Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Elasticsearch timeout true but still get result

Tags:

timeout

elasticsearch

I'm setting the timeout to 10ms to my search query, so I'm expecting that elasticsearch search query should timeout in 10ms.

In the response, I do get "timed_out":true but the query doesnt seem to timeout. It still runs for a few hundred milliseconds.

Sample response:

{
    "took": 460,
    "timed_out": true,
....

Is this the expected behavior or am I missing something here ? My goal is to terminate the query if its taking too long so that it doesnt put load on the cluster.

like image 897
Ankit Avatar asked Mar 08 '18 07:03

Ankit

Video Answer

1 Answers

What to expect from query timeout?

Elasticsearch query running with timeout set may return partial or empty results (if timeout has expired), from the Elasticsearch Guide:

The timeout parameter tells shards how long they are allowed to process data before returning a response to the coordinating node. If there was not enough time to process all data, results for this shard will be partial, even possibly empty.

The documentation of the Request Body Search parameters also tells this:

timeout

A search timeout, bounding the search request to be executed within the specified time value and bail with the hits accumulated up to that point when expired. Defaults to no timeout.

For further details please consult this page in the guide.

How to terminate queries that run too long?

Looks like Elasticsearch does not have an ultimate answer, rather several workarounds for particular cases. Here they are.

There isn't a way to protect system from DoS attacks (as of year 2015). Long-running queries can be limited with timeout or terminate_after query parameters. terminate_after is like timeout but it counts the number of documents per shard. Both of these parameters are more like recommendations to Elasticsearch, means that some long-running queries can still pass through the desired max execution time (like a script query for instance).

Since then Task Management API was introduced and monitoring and cancelling long-running tasks became possible. This means that you will have to write some additional code that will check the health of the cluster and cancel the tasks.

like image 169
Nikolay Vasiliev Avatar answered Nov 15 '22 07:11

Nikolay Vasiliev
Sign in to Comment

Related questions

Elasticsearch - get source field data with java api
Docker Rails app with searchkick/elasticsearch
Elasticsearch: How to search, sort, limit the results then sort again?
Is there any difference between using synonyms_path and using synonyms when specifying synonym filter for Elasticsearch?
Size parameter in elastic search
Elasticsearch - Enum datatype
elasticsearch return total hits only
Passing ES_JAVA_OPTS variable with spaces when using docker compose
How to add stopwords to the default list in ElasticSearch
Elasticsearch vs Kafka: Putting intelligence in producers
java.lang.IllegalStateException: Received message from unsupported version: [2.0 .0] minimal compatible version is: [5.0.0]
Elasticsearch : Unknown key for a VALUE_STRING in [scroll]
Sort keyword field array within ElasticSearch document by relevance
How to import/export a dashboard in Kibana using a RESTful API
How to use elasticsearch with react native?
Elasticsearch count in groups by date range
How to resolve 'Error: connect ECONNREFUSED 127.0.0.1:9200' using ElasticSearch with Firebase?
Kibana does not search on nested field
How to add serveral deletion conditions on log4j2.properties?
Why is my new AWS elasticsearch always Yellow?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!