Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Elasticsearch][Enrich] Policy name field is not correct #6608

Open
constanca-m opened this issue Jun 19, 2023 · 2 comments
Open

[Elasticsearch][Enrich] Policy name field is not correct #6608

constanca-m opened this issue Jun 19, 2023 · 2 comments
Labels
Feature:Stack Monitoring Stack Monitoring Feature Integration:elasticsearch Elasticsearch Team:Stack Monitoring Stack Monitoring team [elastic/stack-monitoring]

Comments

@constanca-m
Copy link
Contributor

constanca-m commented Jun 19, 2023
edited by klacabane
Loading

Summary

For the Elasticsearch enrich data stream, there is a field named elasticsearch.enrich.executing_policy.name that displays values such as executing enrich policy [users-policy] creating new enrich index [.enrich-users-policy-1687187221242]:

image

The name of the field suggests that it should hold the value of the policy name, however that is not happening.

Looking at the metricbeat module this field is populated by the corresponding field in the API payload, which is reported as the policy name. Given the metricbeat logic was not touched could it be the API that returns new values ?
@klacabane klacabane added the Team:Infra Monitoring UI - DEPRECATED Label for the Infrastructure Monitoring UI team. - DEPRECATED - Use Team:obs-ux-infra_services label Jun 19, 2023
@klacabane
Copy link
Contributor

klacabane commented Jun 19, 2023
edited
Loading

As of 8.9.0 it seems to be a change in the enrich API where name property has the same value as description property

/_enrich/_stats payload

{
  "executing_policies": [
    {
      "name": "executing enrich policy [users-policy] creating new enrich index [.enrich-users-policy-1687193734080]",
      "task": {
        "node": "siTW-zvKSTaECOi-Mry54g",
        "id": 34729,
        "type": "enrich",
        "action": "policy_execution",
        "status": {
          "phase": "RUNNING",
          "step": "UpdateSettingsRequest"
        },
        "description": "executing enrich policy [users-policy] creating new enrich index [.enrich-users-policy-1687193734080]",
        "start_time_in_millis": 1687193734080,
        "running_time_in_nanos": 1037591400,
        "cancellable": true,
        "cancelled": false,
        "parent_task_id": "siTW-zvKSTaECOi-Mry54g:34727",
        "headers": {
          "trace.id": "b666fefa7f2eee9903d227e06e398677"
        }
      }
    }
  ],
  "coordinator_stats": [
    {
      "node_id": "siTW-zvKSTaECOi-Mry54g",
      "queue_size": 0,
      "remote_requests_current": 0,
      "remote_requests_total": 0,
      "executed_searches_total": 0
    }
  ],
  "cache_stats": [
    {
      "node_id": "siTW-zvKSTaECOi-Mry54g",
      "count": 0,
      "hits": 0,
      "misses": 0,
      "evictions": 0
    }
  ]
}

This was referenced Jun 20, 2023
Open
Merged
@klacabane
Copy link
Contributor

Created elastic/elasticsearch#97016

@smith smith added the Feature:Stack Monitoring Stack Monitoring Feature label Dec 1, 2023
@smith smith added Team:Stack Monitoring Stack Monitoring team [elastic/stack-monitoring] and removed Team:Infra Monitoring UI - DEPRECATED Label for the Infrastructure Monitoring UI team. - DEPRECATED - Use Team:obs-ux-infra_services labels Jan 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Feature:Stack Monitoring Stack Monitoring Feature Integration:elasticsearch Elasticsearch Team:Stack Monitoring Stack Monitoring team [elastic/stack-monitoring]
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@smith @klacabane @constanca-m