Calculate the time difference between consecutive documents

vinayakfutak · April 25, 2018, 9:58am

HI @MariumHassan this is my script

input {
elasticsearch {
 hosts => "http://192.168.55.213:9200"
 index => "test_index"
}
}
filter {
aggregate {
task_id => "%{logTimestamp}"
code => "
     map['logTimestamp'] = event.get('logTimestamp');
     map['timeDifference']= (Time.parse(event.get('logTimestamp')).to_f - 
     Time.parse(map['previousTime']).to_f).round(4);
     map['previousTime'] = event.get('logTimestamp');
 
"
}
}
output {
elasticsearch {
document_id => "%{logTimestamp}"
document_type => "test_index1"
index => "test_index1"
codec => "json"
hosts => ["192.168.55.213:9200"]
}
}

When I am trying to execute this script it's giving error as

Aggregate exception occurred {:error=>#<TypeError: can't dup NilClass>, :code=>"\n\t map['logTimestamp'] = event.get('logTimestamp');\n map['timeDifference']= (Time.parse(event.get('logTimestamp')).to_f - Time.parse(map['previousTime']).to_f).round(4);\n\tmap['previousTime'] = event.get('logTimestamp');\n\t \n ", :map=>{"logTimestamp"=>"2018-02-15T08:40:10Z"}, :event_data=>{"logTimestamp"=>"2018-02-15T08:40:10Z", "@timestamp"=>2018-04-25T09:47:38.312Z, "@version"=>"1"}}

Can U suggest what changes I have to done to run script successfully?

Topic		Replies	Views
Serial difference of timestamps between documents Elasticsearch	1	657	April 18, 2019
Elapsed time between consecutive logs Logstash	5	916	September 14, 2017
Logstash delta time Logstash	4	682	June 30, 2020
Time between two timestamps in different files Elasticsearch	6	696	October 12, 2020
How to calculate timestamp difference in logstash config file? Logstash	2	2025	September 9, 2020

Calculate the time difference between consecutive documents

Related topics