feat: SSAPI Checkpointing (BPS-277) #1969
Conversation
Caleb-Hurshman
requested review from
schmikei
and removed request for
a team and
dpaasman00
Caleb-Hurshman
changed the title
| ssapir.logger.Info("no checkpoint found") | ||
| return | ||
| } | ||
| if err = json.Unmarshal(marshalBytes, ssapir.checkpointRecord); err != nil { |
There was a problem hiding this comment.
shouldn't we bomb out if we fail to unmarshal a checkpoint?
There was a problem hiding this comment.
We shouldn't Fatal because that would stop the collector process entirely. I'd prefer seeing the error propogated back up.
We do this so that other components can have clean Shutdown calls.
|
|
||
| // EventRecord struct stores the offset of the last event exported successfully | ||
| type EventRecord struct { | ||
| Offset int `json:"offset"` |
There was a problem hiding this comment.
Curious last time I've used a storage extension; we've used a timestamp to manage the last processed event time... Do you think that'd be more bulletproof than using the paginated offset?
There was a problem hiding this comment.
Using the offset instead of the timestamp was a piece of feedback from Dan on the spec. Looking back at his comment, he thought it would be easier to use the offset. Whether it's as bulletproof is a good question, but I assumed he wouldn't sacrifice the reliability of the receiver for ease. Curious to hear more of your perspective.
|
Yeah I'm thinking there's a couple scenarios where we need to think about:
At least those are the two main things I'm curious if this solution fully solves at the moment. |
| @@ -60,6 +62,10 @@ func (cfg *Config) Validate() error { | |||
| return errors.New("at least one search must be provided") | |||
| } | |||
|
|
|||
| if cfg.StorageID == nil { | |||
| return errors.New("storage configuration must be provided") | |||
There was a problem hiding this comment.
| return errors.New("storage configuration must be provided") | |
| return errors.New("storage configuration is required for this receiver") |
How would you test this? |
My recommendation would be to use https://pkg.go.dev/net/http/httptest and simulate one in code as a test; otherwise you can use a non-routable IP address: https://stackoverflow.com/questions/100841/artificially-create-a-connection-timeout-error |
| ssapir.logger.Error("error consuming logs", zap.Error(err)) | ||
| } | ||
| // last batch of logs has been successfully exported | ||
| exportedEvents += logs.ResourceLogs().Len() |
There was a problem hiding this comment.
If there was an error in the ConsumeLogs I believe that exportedEvents would be an untrue value right?
At least since we're not stopping if there was an error from the consumer. I think we should consider stopping if we get a ConsumeLogs error ever occurs.
There was a problem hiding this comment.
And an checkpoint should still be written in that case
There was a problem hiding this comment.
I agree that the process should break if ConsumeLogs errors, but I don't think the checkpoint should be updated.
In my head, the flow is like this:
- Previous batch consumed successfully (new offset written, which is the offset of the last log exported +1)
- Next batch obtained from Splunk using the offset
- Batch fails to export,
ConsumeLogserrors and the receiver process exits (no partial writes to GCP by default, no checkpoint written) - User addresses some issue with their GCP instance
- User restarts the receiver, which grabs the last written offset, essentially restarting from step 2
Feel free to add on if I'm missing something.
There was a problem hiding this comment.
Yeah I think my brain was on the thread that if some of the batch gets processed, but some others get dropped; I think that gets hairy for checkpointing for what is likely a pretty big edge case...
There was a problem hiding this comment.
Makes sense. It was my impression that the GCP exporter wouldn't partially write a batch, but I might be off on that. I don't know how to handle that case right now, but that's something I wanted to revisit when we get a chance to test. It depends on how much information the error returns. If there's no info on which log(s) failed, then we're kinda hosed.
| go.opentelemetry.io/collector/consumer v0.113.0 | ||
| go.opentelemetry.io/collector/consumer/consumertest v0.113.0 | ||
| go.opentelemetry.io/collector/extension/experimental/storage v0.113.0 | ||
| go.opentelemetry.io/collector/filter v0.114.0 |
There was a problem hiding this comment.
is this supposed to v0.114.0? I'd imagine a merge from main might smooth out some of these dependency conflicts?
There was a problem hiding this comment.
I'm not seeing any conflicts personally. Tidy-ing doesn't update these deps. Should I rebase the feature branch to the latest release?
There was a problem hiding this comment.
Perhaps @dpaasman00 would know better; but I'd imagine that we probably want go.opentelemetry.io/collector/filter v0.113.0 rather than v0.114.0 but since this is not being merged into main for a little while; I'd imagine its not worth worrying about too much until we want to start entertaining a main merge.
Proposed Change
Add checkpointing capabilities to the SSAPI receiver.
The receiver now requires a storage extension to be configured in order to run.
Store the offset of the last successfully exported log as the checkpoint value.
Upon starting the receiver, load a checkpoint from the storage extension in case a previous run failed.
1st run (Empty storage extn):
2nd run (Storage extension not cleared out to simulate an existing offset checkpoint):
Checklist