feat(config): support libdatadog's library_config for config through file

[BaptisteFoy]

Description of changes

• Bumps libdatadog to v15.0.0 & handles the required changes to crashtracking
• Starts using the library_config component of libdatadog that allows reading configuration from a file with a higher precedence than environment variables

Supported config entries

As of libdatadog v15.0.0 (source):

• DD_TRACE_DEBUG
• DD_SERVICE
• DD_ENV
• DD_VERSION
• DD_PROFILING_ENABLED

Testing strategy

Added a unit test.

To test this PR, you can:

1. Create a Linux VM
2. Start this tracer version & ensure everything works well (non-regression)
3. Create a file at the following path: /etc/datadog-agent/managed/datadog-apm-libraries/stable/libraries_config.yaml
4. Write the following content in the file:

rules:
  - selectors:
      - origin: language
        matches:
          - python
        operator: equals
    configuration:
      DD_TRACE_DEBUG: true

5. Start this tracer version
6. Verify that debug logs are properly enabled

Additional concerns

This change does increase the size of the serverless layer by 380KB (14204KB vs 13824 as the limit) even after optimization. I had to go from lto=true to lto=fast, as lto=true somehow prevents release builds on older machines. That accounts for 200KB, while the 200 other KB are mostly coming from the libdatadog bump.

Checklist

• PR author has checked that all the criteria below are met
• The PR description includes an overview of the change
• The PR description articulates the motivation for the change
• The change includes tests OR the PR description describes a testing strategy
• The PR description notes risks associated with the change, if any
• Newly-added code is easy to change
• The change follows the library release note guidelines
• The change includes or references documentation updates if necessary
• Backport labels are set (if applicable)

Reviewer Checklist

• Reviewer has checked that all the criteria below are met
• Title is accurate
• All changes are related to the pull request's stated goal
• Avoids breaking API changes
• Testing strategy adequately addresses listed risks
• Newly-added code is easy to change
• Release note makes sense to a user of the library
• If necessary, author has acknowledged and discussed the performance implications of this PR as reported in the benchmarks PR comment
• Backport labels are set in a manner that is consistent with the release branch maintenance policy

[github-actions]

CODEOWNERS have been resolved as:

src/native/library_config.rs                                            @DataDog/apm-core-python
tests/internal/test_native.py                                           @DataDog/apm-core-python
ddtrace/__init__.py                                                     @DataDog/apm-core-python
ddtrace/internal/native/__init__.py                                     @DataDog/apm-core-python
ddtrace/internal/native/_native.pyi                                     @DataDog/apm-core-python
src/native/Cargo.lock                                                   @DataDog/apm-core-python
src/native/Cargo.toml                                                   @DataDog/apm-core-python
src/native/lib.rs                                                       @DataDog/apm-core-python

[pr-commenter]

Benchmarks

Benchmark execution time: 2025-02-04 13:17:24

Comparing candidate commit ee3c320 in PR branch baptiste.foy/FA/library-config-libdatadog with baseline commit af9098c in branch main.

Found 2 performance improvements and 0 performance regressions! Performance is the same for 392 metrics, 2 unstable metrics.

scenario:iast_aspects-ospathdirname_aspect

• 🟩 execution_time [-434.186ns; -373.254ns] or [-10.755%; -9.246%]

scenario:iast_aspects-ospathsplitext_aspect

• 🟩 execution_time [-372.226ns; -323.480ns] or [-9.303%; -8.085%]

[taegyunkim]

👋 I'd like to suggest not adding new modules under /profiling as the functionality is not profiling. You should be able to expose the libdatadog API through src/core, or add a new rust/python module under src/

[datadog-dd-trace-py-rkomorn]

Datadog Report

Branch report: baptiste.foy/FA/library-config-libdatadog
Commit report: 1575326
Test service: dd-trace-py

✅ 0 Failed, 208 Passed, 1390 Skipped, 5m 3.12s Total duration (35m 0.17s time saved)

[brettlangdon]

not sure I love this 🤔

I don't have a good suggestion, but modifying system state in this way just feels weird.

would we expect that a user should be able to access/see the configuration applied by accessing it at os.environ[key] ?

[BaptisteFoy]

It does really feel weird to me too; and to be fair it's a hack to make it work quickly. There is no global configuration object that is used everywhere that we can use.

Hopefully in the not-so-far future we'll be able to properly apply this configuration and track its origin; but this is a whole other problem to tackle.

[brettlangdon]

we should probably have a test that applying a configuration via file gets applied to the application.

do we expect to have system-tests for this stuff as well? (if not, can we?)

[BaptisteFoy]

I guess we should; would you have any pointers on how I can do so?

Besides, yes we want to add system-tests to test this behaviour on customer-like systems.

[brettlangdon]

Besides, yes we want to add system-tests to test this behaviour on customer-like systems

Can we add those before we merge this? It should be fully tested before we merge, since as soon as it is merged it can be released.

[paullegranddc]

It should be fully tested before we merge, since as soon as it is merged it can be released.

Would you be ok with merging this under an experimental flag that disables calling to this code by default, so we are sure no customer uses it even if we release? It's hard to bootstrap system-tests if we don't have any merged language implementation to run the actual tests against.

We need to make sure that this code doesn't crash stuff obviously but this is something that can be tested in integration tests in ddtrace-py rather than in system-tests.

[brettlangdon]

You should be able to write tests against a dev version of this library pretty easily: https://github.com/DataDog/system-tests/blob/main/docs/execute/binaries.md#python-library

Merging tests in system-tests can be tricky since we need to ensure they are expected to fail on older versions.

I'd prefer the approach of writing at least the first pass of tests against this branch, but otherwise, a private/hidden feature flag would be ok.

[BaptisteFoy]

I've written a first system test and made it pass locally against this PR: DataDog/system-tests#3982. Happy to get your review @brettlangdon. Let me know if there is anything to change on this PR to run this test.

[BaptisteFoy]

Closing in favour of #12260