Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

WIP: Pipeline monitoring metrics #249

Closed
wants to merge 21 commits into from
Closed

WIP: Pipeline monitoring metrics #249

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
21 commits
Select commit Hold shift + click to select a range
cef7595
wip count success/failure/drops
jmacd Oct 28, 2023
4d3cfae
rough draft
jmacd Oct 31, 2023
3a9ef27
updates
jmacd Oct 31, 2023
0062480
Wip
jmacd Dec 15, 2023
b39b732
TODO WIP too much text now
jmacd Dec 16, 2023
a117779
wip update
jmacd Dec 20, 2023
3ce0510
wip2
jmacd Dec 20, 2023
bbcf391
specify values
jmacd Jan 3, 2024
1334191
the long tail (start)
jmacd Jan 3, 2024
f9d1e9a
draft with no more TODOs
jmacd Jan 5, 2024
12a1a6b
Merge branch 'main' of github.com:open-telemetry/oteps into jmacd/drops
jmacd Jan 18, 2024
a23795f
Merge branch 'main' of github.com:open-telemetry/oteps into jmacd/drops
jmacd Jan 31, 2024
1f48c3e
wip
jmacd Feb 1, 2024
261323c
add examples
jmacd Feb 2, 2024
6195761
small revision; needs more work
jmacd Feb 2, 2024
481b93a
last wip
jmacd Feb 5, 2024
38fbc08
text
jmacd Feb 6, 2024
a2bee68
text
jmacd Feb 6, 2024
addca49
wip
jmacd Feb 7, 2024
6abc7ed
wip
jmacd Feb 8, 2024
74953f2
updates
jmacd Feb 8, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
rough draft
  • Loading branch information
@jmacd
jmacd committed Oct 31, 2023
commit 4d3cfae892ecef3c202d0c00c6e73682b130c9b4
Binary file added text/images/otel-pipeline-monitoring.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
178 changes: 140 additions & 38 deletions text/metrics/0000-sdk-self-metrics.md → text/metrics/0000-pipeline-monitoring.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -154,33 +154,39 @@ pipeline where the participating stages are part of the same logical
failure domain. Typically each SDK or Collector is considered a
station.

#### Station integrity principle
#### Station integrity principles

The [OpenTelemetry library guidelines (point
4)](https://github.com/open-telemetry/opentelemetry-specification/blob/main/specification/library-guidelines.md#requirements)
describes a separation of protocol-dependent ("receivers",
"exporters") and protocol-independent ("processors") parts. Here we
refer to this combination of parts as a station, belonging to a single
failure domain, because:
"exporters") and protocol-independent ("processors") parts. We refer
to the combination of parts as a station.

1. Logic internal to a station is presumably non-lossy. Dropping
within a station is presumed to be intentional, as distinct from
the case of failures.
2. Under normal circumstances, we expect all-or-none failures for
individual stations.
The station concept is called out because within a station, we expect
that the station (software) acts responsibly by design, for the
integrity of the pipeline. Stations allow data to enter a pipeline
only through receiver components. Stations are never responsible for
dropping data, because only processor components drop data. Stations
allow data to leave a pipeline only through exporter components.

These qualities of the station will allow us to vary the level of
detail between basic and normal-level monitoring without information
loss.
Because of station integrity, we can make the following assertions:

1. Data that enters a pipeline is eventually exported or dropped.
2. No other outcomes are possible.

There is a potential for pipeline metrics to be redundant, as
described in these assertions. In a pipeline with no fan-in or
fan-out, each stage processes as many items as the stage before it
did, minus the number of items dropped.

#### Pipeline stage-name uniqueness

The Pipeline Stage Name Uniqueness requirement developed here avoids
over-counting in an export pipeline by ensuring that no single metric
name counts items are more than one distinct component. This rule
prevents counting items of telemetry sent by SDKs and Collectors in
the same metric; it also prevents counting items of telemetry sent
through a multi-tier arrangement of Collectors.
name counts items more than once in transit. This rule prevents
counting items of telemetry sent by SDKs and Collectors in the same
metric; it also prevents counting items of telemetry sent through a
multi-tier arrangement of Collectors using the same metric.

In a standard deployment of OpenTelemetry, we expect one, two, or
three stations in a collection pipeline. The names given to these
Expand All @@ -198,48 +204,144 @@ example when there are connectors in use; however, if so, the
collector must enforce that pipeline-stage names are unique within a
pipeline.

#### Pipeline conservation principle
#### Basic detail through inclusive counters

The station integrity principle leads to the axiom: items that are
transmitted, leading to success or failure, cannot have been dropped.
By station integrity principles, we have several forms of detail that
may be omitted by users that want only the basic level of detail.

The second principle developed here establishes that items going in to
a station either succeed or fail.
At a minimum, to establish information about _loss_ requires knowing
how much is received by the first station in the pipeline and how much
is exported by the last station in the pipeline. From the total
received and the total exported, we can compute total pipeline loss.
Note that metrics about intermediate pipeline stations may be omitted,
since they implicitly factor into global pipeline loss.

For this proposal to succeed, it is necessary to use inclusive
counters as opposed to exclusive counters. For the receivers, at a
basic level of detail, we only need to know the number of items
received (i.e., including items that succeed or fail or are dropped)
because those that fail or are dropped implicitly factor in to global
pipeline loss.

---00-
For processors, at a basic level of detail, it is not necessary to
count anything, since drops are implicit. Any items not received by
the next stage in the pipeline must have dropped, therefore we can
infer drop counts from basic-detail metrics without any new counters.

From a technical perspective, how do you propose accomplishing the
proposal? In particular, please explain:
For exporters, at a basic level of detail, the same argument applies.
Metrics describing an exporter in a pipeline ordinarily will match
those of receiver at the next stage in the pipeline, so they are not
needed at the basic level of detail, provided all receivers report
inclusive counters.

* How the change would impact and interact with existing functionality
* Likely error modes (and how to handle them)
* Corner cases (and how to handle them)
#### Pipeline failures optional

While you do not need to prescribe a particular implementation - indeed, OTEPs should be about **behaviour**, not implementation! - it may be useful to provide at least one suggestion as to how the proposal *could* be implemented. This helps reassure reviewers that implementation is at least possible, and often helps them inspire them to think more deeply about trade-offs, alternatives, etc.
For a processor, dropping data is always on purpose, but dropped data
may be counted as failures or not, depending on the circumstances.
For an SDK batch processor, dropping data is considered failure. For
a Collector sampler processor, dropping data is considered success.
It is up to the individual processor component whether to treat
dropped data as failures or successes.

## Trade-offs and mitigations
We are also aware of a precedent for returning success at certain
stages in a pipeline, perhaps asynchronously, regardless of actual
success or not. This is known to happen in the Collector's core
`exporterhelper` library, which provides a number of standard
features, including the ability to drop data when the queue is full.

What are some (known!) drawbacks? What are some ways that they might be mitigated?
Because failure is sometimes treated as success, it may be necessary
to monitor a point in the pipeline after failures are suppressed.

Note that mitigations do not need to be complete *solutions*, and that they do not need to be accomplished directly through your proposal. A suggested mitigation may even warrant its own OTEP!
#### Pipeline signal type

## Prior art and alternatives
OpenTelemetry currently has 3 signal types, but it may add more.
Instead of using the signal name in the metric names, we opt for a
general-purpose noun that usefully describes any signal.

The signal-agnostic term used here is "items", referring to spans, log
records, and metric data points. An attribute to distinguish the
`signal` will be used with name `traces`, `logs`, or `metrics`.

Users are expected to understand that the data item for traces is a
span, for logs is a record, and for metrics is a point.

#### Pipeline component name

Components are uniquely identified using a descriptive `name`
attribute which encompasses at least a short name describing the type
of component being used (e.g., `batch` for the SDK BatchSpanProcessor
or the Collector batch proessor).

When there is more than one component of a given type active in a
pipeline having the same `domain` and `signal` attributes, the `name`
should include additional information to disambiguate the multiple
instances using the syntax `<type>/<instance>`. For example, if there
were two `batch` processors in a collection pipeline (e.g., one for
error spans and one for non-error spans) they might use the names
`batch/error` and `batch/noerror`.

#### Pipeline monitoring diagram

What are some prior and/or alternative approaches? For instance, is there a corresponding feature in OpenTracing or OpenCensus? What are some ideas that you have rejected?
The relationship between items received, dropped, and exported is
shown in the following diagram.

## Open questions
![pipeline monitoring metrics](../images/otel-pipeline-monitoring.png)

What are some questions that you know aren't resolved yet by the OTEP? These may be questions that could be answered through further discussion, implementation experiments, or anything else that the future may bring.
### Proposed metrics semantic conventions

## Future possibilities
The proposed metric names are:

What are some future changes that this proposal would enable?
`otel.{station}.received`: Inclusive count of items entering the pipeline at a station.
`otel.{station}.dropped`: Non-inclusive count of items dropped by a component in a pipeline.
`otel.{station}.exported`: Inclusive count of items exiting the pipeline at a station.

The behavior specified for SDKs and Collectors at each level of detail
is different, because SDKs do not receive items from a pipeline.

#### SDK default configuration

At the basic level of detail, SDKs are required to count spans
received by the export pipeline. Only the `otel.sdk.received` metric
is required. This includes items that succeed, fail, or are dropped.

At the normal level of detail, the `otel.sdk.received` metric gains an
additional boolean attribute, `success` indicating success or failure.
Also at the normal level of detail, the `otel.sdk.dropped` metric is
counted.

#### Collector default configuration

At the basic level of detail, Collectors of a given `{station}` name
are required to count `otel.{station}.received`,
`otel.{station}.dropped`, and `otel.{station}.exported`.

At the normal level of detailed, the `received` and `exported` metrics
gain an additional boolean attribute, `success` indicating success or
failure.

#### Detailed-level metrics configuration

There is one additional dimension that users may wish to opt-in to, in
order to gain information about failures at a particular pipeline
stage. When detail-level metrics are requested, all three metric
instruments specified for pipeline monitoring gain an additional
`reason` attribute, with a short string explaining the failure.

For example, with detailed-level metrics in use, the
`otel.{station}.received` and `otel.{station}.exported` counters will
include additional `reason` information (e.g., `timeout`,
`resource_exhausted`, `permission_denied`).

## Trade-offs and mitigations

While the use of three-levels of metric detail may seem excessive,
instrumentation authors are expected to implement the cardinality of
attributes specified here, with the use of Metric SDK View
configuration to remove unwanted attributes at runtime.

This approach (i.e., configuration of views) can also be used in the
Collector, which is instrumented using the OTel-Go metrics SDK.

## Prior art and alternatives

semantic-conventions/
Prior work in (this PR)[https://github.com/open-telemetry/semantic-conventions/pull/184].