Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

x-pack/libbeat/reader/etw: New reader to collect ETW logs #36914

Merged
merged 33 commits into from
Feb 7, 2024
Merged

x-pack/libbeat/reader/etw: New reader to collect ETW logs #36914

merged 33 commits into from
Feb 7, 2024

Conversation

chemamartinez
Copy link
Contributor

@chemamartinez chemamartinez commented Oct 19, 2023
edited
Loading

Description

This PR adds support for reading and parsing Microsoft ETW (Event Tracing for Windows) events. It is implemented as a library in Libbeat which contains:

  • syscall_advapi32.go: All the needed headers and syscalls to comunicate with the Advapi32 Windows API. Syscalls from Advapi32 are needed to control ETW sessions and consume events. More information at https://learn.microsoft.com/en-us/windows/win32/api/evntrace/.
  • syscall_tdh.go: All the needed headers and syscalls to comunicate with the TDH Windows API. It is mainly used for the processing of ETW read events. More information can be found at https://learn.microsoft.com/en-us/windows/win32/api/tdh/.
  • session.go and controller.go: They are in charge of creating, querying, and stopping sessions.
  • provider.go: Helpers for handling the translation between providers name and GUID.
  • consumer.go: Once we have a valid session or a logfile, the consumer starts the read of ETW events.
  • event.go: Uses the TDH Windows API to process and parse ETW events. It also contains a default implementation of the callbacks that receive ETW events. However, this callback can be overwritten for particular use cases.

The ETW reader provides the following config options:

  • Logfile: Path to an .etl file to read from.
  • ProviderName: Name of an ETW provider, it is translated to the associated GUID and creates a real-time session for reading ETW events. You can use logman query providers to list the available providers.
  • ProviderGUID: GUID of an available ETW provider. You can use logman query providers to list the available providers.
  • Session: This allows to attach the reader to an existing session. Available sessions are listed with logman query -ets.

These options above are mutually exclusive.

  • SessionName: When starting to read ETW from a provider, a new session is created. This setting defines the name for this session. You can list all the current sessions with logman query -ets.
  • TraceLevel: Filter all provider events with a level value that is less than or equal to this level. Allowed values are critical, error, warning, informational, and verbose.
  • MatchAnyKeyword: An 8-byte bitmask that enables the filtering of events from specific provider subcomponents. The provider will write a particular event if the event's keyword bits match any of the bits in this bitmask.
  • MatchAllKeyword: An 8-byte bitmask that enables the filtering of events from specific provider subcomponents. The provider will write a particular event if the event's keyword bits match all of the bits in this bitmask.

This library is compiled exclusively for Windows, as it is based on the Windows API and some other Windows helper packages. This is why this pull request also enables Windows unit tests for Libbeat.

This pull request is followed by #36915 where a Filebeat input is created to interact with this library and allow users to ingest ETW events through Filebeat or future integrations.

Checklist

  • My code follows the style guidelines of this project
  • I have commented my code, particularly in hard-to-understand areas
  • I have made corresponding changes to the documentation
  • I have made corresponding change to the default configuration files
  • I have added tests that prove my fix is effective or that my feature works
  • I have added an entry in CHANGELOG.next.asciidoc or CHANGELOG-developer.next.asciidoc.

Author's Checklist

  • It has been added unit tests for the new code
  • Libbeat testing for Windows has been enabled so tests can run in CI

How to test this PR locally

This pull request cannot be tested since it only contains the internal package to collect and process ETW events. It can be manually tested via #36915.

Related issues

@chemamartinez chemamartinez self-assigned this Oct 19, 2023
@botelastic botelastic bot added needs_team Indicates that the issue/PR needs a Team:* label and removed needs_team Indicates that the issue/PR needs a Team:* label labels Oct 19, 2023
@mergify
Copy link
Contributor

mergify bot commented Oct 19, 2023

This pull request does not have a backport label.
If this is a bug or security fix, could you label this PR @chemamartinez? 🙏.
For such, you'll need to label your PR with:

  • The upcoming major version of the Elastic Stack
  • The upcoming minor version of the Elastic Stack (if you're not pushing a breaking change)

To fixup this pull request, you need to add the backport labels for the needed
branches, such as:

  • backport-v8./d.0 is the label to automatically backport to the 8./d branch. /d is the digit

@chemamartinez chemamartinez mentioned this pull request Oct 19, 2023
Merged
8 tasks
@elasticmachine
Copy link
Collaborator

elasticmachine commented Oct 19, 2023
edited by jenkins-beats-ci bot
Loading

💔 Build Failed

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview preview

Expand to view the summary

Build stats

  • Start Time: 2023-10-26T17:02:36.584+0000

  • Duration: 65 min 59 sec

Test stats 🧪

Test Results
Failed 0
Passed 14532
Skipped 409
Total 14941

Steps errors 7

Expand to view the steps failures

x-pack/libbeat-unitTest - mage build unitTest
  • Took 1 min 17 sec . View more details here
  • Description: mage build unitTest
x-pack/libbeat-unitTest - mage build unitTest
  • Took 0 min 10 sec . View more details here
  • Description: mage build unitTest
x-pack/libbeat-unitTest - mage build unitTest
  • Took 0 min 13 sec . View more details here
  • Description: mage build unitTest
x-pack/libbeat-goIntegTest - mage goIntegTest
  • Took 2 min 53 sec . View more details here
  • Description: mage goIntegTest
x-pack/libbeat-goIntegTest - mage goIntegTest
  • Took 1 min 47 sec . View more details here
  • Description: mage goIntegTest
x-pack/libbeat-goIntegTest - mage goIntegTest
  • Took 1 min 50 sec . View more details here
  • Description: mage goIntegTest
Error signal
  • Took 0 min 0 sec . View more details here
  • Description: Error 'hudson.AbortException: script returned exit code 1'

💚 Flaky test report

Tests succeeded.

🤖 GitHub comments

Expand to view the GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

  • /package : Generate the packages and run the E2E tests.

  • /beats-tester : Run the installation tests with beats-tester.

  • run elasticsearch-ci/docs : Re-trigger the docs validation. (use unformatted text in the comment!)

@mergify
Copy link
Contributor

mergify bot commented Oct 27, 2023

This pull request is now in conflicts. Could you fix it? 🙏
To fixup this pull request, you can check out it locally. See documentation: https://help.github.com/articles/checking-out-pull-requests-locally/

git fetch upstream
git checkout -b dev-etw-reader upstream/dev-etw-reader
git merge upstream/main
git push upstream dev-etw-reader

@elasticmachine
Copy link
Collaborator

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview preview

Expand to view the summary

Build stats

  • Start Time: 2023-11-20T10:34:03.708+0000

  • Duration: 125 min 16 sec

Test stats 🧪

Test Results
Failed 0
Passed 14777
Skipped 411
Total 15188

💚 Flaky test report

Tests succeeded.

🤖 GitHub comments

Expand to view the GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

  • /package : Generate the packages and run the E2E tests.

  • /beats-tester : Run the installation tests with beats-tester.

  • run elasticsearch-ci/docs : Re-trigger the docs validation. (use unformatted text in the comment!)

@elasticmachine
Copy link
Collaborator

❕ Build Aborted

Either there was a build timeout or someone aborted the build.

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview

Expand to view the summary

Build stats

  • Duration: 68 min 1 sec

🤖 GitHub comments

Expand to view the GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

  • /package : Generate the packages and run the E2E tests.

  • /beats-tester : Run the installation tests with beats-tester.

  • run elasticsearch-ci/docs : Re-trigger the docs validation. (use unformatted text in the comment!)

@elasticmachine
Copy link
Collaborator

❕ Build Aborted

There is a new build on-going so the previous on-going builds have been aborted.

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview

Expand to view the summary

Build stats

  • Start Time: 2023-11-23T10:45:17.953+0000

  • Duration: 106 min 58 sec

Test stats 🧪

Test Results
Failed 6
Passed 14553
Skipped 413
Total 14972

Test errors 6

Expand to view the tests failures

Build&Test / x-pack/libbeat-windows-2022-windows-2022 / TestFilebeat – github.com/elastic/beats/v7/x-pack/libbeat/management/tests/fbtest
    Expand to view the error details

     Failed

    Expand to view the stacktrace

     === RUN   TestFilebeat
    init.go:31: Setting flags...
    init.go:56: writing output to file C:\Users\jenkins\AppData\Local\Temp\test-1700738038
    init.go:62: Resetting fleet manager...
    filebeat_v2_test.go:90: waiting for events...
    filebeat_v2_test.go:84: Running beats...
{"log.level":"info","@timestamp":"2023-11-23T11:13:58.895Z","log.origin":{"file.name":"instance/beat.go","file.line":811},"message":"Home path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1149] Config path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1149] Data path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1149\\data] Logs path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1149\\logs]","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.143Z","log.origin":{"file.name":"instance/beat.go","file.line":819},"message":"Beat ID: 1b42ba3c-c4c0-4279-8ea1-862481fed8b5","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:13:59.164Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:13:59.164Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:13:59.165Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:13:59.166Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:13:59.166Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.168Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/add_cloud_metadata.go","file.line":104},"message":"add_cloud_metadata: hosting provider type detected as gcp, metadata={\"cloud\":{\"account\":{\"id\":\"elastic-ci-prod\"},\"availability_zone\":\"us-central1-c\",\"instance\":{\"id\":\"4458096586621358419\",\"name\":\"beats-ci-immutable-windows-2022-1700736935140818582\"},\"machine\":{\"type\":\"n1-highmem-8\"},\"project\":{\"id\":\"elastic-ci-prod\"},\"provider\":\"gcp\",\"region\":\"us-central1\",\"service\":{\"name\":\"GCE\"}}}","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.168Z","log.origin":{"file.name":"instance/beat.go","file.line":436},"message":"running under elastic-agent, per-beat lockfiles disabled","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.168Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1337},"message":"Beat info","service.name":"filebeat","system_info":{"beat":{"path":{"config":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1149","data":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1149\\data","home":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1149","logs":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1149\\logs"},"type":"filebeat","uuid":"1b42ba3c-c4c0-4279-8ea1-862481fed8b5"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.168Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1346},"message":"Build info","service.name":"filebeat","system_info":{"build":{"commit":"unknown","libbeat":"8.12.0","time":"0001-01-01T00:00:00.000Z","version":"8.12.0"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.168Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1349},"message":"Go runtime info","service.name":"filebeat","system_info":{"go":{"os":"windows","arch":"amd64","max_procs":8,"version":"go1.20.11"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.173Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1355},"message":"Host info","service.name":"filebeat","system_info":{"host":{"architecture":"x86_64","boot_time":"2023-11-23T10:56:55Z","name":"beats-ci-immutable-windows-2022-1700736935140818582","ip":["10.224.0.121","::1","127.0.0.1"],"kernel_version":"10.0.20348.2110 (WinBuild.160101.0800)","mac":["42:01:0a:e0:00:79"],"os":{"type":"windows","family":"windows","platform":"windows","name":"Windows Server 2022 Standard","version":"10.0","major":10,"minor":0,"patch":0,"build":"20348.2113"},"timezone":"GMT","timezone_offset_sec":0,"id":"ac35437c-1ed2-423b-bd02-f232866003a6"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.173Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1384},"message":"Process info","service.name":"filebeat","system_info":{"process":{"cwd":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\fbtest","exe":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1149\\fbtest.test.exe","name":"fbtest.test.exe","pid":3732,"ppid":3860,"start_time":"2023-11-23T11:13:58.729Z"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.173Z","log.origin":{"file.name":"instance/beat.go","file.line":334},"message":"Setup Beat: filebeat; Version: 8.12.0","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.178Z","log.origin":{"file.name":"instance/beat.go","file.line":366},"message":"Output is configured through Central Management","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.185Z","log.logger":"publisher","log.origin":{"file.name":"pipeline/module.go","file.line":105},"message":"Beat name: beats-ci-immutable-windows-2022-1700736935140818582","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:13:59.186Z","log.logger":"modules","log.origin":{"file.name":"fileset/modules.go","file.line":152},"message":"Not loading modules. Module directory not found: C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1149\\module","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.186Z","log.origin":{"file.name":"instance/beat.go","file.line":520},"message":"filebeat start running.","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.186Z","log.logger":"monitoring","log.origin":{"file.name":"log/log.go","file.line":145},"message":"Starting metrics logging every 30s","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.187Z","log.origin":{"file.name":"service/service_windows.go","file.line":163},"message":"Attempted to register Windows service handlers, but this is not a service. No action necessary","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.190Z","log.origin":{"file.name":"memlog/store.go","file.line":134},"message":"Finished loading transaction log file for 'C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1149\\data\\registry\\filebeat'. Active transaction id=0","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"warn","@timestamp":"2023-11-23T11:13:59.191Z","log.origin":{"file.name":"beater/filebeat.go","file.line":331},"message":"Filebeat is unable to load the ingest pipelines for the configured modules because the Elasticsearch output is not configured/enabled. If you have already loaded the ingest pipelines or are using Logstash pipelines, you can ignore this warning.","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.191Z","log.logger":"input","log.origin":{"file.name":"shipper/input.go","file.line":55},"message":"creating new InputManager","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.191Z","log.logger":"registrar","log.origin":{"file.name":"registrar/registrar.go","file.line":107},"message":"States Loaded from registrar: 0","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.192Z","log.logger":"crawler","log.origin":{"file.name":"beater/crawler.go","file.line":71},"message":"Loading Inputs: 0","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.192Z","log.logger":"crawler","log.origin":{"file.name":"beater/crawler.go","file.line":106},"message":"Loading and starting Inputs completed. Enabled inputs: 0","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"debug","@timestamp":"2023-11-23T11:13:59.193Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":465},"message":"Listening for agent unit changes","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.197Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":486},"message":"BeatV2Manager.unitListen UnitChanged.ID(9debf71b-5192-41ee-9076-e54eae454d7d), UnitChanged.Type(added), UnitChanged.Trigger(0): added/nothing_triggered","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:13:59.197Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":486},"message":"BeatV2Manager.unitListen UnitChanged.ID(1d7afcee-5bfe-4379-ac92-2ebaeac65daa), UnitChanged.Type(added), UnitChanged.Trigger(0): added/nothing_triggered","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"debug","@timestamp":"2023-11-23T11:14:00.197Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":719},"message":"Got output unit config ''","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:00.198Z","log.logger":"file","log.origin":{"file.name":"fileout/file.go","file.line":102},"message":"Initialized file output. path=C:\\Users\\jenkins\\AppData\\Local\\Temp\\test-1700738038\\beat-out max_size_bytes=10485760 max_backups=7 permissions=-rw-------","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"warn","@timestamp":"2023-11-23T11:14:00.199Z","log.logger":"cfgwarn","log.origin":{"file.name":"log/input.go","file.line":90},"message":"DEPRECATED: Log input. Use Filestream input instead.","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:00.200Z","log.logger":"input","log.origin":{"file.name":"log/input.go","file.line":174},"message":"Configured paths: [C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\fbtest\\testdata\\messages]","service.name":"filebeat","input_id":"3046054f-22be-4c5c-aaf5-ed7b396b55bd","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:00.201Z","log.logger":"input","log.origin":{"file.name":"log/input.go","file.line":174},"message":"Configured paths: [C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\fbtest\\testdata\\secure*]","service.name":"filebeat","input_id":"6b7e8462-acc1-4cd2-8dc0-c079fecb4db0","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:00.201Z","log.logger":"input.harvester","log.origin":{"file.name":"log/harvester.go","file.line":311},"message":"Harvester started for paths: [./testdata/messages]","service.name":"filebeat","input_id":"3046054f-22be-4c5c-aaf5-ed7b396b55bd","source_file":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\fbtest\\testdata\\messages","state_id":"native::196608-535919-3836337016","finished":false,"os_id":"196608-535919-3836337016","harvester_id":"cf89a491-9990-4af5-a0af-f8550603e3a4","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:00.201Z","log.logger":"input.harvester","log.origin":{"file.name":"log/harvester.go","file.line":311},"message":"Harvester started for paths: [./testdata/secure*]","service.name":"filebeat","input_id":"6b7e8462-acc1-4cd2-8dc0-c079fecb4db0","source_file":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\fbtest\\testdata\\secure","state_id":"native::196608-535920-3836337016","finished":false,"os_id":"196608-535920-3836337016","harvester_id":"8291b996-3b19-4917-be37-f13bfde191b9","ecs.version":"1.6.0"}
    filebeat_v2_test.go:96: stopping filebeat after 91 events
{"log.level":"error","@timestamp":"2023-11-23T11:14:10.872Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":448},"message":"elastic-agent-client error: rpc error: code = Canceled desc = context canceled","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:14:10.872Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":448},"message":"elastic-agent-client error: rpc error: code = Canceled desc = context canceled","service.name":"filebeat","ecs.version":"1.6.0"}
    filebeat_v2_test.go:103: Reading events...
    filebeat_v2_test.go:80: 
        	Error Trace:	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/src/github.com/elastic/beats/x-pack/libbeat/management/tests/fbtest/filebeat_v2_test.go:80
        	            				C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/src/github.com/elastic/beats/x-pack/libbeat/management/tests/fbtest/filebeat_v2_test.go:131
        	Error:      	Received unexpected error:
        	            	remove C:\Users\jenkins\AppData\Local\Temp\test-1700738038\beat-out-20231123.ndjson: The process cannot access the file because it is being used by another process.
        	Test:       	TestFilebeat
--- FAIL: TestFilebeat (12.04s)

Build&Test / x-pack/libbeat-windows-2022-windows-2022 / TestSingleMetricbeatMetricsetWithProcessors – github.com/elastic/beats/v7/x-pack/libbeat/management/tests/mbtest
    Expand to view the error details

     Failed

    Expand to view the stacktrace

     === RUN   TestSingleMetricbeatMetricsetWithProcessors
    init.go:31: Setting flags...
    init.go:56: writing output to file C:\Users\jenkins\AppData\Local\Temp\test-1700738048
    init.go:62: Resetting fleet manager...
    metricbeat_v2_test.go:81: Running beats...
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.086Z","log.origin":{"file.name":"instance/beat.go","file.line":811},"message":"Home path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1719] Config path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1719] Data path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1719\\data] Logs path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1719\\logs]","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.090Z","log.origin":{"file.name":"instance/beat.go","file.line":819},"message":"Beat ID: 5236b212-d209-4ef9-8ca6-14cc6342c394","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:14:08.115Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:14:08.115Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:14:08.116Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:14:08.116Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.117Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/add_cloud_metadata.go","file.line":104},"message":"add_cloud_metadata: hosting provider type detected as gcp, metadata={\"cloud\":{\"account\":{\"id\":\"elastic-ci-prod\"},\"availability_zone\":\"us-central1-c\",\"instance\":{\"id\":\"4458096586621358419\",\"name\":\"beats-ci-immutable-windows-2022-1700736935140818582\"},\"machine\":{\"type\":\"n1-highmem-8\"},\"project\":{\"id\":\"elastic-ci-prod\"},\"provider\":\"gcp\",\"region\":\"us-central1\",\"service\":{\"name\":\"GCE\"}}}","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.117Z","log.origin":{"file.name":"instance/beat.go","file.line":436},"message":"running under elastic-agent, per-beat lockfiles disabled","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.118Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1337},"message":"Beat info","service.name":"metricbeat","system_info":{"beat":{"path":{"config":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1719","data":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1719\\data","home":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1719","logs":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1719\\logs"},"type":"metricbeat","uuid":"5236b212-d209-4ef9-8ca6-14cc6342c394"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.118Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1346},"message":"Build info","service.name":"metricbeat","system_info":{"build":{"commit":"unknown","libbeat":"8.12.0","time":"0001-01-01T00:00:00.000Z","version":"8.12.0"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.118Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1349},"message":"Go runtime info","service.name":"metricbeat","system_info":{"go":{"os":"windows","arch":"amd64","max_procs":8,"version":"go1.20.11"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.124Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1355},"message":"Host info","service.name":"metricbeat","system_info":{"host":{"architecture":"x86_64","boot_time":"2023-11-23T10:56:55Z","name":"beats-ci-immutable-windows-2022-1700736935140818582","ip":["10.224.0.121","::1","127.0.0.1"],"kernel_version":"10.0.20348.2110 (WinBuild.160101.0800)","mac":["42:01:0a:e0:00:79"],"os":{"type":"windows","family":"windows","platform":"windows","name":"Windows Server 2022 Standard","version":"10.0","major":10,"minor":0,"patch":0,"build":"20348.2113"},"timezone":"GMT","timezone_offset_sec":0,"id":"ac35437c-1ed2-423b-bd02-f232866003a6"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.125Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1384},"message":"Process info","service.name":"metricbeat","system_info":{"process":{"cwd":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\mbtest","exe":"C:\\Users\\jenkins\\workspace\\PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39\\go-build7956723\\b1719\\mbtest.test.exe","name":"mbtest.test.exe","pid":4280,"ppid":3860,"start_time":"2023-11-23T11:14:06.996Z"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.125Z","log.origin":{"file.name":"instance/beat.go","file.line":334},"message":"Setup Beat: metricbeat; Version: 8.12.0","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.131Z","log.origin":{"file.name":"instance/beat.go","file.line":366},"message":"Output is configured through Central Management","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.139Z","log.logger":"publisher","log.origin":{"file.name":"pipeline/module.go","file.line":105},"message":"Beat name: beats-ci-immutable-windows-2022-1700736935140818582","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.139Z","log.origin":{"file.name":"instance/beat.go","file.line":520},"message":"metricbeat start running.","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.139Z","log.logger":"monitoring","log.origin":{"file.name":"log/log.go","file.line":145},"message":"Starting metrics logging every 30s","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.140Z","log.origin":{"file.name":"service/service_windows.go","file.line":163},"message":"Attempted to register Windows service handlers, but this is not a service. No action necessary","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"debug","@timestamp":"2023-11-23T11:14:08.140Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":465},"message":"Listening for agent unit changes","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.144Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":486},"message":"BeatV2Manager.unitListen UnitChanged.ID(c249aa49-aeed-4c9e-9629-33a6dd018132), UnitChanged.Type(added), UnitChanged.Trigger(0): added/nothing_triggered","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:08.144Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":486},"message":"BeatV2Manager.unitListen UnitChanged.ID(bec505fb-fde2-4f01-a14c-f51fb71d9c57), UnitChanged.Type(added), UnitChanged.Trigger(0): added/nothing_triggered","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"debug","@timestamp":"2023-11-23T11:14:09.144Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":719},"message":"Got output unit config ''","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:09.145Z","log.logger":"file","log.origin":{"file.name":"fileout/file.go","file.line":102},"message":"Initialized file output. path=C:\\Users\\jenkins\\AppData\\Local\\Temp\\test-1700738048\\beat-out max_size_bytes=10485760 max_backups=7 permissions=-rw-------","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:09.146Z","log.origin":{"file.name":"sysinit/init.go","file.line":57},"message":"initializing HostFS values under agent: /","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:09.152Z","log.origin":{"file.name":"helper/privileges_windows.go","file.line":80},"message":"Metricbeat process and system info: {\"OSVersion\":{\"Major\":6,\"Minor\":2,\"Build\":9200},\"Arch\":\"amd64\",\"NumCPU\":8,\"User\":{\"SID\":\"S-1-5-21-2748691655-3087910028-327713059-1192\",\"Account\":\"jenkins\",\"Domain\":\"BEATS-CI-IMMUTA\",\"Type\":1},\"ProcessPrivs\":{\"SeBackupPrivilege\":{\"enabled\":false},\"SeChangeNotifyPrivilege\":{\"enabled_by_default\":true,\"enabled\":true},\"SeCreateGlobalPrivilege\":{\"enabled_by_default\":true,\"enabled\":true},\"SeCreatePagefilePrivilege\":{\"enabled\":false},\"SeCreateSymbolicLinkPrivilege\":{\"enabled\":false},\"SeDebugPrivilege\":{\"enabled\":true},\"SeDelegateSessionUserImpersonatePrivilege\":{\"enabled\":false},\"SeImpersonatePrivilege\":{\"enabled_by_default\":true,\"enabled\":true},\"SeIncreaseBasePriorityPrivilege\":{\"enabled\":false},\"SeIncreaseQuotaPrivilege\":{\"enabled\":false},\"SeIncreaseWorkingSetPrivilege\":{\"enabled\":false},\"SeLoadDriverPrivilege\":{\"enabled\":false},\"SeManageVolumePrivilege\":{\"enabled\":false},\"SeProfileSingleProcessPrivilege\":{\"enabled\":false},\"SeRemoteShutdownPrivilege\":{\"enabled\":false},\"SeRestorePrivilege\":{\"enabled\":false},\"SeSecurityPrivilege\":{\"enabled\":false},\"SeShutdownPrivilege\":{\"enabled\":false},\"SeSystemEnvironmentPrivilege\":{\"enabled\":false},\"SeSystemProfilePrivilege\":{\"enabled\":false},\"SeSystemtimePrivilege\":{\"enabled\":false},\"SeTakeOwnershipPrivilege\":{\"enabled\":false},\"SeTimeZonePrivilege\":{\"enabled\":false},\"SeUndockPrivilege\":{\"enabled\":false}}}","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:09.152Z","log.origin":{"file.name":"helper/privileges_windows.go","file.line":88},"message":"SeDebugPrivilege is enabled. SeDebugPrivilege=(Enabled)","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:09.154Z","log.logger":"system.cpu","log.origin":{"file.name":"cpu/cpu.go","file.line":106},"message":"got DiagnosticSetup request for system/cpu","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:09.154Z","log.origin":{"file.name":"sysinit/init.go","file.line":57},"message":"initializing HostFS values under agent: /","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:14:09.154Z","log.logger":"system.memory","log.origin":{"file.name":"memory/memory.go","file.line":76},"message":"got DiagnosticSetup request for system/memory","service.name":"metricbeat","ecs.version":"1.6.0"}
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
{"log.level":"error","@timestamp":"2023-11-23T11:14:20.097Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":448},"message":"elastic-agent-client error: rpc error: code = Canceled desc = context canceled","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:14:20.097Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":448},"message":"elastic-agent-client error: rpc error: code = Canceled desc = context canceled","service.name":"metricbeat","ecs.version":"1.6.0"}
    metricbeat_v2_test.go:117: Reading events...
    metricbeat_v2_test.go:119: Got 20 events
    metricbeat_v2_test.go:77: 
        	Error Trace:	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/src/github.com/elastic/beats/x-pack/libbeat/management/tests/mbtest/metricbeat_v2_test.go:77
        	            				C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/src/github.com/elastic/beats/x-pack/libbeat/management/tests/mbtest/metricbeat_v2_test.go:156
        	Error:      	Received unexpected error:
        	            	remove C:\Users\jenkins\AppData\Local\Temp\test-1700738048\beat-out-20231123.ndjson: The process cannot access the file because it is being used by another process.
        	Test:       	TestSingleMetricbeatMetricsetWithProcessors
--- FAIL: TestSingleMetricbeatMetricsetWithProcessors (12.05s)

Build&Test / x-pack/libbeat-windows-2022-windows-2022 / TestGUIDFromProviderName_GUIDNotFound – github.com/elastic/beats/v7/x-pack/libbeat/reader/etw
    Expand to view the error details

     Failed

    Expand to view the stacktrace

     === RUN   TestGUIDFromProviderName_GUIDNotFound
runtime: goroutine stack exceeds 1000000000-byte limit
runtime: sp=0xc000067e30 stack=[0xc000066000, 0xc000068000]
fatal error: stack overflow

runtime stack:
runtime.throw({0x5870ce?, 0x71f100?})
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/panic.go:1047 +0x65 fp=0xd77a9ff620 sp=0xd77a9ff5f0 pc=0x3899c5
runtime.newstack()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/stack.go:1105 +0x5db fp=0xd77a9ff7d0 sp=0xd77a9ff620 pc=0x3a133b
runtime.morestack()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:574 +0x83 fp=0xd77a9ff7d8 sp=0xd77a9ff7d0 pc=0x3ba463

goroutine 50 [running]:
github.com/elastic/beats/v7/x-pack/libbeat/reader/etw.TestGUIDFromProviderName_GUIDNotFound.func2(0xc0000180ac, 0xc0000180a8?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/src/github.com/elastic/beats/x-pack/libbeat/reader/etw/provider_test.go:95 +0x1ad fp=0xc000067e40 sp=0xc000067e38 pc=0x525bcd
github.com/elastic/beats/v7/x-pack/libbeat/reader/etw.GUIDFromProviderName({0x5890b1, 0x13})
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/src/github.com/elastic/beats/x-pack/libbeat/reader/etw/provider.go:54 +0x11d fp=0xc000067ea8 sp=0xc000067e40 pc=0x52237d
github.com/elastic/beats/v7/x-pack/libbeat/reader/etw.TestGUIDFromProviderName_GUIDNotFound(0xc0000db040?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/src/github.com/elastic/beats/x-pack/libbeat/reader/etw/provider_test.go:122 +0xf6 fp=0xc000067f70 sp=0xc000067ea8 pc=0x5258f6
testing.tRunner(0xc0000da000, 0x5b34e0)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1576 +0x10b fp=0xc000067fc0 sp=0xc000067f70 pc=0x46c70b
testing.(*T).Run.func1()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1629 +0x2a fp=0xc000067fe0 sp=0xc000067fc0 pc=0x46d74a
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000067fe8 sp=0xc000067fe0 pc=0x3bc601
created by testing.(*T).Run
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1629 +0x3ea

goroutine 1 [chan receive]:
runtime.gopark(0xc00005ac00?, 0xc00000a050?, 0xd0?, 0xed?, 0xc000075a20?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc0000759a0 sp=0xc000075980 pc=0x38c556
runtime.chanrecv(0xc00001e230, 0xc000075a9f, 0x1)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/chan.go:583 +0x49d fp=0xc000075a30 sp=0xc0000759a0 pc=0x356d5d
runtime.chanrecv1(0x751720?, 0x542060?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/chan.go:442 +0x18 fp=0xc000075a58 sp=0xc000075a30 pc=0x356898
testing.(*T).Run(0xc0000516c0, {0x591cb3?, 0x3bf193?}, 0x5b34e0)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1630 +0x405 fp=0xc000075b18 sp=0xc000075a58 pc=0x46d5c5
testing.runTests.func1(0x752340?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:2036 +0x45 fp=0xc000075b68 sp=0xc000075b18 pc=0x46f785
testing.tRunner(0xc0000516c0, 0xc000097c80)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1576 +0x10b fp=0xc000075bb8 sp=0xc000075b68 pc=0x46c70b
testing.runTests(0xc00007b180?, {0x74b100, 0x19, 0x19}, {0x28811129e98?, 0x1028811120108?, 0x751b60?})
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:2034 +0x489 fp=0xc000075cb0 sp=0xc000075bb8 pc=0x46f669
testing.(*M).Run(0xc00007b180)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1906 +0x63a fp=0xc000075ef8 sp=0xc000075cb0 pc=0x46dfda
main.main()
	_testmain.go:126 +0x1c5 fp=0xc000075f80 sp=0xc000075ef8 pc=0x529425
runtime.main()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:250 +0x1f7 fp=0xc000075fe0 sp=0xc000075f80 pc=0x38c137
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000075fe8 sp=0xc000075fe0 pc=0x3bc601

goroutine 2 [force gc (idle)]:
runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc000053fb0 sp=0xc000053f90 pc=0x38c556
runtime.goparkunlock(...)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:387
runtime.forcegchelper()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:305 +0xb2 fp=0xc000053fe0 sp=0xc000053fb0 pc=0x38c372
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000053fe8 sp=0xc000053fe0 pc=0x3bc601
created by runtime.init.6
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:293 +0x25

goroutine 3 [GC sweep wait]:
runtime.gopark(0x1?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc000055f80 sp=0xc000055f60 pc=0x38c556
runtime.goparkunlock(...)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:387
runtime.bgsweep(0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgcsweep.go:319 +0xde fp=0xc000055fc8 sp=0xc000055f80 pc=0x37483e
runtime.gcenable.func1()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:178 +0x26 fp=0xc000055fe0 sp=0xc000055fc8 pc=0x369a06
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000055fe8 sp=0xc000055fe0 pc=0x3bc601
created by runtime.gcenable
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:178 +0x6b

goroutine 4 [GC scavenge wait]:
runtime.gopark(0xc00001e230?, 0x5effa8?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc000065f70 sp=0xc000065f50 pc=0x38c556
runtime.goparkunlock(...)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:387
runtime.(*scavengerState).park(0x751be0)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgcscavenge.go:400 +0x53 fp=0xc000065fa0 sp=0xc000065f70 pc=0x3726f3
runtime.bgscavenge(0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgcscavenge.go:633 +0x65 fp=0xc000065fc8 sp=0xc000065fa0 pc=0x372d05
runtime.gcenable.func2()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:179 +0x26 fp=0xc000065fe0 sp=0xc000065fc8 pc=0x3699a6
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000065fe8 sp=0xc000065fe0 pc=0x3bc601
created by runtime.gcenable
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:179 +0xaa

goroutine 5 [finalizer wait]:
runtime.gopark(0x38c8d2?, 0x38c2a5?, 0x0?, 0x0?, 0xc000057f70?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc000057e28 sp=0xc000057e08 pc=0x38c556
runtime.runfinq()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mfinal.go:193 +0x107 fp=0xc000057fe0 sp=0xc000057e28 pc=0x368a67
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000057fe8 sp=0xc000057fe0 pc=0x3bc601
created by runtime.createfing
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mfinal.go:163 +0x45

goroutine 21 [GC worker (idle)]:
runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc000061f50 sp=0xc000061f30 pc=0x38c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc000061fe0 sp=0xc000061f50 pc=0x36b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000061fe8 sp=0xc000061fe0 pc=0x3bc601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 34 [GC worker (idle)]:
runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc03010ff50 sp=0xc03010ff30 pc=0x38c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc03010ffe0 sp=0xc03010ff50 pc=0x36b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc03010ffe8 sp=0xc03010ffe0 pc=0x3bc601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 35 [GC worker (idle)]:
runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc030111f50 sp=0xc030111f30 pc=0x38c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc030111fe0 sp=0xc030111f50 pc=0x36b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc030111fe8 sp=0xc030111fe0 pc=0x3bc601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 36 [GC worker (idle)]:
runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc03010bf50 sp=0xc03010bf30 pc=0x38c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc03010bfe0 sp=0xc03010bf50 pc=0x36b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc03010bfe8 sp=0xc03010bfe0 pc=0x3bc601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 22 [GC worker (idle)]:
runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc000063f50 sp=0xc000063f30 pc=0x38c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc000063fe0 sp=0xc000063f50 pc=0x36b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000063fe8 sp=0xc000063fe0 pc=0x3bc601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 23 [GC worker (idle)]:
runtime.gopark(0xf04fca7ea8?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc0000e1f50 sp=0xc0000e1f30 pc=0x38c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc0000e1fe0 sp=0xc0000e1f50 pc=0x36b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0000e1fe8 sp=0xc0000e1fe0 pc=0x3bc601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 24 [GC worker (idle)]:
runtime.gopark(0xf04fca7ea8?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc0000e3f50 sp=0xc0000e3f30 pc=0x38c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc0000e3fe0 sp=0xc0000e3f50 pc=0x36b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0000e3fe8 sp=0xc0000e3fe0 pc=0x3bc601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 25 [GC worker (idle)]:
runtime.gopark(0xf04fca7ea8?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc0000ddf50 sp=0xc0000ddf30 pc=0x38c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc0000ddfe0 sp=0xc0000ddf50 pc=0x36b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0000ddfe8 sp=0xc0000ddfe0 pc=0x3bc601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-a4c80967-0190-44fe-9588-dd1cc7e8ba39/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

Build&Test / x-pack/libbeat-windows-2016-windows-2016 / TestFilebeat – github.com/elastic/beats/v7/x-pack/libbeat/management/tests/fbtest
    Expand to view the error details

     Failed

    Expand to view the stacktrace

     === RUN   TestFilebeat
    init.go:31: Setting flags...
    init.go:56: writing output to file C:\Users\jenkins\AppData\Local\Temp\test-1700738210
    init.go:62: Resetting fleet manager...
    filebeat_v2_test.go:90: waiting for events...
    filebeat_v2_test.go:84: Running beats...
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.726Z","log.origin":{"file.name":"instance/beat.go","file.line":811},"message":"Home path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1149] Config path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1149] Data path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1149\\data] Logs path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1149\\logs]","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.934Z","log.origin":{"file.name":"instance/beat.go","file.line":819},"message":"Beat ID: be84edd2-59b0-4e88-9679-513fc476cb7a","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:16:50.954Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:16:50.954Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:16:50.955Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:16:50.957Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.958Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/add_cloud_metadata.go","file.line":104},"message":"add_cloud_metadata: hosting provider type detected as gcp, metadata={\"cloud\":{\"account\":{\"id\":\"elastic-ci-prod\"},\"availability_zone\":\"us-central1-f\",\"instance\":{\"id\":\"8862238446592364882\",\"name\":\"beats-ci-immutable-windows-2016-1700736935140847673\"},\"machine\":{\"type\":\"n1-highmem-8\"},\"project\":{\"id\":\"elastic-ci-prod\"},\"provider\":\"gcp\",\"region\":\"us-central1\",\"service\":{\"name\":\"GCE\"}}}","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.959Z","log.origin":{"file.name":"instance/beat.go","file.line":436},"message":"running under elastic-agent, per-beat lockfiles disabled","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.959Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1337},"message":"Beat info","service.name":"filebeat","system_info":{"beat":{"path":{"config":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1149","data":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1149\\data","home":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1149","logs":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1149\\logs"},"type":"filebeat","uuid":"be84edd2-59b0-4e88-9679-513fc476cb7a"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.959Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1346},"message":"Build info","service.name":"filebeat","system_info":{"build":{"commit":"unknown","libbeat":"8.12.0","time":"0001-01-01T00:00:00.000Z","version":"8.12.0"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.959Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1349},"message":"Go runtime info","service.name":"filebeat","system_info":{"go":{"os":"windows","arch":"amd64","max_procs":8,"version":"go1.20.11"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.965Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1355},"message":"Host info","service.name":"filebeat","system_info":{"host":{"architecture":"x86_64","boot_time":"2023-11-23T11:00:34Z","name":"beats-ci-immutable-windows-2016-1700736935140847673","ip":["fe80::f54d:9b5d:362a:6c3e","10.224.0.98","::1","127.0.0.1","fe80::5efe:ae0:62","2001:0:34f1:8072:1c9e:d26:f51f:ff9d","fe80::1c9e:d26:f51f:ff9d"],"kernel_version":"10.0.14393.6451 (rs1_release.231103-1737)","mac":["42:01:0a:e0:00:62","00:00:00:00:00:00:00:e0","00:00:00:00:00:00:00:e0"],"os":{"type":"windows","family":"windows","platform":"windows","name":"Windows Server 2016 Datacenter","version":"10.0","major":10,"minor":0,"patch":0,"build":"14393.6452"},"timezone":"GMT","timezone_offset_sec":0,"id":"52fa7d2e-4f4f-4ea5-b9c1-cc390df4a017"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.965Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1384},"message":"Process info","service.name":"filebeat","system_info":{"process":{"cwd":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\fbtest","exe":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1149\\fbtest.test.exe","name":"fbtest.test.exe","pid":2652,"ppid":4688,"start_time":"2023-11-23T11:16:50.507Z"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.965Z","log.origin":{"file.name":"instance/beat.go","file.line":334},"message":"Setup Beat: filebeat; Version: 8.12.0","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.969Z","log.origin":{"file.name":"instance/beat.go","file.line":366},"message":"Output is configured through Central Management","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.977Z","log.logger":"publisher","log.origin":{"file.name":"pipeline/module.go","file.line":105},"message":"Beat name: beats-ci-immutable-windows-2016-1700736935140847673","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:16:50.978Z","log.logger":"modules","log.origin":{"file.name":"fileset/modules.go","file.line":152},"message":"Not loading modules. Module directory not found: C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1149\\module","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.978Z","log.origin":{"file.name":"instance/beat.go","file.line":520},"message":"filebeat start running.","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.978Z","log.logger":"monitoring","log.origin":{"file.name":"log/log.go","file.line":145},"message":"Starting metrics logging every 30s","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.979Z","log.origin":{"file.name":"service/service_windows.go","file.line":163},"message":"Attempted to register Windows service handlers, but this is not a service. No action necessary","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.983Z","log.origin":{"file.name":"memlog/store.go","file.line":134},"message":"Finished loading transaction log file for 'C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1149\\data\\registry\\filebeat'. Active transaction id=0","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"warn","@timestamp":"2023-11-23T11:16:50.984Z","log.origin":{"file.name":"beater/filebeat.go","file.line":331},"message":"Filebeat is unable to load the ingest pipelines for the configured modules because the Elasticsearch output is not configured/enabled. If you have already loaded the ingest pipelines or are using Logstash pipelines, you can ignore this warning.","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.984Z","log.logger":"input","log.origin":{"file.name":"shipper/input.go","file.line":55},"message":"creating new InputManager","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.985Z","log.logger":"registrar","log.origin":{"file.name":"registrar/registrar.go","file.line":107},"message":"States Loaded from registrar: 0","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.985Z","log.logger":"crawler","log.origin":{"file.name":"beater/crawler.go","file.line":71},"message":"Loading Inputs: 0","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.985Z","log.logger":"crawler","log.origin":{"file.name":"beater/crawler.go","file.line":106},"message":"Loading and starting Inputs completed. Enabled inputs: 0","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"debug","@timestamp":"2023-11-23T11:16:50.986Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":465},"message":"Listening for agent unit changes","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.989Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":486},"message":"BeatV2Manager.unitListen UnitChanged.ID(926980cf-fc40-4e69-8381-2438919a8ee9), UnitChanged.Type(added), UnitChanged.Trigger(0): added/nothing_triggered","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:50.989Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":486},"message":"BeatV2Manager.unitListen UnitChanged.ID(5d12c7fe-816d-4b6d-886c-b188754e49e8), UnitChanged.Type(added), UnitChanged.Trigger(0): added/nothing_triggered","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"debug","@timestamp":"2023-11-23T11:16:51.991Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":719},"message":"Got output unit config ''","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:51.992Z","log.logger":"file","log.origin":{"file.name":"fileout/file.go","file.line":102},"message":"Initialized file output. path=C:\\Users\\jenkins\\AppData\\Local\\Temp\\test-1700738210\\beat-out max_size_bytes=10485760 max_backups=7 permissions=-rw-------","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"warn","@timestamp":"2023-11-23T11:16:51.993Z","log.logger":"cfgwarn","log.origin":{"file.name":"log/input.go","file.line":90},"message":"DEPRECATED: Log input. Use Filestream input instead.","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:51.994Z","log.logger":"input","log.origin":{"file.name":"log/input.go","file.line":174},"message":"Configured paths: [C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\fbtest\\testdata\\secure*]","service.name":"filebeat","input_id":"8de896f6-93bc-468e-97e2-e14a13d70a3e","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:51.994Z","log.logger":"input","log.origin":{"file.name":"log/input.go","file.line":174},"message":"Configured paths: [C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\fbtest\\testdata\\messages]","service.name":"filebeat","input_id":"5cfb639e-4523-46c4-9a68-71b77b77926e","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:51.995Z","log.logger":"input.harvester","log.origin":{"file.name":"log/harvester.go","file.line":311},"message":"Harvester started for paths: [./testdata/secure*]","service.name":"filebeat","input_id":"8de896f6-93bc-468e-97e2-e14a13d70a3e","source_file":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\fbtest\\testdata\\secure","state_id":"native::262144-423129-212358640","finished":false,"os_id":"262144-423129-212358640","harvester_id":"97773e5a-eb5f-47a9-80f2-75d7d7ec0202","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:16:51.995Z","log.logger":"input.harvester","log.origin":{"file.name":"log/harvester.go","file.line":311},"message":"Harvester started for paths: [./testdata/messages]","service.name":"filebeat","input_id":"5cfb639e-4523-46c4-9a68-71b77b77926e","source_file":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\fbtest\\testdata\\messages","state_id":"native::327680-423128-212358640","finished":false,"os_id":"327680-423128-212358640","harvester_id":"fd648f02-6f33-47c3-bf37-61c427284a3f","ecs.version":"1.6.0"}
    filebeat_v2_test.go:96: stopping filebeat after 91 events
{"log.level":"error","@timestamp":"2023-11-23T11:17:02.702Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":448},"message":"elastic-agent-client error: rpc error: code = Canceled desc = context canceled","service.name":"filebeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:17:02.702Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":448},"message":"elastic-agent-client error: rpc error: code = Canceled desc = context canceled","service.name":"filebeat","ecs.version":"1.6.0"}
    filebeat_v2_test.go:103: Reading events...
    filebeat_v2_test.go:80: 
        	Error Trace:	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/src/github.com/elastic/beats/x-pack/libbeat/management/tests/fbtest/filebeat_v2_test.go:80
        	            				C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/src/github.com/elastic/beats/x-pack/libbeat/management/tests/fbtest/filebeat_v2_test.go:131
        	Error:      	Received unexpected error:
        	            	remove C:\Users\jenkins\AppData\Local\Temp\test-1700738210\beat-out-20231123.ndjson: The process cannot access the file because it is being used by another process.
        	Test:       	TestFilebeat
--- FAIL: TestFilebeat (12.04s)

Build&Test / x-pack/libbeat-windows-2016-windows-2016 / TestSingleMetricbeatMetricsetWithProcessors – github.com/elastic/beats/v7/x-pack/libbeat/management/tests/mbtest
    Expand to view the error details

     Failed

    Expand to view the stacktrace

     === RUN   TestSingleMetricbeatMetricsetWithProcessors
    init.go:31: Setting flags...
    init.go:56: writing output to file C:\Users\jenkins\AppData\Local\Temp\test-1700738220
    init.go:62: Resetting fleet manager...
    metricbeat_v2_test.go:81: Running beats...
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.253Z","log.origin":{"file.name":"instance/beat.go","file.line":811},"message":"Home path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1719] Config path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1719] Data path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1719\\data] Logs path: [C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1719\\logs]","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.258Z","log.origin":{"file.name":"instance/beat.go","file.line":819},"message":"Beat ID: c05e3c63-e9d5-4447-9ff5-65b7b3eda48e","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:17:00.285Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/providers.go","file.line":173},"message":"add_cloud_metadata: received error failed with http status code 404","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.286Z","log.logger":"add_cloud_metadata","log.origin":{"file.name":"add_cloud_metadata/add_cloud_metadata.go","file.line":104},"message":"add_cloud_metadata: hosting provider type detected as gcp, metadata={\"cloud\":{\"account\":{\"id\":\"elastic-ci-prod\"},\"availability_zone\":\"us-central1-f\",\"instance\":{\"id\":\"8862238446592364882\",\"name\":\"beats-ci-immutable-windows-2016-1700736935140847673\"},\"machine\":{\"type\":\"n1-highmem-8\"},\"project\":{\"id\":\"elastic-ci-prod\"},\"provider\":\"gcp\",\"region\":\"us-central1\",\"service\":{\"name\":\"GCE\"}}}","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.286Z","log.origin":{"file.name":"instance/beat.go","file.line":436},"message":"running under elastic-agent, per-beat lockfiles disabled","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.286Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1337},"message":"Beat info","service.name":"metricbeat","system_info":{"beat":{"path":{"config":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1719","data":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1719\\data","home":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1719","logs":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1719\\logs"},"type":"metricbeat","uuid":"c05e3c63-e9d5-4447-9ff5-65b7b3eda48e"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.286Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1346},"message":"Build info","service.name":"metricbeat","system_info":{"build":{"commit":"unknown","libbeat":"8.12.0","time":"0001-01-01T00:00:00.000Z","version":"8.12.0"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.286Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1349},"message":"Go runtime info","service.name":"metricbeat","system_info":{"go":{"os":"windows","arch":"amd64","max_procs":8,"version":"go1.20.11"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.294Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1355},"message":"Host info","service.name":"metricbeat","system_info":{"host":{"architecture":"x86_64","boot_time":"2023-11-23T11:00:34Z","name":"beats-ci-immutable-windows-2016-1700736935140847673","ip":["fe80::f54d:9b5d:362a:6c3e","10.224.0.98","::1","127.0.0.1","fe80::5efe:ae0:62","2001:0:34f1:8072:1c9e:d26:f51f:ff9d","fe80::1c9e:d26:f51f:ff9d"],"kernel_version":"10.0.14393.6451 (rs1_release.231103-1737)","mac":["42:01:0a:e0:00:62","00:00:00:00:00:00:00:e0","00:00:00:00:00:00:00:e0"],"os":{"type":"windows","family":"windows","platform":"windows","name":"Windows Server 2016 Datacenter","version":"10.0","major":10,"minor":0,"patch":0,"build":"14393.6452"},"timezone":"GMT","timezone_offset_sec":0,"id":"52fa7d2e-4f4f-4ea5-b9c1-cc390df4a017"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.295Z","log.logger":"beat","log.origin":{"file.name":"instance/beat.go","file.line":1384},"message":"Process info","service.name":"metricbeat","system_info":{"process":{"cwd":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\src\\github.com\\elastic\\beats\\x-pack\\libbeat\\management\\tests\\mbtest","exe":"C:\\Users\\jenkins\\workspace\\PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a\\go-build1911189926\\b1719\\mbtest.test.exe","name":"mbtest.test.exe","pid":1724,"ppid":4688,"start_time":"2023-11-23T11:16:59.022Z"},"ecs.version":"1.6.0"}}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.295Z","log.origin":{"file.name":"instance/beat.go","file.line":334},"message":"Setup Beat: metricbeat; Version: 8.12.0","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.300Z","log.origin":{"file.name":"instance/beat.go","file.line":366},"message":"Output is configured through Central Management","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.310Z","log.logger":"publisher","log.origin":{"file.name":"pipeline/module.go","file.line":105},"message":"Beat name: beats-ci-immutable-windows-2016-1700736935140847673","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.311Z","log.origin":{"file.name":"instance/beat.go","file.line":520},"message":"metricbeat start running.","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.311Z","log.logger":"monitoring","log.origin":{"file.name":"log/log.go","file.line":145},"message":"Starting metrics logging every 30s","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.311Z","log.origin":{"file.name":"service/service_windows.go","file.line":163},"message":"Attempted to register Windows service handlers, but this is not a service. No action necessary","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"debug","@timestamp":"2023-11-23T11:17:00.312Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":465},"message":"Listening for agent unit changes","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.315Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":486},"message":"BeatV2Manager.unitListen UnitChanged.ID(630ce2f7-ca03-46e4-a220-bb06d8b845b3), UnitChanged.Type(added), UnitChanged.Trigger(0): added/nothing_triggered","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:00.315Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":486},"message":"BeatV2Manager.unitListen UnitChanged.ID(8d31e3c4-73b5-4540-91f6-bf9017a76e06), UnitChanged.Type(added), UnitChanged.Trigger(0): added/nothing_triggered","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"debug","@timestamp":"2023-11-23T11:17:01.315Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":719},"message":"Got output unit config ''","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:01.316Z","log.logger":"file","log.origin":{"file.name":"fileout/file.go","file.line":102},"message":"Initialized file output. path=C:\\Users\\jenkins\\AppData\\Local\\Temp\\test-1700738220\\beat-out max_size_bytes=10485760 max_backups=7 permissions=-rw-------","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:01.318Z","log.origin":{"file.name":"sysinit/init.go","file.line":57},"message":"initializing HostFS values under agent: /","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:01.323Z","log.origin":{"file.name":"helper/privileges_windows.go","file.line":80},"message":"Metricbeat process and system info: {\"OSVersion\":{\"Major\":6,\"Minor\":2,\"Build\":9200},\"Arch\":\"amd64\",\"NumCPU\":8,\"User\":{\"SID\":\"S-1-5-21-3152062444-2794536858-1194412527-1148\",\"Account\":\"jenkins\",\"Domain\":\"BEATS-CI-IMMUTA\",\"Type\":1},\"ProcessPrivs\":{\"SeBackupPrivilege\":{\"enabled\":false},\"SeChangeNotifyPrivilege\":{\"enabled_by_default\":true,\"enabled\":true},\"SeCreateGlobalPrivilege\":{\"enabled_by_default\":true,\"enabled\":true},\"SeCreatePagefilePrivilege\":{\"enabled\":false},\"SeCreateSymbolicLinkPrivilege\":{\"enabled\":false},\"SeDebugPrivilege\":{\"enabled\":true},\"SeDelegateSessionUserImpersonatePrivilege\":{\"enabled\":false},\"SeImpersonatePrivilege\":{\"enabled_by_default\":true,\"enabled\":true},\"SeIncreaseBasePriorityPrivilege\":{\"enabled\":false},\"SeIncreaseQuotaPrivilege\":{\"enabled\":false},\"SeIncreaseWorkingSetPrivilege\":{\"enabled\":false},\"SeLoadDriverPrivilege\":{\"enabled\":false},\"SeManageVolumePrivilege\":{\"enabled\":false},\"SeProfileSingleProcessPrivilege\":{\"enabled\":false},\"SeRemoteShutdownPrivilege\":{\"enabled\":false},\"SeRestorePrivilege\":{\"enabled\":false},\"SeSecurityPrivilege\":{\"enabled\":false},\"SeShutdownPrivilege\":{\"enabled\":false},\"SeSystemEnvironmentPrivilege\":{\"enabled\":false},\"SeSystemProfilePrivilege\":{\"enabled\":false},\"SeSystemtimePrivilege\":{\"enabled\":false},\"SeTakeOwnershipPrivilege\":{\"enabled\":false},\"SeTimeZonePrivilege\":{\"enabled\":false},\"SeUndockPrivilege\":{\"enabled\":false}}}","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:01.323Z","log.origin":{"file.name":"helper/privileges_windows.go","file.line":88},"message":"SeDebugPrivilege is enabled. SeDebugPrivilege=(Enabled)","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:01.324Z","log.logger":"system.cpu","log.origin":{"file.name":"cpu/cpu.go","file.line":106},"message":"got DiagnosticSetup request for system/cpu","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:01.324Z","log.origin":{"file.name":"sysinit/init.go","file.line":57},"message":"initializing HostFS values under agent: /","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"info","@timestamp":"2023-11-23T11:17:01.324Z","log.logger":"system.memory","log.origin":{"file.name":"memory/memory.go","file.line":76},"message":"got DiagnosticSetup request for system/memory","service.name":"metricbeat","ecs.version":"1.6.0"}
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
    metricbeat_v2_test.go:111: found memory and CPU events
{"log.level":"error","@timestamp":"2023-11-23T11:17:12.254Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":448},"message":"elastic-agent-client error: rpc error: code = Canceled desc = context canceled","service.name":"metricbeat","ecs.version":"1.6.0"}
{"log.level":"error","@timestamp":"2023-11-23T11:17:12.254Z","log.logger":"centralmgmt.V2-manager","log.origin":{"file.name":"management/managerV2.go","file.line":448},"message":"elastic-agent-client error: rpc error: code = Canceled desc = context canceled","service.name":"metricbeat","ecs.version":"1.6.0"}
    metricbeat_v2_test.go:117: Reading events...
    metricbeat_v2_test.go:119: Got 20 events
    metricbeat_v2_test.go:77: 
        	Error Trace:	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/src/github.com/elastic/beats/x-pack/libbeat/management/tests/mbtest/metricbeat_v2_test.go:77
        	            				C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/src/github.com/elastic/beats/x-pack/libbeat/management/tests/mbtest/metricbeat_v2_test.go:156
        	Error:      	Received unexpected error:
        	            	remove C:\Users\jenkins\AppData\Local\Temp\test-1700738220\beat-out-20231123.ndjson: The process cannot access the file because it is being used by another process.
        	Test:       	TestSingleMetricbeatMetricsetWithProcessors
--- FAIL: TestSingleMetricbeatMetricsetWithProcessors (12.04s)

Build&Test / x-pack/libbeat-windows-2016-windows-2016 / TestGUIDFromProviderName_GUIDNotFound – github.com/elastic/beats/v7/x-pack/libbeat/reader/etw
    Expand to view the error details

     Failed

    Expand to view the stacktrace

     === RUN   TestGUIDFromProviderName_GUIDNotFound
runtime: goroutine stack exceeds 1000000000-byte limit
runtime: sp=0xc000089e30 stack=[0xc000088000, 0xc00008a000]
fatal error: stack overflow

runtime stack:
runtime.throw({0x11670ce?, 0x12ff100?})
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/panic.go:1047 +0x65 fp=0x4916bffac0 sp=0x4916bffa90 pc=0xf699c5
runtime.newstack()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/stack.go:1105 +0x5db fp=0x4916bffc70 sp=0x4916bffac0 pc=0xf8133b
runtime.morestack()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:574 +0x83 fp=0x4916bffc78 sp=0x4916bffc70 pc=0xf9a463

goroutine 38 [running]:
github.com/elastic/beats/v7/x-pack/libbeat/reader/etw.TestGUIDFromProviderName_GUIDNotFound.func2(0xc0000180ac, 0xc0000180a8?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/src/github.com/elastic/beats/x-pack/libbeat/reader/etw/provider_test.go:95 +0x1ad fp=0xc000089e40 sp=0xc000089e38 pc=0x1105bcd
github.com/elastic/beats/v7/x-pack/libbeat/reader/etw.GUIDFromProviderName({0x11690b1, 0x13})
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/src/github.com/elastic/beats/x-pack/libbeat/reader/etw/provider.go:54 +0x11d fp=0xc000089ea8 sp=0xc000089e40 pc=0x110237d
github.com/elastic/beats/v7/x-pack/libbeat/reader/etw.TestGUIDFromProviderName_GUIDNotFound(0xc000153040?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/src/github.com/elastic/beats/x-pack/libbeat/reader/etw/provider_test.go:122 +0xf6 fp=0xc000089f70 sp=0xc000089ea8 pc=0x11058f6
testing.tRunner(0xc0000849c0, 0x11934e0)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1576 +0x10b fp=0xc000089fc0 sp=0xc000089f70 pc=0x104c70b
testing.(*T).Run.func1()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1629 +0x2a fp=0xc000089fe0 sp=0xc000089fc0 pc=0x104d74a
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000089fe8 sp=0xc000089fe0 pc=0xf9c601
created by testing.(*T).Run
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1629 +0x3ea

goroutine 1 [chan receive]:
runtime.gopark(0x1332340?, 0xc00000a050?, 0x90?, 0xea?, 0xc00006ba20?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc00006b9a0 sp=0xc00006b980 pc=0xf6c556
runtime.chanrecv(0xc00001e230, 0xc00006ba9f, 0x1)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/chan.go:583 +0x49d fp=0xc00006ba30 sp=0xc00006b9a0 pc=0xf36d5d
runtime.chanrecv1(0x1331720?, 0x1122060?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/chan.go:442 +0x18 fp=0xc00006ba58 sp=0xc00006ba30 pc=0xf36898
testing.(*T).Run(0xc0000516c0, {0x1171cb3?, 0xf9f193?}, 0x11934e0)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1630 +0x405 fp=0xc00006bb18 sp=0xc00006ba58 pc=0x104d5c5
testing.runTests.func1(0x1332340?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:2036 +0x45 fp=0xc00006bb68 sp=0xc00006bb18 pc=0x104f785
testing.tRunner(0xc0000516c0, 0xc00007fc80)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1576 +0x10b fp=0xc00006bbb8 sp=0xc00006bb68 pc=0x104c70b
testing.runTests(0xc000071180?, {0x132b100, 0x19, 0x19}, {0xc000064f88?, 0x100c00007fd08?, 0x1331b60?})
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:2034 +0x489 fp=0xc00006bcb0 sp=0xc00006bbb8 pc=0x104f669
testing.(*M).Run(0xc000071180)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/testing/testing.go:1906 +0x63a fp=0xc00006bef8 sp=0xc00006bcb0 pc=0x104dfda
main.main()
	_testmain.go:126 +0x1c5 fp=0xc00006bf80 sp=0xc00006bef8 pc=0x1109425
runtime.main()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:250 +0x1f7 fp=0xc00006bfe0 sp=0xc00006bf80 pc=0xf6c137
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc00006bfe8 sp=0xc00006bfe0 pc=0xf9c601

goroutine 2 [force gc (idle)]:
runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc000053fb0 sp=0xc000053f90 pc=0xf6c556
runtime.goparkunlock(...)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:387
runtime.forcegchelper()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:305 +0xb2 fp=0xc000053fe0 sp=0xc000053fb0 pc=0xf6c372
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000053fe8 sp=0xc000053fe0 pc=0xf9c601
created by runtime.init.6
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:293 +0x25

goroutine 3 [GC sweep wait]:
runtime.gopark(0x1?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc000055f80 sp=0xc000055f60 pc=0xf6c556
runtime.goparkunlock(...)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:387
runtime.bgsweep(0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgcsweep.go:319 +0xde fp=0xc000055fc8 sp=0xc000055f80 pc=0xf5483e
runtime.gcenable.func1()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:178 +0x26 fp=0xc000055fe0 sp=0xc000055fc8 pc=0xf49a06
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000055fe8 sp=0xc000055fe0 pc=0xf9c601
created by runtime.gcenable
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:178 +0x6b

goroutine 18 [GC scavenge wait]:
runtime.gopark(0xc00001e230?, 0x11cffa8?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc00008df70 sp=0xc00008df50 pc=0xf6c556
runtime.goparkunlock(...)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:387
runtime.(*scavengerState).park(0x1331be0)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgcscavenge.go:400 +0x53 fp=0xc00008dfa0 sp=0xc00008df70 pc=0xf526f3
runtime.bgscavenge(0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgcscavenge.go:633 +0x65 fp=0xc00008dfc8 sp=0xc00008dfa0 pc=0xf52d05
runtime.gcenable.func2()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:179 +0x26 fp=0xc00008dfe0 sp=0xc00008dfc8 pc=0xf499a6
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc00008dfe8 sp=0xc00008dfe0 pc=0xf9c601
created by runtime.gcenable
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:179 +0xaa

goroutine 4 [finalizer wait]:
runtime.gopark(0xf6c8d2?, 0xc000057e70?, 0xeb?, 0x6e?, 0xc000057f70?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc000057e28 sp=0xc000057e08 pc=0xf6c556
runtime.runfinq()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mfinal.go:193 +0x107 fp=0xc000057fe0 sp=0xc000057e28 pc=0xf48a67
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000057fe8 sp=0xc000057fe0 pc=0xf9c601
created by runtime.createfing
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mfinal.go:163 +0x45

goroutine 36 [GC worker (idle)]:
runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc00008bf50 sp=0xc00008bf30 pc=0xf6c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc00008bfe0 sp=0xc00008bf50 pc=0xf4b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc00008bfe8 sp=0xc00008bfe0 pc=0xf9c601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 50 [GC worker (idle)]:
runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc030189f50 sp=0xc030189f30 pc=0xf6c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc030189fe0 sp=0xc030189f50 pc=0xf4b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc030189fe8 sp=0xc030189fe0 pc=0xf9c601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 19 [GC worker (idle)]:
runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc00008ff50 sp=0xc00008ff30 pc=0xf6c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc00008ffe0 sp=0xc00008ff50 pc=0xf4b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc00008ffe8 sp=0xc00008ffe0 pc=0xf9c601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 20 [GC worker (idle)]:
runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc030185f50 sp=0xc030185f30 pc=0xf6c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc030185fe0 sp=0xc030185f50 pc=0xf4b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc030185fe8 sp=0xc030185fe0 pc=0xf9c601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 37 [GC worker (idle)]:
runtime.gopark(0xe545ad0d9c?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc000159f50 sp=0xc000159f30 pc=0xf6c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc000159fe0 sp=0xc000159f50 pc=0xf4b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000159fe8 sp=0xc000159fe0 pc=0xf9c601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 51 [GC worker (idle)]:
runtime.gopark(0xe545ad0d9c?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc03018bf50 sp=0xc03018bf30 pc=0xf6c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc03018bfe0 sp=0xc03018bf50 pc=0xf4b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc03018bfe8 sp=0xc03018bfe0 pc=0xf9c601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 21 [GC worker (idle)]:
runtime.gopark(0xe545bbd980?, 0xc0000146e0?, 0x1a?, 0x14?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc030187f50 sp=0xc030187f30 pc=0xf6c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc030187fe0 sp=0xc030187f50 pc=0xf4b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc030187fe8 sp=0xc030187fe0 pc=0xf9c601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

goroutine 66 [GC worker (idle)]:
runtime.gopark(0xe545bbd980?, 0x0?, 0x0?, 0x0?, 0x0?)
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/proc.go:381 +0xd6 fp=0xc000155f50 sp=0xc000155f30 pc=0xf6c556
runtime.gcBgMarkWorker()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1275 +0xf1 fp=0xc000155fe0 sp=0xc000155f50 pc=0xf4b7b1
runtime.goexit()
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000155fe8 sp=0xc000155fe0 pc=0xf9c601
created by runtime.gcBgMarkStartWorkers
	C:/Users/jenkins/workspace/PR-36914-10-dd62974c-97da-43c5-a35e-9c5e5af90f7a/.gvm/versions/go1.20.11.windows.amd64/src/runtime/mgc.go:1199 +0x25

Steps errors 7

Expand to view the steps failures

x-pack/libbeat-windows-2022-windows-2022 - mage build unitTest
  • Took 6 min 18 sec . View more details here
  • Description: mage build unitTest
x-pack/libbeat-windows-2022-windows-2022 - mage build unitTest
  • Took 1 min 18 sec . View more details here
  • Description: mage build unitTest
x-pack/libbeat-windows-2022-windows-2022 - mage build unitTest
  • Took 1 min 1 sec . View more details here
  • Description: mage build unitTest
x-pack/libbeat-windows-2016-windows-2016 - mage build unitTest
  • Took 7 min 9 sec . View more details here
  • Description: mage build unitTest
x-pack/libbeat-windows-2016-windows-2016 - mage build unitTest
  • Took 1 min 11 sec . View more details here
  • Description: mage build unitTest
x-pack/libbeat-windows-2016-windows-2016 - mage build unitTest
  • Took 1 min 10 sec . View more details here
  • Description: mage build unitTest
Error signal
  • Took 0 min 0 sec . View more details here
  • Description: Error 'org.jenkinsci.plugins.workflow.steps.FlowInterruptedException'

🤖 GitHub comments

Expand to view the GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

  • /package : Generate the packages and run the E2E tests.

  • /beats-tester : Run the installation tests with beats-tester.

  • run elasticsearch-ci/docs : Re-trigger the docs validation. (use unformatted text in the comment!)

@chemamartinez chemamartinez marked this pull request as ready for review November 23, 2023 13:22
@chemamartinez chemamartinez requested a review from a team as a code owner November 23, 2023 13:22
@chemamartinez chemamartinez added the Input:etw Related issues to the Event Tracing for Windows input label Jan 8, 2024
andrewkroh
andrewkroh reviewed Jan 11, 2024
View reviewed changes
Copy link
Member

@andrewkroh andrewkroh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • Review what is exported. If users of the package don't need the type then it should not be exported. The extra stuff in the godocs makes it harder to see the signal through the noise. Extra exported types can also make future refactoring harder since you don't know who might be relying on exported types.
  • Reuse existing types and functions from https://pkg.go.dev/golang.org/x/sys/windows wherever possible. It's less code for us to maintain and test.

x-pack/libbeat/reader/etw/controller.go Outdated Show resolved Hide resolved
x-pack/libbeat/reader/etw/controller.go Outdated Show resolved Hide resolved
x-pack/libbeat/reader/etw/event.go Outdated Show resolved Hide resolved
x-pack/libbeat/reader/etw/provider.go Outdated Show resolved Hide resolved
x-pack/libbeat/reader/etw/provider.go Outdated Show resolved Hide resolved
x-pack/libbeat/reader/etw/event.go Outdated Show resolved Hide resolved
x-pack/libbeat/reader/etw/event.go Outdated Show resolved Hide resolved
x-pack/libbeat/reader/etw/session.go Outdated Show resolved Hide resolved
x-pack/libbeat/reader/etw/session.go Outdated Show resolved Hide resolved
x-pack/libbeat/reader/etw/session.go Outdated Show resolved Hide resolved
@pierrehilbert
Copy link
Collaborator

@chemamartinez are you planning to take of this PR soon or should we put in back to draft for now?

@chemamartinez
Copy link
Contributor Author

@chemamartinez are you planning to take of this PR soon or should we put in back to draft for now?

@pierrehilbert yes, I am currently working on it.

@pierrehilbert
Copy link
Collaborator

Thanks for the update, just wanted to confirm that was still under your radar

@mergify Mergify
Copy link
Contributor

mergify bot commented Jan 25, 2024

This pull request is now in conflicts. Could you fix it? 🙏
To fixup this pull request, you can check out it locally. See documentation: https://help.github.com/articles/checking-out-pull-requests-locally/

git fetch upstream
git checkout -b dev-etw-reader upstream/dev-etw-reader
git merge upstream/main
git push upstream dev-etw-reader

@elasticmachine
Copy link
Collaborator

❕ Build Aborted

There is a new build on-going so the previous on-going builds have been aborted.

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview

Expand to view the summary

Build stats

  • Start Time: 2024-01-26T11:33:12.260+0000

  • Duration: 6 min 54 sec

🤖 GitHub comments

Expand to view the GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

  • /package : Generate the packages and run the E2E tests.

  • /beats-tester : Run the installation tests with beats-tester.

  • run elasticsearch-ci/docs : Re-trigger the docs validation. (use unformatted text in the comment!)

@elasticmachine
Copy link
Collaborator

💔 Build Failed

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview preview

Expand to view the summary

Build stats

  • Duration: 124 min 19 sec

Pipeline error 1

This error is likely related to the pipeline itself. Click here
and then you will see the error (either incorrect syntax or an invalid configuration).

❕ Flaky test report

No test was executed to be analysed.

🤖 GitHub comments

Expand to view the GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

  • /package : Generate the packages and run the E2E tests.

  • /beats-tester : Run the installation tests with beats-tester.

  • run elasticsearch-ci/docs : Re-trigger the docs validation. (use unformatted text in the comment!)

@elasticmachine
Copy link
Collaborator

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview preview

Expand to view the summary

Build stats

  • Duration: 127 min 35 sec

❕ Flaky test report

No test was executed to be analysed.

🤖 GitHub comments

Expand to view the GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

  • /package : Generate the packages and run the E2E tests.

  • /beats-tester : Run the installation tests with beats-tester.

  • run elasticsearch-ci/docs : Re-trigger the docs validation. (use unformatted text in the comment!)

@elasticmachine
Copy link
Collaborator

elasticmachine commented Feb 3, 2024
edited
Loading

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview preview

Expand to view the summary

Build stats

  • Duration: 129 min 10 sec

❕ Flaky test report

No test was executed to be analysed.

🤖 GitHub comments

Expand to view the GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

  • /package : Generate the packages and run the E2E tests.

  • /beats-tester : Run the installation tests with beats-tester.

  • run elasticsearch-ci/docs : Re-trigger the docs validation. (use unformatted text in the comment!)

@mergify Mergify
Copy link
Contributor

mergify bot commented Feb 5, 2024

This pull request does not have a backport label.
If this is a bug or security fix, could you label this PR @chemamartinez? 🙏.
For such, you'll need to label your PR with:

  • The upcoming major version of the Elastic Stack
  • The upcoming minor version of the Elastic Stack (if you're not pushing a breaking change)

To fixup this pull request, you need to add the backport labels for the needed
branches, such as:

  • backport-v8./d.0 is the label to automatically backport to the 8./d branch. /d is the digit

andrewkroh
andrewkroh reviewed Feb 6, 2024
View reviewed changes
x-pack/libbeat/reader/etw/session.go Outdated Show resolved Hide resolved
x-pack/libbeat/reader/etw/controller.go Outdated Show resolved Hide resolved
@chemamartinez
Copy link
Contributor Author

/test

@elasticmachine
Copy link
Collaborator

💔 Build Failed

Failed CI Steps

History

cc @chemamartinez

@chemamartinez chemamartinez merged commit 7546ae1 into elastic:main Feb 7, 2024
70 of 74 checks passed
@chemamartinez
Copy link
Contributor Author

Failed CI tests are related to the migration to Buildkite, unrelated to any change in this PR.

@jamiehynds jamiehynds mentioned this pull request Feb 20, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@andrewkroh andrewkroh andrewkroh approved these changes

@rdner rdner rdner approved these changes

@faec faec Awaiting requested review from faec faec is a code owner automatically assigned from elastic/elastic-agent-data-plane

@efd6 efd6 Awaiting requested review from efd6

Assignees

@chemamartinez chemamartinez

Labels
enhancement Input:etw Related issues to the Event Tracing for Windows input libbeat Team:Elastic-Agent Label for the Agent team x-pack Issues and pull requests for X-Pack features.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@chemamartinez @elasticmachine @pierrehilbert @rdner @andrewkroh @efd6