Page MenuHomePhabricator
Create Task
Maniphest T108850

Set up auto-purging after 90 days {tick}
Closed, ResolvedPublic0 Estimated Story Points
Actions

Assigned To
None
Authored By
mforns
Aug 12 2015, 6:10 PM
Tags
Referenced Files
F4266417: whiteList.tsv
Jul 12 2016, 5:26 PM
F2759592: schema_column_pairs_to_keep_indefinitely_uniq.tsv
Oct 23 2015, 11:49 AM
F2635069: schema_field_pairs_to_keep_indefinitely.tsv
Sep 25 2015, 8:47 PM
F2559632: schema_field_pairs_to_keep_indefinitely.tsv
Sep 9 2015, 12:32 AM
Subscribers
Aklapper
dayyoung0324
elukey
gerritbot
jcrespo
kevinator
Marostegui
View All 15 Subscribers

Description

We need to set up an automatic purging system in EventLogging databases:

  1. By default, all records older than 90 days should be immediately deleted for all tables. This should automatically include tables created in the future.
  2. The system must support some kind of white-listing (we still need to decide what and how). If a table is white-listed, keep the white-listed fields and auto-purge the others normally.
  3. clientIp and userAgent fields (eventCapsule) can not be white-listed, they must be always deleted after 90 days.

We need to decide how to implement this in both master and analytics-storage replica.
The schema+fields whitelist needs still to be created from the EL audit spreadsheed, column N:
https://docs.google.com/spreadsheets/d/1mQtbsbGHLbGsHeNaYFCdg6X4K1VSxjUStBpx4GmVbhk/edit#gid=1610723354

Details

SubjectRepoBranchLines +/-
eventlogging_purging_whitelist.tsv: remove old tableoperations/puppetproduction+0 -7
profile::mariadb::misc::eventlogging: fix group/user dependenciesoperations/puppetproduction+14 -5
profile::mariadb::misc::el::master: apply data sanitization policiesoperations/puppetproduction+123 -92
Add white-list for EventLogging auto-purgingoperations/puppetproduction+1 K -0
role::mariadb::analytics::custom_repl_slave: deploy the EL whitelistoperations/puppetproduction+16 -0
role::mariadb::analytics::custom_repl_slave: add eventlogging_cleaner.pyoperations/puppetproduction+1 K -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

There are a very large number of changes, so older changes are hidden. Show Older Changes
mforns added a subtask: T108856: Set up bucketization of editCount fields {tick}.Sep 9 2015, 12:37 AM
mforns moved this task from In Progress to Next Up on the Analytics-Kanban board.Sep 9 2015, 12:45 AM
mforns moved this task from Next Up to Paused on the Analytics-Kanban board.
jcrespo raised the priority of this task from High to Needs Triage.Sep 9 2015, 10:47 AM
ggellerman edited projects, added Analytics-Backlog; removed Analytics-Kanban.Sep 9 2015, 3:35 PM
ggellerman moved this task from Blocked to Radar on the Analytics-Backlog board.
mforns added a comment.Sep 25 2015, 8:47 PM

@jcrespo

Sorry for the confusion, but I've added some lines to the white-list file.

schema_field_pairs_to_keep_indefinitely.tsv85 KBDownload

This is the valid version. The other version is now incomplete.

If this happens again, I'll think of another way of storing this white-llist, to avoid more confusion.

mforns mentioned this in T108856: Set up bucketization of editCount fields {tick}.Oct 6 2015, 5:05 PM
mforns added a comment.Oct 6 2015, 5:10 PM

Just wanted to add this note here, too.
The activation in production of this auto-purging should wait until we notify all schema owners with the date this will happen.

@jcrespo
I know it's early to know when this can happen. But as soon as you have an estimate, could you please pass it to me, so I can start reaching out to the schema owners to notify that the auto-purging will be activated?
Thanks a lot!

jcrespo mentioned this in T104748: db1046 innodb signal 6 abort and restart.Oct 8 2015, 5:04 PM
mforns added a comment.Oct 23 2015, 11:49 AM

We should implement the auto-purging per schema, not per revision. Because otherwise, every time someone edits a schema, we'd revert it back to the default purging strategy.

So the white-list, instead of:

TABLE_NAME                COLUMN_NAME
EchoInteraction_5539940   clientValidated
EchoInteraction_5539940   event_action
...

Should be:

SCHEMA_NAME       COLUMN_NAME
EchoInteraction   clientValidated
EchoInteraction   event_action
...

Here's the updated white-list TSV:

schema_column_pairs_to_keep_indefinitely_uniq.tsv26 KBDownload

When auto-purging i.e. the table EchoInteraction_5539940, we should query the white-list for EchoInteraction and keep the data for all white-listed columns. Note that the white-list may contain column names that do not belong to EchoInteraction_5539940, because they belong to other revisions of the same schema. But this should be OK, those can be ignored.

Tbayer subscribed.Nov 14 2015, 5:40 AM
Restricted Application added a subscriber: StudiesWorld. · View Herald TranscriptNov 14 2015, 5:40 AM
mforns added a parent task: T102224: {tick} Schema Audit.Nov 17 2015, 11:23 AM
ggellerman edited projects, added Analytics; removed Analytics-Backlog.Jan 12 2016, 7:32 PM
Milimetric moved this task from Incoming to Radar on the Analytics board.Jan 12 2016, 7:32 PM
jcrespo mentioned this in T120187: Pending maintenance on the eventlogging databases (db1046, db1047, dbstore1002, other dbstores).Jan 25 2016, 7:43 PM
nshahquinn-wmf subscribed.Jan 25 2016, 9:56 PM
Nuria added a project: DBA.Mar 2 2016, 7:02 PM
Nuria added a subscriber: jcrespo.
jcrespo removed jcrespo as the assignee of this task.Mar 16 2016, 10:35 AM

@Aklapper I am not working on this, but people that said they are not going to work on this (Analytics: Radar) keeps assigning it to me. Please mediate.

jcrespo triaged this task as Medium priority.Apr 22 2016, 4:10 PM
jcrespo moved this task from Triage to Pending comment on the DBA board.
jcrespo claimed this task.Apr 27 2016, 10:24 AM
jcrespo moved this task from Pending comment to In progress on the DBA board.
jcrespo added a comment.May 2 2016, 9:14 AM

we still need to decide what and how

If it is very dynamic, I would recommend setting a table with table names, that way an event could read it and actuate depending on that. Alternatively, and maybe a better option would be to maintain a list of tables on puppet for a cron job- that would have better visibility.

mforns added a comment.May 2 2016, 10:18 AM

@jcrespo
I think you're right, the latter seems to have better visibility and also permits to CR changes, which will be good, given that we'll be changing security settings. Let me know if I can help you with that.

jcrespo removed jcrespo as the assignee of this task.May 3 2016, 8:03 AM

@mforns Please send an RC to operations/puppet with a plan-text list of tables, or any other info that will be needed to create a cron job to perform the purge.

I will then use that list to change the purging system from an event to a db maintenance job that keeps the analytics hosts in a good shape.

jcrespo moved this task from In progress to Blocked external/Not db team on the DBA board.May 3 2016, 8:03 AM
mforns edited projects, added Analytics-Kanban; removed Analytics.May 3 2016, 2:16 PM
mforns claimed this task.May 9 2016, 9:28 PM
mforns moved this task from Paused to In Progress on the Analytics-Kanban board.
mforns removed mforns as the assignee of this task.May 12 2016, 11:08 PM

I removed myself from the task, because I created another task in our kanban for that.
Nevertheless, I am working right now in putting together that white-list of schema/fields.
I just need some time to contact the creators of new schemas that were not discussed in the audit last year. When I'm done, I will update this task. I will add my task as a blocker of this one. Thanks!

mforns added a subtask: T135190: Respawn the schema/field white-list for EL auto-purging {tick}.May 12 2016, 11:08 PM
mforns edited projects, added Analytics; removed Analytics-Kanban.
Nuria closed subtask T108856: Set up bucketization of editCount fields {tick} as Resolved.May 13 2016, 3:21 AM
mforns added a comment.Jul 12 2016, 5:26 PM

@jcrespo

I finished updating the white-list. Sorry for the delay, I needed to make sure that changes to schemas between 2015's audit and today were included and that the respective schema owners were notified and agreed with the purging.

The file is here:

whiteList.tsv28 KBDownload

How to understand this file:

  • It's a TSV file.
  • It has 2 columns: schema and field.
  • It is a white-list, meaning that all schema-field pairs listed are to be kept indefinitely in the database. The rest of schema-field pairs not listed are to be auto-purged after 90 days.
  • The schema column does not include the revision, just the schema name. This means the white-list applies to all revisions of a given schema. This is done on purpose, so that new revisions of a white-listed schema will continue to be considered. Otherwise, every time a schema got modified, we would need to add its fields to the white-list.
  • Note that new schemas or new fields in existing schemas will be automatically auto-purged after 90 days by default. If a schema owner wants their schema or fields to be kept indefinitely, they can contact analytics and we'll update the white-list.
mforns assigned this task to jcrespo.Jul 12 2016, 5:27 PM

@jcrespo
Please, let me know if the white-list is what you expected and what can I do to help you in the next steps. Thanks!

jcrespo added a comment.Jul 12 2016, 5:44 PM

Please create a change review on puppet/operations (anywhere, I will move it somewhere else) instead of attaching it here, I will take it from here.

gerritbot subscribed.Jul 13 2016, 12:55 PM

Change 298721 had a related patch set uploaded (by Mforns):
Add white-list for EventLogging auto-purging

https://gerrit.wikimedia.org/r/298721

gerritbot added a project: Patch-For-Review.Jul 13 2016, 12:56 PM
mforns added a comment.Jul 13 2016, 12:59 PM

@jcrespo

Please, see above the patch I created. When the file has a permanent location in puppet, I will add some documentation on EventLogging's Wikitech page. Thanks!

mforns mentioned this in rOPUP134058167a0c: Add white-list for EventLogging auto-purging.Jul 13 2016, 1:01 PM
jcrespo moved this task from Blocked external/Not db team to Backlog on the DBA board.Jul 13 2016, 1:35 PM
mforns mentioned this in rOPUP1acdf9480b1f: Add white-list for EventLogging auto-purging.Jul 13 2016, 3:55 PM
mforns added a comment.Jul 14 2016, 8:51 PM

@jcrespo
I did some additions to the white list in the gerrit change set. But I still need the confirmation of 1 schema owner. Please do not activate the purging until I get that confirmation. I will post on this task and let you know.

mforns mentioned this in rOPUP4bc407787f73: Add white-list for EventLogging auto-purging.Jul 14 2016, 8:55 PM
mforns added a comment.Jul 14 2016, 9:33 PM

@jcrespo
Ok, it's confirmed. We can proceed :]

mforns mentioned this in rOPUP0ac54a40ab24: Add white-list for EventLogging auto-purging.Jul 15 2016, 5:47 AM
Nuria closed subtask T135190: Respawn the schema/field white-list for EL auto-purging {tick} as Resolved.Jul 27 2016, 4:04 PM
mforns mentioned this in rOPUP0642023b6902: Add white-list for EventLogging auto-purging.Jul 27 2016, 6:37 PM
nshahquinn-wmf added a subscriber: Nuria.Jul 27 2016, 8:51 PM

@Nuria, @mforns, I have updated the documentation at wikitech:Analytics/EventLogging to reflect these changes. It would also be good to update the more detailed docs at wikitech:Analytics/EventLoging/Data retention and auto-purging.

One question: the main event logging page says that all EL data in Hadoop is purged after 90 days. Is this correct, and if so, are there any plans to apply the whitelist to that data?

mforns added a comment.Jul 28 2016, 8:25 PM

@Neil_P._Quinn_WMF @Nuria
Thanks Neil for spotting this. I updated the docs on data retention and auto-purging.

One question: the main event logging page says that all EL data in Hadoop is purged after 90 days. Is this correct, and if so, are there any plans to apply the whitelist to that data?

Yes, the autopurging scripts for Hadoop are in place already and they purge all the data after 90 days. About applying the white list to Hadoop, this has been discussed a couple times, but not prioritized. If there is a use case for it, we definitely can consider it.

Nuria edited projects, added Analytics-Kanban; removed Analytics.Feb 1 2017, 5:10 PM
Nuria edited projects, added Analytics; removed Analytics-Kanban.
Nuria moved this task from Radar to Operational Excellence Future on the Analytics board.
Nuria created subtask T156933: Improve purging for analytics-slave data on Eventlogging.Feb 1 2017, 5:14 PM
Nuria moved this task from Operational Excellence Future to Radar on the Analytics board.
jcrespo removed jcrespo as the assignee of this task.Feb 14 2017, 3:25 PM
gerritbot added a comment.May 31 2017, 1:33 PM

Change 356383 had a related patch set uploaded (by Elukey; owner: Elukey):
[operations/puppet@production] role::mariadb::analytics::custom_repl_slave: add eventlogging_cleaner.py

https://gerrit.wikimedia.org/r/356383

Ottomata created subtask T168414: Purge all old data from EventLogging master.Jun 20 2017, 3:57 PM
gerritbot added a comment.Jul 12 2017, 10:40 AM

Change 356383 merged by Elukey:
[operations/puppet@production] role::mariadb::analytics::custom_repl_slave: add eventlogging_cleaner.py

https://gerrit.wikimedia.org/r/356383

gerritbot added a comment.Jul 12 2017, 10:51 AM

Change 364691 had a related patch set uploaded (by Elukey; owner: Elukey):
[operations/puppet@production] role::mariadb::analytics::custom_repl_slave: deploy the EL whitelist

https://gerrit.wikimedia.org/r/364691

gerritbot added a comment.Jul 12 2017, 11:03 AM

Change 364691 merged by Elukey:
[operations/puppet@production] role::mariadb::analytics::custom_repl_slave: deploy the EL whitelist

https://gerrit.wikimedia.org/r/364691

gerritbot added a comment.Jul 12 2017, 3:10 PM

Change 298721 abandoned by Elukey:
Add white-list for EventLogging auto-purging

https://gerrit.wikimedia.org/r/298721

madhuvishy unsubscribed.Jul 18 2017, 2:53 PM
Nuria closed subtask T156933: Improve purging for analytics-slave data on Eventlogging as Resolved.Nov 29 2017, 4:41 PM
Marostegui subscribed.Dec 7 2017, 3:32 PM

Hi!

What's the status of this?

elukey subscribed.Dec 7 2017, 3:34 PM
In T108850#3820300, @Marostegui wrote:

Hi!

What's the status of this?

Going to be done before EOQ :)

Marostegui added a comment.Dec 7 2017, 3:35 PM

Awesome! Thanks! :-)

elukey added a project: User-Elukey.Dec 7 2017, 4:01 PM
elukey moved this task from Backlog to In Progress on the User-Elukey board.Dec 18 2017, 9:20 AM
elukey moved this task from In Progress to Done on the User-Elukey board.
elukey moved this task from Done to In Progress on the User-Elukey board.
jcrespo added a subtask: T183123: Precautionary backup needed for the log database on db1107 before applying regular purging/sanitization.Dec 18 2017, 1:40 PM
elukey closed subtask T183123: Precautionary backup needed for the log database on db1107 before applying regular purging/sanitization as Resolved.Dec 18 2017, 4:22 PM
gerritbot added a comment.Dec 18 2017, 4:44 PM

Change 398869 had a related patch set uploaded (by Elukey; owner: Elukey):
[operations/puppet@production] profile::mariadb::misc::el::master: apply data sanitization policies

https://gerrit.wikimedia.org/r/398869

gerritbot added a comment.Dec 19 2017, 9:19 AM

Change 398869 merged by Elukey:
[operations/puppet@production] profile::mariadb::misc::el::master: apply data sanitization policies

https://gerrit.wikimedia.org/r/398869

gerritbot added a comment.Dec 19 2017, 9:30 AM

Change 399149 had a related patch set uploaded (by Elukey; owner: Elukey):
[operations/puppet@production] profile::mariadb::misc::eventlogging: fix group/user dependencies

https://gerrit.wikimedia.org/r/399149

gerritbot added a comment.Dec 19 2017, 9:31 AM

Change 399149 merged by Elukey:
[operations/puppet@production] profile::mariadb::misc::eventlogging: fix group/user dependencies

https://gerrit.wikimedia.org/r/399149

gerritbot added a comment.Dec 19 2017, 10:21 AM

Change 399153 had a related patch set uploaded (by Elukey; owner: Elukey):
[operations/puppet@production] eventlogging_purging_whitelist.tsv: remove old table

https://gerrit.wikimedia.org/r/399153

gerritbot added a comment.Dec 19 2017, 4:04 PM

Change 399153 merged by Elukey:
[operations/puppet@production] eventlogging_purging_whitelist.tsv: remove old table

https://gerrit.wikimedia.org/r/399153

Stashbot subscribed.Dec 19 2017, 4:34 PM

Mentioned in SAL (#wikimedia-operations) [2017-12-19T16:34:39Z] <elukey> manually started eventlogging cleaner on db1107 to purge/sanitize data up to 90 days ago (tmux is running for user eventlogcleaner) - T108850

elukey moved this task from In Progress to Done on the User-Elukey board.Dec 20 2017, 1:24 PM
elukey mentioned this in T168414: Purge all old data from EventLogging master.Dec 20 2017, 1:30 PM
Nuria closed subtask T168414: Purge all old data from EventLogging master as Resolved.Jan 18 2018, 4:59 PM
elukey closed this task as Resolved.Jan 18 2018, 5:02 PM
elukey set the point value for this task to 0.
dayyoung0324 subscribed.Apr 11 2018, 4:26 PM
Aklapper edited projects, added Analytics-Radar; removed Analytics.Jun 10 2020, 6:44 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL