-
Notifications
You must be signed in to change notification settings - Fork 8.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Alerts][Actions] The Email connector stopped working after the upgrade Kibana from 7.10.1 to 7.11.1. #94021
Comments
FYI the update from 7.10 > 7.11.1 has these set already. The issue did not occur in 7.10, only when updating to 7.11.1 (same configs)
|
@predogma Can you provide the customer's email configuration that is not working? Thanks! |
@ymao1 customer is K8 openshift, the following is drom the kinana-configmap.yml
|
@predogma Thank you for providing the kibana config! Can you provide the email connector configuration? You can access this in the
|
This seems like the bug that was resolved in 7.11.2 - issue #91363 (comment) 7.11.2 should be avoided because of some migration errors with some alerts, but the fix should be in 7.12.0 which is now out, as well. |
Thanks @pmuellr! I thought the workaround until upgrading to 7.11.2/7.12 was to set |
@ymao1 @pmuellr Unfortunately they don't seem to have configuration any more, but it was basic. I am a bit confused on this. Is it resolved or not in 7.12, if so what was 'fixed/changed', because yes in 7.11.1, customer already had the settings set to false and it was not working, when it worked in 7.10. What changed in 7.12 that would make it fixed before I ask customer to update again. |
In 7.11 (but not 7.10), email connectors for simple mail servers that don't support TLS were broken unless the global config I guess it is hard to say if this would resolve the issue without knowing what type of email connector they had set up. If the email server did not support TLS, then this bug fix would likely resolve the issue. If it does support TLS, then it might be a different issue. Is that a fair assessment @pmuellr ? |
I cross referenced back to other case, same customer, here are example of the connectors being used.
|
Have call today a 2PM EST, will see about getting current config he has now for the connectors in 7.11.1. |
@ymao1 yes its not really any diff
server does not require secure config he says |
Here's the release-based summary, AFAIK, looking through issues:
So I'd expect that email connector bug to exist in 7.11.0 and 7.11.1, but fixed in 7.11.2. However, I think that was all concerning using the mail directly, and not through a proxy, and it looks like a proxy is being used here, for one of the customers. Is the other customer also using a proxy? In issue #91686 (comment) , I note that setting With a proxy in place, we follow a slightly different path, but should still be setting the ultimate So it's concerning that using those flags doesn't work for the customer in 7.11.1 - it seems like there could be a different bug involving using TLS AND a proxy for the email. Realized also we did a node version jump from 7.10 -> 7.11 from node 10 -> 14. It's possible there was some change to the underlying TLS support in node that somehow broke this as well. Seems unlikely, but something to consider if we have to debug the email connector further. One piece of info that would be good to have is if they have a user/pass set for the email or not. Some of the logic in the email connector is sensitive to that. |
I'm not sure what this is in reference to - but guessing the email connectors? Like they deleted the connectors that were working, and then broke. And then created some new ones, that have never worked? Or does configuration relate to the Kibana config? I assume a proxy is still in use here? We had a different proxy problem that we also fixed in the same time frame, there's an odd chance that by fixing that, we somehow broke the email connector, but seems unlikely to me. |
Sorry, they had email connector working in 7.10.0, but slack connector not working, they updated to 7.11.1, then slack worked and email broke. So the configs were set in this environment (7.11.1) rejectUnauthorized, proxyRejectUnauthorizedCertificates and still email broken. The 7.11.0 showing in that email connector from API call, is misleading as I just saw him restart the pod and that is indicating 7.11.1 for Kibana. |
@pmuellr Customer is going to update the deployment 7.12.0. I will reschedule with them if issue still exists. Bare with it will take them a couple days. |
Given Can we find out if their proxy supports connecting to SMTP servers? Not clear that they all do, but that's the route the code flow is going to take now, because we don't have a way of bypassing the proxy for certain servers, yet. See issue #92949 for more details and a link to a work-in-progress PR for that. Mentioning this as it's possible in the older code, somehow the email DID (inadvertently) not use the proxy, allowing things to work. |
Why would that change between 7.10.0 and 7.11.1 though? it worked to the same SMTP servers (2 different ones/connectors) prior to updating to 7.11.1. |
I'm a little confused by this issue: |
@ymao1 Checking back to original case. It was closed with no confirmation if 7.12.x resolved issue. |
@predogma Thank you for checking! I will close this issue for now and reopen if it comes up again. |
Kibana version:
7.11.1.
Describe the bug:
We have two customers reported about the problem with Email connector after upgrading from 7.10.1 to 7.11.1:
@maggieghamry
and
@predogma
The text was updated successfully, but these errors were encountered: