Refactor use of system.hostfs to fix cgroup metrics

[fearful-symmetry]

What does this PR do?

This is a fix for #23267, wherein we weren't passing a hostfs to the metricbeat self-monitor code. In order to fix this in a somewhat clean way, I ended up migrating all of the hostfs handling to libbeat/path, and out of the system module entirely. This is a bit of a weird edge case for libbeat/path, so just tell me if this should be done somewhat differently.

Why is it important?

As explained in the linked issue, this is causing problems for users setting hostfs.

Checklist

• My code follows the style guidelines of this project
• I have commented my code, particularly in hard-to-understand areas
• I have added an entry in CHANGELOG.next.asciidoc or CHANGELOG-developer.next.asciidoc.

How to test this PR locally

• Pull down, build.
• Make sure the socket, process,entropy and diskio are working correctly.
• Run metricbeat with an alternate system.hostfs setting, such as in a container, like this:

docker run --mount type=bind,source=/proc,target=/hostfs/proc,readonly --mount type=bind,source=/sys/fs/cgroup,target=/hostfs/sys/fs/cgroup,readonly --mount type=bind,source=/,target=/hostfs,readonly --net=host docker.elastic.co/beats/metricbeat:8.0.0 -e -system.hostfs=/hostfs -E 'output.elasticsearch.hosts=["localhost:9200"]'

Insure that the above metricsets are still working, and that no errors like instance/metrics.go:285 error getting group status: open /proc/33861/cgroup: no such file or directory appear.

Related issues

• Monitoring: allow specifying /proc or hostfs path. #23267

Logs

Tested, it looks like we're properly reporting cgroup metrics inside a docker container:

2021-03-03T21:42:58.879Z        INFO    [monitoring]    log/log.go:152  Total non-zero metrics  {"monitoring": {"metrics": {"beat":{"cgroup":{"cpu":{"cfs":{"period":{"us":100000}},"id":"2716b9eb8166589954bcd5e6e8c73c3f08913e1604d60e27bb0f631014a5789e"},"cpuacct":{"id":"2716b9eb8166589954bcd5e6e8c73c3f08913e1604d60e27bb0f631014a5789e","total":{"ns":8121549013889171}},"memory":{"id":"2716b9eb8166589954bcd5e6e8c73c3f08913e1604d60e27bb0f631014a5789e","mem":{"limit":{"bytes":9223372036854771712},"usage":{"bytes":11272822784}}}},"cpu":{"system":{"ticks":7910,"time":{"ms":7911}},"total":{"ticks":14340,"time":{"ms":14347},"value":14340},"user":{"ticks":6430,"time":{"ms":6436}}},"handles":{"limit":{"hard":1048576,"soft":1048576},"open":10},"info":{"ephemeral_id":"c3361a23-ba63-4044-8926-e3e188e48715","uptime":{"ms":270554}},"memstats":{"gc_next":16976352,"memory_alloc":9944136,"memory_sys":75580416,"memory_total":484400016,"rss":86827008},"runtime":{"goroutines":16}},"libbeat":{"config":{"module":{"running":3,"starts":3},"reloads":1,"scans":1},"output":{"events":{"acked":628,"active":0,"batches":53,"total":628},"read":{"bytes":25316},"type":"elasticsearch","write":{"bytes":1123236}},"pipeline":{"clients":0,"events":{"active":4,"published":632,"retry":27,"total":632},"queue":{"acked":628}}},"metricbeat":{"system":{"cpu":{"events":28,"success":28},"filesystem":{"events":10,"success":10},"fsstat":{"events":5,"success":5},"load":{"events":28,"success":28},"memory":{"events":28,"success":28},"network":{"events":242,"success":242},"process":{"events":235,"success":235},"process_summary":{"events":27,"success":28},"socket_summary":{"events":28,"success":28},"uptime":{"events":1,"success":1}}},"system":{"cpu":{"cores":4},"load":{"1":3.76,"15":3.76,"5":3.54,"norm":{"1":0.94,"15":0.94,"5":0.885}}}}}}

[elasticmachine]

Pinging @elastic/integrations (Team:Integrations)

[elasticmachine]

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS

Expand to view the summary

Build stats

• Build Cause: Pull request #24334 updated

• Start Time: 2021-03-11T15:38:25.736+0000

• Duration: 133 min 39 sec

• Commit: c9acdb9

Test stats 🧪

Test	Results
Failed	0
Passed	45209
Skipped	4990
Total	50199

Trends 🧪

💚 Flaky test report

Tests succeeded.

Expand to view the summary

Test stats 🧪

Test	Results
Failed	0
Passed	45209
Skipped	4990
Total	50199

[ChrsMark]

Maybe to add this option to https://github.com/elastic/beats/blob/9735c6d51540b2fb72abfbbea0a165c033619542/libbeat/docs/shared-path-config.asciidoc too?

Also in the manual testing section would be nice to check if setting the path through the configuration file works too.

[jsoriano]

Nice. Added some questions, mainly about the name of the option, and its availability for other beats.

[jsoriano]

Wdyt about calling it path.hostfs now that it is another configurable path, and not only used by the system module?

[fearful-symmetry]

Yah, it might be worth it to have a second one for backwards compatibility?

[jsoriano]

Yep, we would keep both at least till 8.0.

[urso]

Is this always safe? By introducing Hostfs to the Path struct we will allow users to overwrite the path in the configuration file already.

[fearful-symmetry]

Maybe I'm missing something, but is that any different from -E flags?

[urso]

Paths are configured twice I think. Once via --path.X on startup + --system.hostfs.

Then the config file is read and the path settings from the configuration file are applied again. The -E flags for path settings only become effective during the second phase. That is why the shim bash scripts just use --path.X CLI flags and we do not attempt to overwrite the defaults in the config.

The thing I was wondering: What if path.hostfs is configured, but system.hostfs is not? In that case you will set path.hostfs to an empty string here. Is this on purpose? Why not:

if partialConfig.Path.Hostfs == "" {
  partialConfig.Path.Hostfs = partialConfig.Hostfs
}

If the forced overwrite is on purpose a comment explaining the why would be helpful.

[fearful-symmetry]

Okay, so, technically speaking, there is no path.hostfs. There's only system.hostfs, and we just expand the main Path struct type with hostfs, hence why that's being overwritten. Ideally it would only be path.hostfs, but I'm mostly worried about breaking changes here, since I'm considering this to be primarily a bugfix so we can properly set hostfs in the cgroup self-monitoring.

[urso]

I see. It is still kinda "obscure" and I'm sure someone (me?, future you?) might change the logic on purpose or by accident. Can you please add a code comment about the why? Having the why in the PR review it will be lost.

[fearful-symmetry]

Ah, good point.

[fearful-symmetry]

Bah, circular dependency with the cfgwarn import.

[fearful-symmetry]

Alright, I think I should probably put the hostfs flag declaration somewhere else. Just not sure where...

[jsoriano]

LGTM to fix #23267 in Metricbeat.

I still wonder if the setting in the config file should be called path.hostfs instead of system.hostfs, specially if this can be used on other beats, where the path prefix would make more sense to me than the system one. But this could be done in a future change, and we could support both names during a time for compatibility with Metricbeat.

[jsoriano]

If this setting is used for other beats too, I think we could add it as path.hostfs for the config file setting, as other beats don't have a system module. But we can leave it for a future change.

[jsoriano]

Yep, we would keep both at least till 8.0.

[jsoriano]

/test

[urso]

/test

[fearful-symmetry]

Yah, I have no idea what's wrong with CI here.

[schans]

Hi!

I noticed the issue has the v7.11.2 label but is not part of the release as far as I can tell. Is v7.13.0 going to be the next release after v7.11.x? If so, when is that to be expected?

[fearful-symmetry]

@schans this ended up being a more complicated change than I expected, so we missed 7.11.2. @urso I don't see anything that would theoretically prevent us from backporting to 7.12?

[schans]

Hi!

Looks like we missed the 7.12.0 release. Is this still on schedule for 7.13.0? Any plans on backporting to the 7.12 branch?

Thanks
Bart

[fearful-symmetry]

Bah, sorry, I expected the PR to get bumped by Steffen, so I missed it.

[fearful-symmetry]

So, @schans we should be ready for 7.13, however, this is too major to backport to a future 7.12 release.

[bmorelli25]

@fearful-symmetry Is this the correct example? It seems to be a duplicate of the logs example one section up.

[fearful-symmetry]

oops!