Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[8.15] [Automatic Import] Fix Non-ecs compatible fields in grok processor (#194727) #194792

Merged
merged 1 commit into from
Oct 3, 2024
Merged

[8.15] [Automatic Import] Fix Non-ecs compatible fields in grok processor (#194727) #194792

merged 1 commit into from
Oct 3, 2024

Conversation

kibanamachine
Copy link
Contributor

Backport

This will backport the following commits from main to 8.15:

Questions ?

Please refer to the Backport tool documentation

@bhapas
[Automatic Import] Fix Non-ecs compatible fields in grok processor (e…
aafe771 
…lastic#194727)

## Release Note

Fixes a bug to resolve non-ecs compatible fields in Structured /
Unstructured syslog processing in Automatic Import.

## Summary

elastic#194205 explains the issue.

This PR fixes `packageName.dataStreamName` for handling header values
from grok processor for KV graph so that ecs mapping gets the header
values in the converted json Samples too..

### Before this PR

![image](https://github.com/user-attachments/assets/d2660f7d-2cca-413c-ab90-1a0f3e1b4a03)

### After this PR

<img width="706" alt="image"
src="https://github.com/user-attachments/assets/954b5a91-2123-46f9-b822-1709c3247901">

- Closes elastic#194205

### Checklist

Delete any items that are not applicable to this PR.

- [x] [Unit or functional
tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)
were updated or added to match the most common scenarios

(cherry picked from commit b38941b)
@kibanamachine kibanamachine enabled auto-merge (squash) October 3, 2024 09:19
@kibanamachine kibanamachine mentioned this pull request Oct 3, 2024
Merged
1 task
@kibana-ci
Copy link
Collaborator

💚 Build Succeeded

Metrics [docs]

✅ unchanged

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @bhapas

@kibanamachine kibanamachine merged commit b659922 into elastic:8.15 Oct 3, 2024
23 checks passed
@bhapas bhapas added bug Fixes for quality problems that affect the customer experience release_note:fix Team:Security-Scalability Team label for Security Integrations Scalability Team Feature:AutomaticImport labels Oct 3, 2024
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-scalability (Team:Security-Scalability)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

@bhapas bhapas

Labels
backport bug Fixes for quality problems that affect the customer experience Feature:AutomaticImport release_note:fix Team:Security-Scalability Team label for Security Integrations Scalability Team
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@kibanamachine @kibana-ci @elasticmachine @bhapas