Agent
Prelude
Release on: 2024-08-16
- Please refer to the 7.56.0 tag on integrations-core for the list of changes on the Core Checks
Upgrade Notes
- Change default bind address in OTLP ingest from 0.0.0.0 to localhost. Please refer to the following blog post: https://opentelemetry.io/blog/2024/hardening-the-collector-one for additional information around this change.
- Update cURL to 8.7.1.
New Features
- The core Agent now supports multiple configuration files in addition to the main
datadog.yamlfile. The -E flag can be used to specify additional configuration files to be loaded sequentially after the maindatadog.yaml. - When
DD_SERVERLESS_STREAM_LOGSis enabled, DD_EXTENSION prints collected logs likeagent stream-logs. - Add full support of CIS Amazon Linux 2 Benchmark in CSPM.
- Add full support of CIS Amazon Linux 2023 Benchmark in CSPM.
- NPM - Adds the capability to track and report failed TCP connections to the Datadog backend. This feature is disabled by default.
Enhancement Notes
-
Add the use_apiserver_cache option to the kubernetes_state_metrics check to reduce the pressure on the underlying storage engine etcd. Requires Kubernetes 1.19+.
-
APM: Add obfuscation support for OpenSearch statements within span metadata. This feature works in the same way as the existing Elasticsearch one, and is enabled by default. It is configured by binding
apm_config.obfuscation.opensearch.*parameters to new obfuscation environment variables. In particular, bind:apm_config.obfuscation.opensearch.enabledtoDD_APM_OBFUSCATION_OPENSEARCH_ENABLED: It accepts a boolean value with default value true.apm_config.obfuscation.opensearch.keep_valuestoDD_APM_OBFUSCATION_OPENSEARCH_KEEP_VALUESIt accepts a list of strings of the form["id1", "id2"].apm_config.obfuscation.opensearch.obfuscate_sql_valuestoDD_APM_OBFUSCATION_OPENSEARCH_OBFUSCATE_SQL_VALUESIt accepts a list of strings of the form["key1", "key2"]. -
Agents are now built with Go
1.22.4. -
Agents are now built with Go
1.22.5. -
Bump dependency msodbcsql18 to version 18.3.3.1.
-
Adds config
kubernetes_events_source_detection.enabledwhich is false by default. When set to true, this sets the source of kubernetes events to specific integrations based on the name of the controller that emitted it. All kubernetes events will have the tagorchestrator:kubernetes. For controller names that do not match any of the known integrations, the source will still be set tokubernetesby default. -
Introduces a
bundle_unspecifed_eventsconfig to thedockerintegration. Whenbundle_unspecifed_eventsandunbundle_eventsare true, Docker events are unbundled according tocollected_event_typesand the remaining events are bundled after excluding thefiltered_event_typesandcollected_event_types. -
The Agent will now ignore empty configuration files in
conf.d. Users can use this functionality to avoid creating broken integrations when deploying agents with provisioning systems that do not allow skipping files entirely. -
Introduces an
bundle_unspecified_eventsconfig to thekubernetes_apiserverintegration. Whenbundle_unspecified_eventsandunbundle_eventsare true, Kubernetes events are unbundled according tocollected_event_typesand the remaining events are bundled. -
Improve utility functions that start or stop a service to better manage the SERVICE_START_PENDING and SERVICE_STOP_PENDING states by waiting for the service transition to complete. This will improve handling of concurrent execution of agent.exe start and agent.exe restart commands for the Windows Agent.
-
Make the oom_kill check capture the OOM score and the OOM score adjustment of the process being killed.
-
Oracle integration will now auto-adjust the size of the SQL substring requested by the activity sampler to better support users with multi-byte character sets, for example, Korean, Arabic, etc. This should alleviate crashes caused by long queries using these characters.
-
The OTLP ingestion endpoint now supports the same settings and protocol as the OpenTelemetry Collector OTLP receiver v0.103.0.
-
APM: Probabilistic Sampler now only looks at the lower 64 bits of a trace ID by default to improve compatibility in distributed systems where some apps may truncate the trace ID. To maintain the previous behavior use the feature flag probabilistic_sampler_full_trace_id.
-
Adds the source of the payload for Processes-owned messages.
-
Add tags to CollectorManifest
-
Add image and imageID fields to pods ContainerStatuses.
-
The orchestrator check can now scrub sensitive data from probes in pods specifications.
-
The Agent now populates the git.repository_url and git.commit.sha tags from the values of the DD_GIT_REPOSITORY_URL and DD_GIT_COMMIT_SHA container environment variables.
-
Implement the kubernetes_persistent_volume_claims_as_tags configuration that allows users to disable PersistentVolumeClaim for Kubernetes resources.
-
Upgrade the NTP check client library 'beevik/ntp' from v0.3.0 to v1.3.4
-
Use cloud-provided hostname as default when running the Agent in AKS.
-
APM: Enabled zstd compression by default on trace payloads.
Deprecation Notes
- APM: DD_APM_MAX_TPS config setting is deprecated in favor of the more accurate DD_APM_TARGET_TPS. Accordingly, when configured through YAML, max_traces_per_second is deprecated in favor of target_traces_per_second. The setting behavior remains the same, only the name is changed to more accurately reflect the existing logic.
Security Notes
- Updating OpenSSL to 3.0.14 to address CVE-2024-4741.
Bug Fixes
- Upgrades the pro-bing library to fix a Windows-only bug with too-long ICMP packets being received
- Fix ExtraTags mapping for CollectorManifest.
- Fix a bug in the Agent where it could potentially fetch logs of short-lived Kubernetes jobs twice if the CRI is Docker.
- Re-enable printing of checks metadata in the
datadog-agent statuscollector section. - Fix OTLP status output not being displayed in the GUI.
- Fix issue where init config for ping took priority over instance config.
- Fix
diagnosecommand for logs endpoints and related warnings about unknown config keys. - Fixes oracle.tablespace.offline metric not emitting 1 when tablespace is offline.
- APM: Show probabilistic sampling configuration in Agent status when enabled.
- Add a field to differentiate between empty and undefined podSelector or namespaceSelector for network policies.
- Fixed a bug where the file tailing position is always set to the beginning, this fix allows users to explicitly set a starting position.
- All datadog public endpoints have the maximum requirements to close idle connections after 60s being idle. If a given client keeps it for longer, the server will close it, and the client will likely see the issue during the next write, leading to a connection reset error. The idle timeout should be therefore set under a minute. This PR is reducing the timeout from 90 to 30s.
- Windows: Added driver rollback properties to ensure that all services and drivers are uninstalled or rolled back after an installation or upgrade failure.
Other Notes
- Add metric origins for community Python integrations.
Datadog Cluster Agent
Prelude
Released on: 2024-08-16 Pinned to datadog-agent v7.56.0: CHANGELOG.
Upgrade Notes
- Disables default injection of the .NET profiler dependency for Kubernetes auto_instrumentation.
Enhancement Notes
- Mark the NetworkPolicy collector as stable in the Cluster Agent
- Enabled language detection automatically in the injected agent sidecar on EKS Fargate when APM SSI is enabled. This is only available for users using the admission controller to automatically inject the agent sidecar.
- The orchestrator check can now scrub sensitive data from probes in pods specifications.
Bug Fixes
- Fixes issue where the external metrics server would sometimes return metrics which had not been updated for longer than the configured external_metrics_provider.max_age as valid. In connection with this fix, a new config (external_metrics_provider.query_validity_period) has been added to account for the delay between when metrics are resolved and when they are queried by the various autoscaling controllers. It is set to 30 seconds by default.