Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Dissect: Support trimming captured values and other configuration options #19464

Merged
merged 5 commits into from
Jul 6, 2020
Merged

Dissect: Support trimming captured values and other configuration options #19464

merged 5 commits into from
Jul 6, 2020

Conversation

adriansr
Copy link
Contributor

@adriansr adriansr commented Jun 26, 2020
edited
Loading

What does this PR do?

This adds 4 new configuration parameters for the dissect processor:

  • ignore_failure, so that it doesn't return an error when the tokenizer doesn't match the input. This is useful for chaining multiple processors together.
  • overwrite_keys, so that existing keys are overwritten if they already exist.
  • trim_values, to enable trimming blank space (left,(leading) right(trailing) or all) in captured values.
  • trim_chars is the set of characters that are trimmed by the above option (default is the ascii space character).

The default values for these new flags have been chosen so that the default behavior of the processor is unchanged.

Why is it important?

These new flags are necessary to make dissect more useful and easy to use when used in chains of processors, for example a cascade of processors when only one of them is expected to match the input.

Checklist

  • My code follows the style guidelines of this project
  • I have commented my code, particularly in hard-to-understand areas
  • I have made corresponding changes to the documentation
  • I have made corresponding change to the default configuration files
  • I have added tests that prove my fix is effective or that my feature works
  • I have added an entry in CHANGELOG.next.asciidoc or CHANGELOG-developer.next.asciidoc.

@botelastic botelastic bot added the needs_team Indicates that the issue/PR needs a Team:* label label Jun 26, 2020
@adriansr adriansr requested review from dedemorton, ph and sayden June 26, 2020 17:49
@adriansr adriansr added review needs_backport PR is waiting to be backported to other branches. labels Jun 26, 2020
@elasticmachine
Copy link
Collaborator

elasticmachine commented Jun 27, 2020
edited
Loading

💔 Tests Failed

Pipeline View Test View Changes Artifacts preview

Expand to view the summary

Build stats

  • Build Cause: [Pull request #19464 updated]

  • Start Time: 2020-07-06T15:17:09.873+0000

  • Duration: 79 min 34 sec

Test stats 🧪

Test Results
Failed 1
Passed 9637
Skipped 1574
Total 11212

Test errors

Expand to view the tests failures

  • Name: Build and Test / Filebeat Mac OS X / test_clean_removed_with_clean_inactive – test_registrar.Test
    • Age: 1
    • Duration: 1.532
    • Error Details:
      -------------------- >> begin captured stdout << ---------------------
      registry size: 2
      registry size after remove: 2

--------------------- >> end captured stdout << ----------------------

Steps errors

Expand to view the steps failures

  • Name: Mage build unitTest

    • Description: mage build unitTest

    • Duration: 11 min 3 sec

    • Start Time: 2020-07-06T15:41:42.021+0000

    • log

  • Name: Recursively delete the current directory from the workspace

    • Description: script returned exit code 1

    • Duration: 0 min 12 sec

    • Start Time: 2020-07-06T15:54:32.802+0000

    • log

  • Name: Report to Codecov

    • Description: curl -sSLo codecov https://codecov.io/bash for i in auditbeat filebeat heartbeat libbeat metricbeat packetbeat winlogbeat journalbeat do FILE="${i}/build/coverage/full.cov" if [ -f "${FILE}" ]; then bash codecov -f "${FILE}" fi done

    • Duration: 1 min 27 sec

    • Start Time: 2020-07-06T15:43:43.658+0000

    • log

  • Name: Make -C libbeat testsuite

    • Description: make -C libbeat testsuite

    • Duration: 9 min 41 sec

    • Start Time: 2020-07-06T15:39:33.071+0000

    • log

  • Name: Report to Codecov

    • Description: curl -sSLo codecov https://codecov.io/bash for i in auditbeat filebeat heartbeat libbeat metricbeat packetbeat winlogbeat journalbeat do FILE="${i}/build/coverage/full.cov" if [ -f "${FILE}" ]; then bash codecov -f "${FILE}" fi done

    • Duration: 2 min 22 sec

    • Start Time: 2020-07-06T15:48:15.935+0000

    • log

  • Name: Report to Codecov

    • Description: curl -sSLo codecov https://codecov.io/bash for i in auditbeat filebeat heartbeat libbeat metricbeat packetbeat winlogbeat journalbeat do FILE="${i}/build/coverage/full.cov" if [ -f "${FILE}" ]; then bash codecov -f "${FILE}" fi done

    • Duration: 2 min 22 sec

    • Start Time: 2020-07-06T15:40:13.933+0000

    • log

  • Name: Report to Codecov

    • Description: curl -sSLo codecov https://codecov.io/bash for i in auditbeat filebeat heartbeat libbeat metricbeat packetbeat winlogbeat journalbeat do FILE="${i}/build/coverage/full.cov" if [ -f "${FILE}" ]; then bash codecov -f "${FILE}" fi done

    • Duration: 2 min 22 sec

    • Start Time: 2020-07-06T16:32:17.104+0000

    • log

  • Name: Report to Codecov

    • Description: curl -sSLo codecov https://codecov.io/bash for i in auditbeat filebeat heartbeat libbeat metricbeat packetbeat winlogbeat journalbeat do FILE="${i}/build/coverage/full.cov" if [ -f "${FILE}" ]; then bash codecov -f "${FILE}" fi done

    • Duration: 2 min 22 sec

    • Start Time: 2020-07-06T15:47:01.671+0000

    • log

  • Name: Report to Codecov

    • Description: curl -sSLo codecov https://codecov.io/bash for i in auditbeat filebeat heartbeat libbeat metricbeat packetbeat winlogbeat journalbeat do FILE="${i}/build/coverage/full.cov" if [ -f "${FILE}" ]; then bash codecov -f "${FILE}" fi done

    • Duration: 2 min 22 sec

    • Start Time: 2020-07-06T16:01:32.067+0000

    • log

  • Name: Report to Codecov

    • Description: curl -sSLo codecov https://codecov.io/bash for i in auditbeat filebeat heartbeat libbeat metricbeat packetbeat winlogbeat journalbeat do FILE="${i}/build/coverage/full.cov" if [ -f "${FILE}" ]; then bash codecov -f "${FILE}" fi done

    • Duration: 2 min 22 sec

    • Start Time: 2020-07-06T16:03:54.105+0000

    • log

Log output

Expand to view the last 100 lines of log output 

[2020-07-06T16:35:16.906Z] + [ -f metricbeat/build/coverage/full.cov ]
[2020-07-06T16:35:16.906Z] + FILE=packetbeat/build/coverage/full.cov
[2020-07-06T16:35:16.906Z] + [ -f packetbeat/build/coverage/full.cov ]
[2020-07-06T16:35:16.906Z] + FILE=winlogbeat/build/coverage/full.cov
[2020-07-06T16:35:16.906Z] + [ -f winlogbeat/build/coverage/full.cov ]
[2020-07-06T16:35:16.906Z] + FILE=journalbeat/build/coverage/full.cov
[2020-07-06T16:35:16.906Z] + [ -f journalbeat/build/coverage/full.cov ]
[2020-07-06T16:35:17.426Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats
[2020-07-06T16:35:17.736Z] + find . -type f -name TEST*.xml -path */build/* -delete
[2020-07-06T16:35:17.747Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Lint
[2020-07-06T16:35:17.842Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Elastic-Agent-Mac-OS-X
[2020-07-06T16:35:17.917Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Winlogbeat-oss
[2020-07-06T16:35:17.996Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Elastic-Agent-x-pack
[2020-07-06T16:35:18.078Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Auditbeat-crosscompile
[2020-07-06T16:35:18.155Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Dockerlogbeat
[2020-07-06T16:35:18.234Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Journalbeat-oss
[2020-07-06T16:35:18.308Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Generators-Metricbeat-Linux
[2020-07-06T16:35:18.387Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Auditbeat-oss-Mac-OS-X
[2020-07-06T16:35:18.462Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Auditbeat-x-pack-Mac-OS-X
[2020-07-06T16:35:18.538Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Functionbeat-x-pack
[2020-07-06T16:35:18.615Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Elastic-Agent-x-pack-Windows
[2020-07-06T16:35:18.692Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Libbeat-oss
[2020-07-06T16:35:18.767Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-OSS-Unit-tests
[2020-07-06T16:35:18.840Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-crosscompile
[2020-07-06T16:35:18.915Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Auditbeat-x-pack
[2020-07-06T16:35:18.988Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-x-pack-Mac-OS-X
[2020-07-06T16:35:19.071Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Auditbeat-oss-Windows
[2020-07-06T16:35:19.150Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Heartbeat-oss
[2020-07-06T16:35:19.236Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Auditbeat-x-pack-Windows
[2020-07-06T16:35:19.315Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Filebeat-Mac-OS-X
[2020-07-06T16:35:19.396Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Libbeat-x-pack
[2020-07-06T16:35:19.470Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Filebeat-x-pack-Windows
[2020-07-06T16:35:19.542Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Winlogbeat-Windows-x-pack
[2020-07-06T16:35:19.704Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-Mac-OS-X
[2020-07-06T16:35:19.784Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Filebeat-Windows
[2020-07-06T16:35:19.863Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Auditbeat-oss-Linux
[2020-07-06T16:35:19.947Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Packetbeat-oss
[2020-07-06T16:35:20.020Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Winlogbeat-Windows
[2020-07-06T16:35:20.098Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Heartbeat-Mac-OS-X
[2020-07-06T16:35:20.171Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Functionbeat-Mac-OS-X-x-pack
[2020-07-06T16:35:20.244Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-x-pack-Windows
[2020-07-06T16:35:20.316Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-Windows
[2020-07-06T16:35:20.390Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Filebeat-x-pack
[2020-07-06T16:35:20.472Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Generators-Beat-Linux
[2020-07-06T16:35:20.545Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Filebeat-x-pack-Mac-OS-X
[2020-07-06T16:35:20.621Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Heartbeat-Windows
[2020-07-06T16:35:20.693Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Filebeat-oss
[2020-07-06T16:35:20.766Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Functionbeat-Windows
[2020-07-06T16:35:20.838Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-OSS-Integration-tests
[2020-07-06T16:35:20.910Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-Python-integration-tests
[2020-07-06T16:35:20.985Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Generators-Metricbeat-Mac-OS-X
[2020-07-06T16:35:21.062Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Generators-Beat-Mac-OS-X
[2020-07-06T16:35:21.136Z] Running in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-x-pack
[2020-07-06T16:35:21.486Z] + cat
[2020-07-06T16:35:21.486Z] + /usr/local/bin/runbld ./runbld-script
[2020-07-06T16:35:21.486Z] Picked up JAVA_TOOL_OPTIONS: -Dfile.encoding=UTF8
[2020-07-06T16:35:28.070Z] runbld>>> runbld started
[2020-07-06T16:35:28.070Z] runbld>>> 1.6.12/f45d832f2ba0aa2722ab4ec1fda8ad140f027f8b
[2020-07-06T16:35:29.978Z] runbld>>> The following profiles matched the job 'Beats/beats-beats-mbp/PR-19464' in order of occurrence in the config (last value wins).
[2020-07-06T16:35:30.924Z] runbld>>> Debug logging enabled.
[2020-07-06T16:35:30.924Z] runbld>>> Storing result
[2020-07-06T16:35:31.185Z] runbld>>> Store result: created {:total 2, :successful 2, :failed 0} 1
[2020-07-06T16:35:31.185Z] runbld>>> BUILD: https://c150076387b5421f9154dfbf536e5c60.us-west1.gcp.cloud.es.io:9243/build-1587637540455/t/20200706163530-2B5E7433
[2020-07-06T16:35:31.185Z] runbld>>> Adding system facts.
[2020-07-06T16:35:32.126Z] runbld>>> Adding vcs info for the latest commit:  3eda3541d2537bae5866b6ebea1169044729422e
[2020-07-06T16:35:32.126Z] runbld>>> >>>>>>>>>>>> SCRIPT EXECUTION BEGIN >>>>>>>>>>>>
[2020-07-06T16:35:32.126Z] runbld>>> Adding /usr/lib/jvm/java-8-openjdk-amd64/bin to the path.
[2020-07-06T16:35:32.126Z] Processing JUnit reports with runbld...
[2020-07-06T16:35:32.126Z] + echo 'Processing JUnit reports with runbld...'
[2020-07-06T16:35:32.697Z] runbld>>> <<<<<<<<<<<< SCRIPT EXECUTION END <<<<<<<<<<<<
[2020-07-06T16:35:32.697Z] runbld>>> DURATION: 16ms
[2020-07-06T16:35:32.697Z] runbld>>> STDOUT: 40 bytes
[2020-07-06T16:35:32.697Z] runbld>>> STDERR: 49 bytes
[2020-07-06T16:35:32.697Z] runbld>>> WRAPPED PROCESS: SUCCESS (0)
[2020-07-06T16:35:32.697Z] runbld>>> Searching for build metadata in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats
[2020-07-06T16:35:33.638Z] runbld>>> Storing build metadata: 
[2020-07-06T16:35:33.638Z] runbld>>> Adding test report.
[2020-07-06T16:35:33.638Z] runbld>>> Searching for junit test output files with the pattern: TEST-.*\.xml$ in: /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats
[2020-07-06T16:35:34.577Z] runbld>>> Found 114 test output files
[2020-07-06T16:35:35.152Z] runbld>>> No testsuite node found in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-x-pack/x-pack/metricbeat/build/TEST-go-integration-istio.xml
[2020-07-06T16:35:35.152Z] runbld>>> No testsuite node found in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-x-pack/x-pack/metricbeat/build/TEST-go-integration-tomcat.xml
[2020-07-06T16:35:35.152Z] runbld>>> No testsuite node found in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-x-pack/x-pack/metricbeat/build/TEST-go-integration-iis.xml
[2020-07-06T16:35:35.152Z] runbld>>> No testsuite node found in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-x-pack/x-pack/metricbeat/build/TEST-go-integration-openmetrics.xml
[2020-07-06T16:35:35.152Z] runbld>>> No testsuite node found in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-x-pack/x-pack/metricbeat/build/TEST-go-integration-activemq.xml
[2020-07-06T16:35:36.538Z] runbld>>> No testsuite node found in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-OSS-Integration-tests/metricbeat/build/TEST-go-integration-graphite.xml
[2020-07-06T16:35:36.538Z] runbld>>> No testsuite node found in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464/src/github.com/elastic/beats/Metricbeat-OSS-Integration-tests/metricbeat/build/TEST-go-integration-windows.xml
[2020-07-06T16:35:36.799Z] runbld>>> Test output logs contained: Errors: 0 Failures: 1 Tests: 11062 Skipped: 1335
[2020-07-06T16:35:37.059Z] runbld>>> Storing result
[2020-07-06T16:35:37.059Z] runbld>>> FAILURES: 1
[2020-07-06T16:35:37.628Z] runbld>>> Store result: updated {:total 2, :successful 2, :failed 0} 2
[2020-07-06T16:35:37.628Z] runbld>>> BUILD: https://c150076387b5421f9154dfbf536e5c60.us-west1.gcp.cloud.es.io:9243/build-1587637540455/t/20200706163530-2B5E7433
[2020-07-06T16:35:37.628Z] runbld>>> Email notification disabled by environment variable.
[2020-07-06T16:35:37.628Z] runbld>>> Slack notification disabled by environment variable.
[2020-07-06T16:35:43.307Z] Running on Jenkins in /var/lib/jenkins/workspace/Beats_beats-beats-mbp_PR-19464
[2020-07-06T16:35:43.412Z] [INFO] getVaultSecret: Getting secrets
[2020-07-06T16:35:43.477Z] Masking supported pattern matches of $VAULT_ADDR or $VAULT_ROLE_ID or $VAULT_SECRET_ID
[2020-07-06T16:35:44.261Z] + chmod 755 generate-build-data.sh
[2020-07-06T16:35:44.261Z] + ./generate-build-data.sh https://beats-ci.elastic.co/blue/rest/organizations/jenkins/pipelines/Beats/beats-beats-mbp/PR-19464/ https://beats-ci.elastic.co/blue/rest/organizations/jenkins/pipelines/Beats/beats-beats-mbp/PR-19464/runs/17 FAILURE 4714127
[2020-07-06T16:35:44.261Z] INFO: curl https://beats-ci.elastic.co/blue/rest/organizations/jenkins/pipelines/Beats/beats-beats-mbp/PR-19464/runs/17/steps/?limit=10000 -o steps-info.json
[2020-07-06T16:35:46.744Z] INFO: curl https://beats-ci.elastic.co/blue/rest/organizations/jenkins/pipelines/Beats/beats-beats-mbp/PR-19464/runs/17/tests/?status=FAILED -o tests-errors.json

@botelastic botelastic bot removed the needs_team Indicates that the issue/PR needs a Team:* label label Jun 28, 2020
@elasticmachine
Copy link
Collaborator

Pinging @elastic/siem (Team:SIEM)

andrewkroh
andrewkroh approved these changes Jun 28, 2020
View reviewed changes
Copy link
Member

@andrewkroh andrewkroh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

libbeat/processors/dissect/docs/dissect.asciidoc
- `right`: values are trimmed on the right (trailing).
- `all`: values are trimmed for leading and trailing.

`trim_chars`:: (Optional) Set of characters to trim from values, when trimming
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I was wondering if this value was a list of characters or a string or characters. Either stating the data type or including an example would help.

ph
ph approved these changes Jun 29, 2020
View reviewed changes
Copy link
Contributor

@ph ph left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, fyi @andresrc @urso

@andresrc
Copy link
Contributor

cc @sayden

sayden
sayden approved these changes Jun 30, 2020
View reviewed changes
Copy link
Contributor

@sayden sayden left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

CI errors look unrelated too

@adriansr
Copy link
Contributor Author

adriansr commented Jul 1, 2020

rebased hoping to pass CI

@sayden
Copy link
Contributor

sayden commented Jul 1, 2020

Jenkins, run tests please

1 similar comment
@adriansr
Copy link
Contributor Author

adriansr commented Jul 2, 2020

Jenkins, run tests please

@adriansr
Copy link
Contributor Author

adriansr commented Jul 6, 2020

Test failures unrelated

@adriansr adriansr merged commit a57e390 into elastic:master Jul 6, 2020
adriansr added a commit to adriansr/beats that referenced this pull request Jul 6, 2020
@adriansr
Dissect: Support trimming captured values and other configuration opt…
b807ab9 
…ions (elastic#19464)

This adds 4 new configuration parameters for the dissect processor:

- ignore_failure, so that it doesn't return an error when the tokenizer doesn't match the input. This is useful for chaining multiple processors together.
- overwrite_keys, so that existing keys are overwritten if they already exist.
- trim_values, to enable trimming blank space (left,(leading) right(trailing) or all) in captured values.
- trim_chars is the set of characters that are trimmed by the above option (default is the ascii space character).

The default values for these new flags have been chosen so that the default behavior of the processor is unchanged.

(cherry picked from commit a57e390)
@adriansr adriansr mentioned this pull request Jul 6, 2020
Merged
6 tasks
@adriansr adriansr added v7.9.0 and removed needs_backport PR is waiting to be backported to other branches. labels Jul 6, 2020
adriansr added a commit that referenced this pull request Jul 13, 2020
@adriansr
Dissect: Support trimming captured values and other configuration opt…
a1e598c 
…ions (#19464) (#19685)

This adds 4 new configuration parameters for the dissect processor:

- ignore_failure, so that it doesn't return an error when the tokenizer doesn't match the input. This is useful for chaining multiple processors together.
- overwrite_keys, so that existing keys are overwritten if they already exist.
- trim_values, to enable trimming blank space (left,(leading) right(trailing) or all) in captured values.
- trim_chars is the set of characters that are trimmed by the above option (default is the ascii space character).

The default values for these new flags have been chosen so that the default behavior of the processor is unchanged.

(cherry picked from commit a57e390)
melchiormoulin pushed a commit to melchiormoulin/beats that referenced this pull request Oct 14, 2020
@adriansr @melchiormoulin
Dissect: Support trimming captured values and other configuration opt…
c3f49d6 
…ions (elastic#19464)

This adds 4 new configuration parameters for the dissect processor:

- ignore_failure, so that it doesn't return an error when the tokenizer doesn't match the input. This is useful for chaining multiple processors together.
- overwrite_keys, so that existing keys are overwritten if they already exist.
- trim_values, to enable trimming blank space (left,(leading) right(trailing) or all) in captured values.
- trim_chars is the set of characters that are trimmed by the above option (default is the ascii space character).

The default values for these new flags have been chosen so that the default behavior of the processor is unchanged.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@andrewkroh andrewkroh andrewkroh approved these changes

@sayden sayden sayden approved these changes

@ph ph ph approved these changes

@dedemorton dedemorton Awaiting requested review from dedemorton

Assignees
No one assigned
Labels
enhancement review v7.9.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@adriansr @elasticmachine @andresrc @sayden @ph @andrewkroh