[Dynamic Instrumentationm] Added PII redaction support (#4786)

* Added PII redaction based on predefined list of keywords
* quarantine failing async span decoration tests

Author: GreenMatan

tracer/src/Datadog.Trace/Configuration/ConfigurationKeys.Debugger.cs

@@ -52,6 +52,12 @@ internal static class Debugger
             /// </summary>
             /// <seealso cref="DebuggerSettings.UploadFlushIntervalMilliseconds"/>
             public const string UploadFlushInterval = "DD_DEBUGGER_UPLOAD_FLUSH_INTERVAL";
+
+            /// <summary>
+            /// Configuration key for set of identifiers that are used in redaction decisions.
+            /// </summary>
+            /// <seealso cref="DebuggerSettings.RedactedIdentifiers"/>
+            public const string RedactedIdentifiers = "DD_DYNAMIC_INSTRUMENTATION_REDACTED_IDENTIFIERS";
         }
     }
 }

tracer/src/Datadog.Trace/Debugger/DebuggerSettings.cs

@@ -4,6 +4,9 @@
 // </copyright>
 
 #nullable enable
+using System;
+using System.Collections.Generic;
+using System.Linq;
 using Datadog.Trace.Configuration;
 using Datadog.Trace.Configuration.Telemetry;
 using Datadog.Trace.Telemetry;
@@ -55,6 +58,14 @@ public DebuggerSettings(IConfigurationSource? source, IConfigurationTelemetry te
                                              .WithKeys(ConfigurationKeys.Debugger.UploadFlushInterval)
                                              .AsInt32(DefaultUploadFlushIntervalMilliseconds, flushInterval => flushInterval >= 0)
                                              .Value;
+
+            var redactedIdentifiers = config
+                                 .WithKeys(ConfigurationKeys.Debugger.RedactedIdentifiers)
+                                 .AsString()?
+                                 .Split(new[] { ',' }, StringSplitOptions.RemoveEmptyEntries) ??
+                                  Enumerable.Empty<string>();
+
+            RedactedIdentifiers = new HashSet<string>(redactedIdentifiers, StringComparer.OrdinalIgnoreCase);
         }
 
         public bool Enabled { get; }
@@ -69,6 +80,8 @@ public DebuggerSettings(IConfigurationSource? source, IConfigurationTelemetry te
 
         public int UploadFlushIntervalMilliseconds { get; }
 
+        public HashSet<string> RedactedIdentifiers { get; }
+
         public static DebuggerSettings FromSource(IConfigurationSource source, IConfigurationTelemetry telemetry)
         {
             return new DebuggerSettings(source, telemetry);

tracer/src/Datadog.Trace/Debugger/Expressions/ProbeExpressionParser.Collection.cs

@@ -9,6 +9,7 @@
 using System.Linq;
 using System.Linq.Expressions;
 using System.Reflection;
+using Datadog.Trace.Debugger.Snapshots;
 using Datadog.Trace.Vendors.Newtonsoft.Json;
 using Type = System.Type;
 
@@ -88,6 +89,14 @@ private Expression GetItemAtIndex(JsonTextReader reader, List<ParameterExpressio
                 throw new InvalidOperationException("Source must implement IList or IDictionary");
             }
 
+            if (indexOrKey.Type == typeof(string) &&
+                indexOrKey is ConstantExpression expr &&
+                Redaction.ShouldRedact(expr.Value?.ToString(), expr.Type, out _))
+            {
+                AddError($"{source?.ToString() ?? "N/A"}[{indexOrKey?.ToString() ?? "N/A"}]", "The property or field is redacted.");
+                return RedactedValue();
+            }
+
             return CallGetItem(source, assignableFrom, indexOrKey);
         }
         catch (Exception e)

tracer/src/Datadog.Trace/Debugger/Expressions/ProbeExpressionParser.Dump.cs

@@ -21,7 +21,7 @@ internal partial class ProbeExpressionParser<T>
     private Expression DumpExpression(Expression expression, List<ParameterExpression> scopeMembers)
     {
         if (Datadog.Trace.Debugger.Helpers.TypeExtensions.IsSimple(expression.Type) ||
-            SupportedTypesService.AllowedTypesSafeToCallToString.Contains(expression.Type))
+            Redaction.AllowedTypesSafeToCallToString.Contains(expression.Type))
         {
             return Expression.Call(expression, GetMethodByReflection(typeof(object), nameof(object.ToString), Type.EmptyTypes));
         }
@@ -211,7 +211,7 @@ private string DumpObject(object value, Type type, string name, int depth = 0)
                        : $"{name}{ex.GetType().FullName}, {ex.Message}, {ex.StackTrace}";
         }
 
-        return SupportedTypesService.IsSafeToCallToString(type) ?
+        return Redaction.IsSafeToCallToString(type) ?
                    $"{name}{value?.ToString() ?? type?.FullName}" :
                    $"{name}{type?.FullName}";
     }

tracer/src/Datadog.Trace/Debugger/Expressions/ProbeExpressionParser.General.cs

@@ -8,7 +8,9 @@
 using System.Globalization;
 using System.Linq;
 using System.Linq.Expressions;
+using System.Reflection;
 using Datadog.Trace.Debugger.Helpers;
+using Datadog.Trace.Debugger.Snapshots;
 using Datadog.Trace.Vendors.Newtonsoft.Json;
 
 namespace Datadog.Trace.Debugger.Expressions;
@@ -85,7 +87,7 @@ private Expression GetMember(JsonTextReader reader, List<ParameterExpression> pa
         var referralMember = ParseTree(reader, parameters, itParameter);
         var refMember = (ConstantExpression)ParseTree(reader, parameters, itParameter);
 
-        return MemberPathExpression(referralMember, refMember.Value.ToString());
+        return MemberPathExpression(referralMember, refMember);
     }
 
     private Expression GetReference(JsonTextReader reader, List<ParameterExpression> parameters, ParameterExpression itParameter)
@@ -99,14 +101,22 @@ private Expression GetReference(JsonTextReader reader, List<ParameterExpression>
                 return refMember;
             }
 
-            var argOrLocal = parameters.FirstOrDefault(p => p.Name == constant.Value.ToString());
+            var constantValue = constant.Value.ToString();
+
+            if (Redaction.ShouldRedact(constantValue, constant.Type, out _))
+            {
+                AddError(reader.Value?.ToString() ?? "N/A", "The property or field is redacted.");
+                return RedactedValue();
+            }
+
+            var argOrLocal = parameters.FirstOrDefault(p => p.Name == constantValue);
             if (argOrLocal != null)
             {
                 return argOrLocal;
             }
 
             // will return an instance field\property or an UndefinedValue
-            return MemberPathExpression(GetParameterExpression(parameters, ScopeMemberKind.This), constant.Value.ToString());
+            return MemberPathExpression(GetParameterExpression(parameters, ScopeMemberKind.This), constant);
         }
         catch (Exception e)
         {
@@ -115,15 +125,49 @@ private Expression GetReference(JsonTextReader reader, List<ParameterExpression>
         }
     }
 
-    private Expression MemberPathExpression(Expression expression, string field)
+    private Expression MemberPathExpression(Expression expression, ConstantExpression propertyOrField)
     {
+        var propertyOrFieldValue = propertyOrField.Value.ToString();
+
         try
         {
-            return Expression.PropertyOrField(expression, field);
+            if (Redaction.ShouldRedact(propertyOrFieldValue, propertyOrField.Type, out _))
+            {
+                AddError($"{expression}.{propertyOrFieldValue}", "The property or field is redacted.");
+                return RedactedValue();
+            }
+
+            var memberInfo = expression.Type.GetMember(
+                propertyOrFieldValue,
+                BindingFlags.Public | BindingFlags.NonPublic | BindingFlags.Static | BindingFlags.Instance)
+                .FirstOrDefault();
+
+            if (memberInfo == null)
+            {
+                AddError($"{expression}.{propertyOrFieldValue}", "The property or field does not exist.");
+                return UndefinedValue();
+            }
+
+            bool isStatic = (memberInfo is PropertyInfo && ((PropertyInfo)memberInfo).GetGetMethod(true)?.IsStatic == true) ||
+                            (memberInfo is FieldInfo && ((FieldInfo)memberInfo).IsStatic);
+
+            if (isStatic)
+            {
+                return memberInfo.MemberType switch
+                {
+                    MemberTypes.Field => Expression.Field(null, (FieldInfo)memberInfo),
+                    MemberTypes.Property => Expression.Property(null, (PropertyInfo)memberInfo),
+                    _ => throw new InvalidOperationException("Unsupported member type for static member access.")
+                };
+            }
+            else
+            {
+                return Expression.PropertyOrField(expression, propertyOrFieldValue);
+            }
         }
         catch (Exception e)
         {
-            AddError($"{expression}.{field}", e.Message);
+            AddError($"{expression}.{propertyOrFieldValue}", e.Message);
             return UndefinedValue();
         }
     }
@@ -133,6 +177,11 @@ private Expression UndefinedValue()
         return Expression.Constant(Expressions.UndefinedValue.Instance);
     }
 
+    private Expression RedactedValue()
+    {
+        return Expression.Constant("{REDACTED}");
+    }
+
     private GotoExpression ReturnDefaultValueExpression()
     {
         if (typeof(T) == typeof(bool))

tracer/src/Datadog.Trace/Debugger/Expressions/ProbeProcessor.cs

@@ -193,6 +193,7 @@ internal bool Process<TCapture>(ref CaptureInfo<TCapture> info, DebuggerSnapshot
                                         if (info.IsAsyncCapture())
                                         {
                                             AddAsyncMethodArguments(snapshotCreator, ref info);
+                                            AddAsyncMethodLocals(snapshotCreator, ref info);
                                         }
 
                                         snapshotCreator.AddScopeMember(info.Name, info.Type, info.Value, info.MemberKind);

tracer/src/Datadog.Trace/Debugger/Instrumentation/AsyncLineDebuggerInvoker.cs

@@ -206,7 +206,7 @@ public static void EndLine(ref AsyncLineDebuggerState state)
 
                 state.HasLocalsOrReturnValue = false;
                 var asyncCaptureInfo = new AsyncCaptureInfo(state.MoveNextInvocationTarget, state.KickoffInvocationTarget, state.MethodMetadataInfo.KickoffInvocationTargetType, kickoffMethod: state.MethodMetadataInfo.KickoffMethod, hoistedArgs: state.MethodMetadataInfo.AsyncMethodHoistedArguments, hoistedLocals: state.MethodMetadataInfo.AsyncMethodHoistedLocals);
-                var captureInfo = new CaptureInfo<object>(memberKind: ScopeMemberKind.This, methodState: MethodState.EndLineAsync, hasLocalOrArgument: hasArgumentsOrLocals, asyncCaptureInfo: asyncCaptureInfo, lineCaptureInfo: new LineCaptureInfo(state.LineNumber, state.ProbeFilePath));
+                var captureInfo = new CaptureInfo<object>(value: state.KickoffInvocationTarget, type: state.MethodMetadataInfo.KickoffInvocationTargetType, name: "this", memberKind: ScopeMemberKind.This, methodState: MethodState.EndLineAsync, hasLocalOrArgument: hasArgumentsOrLocals, asyncCaptureInfo: asyncCaptureInfo, lineCaptureInfo: new LineCaptureInfo(state.LineNumber, state.ProbeFilePath));
                 state.ProbeData.Processor.Process(ref captureInfo, state.SnapshotCreator);
             }
             catch (Exception e)

tracer/src/Datadog.Trace/Debugger/LiveDebugger.cs

@@ -118,6 +118,7 @@ public async Task InitializeAsync()
                 _subscriptionManager.SubscribeToChanges(_subscription);
 
                 DebuggerSnapshotSerializer.SetConfig(_settings);
+                Redaction.SetConfig(_settings);
                 AppDomain.CurrentDomain.AssemblyLoad += (sender, args) => CheckUnboundProbes();
 
                 await StartAsync().ConfigureAwait(false);

tracer/src/Datadog.Trace/Debugger/Snapshots/DebuggerSnapshotSerializer.NotCapturedReason.cs

@@ -14,7 +14,9 @@ private enum NotCapturedReason
             collectionSize,
             depth,
             fieldCount,
-            timeout
+            timeout,
+            redactedByIndentifier,
+            redactedByType
         }
     }
 }

tracer/src/Datadog.Trace/Debugger/Snapshots/DebuggerSnapshotSerializer.cs

@@ -62,30 +62,36 @@ private static bool SerializeInternal(
         {
             try
             {
-                if (source is IEnumerable enumerable && (SupportedTypesService.IsSupportedCollection(source) ||
-                                                         SupportedTypesService.IsSupportedDictionary(source)))
+                if (Redaction.ShouldRedact(variableName, type, out var redactionReason))
                 {
                     if (variableName != null)
                     {
                         jsonWriter.WritePropertyName(variableName);
                     }
 
+                    var notCapturedReason = redactionReason == RedactionReason.Identifier ? NotCapturedReason.redactedByIndentifier : NotCapturedReason.redactedByType;
+
                     jsonWriter.WriteStartObject();
-                    SerializeEnumerable(source, type, jsonWriter, enumerable, currentDepth, cts);
+                    jsonWriter.WritePropertyName("type");
+                    jsonWriter.WriteValue(type.Name);
+                    WriteNotCapturedReason(jsonWriter, notCapturedReason);
                     jsonWriter.WriteEndObject();
 
                     return true;
                 }
 
-                if (SupportedTypesService.IsDenied(type))
+                if (source is IEnumerable enumerable && (Redaction.IsSupportedCollection(source) ||
+                                                         Redaction.IsSupportedDictionary(source)))
                 {
-                    jsonWriter.WritePropertyName(variableName);
+                    if (variableName != null)
+                    {
+                        jsonWriter.WritePropertyName(variableName);
+                    }
+
                     jsonWriter.WriteStartObject();
-                    jsonWriter.WritePropertyName("type");
-                    jsonWriter.WriteValue(type.Name);
-                    jsonWriter.WritePropertyName("value");
-                    jsonWriter.WriteValue("********");
+                    SerializeEnumerable(source, type, jsonWriter, enumerable, currentDepth, cts);
                     jsonWriter.WriteEndObject();
+
                     return true;
                 }
 
@@ -162,7 +168,7 @@ private static void WriteTypeAndValue(
                 jsonWriter.WritePropertyName("isNull");
                 jsonWriter.WriteValue("true");
             }
-            else if (SupportedTypesService.IsSafeToCallToString(type))
+            else if (Redaction.IsSafeToCallToString(type))
             {
                 jsonWriter.WritePropertyName("value");
                 var stringValue = source.ToString();
@@ -183,7 +189,7 @@ private static void SerializeInstanceFieldsInternal(
             CancellationTokenSource cts,
             int currentDepth)
         {
-            if (SupportedTypesService.IsSafeToCallToString(type) || source == null)
+            if (Redaction.IsSafeToCallToString(type) || source == null)
             {
                 return;
             }
@@ -270,7 +276,7 @@ private static void SerializeEnumerable(
         {
             try
             {
-                var isDictionary = SupportedTypesService.IsSupportedDictionary(source);
+                var isDictionary = Redaction.IsSupportedDictionary(source);
                 if (source is ICollection collection)
                 {
                     jsonWriter.WritePropertyName("type");