[serverless] fix: do not try to enable log api for local testing #15229
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
alexgallotta
force-pushed
the
SLS-2895-prevent-registering-for-the-logs-api-if-dd-local-test-is-enabled
branch
from
00b7b82
to
750aa78
Compare
purple4reina
requested changes
Jan 26, 2023
There was a problem hiding this comment.
Just a couple small changes requested, the most important being that app sec is no longer started in a goroutine. I personally would also prefer to keep the diff smaller by changing as little as possible. I'm fine if you think these changes are important enough to warrant the code change though.
alexgallotta
force-pushed
the
SLS-2895-prevent-registering-for-the-logs-api-if-dd-local-test-is-enabled
branch
from
4546178
to
1a6421e
Compare
purple4reina
approved these changes
Jan 27, 2023
alexgallotta
force-pushed
the
SLS-2895-prevent-registering-for-the-logs-api-if-dd-local-test-is-enabled
branch
from
1a6421e
to
59d3bba
Compare
…ine when not needed" This reverts commit 750aa78.
alexgallotta
force-pushed
the
SLS-2895-prevent-registering-for-the-logs-api-if-dd-local-test-is-enabled
branch
from
59d3bba
to
8ff3a5f
Compare
alexgallotta
deleted the
SLS-2895-prevent-registering-for-the-logs-api-if-dd-local-test-is-enabled
branch
nenadnoveljic
added a commit
that referenced
this pull request
Feb 6, 2023
* Fix datadog.yaml file name in flare
* Force file permission to 644 within a flare
* auto instru: add rc provider (#15008)
* pkg/obfuscate: use github.com/outcaste-io/ristretto instead of github.com/dgraph-io/ristretto (#15005)
Migrate the usage of github.com/dgraph-io/ristretto to github.com/outcaste-io/ristretto
* [workloadmeta/kubelet] Parse image ID if name is a SHA256
We now try to parse the resolved image ID if the image in the pod's
container status is a SHA256. This seems to happen when pinning the
SHA256 in the container spec. This fixes an issue where `image:` filters
in DD_CONTAINER_INCLUDE/DD_CONTAINER_EXCLUDE would not be respected.
* pkg/trace/api: remove unused internal OTLP HTTP server (#14965)
* [pkg/trace/api] Remove unused OTLP HTTP server
* [pkg/trace] Remove protocol argument
* Remove unnecessary fmt.Sprintf
* Fix tests
* [CWS] cleanup last uses of `jsonschema_description` (#15050)
* [Serverless] Merge `serverless/main` to `main` (#14980)
* [Serverless] change account (#14755)
* Aj/buffer cold start span data (#14664)
* wip dirty commit - trace being created but not flushed properly. No further traces appearing
WIP: more debugging. StopChan properly set up
feat: Starting coldstart creator as a daemon, and recieving data from two channels. Todo: spec
feat: Update specs to write to channels
feat: Merge conflicts resolved for tests
feat: Use smaller methods to handle locking
fix: pass coldstartSpanId to sls-init main
feat: Remove default
feat: Use Millisecond as Second is far longer than necessary
feat: No need to export ColdStartSpanId
fix: update units
feat: Directionality for lambdaSpanChan as well as for initDurationChan
fix: No need for the nil check, I need to stop javascripting my go
feat: ints
* feat: rebase missing changes from merge commits
* feat: update ints after moving accounts
* Empty commit to trigger ci
* [Serverless] Fix flaky integration tests and make them more easily maintainable. (#14783)
* Retry serverless integration test failures automatically. (#14801)
* [Serverless] Allow some keys to be option in serverless integration tests. (#14827)
* Ability to remove items from the json.
* Remove items from snapshot.
* Do not expect spans when there is no spans object. (#14396)
* [Serverless] Improve stability of two tests. (#14895)
* Increase timeout while decreasing test time.
* Increase timeout in test.
* [Serverless] Consolidate log normalization to single file for integration tests. (#15004)
* Consolidate log normalization to single file.
* Save raw logs to a temp dir.
* Fix linting issues.
Co-authored-by: Maxime David <maxime.david@datadoghq.com>
Co-authored-by: AJ Stuyvenberg <astuyve@gmail.com>
* Fixes multiple problems with http processing/tagging on Windows. (#15022)
* Fixes multiple problems with http processing/tagging on Windows.
- There was an offset error in which the port was not properly computed
on ipv6 connections
- There was a problem with computing whether an ipv6 address was loopback or
not
- The fullpath indication (which is used to compute the key) was not
properly being computed. This led to the same tuple being used
as a different key, so transactions were not properly combined.
* fix grammar error in release notes
* Add the plumbing in the agent forwarder to submit container images and SBOM (#14962)
* Improve documentation for BundleParams (#15011)
* pkg/clusteragent/admission: add unit tests (#15044)
* [CWS] bump syscall table + extract into separate task (#15061)
* 5.19 -> 6.1
* switch syscall table generator from go generate to task
* extract linux version
* [gitlab] Temporarily disable SUSE Agent 5 upgrade tests (#15055)
* [corechecks/snmp] Add LLDP remote device IP address (#14946)
* [CWS] add discarders eBPF unit test (#14471)
* [CWS] add discarder retention ut
* add another test
* add a unit test task
* add trace param
* make eBPF test part of the CI
* fake time to speed up tests
* bump baloum version
* add more tests
* [CWS Agent] Moving SecAgent subcommands to new dir part 2 (#14915)
* moving flare command to subcommands dir
* consolidating and moving secagent config package
* moving runtime to subcommands dir
* moved check subcommand, updated compliance subcommand which is the entry point to check funcs
* moving compliance cmd to subcommand dir
* exporting CliParams and RunCheck in Check subcommand for Compliance tests
* fixing cluster agent entry point into the check subcommand
* Add `container_image` core check (#14567)
* Reorganize the specs for some kitchen test (#15027)
* [check command] Add `--instance-filter` option (#15034)
* Migrate systray to an fx.App (#14985)
Deprecate single-dash args and add double-dash args
Move code from cmd/systray to comp/systray
Update UAC manifest to requireAdministrator
Fix log file and add `system_tray.log_file` configuration option.
* epforwarder: update dbm samples endpoint prefix (#15053)
dbm-metrics-intake and dbquery-intake resolve to the same IPs. This change cleans up code so that we're only referencing one endpoint name.
* [process-agent] Refactor Check interface (#15063)
* [process-agent] Refactor Check interface
- Refactors Check interface to consolidate CheckWithRealTime features
- This will simplify integration with components in the future PRs since it eliminates casts
* Address feedback from @just-chillin
* usm: postgres classification: Reduced 5 seconds per test, 1m30s in total (#15070)
Improved the regex for which we are using to detect if the server is up and running, by that
we can spare the 'wait 5 seconds' in GetPGHandle
* CWS: sync BTFhub constants (#15074)
Co-authored-by: paulcacheux <paulcacheux@users.noreply.github.com>
* [DCA] Convert commands to Fx apps
* Extract magic strings into command.* constants
* [CWS] Add 4 tests, one for each kernel rate limiter algo (#15064)
* [CWS] remove useless callbacks (#15046)
* remove useless error check
* remove useless callback
* Add `SBOM` core check (#14989)
* Prevent check from running after it was unscheduled. (#15065)
* Prevent check from running after it was unscheduled.
If a check runs after it was unscheduled, in particular after it's
sender and samplers were removed, would create sender and samplers
again, leaking resources. This may happen if the check was cancelled
after it was put in the worker channel, but before worker called Run.
This change adjusts check_wrapper to make Cancel fully mutually
exclusive with Run, and adds a flag that would prevent Run from
executing the check after Cancel has completed.
* go fmt
* Update test helper
* Restrict flare file from being accessible by other users on Unix (#14862)
* pkg/clusteragent/admission/patch: poll rc on leadership switch (#15062)
* pkg/clusteragent/admission: add additional libconfig env vars (#15059)
* usm: classification: Split USM and NPM classifications (#15075)
USM does not need all classifiers, only those which we have dispatchers for (HTTP, and soon HTTP2)
* Python memory telemetry (#14757)
* Track memory used by the python arena allocator
pymalloc [1], Python built-in arena allocator is responsible for
handling small-sized allocations, while the rest goes through
the system malloc.
This patch tracks the amount of memory requested by pymalloc from the
operating system, allowing low cost, low granularity view into a
segment of python memory usage.
[1]: https://docs.python.org/3/c-api/memory.html#the-pymalloc-allocator
* inv -e rtloader.format
* Remove rtloader_mem.h from rtloader.h
This allows to call C malloc without warnings when we implement a
custom raw memory allocator for python.
* Add python raw allocator tracking.
Together with tracking pymalloc requests, this should give
comprehensive picture of memory allocated by the python interpreter.
* Make sure to call global malloc/free
In Pyraw allocator implementation, make sure to call global
malloc/calloc/realloc/free symbols, to avoid undesired interaction
with the rtloader-specific memory tracking (for example, call libc
free instead of RtLoader::free).
* Move all memory tracking to the same file
* Update Go naming to match C functions
pymalloc is now one of two tracked allocators, use pymem as umbrella.
* Add a note about new metrics to the docs
* Python memory telemetry supports py3 only
* Add releasenote
* Expand telemetry documentation.
* Update docs/dev/agent_memory.md
Co-authored-by: Kari Halsted <12926135+kayayarai@users.noreply.github.com>
* Update docs/dev/agent_memory.md
Co-authored-by: Kari Halsted <12926135+kayayarai@users.noreply.github.com>
* Update docs/dev/agent_memory.md
Co-authored-by: Kari Halsted <12926135+kayayarai@users.noreply.github.com>
* Update releasenotes/notes/pymem-telemetry-0f62acb520d80a1f.yaml
Co-authored-by: Kari Halsted <12926135+kayayarai@users.noreply.github.com>
* Update rtloader/three/three_mem.cpp
Co-authored-by: Scott Opell <me@scottopell.com>
* Improve metric description and remove outdated comment.
* Fix typo
* Add a comment about allocation size adjustments
Co-authored-by: Kari Halsted <12926135+kayayarai@users.noreply.github.com>
Co-authored-by: Scott Opell <me@scottopell.com>
* Add telemetry for number of contexts per origin (#15016)
* Add telemetry for number of contexts per origin
Report number of contexts at the end of flush for each container
sending dogstatsd metrics.
This PR relies on origin detection to provide a set of identifying
tags for each origin, and reports number of distinct contexts for each
tag set. While this may not fully identify individual origins when
running with low tagger cardinality, it accurately reflects the way
agent would aggregate metrics from different origins together if their
tags end up the same.
* Only enable per-origin stats if telemetry is enabled.
* [process-agent] Fix kitchen tests for process agent on main (#15072)
* include `functests` in `DD_PIPELINE_ID` for system probe and security agent functests (#15043)
* include `functests` in DD_PIPELINE_ID for system probe and security agent functests
* simpler/shorter pipeline_id
* [install_script] Backport removal of RPM signing key 4172A230 (#15082)
* [corechecks/snmp] LLDP resolve local interface (#14991)
* [CWS] fix rule in error reported twice (#15084)
* Add java package in our circle-ci image (#14665)
* Use DMI on EC2 Nitro instances to get host aliases
The Agent now leverage DMI information on Unix to get the instance ID on AWS EC2 when the metadata endpoint fails or
is not accessible. The instance ID is exposed throught DMI only on AWS Nitro instances.
This will not change the hostname of the Agent upon upgrading but will add to the list of host aliases.
* [CWS] add inode to pid context to detect exec loss (#14661)
* [CWS] add revision to pid context
* use inode instead of revision
* Fix post rebase
* Fix serializer tests flakiness (#15093)
* [RCM-632] Add UUID in request (#15088)
* Add org uuid field
* Add org uuid in request
* Remove generate file
* Comment exported method
* fix the receiver name consistency (#15068)
* Add limits to allocated dictionaries, prevent browser cross-site requests (#15067)
* pkg/trace/api: Move semantic conventions to separate internal package (#14963)
* [pkg/trace/api] Move semantic conventions to separate internal package
* Rename to shared
* Move tagContainersTags back to API package
* Rename package to 'header'
* Fix Windows build
* Factorize queue code duplicated at two places (#15098)
* Factorize the aggregating queue used by the SBOM and container image checks
* Mock time functions to make tests more reliable
* [single-machine-performance] Push agent containers to SMP ECR (#14438)
* [single-machine-performance] Push agent container to SMP ECR
This commit is an attempt to introduce pushing containers from Agent CI for
single-machine-performance's Regression Detector in our isolated
infrastructure. Much like we have done for vectordotdev/vector we intend to run
the Regression Detector on Agent changes, giving a reasonable statistical
guarantee that a change does or does not modify Agent performance by more than
random chance. In order for the Regression Detector to run jobs it must have
access to a 'baseline' and 'comparison' target. Baseline in this project would
be a container built from current `main` branch, comparison would be a container
built from the tip of a PR.
The main thing demonstrated here is that the team credentials SMP has created
for Agent are functional and are able to push up a containers, in a way that is
acceptable to Agent Platform. I have ammended `.docker_build_job_definition` to
mirror every created container to single-machine-performance's ECR, noting that
the tag now avoids the use of `CI_PIPELINE_ID`. In a later commit we will
introduce job submission and will rely on being able to compute the tag of a
previous pipeline's container from available Gitlab metadata, specificall
`CI_COMMIT_SHA` for the comparison container and whatever metadata maps to the
base branch's current SHA, `CI_MERGE_REQUEST_SOURCE_BRANCH_SHA`?
There are two outstanding questions regarding this work that I am aware of:
* Is there a race condition present between the triggering of this pipeline vs
main if users squash commits?
* Should we grant the exisitng CI user permissions into
single-machine-performance rather than use an issued bot account as done
presently and for vectordotdev/vector?
We've successfully demonstrated pushing up containers in a previous iteration of
this work, see https://gitlab.ddbuild.io/DataDog/datadog-agent/-/jobs/195939127.
Signed-off-by: Brian L. Troutwine <brian.troutwine@datadoghq.com>
* PR feedback
Signed-off-by: Brian L. Troutwine <brian.troutwine@datadoghq.com>
* trim ECR URL out of destination
Signed-off-by: Brian L. Troutwine <brian.troutwine@datadoghq.com>
* correct job dependency
Signed-off-by: Brian L. Troutwine <brian.troutwine@datadoghq.com>
* drop parallel.matrix
Signed-off-by: Brian L. Troutwine <brian.troutwine@datadoghq.com>
Signed-off-by: Brian L. Troutwine <brian.troutwine@datadoghq.com>
* Bump github.com/Microsoft/hcsshim from 0.9.4 to 0.9.6 (#14785)
Bumps [github.com/Microsoft/hcsshim](https://github.com/Microsoft/hcsshim) from 0.9.4 to 0.9.6.
- [Release notes](https://github.com/Microsoft/hcsshim/releases)
- [Commits](https://github.com/Microsoft/hcsshim/compare/v0.9.4...v0.9.6)
---
updated-dependencies:
- dependency-name: github.com/Microsoft/hcsshim
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* [Windows] implement mapping of pid to service name (#15039)
* [Windows] implement mapping of pid to service name
Checks the pid against the table of SCM controlled processes.
If it's SCM controlled, returns the service information.
Because we must enumerate the entire SCM (there doesn't seem to be an api
for that), the SCMManager object maintains a cache of objects, and refreshes
only when it sees a PID it hasn't seen before.
On a machine with high process churn, this could still result in a lot
of accesses. However, if process agent queries only when doing the
process check (i.e. every 30s), then it should only iterate the list
once per 30s.
* ci fixes, add tests
* fix test/improper conversion of data buffer
* review feedback
* more review feedback
* Rename structure
* Update README.md (#15126)
* Update README.md
* Update README.md
* Update README.md
* [CWS] remove useless variable (#15112)
* [CWS][SEC-4478] add RC to e2e tests (#14877)
* [CWS] add RC to e2e tests
* fix host name
* check remote-config before file
* test embedded policy
* use a configmap to have a first policy
* make rc configurable
* CWS: sync BTFhub constants (#15123)
Co-authored-by: paulcacheux <paulcacheux@users.noreply.github.com>
* [CWS] rename json fields to make them less misleading (#15097)
* pkg/trace/testutil: improve the randomization in test spans generator (#15108)
* DOCS-2215 Add @env variables to datadog.yaml (#10069)
Co-authored-by: hestonhoffman <hestonhoffman@gmail.com>
* [CSPM] e2e remote configuration fix (#15130)
* Add missing remote_configuration_enabled parameters in CSPM workflow
* add other missing parameters
* [CWS] chain only different binaries on activity dumps (#15095)
* [CWS][SEC-6381] Update template configuration file to add activity dumps and network detection parameters (#14835)
* [CWS] remove unsafe usage in `ScopedVariables` (#15134)
* Revert Remove CCA_IN_AD flag and related unused code (#15115)
* Revert "Remove `CCA_IN_AD` flag and related unused code (#14955)"
This reverts commit 394ac59ad9707dfff8009c0dec03320d1df20098.
# Conflicts:
# cmd/agent/common/autodiscovery.go
* Bump github.com/hashicorp/consul/api from 1.13.0 to 1.15.3 (#13978)
Bumps [github.com/hashicorp/consul/api](https://github.com/hashicorp/consul) from 1.13.0 to 1.15.3.
- [Release notes](https://github.com/hashicorp/consul/releases)
- [Changelog](https://github.com/hashicorp/consul/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hashicorp/consul/compare/v1.13.0...api/v1.15.3)
---
updated-dependencies:
- dependency-name: github.com/hashicorp/consul/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Lénaïc Huard <lenaic.huard@datadoghq.com>
* usm: classification: Fixed AMQP publish flakiness (#15071)
* usm: classification: Fixed AMQP publish flakiness
Publish has no response, so added classification by close-reply and close-ok messages.
* Moved closing of the client into the teardown
* Fixed test error
* Removed wrong bpf debug setup
* Set windows-agent as CODEOWNER for systray (#15117)
* Fix shutdown deadlock in docker socket tailer (#15138)
* fix shutdown deadlock in docker socket tailer
* Bump github.com/CycloneDX/cyclonedx-go from 0.6.0 to 0.7.0 (#15081)
* Bump github.com/CycloneDX/cyclonedx-go from 0.6.0 to 0.7.0
Bumps [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/CycloneDX/cyclonedx-go/releases)
- [Changelog](https://github.com/CycloneDX/cyclonedx-go/blob/master/.goreleaser.yml)
- [Commits](https://github.com/CycloneDX/cyclonedx-go/compare/v0.6.0...v0.7.0)
---
updated-dependencies:
- dependency-name: github.com/CycloneDX/cyclonedx-go
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* Adapt conversion functions to CycloneDX/cyclonedx-go 0.7.0
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Lénaïc Huard <lenaic.huard@datadoghq.com>
* [usm] Fix `ProcessMonitor` termination (#15140)
* [usm] Fix `ProcessMonitor` termination
* Ensure `refcount` doesn't go below zero
* [gitlab] update builderimages for go 1.19.4 builds (#14930)
* [gitlab] update builderimages for go 1.19.4 builds
* [reno] adding relnote for golang 1.19.4 update
* [golang] bumping 1.19.4 in other relevant places
* [circleci] updating images
* [golangci-lint] fixing issues after 1.19.4 bump
* [gitlab] source_test: force external linker when running -race - troubleshooting
* [omnibus] devtoolset changes not required w/RHEL when building with centos 7+
* Revert "[gitlab] source_test: force external linker when running -race - troubleshooting"
This reverts commit 8a7d7344297554cf0eb42ee7f59ed847787ce217.
* [gitlab] source_test: use centos7 based images to enable -race detector
* [golangci-lint] address new format issue after merge
* Apply suggestions from code review
Co-authored-by: Vickenty Fesunov <vickenty@users.noreply.github.com>
* [golangci-lint] address missed lints on windows
* [gitlab] updating buildimages yet again
* [gitlab] setting buildimages after buildimages merged to main
Co-authored-by: Vickenty Fesunov <vickenty@users.noreply.github.com>
* [Windows] Create SCM and Windows Service utilities
Adds a set of SCM and Windows Service utility functions
* Revert "[system-probe][NET-2891] Fix tcp retransmit count (#14740)" (#15141)
This reverts commit e677798efdfc27223f9c036c1fc2e429b2dd24e7.
* [process-agent] Remove check singletons (#15121)
* [process-agent] Remove check singletons
* Address feedback from @just-chillin
* Simplified the interface of httptx (#15146)
* Simplified the interface of httptx
* Fixed error
* [CWS] refactor eval options (#15132)
* [CWS] refactor eval options
* fix windows
* [CWS] enable ring buffer by default (#15111)
* Admission controller: support injecting multiple libs in the same pod (#14736)
* [NDM] Do not send empty tags for snmp.interface.status (#15157)
* Do not send empty tags for snmp.interface.status
* fix test
* [RCM-598] upgrade(remote-config): Use layered gRPC client between trace-agent & core-agent (#15100)
* upgrade(remote-config): Bump message size limit to 500MB
* fix(size): Size down to 110MB max
* refactor(auth): Refactor RC auth
* fix(interface): Remove opts
* [CWS] AD: drop event if its process lineage is incomplete and add a guard to avoid sending empty dumps (#15013)
In addition, two new metrics introduced to trace these new drops
* [tasks/licenses] Don't call `open` on dirs (#15161)
Co-authored-by: Alexandre Menasria <47357713+amenasria@users.noreply.github.com>
* [process-agent] Set HintMask in CollectorProc during process checks. (#14759)
Adds a new process discovery hint in the process agent when the regular process and container checks run.
* [fake-datadog] fix index list numbers (#15154)
* Enable orchestrator manifest collection by default (#15094)
manifest collection GA
* Update CODEOWNERS and JOBOWNERS after team and job renames (#15021)
Updates the JOBOWNERS and the GITHUB_SLACK_MAP file to account for recent team and job changes.
* Changed TSM to USM (#15143)
* Network USM : add java TLS support (#14620)
Adding support to attach a live java process and send it "agent-usm.jar" runtime agent payload
Supporting JVMTI Hotspot mechanism
Configuration:
DD_SERVICE_MONITORING_CONFIG_ENABLE_JAVA_TLS_SUPPORT = true
service_monitoring_config:
enable_java_tls_support: true
Co-authored-by: Guy Arbitman <guy20495@gmail.com>
* Fix instance-filter error type (#15163)
* cmd/trace-agent: set gomemlimit based on cgroups (#14552)
* pkg/runtime,cmd/trace-agent: set gomemlimit based on cgroups
* search in stderr for expected log line as well (#15167)
* Add additional distros/versions to btfhub archive build (#15152)
* Tweak system-probe kitchen tests (#15165)
* [serverless] feat: add _dd.origin tags for azure and gcp (#15137)
* feat: add _dd.origin tags for azure and gcp
* add release note
* remove serverless release notes from this repo
* Bump github.com/Microsoft/go-winio from 0.5.2 to 0.6.0 (#13728)
* Bump github.com/Microsoft/go-winio from 0.5.2 to 0.6.0
Bumps [github.com/Microsoft/go-winio](https://github.com/Microsoft/go-winio) from 0.5.2 to 0.6.0.
- [Release notes](https://github.com/Microsoft/go-winio/releases)
- [Commits](https://github.com/Microsoft/go-winio/compare/v0.5.2...v0.6.0)
---
updated-dependencies:
- dependency-name: github.com/Microsoft/go-winio
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* Auto-generate go.sum and LICENSE-3rdparty.csv changes
* go mod tidy
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com>
Co-authored-by: Brian Floersch <brian.floersch@datadoghq.com>
* Factorize all the functions creating a pointer (#15118)
* Logging and pipeline changes to address failures to send data to DBM endpoints (#15058)
* epforwarder: double dbm-samples defaultBatchMaxContentSize
We have been seeing some issues where data fails to send
to our dbm samples endpoint. We see far fewer examples of
the dbm-activity and dbm-metrics pipelines being blocked or
failing to send data, and we suspect that this is partly
due to the drastic differences in size between those
pipelines and the dbm-samples pipeline.
This change doubles the defaultBatchMaxContentSize for
the dbm-samples pipeline to try to address this.
* batch_strategy: add debug logging for dbm pipelines
* http/destination: enrich logmessages about sleep backoff
* logs...http/destination: additional logging for err reponses
* logs: new metric to capture err status codes from http resp
* Update ebpf-manager (#15174)
* Send failed report first (#14700)
* [RCM] Allow agent clients to specify their k8s cluster (#15148)
This allows predicates to be written and configurations to be targeted
towards agent clients running on a particular cluster.
* Container image metadata check: add layers history (#15150)
* Add to permissions.log windows permissions (#14866)
Add to permissions.log windows permissions
* [process-agent] Fix data race in a test (#15177)
* [windows] [system-probe] Split connection gathering between open and closed. (#14164)
* Split connection gathering between open and closed.
Continue to only poll open connections on 30s intervals.
Poll closed connections on 30s interval, or when async notification
threshold is reached.
gofmt
Review feedback
Change the buffer used for reading from the driver to it's own type rather
than generic slice, to make more clear the pointer relationship in
function calls where pointers are used.
Change resizeDriverBuffer to operate on the buffer type for clarity
add better default guessing to new config variable
review feedback; wait for closed connections loop to stop before exiting
lint
update to latest driver for signing
Sync driver header file correctly for build.
Fixes hang of system probe on exit.
Fixes correctly draining full bucket
fix typo in install xml
Rebase to main (230106)
Update to latest test driver
(rebased to one change)
* Update release.json to 2.3.0 unsigned driver for signing build
* update to signed version
* USM: new configuration path service_monitoring_config.enable_go_tls_support (#15156)
* USM: new configuration path service_monitoring_config.enable_go_tls_support
* Fixed CR comment
* Added releasenotes about the changed configuration value
* Update releasenotes/notes/changing-gotls-configuration-flag-cb003ca4d25472ad.yaml
Co-authored-by: May Lee <mayl@alumni.cmu.edu>
Co-authored-by: Nicolas PLANEL <nicolas.planel@datadoghq.com>
Co-authored-by: May Lee <mayl@alumni.cmu.edu>
* [CWS] init args/envs for empty data from proc (#15181)
* [serializer] Use google's protobuf lib for marshaling SBOMs and Images (#15172)
* [serializer] Use google's protobuf lib for marshaling SBOMs
* [serializer] Use google's protobuf lib for marshaling Container Images
Co-authored-by: Lénaïc Huard <lenaic.huard@datadoghq.com>
* [CWS] add dump count limiter (#15014)
* Revert "Tweak system-probe kitchen tests (#15165)" (#15179)
This reverts commit e4aab732d2a9083d832c5a850773832fd551149b.
* [CSPM] Make sure the failing reports are reported first using a stable sort (#15189)
* convert config subcommand to fx (#15178)
* Add GlobalTags on basic telemetry when no hostname is detected (#14776)
* Auto compute timeWindow on external metrics based on DatadogMetrics maxAge (#14840)
* Auto compute timeWindow on external metrics based on DatadogMetrics maxAge
* Update releasenotes/notes/add-automatic-time-window-ffed100742f51246.yaml
Co-authored-by: Kaylyn <kaylyn.sigler@datadoghq.com>
* Review feedback
Co-authored-by: Kaylyn <kaylyn.sigler@datadoghq.com>
* Add a Stop lifecycle for log to call log.Flush (#15185)
kitchen_test_system_probe_xxx are flaky tests.
* Use Wixsharp for the Windows Installer (#13459)
* [gitlab+golang] updating builders + bumping tooling 1.19.5 (#15164)
* [gitlab+golang] updating builders + bumping tooling 1.19.5
* [changelog] updating changelog entry
* [circleci] updating runners
* [test] small cleanup
* [release] PR merged so MACOS_BUILD_VERSION back to master
* Add detection for ECS EC2 and start workloadmeta ECS collector accordingly (#14978)
* Adding log source latency stats to InfoProvider (#15038)
* adding NoProxyNonexactMatchExplicitlySet to ProxyMeta payload within Host Payload to identify if customer did explicitly use/change the param no_proxy_nonexact_match within agent config.
* adding testing log source attributes
* removing bytes read and adding that attribute into log source instead
* adjust type32 to type64 for the agent build
* Update pkg/logs/sources/source.go
Byte to Bytes
Co-authored-by: Dustin J. Mitchell <dustin.mitchell@datadoghq.com>
* new helper function for BytesRead type
* Update InfoProvider with Log Latency and getting rid of log latency stats from Source
* Changing language and replacing strconv.FormatInt with fmt.sprintf function.
Co-authored-by: Dustin J. Mitchell <dustin.mitchell@datadoghq.com>
* [omnibus] retrieve freetds tarball using HTTPS instead of FTP (#15159)
* cmd/cluster-agent/subcommands/start: fix rcClient instanciation (#15193)
* [dca] filter pod annotation during workloadmeta collection (#15089)
Co-authored-by: Lénaïc Huard <L3n41c@users.noreply.github.com>
* introduce root node validator (#15032)
* [workloadmeta/containerd] Collect SBOMs with Trivy (#15139)
* [go.mod] Add Trivy
* [util/kubernetes/apiserver/leaderelection] Adapt to new k8s version
* Run inv security-agent.gen-mocks
* [docker] Adapt tests and fakes to new version
* [util/containerd] Expose raw client
* [util] Add Trivy client
* [workloadmeta/collectors/containerd] Collect SBOMs with Trivy
* [build-tags] Use trivy only in core agent
* Add release note
* Add missing licenses
* [github/codeowners] Assign /pkg/util/trivy to container-integrations
* [security-agent] bump security agent policies to v0.43.0 (#15190)
* Fix failing test (#15180)
rerun pipeline
* Fix `sbom` check (#15192)
* [DCA] Add tagger-list and workload-list cmds (#15135)
* [DCA] Add tagger-list and workload-list cmds
* Apply suggestions from code review
Co-authored-by: Lénaïc Huard <L3n41c@users.noreply.github.com>
* Include workload- and tagger-list in DCA flare
Co-authored-by: Lénaïc Huard <L3n41c@users.noreply.github.com>
* fix(cluster-agent): apply cluster-name normalization in ksm-core (#15057)
Co-authored-by: Bryce Eadie <bryce.eadie@datadoghq.com>
Co-authored-by: Xavier Lucas <xavier.lucas@datadoghq.com>
* Add option to use image mount instead of image export (requires mounting /var/lib and SYS_ADMIN in core Agent) (#15183)
* [tasks] Read go unit test reports in utf-8 format (#15202)
Explicitly sets the file reading encoding to utf-8 when reading the Go unit test report json file.
* [CSPM] bump `github.com/open-policy-agent/opa` to v0.48.0 (#15200)
* bump `github.com/open-policy-agent/opa` to v0.48.0
* `inv -e generate-licenses`
* [corechecks/snmp] Add `id` and `source_type` to Topology Links data (#15184)
Co-authored-by: pducolin <45568537+pducolin@users.noreply.github.com>
* add orchestrator and cws url overwrite when fips is enabled (#15195)
* feat(fips): add orchestrator and cws url overwrite when fips is enabled
Signed-off-by: Nicolas Guerguadj <nicolas.guerguadj@epita.fr>
* [CWS] Converting SecAgent Start command to fx (#14814)
* compliance subcmd using log and config components
* runtime using components
* fixing rebase clobbers
* moving root command
subcommand
* converting app/start.go and app/app.go to start/command.go (and command.go in previous commit)
start
start test
start
start
start command var change
start cmd import
* compliance, runtime, and check commands using command instead of common
* moving logs context to command from common, and deleting duplicated logs context code in runtime
* param setup
* handle case with no config files
* squashing more usages of pkg/util/log and pkg/config
* moving ConfigParams in compliance check fnc until after cfgpath has been parsed
* adding cluster agent bool to check entrypoint
* using log component in logs context
* fixing no api key error message
* adding log.Flush() to one shot funcs. TODO: remove once log component has self-flushing capabilities
* release note
* release note edits
* using lambda fnc to handle different entrypoints to check
* release note edit
* commit: removing log.Flush() because log component now has a lifecycle hook for flushing: https://github.com/DataDog/datadog-agent/pull/15185/files
* fixing check unsupported
* fixing import in check unsupported
* release note edit
* Ensure cloud foundry container tags are unique (#15066)
* Ensure collector tags are unique
* small refactor
* Format file
Co-authored-by: NouemanKHAL <noueman.khalikine@datadoghq.com>
* [collector/python] uses ianlancetaylor's cgosymbolizer. (#14673)
* [collector/python] uses ianlancetaylor's cgosymbolizer.
The one we ship and use is outdated and is known to cause hangs.
See: https://github.com/golang/go/issues/45558#issuecomment-820764029
* Update cgosymbolizer.
* Update licencse
* add linux build tag
Co-authored-by: Brian Floersch <brian.floersch@datadoghq.com>
* Configure analyzers used for SBOM generation (#15204)
* Allow specifying the trivy analyzers
* Only scan a few folders when using only os analyzers
Co-authored-by: Cedric Lamoriniere <cedric.lamoriniere@datadoghq.com>
* Network USM : avoid ebpf maps contentions (#15166)
TLDR all maps with conn_tuple_t as key must be edited by the loader to MaxConnectionTracked (65536 by default)
Avoiding hash_lru_map contention (+50% system cpu on user pod) due to map too small compare the numbers of connections
On staging setup : >8000 sockets running on 16 cores, on the packets receive path (socket/classifier)
The main issue is the kernel spinlock an internal LRU list for evicted elements, this list is shared with all cores
Moved the ebpf maps to the ebpf program that instantiate them as they not shared
Only instantiate maps only once
* Add test for multiple items (#13319)
* Use container_image_collection in config options (#15197)
rename `workload.image_collection` config option to
`container_image_collection` to be more product feature oriented.
* [CWS] [SEC-176] Enable CWS in integration tests (#14146)
* Enable CWS in integration tests
* Remove system probe files at package removal
* Display remaining files after package removal
* Catch error when parsing 'status' JSON output
* Do not test CWS on iot agent flavor
* Only enable CWS on supported platforms
* Give more time to security-agent to communicate with system-probe
* Retry to reach the agent config endpoint
* Install policycoreutils-python on CentOS to apply SElinux rules at install time
* Add release notes
* deleting original MergeConfigurationFiles fnc (#14896)
* CWS: sync BTFhub constants (#15215)
Co-authored-by: paulcacheux <paulcacheux@users.noreply.github.com>
* Move public IPv4 support to the cloudprovider package
* Remove dead code for EC2 local IPv4
This code is no longer use since the PR #12971.
* Move EC2 imds helper to their own file
* Move EC2 network metadata support to its own file
* Adding 'cloud_provider_source" to the inventories payload
We now track from where we fetch metadata related to a cloud provider.
This only support AWS EC2 for now. Depending on the instances
types, configuration, ... the Agent can use multiple sources to deduce
it's running one EC2.
The source used is now sent as 'cloud_provider_source' in inventories.
* [kitchen] Fix CWS integration tests on CentOS step-by-step tests (#15218)
Follow-up of #14146, applies the SELinux fix (from the install script cookbook) to the step-by-step cookbook, to make sure system-probe works correctly on CentOS 7 (which has SELinux enabled by default).
* pkg/clusteragent/admission: fix rc tracking annotations (#15219)
* Update release.json and Go modules for 6/7.43.0-rc.1 (#15216)
* [CWS] force DNS resolver to read `/etc/resolv.conf` (#15220)
* [CWS] fix stacktrace in signal/ptrace rules evaluation (#15225)
* [CWS] remove dead-lock in AD finalize when resolving tags (#15233)
* [workloadmeta/collectors/containerd] Disable sbom correctly when Trivy is not built (#15234)
When SBOM collection was enabled in a built without Trivy, the agent was still
pushing images to the `imagesToScan` channel. The channel was not initialized,
so this was blocking the agent.
* Bump snowflake to 2.8.3 and add back installing library (#15207)
* Bump snowflake to 2.8.3 and add back installing library
* Only include pip change
* Add back snowflake bump
* Fix version
* Changelogs for 7.42.0 release (#15158) (#15237)
* Changelogs for 7.42.0 release (#15158)
* Changelogs for 7.42.0 release
* Update CHANGELOG.rst
* Update CHANGELOG.rst
* Update CHANGELOG.rst
* Add empty space
* https: soWatcher, shared_libraries use a pathIdentifier as key of ELF binaries (#13748)
Bugfixes to support `network_config.enable_https_monitoring` in a k8s clusters
* pathIdentifier is an unique id of and ELF (system-wide) as it contain dev and inode as key.
* New Unregister path, thanks to processMonitor that recieve process EXIT event and unregister the uprobe (maintained by a refcount)
* ebpf UID use pathIdentifier as source of truth and use wider alphabet (base64), specially because the UID is limited (5 chars)
Motivation : Follow up on #incident-16860, #incident-18347
* Add logging in max cpu/mem defaulting (#15257)
* Fix the invocation of the secret backend from the cluster agent (#15250)
* Bump the version of `emicklei/go-restful` (#15252)
* Bump the version of `gopkg.in/yaml.v2` (#15253)
* [process-agent] Fix nil deref in check cmd (#15254)
* [sbom] Store generation duration and report it (#15258)
* [workloadmeta/collectors/containerd] Add image scan duration to telemetry
* [workloadmeta/collectors/containerd] Store SBOM generation duration
* [corechecks/sbom] Process SBOM generation duration
* [sbom] Store and report generation time
* [CWS] flush upstream kernel btf spec cache after use (#15264)
* Fix a bug in workloadmeta containerd collector (#15260)
* Update release.json and Go modules for 6/7.43.0-rc.2 (#15243)
* Fix system-probe build tags difference (#15268)
* [USM] go TLS cleanup debug messages (#15246)
* scan existence /proc/pid for 10 ms, it's better to do that in the callback
* report golang hooking issue only if it's a golang binary
* report only once when we unregister binary
* Release BTF cached by cilium/ebpf (#15269)
* [process-agent] Fix `Drop Check Payloads` status (#15274)
* Workaround lxn/walk issue on Windows 7/2008r2 (#15275)
* [CWS] bump security agent policies to v0.43.1 (#15280)
* CWS: sync BTFhub constants (#15285)
Co-authored-by: paulcacheux <paulcacheux@users.noreply.github.com>
* [CWS] useless lock from AD manager (#15287)
* Update last_stable entries in release.json to 6/7.42.0 (#15289)
Updates the last_stable entries to 6/7.42.0 on main.
* [contimage] Split container image metadata in one event per registry (#15292)
* [sbom] Split sbom in one event per registry (#15295)
* [kitchen] Use official datadog cookbook for initial Agent install in upgrade scenario (#15300)
Updates the win-upgrade-rollback kitchen test suite to use the official datadog cookbook for the initial install.
* [CWS] always lock AD in the same order (#15290)
* Update release.json and Go modules for 6/7.43.0-rc.3 (#15296)
* Fix silent mutation of integration.Config in secret decryption (#15298)
* Do not run SBOM collection while running `agent check` (#15327)
* Lower memory allocated to ring buffer (#15245)
* [Windows] Fix the connection established check. (#15301)
Fixes the reporting of the established state on windows.
Also disables the test for `TCPCollectionDisabled`, as it is a (now)
known problem on Windows.
* Remove BTF exceptions (#15316)
We have these kernels now
* Speed up system-probe build by not copying unnecessary files (#15231)
* Speed up system-probe build by not copying unnecessary files
* Add fallback to find if rsync not available
* Fix python lint
* Bump Collector dependencies to v1.0.0-RC4/v0.70.0 (#15230)
* Bump Collector dependencies to v1.0.0-RC4/v0.70.0
* Add to release notes
* Fix format
* Update releasenotes/notes/v0.70.0-otel-c59cf4b8673d9497dc27f4d4f38dea2db79e74ed.yaml
Co-authored-by: Bryce Eadie <bryce.eadie@datadoghq.com>
* Upgrade opentelemetry-collector-contrib version
---------
Co-authored-by: Bryce Eadie <bryce.eadie@datadoghq.com>
* Address VPA fixes caught in QA (#15328)
* Address fixes caught in QA
* Commit to retrigger build
* protocols: Uses alpine based images as they are slimmer (#15310)
* system-probe: re-ordered protocols into directories (#15308)
* protocol classifications: tests: Restructure tests to cut 50% runtime (#14987)
* protocol classifications: tests: Restructure tests to cut 50% runtime
* Fixed cr comment
* Bump go.uber.org/zap from 1.23.0 to 1.24.0 in /pkg/otlp/model (#14597)
Bumps [go.uber.org/zap](https://github.com/uber-go/zap) from 1.23.0 to 1.24.0.
- [Release notes](https://github.com/uber-go/zap/releases)
- [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/uber-go/zap/compare/v1.23.0...v1.24.0)
---
updated-dependencies:
- dependency-name: go.uber.org/zap
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* java tls: remove requirement for runtime compilation (#15276)
* [usm] Fix concurrency issue in test (#15273)
* [system-probe] Handle stats overflows (#15282)
* [system-probe] make sure stats are reported as soon a module registration happens (#15329)
When modules are registered in the system-probe, a process to update
stats in the global `l` field every 15 seconds starts.
Those stats are pulled in by the `agent status` command which user can
use to see what's running in the agent.
The loop was written as:
```
for now := <-ticker {
// update stuff
}
```
Which mean that for the first 15 seconds fo the agents life, stats would
come back incomplete. Meaning that for the first 15 seconds of the agent's.
This PR changes the stats loop to compute stats *then* wait for 15
seconds.
QA instructions (meant to run on a vanilla linux host):
* in one terminal window run `watch "sudo -u dd-agent
/opt/datadog-agent/bin/agent/agent status | head -n10"`
* in another terminal window, restart the system-probe
* you should *not* see errors about systemprobe.tmpl failing to render.
Running these steps on 7.42 and below shows:
```
Getting the status from the agent.
template: /systemprobe.tmpl:11:34: executing "/systemprobe.tmpl" at <.updated_at>: invalid value; expected float64
```
For the first 15 seconds.
You should *not see* see these errors in the first 15 seconds of the
system probe running (or ever).
* Bump resource limits for circleci unit_tests job (#15342)
* usm: Added usm to agent status command (#15232)
* usm: Added usm to agent status command
* Added releasenotes
* Rename releasenotes file due to a CI linter
* Fixed CR comment
* Fixed release notes
* Fixed cr comment
* Fixed tests
* Reducing duplication
* Fixed tests
* [system-probe] Add process monitoring and USM tagging (#12280)
* tracer: protocol classification: Adding a workaround to handle hitting instructions limits on socket filter (#15343)
* tracer: protocol classification: Adding a workaround to handle hitting instructions limits on socket filter
* Fixed condition
* fix(RCM): Fix timeout of client bypass (#15326)
Before this commit, when the previous request was still pending,
the client bypass wouldn't timeout until it managed to send its
request, meaning that the effective maximum timeout for a new client
was (request TTL) + (bypass TTL).
This was made more visible when the refresh interval went from 60s
to 5s minimum.
Now, the client bypass timeout takes the previous request into account
as well, so that a client doesn't wait for more than 2s on its first
request
* [CWS Agent] fix signature of NewRuleFilterModel on non-linux platforms
* [CWS] fix size of args (#15323)
* [CWS] split ResolveFields (#15261)
* pkg/clusteragent/admission/patch: make file provider ready for e2e testing (#15221)
* pkg/clusteragent/admission/patch: make file provider ready for e2e testing
* [USM] old java hotspot need credential (#15278)
Hotspot reject connection if credential by checking uid/gid of the connect() SOL_SOCKET/SO_PEERCRED
but older hotspot JRE (1.8.0) doesn't accept root and want explicitly uid/gid matching
side effect for go, during the connect() syscall we don't want to fork() and stay on the same pthread
to avoid side effect of set effective uid/gid.
* [corechecks/snmp] No local resolution if multiple results (#15262)
* [corechecks/snmp] Use dd_id instead of idType ndm (#15265)
* [pkg/trace] Embed ptraceotlp.UnimplementedGRPCServer to address future breaking change (#15291)
* Moved couple of noisy logs to trace (#15340)
* Don't update the configuration if it already exists (#15339)
The failures in the unit tests are unrelated.
* pkg/trace: Emit APM onboarding events on startup (#14799)
Collect trace agent startup errors and successes using instrumentation-telemetry "apm-onboarding-event" messages.
* switch account (#14572)
* lower log level (#15306)
* tracer: Use aliases to string instead of converting types (#15344)
* tracer: Use aliases to string instead of converting types
* Removed another conversion
* [CWS] remove unsafe cache (#15213)
* specialize string cache
* int and bool caches
* remove unused pointer import
* better error reporting
* fixup some cache get and cleanup
* remove `AppendFieldValues` (#15244)
* Separate system-probe config from datadog config (#14024)
* [serverless] fix: do not try to enable log api for local testing (#15229)
* fix: do not try to enable log api for local testing
* refactor: move out some code in functions, do not use go routine when not needed
* Revert "refactor: move out some code in functions, do not use go routine when not needed"
This reverts commit 750aa784895578ef01c7ffbe5bb150542b9b621f.
* use go friendly return to avoid extra indent
* export one constant rather than reusing string for local test
* [omnibus] Upgrade setuptools to 66.1.1, pip to 22.3.1 in Python 3 embedded environment (#15356)
- The python3 software definition has been updated to install the versions of pip (==22.0.4) and setuptools (==56.0.0) that are bundled alongside Python 3.8.16,
- The pip3 and setuptools3 software definitions have been updated: instead of installing from scratch (using python3 setup.py install), they use the bundled pip to install themselves. pip3 has been updated to 22.3.1, setuptools3 to 66.1.1,
- pip-tools (installed in the datadog-agent-integrations-py3 software definition) was upgraded from 6.4.0 to 6.12.1, as 6.5.0+ is required for pip 22.x support.
Co-authored-by: Lénaïc Huard <lenaic.huard@datadoghq.com>
* [CWS] remove useless usage of unsafe in SECL registers (#15214)
* [corechecks/{containerimage,sbom}] Fix parsing of config (#15355)
* [corechecks/containerimage] Fix parsing of config
* [corechecks/sbom] Fix parsing of config
* [kitchen] Use busser-rspec_datadog gem for tests (#15271)
Switches kitchen tests to use the busser-rspec_datadog gem, published to RubyGems by Datadog, from the busser-rspec-datadog fork of busser-rspec.
This gem behaves the same way as the upstream busser-rspec gem, except for the bundler version it installs, which is pinned to 2.3.26, to ensure it remains compatible with Ruby 2.5.
To do so, all kitchen folders previously named rspec are now named rspec_datadog (as busser uses folder names to guess which gem to install).
Removes the workaround introduced in #14851.
* [gitlab] Add Windows Agent team to GITHUB_SLACK_MAP (#15203)
Add the Windows Agent team to the GITHUB_SLACK_MAP.
* [Serverless] fix http + https proxy (#15320)
* USM: adding service_monitoring.java_agent_args=string parameter (#15314)
USM: adding service_monitoring.java_agent_args=string parameter
to pass through injected agent-usm.jar : agentmain(java_agent_args)
* [golangci-lint] Upgrade to version 1.50.1 (#15348)
* Also increase golangci-lint timeout
* Bump requests from 2.28.1 to 2.28.2 in /test/e2e/cws-tests (#15375)
Bumps [requests](https://github.com/psf/requests) from 2.28.1 to 2.28.2.
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](https://github.com/psf/requests/compare/v2.28.1...v2.28.2)
---
updated-dependencies:
- dependency-name: requests
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump datadog-api-client from 2.7.0 to 2.8.0 in /test/e2e/cws-tests (#15374)
Bumps [datadog-api-client](https://github.com/DataDog/datadog-api-client-python) from 2.7.0 to 2.8.0.
- [Release notes](https://github.com/DataDog/datadog-api-client-python/releases)
- [Changelog](https://github.com/DataDog/datadog-api-client-python/blob/master/CHANGELOG.md)
- [Commits](https://github.com/DataDog/datadog-api-client-python/compare/2.7.0...2.8.0)
---
updated-dependencies:
- dependency-name: datadog-api-client
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* [CWS] introduce SECLDoc and add secl field examples to documentation (#15109)
* [CWS] improve SetFieldValue tests (#15201)
* [CWS] fix e2e tests (#15381)
* Add history workload-list container-image entity (#15353)
* [workloadmeta] Delete unnecessary attrs of ContainerImageMetadata (#15385)
* [CWS] bump ebpf-manager fixing a data race (#15382)
* [CSPM] [SEC-6966] Allow specifying processes environment variables as rule inputs (#15241)
* [CSPM] Allow specifying processes environment variables as rule inputs
* [CSPM] Support env variables without "="
* [CSPM] Add omitempty flag for Process Envs param
* [tagger/telemetry] Extract subsystem const (#15386)
* Bump system probe build image (remove entrypoint) (#15393)
* [pkg/otlp/model] Do not send first value for cumulative monotonic sums if start timestamp matches timestamp (#15363)
* [pkg/otlp/model] Do not send first value for cumulative monotonic sums if start timestamp matches timestamp
* Add to release note
* Fix filename lint
* Fix release note type
* [process-agent] Refactor chunking to use generics (#15318)
* First draft of generic chunking
* Second draft of generics
* All use cases migrated to generics
* Fix null ptr return
* Add comments
* Remove ptr
* Fix test
* Use SetActiveChunk API
* Relnotes
* Relnotes update
* change flake8 url to github (#15398)
* Oracle integration boilerplate
* Create dockerpool for testing
* Add pkgs
* register oracle check
* hello world metric
---------
Signed-off-by: Brian L. Troutwine <brian.troutwine@datadoghq.com>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Nicolas Guerguadj <nicolas.guerguadj@epita.fr>
Co-authored-by: Maxime mouial <maxime.mouial@gmail.com>
Co-authored-by: Ahmed Mezghani <38987709+ahmed-mez@users.noreply.github.com>
Co-authored-by: Katie Hockman <katie@hockman.dev>
Co-authored-by: Julio Greff <julio.greff@datadoghq.com>
Co-authored-by: Pablo Baeyens <pablo.baeyens@datadoghq.com>
Co-authored-by: Paul Cacheux <paul.cacheux@datadoghq.com>
Co-authored-by: Rey Abolofia <rey.abolofia@datadoghq.com>
Co-authored-by: Maxime David <maxime.david@datadoghq.com>
Co-authored-by: AJ Stuyvenberg <astuyve@gmail.com>
Co-authored-by: Derek Brown <derek.brown@datadoghq.com>
Co-authored-by: Lénaïc Huard <L3n41c@users.noreply.github.com>
Co-authored-by: Olivier G <52180542+ogaca-dd@users.noreply.github.com>
Co-authored-by: Slavek Kabrda <slavek.kabrda@datadoghq.com>
Co-authored-by: Alexandre Yang <alexandre.yang@datadoghq.com>
Co-authored-by: Sylvain Afchain <safchain@gmail.com>
Co-authored-by: modernplumbing <celia.yuen@datadoghq.com>
Co-authored-by: Julien Lebot <julien.lebot@datadoghq.com>
Co-authored-by: Branden Clark <branden.clark@datadoghq.com>
Co-authored-by: Emma Ferguson <6165248+EmmaOnThursday@users.noreply.github.com>
Co-authored-by: Ivan Ilichev <ivan@ivanilichev.com>
Co-authored-by: Guy Arbitman <guy20495@gmail.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: paulcacheux <paulcacheux@users.noreply.github.com>
Co-authored-by: Jonathan Ribas <jonathan.ribas@datadoghq.com>
Co-authored-by: Vickenty Fesunov <vickenty@users.noreply.github.com>
Co-authored-by: maxime mouial <hush-hush@users.noreply.github.com>
Co-authored-by: Kyle Verhoog <kyle@verhoog.ca>
Co-authored-by: Kari Halsted <12926135+kayayarai@users.noreply.github.com>
Co-authored-by: Scott Opell <me@scottopell.com>
Co-authored-by: Nicolas PLANEL <nicolas.planel@datadoghq.com>
Co-authored-by: Paul <paul.coignet@datadoghq.com>
Co-authored-by: William Yu <7888158+wiyu@users.noreply.github.com>
Co-authored-by: Andrew Glaude <andrew.glaude@datadoghq.com>
Co-authored-by: Brian L. Troutwine <brian@troutwine.us>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Yoann Ghigoff <yoann.ghigoff@datadoghq.com>
Co-authored-by: ruthnaebeck <19349244+ruthnaebeck@users.noreply.github.com>
Co-authored-by: hestonhoffman <hestonhoffman@gmail.com>
Co-authored-by: Brian Floersch <brian.floersch@datadoghq.com>
Co-authored-by: Lénaïc Huard <lenaic.huard@datadoghq.com>
Co-authored-by: Pedro Lambert <pedro.lambert@datadoghq.com>
Co-authored-by: Jaime Fullaondo <jaime.fullaondo@datadoghq.com>
Co-authored-by: Rich L <104389535+richl-dd@users.noreply.github.com>
Co-authored-by: Adam Karpowich <akarpowich94@gmail.com>
Co-authored-by: Florian Veaux <florian.veaux@datadoghq.com>
Co-authored-by: Baptiste Foy <baptiste.foy@datadoghq.com>
Co-authored-by: David Ortiz <david.ortiz@datadoghq.com>
Co-authored-by: Alexandre Menasria <47357713+amenasria@users.noreply.github.com>
Co-authored-by: daniel-taf <63120739+daniel-taf@users.noreply.github.com>
Co-authored-by: pducolin <45568537+pducolin@users.noreply.github.com>
Co-authored-by: Kangyi LI <kangyi.li@datadoghq.com>
Co-authored-by: Kylian Serrania <kylian.serrania@datadoghq.com>
Co-authored-by: Usama Saqib <usamasaqib.96@live.com>
Co-authored-by: Bryce Kahle <bryce.kahle@datadoghq.com>
Co-authored-by: alexgallotta <5581237+alexgallotta@users.noreply.github.com>
Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com>
Co-authored-by: Sylvain Baubeau <sylvain.baubeau@datadoghq.com>
Co-authored-by: Kyle Ames <kyle.ames@datadoghq.com>
Co-authored-by: Len Gamburg <98782554+iglendd@users.noreply.github.com>
Co-authored-by: May Lee <mayl@alumni.cmu.edu>
Co-authored-by: Guillaume Fournier <36961134+Gui774ume@users.noreply.github.com>
Co-authored-by: Pierre Guilleminot <pierre.guilleminot@datadoghq.com>
Co-authored-by: Vincent Boulineau <58430298+vboulineau@users.noreply.github.com>
Co-authored-by: Kaylyn <kaylyn.sigler@datadoghq.com>
Co-authored-by: Duong (Yoon) <47346352+DDuongNguyen@users.noreply.github.com>
Co-authored-by: Dustin J. Mitchell <dustin.mitchell@datadoghq.com>
Co-authored-by: David du Colombier <djc@datadoghq.com>
Co-authored-by: Cedric Lamoriniere <cedric.lamoriniere@datadoghq.com>
Co-authored-by: Bryce Eadie <bryce.eadie@datadoghq.com>
Co-authored-by: Xavier Lucas <xavier.lucas@datadoghq.com>
Co-authored-by: Nicolas Guerguadj <35628945+Kaderinho@users.noreply.github.com>
Co-authored-by: Sarah Witt <sarah.witt@datadoghq.com>
Co-authored-by: NouemanKHAL <noueman.khalikine@datadoghq.com>
Co-authored-by: Rémy Mathieu <remy.mathieu@datadoghq.com>
Co-authored-by: Kaden Wilkinson <7799267+kdawgwilk@users.noreply.github.com>
Co-authored-by: Kacper <89013263+kacper-murzyn@users.noreply.github.com>
Co-authored-by: Andrew Zhang <andrew.zhang@datadoghq.com>
Co-authored-by: Corrina Sivak <6798352+just-chillin@users.noreply.github.com>
Co-authored-by: Yang Song <songy23@users.noreply.github.com>
Co-authored-by: Joshua Lineaweaver <JLineaweaver@gmail.com>
Co-authored-by: Hasan Mahmood <hmahmood@users.noreply.github.com>
Co-authored-by: Lee Avital <leeavital@gmail.com>
Co-authored-by: paullegranddc <82819397+paullegranddc@users.noreply.github.com>
Co-authored-by: Misha Badov <122245887+badovm@users.noreply.github.com>
Co-authored-by: alexbarksdale <alx.barksdale@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What does this PR do?
When in local testing mode, do not try to initialize logs api to avoid errors in log