Honor kube event resysncs to handle missed watch events

[vjsamuel]

Enhancement

What does this PR do?

This PR adds a HonorReSyncs watcher option to allow resyncs to be queued in as add events. The deduplication on the autodiscover module would ensure that we don't spin up more than one.

Why is it important?

This is needed if beats has been up and running and we add namespace level default hints. Without a resync it would require beats to be restarted. The resync will make sure that every x minutes we reconcile and ensure that these configurations are added in. It also makes sure that any missed add/update events are handled properly.

Checklist

• My code follows the style guidelines of this project
• I have commented my code, particularly in hard-to-understand areas
• I have made corresponding changes to the documentation
• I have made corresponding change to the default configuration files
• I have added tests that prove my fix is effective or that my feature works
• I have added an entry in CHANGELOG.next.asciidoc or CHANGELOG-developer.next.asciidoc.

Author's Checklist

• [ ]

How to test this PR locally

http:
  enabled: true
  host: 0.0.0.0
  port: 5002

metricbeat.autodiscover:
  providers:
    - type: kubernetes
      scope: cluster
      sync_period: 1m
      kube_config: ${HOME}/.kube/config
      namespace: test
      add_resource_metadata:
        namespace:
          enabled: true
      builders:
        - type: hints

kubectl create ns testresync
kubectl run prometheus --image=prom/prometheus -n testresync

Add annotations at the namespace level

kubectl annotate ns testresync co.elastic.module=prometheus
kubectl annotate ns testresync co.elastic.hosts='${data.host}:9090'

wait for 1 minute:
curl localhost:5002/dataset?pretty

this should how a runner for the prometheus metrics endpoint

kubectl annotate ns testresync co.elastic.hosts='${data.host}:9091' --overwrite

wait for 1 more minute and this should change teh runner to an incorrect port of 9091

delete all the annotations and this should remove the runner completely.

prior to this change, adding namespace level annotations would require restarting of beats to take effect

Related issues

Use cases

[elasticmachine]

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS

Expand to view the summary

Build stats

• Build Cause: Started by user Chris Mark

• Start Time: 2020-12-18T19:21:35.951+0000

• Duration: 55 min 45 sec

Test stats 🧪

Test	Results
Failed	0
Passed	17504
Skipped	1383
Total	18887

Steps errors

Expand to view the steps failures

Terraform Apply on x-pack/metricbeat/module/aws

• Took 0 min 14 sec . View more details on here
• Description: terraform apply -auto-approve

Terraform Apply on x-pack/metricbeat/module/aws

• Took 0 min 15 sec . View more details on here
• Description: terraform apply -auto-approve

💚 Flaky test report

Tests succeeded.

Expand to view the summary

Test stats 🧪

Test	Results
Failed	0
Passed	17504
Skipped	1383
Total	18887

[elasticmachine]

Pinging @elastic/integrations-platforms (Team:Platforms)

[vjsamuel]

CI failure seems like a flake, tried running on my local and it seems to pass.

[vjsamuel]

@jsoriano @ChrsMark can you please help this one too? this has been outstanding for quite a while and is a critical gap in the namespace annotation fallback support that we added. without this PR, beats wont pick up hints on the namespace without being restarted.

[jsoriano]

Hey @vjsamuel,

As I commented in the original PR #16322 (review), I think we should explicitly watch changes in namespaces to update pods instead of relying in pod resyncs for that. We plan to do some refactors in this direction, but I don't think they will arrive sooner than in 7.12, so let's go on with this PR by now.

Added a couple of small questions.

Thanks!

[jsoriano]

Could you please add a check in this method so it reports some error (or even panics) if not all events have the same ID? I am worried that in a future refactor we might be tempted to reuse this method to publish pod and container events in the same call, and they will have different ids (commented in the old PR #16322 (comment)).

[jsoriano]

jenkins run the tests please

[vjsamuel]

@jsoriano thanks for the patience on this one :) the problem with not doing something like this as i had mentioned last time is that reconciliation is a must for kubernetes control loops. there is no guarantee that every WATCH event that is emitted is handled by the client. that being said, we would periodically have to reconcile. this PR primarily tries to ensure that we cover those kinds of issues as we have seen times where something wasnt being monitored and started to work properly when beats got restarted.

[ChrsMark]

Wondering if we could avoid this merge and check the configs differently in autodiscover runner. Feel like this will make things more complex and hard for debugging in the future. wdyt?

[vjsamuel]

the problem is that we wouldnt know if a config was removed during a resync if we dont compare them together.

[ChrsMark]

I think we can go on with this for now. What is still missing before merge:

1. Can we comment about the logic behind HonorReSyncs within the code where it is used so as to make the reading more easy for the future? I left a comment about it inline. Thanks.
2. @jsoriano questions/comments are not addressed
3. Manual testing notes are missing from the PR description. Can you please add this with the cases you have been testing?

[ChrsMark]

Can you also please elaborate why in this case we push the event into the add queue and not in the update? Maybe add a comment about it for the future reader?

[vjsamuel]

i have done the needful

[vjsamuel]

@ChrsMark @jsoriano i have updated the PR with the required things. i am open to designing this better in follow up PRs. I can do them personally based on recommendations as well.

[vjsamuel]

test plan added.

[ChrsMark]

lgtm

[ChrsMark]

@ChrsMark @jsoriano i have updated the PR with the required things. i am open to designing this better in follow up PRs. I can do them personally based on recommendations as well.

Created an issue to discuss about this and draft a solution: #23139

[jsoriano]

Test added here seems to be flaky, not sure if this is an actual bug. I have opened an issue for investigation: #23319