ILM: Force merge on zero-replica cloned index before snapshot

[nielsbauman]

When performing a searchable snapshot action with force merge enabled, if the source index has one or more replicas, ILM now clones the index with zero replicas and performs the force merge on the clone. The snapshot is then taken from the force-merged clone instead of the source index, ensuring only primary shards are force-merged. The cloned index is deleted after the snapshot is mounted, and all references and step logic have been updated accordingly. Test coverage was added for the new flow, including handling retries and cleanup of failed clones.

Key changes:

• Execution state: Track the force-merged clone index in ILM state and propagate through relevant APIs.
• SearchableSnapshotAction: Add conditional steps to clone the index with 0 replicas, force-merge, and delete the clone as needed.
• Steps: Update ForceMerge, SegmentCount, Snapshot, and Delete steps to operate on the correct index (source or clone).
• Tests/QA: Add and enhance tests to verify force-merge and snapshot behavior with and without replicas, including retry/cleanup paths and configuration for stable force-merges.

Resolves #75478

[Copilot]

Pull Request Overview

This PR implements a new ILM behavior for searchable snapshot actions with force merge enabled. When the source index has one or more replicas, ILM now clones the index with zero replicas and performs the force merge on the clone instead of the original index. This optimization avoids unnecessarily force-merging replica shards since snapshots only capture primary shards.

• Force merge optimization by cloning indices with replicas to avoid merging unnecessary replica shards
• New execution state tracking for force-merged clone indices throughout the ILM lifecycle
• Enhanced test coverage including failure scenarios and retry mechanisms

Reviewed Changes

Copilot reviewed 16 out of 16 changed files in this pull request and generated 3 comments.

Show a summary per file

File	Description
TransportExplainLifecycleAction.java	Adds force merge index name to ILM explain response
SearchableSnapshotActionIT.java	Comprehensive test coverage for new clone-based force merge behavior
TimeSeriesRestDriver.java	Utility method for moving indices between ILM steps in tests
build.gradle	Test cluster configuration to prevent shard rebalancing during force merges
SearchableSnapshotActionTests.java	Unit tests validating clone step configuration and replica settings
IndexLifecycleExplainResponse*.java	Response model updates to include force merge index tracking
SegmentCountStep.java	Updated to operate on cloned index when available
SearchableSnapshotAction.java	Core logic implementing conditional clone steps and cleanup
MountSnapshotStep.java	Enhanced snapshot mounting logic for cloned indices
GenerateSnapshotNameStep.java	Updated to use cloned index name for snapshot generation
ForceMergeStep.java	Modified to target cloned index when present
DeleteStep.java	Enhanced with configurable target index deletion capability
CreateSnapshotStep.java	Updated to snapshot the force-merged clone instead of original
ESRestTestCase.java	Test framework utility for waiting on index deletion
LifecycleExecutionState.java	Core state tracking for force merge index names

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[elasticsearchmachine]

Pinging @elastic/es-data-management (Team:Data Management)

[elasticsearchmachine]

Hi @nielsbauman, I've created a changelog YAML for you.

[nielsbauman]

Hm, I thought I copied the approach of the ShrinkAction here by going back to the cleanup step if the threshold/timeout is passed. But it looks like that's not the case:

elasticsearch/x-pack/plugin/core/src/main/java/org/elasticsearch/xpack/core/ilm/ShrinkAction.java

Lines 267 to 270 in 1ff6608

	ClusterStateWaitUntilThresholdStep checkShrinkReadyStep = new ClusterStateWaitUntilThresholdStep(
	new CheckShrinkReadyStep(allocationRoutedKey, shrinkKey),
	setSingleNodeKey
	);

The ShrinkAction just goes back to SetSingleNodeAllocateStep. I'm inclined to think my current approach is safer, but I'm also a fan of consistency. Anyone else have any thoughts?

[dakrone]

The one you linked is the "wait for single node allocation bit", where the new shrunken index hasn't been created yet (so there's nothing to clean up). You use the same behavior to go back to the cleanup later on in the file:

elasticsearch/x-pack/plugin/core/src/main/java/org/elasticsearch/xpack/core/ilm/ShrinkAction.java

Lines 289 to 295 in 1ff6608

	// wait until the shrunk index is recovered. we again wait until the configured threshold is breached and if the shrunk index has
	// not successfully recovered until then, we rewind to the "cleanup-shrink-index" step to delete this unsuccessful shrunk index
	// and retry the operation by generating a new shrink index name and attempting to shrink again
	ClusterStateWaitUntilThresholdStep allocated = new ClusterStateWaitUntilThresholdStep(
	new ShrunkShardsAllocatedStep(enoughShardsKey, copyMetadataKey),
	cleanupShrinkIndexKey
	);

Which matches the behavior here, so I believe it is consistent.

[dakrone]

Thanks for working on this Niels! I left some comments but they're mostly cosmetic.

[dakrone]

Perhaps mention that this is for the searchable snapshot step here?

[nielsbauman]

I changed it to ILM: Force merge on zero-replica cloned index before snapshotting for searchable snapshots. Let me know if that matches what you had in mind.

[dakrone]

What happens here if a user manually removes the cloned index after it was created so that project.index(cloneIndexName) returns null? Wouldn't we erroneously assume we're on the no-clone path?

[nielsbauman]

If a user manually removes the cloned index after it was created and we then run the DeleteStep on the force-merged index, it would fail, right?. So, that assumption doesn't sound "erroneous" to me. Or am I misinterpreting your comment?

[dakrone]

This mostly looks good to me, but I have one concern (EDIT: see the bottom).

I can't comment on the code lines (because it's out of the review), but in the SearchableSnapshotAction steps where we copy over the execution state and the lifecycle name setting:

        CopyExecutionStateStep copyMetadataStep = new CopyExecutionStateStep(
            copyMetadataKey,
            copyLifecyclePolicySettingKey,
            (index, executionState) -> getRestoredIndexPrefix(copyMetadataKey) + index,
            keyForReplicateForOrContinue
        );
        CopySettingsStep copySettingsStep = new CopySettingsStep(
            copyLifecyclePolicySettingKey,
            dataStreamCheckBranchingKey,
            forceMergeIndex ? conditionalDeleteForceMergedIndexKey : dataStreamCheckBranchingKey,
            (index, lifecycleState) -> getRestoredIndexPrefix(copyLifecyclePolicySettingKey) + index,
            LifecycleSettings.LIFECYCLE_NAME
        );

It appears that we're using getRestoredIndexPrefix(copyLifecyclePolicySettingKey) + index for the name of the index into which we should copy the execution state settings. This would normally be fine, because it would be:

* my-backing-index which is snapshotted
* mount as either partial-my-backing-index or restored-my-backing-index
* copy the state to the partial or restored version depending on which prefix was used.

However, in this case, my-backing…

RECORD SCRATCH.

It was at this point in my thinking and typing this comment out that I realized that we still control the mounted index name, so even if we snapshot fm-clone-my-backing-index we still mount it as partial-my-backing-index, NOT partial-fm-clone-my-backing-index, which means that the concern above is not valid! However, I've decided to leave my initially-erroneous assessment in for posterity for anyone else that might come looking or have the same concern.

Feel free to ignore the above, as the PR looks good to me, thanks Niels. 😄

[dakrone]

Even if there are multiple primary shards and some shards may be empty, shouldn't the total still be >= 1, since we've indexed at least one document? I'm not sure I understand how having one primary means we have >= 1 segment, but having more than one primary means that we may get 0 segments.

[nielsbauman]

Yeah I understand your confusion. I had a similar confusion the first time I looked at it, but forgot to mention that somewhere, sorry. The caveat here is that TimeSeriesRestDriver#getNumberOfPrimarySegments(Client, String) returns the number of segments for the "first" primary shard, i.e. it just gets shard 0:

elasticsearch/x-pack/plugin/ilm/qa/multi-node/src/javaRestTest/java/org/elasticsearch/xpack/TimeSeriesRestDriver.java

Line 394 in 7af81af

List<Map<String, Object>> shards = (List<Map<String, Object>>) responseEntity.get("0");

That means that it will essentially return the number of segments of a random primary shard if there are multiple primary shards. There is only one other usage of that method, which runs a test with only one primary shard, so I think we can change the implementation of the method to return the sum of segments across all primary shards. What do you think?

[dakrone]

Ahhh okay, the name definitely doesn't make that clear. I'd be in favor of making it return the sum of segments across all the primaries as well.

[nielsbauman]

Fixed in 5806e64.

[nielsbauman]

I'm running SearchableSnapshotActionIT on repeat on a VM for the night and will go ahead with merging this PR tomorrow, to gain some confidence that the tests are consistent.