Skip to content

[Security Solution][Case] Fix patch cases integration test with alerts#88311

Merged
cnasikas merged 2 commits intoelastic:masterfrom
cnasikas:fix_failing_test
Jan 18, 2021
Merged

[Security Solution][Case] Fix patch cases integration test with alerts#88311
cnasikas merged 2 commits intoelastic:masterfrom
cnasikas:fix_failing_test

Conversation

@cnasikas
Copy link
Member

@cnasikas cnasikas commented Jan 14, 2021
edited
Loading

Summary

I unskiped the tests and performed a stress test. Results: Executions: 42, Failures: 3.

This showed that a change in the status of an alert takes time to be populated across all ES nodes.

When there is a status change on a case and the sync alerts option is on, then all alerts attach to a case must change their status to match the case's status. This is done as:

await this.esClient!.asScoped(request).asCurrentUser.updateByQuery({
      index,
      conflicts: 'abort',
      body: {
        script: {
          source: `ctx._source.signal.status = '${status}'`,
          lang: 'painless',
        },
        query: { ids: { values: ids } },
      },
      ignore_unavailable: true,
    });

Because we do not set the refresh option, for example refresh: 'true', the request is fulfilled but changes made by this request will be made visible at some point after the request returns.

Because setting the refresh to true could lead to a poor performance we decided to skip the tests and find a better solution to tackle the problem.

I performing another stress test with those tests skipped. Results: Executions: 42, Failures: 0

Fixes: #87988
Fixes: #88130

Reference: #88432

Checklist

Delete any items that are not applicable to this PR.

For maintainers

@cnasikas cnasikas changed the title [Security Solution][Case][skip-ci] Fix patch cases integration test with alerts [Security Solution][Case] Fix patch cases integration test with alerts Jan 15, 2021
@cnasikas cnasikas added v7.11.0 v7.12.0 v8.0.0 bug Fixes for quality problems that affect the customer experience release_note:skip Skip the PR/issue when compiling release notes labels Jan 15, 2021
@cnasikas cnasikas self-assigned this Jan 15, 2021
@cnasikas cnasikas added Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. Team:Threat Hunting Security Solution Threat Hunting Team labels Jan 15, 2021
@cnasikas cnasikas marked this pull request as ready for review January 15, 2021 08:41
@cnasikas cnasikas mentioned this pull request Jan 15, 2021
Closed
spalger
spalger approved these changes Jan 15, 2021
View reviewed changes
Copy link
Contributor

@spalger spalger left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@cnasikas
Copy link
Member Author

cnasikas commented Jan 17, 2021

@elasticmachine merge upstream

@kibanamachine
Copy link
Contributor

kibanamachine commented Jan 17, 2021

💚 Build Succeeded

Metrics [docs]

✅ unchanged

History

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

@cnasikas cnasikas merged commit f7fdda5 into elastic:master Jan 18, 2021
@cnasikas cnasikas deleted the fix_failing_test branch January 18, 2021 07:59
This was referenced Jan 18, 2021
Merged
Merged
cnasikas added a commit to cnasikas/kibana that referenced this pull request Jan 18, 2021
@cnasikas @kibanamachine
[Security Solution][Case] Fix patch cases integration test with alerts (
c201042 
elastic#88311)

Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>
cnasikas added a commit to cnasikas/kibana that referenced this pull request Jan 18, 2021
@cnasikas @kibanamachine
[Security Solution][Case] Fix patch cases integration test with alerts (
a7867fb 
elastic#88311)

Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>
gmmorris added a commit to gmmorris/kibana that referenced this pull request Jan 18, 2021
@gmmorris
Merge branch 'master' into tm/cancel-expired-tasks-on-hung-tm
1ded8b6 
* master: (33 commits)
  [Security Solution][Case] Fix patch cases integration test with alerts (elastic#88311)
  [Security Solutions][Detection Engine] Removes duplicate API calls (elastic#88420)
  Fix log msg (elastic#88370)
  [Test] Add tag cloud visualization to dashboard in functional test for reporting (elastic#87600)
  removing kibana-core-ui from codeowners (elastic#88111)
  [Alerting] Migrate Event Log plugin to TS project references (elastic#81557)
  [Maps] fix zooming while drawing shape filter logs errors in console (elastic#88413)
  Porting fixes 1 (elastic#88477)
  [APM] Explicitly set environment for cross-service links (elastic#87481)
  chore(NA): remove mocha junit ci integrations (elastic#88129)
  [APM] Only display relevant sections for rum agent in service overview (elastic#88410)
  [Enterprise Search] Automatically mock shared logic files (elastic#88494)
  [APM] Disable Create custom link button on Transaction details page for read-only users
  [Docs] clean-up vega map reference documenation (elastic#88487)
  [Security Solution] Fix Timeline event details layout (elastic#88377)
  Change DELETE to POST for _bulk_delete to avoid incompatibility issues (elastic#87914)
  [Monitoring] Change cloud messaging on no data page (elastic#88375)
  [Uptime] clear ping state when PingList component in unmounted (elastic#88321)
  [APM] Consistent terminology for latency and throughput (elastic#88452)
  fix copy (elastic#88481)
  ...
cnasikas added a commit that referenced this pull request Jan 19, 2021
@cnasikas @kibanamachine
[7.11] [Security Solution][Case] Fix patch cases integration test wit…
eeb7fa3 
…h alerts (#88311) (#88573)

Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>

Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>
cnasikas added a commit that referenced this pull request Jan 19, 2021
@cnasikas @kibanamachine
[Security Solution][Case] Fix patch cases integration test with alerts (
630c76c 
#88311) (#88572)

Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>

Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tylersmalley tylersmalley Awaiting requested review from tylersmalley

1 more reviewer

@spalger spalger spalger approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@cnasikas cnasikas

Labels

bug Fixes for quality problems that affect the customer experience release_note:skip Skip the PR/issue when compiling release notes Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. Team:Threat Hunting Security Solution Threat Hunting Team v7.11.0 v7.12.0 v8.0.0

Projects

None yet

Milestone

No milestone

3 participants

@cnasikas @kibanamachine @spalger