Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Clickhouse output last batch #108

Closed
wants to merge 633 commits into from
Closed

Clickhouse output last batch #108

wants to merge 633 commits into from

Conversation

parsa97
Copy link
Contributor

@parsa97 parsa97 commented Jul 9, 2024
edited
Loading

When using a pcap file, the last batch of data is missed because the context closes before it is sent. To solve this, I've created a new context for ClickHouse that remains open until the last batch is sent, and then it closes after the main context is closed.

Fix issue: #32

Tested with default configuration

Before Change

Dnsmonster log

metrics: {"clickhouseFailed":{"count":0},"clickhouseSentToOutput":{"count":3657536},"clickhouseSkipped":{"count":0},"packetLossPercent":{"value":0},"packetsCaptured":{"value":3668278},"packetsDropped":{"value":0},"packetsDuplicate":{"count":0},"packetsOverRatio":{"count":0}}

Clickhouse select count(*)

select count(*) from DNS_LOG
┌─count()─┐
│ 3650000 │
└─────────┘

After Change

Dnsmonster log

metrics: {"clickhouseFailed":{"count":0},"clickhouseSentToOutput":{"count":3657536},"clickhouseSkipped":{"count":0},"packetLossPercent":{"value":0},"packetsCaptured":{"value":3668278},"packetsDropped":{"value":0},"packetsDuplicate":{"count":0},"packetsOverRatio":{"count":0}}

Clikchouse select count(*)

select count(*) from DNS_LOG;
┌─count()─┐
│ 3657536 │
└─────────┘

mosajjal and others added 30 commits February 21, 2022 20:55
@mosajjal
auto update sample ini
8347bb0
@mosajjal
upgrade clickhouse to v2
ca89f8f
@mosajjal
fix uuid issue in clickhousev2
0d9843b
@mosajjal
added basic support for batch timeout
5c15b9e
@mosajjal
updated dependencies and show metrics on exit
e4f6111
@edevil
store src and destination ports (mosajjal#19)
21a1f57 
Include information about which ports were used in the DNS
 query/response.
@mosajjal
updated dependencies and minor changes
84623e8
@mosajjal
clickhouse error handling
f089621
@mosajjal
batch delay fix for sentinel
fb58c5f
@mosajjal
metrics system support with prom and statsd
6d16b69
@mosajjal
auto update sample ini
7091bfc
@mosajjal
added a simple check for outputs
aa8f158
@edevil
remove unneeded newline from kafka message (mosajjal#20)
f9b6ef2 
Kafka messages were being appended with a newline at the end, since
they are json encoded this newline is useless.
@mosajjal
updated dependencies
bb3bbd5
@mosajjal
spelling fixes
669fd91
@mosajjal
auto update sample ini
7c7afff
@mosajjal
proper promisc mode for interfaces
380e2ee
@mosajjal
auto update sample ini
e4c243c
@mosajjal
experimental new way of generating the readme docs in makrdown
7ec8b7e
@mosajjal
auto update sample ini
ff89e4e
@mosajjal
tiny change to readme parser
1b371e3
@mosajjal
Merge branch 'main' of github.com:mosajjal/dnsmonster
ba3d91b
@mosajjal
auto update sample ini
d04dddf
@mosajjal
change readme format to sh to highlight comments
b4a9fc2
@mosajjal
added vxlan support and example queries
d02a378
@mosajjal
small changes to the way metrics are printed to stderr
89d9338
@mosajjal
experimental new way of minimal metric logging
15804c9
@mosajjal
auto update sample ini
8d8bd0c
@edevil
metric for invalid packets (mosajjal#24)
f6fd47a 
Some captured packets cannot be unsmarshalled by the DNS package
due to invalid fields. Register the number of such packets as a metric.
@mosajjal
minor fix to help build on 1.18 and clickhouse int64 prefix
9da52f5
dependabot bot and others added 24 commits December 18, 2023 19:23
@dependabot
Bump actions/upload-artifact from 3 to 4 (mosajjal#88)
a8e0d02 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3 to 4.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@v3...v4)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump golang.org/x/crypto from 0.14.0 to 0.17.0 (mosajjal#89)
61e5cc0 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0.
- [Commits](golang/crypto@v0.14.0...v0.17.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump docker/metadata-action from 5.3.0 to 5.4.0 (mosajjal#90)
a2a94a4 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 5.3.0 to 5.4.0.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](docker/metadata-action@31cebac...9dc751f)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump docker/metadata-action from 5.4.0 to 5.5.0 (mosajjal#91)
ec983db 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 5.4.0 to 5.5.0.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](docker/metadata-action@9dc751f...dbef880)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@mosajjal
fixed splunk saving base64
4cd637f
@mosajjal
Merge branch 'main' of github.com:mosajjal/dnsmonster
37594ac
@dependabot
Bump docker/metadata-action from 5.5.0 to 5.5.1 (mosajjal#92)
ec8bf7b 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 5.5.0 to 5.5.1.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](docker/metadata-action@dbef880...8e5442c)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump github.com/jackc/pgx/v4 from 4.18.1 to 4.18.2 (mosajjal#94)
dabf694 
Bumps [github.com/jackc/pgx/v4](https://github.com/jackc/pgx) from 4.18.1 to 4.18.2.
- [Changelog](https://github.com/jackc/pgx/blob/v4.18.2/CHANGELOG.md)
- [Commits](jackc/pgx@v4.18.1...v4.18.2)

---
updated-dependencies:
- dependency-name: github.com/jackc/pgx/v4
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump google.golang.org/protobuf from 1.31.0 to 1.33.0 (mosajjal#95)
3b47c70 
Bumps google.golang.org/protobuf from 1.31.0 to 1.33.0.

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump docker/login-action from 3.0.0 to 3.1.0 (mosajjal#96)
0cf7cbe 
Bumps [docker/login-action](https://github.com/docker/login-action) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](docker/login-action@343f7c4...e92390c)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
updated dependencies
5a6d41f
@mosajjal
updated dependencies
b0211ad
@mosajjal
clean up in code and spelling
75ad503
@mosajjal
updated docsy version
d133968
comment on parquet
4722877
Merge branch 'main' of github.com:mosajjal/dnsmonster
c364aa7
@mosajjal
docsy update
566b7e8
@mosajjal
Create codeql.yml
87f8596
@mosajjal
updated dependencies
025ee1a
@dependabot
Bump azure/docker-login from 1 to 2 (mosajjal#98)
bb84e1f 
Bumps [azure/docker-login](https://github.com/azure/docker-login) from 1 to 2.
- [Release notes](https://github.com/azure/docker-login/releases)
- [Commits](Azure/docker-login@v1...v2)

---
updated-dependencies:
- dependency-name: azure/docker-login
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump docker/login-action from 3.1.0 to 3.2.0 (mosajjal#99)
3128671 
Bumps [docker/login-action](https://github.com/docker/login-action) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](docker/login-action@e92390c...0d4c9c5)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump docker/build-push-action from 5 to 6 (mosajjal#100)
77154e4 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 5 to 6.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](docker/build-push-action@v5...v6)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@parsa97
output/kafka: support other compression types (mosajjal#104)
23d5e54
@mosajjal
auto update sample ini
d50c4b6
@netlify Netlify
Copy link

netlify bot commented Jul 9, 2024
edited
Loading

Deploy Preview for unrivaled-llama-9deaa9 canceled.

Name Link
🔨 Latest commit af6e57a
🔍 Latest deploy log https://app.netlify.com/sites/unrivaled-llama-9deaa9/deploys/668e2fb10a617000084419f2

@parsa97 parsa97 force-pushed the fix-clickhouse-last-batch branch from 62244c8 to af6e57a Compare July 10, 2024 06:52
mosajjal
mosajjal reviewed Sep 10, 2024
View reviewed changes
Copy link
Owner

@mosajjal mosajjal left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

there shouldn't be any function accepting two different Ctx objects. one should be created from the other (cascade). if that can't happen, we need to change the code to make sure that is the case.

@mosajjal mosajjal closed this Feb 1, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mosajjal mosajjal mosajjal left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@parsa97 @mosajjal @edevil @adulau @pchaseh @mzealey