DataDog
diff --git a/‎.github/workflows/README.md‎
Lines changed: 0 additions & 7 deletions b/‎.github/workflows/README.md‎
Lines changed: 0 additions & 7 deletions
diff --git a/‎.github/workflows/prune-github-container-registry.yaml‎
Lines changed: 0 additions & 25 deletions b/‎.github/workflows/prune-github-container-registry.yaml‎
Lines changed: 0 additions & 25 deletions
diff --git a/‎.gitlab-ci.yml‎
Lines changed: 17 additions & 6 deletions b/‎.gitlab-ci.yml‎
Lines changed: 17 additions & 6 deletions
diff --git a/‎.gitlab/benchmarks.yml‎
Lines changed: 1 addition & 3 deletions b/‎.gitlab/benchmarks.yml‎
Lines changed: 1 addition & 3 deletions
diff --git a/‎.gitlab/find-gh-base-ref.sh‎
Lines changed: 76 additions & 0 deletions b/‎.gitlab/find-gh-base-ref.sh‎
Lines changed: 76 additions & 0 deletions
diff --git a/‎.gitlab/macrobenchmarks.yml‎
Lines changed: 0 additions & 2 deletions b/‎.gitlab/macrobenchmarks.yml‎
Lines changed: 0 additions & 2 deletions
diff --git a/‎benchmark/README.MD‎
Lines changed: 4 additions & 4 deletions b/‎benchmark/README.MD‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎build.gradle‎
Lines changed: 18 additions & 8 deletions b/‎build.gradle‎
Lines changed: 18 additions & 8 deletions
diff --git a/‎buildSrc/src/test/groovy/CallSiteInstrumentationPluginTest.groovy‎
Lines changed: 1 addition & 1 deletion b/‎buildSrc/src/test/groovy/CallSiteInstrumentationPluginTest.groovy‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎dd-java-agent/agent-bootstrap/build.gradle‎
Lines changed: 1 addition & 1 deletion b/‎dd-java-agent/agent-bootstrap/build.gradle‎
Lines changed: 1 addition & 1 deletion
@@ -85,13 +85,6 @@ _Action:_
 
 _Recovery:_ Check at the milestone for the related issues and update them manually.
 
-### prune-github-container-registry [🔗](prune-github-container-registry.yaml)
-
-_Trigger:_ Every day or manually.
-
-_Action:_ Clean up old lib-injection OCI images from GitHub Container Registry.
-
-_Recovery:_ Manually trigger the action again.
 
 ### prune-old-pull-requests [🔗](prune-old-pull-requests.yaml)
 
 
@@ -119,6 +119,13 @@ default:
   - .gitlab/cgroup-info.sh
   - gitlab_section_end "cgroup-info"
 
+.gitlab_base_ref_params: &gitlab_base_ref_params
+  - |
+    if [[ ! $CI_COMMIT_BRANCH =~ ^(master|release/.*)$ ]]; then
+      export GIT_BASE_REF=$(.gitlab/find-gh-base-ref.sh)
+      export GRADLE_PARAMS="$GRADLE_PARAMS -PgitBaseRef=origin/$GIT_BASE_REF"
+    fi
+
 .gradle_build: &gradle_build
   image: ghcr.io/datadog/dd-trace-java-docker-build:${BUILDER_IMAGE_VERSION_PREFIX}base
   stage: build
@@ -223,7 +230,8 @@ build_tests:
         MAVEN_OPTS: "-Xms64M -Xmx512M -Dorg.slf4j.simpleLogger.defaultLogLevel=debug" # FIXME: Build :smokeTest build fails unless mvn debug logging is on
 
   script:
-    - ./gradlew clean $GRADLE_TARGET -PskipTests $GRADLE_ARGS
+    - *gitlab_base_ref_params
+    - ./gradlew clean $GRADLE_TARGET $GRADLE_PARAMS -PskipTests $GRADLE_ARGS
 
 populate_dep_cache:
   extends: build_tests
@@ -327,7 +335,8 @@ test_published_artifacts:
   variables:
     CACHE_TYPE: lib
   script:
-    - ./gradlew $GRADLE_TARGET -PskipTests -PrunBuildSrcTests -PskipSpotless -PtaskPartitionCount=$NORMALIZED_NODE_TOTAL -PtaskPartition=$NORMALIZED_NODE_INDEX $GRADLE_ARGS
+    - *gitlab_base_ref_params
+    - ./gradlew $GRADLE_TARGET $GRADLE_PARAMS -PskipTests -PrunBuildSrcTests -PskipSpotless -PtaskPartitionCount=$NORMALIZED_NODE_TOTAL -PtaskPartition=$NORMALIZED_NODE_INDEX $GRADLE_ARGS
   after_script:
     - *cgroup_info
     - source .gitlab/gitlab-utils.sh
@@ -460,6 +469,7 @@ muzzle-dep-report:
     - if: $CI_COMMIT_BRANCH == "master"
       when: on_success
   script:
+    - *gitlab_base_ref_params
     - >
       if [ "$PROFILE_TESTS" == "true" ] && [ "$testJvm" != "ibm8" ] && [ "$testJvm" != "oracle8" ];
       then
@@ -506,7 +516,7 @@ muzzle-dep-report:
     CI_USE_TEST_AGENT: "true"
     CI_AGENT_HOST: local-agent
   services:
-    - name: ghcr.io/datadog/dd-apm-test-agent/ddapm-test-agent:v1.11.0
+    - name: ghcr.io/datadog/dd-apm-test-agent/ddapm-test-agent:v1.24.1
       alias: local-agent
       variables:
         LOG_LEVEL: "DEBUG"
@@ -729,6 +739,7 @@ deploy_to_di_backend:manual:
     UPSTREAM_COMMIT_AUTHOR: $CI_COMMIT_AUTHOR
     UPSTREAM_COMMIT_SHORT_SHA: $CI_COMMIT_SHORT_SHA
 
+# If the deploy_to_sonatype job is re-run, re-trigger the deploy_artifacts_to_github job as well so that the artifacts match.
 deploy_to_sonatype:
   extends: .gradle_build
   stage: publish
@@ -746,8 +757,8 @@ deploy_to_sonatype:
     - when: manual
       allow_failure: true
   script:
-    - export SONATYPE_USERNAME=$(aws ssm get-parameter --region us-east-1 --name ci.dd-trace-java.sonatype_username --with-decryption --query "Parameter.Value" --out text)
-    - export SONATYPE_PASSWORD=$(aws ssm get-parameter --region us-east-1 --name ci.dd-trace-java.sonatype_password --with-decryption --query "Parameter.Value" --out text)
+    - export SONATYPE_USERNAME=$(aws ssm get-parameter --region us-east-1 --name ci.dd-trace-java.central_username --with-decryption --query "Parameter.Value" --out text)
+    - export SONATYPE_PASSWORD=$(aws ssm get-parameter --region us-east-1 --name ci.dd-trace-java.central_password --with-decryption --query "Parameter.Value" --out text)
     - export GPG_PRIVATE_KEY=$(aws ssm get-parameter --region us-east-1 --name ci.dd-trace-java.signing.gpg_private_key --with-decryption --query "Parameter.Value" --out text)
     - export GPG_PASSWORD=$(aws ssm get-parameter --region us-east-1 --name ci.dd-trace-java.signing.gpg_passphrase --with-decryption --query "Parameter.Value" --out text)
     - ./gradlew -PbuildInfo.build.number=$CI_JOB_ID publishToSonatype closeSonatypeStagingRepository -PskipTests $GRADLE_ARGS
@@ -765,7 +776,7 @@ deploy_artifacts_to_github:
       when: never
     - if: '$CI_COMMIT_TAG =~ /^v[0-9]+\.[0-9]+\.[0-9]+$/'
       when: on_success
-  # Requires the deploy_to_sonatype job to have run first the UP-TO-DATE gradle check across jobs is broken
+  # Requires the deploy_to_sonatype job to have run first (the UP-TO-DATE gradle check across jobs is broken)
   # This will deploy the artifacts built from the publishToSonatype task to the GitHub release
   needs:
     - job: deploy_to_sonatype
 
@@ -27,9 +27,6 @@
     UPSTREAM_BRANCH: $CI_COMMIT_REF_NAME # The branch or tag name for which project is built.
     UPSTREAM_COMMIT_SHA: $CI_COMMIT_SHA # The commit revision the project is built for.
 
-    KUBERNETES_SERVICE_ACCOUNT_OVERWRITE: dd-trace-java
-    FF_USE_LEGACY_KUBERNETES_EXECUTION_STRATEGY: "true"
-
 benchmarks-startup:
   extends: .benchmarks
   script:
@@ -56,6 +53,7 @@ benchmarks-dacapo:
 
 benchmarks-post-results:
   extends: .benchmarks
+  tags: ["arch:amd64"]
   script:
     - !reference [ .benchmarks, script ]
     - ./steps/upload-results-to-s3.sh
 
@@ -0,0 +1,76 @@
+#!/usr/bin/env bash
+# Determines the base branch for the current PR (if we are running in a PR).
+set -euo pipefail
+
+# Happy path: if we're just one commit away from master, base ref is master.
+if [[ $(git log --pretty=oneline origin/master..HEAD | wc -l) -eq 1 ]]; then
+  echo "We are just one commit away from master, base ref is master" >&2
+  echo "master"
+  exit 0
+fi
+
+# In GitLab: we have no reference to the base branch or even the PR number.
+# We have to find it from the current branch name, which is defined in
+# CI_COMMIT_REF_NAME.
+if [[ -z "${CI_COMMIT_REF_NAME}" ]]; then
+  echo "CI_COMMIT_REF_NAME is not set, not running in GitLab CI?" >&2
+  exit 1
+fi
+
+if [[ -z "${GITHUB_TOKEN:-}" ]]; then
+  echo "GITHUB_TOKEN is not set, fetching from AWS SSM" >&2
+  if ! command -v aws >/dev/null 2>&1; then
+    echo "aws is not installed, please install it" >&2
+    exit 1
+  fi
+  GITHUB_TOKEN=$(aws ssm get-parameter --name "ci.$CI_PROJECT_NAME.gh_release_token" --with-decryption --query "Parameter.Value" --output text)
+  if [[ -z "${GITHUB_TOKEN}" ]]; then
+    echo "Failed to fetch GITHUB_TOKEN from AWS SSM" >&2
+    exit 1
+  fi
+  export GITHUB_TOKEN
+fi
+
+if ! command -v curl >/dev/null 2>&1; then
+  echo "curl is not installed, please install it" >&2
+  exit 1
+fi
+
+if ! command -v jq >/dev/null 2>&1; then
+  echo "jq is not installed, please install it" >&2
+  exit 1
+fi
+
+while true; do
+  set +e
+  PR_DATA=$(curl \
+    -XGET \
+    --silent \
+    --include \
+    --fail-with-body \
+    -H 'Accept: application/vnd.github+json' \
+    -H "Authorization: Bearer ${GITHUB_TOKEN}" \
+    -H "X-GitHub-Api-Version: 2022-11-28" \
+    "https://api.github.com/repos/datadog/dd-trace-java/pulls?head=DataDog:${CI_COMMIT_REF_NAME}&sort=updated&direction=desc")
+  exit_code=$?
+  set -e
+  if [[ ${exit_code} -eq 0 ]]; then
+    PR_NUMBER=$(echo "$PR_DATA" | sed '1,/^[[:space:]]*$/d' | jq -r '.[].number')
+    PR_BASE_REF=$(echo "$PR_DATA" | sed '1,/^[[:space:]]*$/d' | jq -r '.[].base.ref')
+    echo "PR is https://github.com/datadog/dd-trace-java/pull/${PR_NUMBER} and base ref is ${PR_BASE_REF}">&2
+    echo "${PR_BASE_REF}"
+    exit 0
+  fi
+  if echo "$PR_DATA" | grep -q "^x-ratelimit-reset:"; then
+    reset_timestamp=$(echo -n "$PR_DATA" | grep "^x-ratelimit-reset:" | sed -e 's/^x-ratelimit-reset: //' -e 's/\r//')
+    now=$(date +%s)
+    sleep_time=$((reset_timestamp - now + 1))
+    echo "GitHub rate limit exceeded, sleeping for ${sleep_time} seconds" >&2
+    sleep "${sleep_time}"
+    continue
+  fi
+  echo -e "GitHub request failed for an unknown reason:\n$(echo "$PR_DATA" | sed '/^$/q')" >&2
+  echo "Assuming base ref is master" >&2
+  echo "master"
+  exit 0
+done
@@ -22,8 +22,6 @@
       - platform/artifacts/
     expire_in: 3 months
   variables:
-    FF_USE_LEGACY_KUBERNETES_EXECUTION_STRATEGY: "true"
-
     K6_OPTIONS_WARMUP_RATE: 2000
     K6_OPTIONS_WARMUP_DURATION: 5m
     K6_OPTIONS_WARMUP_GRACEFUL_STOP: 10s
 
@@ -4,19 +4,19 @@ This directory contains different types of benchmarks.
 
 ## Running Benchmarks via Docker
 
-Docker allows the execution of benchmarks without needing to install and configure your development environment. For example, package installation and installation of sirun is performed automatically.
+Docker allows the execution of benchmarks without needing to install and configure your development environment. For example, package installation and installation of sirun are performed automatically.
 
-In order to run benchmarks using Docker, issue the following command from the benchmark folder of the project:
+In order to run benchmarks using Docker, issue the following command from the `benchmark/` folder of this project:
 
 ```sh
 ./run.sh
 ```
 
-Once it finishes, the reports will be available in the reports folder.
+If you run into storage errors (e.g. running out of disk space), try removing all unused Docker containers, networks, and images with `docker system prune -af` before running the script again. Once finished, the reports will be available in the `benchmark/reports/` folder. Note that the script can take ~40 minutes to run.
 
 ### Running specific benchmarks
 
-If you want to run only a specific category of benchmarks you can do it via arguments:
+If you want to run only a specific category of benchmarks, you can do so via arguments:
 
 1. Run startup benchmarks
 ```sh
 
@@ -13,18 +13,18 @@ buildscript {
 }
 
 plugins {
-  id "datadog.gradle-debug"
-  id "datadog.dependency-locking"
+  id 'datadog.gradle-debug'
+  id 'datadog.dependency-locking'
 
-  id "com.diffplug.spotless" version "6.13.0"
+  id 'com.diffplug.spotless' version '6.13.0'
   id 'com.github.spotbugs' version '5.0.14'
-  id "de.thetaphi.forbiddenapis" version "3.8"
+  id 'de.thetaphi.forbiddenapis' version '3.8'
 
   id 'pl.allegro.tech.build.axion-release' version '1.14.4'
-  id 'io.github.gradle-nexus.publish-plugin' version '1.3.0'
+  id 'io.github.gradle-nexus.publish-plugin' version '2.0.0'
 
-  id "com.gradleup.shadow" version "8.3.6" apply false
-  id "me.champeau.jmh" version "0.7.0" apply false
+  id 'com.gradleup.shadow' version '8.3.6' apply false
+  id 'me.champeau.jmh' version '0.7.0' apply false
   id 'org.gradle.playframework' version '0.13' apply false
   id 'info.solidsoft.pitest' version '1.9.11'  apply false
 }
@@ -35,13 +35,17 @@ def isCI = System.getenv("CI") != null
 
 apply from: "$rootDir/gradle/repositories.gradle"
 apply from: "$rootDir/gradle/scm.gradle"
+
 spotless {
   // only resolve the spotless dependencies once in the build
   predeclareDeps()
 }
+
 spotlessPredeclare {
   // these need to align with the types and versions in gradle/spotless.gradle
   java {
+    removeUnusedImports()
+
     // This is the last Google Java Format version that supports Java 8
     googleJavaFormat('1.7')
   }
@@ -88,7 +92,7 @@ nexusPublishing {
     def forceLocal = project.hasProperty('forceLocal') && forceLocal
     if (forceLocal && !isCI) {
       local {
-        // For testing use with https://hub.docker.com/r/sonatype/nexus
+        // For testing, use with https://hub.docker.com/r/sonatype/nexus
         // docker run --rm -d -p 8081:8081 --name nexus sonatype/nexus:oss
         // ./gradlew publishToLocal
         // Doesn't work for testing releases though... (due to staging)
@@ -99,7 +103,13 @@ nexusPublishing {
         allowInsecureProtocol = true
       }
     } else {
+      // see https://github.com/gradle-nexus/publish-plugin#publishing-to-maven-central-via-sonatype-central
+      // For official documentation:
+      // staging repo publishing https://central.sonatype.org/publish/publish-portal-ossrh-staging-api/#configuration
+      // snapshot publishing https://central.sonatype.org/publish/publish-portal-snapshots/#publishing-via-other-methods
       sonatype {
+        nexusUrl.set(uri("https://ossrh-staging-api.central.sonatype.com/service/local/"))
+        snapshotRepositoryUrl.set(uri("https://central.sonatype.com/repository/maven-snapshots/"))
         username = System.getenv("SONATYPE_USERNAME")
         password = System.getenv("SONATYPE_PASSWORD")
       }
 
@@ -10,7 +10,7 @@ class CallSiteInstrumentationPluginTest extends Specification {
     plugins {
       id 'java'
       id 'call-site-instrumentation'
-      id("com.diffplug.spotless") version "6.13.0"
+      id 'com.diffplug.spotless' version '6.13.0'
     }
     
     sourceCompatibility = JavaVersion.VERSION_1_8
 
@@ -1,6 +1,6 @@
 // The shadowJar of this project will be injected into the JVM's bootstrap classloader
 plugins {
-  id "com.gradleup.shadow"
+  id 'com.gradleup.shadow'
   id 'me.champeau.jmh'
 }
Original file line number	Diff line number	Diff line change
`@@ -10,7 +10,7 @@ class CallSiteInstrumentationPluginTest extends Specification {`
`10`	`10`	`plugins {`
`11`	`11`	`id 'java'`
`12`	`12`	`id 'call-site-instrumentation'`
`13`		`- id("com.diffplug.spotless") version "6.13.0"`
	`13`	`+ id 'com.diffplug.spotless' version '6.13.0'`
`14`	`14`	`}`
`15`	`15`
`16`	`16`	`sourceCompatibility = JavaVersion.VERSION_1_8`
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`// The shadowJar of this project will be injected into the JVM's bootstrap classloader`
`2`	`2`	`plugins {`
`3`		`- id "com.gradleup.shadow"`
	`3`	`+ id 'com.gradleup.shadow'`
`4`	`4`	`id 'me.champeau.jmh'`
`5`	`5`	`}`
`6`	`6`