-non-ecs-logs
mohamedhamed-ahmed Aug 22, 2024
1796e63
Merge branch 'main' into 3759-custom-non-ecs-logs
mohamedhamed-ahmed Aug 23, 2024
69c95f2
Merge branch 'main' into 3759-custom-non-ecs-logs
mohamedhamed-ahmed Aug 26, 2024
8740ade
Merge branch 'main' into 3759-custom-non-ecs-logs
mohamedhamed-ahmed Aug 28, 2024
d3625a8
Merge branch 'main' into 3759-custom-non-ecs-logs
mohamedhamed-ahmed Sep 2, 2024
2d03293
Merge branch 'main' into 3759-custom-non-ecs-logs
mohamedhamed-ahmed Sep 2, 2024
3e56d6e
Code Refactor
mohamedhamed-ahmed Sep 3, 2024
fbb0255
Merge branch 'main' into 3759-custom-non-ecs-logs
mohamedhamed-ahmed Sep 3, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion packages/kbn-apm-synthtrace-client/index.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,5 +33,5 @@ export { dedot } from './src/lib/utils/dedot';
export { generateLongId, generateShortId } from './src/lib/utils/generate_id';
export { appendHash, hashKeysOf } from './src/lib/utils/hash';
export type { ESDocumentWithOperation, SynthtraceESAction, SynthtraceGenerator } from './src/types';
export { log, type LogDocument } from './src/lib/logs';
export { log, type LogDocument, LONG_FIELD_NAME } from './src/lib/logs';
export { type AssetDocument } from './src/lib/assets';
14 changes: 14 additions & 0 deletions packages/kbn-apm-synthtrace-client/src/lib/logs/index.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,9 @@ import { randomInt } from 'crypto';
import { Fields } from '../entity';
import { Serializable } from '../serializable';

export const LONG_FIELD_NAME =
'thisisaverylongfieldnamethatevendoesnotcontainanyspaceswhyitcouldpotentiallybreakouruiinseveralplaces';

const LOGSDB_DATASET_PREFIX = 'logsdb.';

interface LogsOptions {
Expand Down Expand Up @@ -63,6 +66,12 @@ export type LogDocument = Fields &
'event.duration': number;
'event.start': Date;
'event.end': Date;
date: Date;
severity: string;
msg: string;
svc: string;
hostname: string;
[LONG_FIELD_NAME]: string;
}>;

class Log extends Serializable<LogDocument> {
Expand Down Expand Up @@ -123,6 +132,11 @@ class Log extends Serializable<LogDocument> {
super.timestamp(time);
return this;
}

deleteField(fieldName: keyof LogDocument) {
achyutjhunjhunwala marked this conversation as resolved.
Show resolved Hide resolved
delete this.fields[fieldName];
return this;
}
}

function create(logsOptions: LogsOptions = defaultLogsOptions): Log {
Expand Down
17 changes: 17 additions & 0 deletions packages/kbn-apm-synthtrace/src/lib/logs/custom_logsdb_indices.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
/*
* Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
* or more contributor license agreements. Licensed under the Elastic License
* 2.0 and the Server Side Public License, v 1; you may not use this file except
* in compliance with, at your election, the Elastic License 2.0 or the Server
* Side Public License, v 1.
*/

import type { MappingTypeMapping } from '@elastic/elasticsearch/lib/api/types';

export const timestampDateMapping: MappingTypeMapping = {
properties: {
'@timestamp': {
type: 'date',
},
},
};
19 changes: 19 additions & 0 deletions packages/kbn-apm-synthtrace/src/lib/logs/logs_synthtrace_es_client.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,7 @@ import { Client } from '@elastic/elasticsearch';
import { ESDocumentWithOperation } from '@kbn/apm-synthtrace-client';
import { pipeline, Readable, Transform } from 'stream';
import { LogDocument } from '@kbn/apm-synthtrace-client/src/lib/logs';
import { MappingTypeMapping } from '@elastic/elasticsearch/lib/api/types';
import { SynthtraceEsClient, SynthtraceEsClientOptions } from '../shared/base_client';
import { getSerializeTransform } from '../shared/get_serialize_transform';
import { Logger } from '../utils/create_logger';
Expand All @@ -24,6 +25,7 @@ export class LogsSynthtraceEsClient extends SynthtraceEsClient<LogDocument> {
pipeline: logsPipeline(),
});
this.dataStreams = ['logs-*-*'];
this.indices = ['cloud-logs-*-*'];
}

async createIndexTemplate(name: IndexTemplateName) {
Expand All @@ -40,6 +42,23 @@ export class LogsSynthtraceEsClient extends SynthtraceEsClient<LogDocument> {
this.logger.error(`Index template creation failed: ${name} - ${err.message}`);
}
}

async createIndex(index: string, mappings?: MappingTypeMapping) {
try {
const isIndexExisting = await this.client.indices.exists({ index });

if (isIndexExisting) {
this.logger.info(`Index already exists: ${index}`);
return;
}

await this.client.indices.create({ index, mappings });

this.logger.info(`Index successfully created: ${index}`);
} catch (err) {
this.logger.error(`Index creation failed: ${index} - ${err.message}`);
}
}
}

function logsPipeline() {
Expand Down
15 changes: 13 additions & 2 deletions packages/kbn-apm-synthtrace/src/lib/shared/base_client.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -53,6 +53,17 @@ export class SynthtraceEsClient<TFields extends Fields> {
)}"`
);

const resolvedIndices = this.indices.length
? (
await this.client.indices.resolveIndex({
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for that, I was doing the same thing on another PR that hasn't been merged yet 😆

name: this.indices.join(','),
expand_wildcards: ['open', 'hidden'],
// @ts-expect-error ignore_unavailable is not in the type definition, but it is accepted by es
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit: If you want you can create a PR to fix this type issue like i did once upon a time - elastic/elasticsearch-specification#2653

ignore_unavailable: true,
})
).indices.map((index: { name: string }) => index.name)
: [];

await Promise.all([
...(this.dataStreams.length
? [
Expand All @@ -62,10 +73,10 @@ export class SynthtraceEsClient<TFields extends Fields> {
}),
]
: []),
...(this.indices.length
...(resolvedIndices.length
? [
this.client.indices.delete({
index: this.indices.join(','),
index: resolvedIndices.join(','),
expand_wildcards: ['open', 'hidden'],
ignore_unavailable: true,
allow_no_indices: true,
Expand Down
161 changes: 161 additions & 0 deletions packages/kbn-apm-synthtrace/src/scenarios/simple_non_ecs_logs.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,161 @@
/*
* Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
* or more contributor license agreements. Licensed under the Elastic License
* 2.0 and the Server Side Public License, v 1; you may not use this file except
* in compliance with, at your election, the Elastic License 2.0 or the Server
* Side Public License, v 1.
*/
import {
LogDocument,
log,
generateShortId,
generateLongId,
LONG_FIELD_NAME,
} from '@kbn/apm-synthtrace-client';
import moment from 'moment';
import { Scenario } from '../cli/scenario';
import { IndexTemplateName } from '../lib/logs/custom_logsdb_index_templates';
import { withClient } from '../lib/utils/with_client';
import {
getServiceName,
getCluster,
getCloudProvider,
getCloudRegion,
} from './helpers/logs_mock_data';
import { parseLogsScenarioOpts } from './helpers/logs_scenario_opts_parser';
import { timestampDateMapping } from '../lib/logs/custom_logsdb_indices';

// Logs Data logic
const MESSAGE_LOG_LEVELS = [
{ message: 'A simple log with something random <random> in the middle', level: 'info' },
{ message: 'Yet another debug log', level: 'debug' },
{ message: 'Error with certificate: "ca_trusted_fingerprint"', level: 'error' },
];

const scenario: Scenario<LogDocument> = async (runOptions) => {
const { isLogsDb } = parseLogsScenarioOpts(runOptions.scenarioOpts);

const constructLogsCommonData = () => {
const index = Math.floor(Math.random() * 3);
const serviceName = getServiceName(index);
const { message, level } = MESSAGE_LOG_LEVELS[index];
const { clusterId, clusterName, namespace } = getCluster(index);
const cloudRegion = getCloudRegion(index);

const commonLongEntryFields: LogDocument = {
'trace.id': generateShortId(),
'agent.name': 'nodejs',
'orchestrator.cluster.name': clusterName,
'orchestrator.cluster.id': clusterId,
'orchestrator.namespace': namespace,
'container.name': `${serviceName}-${generateShortId()}`,
'orchestrator.resource.id': generateShortId(),
'cloud.provider': getCloudProvider(),
'cloud.region': cloudRegion,
'cloud.availability_zone': `${cloudRegion}a`,
'cloud.project.id': generateShortId(),
'cloud.instance.id': generateShortId(),
'log.file.path': `/logs/${generateLongId()}/error.txt`,
severity: level,
svc: serviceName,
msg: message.replace('<random>', generateShortId()),
[LONG_FIELD_NAME]: 'test',
};

return {
index,
serviceName,
cloudRegion,
commonLongEntryFields,
};
};

return {
bootstrap: async ({ logsEsClient }) => {
await logsEsClient.createIndex('cloud-logs-synth.1-default', timestampDateMapping);
await logsEsClient.createIndex('cloud-logs-synth.2-default');
if (isLogsDb) await logsEsClient.createIndexTemplate(IndexTemplateName.LogsDb);
},
generate: ({ range, clients: { logsEsClient } }) => {
const { logger } = runOptions;

const logsWithNonEcsFields = range
.interval('1m')
.rate(1)
.generator((timestamp) => {
return Array(3)
.fill(0)
.map(() => {
const { commonLongEntryFields } = constructLogsCommonData();

return log
.create({ isLogsDb })
.deleteField('host.name')
.defaults({
...commonLongEntryFields,
hostname: 'synth-host',
})
.dataset('custom.synth')
.timestamp(timestamp);
});
});

const logsOutsideDsnsWithTimestamp = range
.interval('1m')
.rate(1)
.generator((timestamp) => {
return Array(3)
.fill(0)
.map(() => {
const { commonLongEntryFields } = constructLogsCommonData();

return log
.create({ isLogsDb })
.deleteField('host.name')
.deleteField('data_stream.type')
.defaults({
...commonLongEntryFields,
'data_stream.type': 'cloud-logs',
hostname: 'synth-host1',
})
.dataset('synth.1')
.timestamp(timestamp);
mohamedhamed-ahmed marked this conversation as resolved.
Show resolved Hide resolved
});
});

const logsOutsideDsnsWithoutTimestamp = range
.interval('1m')
.rate(1)
.generator((timestamp) => {
return Array(3)
.fill(0)
.map(() => {
const { commonLongEntryFields } = constructLogsCommonData();

return log
.create({ isLogsDb })
.deleteField('host.name')
.deleteField('data_stream.type')
.defaults({
...commonLongEntryFields,
hostname: 'synth-host2',
'data_stream.type': 'cloud-logs',
date: moment(timestamp).toDate(),
})
.dataset('synth.2');
});
});

return withClient(
logsEsClient,
logger.perf('generating_logs', () => [
logsWithNonEcsFields,
logsOutsideDsnsWithTimestamp,
logsOutsideDsnsWithoutTimestamp,
])
);
},
};
};

export default scenario;