Complete removal of shipper support along with documentation (#5308)

* Complete removal of shipper support.

* Fix imports.

* Add changelog entry.

* Remove createProcessorsForJSONInput

Author: blakerouse

.gitignore

@@ -57,5 +57,4 @@ fleet.yml
 fleet.yml.lock
 fleet.yml.old
 pkg/component/fake/component/component
-pkg/component/fake/shipper/shipper
 internal/pkg/agent/install/testblocking/testblocking

changelog/fragments/1723818607-Remove-experimental-support-for-shippers.yaml

@@ -0,0 +1,32 @@
+# Kind can be one of:
+# - breaking-change: a change to previously-documented behavior
+# - deprecation: functionality that is being removed in a later release
+# - bug-fix: fixes a problem in a previous version
+# - enhancement: extends functionality but does not break or fix existing behavior
+# - feature: new functionality
+# - known-issue: problems that we are aware of in a given version
+# - security: impacts on the security of a product or a user’s deployment.
+# - upgrade: important information for someone upgrading from a prior version
+# - other: does not fit into any of the other categories
+kind: feature
+
+# Change summary; a 80ish characters long description of the change.
+summary: Remove experimental support for shippers
+
+# Long description; in case the summary is not enough to describe the change
+# this field accommodate a description without length limits.
+# NOTE: This field will be rendered only for breaking-change and known-issue kinds at the moment.
+#description:
+
+# Affected component; usually one of "elastic-agent", "fleet-server", "filebeat", "metricbeat", "auditbeat", "all", etc.
+component:
+
+# PR URL; optional; the PR number that added the changeset.
+# If not present is automatically filled by the tooling finding the PR where this changelog fragment has been added.
+# NOTE: the tooling supports backports, so it's able to fill the original PR number instead of the backport PR number.
+# Please provide it if you are adding a fragment for a different PR.
+pr: https://github.com/elastic/elastic-agent/pull/5308
+
+# Issue URL; optional; the GitHub issue related to this changeset (either closes or is part of).
+# If not present is automatically filled by the tooling with the issue linked to the PR number.
+#issue: https://github.com/owner/repo/1234

dev-tools/packaging/templates/docker/Dockerfile.elastic-agent.tmpl

@@ -34,7 +34,6 @@ RUN true && \
     (chmod 0755 {{ $beatHome }}/data/elastic-agent-*/components/cloud-defend || true) && \
     (chmod 0755 {{ $beatHome }}/data/elastic-agent-*/components/endpoint-security || true) && \
     (chmod 0755 {{ $beatHome }}/data/elastic-agent-*/components/fleet-server || true) && \
-    (chmod 0755 {{ $beatHome }}/data/elastic-agent-*/components/elastic-agent-shipper || true) && \
     (chmod 0755 {{ $beatHome }}/data/elastic-agent-*/components/pf-elastic-collector || true) && \
     (chmod 0755 {{ $beatHome }}/data/elastic-agent-*/components/pf-elastic-symbolizer || true) && \
     (chmod 0755 {{ $beatHome }}/data/elastic-agent-*/components/pf-host-agent || true) && \

docs/agent-policy.md

@@ -42,37 +42,12 @@ inputs:
     use_output: elasticsearch2
 ```
 
-![Example deployment without shipper](images/components-example.svg)
+![Example deployment](images/components-example.svg)
 
 In this example, we have defined three outputs: `elasticsearch1`, `elasticsearch2`, and `logstash`. We have also defined 6 total inputs, four writing to `elasticsearch1` and one each writing to `elasticsearch2` and `logstash`.
 
 Agent has divided these inputs among four __components__ (running processes) according to their `type`. Each component is broken up into multiple __units__, an output unit that sends its data to the appropriate destination, and some number of input units that provide data to the output. For example the `filebeat1` component has three, two input and one output.
 
-Now let's look at the same setup with the shipper enabled. The output configuration becomes:
-
-```yml
-outputs:
-  elasticsearch1:
-    type: "elasticsearch"
-    shipper.enabled: true
-  elasticsearch2:
-    type: "elasticsearch"
-    shipper.enabled: true
-  logstash:
-    type: "logstash"
-    shipper.enabled: true
-```
-
-and the rest of the configuration is unchanged.
-
-![Example deployment with shipper](images/components-shipper-example.svg)
-
-This is the same as the previous scenario, but all outputs are configured to use the shipper. In this setup, there are shipper components whose job is to send the data upstream, and input components that send their data to a local shipper rather than managing their own independent queue and network connections.
-
-A shipper component also has one output unit and one or more input units, but its input units correspond to the components that write to it rather than to individual data sources.
-
-In this example there are _seven_ components, as Agent has created three shippers to manage the connections to each of the three outputs. The `shipper1` component has two input units, since it receives data from both `filebeat1` and `metricbeat` (with two individual data sources each). All this data is queued by the shipper and forwarded upstream to `elasticsearch1`.
-
 ## Agent policy format
 
 The policy is specified in YML, and the basic layout is:
@@ -136,15 +111,7 @@ If present, this field determines whether the output is active. Defaults to true
 
 #### `type` (string, required)
 
-The output type. If `shipper.enabled: true` isn't set, this value must match one of the entries in the `outputs` field for its inputs' spec files. Otherwise, the `shippers` field for its inputs' spec file must include a shipper type that supports this output. See [Component Specs](component-specs.md) for more details.
-
-#### `shipper.enabled` (boolean, removed)
-
-If present, this field determines whether this output should be implemented by a Shipper component. Defaults to false. If `shipper.enabled` is `true` and some inputs targeting this output don't support the shipper, a warning should be displayed in the logs and in Fleet UI.
-
-#### `shipper.*` (removed)
-
-All configuration fields under `shipper` except `enabled` are reserved for possible future use, and cannot appear in output configurations. In the future, shipper outputs will be the default, and should be presented to the user as just "the output configuration," so the preference with new shipper features should be to evolve configurations by adding unique top-level fields as with any new output feature, rather than exposing the implementation. (However, this configuration subtree is reserved specifically so that we can revisit this policy if our needs change in the future.)
+The output type.
 
 #### `log_level` (string, removed)
 
@@ -158,32 +125,3 @@ The log level for this component. This field is removed from the raw configurati
 #### `headers` (`map[string]string`)
 
 Agent does not use this field itself, however if the output's `type` is `elasticsearch` then Agent will insert any headers it acquired during Fleet enrollment into this field.
-
-
-### Shipper-specific fields
-
-When components use the shipper, it results in units that don't correspond directly to a configuration entry in the policy. A component that writes to the shipper will be given an output unit that targets the shipper, and a shipper component will be given input units detailing the components that will connect to it.
-
-#### Shipper output fields
-
-The output unit of a component that writes to a shipper is given the following configuration:
-
-- `type` (string): the shipper type
-- `server` (string): the connection address of the shipper (a named socket on Darwin/Linux, a named pipe on Windows)
-- `ssl.certificate_authorities` (string list): a list consisting of one element, which is the certificate authority the shipper will use to verify clients that connect to it. Each shipper instance is assigned its own unique certificate authority on startup.
-- `ssl.certificate` (string): the certificate to present when connecting to the shipper, signed by the CA in `ssl.certificate_authorities`.
-- `ssl.key` (string): the key for `ssl.certificate`
-
-#### Shipper input fields
-
-For each component that writes to a shipper, the shipper will be given an input unit with the following configuration:
-
-- `id` (string): the id of the input unit, which is also the id of the originating component.
-- `type` (string): the shipper type.
-- `units` (list): a list of all configuration units in the originating component, with each containing:
-  * `id` (string): the unit id
-  * `config`: the full configuration tree for that unit
-- `server` (string): the address the server should listen on for connections from this component (a named socket on Darwin/Linux, a named pipe on Windows). This value is the same for all units.
-- `ssl.certificate_authorities` (string list): a list with one entry, which is this shipper's assigned certificate authority. This value is the same for all units. Clients connecting to the shipper will present certificates signed by this CA.
-- `ssl.certificate` (string): the certificate this client will present when connecting to the shipper.
-- `ssl.key` (string): the client's private key.

docs/architecture.md

@@ -1,11 +1,11 @@
 # Elastic Agent V2 Architecture
 
 ## Overview
-The Elastic Agent V2 architecture was introduced in the 8.6 version of the Elastic Agent. It was a large internal change of how the Elastic Agent was designed and how it operated. The change was performed to allow better status reporting of each running input, enabled support for shippers, improved the specification definition, and allowed for better parallel change actions.
+The Elastic Agent V2 architecture was introduced in the 8.6 version of the Elastic Agent. It was a large internal change of how the Elastic Agent was designed and how it operated. The change was performed to allow better status reporting of each running input, improved the specification definition, and allowed for better parallel change actions.
 ## Component Model
 The entire logic of the Elastic Agent V2 architecture works with what is called the Component Model. The Elastic Agent uses policy to generate a Component Model and then that Component Model is used to ensure a consistency between the currently observed state and the expected state (which is the Component Model).
 ### Component
-A component to Elastic Agent is anything that the Elastic Agent must run, operate, and observe during the life of the Elastic Agent. Component is a rather generic term for a good reason. A component can be multiple different types of running code that works with the Elastic Agent. The first example of this is the elastic-agent-shipper which is not an input. A component also always has units, see units below for description of a unit.
+A component to Elastic Agent is anything that the Elastic Agent must run, operate, and observe during the life of the Elastic Agent. Component is a rather generic term for a good reason. A component can be multiple different types of running code that works with the Elastic Agent. A component also always has units, see units below for description of a unit.
 ### Unit
 A unit to Elastic Agent is a unique block of configuration that is passed to a component over the control protocol. The block of configuration only represents either one input or one output. It is possible for a component to be multiple units of inputs (aka. running multiple filestream inputs), or currently only one output, but designed to support the possibility of multiple outputs. Using multiple blocks of configuration into a set of units allows the Elastic Agent control protocol and the spawned component’s to communicate a unique set of changes as well as the status of each unit.
 

docs/component-specs.md

@@ -13,34 +13,29 @@ inputs:
     ...
   - name: <input name 2>
     ...
-shippers:
-  - name: <shipper name 1>
-    ...
 ```
 
 The `version` key must be present and must equal 2 (to distinguish from the older version 1 schema that is no longer supported).
 
-`inputs` is a list of input types this component can run, and `shippers` is a list of shipper types this component can run. Each configured input and shipper also has its own list of `outputs` that it supports, but the spec file only tracks the list of supported types, and the rest comes from the [Agent policy](agent-policy.md).
-
-Most configuration fields are shared between inputs and shippers. The next section lists all valid fields, noting where there are differences between the two cases.
+`inputs` is a list of input types this component can run. Each configured input also has its own list of `outputs` that it supports, but the spec file only tracks the list of supported types, and the rest comes from the [Agent policy](agent-policy.md).
 
-## Input / Shipper configuration fields
+## Input configuration fields
 
 ### `name` (string, required)
 
-The name of this input or shipper. This name must be unique for each platform, however two inputs or shippers that support different platforms can have the same name. This allows the configuration to vary between platforms.
+The name of this input. This name must be unique for each platform, however two inputs that support different platforms can have the same name. This allows the configuration to vary between platforms.
 
 ### `aliases` (list of strings, input only)
 
 Inputs may specify a list of alternate names that policies can use to refer to them. Any occurrence of these aliases in a policy configuration will be replaced with the value of `name`.
 
 ### `description` (string, required)
 
-A short description of this input or shipper.
+A short description of this input.
 
 ### `platforms` (list of strings, required)
 
-The platforms this input or shipper supports. Must contain one or more of the following:
+The platforms this input supports. Must contain one or more of the following:
 - `container/amd64`
 - `container/arm64`
 - `darwin/amd64`
@@ -51,7 +46,7 @@ The platforms this input or shipper supports. Must contain one or more of the fo
 
 ### `outputs` (list of strings)
 
-The output types this input or shipper supports. If this is an input, then inputs of this type can only target (non-shipper) output types in this list. If this is a shipper, then this shipper can only implement output types in this list.
+The output types this input supports.
 
 ### `proxied_actions` (list of strings)
 
@@ -64,13 +59,9 @@ proxied_actions:
   - UPGRADE
 ```
 
-### `shippers` (list of strings, input only)
-
-The shipper types this input supports. Inputs of this type can target any output type supported by the shippers in this list, as long as the output policy includes `shipper.enabled: true`. If an input supports more than one shipper implementing the same output type, then Agent will prefer the one that appears first in this list.
-
 ### `runtime.preventions`
 
-The `runtime.preventions` field contains a list of [EQL conditions](https://www.elastic.co/guide/en/elasticsearch/reference/current/eql-syntax.html#eql-syntax-conditions) which should prevent the use of this input or shipper if any are true. Each prevention should include a `condition` in EQL syntax and a `message` that will be displayed if the condition prevents the use of a component.
+The `runtime.preventions` field contains a list of [EQL conditions](https://www.elastic.co/guide/en/elasticsearch/reference/current/eql-syntax.html#eql-syntax-conditions) which should prevent the use of this input if any are true. Each prevention should include a `condition` in EQL syntax and a `message` that will be displayed if the condition prevents the use of a component.
 
 Here are some example preventions taken from the Endpoint spec file:
 
@@ -94,9 +85,9 @@ The variables that can be accessed by a condition are:
 - `user.root`: true if Agent is being run with root / administrator permissions.
 - `install.in_default`: true if the Agent is installed in the default location or has been installed via deb or rpm.
 
-### `command` (required for shipper)
+### `command`
 
-The `command` field determines how the component will be run. Shippers must include this field, while inputs must include either `command` or `service`. `command` consists of the following subfields:
+The `command` field determines how the component will be run. Inputs must include either `command` or `service`. `command` consists of the following subfields:
 
 #### `command.args` (list of strings)
 
@@ -150,7 +141,7 @@ Some components (particularly Beats) terminate when they receive a new configura
 
 ### `service` (input only)
 
-Inputs that are run as a system service (like Endpoint Security) can use `service` instead of `command` to indicate that Agent should only monitor them, not manage their execution. `service` consists of the following subfields: 
+Inputs that are run as a system service (like Endpoint Security) can use `service` instead of `command` to indicate that Agent should only monitor them, not manage their execution. `service` consists of the following subfields:
 
 #### `service.cport` (int, required)
 

docs/images/components-shipper-example.d2

@@ -1485,7 +1485,6 @@ func (c *Coordinator) filterByCapabilities(comps []component.Component) []compon
 	}
 	result := []component.Component{}
 	for _, component := range comps {
-		// If this is an input component (not a shipper), make sure its type is allowed
 		if component.InputSpec != nil && !c.caps.AllowInput(component.InputType) {
 			c.logger.Infof("Component '%v' with input type '%v' filtered by capabilities.yml", component.ID, component.InputType)
 			continue