New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
contrib/google.golang.org/grpc: improve the memory efficiency of threats detection for grpc #2338
contrib/google.golang.org/grpc: improve the memory efficiency of threats detection for grpc #2338
Conversation
BenchmarksBenchmark execution time: 2023-11-14 13:41:59 Comparing candidate commit dbaa2fc in PR branch Found 0 performance improvements and 0 performance regressions! Performance is the same for 40 metrics, 1 unstable metrics. |
internal/appsec/waf.go
Outdated
@@ -59,6 +59,11 @@ func (a *appsec) swapWAF(rules rulesFragment) (err error) { | |||
} | |||
}() | |||
|
|||
wafDiags := newHandle.Diagnostics() | |||
if err := wafDiags.TopLevelError(); err != nil { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
🚫 [golangci] reported by reviewdog 🐶
wafDiags.TopLevelError undefined (type waf.Diagnostics has no field or method TopLevelError)) (typecheck)
internal/appsec/waf.go
Outdated
@@ -59,6 +59,11 @@ | |||
} | |||
}() | |||
|
|||
wafDiags := newHandle.Diagnostics() | |||
if err := wafDiags.TopLevelError(); err != nil { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
🚫 [golangci] reported by reviewdog 🐶
wafDiags.TopLevelError undefined (type waf.Diagnostics has no field or method TopLevelError)) (typecheck)
internal/appsec/waf.go
Outdated
@@ -59,6 +59,11 @@ | |||
} | |||
}() | |||
|
|||
wafDiags := newHandle.Diagnostics() | |||
if err := wafDiags.TopLevelError(); err != nil { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
🚫 [golangci] reported by reviewdog 🐶
wafDiags.TopLevelError undefined (type waf.Diagnostics has no field or method TopLevelError)) (typecheck)
internal/appsec/waf.go
Outdated
@@ -59,6 +59,11 @@ | |||
} | |||
}() | |||
|
|||
wafDiags := newHandle.Diagnostics() | |||
if err := wafDiags.TopLevelError(); err != nil { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
🚫 [golangci] reported by reviewdog 🐶
wafDiags.TopLevelError undefined (type waf.Diagnostics has no field or method TopLevelError) (typecheck)
internal/appsec/waf.go
Outdated
@@ -59,6 +59,11 @@ | |||
} | |||
}() | |||
|
|||
wafDiags := newHandle.Diagnostics() | |||
if err := wafDiags.TopLevelError(); err != nil { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
🚫 [golangci] reported by reviewdog 🐶
wafDiags.TopLevelError undefined (type waf.Diagnostics has no field or method TopLevelError)) (typecheck)
/merge |
🚂 MergeQueue Pull request added to the queue. This build is going to start soon! (estimated merge in less than 10m) you can cancel this operation by commenting your pull request with |
🚨 MergeQueue not able to merge the branch in the target branch Details
Error: PUT https://api.github.com/repos/DataDog/dd-trace-go/pulls/2338/merge: 405 5 of 5 required status checks are expected. [] FullStacktrace: If you need support, contact us on slack #ci-interfaces with those details! |
Upgrades `github.com/DataDog/go-libddwaf` to the first commit that includes `libddwaf@1.5`, which is capable of ephemeral addresses, allowing workloads such as gRPC streaming and GraphQL to evaluate certain rules multiple times without having to reset the entire WAF context each time.
…g/go-libddwaf/v2 Signed-off-by: Eliott Bouhana <eliott.bouhana@datadoghq.com>
Signed-off-by: Eliott Bouhana <eliott.bouhana@datadoghq.com>
Co-authored-by: Julio Guerra <julio@datadog.com>
This reverts commit 3b3a2f3.
dbaa2fc
to
2aca4bc
Compare
Pull Request is not mergeable
/merge |
🚂 MergeQueue Pull request added to the queue. This build is going to start soon! (estimated merge in less than 10m) you can cancel this operation by commenting your pull request with |
Signed-off-by: Eliott Bouhana <eliott.bouhana@datadoghq.com> Co-authored-by: Eliott Bouhana <eliott.bouhana@datadoghq.com> Co-authored-by: Julio Guerra <julio@datadog.com>
🚂 MergeQueue PullRequest was merged manually |
What does this PR do?
Upgrades
github.com/DataDog/go-libddwaf
to the first commit that includeslibddwaf@1.5
, which is capable of ephemeral addresses, allowing workloads such as gRPC streaming and GraphQL to evaluate certain rules multiple times without having to reset the entire WAF context each time.Motivation
Improved ASM capabilities for protocols that allow for multiple sub-requests to be composed into a single top-level request (such as gRPC streaming, GraphQL, ...)
Reviewer's Checklist
For Datadog employees:
@DataDog/security-design-and-guidance
.